I wanted to be able to monitor changes to the windows registry of my Zabbix clients, and I wasn't able to find something that did this. So, I wrote a vbscript that allows me to do this. Consider this a test version of the script. I have been using it a little, but haven't done any rigorous testing of the code yet. I am more familiar with vb/vb.net, so I am not entirely comfortable with the nuances of vbscript yet. Also, I haven't done any error trapping. I just wanted to get this first version out so that other people can look at it and offer suggestions. I am also very new to Zabbix.

The script is called reginfo.vbs. Depending on the command line arguments, it will:
1. Return the number of registry entries in a given registry key
2. Return a string containing all the entries and values in a given registry key
3. Return the number of subkeys within a given registry key
4. Return the value of a specific registry entry

The script has three required arguments, and a fourth optional one:
First Argument: An integer value representing the ID of the registry hive to look in
0 = HKEY_CLASSES_ROOT
1 = HKEY_CURRENT_USER
2 = HKEY_LOCAL_MACHINE
3 = HKEY_USERS
5 = HKEY_CURRENT_CONFIG
9 = HKEY_USERS but the keys/entries for the most recently logged in user

Second Argument: A string, in quotes, of the path to the registry key to look in (ie: "Software\Microsoft\Windows\CurrentVersion\Run ")

Third Argument: Integer value representing what to return
0 = returns integer value representing number of registry entries
1 = returns string containing all registry entries and their values
2 = returns integer value representing number of sub keys
3 = returns the value in a given registry entry

Fourth Argument: A string, in quotes, of the specific registry entry to get the value of (only necessary for return-type 3)

Examples:
To get the entries and their values for: HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run (please note that the "Current User" is the user running the script... chances are you will not want to use this for zabbix monitoring since the Server Service, or maybe Administrator user, will be running the script. Use the next example instead)
To get the entries and their values for the Software\Microsoft\Windows\CurrentVersion\Run for the most recently logged in user (this is the example you want to follow if you want to monitor the registry for the currently logged in user's "CURRENT_USER" hive. Just note that in reality this is the "CURRENT_USER" hive for the most recently logged in user. The script doesn't know if the last user has already logged-off):
To get the number of subkeys in: HKEY_LOCAL_MACHINE\Software
To get the value of the ProxyEnable entry within the HKEY_USERS Hive for the most recently logged in user (HKEY_USERS\[SID OF LOGGED IN USER]\Software\Microsoft\Windows\CurrentVersion\Interne t Settings)
So, in order to use this in Zabbix, you need to create User Parameters in the zabbix_agentd.conf (this assumes reginfo.vbs is located in c:\zabbix\scripts\):
This uses the Windows command-line-based scripting host (cscript.exe). The "/nologo" argument hides the banner normally displayed by cscript, and the "/T:10" argument prevents the script from running for more than ten seconds.

Then in zabbix server, you create an Item of type "Zabbix Agent" with the key you defined in the zabbix_agentd.conf file of your client(s). Using the above examples the keys would be: reg.LMSoftwareSubKeyCount, reg.CUSoftwareSubKeyCount, reg.CUProxyEnable, reg.CURunCount, reg.CURunOnceCount, and reg.LoggedInUser

Hope all this makes sense, and that I just didn't re-invent the wheel!

-Ben