Edit tour

Windows Analysis Report
https://p.facebook.com/msg/metaplugassist/

Overview

General Information

Sample URL:	https://p.facebook.com/msg/metaplugassist/
Analysis ID:	1670570
Infos:

Detection

Score:	1
Range:	0 - 100
Confidence:	80%

Signatures

HTML page contains hidden javascript code

HTML title does not match URL

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 1084 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 3088 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1988,i,16376405674933370253,10724368428458260145,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2064 /prefetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 6572 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://p.facebook.com/msg/metaplugassist/" MD5: E81F54E6C1129887AEA47E7D092680BF)

cleanup

HTTP traffic detected: POST /ajax/bz?__a=1&__aaid=0&__ccg=GOOD&__dyn=7xe6E5aQ1PyUbFp41twpUnwgU29zE6u7E3rw5ux60Vo1upE4W0OE3nwaq0yE7i0n24o5-0me1Fw5uw5Uwdq0Ho2eU5O09yw4vwbS1Lw7Jw7zwde0UE&__hs=20199.BP%3ADEFAULT.2.0...0&__hsi=7495857648453327414&__req=1&__rev=1022071460&__s=xjjot2%3Ahwthsi%3Afme1rq&__spin_b=trunk&__spin_r=1022071460&__spin_t=1745265361&__user=0&dpr=1&jazoest=2938&lsd=AVoItqrH7DA HTTP/1.1Host: www.facebook.comConnection: keep-aliveContent-Length: 1791X-ASBD-ID: 359341sec-ch-ua-platform: "Windows"X-FB-LSD: AVoItqrH7DAUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryDzMFxJZOSryY7guxsec-ch-ua-mobile: ?0Accept: */*Origin: https://www.facebook.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.facebook.com/msg/metaplugassist/?_rdrAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: datr=0aIGaNoM23Qx8OdBY3k9dspe; wd=1280x897

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundVary: Accept-EncodingSet-Cookie: datr=0aIGaNoM23Qx8OdBY3k9dspe; expires=Tue, 26-May-2026 19:56:01 GMT; Max-Age=34560000; path=/; domain=.facebook.com; secure; httponly; SameSite=Nonereporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0"report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}cross-origin-opener-policy: same-origin-allow-popupsorigin-agent-cluster: ?1Strict-Transport-Security: max-age=15552000; preloadContent-Type: text/html; charset="utf-8"X-FB-Debug: 7Q0ufagVlk2HuP4tqWhpChq6kPAa27Cj9vPFMFX1ElFsPIurB1vY4BT3nd7jg94p0UBcxo8mXS3VJCcpouHNVA==Date: Mon, 21 Apr 2025 19:56:01 GMTTransfer-Encoding: chunked
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundVary: Accept-EncodingStrict-Transport-Security: max-age=15552000; preloadContent-Type: text/html; charset="utf-8"X-FB-Debug: TyaOdoeDGhs1X+wJ7Io1SORdd2jZHqCH6rD9UtIveBtja/+VBDGGDexC/PWNF1ylPmWs/Xb26g53XF1mThML2w==Date: Mon, 21 Apr 2025 19:57:26 GMTTransfer-Encoding: chunked

Source: chromecache_79.1.dr, chromecache_80.1.dr	String found in binary or memory: https://messenger.com/
Source: chromecache_79.1.dr, chromecache_80.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v4/yb/r/1d54hiAvz7d.js
Source: chromecache_79.1.dr, chromecache_80.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v4/yv/r/38iJBCbqU_Z.js
Source: chromecache_79.1.dr, chromecache_80.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v4i7M54/yq/l/en_US/ZoRrZUauHNU.js
Source: chromecache_80.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v5/yH/l/0
Source: chromecache_80.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v5/yS/l/0
Source: chromecache_80.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v5/yu/l/0
Source: chromecache_79.1.dr, chromecache_80.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/yx/r/e9sqr8WnkCf.ico
Source: chromecache_101.1.dr	String found in binary or memory: https://www.internalfb.com/intern/invariant/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49673
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49679 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 31.13.70.1:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.1:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.36:443 -> 192.168.2.16:49707 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49714 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49712 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49715 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.36:443 -> 192.168.2.16:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49720 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 192.178.49.164:443 -> 192.168.2.16:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.36:443 -> 192.168.2.16:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49735 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49736 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49737 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.36:443 -> 192.168.2.16:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.7:443 -> 192.168.2.16:49752 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 31.13.70.36:443 -> 192.168.2.16:49762 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@23/57@20/5

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1988,i,16376405674933370253,10724368428458260145,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2064 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://p.facebook.com/msg/metaplugassist/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1988,i,16376405674933370253,10724368428458260145,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2064 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://p.facebook.com/msg/metaplugassist/	0%	Avira URL Cloud	safe

Name	IP	Active	Malicious	Reputation
star-mini.c10r.facebook.com	31.13.70.36	true	false	high
star.c10r.facebook.com	31.13.70.1	true	false	high
scontent.xx.fbcdn.net	31.13.70.7	true	false	high
facebook.com	31.13.70.36	true	false	high
www.google.com	192.178.49.164	true	false	high
www.facebook.com	unknown	unknown	false	high
p.facebook.com	unknown	unknown	false	high
static.xx.fbcdn.net	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Reputation
https://static.xx.fbcdn.net/rsrc.php/v4/yn/r/CcWjrd6IWm3.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/y0/r/eFZD1KABzRA.png	false	high
https://www.facebook.com/ajax/bootloader-endpoint/?modules=VultureJSSampleRatesLoader&__aaid=0&__user=0&__a=1&__req=3&__hs=20199.BP%3ADEFAULT.2.0...0&dpr=1&__ccg=GOOD&__rev=1022071460&__s=xjjot2%3Ahwthsi%3Afme1rq&__hsi=7495857648453327414&__dyn=7xe6E5aQ1PyUbFp41twpUnwgU29zE6u7E3rw5ux60Vo1upE4W0OE3nwaq0yE7i0n24o5-0me1Fw5uw5Uwdq0Ho2eU5O09yw4vwbS1Lw7Jw7zwde0UE&__spin_r=1022071460&__spin_b=trunk&__spin_t=1745265361	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yu/r/xOsYdAy1DIT.js	false	high
https://facebook.com/security/hsts-pixel.gif	false	high
https://static.xx.fbcdn.net/rsrc.php/yx/r/e9sqr8WnkCf.ico	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yr/r/U6MCBds3T2l.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v5/yH/l/0,cross/M8hCN_gO0fP.css	false	high
https://p.facebook.com/msg/metaplugassist/	false	high
https://static.xx.fbcdn.net/rsrc.php/v4ihVQ4/yC/l/en_US/vKjWcN1Y6wX.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yE/r/ypXu_iewNxo.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yc/r/qKoc-Mbxs0z.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yX/r/9WxGmo4ezEw.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/ye/r/xDgm3Tqkawr.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yP/r/ZQxGeuP1tWI.png	false	high
https://www.facebook.com/data/manifest/?is_workplace_mobile_pwa_dogfooding=0	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yj/r/CA1slfevTeZ.js	false	high
https://www.facebook.com/ajax/bz?__a=1&__aaid=0&__ccg=GOOD&__dyn=7xe6E5aQ1PyUbFp41twpUnwgU29zE6u7E3rw5ux60Vo1upE4W0OE3nwaq0yE7i0n24o5-0me1Fw5uw5Uwdq0Ho2eU5O09yw4vwbS1Lw7Jw7zwde2G0JU&__hs=20199.BP%3ADEFAULT.2.0...0&__hsi=7495857648453327414&__req=4&__rev=1022071460&__s=xjjot2%3Ahwthsi%3Afme1rq&__spin_b=trunk&__spin_r=1022071460&__spin_t=1745265361&__user=0&dpr=1&jazoest=2938&lsd=AVoItqrH7DA	false	high
https://static.xx.fbcdn.net/rsrc.php/v5/yS/l/0,cross/2QamG_mWWR-.css	false	high
https://www.facebook.com/ajax/browser_error_reports/?device_level=unknown&brsid=7495857718870656904&cpp=C3&cv=1022071460&st=1745265377865	false	high
https://www.facebook.com/ajax/bz?__a=1&__aaid=0&__ccg=GOOD&__dyn=7xe6E5aQ1PyUbFp41twpUnwgU29zE6u7E3rw5ux60Vo1upE4W0OE3nwaq0yE7i0n24o5-0me1Fw5uw5Uwdq0Ho2eU5O09yw4vwbS1Lw7Jw7zwde0UE&__hs=20199.BP%3ADEFAULT.2.0...0&__hsi=7495857648453327414&__req=1&__rev=1022071460&__s=xjjot2%3Ahwthsi%3Afme1rq&__spin_b=trunk&__spin_r=1022071460&__spin_t=1745265361&__user=0&dpr=1&jazoest=2938&lsd=AVoItqrH7DA	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yB/r/sQkNqpqx9ne.png	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yO/r/_tJ17sGyxOX.js	false	high
https://www.facebook.com/msg/metaplugassist/?_rdr	false	high
https://static.xx.fbcdn.net/rsrc.php/v5/yu/l/0,cross/7dKlqSVaGkF.css	false	high
https://static.xx.fbcdn.net/rsrc.php/v4i7M54/yq/l/en_US/ZoRrZUauHNU.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yv/r/38iJBCbqU_Z.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yt/r/7deiYnaK7oh.js	false	high
https://www.facebook.com/ajax/bz?__a=1&__aaid=0&__ccg=GOOD&__dyn=7xe6E5aQ1PyUbFp41twpUnwgU29zE6u7E3rw5ux60Vo1upE4W0OE3nwaq0yE7i0n24o5-0me1Fw5uw5Uwdq0Ho2eU5O09yw4vwbS1Lw7Jw7zwde0UE&__hs=20199.BP%3ADEFAULT.2.0...0&__hsi=7495857648453327414&__req=2&__rev=1022071460&__s=xjjot2%3Ahwthsi%3Afme1rq&__spin_b=trunk&__spin_r=1022071460&__spin_t=1745265361&__user=0&dpr=1&jazoest=2938&lsd=AVoItqrH7DA	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/y9/r/qetfxZizIhM.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yl/r/nv4EITsCAqt.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yS/r/ui2DkP-wt_7.js	false	high
https://static.xx.fbcdn.net/rsrc.php/v4/yb/r/1d54hiAvz7d.js	false	high
https://www.facebook.com/ajax/webstorage/process_keys/?state=1	false	high

URLs from Memory and Binaries

Name	Source	Malicious	Reputation
https://messenger.com/	chromecache_79.1.dr, chromecache_80.1.dr	false	high
https://www.internalfb.com/intern/invariant/	chromecache_101.1.dr	false	high
https://static.xx.fbcdn.net/rsrc.php/v5/yH/l/0	chromecache_80.1.dr	false	high
https://static.xx.fbcdn.net/rsrc.php/v5/yu/l/0	chromecache_80.1.dr	false	high
https://static.xx.fbcdn.net/rsrc.php/v5/yS/l/0	chromecache_80.1.dr	false	high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
31.13.70.36	star-mini.c10r.facebook.com	Ireland	32934	FACEBOOKUS	false
192.178.49.164	www.google.com	United States	15169	GOOGLEUS	false
31.13.70.1	star.c10r.facebook.com	Ireland	32934	FACEBOOKUS	false
31.13.70.7	scontent.xx.fbcdn.net	Ireland	32934	FACEBOOKUS	false

Private

IP
192.168.2.16

General Information

Joe Sandbox version:	42.0.0 Malachite
Analysis ID:	1670570
Start date and time:	2025-04-21 21:55:27 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 24s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	defaultwindowsinteractivecookbook.jbs
Sample URL:	https://p.facebook.com/msg/metaplugassist/
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	14
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	CLEAN
Classification:	clean1.win@23/57@20/5

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, SIHClient.exe, SgrmBroker.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 192.178.49.174, 192.178.49.195, 142.250.141.84, 142.250.69.10, 192.178.49.170, 192.178.49.202, 142.250.68.234, 142.250.68.227, 192.178.49.163, 192.178.49.206, 20.109.210.53, 184.29.183.29
Excluded domains from analysis (whitelisted): clients1.google.com, fs.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, accounts.google.com, redirector.gvt1.com, content-autofill.googleapis.com, slscr.update.microsoft.com, update.googleapis.com, clientservices.googleapis.com, clients.l.google.com, fe3cr.delivery.mp.microsoft.com
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtOpenFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://p.facebook.com/msg/metaplugassist/

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 171 x 56, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	3766
Entropy (8bit):	7.51328083638775
Encrypted:	false
SSDEEP:	96:1Q6T+9UuzmC01o0ybC7aneb7TChFAzuaj4mAxJ0FX:t+350197amCcRj4mUW9
MD5:	A92AB7B3DC9734DFD94821A953F340FF
SHA1:	31AA063E824AD67E71D17AD2E50CBA8F66412FAD
SHA-256:	E073300C11A1329449B0466049D895C1AFF1E5F7025C2F71237B997476F04F41
SHA-512:	FA6302FCEB29832BBAE88F71AEA8199B87880B8043DC3A14756FE7534E8F93CCF2845C01201077EE8CD25401C6A62B64D4AC38BF26B305C327175EFE72CF0FCE
Malicious:	false
Reputation:	low
URL:	https://static.xx.fbcdn.net/rsrc.php/v4/yB/r/sQkNqpqx9ne.png
Preview:	.PNG........IHDR.......8.............PLTEGpL........................................................................................................................................................................................................................................................................1P..........................................................'I.:X.........................9X.:X............................:X.:X.7V...................:Y.:X.:X.:X.7T.......:X.:X.......:X....:Y.7R.:X.7Y.;X.;X.;X.:W.3U.3D.9W.9X.............;Y..h.nA....WWWbixdkzPPPT[j^etgn}V]l..........}1.q"..E..{0.x,Zap......h..F.............J...>..N....s.....................n........x..w................p [..Z.....N.....`..............I.....q.U....k.[......5.N....S..~.q..............tRNS..F........&....2.....H.<h...,^.....f$...0`("....\...:P..r..@4j.T..R...L .Zz..n...V.b..6p8.......JN..>...dt..B.l..n..x\|....D..*X.~.v.....#....0..`......zr..^0..hx....IDATx^.YO.......g.

Source: https://www.facebook.com/msg/metaplugassist/?_rdr	HTTP Parser: No <meta name="author".. found
Source: https://www.facebook.com/msg/metaplugassist/?_rdr	HTTP Parser: No <meta name="author".. found

Source: https://www.facebook.com/msg/metaplugassist/?_rdr	HTTP Parser: No <meta name="copyright".. found
Source: https://www.facebook.com/msg/metaplugassist/?_rdr	HTTP Parser: No <meta name="copyright".. found

Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 84.201.221.21
Source: unknown	TCP traffic detected without corresponding DNS query: 84.201.221.21
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: chromecache_101.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/A4tfXiHOGrs/ equals www.facebook.com (Facebook)
Source: chromecache_77.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/CCT5pM3qiNk/ equals www.facebook.com (Facebook)
Source: chromecache_101.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/Ga6vBwdwgUx/ equals www.facebook.com (Facebook)
Source: chromecache_77.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/MDzNl_j9yvg/ equals www.facebook.com (Facebook)
Source: chromecache_99.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/OKBVmODmb-W/ equals www.facebook.com (Facebook)
Source: chromecache_93.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/WRsJ32R7YJG/ equals www.facebook.com (Facebook)
Source: chromecache_77.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/aJoeSHn7XcN/ equals www.facebook.com (Facebook)
Source: chromecache_85.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/t3hOLs8wlXy/ equals www.facebook.com (Facebook)
Source: chromecache_79.1.dr	String found in binary or memory: </span><a href="/help/?ref=404" data-gt="{"target":"help","marketing_page_click":"1","conversion":"1"}">Visit our Help Center</a></div></div></div><div class="_cqu"><div id="pageFooter" data-referrer="page_footer" data-testid="page_footer"><ul class="uiList localeSelectorList _2pid _509- _4ki _6-h _6-j _6-i" data-nocookies="1"><li>English (US)</li><li><a class="_sv4" dir="ltr" href="https://www.facebook.com/ajax/webstorage/process_keys/?state=1" title="Spanish" id="u_0_7_Nq">Espa equals www.facebook.com (Facebook)
Source: chromecache_80.1.dr	String found in binary or memory: </span><a href="/help/?ref=404" data-gt="{"target":"help","marketing_page_click":"1","conversion":"1"}">Visit our Help Center</a></div></div></div><div class="_cqu"><div id="pageFooter" data-referrer="page_footer" data-testid="page_footer"><ul class="uiList localeSelectorList _2pid _509- _4ki _6-h _6-j _6-i" data-nocookies="1"><li>English (US)</li><li><a class="_sv4" dir="ltr" href="https://www.facebook.com/msg/metaplugassist/" title="Spanish" id="u_0_7_1W">Espa equals www.facebook.com (Facebook)
Source: chromecache_79.1.dr, chromecache_80.1.dr	String found in binary or memory: </span><a href="https://www.facebook.com/" data-gt="{"target":"home","marketing_page_click":"1","conversion":"1"}">Go to Feed</a><span role="presentation" aria-hidden="true"> equals www.facebook.com (Facebook)
Source: chromecache_80.1.dr	String found in binary or memory: <i class="_3jii img sp_PEqIp1jvkJq sx_17d8b9" id="u_0_1_Gh"></i></span></a><div class="_yl7 _ylb __tw hidden_elem" id="u_0_2_sK"><div class="beeperNub"></div><div class="_yl8"><div class=""><form id="login_form" action="https://www.facebook.com/login/device-based/regular/login/?login_attempt=1&lwv=110" method="post" novalidate="1"><input type="hidden" name="jazoest" value="2938" autocomplete="off" /><input type="hidden" name="lsd" value="AVoItqrH7DA" autocomplete="off" /><div class="_erp"><div class="_err"><label for="email">Email or phone</label></div><div class="_err"><input type="email" class="inputtext login_form_input_box" name="email" id="email" data-testid="royal-email" /></div><div class="_ers"><label for="pass">Password</label></div><div class="_ers"><input type="password" class="inputtext login_form_input_box" name="pass" id="pass" data-testid="royal-pass" /></div><div class="_er_"><a href="https://www.facebook.com/recover/initiate?lwv=110&ars=royal_blue_bar">Forgot account?</a></div><button value="1" class="_42ft _4jy0 _es1 _3jd8 login_form_login_button _4jy5 _4jy1 selected _51sy" id="loginbutton" data-testid="royal-login-button" type="submit">Log In</button></div><input type="hidden" autocomplete="off" name="timezone" value="" id="u_0_3_kP" /><input type="hidden" autocomplete="off" name="lgndim" value="" id="u_0_4_hJ" /><input type="hidden" name="lgnrnd" value="125601_r7Gu" /><input type="hidden" id="lgnjs" name="lgnjs" value="n" /><input type="hidden" autocomplete="off" name="ab_test_data" value="" /><input type="hidden" autocomplete="off" id="locale" name="locale" value="en_US" /><input type="hidden" autocomplete="off" name="login_source" value="login_bluebar" /><input type="hidden" autocomplete="off" name="guid" value="" /><input type="hidden" autocomplete="off" id="prefill_contact_point" name="prefill_contact_point" /><input type="hidden" autocomplete="off" id="prefill_source" name="prefill_source" /><input type="hidden" autocomplete="off" id="prefill_type" name="prefill_type" /></form></div><div class="_yl9">Do you want to join Facebook?</div><a role="button" class="_42ft _4jy0 _yla _4jy3 _4jy2 selected _51sy mrm" href="/reg/?privacy_mutation_token=eyJ0eXBlIjowLCJjcmVhdGlvbl90aW1lIjoxNzQ1MjY1MzYxLCJjYWxsc2l0ZV9pZCI6MzYzOTY5MDQ0ODc4OTI4fQ%3D%3D" tabindex="4">Sign Up</a></div></div></div></div></div><div class="signupBanner"><div class="signup_bar_container"><div class="signup_box clearfix"><span class="signup_box_content"><a role="button" class="_42ft _4jy0 signup_btn _4jy4 _4jy2 selected _51sy" href="/r.php?locale=en_US">Sign Up</a></span></div></div></div></div></div></div><div id="globalContainer" class="_cqt"><div class="fb_content clearfix " id="content" role="main"><div class="pvl _4-do"><h2 class="_4-dp">This page isn't available</h2><h3 class="_4-dq">The link you followed may be broken, or the page may have been removed.</h3><i class="mvl img sp_PEqIp1jvkJq sx_82a77e"></i><div class="mbl pvl _4-dr fsm fwn fcg
Source: chromecache_79.1.dr	String found in binary or memory: <i class="_3jii img sp_PEqIp1jvkJq sx_17d8b9" id="u_0_1_Lw"></i></span></a><div class="_yl7 _ylb __tw hidden_elem" id="u_0_2_9e"><div class="beeperNub"></div><div class="_yl8"><div class=""><form id="login_form" action="https://www.facebook.com/login/device-based/regular/login/?login_attempt=1&lwv=110" method="post" novalidate="1"><input type="hidden" name="jazoest" value="21045" autocomplete="off" /><input type="hidden" name="lsd" value="AVoItqrHCyk" autocomplete="off" /><div class="_erp"><div class="_err"><label for="email">Email or phone</label></div><div class="_err"><input type="email" class="inputtext login_form_input_box" name="email" id="email" data-testid="royal-email" /></div><div class="_ers"><label for="pass">Password</label></div><div class="_ers"><input type="password" class="inputtext login_form_input_box" name="pass" id="pass" data-testid="royal-pass" /></div><div class="_er_"><a href="https://www.facebook.com/recover/initiate?lwv=110&ars=royal_blue_bar">Forgot account?</a></div><button value="1" class="_42ft _4jy0 _es1 _3jd8 login_form_login_button _4jy5 _4jy1 selected _51sy" id="loginbutton" data-testid="royal-login-button" type="submit">Log In</button></div><input type="hidden" autocomplete="off" name="timezone" value="" id="u_0_3_ek" /><input type="hidden" autocomplete="off" name="lgndim" value="" id="u_0_4_MU" /><input type="hidden" name="lgnrnd" value="125726_uTb6" /><input type="hidden" id="lgnjs" name="lgnjs" value="n" /><input type="hidden" autocomplete="off" name="ab_test_data" value="" /><input type="hidden" autocomplete="off" id="locale" name="locale" value="en_US" /><input type="hidden" autocomplete="off" name="shared_prefs_data" value="" /><input type="hidden" autocomplete="off" name="login_source" value="login_bluebar" /><input type="hidden" autocomplete="off" name="guid" value="" /><input type="hidden" autocomplete="off" id="prefill_contact_point" name="prefill_contact_point" /><input type="hidden" autocomplete="off" id="prefill_source" name="prefill_source" /><input type="hidden" autocomplete="off" id="prefill_type" name="prefill_type" /></form></div><div class="_yl9">Do you want to join Facebook?</div><a role="button" class="_42ft _4jy0 _yla _4jy3 _4jy2 selected _51sy mrm" href="/reg/?privacy_mutation_token=eyJ0eXBlIjowLCJjcmVhdGlvbl90aW1lIjoxNzQ1MjY1NDQ2LCJjYWxsc2l0ZV9pZCI6MzYzOTY5MDQ0ODc4OTI4fQ%3D%3D" tabindex="4">Sign Up</a></div></div></div></div></div><div class="signupBanner"><div class="signup_bar_container"><div class="signup_box clearfix"><span class="signup_box_content"><a role="button" class="_42ft _4jy0 signup_btn _4jy4 _4jy2 selected _51sy" href="/r.php?locale=en_US">Sign Up</a></span></div></div></div></div></div></div><div id="globalContainer" class="_cqt"><div class="fb_content clearfix " id="content" role="main"><div class="pvl _4-do"><h2 class="_4-dp">This page isn't available</h2><h3 class="_4-dq">The link you followed may be broken, or the page may have been removed.</h3><i class
Source: chromecache_79.1.dr	String found in binary or memory: </a></li><li><a role="button" class="_42ft _4jy0 _517i _517h _51sy" rel="dialog" ajaxify="/settings/language/language/?uri=https%3A%2F%2Fja-jp.facebook.com%2Fajax%2Fwebstorage%2Fprocess_keys%2F%3Fstate%3D1&source=www_list_selector_more" href="#" title="Show more languages"><i class="img sp_GPvE0syHYuh sx_8e0301"></i></a></li></ul><div id="contentCurve"></div><div id="pageFooterChildren" role="contentinfo" aria-label="Facebook site links"><ul class="uiList pageFooterLinkList _509- _4ki _703 _6-i"><li><a href="/reg/" title="Sign Up for Facebook">Sign Up</a></li><li><a href="/login/" title="Log into Facebook">Log In</a></li><li><a href="https://messenger.com/" title="Check out Messenger.">Messenger</a></li><li><a href="/lite/" title="Facebook Lite for Android.">Facebook Lite</a></li><li><a href="https://www.facebook.com/watch/" title="Browse in Video">Video</a></li><li><a href="https://about.meta.com/technologies/meta-pay" title="Learn more about Meta Pay" target="_blank">Meta Pay</a></li><li><a href="https://www.meta.com/" title="Check out Meta" target="_blank">Meta Store</a></li><li><a href="https://www.meta.com/quest/" title="Learn more about Meta Quest" target="_blank">Meta Quest</a></li><li><a href="https://www.meta.com/smart-glasses/" title="Learn more about Ray-Ban Meta" target="_blank">Ray-Ban Meta</a></li><li><a href="https://www.meta.ai/" title="Meta AI">Meta AI</a></li><li><a href="https://l.facebook.com/l.php?u=https%3A%2F%2Fwww.instagram.com%2F&h=AT2qgrtgzgCCm_DFGGAOmGit6e_e5Q7gd0kvWhjWeb7xSY-NcDawUu8Cm7P8J6vW46xWsTcWPSz1FCYSjEXUlRTC8Vv7baqUOz8cNI9kzQY42b1JLnTYk9cN1SUHE4Rw-MsmW6YTbi9R-9xRNXCO3rFBC4PPN7u8-wM" title="Check out Instagram" target="_blank" rel="noreferrer nofollow" data-lynx-mode="async">Instagram</a></li><li><a href="https://www.threads.net/" title="Check out Threads">Threads</a></li><li><a href="/votinginformationcenter/?entry_point=c2l0ZQ%3D%3D" title="See the Voting Information Center.">Voting Information Center</a></li><li><a href="/privacy/policy/?entry_point=facebook_page_footer" title="Learn how we collect, use and share information to support Facebook.">Privacy Policy</a></li><li><a href="/privacy/policies/health/?entry_point=facebook_page_footer" title="Consumer Health Privacy">Consumer Health Privacy</a></li><li><a href="/privacy/center/?entry_point=facebook_page_footer" title="Learn how to manage and control your privacy on Facebook.">Privacy Center</a></li><li><a href="https://about.meta.com/" accesskey="8" title="Read our blog, discover the resource center, and find job opportunities.">About</a></li><li><a href="/ad_campaign/landing.php?placement=pflo&campaign_id=402047449186&nav_source=unknown&extra_1=auto" title="Advertise on Facebook.">Create ad</a></li><li><a href="/pages/create/?ref_type=site_footer" title="Create a page">Create Page</a></li><li><a href="https://developers.facebook.com/?ref=pf" title="Develop on our platform.">Developers</a></li><li><a href="/careers/?ref=pf" title="Mak
Source: chromecache_80.1.dr	String found in binary or memory: </a></li><li><a role="button" class="_42ft _4jy0 _517i _517h _51sy" rel="dialog" ajaxify="/settings/language/language/?uri=https%3A%2F%2Fja-jp.facebook.com%2Fmsg%2Fmetaplugassist%2F&source=www_list_selector_more" href="#" title="Show more languages"><i class="img sp_GPvE0syHYuh sx_8e0301"></i></a></li></ul><div id="contentCurve"></div><div id="pageFooterChildren" role="contentinfo" aria-label="Facebook site links"><ul class="uiList pageFooterLinkList _509- _4ki _703 _6-i"><li><a href="/reg/" title="Sign Up for Facebook">Sign Up</a></li><li><a href="/login/" title="Log into Facebook">Log In</a></li><li><a href="https://messenger.com/" title="Check out Messenger.">Messenger</a></li><li><a href="/lite/" title="Facebook Lite for Android.">Facebook Lite</a></li><li><a href="https://www.facebook.com/watch/" title="Browse in Video">Video</a></li><li><a href="https://about.meta.com/technologies/meta-pay" title="Learn more about Meta Pay" target="_blank">Meta Pay</a></li><li><a href="https://www.meta.com/" title="Check out Meta" target="_blank">Meta Store</a></li><li><a href="https://www.meta.com/quest/" title="Learn more about Meta Quest" target="_blank">Meta Quest</a></li><li><a href="https://www.meta.com/smart-glasses/" title="Learn more about Ray-Ban Meta" target="_blank">Ray-Ban Meta</a></li><li><a href="https://www.meta.ai/" title="Meta AI">Meta AI</a></li><li><a href="https://l.facebook.com/l.php?u=https%3A%2F%2Fwww.instagram.com%2F&h=AT0SDHCEv-f4RdWA4btk0FogkqOLD215WbnDcbJ9RuMh8cFiJHEJ9B--RDlInlTxCQswVFdM7UJ6lRz4TpWZi1v9sISwdlaKJpUwn60e9HPRVZrWexnS1CrViJE0pgbDSWdt1PKekuijT7CGp4nsfw" title="Check out Instagram" target="_blank" rel="noreferrer nofollow" data-lynx-mode="asynclazy">Instagram</a></li><li><a href="https://www.threads.net/" title="Check out Threads">Threads</a></li><li><a href="/votinginformationcenter/?entry_point=c2l0ZQ%3D%3D" title="See the Voting Information Center.">Voting Information Center</a></li><li><a href="/privacy/policy/?entry_point=facebook_page_footer" title="Learn how we collect, use and share information to support Facebook.">Privacy Policy</a></li><li><a href="/privacy/policies/health/?entry_point=facebook_page_footer" title="Consumer Health Privacy">Consumer Health Privacy</a></li><li><a href="/privacy/center/?entry_point=facebook_page_footer" title="Learn how to manage and control your privacy on Facebook.">Privacy Center</a></li><li><a href="https://about.meta.com/" accesskey="8" title="Read our blog, discover the resource center, and find job opportunities.">About</a></li><li><a href="/ad_campaign/landing.php?placement=pflo&campaign_id=402047449186&nav_source=unknown&extra_1=auto" title="Advertise on Facebook.">Create ad</a></li><li><a href="/pages/create/?ref_type=site_footer" title="Create a page">Create Page</a></li><li><a href="https://developers.facebook.com/?ref=pf" title="Develop on our platform.">Developers</a></li><li><a href="/careers/?ref=pf" title="Make your next career move to our aw
Source: chromecache_98.1.dr	String found in binary or memory: __d("Chromedome",["fbt"],(function(a,b,c,d,e,f,g,h){function i(){if(document.domain==null)return null;var a=document.domain,b=/^intern\./.test(a);if(b)return null;b=/(^\|\.)facebook\.(com\|sg)$/.test(a);if(b)return"facebook";b=/(^\|\.)instagram\.com$/.test(a);if(b)return"instagram";b=/(^\|\.)threads\.(com\|net)$/.test(a);if(b)return"threads";b=/(^\|\.)messenger\.com$/.test(a);return b?"messenger":null}function j(a){if(a==="instagram")return h._(/BTDS/"This is a browser feature intended for developers. If someone told you to copy-paste something here to enable an Instagram feature or \"hack\" someone's account, it is a scam and will give them access to your Instagram account.");return a==="threads"?h._(/BTDS/"This is a browser feature intended for developers. If someone told you to copy-paste something here to enable a Threads feature or \"hack\" someone's account, it is a scam and will give them access to your Threads account."):h._(/BTDS/"This is a browser feature intended for developers. If someone told you to copy-paste something here to enable a Facebook feature or \"hack\" someone's account, it is a scam and will give them access to your Facebook account.")}function a(a){if(top!==window)return;a=i();if(a==null)return;var b=h._(/BTDS/"Stop!");a=j(a);var c=h._(/BTDS/"See {url} for more information.",[h._param("url","https://www.facebook.com/selfxss")]),d="font-family:helvetica; font-size:20px; ";[[b,d+"font-size:50px; font-weight:bold; color:red; -webkit-text-stroke:1px black;"],[a,d],[c,d],["",""]].map(function(a){window.setTimeout(console.log.bind(console,"\n%c"+a[0].toString(),a[1]))})}g.start=a}),226); equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: p.facebook.com
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: static.xx.fbcdn.net
Source: global traffic	DNS traffic detected: DNS query: facebook.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Apr 21, 2025 21:55:58.574425936 CEST	53	63018	1.1.1.1	192.168.2.16
Apr 21, 2025 21:55:58.582439899 CEST	53	49984	1.1.1.1	192.168.2.16
Apr 21, 2025 21:55:59.507103920 CEST	52651	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:55:59.507322073 CEST	60946	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:55:59.659497023 CEST	53	52651	1.1.1.1	192.168.2.16
Apr 21, 2025 21:55:59.703685045 CEST	53	60946	1.1.1.1	192.168.2.16
Apr 21, 2025 21:55:59.732760906 CEST	53	61810	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:00.366879940 CEST	54368	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:00.367043018 CEST	53052	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:00.507227898 CEST	53	54368	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:00.507246971 CEST	53	53052	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:01.273370981 CEST	52180	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:01.273530960 CEST	63498	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:01.413657904 CEST	53	52180	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:01.413949966 CEST	53	63498	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:02.724715948 CEST	62007	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:02.724900007 CEST	57443	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:02.866332054 CEST	53	62007	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:02.866345882 CEST	53	57443	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:03.015222073 CEST	53	53068	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:03.171122074 CEST	64271	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:03.171267033 CEST	52907	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:03.314588070 CEST	53	64271	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:03.314604998 CEST	53	52907	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:03.469772100 CEST	57227	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:03.469926119 CEST	54001	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:03.540911913 CEST	51895	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:03.541074991 CEST	55385	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:03.609854937 CEST	53	57227	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:03.610359907 CEST	53	54001	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:03.681045055 CEST	53	51895	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:03.681245089 CEST	53	55385	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:06.704521894 CEST	64198	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:06.704696894 CEST	61371	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:56:06.844646931 CEST	53	64198	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:06.844780922 CEST	53	61371	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:16.641695023 CEST	53	59333	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:35.733462095 CEST	53	60652	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:58.478399038 CEST	53	62260	1.1.1.1	192.168.2.16
Apr 21, 2025 21:56:58.826394081 CEST	53	51097	1.1.1.1	192.168.2.16
Apr 21, 2025 21:57:01.893738031 CEST	53	57075	1.1.1.1	192.168.2.16
Apr 21, 2025 21:57:02.967363119 CEST	59131	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:57:02.967506886 CEST	50949	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:57:03.108133078 CEST	53	50949	1.1.1.1	192.168.2.16
Apr 21, 2025 21:57:03.108155966 CEST	53	59131	1.1.1.1	192.168.2.16
Apr 21, 2025 21:57:18.373114109 CEST	138	138	192.168.2.16	192.168.2.255
Apr 21, 2025 21:57:18.667699099 CEST	59259	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:57:18.667849064 CEST	53501	53	192.168.2.16	1.1.1.1
Apr 21, 2025 21:57:18.807871103 CEST	53	59259	1.1.1.1	192.168.2.16
Apr 21, 2025 21:57:18.807894945 CEST	53	53501	1.1.1.1	192.168.2.16
Apr 21, 2025 21:57:28.918673992 CEST	53	63706	1.1.1.1	192.168.2.16

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:55:59 UTC	683	OUT	GET /msg/metaplugassist/ HTTP/1.1 Host: p.facebook.com Connection: keep-alive sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:00 UTC	669	IN	HTTP/1.1 301 Moved Permanently Location: https://www.facebook.com/msg/metaplugassist/?_rdr accept-ch-lifetime: 4838400 accept-ch: viewport-width,dpr,Sec-CH-Prefers-Color-Scheme,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version,Sec-CH-UA-Model Content-Type: text/html; charset=utf-8 Strict-Transport-Security: max-age=15552000; preload X-FB-Debug: PPtRJEm31QNLMivYqHD/gYwSJ1E1cVDRj1DrIOUc9dWwRy0TBbvqHdF3HPkqmmqXzQxBbaZX3L0Zuzb8WIGmfA== Date: Mon, 21 Apr 2025 19:56:00 GMT X-FB-Connection-Quality: GOOD; q=0.7, rtt=148, rtx=0, c=10, mss=1346, tbw=3658, tp=-1, tpl=-1, uplat=74, ullat=0 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 0

