Spy.House is a monitoring and analytics service for advertising creatives. It collects already published ads from various sources and provides convenient search, filters, and statistics so you can see what competitors are running and what works. The service does not place ads itself.

What is Spy.House for?

The service is designed for: • analyzing competitors’ advertising strategies; • finding creative ideas and trends across niches; • improving your own advertising and marketing decisions; • researching the market and audience. Spy.House helps marketers, business owners, and agencies make data‑driven decisions.

Is Spy.House a partner of Facebook, TikTok, or other ad networks?

No. Spy.House is not a partner, intermediary, or affiliated entity of Facebook, TikTok, Google Ads, Yandex, or any other advertising systems. All information you see in the service is obtained from open public sources and used solely for analytical purposes.

How does creative analysis work?

We collect and process publicly available ad materials — texts, images, videos, and descriptions. Then the data is structured and presented as convenient filters and analytics. Spy.House does not interfere with ad platforms and does not use private APIs.

Can I use creatives from Spy.House in my own ads?

No. The service is provided for analysis and familiarization only. All ad creatives belong to their rightful owners. You may take inspiration from ideas, but you must not copy or use materials without the owner’s permission.

How much does the subscription cost?

Spy.House is a paid service with subscription plans. Pricing and payment terms are available in your account. The price depends on the feature set and the subscription period.

Is there a trial period?

Yes! New users get a 7‑day free trial to test all core features of Spy.House. This is enough time to evaluate the service and decide whether to purchase a subscription.

Does the subscription renew automatically?

No. The subscription does not renew automatically. Users track the expiration date themselves and can renew the subscription in their account. If payment is not made on time, access to the service is suspended.

Can I get a refund for my subscription?

No. Under the Agreement, paid subscriptions are non‑refundable, even if you stop using the service or change your mind. That’s why there is a 7‑day trial to make an informed purchase decision.

What should I do if the service is down or there’s a technical error?

Try to: • refresh the page; • clear your browser cache; • check your internet connection. If the issue persists, email us at support@spy.house and we’ll investigate. The administration is not responsible for outages caused by third‑party actions (providers, hosting, external services), but we always help users restore access.

I am a rights holder and want to file a complaint — what should I do?

If you believe that any material on Spy.House infringes your rights, please email support@spy.house with: • a link to the material, • a description of the infringement, • documents proving your rights. We will review the request within 5 business days and take action. See the Rights Holders Policy for details.

How Facebook and TikTok Detect Proxies in 2026

You paid for a premium residential proxy. Your account still got banned in 48 hours. The provider tells you the IP “tested clean” before assignment. The reason is almost always the same: how Facebook and TikTok detect proxies in 2026 has very little to do with whether the IP itself is “good.” Both platforms run a layered detection stack that looks at the IP, the network it lives on, the IP's history, how the connection was opened, and the headers your client emits. A proxy fixes one of those layers. Sometimes two. The other layers don't care how much you paid.

The five layers, not one IP

Facebook and TikTok detect proxies by combining five signals: IP type, ASN reputation, IP history, TLS fingerprint, and HTTP header leaks. No single signal is decisive — the platforms score them together and route ambiguous cases to CAPTCHAs, SMS challenges, or manual review. Layers 1, 2, 3, and 5 are things a good proxy can address. Layer 4 is on your antidetect browser, not your proxy.

Layer 1 — IP type

The platforms classify every public IP (residential, datacenter, mobile, ISP, hosting) using their own data plus feeds like IPQualityScore, IPinfo, and MaxMind. The classification is attached before application data is processed. A datacenter IP arrives already flagged as non-consumer. We've seen new TikTok accounts blocked on the first registration request purely because the IP traced to a cloud provider's ASN. The exception: dedicated ISP proxies, which sit in datacenters but are issued from ranges registered to consumer ISPs.

Layer 2 — ASN reputation

The ASN is the neighborhood, and the neighborhood matters more than the address. Comcast is AS7922. AWS is AS16509. Before checking the IP itself, Facebook and TikTok look up which ASN it belongs to. Major cloud ASNs (AWS, GCP, Azure, DigitalOcean, OVH) are effectively hard-blocked by most WAFs. Consumer ISP ASNs score high. Mobile carrier ASNs score highest of all — because of CGNAT.

