Could be an infected source code for a miner or wallet which is compiled on each platform (windows, linux etc) ...
My rigs don't have wallets running on them.
Infected source code in all sgminer, cgmniner, bfgminer, and even Cudaminer? Code I've downloaded from github and compiled myself in each case?
Seems highly unlikely. Possible, but very unlikely.