So essentially there really is NO FIX. There are two options leave WebShield running or just disable it altogether.
Unless Sygate ever decides to fix the issue. (Holding Breath)
When the transparent redirect is disabled (no 80 port) and only the browser is set to use the localhost:12080 as a HTTP proxy you would just change your previous warnings from firewall:
"Browser is trying to access the internet" for
"WebShield is trying to access the internet".
I don't see this as a great security risk unless the spyware is specially crafted for this particular setup. You can call it a fix if you like.