From 9c4a5e6193eb2fdcf8211738f6e5d169fe874561 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 27 Apr 2020 18:22:26 -0700
Subject: [PATCH 001/209] exception text

---
 .../tvm-security-recommendation.md                     | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index c3e900103b..0a890f34ba 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -127,12 +127,18 @@ There are many reasons why organizations create exceptions for a recommendation.
 
 Exceptions can be created for both Security update and Configuration change recommendations.
 
-When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state changes to **Exception**, and it no longer shows up in the security recommendations list.
+When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state changes from **Active** to **Exception** (global and all machine groups) or **Partially active** (specific machine groups selected).
 
 1. Select a security recommendation you would like create an exception for, and then **Exception options**.
 ![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-option.png)
 
-2. Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
+2. Select your exception scope. There are two types of exceptions:
+    - **Global exception**: Global admins will be able to create a global exception. It affects all current and future machine groups in your organization. It can only be cancelled by someone with admin privileges.
+    - **Exception by machine groups**: Apply the exception to all machine groups, or choose specific machine groups. Machine groups that already have an exception will not be displayed. If you have filtered by machine group, just your filtered machine groups will appear as options.
+
+    If a recommendation is under global exception, then new exceptions for machine groups will be suspended until the global exception has expired.
+
+3. Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
 
     The following list details the justifications behind the exception options:
 

From ae8ec06b5c176e2a8eaa0910c817ebcdb02cf52c Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 10 Jul 2020 21:05:56 -0700
Subject: [PATCH 002/209] devices

---
 .../tvm-security-recommendation.md            | 25 +++++++++++--------
 1 file changed, 14 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 4dfbba217a..7dd13f87d6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -96,9 +96,9 @@ From the flyout, you can do any of the following:
 >[!NOTE]
 >When a change is made on a device, it may take up to two hours for the data to be reflected in the Microsoft Defender Security Center.
 
-### Investigate changes in machine exposure or impact
+### Investigate changes in device exposure or impact
 
-If there is a large jump in the number of exposed machines, or a sharp increase in the impact on your organization exposure score and configuration score, then that security recommendation is worth investigating.
+If there is a large jump in the number of exposed devices, or a sharp increase in the impact on your organization exposure score and configuration score, then that security recommendation is worth investigating.
 
 1. Select the recommendation and **Open software page**
 2. Select the **Event timeline** tab to view all the impactful events related to that software, such as new vulnerabilities or new public exploits. [Learn more about event timeline](threat-and-vuln-mgt-event-timeline.md)
@@ -141,24 +141,27 @@ When an exception is created for a recommendation, the recommendation is no long
 ![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-option.png)
 
 2. Select your exception scope. There are two types of exceptions:
-    - **Global exception**: Global admins will be able to create a global exception. It affects all current and future machine groups in your organization. It can only be cancelled by someone with admin privileges.
-    - **Exception by machine groups**: Apply the exception to all machine groups, or choose specific machine groups. Machine groups that already have an exception will not be displayed. If you have filtered by machine group, just your filtered machine groups will appear as options.
+    - **Global exception**: Global admins will be able to create a global exception. It affects all current and future device groups in your organization. It can only be cancelled by someone with admin privileges.
+    - **Exception by device groups**: Apply the exception to all device groups, or choose specific device groups. Device groups that already have an exception will not be displayed. If you have filtered by device group, just your filtered device groups will appear as options.
 
-    If a recommendation is under global exception, then new exceptions for machine groups will be suspended until the global exception has expired.
+    Some things to keep in mind:
+    - If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired.
+    - If a recommendation already has exceptions for specific device groups and a global exception is created, then the device group exception will be suspended until it expires or the global exception is cancelled before it expires.
 
 3. Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
 
     The following list details the justifications behind the exception options:
 
-    - **Compensating/alternate control** - A 3rd party control that mitigates this recommendation exists, for example, if Network Firewall -   -   prevents access to a device, third party antivirus
-    - **Productivity/business need** - Remediation will impact productivity or interrupt business-critical workflow
-    - **Accept risk** - Poses low risk and/or implementing a compensating control is too expensive
+    - **Third party control** - A third party product or software already addresses this recommendation
+        - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
+    - **Alternate mitigation** - An internal tool already addresses this recommendation
+        - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
+    - **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
     - **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
-    - **Other** - False positive
 
-3. Select **Submit**. A confirmation message at the top of the page indicates that the exception has been created.
+4. Select **Submit**. A confirmation message at the top of the page indicates that the exception has been created.
 
-4. Navigate to the [**Remediation**](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab to view all your exceptions (current and past).
+5. Navigate to the [**Remediation**](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab to view all your exceptions (current and past).
 
 ## Report inaccuracy
 

From 7255a9f4730b625545760cf13e8710fa7b17dbd1 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 24 Jul 2020 15:44:36 -0700
Subject: [PATCH 003/209] new images

---
 .../images/tvm-after-exceptions.png           | Bin 0 -> 29069 bytes
 .../tvm-exception-cancel-device-group.png     | Bin 0 -> 16894 bytes
 .../tvm-exception-cancel-global-400.png       | Bin 0 -> 12719 bytes
 .../images/tvm-exception-cancel-global.png    | Bin 0 -> 13617 bytes
 .../tvm-exception-device-group-hover.png      | Bin 0 -> 11884 bytes
 .../images/tvm-exception-option.png           | Bin 159108 -> 0 bytes
 .../images/tvm-exception-options.png          | Bin 0 -> 4753 bytes
 .../images/tvm-exception-tab.png              | Bin 0 -> 16105 bytes
 .../images/tvm-exception-tab400.png           | Bin 0 -> 19531 bytes
 .../tvm-security-recommendation.md            |  84 ++++++++++++++----
 10 files changed, 65 insertions(+), 19 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-after-exceptions.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-device-group.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global-400.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-hover.png
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-option.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-options.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-tab.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-tab400.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-after-exceptions.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-after-exceptions.png
new file mode 100644
index 0000000000000000000000000000000000000000..c4ae7c83186b37cbddfcb53477d4a6df5dcdfa70
GIT binary patch
literal 29069
zcmb5VbyOU|*DVT3a19>Z-JM_w?jGFTU4jR92<{MqySsa^!CiyQ-~@Mg&F{PSyX(HU
zp8YXv*7S6DRh_CjXYYMZMJOpqq9EcULP0^HNK1*SKtVx=0Uu|0Sl|lrSDZQE3&BxJ
z%LNJwb>Qs-oy>qr09=G~m6jKW+l9l!p&=UHRi=l6B88F``>OUm>v-K?Qw@^+@AZ~;
z#CXA#&9Y}{*QsSq-^Lo@{fUWM37W7gZd+}5X4TgbMhuT!G5ENQqSeUAkE>_q*rIIf
zHs$-GYQ~x05cC@30;{memT_Q<UzX&Vb}}$vjoxY5_2xnzhxs^Mz_`dC_7)*-diu_w
z)=A$}J{Qn^)}zpE*6J_X$Ut-v_&m%Dqvz#3<{)&DaHAnoE;zDa^o=1DH|St=5oBQu
zLg4G}=N4%&dSBRwxBrAFdEv=||B>~61-{S_P(|R$e54$K7yT6t1l|Ep^52h$83--)
zC3u{O>LHR5m;CG<Eh#RK%JHlGD5I&lZ)m3vPc}e`U$CV#*)%}pYB9u4S8|ojsV+yl
zSQpC|r22zwO8hy8-L~kP=@7E=&qqBN*&JO7+s?i=i?AYiay)nXF0N#=vjYgWa<RbD
z&gP9ib1O{(?V}THJep&BCjl%Z{-5F}EH|0y%g5w}U$f2hkGU)=hfhpx>t%CKj>!q!
z3@XrA<QDW+4s*2G@98y)RW!2l$317yQiO`5Mq@1~k_$-mI?z1f4tAbpU}?p#MKyxi
z^17r(O5k7iZ|2L6{fR@)h?PI{^Edjh2dQ@$&UXfgbc0k`nlqDwJY58C#4qz2Wmb@}
zSm|B#Hwtw-sy;N1PaFw6Onfz)ci|iDjf2ycV$*~@OYcu7Phpay<}2|Zqy4-?6Gw1u
zt7S=kA67a3tpACN#-?OhuSfS`)pTzzsIn{iA)s<CEWM)4p%A>6eoJwwyyLzqj&Gam
z)PAe>w0Q5L+x7ATkxPwQj+~KE?hzMJ5T|LJjrH1_rg3Mrk2^7-b(QIhpbj!@%G0be
z{Q@P&ydf$530JJXlZ6F;Q;3;CdStI5sWnK}w)|u!#q!ABFLN=W$oNhj=Cy6PXAPyt
zdo0bG_3HAI3|cCxgVD%1ZA#KYJH)RhgzA&q__Gs3b`ue$mOlBx<DtcYT{=zmWyubP
z!)t}h4@mp|y4{MucdRT?XKu`z{jhbXPq#Jd#_R?c%qv&e5RW`!yiGF2OBsTY$H>b1
z5`i`IdWzm?nOgok+W7jJB)#s1l%1F2s?}1?Q~kpAX)$_^T%Gdc?zxlN7`HP*<%J@A
zY*t`87wEFNA+7}p4G-Zn$4}9}HpH!t{+_d_@-3Co%2?#r?S!PuPy%mcPp-6hHy_ZJ
z9EEM8$3<;&$h`OacUAY%9_QeGg}ASG_amxYx8lQ+@S)xg>fRO_M{;^R@R)N_P?JKT
za;CXNXkGvB)3Aj|WS9lI$MOdL?mv`fcHin#9O_jrLz_?~%s?J-S1RT0g$;9OY8M)I
zDmOVtD)#sCm)?6kTvReI8UAWz8U7@!#bjKXTwy#uHZ|+Ri}djYbnSlmC%0+jg;hGr
zS;HE;(S&BHh2IWr?bO`O#OVu8RWh)}4=S_^#n>gaJQ}nPj%~l;`)8E`KbNhYs>kZZ
zWwI~FS~p4w@0k&!Jm_%w`IBG1=^iFkmX;?GS)kG%Wes=CloEP=3UOGZ1y#)Lm{+RI
zuCKChcIZKred8f~yB(oRsMZjYNVa+3t_Q+mj+vy&>uj0&?wtkod@L&n83&m5DE5K4
z5%h$bvs`96t~A*^PQu+LB--Pm#echibEdR-`I3{pn4G&nr<1EuO~GNXl*efeacVY8
ztvlqawAEidZaP+Cw-7H|{LSM|r_&ir;d?T^v$8dr&Ag`pw?N0xee0h*>;7tyKjSOU
z*ZJtSmrSCDYCQ4RrQWe&No0ngTng#vtnJ!X))!$l@Yz-W3_Js(+>fB#8OB|1#JfBF
z2y9HP$8R;ZiWE2A*`^(fG8Ps@Iu`S_jOSdj?kz41{L`a#>u#Jce+H%(Inr8x#}<%q
z&FD5pgHHI8vM<`I?~P&2va?;?-Df<laMQmG@r#>^X)mSVkG&k|)Vg|@+`p*Z&@kp7
z*PYSSbY_aGm=hK8D9o%ZkM<5G?tj(m-jaZY)8Rj;*o-_FXHU=<mPvKM@%45Pj^T(b
zDHram`^la%9<g^awa9B_Wg2#X-nzLOH_?g9YiuB~%#z8MFh9~H?%+}fcYM|*aS=zY
zthOnCdri^7oveR)LA)JdF;U_77s2m(2gA?!y6Wpwz!;53?am*j1Q&z9d^;5H@6~R_
zH8i#q=Uq&G+%^(`jal*L{5Q*bP=lFie;w~hAVwlBJ(v^OZ0e2?>dii`p&b2*h@fPg
z5d&?4dusFNUO}Ld+l`@@6LLhAnBWj`W9@tV>cP4C*QCKl`<X~NFz;kxgpphZRIr?(
ziYDIk5fXb?qohX-y&pZM?xn46Sy*&6o|8GYRWyw462F(u!kBqiTM8)u=m)a<b6X;a
z!~%WUDQS(b+)~fyC+JimR=~nU%lIRWo<V?nR?eG6XselWMr5z0j~$7d{dI;$i21Rr
zY3eB|!rPA4U0;v6ieLq-$G$(_$u+&yC4$#KE$PeW@2jCr-L`gYvPV>=VkKR_<WeR-
z&we!TT9zuVj7HXBw$hd_D|f-La>yBQ@63$a%#|K2=j&Mi;7YjHIHzknnLNF={3o`0
zg}21pe*U^%7u+=?GvuA^>Oo9)GFk`K$T4vzOvb#kT5)&buyosx=r;}i7PM~#!9BCz
zqp@?jZ~wOGqok)L%2t%&<qvP(>@<z)Vvhfq>#NAK{>8$ZMvyEoSg<`Mt6IcziIO^a
zs|*wts>%CcE-3AQRZ63q7T>Ulq-o}#nSXscW(UlKVPy2c)fxtS4Tpyrv(;=rt59<=
z=do^`w?T$zW6`^kM<ZzL$ukR^l#hOHNtGm~KObfA<MZ;wfZM1D_X-BvWgPxaWnv3F
z=d(xROj5ElV$6;r%XNPqT|i5qUHKVA#~xjCVAXNc`EBX-fY$AO1ZtGah%^@lw_ps_
zCn&z%3eJz8tjJGVk$KIB_38+nH8R4HITBK8KhzjCi+U)cO-Wm5pygp&B*dpK4EIlj
z-H}{A!G!-Mz-uwdW26YHd;RB<p~ok78mJqKT3}J`o;b5ys&@wkPhmG`Bll3uWb0iQ
z{tc<4YK08*>B(+qMt?GjMb7LnH&7h6rH}e>fyh<xiqkWhrNpcg9)Zd>p$+t*@?gTx
zTG$~`_EZMbD9>oz#~$I+4g29Fzs5}LtQ4j!j>QjOX1?kIBcP*Av?#}^H6E_BzVBP6
zr8N|3^ZZkK%jUjF+M$X&0Cynur)7wq8uRN|Gkwh-8>?eyy_p%Lfy9u{6qQ4qKn$Oj
z{FUNh!sW(EPbSF`vhha8VPyaGh$x~RS~OP|S_X9qfY#;+KIo57(NITE)uc0OWd-;u
z3Z{Ck4x>FIObVUReEAL&x-UtxbVk^hR=*TpS&HPRF*$wt^U4dBxbiw)mF-=sZ4;E|
z6**@_pb0<g3u9O*=I^_qBgym3u`}lBeWD+I)NI(6^Vw>c9bH?R`Hx=?PaK=On<KOQ
zGsa$cIN09ZY;qby(8qG-PH|9N=%Bn#zgJu4*CK#@1~2bJ+Fl5Aa`G5XlS;oZ=<#^b
zNs*H2?<ulwuVHTFF5e~+_nE_)+@Qvqy44PHMwA+84Xw)eu8DiYz>m@B;#UPglMW25
zl<6K<e}@TYkR0*dqqRCaCATA8_wC5#gPIzgUe`hJ^~C-p?422j)^P*LwqMK@T;vZ>
z5)q9a9}g7mZaO%{(6M?(p%fR|@{?-2xVF*yY5S@See(|d*+y59c?aFyF<W$F*otw8
z#oE6uFfl%hgvdy17{|C+Ztq~cx%PvAKlS&Q%52=;tg%Gmlg`gY!ova}o=53XegBBv
zkP(6BMl-@0^JaY^geViXwz}+JM+RjZq)Tp%)1~QQJsUdm`a49VRWG<)`T@|yYK|?_
z;*%&y*ptQaSsA_4o52{L`@=1crscq0$YFkJUwv6{yX+TJ^Ky_C^4Q9kUXRp2Gua?K
z4?8IR%gNPgX8}=iV;r&^h)8PCRQ_;s?q01E&?_}ODW{PxTap30x}|6*gZ>(}2mWq(
zCGzP#`VgBnI{Q5tDg0?xle`r2yXtUdeghFNBI~#tFW_c!i!I>>{4t|lhfcOr%>Iy@
z(YHES^2hfh{ti#eG+5Z;2p3HVGJ1-7OGECO25S6OzMiQZiDAxqwyT?4>&x|8Kn|w(
zE}_22Gyy*?Eo!0R^(yh><y71#uUBDI6@w(*N=?k4)YN#aPtr4&<>61m?;>ND_Ydn#
zmRpl6Z{*YqVXHjD6gYd+CGbz)pKRqp2!6F`+o6AoI*;mPI)bR1n|>Kr$H$&@DcRI(
zE-tRUw&YkRNsV`>OKq3|wovo%=DHsGCk*_j*0m^mJ<@}&X_$EQ6_<o}s_c?6fbnK2
zbf5P8*c&*F46=~ISPrc(tv%Hwq9=n6CM4o6XnWn`7GS~!kC5(0XmWtbQF5$#b!L$5
za{pO?={EP&7TbCTGSzY-%1J$AozdS^1Sh`(Gk=e0M$6sZEltc4Q14Bd2&?g*ma?Tx
zdTt4n)pKX$-vrxPz;^QwGzsFgd3nL3WEMPDiqje;20TbG>IwdcXjp_eI*US^$-B3;
z*%JEJhd1Xk8Ef@H4ovLwjr+CfyVQGZkf>V~U(zTejYpRrBw%p7arN}L4`tErThlV6
z9$yF*?EjdJ(Pi?lYs`K>Sx&_2P%f(S-=o#(e&u%Q>W*&R7(B6iMJ68;#&*1tK@$vS
zw~}$}wsul|KXCL4p{jfJ!-M<J%zDt`KJq)bSXxlH2rC*w-SzUMaatuDZ8mYx(0z9z
z7+Q3Z%0w=zc&D!C855X&ni(98n+u*{sFh;}JN{`2%6BOG2pcTeoSca5QrjVvDxFwV
zxBE}6DVv@mKQ*e_$_bh;@%A#NH1W^5$K@Og2&yrrS-7Tr7@TP~?kO0<*U5Y&YDr6d
zXxXrIa2W6>n97vXu5b&Erq<1E+N^sZuT%2C;DD*4^Dk`^fgt+lh*DKAS)HNSY@Fja
zJ0sEZvV|?G$fIAiuE~Og)hA87RX@QHD6m7WIpy^9mW~f0sD(&lwG?w!2QfvI;F^%%
z{uPVK!|6Jd(oq~WSh$vp(aguMPT`Rz&r2NIKQy0b7%KecIar~BmUOIoKksdg;1_~T
zV^mz6!xHl4dHmKYX;0in7hsMWHl){OCYlr9-L6<wtGah&6<vpZjmSza*nN`n_1g5T
zlR64vRUPpxmRR2Nao*I*$2!Qp=~m9?eOz!|ba1<tqkky;O)FEZa%&#TKD?}R5K<|l
z*PgP}J{+frMyfZ7xW1V!sZqLmbC;TT{Hm$!t-U{*a&tlf{gCcK@8;0v4PDsjqx6jY
z)|+F#stuWRhlN&eI3PxCy(s%Uws<R+3v$g7n?7`7i#uJD)0Jr?fjzPwQ3uo7WR}f5
z|2<!mw1A>U#aDwiN?tSxm^;SiPEJq2zP2}Q70m(wb!2F~q&oUF18@}xiw7;=WLal&
z8r!g&;6EXSXOiYmqc3rp$<H7c`22*M3uX;PGC_^A;#{z$;N6UC=T%Y<#Mz*m$N4%?
zpk$ZVo7i`C`KWfaet0X7h}g5$TYo~$*_}k${ri>rp&Gt_2|r2hgwr)IAu_DEa+2SN
zZm6~v*RptZVOi?u16_0XIj5@`=~2|%pPcJMBR{EjDM6HW0TGif-OK~~-zIVTb@3Ur
zALm`kU_mdZ7)9nos4pywa3}JxI8Eus%df^1G3D|>-`ak_9$bGi8kdtJ-<s_0N)wYv
z%T9Es;4>)CZ{&)IhH>tR`a24m<{Dda7n-_2ZXz}qd=?fQOuK0pwe{plimqstD@<+^
zgt4`g$=~mUbJ;~%iMoB@6ig&4hX&VN2iU2F2ZU2rwuCm2G4&HJphy(zN9$r1V|ZCH
zZKi3*#YmY0VCc62PCQ5c**Ca;QZ5DrvS2*<&}o)}5J2L<{cpVjkT`~eyh)iP1U-GI
z2L73|;sq)&^nOK76T*`+L^r-u#Tumea)rZ4$r}!>+_B-dgN%wn8H|^c70`3N@_oGl
z5KF|m58n5!w|lgDoaG$len21##q~wU<FU^=+Ppj8@txV1c0_;PCc?Ad?3&2t_h@l}
z#4;%D+hB-<=j~Nc@xB+4l7c5AJ1p#Oh5`hZt4tx*wKlh?oE&2N^|n1kETF4+LRr0J
zl$60?#9rZHBz|dAO1C;ELvbW5TySi>SmJ*-I=$CgUBZAzUiS0OpQc4I_kC$8$p##!
zXJ>cHq@xKSued009p$xw0c|-REieK1Aqa5apXV`Wpp(Pry6f&NRO$#k{p%OFni8#Y
zS!ur^6%NGwI?IC%3~X|~0T{9t(Ek%JiT&MmEXKEPdYpWPXR8C+EuI8XU=R-c7zwf<
zlPEF-=^>yRf9ddlq7KI63*_^s`u{2&g$h2FUgDwpuuHZ2_N4?~sx_dgxWAv?7*7a{
zD<LU3K19nh87T!pS66R#2enrZN>QJwWAsaUbI8h6x%}Z1+*8)R%nvP~y@mrhu|IrD
zsDLctpJTyc(j26?t0>RBORxWv#ZEa$pnO~m;%Ed{*@M2{K+s;g%7wSi+A-c!0ke*D
z2=n0vBHaHKBEGXNY1<0Vht|QF>v-|>AtB}60$kU*G987M$8^`-$IwXggp2%e!WH8P
zeLx8lt?o?!#)YP;aYY5*hX_AYEkNIJyVbq)@PTtQUYSRILfsV0{k_-HK^cK{R|pz7
z#A8JQGB#b0f;XoEG~aDk{SH;}6N_t6AM78j9L%Lhi1f#TTd~)FEQb74pqHttld~Bb
zmGX-Ws&5d-74G|0xubQexTG?r0KMgsT4?~+xJKNt_wc;qVZhq!;V(?9s8~?44a-eB
z)2{pQyrrDzn!3pI{NYwe$RAr&{&C8;Nm(o~2+#TE(tm5JVwiVH=lA7F*0>L>S*g1d
z@3b6fR#{B{DZF$+(vnH#Ol1D%7J*PMtDtC>g@69IbzK#bzIsz)(^{68sIHl?oLdxO
z57sXJh2<;V{;N@m%?2Y~b*{&e^?@#FK)Q!UEeo*$RIJt@oL4!Enm+kUAg1Y<B3j(Q
z7&I8is`f>1nqx)0?o(zL-pK@GY0Kctlf@I~va565gp2Tm;J*k-QeUOxVxdCA1ru5*
z=<aU&rlh9;s)r2Io-0Ks*4IzbGZmaA!1gpEqxc;c5NIy%w2mMN@(Pa5;9uI`-Hou1
z#1YtOYnhD5=^-okvhbZjeB@Ziec_8x{&7=t{Uj+@>6z9>UR@Lub;20+9l6lp<S%B4
zi@s^GobgD~(b5X^XTCrA9Vcy?f?v(ar#3!)&%SX_Ij5}zwZG6MYO)uK>zRME`2gbI
z{v&qsE~2fHiE1%o;tCfJiaNe^&UZQsQ}Ay9cREp7Yh)gn{?|fIQeol`1^Rb>{+O%^
zt>u39i;x4R&JV%8)NkuAY~{fzP!WMDg`jFAFw#XEGup)y-o0nxg;m;*CCNieeaAD;
zt*qHy73-PGp8>`SV<^1*kjVFu2vuC}xKm=c6ZOlZTM<syrIhmA27=uV8!Wtbn01wl
z<pNe?)5mbhL@ZVt<6J5N#;T&GC=#O*%VHs?1e?vr*Owepj_yn*7zpduax~ulBTkU)
z+XAtc--5kn{o%g-MbJP9+TO?}j8AB6s9yN;BdU5<ai59adXQxdn{h{O&-@9hfUjGG
z-BB;<v-iKl>ou`?=|O}ueyir_T{_0vruK|EAKfST{s?sKsD}1apmDs&uoFf9h&C<A
zl2=(`P{fq?WFd{F#?^<Tto69d;_HkJFu$x1>IFX>+f|X+`AUU7*z5Lr(Tf3wJEFi+
zQ+@gv0y;-XFkipcRQH!jwU@zy;~+8Dig@HfI}F;VBZj7TUZ60|dY#+x_;?MsLYKx>
zd-mn#N-T1vx_<PUAXu?v|L7JT*eUxy?YWbJ5e56_SZXb|@y}}Y_Wtsu9R7&4TpG_W
z;NA^)BythGuVou6CyC&%>GiI_A53Zuw>QrRe3@y1@+`1HbA$smtQH3x4LP6Bmb2Jx
zA|IgInErXiN7R?t@Iz{I>Jf}VGZrQMzjU~55Q!bC{U2l-sB<l>NBC^h6^*WLNxj~B
zFWjf(9BWqP88?$bG9I)B7~_Ku;@ZiHc={w%CrmhvX6j~t0!Aa>U}q;SIi|&Qq&<ne
zXVQY$Gf}<EdO6-oo1isGe8lXMfit#f0RCR2`Sp1;q{}NXYgaK{`{JXUctDr1ZyZyl
z)}htbfqvK7u4JB=7Xu1T5P5!MI4K_-T&oKNRZviHt;H#*s*0JMBzN2-k%Z)M+gAv1
zI)>T2l${>I-+v07w1hru!x<SF$z}1zPfaO_h={P_A>$!e>0nr?W8|+seiNqgtxY!@
zGbkzo<3i8Q=N=W&YQGCYSD2}wlxP(6-Y}auOuc_T^PfBwJWI%Wa_c?-cWkY?NQc+T
zS)&@O@$1~4jc49+B_wt$Oq6l}@zACuigF+v$W*YE0TC(gd}o-$@9De!X4^zRny|o}
zIEJy<&y4@1B2-+^O-46g*0qWK?#SxuIX(&d5$+7fKo|_t`Q`>OjF;lKNQaVOkX~?`
z9X8D;a}b$zAHuyo&T4rDlXoevzczkABvS+8S=z;ufgs$Mjq=UHy&V@<SJ#A_R2IjU
z3p}W(oJW_1Do;<^DB6J<(%!Gp(s6!&l|@8F@3(P_XJ%$(o|p5VZv71`di%N)wn#q!
zFC)Eg*jZ7+4G4HydYxtw7$tc<r+7Li5f&+b#*e+x-&mYRdajlY!8-sP*;h6U{oM1Z
zezevXzo+vN=-Cj(i0|lwAC09xcvH~mX$_WO?uXf@7|gf4RK570wZ3eqsylCvQ4UB^
z0DZxK_1gU)`$C^t99`Q{>zS$eGwt)d9>rZBF0tEl_FXqvu!bFxO$CTq`9nE^*t_7a
z0m;<EgVO_}6;(D-JxVeOMj(FAwYWWUqX}NI8r=2eKN*gFMtyPRnT=6IajOl+iw8QX
zY%;jn(X-jvkz%v>8S3s~F?VmNyNiFI5X0CM7_&soU{rSi-;vJKM5IQm+Y$GacQvI$
zv;8_aFO2w*KM&pH#|L04J6=w7jdSkVH+7l|H;?q&7pAKX$p<U}R~Y?ybF(gXwb`NG
zW7FH0W})<TOGAL4|5PYhCOlpoa81c|^#)t~n@ronub0kKN5}N5!;#0hrzWKU>UirP
z9XMUfcID3Q<;K5z$p7{BT4*-)q;!j+-u&XY-oO{C5YzZB5$I@TG7A$8A6>wG#6cFn
zN3TOhyT{o@kpCT-|LZz=DHnVm1%NX0S3<9C*zj}7uUR<Qy6>2}TK8GrELxcVtm^0c
zLjLN!Z*ZS$5c7BDUYlCc&$c9rVW7rH3HE_rmJJM~+<w#k4}507*78+D12;ZSk@$vX
z<LLA>?<qT1>AL=P80exKb(ru_MfLb@b;=VJ+vGU@;Wol~kI#w|%3~vHUteDuuM>G*
zUS4o;upuj+zy>1#!#<pJeF(cTPf5~+DETj>U(i<GD~qApMu|jQ^}@n=f=LG;Q|Ern
zwXI<Xc!z<}hOuP=7v+S{I;E8fPfG&yaNJj+@O@B$K|!M(#uY&ZDIX`5lO=U4My?&a
zXO&Vdk*(;d7qE67ZVw;Pz|MmAnf#V(wP_>2^lEn3T39-6?ZiG)#S|8dO%dG2%n`ya
zU##Qc<1=v*uKr2JcFx0-iw}rhC^Ftw?|E(HoVK+3J*^^7o+~g_hrqTH9Tmm(F;yet
z{oKB;inLjd`|VNI+4e7XmXHaH+XNyTWADV|6JigU6;~aqdn)w`Dp0$n@Ac&9&C-|q
zIP#AOl%V?QHP}Nxms2Fji;9h5GH692;#)ia#fHJl0+9`J#n|`Aw&3%C#5C1#cX>JU
zbDnioqBBUF4K~$-;8O2j-LsX@<P+-2XIrL-Y3l&>rc7tPC%;+--{Hqr>m2#PfkOM=
zIM-``svl62J@p%hp}3H2A|js3WUf1=KnQW#C6eja!$H!Eg!%l{9Si4wHXFwexz=AB
za#meQ>H#xvzsq^uk9E1eY(h6oufI8|cOde+F*C^Bq=zW`(?$Ny@@A0mynaR%uO(5}
z=h~wWJBi%RGO$(daHS1%X{Li@sREsy)oePrh&WFp$@JDd_@}*??3eU!3HPRdw7fMe
z8C6^v)Va4&9Qj;xai{~qauXhE5qfQHHg51OD0w`pbXoE7KSGW1zCES$INSJUztK_Z
zbF*wABP$!_{I?HgaC(FLpIr5``iSOY0s6m9J~O@kVwubCY>jA;r^B<l)%Bm<EEU^G
z<qP^%-^*rORk?ChIuI3P!%ISTv5HXpI@&(lWi)TpovRveovo}g->({yw4G*wm3Yc;
zS*^R5)ATkl&m4l<wg$lP4}u$$o!I#U83L0?i?zS@L5kHT63QUDuxHR>^-gwoTXjcq
z_ORVQt9d&w!ZYo**jtxmO}!l8$wQ$@zQUzlH@VC;vy<=sncnGUncl1Vj|(oJ(<aY6
z^`eOSE-g#=R#uacaG7bDn3zT_a(#=|Iy_Zdy>F|W&o%_(Tz8;;r`mtW#Oa=3&^!4)
zeOdp2%>1`LvDH~Srhj3U8^a>Z=02%@g>OMd4smRfdv?Y>R8_l@f_Xt~EwXcNMf=G@
zK;%Rx&$o$uNhw2tSKWHlW;v^DLUCQ}WY4^EC`lYd?&dGgF;p)=lkKQ<i~FVeC>92G
z!Aw9Jbgd{Q<OHYF<2vo@EqM4pYXK_kE2z)KA{Q@1QBlvl!YWc5EZ%*&dcrO3yg*o*
zbc~F#y(_Xoi0b|{E_=JJ^}0CiOCu`Cv#qz88pJ{4m`k$Jij&cp5f?OC*Li9JeJxPY
z*!U$=9V}i&RltH6R^-g>J-!G!z_idEj^ux}Oql4J)u?KVEBiHLz3MaV8S6clbk6(Q
zZ$X3U-;|EiquiM2+h&9O@xYcg+T*NV+-7Y|7xI-P@Zl*WXR(pZjTmJd^7>I%>|I3a
zSnWHm)I?9Vcl(uay&W-xEN&!s`4hm#S065!a5&>Ew4ss0@y1`=@{~rnnYwB|wKO#x
zo*CZ%y!~sd?K6?Cp(CQjc`P-~Z13MSEaU19QIi);sN;!PqiUf80SY2_f=2(0K3`ur
z8=x^P=OU(TSCC_*DffqaD7Q^S%*QJZu=rm~yCQdq$X6E&i6qEVIBijGCAe$DD|>yQ
zZ%LlGKBZYC(4!5wJbRoG&7*KcrOL2sGSN1fBks&<b}$La#TW1BzVGYjg*pn5pE|-_
z$aKWOSt_9`1&;=PxW!e|Ke1j^J;PB6j}13|SeEbLIP^XbPSn>%Wr(b0N7?D<OuB9^
zC;rmo#(y`s;rq0W?|6cHy!wdr`A00r<C2GYfqR)6?PuS_=+q*mtCE1<4)SM`hEtj2
z+eBwSzv;(dzlRllN8oqrqg44k>xKL2-MS#YSGp0a;lDJ_J8BOE8o}W|rD#OFLKV=@
z_tWLy7f5D5bMwCPIh4FhUiS9W;m`n!vrW~1rUg4svU6*%Rl;=svuCobowxSaS|)DC
z%s;A6h0}2Pk$3-;zt+;CiMgDlT1UI&?a75_demkeI;jAb;j5y?fEriI=OSSeh#x<H
zvLwxzALe#83t4<$tW1|N-%iGVhKx|SC&wapeu-YoV*T^eQX55F=QXS}T-%7|HD`J@
z2^<j~;kUsYG=a>rM*c~_ggsz#VImS^6-_^POox5qeRXv{N7!9_h|{u~oclfGPKk|9
zPFNYlPZOO3k^J(Wwtmv*B$Q>}kQ0iHj**4u_VEcNH(So<Ug7q3UR^rf<+X{+1%^Ty
zw32+}jr^Mt?cp*GnhYfd=T;4fI`?gbY&M!F7KQ)B3pp8QCV(ZekR=i!S%#&~^PnY6
zo}DmsHK}oEMDL?q3W3CEiHep!Kn^9MCcC6q^e_$AE!81MFE{n4i}hKzY6cdqm(xmp
z7h7iyp>*CyC<&1)tbcL7F5>m!78*uz{Uwh0x`@?Wk|fBTD0vySa)mo_ION<kT!gN%
zpM&-@Cs91BUTatvM0}}l9Y`l7_L<KdbGg<#f~8`?zU8-cjuCaHb2lX6b#iu-J?wGZ
z!{OCW+2QI!)$LKwhW+##Fq-zv2wARLEgcI*BLTCOI+PGk#%Qims|l^son`M$&<*|A
z``4%ZO^A<gXua=Lxn2hlzTYb+?Z&;NT-1uiFIpgnHx7tRJZ)v@2DfYm`uYw*d`M4T
zs}_o3$p<t6YcB7_*#5ly8qIn!YR}eCB<56OS%Tyw%<IpJKlxx%ICH}knwqnDemNs@
z^StUmHO~<%Sxi&kX3B7&*qR7n#qBP5n$EeteV;aJiM9;8O|Y&H-DB(!>wTPP>*C5E
zNqwu`br}(OwxOr?Jr>Q2HDqdQhXT*Lk=GH8oGUp1m%@_`r45S;?`~%LZQ9_!RS>Za
zb!h(lGE3ku4=Q>;_q^!VZS_`VG=O(GmD|~~dUj$w!BKgvl`glv`HHnlA~5?_a1>s<
zpC{Fo)s>MwOh3|nk5l~`1({TMlb8lHxnB@4FuEfvk3xrS|Eqzgjs*#bo!##v;d{^P
z>bt1oV()_ZO}@8AT-r}1JL-<Q?~cK|U50Yt!9{<G=`2aX86S`bLqx6EMkVFIAKa_<
zWPt2&2M=OVL<sQ$AtiD1^#$!Mii!#O8HA00!l|I59*w>zQe<-vM!t(xjON?m3JZJL
zhm9r>9w=1VG%_7K_c<zU6eB7w_<Cz@DEW;T$&Nt~j6n932sdLq5Ps#|5Smy+n&Vqs
z+2)Cw!Lq}KPgX(^%aqF!@HN~J7&66=0Jl$y%Bfr3DHuZh>EEAO<LxYX#c{^2-*1={
z76}mVsM(bb?0UEgN`A|+@zb@fm2`BnqIZum-Y*%Ys2V66W0`bOYip9Zc;3S`?0R(u
zoWv2!>zB)ryQeqR1k}?OO*4O9ptyOROGzGiU}3|XuSYn4o-xtU0;S+vqGy;{w#>tl
z9t?jSm=ojjv}28-SYX+&_nFs37Tm&3d;zTbI@yjsQ2?ef*j5M^*$mP1sB#$SLB8kt
zg)1_ws@h1o#zu4y)Lqg$eV<%}9lc;o75DD?`-^=NxxKMrIDs!&J9^&R&xG#aBRres
zTc6}`@w|u>KWCV_RN}xBX7NEs)b}I!k4l|HaPUG6e<L_Y!hjzh<qxUxE3NmGwo7Sq
zo`()j%*j2)_a^i5OIdUW)d;#_&U$$3g-`5NefbF3?XG^J0V=jE`<SEJwKzuF=ziH;
zJ1x{npQ%ZGa;-m?J+KS*!;~7xocrQ82f8@rPu@uh7ad+@j;T?mfvv<%zHp<yp4h^;
zX}5u|y>4!wTY7#)=H!Z>9N<9NTEtLFLVcuT6xNYPLd{T|V;7_$w1l=^J|^s68d-Z6
zTrMxcaB~PQZh5I-S`({m%?jNJeT)t_{ycGd;LPE)_weByZ?#XFg-Ihb*fACjWuW5k
zU7&#5v89~=*zrewrod1ltmX#d!TmfXxO9hlEN#TN29T8dgGHtfGP8WF5RVUk%pI7z
z`w^-cLd~^bV9#qp`h{E~xn1ozN6b06<mnu_qjps+jH}ruvoj(i7^1en=ZkmJ@?c|n
ztaS2r)npA|nqQO$cB8{}S@MT1HP#7o$Bmj;+fn)`)1gE)<b0!2<{XC`--Gtj<b%Uf
z@wT<|ml-O>36ji623U?m=hvA4dv<lf_3j?19?s~?n}kl|YRR~Q{d=ur9V7ExK5-=2
zY05|MlpiZs1JSe^^$FKk`qfyoQY=gsUPh6_qQ_tQENDcHj7ZQTA1#d|rHwpWwY;e@
z9A#$)C}FeTq!nYJ5tVZo>b2h_0nk~KsJu3mTK=~JT#?@m+k^~vHR^>}LRvH-gl<`o
zEAbHG%hb$HAXP0^|F9%+p{g2QpX{=>BpXjYL$|yxm(_(ZrmG+-WE;m-KiPWSXDwsg
zup(kq$;}fb7-L<Z&?eZ3fH;+rg~6Mc+6S(0^C{GlMke?44TaC>5E2cKXIWabkg893
zt9k^~jL?N7T2veqx3>by0`UKjipghqR8;!QcgTL*b83Wh{1y^CaLJxULK`6z!RY;&
z0GU!%Wpk<xSu!6$bCV86-*!PzK64$57!9yJ0W{-9WSw;u_{`KnXHrA~2)}{$!l4h^
zi~hEP<=OAWP6B_q4hJD~6qJ}lq`8exhjr0d7xq+Sp;VRNn$+W2x)sNuJ-J1F4qGNR
zm%<wDYy<Q`YzP5qqsMf6D3gHUH<sx3`f!$tqCC#*e}LoA^VI%RdwqRqOh(KIxtqN8
zCYYI{mmp{2HLV@yN(=wI`@3>pM&1*L57hn~{s9Bhs^N+<kkb~SeU^u!JbYfs#M2Hd
zJIQ?OYte}w)L#}`R`kjfj_Yd^A<g_RR|D`HwY~!NSpB0t`W=gE<07jv`1rEW46BzJ
z&(s8%^3vM@5rl9z-T^6xk{+`X5;h6()4_PaGE#}D_mJ12GTYOl94?`-X@%teO<Jhf
zZLy}<;FZs|EOSTE{*C*R6u;8v+^UKm)B`xW;u2Xr5>qd?Et1<mmJb=?`aNKIn}{lK
zyheoRk!Ok?YGVl9z`?1{wUwYXwq5e>(S_wfV^$6qu>~5BM&(*@$I8#&0OmR3#D3iU
z+orn6bXg_u>7&1H;lkbAn(BSR@oaImLUaF3o&K^Tg$ui!3Hg|6)!RS9Xl%Y>!0H4^
zzLM;G3I8_&O{XD+hPvftR7QFg7efe(_Q+KqmfMS!=IJ;SwRm=}Mg)a9$}p0h=_6lw
zFnrEi1W0gs#!OJ$L~$l!IKvXzK6aeb4*ukRloMb0z>iZor&J|KQEo1n`8^+TMwaQA
zt-Nsyw$gkX2mv~&+yK#VS8l2kYz!SRS!qK2HO^I+d3Mt@d^pzlk)ovWLWIH_|9x_E
z$^`d`*2XF0O(p9`4{hN}AY+lDIq@)Nz8JC$$O1QeF@zrW7CfeqZ*7@jV-s`Z8mUAq
z!4u*jGyU9Yo6eQKY^7h!t2>0TT)@&B=EhJ2cmUH(2CGO*MsmU>Qw8W&8$Vt_+N3Ra
zJ}W5ymd${G(YFG@K<&_CGyG*1CRAuRaYNR<!et!7c*B`eCNC$yXKPL|oIN4?M)%9}
zT2YETD@ZE&U*<E0>AF{y-viKPI>)N|v!m|%h|r}BK6%!vjD@HXio@MlQE7%R*csn=
z&1#l{Pz`)yc5jbV^;Mo?W`r%X#7bM#75R(6QL449iHc?{O8)SbLdNRU!lJM&GL0Zj
z)P$LZBV*)@kZ7Athpq8=Me$D#y8}w7v@tz-XMi<Eu-K~GeEp`M%SIitXHl-lRdClQ
zGSg@V(8^yGpWvpYc=0?<Ye?AS@Rn+?*xF)wX<Mok;7IU#p2xrXZYZgnxo_s>{1;g%
zO>O?I|G`aQ*fI33@5^eLS-qdGC6o&io)b^=O>e%{f~deyX^u<Lr$*|!$;T%#0!1A&
zN_vrQ)~u3GjdOR)EMj78MC&etZ*fH5%-+S_1+77lZ6^2&??ItWXd9vNxau1fNo0`^
z&?EZ!IeQ!w7le%LW$m(GI_F#w)c`jK7)jS-%09Ndt-JifHJfqHs@vn~2c+M@msrWh
z272AsIjRz;vGY%=hqhhSO1YxPU;Em5c3(f<tMd=}ij@;{AgSplOH~`ZsuNzzF2Xn`
zI!7)g*s?D~@&(J^UE>X;qKx`Cyn+heubWnQdHo3ZiWv_I70F!K$nLvvcFC>gu&SLu
zJl!SA;`_L-^_6o3)a1(Y9~*BT_<dhhm)2@kWY^QKAAY|(O5GSSy3-m^9wc?Pck94n
z_N^`Kg5jpl$Bz?qdUy(fx14Yop%lBDls2$O+~bio3E*UiFdBSod>cuwWw7U65Vg;=
zOv-S^2#>m|vn|DaDfM<15~Q?yYcUGMV&P?r=oA8V&dAeFAO@%f!E;#Kh>iH7eq2YF
zD&bLXMN=CX=<y08r{>#P@(P#Sb;YbX?EWy(QpLM?ZO((`lTgMod<w)!Ci2=MuZ>At
zrtwl_PPNv*q5wxqIdt#IbWF$Anz`EG`&+2*EacWA_y-rq*|qaHb)Ctr4DRj6KA<+A
zeJ%u@BIq|QZDb#iDc(Og_&XFs0Mz|_yuULg&V0J-VNYJPSR(;EQ!#fU$5s!yM7bh=
zl~MP?S4~YkOd17BPR^vCKhcq4-@^v=CM#ql|EG}Ooa(<JKTyOEh^yh#v~L6{k2x4`
zq(Dphf7bM~4ek2hk3H4IWfcBjtNvv*PPp|mFo7&70Od0dp)S3JmPEAs)Y~|2Wi`}+
z<hqT@6X;}nmmg*hLiE>kgRm69*}+gPfqSf`K6cc3f8w?VloCA{5ZL6zjOBg=8m#X3
z(gJdR8{e=fj!4VBe~>Sw^rQvGeH={3O_ey11t?G*Hr{|(i~!n#e#hCWhGb6to~CZU
zH6q&@%x5)<T$UYEap-EhaH?H2|GWP8Oi6gHSJlT|o|n|?>+4rnR{}LBlCkd}1<zXB
zoW?TWaF270EL2W@Cjyxo6)rP64%k7O7N}7kjmK@mxcEa6C$R4v@ll3^5U}|$kYs4}
zyac~rs^iXS$PX!*^?*wX0ytI^H~s3x`k`LeXHHA@BNhkaOD#L4Y#>Og^5mh$<r7#A
zn{;uY=~eDkMEHWf249&d!*QU;qWAxNTZ;-v$cw^co<9NtoH@AKnK*ZCpz|scaI-0T
zlNWo~kWfBCsW%lb{QN#HBK^Typ0Zk{bIX6}n9pCFZ6wA<b6qn=d9z|pO>Qm1G?pjj
zAsUrwK#Cl#V34&43Hd#dB7TqVsTVQ&{{Xu!DV3CZ1U$?Ck#?*AR$f(zV$d+;;`hr=
zKIUTFApD~YVB<8_8j}MPS0X1RN4;#~q@FD%fC6yB>Fe85SLq5<5StK)Nq!f;1CcK~
zyc{GQGgC7!3_u88wZik>(&d<l;>8Zm7lm{+<?mIB6PNGLw_rm_2XNI@>;ANV{R3#V
z*?89zinRgyU!Vpm^75QwB<qtn*&^a4{&(akNEtxp<IawSqp}Qc{8gFGfEVG+&A|2T
z@#OQ7XhzxqJT<UTDwcE{eyaHdAT)pf6#zYz5uEYHnV0z{0WjzHnE>%p6VGM_Y<7^t
z2T*}T@ioNCW)%evB#q<wl)?HJ%~D_jK92nN9_wPTQB*|Zv0wXDULN&lnC5b6cNi|E
z^bO&`9nQwuELFRq<KPSpL|`JIpiog#ehBLQ(QD{fm}pM*b{+=UHOQ58%7l#ghrn5w
z4(W;i$Ad9FVVlGMDiM!Y3jWu=8o--%;>@+0Ejp+1zo2<i218fCy+k^>AZ~S<$#LN=
zT?D+{i{}E?U@0gq44D*qjGo;L9!`Bhx;>2Ax_@q<M?A_&Ch0{W8%VnZdvx_;ot#;`
zdX;W|0Wwm^OrFgN=xA#V;a#)Q`EOdkam8)^2f%NnuBB#$(E(7CdfQljV7=OxUP1sM
zrT5=r4OLXqQz4It=Z1~n5=b8T7I5>`WzmNRcmdcPKV1eJl3#|d6B`mLf%FDU;!1mX
zlPYZE++fX4a*w^Qv3Fw%Pyfn?Om)1VNm?$xylm0H>8@*B5AoI1>3NXzm0bYoOnoZU
zDQl?Y({^KskAwW6p908S_~<~<{5CtLkuq+S-h+5Gb4^P}cI}`!b+<M3py|`v`qK0E
zRy0#OZng<F0Fy2*tV;!vfB(^MS2V3HRz?{I^dS6;J$K3QFE{=NZpIB8GME1RdUn6F
zI|HBhy%;=^4VKi#`!Gic7Zqv*Ik?Y5F9UV--@}~VpK*HHRRWg5Zc$W%j2w7$TB`HU
z63K$+pdnNZDHBatb}tfDNmjiDrD?}w1dYzv#vQsx8{h-1MHsSSumx5%ToKHw+4B`Z
zctXn<^JD&trL%VVmwWP*b7I>}_^LMzgO!)nq`Pioeh%$WkCa;t`R4!bCOh}<-(e2(
z=I@L_F5a~FOZJcvUi~-Acx>Htp#|3Jciu4c^jY}A6RCnp@Xh$;7DgKw6i@eU1vgK^
zcy5_VQ-$|JIYT+Xp;90%!|gHpZ69q{psn=}%5o$oCoh)McKY#YIUl(dVKgV*wty_g
zjdQ)b@ld^AX^JSIsd79eGh_wBoLAW`q-5&BIl6l?H7)p^P_P|;(o8+4<O3Yk{nh$Q
zCH`BOUh?Td<Sk)b9lKZuQO{{}r}o0G$4rSpU}{R!LP8{NV?ed03Wa63TEG%oPHMN8
znmaEdQUj+OH9L6K{13cY_l}mK;@UvJI<p?-*z{5h(g(E~E=B6Jp>LhBb^yxyF|hnH
z)VomK{V_k+?zFc87N`0i7`k^T*aKC5kg=h1PNBwm{b$rOu7T!>y^Li;&1dr|nPtUU
zR?w7UvmrkLZ6$mxGwT&!&Xs=M^BQ&-3%%*{UbdQga=oWS>*-y%g>L{PM#;yMOFftL
zomfGli8@QqU&T+oZXEem^cEZhdh(HC|3&x-c+1@D6g`3pU@N{0?=3c!xAP$xsQvM>
zIN{jhp35v`&}hVH%>IitLit_T!m`XfSL^nkVn#adeBJ!&iP74QiT$PVA2KR{1D7<w
zRr)$;w(oWtezB{-S+Jm$#jHEcOLTB-lET{Lnnzn~T3LWlL0L*?9eug%Dg?XSXWfp!
z9eJ8daYL{?r${*8^QVNWUX^%%zUzV7m?T{LN}6>=NRf$Tr0C$${ZU!YLw>*{>#+5E
zhH^X9@S9?QkK@H7p1ocG0`h9OnE-P=)wcEd3HjN5;ssw5^KW^?aT^(R&c(g$)c9=I
z3FNulEOJZgKd8@jCtjdhN5HftGud8CJFtUFYmVY=o~DV{E}hMtI$J|a7-%&d_m4QZ
zGb^<4B{B4ktSkZ0=p4U7Q0YNr0aA#Li-bPu?9x%*F?_vB86_yXbV>iYJ1avI(+TR5
z+qpwcMD!n4q{8OzuB@t|23&yxP5tE#>3dNJLba4-P5aPe44W-*e3N<Ac$6{zRJ6O%
z;<|71l6AU}fz6VxnoK`=V}zBFG#1LGa-4^-Cx6xNjff-WMW!b0Ic_3{jn!{9xm5+w
zP0$FGDu2?OXl(&L2zh)B-`G=n^ZP%D<=Jd3Ep_vS%16p~zn3~peauf|-+s%oxg_`B
z<S`E~xd17mz0>vf(TPl+WWdqNSy@>rGwZhe;$2yV%{ge?r2ll3fz{w2&(F+&TfM2C
z@p{r>JU4NBce~(_tR5!^q8lu-8|4#T_UOnhALw#Zklhimf4hih*Y&$(SS|YE@R8`$
z?dpCRjiLHsY_m>2VnVRO)$$%&=LxIFPt$Y0fM5S4ELlVT)b2is>$YYlFZYJNe$&p<
z%D~qq6G-m0sT__~+ATJAJ=ZudZMVyJzw`BDBmaL+c~R`(&d3j1yJ^(>G>6R3czCPT
zHE)oX-o3-LpPt0;*RL~KABG2}N1#~CyQX5pu6o0clDRRhWC)8i=X%I`+jzp-%Yx}s
zqq!sDE0@ZfaH)ruRKGM^vLRnB)D-`uR=Kdh=4bW!??(U_*i$pl518A%<n(<Xeewwe
zMET>|R-4oFkiClBW>p=0qVEK}nQlC6zPI?V?KA-RG}&K>vv{s`?K2T*Mp(HIdC5|>
z!Bs&c)<KT^O)IJg&&Ez0xiWDA%H{`<oa4?AN?Ti7xQ`EeoV=fpVLIx_5eE=_)+5-I
zTq4o)mx_rNYYdJ^85yG^FljLG@nwLLO4uOipx!MR8V56M;GC+7DG>jsZGbA9sL(b*
zyKw-DGVrhf9e)Nu!RY-NoNoo9|F;KRquC5zE`(=)J=?vG7+h+=x%NLlRRvOQmi_0D
ztjR<OqUM!HSnGo9e<|Aw0`<W}gnL&s0f~Rk2nVL{6BaGt*%su%rRkFQW-RaBrQYzu
zP!?*HzRZsQ75iK`Pz>>z6Z>e$$35=EmT5Zfa*Y6p(Wf7GgYo7;M3kwVU}5O^S$RSs
zAH?hUhU`eLG2UR{nLshv&)NXA)d{etY_Y~L`yosA?!oyU*XjW>D1gfP=&&^GoP)=M
z8f1iBv8)ISj5*xUP;W?ejw%{0YrsTm!EpvxKA(M3%$;uzr)WR4t)XtcIMm3@+ZHi%
z(puCU{B65u)V=yITP0OnhB%<qRQZ_V$+Okz(!Ri|>Z-<f{7Y<KYxh7C=aT~0rxQL|
z6$$*r>Cd)jJec)(rilP#Rz!~bA!`{NKDat$Ab}vF77@Yz{8VJUWS2(<d;Km~TWarE
zMV&|8WL&m4Wrxtet$D07`J|MKlDJ-peCKPp@*7CS1GEAC;e=RoHxsT18Wn*Yo;&P%
ziT1nqZ?XV^RBMq@R&mTN;{Yx8MVRoDQOOvo1pKp<Bag#IL3?{<PEO9((e?jbyxl5T
zz?yMVN>3HZs>}-Y@qe#VHpY|drZ8OJwP}Vz)7hYFmm@-;&QUa(9E_(dLhQL44;+@p
zBfIJ~0&1hyI=xdfc^pvHPqDJQMn+PLda6*RvK7oB!(U-x1+V+;qAG_DF$w2-499Ax
zln%3)2@O5-wbm_-xc&nP=tN^9mH$r&c)hx3tAxI&PM#+p5H9>wn}E0$=TyeM4CJ9L
zo~gy`KCj5eTtd65vMuig%t&J<;`#0dG~lTpSMo^Fcl8A8e9$w2H%JPUx7k)Ut1Whl
zS@E_ykdTrmt5V8t_G*rAQNzrH2AkEcU5}GxU1c$DtEVmTI8Y4B&aTfwft_#CZdKlw
zbY_lML17ta%0~cuMS19dVP&n-;^Hs@9{Z{JdGXzyL{Hm`o%dsE`nhBS@2{<fxsDe<
z!y_S?Y!5^PhlXNcU<CFW_879Z%t-&gtEB&7pF<gn!lsLHej^sDvzpH*A+G8^VIGqN
z-+g**o^nkaT_WcG>p=QjeOI)T0q6;?N$QPqqI==eclEcO`Gq~>X1Rc5-wvebdE`9%
zzsCLtXWK7Y`+;Eoi{O%6e9`_dRNS8cybjM6sPITG>5u+gcG19A`Z%m@?7T-d5OnqZ
z!r-47AmmEGOlnxZH$>&cSPR1LDoF|z_bsmXig6>#cE~fTL7G*Q)78QP%m-9BHsaNr
z*B-xmD+5(YeB{Fc&-%X#+t>&jK5jPgjQq<Mxw~Gn)qmK?Ew4U?&2fAN^`;x9a8}L=
zD*n$}0EUS8|0Pa70GZSQm%Xxjw&AkaTS6OhX6{KY>#ThGxRwMN`pX70&tzW5@AB;c
zqHYlA$n?3o$2GauA5K=!1&R43zi&7(OBJ;<inIabRhQN#^9XOjIJ*V_(Cb7umM$?E
zD87}Zs2_*aX99G|_>s;|P}t1vrFs*5L+xw-a$Ah2H`Iz+^%(CBY<82fbu|y8R)a^^
zakd)f9ckw(f02uW_ODeYd)XpVSwyi9*=a`2Z;SxtEsIn3Xg_N6t4BoCgzIP-NX3i9
z9q?q~t`r&L<Vb<P=Vwe3kGDm&GrtaDS*ssk8&nio>+x}m7?CC0{Vhn<UNTXaOtNvD
z_gf?U=4ooMvA^QpZ~x~8Ue|j>D0@4(+Jg9Rl#JC<Hq7Omk2($Y&k_<?Y&Z*ro`=Gf
zg*PqIBlUU|(E@$n#6MEmgb;{HcYLJcuY6^Q^Sws|OoS{A@q$I~cAkGBA^XPCbf(%a
zuG?~r0JTe!Q2$XGSw3f`l4D3^S>!K!o^w{K&0000oE>QEAZ`7svt=1`S+lzaVBMVA
z#y#f5;kwpK6kh$%`Z#v{mu-R95rNVGd*6UlzOT{g*K>|T*idy#J3d_)@n4LUOtih{
zt5)7h7%<2i2EopHTC*c;i_V9llADjJ(fB)rn#)z~;ht*Q*&Z|iJ$qE^exCYfxBl$_
zU`F@VDcZ6ZB^C5HI>~MtPM1si2@w4SNw<eyC&!_b<Ih%oxRs`!o{ekDFcW}(`->%b
zn1d?B`r~2zYx_=ab1M6D?Jusvl3{7UnZvrAUo|>}R9RUJ>bI;_5KnUa4)p0MuhuH6
zxwoy+;l{wu%SENJmiRS^t}qw9<qV|ak!e6%P=q84J%PbLa!oSWHU!zE9#xSY$cW*B
z$`5sAcn@LjW6D0rnCGi^$7xxHD?z$vlTPnzs^3^uP4V=0RY(IDoF+@gd<>2{|02I3
zm7p+wiCMiJ6-tcF+`V`*ugolh1N}nT{6Vk{8iCzqqnl!J$-#7>Y^MA0T~DK7J2FDm
zffZg*8wVDB$nRMmzWW)hrFrPm*^%QX-akFRa233IB@_x%O!Nxo!{1-&I_sV&cAZxU
zgCR@S^b3Jv4M%;4Er-<uD^8gvd3keudU(4{^Zb{Vi%mqF2C>5}4Z?f36y(`ipFFdy
zWPf1()I{eUX#5ZE)De>N3XFIh+X-m6ZqS(jKk7Qms5qi-O(!8}pz+|65D4zB0RjYf
zcXw;tgS)$j;O<TucXtaAtZ@$ze2V0oduPqu;ZLt#Roz{6sM`D8&%4hlw>{CS`XbDV
z{RWNvE9jppIHXa?sN%~xhgmrV4*7#N7_!wBC?0SvAp2}jl{_u6TMmy_v^F1toBi<y
zpF=eFgmhm?Av`WFE6`$N$9~Y8SJn3O@bXiAdzZM{i}djOnG^s-1AP-GP3Mj0GWzA&
zyc$)Rk^P*?=~g`5#osJIlONJ8`5IRMhtdmkVh4?HZJ-!tJ0q=nisdx%#8IHpjGCgA
zH+%~h&fF&~R?n=Zh8??hq9HD*PoZPzstx+m6kB)qn1H_y$dx%ygmepILNhUmrbhoI
z37M)oz9H(?#cfxcoJY<k5H5f5E(zt_>2f3B(n(t#zn54vWT|F!j<;L|a9sV{!&slU
z9?quKCv`5MNkBY)c$R-(-PCF4XK8c)!%k=En~5!<nhT2Gmm5?by-6;aOy=UdfEFE%
zMc)*xf=b42n{jIcnV|QW_NJZcmSN7`Q7`TsI5PqbPF-II1MZ<wvhw-&E0O0i%8+g1
zx|auFM7yQuKkT&X(QPvdWLTAJqbYR`$sbq^dGBO2)rl}8mrB3C1(V)Wk=4`qEkhr0
zWU$h;My>z(zDnt1pW7E~FI^(dR5;v8URq4&Q)kAB3Uunp7x$x%cHN~!jWtfhoS0sq
zLvA>lviSDSL)14dULCPSd%htTv|V;kafFa}+<d!=IA6ikDDMzf`da5bL@k<+7Ht6@
z!M_@rSjkBlHdn&}b^iVw@&#}ro@wy06HHy`e^pH{9o`P#4RCwPzxzv-VM9!txmJ}|
zH*c-o@6q-<0S;YAq0*Y0))>2)FHBMsup60c@lh4&O>pOEBCgFpaUAkENxX%PJnO$x
zEh&!$%>VfxRdP}I$J=N0Gb257YmNa{+Abc2oKLtZ-PUd5Us)0b1O^tj$AJE^t@$r@
zWMrJI*rnR=Y!z1uXP*Fn*<kApJ7+|M3(e)63QYi-!Ng$eKb-u3uL}coY>ewZG7C69
z@IzrB0*`l|FHT#LlFU#G{`F;C>`>j`TD0C?2S4@QN{8|e!&|w5@v1K^DnI{i)0oSn
z4KS?Nf;m*BwUSBof9Oy_S}ihMskOlP*Tpd+lP--<;t*(gzkH{6|D9XFFlaK-#OQuZ
zFhU2IGD6inmh)J~@^|)6NSm%PhCxEOK688K4eI?yGF3oTN^;#VyWJX;Iu=O_kPvc1
zfx*0<YE(&Ehri)vm&OL4%q8Q5inzC~q3Cs*DAAUr&NUxzkJkfF#<G0acKTEJ7gA<#
zL_7j$%{GivGhjwj>KS{KrFz|}cN=|5``dlA&yxv|;nc~8+nZg_@O}dQ;LkwzEFRtB
z)HT5ySytnlYJ%rf&~?f6QLMlPS6{e7n|(-)Mm_d_<LLhS)nBzG4g&|YJ)nO86E2*<
zYLxhpRl3VBt$sN9h4H?MQ|IoGMM(JR>1vFhH|&7-cl$$Jzz407S2g}er0PfIM=D7w
zHi&ZuuQ0${AHt;elQ`oVznZ7@CvkK^Y!uNn)WenwqKwp?)8^o)V+g>Q(~(oS@UMeN
zGwc+-jF>>zI`65Pa9`6lpu>5cJQ$ido2s@>Ng#N2+<9bq<)vPnWjR1c+8kCLplvOR
zjeJ7{5V4m`G>9y(U<g!KI(a0e<@;3IV4bsOBDmJQk~|2)1__}AD+H6O?lC@>r18=G
zPbH-7>tV>UDXwYb4kD{*+-BhIKhqu-eqP_<J&S?|cEOu<%Il$h$?nMng)-hTZek}-
z+QST$85GV{qQi>u`AJ-qUdaTe)dZCSQNb3ovd#}0<#c>X!6_NPFT<49iZ4-oHs22k
zra*BQn)aRNoP0iAb#_utyDl92ZHJdrqUyq1S?4$BCqh>i+cFD1n&yuDrOR0xSrsI>
zn%Pw+&K#Ef2Tydh2Tch;E8W`3K9Zn2M;-+D$+;pLF}x<NrdBL?-etlt)ov)`<Civ+
z-V#(Nwj&ia%)BP&DyW{!7f5%nM|2%fWG9KCUs}#Oo0Yy-ynI^yIW<JA8dkHoeaw7_
zRb8IX*0cQmyXOI_yQABQf1;$5rca^#)YKRAq?&NB1Fo$7YLLO4Tw#MI+3+<~Zsn~z
zzfuFEdI%V;fQh@8u|&Xp8%5P^+3G{9$mR8<iWsahZ$WBuTv82hslW5l`rfsD#VrLY
zm(4yWtgF2(;#no6><i+X(QH<U2GDgi=+kY`*HjvFs^Qu$u{Wafj```1sPm5S`G=b^
zx-YS+M~g3hWMQu+x3KvLcfd=yN39Je?fe2EHNqvtv9;?d?Fh{EE-pMk)_xE!l~Qe*
z$sg1&G0X}q)vm@OKeh!H3qc73%>8_mRmZn;v)vbG$_d3PaY-3>zKw8LncKZy<wQ+}
zzww5n<VBI}SL?d1$Low=Ri|=IepyT<e=Dmpq++ke)1Zj2++w8QN2sYTE^ckGX8vn#
zqDe(Tf$U}tl-b1ao`B)#<KYLf(<R*4ynNdJ-kge8NHX*Cu`OB958p5F_X<OiMhhE)
zHnFyB^~Q$`w$nm=_Njyu{28TB<=v{1AEL*D=f{Ls-xEKaK2T!&6Vt$^54mcdjPrI4
zk)I4!Z&?;Py5OGpTPyEt+N3?bg!184^!O(7jMgtz(?~21efc=b;K7UPh&tP#D!#f>
z!rOBuXKks}JrmoP!b_u}-hz?Evq7G32p>4yw`ogWqp541nB16?@-r>Ly!!l5RCq+9
zt8RT{PqJ*mEl^qZC!b93w>YH^6IFOi3*NAsyfOPk%Y#ICeG%i76YMDmN?xroXP-x6
zVA@pImVH=Mw{u)Q$3um1n-`~4oqk^Ikr`6b3UC=L(h?1Kx0PnfJRszi%M%F}UBFwy
zTrjS}aZGyZ>uYDAcpNOad=EKfszj0`Tdo#v79|@*!<<gghj`wcD<uo2yxUy~xVpLm
zZx3O+ySq~;^`%ZHtI0b>sC&gqkxlB4>dNMf`m!{~rmYxrUN8^Lyi!)|T{tf_))W(s
zag(rDO&1lHdla!+*7*F;IYBr@xtJzZU?Mt5{aub@C#InV`5ZjpNM$=MNR?S`RXRCH
z99>La{B^X#0BnsnRGm8@u%kCxX^h%ZRmOa^MPok4#jIwy?7K4iWprbLH@PMQOs#N0
ziAXae(b@8zdEP`WTe&Z5DIvz4O+h0=xImgGH)1S_n2KV)QZIaA?!8HVv7X7Fn70M6
z^F6_JR@v_m;w9?%^LooZAo!6Y3sd9;78`pb*(%96y?ZT)AR-F#BSq+9{LBSxMd(J`
zCjGltf<N%eh@2Yp_O)PBC+AuATF#jft$8$8)%~fD{k;zSxM|&)3(x9hKl<}0?EJyr
zwqzvVQ)0%lxCpQ)h6K@GufuI?DS&*Q1XyOGe?6w`)Xql#8au-IyL&EJbxHg2Y3=U1
zef=`mmr?%tAUL>pu4=C-8J`?HH}|k<IUBTr3%7S*Rl<+)azwYo^VeZ>qwAUN+AAZf
zQs6f`NMdUhmU$gs(uDJWB!gdf|75QfPt<8Yk~g{CmpVVzQcNFA8X>fglLduvIed{q
z&d{vd*y{*jWd@^}pf!H6#SRb`w&Bo+)6?55;c+!BrYc#;N<+>-u_>{}Gg@LEC_DQW
zLI1nIXeZ3RvDw~2zn44OQoH4%Ap*@7+;VS)r}R`6Hqr)8Tj<2sgd2l9)20})0)}y#
z@Hs1twH%`k@N?oil~AbiEYbn7c1B)phje-l*OAb5f<wL<mc6lV3W$#lGhndt_B!9x
z*!jxP4YXW@TQ!Zi#2U0v5_CjQc5}@!(bkI0BVuJ~o=>6cnT*InAP?$d6)nW=+m&59
z1{XO$vDOfENAt*9*j_nHaKQeQD=4S$)|n51uY%fs`*hKqk+tbkDy~U(8O1HZ+CC@_
zixsgLTtg~l`+TggVHheK6u5Zocy)U1lt1KG4fuTHAmS=g9e0;?)|1uYR42y>pz17I
zP_AD;e?7h3r|uvP&MI)V$FW3>x11@Mr{kway{g$iyHOfrm%G^sr_g13;aESNn%E`8
ztF){`uFgVJKLaZY`lQ%jJV={JD#a}thg1}s?}F*q*eTM_y{%u<Kiio`Ai<==XDXv>
z&^ty`=DuO`9H7J%kfoIlXDZ@xT#UKOw8H9vJ3LN&azw&9@-f!m$)4T$p-m*2z=goi
zPFw%?Mvlfc+66n-ovPj+RU5}<`?)3<+umDjBKM_|SLP3H4Z-4tBo#QD#|j4S7Gd@r
zN`cx$8^wq{l@(N=fITCbBP4W&VD1_>sd_%mi+RPOrHa5^E{9tTnvy8#jgU?mb8zlb
zFu3STxgte;JQA?XgI?sEEGh;t&k9?vwl!j`-a>7aze$;^ee7LnV!#26!$ewG12y>C
zq_!~sEzJ<jO><EG3@zOLRp+rvT71IA@-osZOz=0#nEEOpFES$SSwzRsN5&<oNYpv<
z@L_RIf2E-2o}2zzBgmz@*QcrZwZ1%z?c>nGw8B?xhT{!F?xbRKR4C<{e4?bPwH}7O
z0+&cXqT0TI&KK~UQi37Wp}@9`YKqbvF~Vy)qkLvpn2flzAg7n$-s?*=TYD1Ja|N;R
z_$lv|g$7bka?heft;2%3V2b@~=`S9j<8OA_r$Z>L%O!?Co^sL~%FNV6SIO==+TVW`
z3vhfym(byo{<t)Y9+){bYXK6MRL{b%&{9dNsJk;}pXItI3ubeYcFZ95AbXA}ol>J$
zc-G2W&Sizo`EO6<w14s+mmOC0nb#C}z8fsQb<g;|$(Sdl?q-5;q3D_mE_w3~L5Nb2
zEV#~CWX2Y8<fE%|l5m3LRatm#r!r1rB%c}8H=FMa7;oZ_W=N2w@QIg}^9I_;QVS@J
zbv(-Q<i?zx=zEq=sV}1lQ+MG#`PWz<9+=k5yh9o2Que_Evfh|?=?Ei&(<XZa3rT5$
z73Er7&NGu402ZJGOHk|8mZoTFijp4fpURit9H<)&zng~T4D(Au2#P-WUdI_MMesFK
zD0oG8mCrpDtJ)e#RVSb8V8L{l6qB?xg0G&Vz+!^iG_T!{REy_d2g+0XqwP$_a&#xh
z=CK;Xu>p=%T1n^*0nSmmk)GaHV7UT%?Uo)f60aV*H&7;*RljeXFNB4Kafv<csKaRy
zIA|f+56HQboKk{XoIXh`rsFK8V}ux(n4#g}iYozd2}2|Hm`f@m&?TbB?ymCkgb;%i
zXR|PUGqaE!fG)$sho<feA$Fli`1lA=#3RNJV%`6W4!WT+2?2jWZJ&`#$ubMeX>ZpB
z0=^Xb!^6W@W&=k2$UmO^?SB6q^&eoO={(cZlJU73Nuw(Z8c%O^)SCO)pM?e4geXdy
z0nnuLP7voYJuU4U2x+q_5XtYw>+x;#>q+gg4l#CMGVLQHo#&Q%z}u^1zBiN<20#c4
z*todyOYqMM$6){+lzk_Bt$(<S?SJL7`(tK$+JDll$BNyM72h99(gg+`d)+S6W{)GM
zIiMBr-5NUr<AaQhJTZ@RU+kc(o9z=)`tVv1SKyWlG9fRht4qSf#PoP7pK80Ab>l1C
z%oB(xLckTE2m($I_}J%pd04@akX0$xso@mo_CW6^yY>5BW}_`qDcqdg;0X@A+Qo=o
zgLf1ZaN)gvgGOC{&fpVfbPMch{h$<f-%i<~(q?<G`X=9WsVh?L?rv{`sDi(cA$@hB
z|D^SE01QM`%qShf-D)-3ku<jOg#|SOLqlxMUA<S(1*S2c9*P)F5B6HIXfC=NyAu-&
z%Fg<8=%m4U?da_3i~}zxv9#->X%jKeNZiq;lt9jX&^+-{htCVt_Nw&$ldS!7EgtV$
zwrJC$jY7+l78B;WyVCad?8nE)DvG68NZMl;$*0Z1SYtpkQ($?0M9#bq3k`k8&Yq-R
zYjPvd#&p?h*bp%}f`uvTDdcBEKEw3rc7u5@M`C(ObNIBxw^`I#U&t}$7w8HAY|(J>
zjNVsgh!OZ~goveo3jIs_6nmKL4|Vw^naCQi0~@`2qDdZ1L1y-=5A-zqIA^&&t|86y
zZ2|L1hEM0}I#0jpvz{^(;_t$I#(XUSiFH!*9oOR8C$sgP+03`d_g&~VTQRqRh0V6l
z*RyZaHs_OfevRDca7IIj16su!+P812tE+o@dzmcfXnX5s2!aPOAd10pMgbM?NGYP!
z&(3=8giX*5X}9Wid3#B;b8BQj@Ku|P^k9;Z2xv$djGClij~B@ohSdtJ!=EIdo6Kf2
zDxiB9j4nL=8vB&FX~39f7>e2w#S*X1Bsx+(sWo1@C7ZoII!fUB_=(}^_r$38wjL`!
z9xkpP@F&ze7*NM(o+3ptVp8jK+-Xp)$E3-KKgzf<-o??LAvFzCJybpDr!Hw*tyi7G
zgeUcGhgOZgZLs!QpgSFBX7gI--NB<Orw!Mb%ZX1A$C^jH>4~n;+=JwRJ5-u}e@e&m
z0B`#qcssSDUu}2qA$hMq4snv_^T{|74XI2ZBi$(*44E_n(Ocp+0~_APPlgOyh0<<z
zrSp0`(Ga2zZZ0;`2O&-u>UO!Ty-}P$Awpe)Yq_{xJJTLF9MKk4NNJc{`u*oR>9p7O
z!B5xo;KFF-2}x|#J*cexkv~Y6e;h}QF4(<%)tx-=2U%TZJ48aezD@W}D2Dc_9@Phh
z0dk3~zQ#kW#6i9m-gYyB0l8}F)NS0f@VeYaw!nP2oTwQ0s0`SXUB6SGiX)6zyM+j#
z9(gmTkETc!g#OU?@<SsBZd*uar=YH_ZRN>kw7^v+x6_cz;Q~|kwN|pNnc2Yn+S*C0
z=S|JY{mlhr?cvx3;<Dy7&rxL%_~i0?S6<iDwD1I&LJX1Rzv-EupWh+iy?F90WpB6*
z`D1xuea}#N(r8O^Np87QBKwCQ7ylgP#>X0RV$}A_@(p+4{aADM@5Pd3PhsI5&(<ud
zYp+6)@a*GSzUE;UnaFvS%!)pObCmkFU$uJ|JU@o76Wj?0WEsS=UF<wX=HemRg_rt!
zkiwrkL5WU9+kxMhGaUr>YHy}R<Iut0yBW6g@fK<N+Xyo4rN&Jo4HorQ?{>PMg!b8I
zpm$O2)(K$qOWqxC=BBZn8!_r&=klO>w*cndi^&I)0a<I+AGFu>Yt85tIbb58?pMs0
zZo$OCLrB!wOE~vV)7u1)?7fN;cz*~4!oQX;ne4eUo_+1)==dj!m=E8v-Hn&{d1S^9
zE^qm7wlLQ^I=(&+<__QdHjndR%E?TzA|zViabbRW`GA0s@HYwy3hc@WAc84Sjy4-7
zNIu`<EjI0g=Crw`Wj0BPmTv5B<i?kz2(F9UaeT@%vaiW;^4q;4NuG>&5{sRz1|~L^
zsaAe7Ud;Ty_RdGXyYeDr)B4q~c|i5^mi5}gZS9=#fbjD0sovKuTPA4D*-nt*ZhpBq
z4>>sLnhv#!w=_Pg7LNXYi%rL+Y-e5bm7BHmV)u+-Vk^B|ftxN^KCPFM8G6<s!PD;X
z<OhDV!h|1y`f9$iF3nr(KLBYz*t(?zvjh#dUDt}RI(dIxS9CED_}K}MUZMVNCB9j)
zG<{u%-E&jt(kEZb*PXd+?6D@WxV4>dss488hyFII<yu4{mc{m%YnpZOc=hH-0h0sU
z;f4ErH(X>KGm8&@mVEZ~p^<hdC~%~CM{`_hoTu#!pNrC+JrjtwJ8O{fe8j2l%(+YJ
z1<{x5*ju+>CYiELx={!TC@x=)%}{WU1++#}yiEo26e66C4qtM#_r9@WBe>0e_NeUO
zkyOHGDz?G0QK5=Hbp+6T#sPFQ@d|1I(6T|9^YYG4K+-s7{T6zJyDFnqX{aBkHk2*j
z&pEYo(<}8z?3xZ+R`W>Um+u-xdG8nD*Sjd^hG6Ucvd}rH)=Zlw=eW|(vnW8Wot<o<
zPy(QbfV69%eq1DLuvX>C%mL$v4LY&GT5RFx@J}X?;k&3iftU||12n-!P$O<*6fC*Q
zpL9~8yu5`)6dXSYYP8=$m}g7~9K4zwhW*4$C0J9Im&aax!Wy<_FVrn}>+T-l%^v!U
zW)S~Y08eK(r%P@FnmxHB5R!ZYTttRrIwCA?J?Y3`6VunQle03WDoAg9ot0c_Thecp
z#4y8?ilZ!)*QNmE1GZE!(+S#W{~)!x8b2{(kL1{RRUAd}1*94x*Br(n=re=BtVcC$
zZ(l?c7}fH=hU`xjh%VSKb7}>>p?#jc&8qZ$?E>HZOYA(k*{f3zSEZ=zH@XRopQ-zI
zE80ZQ;r15Q$KH#fV<*}q0gWeuttGsExa;^q-%n7<FsX+n?+|$g(LGmo@#e<gU#?gN
zq$CEIcRv$=>I<aOtR@dXEErb;Ev3AQ!k*@=t`=4MJ0ev!`D&J5+7sI9Aev+YWv_(!
z%5o&$q?Vsn#We4E_&9A3hz9Mx6WO|h0-Zo5%R$49^kaP$$;;a&k}IdKX||3(K8o6Q
zm-=$-p&L<}uODSbI*Ok17bOTMLxv+;rNvd{@nZ0jG!?5zY<83uK5ehV55cf7awEE0
z5oS^jqtkD1SlKl@&MS*)Vq3~2oTW?)7OzPf;x9%Okg8|FU5Cu0y?9`=Dm9Q!d1TC3
zuQ4ml^|MNf>fHX?p8e8$n|TVs!7nD(pRt_tUxC9^8qGu<L{wG{>**Z>zy+tHt(Le4
zXkJ|Tpb=C#b}9~LflAuu!!%TG!%_!Tes$prZM9pkYB4Xwnr>*>Z19*l!>t78leD+>
z%em*vt|2}(SuoJuJAHU8iIJ@eI$u*x_A7MqxFnbLK$(q|t_Ha-*oZ5<L3Ck>zxZp~
z%I*{pQnbIa@u^W1Jt|Dx$;q$o2h$L3uQ$pP9p!NyydoyPBqr#NJ^q$J2)5o1Yr99-
z#yxsTxCHs;o@3SD+~7a8LQwSzfLV4>?9EkeN#EK;Yqod93}R-w<TC6^CNXZVt{!>i
z^!{yx%-RwHh!#0=>hftJ?=M+eKxbF$MspM|C(B=uaIj2ZW-u!M5j}nFQtJfqS-IRE
zPQKZSm)$)+hN5P>4`o08kz`=<xUvHDQAl*OD#W4bl;`m<U-A%NQV=>0tz!w)?9;~l
z%g3UOWYE7C4oB8vu*>>Nd)Az$4^u3bVHVSluW$4+j2YY6#Q*^v;7!1n7qqtWm<=Ca
z>v+bd+q8r()|z7C;D}jS(Te8AqW;(sy?z~>k_eC({5T}FWDOac(On0aF6Ai|kqVkr
zCv>PP1^xwaq#s3M7%wKH3Ee$BngN!@n2lm+@=SWdWP?+s(rOc-#q>RqpKjsOG!uM2
zcK<YlK(jsH%%iyfl{tijd5w)OCE;wKDN1?O8H6q~wF^tzFWVnY$N`w6j|(VtL9_sU
z;Eo4ggWmlkJe#`5&B4hUb-B9dZF_Fsh^K2$W687R<$rg!VI>|}-yL)qdJ+T4X+Sc@
zPbDEvcdFG7Lh7yns|E;>DA`9GXAb+foYRXEC#n~jFJ7P{JU=5qWDH~M(9>6X{6}}+
zIHmkwHuY1F*4vB;^^89=W4j~z-3|NpeaTEmRLsAhVw_6tCvtfp6L?bon8`Z=R^~e7
zMqikeVqe89NOCyxbep<X!Fc`d!nb|BKG~9~qGbDRhu#x&De;eN+w$MlXDmQI3@{G`
zSf!LETxzf3TAw?`x-})__<+;8+StCb)i*+9-*V1ccRli2x6nAWOa-HY000~%-|gNw
zMDBq%3Cjtsm5rh_R8W_-<yu-3p-ZpICbxJL<%r<ThdR=9OK0rAZv#|fDXja>4NZyJ
z4Z0b9v)ud7PT*HB|1iR6lX~_;`AkB!g(rh&T25$163OsAaCejsatF(FsimGZrrVMI
zPpm4;yr9pYxn+VRH;blk1=?2}xF=2c4^%Pe|G%Irh%qP*jX}?QI+l)%G40uT;3}Fw
zce}Ycy@5-lV=O@^@p$bJSx6ygLnj~`3DItA3U{hmDhWzv5#lGSFK*0HvnO?I%FwFk
z`+?HS-JE0n-RA-|zS2AW)b1!Y3v=T^7WWPFJ31)`WGgKvo`V(v(mTE16_sgPM`ZxR
zdW|~E4xj2IVl_>q$}rs)0R&R=bUwOrHF;v!w0517Sm&e@n|uny?U&6BVTVa5dBtv3
z^@&hNtmO2<H)gAuek_%lPIT*Ha9RF5Rh3ps(v&(NCnJEd%rUq~OM^zo0HC2z)WB9!
z^HuB^G&nEpv<mrEQ_P>`f51;@E6ikBl-o>>B7(Rj=Oso%KE{n?UAdv7E!nxpO-*Si
z3sElT07#oM-+D6_n*u*sgE`%(i&AVedG84d-GD&tex;sf_`Y%Za3o7*7?#hE%bWd5
z!!I6x5U-RzMxfvUKn*w305?~_ymdH-Uv6r^8Cl?%xA@2264eS;m0RI|gE<7(Fv;;8
zx#70*Sa&h)jzD9Dm$13Fm?~<H!4!iMzKS1R)a7TKF4)^7ei(Y$EjsdN!8oCaWDcv9
z2U2^NCN_M@HL_&J=2;2bleESh?<B&qL80Wa^nPhh28AK3-$SVH`a!PtRvfm>;ZQHz
zr>9_C)rSZtE@Sp{|K55tz0_Q?B=ApqPTv2gO8MUmFvR)tlN(R@HT>IH6xV+kurK0A
zUG|HlJ(>Ew2UeJ<jNRH&hZyxj0sW87ZxlqO7d{8Bt}%bz#L`o~=e8YOKT3?;CurIq
z@xD|$M--Mzj|#}#()1tyLvpO2aMEQoDpsH9x5V9>AesOv43q~DvJ|GL67iw&)8@r`
z{Y6Y;h?sz<4;UNf6ChpGsc3)SrP}0kA!3P4?ncke03(~*Cm})Y+fr8y#h(2wq=}sh
zpF2K!Y>`J1(K;|$s2jfUw)0R#lL)(51gk}>3CHrWewO20-z4?RO#qc|yR?{LQ<)->
zG_8gS?0ZUL0rP}Eqd~n*y#jxf$xO)gm+YXw$yE;9x=KDCXMOIS$kUwM=>3=Jk1Prm
z+YO4!Ck6bffQ+uQgCHg6(rn*|j-3|T?NI}xpm@LE>tH9g_4%C|j;a4JTU6*AfM<Es
zFz424gZJx+5-L_Z4C!as<wry=En(s(0FNRI{lYiInj2gmH28gZGzri*{j5j`>`a;a
zW>cx>0o9~r@cJ6|&xfQ$WT-+C&uUPmnD+Ba!DtR4_rBR!<11JzXY6>(VYzV}SSTR?
zR~J#nczYvWI!n0V6tSNp&n-9yc-6{ks(hXnH15$Kb&>z;8X(d*MlkL$(ysl@*TozM
zocm_ZQIJpUql>s7RH<6uP!l<};8TgenyKL;z%L$rHYl7207c5L)(y@5Q7&eoh&7GP
zwY4-v^>b;+u%$*_*f^4P2=V>Gy{QYELVQKWnkvp9Ek#67rwdfTldQa|iMr({r%Qnx
zrbyurZ#fkk$FkPP!z_1_DS!`YwK#@G^WTPOz8%>#Iq(Fy)!xa;&iVGR=lS4AM;Dii
zU|GIxS)cp-<P<&+c0@$Pp8kHrYBfgfKSVz4#>=K=1-XOFf&i9o)tkPwI!`%dC-QBe
zW=4g6&Sy2n=g*D?>dxESTYyvL0Ns$s$2P}c?g#r-k24XQmOTn!0W@hXEkXb{;6{q_
z|IXSRS-coYWeM)-`Mj~Q!I(aZt0Vxze+JjhZ^PC_^UA}d(!-;a?sn}13D9U@58{dk
zT4f;4Sz|zeuQ-}0FT&^xTMQ3AVw3xBp$Y_@<_ZdO)>0|;=%3qt&6r8ql!Y5r$DU?3
zx3f4=+-a&Xb({3g0eRD?FfiTnveHaPgM&&<3B12cLA-2uWyOjcINV>2>m^cTO!CBA
z#L2v1M(HF7Y_eMvMrfghr=t1#zg_3wSdgGsFp0y?)L}_EQJJvzeG@a+#BTOTjFw8%
z)L2Z?7;{)kj&{1!Q~Y&*HG$Yf&mnVZm<mmr>yV?j;x;xGbdaPOZLM`%7I2&WEFu==
z4v83}1H2P!<uWe$f}~-Q^U#8?BmNfmNh)(r5vFl6P4?osdB*rD0u?lQ(v>)VDl~5Y
zxN$#?W0B;5Bgsm@onF6(5lO(^9||GvC)0DcZPrXPRe_5}_#of^Fyo;TIB65b%<iY=
zhqRVclCEc7Y-nhqLQ}6CyIh?GP15KPcCu$B83-^Pk`@=5F~eNS5fDV{>ofW(COGuY
zS{>c8p~+1uQ}*<bHh4=kWaB{eV8d#lv^!qlcFTDJr@%ULCLW_Mj}9ngocB@PDaBQ<
z?78Y15$Aj_qm0t#L_aE~cna|xPE4RZGer=HnUgbQvItr0lI8<I6p5_s<F2NU%R_qz
z>khu$!ZqZZ#8}d(M%7;qPA;6q3(W^wVor5eLn}>V>4K$jIuH8E(Ap?|%H(t(Gn^35
zyUvNcQS9U+UvKcke63%GD+hf|`{|Y8or-`39t4l0q8)uMOjfq<HnY1o9LIl7`;8x?
zo7RyFh-LH5UJS|*Qey+PE*NPV<h7G#e?sJEN5rgCdo&^k+9NQtS!A5eNBjQS1BMAd
zlCZewTV-YR<D>V83Cr8?z?2l+?E|xT#N0_r2aq2lTwOA~^<xFV2?4zc+ywXfp}_Ml
zimvr{Lr67Df&e!R*}eDM18hFo_4PFiD{D_j#|x8Myxhr<vkh~|jsGwqZg>pW+5L_#
zZ5xHNieL)WE{-bzQW=4<0-9Wnm|<7^=dT9@Q_#(bCXJZ&+0%jVe@9PmqehrJxqH%N
z;D!-!mg9pyt<zBF!NATwCm=*p83#CxQV6%}rE}_r1_mLKk(d2=`1oBr7uvJSBX%-X
z(`SUXfrvLh3y#Vj9}qFf5T?<NjHL*2EDJQHx&Dal_UWA<llZv441(J``5|Owb%>l5
z^VS4e!?a$F_EFxSef-zO&AnyyL#7?+O9v@Ow{eyZHxjh;PeKOoLto@w{2^#{CH(cr
z`O$OU`u<?8TyLxgnCDf%wj`O%4xUi?Xzt*VgZjAE>UQi@qamJxzAJ`;PZ1vq&|Ek;
zIKbc_y~SkekKzxbeEeDXCmeNLPk{NgJ>m#tkHQ8iG66T7$|OnPu=__kRoP=Aep49E
zs@Aynek}i?tVD?#c=zrv>Sg$_lC69;UGEYofe~OH?EGZTV7eqLP=h-h^6Y%(1W+R!
z`A9RF4Ruz2s2J(8A||8~lYpF3Au(jGuS0S3`};-=R6Kdla^wM)sbMf%^@ea)qmuw$
zN00t=wVl4O$(#J{ao@)EI{RjW0Y)EZ^_C*KPR-R_h4<{JQ{RtqWs>-hdu_#_(fO0n
zm|zMx0ntQP&XhHMR1o?B;pTCDh*pXzHo@Pw{btIVvqkn|f`=(%W<-{$HbfS9m;&o<
z8EyoW6DWkfkot;A*j&Ruh&#XQ6R!R8Wq13dz#nv7ulwYm6(%vK#yAA1szRQx5C@-N
z?kc(eaK7_h7QVm<FpuzFWpD)9@&2XN(t^7@`2~z!1`T?wX)j?I9(qSTe?wu}U0`tk
zK)V~O8}3+XP(KyQ&nrv69eMjEN#8A%5m(x`O1FI=n_uSym7O;!yw{-5sLo->`Yr7v
z@<>XAD5GZ8hw|?x!{PUP50YPn8t(TA?$4AP!$_q-xALEx+6@JPabDl$$t$3IZ@_FI
zhuwb>47bq8kJxRw^UfAM+WQYb*In=~vNA24(*j{y^5j=R0)<9p`?dC!!K@^eZI6%!
zYG9o=rQpSr3H!N#Jw=T!miuEI(Ku-eDT<CO)=@fH8gmKnu5lft%>@adiv_b9UoOGl
zP8zR19v_)<Iixd{B|GK;2IeliEw~B#B<u_TxB&4=lvJ`UV@BMjQ}2&?6-HUqYZn*p
zjAcD~Dg7`sM@lviOdzLgecNu!Hc$dS@@wqtzYJ^)9uDTBPti><rSlofU_ZO5BC|{;
zmxBGuTbOO}3|QP@j{5ah2MCA!RxY#hX_qA!xOLIV8(k{SH`q3xO@39Bbty4TRg^jG
z(BbM9>@3}Yr8!#r;!GZ`WOx*tj6E^Bf8{LAeQB_|rvLc@aHH5uwAK4LBIyw3(X;U3
z0l!Ti+3(wPkH-wNKp+S8N7X!_p3+iP{PkG{&%;854Z)8XFn&;ipY6x{V){V9gYNlH
zSHge#4W6sm!WQH%WWjcg;>N~g8r6!4>1mePUX0i4_<B*%Bn@7vqyZw8gb|`-{{H^I
zudZaAs)4!~E<{}%s7rB!DB=Hq#p>UU`dYhu(ujVHwIR?)>}}Erz)SaIWC?|?KEJ{H
zVXINA-mrrakQ%gT1v<YZ2FZhjW?mm%R<vx^sRg-#-@evQ15}4na`Q`Uw2}{7^|H8_
zIk`bVy!~WP`W~Tcgp`89WM<Nz5?+5~H&Gan6o9n(eR(;#wl)r6S)X(i!4w3*?sJ@V
zi<rG%^w?%@ce(gknp6ty8_#Y$yFA7RJ$iAAvD0oY3b<w(`ecHBh`Ca^(6v9@MpHg`
zB3;mPY-pX)x;))6L7Y$Ayi20r)Ono{LvGV;FKU6#GJ*-OZ*k+i_EEMcmFpMcX-yaR
z_uK8z0~DH@$<9jq#@kbl^ieh1w+03V_p58H+i1WEcBL@kA_KO@Q}v|T2MUTHKqv(T
z1wFf1L!U=1_wFoNfA^`S0Hz~n{*U2yzB}Cy<zpL=87|M6dl>IJ9Om#7a;LFZG88ZS
zxo>PYF&+mvdloOy94>g@-e<+e3p~LRlR8`xLPwaurToXz)juzSQ3a1s7oK$Jecbxx
zAy2pbzxX$7)4F{)Jkx7wGK@xbJGx{?VK-?_##6fqSIpM_W|W7pE+ghpfLX(NiA~vX
zS|1B4B7X&jxho|E!m0vm$S!1Hu)&$XGE}%3bsFbD7TqX3wSs!8cc#<8mniuD^p|1c
z*5j-waoYj81S+9%cO%LAna@3~%a4rlH`u7Bc#r-m>Y>l4-}BJUdodtzx>QN5ze%=t
zsHHwMEbAGW=He}_CG@^=>>*~VGEZ&>l&#a8mF&VdYKmd_a9vhFT9;jb`#v=hnZG$a
z(EeK_=(oU88>!R>90r}XecrwjLU(#ygX1<>RXP{$994{*cDsQAL0p{MD7f!f0haxr
rQxf}l!E(|J^JMPEj8l!EClYqZL(dsO#|iK##TVitGM_7i^!)x8@r=h+

