It is not always easy to detect a Stingrays. One way is to drive by and watch your cell phones signal immediately drop from LTE or 4g down to 2g or Edge. The connection happens quite fast and you might miss it.
Also if encryption has been turned off is a good tell tell sign but most phones do not display cipher information. US android users have been trying to push google to add support since 2012 but they will not. https://code.google.com/p/android/issues/detail?id=5353&q=cipher&colspec=ID%20Status%20Priority%20Owner%20Summary%20Stars%20Reporter%20Opened
Also you can use a tool to grab nearby cell towers information and if the stingray is not displaying identifying information it most likely is a stingray.
https://play.google.com/store/apps/details?id=cellmapper.net.cellmapper
Ah! Thanks for posting this.
Seems better than this one: https://secupwn.github.io/Android-IMSI-Catcher-Detector/
[Edit] you can get the APK from here without having to use the Google Playstore thing.
They are almost certainly someone you know or you have malware on your phone. If you have malware, a factory reset stands a good chance of eliminating the problem.
If it's someone you know, try using a virtual phone number service like Hushed. Basically, you'd create a handful of virtual numbers. Give these numbers out to friends. Keep track of which friend gets what number (including your wife as she might also be the source). When you get the messages, you'll know which friend is responsible.
Here's how you spoof a phone number: http://lifehacker.com/5853056/how-to-spoof-caller-id