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:00 UTC	690	OUT	GET /msg/metaplugassist/?_rdr HTTP/1.1 Host: www.facebook.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:01 UTC	818	IN	HTTP/1.1 404 Not Found Vary: Accept-Encoding Set-Cookie: datr=0aIGaNoM23Qx8OdBY3k9dspe; expires=Tue, 26-May-2026 19:56:01 GMT; Max-Age=34560000; path=/; domain=.facebook.com; secure; httponly; SameSite=None reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0" report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true} cross-origin-opener-policy: same-origin-allow-popups origin-agent-cluster: ?1 Strict-Transport-Security: max-age=15552000; preload Content-Type: text/html; charset="utf-8" X-FB-Debug: 7Q0ufagVlk2HuP4tqWhpChq6kPAa27Cj9vPFMFX1ElFsPIurB1vY4BT3nd7jg94p0UBcxo8mXS3VJCcpouHNVA== Date: Mon, 21 Apr 2025 19:56:01 GMT Transfer-Encoding: chunked
2025-04-21 19:56:01 UTC	2968	IN	Data Raw: 50 72 6f 78 79 2d 53 74 61 74 75 73 3a 20 68 74 74 70 5f 72 65 71 75 65 73 74 5f 65 72 72 6f 72 3b 20 65 5f 66 62 5f 72 65 71 75 65 73 74 74 69 6d 65 3d 22 41 63 4c 31 76 68 37 34 71 7a 57 48 59 76 4f 6b 63 4e 62 68 4c 42 65 71 43 44 74 35 69 59 31 51 74 46 67 6f 50 65 35 4d 46 59 30 36 46 32 42 42 44 61 4e 51 66 79 57 52 63 65 42 63 77 73 46 62 4a 6e 78 35 38 79 59 44 76 67 22 3b 20 65 5f 70 72 6f 78 79 3d 22 41 63 4c 62 4e 41 39 48 33 32 68 37 4e 2d 5f 5f 56 72 59 46 61 61 32 69 4a 62 38 47 70 62 43 56 4e 64 43 6c 68 67 56 4d 75 58 57 45 6e 65 35 45 69 56 77 35 47 38 72 6a 53 4f 53 30 6e 62 75 48 55 71 34 6f 4b 71 57 49 66 5f 6f 53 39 36 6f 53 79 36 6a 65 22 3b 20 65 5f 66 62 5f 74 77 74 61 73 6b 68 61 6e 64 6c 65 3d 22 41 63 4c 71 62 41 6a 67 7a 68 56 Data Ascii: Proxy-Status: http_request_error; e_fb_requesttime="AcL1vh74qzWHYvOkcNbhLBeqCDt5iY1QtFgoPe5MFY06F2BBDaNQfyWRceBcwsFbJnx58yYDvg"; e_proxy="AcLbNA9H32h7N-__VrYFaa2iJb8GpbCVNdClhgVMuXWEne5EiVw5G8rjSOS0nbuHUq4oKqWIf_oS96oSy6je"; e_fb_twtaskhandle="AcLqbAjgzhV
2025-04-21 19:56:01 UTC	166	IN	Data Raw: 58 2d 46 42 2d 43 6f 6e 6e 65 63 74 69 6f 6e 2d 51 75 61 6c 69 74 79 3a 20 47 4f 4f 44 3b 20 71 3d 30 2e 37 2c 20 72 74 74 3d 31 34 37 2c 20 72 74 78 3d 30 2c 20 63 3d 31 30 2c 20 6d 73 73 3d 31 33 34 36 2c 20 74 62 77 3d 33 34 30 33 2c 20 74 70 3d 2d 31 2c 20 74 70 6c 3d 2d 31 2c 20 75 70 6c 61 74 3d 31 34 34 2c 20 75 6c 6c 61 74 3d 30 0d 0a 41 6c 74 2d 53 76 63 3a 20 68 33 3d 22 3a 34 34 33 22 3b 20 6d 61 3d 38 36 34 30 30 0d 0a 43 6f 6e 6e 65 63 74 69 6f 6e 3a 20 63 6c 6f 73 65 0d 0a 0d 0a Data Ascii: X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=10, mss=1346, tbw=3403, tp=-1, tpl=-1, uplat=144, ullat=0Alt-Svc: h3=":443"; ma=86400Connection: close
2025-04-21 19:56:01 UTC	1334	IN	Data Raw: 39 65 31 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 20 69 64 3d 22 66 61 63 65 62 6f 6f 6b 22 20 63 6c 61 73 73 3d 22 6e 6f 5f 6a 73 22 3e 0a 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 20 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 65 66 65 72 72 65 72 22 20 63 6f 6e 74 65 6e 74 3d 22 6f 72 69 67 69 6e 2d 77 68 65 6e 2d 63 72 6f 73 73 6f 72 69 67 69 6e 22 20 69 64 3d 22 6d 65 74 61 5f 72 65 66 65 72 72 65 72 22 20 2f 3e 3c 73 63 72 69 70 74 20 6e 6f 6e 63 65 3d 22 58 6a 65 43 53 66 4e 5a 22 3e 66 75 6e 63 74 69 6f 6e 20 65 6e 76 46 6c 75 73 68 28 61 29 7b 66 75 6e 63 74 69 6f 6e 20 62 28 62 29 7b 66 6f 72 28 76 61 72 20 63 20 69 6e 20 61 29 62 5b 63 5d 3d 61 5b Data Ascii: 9e1<!DOCTYPE html><html lang="en" id="facebook" class="no_js"><head><meta charset="utf-8" /><meta name="referrer" content="origin-when-crossorigin" id="meta_referrer" /><script nonce="XjeCSfNZ">function envFlush(a){function b(b){for(var c in a)b[c]=a[
2025-04-21 19:56:01 UTC	1202	IN	Data Raw: 5b 66 5d 3d 31 2c 67 3d 3d 6e 75 6c 6c 3f 76 6f 69 64 20 30 3a 67 28 29 7d 3b 67 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 64 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 68 29 2c 64 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 65 72 72 6f 72 22 2c 68 29 7d 3b 64 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 6c 6f 61 64 22 2c 68 29 3b 64 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 65 72 72 6f 72 22 2c 68 29 7d 7d 41 72 72 61 79 2e 66 72 6f 6d 28 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 27 73 63 72 69 70 74 2c 6c 69 6e 6b 5b 64 61 74 61 2d 61 73 79 6e 63 2d 63 73 73 3d 22 31 22 5d 27 29 29 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 Data Ascii: [f]=1,g==null?void 0:g()};g=function(){d.removeEventListener("load",h),d.removeEventListener("error",h)};d.addEventListener("load",h);d.addEventListener("error",h)}}Array.from(document.querySelectorAll('script,link[data-async-css="1"]')).forEach(function(
2025-04-21 19:56:01 UTC	1500	IN	Data Raw: 37 66 63 31 0d 0a 70 2f 79 78 2f 72 2f 65 39 73 71 72 38 57 6e 6b 43 66 2e 69 63 6f 22 20 2f 3e 3c 6c 69 6e 6b 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 78 78 2e 66 62 63 64 6e 2e 6e 65 74 2f 72 73 72 63 2e 70 68 70 2f 76 35 2f 79 75 2f 6c 2f 30 2c 63 72 6f 73 73 2f 37 64 4b 6c 71 53 56 61 47 6b 46 2e 63 73 73 22 20 64 61 74 61 2d 62 6f 6f 74 6c 6f 61 64 65 72 2d 68 61 73 68 3d 22 32 6c 66 4e 50 7a 6f 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 20 2f 3e 0a 3c 6c 69 6e 6b 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 Data Ascii: 7fc1p/yx/r/e9sqr8WnkCf.ico" /><link type="text/css" rel="stylesheet" href="https://static.xx.fbcdn.net/rsrc.php/v5/yu/l/0,cross/7dKlqSVaGkF.css" data-bootloader-hash="2lfNPzo" crossorigin="anonymous" /><link type="text/css" rel="stylesheet" href="https
2025-04-21 19:56:01 UTC	1500	IN	Data Raw: 66 69 6e 65 22 3a 5b 5b 22 63 72 3a 33 31 30 22 2c 5b 22 52 75 6e 57 57 57 22 5d 2c 7b 22 5f 5f 72 63 22 3a 5b 22 52 75 6e 57 57 57 22 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 31 30 37 38 22 2c 5b 5d 2c 7b 22 5f 5f 72 63 22 3a 5b 6e 75 6c 6c 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 31 30 38 30 22 2c 5b 22 75 6e 65 78 70 65 63 74 65 64 55 73 65 49 6e 43 6f 6d 65 74 22 5d 2c 7b 22 5f 5f 72 63 22 3a 5b 22 75 6e 65 78 70 65 63 74 65 64 55 73 65 49 6e 43 6f 6d 65 74 22 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 31 31 32 36 22 2c 5b 22 54 69 6d 65 53 6c 69 63 65 49 6d 70 6c 22 5d 2c 7b 22 5f 5f 72 63 22 3a 5b 22 54 69 6d 65 53 6c 69 63 65 49 6d 70 6c 22 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 33 37 32 35 22 2c 5b 22 63 6c Data Ascii: fine":[["cr:310",["RunWWW"],{"__rc":["RunWWW",null]},-1],["cr:1078",[],{"__rc":[null,null]},-1],["cr:1080",["unexpectedUseInComet"],{"__rc":["unexpectedUseInComet",null]},-1],["cr:1126",["TimeSliceImpl"],{"__rc":["TimeSliceImpl",null]},-1],["cr:3725",["cl
2025-04-21 19:56:01 UTC	1500	IN	Data Raw: 31 5d 2c 5b 22 47 65 74 41 73 79 6e 63 50 61 72 61 6d 73 45 78 74 72 61 44 61 74 61 22 2c 5b 5d 2c 7b 22 65 78 74 72 61 5f 64 61 74 61 22 3a 7b 22 5f 5f 61 61 69 64 22 3a 22 30 22 7d 7d 2c 37 35 31 31 5d 2c 5b 22 42 6f 6f 74 6c 6f 61 64 65 72 43 6f 6e 66 69 67 22 2c 5b 5d 2c 7b 22 64 65 66 65 72 42 6f 6f 74 6c 6f 61 64 73 22 3a 66 61 6c 73 65 2c 22 65 6e 61 62 6c 65 4c 6f 61 64 69 6e 67 55 6e 61 76 61 69 6c 61 62 6c 65 52 65 73 6f 75 72 63 65 73 22 3a 74 72 75 65 2c 22 6a 73 52 65 74 72 69 65 73 22 3a 5b 32 30 30 2c 35 30 30 5d 2c 22 6a 73 52 65 74 72 79 41 62 6f 72 74 4e 75 6d 22 3a 32 2c 22 6a 73 52 65 74 72 79 41 62 6f 72 74 54 69 6d 65 22 3a 35 2c 22 73 69 6c 65 6e 74 44 75 70 73 22 3a 66 61 6c 73 65 2c 22 74 69 6d 65 6f 75 74 22 3a 36 30 30 30 30 2c Data Ascii: 1],["GetAsyncParamsExtraData",[],{"extra_data":{"__aaid":"0"}},7511],["BootloaderConfig",[],{"deferBootloads":false,"enableLoadingUnavailableResources":true,"jsRetries":[200,500],"jsRetryAbortNum":2,"jsRetryAbortTime":5,"silentDups":false,"timeout":60000,
2025-04-21 19:56:01 UTC	1500	IN	Data Raw: 65 2c 22 49 53 5f 46 41 43 45 42 4f 4f 4b 5f 57 4f 52 4b 5f 41 43 43 4f 55 4e 54 22 3a 66 61 6c 73 65 2c 22 49 53 5f 49 4e 53 54 41 47 52 41 4d 5f 42 55 53 49 4e 45 53 53 5f 50 45 52 53 4f 4e 22 3a 66 61 6c 73 65 2c 22 49 53 5f 4d 45 53 53 45 4e 47 45 52 5f 4f 4e 4c 59 5f 55 53 45 52 22 3a 66 61 6c 73 65 2c 22 49 53 5f 44 45 41 43 54 49 56 41 54 45 44 5f 41 4c 4c 4f 57 45 44 5f 4f 4e 5f 4d 45 53 53 45 4e 47 45 52 22 3a 66 61 6c 73 65 2c 22 49 53 5f 4d 45 53 53 45 4e 47 45 52 5f 43 41 4c 4c 5f 47 55 45 53 54 5f 55 53 45 52 22 3a 66 61 6c 73 65 2c 22 49 53 5f 57 4f 52 4b 5f 4d 45 53 53 45 4e 47 45 52 5f 43 41 4c 4c 5f 47 55 45 53 54 5f 55 53 45 52 22 3a 66 61 6c 73 65 2c 22 49 53 5f 57 4f 52 4b 52 4f 4f 4d 53 5f 55 53 45 52 22 3a 66 61 6c 73 65 2c 22 41 50 Data Ascii: e,"IS_FACEBOOK_WORK_ACCOUNT":false,"IS_INSTAGRAM_BUSINESS_PERSON":false,"IS_MESSENGER_ONLY_USER":false,"IS_DEACTIVATED_ALLOWED_ON_MESSENGER":false,"IS_MESSENGER_CALL_GUEST_USER":false,"IS_WORK_MESSENGER_CALL_GUEST_USER":false,"IS_WORKROOMS_USER":false,"AP
2025-04-21 19:56:01 UTC	1500	IN	Data Raw: 6c 5f 73 65 74 69 6d 6d 65 64 69 61 74 65 22 3a 66 61 6c 73 65 7d 2c 32 31 39 30 5d 2c 5b 22 4a 53 45 72 72 6f 72 4c 6f 67 67 69 6e 67 43 6f 6e 66 69 67 22 2c 5b 5d 2c 7b 22 61 70 70 49 64 22 3a 32 35 36 32 38 31 30 34 30 35 35 38 2c 22 65 78 74 72 61 22 3a 5b 5d 2c 22 72 65 70 6f 72 74 49 6e 74 65 72 76 61 6c 22 3a 35 30 2c 22 73 61 6d 70 6c 65 57 65 69 67 68 74 22 3a 6e 75 6c 6c 2c 22 73 61 6d 70 6c 65 57 65 69 67 68 74 4b 65 79 22 3a 22 5f 5f 6a 73 73 65 73 77 22 2c 22 70 72 6f 6a 65 63 74 42 6c 6f 63 6b 6c 69 73 74 22 3a 5b 5d 7d 2c 32 37 37 36 5d 2c 5b 22 44 61 74 61 53 74 6f 72 65 43 6f 6e 66 69 67 22 2c 5b 5d 2c 7b 22 65 78 70 61 6e 64 6f 4b 65 79 22 3a 22 5f 5f 46 42 5f 53 54 4f 52 45 22 2c 22 75 73 65 45 78 70 61 6e 64 6f 22 3a 74 72 75 65 7d 2c Data Ascii: l_setimmediate":false},2190],["JSErrorLoggingConfig",[],{"appId":256281040558,"extra":[],"reportInterval":50,"sampleWeight":null,"sampleWeightKey":"__jssesw","projectBlocklist":[]},2776],["DataStoreConfig",[],{"expandoKey":"__FB_STORE","useExpando":true},
2025-04-21 19:56:01 UTC	1500	IN	Data Raw: 22 3a 5b 22 67 6f 55 52 49 57 57 57 22 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 39 32 35 31 30 30 22 2c 5b 22 52 75 6e 42 6c 75 65 22 5d 2c 7b 22 5f 5f 72 63 22 3a 5b 22 52 75 6e 42 6c 75 65 22 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 37 33 38 36 22 2c 5b 22 63 6c 65 61 72 54 69 6d 65 6f 75 74 57 57 57 22 5d 2c 7b 22 5f 5f 72 63 22 3a 5b 22 63 6c 65 61 72 54 69 6d 65 6f 75 74 57 57 57 22 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 37 33 39 30 22 2c 5b 22 73 65 74 54 69 6d 65 6f 75 74 57 57 57 22 5d 2c 7b 22 5f 5f 72 63 22 3a 5b 22 73 65 74 54 69 6d 65 6f 75 74 57 57 57 22 2c 6e 75 6c 6c 5d 7d 2c 2d 31 5d 2c 5b 22 63 72 3a 31 30 30 33 32 36 37 22 2c 5b 22 63 6c 65 61 72 49 6e 74 65 72 76 61 6c 42 6c 75 65 22 5d 2c 7b 22 5f 5f 72 Data Ascii: ":["goURIWWW",null]},-1],["cr:925100",["RunBlue"],{"__rc":["RunBlue",null]},-1],["cr:7386",["clearTimeoutWWW"],{"__rc":["clearTimeoutWWW",null]},-1],["cr:7390",["setTimeoutWWW"],{"__rc":["setTimeoutWWW",null]},-1],["cr:1003267",["clearIntervalBlue"],{"__r

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:01 UTC	611	OUT	GET /rsrc.php/v5/yu/l/0,cross/7dKlqSVaGkF.css HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: style Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:02 UTC	1928	IN	HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: J27MZvjT5/oHpKRUC+9jHQ== Expires: Tue, 21 Apr 2026 17:00:50 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: PV+TzcSe4379LSIPHCCSVRKVTvVU3ONu5EiuYuxZZSbcxv9MWz1/7oicEYvn/5Dcuc0jtecSOrFLB3F89YPTsA== Date: Mon, 21 Apr 2025 19:56:01 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=2, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 9995
2025-04-21 19:56:02 UTC	1	IN	Data Raw: 66 Data Ascii: f
2025-04-21 19:56:02 UTC	9994	IN	Data Raw: 6f 72 6d 7b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 7d 6c 61 62 65 6c 7b 63 6f 6c 6f 72 3a 23 36 30 36 37 37 30 3b 63 75 72 73 6f 72 3a 64 65 66 61 75 6c 74 3b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 36 30 30 3b 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 6d 69 64 64 6c 65 7d 6c 61 62 65 6c 20 69 6e 70 75 74 7b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 6e 6f 72 6d 61 6c 7d 74 65 78 74 61 72 65 61 2c 2e 69 6e 70 75 74 74 65 78 74 2c 2e 69 6e 70 75 74 70 61 73 73 77 6f 72 64 7b 2d 77 65 62 6b 69 74 2d 61 70 70 65 61 72 61 6e 63 65 3a 6e 6f 6e 65 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 63 63 64 30 64 35 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 30 3b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 33 70 78 7d 74 65 78 74 61 72 65 Data Ascii: orm{margin:0;padding:0}label{color:#606770;cursor:default;font-weight:600;vertical-align:middle}label input{font-weight:normal}textarea,.inputtext,.inputpassword{-webkit-appearance:none;border:1px solid #ccd0d5;border-radius:0;margin:0;padding:3px}textare

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:01 UTC	611	OUT	GET /rsrc.php/v5/yS/l/0,cross/2QamG_mWWR-.css HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: style Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:02 UTC	1928	IN	HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: 8GWMdJb8Tb1w6BG6y+IvzQ== Expires: Tue, 21 Apr 2026 17:00:50 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: WkAYHA/39n3an+3oHzmxZ2PEGXf/8Itgfb86dbUp96L0Eg63Ws4Hxz2N2XKxv6e5LGYHi2RlD/UvlOaLPmQI0g== Date: Mon, 21 Apr 2025 19:56:01 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=148, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=0, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 3670
2025-04-21 19:56:02 UTC	1	IN	Data Raw: 0a Data Ascii:
2025-04-21 19:56:02 UTC	3669	IN	Data Raw: 0a 64 69 76 2e 5f 33 71 77 7b 68 65 69 67 68 74 3a 61 75 74 6f 3b 6c 65 66 74 3a 30 3b 6d 69 6e 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 72 69 67 68 74 3a 30 3b 74 6f 70 3a 30 3b 7a 2d 69 6e 64 65 78 3a 34 30 30 7d 2e 5f 33 31 65 7b 70 6f 73 69 74 69 6f 6e 3a 66 69 78 65 64 21 69 6d 70 6f 72 74 61 6e 74 3b 77 69 64 74 68 3a 31 30 30 25 7d 2e 77 65 62 6b 69 74 20 2e 5f 34 32 77 7b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 74 6f 70 3a 30 3b 76 69 73 69 62 69 6c 69 74 79 3a 68 69 64 64 65 6e 3b 77 69 64 74 68 3a 31 70 78 7d 2e 5f 33 69 78 6e 7b 62 6f 74 74 6f 6d 3a 30 3b 6c 65 66 74 3a 30 3b 70 6f 73 69 74 69 6f 6e 3a 66 69 78 65 64 3b 72 69 67 68 74 3a 30 3b 74 6f 70 3a 30 7d 2e 5f 33 71 77 20 Data Ascii: div._3qw{height:auto;left:0;min-height:100%;position:absolute;right:0;top:0;z-index:400}._31e{position:fixed!important;width:100%}.webkit ._42w{position:absolute;top:0;visibility:hidden;width:1px}._3ixn{bottom:0;left:0;position:fixed;right:0;top:0}._3qw

