I use a password manager (not sure if I can say it's name here) and it tells me what websites certificates have been compromised by the heartbleed bug, and what websites have fixed this bug. So it seems that Avast haven't fixed it yet, is that true? and if it is, when is the new certificate going to be done?