My issue was to do with botnets throwing requests at a Wordpress install, essentially brute force attacking wp-login.php and xmlrpc.php. WP has provided a patch for xmlrpc issue in 3.9.2 and I use htaccess to 403 the login page.
I would suggest your issue may have a similar cause, i.e, you are...