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (20814)
Category:	downloaded
Size (bytes):	355478
Entropy (8bit):	5.403557019445998
Encrypted:	false
SSDEEP:	3072:lKMpufc6G5AxWFnQKLPGMZMa9bV48Rd7jzfv+1P8/:ljbKxWOKLPGMZd9bV/7v+1P8/
MD5:	0F1E9610D35C6D10F38AB4CEA464DD0E
SHA1:	3D164241B28A3318D79E9BE77C6B1FB57EC63CFA
SHA-256:	8E694CD31FB78C042C8515C835ED2B80BA489205446BFA8CF36FA3B57CA1CA39
SHA-512:	66622561CB82490126A97CA389311E1D597333AFB237FC056D2F4190E26C418ADF48558AF28C0D08849E6A0E6788E1EBFA0496C4E56EA4EFA45BE1164E0F1BB7
Malicious:	false
Reputation:	low
URL:	https://static.xx.fbcdn.net/rsrc.php/v4/yb/r/1d54hiAvz7d.js
Preview:	;/FB_PKG_DELIM/.."use strict";(function(){var a=typeof globalThis!=="undefined"&&globalThis\|\|typeof self!=="undefined"&&self\|\|typeof global!=="undefined"&&global;if(typeof a.AbortController!=="undefined")return;var b=function(){function a(){this.__listeners=new Map()}a.prototype=Object.create(Object.prototype);a.prototype.addEventListener=function(a,b,c){if(arguments.length<2)throw new TypeError("TypeError: Failed to execute 'addEventListener' on 'CustomEventTarget': 2 arguments required, but only "+arguments.length+" present.");var d=this.__listeners,e=a.toString();d.has(e)\|\|d.set(e,new Map());var f=d.get(e);f.has(b)\|\|f.set(b,c)};a.prototype.removeEventListener=function(a,b,c){if(arguments.length<2)throw new TypeError("TypeError: Failed to execute 'addEventListener' on 'CustomEventTarget': 2 arguments required, but only "+arguments.length+" present.");var d=this.__listeners,e=a.toString();if(d.has(e)){var f=d.get(e);f.has(b)&&f["delete"](b)}};a.prototype.dispatchEvent=function(a){if

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	C source, ASCII text, with very long lines (3934)
Category:	downloaded
Size (bytes):	24996
Entropy (8bit):	5.456670742494595
Encrypted:	false
SSDEEP:	384:wd7RYXiCmTBXoWi8zyzso+nCBQx9H+Xf37Gidus8XJqFWzP9wQ:+7RYXzmTB4WB4+CS9g0X4WzP99
MD5:	6FD4A8154D56C7710623610B1DF200F2
SHA1:	26AF534118B4055B064609C92D32A99C60551214
SHA-256:	6ACD9D0DE6EF4B473FE925F3FCB2A0D67EF3B909E726578422848D3DDEB7EF98
SHA-512:	43A4996B681727EE32A12BCCE3D134E05831834471A8E0DC6606B3E6A220B7FA437D0F526FE084939FB41D116F58CDFE293A5F918FAB1CAEB05AE97BB1A13299
Malicious:	false
Reputation:	low
URL:	https://static.xx.fbcdn.net/rsrc.php/v4/yr/r/U6MCBds3T2l.js
Preview:	;/FB_PKG_DELIM/..__d("forEachObject",[],(function(a,b,c,d,e,f){"use strict";var g=Object.prototype.hasOwnProperty;function a(a,b,c){for(var d in a){var e=d;g.call(a,e)&&b.call(c,a[e],e,a)}}f["default"]=a}),66);.__d("BasicVector",[],(function(a,b,c,d,e,f){a=function(){function a(a,b){this.x=a,this.y=b}var b=a.prototype;b.derive=function(b,c){return new a(b,c)};b.toString=function(){return"("+this.x+", "+this.y+")"};b.add=function(a,b){b===void 0&&(b=a.y,a=a.x);a=parseFloat(a);b=parseFloat(b);return this.derive(this.x+a,this.y+b)};b.mul=function(a,b){b===void 0&&(b=a);return this.derive(this.xa,this.yb)};b.div=function(a,b){b===void 0&&(b=a);return this.derive(this.x1/a,this.y1/b)};b.sub=function(a,b){if(arguments.length===1)return this.add(a.mul(-1));else return this.add(-a,-b)};b.distanceTo=function(a){return this.sub(a).magnitude()};b.magnitude=function(){return Math.sqrt(this.xthis.x+this.ythis.y)};b.rotate=function(a){return this.derive(this.xMath.cos(a)-this.yMath.sin(a),

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (7660)
Category:	downloaded
Size (bytes):	50473
Entropy (8bit):	5.385018355277235
Encrypted:	false
SSDEEP:	768:CLxsGST0ki7JD5x0KDH0JcrjrMwmvsPD3RcG1o3pWc:CLxsGHkiDx0KDUJcrjrMwmvsPD3C4c
MD5:	F3D27E4E4E4EDA4D368156EBCE6E42EB
SHA1:	69A300F2B0A92F05FAC7BD615078FECFEB6AA765
SHA-256:	1B2712B4CDE63BBDC92829A7D26F07C47260032A4BC9943C6AFEC192BE0B629B
SHA-512:	F1B8B107A52462B61908F4143BC371E8A4E8032024F7B0B71B448EAD40282BFF4EEC49DF2F7D69041C49845E4766883ABF1B0F554D791FDBEEEE5C62D4C77DF1
Malicious:	false
Reputation:	low
URL:	https://static.xx.fbcdn.net/rsrc.php/v4/yE/r/ypXu_iewNxo.js
Preview:	;/FB_PKG_DELIM/..__d("BDSignalBufferData",[],(function(a,b,c,d,e,f){"use strict";a={};b=a;f["default"]=b}),66);.__d("SignalValueContext",[],(function(a,b,c,d,e,f){"use strict";a=function(){function a(a){this.cn=a}var b=a.prototype;b.getSignalValueContextName=function(){return this.cn};return a}();f["default"]=a}),66);.__d("BDSignalCollectorBase",["BDSignalBufferData","SignalValueContext","asyncToGeneratorRuntime"],(function(a,b,c,d,e,f,g){"use strict";a=function(){function a(a){this.signalType=a}var d=a.prototype;d.executeSignalCollection=function(){throw new Error("Child class responsibility to implement executeSignalCollection")};d.executeAsyncSignalCollection=function(){var a=b("asyncToGeneratorRuntime").asyncToGenerator(function*(){var a=(yield this.executeSignalCollection());return a});function c(){return a.apply(this,arguments)}return c}();a.getSanitizedURI=function(){var a=window.location.href,b=a.indexOf("?");return b<0?a:a.substring(0,b)};d.getContext=function(){return new(c

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1984)
Category:	downloaded
Size (bytes):	7293
Entropy (8bit):	5.2550231183270695
Encrypted:	false
SSDEEP:	192:MbGMN3dbgACeSLxxS5mwgWca0o1GiISOowBeP:MFN3dbgA6LxxPWPIrowBeP
MD5:	FBE6731C7ECDAA02DF044B7DFEF1B565
SHA1:	73992EFF90E492E973CA05A25A8CFF7D7AA8F7E3
SHA-256:	4180E10B3A510BDF861A96C0C167D97B8E51CB47E5ECECE9A453FD217F2A6EC7
SHA-512:	3FE14236F4DB373C867B76BA1AA5568B04E0C762A28F95CFDDF3FED6E76DD697F1C44EA120A5F40688EB3D173563633D11E0BEDF85FCA874870F5B801F6EF16C
Malicious:	false
Reputation:	low
URL:	https://static.xx.fbcdn.net/rsrc.php/v4/yu/r/xOsYdAy1DIT.js
Preview:	;/FB_PKG_DELIM/..__d("EventEmitterWithValidation",["BaseEventEmitter"],(function(a,b,c,d,e,f){"use strict";a=function(a){babelHelpers.inheritsLoose(b,a);function b(b,c){var d;d=a.call(this)\|\|this;d.$EventEmitterWithValidation1=Object.keys(b);d.$EventEmitterWithValidation2=Boolean(c);return d}var c=b.prototype;c.emit=function(b){if(this.$EventEmitterWithValidation1.indexOf(b)===-1){if(this.$EventEmitterWithValidation2)return;throw new TypeError(g(b,this.$EventEmitterWithValidation1))}return a.prototype.emit.apply(this,arguments)};return b}(b("BaseEventEmitter"));function g(a,b){a='Unknown event type "'+a+'". ';a+="Known event types: "+b.join(", ")+".";return a}e.exports=a}),null);.__d("NavigationMetrics",["cr:6016"],(function(a,b,c,d,e,f,g){g["default"]=b("cr:6016")}),98);.__d("mixInEventEmitter",["invariant","EventEmitterWithHolding","EventEmitterWithValidation","EventHolder"],(function(a,b,c,d,e,f,g,h){"use strict";function a(a,b,c){b\|\|h(0,3159);var d=a.prototype\|\|a;d.__eventEmitter

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:01 UTC	611	OUT	GET /rsrc.php/v5/yH/l/0,cross/M8hCN_gO0fP.css HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: style Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:02 UTC	1929	IN	HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: jhoGOvmHs+WG7OLaEmQUYQ== Expires: Tue, 21 Apr 2026 17:00:50 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: 3WlnNXaG5d6uMqRjBWxAiSCjq49okLkYeDND6+1xIu8BAvjLotcQw6FDk/vjIUcnSMPqVdkwX1PwDgRrBuY+RA== Date: Mon, 21 Apr 2025 19:56:01 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=148, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 33038
2025-04-21 19:56:02 UTC	1	IN	Data Raw: 23 Data Ascii: #
2025-04-21 19:56:02 UTC	15879	IN	Data Raw: 6e 61 76 4c 6f 67 69 6e 20 2e 5f 79 6c 34 7b 7a 2d 69 6e 64 65 78 3a 34 7d 2e 5f 79 6c 34 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 74 6f 70 3a 32 32 70 78 7d 2e 5f 79 6c 38 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 35 66 36 66 37 3b 62 6f 72 64 65 72 3a 30 70 78 20 73 6f 6c 69 64 20 77 68 69 74 65 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 33 70 78 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 33 70 78 20 38 70 78 20 72 67 62 61 28 30 2c 30 2c 30 2c 2e 33 29 3b 68 65 69 67 68 74 3a 32 36 36 70 78 3b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 36 70 78 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 5f 79 6c 39 7b 63 6f 6c 6f 72 3a 23 37 66 37 66 37 66 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6c 69 6e 65 Data Ascii: navLogin ._yl4{z-index:4}._yl4{position:relative;top:22px}._yl8{background-color:#f5f6f7;border:0px solid white;border-radius:3px;box-shadow:0 3px 8px rgba(0,0,0,.3);height:266px;padding-bottom:6px;text-align:center}._yl9{color:#7f7f7f;font-size:12px;line
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 5f 7b 70 61 64 64 69 6e 67 3a 31 32 70 78 7d 2e 5f 32 70 69 30 7b 70 61 64 64 69 6e 67 3a 31 36 70 78 7d 2e 5f 32 70 69 31 7b 70 61 64 64 69 6e 67 3a 32 30 70 78 7d 2e 5f 34 30 63 37 7b 70 61 64 64 69 6e 67 3a 32 34 70 78 7d 2e 5f 32 6f 31 6a 7b 70 61 64 64 69 6e 67 3a 33 36 70 78 7d 2e 5f 36 62 75 71 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 30 70 78 3b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 30 70 78 7d 2e 5f 32 70 69 32 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 34 70 78 3b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 34 70 78 7d 2e 5f 32 70 69 33 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 38 70 78 3b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 38 70 78 7d 2e 5f 32 70 69 34 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 31 32 70 78 3b 70 61 64 64 69 6e 67 Data Ascii: _{padding:12px}._2pi0{padding:16px}._2pi1{padding:20px}._40c7{padding:24px}._2o1j{padding:36px}._6buq{padding-bottom:0px;padding-top:0px}._2pi2{padding-bottom:4px;padding-top:4px}._2pi3{padding-bottom:8px;padding-top:8px}._2pi4{padding-bottom:12px;padding
2025-04-21 19:56:02 UTC	774	IN	Data Raw: 72 31 2e 5f 35 38 61 6b 7b 68 65 69 67 68 74 3a 32 34 70 78 3b 70 61 64 64 69 6e 67 3a 33 70 78 20 38 70 78 20 35 70 78 7d 2e 5f 35 35 72 31 2e 5f 35 35 72 32 2e 5f 35 38 61 6b 7b 68 65 69 67 68 74 3a 33 32 70 78 3b 70 61 64 64 69 6e 67 3a 37 70 78 20 38 70 78 20 39 70 78 7d 2e 5f 35 35 72 31 20 2e 5f 35 38 61 6c 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 7d 2e 5f 33 71 7a 65 20 2e 5f 35 38 61 6c 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 48 65 6c 76 65 74 69 63 61 2c 20 41 72 69 61 6c 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 34 70 78 7d 2e 5f 35 35 72 31 2e 5f 33 71 7a 65 2e 5f 35 38 61 6b 7b 70 61 64 64 Data Ascii: r1._58ak{height:24px;padding:3px 8px 5px}._55r1._55r2._58ak{height:32px;padding:7px 8px 9px}._55r1 ._58al{font-family:Helvetica, Arial, sans-serif;font-size:12px}._3qze ._58al{font-family:Helvetica, Arial, sans-serif;font-size:14px}._55r1._3qze._58ak{padd

