Small WordPress Website Suddenly Bringing Whole Server Down When Site Enabled

Hello All

I run a web server (Ubuntu 15.10) hosting around 35 websites on Apache and MySQL and all was ok until tonight when CPU suddenly shot to 100% (it normally sits around 1-2%) and disk reads were suddenly hitting 15MB/sec (they are normally just over 0MB).
This made all 35 websites operate extremely slowly or just time-out.

After looking through log files I isolated it to a small WordPress site with a database size of 2.2MB. From the modified dates of the files this site has not been updated for around a year.

If I disable this website (sudo a2dissite SITENAME) then everything returns to normal and all the other websites operate normally but as soon as I enable it again it instantly maxes out the server and causes all the sites to timeout again.

The Apache access log for the site in question contains this line repeated a few times per second:

"POST /xmlrpc.php HTTP/1.0" 200 597 "-" "Mozilla/4.0 (compatible: MSIE 7.0; Windows NT 6.0)"

The error log contains many entries saying this:

PHP Parse error: syntax error, unexpected ‘wp_list_pages’ (T_STRING) in /home/WEBSITE/public_html/wp-content/themes/THHEMENAME/parts/shared/sitemap.php on line 4
(I replaced the website name and theme name)

The MySQL log appears to show many processes being started simultaneously and having to be forcefully closed if I restart the mysql service.

The website has been sitting happily on this server for around 2 years now and never been a problem before.

Please can anyone tell me what I can do to track down what may be causing this? I can browse the database fine in PHPMyAdmin and it hardly has anything in it.

From what I can see in the logs could it be some sort of scheduled task it is trying to run which is getting stuck maybe?

Thanks
Robin