Several readers have informed me that my site has been infected with some sort of malware. I think (and hope!) that I’ve finally found and eradicated the problem.
I opened up a support ticket with my hosting company, but they told me they couldn’t do anything and suggested I download my subfolder and run a virus scan on it. I did that (and let me tell you, it takes a long time to download everything!) using the latest virus scanning software/definitions from McAfee; it found no viruses. Then I got a plug-in that helps you search your files for malicious code, and it did find one post that had malicious code inserted into it (without my knowledge, of course); that code has been deleted. Furthermore, there was an extra directory on my site that I didn’t create; I’ve deleted that. And I’ve upgraded to the latest version of WordPress and changed my password.
I believe the security issue has been resolved as a result of these actions. I’ll continue to monitor the site. Thanks to everyone who notified me; if you get any more security warnings about my site, please let me know and I’ll take further action to root it out.