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:01 UTC	588	OUT	GET /rsrc.php/v4/yb/r/1d54hiAvz7d.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:02 UTC	1946	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: Dx6WENNcbRDzirTOpGTdDg== Expires: Sun, 19 Apr 2026 01:04:23 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: 7nuVZ6MOxxVwjMy9k//A+JwQxAqEluQ6NIgPtAwEUusm+cPJelKWO6GJ+VwQ9QOsqIV6xfNj7tRyrZdzoFzdnA== Date: Mon, 21 Apr 2025 19:56:01 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=148, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=2, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 355478
2025-04-21 19:56:02 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:02 UTC	15870	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 67 6c 6f 62 61 6c 54 68 69 73 7c 7c 74 79 70 65 6f 66 20 73 65 6c 66 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 73 65 6c 66 7c 7c 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 67 6c 6f 62 61 6c 3b 69 66 28 74 79 70 65 6f 66 20 61 2e 41 62 6f 72 74 43 6f 6e 74 72 6f 6c 6c 65 72 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 29 72 65 74 75 72 6e 3b 76 61 72 20 62 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 61 28 29 7b 74 68 69 73 2e 5f 5f 6c 69 73 74 65 6e Data Ascii: /FB_PKG_DELIM/"use strict";(function(){var a=typeof globalThis!=="undefined"&&globalThis\|\|typeof self!=="undefined"&&self\|\|typeof global!=="undefined"&&global;if(typeof a.AbortController!=="undefined")return;var b=function(){function a(){this.__listen
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 74 69 6f 6e 22 29 72 65 74 75 72 6e 21 31 3b 69 66 28 74 79 70 65 6f 66 20 55 52 4c 2e 63 72 65 61 74 65 4f 62 6a 65 63 74 55 52 4c 21 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 74 79 70 65 6f 66 20 55 52 4c 2e 72 65 76 6f 6b 65 4f 62 6a 65 63 74 55 52 4c 21 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 29 72 65 74 75 72 6e 21 31 3b 72 65 74 75 72 6e 20 74 79 70 65 6f 66 20 46 69 6c 65 21 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 74 79 70 65 6f 66 20 42 6c 6f 62 21 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 21 31 3a 21 30 7d 69 66 28 21 61 28 29 29 72 65 74 75 72 6e 3b 76 61 72 20 62 3d 7b 7d 2c 63 3d 55 52 4c 2e 63 72 65 61 74 65 4f 62 6a 65 63 74 55 52 4c 2c 64 3d 55 52 4c 2e 72 65 76 6f 6b 65 4f 62 6a 65 63 74 55 52 4c 3b 55 52 4c 2e 63 72 65 61 74 65 4f 62 6a 65 63 Data Ascii: tion")return!1;if(typeof URL.createObjectURL!=="function"\|\|typeof URL.revokeObjectURL!=="function")return!1;return typeof File!=="function"\|\|typeof Blob!=="function"?!1:!0}if(!a())return;var b={},c=URL.createObjectURL,d=URL.revokeObjectURL;URL.createObjec
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 61 29 3a 61 29 7d 66 75 6e 63 74 69 6f 6e 20 68 28 61 2c 62 29 7b 69 66 28 21 62 29 7b 61 3d 63 28 22 66 62 2d 65 72 72 6f 72 2d 6c 69 74 65 22 29 2e 65 72 72 28 27 54 72 69 65 64 20 74 6f 20 67 65 74 20 65 6c 65 6d 65 6e 74 20 77 69 74 68 20 69 64 20 6f 66 20 22 25 73 22 20 62 75 74 20 69 74 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 6f 6e 20 74 68 65 20 70 61 67 65 27 2c 53 74 72 69 6e 67 28 61 29 29 3b 61 2e 74 61 61 6c 4f 70 63 6f 64 65 73 3d 61 2e 74 61 61 6c 4f 70 63 6f 64 65 73 7c 7c 5b 5d 3b 61 2e 74 61 61 6c 4f 70 63 6f 64 65 73 3d 5b 63 28 22 66 62 2d 65 72 72 6f 72 2d 6c 69 74 65 22 29 2e 54 41 41 4c 4f 70 63 6f 64 65 2e 50 52 45 56 49 4f 55 53 5f 46 49 4c 45 5d 3b 74 68 72 6f 77 20 61 7d 72 65 74 Data Ascii: etElementById(a):a)}function h(a,b){if(!b){a=c("fb-error-lite").err('Tried to get element with id of "%s" but it is not present on the page',String(a));a.taalOpcodes=a.taalOpcodes\|\|[];a.taalOpcodes=[c("fb-error-lite").TAALOpcode.PREVIOUS_FILE];throw a}ret
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 73 29 3b 61 2e 73 65 72 76 65 72 48 61 73 68 21 3d 6e 75 6c 6c 26 26 28 63 2e 73 65 72 76 65 72 48 61 73 68 3d 61 2e 73 65 72 76 65 72 48 61 73 68 29 3b 61 2e 77 69 6e 64 6f 77 4c 6f 63 61 74 69 6f 6e 55 52 4c 21 3d 6e 75 6c 6c 26 26 28 63 2e 77 69 6e 64 6f 77 4c 6f 63 61 74 69 6f 6e 55 52 4c 3d 61 2e 77 69 6e 64 6f 77 4c 6f 63 61 74 69 6f 6e 55 52 4c 29 3b 61 2e 6c 6f 67 67 69 6e 67 53 6f 75 72 63 65 21 3d 6e 75 6c 6c 26 26 28 63 2e 6c 6f 67 67 69 6e 67 53 6f 75 72 63 65 3d 61 2e 6c 6f 67 67 69 6e 67 53 6f 75 72 63 65 29 3b 72 65 74 75 72 6e 20 63 7d 66 75 6e 63 74 69 6f 6e 20 78 61 28 61 2c 62 2c 63 29 7b 76 61 72 20 64 3b 74 61 2b 2b 3b 69 66 28 62 2e 73 61 6d 70 6c 65 5f 77 65 69 67 68 74 3d 3d 3d 30 29 72 65 74 75 72 6e 21 31 3b 76 61 72 20 65 3d 76 Data Ascii: s);a.serverHash!=null&&(c.serverHash=a.serverHash);a.windowLocationURL!=null&&(c.windowLocationURL=a.windowLocationURL);a.loggingSource!=null&&(c.loggingSource=a.loggingSource);return c}function xa(a,b,c){var d;ta++;if(b.sample_weight===0)return!1;var e=v
2025-04-21 19:56:02 UTC	1500	IN	Data Raw: 61 72 20 65 3d 63 3d 3d 3d 22 73 74 61 74 65 22 7c 7c 63 3d 3d 3d 22 70 65 72 73 69 73 74 65 6e 74 22 3b 74 68 69 73 2e 24 34 2e 70 75 73 68 28 7b 7d 29 3b 66 6f 72 28 76 61 72 20 66 3d 30 3b 66 3c 61 2e 6c 65 6e 67 74 68 3b 66 2b 2b 29 7b 76 61 72 20 67 3d 61 5b 66 5d 3b 67 7c 7c 68 28 30 2c 31 39 37 30 2c 67 29 3b 74 68 69 73 2e 24 33 2e 73 65 74 48 6f 6c 64 69 6e 67 42 65 68 61 76 69 6f 72 28 67 2c 63 29 3b 74 68 69 73 2e 24 32 2e 65 6d 69 74 41 6e 64 48 6f 6c 64 28 67 2c 62 29 3b 74 68 69 73 2e 24 36 28 67 2c 62 2c 65 29 7d 67 3d 74 68 69 73 2e 24 34 2e 70 6f 70 28 29 3b 72 65 74 75 72 6e 20 64 3f 67 3a 67 5b 61 5b 30 5d 5d 7d 3b 62 2e 71 75 65 72 79 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 74 68 69 73 2e 24 33 2e 67 65 74 48 6f 6c 64 Data Ascii: ar e=c==="state"\|\|c==="persistent";this.$4.push({});for(var f=0;f<a.length;f++){var g=a[f];g\|\|h(0,1970,g);this.$3.setHoldingBehavior(g,c);this.$2.emitAndHold(g,b);this.$6(g,b,e)}g=this.$4.pop();return d?g:g[a[0]]};b.query=function(a){var b=this.$3.getHold
2025-04-21 19:56:02 UTC	14884	IN	Data Raw: 6d 65 6e 74 73 29 7d 3b 61 2e 24 35 3d 66 75 6e 63 74 69 6f 6e 28 62 2c 63 2c 64 29 7b 72 65 74 75 72 6e 20 61 2e 70 72 6f 74 6f 74 79 70 65 2e 24 35 2e 61 70 70 6c 79 28 6b 28 74 68 69 73 29 2c 61 72 67 75 6d 65 6e 74 73 29 7d 3b 72 65 74 75 72 6e 20 61 7d 28 29 2c 6d 3d 66 75 6e 63 74 69 6f 6e 28 62 29 7b 62 61 62 65 6c 48 65 6c 70 65 72 73 2e 69 6e 68 65 72 69 74 73 4c 6f 6f 73 65 28 61 2c 62 29 3b 66 75 6e 63 74 69 6f 6e 20 61 28 29 7b 76 61 72 20 61 3b 61 3d 62 2e 63 61 6c 6c 28 74 68 69 73 29 7c 7c 74 68 69 73 3b 61 2e 24 41 72 62 69 74 65 72 45 76 65 6e 74 48 6f 6c 64 65 72 31 3d 7b 7d 3b 72 65 74 75 72 6e 20 61 7d 76 61 72 20 63 3d 61 2e 70 72 6f 74 6f 74 79 70 65 3b 63 2e 73 65 74 48 6f 6c 64 69 6e 67 42 65 68 61 76 69 6f 72 3d 66 75 6e 63 74 69 Data Ascii: ments)};a.$5=function(b,c,d){return a.prototype.$5.apply(k(this),arguments)};return a}(),m=function(b){babelHelpers.inheritsLoose(a,b);function a(){var a;a=b.call(this)\|\|this;a.$ArbiterEventHolder1={};return a}var c=a.prototype;c.setHoldingBehavior=functi
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 61 62 65 6c 48 65 6c 70 65 72 73 5b 22 65 78 74 65 6e 64 73 22 5d 28 7b 7d 2c 62 2e 73 65 74 50 72 6f 70 73 2c 61 2e 73 65 74 50 72 6f 70 73 29 2c 63 3d 61 29 3a 61 21 3d 6e 75 6c 6c 3f 63 3d 61 3a 62 21 3d 6e 75 6c 6c 26 26 28 63 3d 62 29 3b 72 65 74 75 72 6e 20 63 7d 3b 72 65 74 75 72 6e 20 61 7d 28 29 3b 62 2e 45 6d 70 74 79 54 69 6d 69 6e 67 41 6e 6e 6f 74 61 74 69 6f 6e 73 3d 61 3b 62 2e 45 6d 70 74 79 54 72 61 63 65 54 69 6d 69 6e 67 41 6e 6e 6f 74 61 74 69 6f 6e 73 3d 61 3b 62 2e 54 72 61 63 65 54 69 6d 69 6e 67 41 6e 6e 6f 74 61 74 69 6f 6e 73 3d 62 3b 66 5b 22 64 65 66 61 75 6c 74 22 5d 3d 62 7d 29 2c 36 36 29 3b 0a 5f 5f 64 28 22 42 61 73 65 44 65 73 65 72 69 61 6c 69 7a 65 50 48 50 51 75 65 72 79 44 61 74 61 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 Data Ascii: abelHelpers["extends"]({},b.setProps,a.setProps),c=a):a!=null?c=a:b!=null&&(c=b);return c};return a}();b.EmptyTimingAnnotations=a;b.EmptyTraceTimingAnnotations=a;b.TraceTimingAnnotations=b;f["default"]=b}),66);__d("BaseDeserializePHPQueryData",[],(functi
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 72 20 63 3d 74 68 69 73 2e 67 65 74 44 6f 6d 61 69 6e 28 29 3b 72 65 74 75 72 6e 20 62 2e 69 73 44 6f 6d 61 69 6e 53 75 62 64 6f 6d 61 69 6e 4f 66 44 6f 6d 61 69 6e 28 63 2c 61 2c 74 68 69 73 2e 24 55 52 49 42 61 73 65 24 70 5f 31 29 7d 3b 62 2e 69 73 44 6f 6d 61 69 6e 53 75 62 64 6f 6d 61 69 6e 4f 66 44 6f 6d 61 69 6e 3d 66 75 6e 63 74 69 6f 6e 28 61 2c 63 2c 64 29 7b 69 66 28 63 3d 3d 3d 22 22 7c 7c 61 3d 3d 3d 22 22 29 72 65 74 75 72 6e 21 31 3b 69 66 28 61 2e 65 6e 64 73 57 69 74 68 28 63 29 29 7b 76 61 72 20 65 3d 61 2e 6c 65 6e 67 74 68 2c 66 3d 63 2e 6c 65 6e 67 74 68 2c 67 3d 65 2d 66 2d 31 3b 69 66 28 65 3d 3d 3d 66 7c 7c 61 5b 67 5d 3d 3d 3d 22 2e 22 29 7b 65 3d 6e 65 77 20 62 28 6e 75 6c 6c 2c 64 29 3b 65 2e 73 65 74 44 6f 6d 61 69 6e 28 63 29 Data Ascii: r c=this.getDomain();return b.isDomainSubdomainOfDomain(c,a,this.$URIBase$p_1)};b.isDomainSubdomainOfDomain=function(a,c,d){if(c===""\|\|a==="")return!1;if(a.endsWith(c)){var e=a.length,f=c.length,g=e-f-1;if(e===f\|\|a[g]==="."){e=new b(null,d);e.setDomain(c)
2025-04-21 19:56:02 UTC	14884	IN	Data Raw: 75 6c 65 73 28 5b 61 2e 67 65 74 4d 6f 64 75 6c 65 49 64 41 73 52 65 66 28 29 5d 2c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 64 28 22 4a 53 52 65 73 6f 75 72 63 65 45 76 65 6e 74 73 22 29 2e 6e 6f 74 69 66 79 28 61 2e 24 31 2c 63 2c 22 50 52 4f 4d 49 53 45 5f 52 45 53 4f 4c 56 45 44 22 29 2c 62 28 65 29 7d 2c 28 65 3d 61 2e 24 32 29 21 3d 6e 75 6c 6c 3f 65 3a 6e 29 7d 29 7d 29 3b 28 68 7c 7c 28 68 3d 64 28 22 50 72 6f 6d 69 73 65 41 6e 6e 6f 74 61 74 65 22 29 29 29 2e 73 65 74 44 69 73 70 6c 61 79 4e 61 6d 65 28 65 2c 22 42 6f 6f 74 6c 6f 61 64 28 22 2b 74 68 69 73 2e 67 65 74 4d 6f 64 75 6c 65 49 64 28 29 2b 22 29 22 29 3b 72 65 74 75 72 6e 20 65 7d 3b 65 2e 70 72 65 6c 6f 61 64 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 2c 62 3d 74 68 69 73 2c 63 3d Data Ascii: ules([a.getModuleIdAsRef()],function(e){d("JSResourceEvents").notify(a.$1,c,"PROMISE_RESOLVED"),b(e)},(e=a.$2)!=null?e:n)})});(h\|\|(h=d("PromiseAnnotate"))).setDisplayName(e,"Bootload("+this.getModuleId()+")");return e};e.preload=function(){var a,b=this,c=

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:02 UTC	599	OUT	GET /rsrc.php/v4i7M54/yq/l/en_US/ZoRrZUauHNU.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:02 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: l7+2yXoaAEi4C9fy6jYTYw== Expires: Sat, 18 Apr 2026 06:33:45 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: 3BAK64lOjm8nokRScyA++qQ8Tx7Cjtnywtv4/DLxjL31NyUTe6csd/4wxatMJkQSsVRiPAXIYk6SK5nAw/w7qg== Date: Mon, 21 Apr 2025 19:56:02 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 55600
2025-04-21 19:56:02 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:02 UTC	15860	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 58 41 64 73 43 4d 41 63 63 6f 75 6e 74 53 65 74 74 69 6e 67 73 50 61 67 65 43 6f 6e 74 72 6f 6c 6c 65 72 52 6f 75 74 65 42 75 69 6c 64 65 72 22 2c 5b 22 6a 73 52 6f 75 74 65 42 75 69 6c 64 65 72 22 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 2c 67 29 7b 61 3d 63 28 22 6a 73 52 6f 75 74 65 42 75 69 6c 64 65 72 22 29 28 22 2f 61 64 73 2f 6d 61 6e 61 67 65 72 2f 61 63 63 6f 75 6e 74 2f 73 65 74 74 69 6e 67 73 2f 22 2c 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 7b 74 61 62 3a 22 69 6e 66 6f 72 6d 61 74 69 6f 6e 22 2c 68 69 67 68 6c 69 67 68 74 5f 74 61 78 5f 69 64 3a 21 31 7d 29 2c 6e 65 77 20 53 65 74 28 5b 22 68 69 67 68 6c 69 67 68 74 5f 74 61 78 5f 69 64 22 5d 29 Data Ascii: /FB_PKG_DELIM/__d("XAdsCMAccountSettingsPageControllerRouteBuilder",["jsRouteBuilder"],(function(a,b,c,d,e,f,g){a=c("jsRouteBuilder")("/ads/manager/account/settings/",Object.freeze({tab:"information",highlight_tax_id:!1}),new Set(["highlight_tax_id"])
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 6f 72 48 61 6e 64 6c 65 72 3d 6e 75 6c 6c 3b 74 68 69 73 2e 74 69 6d 65 6f 75 74 48 61 6e 64 6c 65 72 3d 6e 75 6c 6c 3b 74 68 69 73 2e 69 6e 74 65 72 63 65 70 74 48 61 6e 64 6c 65 72 3d 66 3b 74 68 69 73 2e 66 69 6e 61 6c 6c 79 48 61 6e 64 6c 65 72 3d 66 3b 74 68 69 73 2e 61 62 6f 72 74 48 61 6e 64 6c 65 72 3d 66 3b 74 68 69 73 2e 73 65 72 76 65 72 44 69 61 6c 6f 67 43 61 6e 63 65 6c 48 61 6e 64 6c 65 72 3d 6e 75 6c 6c 3b 74 68 69 73 2e 72 65 6c 61 74 69 76 65 54 6f 3d 6e 75 6c 6c 3b 74 68 69 73 2e 73 74 61 74 75 73 45 6c 65 6d 65 6e 74 3d 6e 75 6c 6c 3b 74 68 69 73 2e 73 74 61 74 75 73 43 6c 61 73 73 3d 22 22 3b 74 68 69 73 2e 64 61 74 61 3d 7b 7d 3b 74 68 69 73 2e 68 65 61 64 65 72 73 3d 7b 7d 3b 74 68 69 73 2e 66 69 6c 65 3d 6e 75 6c 6c 3b 74 68 69 73 Data Ascii: orHandler=null;this.timeoutHandler=null;this.interceptHandler=f;this.finallyHandler=f;this.abortHandler=f;this.serverDialogCancelHandler=null;this.relativeTo=null;this.statusElement=null;this.statusClass="";this.data={};this.headers={};this.file=null;this
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 6e 64 6c 65 72 28 62 29 2e 73 65 74 50 72 6f 67 72 65 73 73 48 61 6e 64 6c 65 72 28 62 29 2e 73 65 74 55 70 6c 6f 61 64 50 72 6f 67 72 65 73 73 48 61 6e 64 6c 65 72 28 62 29 3b 62 3d 61 2e 74 72 61 6e 73 70 6f 72 74 3b 62 26 26 28 61 2e 5f 72 65 71 75 65 73 74 41 62 6f 72 74 65 64 3d 21 30 2c 78 28 62 29 26 26 64 65 6c 65 74 65 20 62 2e 6f 6e 70 72 6f 67 72 65 73 73 2c 79 28 62 29 26 26 64 65 6c 65 74 65 20 62 2e 75 70 6c 6f 61 64 2e 6f 6e 70 72 6f 67 72 65 73 73 2c 62 2e 61 62 6f 72 74 28 29 29 3b 61 2e 61 62 6f 72 74 48 61 6e 64 6c 65 72 28 29 3b 4b 2e 75 6e 73 63 68 65 64 75 6c 65 28 61 29 7d 29 7d 3b 65 2e 73 65 74 4e 65 63 74 61 72 4d 6f 64 75 6c 65 44 61 74 61 53 61 66 65 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 74 68 69 73 2e 73 65 Data Ascii: ndler(b).setProgressHandler(b).setUploadProgressHandler(b);b=a.transport;b&&(a._requestAborted=!0,x(b)&&delete b.onprogress,y(b)&&delete b.upload.onprogress,b.abort());a.abortHandler();K.unschedule(a)})};e.setNectarModuleDataSafe=function(a){var b=this.se
2025-04-21 19:56:02 UTC	6971	IN	Data Raw: 61 63 6b 4f 6e 46 69 72 73 74 50 61 72 74 79 43 6f 6f 6b 69 65 46 6c 75 73 68 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 28 68 7c 7c 28 68 3d 63 28 22 43 6f 6f 6b 69 65 43 6f 6e 73 65 6e 74 22 29 29 29 2e 68 61 73 46 69 72 73 74 50 61 72 74 79 43 6f 6e 73 65 6e 74 28 29 3f 61 28 29 3a 28 6b 2e 68 61 73 28 31 29 7c 7c 6b 2e 73 65 74 28 31 2c 6e 65 77 28 63 28 22 53 75 62 73 63 72 69 70 74 69 6f 6e 4c 69 73 74 22 29 29 28 29 29 2c 63 28 22 6e 75 6c 6c 74 68 72 6f 77 73 22 29 28 6b 2e 67 65 74 28 31 29 29 2e 61 64 64 28 61 29 29 7d 2c 72 65 67 69 73 74 65 72 43 61 6c 6c 62 61 63 6b 4f 6e 43 6f 6f 6b 69 65 46 6c 75 73 68 57 69 74 68 49 6e 74 65 67 72 61 74 69 6f 6e 73 3a 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 76 61 72 20 64 3d 28 68 7c 7c 28 68 3d 63 28 22 43 Data Ascii: ackOnFirstPartyCookieFlush:function(a){(h\|\|(h=c("CookieConsent"))).hasFirstPartyConsent()?a():(k.has(1)\|\|k.set(1,new(c("SubscriptionList"))()),c("nullthrows")(k.get(1)).add(a))},registerCallbackOnCookieFlushWithIntegrations:function(a,b){var d=(h\|\|(h=c("C

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:02 UTC	588	OUT	GET /rsrc.php/v4/yv/r/38iJBCbqU_Z.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:02 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: 1NPlOmmK7y+a4IkTX7oKiQ== Expires: Tue, 21 Apr 2026 07:59:13 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: 4+jQflG8ujj8czV/slGVnvAhHJWQ69eCFa6ELw+SnXJMLQlSkc0GHy1u2etQgGORpt47p5dHHH1an9B+69aRBw== Date: Mon, 21 Apr 2025 19:56:02 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3409, tp=-1, tpl=-1, uplat=6, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 58225
2025-04-21 19:56:02 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:02 UTC	15872	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 43 6f 6d 65 74 4c 72 75 43 61 63 68 65 22 2c 5b 22 72 65 63 6f 76 65 72 61 62 6c 65 56 69 6f 6c 61 74 69 6f 6e 22 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 2c 67 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 68 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 61 28 61 2c 62 29 7b 74 68 69 73 2e 24 31 3d 61 2c 74 68 69 73 2e 24 32 3d 62 2c 61 3c 3d 30 26 26 63 28 22 72 65 63 6f 76 65 72 61 62 6c 65 56 69 6f 6c 61 74 69 6f 6e 22 29 28 22 43 6f 6d 65 74 4c 72 75 43 61 63 68 65 3a 20 55 6e 61 62 6c 65 20 74 6f 20 63 72 65 61 74 65 20 69 6e 73 74 61 6e 63 65 20 6f 66 20 63 61 63 68 65 20 77 69 74 68 20 7a 65 72 6f 20 6f 72 20 6e 65 67 61 74 Data Ascii: /FB_PKG_DELIM/__d("CometLruCache",["recoverableViolation"],(function(a,b,c,d,e,f,g){"use strict";var h=function(){function a(a,b){this.$1=a,this.$2=b,a<=0&&c("recoverableViolation")("CometLruCache: Unable to create instance of cache with zero or negat
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 67 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 61 28 61 2c 62 29 7b 74 68 69 73 2e 24 31 3d 61 2c 74 68 69 73 2e 5f 5f 65 72 72 6f 72 4c 69 73 74 65 6e 65 72 3d 62 2c 74 68 69 73 2e 24 33 3d 21 31 2c 74 68 69 73 2e 24 32 3d 6e 75 6c 6c 7d 76 61 72 20 62 3d 61 2e 70 72 6f 74 6f 74 79 70 65 3b 62 2e 66 6c 61 74 74 65 6e 54 6f 41 72 72 61 79 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 61 2e 66 6c 61 74 74 65 6e 54 6f 41 72 72 61 79 28 74 68 69 73 2e 24 31 29 7d 3b 62 2e 67 65 74 43 6f 6e 74 65 6e 74 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 24 31 7d 3b 62 2e 74 6f 53 74 72 69 6e 67 3d 66 75 Data Ascii: tion(a,b,c,d,e,f){"use strict";var g=function(){function a(a,b){this.$1=a,this.__errorListener=b,this.$3=!1,this.$2=null}var b=a.prototype;b.flattenToArray=function(){return a.flattenToArray(this.$1)};b.getContents=function(){return this.$1};b.toString=fu
2025-04-21 19:56:02 UTC	16384	IN	Data Raw: 5f 5f 64 28 22 47 65 6e 64 65 72 43 6f 6e 73 74 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 65 2e 65 78 70 6f 72 74 73 3d 7b 4e 4f 54 5f 41 5f 50 45 52 53 4f 4e 3a 30 2c 46 45 4d 41 4c 45 5f 53 49 4e 47 55 4c 41 52 3a 31 2c 4d 41 4c 45 5f 53 49 4e 47 55 4c 41 52 3a 32 2c 46 45 4d 41 4c 45 5f 53 49 4e 47 55 4c 41 52 5f 47 55 45 53 53 3a 33 2c 4d 41 4c 45 5f 53 49 4e 47 55 4c 41 52 5f 47 55 45 53 53 3a 34 2c 4d 49 58 45 44 5f 55 4e 4b 4e 4f 57 4e 3a 35 2c 4e 45 55 54 45 52 5f 53 49 4e 47 55 4c 41 52 3a 36 2c 55 4e 4b 4e 4f 57 4e 5f 53 49 4e 47 55 4c 41 52 3a 37 2c 46 45 4d 41 4c 45 5f 50 4c 55 52 41 4c 3a 38 2c 4d 41 4c 45 5f 50 4c 55 52 41 4c 3a 39 2c 4e 45 55 54 45 52 5f 50 4c 55 52 41 4c 3a 31 30 2c 55 4e 4b 4e 4f Data Ascii: __d("GenderConst",[],(function(a,b,c,d,e,f){e.exports={NOT_A_PERSON:0,FEMALE_SINGULAR:1,MALE_SINGULAR:2,FEMALE_SINGULAR_GUESS:3,MALE_SINGULAR_GUESS:4,MIXED_UNKNOWN:5,NEUTER_SINGULAR:6,UNKNOWN_SINGULAR:7,FEMALE_PLURAL:8,MALE_PLURAL:9,NEUTER_PLURAL:10,UNKNO
2025-04-21 19:56:02 UTC	9584	IN	Data Raw: 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3b 72 65 74 75 72 6e 28 61 3d 28 67 7c 7c 28 67 3d 62 28 22 43 75 72 72 65 6e 74 55 73 65 72 49 6e 69 74 69 61 6c 44 61 74 61 22 29 29 29 2e 41 42 52 41 5f 53 54 4f 52 41 47 45 5f 49 44 29 21 3d 6e 75 6c 6c 3f 61 3a 22 30 22 7d 2c 67 65 74 41 52 49 44 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3b 72 65 74 75 72 6e 28 61 3d 28 67 7c 7c 28 67 3d 62 28 22 43 75 72 72 65 6e 74 55 73 65 72 49 6e 69 74 69 61 6c 44 61 74 61 22 29 29 29 2e 41 52 5f 49 44 29 21 3d 6e 75 6c 6c 3f 61 3a 22 30 22 7d 2c 67 65 74 45 50 4f 55 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3b 72 65 74 75 72 6e 28 61 3d 28 67 7c 7c 28 67 3d 62 28 22 43 75 72 72 65 6e 74 55 73 65 72 49 6e 69 74 69 61 6c 44 61 74 61 22 29 29 29 Data Ascii: :function(){var a;return(a=(g\|\|(g=b("CurrentUserInitialData"))).ABRA_STORAGE_ID)!=null?a:"0"},getARID:function(){var a;return(a=(g\|\|(g=b("CurrentUserInitialData"))).AR_ID)!=null?a:"0"},getEPOU:function(){var a;return(a=(g\|\|(g=b("CurrentUserInitialData")))

