The entry points to rundll32.exe which is a safe application but there’s a command line to execute a malware component, if I’m not mistaken, and so the malware autorun entry is classified as safe:
http://www.ld-host.de/uploads/thumbnails/1a4b20ac0b471579781d7112cd9ff6e0.jpg
Btw: When I run CCE in aggressive mode and choose full scan it sometimes doesn’t show up after after the necessary reboot.
I don’t know if it’s malware related or a bug, but I rather think it’s the latter.