Suhosin was a security extension for PHP 5 and has been discontinued a long time ago.
ModSecurity is a popular extension for Apache, Nginx, and IIS webservers that is completely independent from the PHP installation: https://github.com/SpiderLabs/ModSecurity
A typical sign that mod_security is running are the infamous 403 errors. If you see this error, one of the mod_security filter rules has been triggered. Some of the stock mod_security rules are overly cautious
I don’t know which hosting control panel Bad Frog is using, but it looks like cPanel has an option to disable mod_security: Maybe worth a try?