The false positives are triggered by the NSIS installer and our customization to the OpenVPN installer (to save your VPN username/password for each VPN location so that you do not need to enter it manually).

Unfortunately the same NSIS installer stubs are being to bundle viruses and malware.

More information is available here: http://nsis.sourceforge.net/NSIS_False_Positives

An example of the false positives you may see is available here: https://www.virustotal.com/en/file/008b6f72c43a87e70d5a5adfea1d3c40289626a6e833a525009a36f29234379c/analysis/