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-device-group.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-device-group.png
new file mode 100644
index 0000000000000000000000000000000000000000..3227f3eb0c7d9dd4c249dbd8bbf62fb4a6c24f98
GIT binary patch
literal 16894
zcmdVC1yCH(`z<&Gg1bAxA-KDf0Kp-+LvVK=+%*Jum*6hJ-66r<-Q8iE-}~=Yy?U=|
z_ifc~?NZImFg@Me`EK9)o$s7;J4``N0tp@;9s~j*NlA(;fj}RqKp+TwSZLrK%FJ{m
z;0ex7Qo|7hLhgP4g-D=7CIH@qagvh#0<#T+i%pC-j)WTq0(}BWiHm%9OFvohbkjEV
zranK@Hcq3VMAYHH^`~s53_2}i42rc#Uzc=2Galo&BKSaOY(XG~pctq_vxF4>Rk6tm
zLFqf%EyMsP2Arg*G&DnBiFF?ZF$a_?&aOG>f-~jTG@L(T5>4-=B%A3QcjMjiE?G=I
z`OcF&e+);X<ErEMsJqYJ-Rn4B422YWDDb1*`DYgC6B!wq5(_ga@HD5dFDfoBUeVPV
z_`Wy54-O3ttr;2;1K8()1Wg6(+r~$f0rm}Y;3lJ@q5ZUsCrQ?R{s?xr|ET$XD3j;T
zM=G4Rk0`5bkq0=c#T>wUb)@t^z<xpgl}({~CS@tn{~&)wy!peN;q~~;&jn?07&pcM
zXVm3n+%%O(+-kRd>m}uG4!v4?Wo>`#ouHpc!cJzU0h*T^XWh?n_W0@clQ~BEpvVwS
z?tSMU-5A+IS8Nm++<2fliVMg7zq&=>KyDOLafC%BP?VM7-cWyZxAby?G0@Qd_7^~t
zGt7svq%)$%gFZt3$|Ai9@;uM*(fe$)+Y$42yP$Qk>#!sPw3%R@>AZ~zjJ($M$L_qx
zC$tp4H4g7R44NW4#xn48$yTr4t#^40_g^-3(=$uGl*2+p&B!q<zkx|?UFbt+u$aIq
z{=c$_h<@0;hlR3+&WXXPA-b$?DhMzAy`@9&8Q#j=+_c(8hAAlWL{z}n+r(z=0Et#Q
zlu`bye1_M?TC{SjYwd)J^`V2Q>{dyO=!gfxR7|)7^WG2QbotMEIKW|Knxy}Ik1+q=
z?aKcr4~#;>OwMPSocAs4hh}%C`l)fWTjqPc-mlX>YF5;0HC%4#bdscCt1R@7j`IW>
zQAW*eQ+ykq(r2RR>E>lkzu=D3#ajY;NY2@3DQsK2&(vMxGj1}bmV#>~Y|6iWc-QB}
zkX*BMiVAXN7=fhTpMjS(7rM(Ge!R7#X4EbN%HvE5?R9;;cJ=~VkOW&T_54Cf;z<Ti
z`Su;Ng$9K7BH7!--6FmR4L<|u9nZD7eH*|@5iZ=_rjuZSMVZ=d?~*G{y6J|?#D%a)
zo3w}dvAlVQg$`3A;yRs%oogb>Q%AL7=;37T3U+9Gt-oCD@U{3PJ$QeZR-C%sUpW+y
zV`zQ2?$&1?u`HH;V?g@Cw#3LA7&^cQc#4AJi6+}O;tDa_tHqx9oG&BoVK`i&i-Mdj
z-CvvW%*yBMAxQ)6E%|f#|M|Uq^VB`vMkWpZS#LA=JC0BF&pHp5ZM{pdqm<Lai8MOP
zQ?xRY<f6w0ZYG~B2JLmd%BP;>&=l4HV@5}a1CfH2F#+zsShHCQiA%59;<}7SUfZD3
zbw5PBgaz05+6f(6L>X0OM<@riB+)g<S@Mu;qaY!~4aVlFOx$ooBbQ(G#ih-Wje0sT
z9Pyp^h>WoE#+ig{r`NI*5l7%9j>|=)6TG;&yKT}yk!0yj#vCy-q2FG_2}^Jcu}j&h
zo_3;It5AzG1F{l12Qb$lF&&8k!$-?AbpOy%Gt&*<UJ7)fg37Br(NDzk@hr>penu`M
z21$7I_9;Yg5=SRbeJ`r`klhXhi6iV;E24>%0yI#4!3`-%LE=Z{XX;O#z5ESSt4y(m
z>?kqZMd`=?viivp-8H*mz^yocPAm{ct?3$X^$CS*FI_j|58BKlOZ3*&Vaj^HmyLP#
z<-jUyD$97fM44RgFcU__|D<XtgGnP#`*8Ai*No?pxL?<~{mnuk6@NjEB0;+rl5gfF
zLSq!xx`Wwr^#;XA=4tc?v!m+EA4rCq-5b&}n5(^+)^wLFwJS^BU%}bM`$yKZ8TSu3
zLQl6b5hG+?F5ecS$w*6oxNc)DvIPe0=2aW6;SJm@#MEuD*}l^AdXvB-hG=Fc6_r%f
z`fG&fz)i{Nj21)ejV~cK!ynOjNylKbYt=Z%LgF&G*;ic^XG%eVrUxcZ&fS@Ga2dM2
zlxw@GYp0DFg%SSAWZ{VUqDkW>As7&121NE67%xSvDLZE8wN{!9XtfG~;E&l5kW3Sv
z1eo$Ah4!ys8Y@+3|G6eF>dgwe29<g1lYQ$gqs<o|tyA1anOzOMFeZOGo*GH{+jMd+
z`FT}yc32LDb3VT@xVo{-BSrIgxd2?<7me0=O<V9nWY%20ZE|2ucT;T1>Bo5GfGLF$
zanupdp0%ZzjecIf+++;vyfo9H%>9zz;(e3Ngnl&13+p}L0a1HcGoUFw5lvw@yCc&Z
znN@lKKC<lhtezvq(m8Cw2q_1;>9k3LSh+FH`5`f(g5yViq{OSs@Y{GgE8!OcK3RKD
z(ffAcH525lt?#Wf7a-GHKe>_i-p_&incZ3N93v(~=-;QO4bmPPW6PCm9TI)V%c#Q5
zy5_V^8Whn=R(>~>T^qYlc%Ah+lky{rPkKkJcttMhjx$HB+3Nq$d-!rNa)6?Ap*ph1
z4U9i%C}Xb)gwG`;%k#@v$-*)R3tvVHQ4(W^>742eWO$CIRHm{VQl*o#ICUt4gjOog
zS`Fc*oRs$e{JFlEZ8_4c%lNZu4=V;&t!gD8q_sIMW6hRtCZFT^=Vqs*x2j}{t?>Je
zv-3A0eCghJrW|#YP3Fo2FzF_?uA{b);dfV>OF0dhj^C9eqSs@Jh^fIa(+x=2#dplp
zDa8^#n$*}`<64HAs$cjVGSa$ub_5=yo7pYWdR-1Bdd(4G`EadQ;E%eqBb}+C;T9cI
z56$dc`fI#SxPle`xzrgAO49OK71957XlDyE80iW+xec`6m(?vqjB_o`GHO$mT4G!@
zRgdqMG)$?74>n-n7=ivl*zre8aq0McnicOhXa{PVZ0a>npCO@#m9InhZ5huWcjH17
zVrEuzLo3%Sv2P-Pv`6!6L$SJ#et}PBFZk=4Ptt<`lSnn#?#nd2ZPp)jAg1hh>vGl~
zL(Ro*%xDAHsDng@<PXjHSX4gO6ejgaw#HwZLJyH2hEzZf)NL{t@D_Rm`S)i0;Y=q-
z+*(#2KmB5*1+_BJrx}WxtK(uW`y$QBg8608ZaW2aRt5I&%cGnyV(t&aeu=E4oF4Aa
zbrSTQtfmp4OWIZ5$msak%4^MRx}xznilrB9JYJ-r_$ukP5NPs?#5|E<w>F3Oy3AMb
zXM-xroT<Ul(;#sk%@}sNHK_VQO}_A$>|2W~?UTm5Hq=}((azuBdSwn)cYI8*<-|0=
z_MVGgdUe*HFry_l?Zp$u87T;1=aB_qVYn#IyksQ?f~_fOG8NU^uk{01LQg)McI3G1
z8-6W?9DtuuN@yB|mdoPniPa}cNB$@}H?2uhCiJ7Y{3mV73VQHt(hNy2vRM|jm{1=0
zZ1_17N2QKr`5p+QRVCXoW;uxrDW!FEUElW-zZ>@E%@VC5cX&Os9;acvH7q`_0%g<?
z`(fUt!p=uKGOr=f7Fs5y)~CYLiSbWH_%W&jBz=xsH#tz2)HK8p39N!`{M|nffNT)j
zRd)ICFQ#StrgA2Wy-{C+=fG}iZ>DUrg@X`jxRTLvMFWzaqiUf+`Xo|0*?XKY8Dh8P
z!;uR;Mc{rcZC>Hz)W*p3_<SbIrv{aW_E0=V<4|GkIZdhor^1LFu&6<~GR-JI{|vY;
z&>%TH?#{HI{$K~&G!4Z<#!-8h^=K)-v%REKB!l#c0z7w!q7m+6+%vDm&Q04PM3eZ1
z;mlLlKlf#Qu}b^a@S~+XfE{oL-r!3|-OTLG5t}Zizi!ajZCBSB;F=apywbQ9i{`l;
z>TsIsMcx^@rUZ4;xw7MRBUeY8ekWO-tWgy0bUyXcM1c*5!net(;4|_qfaWAJTgWq2
z9?zIC^Go6$_jy?QD=1t|cTAts^N16pG?6huFVtgfkR;+@SYiDuq!ZqGvVUC*aW>JM
zF|6XN(ck^caa`r#v$~vM%*Vy_N&%H|)+BNMby_<GYV5M5(?%=Ec+my*q+6IDihm=+
zh>3<JEWUQ*OwoE574~D!Ds%VQYfix|GTW4(Dp_qd8CD;<lG|r)y0y9yu>K$o$B6!b
z!EzFzx5^ydY&}vsjFV?Sf>xkDNPUcZJ!KYEgdZ(S5FtO71>r5BEEl36XrD5kL0DV(
zE65;rdZ=f%)A-|}fo|h$ZD3;cX&~rs*$B>^C-taGC0X_G#|NWt>&D2?8I49^2*q_;
zgqOcm?)i-7b>WtM{-ti9&(&W{D{rXI+J*eAZx|E&gc=f!xTL)-#Bc->FUwI(ykJd)
z0V!bgWpp$9HJ=s%X=}XBmKD){UXQm+`;!(kh$B7YyYQDs$kNO9y`9=W@qQS4_(dZ{
z84mQzs=sgZbN#~Z3kVlXBRl)1dLpqFKU^%kUDWYehxRmG%?eHSGnEg!kmD5|b=pC&
zZ=v1mI_9i7z157fvS8ao?4WEVFC~iVr5)4_b)hR=1+#cnH+`euS8_!(N5uX2(oYJ}
z*`!S_5jYqA#bpOMrFg1#x|tg_k(R@TONP9x@#4GRW5fsrF<$u5tb$!JozKbvgs<jw
z8MyJ<d~9=>TmRV$Yc0BAH*UWM@h<d+LZOB@;dMN8$r6{`f+4Jl1g+7X--h>*>Eh4&
z;CFiM{rK-<NGa`ONOPPTav*wLufGl+CznCDy*F|zc7-Z<BggF4<vk71i@};mS1DG7
zqrvKI@x*mJr4x1r-}cTfYMufN-$y$ow#CwIKtCy&w;t)NzUtSZr)BsnH75%W#brDa
z<?xzq|9rtKOT-`nRq`i%`jQ4o{=zSZ8x>HC7{ei)XkyBKNK7!_90rWIbjaQJ_~U#h
zU5uYy<Ox@(6Q)qDcNf6d3SG2Iziq$p1(z4`C(=?hAoa{I(Kw+4@KVtU-hhyQ(eI~s
zkKLllX0(Xh-JK?N-V6+3clCVLb5Nakd9_(Hu06r;BSCZ_l^+B2Hqyowh5G8N=J0x(
z#?aCq6E3|`XOjM$#v^-b>mi?nep}EeobDWXe)!x%M8w@DZ=L0EXj<I8hS#$voRV}w
z(=xc%lz-+AS>5#anMheH&zouoQE9D7j1TeSZULLN*I$<o9Fe;V2e!u8rKcg{bX5y`
zr3>!3IV93YZJv>1;rW3KzAT8tpt)Ib7B|BEf4fWJg-v7ZR{mA~PY%jR83s}#hbY4e
zr+2MTeUBnNcRA~>HC`i2d#b8^5qe^t!G!X^EQB<-haIZ}Da&VV+KXc!Hu*r?PSs;7
zZx*?@>{yamEwPGCBfF81phLHolcz*)cee|gnFH-tr9tc3wnLK=4vd=+!irRytS;qi
zNIW*(P}*f<wPa{YBJJJrDHDRkZfz$MDZlU(GR(nEox;gX(vgO+UU?o}%KBwzQ~F4Z
z8nQxVPwC$b;VDeT#+&N;6|HlV?eIRPG9yL=lCvZZt9S7l+n+!437k$w@1S(xR>~{e
z?~-OTfYVC`V}09WYRd&`cm!065Ft`$lN?z}92yLAZnR8%6rvqE_C6;3Ljgi#_8QrT
ze)|;dz~GprB}FV1m(O9{<<y~jK_spH+C&Sm1OZh(dM|9rW^E302i-u?Z$C})FZvb9
zSy}w!dtsT2g>kAB940F?D6ySi(^m;pu+RpC>FM2F^)}Gu1eSV6?{#wix&re5Ddq5A
zb?Uma%%F4T{VIm<03_%fbne!A?#BPVd9(pr_ZsmD&k1x4GslCKn^fGjmSE*ud7J3&
z&Eq<-U4?N~a_Siy`d+@avX-}U%kC7`3oBuZZ=k)Qr~MW@yik8le7o!1^0R+HjQBmF
zrY8t@DI}Flb!|?2B%`AB1Z^1*8mg-Jg^lW<3!0sSGkfTAYM-FfsiV~@3dsz;Lbqvl
zq;>X64=oN#(p^%C*j-9gcbGg2$Cl^hO?%u)tHyoQYh>?6i!sDYE+Z3Pf4lx|Cyj7)
z`^ufCn5CXPY3hy1WrSeSz>D8DHQGHjai?DEHO}U+WyF%pc?BJ<yngs2m7^4)qEEPI
zE6$y~n$_@Wed<UV)K|z&{^f@8y|{fP|Hg{HJAqQ>i0qtZexbxr+jVKH&5Q=-=2FPw
zi4N+Tn*VGfq$AY-*+@4uF8_-oRT$cH5bex^q2825l5_}epf|Us<z^}<mmZcy&b@Y_
zr{(G~I(%~6yrlKnE1P1PhCZq*>-xr+wB{zlh*r**fFNU$J74+w{mKD6>m{IBU_2h_
za@f(?3Vp?ta_+cL;zl^s?68_HQo|OECX66Coh?30P)n(4B917Dy|c9WFZZ&;OG{I;
zdo!0uSkWJp7QH|isczFuc*$c#Wi*6|i)Ry2_%_DH0-|MUQm^xrQUBU=`TMB1^?6ek
zHgbB6z1dR3j}q<gPN`XxRFfq<hE76y?o;^<Yvs)|!=cf>4e{4CH+XMX>S`mJa0S}4
zG`VbBLJ(Ojg}bCkT;vUjuae$|;&1vu4|FkxU<vPXxym*WXh`9XbhbLQo;tU60Mb^l
za@v01@0%Rb_sh#ScgLu({08ZiUyJ-3?ak%g1c)PrvqAeu-GfSMhU(Z->JlDf(E~?8
z14n*y<Rp2^_%ZqvnQ@RKN5QD&EL@SHX2vSa%u+_#ih`RTdF`w&QM+SfZe0hILB5jD
zn9!9{xY4iV7s|NH%4J9BMdg-4yg>n)iJt;~n3m2qJCnpfx|ZI}4D=F}H@B7JvW<%A
z1v?~ZuqBDBX)!5n8UZtLj??UBOSR|f=?gH)Gk<Vy)1l#iI{;f2QYLnaC*6O(V(n#~
zqOIUMa+(T2noslfYbO#5Jv|d%yJuz=3}$oui_Y7K7$*_$(vK`WZ2GCBE8w!@f;wYV
zr$*xJKH-huFop@5yuWei&3!w1Ve6*5NWhdn=f;hH(34+SFs7Bl)c)E7yKS5zYl7U?
zqEfTJ6k3*;rL&3_jAdex+|f|h|K%fy;nQD#GHLx>7;B4-DhUk}_l2F!#mP)avzQ`g
ze@r={6p^}p*I%K<HL5pG8$coVPqA>byuSsG;6TJu;lp4?-HWI4z9j~q+D)}w$VQOC
zaXpkEkc#GGc3vf2J*psNceBOWlX`V_vjGwfzx9LBGca18HnPMKWut;-1Kit?j4Ed{
z5#usuvwL&fRfy3QcpGzf$JgsvCvFLPK$n^jWzB=%iNWf<o4IZyWNA9$oM~S;)B1AH
zU4a*>?yKj-#)A^2%4i7638ZQ1u~>?hqSK4W&b$j>rdn$>e$*z(+$GF?wq|Q+>tskv
zu<ho@#+ljqnKfck+vFsbvPSvha`2Dx#s0>5ksUkg$jBTmVz>p=ZKfCuqf9+fH5(YJ
zy7F0XfWrTDOF20?y}LU3b$`&Puf^xZ8{?O9GWTjg=;JE6T!tG=G;O62nwnk)K-?f-
zS)6u-NjWYB+yCG(I+=PA-79Z2GQ7lWX+)@upu9Fl-z&wgd7skFI?^dqlhZ#Z8xI3R
z^$I7^Qncg^v~7UBM5(+)QD($*1!2(CH+{P$FmIAPs5;F_=lHq6(bMKD+&Wot+v2V}
z+~op`W|Wj}@tMLA6?VcRykp28vywB^iPfRB!*APccEI53SAb1pn{F)r(qN&V4}%in
zaGtXoDBPpHXW)wc(>o))8Z3?wj_4PRUNyfGm~CROm=dg7nv1i=$gs0ru13IO<4TsR
zQrF@qb?losi?T-M<Yj6K@1ncGIHm47hJ5^;S1@v7-G9t;G3KxbB}V`zp4<%-rp&1k
z3)>=8GA9~pP4`x;h?^+<UI7}!0u|t}7m${ZS&=b=Y>y{j1zo|-1HbXoc}h$SBS$Fb
zd}w@@TzJu()^h8l=*zyq*G{D9ey$iur9sC3P=I<k4H`9g!qxNwt3H%sJMS8hoGg+X
zR(*njo86rF(zb>50loTO`Q#a?Xxl=J`SGAzNtXos?~zn|S=0tSp^=^8tB?8Liu+m3
zKuaI!Xx&~d&EP(dUu@(WFArZR`N*IxH7}0hT5l>!oL5f)hSy4ksS3MfrKOc?amE5O
z^Vh+k7LPxPt6OukSXoIAXLjU67^A*wT8yj&T~+B!lULAgB^2V8@9Y6?CeyO6d#H&z
z-X(tj>Q^36Z7D`vOpCNu0FFt*9LJmioi9$SF6Ad*2gO=`iXq4t3Xw}UeMan`kg%N!
zpO5_N9aO!Czpv+D|2v!r!y!^;Qh?@>940`}n^E?@5tcBI$e$S5`k5r6i(T!jlH5>5
zAN+QL-T90^6|~Yzrf#p|-m2?P^vyRP6Aco5eTcx)qM}0VKr03q$;&=ck2L{tHwMQ3
zaSq&wX_%P(T|>$qvtNFOH{vt$x;FQgRt&2d-W;mw-MH0v%Py6+FD|!kYS0i@x?FkO
z&<%OC>AHCfHsem0b`WdAF#ggP>NRq;sJ=KR7FcIlp59b0y0tuGXZc7y39mPUFqKj<
zVA#G{j-AadZYwTs*?Z$BwL8R8{wiF_R_zk~wGgvTLA!)Ffndz=E8%RiU;$3IO(orl
zlUkIno<T|lRTK*c4VooKw99;3lT6TVR@bP;%^BGOngpqMh}EJcpSUWO@%(_BhFhh}
z+R@cPR~Y(_!LG1+qd8trW#&&X<b}SyPFHRMh3im@#{2a-lxYZ6I}Yw`CST&}ltWZz
zU5ZBxkTb6z@LxGAnZ)|VC(=WU==WwwX>(+Ql~aQvk;E{`93bals5DdcD6kE9Q6mhe
zQ1<bX1}lg-{esmo>1IQVO~c~J1Bw0w8ZL2Oi~^HcfYgs&6T9(C!7Z;0OeRduF+G~w
zvB>_Q&6!!UBGIMfQ!d@VDtu4<!~Fcpp{iCTP)cAQ5U>e$kh}_m{Dg&H*O=ajV4+Z9
zq0tb5M<_HzXjH_{J}@6(q5T(+{JXMmJ04wy-Bv5*_)vvA&*p44&$jPnG%&XmVlyXV
z**<wplAC~^!5v-*_x0`;R}2nUFwc+P1>TG7@dv|K3cEX3=GL>UvfVZJUWE;CZ;&*)
zkuu_S{@QQk;0*#k-(KczxpoNef_8g=xh3$FMRC#Zm|CC@!%ZC(qZ?^WwJ>`xMP{aK
zZZr{{Q>o)OSEieKyvC;fRD49s-yRorZ_}Pr?0&W`TJtl~F%F>w#T%qG-CRiWQ$g{H
zek~4+{MGK|P*}=|su2CWLpI&Yg<=cjEBRLe0$L_y`A`n5;NNH`sYIU{iqGA)WrE_W
z75Hq*A@6=`;N#X{xq}{BakGWr){gunE@^PS|6=2~tc#Cc1CFHaktBXGwBL+5!DEbv
zHfZ`f7~UCA#G?0g4akmZ6C*-O#bvn8u%qXYLErwg3TAN{CV*vLS{b=Yzlzs+RZJvj
zzs7DjX}C)k%`3=3tw;pbf<ZfV8bt_&&g;qUxbJDZM2(?7HiR$oMAfQN3>LTq(fh5$
z=r{P|$+Zt(YW7HgRJtFuH9Q5Lc6zK~##B}6m*O6=*sf;x0t<P)f}UTq<M3cVYanw-
z=l&4>Ai{uwjtH%Y#lFhqgaG>n<1ZriRdihRe*NkJX#vJ@wpY7xbH+k#8Zjun?;K{@
zDlCo?4*HrCb|hDbvGuE$?&vdAfCuN$nS^jgh(|4);PhzJ#9k7~6~Y2x7793vq~D<5
z_{U6WDB~{)R$V1WA~wB;`uUx@2<`fWL|M9HtV%<zKrq%aZ2RL)42{I2gNblQduSZX
z&+DV8&?KKZq2ca=RU%d@Vh+n(6S=xH-9Nc9Qsa_lMK{AZf+OK`P#W4wa(s#L4>T!o
z9m@+55COVed2>mFy>u(7j0`B2{o)RT@x>j4^rrEb-71bZJMjTn^$ZRQn>RxuYUIQ!
zjH7D9u7I9)sVx*Qb`<Gi&ojmGJ$y1GOX>Vc=yz6Tsmrt`DjCXI=d?&Ey;?>ig3NSB
z0%EAz^OEIfL6yP|sOEsX&prHtl_)&6x(H_5`jT)m@pH)malUJnP*9?%`Ou0%{^%Tx
zESP_Gk>=DD1JJXWLcCUso<GzOCrhHjgJ)XMs}sL!y!vU)D0gllehW2|WoFJ9PLa;F
zTyx-SK+VlM?mB4Dy?+MxI7^K>V+D6yxm&|qFhh23xSFgpW0F5-XJ~Tes)A{*&ZW>P
zHe8LT+03V>k~V(&wx*{j9I1GL+x9v1X}-@uV)Qu6%J?O2Xi_!I(X(V?ZQtz1PI&$t
z*;ya+j2+Qpqavm>%7vx^@03wzDH*YT0F4PW{p$EBCT<z%2d5$@iy83i?+Ex!KJ&p9
zWZ2M&8;SdR_i!z@WKeUffuRghswtG)u1nnWH{4<;dM)n-z4EcNm3ZgcXj{Nn4H@Jm
z8WlE|o`O1li?)YylS<vqUq2AvvGW#aKqy5EuUZj&bm0~YwB-WS+zOMajT{HHEi1;O
zODav4nRwy{13;aTHL$oiR+XQHj9H%B?!q2u1T{F{RBTj?+YrX4hcH>)AN|U_bC?Nq
zR8P-yf_}NUvs<fiqI4lGEj_q51L`dONMTVZPWKxL3ibSG&g^GMR6O425o&0P;L1WV
z{aj-ihez87Gqr*-grr%uV2A0*FzalnbtGF<pV6>Tvzz}C$L-$U3tRE)n*RlP{D0I`
zg~+T*{&z3H|3!`ce>}<m_YQpCX;qKQPq2U~ha`?MEl(2$H1zbh=VrVC>KWnQ$G2gw
z$mPDRzmOPLZ$JzaHh&WS`xHlE?k6dj6|xueYNkT)^_1deN~r7ThL!uBE->JW&x59X
z@FE7bW^LrI85_Ljf18_R&tRbdK#12w`xv1&ll{Zq-oAcOjIpt)DYT$~5-6Z&2?2Gz
zkH<u&H~WWy0YoKg=G(>kCkiQ6LfWfh_ZJLEq#N7Hxd=<!4joS~0|SvKK2%t<%B@>!
zvfOWW{B#m=6k_^h9veY8b)A6+&rxFZ4yv}gl`JI<RaKy@37E>c(ieGg@$a;Wx?hgt
zFCX|56BA>{Opq#vOlpCmT9h$KOfXBYzW?7aMx!@llH>C2p#pM<BQVj#5u&)xM26|;
zlg;8y_LG{lO=nMQ>rp@#07E~t_#b>`LLM<s8sDdmwHV<~zWU6e!k@AWu6fdH1;duq
z1Tg5*#>mpfG(TY6xL>dVT*-IZkCo4#p{a9$509mB<^BE*ucD%oI3;23jUHl$jg4*9
zNDGM$1WF1Bl*;ZnEiPg%@R>9&+x|k?wDr5EjjIRT<T9hf+wmQT!5xRi26}ewfpx(6
z@wvQgZCLT+2Z-+~Dh5-9vh%I(wVdfaoj+dCA%6iu7Q0{ryc8B1s`{H(55S4)H8G&6
zj<VcV&|?Pjto5=cOx=hYS<ukR^W#2XIGS$Xc+?-MhjN`bFRZPrX~3O7UJNs&eO@)w
z#M^Y1QJ)0t7M2DYco;X`7Kux?;Be2F7ec);XuGK+?@p##w`(=Q<y$?ykh?h@#e;?^
z_^PD}-~uW&*6<4}4>G+d@$?B=dzj*VuEh;(<qjba!}GG(Bd{At)Ad_8d(-o}YQ0>x
z)$x1zqZ^>6T82hPEims(USGuAL|r#4OG_5z*N<!G1P^mG*TMjtcBf?WrWfaYe@zIb
z^$BVIEj1$9Lyk6C`<^FrP}}e2NiQg3fN4F9-fm__Yx4Zh@X1Y@!lAIdNgal46w+e3
zCA)G;VWlS?1s?%3bNMRD);dMNdlzJV{>3u%N;u#H{wU~hLbcwvcaiaw)gSYARBC^b
zwR=8A<lOXnQ`z^*^@7mO390RKVrf5hG@RlFJv6R*odZKn6_UM6_b=c@atpN^O9S+7
z#|aqzAp>p;Tqxzr!3I^hF`VAlj@=JbK4Z$WTlEkbxT~99QR!bc>wUQAXunEe*L>xS
zO00Z_5@KLI7&RmGUcyMm4HqR8hjXPB8PZ1A5vBSvM)>0^-(U9RuO15C6&OQ2_QU3g
z0ORWI#jLY<Nw7E>Q+J!pJaGVi;h`Kc7<!$T9dOZ@zAXe?9pUZvfG!G|%KK~ZQxwEh
zP52od`-+fR3(*>D89Cr=nNdmU+-`g>&d`bthz!cw8eHoL<@%x*w8%EGZaG{v-WS9V
zW^$tRUF+t1qmQhP31PW4tsFSROt*tJl`EVC=Q-+9Tx}z|5NCDwZevnKyXgPOTD>4c
z>zR+bbfn%CUR#kGB=yw|VPWA33fmHJP~cdJS)talGgJaU;~G*T;uWw=a#Gbn%rB*g
z7gB}uZ3(YInuG8tVi5CQ_DKU15GN0GinizEsj6xxovad#H{DRiPmaVL7$XCI6-}-n
z){$h?K-u~ddL0Wa<uNGd9K0%{oR`S^Aau~w^a7U+T>-0~)cNP*GBDiRy$tgGjr4r$
z6;jg{if#y>;H6flye{a{@!o_tG_B$WV$fit0Oz6<N3XY1SChtI6Kz`e<k`w>f>hix
zp6{mI3@0m+vQ9H%(wQL?C~ZH0WU{(L&j~GZLucu_dcbXtC~Nb6)5k&n<s*^A{gTJN
z)kwo$qMn=kf}XfTf1w^5=&sWE0;cx6GBnYwasLYB_)oDgApqPQiS)+xufBl7r!C<-
z>LA|&!C;%njmT6yma@FG$>)h$n%4h(l_F8o9c@3?*9+`A>Q@pAp?i{xS1wwdotDjd
zw>Oe!^tFdYLaMb}-e+S}5Tl{Rv&QpPrQ)Ur5ACQROm_c)JI@nK?#h{P#L9@pVHFY^
z$anNXL)@ZqQO^2@UH~%#Xv}#Kv-F2l?_@kGNockUGVEL+>WW@Op?7DslrjFq*r)oo
znYaZScA`ItHsw*6Hopq7or9fmL|1Mx`!gY3lJzu|L#*!`(Tk*kInX_UPp7F6S+DJe
z`hGs??c<$p8=g<oM`6wo37@#0vlB0d_Q!_OcpP27Bi9$k3MTVh(&Kq7ku@W8!m>sL
z<bSwk{E>?Qxl*inmi5_u*nz5-kQmVWy(A|zVd0I@$n1-zLfIsVQ@(g2&hsVrizn3}
znwrLn%=5a29L(>0VH_>2I_Zz?sm;|G9fdHkPGL>vArLuX0FC3g5dd=}e(~f%cX(;z
zhGUi+Tl?dH+6Ib`E5fVYfaN(#*1fmasdc61Ed`(?XA7X!V&)dYJpIfBRC*S2X7AzT
z6T8%1;2NMXe57q~l%gmSo3EBG6Qiy6o~s94G?i4TQsJBucXm}k0tHc`p7L7wEns;n
zn5oGBNjQd?jtmm^76QrK8QJDSGJKJTL(Zd2WM!Ok`rvKWg*<?W3AAppM7v)+dAo4Z
zcIz=*Cq#zvyzIp4i*nwp+0$QI!ZL`{NLNEwqkw1qvL1D#&3vlxt}S6TEyz^RU`iZ~
z=#3aR=aTPAR9pW8COin>RQP!V3LBuWOJe%albbFuT?Q=cNz(%)EdNf=#<UEHadW41
z3LDX-Za(r87Uh{}7&3IOAerH-E%D_eG6$iqtoapsBjK6@+*J<m*5XlWceRK?%DZid
zHf|?DA8;I6^T!=D9#KjGDYgf|0lFRsl+U|d9bM1Q{1t64E+-uFFDq*~EiL$!ZhdrB
z#v|CTp=<CXkuHXJ#}ERN8l;B}dH}s_3%(*)vVPm@647?wNdP{n>jz{{a$H1*B@6&J
ze0QM<0bF+btpA0%)cx==e%Aq-i%gj_Ij}<&g6+R^K_+4)7gJv*%kAelkG9G-TLW;B
zLEEKYJdWbz>(MXwrLZozMmiuB7RH6^jb$hcW=Sw6P1)#Hs(Gf*QackcF)-jYFf;=C
zNqM1hM#9x@01Vv<vZm4D&R_rGw={@WkElf;*E8wSg9~cx%z&n;DoOdl@d1-6nI=-S
z7!PsGfSqSeCCY*oc0@$P`O^z5bO0<AP^t&~HyPx)E#6r!jsn0%!1kk7!`hRHk&*1b
zL4ldViH`tQqI{UhN@L;w^cJf{+`NnqAP2jP%@4X>_QY3LS55g&s>CrcK$Rodfg)Hb
zkNmCmIG^(aEmKxlZM>GK4Q+_FE~9Vx@86;-Dp<N6_QXtW+%Z5v-*LnF!}IwAZag}g
zqVfD|OO?m$SYHHAbybz`gF6qihPrxZfppR*DRh2flvdr!+mV{%WKQTCOoNL^LaDea
z^IwFa+V*`|#T6C(yJKn9=2KMnFJO}q04f>Mi}4tyuI^oRo!z~|9suPp#zrl=rzk%j
zr_VC62qsX#31&@HMR8d#<{Qg?@B=|A{Rc2w%6JKq0Du1e{Tukd0FeCP=c^j>$>rN|
zHYc>BZ!UCRmp&@6rEyyS18~;kyLmOikRUm<hy8QCqb7jv1he*1c$qK`nWNUuxG)7G
z@GzhY{sYCBs;FE9fo?4o*eDp*6YMn*xF|GH0xp=(Lo7zQN-@bZi|Ey#;y49wYCnOI
z)z#jUMxTRf^q{t_e!DzDmJSixe~<$0M@S5;0916APXGo^Q2G~hU;W<Kxig)IU*5C+
z|J;Q8|AzwMzx=}A8JU3!x3n5Uwoq%%tkAGlJqwtHt%Q}0g#H<Ka0UD*Y9)p#RLeHE
z;aFkv0rUP+KadCTmE#w|q63kQt4c7Js)2iG=<FY?iRApva;8eTn;IIC(UCGp<p9V=
zAGvM)JdB~{dK);v?YmQXkD2CaXGjx{$|~v7kZViG?J5X49r9VQ6v@;EdJhpL5S1uZ
z)X7@2)&iKyBT=SF0DO^CZyuS4XfmGodT2L?N!1e1hxj8j^jpJc4yvUJMSt`uyO?A_
zwV2eIG>>a5u(nSO@95vK?Q~x4T*1mUTm0|P3ey{YU3JW|?rvW?Z29q3r!HiJb8w#?
zEUwV@X6Ah>{^D&7qh_)ps>$5tm6YSqf^g6JPWu7VYs8iR2`^?XorUMk9oA6$yfw-O
zi#x&ol+s+AecQfut&ZL%bFe|%k2>=+*}*fC1yhfVDmfw{800C}@pjmw!fFyz`U!-k
z@0MctkWmh?Ncod<RD!y0I`fTURy__O522x)g~KpZ--;IVPX~d(SPE<-i=Vh*9WuWo
z*gspeBl*X~@_kwiH=v@kXajLi!RQLP7eVxpsFJ(d5c?#~F$2N_%)Ot0%HV+WlX#j>
z=BD0LHlvkWkHXM_nmtK;uH7J~t?khg^kaMiAIAY8@L;5m6Rl=R0rTF{bcLhD<~Qok
zLOw}4FM(6HZj1mBLj!dV{-j`?f^*lbhJwBew3>}5yMM&*(FwjmXL6U!ubc3*e*`>-
zd{5W<rR_G%k%B!=Q@Cc4cnvt{EKX6ci|q!9h-&cO)_nnpMg*aul65tBztlfqh$#kw
z@=0R(x&SqeimHg&z77(^d^yi$-|>$JKyz_fX@K(lSa<0L=mJHEXHpsb<W6q1`g620
zGMS>TwJ$FVdx4x$bA}z<<rkWS7^hpuh^&C%Dg_b_c~0jozhFsEVViJ;A27Tm-y1ir
z+YzTHZG3P;A?rQ{JOOpa)0upH0WvS7FJMO$IT^VP{Wg1N&Do6~A5NGX5hSgJe8Yxl
z(-l5MP9J|9DYRcDHV?e*P1rf<JN53l^w@`oT=YO|7}`e7rKxJqRGZ_gQg)ANZCB!c
zp+F`2H>U@r=aVb4x;h{@oZiM6`q*r{odbn0hpiBw*gVvczsW2yI<p37)ldAoT&-XR
z%r)694E1}~yGP;~6M#Ke+6w{g?^m^lPVs~9F@4#D*7z~A$``6U-VB5*!@QG*hoQ!R
z)mQPg%vObW6K`L~8t}X!K)~kM{CN)LcgkPm3auZ`=$vu>hN=)!zUducaEw(e1byh`
zS6)Bs+OSsa#KGY_PsMM8d&+Do^erDLiZl|t;1^B+lk;khrA36?2-p*Vd}}!?5xqwJ
z(Y4JV`7HGFIv>$jjT+m-=`MLD3p=pt$G%Xhlre;<n=cJ8)2n%4Q+P$7`~JRiPr>5D
zK*Opr#KUmjvy@vnl6V>}myRM1W-;L-W+L>H%ZiIJo6$GyE5QSi^64*;YGv?M&I-dG
zfNw%|;8yGCWmD?R$)i{(Ar(AtYN(8B1-e13lEk#k$A-g``&P4ar89T?B7p_-^%Pjo
zgqW5Qi9-rDiS)?XmE;^xxh59hvW+#TBh{ErT_5nI-pkOPV25|zn{ez-AolD1SIU<P
z;vCC9e}m=Uv+Tzh07Ws7U?{dx-0t0>BcV9daMn3)B0K?_$86%QqAzlrE;o^%<|UM#
zmCV8FNG&Y?=y}Nd{gBiU<{NS{;Sw#Tt;yFdO`Rb)X9E6MPMayt4FMWs?}LdG6@OZe
zt^9xCdQlAJ%X^(Bf5M$va*i}3QxKO#HS6zh{NsKqFB$)qr4^n?EjiNw>r08({VjV}
z#-(}4WO|u>#iH^20aQ~?-2L374hb4`hTUC^7)BuF&7Vb#FL{m489R~aBR3a-g(TY-
zv?vq$%Lj(x0PLl62J|^Uc!q6@PHyk#zy*`+{-;{quqQm();$$}5xaGi6Rnm0Jpu|O
zivd9+$xN;M;$(2Zus5=3C|D^usYJFo%<#NPSu3(fYu80$Gi=9OS6>?k064DimXdlK
zC~N)01);?oYanx`Uo<)ZPyfeC6TAN)Gwp!?EW`MJEfHFKEoktk;`ZOy4!<ma<bO=T
zU0nrMF?6x-7LoMgNMwn+6zocfQ<j?P$31j0pUyWT%yDsMmt0uSuLuMqg7_T?U5}qg
z+<sI9hK&~4Z!@h0kWVF8;h~k204%|duff9TQ@S)8u8<dQOlC&X-ua;E#f7bQ7>dv}
zcl#5L0smVM49oKk$$B^ZSWM`*y~_Fc%ytx#$4T#E!E+w36Sg-zHQi^H{{Domn9-Pv
z!E63irC}%CRFTJP`UdCkWya#y4o0hc-y5^}W^#qHAbmBp|Fq%HfPNdT^<q?GrIVl~
zlo{gv8l4jArMKx15yBO*mgNv#S`ANo(}K!50JEPEK*x&e0jU4Iwhy@IirJ92u>i6)
z<SOwKJ+U`-C%_$8w@E_aF3bUIJHYvX^~A!e(>GCsg;>_u=lauW=*s(=5A8MV9x+q8
zdSC$&^nr+TM^5sogt8HJoFm8qhgonwY~?3lqgnM8dPu|EJ-OxS22%h$&B_I)ufegk
zmGGQdKX1(F-Fx`RQEtRtHhcsHQAP`xvju0}AaB7Yh&T@4JmE)CK+IYFVk<1x9-czK
zdXJ@t%K$!OdOl`*Xu|MJ7RfBU6~&u6DdP{R=G|xP<iH9~YBH_hi;MB6^8nMJpNnr!
z1nr&^o)E2AS@(}y_oqc`VW_&D1#`>cUA6*Y)N;rhD=9D+7fg``uQO-8D|&BdZV0|<
zXYPb+-q)Og2xII?{cR-A^qEm!5Y$TYn@d>>5ZYza=x9Hej9)Kmn_dWJxUX-hFT_9l
zp-gLw&bnmfA&|Hc>OGY<esE)YJ^edif5#`<AJ!h<-|2_4(Z0-g;kxEQxc1_KV&SNv
z|BBw=g1F&Rl-V1WL&LgukK2B~-`XQ67wZWxVaS3w+JT|R%P4=gNOHaT;u<4DvhNOC
z#HQ$Vnzq)z_Ikk|mxbH!)(5W}I-4{+lRRB#a8A-5h`byl<THmf|MJ%$e-Gl`zqp+h
z_EYFOU8$lD5tKqi+ADix`HTpZ7+T%&2WFv|GN#Z&HPsw=;qzgO?;Wh_Zkf#=e?W}B
zU4Ep$4}hKV0dc(*g);zNu;uOo9MI@i(1SFrO-Uc0Ap`8fsUwuu?~6l*%d45nvfzh<
zhYJ{H2gdLT??*`3jtcyl%82#d3{rhh1e=Pr@IwZXz*MbjjLrz0TI470u9$wiwPs8E
z^SrY@0?X|K?|Y`jSnnT*LX%{_(*C{{&5>OXmp7H1P=RXiAFdMg^u&)uj3<Um-05z8
zF6_Nrw>yjmmfPkD{-DV3S?MOF4NS!>NAL+g3%0%qaOv9`rd%PkW5INI!D`9-AbPG+
z<*SD68yg&X3PyFjY~h^u-4fV&Yf*m%J3W{OFVx0-@Hx+_wvIRmdnh^|e0wChzq-8x
zMn$+me(!;?NtP(Kt;osI^}uhRry0=hMYr^$k&57j&f387MB<EBuCwhIIh+cxGUkdm
ziO5Ow6Z0+k(G^a+JHhH(kbB+pP0~ezEq}C80cHlnZ=Ywv6pfdS^)y~)w`b4$(?JOB
zhp3nhTjHVlwzSaMh~*9g7eY59+4|RcN_~+BM_n1p`-aWJ4!QL|Yfqel&OP+df^N7;
z_KYYX{iE4N(AyquI$JL{&iSPESr3lSjQ=SU#ra(f)uis`wP^huStyDAE#3=@J6^+P
zV`a-|Kf1MW0v*^pp9C_Gmj7jxe>Y2NE9Ykj%bx<IIUC5Thi_JWDCgHPtjQA}QueZ-
zQN>kIo35?k2S_le>I(4HK$34q%E>-(oux-r)(Gd5YQK_SRG{UB>_~!r3R+!Gxud<d
zXn)jbd{^nf{{jsT9UL2v-pCo~h>>XbVj>o0(8RZZ0BKp0cfK`~pm;L{JeVpqo$co>
zYW>qY8MtTD_)!fvQ;GQjZ%VL;(4lQP0QcSrU4CMW-0_r~m{%ZR?+r<~3O>ya4u|*+
zxxbGKD|IbR^W4u`-e5fw=Hhz!{p)N*yd7~{ptNGxZpcLp<{APto@+&Kt=?H*R@)PF
z>&r^xMov~6){5SP<??qVeNO_x=V%Lxw;C+lx6-Zo$5Z)@T?O>U#*^+4^rZ8C69ds1
zzVp=%Sfkskvz{f_wTL>VNEELM$hkt#3+l6$k9RP6_jUo7iwvaNysKfZZ700iZ|&e8
zMq>ALj-&)=<tR8=-JKFbfvbP%F8r8?`d_(*Q9^*#AuDIe17ajLeLfG{cW7ZNWo?w-
zU+AF?=QbW2>o>R7O8cnWy@VN)xlSC1hx2CZHf%fo1vHM{ZoOD@t?T$)5RK}o#JJwI
z;^g=o_nx|Xqe?L8AlNsm*n!(EtKZI(&LP$U?iH4h+@791F07W4&I?e2-I>4q=pmPi
ztDB8_Um^OzP0HiF07d(st^)mEFF>_PlJj8*Ca2$XY2Ar8nTPveq)W@LXBOUx_?(%B
z5K@yz;ZxMpNX?uEP|P6VCRcb(g?>})>ZAZDd+>LsMiyY1pEyjkteinEomE>$<bktF
zOO*I`o~f5hzYrIIytOGOs0RoA`L>{D5_^mZ`I8x04glibJ4>~#!X^HIDSOj&_(nU6
zMZ}S)0lP(BoIsl14}j$lE_K-6*8IuysJn684h=BWiH-^yv;g)YF8{Iy`7GYN5dQJq
z_30E<`1AOCj2HZ|HgGNr_BNXq5?LS<MgdC(j3A-g4O)cCCnN+~SPNBmobn&jZ^4L0
zl{@v~+uv?joVX?o`yB!;pTS3Kd%&7OzMtvXx3r6B9yxpQYTPICz24tV(Q(ojOMe*u
z%FDO}o8sR-aTSXxOL>zlq=<hV(%rw4HcK<m!M&@!1alkdKwFcf_5<YFV?W@$KIBih
zVK?RS-r`jbnY(V_F(v<pa{b|t%ct!sxvB2+<mJ<Rem!G>&=Fg0u5R91FKnwt6@WbK
zH87D~mie7b^6dpFD+ye@`lm?O!m3Hu<G!f-#S^@LF8Jd7Z+fqwe~CCTGl@d#@u275
z$>AF3UDn&IbvJuf5^;OE?qQZvQOPSq$Jqw$&Wk8P*r0KtpzWeOKa+r0TB{GU*IJRF
z?LBy{;zVrwti1t+<ro28K+VdB>^KknSmop?*5>roSSRpn{4)LO_2j{Jh3c4m=ON{+
zbjsc)?Y^-pa@f+xErvU4f?z4<1mUF6U=8_*-S!v$*pb4rskF-!eY@PwtJt#Io5CR%
zL&vkG;}e)hfS%vxITH7Y+S`4|TGfe$8a;+wll+aSy&96657IG{jLid=yc%-xNa3A9
z#oHrCm&Lyu@H^F-uG5F*bNOO->II!F81z$Jl!UxIjI8CuR)Kh34QrnLbq-Lt$jDEV
zptrB_Rn=;EvHG9Ne@!62V%9W_y+inz<+z%qeyjNIx{tv$bB4J+gQGoRs_~i1{IzG=
zo|W3BP-UGgmyIIOq_WfzWPffJVqGfgiHx_Ts1L_Je0{c@x5I<lUI4@G{&g)0;c4+*
z5a2%Tuv9D>?TB~A4;#ovc?`6#8fkh4`8Kn0Tbt<tY(MFdN6CU;hUl)frM39IOzhIV
znzfwTT-QZudT0(UsUWJz388`)1#3_{K-Gq!^f7)40N8nrFwr{3u&01s;&j|NNH`;|
zIFTA<V*l7LlPAp0<@MttffqbaFK`z2?oSvYFIw)(PG(CSpoY1F9`cWXw1V3c>e2zp
zP|!NY|B}jUMIaP}P^A$Jyy}T`#&=}nHuWf8c231R={<G(=Ho-y>BuH&ZCkJRdZBx4
zbIid%{YnUOjFqma_3)E|_<2u@cv}5nhD8K<+*v&&mI$I^gWr+NtE;3#YnG%}+?GM-
zp-EX03JN2=0k?i&WAyfMFyQ<+oye(D1hj16=+?UDnwAoSXjU_cN67N(6&PM9dAIkN
zR2I`uMc>lu%^#D~x|$v2MXTV{hc${){>mL^3IO#u>B*~(+=(*Q3*k?#@&^qbpq%n`
z^TG>~G^pzhuAbYSu6^$SfQ>(}1=x6ZIl;fs_7JsOfO=EDoB;?fTOZdH{0*Nla?~9d
z!^q)AMywco-c&W0wsUfHmn%=!{x#_hel`QFS#r4Fx~^$S9hH1p2@!QXfSU;fz26t$
z1+Z{wNuyZ~UFXCD7W$xt_*jFX_0getv8R8M(I)X9=90JS)&HY7;1f5s%%s9lEgooD
z->R$y1^$uCd9oVy7z;?HfsVObUl!cCXkb~lc({0B$xINdYY(yq#>cWifc044nu^o!
zpj+zT2Z$$x*<@Hoqc>HhCDeWqd%Za~cm@{^s`u+Pt55glB}Sx}1&*|(LyVhlfZ3EV
zT}EH4RVD52r)CJE>jtH;G=0#*-t}#Ktz3_eA;D(yN=5tZayza`CEP+8j{U+vTxnQ8
zhUREMPd6_o5CPl(%Rr^z3h9dc#k!UOm_H*|npkmM*nm1<%BY-h*S@-b0=T2V-+ncW
zzSonsdFv#W)YE}gaTrZiUYh@SV#@4-F`Cid>G!&p_Zjyn$SxYGB?jf72xV#n|G(~0
lfV}gcyAu4b=c8Aly$>BE^P+jpz`YwlQeWi6D@67E|2HrOSjzwa

