In the case of CDBurnerXP, the developer eventually offered a download without OpenCandy. (BTW, that's not the installer that the admin package downloads. It comes out a few days after the default installer.) I believe there are command line switches that can (and probably have) been put in place to keep from accidentally installing OpenCandy. It seems like I read somewhere that OpenCandy won't install in a silent installation.
Regardless, there still might be the occasional antivirus/antimalware that flags these downloads in some manner - flagged from the installation file and not because it was actually installed. Or, perhaps not as a virus ... but as a PUP (potentially unwanted program?)
Just talking here. The last thing you need is someone making you feel that your efforts aren't appreciated - they are, a lot!