Autorun Analyzer classifies malware as "Safe"

The entry points to rundll32.exe which is a safe application but there’s a command line to execute a malware component, if I’m not mistaken, and so the malware autorun entry is classified as safe:

Btw: When I run CCE in aggressive mode and choose full scan it sometimes doesn’t show up after after the necessary reboot.
I don’t know if it’s malware related or a bug, but I rather think it’s the latter.