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global-400.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global-400.png
new file mode 100644
index 0000000000000000000000000000000000000000..31e2ed052f1f255195283b75a1611f115981af4a
GIT binary patch
literal 12719
zcmd73Ra9F~*f)w6x8hE5m*Nnt#oda#Q`}vP6$?<TXp1|=3c;ngLyHFsZh_$b<^Qhl
z+?}g)an^g0>^*C;_e|!QHP8HHzG|u~;9yc<A|N2(C@IQnBOoBA!0&U=-@w0Pb!ced
z7ep^@g%1dIQ&flW0*bwinhXL$0}$)U5*1#?a91?+LO{U%^WO(Cg9Dcm0fA3eNmfSJ
z-|RFWEt^<wAqEfIa)ex#iCswsn+$=Nh)5}37UQhFy^c&M`^J1R&chUW43o9p$w-MA
zpNZ8FQLCsz5%=Si$H@6&(8EH0!FWD-n@V=y<pWiRTkO%%S=Hsg$|@Sq$sECBO>n!<
zATRa+Z*t69YN;hzj3pH@GhK`&nf!<BaCnIf!xG5~er1fph=bRr;{UI!1ldjI_*A%p
z+fxhW)h%9Mp3`!2*kf_2)4rhLmGS?!1g&|1JonSqK;QCqGfPSsN58QEx$miePn;jh
z+);#*Gwauxd{$Bdf!|_<T8D<o+x(v9O+5K3M<<F8?QK9t!>xG7zSJG^Xw%bVG5R~C
zeS`Lxx~Fw%!x9TBP9`e6@N_*thx@zf$`Pf9zbDg@OcakWg$f;)G&afNjwy1>#ckxK
zG7cqkZ)aZo?A*;Q(B#j3IU!!_8R|eexlq_z1ajYd*LJ>D-T_`u8fJK-RCT1N#ED%&
ze|@3rTphlrb7x$cORf_x8y$Z2G{^a&0JO8kF7y)xq9-2%`6-~hi1Y37LoU<mnjrmt
zG*`ilKR-6ZzNIytN4B_M-P7&!ZN9ZQ-M{L^6mHWF<(H>>h9C_|^no%p%9adT5syFb
z-1pXHz9a{UjPJwLU%Gb3v-DwmlN_PJC}dyIu@q0<FSNx-nJMtB-79f()r~Hxq^XE!
zJ*u^DIYmvnec9QuF{L1HvY)0Q=d+5M$d)wa?%uHi-K^LxSD8@sNH(gWy!Su1a9k<*
z+El$et3W$T;zgEcU2j%@6nbLb6)1N@6|_)q&Qh!p#$+CPU#eQjCvlY0geBs_LlY5x
zvWSj?24P690J%8Z_W&twptoAmZR2c9nVEL@hVHIQHxH#jQrWKd5{+C2Ku(5KtvmlY
z?D|Ilx#8udhLqBVWS8yTIZufObRG8XQO$6~)fwFWsUYaa5LCC^0z2z~9*8FoxBDDl
zNxF76BrP01LOV1<pDq-*fC>Xs`Qq1Nr>iaBoN|OxrPjTGs<}d^700K0levOYE-THc
zc8g{Vc#`MRAMOo1d}}-J`myHPKXEvQn(_ziY{lC4MWQalOrPs*C=r(-dEiX0+-s(@
zwFZW>0d+NS=_8-fmM9|T#!wQaEj%bkia^weaFnS++s*X+tqBGalGNVRa?xXH&Pb1V
zi)Z%>O}_I(kU(duS-VeIqBu>%oYRre&87I#9uTWO=w09YFOP#toTlx%`SbM|NT^uK
z4OW8!pE-=0E96}yBgL0BUG-{>N|Wk3pzSJ>FLw;J<sE*f$yBLtO!EuFBvr*W{wlpZ
zLtAa`8*Kwm?k*rZb>bc4kI<g-T}BSpSAP46lvUS`Pk~(zRh)*6OLBX;Hn1Hf?tJl5
zAffS?nx5uO&$Dm*THrBMK#FZVYcvLj(&l7|&og)RW=h<RRx8y1jd_@a)+N7%bl5FG
zuSzkQjL)Rq=al`+8=Q&8ntcIh>>ZIv_p5`8sHa_?uuKKo0D~}Ethsyas0DK5b+kNG
zdi*#!Ix<dV%U-fv^n@5v+^|kRSRa{kRdTt7xQ?IvqK=QbQ3+)6i&y_X$jbzE;S&7T
zS|Tvd_?AFN-hIv3t()x@{78C#Y)+dl>J=Kd+IA<XS!*O1u(!Owvs+Mq&?uiokt)GL
zIySv2^JQl`?4daG666&&bwxc{*dzVWbrIvl>zbOzq%szAD@8Xgd7EdVTVIfwD*Sk@
zQ=a>2JPf{?!j7uzM?NgJ^O$wEJzW69(#i`1^rl2_P4w$-$9oZxcgD4fy|)$Y++S39
zx+^~Tt~l=Q_MyG910`PCbnCR`ph;)WD9qJQ69s}Q1+T+WHZ6p6${FnA3_t*V*yHL)
z?#X!*vBw>--@1nu1X!+nFNi3byvbP}`dI5L;k^2r%l&3J$|Oy^gq~=m7k5m?-i+*^
z2&Uo|m$(58u)NShBauaaN8m9e)=xkTjGM7A^G3qDA>?|qH^|64hsCKD9%uJHGI+8;
z!njPMklRVG-Z$Xo8n=zVJ1Wk^W02VMX4(E2dV-Mb)8O<B|BnXax_TQVNtD8R#l#L?
zkfgZ=YX$1*`vKY)x>DtgxyFlS`$AiCm+fDq+$I&rIFv%^$@yYRO?HzdD*N2p6`Jq3
zj0suP-IEG+C75Y;{9x&$jaGx0&+1hH345N_tH0+OZ8<<M563=<U)#lP$I?}c(QcAF
z2(Sngx`Xep3XEF2&0HPk<#PmFsvHUbsXo3ObSyOTmq&$b&Y%l7IBta1^LX9EcHcYB
zG2$fbKb?OOtM~tvAF7_5%WL_e`K=Agl;?6|X<)twWC(OQG>%Ow@3!8_w$j*pIGHD^
z)9n+T42fVu%>ZbR^gC~Ko8~hTCtQVk-j8x#Eyx^<gtxqs&EOf7f2SdDKxi!2@d7^&
z#-kx$M7Yzvi4}iwzmgvOYpaMd7sYVu-%js$;{DsYqYiDAeyBY`Gr0Z2pn+blyFf&X
z1sfsYrLSwe!Fu@fYuKGcDpYRjyQ(iV@0k!BaJfG@53ograw!V4epJci{MxPZBUnpl
z>9*Dh-@S)sA?$uPYviTDh{VA#_FW--WdB}@;wnUHNyb(9qe(a4jIV)GgUE_^voNS%
z0s$;W{U^n_G3Y$l$-ymz%TTslZl3f*S`!dG3}*xHe9ao_2pPhGf&W$po?SW4+lVI>
zFff|02d^Bt!pF%Z<oX|ZJSFsN(A9mVKGZ6IM&^612`E0DLtnjh-hi%u1pUlsDDm(i
zl<oEUSU3d<74sm_hxB^}tJVjgF~~E+dAZYY5hC*u<28Kxhsv*Yxocek_q!ISMXh)A
z^$Db03-9v?#7(I8OfTvV?Ev*>0cpcvQY+6sRMMj~0AYUgxQ055hRyflpKf`GJQbg+
zGo9p`Q{EMZR@Gv%vuwGXuC(m-^}H13g+3exQqhrw1oo6oeUUW4<a^YRf?$U%H)tAQ
z_>^lDmW9;newbo2Y5VmX8``~3BMR+o4>aisb#t)2x{HwWe<|cq)LCTzX+clr*14{a
zw(Jfl(Jzu!sx)e;TDu&U8Ut}t*&CCE>d1&n3Da+L;(rs6xfqVd!EN`7WVP+-7?!qZ
z)5nyge@m@mIg{_xniPU&ZS-RFY-+?AvXWXGn<@_b)IM!|R$@^Z;QLrnbCG>D$#}mn
zRS0~-%)1tMdsSG>6?S_U7ItUpLjmXr>$%Q+db*rGLh;ZpF>LpCtlTcJz7=mD2c12a
z?_Roh-#<8=zQ!!n?cUFP4AWQW=O5~mT!vtDy<{X&9E$fX(`i0GTzf4(E1^d0|5=jF
zVE?qUuo_xlYgMNd`p`A2QKtT^he^U&VakP$ko>Zpz>~^S7&s?L?|Z;VKqYA#?d2|J
zpXX6_<quQp+Ka(C-YuM#f>Q8~?=-`9OZ}khN8S-I5r<7_;w1PkqoU2-C6C;c^>n2*
z3!ZYSo8IJIGT^<M%3%zL-Gcqb(P*Fa3z>Ga-iN^BN~LGN-Pd%s25MT{sZss@9(EJ<
z@@=cBO!CbAdI%DY!iskfLv0#ElEI4NF*A~_1)y1km5yZ;4|_~Uo4i;aFK|6LPt|C?
za}^V?>(sn(_SY+Dv>lhX2h|$)sBfsS>6dLc{QG)p=STfRHIvg&d2wrke>ySqf|x_U
zYUw;!163WwT@z5J&HpX(JHD>885Qb5u3LBN?Rt=K)r+n_J3}q+jTa|R=ogM=S<(xX
zsQw;{zF@<i(5{y<pGbz~EhFY;z(&BM3ztp0&RoCY-G}kC4I(O-?BEaMy`MeLg<^02
zR9N(V2&9P)U1^4v?vL}>inxBT#gb(RVT_Es3kiUs%=;T^R0H~&O{Bu7Bv2uYeYzH>
z{hnp~mH2O+{cOk^L#QCCS+l2Sc_TkSD|NliSe$QvR+PT&l5HPZ^L<sf8qMXYm$ZiA
ztszh6+8>~$1o-iE><idUIP8n)AM#sBLBA;i^<J!j66^^iTyp~3GGe6W!3{zJ7IlR5
zr=H&U`IDZrj4JDt!xuFAVhZP1{2J8*d(`*A9y|hy1;LH6oY_+5^XLPug0eXiZ?_HF
zslPk)hC{RYxW#;I$2X91ao%l;+P|5;m=u0=yx)@yC<F+Py`AOaf-IT^P5z6hhh!dS
zaOjUTO-mMoWdK-p(*fq<TF+PCG`0%}V;~&5HLS$>0TE;9RE@y*o5P}B%~VLxIfdMG
zl`{@bUdw|I;5I(@rJZH*!1HUwY>$zS@i@~n>N~&5!i~}6v832rH5)vEvO5xX27#h=
za@o1RGCX9P44gmAJlx7L%k#n!YJc*?08<(uLryAbdhaqeAEDjzGX{%2uj<A%L^BkE
zPRc#P8|fYpmXY3wF9K9IJOFIepVsBMHsMZ(N#x?{%&JdDZ^G_Uf72_)*8M6~$y7|G
zm&?~VW_w1%{;S73^PW<`;a9<Yn};=VKH~FZb;_(&;7P-<X^yq+-z@XdN#Tte)RcwI
ziSPWl)xF(m*4>Tgx8=ODUtHD|6&8y(g3r4YW>BSfF;N)TGKk64RVIn=4%(Z}`DU#J
zJ(YMw*zpNw&p#CP5ReS%8w7gwKxTith~GaYY<Z3{WgSRB+6qI?Xy1qS%LeSsD*SVt
z*H7NOeBx<4{}6E7b?ft5{xRlrkJzm$<HP+g%beE4AE-ew2>{Ec1e8NeBr0T6T@lb+
z>9~U*N&vZ_XNf#rN!U17&$lfG`Og8?=NT~hR*VhjbCZ6$-|2+iU7u$gOY@*c_aeOX
zc<rPhmN%oI*m`+jDydm8n`yNOjjVKW&x3OPr*%1I*|v0zG40zku%H@@e<nkL{?x$V
zce2ij+q}(wG6cWY9q3%RHAXwVX&@8O2^*7VcjdL%M7Reg7{p+c7a?!6v9Yy3kHqnC
zD<I!0hG^o}!xTnScUa<9G>AQG!g-fS@Qh@H!GD)UFX)d%C<UC!e6WpMUFXq}?WH+V
z7pR9#ye3<;i{;gP-bCf*i}}o*HfRzUH#_{a6tX6E1L@I%amO>!ehQdsMzt&S%d=1=
zkn(6NBoo@kZ-D*4mHdVWJuE<P9!}H7D|f^`{8aBfh7@Vtii&{C9W_FH`x6KNojn;S
zKNlstn9mv&ZTpJI>9Q%|?2Lz{rK?F_R1~HiUD_n=J}0YKPNKj`;O?xNyCd1jAaz{R
zbVWmOrdMn1s8SI8atEPu`DBk0vKNOuodAgw5Oo8$w|v$tmiOVJMJE7fuOXX8ns;PM
zH2pa{35~sa-9!#4%p33ZtZ}%Y$r0?BlH-|fW8G!DpL7eYP6hf^pidmv-)2~<pDV`J
zamc>ox0}o(CVtbt#NBnJ-Gw*j{O=(!gt-^{2U7y+abR{MH~o(ZQjh-O%c7tZ^fzQ^
zqpJRdTd;AS#R%I1)c%{m4M|vf!csQQr|#exQ+ewoz#Z(fjYeZq_$C5if~cP@s&Dob
z6NiF?l}xwIph{0dg(EUnSr#ifGFyn_@JEeVi&4GIyE@IEk$NH;N-XLZnA}<e91=mw
zkG?LY!-T-`a71K*s*5k)>*TZ;#=l*Y#001YsYu7>OQUCTWQ=y)#uvC^C9twUbYTS6
z)C^;qUblaqcSb4sTI;Nt2qG?0T+fH`=DUShUd43AzsJivFzdSq2VzY@$o{a<i=@_X
zKQCTHAfP@9ga{5<MEXTAA#vUMI3e#(d28kck<lX-pw8^dEUL?I{^G9kOZAQ3{BwBo
z4ho+MvoVO%r*HSOJwBt0L$Ia)@=nXKzJLk-1;&nhpxcqPFB~n_LuHF)&!<dY9I*K=
zV;jf#nJ5DG4$F5Q7HU7G#BIO-q9?wO2q8Ba`1n^|7Q1ACv)zCU0nZQdzHS483XMLj
z#gl?nsLPdw&hZ9qMUxgoQ+f)*D~79M@zd|GY?q6VQ#VFO@2^32nd)b2sUc^1?qWvV
z3_V!H?5wCJ$nO~<pYEL8)m6m^9F~}43w+dBR?*SF<iDWus(dljwIrMW;fa*--0XQV
z5cno+AUb@kbG_wenZ);prNUS%f#vpfR~qi~1h&B5bRnnTdO&&bOivH?;}aGs%x~mZ
zxE)IJz<vbgzbZJG-S|0R>HBiOUp`(PTV1K;&Tt#e#CNtuk5`~&aZm5-FYsXy<K?7X
zgAe;lmdrz74GpQGAIVeY-AJHKkh|WF)a}!g`ObBwygS%E=WB0>zrsF49`9B}*ihs_
z?o^^t%hYTg=MT4n2JWFEe1DYqI<>IrfP7x$0Ed;UoHl5kNAZx6UcY;fh*Kub!fJ~X
zk3=A#vMD<|rBBGN{`%}W2b=o6?4U41e`KFR@s|Ch*f-|htgj~s>d!Hht~0J??YV`4
z59Dk{HQDNs;hwhRhjhO3bcx;eh-i}vK{OO3-K#jUYVG8Gq3z5O_NrNp3M@8lo~Q!s
z&%MEbcv2qb!FW__hjh}R4-$!!_qX~}Uzup53fLL-ynx6PVldRmth<$-z{)sHM6wc_
z@RbDR!T5~kw81YgM>wf6t_B^xNxr0rTLE9U2mc|avr~IVTv+Y%WYhXcKG|uC|Nf*J
zVG+o5U#YpJdTPF3%wROn#wH`l&rmVqI84N4#JHj+ZF}H*IVomF=;U3$Rf3C*wu7zk
z#Y1EL=l0s%9|lflby*Q+tB4fYJP;<*ah#J;`&P5h4Usihst1WwF6QMhjrxj&lhK*c
zgK!i5K5Bpn%!({@3Z3UmtF(Xu(f;k_OJ+wV2>8Zb9<V<__qJ_8!p*{t7OaboVFE5u
zY7X9hBAZ8otzYGotrR7P_?dS2By>Y+q)`qQ0`9gHc1p9%GL7B3)anUk%cX2ql5|Ty
zXB;%yD}NTTvZU{WjW{zE$lP-d>8O)*3Nw@5iA}X~hiVVpoUZQt(>F^EI_p*`Q!S{0
zW;Uu`^@n(!)fhH4<2Fs5a7q<7G&<qmv2_8k>^`jfLAzF>CmYhg!h!H%1K`*^6r*h0
z6XzumMW;GoSg>kQ^A&OD;$oO)9)nkvnkBzT?)xc;D((-?_XFPq&RL|M@4gASSLFJ9
zUYxBv*NJv!pqrR*m@9Go3kO-KrPi@Gb3a~e=Njd_$c0Y$L&!y_$`oSkJ)@R){_I@~
zo9UzVssuM}<Wh8LN@vqfT`9~}=#(du&|r?AZw>fJ0+3IFS1&FUXyMEq(c7LRq_My1
zk}*X-BebmvXk2P}2z2pJAzWqH+t~2lbA75p(SkD&_ptFC+~aD!I$eUtgJR(OlkQD`
z>adjipE~#V&^!-3c2Zmn20YGB0Q%vIhJu~w7}vVa2a~0Oo!@95{&dHo?_$j*5;MKV
zlJgaoL6xz}h#$FIEW+HA$BjcdVQ4hp_;C+KTP^-z%vag`^52aoUKuN)7jj!SnTI@|
zqw>#t1jI~u2EKOrT~n=leTm6Z*pQPyr>bv*DHFfVBiQ(O-rW`o8Pa!ri8wa(){=Oh
z^ay#p%DAXoL)qZ2S-@Lc4}Fvpt3FV)=zVDkdsgYF^X44r(y2r2ggl)|hIGZDZD{kV
z5wm7}jK%%e2y)*-dd~F_QJ-=<C_vnOwHe^I&5@YO>f~F$+QxeIo^Ajxc)Wx=Rxi|E
zgON7|uxS8_QhPzW83lp3)4T8YDanqD%#z6^jC!!PC=2kUsA_h<H2Mr?Bo$rf)vroD
zI#-06+}ZUAH)~~2XAD2!P&hC~etU(ZC7+tOn1f%_lJgG=A9oucuCMdmu^|}@3dt$;
zCWgV#=iBS-ABlp0-^+i0yn_I*yYZ{E%#-IlKbYOGtZyt<O8+Ln$CQmtrrxcpj*O50
zxcT$34g>RR{ie%mi_ShFo*83py042{I_~M}XcPwI+JrvS73{j8hjRG0r>5J)bF{R*
zdx7|%N9ro2*?GCYg_GuAziep#3`P4<)h03<<~jr@#awIL;;sHNFz~Q0(HzX}wYWuf
z7CV+m_Ff__^N_1`tq8f5*XKwV^nA0SlCZa^bi7bo@<<()0xb)z-XHw1&I_kVA?lvn
zThszYsmxRjDx7MHodJF5iPlOVse?xjbjpmGCnHZ~RvZrrOC3W0D#Bqc(9e;Ph15NR
z%P`F}I^lE=<72e*%n!@ve=&q@TQSEzm_o!^<Py|k-hUx+LibI4fRAsQzYod>{OA<$
zAo!E2Yf^+w^`7@S*P|W_EWZ6nk2g)V1uN>0EyV-4_hc4kav2?L=u&J^Ff}BlByNhF
z9sBik$QiZ4WIzvD3B4exF%m7-X)Xo_Tb<vIx~b-Qe2(6p*BJIn4+8CX)pN@~uT_L8
zb&|z>Pkw|spO>lU+idnm9PJ#7qCMUb0?Ts)emgC?UL#6FunH0O^StUz!ah=l2u(CY
zpypcpm9KxjPUW4~3^qu4L#QH()cGU_#lSr{dEvYa$$q0mXB(iv0I$|MF=Jfw-jX~l
z9&EdfLy)+RV13Q}<j7^IGoR@8irvJM%3Q-NoZ1{e?degox1;}H+V1VMZSc&yk@ijL
zXua!^&`^yKptY%6+39nXR~{WD>42&J^FwqClD8k~PFb$2=TCo-H%|n~{>;yh-uW_D
zLC_BUj;<xMHBk?{?6r_vi9<7*<md$iYc@6xZSUV0V24)lO%OQw@`nX)uR7|G%s+4S
zsK{U5hi`HGj!lCbo(?s_7CK?qA~XNCIu==VYxpZB{E+jIONJ-N?0RM%Dh+-X?Jb5~
z_Nk`JCm|2VA%Ep^-%-H|+iB$(UHSa40pCyUv?!hcCG;C@A|~;Rz5TmjoUF96eIV8x
zCJH^32OTbjM@pHmeQK<tWL^VM=7}!wYg~$#MVuy`tYfAYIitBZ-{z8jNr}TE3USuH
zvUTKpo&C<sBI3OFU%tt7)`Nb34{aVs;IchX+%&s6-6&U&vrjzm@w82LY+WZneBSB|
zi;5;;3F{*-@81;R3d!?n`TXz8l?nMC5F6HoI-LYm<Y*6qrEr^z@`q#tC))7Fwv&W^
zXLOu(8{1o@;^JhbGAJB1{_=88%yO5wxd7m=q%kRf#>#gkf=v+}tiHO(?hR`&Bhu%;
z`zZOZb5`W@GJAHz8`<%J9ylWBu$DS0?xw;>S7RoeD3DMIo0ql<6b!i1G!b@LFM*~7
zZ9UIZU&q4v6t}RT1YfP#aR&9^^``(Mg%0o&<sxf`>U^;Y%-R2SHJ^c{am(;M)+x{J
zdNr;31GnrPhe=xsoSQMp8b%hguJ_Fs3j{3gKQGi6s$90LOGp(^^RJwB+)C;v*Ck={
zEHcr{nVe(XVXYG%o<H_u@uXGNxnANPi0y+sUP5j+phw=;YPY)d#xFs1BIua(DtM^j
zSw!3hG~IjM|60~J*Swrm3cEwDZ67X0@e<I6H81+ik^5KYNM8nkxA)Qhi&ljjcqOFW
zcwybsJSlI6qkxy2OAh(+uZ$RbzoX|jgUv@f{Yx}>?!KMpeIdk{kP8Y9IYS{}I6Y4k
znUZ5%%XwJ{R)B@iGvTRD+KzH^+%RaHP!22YT7H)b`&CjsvCmg6g<Y{2KZ>;<V=1-w
z^_DvsrEY73&n8pdxtq>k{cxQ9@ZS2V1D!C}@8;1P&~Ps{=WTU~^u3h019<Bt5OtX{
z+ax|09QbsZkVUhql)z-;JN?q;Kh13>)?kah1TCCSEg|HYh6DFMQmn)rbRlrfU<D>Z
z{PTQH?CN!gv&ZAAAv&`^>D~u3u<e%@AZ9@SqwLySK1<W`%NQyQQ@cD`lRkYSKbP*C
ze*%$i;&Uib%8E?mkUw84n8>m$!G5{-0N8UfT%t?R(IE*#t$++7iqH35Dq=}FJ7X!(
zT_lFgdNF{NqK;Js8K30ix-N`c<uX5`V#))#HW#qkM|e7=M1)WMEM$yizZ&=+WC>$K
z4)_p9Bk)o0ek~=03;*fGQZQhBx{$=|d-4rarDOEwL!~eJpiMVPc7C(^uX9N@w3<#f
z>Sqe!*MVpTHD2C2$RuxK-Z0y2^k6vg>jcZW7XB+U!qmC$;BDW-8GB}^gsK5&=l$sm
zm7C11{!A$`+3I}zA0!isvsY(~!g5oGsbGDwV`seNiQPZgsVWIEWWg++m<bd})@1Ti
z+v)fz=9KFmk3JfK_Jz!Jp%R@aVV&^!pDsSXTshLCH|z)WozwTv(IQLsUudOrclpbr
zL~#qig-DYBgvdOvC7IYoYYZ%Te=ubF+A$`~UiL)v#m(qmih$M`3nkgf%1oA*HsJ1H
z04j{lU~h?(_HlHg&mI+5{O0K#S~GX^Xc+jBxAWeGhKDE)W!&K6d>F1EH~lhlVqO1E
z`!xU&U4b|>cp#T{;<l-eH_W*v+#<$u2cRnL$!fVD)O^!Z0Ob;*=3z8r?cb9d$dy`z
zk5vLjTq>_60Y<_{yX~#Pp+E4>N;1<8Sw`gt%kO<{<tea;T9kP4^UsAx8I2I1;oW=B
z2TPgrV{&RI_>c^t{87yQCH=?9+3ynou9MnZ|1TG}|9?^2Q=Ntq$zwnNt>6aHQ^KtP
z*bv1L!FdctxS~Zbh4Wu|WJECN=H%mkzMt7n`Tv*%$c5hgzu5w)viMTq8^2OxilGZS
z{W^=YALbM>9#*1dNRbx)-?Gf!Dk*(E;Y)->aoB@kJ6Z&M@Awi4$N7j;;9`B%=|+z^
z?CE|w&1tKDgl0fQ@`O@MHx0I*1y}6}2?j*^sQ3}z9Z3V=5P~J>_AFxujV7f;F2P2>
zR5{J4H2#w_B#dQ_DJN)}hE38ozRrzSKoLgD&KPjHmlO{-FR;W|v(usBQl)@9{Knzx
zZt2p-D|bK^cgDXYiqUwddbLHdW@T3@uI>n=``^x~?L3`7j-A#+jWJ0%m{Bo_QUC!k
z#j`abo<F?mM8h?|?;G%BqtJION?H{CNQ(M}7CexstnGZ8<?ojvMR;T1?19F&yYVo4
zvZ1e#Y&p8_$M^&51gCeIK}T##X5A*4!VYxfIRdG{_b|B*a%_mh&)|1N0<xZNOLW&k
zw+p9Of!AqoOI1|hbYpWOK{OeB6h-!s8bcm^iBn)2Qe2~KY>lvZ4jZ)ul9j=fyu2DD
zD=_xZ>}E%OoTRpn&Tj9~KW%7+zV}9OE2majBBml-Wmc2MhM;(=qDC!jB~y#fVT|Mq
zCE4oa3Td~wTM`o#;Zq{>C6l!OI%qG7X!IMzth{`>Y!5M;E?}pVOCS+MgokRvgEZw@
zEobBgm%2IHfc3pGb2Yln^vlOaXzx2E&se7Y(Nh$b#(}#}+rtaKrz=dWzg@olEmbKk
z<1mNQD0G7=8QO^N`v2!u!|+$(ESfNgi~FWq4aVED(NSvSjYtjGXYuTvrgRY?ioQ16
z9D1l3R+@?RV2sui@z8mjyTJ8()Dj~gP5U$oJPtI&A-qV1K#M!a&Wn>2@y|Co5_1h<
z@ii(Etgnt?WvZa+Dr^uaP1mP?*5#c2{%ZepTR=`{t?}_k&9VpG=Z@QsT93KOvltzd
z2CHaHx6bEfu=`21e!ZmSeL2<g-FHhH+D18-ye7L=fJkuCTBwK8p&#VX({K<;yG)a&
z@{>>xV6i4|RnP3r#5%h*$yvIDy4-_0n6WjqS=;sNQtP-51Dh>eO!O+TpU&DXB{kQ4
z)UP*dgwM#4bwaGg=bj!(Ru$6(F_vGS|0$CTelD4cK`NTGHz@(xjJ|z#Asebs_{L4=
z{RyX_Nv*C{&%jlrJg)Ns%={h1p1t4W05JpIUJ7bg%1VN|^#~3H1B#QA);yGy0-8<_
zVS0bKeImaRdpBG|H_RpP?-(3cf7h=41tl0A&Xu;9gGX|ru}H>Bl)edgA~DPVr|yXU
z$4|CelJ#(_w}+ps1!?NJtd=9C<*{TDX{e`l#MY&0gsm{+B^hzZ!S*wYrs~A1Q)-q&
zrAfrJ*bI4<lt~olP7MmyzT+j+(ZG>bI<4Jw+9R#MCi|x<PPl>;W3<n0x&~DaTuY{2
zwS}ubpRx9)7wgD-E$a-M<k37FU7DnrnB?ZKXY!joAoAaD$9dWd7uq+b11?PiFQ&#Z
z=bo6-n2$|j4{H)gxc|Dj0^o>f9`Mji&XFzbX68P*J6^0FHeCR2oXH=*u^rEpE5@)B
zDJ|h#Z2lUz)Z;K)<URWa>>_DeH{2ou1O$j|Y;X(((A=cHiIjjpu8}L`qU_fV&l|BN
z;?T~^ub#VOa-qz)>If{+^MjQ{-$k@wA_@)TE$X-b>S}d3?`Jq}pu{fV5KU%or3^j6
z1Vt?tn*H=iXc2a*6rM4Iz8)JR(8N?8a|dTgQ!=ONQ%B1bcZP=9_hv1#r@-RiD~M2~
zE}&l5S4&xbMq}gnpZ+e~o}o1xhc@MMzA1B5A}n4m6gc6q+#M2|7jm=Aj?fj@Rh8@k
zT@RVUC>voZ3@*AgX*n{?X%&@vqJtYL(z}9g#^Cy#EnEp@*99cty*!#5wghH4gB#_B
zfRy`G&z~!`ip$O@MXjO)T!S;@KQwIij_Pc#>DV01ywip&oG$mbr>hEjbw*68;TE5d
z`8A}N1`|lL#xgjnr8^(b!~@rv{iLeF*HeI|$UVQA-U#+ck&9989D_62V!KJBM*j=?
zfW7bbHsgDfIqPCsuLKM+)ruF`2d=pShm^#{Z<&-8`#zvDiGsqPAfWw{<Z<M0jM;!b
zpDa<tm5iJtlx_RlJW1bu{dq6^8kV3d_j?gmN-)1!n?*!0?2tvf*65cM|A@HNP|(UT
zO#5>`3b^~C{g@GC(RV;(M#%tQo`#j`T_&1~o<UAwGoEJMwuM)PU2@#@CYpA2D@>OQ
z(AiS~Z9FlK(;^^13AA&gC`{t36g|=L%l&Q?HLVoB3Z-(zerbbC(q>{lM~rZ+|E<on
zV^l-xh0JBQ-lz6ayHr`_a&NNKdRTp~M2V0bc8Kp{Y5nR$-`9;xEw21{L%kM=l}{{S
zJ4WQ=oG<Q|dP6NXlH{^F_G>yuG<EsMp&bgY*Bz<3B0OBCfv2Sj3F%YyL2x(2E-P`0
zvD;&pY96my^lsC1jI!2#FQr*1D1IpS`Js~4gXeS&u4<as&sY4XU~|2|^OsZ338lDi
zO+0mtZ=~*7v*#R~unl?Rw>E1E=hcd|KEkaJyW4@JDsrT?;F+?dzjdbjy!H}PUm23(
zHr7283c_;7t-AuR|Fe^55yZfgqEgF|;LZ@`s&ZDHDY%Ph769L^U5XqcX|tNUjzUo^
zhpND7?a&`rkD*Pz_BdzSGNJnQQ2;^Tu9}Si=}@y)<8tp$)?)SI^#-1<qP6Zcg5AWU
ziGofGpRs6DN6?GVsrYBd@VIj<zVeq1V!{0!8F1&7JOe8|5I*1sf9DFrUJQRjmuQmY
z!w<*eda?JLFF^}@rp6^5A&)}D>8MzH#~$QAP4zEBXEOoFuTo-s9NNtl|9NGKBj8I+
zh2k~zHDV%1RL8aJT8Nmls04>nSh3cqr3iOj!$oc)j*6r$Qz~GKA^_ZNzBl#n+18XX
z5Kg|!y{=(TV{h#m+Mt3BWr_670!sIg+gt}?vW_Jfs5Hk)4S#+>4N>m|vVUUlxY9o~
z=i`NM96jbxOTxWgxIU9)E;75N59Z#CK4)d6^#~TNvS)c$8mk7jvO$x@7~NFCoTkSl
zS&izvWQtIJ+i%{~%^$d`4GrKKHFbA9v-}tcj6TaUtM8`&7=t~_o&AYJe{4OZj|}}B
zN2M>)F%{QJ2QYW~K5QM3<k|_j+9YaqU1b&r`{<Yu{UJlPMmrU6&Y}?fESnsU2Ue`)
zelYB@>?(+zy`F!b62HzxbNJiVp!$4cob)Dmacx^Jp``yiu|SWd0FQC&*qLdEAU%Tw
z%CAqy3!bj0Uf0?5+!S#Vc$Ommykt_N*mD}-jH3drpA~UP(`-P(d5NG%`@@d+h!Grm
zHU8}ooPiP1Ja5E4KLOF|U-H!8JhBpJFw4D(EK&ft(S4l}^qSD3T_f#!7%0PM*_kJE
zDYQ?Np-|6VJk+LSr(3ND7H#WlbT%BCw`Eb!{xQ`JSMcT@9*#?u=F7Be92!Q}Cw{Kl
zKmI<QMT7&KG(CVd3YSrHdM1~#T&?r+#Be^D4&BjDIa*0z9UG4>LkwP)3Qw0RS}}n%
zt7%zcJdjr47M~!4`;*b<zcn5PW@A}WroiQPm+FFJ8KOA)#xV}}`sh4=x;a@hnjxc`
zQ?Orl8wGs6iyk5&-Cypc#ZqLY2AN)6lv_IO483w^Z3MSzuY{z~tF0T+59a#=e0>b_
zJy7G+2j2#iPC1T#9>lVFAq{oR=MR6Gjiq(Ok~rBsDELVkpBdVRgnAA2*$VE-75kLQ
zV@@N=?lmR#inK4%I-W?*uPduat1toUygVAqo-HoMEqHcX6SN*=CV7(qx2<@87jSG8
z^R%Gqn>NY;1T-c-c&4vC<!&4ZtaOJwIAj^a*Lu^J+i~HI;M&{11`(e+ztPgHBmaSi
z>tjKQ-+V7ym;Jr>*?h&tP1D&fa_O6BZQsC6h9E0jZvX?f)*sN>N*=Ua?pq<8VsR*l
zlf@noX%RVW`UP;VI{x#+r<PuOUXDmmc|R*A15^1{MMb&%GXBtD^cCs(44V;;MnF?4
zhVnG;;b7K$w7f8wKFiGayKbfSCu-P1z5KW?3r%$1!0MUN4%`nkv+#Jk5yIkg^mq2V
zdbspvVs5))^nNVi>kb6yvp1*DZTe<(y3!{(&tva<TBB7o_Q8hvkOmo#c``+*so1}2
zeSL+zSx(LZ0{(LM-hm!6ZtJ1s)XEL@jImEu4*I%qtLN_Tjg7j1?UjictA!;wQqvMs
zqaDblWufQ=1%ry|&Zoz<74?*<8O6gdc#<>A7UrPG-3^yY!=|$2SU53c%&uQm1NH|L
zM`MvHE!LTuN>2TKO6N4xF2}=z)678|^yP)2?W*2TQ0Vgm1)s;-ilEbO*X?@71!VY8
zuq})k4?lv}m)~XOcCJFJ*g>|R$hQ5OyXOgZu%rTDH5bAf=WQe%es;5T>D;4G>N;dT
zZIzmnD)aB`#UOCGBazr7BOrnON#wX`Nb2;I5)ljKN6(WA^Av!t@mLd~f<2rQ)F@;3
zrfn%7MczDl(c#n?&WQFV=CRO2&|n~3u7D})pgX`E8a-<rxg^lZgLBoR-(-G2`V?JU
z$2F*D!MGs!h)wO=^VTIm0GIa+4<cqVFO}u~kf#tDLgQ%R?kb{Iz_<U4i$O8L3q-OF
zvc9l-G&YDy#ku<=xae*q;#P$2)|}UMdHJ{$!_Z&Z0KCK`LSK+LnqcThZg31zz!kBY
zyL!CC$xHCJU4SuDhta5~d5svK1ndZ&WDo48^7Q0;4Fp^uuh77MHn1PyK6i3i)W`Qi
zE-ez0xdmvX$z@)gRs~=WjC4O$!MFDCiRcSApetX)Q&Kdkd7?Uj5WFs)ke=?!@=?<7
zyl1izIE%B3_8W34^?mQ_e|zQ8-8L+A;sP0SH|&_0u-xyqwp;J5>8;3?V<D1Q$C}z{
zRAagNuTP36;Wd_2IP8?@aU4z{Q$yt3Xj?KCAcUJP#slzuv8g<rRYxB6PZ*XJ9Jy^}
zW1??})6oU<{&t$8T5fg8b+uoq%BfxhnaWzF#(4<bxpH)q{!DG;c^h)B!2a!MA>%ER
zN=`W0kkTgnQDQ2@Eo+``=RJrJJ0N3)@=FVxtC-y!hEE6qZQgFStw(}x;Vq5Yb5raj
zB0~HD5f3=Tz2K7VCfS<~o=F-c9er_fkR3>f#eg^EkN7h+@`AEqvsjiM51VhR_|LgQ
z65OwEo?IEO3HmA$2f)XBaYjYz_dV~2oA#-2%%q>*;$yv;Bp~?n<&2}~?f=sNVpRXD
zjNEgvpR1DYws8_O)lfsYXOsaQJvy4oF^ym%;WQsHzAVy5*-m%=3*JO)46BGZ|BoV^
z54`__)$z~i-wO4Bd0+H{qx#-2z$4YLlLJrlKfR_USYVe+ga<KSV?AnQ1n8?{Ec1vw
z)e0p~XAD18%ZF0H&l3!#{v=R@A39+8zs$lfEd@Bk!0=908qPc<M)4x@!LM)o|7Qv)
kqQkrV|E&@s^%bq?*WY)wH^S@iLly{1a_X{mA1osO53ps@N&o-=

