The avastSvc.exe is what controls the avast localhost proxy, though why it is showing avastSvc.exe as the process and not the parent process which was redirected through the proxy
So if the user is browsing this site ukprog.com (?), it would then be why the network shield considers it malicious. Do you have any program that would legitimately be trying to connect to this ukprog.com site ?
Sucuri.net site doesn't find anything there, image1, but the favicon.ico wasn't listed as a file that was scanned. However urlvoid has two that consider it at the least suspect, bitdefender and fsecure_browsing_defender, but doesn't say specifically what,
http://sitecheck.sucuri.net/results/http://ukprog.com. Nothing on the NoVirusThanks check either,
http://vscan.novirusthanks.org/analysis/6aa5c6038308ce146d4e1d1a3d8660a5/aW5kZXg=/I visited the site and the network shield was alerting (one of 5, image2) but also pointing at the ukprog.com/favicon.ico file, which can be a target for hackers as this is loaded with every web page. But I tried to capture that file for further investigation, I just got a server error, so couldn't be captured.
A VirusTotal scan for the site is 1 hit by bitdefender (again),
https://www.virustotal.com/url/ba2236052845f92e3915863d4d18185901454e9be02d8347da25aa2ece02343a/analysis/1334575744/. But for the favicon.ico file it is a 0/42 but there are some suspicious comments,
https://www.virustotal.com/file/e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855/analysis/1334575748/Another possibility I would also be checking if this doesn't need to be reviewed as a possible network shield FP. But I think the big question is does mmarx82 have any knowledge of this site and anything other than his wife's browser that might legitimately connect to it ?