Carrier-Grade NAT is why mobile proxies are nearly impossible to ban. Mobile carriers share one public IPv4 among hundreds or thousands of real subscribers. Banning that IP would block hundreds of innocent carrier customers, so platforms tolerate far more activity from mobile IPs than any other type. TikTok in particular treats real cellular IPs as virtually impossible to flag.

Layer 3 — IP history

Both Meta and ByteDance maintain longitudinal logs of every IP that's ever touched their infrastructure. These logs persist for years. The platforms don't forget that an IP was used to mass-create spam accounts in 2023, even if it's been “clean” for 18 months since. This is what trips most teams up: you buy a fresh residential plan, the IP shows zero fraud score on IPQS, and the account is restricted within an hour anyway. IPQS can't see inside Meta's logs. TikTok permanently logs the IP used at account creation — multiple accounts from the same IP get flagged as coordinated behavior. Mobile proxies sidestep this via CGNAT dilution.

Layer 4 — TLS fingerprint (JA3/JA4)

Every HTTPS connection starts with a TLS handshake. The ClientHello message announces — in the clear — which TLS versions, ciphers, extensions, and curves your client supports, in a specific order. Real Chrome produces a different combination than Firefox, which differs from Python's requests, which differs from curl. JA3 (Salesforce, 2017) and JA4 (2023) hash that combination into a fingerprint. Cloudflare, DataDome, and Akamai all compute both.

The common trap: User-Agent claims Chrome on Windows, but the JA3/JA4 matches Python's requests. Real Chrome has a known JA3 hash; your library produces something completely different. Proxies don't fix TLS fingerprints — the handshake happens between your client and the target server, end-to-end. This is an antidetect browser's job (Multilogin, AdsPower, GoLogin, Dolphin{anty}), or a TLS impersonation library like curl-impersonate.

Layer 5 — HTTP header leaks

X-Forwarded-For (X-Forwarded-For: 203.0.113.195, 70.41.3.18) announces in plain text that the request came through a proxy. Via (Via: 1.1 squid/4.13) literally identifies the proxy software. Both should be stripped on outbound account traffic. Header order also matters — real Chrome sends headers in a specific sequence; Python's requests uses a different one. If your User-Agent says Chrome but your order is Python's, you're caught. Only “elite / high-anonymous” proxies — which strip every proxy-identifying header — are acceptable for social account work.

Facebook vs TikTok: same layers, different weights

Meta's signature behavior is cross-account linking via Canvas hash, WebGL, audio context, and font enumeration. A single linked pair cascades: one flagged account surfaces twenty others on the same fingerprint, and the whole cluster gets disabled together. This is why Facebook ad-account bans come in waves. Defense requires 1-to-1 account-to-IP isolation plus unique browser fingerprints per account.

TikTok weights mobile origin much more heavily. Desktop traffic via residential proxies is already mildly anomalous to TikTok's mobile-first models. The first 7 days of a new account are scored most aggressively — Layers 1 and 2 dominate that window. For TikTok creation and warm-up, mobile proxies aren't a luxury.

What this means for your proxy choice

To defeat the detection layers, you must match the proxy type to the specific bottleneck:

To defeat Layer 1 (IP type): Use Residential, Mobile, or ISP proxies to avoid being on a datacenter ASN.
To defeat Layer 2 (ASN reputation): Use Mobile or Dedicated ISP proxies for consumer or carrier-grade trust.
To defeat Layer 3 (IP history): Use Mobile (CGNAT) or premium residential with sticky sessions to avoid burned IPs.
To defeat Layer 4 (TLS fingerprint): Use a real or antidetect browser (proxies cannot fix this).
To defeat Layer 5 (HTTP headers): Ensure your provider uses elite-level header stripping.

Summary of Recommendations:

TikTok accounts (creation and warming): mobile. CGNAT dilution + carrier ASN trust carries the 7-day window.
Facebook ad accounts: dedicated ISP. Stable long sessions, 1-to-1 mapping, ASN diversity across allocations stops Meta clustering.
Bulk operations: rotating residential. Evaluate on daily active IPs (not database total) and city-level geo.

This is the stack FlashProxy is built around: 4.5M daily active residential IPs across 195+ countries, mobile proxies, dedicated ISP with ASN and subnet diversity, sticky sessions from 1 minute to 24 hours. Pick the product that matches your bottleneck layer, pair it with a real browser, stop burning accounts. https://flashproxy.com/

How Facebook and TikTok Detect Proxies in 2026