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global.png
new file mode 100644
index 0000000000000000000000000000000000000000..79dd40f4d7dc9397f0f65069dee43fc585c32383
GIT binary patch
literal 13617
zcmdVBWmuG7_$^F>FqCvi3kcGw64Ibj!T?e;lr%$kcM5`nN{7TqOLr*X4-k+Bi4o~W
zVu*pW`JYekr}x{r&YA0(0cLn+p1t?I?|ZFvuZh#qQX?g1B*wzRBGph=eu;&JLl1r*
zAtC^ejclcr;Kv<T^;aHPSY+RB@7VA8$(X>Cgq|9jDujOt>1o+nh#E_1v9Q>%G?W$e
zeY18K`~s<=9g+tn>3dETJ=}OW?8@nsI&7g2IhuZ3@WgIN|11^e^tGitBZVn+(YU@_
z{`~}}5Q6(N_AV+OCt`<~I8p^)A(DcPOC5(jWz=!<Qq2cyc#`T_MD!}BDpzuIZwu-0
zYvJVhQK!eVnKr+#k6o9a5`|-NfE$0TVE|!lY;5VCMHd_Rdr$;UK}q>`m0lP;Ip7YV
zS5{WGenbEPFV!;R5>Qf7zIuZl0bYC9AF2ReOSk%e=(HbTtfhNRt|%ORsDv4{iU>v@
zI@wr_RHVQM)1gbvPQ;-+=JS?I<7UApH}8fTk9`Xx;v(c5l9&OX^X_q$@?|ZU%|-5r
zQR<p?hbpAsp%bi2I9%R?(TDRrrBE(K5|1sVa}(iEtAw!;UHI26CGkDBBa9)&(xJhB
zHhLXJ!qB}9h2k44!487ytHhKkC_jq8Q*06|aQj>>+MYu5aXLa#2zDK1?9?Jf==~rw
z<L3%Z2GOozN>&hIK1HQu5j);^%iu&<-lTG9K`ey|Y+$rU3n~&wp&Rt=_Ig~(4*c77
zs8w$4ow{{Mv6ZM*O8M9{*7ojL4IJDn#K+XUEk!yIi})|!A)}AZv-r(=W6VaxfrVW_
z#2Zhfpu^`ZVUfbdK@9I=8}w~AFGb?0=$^n)C;rPP(c}!qT`9_xsSlOXZS)eNM67v<
z+2Zrf82Uo<FcV6uA6)YrE0yiKDX@48swNeoD!lQ;y823r$!<5{XAeGbX;>h5IFN(%
z!ULk_RchpP@daHghiKerI+kQZa)!Aun9vrr%78^r%>G>>4wSKAc!Ww3$M|yi__C#T
z*OD9u5d{rCl2?%iN>qRYrDUg%myJ+TZOZNLq@tXZg3udw|M#9>*y_R)b1`bsd(cCo
zN6Ew#Ky$Wr<kwED4;?dkD8rH*eCRKG;5$@7->1v@OlL5vhOB4$6IKYnD%{!&suWd|
zpj>qadk7m>I2lffAFKEso6~fe=sLSn4hlV-G@L)2%0!@MYD^)F;zY@^*LbOEX;r6{
zl#?3ulJKFy|9T2k_BW^bAFDrMCL79ngzIQfHHBc355{51k!dzQt?w8mo9mk+fpxj|
zuAFx59zH$vKM}To(1*E(rJ%|>IG&@o*%ccZOpO@#&X)iDT-Lqc;Y>oYEOa!X7|n(b
zks^p2ef-vSfg3_EF<7Qoa?qFcXkd64AFCYJ$r6{ui27)o6E*z0^}hhyq?P{UmG>F2
zzMt7oQnIoV{SY@a_V)HPa%&T1dPXNdcxI|CWXV|NAXpot`MA;KtYKpxKdL`_)>0nS
z;<<Tus^XIT8nJp~adVAvZO*b=XpwMfs}b63y$P<fA786o<gX9Hc)hA1rPu#Qua<z`
z5(>ob-97DE@$TLAzU+y)VXKNFsZeDfy~hzX6oneZ!og!t5$0p6DTsk6S(MZeC_$-%
zisBHv*P#^Lrf6fW9>N6I3I=HQ*N93P1q!x7uYa8Tf4(Oeopuu%Rl~7O1#R_{5B=MX
zYW`RaeU#<-D-uJ_+V{H|VKG}vF8uFv#%Q71NNzpMum24ys!Rxe<FoY9Wn^ST&HL27
z+_;{2MAMIqQ|*mtz1CF5$+VZ(zXesWO9lo9drx=gtF8LUWKL&R?4~OhXqH?KQgn7h
z_aq|8s&2ZfCZTo}45?gOgS_TK)Ec5*HdtYTsmrdEGL|Y;XTlBErNsK*b<hmV!gW9D
zuev!#RaW*{!myNy=xOki?aV4VUj@Adv#-VyG%=xabh#vN<Y*#9t)dVdEN2jSB~tq}
zqp+?{e5)UcjMtVoi+WYnNtWDC<<=Y?jx&@cg8Oy7E$sOCm~VG!b3Dq|<v$N;&ja{3
z8&g4^*CRPeYr~m^u+Hlf2h0gJuIjya85uD@$Zr^Uv~%#5FX0t-b|ug{TB3?C*jRbV
z8^Y6ayzz8T^GuX=+YbDL8e_8Mm0)Ih&pDgwxr80=dzy80S+PJZv-o=(S=U@CHfYDT
zgeXL;(djg}*eWFSx~~(zoJf7q##4CO8I0K;3WJa2$bJw%?9M%zxw;B`=)W&3YdTPy
z*v}Gz<MZ2%@VAQ;t)OXWh@d&7>ufIYY@ySzOlxTS<PYZaekR$^-k9VrJ#AV1%!M~T
zi|3gg*GILYS5{;4qpK}~>P{1-=H;Co@Jy|HMfW_v<WjiHNYKIgbo5oosf>w;AQq(8
z_8s&Qkp?nbr#|gX3ocEjg5Z$O){@R9lV&En+1HY0){@TZNEqKd7FdVLU41W;H!#WQ
zMIBd+=bKG8P@*?IAEU%8=QrcGV0&Ab;ZnJ|78{bIqod<(PSwP3Gc{I}R8$cJq>RfQ
zmwRd>Ibkku1xy;2NAs0*t8UPTD@L8y9vFWI2R@dI{To%wLe<!WgkD7OKNC}*1+NQC
z!0ApOiZ!HMYP(A4Hro~dQSaSHslw65Pq0E(l?GalDOsPfMe0)vD=LN2J`5+jzIH_s
zUo%J=NuTJTT&0(rJnv*MXSi<ux-VUq(2L!FKjyq-CG|llg_(U^TwK$7PQYl9M%uFs
zuVzze--Cd0XNGoBc;o!Zwq~ZJ%192w#R-_tzdLg@C)a`hhUKWKsW+xCPqu9tE5^%T
ziCG_SeTJR+%FHzSAlhGr1a%AE?aazz*7L9e8$ei!pTx$7u4bcM1;7NV_=JS9I(t2k
z@90-}64kb+9#BsEY)w3{wiW6RnW|I)fxL4{f81O{-j~eEI(hvrM?N`g;n7T;8z&iy
zOr%x6JL=Fk<-><qL9>=Wd$5J1j-bnra@655oespr#KL<&Yc5XCNoYAZIeY7dK8o2^
zyRQ-lcDQ7lYb>^SIYL+hNrJsbs`vsc8Lc#<?lOzwjg3xHR2s1Be9c3K5<~Z29{SS|
zDZ*>{t)vo!?0iw)twB*mER7a+PI>q7kba5+7%Ar|ZTj_EBAJrq$HXwYxEk|bS5Zk3
zVX-oAn2q2%q8NG;a=w~@M#Zo$yFapM?9Y3iA=rdDoj-(iUfusB>1@0yX9vRBJOm>V
zn3Y|zL~HLkwVoUD#x^JT8Q2Ra(<?%Vj;OvQrtL;d*0lb?M)lze&vJ6e1(iXSd6Lgf
z2gUjM`3Jcmf@m@(f-axx-_2Hp2IWR!N-<;{^761HtrD$lxBi)$jisgO`*&T$XD95(
zQ$9Z8wwC8JMpT)%i&*|u_uOBU-QjY8o<C%ebdqNAUB(tK>sk6SAU(J8yV(OQl*i{}
zx5wGidivHa6*hyT`7IU3jiP2FgHH%D25l~e?(~DL7n3*j#<6M_e$jXrkKNjH@NJ>m
zva2-TZgko1c9k~0FozDcklf{t-op>_OZqZUQ`5wqomKSJKQG^)DW~Jj@&03JD740F
zo3>5dgBt|K$-J2$PsdCP4a|Az&AWH;<Wu+W-}kjXvIg6|k^Ss_db;K1sq;)n5R>W~
z<~ZA&AhN^5!;C{2nsT$R1Ycjbv%KU=&&^H#{5)g1mt6i^nzn45h}B-HtHFQE1;Yon
zN;DV?g|celmr%+L1Kl=%qOsFgP#Rwub6**kabB9nc{<_WEH|+<Rn5_yM)+xO)Y{be
z(c&Z1l-zLBe58BHc--gb>5=zDz^c~Rj=1d1er4Kk`zIxXIToWA^|aH!wEQ|N>^lnA
z>jGJo?KaRs#9<_>rW0gaJzgZY+b=&2k}iB-^`L_Oa5cmH*EW9E^}4CPex&_)@t-fd
z^GYlk;Oas0t8<<=Ag3R@xW3#!1QmJatF6zslS<QOoCrelzON&i3jfxI`OVf(o#z#=
zWx?mvSpSf}oyM!x;YOtCXy)6uVId*aFFJ$wemC>UE|ykTv;CF)?ijq3^?)yYe6w5}
zE`5)TnwIvHi{rgDF`@gPlQ#Vo6tGRTY(Eoj%ynE}M4E9?GE2K+A%;Fu)rhv%)lqxA
z9{H7UB;M+?-&a?rr-|wrSUFq<X)S$c1quC9y%Rwm>@AXqL>kp^QMIA})DiQKg0+0z
ze*L%sF>ipn!1-r@H)3Vcq5cx?>#*!IMxltaj(3<utsBwuY$(m=94G3=l8DhIV?I!p
zH_}(818&)dC%-rm^yk<t(2MpuLF_=xwbRd!->==g?QF3Xy$xHc^pv)=w|`(B=*DPJ
zaly4UtzPmoTQg{|xw&~j)_<bzg`1nm>CS8+ELmH<D@kgRNP*&Ei010Ok=~fW^r%En
zS7~P7%UwT<-tVi@?th7La*s@BTq&K#i#2_N|MTD_b|5A4K3G2U-TeHK@<tZq@&h+-
z@A}E*Z+(3QP=1f?Z;eaAj&mJ@t38cNpE{S{nLSK!U^R1*ijN=44H<ipv44V&uAV+Q
zndX7e)2M4{0d(<drpANLd*^r5tFP;9A|kq-Hv?}u(Ia#9Aio~DUtPj(M1xX(kG4ON
zyRv)az4u@Dlu*YvJ#BfaNu#T}Q+wZ&`sst&t;ySWarfT8(@MTQ9a0(6W%K%t!p}Wf
zw4Gl=S*P%$M+~e2BdXwuf!TI7goC{I4*go^zc<$?=fI99KC8?7`yB}r6Z%*k@H*=s
zcR_+>b<6FIitAE2h>6RqW`C9vo-WZ~iTBg-?gw`9CbC|7+MZ|<0blxbi71F{9$pkl
z<KWpiJs(7&XVtTN(|t=mhz@oy=CC1N{{(S*G7Vd4_gR|ENV8!GLHDxO_zfET-C2xC
zVv<62T<%ZrgF5ly=I0aLm^p6EPaiH8vEln2?Zu()f4<#ee&nv)xp>ysVYjp>6*;yw
zJyD#*<hI-umNKuME0-kOip$O>$BvB{&i>MADCxWyE_Hpx{R!rwsXxMW&>nJg+Ii#1
z7rgVUo}U(DC2~7|Z?apf5B5W*&sYz<Vgj3-UPTd_C-+BaWk2D3a%r{m-)xe$K@cOL
zvAaG?1v`Jfm!6%t&p1gQ?>W2pVWgihu?C~_%>&+LXD0zP1r@kd@}k34#jAa|GHaXL
ztBFgvwbX!UKQXvE?YMj~cuy{nK10w92a8$O9}gCUc^?b|8};ybT)Qyn@{~e_5@f5U
z?aEfy=>;Fdrrn|<F0fNPuZ}X5MhjG)%gR1ajl{+!$h!%}zNn3gijro^uP+j1l5!HJ
z5tWrWr^KAc7sT!@1i=3e=w4th$#?n>sror9wIN$u!kT9Su^kB(r$3hy5bj@=4IoyA
z8t8CsS=UGsmN~C+3IoJI>ASA;mpEa)D`ZO?e~4W+4}8X(PF6A4eY++xP*9E}os19{
zk|E&Qta|o?V*pmc!n(^O(Gx+g^=;Y2Wh~<XFK_HcW(Su>liw(t9+8~uGL|4CS@7lQ
zp2V(Fu3XTu%i}LFz0j)5)fF248h%@;hTy~d1Y~WGc1oFa-yK)xMUygF9xQj?qKyLo
z#i!`A{dW)aMk`FDFcR~HYT7c_XsY6n+zOLMWv3dvK-BtMH5L_zR&NSC><Z)h9`v0~
zv5J+F@e<v@Q>Teb|K^L6-GmOz#pbju3;F92|9hCr6P26bAdvur@BgeQR0<cT;Q9uH
zV>MQ4rqiDjHYF7(M%x3($DKiS1W8cY)Rg%R^P_NpYcL%wvi=+r_1X4*8mXfo{Ls^v
z`-UyatE;PMkb-Lv`{sXF@AZxqs<|Eg)zBmPG5gilZLE6O?h!K?^CSOnp7Zb4bH0On
zQk%Su4eukvyMCXq&xMW|L@Y`TDT3&9X)p=I77@{<^{$bTkbf!Du1ZEUy<Fz;jOenE
zO9Q3#&pM<Y7LoE)j&MHro3!Ixw@E{74&>bCUnqJ@@+vvW)xBZR4b_7`-W2#M-EB~y
zF<N{{(ry&1UDV%Vyf5j(nUFk~6&l8Z<=J#<e7rG6^~7fn3yb+0MVR&9h#JU>y5<Ja
zm`mKRjK#&p1-bdLzqY3J{rw;3_;1-`FpR9M$!N4M;O62kzm3SnR&8v2uWHoB8e#H@
z3}OWB0cT@MhIM2&t~1Bi!yA(%yK_-mUl(fhc#29&wtFR$!6fRH9Jy&mPNkmO?`l@C
zgjU&<`2AZe7B<Mf4InCQnK;{Azqtv<&r7)<Vs#5utpE<aaDL$Y(g^kx`ceod`p-!Z
z3Sl!E`|^8|)Po1k6m)cS?g44snt*6BpGKg3bIvo3z8F;WRB~3P77WG5qs#xeO1mC?
z`|%$g<Yl1bk(7jhjvbY5H-%^&Ed;8AJ;p3-t#KOC`~Db_AD;gOPx$9=`|=+|#0(1Z
z^(pyCq})YslU&8?E?=#?P|_Fw*?hvDNTI<~2ra!R7BGa4!6q1q=n6JS9#l6C{JT2;
zSFG3psF50TI(;rYILYs-LUPOwAkf7i|849Q00X3bH`pF~?In)OW2`@s=i90h7}wch
zFaOt8?0>d*@6_6Q_>)Ahna`3l-}SMt4BB$rAh5=ZAHdufS<;l99cPQx``xbL+hxWL
zb_}PX4vq5`U-82~Rk854gv@^`0=Wa-|0jgwNx-A@kYh?vh;HHUHRf{V3~bE@Aqthn
zV76o9;+icl0UFnvsah^a0ybT*Td~VwpE)<>DSNgt7OSGa{_NQc3=(U!PUCxTkMfVe
z(D5vJSh$$&PklE;A)V<ro<UInI%7f}nkRy6Z810{bj<EA@kVk;uX8KcectHcfkw(z
zm}0ukKrQ6Qjb8fdQ%6<xno>WqB=vu`c*)nX;xE4&={V$M_QG!RF?7r_;aVxLXYK}8
zFxB4#a)q<y8CEUEYO9YT=4-47naN`8gRww3Z&x&$jg>W6S*`TY&fEzPeaoqay2ZZ$
zSW>um4z7NK-CRhT2b|CVItr`7eA%tjD6Ew?M}0xf)-ecm9`VgJB9f_iv_7Qo&efaf
zSFO*?7!}otG*ZMceRe-8^1~!$iiZir(>B}!o1&=(cu`SZ*u%k##teX$E#@1X2Zn|q
z=WDGV>slB{d}tL-L2bUx+h}GQ8k)=tZYoBu4c5>*(d5=x(lCD(m&PZ5ai!5w_MTU0
zxAKd>RG5ocO3p(7H8(Zq4K#mSH_nche|%&;oShk!336W>4U@5O;`-@m4?Z5+1UGSk
zb1l?@?{uOV-w^vLHrrF(p)@ZBp^kI$M7?wpoqQae;|nr9L0$Y<|D+hAr(>+^0dm4x
zpTb=8RatAd$o2b-src`6aos`(`L5hY9t7(nG5hAcLSn4?X^axcmlSqO9kMN6+tF2>
zN0VI4k9{dX9Vvc`fA5L6atv8m#3fCDrV3j;2LXgWG#GQiezu`|tMu?2ly_~8hp|UH
zPL+43<o6aZBIf|D8$T&15VL4~Zz@Rld#`IF57g^Ch0%b{27cL)Me!0<Kvy68>@iPT
zf!o`=;{88Ry)h>SN?m8oPFF7oLR}VGR8ANxZmEC+f<$$`VPmGIaI>Kq(H{4n-*9Wm
z=)b|i8u!&_LqXe`<L(QsXHPR5)@W1UK!{Ow(OGTpMRkF2e9`FD)DU65JSAD0>*b?G
zrj;w_+_DRloS9mi=ihd7WCNxqFu$7Iti}mVb#*B_$n~Hw%8KXRyxfwsfMSa;oK8-|
zUOm>=k{`J2jat0VL1-*wJ-bFu>u!fC$ye>Ae;m%UBkKH|$e~{NrzSgb7$bS_2CXiP
z`;$j(B!YcRN&my(2<09k9qhTf)7_J8mSn>DMrZQ#OtUs$%2xNGuY%q?6AzI2-k)yk
z+p=aDJS8(T0c_eoUDuck=LkgecTb(lH`Dsk1-u-XIY*Jr{Fnoj8Y?QJleu7N{m|ES
zZAe?UqQt61tGH(nB)p(-fkIZYd!my9MMXu+j3H9GW_i5CQ$ZbC`y9BTVYmoMFK8Ju
z-fR0h0@WLhO7D)S-e^Bt_9STWKx`~7Tp^krGwh`iy1H-eUyp*kwbHVUBY^-3;jf+}
zuIks<!>;qrjhQa|0s`NM7{)~oim?YaW^r*5jG-UJiZffZtY7t|uq*LpXCd3lA&52+
zLiy{B=aqCq=HJ54{~eyUcwLAd-nr9s(lCEaz6aF6%=l)IlY|3KA2Q1ao5K2gqDWqR
z_jy0t<c3RjPlgBzbz2)^xEg^ik!|kXdEGd#DIip$P4`FMak>Xk^X*iwJGd^4cK%dB
zO->AJLpe!6s=_R<f&7j>u(-nPlkhLNxPDP_WiNR+m_k}XW873d>vW+a>78Lm*RG}1
zsx2Co`gA(pZ$UDXRC1PJmYZn`A?7T!<Bge5yFV+RXh0&JdZT|-U~kfQGP5f=v*SHe
z|NMogX7Sk7u%(rih|`Af_>$A%pYLetCnn^Rwm-AF+sd1Zr;R|}9BV`@m7eyN8tyL^
zr+3_gg;e;E_wjJuCbHtG9{$5m@mxYe<RN}5q&xGC+CoFe?frt0iNWgXv6VAl^}vEo
zrGwG5UC%j6`yZE@t6zPes_@;dH`JU5gz<yi4<lzF&KxYZ?sM2q3u2bEb*ZzY-EgWp
zPx%0IYUywSJ8X~s$rQCt$km}*n}{ulenDlxdDeypdx|wPk1t!jH^a@_1GcBhnWaN-
zdGD|LOZt~UZxA7s?>JvmC?5Ga*AaYFR&NIKFWmDrcgMvRzuvFPp#j~(0+-qa(33zz
z@s*y5iHVKXI~rpAx2GyZ{5`qB2mC^e$Nwyt1iP&0^XJWBgrA>Z)7c_y`)sf_ab{+Q
zxb+#MluKe=-Dxp*TNDW$9N-fyoN=wQtx1xPAFZkb&(*L3mrm0KF0lsFgD7f${{3tH
z+ke}cX0KJmwA8qXLWTD_1^Z@$xWb^9o~$my>p&_5^P(gkN8zw%o2HJc?jqrd4R8D(
z`DK0`D8pRcig{IfE>sD9C(-h-Lf-Y6-!2;m5l&mURCN{>5z_n>jxGh;kC*DMM+>wY
zYj2fBw!W6BUP^6ytRyx4`{{;WjtId$m}G1N!}mRzH0-IA5)q+Hmb;(_m73x7I=;?j
zfpMY5ESZ#P3irTE%I@NLFNtj0oau-jVA{95@!{Zw%y^34&533)kYJ5bqMralhWA9?
zL7!$Kjx9<6<mxh8*-J!!00qnvfUx@7skMGi`9Hgj>(HhbmX;hjK`ze*9u|K7{F%Mp
zPM-O3B)d{zh1#vk9!A)=a+@sZ+JL-So*Op7D<MI1cD*K5oIdxzmrsB`v}*s~dqddw
z-J28GdqMs|QSPffAK!~j+X6<1_dpQ_5LUG<<ap!76^c9r@-g>%4~8MO>Wj>of0~w)
z^TutZPo=FB`o*B>CXBF0tMC4xC`-VO8<62jdxDaallyPs$)^;4=GKKbYODc}&hueJ
z;is!FqTMR*Qac@$rvz&uv#%pG(|a43@ftZknDF2bBCOcPjK!QJD^!#nHAjspox-N@
zdhd^J!IMV|D9fNqq6?MseVy4KK6HI&p~7vIZ9!fluZCItj&)z47xwuunfG~kR=}84
z5WP}0$XIX@nz#t!0N7Fo=7maLALi?kgx8~A<Ku@{|8A<Dp^%Q#F24UNn$@+nt2}4H
zfKZ1#Ic?=-7ml@(&U4F2oox)KCutu((7)`T0_b%7WU)Qqa=V|SlMuXz2$1xZa9%jW
z<j>WqxL^2+NJ!KhaJzOH;s=3jh?+7%C^@}&C}_&7q7hehFzk}tEfnl_Z?DPfq4|dk
z9GBMJ(^yu2e0+TL-?W?Ysz%3*=xOs1(%oObbc}RDzuJ!UxFjp=%LN?(B=BdtlT7|<
z`1Mzd<*v*zO!S^~z}~~)i%m$IxzJ<JjnK=zR#t7f6LC=fH1YMPy*EM?u74x}9Xy8Y
zo?B4k_Tl))+=Fp#c?D{f<Dr2rj}gu8;RphYZ90>~LexZ8p=vVO$BRa=lpFI^LW1wi
zpX!b==-m{!`DG4A13q*+mZ$|5s?#L|I+hYWo_n1LS`von$8OE0Yd9w8&aUn6$>AZ?
z8m{U@j0%>e&BD{Fc&ev(s%hwrLMccxNySMueiUU0T)6JBU15x}!tuz0g;8$jdqqjl
z7&Ojvh^6JuwT_h-=AF%>9pORO0!-$Q+Qh~7OE@|frT)Sx^5{tP-Me>Bb*Z_yxeIJZ
zATP4S?||`AgH;gPZePe#z;#+`AYCW@>I~S3<u4_26^K&CzfW_AC(|>I()>1Od$O)8
zNm9{Hy)KP~3W~U;I)J_uYkN-v+4y*Snzi!=6XCma*sr-y0;s%ziDc&DlL!KGvIpjE
zYo8p2AB#~<!$M>MXnFSh`N>J6<22c=1pjV5w|`^oqlG+fxcu|V=3;zMtzTbQ>b-m!
zKA9U-tPP*4wornw%Jq2GHX)J!J;qmfs;G#gtQ$GF`s+q+ZhO6^pS9mAS^f=(wa6fh
zxcx6Y055JeAVQ71BKE(O=p`K9ZT^E&;Cb%MQ1-@<t2sG6{CRauC1~0NVD4>pP0SU>
z9+9~;9k4YtGm<|i%9KJF5Rx$)IpRh`IkK^98cr(AH9?&f&$3*Q*DIF1lYUov^8@YU
z<I2c9IOXHEahbCy?_&KWr|fG6G1Bpn0Mg4m5ppHcPq5zVPL?XSg}L(FIp(`zQw+0`
zj#|JoK>h933$S#r0I=s^0%OzTa~ZsDPZx5If{TKwDY(usClL-?d`Ga902@)5UOChH
z8{r%xfu`?0GD}fai#@)l(A~p}@_eE?arM+9?FO4g7RB%cxhJLUaCLJA^QwMUUp``b
z<FglN4&B`%7hO6F3d%_l2)#7}#&b7(ng74Y{k%#vV%kLbityZ3>2a^7&T1x^(x_5&
z16fdmj&9_}Ne{n9iuEf*JJB8b>rgne9r7aM-^GX<M?m|5ueEwAVd~$pk)S^&8A8Xg
z1#YDk!=tN~f=6vHOB_Mpm-Mz1;@@=;1Hmk_zCImXW{^mdufI$ROr~QaLN0Px^6|ds
zYUfua5i8z3H*m<YB3Yw_>{{EW{tbJmaj;RrZq6HzYz)UU79LWv?43*j7jJlb@w=f_
zQFm7M`$8#y6H~g(?YVA~NvSmMABKmNB8gPSUawAQ$rTGR+!YLcN)lbbn{s7q{hsT=
zC}Y87a_L$qiiwuV?z=E;nfV@<iL$a6P;_3YI(B0z;wm(WB}C_ta8bx4%15vwAY2`;
z>>Db1Yr<A!^m8}R-p5I{wlwYL>hU;L{kX|o3Zm2{$m>vSqU*Q@E?H~4G#C3`_s_yS
zj+`7w1ikQ;sHkYl*MO19#Ux_^X?lHX!NlY{WnYMla}QfYsL_=q{?&)|=8+_H7mUYC
ziI>IrL=_3&x5?@H1nI0?iG4o#Vep(&i*nPrUOGZ3b%VM<ryp4w!1=2dW&DsMDq-{_
zfdWs!we;Gf&|aQXi~s_As(U;~wz5HM)kP$zCE*?Sp+&Whmcjcig|2KLIJs<N-XFS`
zQ0L@2Fshniw?MZ>p;w=RBB2dC7fVEOc*-S>Qe|qSQa9v8#+G(i0yDtXZ(IkJFdSh*
zLXUw1sD7kLrD*qpREIIy7^|q__M@ThKAElizFd%7g9t8xnS$XKmLr5ZgUTV1(=3oj
zL5w_#RPZHfB~2VPAH85~EWL0kZR_udCXrHLnOM35gSHDQZ8OG+w@sk~irxw<E1%GS
zrC58`Xr%vlz2S9afT`=YYEw`gwPe8pjH93hI8e6g2MYCil7r*Ke?_6fV+Rt!Q?gbm
z!UR$A;cDWIl$4XU5PE%{tKWNX)sw5r2Uph@)s*#N!f=WxN|#UW1cV#~8zOL>cA8C7
z9vT6kM}r`wfcUEnf6B&D%c!0H^#3()%m3ZJoiyxa<wX&!t;q!{;3PtdS!3DF3+_7X
z69PlgB>N5r`~Q#iC@WAxsuIb}_?%imfuizMkb+XB!WcK27SJ@V0v+S(*yFU=Qf_2J
zC{T=8xPbpg*g7_tRh~PJuLMVDx-yEFz+aL<G`6%DnI4)SMWUh$Xd0;TJCijQ1&{ky
z4xdu1fV{cXm!hC7p<7Su=YZ<j^)_689k&H(oF}cC24~FFt1C+w*Vn`8d!u?$Ps35y
z`|CfWkjP?$<&}Zz$=e!1jR5kiKX28JFNMrnA_2Goo+1T`<JI$E_JU8v#*V^?*uAB7
zb^13?ZLpapZH;{_i>B_x^kM_w(V(cZuK1)Ch(Rtx892SXFpWxB|4P{4s;Iz<dovqR
z_;uJ1a!uq&;>ol4f)9Hh&8F4!yTHVdV)LkIH5m-6w1KmEDx6Xf4m#q#GC3*adIc8)
z^nDTA?}1$W+oh33&L{>94O;((V@ysuLY~^@RrK)dhy|Az@W`b>q4IWVsB}?y3iQ`l
zz#*OeGex+vJ%s)tc<(Q#aSe4T7S>;9f!G%V#`W#nw++l7*j~AI`{Wse_>J?<e19P3
z(d-ei4lND>M-zC2gaDh~{^$4a?2?kSwGWk2xd<Rg!@2{3K~Yn|47npdUj_maP#7w=
zn$^Vt9TX7}iA_pUF*VIv)a(gWIEfR1tEW<X|D@lQ?Y><Uvm_$=R4#>dn|9ijb-cuv
zCE?FqVAIcWTVwH_s1@k!-j$iJ;L<2&coG-ukoM)SaCk(7q&W2Q>7?L$d`OI%%Bjz1
z-@|{o2P?BrMY6bvo64MJ%o+SiFB;+qnG{PUN29YGszS(SxeMmXRqNn(R8CQ?$}e5J
zBQ7(tzcsWyZ|bzYySV>8vOz-<t1B!w>%*muh|8;#7{UOlz8#bR1!9FzVlr^7;~IQ?
z3nQg461f~sXqCYnGgxT3|JT#g?zNnkaRPxTLCJl%o(n_pWw*u*7xvef`cTcgu7BE?
zZvIWaGIh_qtY+O=pf@x5roTR3O6l(5ad?n>6S*n&8uZ9l9QL*9`5!#!=1k)$G^{fB
z^*#FgrTq!0TdEZ#^hn~Nc>_p{$#)*|I+bUfCNrye*iD~<aOBWlOo`{~Zl2n2zM~Vl
zOg;H#e2XCW$^Plg)|lN5Ih7m!-_E6|-*O?{J^p^9m1PE%reQ#ZT8^SC=8%*;b=W7P
z)Xg^7#_7xF;7Q+klq{uMr~HhQ>6AwL;IC~II(Nvx|9M|aFP#YD@>QFM8b3rmslP}r
z>G0>9uLEtB?7?oDkd6zhfaj-xLlCBM%f*5gIh*Yn%XkpKVP&;7lXdorU%!&e^JmX`
z<Y|REhy#?A^&2N!dLpZ|O%;3TDRJk&<6@;U{g<MG4Q8|-#X&c9uOl`<UOLV@$=QyX
zM}Z=+g6e!-7M(u;{V`Wq5|sc<1<}sNBSXx+QzRhUG&-1d4gBbg6cn%=mHsIexc`Yj
z^xDnPu}HiYRqW&LHhsx+xXr|9F;$%&`#wm;-8t1sy*feKx9<+t0WV*}>id<neW8tv
z9+I5Wv;3kWyjLFUmRIOIx-qdp0<u2dv1s}G_wR@Fj~VZy)^l^idwLXQTyHQJ?j!Q@
z_y0ob=7Q-n1~+Coi&m{y|D!3sT(_}N!N^2_j)ct3)w|dc3v&a5Z|f57-(3H$tr@rM
zgIVdqJzGjnO}!g5k2>X-lA_~OgY*M?nZ@wdB>iY-ZbxDRE6O;l;5^fQ`{$1zcV?HC
zZQ^3L(u_e@+&s^|Es_3_jzx$jE<@UdxayDlLZAAc`<7}`$(qt<`=DQ|c>3$NwH-oK
zh2$z>r!<i)U7U|VQx!C)h21AgOVfoOJW#l`PAyeaK59L?U8xt@lBDCs9q`8+I9+j6
zJO}^r3t71s(1N~Z_XR1F+tD`-V0i1L7Ik-bcb%_jgzscqop@D(^M^l4j%VD?%g*ZT
zh4(aKCf2OgTLtp)y=+Vjx2EDCt-#6dFszyaL`5lU7LV4a$o$@D_9p?&9oN5qo0glk
z5{%mpDH|JqTD>$kHI4j{#;SUQjr-!J;eSq89{=^LdTV?{IQR+=a!(QhbD4jWwGhAu
ziTPJsE9|^Q0=lf;-_{-LHrjoHMg)4~Kz@~~7lhYoy>n~(7A0z!r|z+UO89Vm_~7@f
z1m$k#jO$3J)^c_J6J=d&73kZ=Z-#|$;dF<aX#LVE?=c~z$C9!BtXerTVL;Hy2dq|C
zAotz7$P8F8zJ`Vd&<_bnRmY2m4~C^chjH&_?}^Momv7K4XdWiEdptbdT}S{56IK}Q
zyRz|Ob}^4c`zN?AEq6lq**d&;8QY|TTI|izSpB}$RoY=Z4lRr7G`hcOq#e%#^mseM
zotYY3vKZW&ni}7O?l|Dz5jx#pB9G|}1B%Xa^xnc4(3JRV_W|(*D#{a03-Ae$zU17{
z@@5a+moHy_UN3VF87nw@k*^-mp;w~W3lu`7a0}pHq8GI;4GtR3>)x2FXKDyKw|U>F
zt*lQs(Gohwf1hlL_OaWaHU#mi(3|%wi{ya|9Q$t^lRkGoQvf+&&(t5M|L1x7Bd}Mh
zh&`QN4+~F#&HVNk_iC*w2k5?YeAaxXj<NvWqLiE*mllEhpGkrB$MtmQ)$KfNS9P-g
zxo8YJzwffKc<;xLAI0<I<Kw*qnel*?!lx_EHpWY|2R!!V;h~#(x#{WA>`KwMy%l%w
z-JXv2fWzeos+0a#?fc+Ni|NUbE-Y#~Iu!84=*nxaoW_tb6~}OJI-ATbDN<b_3Nb+>
z+H?lZ^}y>aSn5@%E^6Fg;1?eGz4iIQk&wyq#b2W<8|CM}Co3o|ZLn)dt=pbdN;I$v
zsckDW*a+f#G*IUoZcEo4YJdBT>}q~)-t@l9lwPAIwQT;gD35m5L}$I)bAE^fqkM4q
zrhn7&uObbq@ow+=44A=8IOu@s__k00M`+)t$uGTvVy8cAbobAiJ=S$VR5Og1SoIxm
zvY!zWhF$J;vL?UCNd%GJ2dqFZDzFUp15~zuDSmXjd_UH(RI4&r9WoEJ_Covd*V2AR
zk!6!yz!PHM3_2-wPGfhYN=OP9C4oKp<u;D$KRkvJGM6_?LL>c2&VNKM=t$jQ$z0>2
zKS*s7cT<TP4ZqLNk66OOsB&dS4XOrtefXOYvl@Zk8wJ-NB&c2%?s0>b6s_ZQWjDCe
z7Yi(J?b2RJIL|@0rJR&szP!s!M)>+?mTr`-3#}%}f9ON1huJb)>qFa=fy?+v#8O&X
z+88jZ4H^TChmonTOu)nHGo7YLCbNqVxc0*N+DM!KyCU+Tp8neRqGWB<YLe|i<CD~}
zLg;cRErRNBq*YG`9ms<bZ3<GHn4kXiqj2~2t#`F4KftF=EF@SztVq;ZZ+=UF7e(JG
zYceK-xSC=ituS9HE6E`%i>UTr;`EBpuh-(9+jXpXgbJskq{N^2FVrFpug&*TVt_F_
z(NK~$f0AE*c`+pSTj3Yt!wsZjqS3n;gDRGuXigjS->?Syv9kQl!*DF|xQx+)uyPpk
zmuxDC!nic<D1lQF+Oi+*d3ji%sa`Qhb=G=)!F0Qt!<kYlrp3S*VD!~r0_@P6uMHL;
znj_8I{n-Qjyg#d?8HfFysqwMgsJ6fg3|o1&8=#<|pg!s$%?vy`YBTAn@jaU2^EYdm
zL3VR>uhg?4l$0MQ{|m*&D!_UHz(KRNPgl8xfa^s8p<{4Utc1L2Bo{GyTK0kTu`(g#
z+4Ck2TfN~S<_NG=EPrQP^^%!nf&2>!6^7|>uHNxj803O*x)RMVN9trrw63pT<g$n^
z^{#JEVPgUFZ#c-mQIM#~wZu|~!9Jio-wp}%(4!z3lQ|&=S8Q_w$tnqpVx$c9{!0<l
z_3-Pfls_-oE_$?`JzpH0dbqpany_C4|D}9xTo4<(RcmY*L0RsW6{!)#X!SA|DG_CY
zLj6b+ai8FoxmuTx5(wUrhht$aT~UC@75NFv`T+D%;JAT<wzGV|JW!`oQh#w5*?C@v
zM_~nOVuU)ch}UdvHs>V-^(HBWfvef5_BcpJ)K8S)c)w(6vEET?=!Esyb|i;JR6bVZ
z;ZVS3mHPANUp<#vy?3Jlkb=)ml%e-p5hwHM4};{n@T{$^H}Z8%42#lZV|cVx=O-G9
zcX@!;S-3h2<zu|hfvmb+(JxX<f&XacLy<@Tx?Nirc!h-2UcF)fdQs@lXq=9SSFh}5
zs@d<}y-UH$N}f4Pppoj^;(#0lp7fM<877afwOh&w;Yg$oHNI8}6*z#f%nN!tUdeJu
zp?{d)&32=C*o=}+u}w|VGrQg$hOwopNYDoW98}-q|4Z!ZI|kCWs)mL{ivNA2pwu1i
zrv0C<W|$_~b?ZQ(Re95b;cV5SIa}|S&q7Z-*f@|$mCw3}u16>2jOxktcUyRC!=knb
zR~+Thipu&-ld-gr73q+I3-tpS7TaP-*>%}UY;1WiH%@_ZqyVF`zKOm`7hD$qtrt3&
zqu^7eajSY_R3>aB>kfeZ;CPj8aoYi(J+|*r(fu34JIQZ690iCAIL0?`<+y!qb@ivX
zy#cZN<Q&K!NCCJVO7WIzSrb#v#UN{%(hAi}JH}e%+svzib)hujY#aL@m(Kv;)PxFP
zE0K`=599|fA22K9t}<+{mg3GI_;iDc+J&$HWgDn1??i-~pwV)GVQs||LUxsO9NR}*
zl>Yqrb39*1uD5bDx37E>MO&w$D<0({V0v4TxVig08!S51ZpmPS;9UVz&@lkn6Oc6^
z$^y=!$4}4&S2!^_P^YZG=j7%l02Q~`01~=S$ASEatN>|@OCx;vHSRJAb2qlqC47~T
zd(y{vH>$=(W83(h%|`)xW&IVX<J*#{c<iV9jAO*J(jB?H?@l{Jri9}P1~`CS<Pceb
zuLOnaS$yKs$Rhj5OWc<ZS=pZpQobdh4RE{Rjy?pe&$T;Gff^1W@9VLpRiM&!*4d?U
zW(aWroQ$teSV6fy34+z1yo$4|kORJsQ_hb2G;_lHDjLL$ayn{OKkonh*LQAM8Dz^}
VdcM@;2VZx>(ooS-u2h7F|1TX?RZ;)|

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-hover.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-hover.png
new file mode 100644
index 0000000000000000000000000000000000000000..64f731a46505ff363b85801c800f9140838425ed
GIT binary patch
literal 11884
zcmc(F^;g_6)9>OGcXvv0rxbU0ch{x3J4<ob;tqvUd~qqRMT)afDDE!B?Jm!A-hbe|
z=brlmo17uvWHL!6pU+I9)l_8BQAkh#006qYoRkIt080X`ry(Oke<^x2VWGu47dd@*
z003j)?GGl68G{rmMDmbVmPXn}A|fEC8&&-@0RT_|<fX*5d~#3nKt5X9*?ZkB4!#dy
z!UA#>dE7EO@xOVlSsp1Qx^_6&$V#&`c}02pE;tHiD<)}~NO6sg=wUJ+N+c|J#YCT5
z#R#p!PrM|PG5VX~v2djzKi<z-<sN7w|3mv?7UN6t=$mUt=XsmxKH0gq+McGRU6CTz
zMak-R*0z`Lf0`(;=f8F<{GG=b;)x}JOdVzgm;~wuzg1h<@JPa-m0v{vze-biK3fp8
ziJwTYiS5Hr^u@hykWbS-hS`pNb&qh6!?IS$@kW}A#;)em<?zvz2gP}(3&7sS=3MPE
z|NGXxD>K9=y#{_1d}W2QXZbbNSSQvI^)$x!#oD(>jNdE&C#IseL!V{ptT%L;Zj~GX
zu|vN|s{SEiDM(t6AkVJFWIXNY5#IqD?Ya19O(qlTX0gPbXy5=6wa-M|$4CJ$=;s@j
zJSR@^_#0tK>U1+kU)pP?YY^mDimBDBF)mNAtAPS9<aY!sX$Gt|4`B9nRY%hl0bO=M
zf#Htx#WFY_hp!d58JT_<AzS+GDSaD$iQVB?fC5!L13$qv+~H4E?484)xC|0enc3;Y
z^UT*E7S;~Tq9H(byCRo80!>&_@@_2q`Jf{%$42v9tegq3eEgrK;S$}?xjRn3$$ZJP
z5FD#5+T(u^J%R*Z(z;2IZk4=A7v1XCaC2$KMM{4h1((t)>==)uDtm8sFr`RKdln7y
z2-}tAXG;KeN$zpUOl}v9Pc<U7ED{ap#4cwIxo^VI1^%a==Hr%euFaeyq;8qt7|Ilc
z2@iutin5)OWy^&GvpI3~@dB#aV*>i2Y4m6PGvump9gw1fpPMKyT@%a_vrSLpE2ayb
z9hiz^WtjEC(|!hz*$@ll45goYqnnyxzk|>U;Tz)oy-Ojj1rg^X`2yrU!#$-Y|2BiH
z2m?@;;wiUA(^S7?F~&Gbj4T#c5_D-JImlc43xat;@QK~Fh^tNv;oe~w#Qi<i@DLDY
z?Yi{OrV_ka4Ls6*uRLfMiXKdR>{~Gna0tPvAAJt^)^j{50aSQ6yUzFNnZidooOvmo
z+(ay$_=2Egi~3V%{Jz1$mg&Du?xhE;+<zIl27->xXD(EYZ{qq(Tj~@UY5!#}yKb45
z4Ci0O+Phw|KGna{@_dZJaE^~1;c(?Vy5+6u|Lt@w1S<9ztzOJ3N9|)}+Y11&^VhUh
zKV88byS3Rsm$_=CBXN3e@$)jp*=oD#v#RUCPhshHF2sJ5NFO5WHEwiGa>H@k+flm5
zh+j*YD9B)8t&6av93&8+C_&|l+k(cDg~Nrocdv5lYP*B)c^l#9c>q=hk_PkVJ5G`q
z{YO)@RPJ5Jo~|C4<7H}r->VIK07f~s>taZN{ZC9xe7;q{qv7=XH9v1MtQ~mX4bG8&
zI92b+db-3|(^uivpZt;e1v019r}=F%=KmaSeDi+Tvgn|c`CdbI6^@fkpY?m|$%94v
zC_*Rqq}ld>e4FH2g{`;2`WEJnNO=;KbJM>Ulk(d>mh<UmHc@ZXZ}*Rftb)?ZzN1Gj
zmy$;Mb-%`$4{=Dxi8Q^;LhC4?mSF)IW?`jvcB=Sd8G^D1gWV=A&rY0CRt|l;lP6m-
zt^n(nM(qM~=v=MCiH?_T3RJ<fd)x`2dPL^uozsv+EG{-=2w{&dCGP?avJPHhJ%5Ot
zJ3_#<Ik;0T;P`^td=B4Wxr)o|m{h8+7|_*c(D+do*?u&ORgXyXH?mnw9AIHrwI}S!
z^KOY_VCdY4UTyXCG%KRRjHRHeS79$_YukCV$UnI3>Wq4>!13qDAk?m3fE5AcHr5E8
z<9{vfj#1`^a~)*E&CVHRF0ltA>BG7AfB>NM{?pFD^V1at#|ob}wZA~{Rp_>7hYX;e
zPzb}c#QXv}nNnUzto3j2ndMdtX41bcS$m9YKam8H2*;129y#qPuml(dJQ-Ilj8I&`
zhiCbpdi_bA;peb2Ave$+bq_~0cU@N8id?$<{RbF7Gk*eGBP@>lk_nE1IRLKL8l9mN
zr$@(OXj$>67<X_mCH;*Tjn=zD_NY;5d}IoHF*_ajUKCL_ofeu#DL#q5YlLzKC+SXb
zLeIN(J$ea!i;o_+3~ef8G?Fv}GOYOlB2kbOj}kOhpa)WwPgp5k>(Qt`jqqyHp#E*q
z!PBr0=+@Bn?}rb2Ym(*N1BZ9YILBmwG22xT#u?_qL5`7xvuIe)!OPVC@ptn>i1hbA
z_E8DPFDBj>)PXm5c%2z5TnqzkGG&8s94lCB1I-9rMfkQI&*yDX=-l~I)Oc8+>LaZ0
ztCD7e6airk5lwav5KRWTwl2<7B!KH#wPcinVr<k{UBos<d|jAczt7*0%(K3K{$?mj
z_W?HSi(!GNW~ZnOuqr0HD3}s5S!<j9Wv{WvXTK9qkVP@K_NsB!+usx78r^zQuSc>|
z>5hVHEy*vFBAfi(Hw5wEMGkt0D62yW#oz%?Fk_u5+A;GltczFT@TK0&Ap=y-OE&8}
zyi)03W8hyk8734?s%B-#lBwmj9p1C^jJJq~`;tmgtwN;LjB2+WjS&xj6}GKjxvqQw
zaJ0cI?jh7&Z4U$ey2z9PVTxOJ{Y)D^N1g|Dfn7N3R!4=-_g>p0FxQzf`ihE4!uPcO
zI2;3{-s4TtO=6jlo)eP5&iSYdhTd%Q*{Od4fX;YO=oD<Xe)p99j^2;cEx#I>sY)<`
zJGs(W>=zQNANh|ZK~@E5t;ese$m8)KIx@X<ti5Z5LcQFG))pCI!lxfD>^~qh*ejbZ
zEcWr+Y<D()Bg?L0%H10Z85TYeJLB0?(}u;d;9g7+zeb(Cp11hi*D73SXFd56brh^7
z9%r9K$D)Z10JU}p%l00@uBz`;Sb@^dRGVf7PRUJfXJ{SPH1>#YzZ*BXg6)3IF>0bw
zbG@%v^trm835%f!;sEMb&l4-L^)~ZeU|DqRs{zn9Nniqk4!m{SP!k<fz?hO8v(B+F
z=bdH)1m!i@d%i4-c<xH}b5U3{;2r+V7IDTc5thFjmtGXNB!OXhlVh1tXFZ?ZtPI1&
zfP>1rv_<mO{i7w(rdj0~6j7w!+V6TJcIT%m)=lVp#o#(b-+y>dr)SCR9p!&izBf=j
zTwU(~5#p~O`)n+WV9k!TQ|Zda3w5j_?pE>G&Ujn9G+}XwxR(Wksu`w3i9tjI;iLeO
z1}Pc4cBKSk7>CXlGXD8_<eR}sueR^x{NALOo2jUMhtvlh!Lbdtap=h~fWTMeHycPe
zyjO1)!DxNDA$b0UZ~c&Jm~fQA?Hb(un8omF3o3}7(cE<g>6D4K6)QR4bxha%QjT&}
z1>M~=i8n;s|CDxq@d!JVMwX9S^E{pE)=jDv<+=5Jc40yX?O}ADU%RuB{yu0zu>aSu
z>)H7_Lc*>3n*7nPDB0=Mv`$jg_B6Ft)ce~S(~hUTG3&6`)5pl`pyyrN#oj{86u#b&
zuF~Aq-1l-JsU!DK7IQe%Rt}uhAoA4}K{)!((mSsT^lnxeIEIQB{#^<}@jUwm0Lzb|
zp%@%3-WCg7z}+4kJ7JGEA|R&jLJux%iw@IX5Vo9|<x8zWdMSKJd-B<^%vUq>jr8Qa
zZd$mNY>EExxK}SE>aZlv!LTQd0KxgZD+u)*n2k43p1x`Xo?U@-!0#I|z$Wtuylw6%
zOTW<WaKUEh67741p|LO#UUt+j@+XZ7iezWR`Rd3(fkMBB5J=C<*63Qf(WSDP>+1Fx
zZ`Y??f472xP_)~2{p*TyAjiWtfe|?U_LbZa(F@-88xW>;Eu8wV<o|U^gk6MP!ya6#
zcCQ7GEf3Be-PO8zU!wf2O~M!PGdAzcVSB_PxHA3riJ&LwRr8)g7ORSZ=)qS$isLW>
z7>eV^E3XiCq}i5uDC{nTYTUHhR^hC8Lae@=*+s<^e-r&Ju{Lhp{6F?rXc#c~)&`4;
z%5G*lEU-<du3%zKf5@#Nnxg&?a(8iY@6%BNV?vj8X&#{7+=6R=rTKR`b|&Jthfd^5
zWBH^6e6Mg%SAt3jJMk_z)D1o)Y~YJq5aUClz2)I<?lH|0i)iLs^4i&u!wqVI3X-le
z+4k7SsnO<h{HsZhcCM>>EJq3mhllYk=}^^<LXma!9+y^otn>rL=NO$W77SJ4dt(g3
zO6ye);!g;6M-dtYQ)nje_4NKG3~3__b?ThihPO@{H=S1t1m7IuxMFUafHG{O;(Q$l
z6z=oRP>btD93JyW&jMOk@A8+sYUA$;@bMKou*9dDou&w-N&~tM4gb#KE9N{eZC|Bf
zBRZ<i`{T$M7g5IBHk%b)2#wfM8<~bw+hUlNPVZ(<BAe+8prisVv1IaQZU>H##`m0w
z2p(L+MPPIN1LK44Drmv(kuNLBK}WSUNA0V%lqL<5qTdT<?NPn<_sAY^DVNN@&O)WB
zwGgiggwa6q9l-?s*4?_*TEWp)KRr;5*pCv{f|>$<Vbiak*L5b9Uzb2u@#;wGIvYne
z@z;M~Gu$bLbD{rb_b|dedf<QiM#V(&T4bo>MHlmElJPb+PWU0QY8n;waw4(y?9#s`
zz`K@Wp@3PfYkAcBV&&*F#pA7Zpv<`Kut0lfr%OP$@>e&9$ufIVX^owgBb|<;o4`}i
z`VY+~3zG*;&Aj@naF5S*qO_qa-+dh8f>dg?XSS~44zFzUF{8)IkwPO>Nk7-uK_L{5
zgYax9YM`&4`rlAoV*u7rwCZjNpW@PwTJ-OA#LSoEb`ka0_yovlf86<Z^{guu(XToQ
z2T^0H;$OZiK@x;1lUf|O*BO}8-Ht22CKL*d-?o(ODQIMDrhlld$1O_uKGjg(<5aD|
zu|`4QDE>%Khyzj_VHz@W=<Va%Ndb#5t*V3x49K>sUDkQA*VWg-3s>TQst`46)4Nnu
z^V)^A=n5RY#lNQ;;a~m0l1!N^_M0qHa$(72JEKr($-zL?=noo|32EA)HkIT?po@r_
zF&E32`gSO;Sd-|`#{wl%ZlGwP5XjekRI_%U&pgb6$KqXqNN_IyQE)zA*D})H)@Bh$
zu#VZafKPI;D(J@M=U=tYv2awD(Lz-x`vXr8uydZC7UAtbDhW{i^CiklU}(;dBye_6
z3LNcpSp&jf%!go;auS8cyKm7OukqoA-8s9dFNA3)@E22;W7HybGY2r+_O`e`hFGN)
zca>-%_h|3P4_^*i>p7wkW0Y7-L-DTJ4*e#&rGXPR$!+UhYkdsoZK}>(9^$TG_xcd&
zagg?f&4k!*V%h9ayEbW{5bK&BEl}_@jtpyig0W?uF#w2~B!~`hnf7sq?OQahJ_YsE
z^#Jx!EmRAInpfYmC9nM}9BCce|152p8*ou88vNvme8M_BxHe_!=Z+=wm&wdj7NA#p
zw*XhY>-Oy)o##O@;uv_jyS+JA1W@^Vl=A8Ap3fD_X_R1?gzV&dZLhGJDAQ2pMn%)X
zBHES6p-8!Gq|$7w;M<1=7F;n2f+q{IujTZlVVkFEqnkN*FOUw9<lN$tq)W&R3GvM;
zjjoZfK67M;(xERxG=sy#4F}ro($0&0#4($1gu<IRcYM_!N+!yUv;dR<vGUcX;km}e
z7Ob<B&kj`#Uuv-cF>1T)ZUihNrjdcSOrDoWSO%L2YBBRRe*C;Tghj(EKgjru0c%X^
zH$#@_2kILwurfVq(W1d>BEdhdTwT>+0$u<TX{yxU>)^XS176(58uLs;a<%Es$q6UJ
zkFKGv$8DORB$Z*f3*%4Y5KVj~O4ZO`${vwBS8zMN@41D+HL0E+r3{c5AnH<F2VjON
z5tdue`TEv}Gu3UT;i^#8-yGBehtRKk%uqae%=ssd2E=a_yB??($h*~~{+`$>$x+>t
z`LH3_=j6vYl2{|YesG<^J-F^1o|nSDC$0!1T{}j39_lOg%+gZTNK3ww)lwENv)DmH
zJ=fDU1N&Iwb;Tri$sdose5?^TN~o1Th)4`E2a0P^WPf=Wecvq)t#+X~6a%QN#yLN8
zl9YsOO|&~W(=T8cT471ZBqE34(=GbR=wUN*Art$@S;it#LvKm0iE>P5I%s928a4dC
z62$*yDbuH!WO~+}{>$&}^4<PmHnYtrzoY7daycpbDpZPs{U%-5N)SAiW1uvqf4idp
z?_*W(RK-Q`x*z{`!w6u_mrRui6i+i0`{7Lk@!-@ibRnJ>(T5!0X|?G;%=193m1oBj
z9sjB$xu<CUHPA_Tf1^DL8JC{uV*Suyz&f#FHa`Xj3}$iN8~_n^&_b=lg(06a1<1{7
zcS1qkU#PD+ipmb@;e2eXF@%+jT=K2l5rCX@97$M--IHp{N`6>OC|#CT8K+p7wtkmg
zMr;_z(_jXjbC}!=6AyrBvv+?JeJn)TiYOgj8w*h9{V-K%Cs1gwv*+ls-Cl+|_T_ka
z;;+Y1ZRKKJ6+yk8F+{ny@Ib&rdBToN^RMY_(Gdxc^7My%hW#%zP}{A@8)DiSusMt^
zv@>yiGaPgS6M;(9rK}CKmgp;@(#kKUOQx>N+X`yZiv(X}PL}_P-%OXNm$FSSo{XC6
zQ|1^lfY-`Ny*<uqBos-40Cx}5On8J7Lk}g`fWM2{Jfwrtg420c#2tP8wW#tb_N;oQ
zZ?Xn;qxq1dgb65m0Ct_LB!36;#&|QU2B)y)<8r0%uL>`>J4@?yOmzyjow;Uz4mD<*
zT$HnHmWLSB1x4MAF9d~qw+G1%k=S|V^>{>P<~i|v#zodJ+i$Pg)@317c!IM+3p4k{
zvg->h9`rFj9@ajxFqcvXrUy!DRujcA_MalCA2C>PNd<a<k1sM8uvu$RBhU(*$b_zu
z6B?a|-vc0t3xJNvLRRO-Bk70_A?dnnz5U9z=ZAQJjXXUNPlzt%b<6}*o7X;CA6Er<
zR_%AYkLTEpO|>vo0=32)+&;Xuq#ZYV>vE68N)n&E@aGG6zMSaguGAW&#&MyF0=Z6q
zH4#*qw&U^-1(Mw=>Bs3Vr;Ze~AUZB{>*O>hW9M|^fBm6H?GcGjOCs%I27sGpKrDuf
z!jKxI7YHtQLP*M9fNyz@pX})gzV{YOw@a^1|45Z!U8X;b@0mnd%F-|nv&A>$HfJI`
z|5*}o!vJ;R%t>5P`{|PofX%rSyHP8UGIF)H*E`n660(tZ=QN>D<|mVm4IXXm#Fnd!
zlmnds)0);!lR+SoZl7fCEfzN8CXF&szdf7j>p8iSDVQiVWu)b9I?KlI=AXU=^%F*&
z1?LACfQ`jH;`(1qyLqAprL6EsO1E!62w1N=$ix-rRT_y1lso9Yp|HwU-}Ke%4B6q%
zU3zzK8L&2u8=JQp{^}D1zW`&WyP_U47qa159MY}7qad+o{aB>C^=!j{<efm82#&eN
zv?jeB^si=Yr#V*W7AidG7{<zSsAI}goDhAoVer~Nwo4MGqccW(j65y4T2>Ly6c?G1
zIu?&{s8qgJ*4*Mh7Oz&j!Pg;Z+lLVnXawSA?|z9aB8k4(6%?B#ZdArLZ4TWS^wDWj
zFtYD`@Va(vLScn8TVC80Y--F)v#hZRr0n3bZLWW6-dYk$Mmmztk{I{cnzt=0E<JqY
z)Jdc*=enh(9UiyMb_IXtjafrFA5fjXiCe+x_5be1Ve9X9&(iK%_W{ZM&zB=vcG$JL
zW~B!ijC0j20a`AHKBNm2Hy3!ZTBV$NqS|J5-e$#E0sz@S2T;baL)T-~+0*iZn;Rx~
zkU1kC?_?0VgFsCPkQR2Cvs02=-i>(@rL{oB+TG~OSa!geCDSg$6>G)~a?etBtlo4G
z;-m?5Mx_m|cDKZh!nn}g5T8u1V(8^bpWjsnBm0NY5{Cx(!yrUaI)SOxB=Y3u=ID<!
zxBu-aosYK@_n&6}FPt_LiXaXk8XK*s$6{FY@%l$et4#GQKwPUTcWs&74Ii>>-49}1
zSVQdHLM-c*C^{A%z7>`PJydQg?N0;Y)=gNwMcLrQ?5u&EX!?mrkj=DPu9rjC%Z4D|
z<E}nlw_PbKGc49E>TLY1bN*n_C)+LjtbbF8M%`Z6XBKcK-wKJ~qK0&NpCE}k=FijU
zeRMb?QQmuO!<*kO<=erP`?i^@jpW>4IL|6S09*)aS<=?#ckbjnd|dan-8|0n<G=6R
zzDCOelo0C3n7^U2o?)|a8>2OxhYq73EqvAY@fp&8zw%*QIK;YjUqiNXy!8Y-Sf4cA
z@&iEWSMR?_UNc_`fX_vB8^4cpQeek2ro~bWcf`&_tn)-(xMCFDjew7_TQA?*j@~p|
z3#$EUZza*UzhwL}V!-l!FlB=%q>z+Ga#rcU++%rRQJol-8cx+REMm5pS~iVntgKM&
zI+%@>&O*8+p4S!4SsX74MKQt=xwfj7+vojin#(&9;fGJvd@k#RcYh$KJu#P}{ki;W
z3guN=L`UHF4ZJ*tLHA*L2?dR{y-FVs3>35Nr8Rc{=>LqBJujZ#SN2=SUY~Dhec8A8
z*K9h_pXi@DhD7x84BZ!9e}A5(b|qU19$$mnGuzy07>fshtuD_%{2SFzEQC-W_foBu
znA*kL+a#>OQMlr`b_&1AG2=}xQ_x8KXiPtsLYYXAQ}#nV4eTp4weGqbIV1jIT3z6l
zdrYH+*}g`)V;{+1Wa8qJF9z8if=Rgn+-uBh$TLz<vK#*=LFmY#4IhzGqr?hg4lv0F
zg1)P|jj{;Ek&ta8r%u}{V3c*gVytpM9YRC{kZf(Y&1RrJAkun6fse8se5AcDZ7X|u
zO=k3meJcohtPp+fzF5IC6Fd5`=Y8CAs{!3%{4Uc{_{rP*5&(5k80hL6mnYLxk2b0W
z;gTm@A46_c2J@}mAm$%-g^KcPeQv&k$oqt?1_GlB?ZAP$DJ9ntl7Co8Dn_Q_yR(Pk
z5*s;yBp!58;_+*0C|`~*Sz$K8qb>T>$HLuC%(PyJYReAAhgF52-$@eFR;{CPM-1Rd
zaJ-g{K2nBp_}{=05k*<-nCfhfv3C!gw5;X(efh-fYwuzuiQi?&vn=Q0%MISZzaW)X
zR5PO0*ft#4ye6#+I&i?N+z~oQW@F8Z-=q(UX|~<WP?-6pB-9~@G{~EJuVf_pz^%mo
zCqJOep3wE+nIxd4d`Q86^E=SrhSMb1(7KF$InYMwu3Ua|JRkt>hIDO7UzKIJ>Z?LD
z<O5%REq%J>lA1K#UkbXqvl7zt&<Z*RHrQZ&y&I`x{h<zw)VZ4@SGrej(Ls-$fC<}I
zCK+;NRhP|3C=?5rIx&4ZT?^xu$|LOOM0x+2v=k<C874+ft&B`pzzyGXVY<8~XBffa
zS|W~4x@=id>%+dr(N1QD))mnLA*K)orcnO!`i0zB9F}xyXDVW+PW_9@>2F4<?O9Ve
zz)$aI*{5BL;iR2!qk7(XNf%<Dycl~s`zK|QiRDjQw-UlGOO=5E_k(9j7g*XKW>O^e
zsy!uvRJ=f3wY?TKsfZ@=b(~ae&m2+7S%>1mMj^4^!{!9Qv`S<QV@S0lSBoZ)=n7cw
zR4CtldlvaK|3Ar2CmS4m5<8DPA1XoXr8a*a^m89FTCu9Ncdih=g>Ob>v69%NPThIM
zr0%+z^<u7DnHG{m!D2D!wsGP3@D;z^Vu)g68OBO{mB8lu{Bt9T8=4m@n4IQ)Ck*Vb
z?kiq7NG-lj{m-|rk&S7pZ%Nne#$g~p;=PX$g%owWabgO6g>)nqNtA055i@{HqQ5Rq
zYF-aZHqRnNWoNv&Ia8x!#03Szzf-Ho9GQuci)XUVf+v^7Kr4j3`w0gL<B6>M<qozO
zPMsyF5k7Go`$Z%M1Bx3h^BUV!5S>;y1pKVs*#2gJoaGI*(b|pGWhRz2Pn>We|IIY!
zjZae1!vX(=MKgLnDV^wm2|Sq48biqZp??d!P&(D>zBxc$YfDpu>v?}EnkNZ*?KYb(
z8RM{<IfDTZ1o~4jEmTol>N!n$LdUb>i)%fC=MZ3D5+&`fuSk%&AnJZ+@$xBZK>aqg
zb<l%PHf!Wv+jdv_pm+@2u$qy2J-=uq9%;5s6nYL7w*Sa9hl>5X#&M5z+_T)M+Mw&o
zyXUonnAO!vpVv;yyW@tnVyoU;4T85M^@v;&_+7{LcuxIQI*rtT+DLR;uJcU=0<G6K
zc_n%$WEjr)Hd+TwZ2Wo_?__gw#W_t@gIKT-FeY<~j8vvif#c$L^nctbq{|Db<|Z)v
zV(X1v^iw-ZY&F-$oxd+>;cHQ?+nvnhvc6<kc%vHf<S%H83|BiDrtM|kFDLKZ+pcvN
zSc)ER=4^keKpV)l7fun;y-e1sY_N~!4^cjSr+K<&M&}H%Je*^3zyB>*y*|@cgnQTp
zeM|8A_7)&<{EaTTHHZ~)Dv<G=yKCtLQNEs0{@xtw0h~UDjz0&Jyio`PHDDZ$>1ykj
zW#@umL8xW29oaWPuL10CZf6uHpWoEB3zx9`%J3RHeDVCfV7STt84w&v8H7A+fRW%<
z4c%@@|0JMe2;D3etVdgeV(4{+BiXyKE{K1{vE6URx;~86K=pTG!pSH8Y864*)rf8y
za6#AHt&=ww^!hZZd!9EqhJETsPka5w8)jfwNlL~|9sT8>^5wVKBYs!8+&p&=N@6~6
zX)!~Uc`poA7)GbYD1p+!hq(LYn*QC{mFNwR#r)_FaTWgClmZxdh5+|#xzVgSraho%
zXYIGe#mE9pc73{#<$lG&6#h3%t0wr?nJ2U<vg)%n@$Mw^P;Of(pZDpR@f8{xTH$Wm
zYXae?pGx*nD<<W@zKH!IvX~v(OV08CM8FyZ`+^TjIAgo#J^krU^B~%p(0%lR?EJB5
zUG&ve<fW*CJe6LR<m3<sI)-GQI=y8Q=otc%G<$uOxMBx|Pl`OUe(<L^-=%z}rg&Yo
z*ao@p0(BGLb^#FzI`o?`E3~1v=rQ$sOEhK~$&V44W9=BmL2(}Uu1=wBx3fj0?`%w3
zEX6pxfQQ9;(_eWE5eLfbFL-l?o2s)wJZ&Xq;-QGj+#(c-O%4G<6!uF(?PW_ZZ`!nQ
z9iSu5d+tY&xx}CelYFcn;Zc;*vye2_ed!zQpiSig8;2qq>mr0<c!Q~DN|Rh}ZfjsA
z_2)c|qu`B^coH3DC)5i&MW72caz`sHA?fWg5^)V1Gg23gVccZagU7H5>R6Amovvd+
z?JK5kp|hEfYGGArjrlA$&7<f*g);m2?P#hLpnfO|7Ka{bA#R}}b6ldC?4leCaeU%w
zA~4KiScFBV8p4p74*I80QkxR}ZNm8@YD)A&;IKu25Je9jsY2d~1yliK;_h#Q#YN1h
z6`4^oB@$**tVP)KB`%(Md;{SV^&40)Wtvi&Tijn4Q7uajrCmpnZ^67Vg9GU`OQSr4
zh(hN;3Sc%yq6djD%WcdZb2SMbIkeLu%6<w@8Z_JrvtUM+ZCfe<DiOG$y@;lOts!)@
zl~!|8-OH#Gi|2?7Vj`lRco@sT^$2hf9GrTx2nR>-ez4om^7^2y2v@Y0L=E;G%SwNq
z&q2j-L;Q#8`+imaBPeck8xJV(j}fLS&?tFVAFLLyEFer>R}Wxn&e|uRt`7P5)SmSI
z02*k1i-N-5F@;3&@#aj*72mgimd=L?4%6tx<OwI=5i5orp;kTW0Gm)Z9=5xN?JCd@
zjq<_CLk_7AA?0Mn!VOKP#!WSA$>5=LnY{9`gjSS!PaJIl>)H6??Qly|cjAcBej$_N
za@_eq8W9X#6dp~0{?4DH;{lt%DWx3w@p2p=9xA3PV)gwg9`fuO#&mM@><^);2MWX@
z=EtHUl+NBfJ*ZSOM(D>UQVgK~vf1@9dX8H?`oji*$9yp~Oa4G-0&ZiE5-u1YE~|pZ
zcc5Ih5WXnE6Ckyx4VjN_x;LLY$@<bFD6k<-<QYDXEV39pQ>D&tx2b^5OTm3AZ;F)`
z`<b)9HE}DyN@LFZeX=NsTmqfAQuz<jixA201jBamVs%ZceK>Wg61XTCR{PKg;wYJF
zk2bQVW@&Baa69s7Cf^cQk@iK=&pT<u8n>FP#Lb?*4zg{2JiH_GyS#4ge!%&<{kOP&
zl$rGZkXU%;C!kOR0xBx1+HI@>OO=!C7L&fr0MqP^3{^D+O=opm-=Er`?X`j-c9Zee
z7II<Ts;{{nox5((0Pl#tF^V(Jy+X!z*1@b>?0|$Wb6q>0MWRquIigA+$HLm}5U2iN
zrr>gNnL*?DncG`F0v<iK>@SYS7qf<W6TO8|KF1J)pukG|ra7*o_H`$^qY7zj_bH&M
zRG^Z*GAse_SiR<#XJH$r!|g6M2=%5zH*~?d|A)PDn`bNw5%YpM&GbKNWke{8Nlhde
z2YjQG^7;o?)?v|u#TFVH$4B`+)8(tVVk|9JaXSs~+#Sx?KZ}>r5f^F~*gJK43G%!}
z?=ym9?{-dT*Fwf2YLO!i?cYgyMWD$sScaTVVrOp;i<5%t{^faThUMjGHAzM`h;EK`
zM8ZT*{sYH1zFrgBPD}Eb3?98l?cFx51gn^zqdMECoFsj-bb9s%#WX;{{Mh^ZUpo!R
zmY^oN#HX_1=0SgNr=j1G-@eoUnk^8^e%R@kmVfGcEb8o`Xy_LT)-30paR*-~9gi=A
zn}&hx364X9!kasEWVOmZzNl_iIUGnpkLpbA-9JB^PLh)=A7FRAJ!m`}L{wOrdZPLB
zkUbkMw&<PpoWxoJJ3fOiai`P61uBvs<^3J-jcP)@lWv%ysToaFgLq4XBu(Qy0&h<N
zxwUfKa`7US=`VWN#fG?k`W=ilIPQ3{mP@`>M04-js@iyRul(QRi5A&S#XX=M+_)@P
zwb3W~KdEMw9slIt;oDdwyI+U@182C7s%K~I4jA|digcx!N*EG@X&(Kyl!Fb;)M_rq
zDSK4M!9bsuXvIc|D*nvU=G8^bkkbWxC%9A3))JA2o(*UWR}bzo_&*GEDxo@d+q;SE
zQ6LQAus(&>$TT?Z^6`uvh67!UUq_M9An4tw%GiqZV(a+6M*}o&zsmbYKQju^2#pSb
zX~ZqUuxeT-vJ?O-XaN6sLN6H;V1ma!BE3xY7@<ljwsfe{f4M7t5kj*_=l1hx-SZd1
zR=^mzUDAng;pek1hg=80o7FbN(DLz&FR$G&n_meo*l9ee2t5VT%qEgemSXY5yd43y
zI_7E}aTx#tZN5hE&q&9=OKu3u?yx(RP99*aaB6zGe5aleNPc8Cdl%Tt1Bv;jWJ;=H
zF2YM3pMTqX-!tYI#lkqaGb^0gF`i>2(sO=h+H;tIc-1AyN~D5{M2yP7Ny7G)ZKZF)
zFT$v89gfrxR(bdX54mCJ4R&h@?Ek)Hr6afINfgL+V@QAc>~oB_buo=cUNjhk!b~#v
zAeIWJR=Uek53Hj@b2WN2Ek)y#j&Nlu3E&pCS(8doe81Y^K5arSM*|y3;$};!rc{Lp
zJ+-KW5Hw=ndK;>}@pp~HWh)~{^ix4+Xg-f2i*RFoX)YpR>bG2Vzm}4f^31b;hbtmv
zKALfbq{Z=O`2U$`&4o5!-_()|_Hhh(zL(IoCxb*w|A#iJjIl~=*=3Q4FJCM+D4hyy
zn|GNCn_e96sf0&ib8d=AO*Jl>WNZUFH#mf1Bdpo5DoK<+h1z($Sm=*`EV85E{FP?j
zl$07JU@bpBx1Cgj87ZbNlk1b){jpd_-E)}FNI+#`>&X~r**ODx=}}xjwy-JhN$H!{
zK5|MUftKIXT|zca4pCTGSU7NuR+Sv0?&9<NaPBIkV*+9so~LcJ*qDM<S@(MHTU*Nk
zBA{Sb5?UFGh0}@fNgJ+7NoaOvdz?{O#B>e8=s#|=MbGXnnNhmfSlFk;zP$VkoBk8A
z?-;LT;zb_oWkv}@sm5m0yM(<l(}en>7=?CW1+z7}`9(c-SW{{MUeP$EfBHpDsIFso
zI^#Vv+=%*bNWe|4*&Ol0<bZ4m9N_CT!Qm5evpSg$mW>u-w1rD@5nClqzsSJ6NTaq=
zerYRDRmk|ezPURz`v{GukvoZg9G-}&q$3JNpG=DZ<zNOK66hnHzVgb}V0`paSK-ND
zJJ3fb(h-b2#dRyxSgAVl;G!5bOTG$6Cbyo(&wL$5ie@81Udct0E%&rmdo}GJ0nD-7
zMA{URd3kd`sU(rnsks{Uz(sat>n;X*LKI_Nn^mN5(3?56%uLPFg2~vG)JJHl5b+C9
zs*bPF%{1Mv&KJir^(|BFubD?S$EC4EQN*VkxknOZbRT%;tTpF=5>`NrBJ%=1C44-R
zK?EoOb(JLvi?G4KQ@1_(=c5%(4T@5VlqLQ{5_-tX`I@ci_h-g|R*~mBo#eZbxs@Qr
zL1Luh+;~YK-&lsVy-KoqIm*2Drj0RFDTyK6ejE}Fp%H7qCE)-7il!upfX(;ZxsoQ1
z1nBPkye5*$-iQVj3uxLvGc4waoV}5UcYbu`bJA7=h@A#7g-#)Z3@LBm>l4~?vAF^F
zxTnAB;e}73J&oF&h<FAakA(%#SGv8gW;Rddjuo+bMMdeA%&+@pU*5aMM$qx$Q5Rv@
zhcoeRQyJ=GGND2d=~hPL08kFR!JE?8XeBom(l%%(KNZ|+$eJO03{$mLKHQjAaZIRc
z);hner#8w3AIViQ=%ft}i>P*cL!o?htehm9rixOF0(Qhd&EaEF_&0bL;G20K7mC6o
z^t7spE6&x7>9Q|Ai5C@-NezX!BKRm26`kUoIlNJq3kieoR1m<vial%`hJh}Q2Gi0M
zYXWRz=I=lbm=es-fzcqJ9EWJZlz}F>&uDMzW|~iwz%Zo4WMI=apUAB^CNoLKA~mu7
zNGBDH8F1{#j!bojk|yF>G{gTO_^<(5OVJ7$=vY`1MNr5amK2xl!m+<s0LuTLMAYVg
tQ%;sVZ;eto_XXbC$_@Q*UxnPg^5K)79`ma}pNs<l^3p0&H4<ha{|9koXj}jQ

