Here's what Winpatrol has to say:
Zone Alarm - ZLCLIENT.EXE
ZoneAlarm is a very popular Software firewall protection program. This program works well with WinPatrol and is something we use here at BillP Studios as well. If you connect to the Internet using a broadband (cable or DSL) connection, we'd recommend installing some sort of firewall.
ZLClient.exe appears to have been added to ZoneAlarm in their version 4.5 update.
The program comes in both a free and paid (professional) version. More information is available at http://www.zonealarm.com.
Safe
Recommended
Zone Labs
Hope that put's your mind at easy.
The problem is not the zlclient.exe itself. it's more of why is it connecting to those DSN. If i read a string in my program log I see this:
Rating: Hight
Date and time: today date and time of the access
Type: new program (I guess it's new right now beacuse I tried uninstalling and installing it again)
Program: c:\programmi\Zone Labs\ZoneAlarm\zlclient.exe
source IP: blank
destination IP: an Ip that's not mine and the port is 53
Direction: outgoing (connected)
action: allowed
count: 1
Source DNS: blank
Destination DNS: update.ewido.net
Why is it connecting to ewido? Shouldn't it be zonelab.com. if I try blocking it it freezes the pc and it says that Zone Alarm will not be able to check for update. Right now I installed an old version 6.0.631.003 because the version 6.1.744.000 deleted all the logs in the program tab. No matter if I tried increasing the number of logs. they were not showing. :'(
the matter for me was to know if someone using this software had noticed the zlclient.exe connecting to other DNS other than zonealarm.com or zonelab.com. if it's a common thing I'll not worry over it.
I have so many program to fight spyware. It would be a paradox that my firewall is spying on me. :'(