Hi viBlast,
The registry value must be on the machine that infected the flash drive, there must be traces of it on the flash drive, or something must direct to it on the machine through which the malware came in the first place, an infection vector direct(ion) found. For instance when I have Tellitamper (by some considered riskware if not self-installed) downloaded onto my flash drive through my computer, I do not have malware on my C: drive, but a scan with a-squared on C says it finds a direct to riskware there (while my USB scan is not scanned). Do you understand the complexity of this, and the way it works now? So scan all where you might suspect the files and regitry value to reside!!
polonus