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-option.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-option.png
deleted file mode 100644
index 15d64d5abde768365846d1ede5571f7e680576f8..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 159108
zcmce;WmsEn(>6*=aVYK@tOSQrDDD#6U5dNA7cK5CrMSCGp;*x3QV8x8cSw-Uz2D>c
zzUO}T|NSF!Opat-Yt5{=&Y3ySL@FyvW1y0t!ok5|fMg_8;oy*H;o#nuAS1q7&{u$)
zuP-Q0GCHnsa0GP!Jl=p*Y0qDcNNyknNu(V_bOJ2oKXi|=aBx&`APG@*ubktb{y7F3
z{%0>bwt2kyhZrSN*P{`%Q9bV%v5WGj;F{ko)B2bXBz;9F5R>Rn{=uT8Dw6W8<?E&P
zSTaCGrjDH|fq`B|K43;3o5)7qVIFiHu3v+mPB|OCvvb@W7<l}10b0|1$NSMc1B9B#
zlau3myW}f)CRn=|aCWAPDuO763<$;g?<ZnJ8@L2>x1|4THQTpxj~{VJKf5)LaXteR
z6<L#XW&JMkwTHA|{I<Z2mFo8wh8`43R|WjP-!X%!$cmnwiv8<X|2fE7m$D4be;?`}
zV>kvX=zrUW>qG&d|IfO(8E8@d*IEJnh+(w<+h+FXM*{8tUH$*OLnp=iuQU1|TY_<j
zSknJqC8yp0Pm3%&Ieq)z2VdiRJdhTC3umSi&OEl_q48Llf_gjIfSx(>W$P*0Kbcmv
z0GAdNtXmzfD~-{tEB)NAITpxfsLRAqoS(vID0(VRKgOxG*2VmM|LB_W-R1$IPNU((
z_|;?9S=0(@T-gd-*^oMWy$hS2vs=&Y(ZVQ?VMsw?A$+qg5+5I5)TFmBL-CJhoQGHc
zHV%Ja5h@jW;=0)#jbZRJqzvm4v=3Rno!1q$#i&mHL1_cJH~7%OknZ763z=_G$SPr%
zY5{30E+K&uEuN!>g2ESE$na_lFk0iQR>}*Gi?0V&tfy;!Tg=|r7fw6nUHN>vy3j1z
z1bbJT<Uo8R-I>yPC_O6%f1!^q?|H!lU&tIWA^GOn>M0x)Fi6V-_fiXsBNPAo<F@gJ
zaRR`LAs*Q9Bd3{YfbN*Hvj5sBbh%^XYBnJ4rgGk<j1CkqG0(4DySVDDT{#~N&Ek@@
zL7%bsNH#lY+4;Lg`g@-9qJ%Ft>T<I>bUc=_`m)}5NM2gnu-j*~d*8fyKT;6Wyys8L
z?V{uQi%$3t!3Hb#;efP7e%R>I3Nuuw)^)A+p}VDLryUKBK6!CmfCWNu>L}s7MmyNd
z(eqwn@$K|>x19$W^m(bpKKrcF9+HrSNB>DCwhd8qckxs1jyL@vFJwCC{R7Xa0sK|N
zut(a{_jDRE$CedcAj35Gsd;O(?G^v}!$cH^kjuY<@sd8jwia{$yDK-h{c<Q~!1))y
ztG#RvkK;e9232rum|a|OQIKbr&?1g$jyhFwnQ-}DJlHa6yC&Z<ZKJ$+`S|L+#tfr_
zCHdopH_2^dFe50(W35qEW;7lD<E>PuuesQJqL8Y#{O>O{2K;~4V>uoIBv-2ioch2Z
z#O=7|A(;o0up&ozd}Ppi2`ad(z#cv3f|J1=#wa3sZT%Xxu=x^um;gbNVj2nTvOrzZ
zAR(RoSQz+Fw8DVa<<XXu9*{T#K?51pX&<K;iV5-d7P#n;#$%hBS5<2%^XPOlvzkv?
zbT`YA%DH<O(vBrGCnUCz2Xoh-;fsBCAp8|D(U{uDWLN1#Hnx6+14%}Am>BM|4;sh2
zQHN7c)xUK|gMssE8v?*YMAgx*(oti|^lyeK8?Y{cr@m@8dg?}cTAnow(~Fs9{4UO=
zK>|-QJELx~BT+|1f{W4Hg+A$FW_!1(i#F>*!w{{U*-h;h>X|mzWy8BMQ}Ju%y)l+M
zXH$jmkimxxbCD#8#o(xJ4jpX@Px4fID^5>A4{-%^WvO0<?KOWv$)C;PqY9pq{zZ>z
z_7u0iC7-zZIxKa<<(Uq){H32KFp&P0jgH^N3(UmU8oJ}deSyXhw>@6=3>x~L;2*n=
z{pQ(*talT_ogXR%BJO|pT#HC|Rq7?$9sq%eez=Dg#riZ1?IgNwjuin_0VXjjGHQ4{
zd5vN+dkw#&`UfxRx|hgR3D{Kc|4eEmdQ=N&F(XzwPL&#S{fHQ@hcOoC#2`ERm4^M`
z@}@23n9}VfB3~Jpy!+jky$jyK)|bSy&@3{h3yrZ!Rh_ww)g(d8XNZ~B373F%PcKLF
z*J|2@nvvDh4i-5-ZHI|_T?vht6={&M@V^5r+1RB(`J(VNP)GN)jvaSv{Se+#Cv(c7
z&NUG&BFYxC*1o!z4yB1B=-77t)SQ@jp(i%#T4A$DZK1@P8ek0>AX=p7WaL)T)2HO5
z1X!+{mTyxdp45wh5wK&1DfN+|+5k2ryaXTvF*fjsbwcUGp_~|J&t8T)g6d4v$aqHA
z*<dqxSc^8Rv5L88r=Qr{sixXf!>#CLF*i>n!6+?rYh_{up8O%?4cLH2Uk6^4k*?gH
z5}U=gwb_THkcfY?pYZn#JW=tHGr-XNxFqIBtM!tAx^oR3NVO^a35G3Y0KKBawcdM5
zFHtDk(oH5<9J~y9L+!J26XfO8&rmie&7Q>-7Fi>BA&$b$w>mKW>wG_%qeNzwYK$u;
zF);~o*($Jp?f1WKZ?U&6_K@&TwhLbdqe|;{V|koTz4y~;kK%C9KtRk2Gi7F4SKN{W
z^Y;6sKiS>Ze`)$Jv!{t0n1dF;a%GQS0jMKR%V5T$VU#dw4Lse9v@Vnr+MrI5V{n8B
zPp&b5F4u~Ac~H_iGJ8h~cILg*)Cr)J{xX>8c^cl9z^*D{4ZOAswM}c~;6m+Ha}dtX
zTOg6LwJJpA*nkbK{$RUI4qlMeWuiGrsph8UI2)3XK*N6^hG!|M#t1V*0|E<^wgPI8
z_a7S-))^2CB=%)5uu(Cl3GoxlxebcdRTdd4*g-!&=5@!stx2oe?Lf?9iaSqCpvD;o
zfl`#>WG-bzZJQjE<(p#VT&L1w6vuXBSxnFCLP(t=pnU0WQkKeKL{M5G)C5Q@jZu2K
z8BQ(6`ALOK|Ne4c*6X`PFE4?#xLnYIIewS0c$sSdH-U!nyi(-~yw!c-A?$WzGYe3f
ztSE`XDoIS(7xo8aPz0CS9b9<euU{qP0?f)Ozo{@inlZ}<`sViXw=UFE*g%(jf2{T7
z#Aa^XDKb}6RF(#r6wK#}(q|jShcCN9sX?j_;_rgqeL}=qWM%RUxoyE|%II4_wWdt1
zSrI3=CHWgx)I;!Z_uhW?@%6oEZ?}9qTqxv8N8j;4F3q81;%rVw|5X6BHh~0`B*MoQ
zD89HRpp;Nz?YzCD<cpHBYh0DvXA%Yp9%dpXUZNIjc;fmY)Hf_eWs#UrhaKdS+uj6p
z2p`LytuvvOv~iTp#^alpiO$|=NGuLz7dvgwJ{N=X0<0xD6V@L!^Z$HY-kDC6+)*s4
z#u}F_Tm60~=RB)#O)1GB$+1Bj?3|eY(BZ4VglML&K7IYrk?IZg$W`%7UPA?uwj&3c
z_PFyjN9Jf4=fTQ#n-dT=I~=@|rmtfY4_w5SMn7n)Y|-dIYNK^xq%I8c+PEzIFDlLL
zh)@oTlVfz>)2Zu7Ejw?)dRyce!h#uw<t2KSE^Gpsz`^#?{H#o2MMvp=RXT2IVbhfj
ze?>n=lr<li52nZ9wQTc$0ya%gm4{E$6Ioijb!!NEZA^^G$m}hO>!?yHktxk*nGctq
zG5^iA!7xY1;h0c`t=2%ai-5ZsdDOfqyE+81Xh1qWNg0A&=J<!X)ZPr`fw7d71&0_=
zq%C9uq<7y;@CvVz=w)oIo&Be_&VswRm%As{LxzVfaDP*q%yh$AP-tkcIBYj+(;9?~
z^>*wt-kB<(Dl<u}!lQ0E=Kox{|Kxk+GvZqP$GuhjU(l79!z|^S{t$CSH%{BZu#AUQ
zuC(~*0S~bt9S!<bc0)N9&SuIFES`cZ&QSAPZ(nbQ07+&q{m~FvkZ^N;=f&B8+2<3R
ztdicQpx;f0rNQF^SwV2>9QZ##YDCp&9M(S+gjOvLRofnAv2}030f46&i$>ZnRdx(0
zpz0s7;VRyp+2bOXe1Vx=WU|8_nc($FmX&P(Zl$7L;3JPjxr}ftCE;0f2o~UZbVN|7
zin<lWWW~a|2h%@iDGz^%aJD$gl2bY9hB&82e~XG}6O-bb280%QVAom$R{YJ%S(lZh
zw%RY-IY`F(2)1Vt#KH?eqe35s%wQ7RYtr`1K;7tD_6{s@;v|VqXE>@Z?sxl=d%J3Q
z#@ci=rhsw{)?vDKi4^Q*>L|>DZs%*0zmwnEZc<dIK*0lo=*E}UHeqh|bhHY(MJy#q
zu{4?6(dvk5OGYhv4e|gr?_4)$gNPwLn@ii!z&>#)XRvK+c;Zj<H+HSf5m;<R<$9JM
z$NacFI5ce1%%62@kJ~2H=HNK169KsXsscZz>^g3fOxYD?3zV9$l5TZ(!ir)lm<@1e
z&q<D#sqq(oyiLZRE$%?Fcw9&2n1M4Jyq<Acp&lO-BBCytY(W`5(mp>AiAY+(EueYx
zuL8z{bW#Xb6)o|&frJTGSieW~@$osY4(x&_<+l43ghUa+HqK8fP2pXX;la{lyfix-
z(s|a6HYt2Zwszany7@8hf%(~LG-cFphHJ2KQYgAuE^Q->@cR(-=18S--f2n{X>&(S
zC~P~9|2-&aqj}M=|6xD(TOh2JaJ618ow;|0P7V(4#cki<^Ko5299-?~o$2(Jq}P4^
zx2g5@c;{{Krqatb&Hc5dQ0&CST~n1S8Nj+hS>O+J_Y9eah6Qz4o;5Y$jm$<-Nh%I^
zFmqmshN#q+)KD`CEL{46gsPZCo>haymEXr+u^pFl8A651IqC|62M#TS)HPfhU*@>E
zp~_O^hceuZJF^jDQaLER)>p%WMihxUaS7woqdRIzy1g0JW{e>-4^UUeD{MzaMA-+T
zyGT5%mayD}n1at}qQKn{`!lY2#m{Xr<J73L(xy_X4Mch>cj&x)s!<|5d#Dc<GkD;r
zX=<_ATYoZpO?-~br3lWG#psVEW!X_QG==4$;v78H8EKdBxAkNvdxfXLu2e#f{T3*f
zk>*9QhPTx8L7K$M`ui0NQ`gu@oT@Vt`@sU~eX79XOY6|s*eC?`60GqTojKaH#Dslm
z+Hy1K=9zbjX;Or%Qd4sbpL}$BOv}{`>Y&l#8w^0`lP@juM~u#M6DpcYur4BDE>YCy
zK$be}oZB}E=c2J~CqEC8O~^&+Gz+`dmXJPOBHLo*n#th*n4#`77#40<EVb?5(%mc=
zdV`&sjkoRO1kg!J0?V1+ErBlTjE<Y9;>yr71C>Q{NG~X<aiuL#0huM`q;~-usl`Rr
z**J?Ug8z=cTPzCy9qbk7p%W|aY`CvRk6VOo=fP}S4X+UFWjoMsMRLLK1s1<`WCY8C
z)b{jHuHS<d?sq=CG;pp41-)7EII0e^vg6J^I60AYbYu%?+(f%SCbmRx&*_2A*PbsL
zJ>ziO{n==_xx3rW|MpBQ{B-ydZCms6eewsT8UgO^@>2(y)|4a@sPL~<KlfQ>*(@g>
zaCO}X4GmLC<2%M;GaadL6Y#2+rz&eyLMWDi>{`V7djJs9Z>G{zM92}8fpr2XRQ$<~
zJQx=>U}Dad74ZmC_)EiSPKvK$Puw5?t@64%sm#F}RtLN{=duhFNIs#b>28ogAO6H8
zm+15wT~?#&0BU$(qzwla+Q?^2$dD`m2ff{GD(owlHL6-=ubB=7F+)5OH8I|8$cb;K
z0x?3NJe6ki3=2eEHa_VqKEy0{B?NA`pk9ZC#uNxNFUqCYk+LIB{*{r18&T7`s_MxY
zk>G}%paZDlT;F%5EoPG&3_&lztln_%V?=emHk~{*kf2-UPFQ5&$G0Rv8$rLg9y?uz
zPYJa-OwAmHJ|v||*4Gxk{9gFA$2NJU+*Zt9ju>S%-GB!nh^W_>@zG(_)!8vfOAH|N
zjvdo~XG3)(&syi2S!(Ro{oXE(*09?me=a4ll>TZ<kqIMpFA#SNxi2XJZ(F=Yjj^;!
zq422SGZNg+k-=XvFT(vSzpuX}ZKMe)U?K`YYBj|?g9s;{+o~9KRK96ez7@l}$A08a
z!hfZ(TeyXqCxn29u|UtH=@~oji;b<p&zHl(y+W|#5TobI^tPuK2;-ez(?QT^Q?u&l
ztq2;Yk>d1?r!!$Va&mI7!{T(OUHrgk%RGMqxio<w;*XYFf@j{Cd+VM?Sna(2V08U}
zhjo+MpSN$}x}bk6?_oVKe!D+)Z(wIV!Zls5h7Ba)h`^V;7u<Ax7mn9(`-*V4`mM4X
zsu4pW*ipcx8JbG-mI*<6&(Wc?tVGP=P+svHQljC_@4b`ggmK|8leu*fOzNbs8x|f^
zl?ChYk~3m5X<;S=QZgD6QUt{q1rl-vjoQA-<z<E~%+&V0v4x!|luB}CaK)S=hXOP5
z;#E4xX0oD|-K(*j1-V<+;!M;ajeJB@fL&oi5mACYO?>N7d1`^F+!3=ZfW(>sK)Zd*
zDoyDF+<2#-MLkVI50bToqX$u6T2H^I>}V5ImumrC^&Y=V7mYGh{N=LqHX+818H%zJ
z1VYVtw+?CS-OQ*w&DHBw4LLJqhBNEz-vX`gTzBK4@)CPGZw}22(hzR$?vZe#=uwuz
zQS7ai!SP%z=FAcmEHo)%nsX{b`pU%R2NY5at*%u1)gtd}GV>*PmPN#20^8gz!3xEv
z9p<P2>&0q&?(9FWJ&EYFCN+$q-6Y3`6MLgEmv$toW3N^W1DR)e%Rx!}ZkCTHSLij4
z`6+hGhjG!)`RV|==w^NUcZ~vsEB$n0=V=A$jV_cU2Qrn$3LMpKf`lu)`2|NaRAQ<v
zJ=rbuv3KLmm7QR^O<v0@2(E>F@qaht%rJi}*=?mL`J-Cq-gw85d_q+celqpDsi-`M
z9@U!u&iZt4bkzS(oaI$%2dzJydctjlZuBBi#%LLOBk-(x!3Ug&P^QeR!R#IT3HN@x
zuJgR?2a4IoqTteRELr9ahGUSP&&aWD3Z7XD&R6VO3d4wfd^F+VgrN2Dn;RjR;i{-e
zejD(w;Y?F++>iM9_*x#6C}f{M-}Usk`C+YUuUNHAf99xficn=du`R`&&jeark0qF+
zdiZ~41DmB3DG5i<FbSoan^9Rw{KP^7sW{;8C#Fi+Fb6z3wvct}UvOn>envQ=l~Uo*
zY)7cJf^^FwQ==X?`O}TElCX~>C$6Er1I;ZvH`!t-(*0$lPAp1jIx(RuQ~e5DAe@)w
z-z-YGRIw?x>Sgd7Bjm*raE1(u&9wMha5c~d5m9+RTa!?HbIKXQs}IP(9uqqxY%PqL
zK?h4&NXi5l4!A6Mrc&-JLM`S^l%rIE(q_Ig#MXg4%PC=|7nh463ofg&ZDrzp_6y9B
z!@Cs$wKm_-zm7KetqvBzT=TR6F4aMo>0BIHg-7a%HTJctPX%rATCr3=yX3p8y5qcI
zyRi0_CQMg}$U!kBSs}H@Q|jwbJhT$b-^Xqv_@;l5WT4J~z%<V3ThG0r1pD=w2ke-K
zC@#t67Q2TVKwyF-F?^wWcZp?Pn!THQRhtmxiVCaV`9e2k>;q}q^nwv_U;t9me3UXV
z;Cso|nbO`s$xMYn$uYF-U(FIMxX%YaLY$z7uIIizcfN36Y2qJoA4lfO9iG4n*@k^-
zEPCgaMlYk}ANObTJk$zLUr|)X>-&Sl!`{l;Zjz#0b7CJOuQ#s^HnGQ@4@}cmb}YL+
z*0XZrjQea0RnB>iJty2N0TBCQf5U)>!0lIvRViS2^e&V0tIF_~KGJjgkf3sb_g^zS
z6vI?lf^f&oqX~6H(!5cM-D}WXR3Zf$Fr94umr{bQXhM0uy>1|m%}9Oo9|--}KztEg
zC+b1d2B#u^73@8)DLawF+fANVOnuF7(IfjO@0mnWY{{(9Tlvf_aJMjbhLCy@cFHH5
z0G%l;75|UroKFg#?TUJ-Ij``LE-ALV>5xE;UThb%KbVxXj4DJ*vYTS|z4ajdhf>%(
z21!O6IBLGp>h1DRO$pJA2XZf$ob?GGl^@yxbmi4WOi7f!vOu$%7rdrv_Tj}m^x`}h
zib>!G>cdv)9Nx4Yexfh2*aO>GTDjP{HCs35ub)(xcW)^Svox-QZ2PI$-kJ77?E{6%
zs5x1UCTAtbBA=5n$?l<<1#!bLER)A2fv7V6-G#HO{U8CyG2~bv#asleT;1DiIxSrT
ze_srs9=$H^T@#FFmZz7G6!A%q1_&(0ZdPjnYfcC{B|V(cEoF_=YZhS-8^HbqyWF&1
zgv#mwNaJ|$o9cT!EE`xF3b<s&+g<a;&gB5Wv7-PHuNbd{K9q9?9G%<7&c27BQ^`(&
z(nrdMAFP+g_}@k#-1qzy(LJvJ3Z<_0`f2?%&#rCqRM=0?m!}Y*qI4`tnE&lksr~Yq
z_hdlt9kfh^=#!1Qb<YrGAemO+4dZJceeS4`-Fb%AZ{sWcYu19-uHQO5DW6bGM#DxZ
zj=A~t9v<GlDVofMM<bf_r=}gR%C>_DlXoBm!;XoNptTpxpA2QP_Q`1s2)kH47Q0Ru
z9xhKvG1jF6054esM=`4Tvx1(YXCZ%5qNtk|0I@hl{q!!%+E#@jO~fXA=<`J-ev{sg
z(r2O%9|zS#J^ZD-9<Z@mMS*Ry5ope)-KxlP05eJXL<#2h9IDtMrRi=uQQW)uV_cv&
zCmV%dVDC-l^n-dPUlg*ssE>KO-3yu?SgWezWCO-ORtR{LD~AG*k>gaw2T3+8)><+Y
z_B}!)T7>nz3tH-1rX3o^=HlEXPX3x(Pe&rdbQYE(wcuoJe^{v<HF0{^{2J}M<Z9^1
z==&I#z#QqQBGnmRDV-RJ|DbrOHM|r>VSAxtSg2pkc-!i4J*JDybN4;+MrzDNbwN%R
zL>#Nt{5_weJcD%!%|qw5V$!fKQeanmVuSi=%L8@SwC#7h(1l%)|Hx6hD(dJTB<#y(
z^{XB<6`fsgf>Z+`<&7Gab1m$<FR~yHX=?4RXp4)!?(6fgl*CM7`mxe2&EZMj2Tv|F
ze9l0gf6bPL6{(6hUT^zerrItXd4IlFhib#3n@?dvXMUFEd~EhB5j<;N{nhjL;Jx4X
zCyoKz0WVMMFOJ2ghTglW8?d9=p17B@o5c`&czAfPt;nHiJ8q8G;CSp8Uis>Ow@L`-
zG`Z@D$@p5u{xk%@jq}6o{B9d9(Ont^iwX<HWia5Ai4N5HrwMCy2&E*NladmZm9cof
zO1dcklS*uieo5A~Wlti4t#%UANHU{F56}*R&2mu7ZL+9-(W4doief1kH9Rgad%j4?
zx!r3`P67!jSR~CQ(1Iv1=ndh1#E6z$mdo2Fh9>13U0i30J`^R)83(3Ro;Vg17IYVv
z;P7l4?C1gv-Aep-lI(4EAyujZ{6JvqP@;yROj<$8JHykzqe99ZV(*7+wF#(yORbE!
z6Da&{`-G~NEJmzRWyH9nkI<s17^i{qS%<Ya+Hiscypvc5ZY|_Q)GarO(nP4{%wQJ&
z;Ig^tOLT5J8!MjM#=)?jOpCJMJI}`!t%-_A9hmqXN2R14>$XAaHkD1`IX>kEltfid
zH^nz8j6E}~yR0m`hqF)wY+5)KWPwgvq|knvOM2HF_kNDg=5(czjknvao}gf%W!+un
zZ;=%|MslX#@+KAaM6qg;ML-vUUbN?WI7zdv%J%}tm5jM%BhzS$uc#2CTlfZaS=g0?
zq3zh2bN$a0?t(KrFt<r(8tp@6T5Bbx@Nz6Z<TmpHlj$?IVT_Ks9fa}2OGppRWj;aZ
zI@4t1hLYNYF+#*qbQe8s^P`V`<&txv^dY_O+=sCQ`~pGIaAvu_BZui4x)I&EN}Jg6
zzrqqUnE#qq^7jV7PQFFrelS_>aQ{<h4DZl$qN(q+nO^tWLf8;~-WGP6{CU^*iSQpB
zq*YUi3}^cqsL4vtSOx}pB5CGc*Rb`W(Nv~4aE^g6Nd3C+T1Z^n`xt)+WQ8M|K=3OF
z_rumt*jc<nHuq+Wo@4Lc%i|=~s+N&IKIzNi%Uigj-*~Z7@H%OmgM>x{rt$uPQ_!FH
zCTsy$+3R1n1|s3U-krV}-a+~?1w%3a2QvwaN=qXlB3?#}q2R843wh61#wiG-ZDbbD
zBB2GLCX=*M7<iKmlX-{mCnzTV7{7}xbfu0wjKc^^jUf?F^i8uS#7-OI)4=8}Ug<Hk
zYqFY?p-&Afs&&M&Cy;xiK@PAU%t#dkIjgP9BE#NZGH@~>n5pXrBtxX`%etOJkU@l*
zAI!?j8lq2~d9L(OKo_4f3a0RO=Zvot1dD9^hU=#kWtTa&n#$$*D_j%hXbHk{+@7cg
zjHuQgN%C}oW+uOgbLD)9BhlbS8H&m;W^=`4XUgoTNm^t@=t0d1ZbO9AIp7Ta&=PMx
zFwud0|G}gFRLN%^yTD=Rqsu$fsaSC)Q=4Wn_DD{Af3uWP8YLR<qY^BFZE;9f;gxih
z7{YD=4K7PqnTL7Gb|EJx&y_9a@|}b&!1T(sMpI6?(jAYDjc(h;QYUzPM~oBX2KX+k
zvxEH~F2LhG=V(i-=w89&&ItBhcZ2}*UpAlO1443SRXtB)VAf<tPS{D!lNamAdco7v
z&7zU*s=JClnt4;@k?<kSW@)!V!G&riRuU>|xoq^2IN-vbpHV|Tl^LQaEAxUCsZhyM
zaorn;Yu(nv;;{k@BzM{u`yDUJPj3%1%M=YpAI32Qd0~te@+&xzBZrw?C`WkJGG3j2
z{qGTZLhhG5|J&ZYmj|OSuQ3bvmGZUCb>E8_pxk~YEez%8y8C%n{aF19@u5dG{WpsS
zTF{eo;b+rh;Q)ao+TOXsIPhKfo#5*p+I9YT_4#5zsqN`@*_Lh2=F_XK)qXsK<B#vz
z&o^*AkGnnF$%D_$x)jAKgMqN8^&!amv&TQx;-4mKTp{<-5xB2`9apSm9)Bn|pUwh>
z18ypfjAu&}+BTw%n8{z1Jl8ZbS>fi6ZjutlOP_IPMY0;~-eRrnu&ygR;3leJvk<QQ
z!VexjJEDmVMg}IQd&-E-IC_Mt2}3b8#OTuEo!txs=FOPt#8EWH9KYI90?M(Zs7A}!
z^8#7z%tDJQr8VZtlZ_?$2V7L7?j)xTF1jx>oc@Z1nmeE1$6*j(>=kwwrP#628azXo
zXj9`=8&oBu??hyDd(~1ta)7H>Gw@G})LChoTM{dcA0#T@sI-rA&ZG^F4JR=)&NgMe
zjxWl%u;vx@A(LSB7*eLjpVxABMS8!bBfNphZMSI4ycOaFpBhYz!VdhBkfg%LTBNDp
zm3xSBvgJ{dK6fFR0IU;;Le!5Q4P<CxSYN9xrKP2n7iqB+2bn;qfOIO*C3XfQLfBj^
z25yt1WYc$|)&@YIj4qHi`WegKF|0is+M=DzNw8EB!PT_LOG!szs0E;qIbReHR6r=W
zT8bm*4~V)Fk4x9BP8%E1{hc}@8CW7KGr=yaB4oGeU%*!SyOn$wN#Boei{(BW&xka{
zRXN7rJ8tL1^vhxsbEH!7mzZ!>>-t(pp7h$bmOn_cw|M`ecPyc#sAhcf<%U87VuvVv
zt9An@ABLsbVLQno)-YNmvhz2`t?L0^f6I4!Z=degDf6C=i5(ah#ozP3n=Msh+ikvE
z^WApM<45}k=G!edjo1f5AZy{KaSv)$I*s&y0>R^%ufPtk`)(toxZ(J2?QSbU{QcnN
z?wD+kyNAbC%*Xw$4%^z^qv`89apSo%l`W|zLQ3wplWPJk*iItNPA>J#i~+Ty8pAT3
zj()S+u;K4SJr;(013BqZItk@tg_1hQzwhsT(*P+95e`<;JeidRv~MD02DPQa)XX}N
zL3+s9--d^xQn?gzQ=C<_sNVwde3!>$m}En#oNqj{ch5u%y-;w`>a6@C5Sc*Mi=?7G
zWj|sJWe^2-Y1#|;Al>e&oKf#n-|8^!78W$!P8(`g;6L!aIT$U?5wPJ_yYnS$f5pW%
z$50x)yn3t~Z1wziT;N|t<)3*J7%1U+^~uY1DMCP0M<%>FxF?CdbiqYp$V}B&uI!*b
z?g*GNvMR$nl}Zp!tF$T!{4QTsokEOgR@Md)F$#%H6E&Y=iC)^nsHC9<D5<sG{%rI)
zZ85j*@8x5|VwnieksoxbD~7!H{(KkhXm2zF3hlfS6QbHObTV(c#Ho>Y+OMn58!J69
zt*+jvPL*gO?-3EIZkq<@M(f&gCBFk@QB@P)c}kX0@?_Zw5o`Q?#$Sw|33-pdNOqSH
zZQr^j(6s$a8slh7muj+~+C}}t6yNW7kQyy$t7h=j2c50ooKgpySjes(mjAET!v|tP
zA1+qd=<es+w(UBvX_MFD|0R6UD3JU$<?uY8V+u#;G+J&((8NjnG<3`azfR!8*bJTC
z@bUB4dtI0uH!m`f`K~yB-j4Zraq8K_KYTPZ)*T#~Ouy-iDHMT0%DpiqE*#@JA&BIA
z_QdVC&yN=3mQ34w=(_i#a4qO8V4t6e=pNJWl1(_W-BtJ-Y;V$0C$FddfcmkQ^6^dg
z%afn(;?jpn@avEOxft(xi|zR><^3-trx(wj=+eAr4k!$!QXAj*4HL$$_<8dkncsOY
z%Mmdu2s<`aays#AJQ?0FL&-*XJuG3JD9#}DrJa$Jvn$Au0M{IF=vXw=Is<S}g<#^V
zB=)vcsjn%^r%IY>gcjLT>anpba?OE2G9zMxN94NoTV`ee%15{87U3NXuXjAZQp-B<
zG!^CF^)2avfb<4#MHi}4vLkiVqhhKIBkUv<<~`92H8Rg5-D%iK5zt~;q7R_Y?&URD
zNtql$@>6`0S@aJnV0;|0I7%H!$g}Ea@DbPO$%R*Zu^t(*4o;#9KWM~}?gt)+s*JAp
z{xZC#4M85-Va8IN8h6E98wd9Lpa!q{eN!shW+T&iB}ZW4jNgtS7Cs||OdY1`un)vX
z_O*08N=*z>U0J@GYxZ2(QxVph*D}O?YGY_l(5q$7ct4+3kJZ;wv+30|%M%R@yUN)Z
z5bCp4)~DBE^>l!7-}>*?8n|Gr=&Eb#-Bm@9E$E8#oHVmaX6<3BsT;E8$fpnjf0#%#
zdz}|UMKd-4NHAZ&-vrx}Qqr;jYnZ~3pX>$~=*KKqLgJ<FhMew1Ez~%A_1oJ74GgpY
zVz#w>)4a>rB0VV1?$n_#P?*`6x8q*5g|yhe_UWy-NKRqX(v*TGH>B^s``_yLIh<y~
zef<~1N55jz{B_Um#jx_e`ib{ukvevR-tSzz%}8$K!wj;+a!Xqf(@;hHmK{D|ses*E
z_LL>M1wwjdjA!&<;gNbC6;{L&`o4f}%$5jzlf3_>aVe(2dGttH_RZ_$l`xp`0GSd%
zY`|8eAH6IXS73t=Ad(i=Yz|~_WL#z`Nlh46=4+v)e?w`{C>feV@sS`&N3$vLV+TRj
z7xc8{TJ_1UXH6MdY-$?%-A>wW*0JH;d%id;->C&nGZ2t*Vam1Eq*G9M`@(9dz>biq
zTry1Wwh(8gi+SynnOP-jxSfvdvTJWGkaU4R!5?&w^>xO>XRRvZnfDCBm88H;8R5MC
z*M}(n5DPmo=j=_G70H4w>*Gp4#w!P4?6uugegyx@OStZBNgNZKF~Zc39Oy?bMnabm
z?0T1KuY(4eMFq94m5bVp>BZzyReT=XD%Fxb*@X$&ZBy|z$jVBIsV>lzskyP*aJakt
z3CxU^P>7D$<?@jcX|b%d)qA`<{soU&RdzT0BgG{2zv+f%I|<lHaIy_FSgeU<Hoz=d
z$|zG^Ns!ozHUZBJ1Z70KKx<Xz8<VL!uVmDW0u&0~wFA)FKR`xgn6w@*@)MGVKyPRV
zGkfyc7PzXIE%W(Ox;PALdSd>dCRu-=#U5efT{U$JWeJJ5VN4glolFQV@@3Q6QSH<M
zol<ei0txYp3xUD*q_A71=o^hOY!zq90nVX?*<0V#uPNIiw&W6(h?vOeE&&z=_I7#z
zB42aB-^IFX+x@}d6)Chd>anC(URnT|`nB|*$<064`#~{yH@kS%B*RyKuY~cE=r+}d
zHQT?J32GjpgBcihUn}S-agc;2@`xtqOn^)L8#5E%@|f<YlN*UBvFhf|_d8+@;i|Nq
z3?ZGTZHId1k$%32rpUV-EU=$=24o|C{8GtWl3BEL-dZ@{H-$w>mnJtuSgYR^#WY+8
z<~{m)*`w4fsm!?uJU1|p(FiyC{Z=)_Axwn))x|Ol^wVLiweLjv*O+2BLIo$O+6-wc
zd(N2FME>{<<XwV>6kyK?i7-inEm2>CbzWVjZGk6UuWR7!lE|p_bp{TI=qtxbQf+C9
zimAd&5;aqPY^UaABml9P6$#K=Spt8(o!z<?(XNYXfO5X4rZsQ3@0JvmyNLxWR0^RX
zgtB$v>+4#|B++6eYP>D*4>h~_1FRM%i6oC`Vk)(ch0r7<8ghM8RZqXX5}T3!X1#0P
z@!ROsF)Rh7X4Y&&tohXL#r95z>=TL15`lkSvsHRUKv`04!*B8S@_hBbe@UulNzjHH
z{K=b6Q*m&eY`=q#EIaC{pv!TC8(GSLhprS-{cEje+e%xbl{DvU#3xnfwG670F9S`?
z>3&~mYqFngYAG*ny|Qg_JFB-InR34sD40pq^iZTjs#ZL_b^e900FFAZv`@GnZfb!}
z#3<;D53(tR7jKEJ*9)@`Q-Omx4b%-E&=E-x0l-mGzx1<$fZN}Tl{e}Eno+|CO}%Dj
zDH_VBZ5X<!BLu@;4Kj>7l#QBeaMjD*vNFq)Cj+2_Ql)$s=8@}4D0_Sg8mzzMtnjo?
zri}4nwS#Tcr6M%}ee}SFL{eBvtYKInf-KcO84Z+Y!USX-tnyEHPsUCPs*}SZa(>pB
z|73?bZB!h<AdNPJe!C&zHvvAhtq!@;EHS>b=T)%PPB{0K^beU7IfR<EGV!Fk66G$Q
z0uX>B@Wip2+ZZBYIh7>+C!uEE<M)RpOk*~5W`kV);)F>N&sOTuLz?a}J!7s_sVOm#
zZuQ!&W%m1iK=oML2a*59;&{DOx}!t)h_*Vir^B%t0NI^A8S3Wf17K>sM(Eu8)khXN
zH6saUQ;IDM5A^^bxFUXXY@XF;WOVov!%1(bS8{8Er{^0z&FWe)H^Gn=h%_69MIF4w
zO;ojBIZDy$%LD`<G%$u1r6(E-1^A1t6K<Y~JO0vCZL&d^0T2)0qKXno#e(hC($t;5
z8?uLS%9pSe7vXtmxM(iWJm&;X+LqxBs25c4`sq*RcWV^`X@o07&Db?;E01Imss~)v
zgVK%^TYQ@dOfI~bg&AfPmj`cbv=(JE*#?T9s%c{&3LIob>mB+mtl;A9Ev{u*P<!>D
zx3>HHckY#CT9Vk1G;7a)5nF~Gw(9!d_csdrI(QPAN|ev{=_Q4%e|0R+)ou7WL;t+O
zU0_*eVl_qD%emS+rtK~cc@mQ8b|%-GpY2YPh(3G1%V%%<0}%>mWDi#j@4a1JYG~yX
z!Ww-DZ}A>fYdW=pw09vLzIbf^WIX#DU={fNJ-xJE?4XUxn(mjuylwxAg1L$~QoEJr
zqvRik$S}d0>==0p=GFYURt@rsIQtI+#}^tn%qfYi^HJB8fs{7<qb|+KLmK<C{LX}>
zYzQzaexxCd;(5mS3chBjLpjcR$b5Ol?>kx`=zlpriS`Y<HkX+^FHWhTc>Dlq)UZ=I
zIMLXi+B$q<<2C#DS;_eJ2O>YTL@ispiwmZ`e=Ya)ihpjavK)`)Cc1KnpTP2Wh^6H;
zcGc#;X?Ul?j1P9p##>|ED647_`IW}ZZ3sW{aA6Zj<BUd#5#M~E!QJjMv3qI4g*g-J
z&byY0={FzP>Igr0GguFq+Y+Yo-~kRtc_XlF-3_c#J)c+oZ8AM7U0O&QAw~=NyY);I
zd_;daLImHbX_Vy0C2Hb$DFunSU>01AIjp$d#A-io!GXyHNR7H4#oWl1*H;Ir&Hfw)
zUh6+Tq%u8)muqc&YjrbTK~4|Zr}_`Cp7W6w)R4>RQl>8Hf)OzH9s~qPN=0egAoM)s
zwlGy!*jGDjoylT<b_=JF?D&XI7i?vP^95Gq)alp4V^ZV36wX?tmug<;f=<BlhxNrH
zxRj3*v-rxfu4CY7d*J-NL|k*HM{2>^mMQjkOATyCXQ;;h?d|uo*DD9F^PQYLo}US7
zPEu`Vma|sF=h^ZtKdxBQe(mplt~a}}QdCUSF$Lg3m(oX5An3H1sovp4_xh(rAW;Yk
zlDkPCrN`zU-1z?MNSbOIj}Nx>8_`<E7jh4+L4<^xf7!a>k%T<x=}*^!u`daN{_BKs
zh7VCZ$@%GN=)`||clr+KD;CS3d;ZyMswnuqbDL;sW>#drC?V6~*hyP!Fn!C9Gd*7+
zz<&u-9#h7z)+7en^k8yezWAQo4-XC6dA_6R%b0F+2pMVA+`p?yO1jw3FyNr@lpMHL
z9_{3({PAbanJWcoWT4LOakidoFfxof;s*B<ttaNHyPX6+l^^|w<8R&T>h||zMkHat
zPJo!r9S3S5QH12ML+F1kTJ;z@jNuJg-{WvgY!=)_Ss)_?c$oWQ(0_a7hIO)xg6|G*
zuXo??a+QtSupxNtaz$!vnQKM;Fvtae+3#0|wAf_hac)UdjjbFI$&w>Qe_5pnCqvP?
z;EhX&f%$Y6&=j6P`fm--cJ>YM0laff9wk-3h9kOi1t-H@6xMJH$vs1{@scpE*Z7d~
zGS_)rbe_{q-da4Z;{PF%C-nAlH(S_?)xN70)V|%pVGcZ7x?fuvp)t@Fdp=6!u5(_s
zxfXbOmnQTeH12yKA8I+_krVQNG#pFD;b&l*)IUTeIcu~$-zxt!{-sCgcVG@@>OTbz
ze4qbd9$x83*K1a4lR8TnudL&NpeWyhCC^XeC>@pP_1Q$L;Y0kl{7Z|n5c8eT9Y;#A
zLQ0~2IptJX^q%Kt0XOV=?PBPDJQt(Kcw(vFkX7t?>}t#Yv&)3Rx#fg)YA41n*?;sT
zmkU4U=N!QqRwuQOog6wBr-AYDlz*4~PD%=sy@^a$DwphDwH9{{Mjl4lHDcZ2rmB^@
zXM>fRm4NAGf2~)F>&fDAg?6Xh0uw_vgVy<I!((d{bosH#Ux}+pQJ+{}XW-df+<Xi-
z&AILn8S>MQSS5vqE!nQ~v6JA0Zn;_^@E`q*Bb}7I%x(2wDaX3vxDi*!-bF>hce$of
z-Z-;}h=xlM-TRs*)2@Y56;?0JR$Ped->`6!91teS{!@(b%Q0jBjNqE?#82IHe!iEN
zX+%%Vv+Z2dq%SgLeysYM!r4Gei~l1gSXS-B?-W&;*|`xRDx>}B)MBw3jS(3(xoFN}
zLy6G_nWYb7Uzy>f{H~g=uA4O#nPq{zcmN&wB<<7jGW%B)hN@e5poM>8Dttz);`i#!
z;qSu{C?i4Xi&A<P+reyPaf<E0a?|ln`Y)H)C>a9&MY2-=SM?*~t1AhQ_;x}DU@57=
z570?V6iH3EhJgUqG}vkYfO%+9Owl_ymO`@Bw=+%V293-ii8ys(w5ehfaysh-mvj(?
zh57CV69tZB^Ql25B_(kn?r~)l-*EHNRtsvN_0JY<W~%MU8ox}&nG5r2-TsU!?FCk*
z+mRKhRZQGJ{&taa7+vroM>a`GGaZTI&F~v<J5j8-n6Yu2G>SRJ7w+vyzv3E-5hhcM
zKkGXzo%l7taq@mGVy$>pyUC5t$7iu1&{d_&Q=#wMvlacG{~?z=1sdGXw!?ncI%P7S
zzk-vS!Qy5nPX|JGpY?x^I%fLp#yedN4K=?!6^cv>E^a|#>G@~P92q=;2os-)4xaY%
z@5lWTA9EhOZXZWd&7H^dLi&$6)M|hE4++G~)~42%B|A-v-<dAl-~VcEgPE3Y+@>Gj
zDUR#i6HR<BYnT^c^W5$t*6P(dWYF*4A#j`5+&;Cf=?^Z2va{dXt#k_L=CP6g>iBTh
z?;p?FUttMlhl48|GTx%3{8p2^XR?5OGSvGEnyT#*$kXAgX}SsxGC3lW|9s#ipX<s!
zAr$cTZ*jwI0W2S>&TU?|%0O*LhwS5SDC;=iGlM*lUgFXf&sN<eD;B9@|4-pgtYo88
z$vgNv<4u~esXLOd^|<UOq3xfq8V57vkfvHINIeD5>ngW1E{3*3Cvzh|#^;4{fHD*+
zpHBn3N$*(NFyjU0sbhnLs(cO<nZ3;Dd=@Zw+@X!EIS=ja8EX#bj-HfFBt7m`zL$zC
zpI%U^^cUk1{}S<BSd9z4;N(o#P)6VCb<KTmHD%w7$jrD2YtLAQGDvT?+SWg2emGAq
z^_g0{v-LcMxZX8=>|l5I(|%DU<tNzqNZI1AAG7J%%#Sp7ExaBp`O@`{DexIhn0`p{
z*MK;t^dd?lhw0x?)jX}Vkz3eDG^cHUmt(Rx;=FFSD<NG9ez;5LIydYNO7AypRjrE+
zd|(AXN+B+9`VJvql9KMqhJ*hkJ&yzr)duEuGp>y(^CCJz9cKv(yx;qwW>H+9dey7z
z6Vy?M&5CGdKBr9OhhfFg&{SJRL*A5S$#PfXC0*b(dsL_us)HnK$Q6S~<il*n)TX6d
zstYwS{^CS$Ra}Aqz|y+ZC(2e7^MC4DRf~bpoly8VggObkrHDbJoJc~&u6M5zn6O9<
z69#&6k+Vlvr-kaD#fOAQ3$@@Gel62O&(r?$#q}t(lC;5LaIw~AZO=lid-fQJ$IvkP
z`_Q7v(g&sf9r4kgGd@G<vudNh{Z*eVc(0#O<0kU09?C$@5(7x|uEUrv^Wjp2&NhEP
z`C`vkbGFDcn8#*WB!9-C2%7^myRpv6|Kh26v41_V^PN^+Ah2UmddU8CsH2o%6Z-nN
z-DU&-)EWnePVY7m8oIrA@Ueh1N1ST4Acj&1qLxw$zo{9T4Y*!$1wKRL<{2n8$Qmt(
z35@vP7%Z*?kCl3+-9~vA?{oY84eso#ztW{lo9w|G%X>yR%@rnP^FP7UzctI){slGH
z_B!OO(&eFC7YuaK$&$_L5uYS4-RR<9MBLUZaXtf)Ud*ep4PGu5@Ci1<r3*IW^tA22
z(RY%OWaXbl5+x1{J7vp_uGAXF;hySoAa=-WMVH%~81n2<uCaWnAay>KL@RK0g!7+d
z?z@>3h(X!DvrYzn-FF;F45B4yC){_K+-^1bn~J%)7mvA?$1nL}v*Q1d?(93C;a81$
z^!;!DjS@@W&35PcjiX`EAq*pJ<LEVAMBd9cflq%y=e7NIfd_^G7!)ut`Y@C3_5<Yn
z(Dk&UE$!3mYFN^0^`iYP|Bq5(xaNnAtSYahjn3O}wc=%<{us3jgBa&J8=ExkxSh_x
zb(yL>7-y=aJSBMATiv|Cz1xT-hy!J2t~SzY(Y0x|c{yT0^JJ@}{F9DKiOaikyrzcl
ziuXW-;%050hS(Uq>BJiOZl{)cvuFZ$r<W8cZvf`yYu$4q*SYG@$TlkTx=9sfVdEy5
zmgL5HZ>MkE-niJpA5nCm=J_1x%I5^UpLo{i?E{@ce2;Qw6ks^nizb`xgaudm52ETD
zVCl(0Bg1x=yIPu74{QgYFA03d=%(?5Rmn%%&tGe;&!Q-<^X7<=W4mALYDK?10ZT-B
zO-W;nAa~5wuY*T=kN2uP6a2f3RTT-pl7c?e_LqV^whrauE;(&o*&MPy4n<D@rbW)G
zUBk}pr71hu1hIQ;(dp|6HXG1LtePtNp$MOC!PH#buX9lUD@T#L$SaP@+#H{K)tuJ$
zX_uJW-+9r(fprSJQ{TdP1Y>lrEWfD%&g3a2u2;NRHJdB<b9sKiOpOIe+1A1vCk(zW
z2+oMCLt{_ScxXwq-FMsDe7D3un@aCOzu27)D!5LPENAGi$Brp_Bj^#V2iN#Rj_)?o
zoiww#?W@{wJOy2uS@{YMQq$8n#!@-|BXk{hqA4!Qp`KSvwpn+@PVWH9>nR~E^RcnP
zjfvsdQ*)`AE+%q0*vvH~%uRuR;k}A%5J5>|M`AL|RwC6QHzdW><P`}iN3!6pi3N4J
z%>y$t9SKcITPZ>H$2?xbOh8Cfsja(F|MvE<LS}qwQ;S}TD!UZEN{%`3A4P8hmf$^W
zXM`EfMB5FCd}U0i-IvuFQs=eEp$(d=Q!%B$L5j)ss9Kp3u5Pq+HvJ&Wz+1BKCl7=I
z(AcGnjez698&BqoY3HNUzK6t^DoPi6hkyg=d+SM8ZxSZT{-5b?#(Cr^F5>3%@X=HJ
z_YT;}&b^bDE^GWBpw<(QU5~=P?<d!0!ko)YM~C*p#cbv|A9u{#jcI(+hCd0$_n{0O
zTd6O}G6($7h=or3SK}GG%YTQl2tegk)^_i<3rxG9HUeJc1XcCxh;@&)t~3`P-x#Ei
z4;3=yxjsGje{<;Vf|q*W`reLhiNMJ@>iSAsdDubOx<k}7@FwpFxs9~`aWOG_9zS-)
z70`8VA|G3TOqxwvM(N7Y4Rh<B#0<GWhWn|#_A$Z@vLdpd<G4BW3KEvS<KLgI517;i
zf%o`Io_{|L3JFL3eY-KZdytq|%Ri5V&r(lJ{Sw%F*Nu~2PsrrEi_(R?`r@R;Kr=K6
z{vH1)_x<Iga7CFVzOU(}G~2-9nK!bqAJphEBar@dQfTF7*v7L)NvP+~+4tFk>(|Yh
zJ2r23w)wpxykM)8smrxljx)^kl<#s@+5x3hdaVmb%Lo!1C71Q5G-x8((b@lU8=@2q
zR)k-je7I_UG0H>Uz3eXC-2334{pdC#-uCcF+#kR~^FP~K0uPObEeaS?{Mg9Zuw+*-
zZPm88P_0*QK1N`-+JT_ga=%FGI6Ue2Wh{-S?o|MHIeFP^j<&{d>%ASj)n?N9q)^i7
zezfp7|3^2)nDigDoW;k$);xQi)=$|EzNUKckd`p>^<}FswuM39g=z=A{@v;GhrwDF
zz4~G=%s6|y!G&s}_*dO}<Rk`{#Iq>xfZW0-zq{AZTfU4fut@SoP3kcTIo2OKpj;+A
zKyF7MHNb^E^u+^a$pR^rs((&mgqRnA0tcJ;wJz);%qr}xD))xteBA#25yjQ%F6+yT
zY?Xc&oZ-Hk$=YI#$fBqum$|C+K8L00nw#@*vaskR930ow)o^Y;R;CX^x99#+244W#
z-`kR>14SDRxQzdB0px`aQFDCG6&IY5<?rub1HgrCSdp?P`r~ISDfReN?VFqo!^>8t
z`W?xOtBa4$$BGIkpWhg05hVS!oZKvpA0G)D?fB*#uN{arWE7d*<Mf%&em_1pRL3ac
z(v60~y9A4^$Nw!_+9=0Vq*~7n9ILQ3Cto$X{3}9wX2@~w&Yf_9W1=*`i`q|i_|<Cm
zy^x>dMviBrpv<2@c%HSO0r#rg15kp;=|3*o=)4EIKo&wJG~k3(8}XfHyc#YxDFl1$
zD~rGSPl6XGc?FEv*oi|TKl~o7@`BElr*A|hM}I;{cFuslVl{%}IuidEX}{G>p|Y)e
zrVID<KyqBgE+RsS{qYJT)Qb)W6oS$E@R7Cya5RT|PXXMGbB5O?#{D-{Unw#d`qQ6K
zE_q?Ix8PW8*aAO?`@~@{NlNUR&~cR47!JI!=pB6TL0{F;*+3T!->Q32_qxhIKh%Gt
zrp40NaAQBSdS~bNBq!Z2MC>}i+jg)cBU$^<oSucRCa`!E@B)1;P5$QCO6}<Wr!a9u
zcoiTj%`d08Ohz^}M2s6bZp8j}M4rA!T>E3vL--m=V!RJh*S-MGbq2#AWwatA8ax|F
zR=!zd9w|hYvkp623Wywr&is>+)|`q0O~=N_I~%{&esC;mN=6D%mD4BQyf``OH5{Xp
zf9b8l7OHPy3(5xsyUqTuLWIEPw8YG8Ms6Yz8X=3<|3XL*OvKJ^nCGy->F9P5?$~=p
z-$DG&un?wcN+rRzcEZ-cQz?09eyqe%KbqX`ds1gu`M0gx7UG-D)Brfsg@XNQC%yrl
z50eu6r%@Cnf!y5z-syQ1?rtBz&3cWF-wp<1)Zzwj*jQcl(rUG1gARvG(7!(KYeq5r
z=CkmpUhgiH|GZD4|9k-w8hirhzyA@qik460bE)dLGa?5mX};Linu24W>g0@}6+GZ_
zQy`YmE$)c`gUA~#)FsyGaM{hlv>TFaYYT#n1WzB7M7(!Z;4;F2NMU+>AIRQ+DPCva
z{eRed%c!=xuV1uITMD!V3PmeWinmbQ3KVyDDDF<6comAfLvRg&;!fIP#U+FkhoVU!
zXb1#5n@8UNd(Ij6!yWg2y7%nC7_dUNthuKC=3H~@E8i->Qg2MVqz|!0ONeIj3!pkb
zOJBa3E4VUT^x2wjI?Q`=Lzz*#?qIw$RL-)HJVE@<LRWYeWH)>FmNGr#mQGKirTAsh
z#uDeIOF5(Sp><-As%qD#{O!L#wVxl0>_ahR#Z4wPRTi5gCf}#1?%t^!t$DfhHC&e_
zSkQ*<+J3V<yiWgUFKB?qOsrY)G+KC0fR)DV<IAm$H}u<}Ap6VW5=*y~PuGnHL>Hec
zXRKdm{RcLSrI%BkpX3tO?E58~ui-Q-quUsr7uims6(O6bCre@dOQI2XZ|}M2y&neU
zN)Oe@Bkpt=#&+%JE3U!or*JgzfQ+mnoql_*56SR48cSdcFY8M6Z4IPHplpWRPSY!9
z$SGIfebu(9yshy1I7hSk3<4jRVWR$%i5@)J$Wi2r<3}b|WcK|Fv(L)AD>b%T(Yr2u
z{=h2>9s~C0>N1<J5>C9CL1jJ~vuc6v>AB2(-aJU~gz85`RbGB~gw&_KIh_Au=lu_s
zuXJ3`hJ?LCkq$Eq-O3qX4DwUVtDwhY*6U5n`pUHMm~2tjH$Cf<sV`I49s8LE()mkw
zQ=$S9QiYt{Z67aRq78mXFS7F8j;8;%sV^%HOQ_|~7KqQR|Gvmi64b;dt96?2H{?*^
zi&`g#>6HGVeM#cLde0-qeQ|9SQseVe$?muRxVy)^9eFgNZ_bO>*}T?|4Ml%{6F>*w
zbuRnrFr$IiQtgld!eEHrO_G)-MhHVIDTLwLivzcTmQ|We_s)uS$$!ufUq>xw=E77j
zjrb?K>Z&npNRRUSx>d0pP|(-sQgEtn1%;byUtgbC4@I!16<y)k#4Iuu@O+3YzaO90
zFHR1MhbKKrjG+WdbzWAQeo5RXxl53J%zQOYzbVp+iD_l$ODf4OS9{MB%?et3{2=lM
z!o@_HHM7IR>R0(qN|<}#MXwWA9q;VeTBfBJ*4T#a4r!N8GjQFbuSJH4hI=it5gS6S
zmiu#06EsfUyarL7e?*)jxFprKl2Q*sAytZRW<Wz}VZ9>E^79`ETblzrpYQx!HJy2d
z=YV-Htt$Xa>@*<!NBXzV#`DO@lWRj6?n!r;0zDJF@-QJRBfi5)jZQ%_pN||N?#HcZ
z?-u()0m#9}%US<lY$#cfpdzav44^o(Q?**T4;%$(EZ=H=ss%RCTuTQ0bduX|n3(ps
zrOa*4zI&AByP7^{dlciuk;e?+FKo+cY-n5S%$LuGCBO1fJ+{B2%<<G@nMDdkqacO1
zk$DSNn4wGR<k74*NDX3g4D|j(&B&Jy^SGCmW<1pQT&qQm0q4*oCF5mPio59aawRe+
zcH?v?idqmWrR-d#YaZC=e#p!5{bw2D`2xL$HiF4`f8;ckFX-k&fj^dd`L5*evkZAh
ztFJE_$N4`XFU}6>^)X&65;tkJ;8Ug74_R@E=@kU|fxMO~-U6W0<-3@BU@zhzKZP!e
zGRjs4#^Zjoe8z-n3~Ef!AS&gIjP00!8?5|Hdl1;8s$$eqT+JK!jh&jWh&(ptVe5&=
zolAxF*mD&O_4*m(EXtbcy}j8Hi?O&#!Cm4ebBlpSd8}B&Jw%LhYjpQHNrPAPbXPw6
z!%$WLuOpKXdEXAU*55ts&_8)s`IX1@En=SY_3(Z~mDc5ve-VI7iG@}+ca+nA7O;-l
zz}sdhD!#-j!zqfs#=iQbf+_v%L>|H!J;rfQS&~L>;V4XZ?|G+`g3Wu4ZZ)%X>lccW
