I don't think they are false positives, the signatures look OK to me.
It's possible that the operating system inside of the images is infected (the first signature, actually, might correspond to a rootkit). Scanning the image files certainly isn't a reliable way of scanning those machines (an antivirus, installed inside of the image, would be better).
Of course, there are also other possibilities - e.g. the signatures might be on a currently unused disk sector (in the image, I mean)... so if there were any malicious files inside previously (possibly even on a previous OS, if the image was reinstalled and not created from scratch)... or maybe even other antivirus programs whose signature database might contain these samples... hard to say.
But I'm quite sure it's not a coincidence, as Maxx assumed.