I know exactly what it is, because I've seen it on my version of Edge. They have embedded HD videos in the news items that run on the home page and they launch with no way to stop it. I wouldn't leave Edge running for too long or you get what you got.

Mark, thanks for the info and sharing your experience but for one thing, I don't use Edge.  I neutered that browser in all of the computers quite some time ago. It doesn't even update.

Regardless, this isn't what happened here. For this to happen, there must be change. Nothing here has changed. There never is and never has been a news feed or google home page running in my Chrome so that possibility is out. The only things running in my Chrome are the same assortment of tabs that have been open in Chrome for years. They restore with every reboot and don't change. None have ever gone berserk. The only one that refreshes automatically is whatever Outlook account is loaded into outlook.live.com at the time. There's no reason for this browser to jump from averaging less than 50 mb a day to an average of more than 4500 per day. And then suddenly stop the drain with no changes in the browser at all

Nothing open in any tab could have changed the data usage of this very limited use browser from maybe a GB a month to 9.4 GB in two 24 hour days before suddenly stopping on it's own after depleting my plan data and 3.9 GB of my token bytes. On this, the third day the data drain dropped to 107.3 MB. I notice that number has now increased to 108 MB for the day. We'll see what Glasswire says tomorrow but it appears to be done.

Still, at this time nothing here can access the problem IP 2a03:2880:f082:112:face:b00c:0:1823 aka edge-video6-shv-02-ord5.fbcdn.net unless it's connected via Hughesnet. Connect through Verizon and the page cannot be loaded. This makes it look like it's something suspiciously particular to the Hughes network.

Thanks for the further info but you're not telling me anything I don't already know and nothing you're telling me is the slightest bit applicable to this situation. No Chrome tabs ever show videos or ads. With the exception of the outlook site, they're all strictly business and financial/banking related sites that I may not even log into for lengthy periods of time. There's nothing that refreshes automatically in my google ads or google merchant center tabs. None of the google sheets I keep open refresh automatically. The financial spreadsheet doesn't fetch security price updates until I refresh the page. The Outlook site may want to show some ads but they're blocked by my Adblock Plus. M$ assures me that works. Every site is working properly throughout this episode, just as they have for a very long time. There's simply nothing to find in here.

Regardless, It's over now. The drain lasted two days and stopped on its own with no intervention from me. As it turns out, it was done when I found it. No tabs in Chrome have been opened or closed before, during or after. Here's a screenshot of Glasswire the day before it started. Please note the Chrome section showing typical low usage. Another screenshot from today. The offending IP is nowhere to be found in the Glasswire data for either day. By the way, I have Glasswire installed and always open on all four computers so I have records of what goes on when I want to know. I look at three of them every day watching the size of the Bitdefender manual updates done every morning over wifi. These sometimes log highly abnormal sizes compared to the ethernet updates done on my main computer. My bad for not checking anything on my main connected computer while this was going on. Now I want to know why.

Since you're a network guy, please tell me this. Why is it the offending page still can only be seen when using any of my Hughes connected devices while it's still unavailable when connected to the internet through Verizon? This includes four windows computers and an android 13 phone.

This is telling me the problem is in my modem or somewhere in the Hughes network on the other side of the modem. The phone is connecting to https://edge-video6-shv-02-ord5.fbcdn.net. In the first screenshot it's using Verizon and running through a VPN. It can't be Verizon throwing up a block. The second screenshot is running through the 5g side of the Hughes HT2000W, not my Linksys router.  Both running in DuckDuckGo

How can this happen? It's an android phone. It connects to this miserable facebook system page just as simply and easily and identically as my three wifi windows computers and one ethernet computer which aren't even networked together anymore. No cross contamination in the computers. The only thing in common is Hughesnet.

Please note I adjusted the URL in the screenshots to show the address in it's entirety.

Mark, here's another indication there's nothing particular to any of my computers or network on my side of the Hughes modem. This is an antique phone I still use for certain things like satellite finding. A Galaxy Ace with android 4.something.  It hasn't been connected to the internet in a very long time. I did connect it to the Hughesnet this morning and it also went right to this same facebook page. I didn't bother with trying to do a screenshot so I just took a picture of it.

Actually, this began not long after my modem required a reboot on 8/27 when my service completely stopped. Since it's all about this facebook IP, I'm hoping someone can have a look before I reboot again. Maybe the answer is in there.

Remy 

Liz