Okay, after seeing this, might I join in with a question along the same lines? If not, ignore this, but I am asking it here in case it helps others (I thought about a PM to some people instead, but hope I am getting it right that it is better to post for all to benefit if it is relevant).
From the comments so far, I am glad I did one part right, I have my domains registered somewhere different than my hosting.
However, they were registered with godaddy, so I may change that when they are up for renewal, I will look into that.
But, ... I have been hacked
I am hosted with hostgator (shared, business plan), but their conclusion was that it was on my end, either a weak password or malware on my device. I only logged in once and with my Mac, and can see nothing there that would do that. Plus, I never changed my password yet from the default one they gave me, so I thought it would be random enough (unless the hackers could access those somehow).
Years ago I ran quite a successful blog/website under a pseudonym (at least in my view it was "successful"- about 10,000 different/ unique visitors a month not counting bots as best as I could tell, average about 70 comments per post but only one post per week, and about $100 a month in Adsense when I ended it). I was using Wordpress and hosting by Hostgator. I had a few issues with footer hackers, but it appeared to by my Wordpress theme at the time. Hostgator seemed fine.
Anyway, I shut it down to work on my dissertation, but I am now starting my one under my real name as an "authority" in my nonfiction field. So, I was so happy to get it looking like I wanted in the theme, and to begin writing posts ahead (not yet visible) so I have several ready to go on launch (this blog is for educators).
But now I am not sure where to start. It is easy enough for me to just re-load, or also to just start over and copy/paste in, since it was not really live yet.
So, I looked at Dreamhost as mentioned above by Medi. It looks good. I am wondering if it is worth the money difference? As far as protection from hacking? (I see their VPS plan may be better than business shared from hostgator, with adding unique IP in Dreamhost, if it matters to have this?)
Also, alexaherself, now that you mention it, when I did my blogs years ago, I did the whole thing manual install, and even taught myself to create the databases and use FTP for some things (and cpanel for others). But, this time, on the hacked one, I did use the one-click install of Wordpress.
Could that have messed me up? If so, is it just due to .htaccess or whatever (I can check my permissions if so), or maybe I don't know enough about it yet, but I would like to learn before settling on this and fixing my site, while it is still easy to start over.
So, I wonder should I switch hosts, do a manual Wordpress install in either place (although Medi I think implied it might be fine to do one-click install with Dreamhost at least?) or just leave it be and re-load it?
Any ideas are great. I have been searching this forum and google, but still finding very different opinions. Again, this is not my specialty, but I am tech savvy enough to use a little of everything (so perhaps more dangerous than if I knew nothing?).
Again, I am hoping this just helps add to the discussion of the original OP on hosting choices, since hacking came up, and is something I and all should want to protect against.. Free "virtual" boxes of chocolate and coffee for your assistance
But I will also keep looking for these answers myself, so if no one replies to these questions, I will add answers here if I can find anything out someway, somehow.