zGCVxsG3`F>gfDR)bQN{$&75xJ`%Me?(A1&xIbt${_)@hdg36sL<xg(FYaQ$gcTr9<
zjI4#g&hy7iD*g{y3z#e)Uo1lmLqLj2Cp)p*T%_f8T0hlW1R?0o%{V0W@2_+I*v>!e
zvCVC9rdyq#-;%)U^mhmDvbaMTzlLe8gxq)#+(Jw1^Y(UE%9+nAlV!&?eMHSEYC|*K
z$nd;=UU@*=G$1&D`GNQvGO2T1ZQ=K62-IqQW=nc8q(?8$_Uo=4F!$V7Mj%G4f6(1y
zqfw+%3O+f@eJT{p?D$DV>wNqBy#%kPy+ivyD&EeYJ`1Hy=K4{F%*z@R=Qv)Q(CY7o
zw_}gzrJDq{XZq;Fqi344knahX696qgsPwJeLAk;#irH~F#60tv@WW5H<h;!15PLgI
za$M1U4fklzT_IO5=6@j?8!w(HzVzg7(zT$_u<y$HT3$Q)<p&|Y=pALxFT7j$xcYm8
zfX~_97+MEt922mQ|B=E8|4|<@@eWdzLr*C3tbc>3;S=W@UwYX>9oFH6!d*QbA&)S_
zxmAqO&RAE!Y8zWo4#@#40uiC|rCK?1S|(`i)rGtHYauc-_S&U8IryEwqNK&Aa&+Mx
z;+e4M6L`!bZ$m|7rv|-A=+t`KtyDj$=lp)>E~MhYYe4r68_&H<{1pZtzoc-vX?*xD
zNO!#R@Pm^>dE@P15Y}Y<2r5wzm_waC?yjFyo5`wl@09fkE9YLcx^3EYdsBuS?YoNi
zoCSH7@7aC~rOG*OfF3Y>vd>Q4#Izrodr4q}vkpcrLqSqAghcyPK0~M9tvAiYm)N{2
zQF0x9Ikg`?q#Tdztw%N5+r#GZ3u%I$t;$d`;^DMU5Jr=Tvk(dIrM=lkREAP4qYx>t
z8kl|`*L}3MP)*eJvJxtTN0|M@affHg4tH-X%^7Q5HS#Va^S*3ZL>FcMBiXtU{d0Q6
zayY+Rw!HZ<I!03eWYcAzGL)>`;B$X_efjC-OWXeba-%g7-xlJcIK5qdwAff2C;)!o
zPh##ai_zq(j?M14FUT+qnYx5MzYRA2>qh2TA#$<$Na-84;i@F#0a>Sq*PR0fdPbFh
z@MtTb(xI9-k8ZDyCM$D4d901c%J*|YLY%31vQ_?$<I5?ZgtYkmYXKDCBwxc{65LPr
zQYOw!SaMUfu{D$+nOf$ul}x!NyAFLi2WUjVeQv3QKg<#=)(Wh}YDv2<OqX89g1`JO
zuh7#WxEt0F<<)lyCwq_#>AwjXEiFv5z2HL4Z^y`3C&@qpU#ib%*wMW2ALdk_bJoVd
zwppI{V3DDpJzFKhgjX~EQRn=thun+djL=SNHNwrF54J8HYif;9ujNww@2frL=zYr%
zlv3X1W}o-O>*bU0<3?XwUVA$9jLwS!t-rjoxti2S_$=+tcS*VJibQK6du$|*)kM&9
zUZ(Ms`I6mXbu>8203PBSKSo$g_366fWmemn)KFDHtCu~Ml_CJZRGud(R`*p~&`uo3
zKb`e$`&)fEn=3`H&+2s(nSOvfCu;#gfyCLhGlIr6@~VE&CaZpsGek=DdufB|*HTwq
z_nN=dtjJYcuqR9MJo;%m?eP4U;oyym$1E=wa~@twK3vi>{sI&I!v^bE7e?FFW{dg$
zv{I%g;qYE_xC&`Mcu9A_cS-Pe3U||WlTV5r!bL%gG+tsy)?U-khmpyP1g(@sf^KM}
z1j)Q`FqK-|^zW~Q^TwYG=bd0irv+((=s`iUm;cKBt&$g!s){8O;%s+VYc(}U_^XOd
zPVU`|sk)+U^bmDDlgi2WF(mIO@z9Aqcey$IQ?im|hvMiiMTzdJ<Z?=`6jo|nO*UJ&
zhPX4d3HMZnqOd%}nb$`@qSQ#q{s~1+;a3$6*f$mS`xglZ`R~7E<R?P?l-i@iSkA7t
z`{1e;g*|(jGOM<OjNLk;XUrKxQAp9qjB|%E@30Rqd(7VV$Jm29sg+v@4~)ImNhxeu
zO4Ni%sOmVhuJ<x2XY)4IHU*6h+%qt88Q4KC_#=JH|B&8<5q{YI0h$U?!@FJdqEo$(
z?jHLAQT`58#Qn!(*X~|JF#xn|`55Nu@&g&;>NyuJ_Q3W8vB(+Bz`MCIv9`FL?{=h;
z^0x2omlDQkt#ccyuRp4K{_GOD{wO6UQY#Jmm3G)8!ri$%JA$>0hEdPYBAz7v)96f|
z+MsxsRXyR!?zfA2c!WA;{WUcIDzIs|1T?<u{3mIA<Lu18Rc+fybFXp%FB${vXBfwT
zyv8vl5y%pae8bigSDYU`P9uLeMWh}$4=1|W43*n4g*1s;&vBZ`H0L{|q4U)%V;ovw
z(>~*G?PXD&$1(TqBWZL9Vij_s5KAIq2m1EP4fdV5LIpbWvf9{0%^T!^itpsHxEG%Q
z+vYypiA>Vp9aejL<QaH~Bh;-oj4E2Py#3R@)e)*H_`pOfrmHj1s5ewW5O+YCx)UJq
z;B@bP`3Z8Z3cK=z%VA$onJ)OIxYvnBs{4s@B84#zsTRyjBIvO9zh_Rif0H-Az?{eR
z{Oy-DZQqzV{iV2H&iD&|x|Ak(>goA1(BkT>l8*^3Nmv;ViPYK-i{(^Zn}y$`YNl_1
zfhH+cR*%_-Ee3aCT~3qFSUKH%TNOs9(w@ld&kDhU*WuCU*KCwI)iMkv-twQF^)8JZ
zA71@CEp^)18zXibZc9(EDrU5ggBS1r36o>^K1K=I`PqCX`q2fLL1utpbb1hvYO46d
zEZ2LM7ZM3)%1RA7y{&xId1dC^e1|?x8H`We3AIGuDqb8QkNG*LmKD)5P3PKkvPs4v
zz12_h7P!t?jZmu3kbUY$>|>RznWG(}?cX9DJR5hHqJLf|4*qDsE&f3+52Jo+lCYgC
zA$%JyG5IBp$R`iHVfPIBa8Itrebg-K$L`vMh4XlfR?$G`_(R@N(60>7+ZO-$tCRGJ
z6I_wSmq1$i6Y7wM5=oB9zP@P=1<$@Hka!i%?n7iqCEtJt1dLl=lEdr;X6@pc<c$qJ
zKTn7YfAVqIR)cdukwN7R4bVOgWw|L{0j<sI)~Pi}HC_>T*qItu>ZYU-uThW}kr<iJ
z)G@APuOsK^m$qJ%#W}Hbrx*qWUzw20*Oa};$-cb(T33il+!sFbZdLdMCHis@^Mh(>
z^r$AE5BHy(rgt<@1DdH#zO_RL1G<!10>0L^1Ahj#&Uu>uqCp=G3I23FKZYTBx5v8H
zI>Flh70vH@=m**S53(IW^C31GLpC)iw0Vq=y^VpOOxf6n*vS6HZ^zAbPdp#9K0VBg
z9iLLkpm`=nVg76-%Pu=Uc0Zw|kB@OhyGrC4)871P>W50=yT2xMrN-9o-tK)T>bL9{
zTV`hqG<2h4Hf)_<*Er7DNGU^^00t+v;fZ3Ym=B3UHH7;6ZYb4t3`Rx7`q^LkqQ8m%
z>n^L@fIUl&$4k8pqGgzYhCbx6GykZvR;rYu@a1VK`5X6w40KtU>iUooUh(CzaSBXK
zbrW14UzBO|H;2S?N#D(}L%yqB3D-=-a8LOO^@dLH@aS*dLr7^RPb=wG%@yj`Xg1|T
z#`YfGh$|C+OQ~DEiW{v^1C6e6X;#Pn@ODyveL;F?ZfpQ=0_oe?Pbq)OSi0(WZ2#2S
zi&T@c{G-DGFUp8a1XPw7uMmGzBQ>L3>WA-R1IS~0;92i8eTl7&i`S9TB*NTX)xNFp
zz0z8LS&JMV_N*>F<E*YOwwC$8%KWRv%E6<bb>pflC}-<LD|yF<VUIQ)9;dBQsT9(_
z`Jju0G6~msTq_$GyltWLM!^BPhZAu&im>;v_Wi5oE|!NP-c{Jo9Ui*&)_ld4+zmZH
z)V193t2yj%_wqtLii9UA>dH<zBP=xOY@brV$7R^3?2X82nOT`qqqaRqzep8XU#gaR
z+vjnFV^2_zr5yFwmA&z?{L51am<@3rTX(d9x!XW?w_m>SXR8IP!5Ot$4H{#XWZTF&
z#GV{4GsQE;8zk2RtNW^0cP}2A_mq|SVwnLxXt+Z@0y^bvT(~=Rk$(C6kz(n8^c9!Y
z@lc*5LI)p6@i_Cde=aa1(qN}AurJIuY0*fQRHen_F&W+L-KB|t62tbGHJ@V1PJYLv
z&(JI-SF!0gb#k#+5>Vauc!2%<g<X)2<EN?p)8^C_dBwDLN6!}1;?(vO%?o_uA>Hj>
z0TDpQ_5m?Kq^D{}qR%Gw=RYRn!uf9Mgco*CZ}>n#-(qIDx^%Q|LSCr=8!dC|NGIYF
zdnWC5?<GA3YmO_bITt%}n!1Q7h*&#TMHd)5zAV!5vVsh6*6YY{=+>FVNp;nuZ}x?k
z2Z-~W@@o}#=e=}6>SkM;>Iw>91U$tK%)sn#gi7tI^jH~h*Q~kyz;fOA4<7})ZxG^i
zrrFI5rL7-oCrjEsjC{$7cTUkICQ8|gQIGAC(rPDr03=uWlR(b6CY_c<q&ppllzJ{u
zUx*JYHsh?zg33>y^sUrqLkJD%#$CUpPYQY$G?)LMYBR$YYBT;?h89vFU-BOw`RA`{
z%l}H({kvTMKW?P@|D@aN?s<*R+Kz?}{=8@YUZUhp<?r%OA|AfB9+kfte)qXz?N|02
z&a=NM4uhaf6i|~l$(I};l!_x$SHd~+=FP5uqJ4hDk@=DQ{m8E$zdw>9?~MKNo;21f
zC|G%Qbtqlo*WF}fO;%`HOQ!!&lP#AI)^<qfp7iVcKtJHWkJp`df#B}n<L=9AOqc&1
zTzYfovci82F8!a=09yRtAW4*3w<Lf0u-L=UzbX3qsz;NtIj2vPF|cP#F~zt-QAb<1
ztU6CBDG3W>?_<~2SPTLZrI5Tlsh<8A+AVIE`2#Bo65ysRj}+tCe-A$SdoAu(q+f|&
zJ=Z0A!X9<5tE)@%L(cQ=*q(6ENn>AsKWO9k%ca2cvr{$0BjEe${u&w@cP1~oMgM&~
z^0+B~<=?@juc-+<p+NiSzYjqX?SdkHuLo`+j)@8I5rfy9qtgG^obunU`s8CSpN1Lr
z?ZbUpvj5jP=9SC(oy?$2pm~(SaNFU><hIkK@TF#lg#{wq`f?~p>tkUqFVSBUc%NW(
zzUW~h;?vMB?p8Z->>cKu7aXIap0O$lmbMa2G${yn5~MyjfXJGZOQ!J0yp6sTJmirw
zciODXT`o~VGJjg09j%8x@f_CJI#9v6W$QLKDb;dB<<kgfTtZ*=5v{X8`ajIa87~px
zkSPu5BjOn)dNXdM8RL5C3RxTE$Y+v<KjLp%GKA85BqD<Zlsq9EqI|cNdUV%r+~L4V
z7*`O@{Vq<~a-#L3ziYpE;~`@om+-Bo%dODk1C}U%i2N*<Qy%P&OMa(dMEa}fu~Cnd
z+YwpmSw?v*62duat`U0k5yP(Q8&?D+XACDk2F?k#y*-A^WyLain#nt+yc#@wq`*Dv
zpABxY%3|2m$j~OUo3@=+F(akvpK5C0ihwpag@R6&s#u#v7p>^`IyYDcbmFGUd@Q7-
zZCCEp8yQV(A)7!>5t;e$SkE?aE82H*E=ULe?DKCIyymPA#AHc4qeR^6_65aNeKEEm
z#3x3OR)9135~VZZyRS_8JCy}Q7h_w_L+<u6{8^o;w?e(+*emxr9<g`6fy>mF+@AFt
z>OE0FkE2CT%@IMTmcL}sDGT&YPGf?Kz`lYqW|&KHT}$v-iNFD>DPze?DP=w67teb?
zsn<NlLwtUyl@IAvb0XCCc24k5F=RUP=MA!Ccxvi*v=S|K)~DjE;xcXIWe@0ompRKZ
zW!1i4Mion2gbSz6ZLtm@@M|VzrY0q|A&ZQy`(ko}B>DuqKhxf`J{^H$=tq*hvr3?O
zk}dQqqVj&^g;G?d4a9ZkSvNPB9Qsqh__evO8!wF$id}W5mK?|TE9CgxkM2yClTJ$b
zsj04ot?Z6;PZE}vD?uF+YwN3x<VqOj6*s|G;!mZG>I2L<GDNMzU0{LoS69oht5(*i
zB)tcA%fB=fhkx0vZ)A=#^l^>Fx{UVC89s2kiPXvGssN??`ufs{*wiAcwF<?A=}1+;
zq6*~CM4w~~76};`#A_FO*IUTc^SjKHC?q`Vw-CZHhP<mFf4J1cE+o{HTSKmGKB~dl
zCsEJ^b0{u|kU~1bKJVcOVw<?{w8vgmIAfE0dV9X#rZ*KC@!!J3%lyyg1mA75dNOQ!
zw-hO-l@AQqS5K<O+@n%k_PqA)ZtNW-^19zvNPGG{hYW^5(B1+c0bTk*@ixogRf*nG
zo8}ikYB}ns6*lN^U3zv4k47MF(<Q#T{#5!P=Yp7S;Z>Mfm_%`2>NfuQ>CcKH*p3<2
z`1JD_!+hC?2yYa^yojg-S(xR<mDM7F_<7#AA3?5)8d&yi6t~&X=QOUBk6-o@<_jd$
z!rAoy#HFMZ|2ggIGifk=5Yff`{xbphC-$AfSdLN#ZSXNbL|u&6;AI9iT4!X%DJ#`Y
zh{`2vRo!G^<Cz~f%jbfQW3`_AqKTY!L6#fv@;Og=89;S`pCuZ1Hh<>%+#`Fcqw7z_
z+E{oA^#_JvuQ-_{Ekkz4S;;m*Cex_lQeV~H=qzFTUWk%)ogs#M2~-QL!$Ckxk6i?R
zhDyW(PL~Da>s0IM%8%~jKD@VT%v7b!r0w?Z()=xPJ5tOnnZA(V-ca!Q(e%b#If;y1
z+1xv_HN#!pjm_s!@Xb7fR@>i*GIRZW%ViEu9hoI+P<vU1A>;2d6%j=pjk>`6R3!u?
z!u^r60ZdKq3SAEp{L@&+wv^2o_DU4hb7M|zkYc_#G(E6QQY5<WCCMg=_wxpJaLR2#
z)F30V&%M*6`(3eZwhf|VmSM7j1mn{?^~})vI0p4oT&&E09S|KAkv@t|_Zz<eA^-aw
z0eVG`aN40BUfUvi@#$%y98k0jH6yh830}yp*uT?@L(8ykPTcD>MH}JSdhpN}&y|87
z`4MGd5#V>^R}6ja>>yXczv0cDvgHf4o;^(Fe3v2JMof{&M12cjjLdEeD<wtEvFkdn
zFw?T}k4!5w@H&SddWOQ^UMo0alWfECH^c&0QdFywhy7K%KCL-+e|vN}zfB2bdwg7=
zcMcK2y8C!?1Z}FCcxBfvPY0vG-tl6`_`cL?ZFU%kt}*^cdb6OBNp%K#${x$aurVb?
zMw(U(-P=;fJe^-}qcR(bIQLWWZ7K8?!;Xo?h?gCcXDG%i>Ygh!C|4x*<J{ZE$4mQA
zUJhp`zBIhv<$7;BEvoFs3VPGU1Jm12cKfxsZc_Bkwav3usLa??zL5d8Q>uKrF<a8+
z4-<h-J)x16DOAb_)V_x627JS4>Euf6hnbnerZZgE<4H0GBr{c}&wY<uIqg~Sk%xlL
zUJ7F!n1((Ehm1Dw6*5fOc5qKpPQOUcFM~t~2}Zy%W(z%=QI{(pzLk(S7pOTd(jG?F
z($IG*5_grbs9!6r2gT6A_2o$4O*GN7CO84#n7&Du#M<nsV;DHqC;I0g?n$Vjb|K|_
z`HUCcxhN%lRH?X2xov<ee7i;mWu)k1KYbZ*XsIgs6jpaAm*1-0W7LS>1F!MurkEt<
z9ok?Q47bGFKn6YfG6Ld%NOyHvSy{DYYWO9umYd?Vksg2Zv^5_ZuW1m2g%?$lr4m2s
z`A}vFijGrkaP06?YcpeWTzX1qADRvwYG}zh-nS%HGjb@pZP_M5ZSWwlRHK48CaI4?
zJkeXEb<9QAv@CBn-lC;cFT38Ms2f{Nbem$L-leQhSG#fgw}e}UbSKjcL{D$N+{d+1
zO-bU(-&{3Uj-Ig1xnZh@Q><3l^w)*KDvF(|OV>b%>HSTb5`i$2gJ1<T9Qt5bEWim|
z+Jenw?U&wKZ@D^;f=WDFUpFuH@vGW3Ycv^i_B(@b)gHSxprryKE5Y*cb-o9ugki_p
zMG4pSTz2pEN%M1vuNea$b8}%ulaMn7C1q)Ox$@N;#+Zg7i>h@rq;jHp##jLh4kc$1
zub8QGOq$_U=oL$N<^E^MBfWbZBuGc|GN7?4s4Lt_0sDQeGb{$vfq+Ee8fF3#HVzil
zIskidT{L>@rR*I>uFwwi4PH)Ot;*Kw*T6;gheWp4&yKM=*r~c^PrLMIssY9rWF=m4
z*rmboaNAtgl#Vo%hiA;XVfr-Mdd?NNhuG=9R=VJhdu4UGejNP^*Y=;KYMzF`wGvZO
zsJ>OWHXS_+Z1k%GPKsLcMbFe!+RAql4%EHl=H`R+$*ieZ(Q0OdHeew5q=!Uz80;4a
z6v(zt8JL=yjx^t#aA7|8Gj4ZEGZP;`T^F_mzcTf;{!nCX<G0cqFccVL?V<-dy7L9-
zqB+)Y(lUWb1@k8Z+FT^Gh}CD)u#mJ>)w8-fGH_sX#JI8@gz@JJK!%p#oBP(M4J(RU
zXe-@5#>IR6IEq5lcQs9&b&RG9kp9$SP&<8x?l-pC0}VFJ-VojbV>E!L`M!tsAMEe%
z-)j!>J*-#qH1VJMCghqsBvaz;pgJ6&tVaKP(;Mbk4M*)C(|v(^O9wvqczUdn9dxoI
z2kkvlmpD7jNA8A)-wq_8{5GfR;I07d;Ejf>Aptl2rz^cG-Q`|4gJX2j=al`iske-G
ziYJBxO?P}qw4p`9UpI?PFT~T7%`h860)7-(ASS_}k)K+R5L>uE)mO%I>h?O`0%TwT
z+AaoR?D*IuRw>^&JTPhtQqw4<fR9onDvekdnFbI3f%xZxzQ*h*^+(v7U_M{Nzw{RI
zDsYedLtX}tiHYk|B$X$sM;|{Oq;TE;nqcUIdT>Vf$rLrgq?^*k&wJgLY(2EvgU|7v
z=w(kaL>(R0)4IaUN1UyXH1$eLl(kBUu&z^i9&Nu@kR?dc%TkAq7wN}YPnP7GpW_U<
z+I-8|+S#~bNsftLFsFLgrg>zXL71sthu4#tdH==rPvqlyY0F;eSHpiGnqA5!Fzadv
z%+)%fH@ZLD{6OvkgVci3vk%Dsa;MZ`9La*XL!8s8tE<AG5nB;j$qt^(iKw<Fx8LJY
zIZAnT7Lx$-nI8&wMr!$}r04ZCJ5B5{22@zeDw3R&xFdfoh5LJCn8mVSd!7AUrx$ZD
z-t?jjx&$IJ25m1duaUXWz#8f8oLMZHW6P4*ld`ibTTia6tWZ6#P{~{!%wq5L4{Eyj
zr2I%;NJz+(ER2fVw0zRQps$~MBu7%<Lcw2Vq{s+083aB6T4!y6B5QN)Wf{goicmmn
z$2d4j+fO#+nOa(2+*3JLZrJOF8IOqM)@E(iQvxc=x*xZkpjPULtYBkj=UokE=QuGo
zbD7Nh`E!_Ap|G$pJSIjjAfVM7JA={zx6N-NQp|$vmw5rEk75v$-D*7s15IyVvgEML
z+e^c11v~Gi<f7pyFZ5b=5dT;@;5{aDn>{Orqx6uj97Yu}XQy$bLZlCmRkOuafR0La
zySv1REiP^0cq;$v@#y{t=|546hJzm-4Lgn$4yqke1J2}Bt$o5h!OBvw9@MzBXiY%J
zH0VQjBs~O>J$n<E3Jtw%XTkvc0(to?VZsvlUo@Rio{7lmRT9l@&u0p1;zx<H(R78q
zT1C{GT|V<Dcrjq{GTqAu?BRT%K8ng5@5b!hba8eDprdA@Yz%|t_~6E5aKfyMo`*;E
zoPNDAKqgk(LAlGJ;{*Nu@WkGP{qE`&)6D_80iNs#fn-kP@m3|z)Z!nRh{%(b3ZqIT
zuBKO3B3}zio}+dfpH2C0>krZ@P1Si8YZ95RQGTy6gr=vbm3|>Mi|bf?Q9)_h9i5~t
zrk1xB5D7H|13IOAvL>l!_32V;#xUk_&tvOBuydx5XUlfm>UFeaE8w#wa~ru7WCLH}
zG^?M%_-*&G6ORip%lIB$PZx1*2Uv#o#cz5Sk-(Lt>#_!en?G%8j!Y5)&rfePY~DEL
zxOR-sZ*Myunl@~;%jI`E9Cthl#&5zQN)H@m4l;!OYK6ZC?yqY=e+6mnt(|F2H@HT~
zgNMAYF?HA=RA5bNj#!$qHU6VBhrZm82GY3COSi<_9qD@tRM!{bo*VCj#MyKbU63IF
zidVVmk*Ie)j>%`3cUTy%UVb)XZ@__jA!IETgI+)pNMy-c@2_c;wrYz+wyrwJ**A&2
z^<GY8qsd;QUkER_21!rSyY50pr=Iqc%x(foCy8#D^nHA#rOIKdfPal?|KRbSNy4|G
z;mgj)<-(hJFXC|<ddJN>_X-9d|MccY1a{P;!}!$fFyD@Ay?mr?ZvtN1YpeayH^?`*
zm)s662?*EtY{9PCN4=&6-vfJpjw}fnwl3cjI-gLg8ckV0kg#_2@m)}XoqK1rBXyc<
zEy>|y`dy|RD40ZvUwzB>y~QkLdZR4JpRkmp>%QSErbQWCjtp*D7!;O(jvI1-x1QN*
zHM?)WU0Q5rn)Sdy2{t_f9)fgJO`gS5b*{zO*%qbva$Sg~mR8j3Y$oeSM%RHR?|x`Q
zS$R2!-Ea~hYkU(x(XI**DhPH1f=)9{LhT0CdtdcT7owBm)&2(1Ac;&#C+c}U499H;
z0T>3e@^9OoOYeGnd%Ld&K@er8ZGQG!b6b(MH%OXCZ*mA_sXEUzYS`OLM-goRh8_aM
zB9i_JA!TY2U3o2AO+E7LFLxC4+XFCDfUCH_{?ftTnY9<T2I;cU0J_QLH(*e25q(LD
zsA)OC?ACG#=n+$K#v>d^AYfNI(cgAY!@~5+j#pAJ$wsb8OkF)akig@E?jtgU%T?SX
z2L6CXVQ)0Wi{acM0~OI88em*i?vKYhAltLN)34+#28H}QEw@t5aH%y1Vnv9b$qFuw
z#2S!rK-e8Ow(M<b1zcY3T8UGw=K6?<W{Ut1?K0c^1vGPEWreL`debK|KpW$|H@5-h
zNiA(U?Zj^~c61*Q5@lkl_Po*j9_qcEpqeGx%Ds%S%4~r26DzB1&UWeUrY$~O6{~|8
zv}>h>b%jMXHhxgNGu4lG;@qp=mUV_nx|9WYY9WtAcPM7At)*gPwBs-`^~<!XTr{2a
zxI&KiJ;g?6fpOc%BQQqX=Bkkk;@jfW@fJLvX+O8av@U*DLb-vgNm?acd*1ey{n(p}
zL4MC!3|HHJwcjvVsx(hPOA5MOWWs)?k42lHYzC^qBUJ27D1#T+IgOfB>#Hgq40PjF
zox*4IP42cSMO(@-F_+kr!;Qm(j@*Z#znj#^@UEB1oDfCyKZ5A*LyA=DAp^dzHN~zo
zlZ*Du<T#_D{TwQ_`Dwmf@(EXs5GB9p1B8WOM#}0DHplycy_b_pl*6&q2ku75Qo6@z
zJkxax>D88JgF}1V$Pd}eiOXRAIzQ9lIi23W010zuQ#BBI$sj^nOZKj~r|cX?r1%1l
zd(YcHS4eZ}1F<>js|cl<+(!?<(B`lxCz^M|Dq~l9_mSpT`Iee5slBE#vWn9VIJC7K
z9X7oz7tuU-8adbQpB}C&UfSYvn$&Gpui{F&$0&{Z8Nm(zl3uyl60KMjRhG;!^1-!`
zSaZ6puHckKa}_QR(S=5aHhy6EJ@JasQdv0?crRC!^M#$zVb}9>=Ji-EF<b+11%nHC
z0ki-Dj2SX>%`A4%hB%cG;Ggw%J9^P~Bb7*l7xY}%98gme8t6`TVL&om+6_Ectx6jk
z^^F=_5VJn>PfMExVw;o`ij{Ar7Qs>Db6W=v8>yqF{Yy(rI);W0qJm^y#@X>LYl%W_
z{oF7q&B3*mg&&`~)iZ1aNEzt%jgbiHNg0|kPQyu~{{0w|v&)eec!^ds@Za(aC<KVr
z0%Sw{<@=YHX)u#|z-*=(Tq{#kQ{VU8Lby!VIWkrgxj*^=NY53VF0czT+>yK(2-bM7
z6fKsaYVI>K9uiT}bCJ5v2o=Li0ntWh#Q&+A2~a6j0L=f(+M=}pq}+75mx6`|-fust
zuHwzoJQr!RYon)X2#?dDTYhNvS~^9!KyxvJSjSQN>2AuWEA>WdEjL2}2g1N0&9Kg4
zrLNVa<-nZi=AeT^@sHJa&WN(4bOEx;1}~H83b}8=5@;g;MtJoC=LcJfqTw6kL+;=D
z7CK&K$pYG-J|rR$bO)@+;+~tSQUiLigOqZs4l+*2VF>DDQ!;Vb{jTfG8irWuR!_q&
z%FxQRbiATBd<7558=OiQ>2Q4qzpxcyh?|d+5)(_MR49}~9}H@1*D6hucIsaD@OGR=
z4tg1+Oj$QAV+IMiATl4Cs<r;=e6&E=EnPk%n3|C{%OR1vr6pyXe@pmnABeQh_wr>7
zRCuf~Ls&oEPOenip9vJJy^G@#>I40hY$e@!NeIGoP4;K3{}iwLY797`K{)@{)7~kH
zqbcCbM@}UHNT!1T1MfuiaV1%aw2sk?mUh|grCql-J^i#8<E4U)i5NMiFG3{iVG}AN
z{Gq?L+vXH>JQeRJULZ?DZ=%&w98Ka(4%9aN+FP~FHrFA1?3PxvGjb+@^>wqn(!(&{
zgl>|JGMr^lG0~R1W@gvp<34MT6SR)lRDV$c!<Z$pjRQ)D9MJ=C<=Ho5&2*6uD#6I*
ztqO!|MO4b4B}$gwcLP(upP(F_=NeVAxK9+S^k#GBnIsBJgTY1hF(mN!5z%&=kTkyo
z41=H7R8ss;+UhOkyNryLfM9ISG{LtdtD9I1UjS|(8@p$4iVL!$4e+HX-Rydr2j-J9
zGs^+LbaK;MC5^`*Ee+nvke9)zE8sdev-QFMIbaOfSXksT#E+FPWUH}Ju&XW%p3L1o
zve*$yNlp$FPr=7R(7i0#@ddGaFAO;zfKXF1TD-iNlkI8aY{2m|Y!68DKtcul^nw27
z@ZS@>i50~Rqzs~VcP6LGbl7KoktXRc7URC|-{J9h|0*K5@UWgQb^{6up0fay_RFBw
zmsZv)IJy!&z2~`8&{-Ee@$Z!6<d96NSK~s&%;Pavr|KNdAUwVYrTw<n!wvpFZ!3n}
zmICZn=qz@OmnRV%mrKcBeF5H)lPU)7b-X-1$a>P|p=Z>^zZYC$nqe9X!tL~&>!wtg
zBqk)}U%pzA1Q<iVATgYv&)muTAFZ#Q2gy6{$dxcUeI{r~zW_NG115WXv14(N#fTAk
z^!hyL&6DS0TEx=z6HFr=z6uU5I>sqXpeTst3(a_o;go<7E6#{^?KaWNeV-Z7be^>i
zC4FT`TWr%kBOm*G8@Ypr{hK}MB^o7`%=_wFhtE7VwhQXidN40OJ32<Rj;Xg67aM-$
z+M;`E8^>DNy`5gwyupTdtL=8nv(}O9`OFaR>fQM~-^BUK9b$6B(8JU+zgHw{4{0HG
zNszoWzLO?4kj2V&g;}=eL-*WW`tEiBiLr2qkf?t#{1^p}scv>6&Hh?te`;%_vM1%I
zo2@^4&DFES=SPK)rjGiqO`HGKj)sf0jqQEMk2)Arj<I~#L1d(DGHSME0@Z{o48KK@
zQO$%}T)E!YOT*SrfT7znG?Rq4ef;cwBAs*<6vsNahez8&Q&4AMF;M@N2y9lOjj(=X
zcy^o0CRgL@&EPiemuly7#BxmX@lz+e4e7o;j|U&RCxyV;&BiGG*6Zs0a`6m<DvTv_
zuy?P6&z~s_Tb)aH3|DK6i%JKoriu1Cioe_wHD3)~hUiwjT9xq>&PtaE1_Le`0Ffd}
zwOE{|YD-O5Sx?+>4wh%tsj1ZYKIX-$S+)3<Hox;zo$mTA7)&vgjIp8$8JT7q{R`li
zq||qXOr@@h;kxC&bd56vE$!4jho6LY<O1zvudBd$m#w}DonE=6lil9-`8KhHz?En~
zQqX&Y8Epr+0iAW$c|bhc&?v8DK)fy-xSc#1P}!QgRNXXidwLJLu^z_rY5jwtX;;kK
zuz7Meg)_01fwl5yU`C?UwV(R~S(B{4?pEb~J~r4HP;w9l`+l8LClnRD8{}KJ?^wJO
zhw>7}5gaQY_Ead1@ZB|nc!D${JaJg$;&m9>$kY^kfz00`XV7qPD03ITnl%p~KR`m@
zBESH;{1K6OF#?Yu;tF$a#b?6Z{00HJH3`HaOi?0qq(G>$iEQDcTdarU=gn65)Ep-^
zCQUmyLOt@3M{m!A76#<Vdex=GGApTWHMgp*e>U<#(HBq|lmuFWCUq`9;Rl;@J5KS}
zXZT$wKD?&<H1hQ0ih^cnCq;HnF6z?d=rui-$I;W}GT#P5ereJ7->Y`Hl37U_Hg}%$
zE(KD5fy)Jp>~hMzKS)$R6@Mpkr+N+_$cgE8JdQoin-fH0dW{?#=Y0JX=LiK(*(%!E
zzs}y1Uql6M-~IympA3KXH~@`dpNQc%gh6df8aT0&q;N>_?S#E=(uEQfrQ@t!*PGW|
z>54y~h8^D$_AbZRpmx3`Q;3%{cgGXy9K|ksG%?NQH#PY<R?GnJid9r_2rBI6n#&ta
zN-8TUaf2C}=81sy%Z<+UD|S8bn8TeVHg2DotJ8##VqCUk3{sjtivWbv7s2@wFHfy?
zKUMecMd0fB-gidu-8b>Wg+NPrMSx?02msKON#a;@OECAan{VB%2a1}?5M2OE1AX_!
zwjRlDB?AxvO?I659anw0dJI_T@)lkCYMpa~%WNxyTZ02a(YwXushrqCL-sO*UyaGJ
z_v5|5<4x(>wP`U$l#!UR*|#|#a4QjH7|?5o!^k_#c;$Ge3!U3d7Y9JaY49T2V?bA8
z8emyD4Rb+C@gg^Oep|xuWh`o9H)u6?wAUWq@aziTFhqJ@sNX@GJxABzqki6tFz7P;
zHfV?mFY1F@Vwh-c^5k1PqG~;;)8|NkWnW#SmTj{Ue6*rx=dGK3?@^_5lT@ItD9XhB
zi1Gp|3=a>F^zgqT2tK;2MPynGU>d%IK5R`_yMQP157fPCB5<WjpF`Mf;k`Sln6=m_
zLtE5v*w_}KVIuInK~1mQDA6m<#}CJ6g{jCAX$yG+VBzfhK=GJE-?BnqCcnvp2$>5Q
z9KZ?ef!qsV2Tq2zqCOF^H|cRRv#_uO@q(To*ps<wEjBVL3g<|*Dx@v8=>m{E=(5xB
z(Tid;q@$$D=J?Y>Gl{`$iDBy7zPpL6rh7XC(}cmF&MiMa6Yy7U>z^xd;Z+{Dz7eGk
zlV>~f`{bP{1KHD=RUK<h0yq-LFMK2wS$<B|+BY`CwuZej2{X!P>E=qPX_J=lNz0|`
z_D-sk(?hI`zWrva3|?71r@7qQr?>=5T77SY=qHbSMZ^?CFJjZWH4h7>_b`+=VB|tx
z1%Uj1pL(5))u;|rDpv5~bBrUnp~fT-xz;N#0U)H;GkJMZ0iSdtN2w!2nl#RqA^y<o
zj;3Bg5lyf_U+<35ITmS6=qNiS^u$Jtb1$AGq}BOdBny3anN(7@f7z338&y3q@^7Ej
zDrUU-sy2O!Qq=@V<?qMdDSthT7}vU4Ty)i_&R(vRZCrUL@TTlvIsGAzLFjG1yXl3V
z@$u=?*0g7zZ6ZA!x<9@HZI0@EuKwA8S#a+XYvNpJ=BiRr^>A@3;|X~~m+n3Gv5T8D
zj7->;X=KC&dmoxw6t$m0DWmvRNH3V~E~FrW!(mLYEVt&yBdMG6HxdivVDIX3c|SDY
z6q;fCi^SXHDMf26P3I?=f{?*JRFTSF_eJ1Nl0}mFk&aYOUwY$;ZB08>cI7YwwuDb4
z#;z}P9#g??xL&-JgyXSdf3HO*UH^AkLXK&s^Tpp+EbUa@T-ikLQ&LhEdeR7AXqSJE
zA>;qGN=2bRh1+$V<I?wspB(>wqDz;)m%B^bE@->0k32T<=w%l6T3460y?#m65!h)v
zz7!)dH!}I}1v7zZDbnycB+5q7ApY|);8_a(w<?EAk1YPD+6n3qr|bV-;hsiZ`qYTQ
zCAZr-|EZ_A^#1GPM;95czmG>2)YX*#4#qQNg@j15u3svq_WSPz8UHm}sI9ZbSA+~*
zP{rZ(zZE;hP|{oUw8F%|hb5Q)CE3L_zfxa`zxe(4@g(H^MHKn>@xMOB|2&ERbK3v5
zuK(X635|f)#jD|g<2^hH2)4D<RFMGwL(>nSHU!-H7py#OSp-+}dcjK9iiiD*|5jN}
z&g-RM5y`;}fl4jm4Dsm_fqCN!chtl17zy7aASZ0g^)H3K-$IW!)dZbl{JrLU*X(<u
zUH7p-HY%S_h;YhyUI3}Y25RoA8yJ)V=v8TBiF{8qJ+Wi<RU*>$qw+~~;2>W!YSoBI
zp{uKla4_u(8uxt_KMBZ`?Y;lpzyS!1E1C%o1{@D??W;5-%{#IxX`%|idj>U9`kPB+
z`jhVsOXtf*y|URjA9u*EuI34B+jPV!tMVrUNTGA{%EUBU#Q)Nz1rFJNg{Z`q%J?os
z1S=1pH+v^3BO~K5T3rYv$sV-6GGh!raa9=mK91q@8_>@RK0A_C>pD3RRTv|I(G`RS
z?R}#Wa4CnH1(o`Go|n3|PgZyii|LUw_-cpg9gHwC_-peU$r+^cBLE89b!!Dr_;0mB
z0sJ4AVw;`7bh=n2hdAA3A1_p*YC9PVpcnJgmIfX}3_n-QX%>*n^6X3@em{olyrNLa
z3;_=gk~O0Uaygl;vXm2|BW*jI(hO`QT%{NCctd646(<{W%4p)L!U#;j9)Oz-oA-6Z
zPPPR(&Dxdco#rdRVhMbUqw}RY5M2_@bASNj9;(u|e{;emLGrH7+Oc7Y^Ma00GE8xH
z(Ad0<Sn=j`1FDkO)_ylp*?DHW^lbjTt-`V=+J4SCOdtMlEx=50Ny$1a{iuOs5WM#>
zUBI;h$d9e8IFEJqoR<(!8<!Z=)a)OUCwQ4AJnIJDoOY;<+(+f>nH@`9)TX@^_do{a
zF$Nt<1_!Mg%*OF+pA&-5i*?xNwf-dOp@)Y>ArCkW?K*!Ez4Dn;LXYHrLbihg)|{sb
z<QM{#xmyp_K<F8RU|#|&a7&(g5o6sVAHZW;8skj_zce)q&?wmuNRcbDxP0lmeJH~}
zD)IGa=lOb-4C32~LV+Q|KJ9PfTSAvZ)R6upF;nZAo>n!JRyATJOFc1|Pk6o3J?50>
zVoMF-(b4?%?3|oQOeV7}4Su+0MZo?_#$*982^M$_AqZf2)KB8+^?pvXlAK3o0;KH<
zqobTas)EniL8JdtN1qFDPu~oFlv<2LZaXV$d_icBH9)!GF_;8FUO_>OSs{v6U?Q+1
z1md}-G+ys461dwNT<hOpqFSu=AY!GH{Vw3UO#GL&zW2>%%jbeqEez|%sJ>)l)<^RR
zOIwV4Q$>JuIgFRY$%<{~RNI`Zpq7I2iMhTa4(C<XdsMUbXTf6Vxl@nIw*>|f>kowS
zGoI3`9S(Kq*1e&GWw7noSZyhguv+nGa^UD_5A+8G)!2kb#0Vtw0RZbusKx$LOsLn%
zp}RtSp}m%mo0g`wb|PRbwJoOrrrMDFk5mC-Y*@D|hQrPp(F=Qx#DtQT+Qav7hn-<)
zZG^O@2mWiM%czuw#!ElK@bLQa77Up=84RC4KWi<rQPs<66x^I`(33dbPZ*LoKM`K(
z^4%|CV`Bpv-#@(&ltLmU%3zHEeaQ}>=?1F!shqa4w$+_m7=?T#WQBtTjraqAL#bE)
zt!7mn`SFPeH`yIEwT&wFJ1RV)!DpQ7Bs_aS!uV1XAiQp91h+2G`WiRos8k1Q)aOc3
z`jYLcD=FC?%^+5WG&3r5h0Q`ehr)nZfLdY9cP*<pG4YJx(f`1D@GPU=b-oC=h}|gx
zRM$6Mj6tF{8|KE^1CRHCc+dgw(o)gpoiikcH|BHjil)i(jJ`O5)2Myq>=ei^Z2qpw
z7Y3oruXDo+0H74meY5ET_-q2UMU2qJed9A78!(sepZ;av@3*F!EJMM59?e5SYjkyv
zNYnhDlb9PtMKscd^+5CyBeC=O?CfOEZ^I|1q`F$OKAIjkB25O-$d?7y6@Iwyeo-9C
z)wHZBw!6ONwfKb!O`vrd5sDfb9b=B*6A#QZY;b{w!g(E%8UU3I&C5GS2lqrz9Ia(n
z0%{)(Z>VJQA^Vl#3gn?+_1Z@5zw;idiLcbTMkI6c+4pI4`dNPfAN9j!&%gobVe~|s
z|EV^^rAvZKG727FcuhqezWEl#GwK`TY*HUAOXPLlWUO}cj$fS?*Pd{OJ`E_~mC3ci
zov4@A2@8BlM|gsr*w^gjGj7^k)V`7wyqQEH9sOKz@yBLdBcB;^0f;HkniHtlSdOXG
zn>&;b&cAdw^&IpAn*9u#nIB!r!fN|k1sPVO_m4a8XPT5Gu@1fU3AgXpyJA`@QX@Y0
zyMhu3BGr9;n|A)Ux>-$>ssw=25jrem*nk{PR6q6n$Rtq0Yg<}U@;t-|N_AY5wDZ39
z5$rXPCG0br)M(+CJNp*4L>&3nYH@>UQ217lDD69>b>6e(ztY}_ldTrT#4K!$Q*b?x
z-;lO>TS3e(OtAvH7=BmFDmcewZD@EkO%ZIu&6*{4V9Wkg%!rvJi!5`+(D7Ghnd8s?
zj)Hr{v%%SsTOqbM+nma??NwnwQy88eFP*RF_R|VW0AwmryT*i(9_3nzZfqwYN1a3L
zZo)3GQNgFoq|`;sj2R!5k0nOajeFaB_78vK&+Zn-@SpO%=&CR|cATU5%P4#feQy=G
z?%swq6O?-Bdi{*V5||A$-V4@RKPd{=2WNtz_miHBh?z`wcaZHJOAVrhv?g5(*_(>}
z)7FrCUuqIwIpo$ZU-l6enN!4{F?+|Fty2xDj+Hl5Cz&tzpJIa4zyq)WGX0QKY~X2w
z&syEc^Lb^;bU6R%RLwHf%eqy^uDt&pq!VJ=>PK{l(95y(-O}3CZDyTsQ4aG>L1>w^
zgAD#C%tN?3Sb4>0fyr5R`Dph=n;`JKv>pZbItmck)cv<5Ov{gn?naApZl1q!Oe{MC
zo2p;lk{rA;uScUL%t2>91M{C(O5YkDv@c-ySNnQ$eLyW%^w(Ziu6m6!z662)RkX#R
z(^h?31wSmg)g_I!JrgJY<Nqcn5Lg>aw;~TuUYruP*u4*OW~>vudID=8I-bdZL1_A~
z2HtRJy^%GkI3H~MX*E~}hjrwn=1~!1j$fJ&o-jM#i#pqzaf=Gt{&8b)sg&#4Gg;3y
z*nk@p(4vV8Qh|p*aI1|B6<`H1V_xF2l%O+#y<<jW*J#=`znb4G9+WVYqMF|juE~r>
z2Xi_Xj7?7)??`I@6Z+oXpK;9-sjM|6QBJ*9m+gBFUYhedy}SJzVSn<?A``MU-|C4T
zf^8kl`QkSAI>Oy6z}><=V!pfRwjqBBy&s;4BldSg>|_Y*GIK_t#TiO(?aZ3YFs1H!
zjh;B5haPt0=gc!PgBE){*~evn1WZs0*yA_n{^aK??f7?K5OzfePq%s;?G|I+uC~L$
zJ6qWpvl65;FOnX;24eJjR@xqehbD~RbNJ@<{5H)_irB^Er?Srn1H>V_OaAAZ3Qre&
zZk})50^?Wtm+e`=AXEI2IHomv#nTLU1;U&3Tp00}Uqtv(!K6cDB4e)XVV(C|Ure*}
z?;<J4Dz`RFj}L>?B*e6Jb#DadXlpkDCc}7TWu;<w*8{n;)MEnpoSuOF7{~1m9~+<J
zVPO>vde53GT6so6)_<sxd6hwKoAc*&m=%qD<Go#c<6Or0Ag-8l+QcmAs1UO>iEnH+
zK43?h&6#WwhJ(-GBQk(H{hEZS32>}m?GG%1EiL2`l}xs6#yPjd6l)zrYpu-VlT+(k
zVe)K~2~SnB4ExPnL+rf}nQ^(yY@p7YD^5Xg!o(E!dmZc-$Uop)&VM}isGMZ+#~N}z
z%q&24PX$$Pa*tLZ#tK*hJPd1<(uEPPf@SkU)RK4v677CDV_UhXx8{mLL>aIC5Xzj5
zAeOehE{bej^2Jam*3(xgY}tieC?fco{Wq{?Dcr9%1ue2QxWSgCJ-B8Gy!2*5ftdH~
z`7T|4w9!1jEMD#On_uv7<%AeWgNb!K;1RIyLX3-<FM*O>VS8wF7SiD?<UUE0bGFBW
zsYK!Sx^Z8qM>tdOY=?^?ZIge?Ky1-6RpZvJvQ>%!+U$~vhCz)vXDo%%oTA>U5p(y+
z0@ymgR^9gqdmJI9pu}*fPP|L}O7bs7U%ds+e|+2fj{T^1#)IYIm$RP9&ySf~o<TXb
z(}|#fjqtcZ@!T~4!H?2Pn)Qz+xTdlkkCP=)O^B_d%KuXLkDX_5gx<5qG-E|Y{^|*C
zSoR2SRso-?ph?~uKLbU%q!Ot2CUwzu&&U>C5?{B}qTr3-)OeB)?a~_wCR(q$yrS=K
zfu9T>zF}@4abH_ok()WLMLo|5VXbqRo}hOU7g#Ownz}Q(eovuq^5p9jVMZ?l$=vO~
zg>3dI)70H6W7AvMlDgfj_5?p9=uDl>4lM8+1P&IpjB68HUlZ4W>XaCW$!Q0R%U&ZK
zte@d+#uw7ispr28Ufg+ScDgtSL$4CE=>U!;E_^f!wpkg5C!Mgh4@T@(jO{F8p_OzZ
zx-dJPQ^1;DD(1fukK@uHH)SYVjv?mDl{3<jnAx5y+g_@xCiyyp-0W;AwmZXo(LCXT
zqC{m4a<4dtm>VwOnTyqHJe(Ct9M69#rV(<H(!v7sAM7BTHI+%i*9@8f(`<$=AuD5;
zp&U}xR1LHStU>0^eWE*B*q-Bp(-tfI0Hx5|RM|k|l3Q23SsV6n*q%O60JU>4s|jpF
zRMvN?ZEN6)_$9q>misB3)>X2FKI255q7qWX`)(qKG3y~--&pY<Fnkc{56?0wJquVI
ze)jV-!%Rya>wwIb#O$20>~b9YBE_1y8%>%$FFYEC878;x;<&ec9>0`e8G0ruj<4|>
zN^rLRusiiDkp9;8(`yQfbY?lNJ6J~X7{xS;W^lHQ1-GuhLN=e5_|OXgF6y4gsuG_C
z6B#}L2HUPRZ~Hq`@NdTMfFfV_Ux5lRZoTQ(H_F|m{U3zAbySpX*FHQ-Dj<TQNOuSl
z(k+N|w{%L5bf-vncXtjc9V*fSl0$>k(B1hvx$pOR-{+5St&gQHxn>xy>x{jRz4vkK
zlW~C~KAWlg7*Kg7HOwK9r%%?R%CJ*S-G;Opx{uh5&X6)UDz4B5z+jBVpm`u19jx0w
zeKq|YFJDVjAK_{-s)yw4QM8T4Q|-^;t*AAn^un@jfj=o&invN6_tRAzd0Q^KV~M#}
zlE|Bs*I3)c$rWPde3Nl}js`*dx$VCmbkwd;A9=(dg#}uHt*V5GP}N&`9ACqtk2^1C
zmkc5p`ZBO%y|b@$rR(Z;O;qirKV1!y@)%|VrdNrceSiuIWhsdm;w9bQs=;kH%YgF7
zT%T^6$i?V0zc}-hWky?%FNcQ}>Je}c;~RE!lP~H7&)g(74}$KAVwY8Svp%L}B$Vvt
z-RJ|;MDqe>lV|Y<#PQWOx<0%P3)bojfr)fi`JHWqjrEx4#5v_weJTYTf^GXJG8+N6
z->@}T*4Cem&PE-*e4=cD?JVFz46kKsSX}V;sS&Fjy1CV<?k|W?{c-s-63Kh5l-fe%
zHZX;1)bzMau|)M*V$sb~yqj42sBc9H+@me~T_6FIktwEqW&hdUyNbTPJ|AziX`wMz
zPxw^<j#Z|@#)Lzd{%ZM#OZK4_=}#W9qNC?@?LYbyW?n)dC&Bl)g;k_3F(xc{&AX9T
zl~m>C;al75z?51ezdPd-0g_=f<sE`mHXhHVIpw@!cyr>wB(;`Q5t6#SP#TMnibeS?
z*CdChV@W{ZiRI}8!CTX8s|=&mqZQ?VuzIOH&i8RA)v}{#?tL60Zam*BGPgplJx^o~
zA3sE!F%?G0+*Dg!$>eW($(vgf=3c#Y>pRY7&vE0rYbvv=?#Bcw5(B7-bd}|R#b{*g
z^fCP1s@Xt<S9Pa4RINL3xDE}m{*}<~SbE_q`kgOoQ%UWsoU&{GChxz21@96r{yGhO
z$^CVJa;aZZ;?3<WW{;iRwDKkSHRdu2`<Q1wpN+sz;@|Omt;XY?-|~JPtX=IFk6=A`
zIHnY}_w@GcAh(v~UBw_v-lTD+V*KeM5tjDH@z9C0hBZfW<Qt~vQmMBDbY}t{;b&Lh
ziwF1kj8D!shACeVW)>4A3m)lae!(><bU$s?wfvmq7T|rSUD!T5tbTKKHu??8D_f|X
zx2XJRcZ_l7hQQ&=*y;r4&dn(Ms>+SBgUOYroB6MQpiaQRsrl<PAEU}FBUxd|qo#Ki
z@3y|~sHZwuPFEE8=s-^^WOX-F;5I|bvWTLB>%i9_wRu7>6%(r0l9nt5d`LmT#E!vz
zm0#qwE5qE)d-l<N*MG2P;82vC;1Pyf0OU<tdY+<c>&7lAtBkZm>tPoy!4Z$#x}sxP
z@kn00{n)|D=4yt~t34zVqfB^I<(c|`ZAQ9RYXQOy(J5eUd}24Ga0^|Kf-@Jw%BRm6
ziC^zq{Y~DBv&URSMse?YURIdML$~zER|S-6?-hE475ABfKy1_Xy;bbZde77iP<+~4
zXup$WSV&%KFh3m77ufZHyCW0SainEyd-_Y&*O`xtWmWqtcS)?$#=S#yIXCWAPp`3R
z5KAZ>tqoWv8bBbvK_MX&WUgz6m`GyS0Cqtj9AspVvNE1V@e2^~IWeyA9O!&rBlN@M
za#2r3MCxudy!30emIXpyJ9>>lIjTiXJ>QcQ_KLG>IG_z!=eE?H-Of;-Wiq+G?x60q
z_%@*@3}TpXAco=iye^Y<8?SN`b90-B@js;l$oEiF?!lA*R1WK997eKNa(|f8vhu)z
z_Pzw8She0oMpyAeN6uLuey?me+RxsYX4wT!FSN)P*)KPzJKwe_VW&8qc;9>l370Y2
z|0J|QDnE=Q24FE>r|qPJ43d~{XGcRq?&+Z^Yj4?)jy2eCwNBnn1fmlJ;6)uv3Z*$%
zYLWtrU5iB^KqV{Oo8lYgNN){wOF```+(S_RadLblafwPfXFazy^Q#l(4Tu1~3I9iL
zxX5U<OTIz)+^O-k>c>|NfyPDp#_MG1w2P}(_3d=_m#TMI8L+#y?0K|Q=1~TgSH^eK
zr|4LCVGetgl8Oa)ZfBT|$)}Eu{D{I!kBbCan~VW^H$*w_(+xpV-7k{76%Yu;Vp_o9
z{k(uLn<hI@-UbYM@NgI9sj>0-pjy3^RtK1_Vq#51Pr8GRha(%sEfzD1S4)cM&NkCE
zaTeRV7E}d34zy~vjvn03q`}~<`~rpo8_2R;`=tdZ8Fr|z?OmgeAI3AgxLWGI<krK}
zy?Cpu>sroUhtd3`k73qarS-c0L||d}CQ`kXU^)bEDkU}^lq-UgfEdhF<-+3i(ET-V
zS3K#1u}P)hK}r+o1z;-~l2W_LE6z8%RTMKCh*Z-dj)fY*F%Cgy=Dj$2`#k^4dX|y@
z)d+lrkpd|~G}qC$&VTg-!e`~?0v7+9OZ#p<2(C|*C8uygo66KId!U|y5UgXnv%aG}
za`Rnsd^|jp<G47H6a8aiCJvh+X?uciuO3f0w=ec<>vo?KJRE0tuq<k%>e#^BT(BQ*
zRxfIF&f{yfzjg~qIZ_hHgCVYwUs;TEWzM6O4aW9UC$<FomV2R)YQq28m>sT20-6fW
zlvSP240{}S>`fb6v^k*W3K*1{1ocIV1gH0D3=4<n8L>0gq)OI^LQXiJ-jl%hpadKT
zSS&HIvEfbk8D&rz2AqP4u5iM5K$&KI5qkd}sGf!&4y5v_+d`M(67}@+#$h_{pil{y
zo>I62+42`mn$K<02R@DFd<YFcV^A};1WcE(qn&0F+W)P$*t~ee>0NlG`WNr`F@987
z$&=q78W$SiXqW^|{CDbEkQAPs5>bmZz2Vwo`1}vwz_mGn2lZL@pHT6e#?um<o3eqn
zxB3#5s`O~}iC9z12>ZjBm<89j*u`6(ME2?Dm?&FZ9%YE@tAzFu{OWjNE!%?sCc)aF
z-E&}10HMM1_hi*{gKh4}NI;)ql|&3GW`kNRt$Ykvp@0q7HgynABjfUGk_*&e0d*5M
z3i;>vC=iL>f4%c_4cG<B49;~0pSBM4&*#U=Kv=f*`#s9q>gvW|wt1gUvsy7y1zSMQ
zk?c@SYhj^IWtMS6$5%BKm7<&xwiQz!$JNymx(b3P-)8x>OI=&f{#1Mk_`-pmzR9;@
zc4AZc;|QnhrP<<Ni_)V-t~jfxzv@T@it(A7H+|vPs)fW<k>qZ$rlD|J8=?lQaRGWy
zJv=*<kGhJA*?l2WMrQE7kjE8uru8$9cb;dj0egOqhkc-QCnd1H%p6^Mf%Da_O+s6T
zaRk1g_LIO4ja$I!W(RVado2xXZ4QrK#*Tn%PmctAtD?04><zDuFjRuqQ!T%_nAdL9