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	588	OUT	GET /rsrc.php/v4/yu/r/xOsYdAy1DIT.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1944	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: ++ZzHH7NqgLfBEt9/vG1ZQ== Expires: Thu, 16 Apr 2026 12:34:51 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: Di9XYTxDd6TKUBLP4nw6kXPFPTnQYxRMXkykstOGmgGorz0+sBUuWAyEhAlV1D+g183LGcwRGZqnF+XZt6IdlA== Date: Mon, 21 Apr 2025 19:56:03 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=3, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 7293
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:03 UTC	7292	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 45 76 65 6e 74 45 6d 69 74 74 65 72 57 69 74 68 56 61 6c 69 64 61 74 69 6f 6e 22 2c 5b 22 42 61 73 65 45 76 65 6e 74 45 6d 69 74 74 65 72 22 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 61 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 62 61 62 65 6c 48 65 6c 70 65 72 73 2e 69 6e 68 65 72 69 74 73 4c 6f 6f 73 65 28 62 2c 61 29 3b 66 75 6e 63 74 69 6f 6e 20 62 28 62 2c 63 29 7b 76 61 72 20 64 3b 64 3d 61 2e 63 61 6c 6c 28 74 68 69 73 29 7c 7c 74 68 69 73 3b 64 2e 24 45 76 65 6e 74 45 6d 69 74 74 65 72 57 69 74 68 56 61 6c 69 64 61 74 69 6f 6e 31 3d 4f 62 6a 65 63 74 2e 6b 65 79 73 28 62 29 3b 64 2e 24 45 76 65 6e 74 45 6d 69 74 Data Ascii: /FB_PKG_DELIM/__d("EventEmitterWithValidation",["BaseEventEmitter"],(function(a,b,c,d,e,f){"use strict";a=function(a){babelHelpers.inheritsLoose(b,a);function b(b,c){var d;d=a.call(this)\|\|this;d.$EventEmitterWithValidation1=Object.keys(b);d.$EventEmit

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	640	OUT	GET /security/hsts-pixel.gif HTTP/1.1 Host: facebook.com Connection: keep-alive sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9 Cookie: datr=0aIGaNoM23Qx8OdBY3k9dspe
2025-04-21 19:56:03 UTC	535	IN	HTTP/1.1 200 OK Vary: Accept-Encoding Content-Type: image/gif reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", permissions_policy="https://www.facebook.com/ajax/browser_error_reports/" report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":21600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
2025-04-21 19:56:03 UTC	2079	IN	Data Raw: 63 6f 6e 74 65 6e 74 2d 73 65 63 75 72 69 74 79 2d 70 6f 6c 69 63 79 3a 20 64 65 66 61 75 6c 74 2d 73 72 63 20 62 6c 6f 62 3a 20 27 73 65 6c 66 27 20 68 74 74 70 73 3a 2f 2f 2a 2e 66 62 73 62 78 2e 63 6f 6d 20 2a 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 20 2a 2e 66 62 63 64 6e 2e 6e 65 74 3b 73 63 72 69 70 74 2d 73 72 63 20 2a 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 20 2a 2e 66 62 63 64 6e 2e 6e 65 74 20 2a 2e 66 61 63 65 62 6f 6f 6b 2e 6e 65 74 20 31 32 37 2e 30 2e 30 2e 31 3a 2a 20 27 6e 6f 6e 63 65 2d 78 63 63 34 32 69 6b 35 27 20 62 6c 6f 62 3a 20 64 61 74 61 3a 20 27 73 65 6c 66 27 20 63 6f 6e 6e 65 63 74 2e 66 61 63 65 62 6f 6f 6b 2e 6e 65 74 20 27 77 61 73 6d 2d 75 6e 73 61 66 65 2d 65 76 61 6c 27 20 68 74 74 70 73 3a 2f 2f 2a 2e 67 6f 6f 67 6c 65 2d Data Ascii: content-security-policy: default-src blob: 'self' https://.fbsbx.com .facebook.com .fbcdn.net;script-src .facebook.com .fbcdn.net .facebook.net 127.0.0.1:* 'nonce-xcc42ik5' blob: data: 'self' connect.facebook.net 'wasm-unsafe-eval' https://*.google-
2025-04-21 19:56:03 UTC	1715	IN	Data Raw: 70 65 72 6d 69 73 73 69 6f 6e 73 2d 70 6f 6c 69 63 79 3a 20 61 63 63 65 6c 65 72 6f 6d 65 74 65 72 3d 28 29 2c 20 61 74 74 72 69 62 75 74 69 6f 6e 2d 72 65 70 6f 72 74 69 6e 67 3d 28 73 65 6c 66 29 2c 20 61 75 74 6f 70 6c 61 79 3d 28 29 2c 20 62 6c 75 65 74 6f 6f 74 68 3d 28 29 2c 20 62 72 6f 77 73 69 6e 67 2d 74 6f 70 69 63 73 3d 28 73 65 6c 66 29 2c 20 63 61 6d 65 72 61 3d 28 73 65 6c 66 29 2c 20 63 68 2d 64 65 76 69 63 65 2d 6d 65 6d 6f 72 79 3d 28 29 2c 20 63 68 2d 64 6f 77 6e 6c 69 6e 6b 3d 28 29 2c 20 63 68 2d 64 70 72 3d 28 29 2c 20 63 68 2d 65 63 74 3d 28 29 2c 20 63 68 2d 72 74 74 3d 28 29 2c 20 63 68 2d 73 61 76 65 2d 64 61 74 61 3d 28 29 2c 20 63 68 2d 75 61 2d 61 72 63 68 3d 28 29 2c 20 63 68 2d 75 61 2d 62 69 74 6e 65 73 73 3d 28 29 2c 20 63 Data Ascii: permissions-policy: accelerometer=(), attribution-reporting=(self), autoplay=(), bluetooth=(), browsing-topics=(self), camera=(self), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), c
2025-04-21 19:56:03 UTC	54	IN	Data Raw: 32 62 0d 0a 47 49 46 38 39 61 01 00 01 00 80 00 00 00 00 00 00 00 00 21 f9 04 01 00 00 00 00 2c 00 00 00 00 01 00 01 00 00 02 02 44 01 00 3b 0d 0a 30 0d 0a 0d 0a Data Ascii: 2bGIF89a!,D;0

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	695	OUT	GET /rsrc.php/v4/yP/r/ZQxGeuP1tWI.png HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Sec-Fetch-Storage-Access: active Referer: https://static.xx.fbcdn.net/rsrc.php/v5/yH/l/0,cross/M8hCN_gO0fP.css Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1877	IN	HTTP/1.1 200 OK Content-Type: image/png Access-Control-Allow-Origin: * Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: dR02ejCkPHRONI/PtMuSOw== Expires: Thu, 16 Apr 2026 12:32:44 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: D70dLnyRTSbnTvAUun2AwSeCef90B1unxuIBRZywe0/VfhSnVOQ+2snVKkp/luEdnpAe9VQg3pbBsQISGJhN3A== Date: Mon, 21 Apr 2025 19:56:03 GMT X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=0, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 4185
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 89 Data Ascii:
2025-04-21 19:56:03 UTC	4184	IN	Data Raw: 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 01 1b 00 00 01 07 08 03 00 00 00 a9 e7 12 f3 00 00 03 00 50 4c 54 45 4c 69 71 1e 29 33 2a 31 38 58 5f 66 7e 83 85 d1 d7 d9 9a 9f a1 e0 e5 e7 1a 25 2f 39 40 47 1b 26 30 8e 93 95 e4 e8 eb 63 63 63 86 8b 8d 6e 75 7d ed f2 f5 c0 c0 c0 f3 f6 f5 af b4 b6 43 4a 51 21 2c 36 cf d4 d7 c4 c9 cc 3f 46 4d 37 3e 45 21 28 2e 4c 53 5a 1d 27 32 ab b0 b2 3a 41 48 68 6f 77 33 3a 41 81 86 88 8c 90 93 26 2d 33 95 9a 9c bf c5 c7 2f 37 3d 62 6a 71 b4 b9 bc e3 e5 e8 d7 d9 dc c9 cf d1 46 4d 54 2c 33 39 27 32 3c bc c1 c4 99 9e a0 65 6d 74 ee f3 f6 cc d1 d4 b1 b6 b9 3c 44 4a e5 ea ed ee f1 ed b6 bb be a5 aa ad 48 4f 56 79 7e 80 24 2e 39 9c a1 a3 ec f1 f4 54 5b 63 d8 dd e0 53 5b 62 da df e2 dc e2 e4 5b 63 6a 9f a4 a6 e6 ec ee e7 ed Data Ascii: PNGIHDRPLTELiq)3*18X_f~%/9@G&0cccnu}CJQ!,6?FM7>E!(.LSZ'2:AHhow3:A&-3/7=bjqFMT,39'2<emt<DJHOVy~$.9T[cS[b[cj

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	695	OUT	GET /rsrc.php/v4/yB/r/sQkNqpqx9ne.png HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Sec-Fetch-Storage-Access: active Referer: https://static.xx.fbcdn.net/rsrc.php/v5/yu/l/0,cross/7dKlqSVaGkF.css Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1877	IN	HTTP/1.1 200 OK Content-Type: image/png Access-Control-Allow-Origin: * Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: qSq3s9yXNN/ZSCGpU/NA/w== Expires: Sat, 18 Apr 2026 13:37:28 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: 8beZr+lebwZ9YjZ531vck9Y5n986haAuUdHCf7rdBP2SJjELPSzV+zRYDAb0VZQ8guiZ/8HtpB2ilWXEu7O46w== Date: Mon, 21 Apr 2025 19:56:03 GMT X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=0, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 3766
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 89 Data Ascii:
2025-04-21 19:56:03 UTC	3765	IN	Data Raw: 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 ab 00 00 00 38 08 03 00 00 00 b5 c4 f8 c6 00 00 02 f4 50 4c 54 45 47 70 4c ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff Data Ascii: PNGIHDR8PLTEGpL

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	588	OUT	GET /rsrc.php/v4/yj/r/CA1slfevTeZ.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: chCMhioq8Ge6E9fdbgfJWw== Expires: Thu, 16 Apr 2026 08:32:29 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: Cv7xXDzZisg8/Idp6ntZxny0VlMManUSJvbdCHkk7TmXF/X+SIpqPte0AUAVMPOCxzRP9yieB5fWpJJS3UtOwg== Date: Mon, 21 Apr 2025 19:56:03 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=148, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 31913
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15871	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 44 61 6d 65 72 61 75 4c 65 76 65 6e 73 68 74 65 69 6e 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 66 75 6e 63 74 69 6f 6e 20 61 28 61 2c 62 29 7b 69 66 28 61 2e 6c 65 6e 67 74 68 3d 3d 3d 30 29 72 65 74 75 72 6e 20 62 2e 6c 65 6e 67 74 68 3b 69 66 28 62 2e 6c 65 6e 67 74 68 3d 3d 3d 30 29 72 65 74 75 72 6e 20 61 2e 6c 65 6e 67 74 68 3b 69 66 28 61 3d 3d 3d 62 29 72 65 74 75 72 6e 20 30 3b 76 61 72 20 63 2c 64 2c 65 3d 5b 5d 3b 65 5b 30 5d 3d 5b 5d 3b 65 5b 31 5d 3d 5b 5d 3b 65 5b 32 5d 3d 5b 5d 3b 66 6f 72 28 64 3d 30 3b 64 3c 3d 62 2e 6c 65 6e 67 74 68 3b 64 2b 2b 29 65 5b 30 5d 5b 64 5d 3d 64 3b 66 6f 72 28 63 3d 31 3b 63 3c 3d 61 2e 6c 65 6e 67 Data Ascii: /FB_PKG_DELIM/__d("DamerauLevenshtein",[],(function(a,b,c,d,e,f){function a(a,b){if(a.length===0)return b.length;if(b.length===0)return a.length;if(a===b)return 0;var c,d,e=[];e[0]=[];e[1]=[];e[2]=[];for(d=0;d<=b.length;d++)e[0][d]=d;for(c=1;c<=a.leng
2025-04-21 19:56:04 UTC	16041	IN	Data Raw: 65 74 49 6e 64 65 78 28 66 29 2e 73 65 74 52 65 66 65 72 72 65 72 28 65 29 2e 6c 6f 67 28 29 2c 63 28 22 67 6f 55 52 49 22 29 28 64 29 7d 66 75 6e 63 74 69 6f 6e 20 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 2c 67 29 7b 64 3f 61 2e 6f 6e 63 6c 69 63 6b 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 61 2e 70 72 65 76 65 6e 74 44 65 66 61 75 6c 74 28 29 2c 61 2e 73 74 6f 70 50 72 6f 70 61 67 61 74 69 6f 6e 28 29 2c 6b 28 6e 75 6c 6c 2c 65 2c 62 29 7d 3a 61 2e 6f 6e 63 6c 69 63 6b 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 61 2e 70 72 65 76 65 6e 74 44 65 66 61 75 6c 74 28 29 2c 61 2e 73 74 6f 70 50 72 6f 70 61 67 61 74 69 6f 6e 28 29 2c 6d 28 62 2c 63 2c 66 2c 65 2c 67 29 7d 7d 67 2e 73 65 74 58 6d 6f 64 65 3d 61 3b 67 2e 65 6e 63 6f 64 65 53 70 65 63 69 61 6c 43 68 61 72 Data Ascii: etIndex(f).setReferrer(e).log(),c("goURI")(d)}function n(a,b,c,d,e,f,g){d?a.onclick=function(a){a.preventDefault(),a.stopPropagation(),k(null,e,b)}:a.onclick=function(a){a.preventDefault(),a.stopPropagation(),m(b,c,f,e,g)}}g.setXmode=a;g.encodeSpecialChar

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	588	OUT	GET /rsrc.php/v4/yn/r/CcWjrd6IWm3.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: bznQVuRdo38CjRffeVsH+A== Expires: Thu, 16 Apr 2026 08:01:19 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: dmDOJUY35Z0piTzmg1PFj7niugyqMXcu/ejAc7twE3ru6TyWJqvvbTv31p50CWrb3QUqQe54sC2Aeki9hKdR9g== Date: Mon, 21 Apr 2025 19:56:03 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3409, tp=-1, tpl=-1, uplat=0, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 26380
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15872	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 42 61 6e 7a 61 69 41 64 61 70 74 65 72 22 2c 5b 22 63 72 3a 35 38 36 36 22 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 2c 67 29 7b 67 5b 22 64 65 66 61 75 6c 74 22 5d 3d 62 28 22 63 72 3a 35 38 36 36 22 29 7d 29 2c 39 38 29 3b 0a 5f 5f 64 28 22 42 61 6e 7a 61 69 43 6f 6e 73 74 73 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 61 3d 7b 53 45 4e 44 3a 22 42 61 6e 7a 61 69 3a 53 45 4e 44 22 2c 4f 4b 3a 22 42 61 6e 7a 61 69 3a 4f 4b 22 2c 45 52 52 4f 52 3a 22 42 61 6e 7a 61 69 3a 45 52 52 4f 52 22 2c 53 48 55 54 44 4f 57 4e 3a 22 42 61 6e 7a 61 69 3a 53 48 55 54 44 4f 57 4e 22 2c 42 41 53 49 43 3a 22 62 61 73 69 63 22 2c 56 49 54 Data Ascii: /FB_PKG_DELIM/__d("BanzaiAdapter",["cr:5866"],(function(a,b,c,d,e,f,g){g["default"]=b("cr:5866")}),98);__d("BanzaiConsts",[],(function(a,b,c,d,e,f){a={SEND:"Banzai:SEND",OK:"Banzai:OK",ERROR:"Banzai:ERROR",SHUTDOWN:"Banzai:SHUTDOWN",BASIC:"basic",VIT
2025-04-21 19:56:04 UTC	10507	IN	Data Raw: 2e 70 69 70 65 54 68 72 6f 75 67 68 28 6e 65 77 20 61 2e 43 6f 6d 70 72 65 73 73 69 6f 6e 53 74 72 65 61 6d 28 22 64 65 66 6c 61 74 65 22 29 29 3b 72 65 74 75 72 6e 20 6e 65 77 20 52 65 73 70 6f 6e 73 65 28 6b 29 2e 61 72 72 61 79 42 75 66 66 65 72 28 29 2e 74 68 65 6e 28 66 75 6e 63 74 69 6f 6e 28 61 29 7b 61 2e 62 79 74 65 4c 65 6e 67 74 68 3c 66 2e 6c 65 6e 67 74 68 3f 28 63 2e 70 6f 73 74 73 3d 6e 65 77 20 55 69 6e 74 38 41 72 72 61 79 28 61 29 2c 63 2e 63 6f 6d 70 72 65 73 73 69 6f 6e 3d 64 2c 63 2e 73 6e 61 70 70 79 5f 6d 73 3d 4d 61 74 68 2e 63 65 69 6c 28 28 67 7c 7c 28 67 3d 62 28 22 70 65 72 66 6f 72 6d 61 6e 63 65 4e 6f 77 22 29 29 29 28 29 2d 65 29 2c 63 2e 73 6e 61 70 70 79 5f 6d 73 3c 30 26 26 62 28 22 46 42 4c 6f 67 67 65 72 22 29 28 22 42 Data Ascii: .pipeThrough(new a.CompressionStream("deflate"));return new Response(k).arrayBuffer().then(function(a){a.byteLength<f.length?(c.posts=new Uint8Array(a),c.compression=d,c.snappy_ms=Math.ceil((g\|\|(g=b("performanceNow")))()-e),c.snappy_ms<0&&b("FBLogger")("B

