So what we are seeing here is a lot of outdated Wordpress installs being abused, scanned, hacked, files injected, being used to scan other networks sometimes, and continual brute force attempts. These requests are coming on several domains and as we get them blocked, and the wordpress files removed, the packetloss gets better.
There's still an occassional time of packetloss as it finds a new wordpress old install and abuses it, but overall it is much more stable.