z!7><?7s?NQM#^<)2!2KX0M`W;_9h=yx%C`!-%((xI-z+oTzpB}^^l8}p?}L|js5qP
zdmXluoJSxt2WSnKYCQtp<Ua21sk8TU7%U*XJ?1BqFW$Te1%yh+{Y7Cw22&m$9tQkL
zt_fNi-C}Dek7pBqrtdW`ZpUMRg~X^9p+5!_tqD(vW5)PBETA)TMRj|8n65?HN*(l>
z7euK-&0hp_f50Am0u-oY3+0Ss5iD9urjE2SM%n(~V+<9HEP|z9`tUcWmEfE%b-;`K
zJFjWTfSIG><<)kN{}T1G8aQoJxSU~Bdj`ly|4IkiCJ+7pkra3z4RG~+Jc<VI1Zj8=
z!21P5`5us=-HfK}@{hL)(>O@!1t>e1Tkrn^sA*2ka}~}xt`e&D*uce0Et~;j)B|5L
zawJQTXe(3kcm0@k@$BpGi}hspDqcEugU1uef$8NWYh&%=S<+0(w>rXy#BvI3E{m0y
ztyim=35~lRTkPi-`+GYZd{m%~MY&reRiZ77dT&0JY4q+o5c+M(O7n12>Hc2sbpx^T
zf+m=zjUH2WxjJh=-O-=;2Ael>b`a1KrdI&HbQ91>%MNOkRaEk}V6B7aR<)K3a`&|!
zP*xJSSWzYbl;nF^hx5GWkoDvM;Ns<D$&MP1Mui6w1v)H#e*k#U=U5yB|HtS1hc?8(
z!J!IB4&b=g(Q$P>=t{neca^%UJsdW^K5TS6*t|zCD5!gc7*bxV-4II#?AIN2!65_(
z*mSm@5`-xQrkS2y=rQ+9B=Ngj383ouJoaM=(xET`Z;Z)P*Zr6U>IOiYqEMmR8ppfO
zD|y(AnvB9n`=xKo9OHj9Ac~?e=QfZ`UK!s_lPd%Ykxwf(_kuHUjBJ?O-C;j7;F|Vj
zIX;I0Yx#O!ugrTe-4c_n*<w|SL!iA_5e=}e`WW<yw>>WEhST|+E&3Cf0UaGq7h71S
zbPlCenW@<M)4&nW%*-qgNK1sP{eag2p6JM8Z*9n|($c5<UtL8xpvZ{1DHqBVj}!gg
zc=hUDu5zyxX}R|GY1MtNqxFJW)7T@x9$pToPSn=i;^iB~`QKE%FCiNCL{gPe_*wm|
zTj_93movUFpcDg|c@ZFySKR>0FqHrKF5nYuYHF3#*0L{F`C>_HXq-2iGwdy@IKC@&
ziyKln!gPD+v3sX>2}L~FRc%7@WID2`6#UUdfaH;l<on~Rhp=x{M)pU~hq3Xh58xok
zAQO0mbRveyd0cL-P`&ofI7>gz`unhl9RGvPO?yOZxX6<h0{!%86_@vQy#Mn30r#13
zXN2F+gzR1z@czGq0T%oTz%iU~&5{-Kn%xtB$d6X}wm$(a5+(QW$g~o8Fw5^Z0vqmq
zi#FWH0}<A7ppFFiHy~|Q09ZjBb+Xcgo2v7|Uq2sXe0S|L1FXxas6}U)A%x?fEW&V;
zdyN68Z31}o%9TXGEeyCU+gbhAOW$!x=wLimI1x`Dx1Oi6k^><7;G0xz5ImRa(B3mH
zO9lEE`dC`}M$?#GqLcy#ruLs2-hi9*98M!g?|DTBuHRFk=D1yK%KOa{Zq`!o7YX1{
z6GD~j?ot<d5dWuTEj{pXoh~ZW*_pdaCvo3C<Mmjn1ZxiHnTmle>1z91m#zS9XY!4g
zkNF=tKy){dW|X=ft?BN}UB4>dAov4@0<f)GM=XI<LEYv=)ZZR@u+nQ-RRlK2iPJV4
zioL|G_vxU3T*%VwReOesb6|h<OHqv{j7&jdGAvC}xWhh|1Ru!A7FRifhec%#mvCdv
zm{2jF%H{;OWpyF<09ls>3^$nIgZ)^V4{HyqaIn}zhD6HOO?>@K+uOUpkFUCAPE^#@
z9nXFb&M%(b{E?A&K2ereJ#&Kdx0hJ_Z||X}B5pxdM%}N@RMpgS%E~a`@n-S6jhU%e
zYUWo};c$6ugvxza%ivTnS!io@ISi)dr*wxkZCb$j9-ENk!l3htcAO*DmNM4$`X4#1
zv^<)QhDf%&Ugon=$h#gGXg(Wgk!Ga~`j~(+^YHDRYad-Z;oF-h;{7*FV*MgixWcbj
z<rscRe2kNk^wpn`pE1!hof$l5EIesTWaWFTI4N}%Z)X+c$h_H1r^@=4=mq0s0#<*W
zKINAEDPF9alY_BD>VXSUd3kwJNr@ell+THX6FTkZ!oS;?v3$S{Y{Xg<QzBT9Mc2C@
z8*zp1F1)!HD!|?6>Rp}gb~wUym#1}gbi&uxKHX<k*8pu7bJi6>ENA*fvRhsR3VlOB
zK#*1}V#1WhGs-=OSn8Cn^tgD-sMYjbUB~g8sVGg>-Bn`YW31&G(u*{P_>z*>Eqi%q
zC<Pert>^a~#wI3~s=DviJ@o2#aT0~N#^8Ji`WK-Fy)m8Oenpg(V<&VS9lupE$_pMK
zpYF^B;xVWPz?xYQmfMrI8h|t}lPQSg?zH!VI#D;I>(1;KsHq)XcZGA?PlG&TaT4rC
z1UIt#U}DCaXY{hqW83H@e#Kek8HDWSjLmIq{U>)C`TD%wd(T$3&I5loQ#WKY5#j$F
zO#yltMYZ4v4}pqmQ-Sld2kJs8sj0)$(~sXVW3qE_@F?SRa&j*1Ht+pJ!WQ%cg>PDk
z&xYW(#13-v^QkErn@~8(*Ykz^dl1yAy6B$s4iSEI#ad!Fzw2s3vY{PyWxo&1A7CYL
z|2ZT{m|~Pc|H6_g=20)uo!awZeUzx2agE<Evt(%3!93M1aaN?9+xhUqe()Ki>?OKS
zobrhXk!q*Lvugc<$1ixRB!i-l5X|49^>a@k8P0vl4W_G7V__A-9Sijk2@Ht>oS0#=
z=X-n`p67!j`I_X^zn@0{>wzy|!G145#C0wyDXH9#k+xY5*L(DaJ&0b$x_QS5ksh|W
zkS~c(#A%fz9@iJBJ)~+)CboWZe8Yt9I+pt6q%}H=W^3s`TmZ1dnA+>1Ga&}=17B_J
z|4e2(_;ThA3EkYPGF<IbP|ghC(R)TKCu(WQz}bFI5%7dKWH?vc=y0X?d<KI#YezwA
z9v;3i%}lk_*l2M=uv1&q)IO}e``}%JsSONyPRpk(srB<5rAC{_s}GVWa#K?O*K10G
z3(PlrneMl~leX%UtxRNy>0@Cs0VOdn>!}ou(sXBgRaI4kEoo-+1xwVtuO}uZCUW}r
zh{5#9RW`i2U%}6+T#r8OT>T}Q>Z8^VMv0j$`mEk5Ve0`g_#hcQmdreHGx$DT<CFAV
zqqxEATs~Dtm8~rIxZJ9zbDiDtnJZFrA4iJh=Ul^F#2uPWKZI@kLLVgiRU6EpUS@;r
zr@<Hy&!A@Z0n>3zo$*Bn&_f{|;r#T)hcY5l3ANM6XKcHX>IkOsKnW&bp7_?SHwi~f
zZJV1Gwcoz+crOV5GGx8pRByLygNIcN7d+eJh}(hb-BC?XPkV@?22jK8$46z7?W8K^
z_I&@$m7?TC{Cb}L?c28`hifWC`j;vVOiNN-LXAN1nfOO9e|P8nzGC`{Zr=tfBP<)|
zk{V#!r5*mjeh45i2!J5xk#txh&O1mOTk7bDcbDnGUI=PB>_!hSzecp$Uz+=qxskjJ
zH-naK=W|+12i#sK{d&AJH=o40Q~sjg_Y(h4Z?Gm|9UbBXCanm6j5WR)htY4KWh+gF
zn?)<z+>ENaPI#j|;(>%bxyw-N8ISUFHFfpne!VsvZ<k|i$cXSb(ByR0vI#9srjVh8
ze8{?Pu^+M(d+cetp)?d1csA=!8u5ztr@)623YNZ^7IbnMK{1ga=*U><5_e)zVmd=D
z%Q>dcG2xe@CKDR>mij?E#t1eGMQi!=hZF8DPTqCepx#SJzVQtS5*_6KTjpC^(AnV|
zZI*?`w$2j<c>@cA6Dm?{$e#Bd8jI8H<aduwzP(=yvW|`%1?i3n3<KLd_BI`fZ9(Iu
zYJW4__c~@9k19>iNDzA{?*=K?LF=@31QS8{QbFqHuAECZxJqonTk%}Qmg_^#S=VlC
zi18lAYq0q=s_gRnVIJ7Msv0}Hjjxe6d7_KU%R5I*`gIVsg}ct15}c0H`X{<`fBr0{
z#3+~NT2?ea0o2C#bLNE>XQ@x&E3Sx)ud1bRKPl|<%nG(b+54qMJX~2_jf;j|w{({#
z)Totv=l~at@)FuCkWEcHI{ZpH`-S*!I$E8?(a|xfUB9i=qo6&K<;>?W#4e18XM~6O
z{-M*%?d&hEk_A0cUyQ?ZcWafaz;;X|!}xwSZwJt?X>*!TZ%p!Os}HvK|IN6aieU(A
zFD3j};n8lJO5cS{zLEq@EQ~r@f?HZ${UvTNGB~$BeGh<Kr;7LrK6Z9?{hjH+tIlI+
zIT|+ao^0Hf&h2x=hn5PKQ1u{{LWzO0JlZ$$3*+l<q&fC}GoPok*zii@Z{?GY*U}w-
zQg42sn2Pq^aHRjXPi;bJQkXWR^4eXX&!jiReRtT;@VUVRsTM(RatzGASB<7M{(u=b
zm^*a4zDMuOImR<Euc*CDBJD&LFJZMB$*G{_Cw$w@X>2V|GWMN>^>F5Hv|rRuqmOEP
zVNq6YXX*1j0sq(h@0h$1BgV#$u%0Yg<TW*NFBNVta!fFCQxmQP)wA`@ZBdG7QT3cs
zc%PFfdHA2Bh+}(<j~n&{FG(G9pQJC3pcRTA1*dcV0|ZDC%!*N~Dbc7|-)_~3g~d&b
z52up|%i-g8;_ekWV9k$3zKc6+-t4E(K#_J`$mdrrGwN4>TX>f2CB+H-UCAdTe-xg+
z?J60mjkjSeJgVg-;)Y~uF@|zPFNSM}+(EB(->3P1W{4+*j)7sz@+CUCI4iITz$hQ|
zF);JZBmj)fCQDDg(vzoNV72;RdpL?Rvkjk|$MUq>z5M>LM09d0XU2Y!yoz+P|NYee
z`Fx^Ag{c3WNcq1j;u!xq)qmZ<zi$;lMfq<l@sGWbh!p;Bm;3J>j~M;`f8>VnJz{Yz
zOb>BagCRrMIXMka%R*V)Cq9^2Sutt|ZcPaIYJI+Vv2@__!|K%Z{>|Xh$Qwd&t#ll4
zpPrprZB9P_86n{8DdPhIP+Lw;wI<K6^>D()a3Z^_J`Gqf>eLZ|{W4eWIn)<l^h)pR
zz43yq4W=W?Vr?o1?_t9H7s~&B*bVa2ote<#Tro<5@P`m!CpERS6jfEnyEE>8uir7r
zbE-(Ym|o+>n5Y+Xw<@n!n<wjZDm&xElk8TSsBj;dvgSW}?e3hIQBspteb&{8dC0Mz
zc03l-??}$9lT7{cYOWlS(RQn%_t^E#N$1J<%M<vh_nm*O^uGqUHxoR^Sh`b5O^~_h
z9(e5j1g1_<t|l$w+fm^^oisXMp@n_#!Xm7+`Qc$&^2dcg0*q6FeM{2xxba<u_YK46
z##OEJi=jIt@RN=OUQjbL8>=ou)-m{kkC4C(`=_BM^!ss_*K?&dtV%NCdJ+0}R9!c?
zX;iLr`{T>M^72CAmzRXv<`C{%4t92zy5Q;(!9Ei(Eyt5Oz~j({@1Ll*U+33dAF}?u
zeN*p&0S%lEJE4*fEKQwOwTj)6nWx?Ear{(WLDE65f4_>D)2idmSWyZ))%vUX%~zoY
zR(QS{mE|?`*8Tb0{-^oPj%k*>973Z9{(@(lwoYzFx^;&Gd@@r|=Z8a_I;}mY_T>nV
z{TjTrrV~EFu*}Bm@ReoD?7atGa83D}bVARKY|Ht&9bIOOf7huvFQ3!)cW<F1M&Kv^
z{Q2VpJh=Yl@vDaHHWH3y%X@P_tDuJs;od5%sWk32oOM}NSJ2W51tYoIpJ)Kot_?eN
zGwFL+SXf1+rS{v8uEN8^&8)4v0YZxa>!P{93Tk0tcQKA@`J-k?Aap^X<pty(H($e<
zy}l4`ZsCM>Ru;99oP@r}hQS7V>!~M}==InMI>(BY@8Rtrd(G9^o;ZL~K-KXD%=T=P
zF{{_vzNUKeM7cZFu|v_Dsux7uHV`cDg`Bx|0GlR3w+FTp===9bu;x<&#>Nvh$o`lz
z_;#Y~V|Zt1;v(qVQ0cVO(Xi-?0ha#o<YW-=6kp_ZT&eFNVxM?W_Rq+0LQdrAg*MM-
zOU-%j>t)jHJ{hp$h-7X2Rutv>>T0C9#9lu@k1yc!>*ZRA7VE+>NY3vTGr3s7seAG>
zM8sf7Sz%h_(xiIzK#PZT^F(t!+N|lVd4IB$Ng@%9VU*{QI|)XWUzK{1hyAx`>8ba6
z>W8>1?<bEkJ4VWJvJGwqvp?Gx^ZjdLBv?Sl3?48&5Xe2Mbp5~s(D{2}1`PLin%Aj9
z-VZVs8gM}5V+j`wyZjJJbafAk_+9PjW>)c58`e@R!BY}91Gok312=fY;Hu@WCD5|N
z>97^NsHm$5`*t7eY@frQn5rz+LA6)`Tq-Im`hG;nwKTm2dk=+{mtumm?H&s#Rkq|1
z)gXQk?}m0SgMogwHl(*G<Ef>t9#{%%nwC5QGj{K7mE~zOJ>CXj5e9&|nbFd(U^6JR
z69g;*ZT&qW`TElzO?gb%r_g*n-OqST()nGhm;dP*JaRw05e#(c(l!f&P`_|~f-=5!
ztLGFwpKDX;bFse1)NP5?`j=zNr&~rasCXtH4m@U@-VQ(Z)1xuQLGO9|HaQ$+NIFfZ
z{cT?^;@YpqLoCz3d?rn_;qzGRW~81ghNQf%Q4>yi<Mt5W!mc($!s=;01fjB0yvBUJ
zvi?8z+OF__Lfr^%RRHZSCkqN_tY#}8Aky6<EU!T5ltcYutLjX)WUmf0Cnx7&Y(%CX
zIM^(wsfpn3yj#fTV)gDNn2r1K9!%pLh;J(?c?=>3l;kG%_14s%XsrI_zq<vU9#~jf
z+5$GMtB1O|g@p*vM;FTZZo|jNv%Q8X(wujBieRuVK#@iS)!cg_$@jvCbhPnOChaTu
z>j_^c2Af)BrDph+QoKpLgq;#wk5Mna9|uO3Yl}XYZ+dzvJM%NAl=5TT*y?KDH^xN#
z)KcaGw?}L!g_g!C=kxCk<4@hxJf-=T50uYzoWq0U)9La`XR<6o&655QTaeRgzR}^K
zO&^Vp`0cHeHSh2r@4(%!9`%HGZH``RWV0#TO?{c&p43)1#c+y$?Ff|+0U@F7*_`v=
zFKDD9A3mTMR^cZwek8g)2XQcC%L?wj;iwhS`1tWvN=k~G=pt?|^@lcDS=niNEfmAe
zQOQ_2NYo46++jMgNP=(>i1Lm$KK^yPiyJN`a6%^fGv$CI0=rbL;^3St>Fw(C`#{0r
z0!9&9RJ~yE&#3*~)A|FpvX-@uZ@zS*V%)u(rn<a|E02~yejo7Uz3VEvN(6pziBZId
zan|k}yI&G<>Ji_gvOAszA72?BYgsv7{sC>MtEgh9KjbCC)9KOk^ZAs&2c#b=Al^$I
z%*CmhvL(w<#LIlzB8wN1vcjNicIs2_@PgMFkErS$-jZoG%1FMRk+vQh`UGoRu@h_+
z+}!GQfR-Tm6FbkYr=2b}pI&jmQ#J^WZ``B%N*J6KTK$WaXXKa-2BkG-HaVu#E!m0$
z?OM6c3u0e5Ht8T-Oq%OGIF*XSWH~&!HalEM@Y?MKbjy+6v0ZZKt=}K&2-d}LZbZpU
zqdlz?{T}skE?9$5C{&~UR&q%2V7Cj{a<Uhp4<s<M{9VNV#?cq*gUHa}>U0OPD1*Hf
zm{f3lwQxrwcv^*#_BIoQWoi|gt1<|Jf5Cw1=15<k6bOaV&Nx8$Z+KFon(c|_yEy#~
zn~##I-g+T|Hq+&&r2Sg0Im}H7=iy3|V<di|N;wQB1}6D->t(x59Te=FDvjUp+sq8F
zX?k}PlYF*vOJIrxL2DVYOz;FzxxronB5!$J&~v^9LK6JD3goW6u7s_;3!g!34y&je
z&R70&!|Yh3q;iAmNyS=jY)IYt_n$tn{4Vge=aIt9nxfue5HmuVcqj1{UcB}98HY5c
z2BwNaA*;y9%_eX@MT%N%I7{y4bszb%DT5iZ^7?S*17E-X2o<sMrcBTkqqDK+#N|Sn
zwkT<n9X_n<Mfpm{tM~Ro+nr`6!GtIDTBocZ@!bTz>UUQp<87=rvKPrwxPMu(_L9n?
zH@D!;LGdfBvKngwRtu@j$jVPd<mR;o^hgwQ3+cHJt)}XB+;1%V8R{<LhNet5_OzPJ
zHCJ(BO7#APl~Ma?9*4dEq;~j@C?O-t<#I{ftj7l+fx$KBzy?B+<^m+V+yj8W&>(|x
zFheN?NRoi*lh5ZPFRR?fUz=)a02@-}FlDFhyu%SO$LxI}cKvr)==_q`_0YKGbkj14
zF1`u|dm^3qru!$#Q94xmbL;p)E3jF>+w!>H2daV>z4Cv*e?iK=X$21dtW0}j><C1y
zJ8pr-!1k>%C+($No`M8NmCFGxf;a`#(z>Pt;Y%2L4f7gpz?te_9Gcu?t!}Zojl!$x
zin0>Bc+c@oj-vAN56a5Q>xcI+P@MNwd6B8OID6}r++a86E46@;5jtJ(dL;FmUD=k(
zLY>sz4vwz}NB%}OKUwqF*MpXAv@D(H1WG_(PBNcumAK8qu&3(|B6(`R9`SrIdRmax
zrrQwH$`MpxgNC@-E`C_r8_`5kN5qtO`8L?_vO}b;`R$J1a_H+#bClpPc^dDZvdx=s
z3k7t!REs2|#x6*@3R%nrZqI}BQE_B|iCN8S8VinnP13xZKF$7V)-bOZ=617zF3=~}
z<`lQpv!4HVueZYM5Rcma8I{R_VjA05ov&{a^^^M-+<MFn1Q3cx^_H3{LUb~?BB;EZ
ztr}ipdB4o;GLtdJjAYKF5U&awD-cV$pELFNdWM+mi6K!DiihI@v?D|OResE07ud9+
z>i)&#Iv1;ZB<u+CBArB5{Oz#9gO!ZoA1B2}!wT}eR|zT+IXM)f6gbNiBYia}2e0HV
zF}#RF$K?<B1O;lOo$4Zw!`SHals1x0afAQABQ=bgPu?x?KIgnqfbu}z!AX>#_&#tD
zXg*sExV+RojkpgGknsAeFA?ayKi&uA)Ut<|-i`-^lFkNBM8vV~V7O1)c6o-M-_Uj~
z%`ON2kjww$b*{kd##bpx6Fb<nB`)kneWSzE^?U_&R_NS)2~jEeZY(&uTF7fjzUZC!
zJD-l{evb%*3;QW0f>==q9-<7_KAReX7|7SnJbP&Mhvz{S)|1PN^iXfFZgUitsd{Zu
zmJ@3f8<c37w#)R?*}BwDiJJbugXMBPiEPR!lPqT_pa!Z#>g8S2#b)T<Zsz}fiuSAb
zh*-G<BbtxndGJkF%kwbdkG%n(4fbQ6+Nmrb5jnn~Pk-I=D)VaOh-}h-_fbqlxJ<^!
z_7(RgLt1zJPu7zZ8p%6ravIg|2=srmVMy{8x7nv;HZUTLdRH;ttx#ne8ENKY+VN?I
zj>(NB=%~w6q^GH`c?6i3T0(I}Br-q_t4zD<A;>>*g+v1+>~j7$u*zYh`ah$a?nNu{
zgg_<iegnAElF*4g*5p%aIRD{!KJzl7Be+|Xt#zfz?Z*r|IGLqkYqyzoD<_o2r0+Sr
zjYH__RaXRYC<b!_8S{+$>GltK_42L(E>A4L#_+d+e|Q}a(-Zpg<HTsrbPOvC8<zUZ
zuX5c_tTkv|j`FHd3m!jn-XVl7JVGV5X@%rwD?&JlQ>x&M5=JL&x{Gt=aGQ+Ww3u;D
zz}iL3d`MJLLw&VLE7f=5pcf{CHWOy@Oi;2dxo^9QIXId^-|VAE9DC?Wh6mf0*M)2U
zs#UL5VxJMOTGjF+ebh%WeH`UX!YhZ)cvMPg7_n=M7E$t=H33(JR;q1@LGt6D>yf>~
z@ykM@4i~~Nx$;owACa#FiBOgl59z2zsf=zRQ}fyHjR!+F4{kr3%+%5tD2c7me;iqR
zS@JBtTTZP>8GBUF-o${N68Eve0M6;J8q{64w^PqD+lJf~?~;#bgoZ|LjjQo^v*QKi
znBFW3I5!;;ml!29>C_omFiV}}<~;kVijz3Bogp4Ji!?%v37ruGd7F^XP(>i|i7kf}
z&`j2aOPHHapZ@Krl#)_Nb46$~flJ^>9Cg!W2`b;1n3%L13USi^PA{yOtC;|J4XO+Q
z_iiyc;-8aus9s*ClYJxzr+9?1;JMqXV3?QnjnaQl@QlQ(%?48{SCMMkO+IRyd4*Cp
zq}X5d`)nOl+-mr7%%9L`m`@YceB%V$3WdaFaP-v4u~#ISIeK5ei46)@+@3|{cdDO#
zSHGGv@r$3)IGn0B+ci3L^Es9W70S(<qlpB&mk80c|9lklgQ7|<D%ukRms(ZN4x`7|
zpI7Kh4<(ELb1G0nY5sn)(f7W!Yc3+`=+HR*CiQoM%G-QCG5Z!qiOoLi=lkW0IN42G
z@6U=2n@AiUtb9*->?n_`3{NhsWJB>35Ty6cEvUZK=@v%l;Zdyei$dNoM6hK^N(frb
z)M4q}Ov^%ifKU)kukk=EE+K)Jcs#>(?IYxSq?b$Kr~z~+L*RVkP5t6d{ems=dpFX#
zBWdWf5JdVyjf4ZgT^r>ud$h}|hS^<?N708hoj6r?bfzu_(sy14LRy>lAA%whBp5EX
zg6hdL9KCkh%O=g5hu*KfN}9LosC%Q4pg@JS`lWtUA<EjztIuiNuD__A*tmIqL14;K
z$qHfLi~uHUeSO_VN9!vpmI#=Cs~Is{TU#@&s`eYKPD-&Xv;C(nm)}yK5-Vdtg4!EN
zX>a!B9NMm!n&#cH@klQf=-lg|lq8Wz676TOq9XJ<Xl_l-Gq7vv-n=1>%2~O+u{PMK
zHc8^LX8I(PxjXF)1ld;Z7kJkj8-=!Afdz(}8>Wj@-6V*(a#tlq#V>c)oy;Qn;bOV>
z;k4}xwEnD8{T?RpC~c_w=9zrNSJ4hjmrZwB&rkS%ypUvzDai6VME=^16tb9|sA;p+
z*sX7<T6GXeY`csuki1t%bq)EE6QdZ#9{h<w%d6+hs|y#^Aeou5Ac~Nud2-4{s84>m
z`y2oGAXkx~Q!oD}S54z_WjU;L)lMxQT8;jk>aceeOY4))h3vyJwIbh(Y1@b5)fIis
zt}Bi_%;S2FbNOWE6+-osD-03@eWoq2_vkTpE>eUZBj*{VWW~3#DX<T72Ta0B%3iT#
z$ylh<3Kgj=UTEoP?UqyelQ#l|rhXnUhk}+fI>+W2yw-gJH4SVAiN^<uvsb^Ir^Hd;
zKI%;ua6i>Q+2lB%N*OOIF8+~{d4oA5ct*t3viR^Cj)bkh(i81+S$raAS_SkDND!|k
z3y#n2JDfwTdCn|zsRF)<vw~{KWG9U@p)vl?C_4)acCtzG<~#7BN2or97`>rSzn)e7
zz&viPOelY@zfDD3|8d-t;CD`*GA?|1cFbwqk?t@k0JU9a$D{k@c!K<u#0!D(<E97^
zUOmY@ieEjz9mmDRaU%*_TjzL8LBI#%3?QI_Eu`{3*_jO{@1+XJbbI|;=+GeS=Jz<n
z2b@koN(U<uy-MJ+IS=O&!H5xg4yIdfKEWirw)Q#r03972B)O<sC?O%2U?kUqhjO#`
z&8U2CWAP)|0olR2qoF&Y)>V>!Q2z$%jZ_p7dl7yD-j9OToiFC?tjqWwh!&#<koL*9
zm|J?*ND!;(nTTcaIHNyVh7OL7r$z0J)!?ur{@ZS$B~WGPe6yg73CWm0c=P7X`RNk1
z%g#4A1OnH)Ly5#1CM1Ql0kP-ePYfm-sGdu2e#3UPwC#YY&{h@g2*w!ca8pLBu#gWF
zlJGq2%kg{7mq`aTrqi@&<|_^vKB6@72-6mHTzaANn-?EF4vx<g`pqunUDqE`Tp-)5
z_yp798$6{LcO>6T{zaPTv;4}H4sJM6U+J5tEm%Kbg%f6IOcj$cEqzWu(^FQM=cugH
z<k^RuIR?qtn%q_``L)k~LX)WYlInN3)l=EyNw{vH5A7d3F^MDOZ|uTcjr`fI6W2S9
zFv1NIGO-UD5DJA|ybyu(1utQqM0|Qb%LC_9hS<#Y0^K~rap-qC2{+i)Z)csX(W)#Q
z=!c8dCYEL*MhP(roIEA^NOXGU=ai3nBSB$HS<vONg@pwKLdtjN!C(EEc<{PM+y*on
z{+-JA5~852{B?SIxzhdYGvpm~$2P-gFq!phF4fi3n#EP(@PhdYoiiI91gTN;gx)0E
zqo52#Dlpt}(mKu~$hEfi2U>z+SNx;3T8<Y<enPHu6>}wCz>mV*RIf+U-7n7Lpk~b*
zo8p7=l)p<ZRxVS+o|DYTMY4mG-OnuHuYcy}chhLAK>ua(c&Y5XJSv4SWFG_Cv>>D{
zc&_n^L~Yyk<2vnA?+1`!R->m2_1Jp?S43iKe-x>cWpav&BvPFf6>)HbMb96eJv-f=
z`U-b$iNJ2TyP3W@LJYiDwr2wux2%@!|M6(X`hO~rdnKqIVtn6y;hcN%qrYouwSM{h
z)_(7yO=$GO#hx<}D{it;d06>v58Dv`)^Q5j$X?QQ1saJ>a3Eaw=%Y;X+s@>}EzsF+
z@Sxd=W62p9TyTU(6<C~Qx<_mtD;=a=arDajH5{cn%5^2Dnwpw6-RVNVR$}Gsd<{rg
zao0%OE%r5US!w1|kyZn1nZ}4|xR>X5FV_xwr(WMGqxj3%h}|Aw4;)mZo6ne64K8C;
zKLiyKCL4-9I4ZwiB+~&SL(VJzhdfD0)={)(&r`J9%2??A+RL(XQH^AB=f)NjUiSo5
zn`j?T+TW@v)59BMD?Y$oqhZPtC-m@KZe_y|CRufd3+YeFm)ttvdnNO6Qhj~xBW5=g
z`JnGg%#FxY2I0%iPZZ%&5Y@)dDw!RqjV-=;bfGJmYnRgG?gX<3@2zc^nOT)y&Fy?E
z(?<2$tdYE~e?vw|qGcC78qs*uZ>9V-?PmdO*@s~Ll#jM)OAhPjV^*b>tsWOB+87V{
zum04lGxxgIn^V5~5D7H)CpNkSybazNFp##u)BIYtMOAXg(YhQHMDqMaEw6>Y3uN8U
z=1j*D=s;cNmE+JeYr>uxv6CRJ`QQ8(h|Sb@Ge5ej)1H_vO%-Y-3OWAFoUVJm6J@2@
zs=s~Nn)AH-m=SNt^g?6dQgMshIJM6>c4+DLJw>z+bOxW@?CE{QOED@~^kI5>`rwJ8
zk`nIpC)YXi%GgKS=YvXVl^(AGWRie%vBmPGu3igr_xOU(VbkbiHB?*KCvjUPt*yk~
z=N-A+rd^m;9$rRz&F}w7ZakK0$E9-Aw)x4z=yGRs|JO8?QS5QFU6##mBVtiG^E&V7
z#t4xanF-SjPe^#NJ>N=b)TOfg>zO=q)b8q8Fazv60Le}xL#bTwkEB9g`~ldc5#WtG
ze3Yv005)@9ZP)Bas_Qu-OMbcj%1fNp`?;R_<lXI;okyQd{m>KNp;_yTexMz3<+=zJ
zvQz4>8(j(|a!_Q5=E(RD7vLBE6f?O?;{?Z-r$wBe3SWgv+M8-OE^CR>MbV{FkY;}n
z@$Bc~U^=$W=sb89386u0i^8fcK6MbXT78%JMz;KQsFyicjj{x<dCS~HtJC<q$QYWP
zNUFmJx;TUQR8obUxBBWIXc~r!53V1RZkH(}-lR%hF|_efq(YlFhmN_H)Stv}b1Qt)
z_={v(B6QeFE~6Vm-YMQnR}AaFeT*|gB|*@iheIfU&=OSd$!M=FN}YpUZfj?bIH&7C
zAzH1@m&g%eXTsFz3=!&g6Ju^U_>vO4GJ+da*Q?BgX`GWnx}JD|a48B>Iu@3Z_S2fc
zUraVRrb-7<ArZnopZUCTv^j8}NNGb0_9|fCz<dL5`mBbm?mkz+_T)PAk!Ccz_}_uE
zkCgD-jf=uL!>4#0TfE-YTh)<2sn4nmGGb{I$Bo{@FX+G1WRA8*UUM1Da7sx@J&o*+
zmdaPq)(#V;`0F7?5xrQf2ql#Dp7P<^ZA5$axvdw6@_~Mj-y`nb{?N*;2tM0cEUv80
z?V8&3YZXxh+uVZs>-a;w@hieQs8L5ic+isw!#;XtI*I#Z>->nm95V>NjhFg?%F@Qa
zHE{`_*-yXoLR;Y3(-03r{%yE&ekfeYR(FYER8ks#1-2Bc)uaMsWB!OzJmPqVy4`e$
z!~?XbO`AW<6(hEkxmvruaal_?J^0Nw)KsVEG?hQtWMZ=5Y*fgVSEv>iM7m}e_e#6F
zAtKTJovGlcxEm`f%EO0Lu;mBe@fu!IlK)*PeQajoGk+ZWJ4AGZ@&wbh|7XDhHlKQh
zwS>?o{|?@np4+wBYcYvUdxxpRICV<9hI&bYu$_e3FvoRV+Gs(A7tqdc`Elw@sau*#
zf;trTU9bj0N7EjtvSxi8B%4M9aqvO;3<izS#|v5|ZcJ&6dl)%-@yaI3c)>lR_Q!_~
z*T=DmY!5l01D?!(-WX=~2bL`ia!?^~Dd>t(#dLlaFPFy|D6CrUK1*;I`K?sa6>+t;
zF^LODX3yMgf|n7P;bj;X<{oXuy+hv+<lx}A-&TNR<B+<^rmp9&ESKzS#vUU5g6UWN
zOXeSuUJftk&)UxZ{*Ls(2Lt>q_q8OmQ3JE(=p#(uY_^yue|ev*Qmn5Y%S?QOvaSA>
z3{$b1+&n;SA9sYab<@h{au=h=+L?0Mrn%$HgGRBY1U8A?X<Ze>xTlP+o1$d|BLU_e
z(QO}sA`N-RD!prV+|P0@{9h`7^k#ru+WM4`!;+|qTx!7DOWp5_%Uwp5Bf%QtwzjMw
zc;n^eeHt#7z5{?5sOZx%F+KTM(q_6fQGR}Oca7cFQbh6<b<&;rpIWa3_hmd;vV_Br
zI^`tZ&y|+VPf0q$!qRv@vsm%@i{_M?rpJRwptC2M@&GK4q_-v^HLbb1pa%@mzCc}m
zJ_-~X2+8yB2VI%6a&tRysEw+U*i5!E1l;#WRZDFbTF-cutLJSI*x_~ED(ZZDG3+=v
z6v<Cx@-}W}-^w}ZyktKMiV<|siW4p1YC6^-V!B$yc~5~O`q1mQ79`3wF?+DP()SDg
z0~E<5(NC$%%_A7v=;n=~(M)?to@(x4rbqIj(&maI)RGp^rX31TMl0hk3^VaZNy}cS
z572k#cOM=Iiqyz2wV0M^hLEiyFg-T)NO%g7N3LO(svaZ3qFvH@FI-O^t>iJ?$qK*u
zPVC|^^@I>v_Ky5#b)LH)BX5YEbm;EwV#vkMnA?maj24rxu`!tn56iuB^0ssFwj&z`
z$D65tosgmUo1`|iUs=`tFmb+nLwQxd<<9>#+3$G_NOOF5Wj+H<FDf@WUn**9hK!6T
z&DPkV_&8|o7nZ7JgDfWG{-yL~Elo`p(B?`Vl6;IQmx?y!lsC&G3T4(L=jGhwRrNn0
zH%sl;Yd4KwYM<Tsz>gT?%)~kilAFq)3rs1TE`Iad%u9!sBvxn0sl&_mwq?j#RSIkH
z{XBDI5T^h1r}*hBHL4}^g{|x1X~mHZ-WSPju^I2%*534kpfS;YXcxqgb%E*TIYxJ0
zaVo0hyQ9L?!_y&VjvTzFd)U+xA?C(>yu5$L$NiU<45?xz0Ted?P4|(cqGk_Aq$jIQ
zFa$lv$K}K$@A-(8j$3Nl?mOS;LKO1;p&7hd2bOB24ocP3q@bl5!XT&-5vXfnd)oUj
zPcp1!>Fa7y`D<ZN=!qN_oHN>dWx5!_x98BBc`${@K!TX|sgT_~>HYXpXQhSm@JArY
zPteTY9|*)%R8;gq5#SslbhokXeI4oT5E0&Kh|kGL*f8Dd&gHb{)v-Pb)Lm6>14ESn
zmL)2@HtJnUJvMqB-*?K7I@=m4o1=|iHHe3gW4@X(&Sd+6uT2u?MYW!cVHj;s-Z>?+
zg3$QoW92THWYO>4k2t65wscbeOddY=H28{X$J1(}-cMH05VyemGFX&|Rs6;2FV^Uw
z-U10Egqv+JTgvt5DFsYkS)sE!jx{<*cNA}@Ds_O3K|(Wus%h26`cH5U?-!N40}Pi9
z&oNR4Wc9`~&;4&v0@zc>yIY`fUdpGzr_WU%#|-q=`5&%H=3*R*9Q-(OE}AO92<h9<
zd9a%GE^1Y0{3d<X&DtJ@(l8XeMS$bIwPdY#69*gp{RyfIJ9HNlFX`UceQ>ydB(D8b
zNdjQd{jG)T7n#kwnnP`-neI>C2Ve@z%H9LlgZmdiKJNb847W@3G@GA~JiLvqjq>>}
zdxnZ7sFwJ(D2ksi)&_59{k4b5F=~1si+gi<PJeAelx;_jc_|id)x~obr3At}DX+?&
z(RuFlIIgI37R&Go{i;!0p`WfMA<e6kin2+3gS2Q7uCYH>F`J?2>1#qBle{6`!ud1w
zFpaA=c%{1kqHo6pdb963Pl-vujt<}$_(M%i4e}h{K~K;Jd0W~o@*~xZm;}#>G+%jb
zn&T^Jg>vm)Rk4PrOX!bvBlHzMn3xHLhJ-u~7EQy6?ls0uFu|f@#f306Z@<;%w<b{n
zSuhu(Qh3=9$-UIDnxTvUP^mMxkJ4uy;eRKM#81DK{!`qbk_YDT5rp`FI{+_nafVH7
zaadhzcsd%7;(Gq&M{s&yy=mAx9IM*y<<`F?q4dfHi)*Q$f0|bGqUM7BF+?7#U4%Mc
z3ht9fLpK*g=bP})52G>!RgYm6AQiAvKer~+%WE-K)v!BlS#?`n_#n@Jp!@Dz{CCEY
zZTH0aK{rpGrG<rpmOIf4UAtnow}%B4p5tttTlYU1RPZ4gf@xLHl6Wg?>HhGQuy1G+
ztm8;GP3Cs$CZm<yHj-)VaZCVND70{422@|kktGwkbLmsrI^&Aeox3!fFM^P1s`@K_
zH|fVbrSY$@OA=+a>G4fB(s_0r<9Ra8`Y2{&SxLf~Gg9JogcHhIUuMj;6{{7dqFBMB
zoL+LW#uR(z(r($cN3`YZ58D!7u2|s6DaF|1v7br&3iA?HvJV>QofR;AuM0<}c64&g
z$tE+I3F?6-#Q_1ivvRIo6SDk(K>r@mMR4vR&s(_;TKI>xW_vW8Dvht+G_z-f>YRNG
z>Y|sJB(}onj|zaVS<r1ku4p|?DTJP^T%Mc{NA5m^z-90N0B+bGkxr}2nMI`%h_oN-
zN4Lv34KjHUjjrT#lomb14$&Sm1Uom%RzJ1lcy_#w5AVmo$?up^X(+$eN9^CyH9B}?
zs$WKo8IHYVuYO1()#KAYP2Wh{3DFVyGO82cz*JW)Uq?RQz0Ctx)AW%s5fd-)772En
z_(seBxxtBh#}6E8y+kV(lhIMl2#}W#=v~x&O9O(5Xc-z{@(DIuM5RK8uj|{hPgWCc
z%@A@bDyogAq|=Sh%9-24)<EExyY{<x3J!xY5%D_Q=irKp%)aX|yhp|ES~PoJtnzrL
zvlIAnF$WuZz{2HS?E9BdajXH^&LEMU1Z~@R@=5uP=|J&uG1>du-zBuOMo~#(lYE@(
z+h<0$y9XUlt%br)I|7@QKS$n2sQ2j;H_^T}s)>=MM+IAM%7NsWq>q>svmx+o)*cw@
zV*YhHec4Jip(u*-ey{KACzBaNEWUXyx^#+4-&S#29Vn7iV3ke+tE#_x$|_1Uaze-l
zr&x6(g`LKEZ7-5IS2&)&yR42HvfQP7Bm022oGiI_Y;SMqj-WRpDc=7hPtZ~?Uu<EE
zK$gDJXWe#(pXyBbTj)ONQsgEx8$)4F=|eYt&M-Ip<mMd9KdaaGI;FckCKuzqDDuMJ
zR2)$6degG$Z*#HtySC_ot8(%qa$~Z;8`lN=rmKj6YevanQ=3oidfjAXfW2)_cv&7;
z#q4ZhE71JwsI!`X=ulzDZR29)O+aHfVb@t@j<JHf@B)p>b@Zk%JYqb)-_a}I?UbKV
zm5@d+&9mfb@g7~_8p9Q%P=#zw=zine(Y^C?aA**9snP}BJcnrBx#5nh9fc923Lvp_
zX5C2gXEYGVlf7yGxw9L5Jknbh{h6Y+<Crv$?e+C{uj7A$jDgOUr~d|tK@)Snx25D6
zI5rxXs9xj8#VX)mkiozWHh$PE`cOyb5mn412S+E0Xo(z#VgHXcLi3iZl>Zo}M!<Hw
z1AIcrP9XM=5K$X2#rsPyEp5m5=6`|u);Dt@Z8m%%J#JK5B4yAE&7~cW@`^#uTJJ0R
zE6#Pu$}Q65bH=`xIxHPEFk~%$3URTpvBzu{Su}oR8<Pp`rp^u5s_>hK?_U?Zi;#?p
zyBP`5j}oC%`XfDg_-vwDgg`qNfAzT9r3j<I*g}QSr7sC>%r;H!+$TXB+W^OP6PZl!
zuV&4_^XErbgvT|e^URy%9yapxBtc>l81`5JKQzRbMyvG!;nW01%=3=widl->Jw<ly
zg~eB7o=7r!*nvYp*Hu7lJMKyxCWBx=DaKrrN0?mPSa4*)yEh>4p$|g%UF&#=K_-(=
zE0gFc<8e+zoX3Xwu}zMLKAH}|t$DELYSiG39|nG%@sKVyZ!~Bl_g2n0K+%-v3l?6J
ze3^)<uuw)M?m8n!mD9?n^4@$fm7O_dG2SL1rx)s$h2o7IfjpE!PZW8C0;;ii<(gDy
zppahy79q>uf(nDP8zJHTHB`vEiw(yln^E}wF56JnW?7A09bvF&lmwN{x&ki=?x)8e
z|J|l;sa`Wu0<#k#DsO`&DFgJE5thS~W5Em7LP0xw4i6!6f_2C*Gx>?SRTIAZhJ#%S
zHtTG+E;fG%#Z)oNjo`Q=@x?XE;77>8T1xNCPM{hlE4qh)SWsg=Gc9E=(%t;|CMQ(#
z@HyqUQ3twko51f;LIIJG*HW8@rx7$ZiBmD|fu+92obi>P(7AbZc{fZHdsRNcKg87F
z7Z33rUmQ;r40Y>8Vcu%7MTV&yDIJaPz)iEU^<PLuv6G|SSoKTEmnOQtv=D90%x~wu
zEg=cz^?lm2>X6a?!%C;gsAtMjXZv6*-9q|EU@Jb6Ojzj#Hql6*l{~}&2>(bAbkOkT
zZe(RH=rhQdUK!!7H=6C1(U9W9Jc&!n5&T8J(^vSnc+g|~&vl}t3*Qt{D)`XRTVq#K
z=WekS)tPIzlY1abj_Xdoz04nXoX@43s$XFc>BEE-|7h2-MS(2(<u4p;zr3=`=Vt4q
z|Chsa^9sXfZZ6tfc!k%bR0arg9QL0+PmBX-3nI6lRa%2|aM~d!{~?C(z@_Etr|5%q
zFOts&N?3J)Sf5=c!g-P(8NspVdWu;tHm%OXLt^2cNc1TrYhQfxDp!@iWMqX5s`b2+
zkJ7uqjkC@cLo2EqBTLP^$+A>Y=bCF3!=vTDSi{BqjglS&(;7Se>`cs@jy=Rtgz6T4
z+tBvv$N{m{K49HEAGm0#pzAQ&auVkPD0w#z=8neqTq&&KQ~RCOwdolx=@Mz*p3=<i
zh_rJi%YkBl))x12Spa_lA2D7B|1<jyiTtg&+^f%47#kjOqiE<cn@!O^PX3#PmtjvR
zr4H}w>cZ`rEoTNk%60!H3#K&Ggwm^3Y2u~+?q_o@Dro67+lf-#WqpI*#074;$^Q|!
z(q&b;Re?Lscpx!lr1|!8nC0fD8s;^@Vx%iR>p*055-Uhq-wv=P;UpVMej$bzDm@{$
z(G*0`I*^IYktpqtu5NHX)AfltEm5n58%<`M7Fdo|e11$JMexwl|3!eRmhcZFqZ?Nk
zTfe73->n5qk{)?u%4mzpDSS_OMOn|l->uzQ4o9SC*mrlT$i1K^lSXDpZ}`bulEjW0
zHCpb?Y2!ZOxk0Y=hF$a+ga60YTYy#BHEp09L8UvTOAw^Hy96XuLb^e^yFoyZ?o=sJ
z>29UFrMtTuHk`G6U%&tR&N<h`_S&*H>silwW@gQrx#ymdYoyq1ZV|DOK?0plsyTay
z8Bt;0h^W}o(-6MkPW24Jg0pZK5CB-qM~G0}Xd0n#!8HXj$qJH9q#GZRA*giT8m@Ae
zzxD%O_lJ010mNeG4?G(~5Is^5n18Ymnq^AAHWLvDrHI1HyF+Ttl~B_Dt}Dh~EXdUR
z)qm^5hHI1fhJ_RD?Si)J@JB0^>hBiLzKr}w!+O!2SMXoy#9j4{R*6NEoeX3~J}A8j
zHD-;&bl{|tlzr8iq0PTNIaJ+>JnwSo8M!7Z>~pqi8&ERX<7M{!u$S7qVJGdJaPR2J
zz1N_Otk_6=brxZ_8Q(vWZTv|Tz~^KdSRNzZw>C%PvPZFs^f{Z1<uc{y38_U<N-Mu7
zqAVy%E9XFYSvzjDsgm9muZS(%s@(NcLErD0?dq_LyLMnp{^G!85BI%F)|GB?Bdu(m
z^zyql*_FDbgLan9q$pd4tLdJ#nv(3-$6F<00QQ0{9*Vo;cgI&OpD*DPAfR-H*}103
zBiZc*-L7>}#xM6q`SRK5I%6c`rSQ~xu3O}_2szY;G5DDJF>n^-;r^}8a-b0vi@p5d
zD#Y{xpCM{!)a4P0x_L9QwLE*O&RI8417CTRL7UF#(e`=6z$@|(F^v*r6Q8uDH7CY)
z)uK?oWq1`$%;VN5OuW_*W2X<DA#Fx^v#z}t1ij%xiiJP01&IG+y06xTFY*<Qc#HD8
z>7u*@$j;|DTBy(JF7SUA{|M99%Hx($8mAV({DbMn6p!SjmnB;ZN@0JMJGA^(>9&Mf
zA)3mUSnPmr7ws5}t1fPU^LSv;hH__37IkR#_0#5@CvXDfSp4zCjc#O4*;*};t6dxO
z6ItCC2d<wI;xNS>q?!h=`jJO;eiiWWdF;>KmCK!`5<D!hMY&4eDs<ue=OG52K7ygi
zuU9G*gY_vcCy7s2=__?he|Kh6KkhjrLpBN0S4u3T+j-tM=3$V}x@VK>j|iU@gt=@&
zF@OK)%iz^$wF%d6=Y8vEY_G)N(y9LV13}Snh!5prab(mFseK=b3!x#feJkE6Ej~Gr
zd-QI~iCSlDuXeiIOawsH{AHR(P0u@3Vnql0%omy8-9LA2N}k57C7~nF(u2PGgE)jm
z7aRWo`q?SE%~BUjxM9&EF<%^7&tpwmh5YdEzP>A>)C*f~t$hrbcXiPVTO`N-sv9C-
z%O?u=_|`=M;FpbL496HOL1Qq*Ll@0GpVowX8YeauFYqb-(M%v*#Q!NefPaE45k%sC
znjh2s?=9`)Y*{`AUyRl+eg3_Z;2&*9L~4y~uhw6GxUn*yz^Farx;Gu%%d8U$dx7?j
z52rORx(+H`JmOe|XX_mvn(EpKj|&~&C@**hyzftAI|(=`H9ler?OYLxmC=ib*$BSa
z&lLZ{5MfV9HgoKE20FxT<EH?#{qCBzmVHU?L%K{is*VVvQT6>ZzW)CHn*G$l#X3vj
z!1eX@?D5B7W~=5Q|5{pLa5zb(UUtPi&bOk455rL4d)Nw&*8t9sW7~A~^eHTZFj;Sg
z;a8zg^ild|q&?s`_gd;w75Zi9CJodpIvi5;gkT(?T~w^DNGS8c7C!cWRw))t@;a8y
zsACai2-?EaxR<~r*$i3`IC*%CW~vGab#)_QSFLy1YvF0O=K!O1V(i~y0Xosr{g{On
zx{G_la?}2CWB~WH=i<8ThKf9bc-^5)80|NN!$Cj_w|b$9gvDkW0Yb=Qliqn3;W+T?
zvqZ?@_#IT^d~W7w<!0Z01pX({tNdlH>gVU7dCP8GgP!U|KLIiO`t(!k16a{&lXou<
z9OSXqTf6qPBty{u!tJ)SQybLD$>i1666rN>eV?p%WdS8@A@a<PvvI}g(##X*>bggl
zhgU4xQBg0mmR?}|bY>3dnJRHFH<~CW`?C=5|8J4G6WfDPlBlgIjUfOTo?)Ry{Dd1I
z8H^@Cm0-QAtyrF=_w7+9i2){r%y(A>tPSW#L3E~9H&4q9>Y52$7tSOm#!3f;Zhpi)
zC5u`qgx=_!>&;dmS*k(Dcm}g(?~ORE=4T5X5WmT&uS68QDs?^3-34bhQ5TOH&GL=Q
z4>4aNT%nsU)l-4kEuCc5kJB=5_vB7n^SKRG?j3cKqnt%{!9I!<Xd+MkgG$rn75~>7
zvVRJboE(gerv7NGCm<>t8ET=mFx^bPx3_n>b3zP<Yg(tqcD&!uv(N^6f^X5u6i{Ln
z6~TQKmy<(mnyqU&oPUUtg&{(|kKfjpD@7c?TJU`qb&f;*@c#N%dMv}o<7LxCh7bRK
z{e6Dsa8%%j@T28CMcCN($2SX6@89<in5*JZ?r%%`B9n-5aI~m|CIdd*b~<6_-0{bd
z%QIV_jY&-I_Sf|WSNqlry|ub9J<P^Jh6x|+E!;;F6<7_?NOjj}m5tAl)Pz&v+}dPJ
zC)JaWUqD6MT5E{W!F;2+&AXN+@2z1!AWlKy8w2(u7%VKVq#`Cg&mtlDk=&>~IFOFt
zV@~y`4CEQY@KGY?^dMIHVXwF$!1wMXt7AClOS%Ie0E}(Cpq6awB=<#)61ht*_nzf-
z<tJiO-2Ii9m=4WiHFz)}ykjMJcWE?GQJ7cY`j4yx(EMX@jYV6r{wU28HtQXjzVI~P
z;h|TNjUihZI<0{7*zk~Y@-t<{17<Jx88xNp`>PX2*iv(RQzEsXkCstD7D0KYpr)n<
z#F!7JE*<a~w-115v%2oLH)YGgYH0r{x8|o-exvY3-_fz$Y=)fN6BlB)02OHuLc&Rp
z`DAdV3Z?QY@QLB*IR(<uDl?GYF$|klsJ|{2&G$&YDxR``<{Ly3TtO~8JHd=8j*Pm3
z2v0Cm<z3yIWhj@cI$*|-AkLoR#1tmkqFGm02TmJ9Q&U@B2P{B>+Czoi>(tzxRtTC8
z`5-@UUh)@cU4^N<-$v{n^j-4k%Wy3{C^dYYg*5lIcR%uc7U*A5&8=#uh>Biu<23_J
z7m;x2-bLYTwH@&@rwTpxojN2KM3i&pe>3$M!aF&#oF1h;^s$Hp7?_@K-_ouBpkh&W
zU%-k=fLIU>NmAhxFl$Ga1V{UaCRgDdBD*CdBwWsJ6uUMJrg9N;n5K^w-U2&x6e!@k
zD!^3GBa=U9H<HEX%wVJ0Aem+}{$nbc%d+YOFc~!aBjG$<UCU3NAG5vrG3A)PrQy6~
z({x2V;F__3^HkyIMU!ucS>0O^axl|QIT6coE18_Wr2R20Fc$|-eYg_E#)*ICMVZq)
zIyF4}XFV0<EG+cuMUQh>q-8U`tJHU?pyX^ln2@Fmr~v)?pBrLLG&v&uE9d?n+lOC+
zo9pru%h-1U^8-i<m?l8}Kbj!^hzeNMj-+jZvr1yva%?^PH&F-M5&mp*(f+MK7GNRR
zqT)GNRh}%1#NSdn_D}z{3!U2j-=FgSXNL@mzC-<6j@RY){{Jf2qVE)Qib?-}%KYqt
zX#A~b9#&4I35}hcHJW+#U8{yNm?-_J1C6#@ow3>0v+mY+x;uZ*Qagq-Qv#be>{&X2
zzx-Di|NRXjWlrZJqMT|pR;+{4rg&5hs=RVj<BpL}Htmgs&^g!co4<SdKVy(+0{_7s
zN$;CEjn!#zGVb{O{1KZ*XgqXJ=}Z=O4F{T)2~*UWOkC@Vrd{5=Dq7D`g64*6iMdl6
zt1O&<rXhRri9!w;pA!)W(;gZzcqG%<?NW45afE|#az>d{QMPIBfuZa=7*?+#L?E~o
znT5Iyn{7_<aHWaD9&vM(mhENk{sEG2%j);m-S8c)d7m@fZ-Z7@e~v_8`3FHIBd$U;
zu78ZOhMJ9I$_w|PDg1%p+2Cdyl-R1hh|hfmO%6YGD)CoU(uBmCsI3&?KJ6oR{JBGe
zu6#v{)b20Q9NMcRaK+JgtBjJ5ZUXvTC}y7S-JI(rM+W{~O=OgZasjUyQlN&G>Ovwt
ziVJ~~+?}R8lFD3uix)cQQla`+j|h$H=dhoe2&8)K+9+9HEH#Rls1*sFwdxA|8Kria
zZZ&1vMQk+oJf4+En&x+<qx04KJ-4JCR2m;@8t0qQw8DT&rTQ5))K_$Q=WfbVFdGP4
z#Y-S!6tIe$$s!DbchM4e@$EU8xQQ(Ykxp<3afBAgG{OBmnMN5Vf3W~Rnv0B9i<VzN
z<Th4Bw+cwt8x`^#RR8#evbLY9`W3Q#Iv-bRIam*_&fL8|>8=#grDs!}&nKp|(Bwwu
zVklG2KymEOuFrV#cM3T`w4)V}#YWJ%#7C5pUyGn9CNIW3!NdX~MVsyR!Ua=-Cx%Vb
z)Rh4_qOZ*Iu6G9gqf3Ma+UcbJ6f>P7hy|qHTD;}?TxHOrAf`tTlBmtYskN&ygPf%d
zK4&rWV^B?jx>wcgR}oIT`<|PBuL~p)65HJuU+7RG5jSu(Rfy=dT%O-9+sTvlGlp52
zB0PE<`)O2PqM)RlR*~uny`1s(cv-p<X(QgH-I`$+M^@%Z;%njNYcszP*ir^}C<VPH
zn6vk5TG1KWC9b_TJLc;m*O}4AXOvJ<vYe6LVoe$_6Pr2C&Cj>`{oCU6@zZ}EL3B1L