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://p.facebook.com/msg/metaplugassist/

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 100

Chrome Cache Entry: 101

Chrome Cache Entry: 102

Chrome Cache Entry: 103

Chrome Cache Entry: 73

Chrome Cache Entry: 74

Chrome Cache Entry: 75

Chrome Cache Entry: 76

Chrome Cache Entry: 77

Chrome Cache Entry: 78

Chrome Cache Entry: 79

Chrome Cache Entry: 80

Chrome Cache Entry: 81

Chrome Cache Entry: 82

Chrome Cache Entry: 83

Chrome Cache Entry: 84

Chrome Cache Entry: 85

Chrome Cache Entry: 86

Chrome Cache Entry: 87

Chrome Cache Entry: 88

Chrome Cache Entry: 89

Chrome Cache Entry: 90

Chrome Cache Entry: 91

Chrome Cache Entry: 92

Chrome Cache Entry: 93

Chrome Cache Entry: 94

Chrome Cache Entry: 95

Chrome Cache Entry: 96

Chrome Cache Entry: 97

Windows Analysis Report
https://p.facebook.com/msg/metaplugassist/

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	588	OUT	GET /rsrc.php/v4/yX/r/9WxGmo4ezEw.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: NdFbr7rgSfYGw19EDPyLCg== Expires: Thu, 16 Apr 2026 17:21:00 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: x3jtNwFl/yosBpArIPWI9rPUuw4T6wAUmYHBOvjkudA9HK6dfnIHck4tHvsCMFsWog9TCRPRFgWzCbHoVZfiCA== Date: Mon, 21 Apr 2025 19:56:03 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 15970
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15969	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 63 73 78 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 66 75 6e 63 74 69 6f 6e 20 61 28 61 29 7b 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 63 73 78 3a 20 55 6e 65 78 70 65 63 74 65 64 20 63 6c 61 73 73 20 73 65 6c 65 63 74 6f 72 20 74 72 61 6e 73 66 6f 72 6d 61 74 69 6f 6e 2e 22 29 7d 66 5b 22 64 65 66 61 75 6c 74 22 5d 3d 61 7d 29 2c 36 36 29 3b 0a 5f 5f 64 28 22 44 61 74 65 43 6f 6e 73 74 73 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 76 61 72 20 67 3d 31 65 33 3b 63 3d 36 30 3b 64 3d 36 30 3b 65 3d 32 34 3b 76 61 72 20 68 3d 37 2c 69 3d 31 32 2c 6a 3d 31 65 33 2c 6b 3d 33 30 2e 34 33 2c 6c 3d 34 2e Data Ascii: /FB_PKG_DELIM/__d("csx",[],(function(a,b,c,d,e,f){function a(a){throw new Error("csx: Unexpected class selector transformation.")}f["default"]=a}),66);__d("DateConsts",[],(function(a,b,c,d,e,f){var g=1e3;c=60;d=60;e=24;var h=7,i=12,j=1e3,k=30.43,l=4.

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	588	OUT	GET /rsrc.php/v4/yt/r/7deiYnaK7oh.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: r698hgqxpSuoZvj0IAwfvA== Expires: Sat, 18 Apr 2026 10:26:30 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: 3BUNXP19tBRIF/FioPG800wTVfAzL/TycsikRmRz0ihkvWU19bdRLR+curYswFd7BZ6ZUrqnuMyRiLR9qvAUxA== Date: Mon, 21 Apr 2025 19:56:03 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 25820
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15872	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 42 75 74 74 6f 6e 22 2c 5b 22 63 73 78 22 2c 22 63 78 22 2c 22 69 6e 76 61 72 69 61 6e 74 22 2c 22 43 53 53 22 2c 22 44 4f 4d 22 2c 22 44 61 74 61 53 74 6f 72 65 22 2c 22 45 76 65 6e 74 22 2c 22 50 61 72 65 6e 74 22 2c 22 65 6d 70 74 79 46 75 6e 63 74 69 6f 6e 22 2c 22 69 73 4e 6f 64 65 22 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 2c 67 2c 68 2c 69 2c 6a 29 7b 76 61 72 20 6b 3d 22 75 69 42 75 74 74 6f 6e 44 69 73 61 62 6c 65 64 22 2c 6c 3d 22 75 69 42 75 74 74 6f 6e 44 65 70 72 65 73 73 65 64 22 2c 6d 3d 22 5f 34 32 66 72 22 2c 6e 3d 22 5f 34 32 66 73 22 2c 6f 3d 22 62 75 74 74 6f 6e 3a 62 6c 6f 63 6b 65 72 22 2c 70 3d 22 68 72 65 66 22 2c 71 3d 22 61 6a 61 78 Data Ascii: /FB_PKG_DELIM/__d("Button",["csx","cx","invariant","CSS","DOM","DataStore","Event","Parent","emptyFunction","isNode"],(function(a,b,c,d,e,f,g,h,i,j){var k="uiButtonDisabled",l="uiButtonDepressed",m="_42fr",n="_42fs",o="button:blocker",p="href",q="ajax
2025-04-21 19:56:04 UTC	9947	IN	Data Raw: 2c 35 30 34 35 29 2c 65 3d 4f 62 6a 65 63 74 2e 6b 65 79 73 28 65 29 2e 6d 61 70 28 66 75 6e 63 74 69 6f 6e 28 62 29 7b 72 65 74 75 72 6e 20 61 28 69 2c 65 5b 62 5d 2c 64 26 26 64 2e 6d 65 6d 62 65 72 29 7d 29 3b 65 6c 73 65 20 69 66 28 66 3d 2f 5e 28 5c 77 2b 29 54 6f 28 5c 77 2b 29 4d 61 70 24 2f 2e 65 78 65 63 28 62 29 29 7b 65 3d 7b 7d 3b 76 61 72 20 6a 3d 66 5b 31 5d 2c 6b 3d 66 5b 32 5d 3b 74 79 70 65 6f 66 20 6a 3d 3d 3d 22 73 74 72 69 6e 67 22 26 26 74 79 70 65 6f 66 20 6b 3d 3d 3d 22 73 74 72 69 6e 67 22 7c 7c 67 28 30 2c 35 30 34 35 29 3b 4f 62 6a 65 63 74 2e 6b 65 79 73 28 63 29 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 62 29 7b 65 5b 61 28 6a 2c 62 2c 64 26 26 64 2e 6b 65 79 29 5d 3d 61 28 6b 2c 63 5b 62 5d 2c 64 26 26 64 2e 76 61 Data Ascii: ,5045),e=Object.keys(e).map(function(b){return a(i,e[b],d&&d.member)});else if(f=/^(\w+)To(\w+)Map$/.exec(b)){e={};var j=f[1],k=f[2];typeof j==="string"&&typeof k==="string"\|\|g(0,5045);Object.keys(c).forEach(function(b){e[a(j,b,d&&d.key)]=a(k,c[b],d&&d.va

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	588	OUT	GET /rsrc.php/v4/y9/r/qetfxZizIhM.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1944	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: /QhMYxzsx5js2ORyMY07rg== Expires: Thu, 16 Apr 2026 14:34:50 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: CcigKox6aIUUh1wQd73kZt7e552LZQEdQVCU62d9Ft+CzAIzu41iwPwzi9k+ZjLblzCr+IxgwGiBMzMD1zQlfQ== Date: Mon, 21 Apr 2025 19:56:03 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 1389
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:03 UTC	1388	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 47 65 6e 65 72 61 74 65 64 4c 6f 67 67 65 72 55 74 69 6c 73 22 2c 5b 22 69 6e 76 61 72 69 61 6e 74 22 2c 22 42 61 6e 7a 61 69 22 2c 22 4a 73 74 6c 4d 69 67 72 61 74 69 6f 6e 46 61 6c 63 6f 45 76 65 6e 74 22 2c 22 67 65 74 44 61 74 61 57 69 74 68 4c 6f 67 67 65 72 4f 70 74 69 6f 6e 73 22 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 2c 67 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 68 3d 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 73 65 61 72 63 68 2e 69 6e 64 65 78 4f 66 28 22 73 68 6f 77 6c 6f 67 22 29 3e 2d 31 3b 66 75 6e 63 74 69 6f 6e 20 61 28 61 2c 63 2c 64 2c 65 29 7b 76 61 72 20 66 3d 62 28 22 67 65 74 44 61 74 61 57 69 74 68 4c 6f 67 67 65 Data Ascii: /FB_PKG_DELIM/__d("GeneratedLoggerUtils",["invariant","Banzai","JstlMigrationFalcoEvent","getDataWithLoggerOptions"],(function(a,b,c,d,e,f,g){"use strict";var h=window.location.search.indexOf("showlog")>-1;function a(a,c,d,e){var f=b("getDataWithLogge

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:03 UTC	588	OUT	GET /rsrc.php/v4/yc/r/qKoc-Mbxs0z.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:03 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: +TO9mEADtdPWnzS3aENrPg== Expires: Sat, 18 Apr 2026 10:30:09 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: Fsqa0MyWzvQlBvKnmarTpHaRo/7usZbHfYj5sLktE2BMJH3W+tTrNb8tsbOrrcxWqkDNzeb6gW4NBj62aoGFrA== Date: Mon, 21 Apr 2025 19:56:03 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=0, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 36467
2025-04-21 19:56:03 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15872	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 2f 2a 2a 0a 20 2a 20 4c 69 63 65 6e 73 65 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 6c 65 67 61 6c 2f 6c 69 63 65 6e 73 65 2f 4f 4b 42 56 6d 4f 44 6d 62 2d 57 2f 0a 20 2a 2f 0a 5f 5f 64 28 22 74 77 65 65 74 6e 61 63 6c 2d 31 2e 30 2e 31 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 62 3d 7b 7d 3b 76 61 72 20 67 3d 7b 65 78 70 6f 72 74 73 3a 62 7d 3b 66 75 6e 63 74 69 6f 6e 20 68 28 29 7b 28 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 2c 63 3d 6e 65 77 20 46 6c 6f 61 74 36 34 41 72 72 61 79 28 31 36 29 3b 69 66 28 61 29 66 6f 72 Data Ascii: /FB_PKG_DELIM//** * License: https://www.facebook.com/legal/license/OKBVmODmb-W/ */__d("tweetnacl-1.0.1",[],(function(a,b,c,d,e,f){"use strict";b={};var g={exports:b};function h(){(function(a){var b=function(a){var b,c=new Float64Array(16);if(a)for
2025-04-21 19:56:04 UTC	16384	IN	Data Raw: 2b 3d 64 2a 4e 3b 77 2b 3d 64 2a 4f 3b 78 2b 3d 64 2a 50 3b 79 2b 3d 64 2a 51 3b 7a 2b 3d 64 2a 52 3b 41 2b 3d 64 2a 53 3b 42 2b 3d 64 2a 54 3b 43 2b 3d 64 2a 55 3b 44 2b 3d 64 2a 56 3b 45 2b 3d 64 2a 57 3b 46 2b 3d 64 2a 58 3b 47 2b 3d 64 2a 63 3b 64 3d 62 5b 31 34 5d 3b 73 2b 3d 64 2a 4a 3b 74 2b 3d 64 2a 4b 3b 75 2b 3d 64 2a 4c 3b 76 2b 3d 64 2a 4d 3b 77 2b 3d 64 2a 4e 3b 78 2b 3d 64 2a 4f 3b 79 2b 3d 64 2a 50 3b 7a 2b 3d 64 2a 51 3b 41 2b 3d 64 2a 52 3b 42 2b 3d 64 2a 53 3b 43 2b 3d 64 2a 54 3b 44 2b 3d 64 2a 55 3b 45 2b 3d 64 2a 56 3b 46 2b 3d 64 2a 57 3b 47 2b 3d 64 2a 58 3b 48 2b 3d 64 2a 63 3b 64 3d 62 5b 31 35 5d 3b 74 2b 3d 64 2a 4a 3b 75 2b 3d 64 2a 4b 3b 76 2b 3d 64 2a 4c 3b 77 2b 3d 64 2a 4d 3b 78 2b 3d 64 2a 4e 3b 79 2b 3d 64 2a 4f 3b 7a 2b Data Ascii: +=dN;w+=dO;x+=dP;y+=dQ;z+=dR;A+=dS;B+=dT;C+=dU;D+=dV;E+=dW;F+=dX;G+=dc;d=b[14];s+=dJ;t+=dK;u+=dL;v+=dM;w+=dN;x+=dO;y+=dP;z+=dQ;A+=dR;B+=dS;C+=dT;D+=dU;E+=dV;F+=dW;G+=dX;H+=dc;d=b[15];t+=dJ;u+=dK;v+=dL;w+=dM;x+=dN;y+=dO;z+
2025-04-21 19:56:04 UTC	4210	IN	Data Raw: 65 64 22 3f 73 65 6c 66 2e 63 72 79 70 74 6f 7c 7c 73 65 6c 66 2e 6d 73 43 72 79 70 74 6f 3a 6e 75 6c 6c 3b 69 66 28 62 26 26 62 2e 67 65 74 52 61 6e 64 6f 6d 56 61 6c 75 65 73 29 7b 76 61 72 20 63 3d 36 35 35 33 36 3b 61 2e 73 65 74 50 52 4e 47 28 66 75 6e 63 74 69 6f 6e 28 61 2c 64 29 7b 76 61 72 20 65 2c 66 3d 6e 65 77 20 55 69 6e 74 38 41 72 72 61 79 28 64 29 3b 66 6f 72 28 65 3d 30 3b 65 3c 64 3b 65 2b 3d 63 29 62 2e 67 65 74 52 61 6e 64 6f 6d 56 61 6c 75 65 73 28 66 2e 73 75 62 61 72 72 61 79 28 65 2c 65 2b 4d 61 74 68 2e 6d 69 6e 28 64 2d 65 2c 63 29 29 29 3b 66 6f 72 28 65 3d 30 3b 65 3c 64 3b 65 2b 2b 29 61 5b 65 5d 3d 66 5b 65 5d 3b 49 61 28 66 29 7d 29 7d 7d 29 28 29 7d 29 28 74 79 70 65 6f 66 20 67 21 3d 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 Data Ascii: ed"?self.crypto\|\|self.msCrypto:null;if(b&&b.getRandomValues){var c=65536;a.setPRNG(function(a,d){var e,f=new Uint8Array(d);for(e=0;e<d;e+=c)b.getRandomValues(f.subarray(e,e+Math.min(d-e,c)));for(e=0;e<d;e++)a[e]=f[e];Ia(f)})}})()})(typeof g!=="undefined"&

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:04 UTC	588	OUT	GET /rsrc.php/v4/yS/r/ui2DkP-wt_7.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:04 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: +0ZQ6CpaMkkPWx1LhVlM1w== Expires: Thu, 16 Apr 2026 16:59:46 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: OhjAWzqzLmxXUotzK+6rfto+JwGITwMS9XZdAHhZOm3saRletQ8tmSUZhBI/bvX3j53Lovjc0S++IGvA68ozjg== Date: Mon, 21 Apr 2025 19:56:04 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3409, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 10849
2025-04-21 19:56:04 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	10848	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 2f 2a 2a 0a 20 2a 20 4c 69 63 65 6e 73 65 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 6c 65 67 61 6c 2f 6c 69 63 65 6e 73 65 2f 61 4a 6f 65 53 48 6e 37 58 63 4e 2f 0a 20 2a 2f 0a 5f 5f 64 28 22 62 6c 61 6b 65 6a 73 2d 31 2e 31 2e 30 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 62 3d 7b 7d 3b 76 61 72 20 67 3d 7b 65 78 70 6f 72 74 73 3a 62 7d 3b 66 75 6e 63 74 69 6f 6e 20 68 28 29 7b 76 61 72 20 61 3d 22 49 6e 70 75 74 20 6d 75 73 74 20 62 65 20 61 6e 20 73 74 72 69 6e 67 2c 20 42 75 66 66 65 72 20 6f 72 20 55 69 6e 74 38 41 72 72 61 79 22 3b 66 75 6e 63 74 69 6f 6e 20 62 28 62 29 7b 76 61 Data Ascii: /FB_PKG_DELIM//** * License: https://www.facebook.com/legal/license/aJoeSHn7XcN/ */__d("blakejs-1.1.0",[],(function(a,b,c,d,e,f){"use strict";b={};var g={exports:b};function h(){var a="Input must be an string, Buffer or Uint8Array";function b(b){va

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:04 UTC	588	OUT	GET /rsrc.php/v4/yO/r/_tJ17sGyxOX.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:04 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: cxEZEvS096W1UB3HTVACWw== Expires: Sat, 18 Apr 2026 10:26:30 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: 7oDrfVRyBZCU5yVGv8HNTXFLOJUmylphR2RQFdL9aWnD1JAJcKR3I+25WsfiPLV9PiDg++FLOF4FwKiPOy4T4A== Date: Mon, 21 Apr 2025 19:56:04 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 18154
2025-04-21 19:56:04 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	16384	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 2f 2a 2a 0a 20 2a 20 4c 69 63 65 6e 73 65 3a 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 6c 65 67 61 6c 2f 6c 69 63 65 6e 73 65 2f 74 33 68 4f 4c 73 38 77 6c 58 79 2f 0a 20 2a 2f 0a 5f 5f 64 28 22 6a 61 76 61 73 63 72 69 70 74 2d 62 6c 6f 77 66 69 73 68 2d 31 2e 30 2e 35 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 62 3d 7b 7d 3b 76 61 72 20 67 3d 7b 65 78 70 6f 72 74 73 3a 62 7d 3b 66 75 6e 63 74 69 6f 6e 20 68 28 29 7b 76 61 72 20 61 3d 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 74 68 69 73 2e 6b 65 79 3d 62 2c 28 63 3d 3d 3d 22 65 63 62 22 7c 7c 63 3d 3d 3d 22 63 62 63 22 29 26 26 28 74 68 Data Ascii: /FB_PKG_DELIM//** * License: https://www.facebook.com/legal/license/t3hOLs8wlXy/ */__d("javascript-blowfish-1.0.5",[],(function(a,b,c,d,e,f){"use strict";b={};var g={exports:b};function h(){var a=function(b,c){this.key=b,(c==="ecb"\|\|c==="cbc")&&(th
2025-04-21 19:56:04 UTC	1769	IN	Data Raw: 37 34 2c 31 35 33 39 32 34 31 39 34 39 2c 34 35 38 37 38 38 31 36 30 2c 33 34 33 36 33 31 35 30 30 37 2c 31 38 30 37 30 31 36 38 39 31 2c 33 37 31 38 34 30 38 38 33 30 2c 39 37 38 39 37 36 35 38 31 2c 31 30 34 33 36 36 33 34 32 38 2c 33 31 36 35 39 36 35 37 38 31 2c 31 39 32 37 39 39 30 39 35 32 2c 34 32 30 30 38 39 31 35 37 39 2c 32 33 37 32 32 37 36 39 31 30 2c 33 32 30 38 34 30 38 39 30 33 2c 33 35 33 33 34 33 31 39 30 37 2c 31 34 31 32 33 39 30 33 30 32 2c 32 39 33 31 39 38 30 30 35 39 2c 34 31 33 32 33 33 32 34 30 30 2c 31 39 34 37 30 37 38 30 32 39 2c 33 38 38 31 35 30 35 36 32 33 2c 34 31 36 38 32 32 36 34 31 37 2c 32 39 34 31 34 38 34 33 38 31 2c 31 30 37 37 39 38 38 31 30 34 2c 31 33 32 30 34 37 37 33 38 38 2c 38 38 36 31 39 35 38 31 38 2c 31 38 Data Ascii: 74,1539241949,458788160,3436315007,1807016891,3718408830,978976581,1043663428,3165965781,1927990952,4200891579,2372276910,3208408903,3533431907,1412390302,2931980059,4132332400,1947078029,3881505623,4168226417,2941484381,1077988104,1320477388,886195818,18

