I read the document in Dutch at:
It seems that this process is considered as normal and as a "bug"...
Have a look here:
Google gives this link as well, but the page doesn't exist anymore:
Zone Alarm Users Beware!
Zone Labs was purchased by the Israeli firm Checkpoint Software in December 2003, and the Israeli's immediately revamped Zone Alarm's True Vector Engine. ...
The reason why vsmon.exe sends the packet containing "ZPDOCBIN" and what contains "ZPDOCBIN" remains a mystery, no answer about it. The destination IP is also strange.
To make it short it's not a virus, nor a worm, nor a spyware (it should be very unlikely that one has been implemented by ZoneLabs itself), still it's a little bit unpleasant to see that data are sent from your machine with no explanation about the content...
That's all what I found about it.