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:04 UTC	588	OUT	GET /rsrc.php/v4/yE/r/ypXu_iewNxo.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:04 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: 89J+Tk5O2k02gVbrzm5C6w== Expires: Wed, 15 Apr 2026 18:03:02 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: 3avCWz+WJIoubeI0pJzamCoTJrRGF3Vzof3cJ3YkrTrGFAiPf9BAux/yZXEI9AvipFgoXMTIDCA+5bHo+4ui2g== Date: Mon, 21 Apr 2025 19:56:04 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3410, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 50473
2025-04-21 19:56:04 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15873	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 42 44 53 69 67 6e 61 6c 42 75 66 66 65 72 44 61 74 61 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 61 3d 7b 7d 3b 62 3d 61 3b 66 5b 22 64 65 66 61 75 6c 74 22 5d 3d 62 7d 29 2c 36 36 29 3b 0a 5f 5f 64 28 22 53 69 67 6e 61 6c 56 61 6c 75 65 43 6f 6e 74 65 78 74 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 61 28 61 29 7b 74 68 69 73 2e 63 6e 3d 61 7d 76 61 72 20 62 3d 61 2e 70 72 6f 74 6f 74 79 70 65 3b 62 2e 67 65 74 53 69 67 6e 61 6c 56 61 6c 75 65 43 6f 6e 74 65 78 74 Data Ascii: /FB_PKG_DELIM/__d("BDSignalBufferData",[],(function(a,b,c,d,e,f){"use strict";a={};b=a;f["default"]=b}),66);__d("SignalValueContext",[],(function(a,b,c,d,e,f){"use strict";a=function(){function a(a){this.cn=a}var b=a.prototype;b.getSignalValueContext
2025-04-21 19:56:04 UTC	16384	IN	Data Raw: 6c 56 61 6c 75 65 54 79 70 65 22 29 29 28 44 61 74 65 2e 6e 6f 77 28 29 2c 74 68 69 73 2e 67 65 74 43 6f 6e 74 65 78 74 28 29 2c 61 29 3b 61 3d 7b 73 69 67 6e 61 6c 49 64 3a 74 68 69 73 2e 73 69 67 6e 61 6c 54 79 70 65 2c 64 61 74 61 3a 7b 76 61 6c 75 65 4f 72 45 72 72 6f 72 3a 61 7d 7d 3b 77 69 6e 64 6f 77 2e 64 69 73 70 61 74 63 68 45 76 65 6e 74 28 6e 65 77 20 43 75 73 74 6f 6d 45 76 65 6e 74 28 64 28 22 42 44 42 69 6f 6d 65 74 72 69 63 53 69 67 6e 61 6c 43 6f 6c 6c 65 63 74 6f 72 42 61 73 65 22 29 2e 42 49 4f 4d 45 54 52 49 43 5f 53 49 47 4e 41 4c 5f 43 4f 4c 4c 45 43 54 45 44 5f 45 56 45 4e 54 5f 4e 41 4d 45 2c 7b 64 65 74 61 69 6c 3a 61 7d 29 29 7d 3b 72 65 74 75 72 6e 20 62 7d 28 64 28 22 42 44 42 69 6f 6d 65 74 72 69 63 53 69 67 6e 61 6c 43 6f 6c Data Ascii: lValueType"))(Date.now(),this.getContext(),a);a={signalId:this.signalType,data:{valueOrError:a}};window.dispatchEvent(new CustomEvent(d("BDBiometricSignalCollectorBase").BIOMETRIC_SIGNAL_COLLECTED_EVENT_NAME,{detail:a}))};return b}(d("BDBiometricSignalCol
2025-04-21 19:56:04 UTC	16384	IN	Data Raw: 73 22 29 2e 4f 50 45 52 41 54 49 4f 4e 53 2e 49 4e 56 41 4c 49 44 5f 42 55 46 46 45 52 5f 53 49 5a 45 2c 7b 73 69 7a 65 3a 61 2e 74 6f 53 74 72 69 6e 67 28 29 2c 74 79 70 65 3a 22 62 22 7d 29 3b 72 65 74 75 72 6e 20 74 68 69 73 7d 3b 62 2e 73 65 74 53 49 44 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 74 68 69 73 2e 73 69 64 3d 61 3b 72 65 74 75 72 6e 20 74 68 69 73 7d 3b 62 2e 73 65 74 48 65 61 72 74 62 65 61 74 56 65 72 73 69 6f 6e 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 74 68 69 73 2e 68 62 56 65 72 73 69 6f 6e 3d 61 3b 72 65 74 75 72 6e 20 74 68 69 73 7d 3b 62 2e 67 65 74 48 65 61 72 74 62 65 61 74 56 65 72 73 69 6f 6e 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 68 62 56 65 72 73 69 6f 6e 7d 3b 62 2e 67 65 74 42 69 6f 6d 65 74 72 Data Ascii: s").OPERATIONS.INVALID_BUFFER_SIZE,{size:a.toString(),type:"b"});return this};b.setSID=function(a){this.sid=a;return this};b.setHeartbeatVersion=function(a){this.hbVersion=a;return this};b.getHeartbeatVersion=function(){return this.hbVersion};b.getBiometr
2025-04-21 19:56:05 UTC	1831	IN	Data Raw: 54 45 44 2c 7b 75 72 67 65 6e 63 79 3a 61 2e 74 6f 53 74 72 69 6e 67 28 29 7d 29 3b 7a 2e 70 6f 73 74 48 65 61 72 74 62 65 61 74 28 61 2c 62 29 26 26 7a 2e 73 65 74 54 69 6d 65 73 74 61 6d 70 49 6e 53 74 6f 72 61 67 65 28 44 61 74 65 2e 6e 6f 77 28 29 2c 7a 2e 48 45 41 52 54 42 45 41 54 5f 54 49 4d 45 53 54 41 4d 50 5f 53 54 4f 52 41 47 45 5f 4b 45 59 29 7d 2c 70 6f 73 74 48 65 61 72 74 62 65 61 74 3a 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 76 61 72 20 63 3d 7b 7d 3b 63 5b 33 38 30 30 31 5d 3d 5b 62 3d 3d 6e 75 6c 6c 3f 76 6f 69 64 20 30 3a 62 2e 76 61 6c 75 65 4f 72 45 72 72 6f 72 5d 3b 62 3d 4a 53 4f 4e 2e 73 74 72 69 6e 67 69 66 79 28 63 29 3b 72 65 74 75 72 6e 20 7a 2e 5f 70 6f 73 74 53 69 67 6e 61 6c 73 48 65 6c 70 65 72 28 62 2c 61 29 7d 2c 63 6f Data Ascii: TED,{urgency:a.toString()});z.postHeartbeat(a,b)&&z.setTimestampInStorage(Date.now(),z.HEARTBEAT_TIMESTAMP_STORAGE_KEY)},postHeartbeat:function(a,b){var c={};c[38001]=[b==null?void 0:b.valueOrError];b=JSON.stringify(c);return z._postSignalsHelper(b,a)},co

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:04 UTC	588	OUT	GET /rsrc.php/v4/yr/r/U6MCBds3T2l.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:04 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: b9SoFU1Wx3EGI2ELHfIA8g== Expires: Fri, 17 Apr 2026 19:04:46 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: n6hCNXc6i8ugVXxe5kzXJSg0x4X/6H1FjdrEVGzuqB0+BoiBVS4KZKyuyjsv+Bw2DFu6vvySqtJnDUQJnw0EwQ== Date: Mon, 21 Apr 2025 19:56:04 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=148, rtx=0, c=14, mss=1346, tbw=3409, tp=-1, tpl=-1, uplat=1, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 24996
2025-04-21 19:56:04 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15872	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 66 6f 72 45 61 63 68 4f 62 6a 65 63 74 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 67 3d 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 3b 66 75 6e 63 74 69 6f 6e 20 61 28 61 2c 62 2c 63 29 7b 66 6f 72 28 76 61 72 20 64 20 69 6e 20 61 29 7b 76 61 72 20 65 3d 64 3b 67 2e 63 61 6c 6c 28 61 2c 65 29 26 26 62 2e 63 61 6c 6c 28 63 2c 61 5b 65 5d 2c 65 2c 61 29 7d 7d 66 5b 22 64 65 66 61 75 6c 74 22 5d 3d 61 7d 29 2c 36 36 29 3b 0a 5f 5f 64 28 22 42 61 73 69 63 56 65 63 74 6f 72 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 Data Ascii: /FB_PKG_DELIM/__d("forEachObject",[],(function(a,b,c,d,e,f){"use strict";var g=Object.prototype.hasOwnProperty;function a(a,b,c){for(var d in a){var e=d;g.call(a,e)&&b.call(c,a[e],e,a)}}f["default"]=a}),66);__d("BasicVector",[],(function(a,b,c,d,e,f)
2025-04-21 19:56:04 UTC	9123	IN	Data Raw: 2c 64 29 7b 45 3d 79 28 66 75 6e 63 74 69 6f 6e 28 29 7b 63 28 68 2e 75 6e 73 74 61 62 6c 65 5f 6e 6f 77 28 29 29 7d 2c 64 29 7d 68 2e 75 6e 73 74 61 62 6c 65 5f 49 64 6c 65 50 72 69 6f 72 69 74 79 3d 35 3b 68 2e 75 6e 73 74 61 62 6c 65 5f 49 6d 6d 65 64 69 61 74 65 50 72 69 6f 72 69 74 79 3d 31 3b 68 2e 75 6e 73 74 61 62 6c 65 5f 4c 6f 77 50 72 69 6f 72 69 74 79 3d 34 3b 68 2e 75 6e 73 74 61 62 6c 65 5f 4e 6f 72 6d 61 6c 50 72 69 6f 72 69 74 79 3d 33 3b 68 2e 75 6e 73 74 61 62 6c 65 5f 50 72 6f 66 69 6c 69 6e 67 3d 6e 75 6c 6c 3b 68 2e 75 6e 73 74 61 62 6c 65 5f 55 73 65 72 42 6c 6f 63 6b 69 6e 67 50 72 69 6f 72 69 74 79 3d 32 3b 68 2e 75 6e 73 74 61 62 6c 65 5f 63 61 6e 63 65 6c 43 61 6c 6c 62 61 63 6b 3d 66 75 6e 63 74 69 6f 6e 28 63 29 7b 63 2e 63 61 Data Ascii: ,d){E=y(function(){c(h.unstable_now())},d)}h.unstable_IdlePriority=5;h.unstable_ImmediatePriority=1;h.unstable_LowPriority=4;h.unstable_NormalPriority=3;h.unstable_Profiling=null;h.unstable_UserBlockingPriority=2;h.unstable_cancelCallback=function(c){c.ca

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:04 UTC	599	OUT	GET /rsrc.php/v4ihVQ4/yC/l/en_US/vKjWcN1Y6wX.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:04 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: hTCakH+1oQfgRpLCrA+buA== Expires: Sat, 18 Apr 2026 06:39:35 GMT Cache-Control: public,max-age=31536000,immutable reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} origin-agent-cluster: ?1 X-FB-Debug: P/rtTNKAAH8o93fKraL6P/jjyRCJs7x2CNV8UcBjsCOxRslEcJJsS+E3Evf6UmbXrtS6jhk+TcfBJ2BVjaYT/w== Date: Mon, 21 Apr 2025 19:56:04 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=0, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 45073
2025-04-21 19:56:04 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	15861	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 41 72 74 69 6c 6c 65 72 79 53 65 67 6d 65 6e 74 22 2c 5b 22 69 6e 76 61 72 69 61 6e 74 22 2c 22 63 72 3a 39 39 38 35 22 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 2c 67 2c 68 29 7b 76 61 72 20 69 3d 30 3b 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 61 28 61 29 7b 61 7c 7c 68 28 30 2c 31 34 39 36 29 2c 22 63 61 74 65 67 6f 72 79 22 69 6e 20 61 26 26 22 64 65 73 63 72 69 70 74 69 6f 6e 22 69 6e 20 61 7c 7c 68 28 30 2c 33 31 33 38 2c 4a 53 4f 4e 2e 73 74 72 69 6e 67 69 66 79 28 61 29 29 2c 74 68 69 73 2e 24 31 3d 21 31 2c 74 68 69 73 2e 24 32 3d 62 61 62 65 6c 48 65 6c 70 65 72 73 5b 22 65 78 74 65 6e 64 73 22 5d 28 7b 7d 2c 61 2c 7b 69 64 3a Data Ascii: /FB_PKG_DELIM/__d("ArtillerySegment",["invariant","cr:9985"],(function(a,b,c,d,e,f,g,h){var i=0;a=function(){function a(a){a\|\|h(0,1496),"category"in a&&"description"in a\|\|h(0,3138,JSON.stringify(a)),this.$1=!1,this.$2=babelHelpers["extends"]({},a,{id:
2025-04-21 19:56:04 UTC	16384	IN	Data Raw: 3b 61 3d 6a 28 61 29 3b 76 61 72 20 63 3d 68 2e 5f 28 2f 2a 42 54 44 53 2a 2f 22 53 65 65 20 7b 75 72 6c 7d 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 22 2c 5b 68 2e 5f 70 61 72 61 6d 28 22 75 72 6c 22 2c 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 66 61 63 65 62 6f 6f 6b 2e 63 6f 6d 2f 73 65 6c 66 78 73 73 22 29 5d 29 2c 64 3d 22 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 68 65 6c 76 65 74 69 63 61 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 32 30 70 78 3b 20 22 3b 5b 5b 62 2c 64 2b 22 66 6f 6e 74 2d 73 69 7a 65 3a 35 30 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 62 6f 6c 64 3b 20 63 6f 6c 6f 72 3a 72 65 64 3b 20 2d 77 65 62 6b 69 74 2d 74 65 78 74 2d 73 74 72 6f 6b 65 3a 31 70 78 20 62 6c 61 63 6b 3b 22 5d 2c 5b 61 2c 64 5d 2c 5b 63 2c 64 5d 2c Data Ascii: ;a=j(a);var c=h._(/BTDS/"See {url} for more information.",[h._param("url","https://www.facebook.com/selfxss")]),d="font-family:helvetica; font-size:20px; ";[[b,d+"font-size:50px; font-weight:bold; color:red; -webkit-text-stroke:1px black;"],[a,d],[c,d],
2025-04-21 19:56:05 UTC	12827	IN	Data Raw: 74 68 3a 6e 75 6c 6c 2c 63 61 74 65 67 6f 72 79 54 6f 6b 65 6e 3a 6e 75 6c 6c 2c 65 78 74 72 61 44 61 74 61 3a 7b 7d 7d 2c 6a 3d 21 31 2c 6b 3d 22 69 6d 70 5f 69 64 22 3b 66 75 6e 63 74 69 6f 6e 20 6c 28 61 29 7b 76 61 72 20 62 3d 28 68 7c 7c 28 68 3d 63 28 22 55 52 49 22 29 29 29 2e 67 65 74 4e 65 78 74 55 52 49 3f 28 68 7c 7c 28 68 3d 63 28 22 55 52 49 22 29 29 29 2e 67 65 74 4e 65 78 74 55 52 49 28 29 3a 6e 65 77 28 68 7c 7c 28 68 3d 63 28 22 55 52 49 22 29 29 29 28 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 29 2c 64 3d 62 2e 67 65 74 51 75 65 72 79 44 61 74 61 28 29 3b 62 3d 62 2e 67 65 74 50 61 74 68 28 29 3b 62 2e 65 6e 64 73 57 69 74 68 28 22 2f 22 29 26 26 28 62 3d 62 2e 73 75 62 73 74 72 28 30 2c 62 2e 6c 65 6e 67 74 68 2d 31 29 Data Ascii: th:null,categoryToken:null,extraData:{}},j=!1,k="imp_id";function l(a){var b=(h\|\|(h=c("URI"))).getNextURI?(h\|\|(h=c("URI"))).getNextURI():new(h\|\|(h=c("URI")))(window.location.href),d=b.getQueryData();b=b.getPath();b.endsWith("/")&&(b=b.substr(0,b.length-1)

Timestamp	Bytes transferred	Direction	Data
2025-04-21 19:56:04 UTC	588	OUT	GET /rsrc.php/v4/yl/r/nv4EITsCAqt.js HTTP/1.1 Host: static.xx.fbcdn.net Connection: keep-alive Origin: https://www.facebook.com sec-ch-ua-platform: "Windows" User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134" sec-ch-ua-mobile: ?0 Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Referer: https://www.facebook.com/ Accept-Encoding: gzip, deflate, br, zstd Accept-Language: en-US,en;q=0.9
2025-04-21 19:56:04 UTC	1945	IN	HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT content-md5: x7DgvXACmaySC3zz1uMYpA== Expires: Tue, 21 Apr 2026 17:00:50 GMT Cache-Control: public,max-age=31536000,immutable report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} timing-allow-origin: * document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" origin-agent-cluster: ?1 X-FB-Debug: Zb5oE+FpFNK7PTy51mr2hP1+ILiVm/2/X8FWcEJSn6G7juEUJWTHwSjdxwl8hgHsLLqTdy1DrAt608c7GGEbHw== Date: Mon, 21 Apr 2025 19:56:04 GMT Access-Control-Allow-Origin: https://www.facebook.com Vary: Origin X-FB-Connection-Quality: GOOD; q=0.7, rtt=147, rtx=0, c=14, mss=1346, tbw=3411, tp=-1, tpl=-1, uplat=0, ullat=-1 Alt-Svc: h3=":443"; ma=86400 Connection: close Content-Length: 12145
2025-04-21 19:56:04 UTC	1	IN	Data Raw: 3b Data Ascii: ;
2025-04-21 19:56:04 UTC	12144	IN	Data Raw: 2f 2a 46 42 5f 50 4b 47 5f 44 45 4c 49 4d 2a 2f 0a 0a 5f 5f 64 28 22 43 6f 6d 65 74 51 50 4c 50 61 79 6c 6f 61 64 53 74 6f 72 65 22 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 64 2c 65 2c 66 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 67 3d 6e 75 6c 6c 3b 66 75 6e 63 74 69 6f 6e 20 61 28 61 29 7b 67 3d 61 7d 66 75 6e 63 74 69 6f 6e 20 62 28 29 7b 76 61 72 20 61 3b 72 65 74 75 72 6e 28 61 3d 67 29 21 3d 6e 75 6c 6c 3f 61 3a 77 69 6e 64 6f 77 2e 70 6c 64 6d 70 7d 76 61 72 20 68 3d 6e 75 6c 6c 3b 66 75 6e 63 74 69 6f 6e 20 63 28 61 29 7b 68 3d 61 7d 66 75 6e 63 74 69 6f 6e 20 64 28 29 7b 76 61 72 20 61 3b 72 65 74 75 72 6e 28 61 3d 68 29 21 3d 6e 75 6c 6c 3f 61 3a 77 69 6e 64 6f 77 2e 70 6c 62 73 7d 66 2e 73 74 6f 72 65 50 61 79 Data Ascii: /FB_PKG_DELIM/__d("CometQPLPayloadStore",[],(function(a,b,c,d,e,f){"use strict";var g=null;function a(a){g=a}function b(){var a;return(a=g)!=null?a:window.pldmp}var h=null;function c(a){h=a}function d(){var a;return(a=h)!=null?a:window.plbs}f.storePay