zax4v#?4!__2XEpzKMLZ`Acs8>?0ypsfC2trax`~wcRYMw=S*oxC|<miyAxkgFT(w@
zzvjq<<1*&|uD9&@gfsO(*kN^b9+Vag*)=Q`4I!d=@eKhf?w2)Ttu^7m25VDS_;k@o
zwajS7hEv9RK#q*Hr&3YiuC!ir>#7Q3%&5}go52iiUtHRMS0~2~ERQS=_7sb-7~&|R
z+?!bx<Sr+(RNB$kTH7wggemCHHznnMH;w06w+<*+Sjt<Nl;z#Z;BCY6Zmobc{(G^>
zEp#zB8ZknH5k8DA<k(|Ah#yE3<-8dr&+mX8OJrSHkyMUjU*u|M9ovghWB=X*Cw38b
z&x$WOy3tPgXK4@H1Q}E(G1t`388dKCEP5YT%G3kAWm;IVb@Oo1G54H19=Ma^=)JPS
zzvK~j%F)kZE-EOjZ@s-jQC3&qn0EcYGT$|mdQkS}y5LQa$fOksD0;+ec7D;yzNmS?
zdW<eHMBUgcLJ?O?Sb*~N@?-4jBje|iR8?y6PHS;Ul2cV5<4c&1RS@K`hGK$cxggY0
z@u!J;g(%SY>ZQC+hnY?ED}+}OaG4ciokfU|QdC$np$fSp2dsD-!GEmI(B|~VGR&0N
z8NY(~9bTe2RLW!Fxw?Uurk0-wQ=q4LXaEIdZRaXPPfdeHisNXJRu^|&y>mP5UFUH@
za?n2{N30eRZ~fh{$UH5zO|D8SO1Q3$e|TyNX;Ks<_ElYw3m<DKb2pF-Z!V@=IXB!e
z>(9`CkcNYVNrYfNW0I0HF&Xfo#X$m|F6F$><dhnKogDXk0}$^&LYPDMnZg|*rr2$(
zK|)oW$2so#^RPh*16ADvBsSIRqU%I5QX+qAc&f}rI@vs{8LX$T9ELiuo@R_?vgb*4
zQy8eA(@zc9>uS~h)>MYj@17cM*Rd2`4{gv+gkVyxLASZ*WMRshBZB=um9STU!HuPU
zgsJvyyg?v8rsWGU=`)rx3X9Z4PIWPMb2TIrqdMz^tJhL;-8f3bv&EwsMY}%PV!zoL
z6NA2|RutKO7&O$n`<g*h{(avWx~a@Fb#6LcW&)SEhEGWiGCW|Zx!{kFtiF?xw$037
zg>zA+$Wo}j4g&aggVr9q6598#8LAg*4s0g<Mq;Q{IE@jxfn!O??(!V6c-Z943#Ahg
z>l8TnwDJ><#Bp5n^KP!{vxbX#H~^H7$^HgQ*uQ27))@6P_qfmjg?IkH0z+1{*P9lH
zWyst2s=Wyy={Jiv^RC!UcOQ#aJga>%ikq$(%ChUNwJ&N1mjd&>FlTgqh;}B5J3-cZ
zE@}VI#ukkURIf;PQM5*PWM2xs3!y<~ghD?>IatNL?)9r;d-ot?8bi2H3T!z78QeE}
zThFb)tdi(c93EP$reMWhFTOq>6~T<x#F6Uxaies?KzqLY&2|F4khGa>Bk$7(wn;<5
ztm91;Z`+gC473j;tTr0hY5*3^n8FTd%4CB(M@J;_j@5Ti8|!<wOfYZ(fT02h4e+D+
zgPZUeVWM;meBo5GJ=C;oMhH*E*uM&`;kA27%k=ovMY_5gzY3OhPb)A=7i51uQLEJc
zrs(w1$AdbfLd=_Ei3<<^edO3LXyjp&B|ml#5NeHbO-w|B39PEgt|~y`+m9_F$?QNC
z;cwGdq*ntoH!80=5xb2aqc@yzzxWWY!evPFLH>o;US-oA|E@9i8?$u(7;-56QypI+
zh<<03Z^Q@|^-zT+!L-XhDwAwgC7C41r-T|wf2rZka0P+h-)z+Oiy75+HHFqc5o0&9
ze1!*uZ>#_W7Qhvj?rwY|jHF2djiN|{4}31_H($^I@3~~<Y~rXKfU@b*?Wi)f?`c3;
z=g{fAr}v)lpZyaF?jh)l{`oT;tSmX)R5u8e$wMFn1L<L)Y>Xl`<(t%=rthdCkEa!^
zdTqdUctv;KXCA=%zI`w1Ks!4l^Q<Ggek%qh-q@JxNJ?2iI5^3*$Gxi(If@jk$}R^f
z&+(IUnO38GU(lHTd;VxDCidN;^f#=mYgSxoq}UouNn+6$k6w8q;s@+6Y?u`}tOi}l
z?NzUAuxX^;VO0!2>@`*yDYJUy40d`{LYuF}kE8LQD&AfV4#JAsg}C>Gk)rBfX;g8<
zGbr=~WZcwnUWLZ!3Z!DachFKNqJ0(_BjB0h6}`}3xLzEInjjGDeyh@p{IhD+6)Rar
zuH`Hhex{t!=(X#oPO~JD9{cs-f+?@ExY%T~GrQ_JCOVX1wf=#11C#0RTd0$!LdW2U
z!b@l=&B;#~7=qp|V0$0~a>Ag;QK;kxWzMgN!{Dq1FeJb%iGp<ed!@_>9&&Ho+-zye
zDif4DLC2>M{jSMU-U>5}d5`U95h)yW6;VfS0xv$uld!2ieL@=08uGT4pe8CzI(q<d
zkW|2B@yxd=^5MeUPykDbM<b5}+bO7Tx%KYFPj~2f2CF>|c!&b4%{RNqY;wu^;}8Y;
z1sJoOtl}u?pMD)Szr4YRY*CDFzxl4c{5kntz9Fp))b5is8+D@JUT_S;N}~ZOfJUw1
zLs;cLu*kRjOO-{>w46snnKa7?U*)9-Oi#Z}(j&v_qnG_azOtOuwDx>z?^giLCxSAC
zSLy|wH8N7$p2@x3qf!n^N^6SQ2o|e9<7s5SWj|@BA3pVD7^P+}pWmKe$UYyrNL;`{
z7`?KFi=-hEj~+wH*#D&FGMDi2<&XG1&vVlYM3u?1PY6y{1<Y+%NO);5%l-%f?1nHx
zt^A^fvSJ-d^nD^OifU*M_b2`UW!fL~7G$|eQ50KeVgq_UJk`&9ot=#9UKw_wyKb>$
z4u|Z&be_VizW>I*X>3TZQ}fcP&RKp`)>*xL!lnv+wAfu)?`YAc{H;|nnG}ie*!y^E
zqpl%?P_E{XWwCZ%m)BhAm6gkjzwmQ*aX(N=(HDP3Wm1m19178=!=CgQRlHo(as6yH
zLIV-qi6nK~V$}O3r+3dU?X@YflyQ1RY9;l2QnuNs%zWr45)>F*(35BJbX2JmV0LtF
z&`Egx)b+gaCUjggj-W;V>|ysU_}VOvOMNLd=XE>j2cU%iSETQrC}3#<WRYwxvl_5c
zRLF=BLUHZ-+j#YOfi0HiTZjB4D4>i23;~hgly0s2tr1XvrMu3%PgYrfrz`Z~f4Y%|
zPf3MTI!HQn*pw};AYcND0AyR3M576}L{wGcTZw<zU#($to;}FVA!fMpgvJCb=sd|_
zc{cOD@O+g(SQN3##$HL7C(q+$?#Qd*4`-|!5Xz=}0u^$fiQwu11vq-JF&a~pdf&J}
z7B{<mqzvM7exBQe(#}2VjT}Iou{n?LI=+5LTj=4XuccJ=(AJ1a*44gER#Bj|KKy&(
z_P1&)Pwqw~o6g7g<6Sko&%&&GGbp-;rP)*3K7A1bG&ZuiR;Z+E?=R3B0uvJn-=i@G
zf=U}TwfC*o)}htakBKX+8=!q0lTB72FSO1>3RJJ>sbY)V!tK*47OnTyS?(R2x04d~
za!7U9I+>bLkWb~=@G-K+qG2(R!+FmG&~r%lr%b+*jEYK(<-!8-6J-t?5?C};X8uno
zJ$heMtc-wAz$M*Y&%}flkTXIc0GQRjsgj+srRDrD&x^9_bOG<dtYeAg#!I7V0JvH1
zrpx>ZSfc^}3yBmUNiv)o$?e!uAX$2uiOkt37WX!@NbU~H7CpHpfN{Hu6%J8-=%)zp
z;sv@4m#ERH#OgBk;MihtU6-@bxgs9z8}iCC)BJWBVpYGMEm!6wMn?1yjO1F+UgAKm
zx@#3^QuWl7V^00kG3rJ!R@n2<FFVUkVigFnxRAA7$uwyh<zvCL^;FbVpV2?AEBeTY
zU)i7VDvUESEl5r?sF(S@i&x$j!-Vp6W4Q3EG5)MCajARz+H?~iD+qTOt!~B!oXTEp
zkJ5;LJ2So}rQZHPqT^N+*H>H|8><>0pO_bHd#T669y0F+|M>2hfW&ivk6vI2VeqaD
z=jG4Rjr2fx-zyaK#v^HZ@{ojtUoWT3Z5)~<N(;{@miP7u*_|}#1)yPoKZA(2ot9AV
z)ynkz_&Dh9eE8ty)#76nZS7f^`INBE6^*h>{JvCoxJ;kzXA@08+O=K#%}PMf_d?_D
zqDb3+r|2r8wAI5_e}?<+dSc^fOUWCXgN2tIEscj@%ttR#CA}5Iaar@GZkM0V9v9l`
z-{0}T)j+*3=HP3bkE%<TSnhGI-NZeR?VD5Ge_a*jVqScOg*eOP3Eo%Xt=nevC_^<s
z{M~*k7p2s4qUfhl;K=%0x*(D*)E`9-(0Bl#1!O8lfOZkavQpK#Vh>~QY3k$#(b-Ba
zsBQ>A{~L_vDT45PB>mLb*s8+RG+;xhKWIY15WI}$pxue34F_0K5D#pSABh6ROG(KI
z<5RoJucX41*yhZVT{l<Xqj_t{Hq_I`^|)-%&8wShCc5aH4_8^|KHuM}rouu=Mb9s~
z=r!KcD)|v=nZ}Rzj$1@v#Z_$=_wMrkle1Fk_MOu~(q8DqU03nFef|0g8JWQ=riS8>
zt`9Rk?n5XYlzF$XGuR^tsGAHyClv=wLwfb%>|NGPrvi{AEb5GB{4p79k`qr+W)#?*
z14j2Sv>r_<xoY9~O`D!~FO114#aWIQjr#Of4X(LV%xVs~f6V^4%Sf^MTr&H0+4{V7
z{pgFVmma+VCNm`&6NI5gvuFDFgmVY}uY1M2{?y6%5C(pDM2TGr{2a8-2tj<v(CvJE
zsN{1qgtbL6i3fX?_Xqc1PLqv>nryS!6xHQX9z~IcpWj3EP~Yg5f61<?L0C&j2<77W
zTv&<M+S4;MJnTOn_?XRjQyG<54ZrCp)X$hbtdPa}ms}j3k%nf9<?6<aZS%)Ojq;5%
z4(LbV5bFt_QskvOAj4X&PVApDz!Dq#%?G*><h~>}_jeePb;r$T<64sdhRMH7n(1v_
zXgyhLNjDJM4uOC!;T=l84k9pG70coq?Zu;@Qv{qS5wawmb6=HM_s7SR_Umw5LV(%a
z9<Z0ek~qSrOBgF(G|O-LF#g1B%0yx8dp2+82WxzwaexIP1vzJdlF#?<!3Jpzpf~Su
z-^d67M*j6bB!V!ih=Ds;t#~9L@quxaP^<0F){eRct-`1T9omrryID<;Dqb-~L1?V-
z*9WoZ-hsjg!`+X#qS4SzZe@Kn><p#Jdgng{GArZ2z@7?t?UHY&$d8ym><VD4dBi-R
zdMn2M1&c;8n_|r`x~p~8Q&?-=E+B{GHP%&_7yErgKu$fgj+W4k^VgQ#eeLA!5JM1N
zi}oKFP`K%{9Y-0t`D!gZ%nhJfC(P_C=3<@r6xFQ?S4dj(=Ou*|-Wd@(;u$>6R+(76
z0eDz5@#lE#0Xk2WR9;R!RuMjHjMn}23QvTZ`9NV$L;eZc7N>BA!t7Zda%@rEal~Zb
zz<O-Pl2m9c2+LE8de8jmsCri=Tuv=MB`q`!Oba1w4+oHdcy%?(@!24ri(E6}C!kF8
zLk|ON%MUdPeiEj^<;?J&)K^gVW(nh?g=!c=2a|Sa?6+@2KImkE2qDwcm{HY0QizuK
zLa@RlSsT0-6^VQRU3SB94`a>s_MqF{x=X_yKM<FXSk%&|F|JF5LLQv__54Tm3wMvQ
zZf*%!&HWTpW=H{ceQ0<pY;=$p{{GzdejErFfBA+NAnWncu0N=mek*vm$dYjY3RK<B
z$Y<C<8sT#!T@D?f9&G{XsPipb{4?9^%1XRq=m}T)I!@<4ng}AL5Xi(aVFEqXsI%h3
zXHGs)h^n&~efnItq0QN-*=}7y@NCQj&~Gv1Wn5uJka0Z$Oq1{s7}F_?EwE4?{|~1g
zpx#R7SRvUUjTN87eN_UQudzN=NZ*_+0wjPrD|Abs8u6D9qdLrCT+pl=D^&;kU9!*)
z71;jjyjU0*dY)rhG$LYI%vFSv?|s|Mw;4qW+-gtLoi}wq@0M3FmGdRIyS&;W*FXA@
z{7p|vD&_2p)4Wv5Z8+8Sbu@vy?{wr<{r30zzL+26SZ6g5a;Kfdd;7#SS9H`h+;AoS
zH@L81QzR~o$PBQ|{6dn;!W`RY#12<VQ^za1ofepPmVc-BY;Q>6W@6?MbL_P5R8?IO
z8r`m>HtG89bj?!Ij|C~a>UJ(4Nvcp>xwF-0>RsHvDlwkTpGjWM@jWPvO`>ILTEi{R
z?8?{xuKtrSNh(5Jl`yvk(!CJ$rAd|Fgj$Xy9pfY+Mlx@*p|IkuJ=o{6G`tnq&z}AA
zM<d3ZDSKF0+`K=vaDBZKYCRPIPs~jbOH_zGt==nsvm`NDy@5tz6;{hXjZOoOgy{SN
z^{j7G3@B0*mOt{$i=HL3L7U14Yf_(RyRYRRE%;vJ=z3U$bHjKPGoLB0Z3(rXegbJd
zYQfV*_~eVDshZ{E-oueZCO3;-e6Q<QS#9Z>9Hq<mb00z5)OxFf*(;XW!}c9E%k_ts
z>pV6tiubj?_h}klz16H{;|kByMKGGZHpKwD8{NI7uqPLp#~~c}rIJ9UK2^-mYr3qT
zX2o}$u>3OqKvu~8?NxI&sEhzR=}NfXB?)>}#Ue<wPI6Sf16A1|W5<U-cSviN$XdEb
ztk;YLD3)9X<KO#?QuH`ioG&dH%y*itl*!{S7UYi$kiG@1L;H8b7;FbC<**kpQTLA9
z@{@Oawmu&L3p6ThFCQ3qd3*f%@liJ;b7vpQz{MoIpD{!5nUb)7FSDkf`+Zj9No3p?
z*_+E^GZ*gC7?bX=@|Xy(0~{Dkam5g@1Y1*Zq!$%j8K}%ePX*x#G2jg)*}|{JP6Y9W
zrQlTb@G$W)T&DWg=Tdy`lR;Oq?QiJi<#6sz<cV7vXRn>#IG>$--_CS+kg1KW*qqk5
z%Sg;)GaD+;+=K{Ddu}_0c&3_|gSHkHzdrCR{7muXM*~UL5Rt*uFg>GU$N5s~Yme^k
zxTl84Ibj+Vhr%FcHM2~M*lacTHpp>+AO2#_6QgB`6`aLO7SFFPdn?tm^YS{ZzBk=n
zGn#0%E|1wjyyh@xu-<rIuO(&KL!Etpt;*rBSuEQp3v4`!PfA*;ciypEUX{C?csy=d
z-mF!P{whD+Z&2h0m6o=>#`~@?nSTvIL2zHAui=)x{3Tzb8W#!r3iM)uW0cjo2gz-J
z%B=5vR9{98X?>s;4mS6cB)#_s&3Y{TI4fu4(ryIluINorX`g0_&;{!HLFGah{nO21
zdhNY=KOmiNYVNLyb8e84kxP~ft81-0Nj!hl3i{sdC5zm<m`rk*^)KrVGoUEZTz_`6
zKPS2ImbMHkMZABfbbzsWYwq~wa@);>JG5%jjCtBjy6n7!x{W#}wD!ji9Kr*vO%Fd}
zIGcu^UP3k|(u{!!!=(I$CyE2pzaotZWXgM`S5Jy}mQVW5`E`?QZI5?mQ;&J`_pE%v
zBl%R)Y3MM-FcC_>Q+jeWu}wy7l7w<lf7DAT*ENfD^-O3=Y6^!kQO;l27z*A#@80wh
zEx)JPk(V=-{ot*udEKTN_>D))TwIu_xvbi2a+&ph1)t=&&nM@YFDQkQNGJ<K>-;GO
zBtm%?T1eM+kX2FPWUj;YS}oCN##RauArM4|c_Z{yu^sANB;LJE-8gJHJEP}45WKB(
zdZv1O62oVX3DMse6j_<bl~=KwcSoF<xZ!y{8XcSZVPDAObAwYzzg*q-l8eP(ZrfY=
zV4uN659#0grH`4U?ePqhHdtBoc6I$k158fU1(769L%-;sKX2nu5(;j7Jk?CFoiKQJ
z^Ncywp3Nq$8G<2Pf>=G+j3*I-);jBca=6rd7tEvUi}sj|_fbd$DGG!hm@MMr=J&nD
z$zdOQkOkfDsRVC_0&5Hgw8zGF+pMeS1Bz;Oj=GjR4_hyGj)np;zGzi@kqGz*LKdqF
zVdRm)8;OnPO)bNs6V46Lab&?-W2BdSXPgm2r^-KWmmLLf`bN#)z3b34%L){@^8qGe
zPc5Bu&zQvb_Nc3`hkXzuSe*B`EBoj|fI$DGxY_Ws>E=sL4uZ(tA^ZUE$@82%k75}^
zGCbVVPN55?7NhX{Ftg0J9}HUGQ}gf;00rXtP;J{OvR_N^`_1o~js5!QgoI$n0U->C
zvd){}vjy)E8FEh&9d>qQFjWxN=+m=%92+a{whBzjrBRgO;!m-z{{Dv$*j$ZGO_#|p
zW<z{^Z?O`E?nxXR9qpIL;sj?JI>|g2i+pE4rftjxeQtffa*M(&DJ}h|%7!U+{lX+k
zFVg!xdMh=CQ0UEmEwQ6*YKRPhNPzXsU5MwtR**hxC~U-*CA<9FCWc}6t9QQ{(w)AX
z_20~_v;5qINB>E##D}LOQi%)ly^?1G?|x|2KjP`HCn6#mu7<-UAXwSMW3+4U)1+s9
z*0C%@#y#@{zuE;hht<dh+k0rOi}CVNXSRG2Gj~1D{WW7plnDC7-5UQ7=G!M2v(1Qu
zA{WmGgbuuRIh^R#3a_zcNZfJ7KV!n)La+Dy4O&C8&3o~88!z<xYA&&@rWzhz%z6`K
zy4|Xz%~1gq&}5S}aS^oFc{6bVZBY0GHPd_DVpqtG6`glc6e23&Eu`yZK=e`w>Xh!&
zK~&?r<n4BNCsngHepPh{yN2tWI~`0SNSsfHHO_AxYc4W<_3r`%hN^9Enz@rGrirm>
z!jdVFN{WvwnueG6S;H=twAW{21iY*cTvewj_?0J3SORjU<y!geFWs07RL|Zr*3)lE
zMLRhJ6-a7m4NSGkZXDq8>By&)eB)P-<4u0h$JoBQFr5>#fdI^a7!AG}C&zfZo<uU|
zH8ne>B6NG)4MFawg<mp*7YkJTT!T$_WAH)OiZeD%3NC}*Oiymgj%3>XGyC0g>5nTD
zOe;(3(YTKZkIOaWl4s}S6y+rbD}>E$Yyb;94upb_kLYuBvt|S&+IRCa{ne!rY8ns5
zz3ZS5y;dzYB-(XIjF8)wtg0Dsk&rvbAK1mcQtcy(g+yoCxGrMv$vC_~9^k*R>Z`ru
zZ-Ac9@Y=N4+Xr(Pw#kC!;-#UZTREhTY&#~<Yun1t^7n^-Oo@xU6zA(3K`QW~ZzX$y
zx&Z-dxZr=|Jo>cZs$++qc|P)Byinqe32jlm5Bl}#Rv-WY8U6moas=Y?%U~=BWOZZ1
zs3+`|wIL0rcgDVeZF6vI6z>CH!8KfjK(W(3PvmdkzaK5!`+UI3e<@{ZivP(%R$g98
z&83Pd!awlQXDuJ$@j|WerJMb5@+Q3~kbnRR(J54K+ZGzb>oY<F=4`ZGVUf&pA#Jr#
zg(mRg#o->$!s5D?ZR<~em8JVl`_9GQ1ii%^i%~eqouh7F!G}7ARPrt^+{`tHR2;hn
zbc(GX9gAe7+-sl7q7!qIm}NS1gPuri*4Nz{)h=jFSEgJ~6$IzY`{m^1y88OWSqUXy
zIFu1_13H7am%MN*k$m{6c}ruXFFV078}lCcs0hl+%6<U>D7R*0r8Cq%5@q*(cMw0L
zNYbd^!ND4JPDtDDc3AIfkO&2hL)~>vO`i_bFN&Y;Okf0tp#HMes!p{=3r}(hq{T(H
z-;=G%A%*j^@6^C?MHkw&yWJ4U`c&g45b%paI!YK~+YH4AE^tg@VkFmsPdFB}3>70I
zO6$cO0qg}CD%282=ik)-p;Q0pj2Ye^^g*&e=i5l#iOWw99Td4oZML3!ha3yBJFnd^
zyobs_ATSg7yvAD?r1)yiOF+)=paF^x&KJQJqxorj%1aY^2L06wu@rK<_|X({tN}DN
zbS?v7l$s8XRBpfO>7U80<*@m@>0PcJ$gb0*9N8CC6$qZ>U3FjM{Fbic`l6m(CONC&
z<9lmnfQ!VTE<D+dB>QcpicO0YK!F$_D=57np8m|DkA(BQ071@vN=Z+OR#tjq&e}BT
z4OGX)Fa5cV=DjMP=djczu4-qF1hZ_<^5KVF!Cb-uOnJ1M-7mChYVIO$Zu|V4`On_C
z%7}lyl$1?me)y1{o*n{;i1v~%Tf9A4LFS>R#vvj~DJ=Ua`y52fT4DAOAl6VHv1Uyl
zNxXa+`3yHFKc70DM4Y}VGa<oxK#g5iNok`BB%rBD!YD{0^+!8C0wU?w2$U;!m&If@
zQ?0br)DNepP6bQ}33#xM4Ps*cTM{FjXmfSW5`ZfYkb_*ozuo?e1<)Cd%gTxh#1KYU
z_`%#36xIn-8T+69MneE%XEon2WmI%n;*N`|(Nx%<<|}1nL|t^#TRD3Ky*`tm!4Avg
zVM5#L+x-r>N4>7Iln#GAJ}{cOulii!6yoUhi$ZmD1eEA4Hw_kmIZC)oJ=A@BM+JLT
zD~)odyWTy7`G$QB%k1E+6E)@AgiS5;@x@oPwgd9tJT!opk8N)?&VKZxV{}?tcz0aB
zoi}-Y)q7g3z4s9dRW|M4i<<(@77AM<Nd;h3zwn(Aa1auwLrOPjrTWq6J(S$R!J*Vh
z1_@o{7STNQJ!sI<P`Rx5<Lw!3&kK1KO-&2*MLY2cXV@?1-EWv+_Fupye$sR&KQC9R
zeT>k;VykNE4gylpA@|U8Vjzhyk8`$3=WOp0!V&>C%}fleUxJf>Z~O#GIt3DIIdwnU
z?t0M5y#0x=M6Av^wRG7_hO@73y75j=O83<@$~(IU(~YfF_$1ST%jN#udB0}zn>%6m
zz7q+{7{Bk}Xt>ZHyN$_i3>ADM(j$8I?e>y1;+V+eD2Q&y@k#GXZ*6Yj1lBED-HW@F
zvmc-OMBZqlL)BR-s+#GMWBuxUU$oGOVfus(bZLbFL@Vl>-@n&gR%Y7H&V~<&w(BD8
zXucqKaP%`V0VB@d`kaYL>V*Tls;a8;P_xMK$qCy<UNbOrP3|uNGY0szcI!ZQw-hi?
zum&Y|z_(*H?}&-Z2%McI0kygO?>}2SLFYXb^|~y^DDiNn^trks=xaLenY>8NUa&Q7
z4kNOV%G|Bp&;@3+6S!^qqE_!|Ff&xTnqDNXolWSr%d;?b?oO#2P983ST1fK4>a<IB
zK5kC#)Gb>pD@iH$haPA9CKul;V;dR-o%;LR!IuoCPvdI6frEe;EUsbKxd1pk0&WQA
zLqf<rAk{22ICJ%`N?%Fa_T>P3r>^@JEiUe<jD^KBVJIhm+VJKDZzWepHKl)B1u+#U
zIEArZJ;ET1aQCf$_*oedg<#%t|6n-#@q5&%$9ld{t~#f!0Dy}%7;HQj2dcAweM1@=
z)LL`S;wv>#<nHFsjRWlRN6U0QuRFdwpN$7FFQPBio7QEQ{+FVo?P{cj%{ytwT_$9R
z^4mK2?ovSmIVB~T17Yuy4c&(|tFiL^>c8McQ=`;>;<Od@6<s7aQY}de`1a|kVn3Lz
zqCp6hlYN1l>RaVFeaaGcReqrK;zb!#`Aoz>)6w^94rwugDJ(_LSSGKdsE;g!oOipO
zgudVGCL3P9DC^uY4cX?UettgK4SF)_E+ZqPpU`5m`p8AlAOZvT1&aBQThn)FJ}T~F
zZuUN4J!?`VB4259w%Xy|@xwwm+JLtOb>a3c3jN)(CwJ&YYE3R%sJ=2Z!;$AGi2_la
zMo5U%EZrU7Wp~nl`x}F!r_aTHS8s1COd~;KZlZ(68+75j%~rKebye*MIx=4paC&UJ
zIcOyIW?I~YA1XIfLIoQfprYzcYWCaSW(aC!x?EkjmsT0ZSK8B5Q^UWr8~Sy5(MfJ_
z70v?4e-J?c^3lB4iZh8<7iCv>X|v1gj-UR4z?0JZ;dX-Nv^Db3a}O_rZMM>q?D(X9
zB^yJeEtP9wIh;kfvzLV_N`U2j(oyMjYxFVLY)F9P98$ESQNOO`b<+RN#6w<Q9uCs|
zto!SaA3t}Bo8AeSt`TId{8rbM28=_Q+Q+;;P-mP-!DI7<1sl$NDXl824lwu^;5*v*
z0%utIqcG&4`JPOzm^r9uhkm|^l)T}d490o7d$m#Geo~Bxz`5#jmUw|csS1#l#cG8u
zNsQ{ty$Os*(2Jenk&%Fl1y2HzyGwZHEIyRcJf%+1h%+3G*oSS9@fmYRoP6RZa4E0T
z;Sjfb=tUo}fSE3>gz1N)O7|fLO<Ex!HEQGQ?M=G<&Jqjt(dUN`F1NqG(Wvjh#*2%K
zvtLz_G5DRtc(j(pXb(0B*_SV+9UVEoF)(5wK8lIQZE*z_G>NhKFkT4{Z*9n#6gU^=
z@2uKp7}e~o`C%OXi$|UKE1l#%KMC}_A~!O<AKjpmez<Evy^4>=C9(VIPk(!D37Z^Z
zh?cUBPH^?Y+h1X|2uGgpO=YpyT^-X^d_!`%XpSrK88#pS$C_M@O6edi{o}&$yB=Ne
zJA`_!9>F_Xl(6$E?kx9LjeL5qw_H8YlHJJoJYb?4Ad6t=t5l^l?)pMO@As88wM}ur
z*$B^Z-JJXrtr<E;&$+@l@0XoVvGc3HcO|w@#f-_&BDOHX9GGsptbkl4VFR0;xq6-f
z!5b36yG=uFK2Q9}ET;$Pe8$gxuGTix+JEOOk%L|v*c10>Z^wTBUiz9H)ls{V5d}^!
zjmXG$z$YucjFGXMq9vflMAQeTwA5lgCy7zc+pP$WVJ;R77G_T}`7Eyo?(Xiq_buV9
z1}&0<dxlBOI(Cc6B8y=F34BGMZSF(O%)x=Pk>Lxs-?(8jYd5EN6cUKuF}xD_%M<8@
zx~|jSG#<~a8#S57BAm8o|C>-rD*DX@@+4i4+T--FPNkNM9RT1@CuVi)!X$BDRk>VG
z`#sBMgdv0qTItm6#u5R?ptC(m`vaTrWuWa%Sy`FgNX3@M?Vt>+?f%D_wW_PxJ8(<o
zgM0+t-IRj2i|{b=TV2qwTv3FmprBw9urr$uHar059zd03tL=Qo#VHVb*#BP7=hxne
zE!PAF3CE-S44+4^Lr-418#V}j3^B1_ko%ruB{FLU>}*JyJv`r@BlbKHBAn3nrrqA&
zX5CLVvLBY>z(hUf2wt(^0d9G?9GyZ(*+y2Y>rPXv^@(luo`}IQZo_2@`|U=YlHD=6
z(ywUm^QFis&qK@;=RRr~sfE|c;A9(@mle@Tt`i||svWvQm*EGF3=6O7Jr603N{_=?
zN)DSmhk;d5$YlS0o-rHIr$FMk>o$9KAy5L6vb)vycgb8ggCi6A#0%*<;3(z>&W%I4
z@&pRWZVmZU+dx`H;XhS(N{|n`$9N0QDy7)*k9Q-*ny05DjDK^ao7(!FH?URFViv3<
zQfy^1t`L%-jy2{vX&piiH!jyeYX*zDh+&4c$S(}Yd0BajFt7z)H=IYkzDd8XU=UNq
z&rCXOY%4%6r@k(HNmY_&SHPb|;o|z*S@Z0Ph0a9(!687Koz!dX>dDK8Uro%;MgaCF
z(9tSoCxp~Rqdqr^0@2WQ&0h+o)Mf9<toy`VSAXtQErQr35W`eTxtgdpm+W%H*s{wn
zGkvs58@<v6-=)U{+L!1suH3jd8W!Rxo(Uw9@cwZwD(I}T<Y}MR_G?6t;zI4CVvu^1
z3RGv_mg^~0YYAV5wLUwTy&l$Gk>%9Q^q2MevtRttLlPQU>_U%{^A&w_Ywg01t$TnH
zCqH6>^IMQowWAh!@ik%dM1EzP7JgT)1Z*`VwJ6fO394&42QE1tsaK8&H&^5hu0EA~
zN>$``Q%)+?;69WxDhc~0>}Ob$QY_XSZ#kkRGLI=8UUy{E4Bymn<!oPaD|D(Lj5iUO
z0<dv0#q{sLA~9$3$fQgm#GZ0>khk^h_^nbAObCLXV3;G%jSrgT0@DZq6fX9%(KJ@%
zq)-2t5sJ_`v;xHTfe)(~k#`k^a*>BD_lNg$$5mts__o@l-9?6U|4c*-v#kgbDfZuK
ziQVoW(Q*@UP)upYgmKf0xnVtRY|8un%FEs-QeWLry(;6+ykJu+$KEuD|L0o&`|l-G
zJb>o!;D5)3&DQ!+V_CxAzYoa8@uFsrsn}qY-Ez+V&)0%b!2|xgNdGm6WSSTU&7Z>x
z7+^AY*ts!VkphwG*N~MK>}i3YOYi^s#(%B?-k5WMh56qp{`vSzKLtP%|9?LS<qkxU
z`*+ZPJ~n>{VE?=uyX9;iW3nKjf*l+jJbO2x=i5KaV>W<hZf?$c0osh{52O?KL5rL3
z-g>4fVYb<{K*RBu?xezVW(xKw5x*3IC;mT|Th0N6CFN%QEkCBpRcfw@y)K74HR?{~
ztfniFL|;c}SH8m&zPUxgExLPT)DiJ3JDebGL!{1)&EtI2A`=i`6;C2422g}b+Ko?{
zt!(J|aL>>|VBH_yy|c8Nwa4KfVh2+3ICh#k7F1T8hra*!;-PcV6%`ec-2N1y2ogR)
zIs`fsq}Aok9eOm_OFpejtQQj_BZfDCs6$*{9tHHYm|?PJ;I^9dYl2=IPL>!z{L<4&
zB8Yj=8Rxxl2>O%#-+Wgyn6B88RaATkA+c|ZsoBb_g-ruQ)s9YBL{@qji`fS=xV@hU
z-|uonkO|ebj!0s*9pF@Xr}A0igYJEYlSWYv*0?Yg8fFeK_VDoVl>DPoKq}g7LVK<h
zfsCSDVY%qMWrT4+%7~SL(kCV+CPah><`x!Wtb|t86<42a7ko6pl3l!03mhAJ4Pty>
z8X8Cdn+Av-NP?cFebAe|Y7ybvLkZAFkcy5jU#R~nq9KnTDXxmHE;?l0??X$Acwfz?
zI7AeD+wLA7<IAT{5Yf}hA|>Hk1PH6avSeR|Cr(&0utNd5Q!oBUNbTA6e?qL7razqR
zOu&cw;2bBY>psH7BkznL3RKs1pTeb^DAtQ|U2xBD-K9k|yy!@#t+kpuaa&7B>Ys`M
z;-pbwM=5-}X#{)NJPQttprxe>$l`t~DZ!ixuTCq@6kdto5a1_55Zes^0f7I#IEb1A
zHqUu+tj}>0WXpVP>mJQFSXjDAy-^ahX8_U?RvJPQ0e}k2AR*8i6ow-(WC$d~HB!Ll
z0gOCTqnug<JQ{^G;r{d#A*)GNV`F1|P(20lE0oge_Xj~`^xUZ!aNBu0|L^;5R{u9A
z(0>Nh0ZqvBl#}!vqyt*|G|M3npfxaI*qpBXepM$Kqub~aQ=UZ;%1zD1g$KUcM&`Ni
z4;~e`PkqlL7r`sgj>6%jf3_63Um>ugCaAI_bUjt6Qm@5E5OWLuKdp4J;8ff($ARf?
z3k=No9r&0P7Nfa0JXVuGy?Go!XFZrwKJ2QroS?{-2c(?{Vim;iMQeeEv3i`EZ?R>|
zL`g4g+m?X5X<wQvpsu^ZhXq3pAO5$Af+-Ak8}L_9etMu$$pb79J`-?l$_s&D1U^D<
z8C4Q8+4o&rQ?~;szrA-HKwK$}It_<gf`MyYv3E1^m|P#AKOlayv)U(>ML?W=J`w%L
z)c$#fSabl5R|BvGhx-Bt5D3V?hSoaTvYYYZ<Kr84ND-uVhI2$Sr?SCU&wHSN9vsi+
zl)&ae2Gr;Y@SIy~vZL6miS{&YCW?67uQ?rWmSxDZ|2!*c_)j}^^TRIxBPsQ~4CHa8
z8Bne}s+iC#!0rH24z<l-^F1m4N25RlpM3&DV7J6Yp8Ox{yF{)yx|vY;9|QegZz@Q^
z7WrTQ|9h!n(;=S!v(<&68*zB4d6oXO^^dL3!Z1Z9Xkxg#md|i}%*yIHKD{t9s|07P
zKlV2Cl0vL3E^af#)#Ixrc~`d-81YivW#QA!ga6tJ5RL@=5xRA-IxL>WHKqp@4zTj`
z#Z<iU;13u8;W&I**Wj}0dG0D_qODC!^a|mR8I)+x>sz^Y%&}uS3p2JxOe=<eB)^Q|
zCirTF^Ix;SZK4o!Aovw^5-pTS;*kMAb(U@Uj};oO;ywEeZ8CIJ$2<|>us&KRXf}BI
z4l|q~y^4X_r{}2XHsZ+h1<Kzky2wUb89jNjt)i>;9-Q^YCVqbgiwnU-4vtRDjQsJ#
z%BjCs;@!K{Q?K*SeFyM1S^_WmN3FsmBNtG<D9;jE?<-8i)5dUo;%`w|#Vh8n`u#oK
zb<J{~X!K{9fOh$SXv4z6y953S-J0Ce^4#y07ZeWKI6mfz<Z11ewc$LG<B2;1YJ+I}
zaXPwIa;rkr`x}0fe9I}it=m5a$^YK(u5dKPlr$&jn31IlR?iDp*$W;nuFnMpNN*An
z=%>qw+~<ymtMx?ESi6Ndx9d*v3U$p<=rRnnWcVQ~-d}An@}mhuHZN6!e~(Afu@s-~
zJ%2eT$*(xgV7+INom8`2dzWFL=4^Q~T=3GFrm)tuUR7t$eEFG(?s16_Nwu}Rh{Fpb
zD#^*JcS;4?IM%^&tmMUrWCvOb(^R*T?K8SgPwS_@h$Pw31mt{EcqQ=H)JmEKA#`(p
z%5f9$nX4F{Xf@Z|LXS^MFf0zZ+nmqNuhpTI?O6Hwk|x6*bjWEa>$bdniO$N+l0l-h
zT&Z~a{R{sJ*F$W}aPrPfk;hF-eGwDv!t>*y8W~&DSGkoY)#dqfgIp)7=-7OtpR*-v
zt3s<A&FU%=&$|}f^fb3BScW;QZ?$n8DsaO5@TfAbt*nG%&)VN|NQ~^A#T#Be*)3mL
z4y!&ZxoST+;?NM+J`c<iE+_YFAXyogIURl9{>Eq7?dj>XDINR4*TR3DG(>T5M+hg)
z3svBBy$;y-oJrHTZA8Jo>v6GVX%o(ryz?^K&;+BV1Ag-W`gy2cLLy3w_c%4mCms6-
z>z0{|Y(w$FOhS*i8BX%FMD%Ik=yUCS$63iwk@V!&OVPVlmj&e+g_$m|$*N7)jbx^W
z$PDTeutc1xGjHT%5>zznj9V-LKdIz~csf=$a_nxgLTG$~P<2z97W6|t`DU(Z=Zw<n
zV-|&P)1<%s0>=^K$^_r_Luf_d#~V;t9k7w1+K$z?#|(&d3D4LLZkq}v#_#qSpd5dl
zr)dmq0OpiCaw#C30>}Q}-_=*j2ZaNRb~eWgiJvN_27y4A1+SDAH}$h;NOPX2k|4xt
z!x_{yS-iazk4Kr|vyxjbqJNENew)*JU~ZZc*vn+~+xd9=7IWncCvl++OG)!xFOib2
zo#XsXWuRU)%G^<er0rgp)6sQ(uyr`OA6dSlPthx?qJliQy7{_W`5d96Hfl@ihAOT?
zi$Q3HW&GYa%0U?Y!ciuQWG|0C%gRv@-ho0~6@#T$ZP+-Px=QOWcbmeQVo$+x&)LK4
zCyr_)4ym=$yYp^XaP2;+KNi;2#@m1S9!-A%i0;>4N$}T7KfbWKX$_C@<Bw|i@Gf%s
zEhnqiWZC61?YxVQ;DTjymd-g&QIglI1f62&2e*eVEJuH>X6cQ1fN_Ai`Pa_kH16pt
z87eFgWsrfLa{E#^V&db206bj3{R3Vys1Eix-K0c2m{25+NytDGE$5SOGa=e-Ewq|S
z*km=+O4iNr*`uWBUOwg?dAt64!l3rsoOPH?v=dHPx}==Q6-9V&xJ3V8mmM{k$iO3(
zB|246e0v<j#+*)h%@cuXy#{Wdbbf~X%!%P+24c?Ma`X37PYhc3+*~iOEt0YEv@gAF
zsBaplht<BsOq9iT@iU@K=s_zH<aDA~Y_W%JD&8KB8^L>ic}HrdF38=sQez{(B=97m
zBQ&P&*<?LZ_OZzkSE8X;7!Ga5v~V@Q;uo5whbf0&uj9~IAB@3=&LYsVz^k;`C3s6v
zqmmze9nY{bXL=b}Xa&W~Aa{B;y=GDp;QH&M*2?+S-sAAE*9K)(-IiGkiVbI~iL;4s
zxcR1*D-`iW{#s)M(E#I?$+xd*yy-!Kh$x8YM+#q?)6hzl3y6r2hmia5Hr?NO=28^w
z@K@pEN$Jgf(<-N0i^L&Q@pE#plBHTtC)qVOF2=YCvpe+6;KE;^w*(Y=ykW6EWZP?o
zIoEGW8Q?U}8C$>Ov@z*5@}oCQ=9IC;+${gHn?9LoNU$$n>u*GzUU3OuFpX-n-<aT|
zwHf8?|8bI9`O2NlHqx=-e6P&oD=KLRmyuLbvj0fK@mre)-bv8?CZaIKB2p$gqI#fb
zz`$2(qj=VIrKxrINTuV=(Fc=4t_PovHPTW|?>1_!KX#J2Pd0?^Kdy#DNj3dpsjY)$
zhFxw@FvGl&QmT86;M1Gm=p{4ybDyL4<Cl3$aXzXL-X$l!4|h_SVQvR{<-KJ-X$&^i
zCYr=s;{>NTO*Oj}ijqInbt4njk`xH5kYZcP5h*H?nZ3E4J&iFGGnubMQS*7zVQVkz
z@-f3IDR_^EnU1(2CkAby*QNSKTq|tp?^fevBO9#%K|?#EXPo;yIpGJwXs;qTL5y4i
z#H>$4(U~ZG^%)uG{4*OpPynoOR1%k}kzWzgl>sSqs^hhGZ0Uus)AR2tR(v_&TisBh
zM_r4#1e|sC==k;}=P9IO?yxF8Yx$tiJv^1@Q)<Zfp5(Y!p?sR0EvA7JCTt4X-ul*I
z`6M7olD4F~VLTw5-`hKb7CO;~t+iTJo21zLh)zpu)MjdM!|X}f&0Ntd%bh}J!Jpx8
z&IO$qH{Knk=v3=rl<JIfe)N?pS>>-mnq!Zj7}QvoWUen{Af7x#rK?L2J%66^^=WIf
za$e74VcTqj-t92L$X8mAO0J5lx(fuapJmw?=Jfd6T5+_=rfA4v`ZemA-b&s4#yXjp
zeA-$t*kMDkV&eN|#&~J^`q-)l-QF#Xv1)kqf?kVSwr83=m*QEu%!u#E>)yz{nA#k{
zr}&fvxs!Rk87n?n5yhw}2KIwNg`PO!@1|-8Hx5n^%2-{TVMin+(8tXWJxH8V@)XfU
zO`Vd1k+`71qN(LuVFBDHYRvzKv$qb5`fb~NLFw-9M!FlM8$?=4TDk`T0YxMvL>eWO
z?uMa}Zcw_ryF+T<^Lw7>eb>A8-p8?y^@oK6^PQRdd&hO1=jX(D0@u!Aj_?FN+k0nq
zt`szQxmvEDXiC%&TwGizX{z?DC{jf4jA<&UsC+&;{`WaKvxG*P7apv-tXDa?xtX9*
z3C>}uEQV%gU%*a2hs5rOBHg4cb0#*qRvzjRH?Cr5KLu$(7spesCn?+4$IpaCX#HJ7
z=HWXy{d|P=MT&KARu!Af*J>Z=1Zmq@ODgwr+-cqtqBn`sq`nA8<JE!WpDsqYrl814
zGc^qPNs<pZ-;_3CK`b4?781%qzM@F4HJq8a^?~KEV4yk<<wrj@q|rZRfeCXsYkT$G
zQ0f35TjjKw?5tjpm8T(xN@4qFt|$uwi@ISa3<qLA|0usN3(mTdBJ**bZv}1vMv`7h
zR5X}l%;G{h9j^eh_{<nXpH{7(E1~h}EC=Q4jow40Pf?3vLDIp-c+_N)mSI5OKtZk@
zIEeP2&1uIM7Z-Q#8&+{UTsp!Ix+bd(uf8xUC?vPk44;?L&sP+l9>{lUUFfFG2Izig
zbx=$F+v<E}laOZd>YidRo@?|reEN%fIqvIM8uXfx)|&UsYzWXTQmCZZ7n2yPBhsdm
zU1{CYgGAN9k;N<GwW>TbqSgyGfe(g|z;t_cqj|}aIw7*%J<#imc2z}x(nj;-0~{|e
zua=2!0mZK$nN7t6Z3ZN|x(O(qr!1L!y~D%Oy4Hw5m)5Z9bw-e0y7$%rNQXhB{KGBv
zb9Z-MPm`YAiGQfa7MsO}U?sXr+l*da0mRxdO)2Zkn$r5qS1^UNw;HIh>lMGn2PRfU
zcNWsTbjUM>NRk=a%YUB^9$;feM_-@yYGZQ~bfOU1^h-OXktwYLWKUZk@41)&0h+A#
zq`XwtGnHiElr*;6g$Cz%eb7~A6Xkrh&N+(3&W|RMf*zl#dAbd#(dEP@Ak2SaY7`II
z%Oj{q&)t0}hv0RME6@8!IZgefuq=fdb*3qu-Eni9gO&gEQ7&u-NXU!TIXn{%wX&-=
zL2i^DeVZ2CZt$x#DBFlsUj$2+?tL?+TRPz~gGxVV(f4gSd?PETSdV%=^jN_^eO*kN
zZr{u++`5>R`cpp-3%WUM`tqx-JkSIeJkxw;%k~|uwzR@7W-)2{v?tLn*H~;L4x?tw
z%+_($DLzM@Ec(TfoYl(bskYg}MJ%xi){5qsM^rnj_JoPKw{prt%&lkjYGfqZU4J<e
ze=0Fp;4|KLen&Ypt44wK<o;gn%{jZ_ovbjRDcp|hQH!->AQ6lpj$bK3TBqt}oC+Tx
zG&tq08kEBynNtt>c!9(JvsjKIB-Q9Kxkd}X&z4p5Zs{GuNlSkVx$SE9?Z>Z-bJb*6
zUa&eIJo9M9nG^hjbePifQ_6fgdry?^v*3KC09ocAm(ynor?)vw$3FD)*lD{T^+n@I
zz&#$?f6AMkn@iiM$aS`;{jv$O?KNKeio!k%tAaaAaH-D?3L~>v$kgaO#<u87Ufvk6
zYuVp7hI_87izw6AmtRyM4GO-tw*j{YLZG9%9LYB#$1OPba*Q8#o`q$SS8W<mygR0K
z%Wd&T4efw!hBC^U(AK)6WQ8ddSO_X9uO<q0S?(He(23?hWM*<0{9S*!zU6%c7xC}f
zU~3Fb3f%7AZu~76`@qxl5oR*Ucz22lBp6!y`lbcK=l{_H05}K}4HwslfaBhWI6~SP
zsRvq}cgeuP4zW$gt^2raK}qKw-J6ErEnCrv%I;=R^x`vjW=YVH3N!W|#_M4(k9=3R
zXQ?ffUXw_T9#j4FYr+Y?X*^iOwpw2$gU|h&h9teC58Z61Xr%l)M0f<t!yV2i6jL^l
zqUL&YF1%Yb)zfnMeS)MR<+7_AO2uX0CFzQ2_*dtfeD}gxip*}w+@{K@7YS01i-rRb
z>CuR^Vv`SW4rad~seBEFYS(*A)y$C}hl>2)H<g^eRMa&;o%$3t;Pd>wg!n+i8>-#d
zN*78?kzM+E0Ycjv61($QBt0eG0o}ohJiBj|;^ddp?NB@$F$Le!9fHldg=r1D6dhB(
zHuxeHFnvau9a8A!$f{+LgqZZki2cw#2);{a{E`Hv{l;`@YMnbOOKN?jsc>0-MXVi<
z+aF`D-Gp^C$?Gx64yR=vJ1y{HA*u6Hoq$n(T2dg;C4S1<kdi1+*K1~*&E5YkJv%L?
zUSROS_wUFR5)7Am+n>$9Pf31KnYVDNd7%4EpSX~iHvExx{{Sfv8-I@Wgaj&CQ&`py
zb#M#}2}H6e3-`*tr~0))h%XozxQek}TA^jyR_t+;P1<@Glx-QP{Y}yND&#s?8FO*K
z#t66@UYHnyA`^eM*G^FEs?!@g=jb6<47y|jIr~>+pt|`rZEiw05+Sq97lced=VnD+
zNhFF-NQ4X9)UuR)3er=*e*3mN(=FgI`5N@?b4mItmjZ5AK4LE}StInpC^@?Nme1|c
zDyyn+fqYZyV|TYg@tr$kH<d3-gZEMNcs#-R;R4JuO8G|Q-xU=?a4LEZm^$uDz%z0T
zlmKhT9oUMG5BFaQ)MRwM2!ZS>6sR}W*Vk$A!f6aojsZh8bNEzACmx)QT$8E0FiBR4
zeu<@S@G)4+d>^0LTi&*+KzAMvirl9iyI4t%8X<zV+YJf})mch3g(x#B^q<NKs&;HT
z;+}@o^n4B?zAZj4lIPQ%t#@x@9!;n6({t^qwD{D|$#cNln2MlWHjHVzZjmi+cPg%%
z;3g>X(zeAJ#V90BbEQ`(F~Q<fbL7e1`?p=G`|boD4AIOJ8N;(#CpB7|@3nhe65s{J
z?u13MuwJP~j#mqtj`Y?b%G492W)>f`@8mlDG5h5hIKzj~L(4Ew$bV+{C1g-kduFZa
zSGuKey^ovFtFkVKHy)!Ad|}3`e24PIF$5?GnHwt5)PvV+h-RgoO_d8HBx3P5#e4k?
zd3YG}r77AAFFA^KsUp}-4c}>8F=nNQ<?rU#l+GcE*XK;>NzPO^#%n=bs-spAm1_s#
zxTmb!v$aZ5+c763R8tvu47MV@)EAh<Cg=^P9fh4;M71vcE&cJbq%5%7D~O6AMnX_D
z-HCcCw}Xmo4i8_O^2drB$|{{v{TM^r8a~J$btZ-WzZ0?JJhe)taX#@9QablE^y;e;
z()M|z;n_<)=UQ~5P3r@R6Bu)d$|)SHm1uTLiBUNFOf!Pc>J?>cbEgfnWOAOAJ0`p@
z47EaDyhH)VU>T<&4X|3$W-8)fAbd@W+q+qeOPeF~l_!N97ApXyUZsZx9|Id(xreR5
z=-3!+1Xo3IaM+v40UZn2(rp+aijp^!(&I%hM<b%UUP(QC=mRKkkb@yZyxI5-<R4DA
zG?OS&OJKpl#K=?<eyf44_mf&S|1O6~f+`#)D<@|+aGXbLYlt8k8X9h1?(YLrrYM0+
z^92#WtK*^|xc1V9z6MCy?byYxhyAWF@?niY$_6S*ZF_N?a6X0)*QryJ?C7c}%WCJx
z&j%%oeQ_D&L%)Q5$A3?#5?N>H_MWh7`r6PI`%#>oT9-rgd6d^5s*d_1&(bOjB>LwD
znGtd<7N>2VGBc;ry)NC-xEx$+c=FlN&JaD__o|`K4(4lIQy5u|u0mc#>WKYDL~hBI
zwls^%b^Ytc$E?;vO`?Sd9-$g%a5;TF<1mC4q~N0^_Dg42BJ|qYdJyNS#SQ&tgt&9s
z2=(*;^O2R#T=y)ZLAzcx719qoT<2B_N}N=mZoMM4N^62UFGRolYj>Ls%0XerCn+zu
zXbo#~M2J|9_G_V00jXZaQK>BX<e64F^8(Q;X4uYVg8eD>iBZ!`WY)^!-Q``viw6M~
zqCqwJ$pxyV5=)odUN5&0mHWa~w6vQ{Gvj8|;u2<R-{Az#?AhgV%nFMQ7jK+$L!u3A
zXKtm)%ci4e##lC+C5G;rBg&rk-$FxMLbc>>Zi||ZEC$4)I+ZfL@(=U&uNdH!DFyp8
zGBY^Pgf4H<0@>%F>#IEdP1z$>M{&m%*=}4<*6(e*#d8Z!uQc)kA`Otc8dz(kECRd8
z;M%T?NU9Fpx&s8(;5384Lv@+DFcvC17Ljq(ExyDp@J%;Wl{!>Y51Z<*rBnN*^3DC)
zZWj5bRGaa{#IZ~scf2yHxs_QaX8noxZ0<?bL)7t&y3Ab39Fb@w5K?8o#(UMy5hmy9
z+1D#K6OG3&C_u-@hkkM4)!RELXQGY?HU~<|Zs{{5V7k^a4f)&fD%-n{yGseKceqa;
zto$ZUn4Xlq2j8}o<tRY2{tjr=Nd)ZU4;sLpfws&DY9a%&wZOsB*yEt4?zFI|+-*%^
z-lyk@m9_Os^_Yf!I=+7hI!$ExDapS|Q<-O=D)0noszAMaRcQAY0IY<{VoSv1(|^c+
zadX&sw0gbvMKK^i^8L12KWqm9s`#=B3L!WITr9nxkQe*7@ChRi_RGjao{Hn)A_^za
zm<yLMVz2CXRPb}wS0&Cdi7d_hwBPu?fNCW%A0arMG{iX8X1*E9?YnST7d73fq_|bt
zX;@+>Dx@O$gOqP_`rT_e>M`0J2u+1uCD+O2_BVs{$jUacCf#B2y>DR_@g`yJ?r%jb
zy<4U!o%HUx1L_@!QD|_^y2FP_5;{UXo^;becZ(a3J7@4sD*E-+C~79Q-mmn!5xKH!
zjiyt(OH0!#><&5#7R2>)*3G45Whx;Y>ZeOxO2g%HG=w~VPh7pPWJFe~zIyP)7Fy5Q
z$Hyu6(|?&grdIQCL&h`v+YKinW0qTydB@h-AG8h}?~-yk+|dVr0lj2m3*1t2u{d?T
z%V}%+N9(0-i#a!KxZggCx%?nqdE$OVSQ8Jam7S|K7GrsILuaJUx2uNn8F_NP#Yx}c
zRq-_2WZ>HD?3fKPecCECmdzWK9FNK$iuJ3>=!&L?%Vkic-^%L>MoC5&idiHIWR>zF
zM|i0V|EY31b$2>~&i)nY))F0@iD@WrEm1P2jJ)(Kkxm>ow4EwVhUau`5j(9wYwNsO
zeKB+2TVedZelY}5bg759!}iFUY=7gI$Gg~DW<Rc6L0!F`OaV3#5yU=L*8HN9nuVgY
z{29Zj+*}0)#!uO+)+#E`zLAmt86OY(mNwDbKkSC-alG7SaMMK$#7AY^HiIM{en58z
zg5#YAlieyDNYXw%r+Hso40t@a`>jBZA$q}3{1_ks96&Mg4BjR?zUS&M|5YLBEQLpn
zMWx}8SYT3`6dKP0e!GQ6bZY%Cs0py@)M?{}<v=0_@b;4j+?^<@ed9+Z7j*npZr%}$
z1x3OXE%u?U43#x~9bq;ej(swr$Gg>No#&7H&7VQobAjNwrwMfa30hCpf)5)mV@|EX
z;paN4PDTy5&;`LfZinxKNV5FP!yh-8a1}{C{)mL}hd-ku^FH_`Qa)k*p;<7<%Z=Pd
zGpYDa-e1_={FhQN(V4=ojG>1bJ~Q1lK7*lRJdp?Q4jjK_h_+)R5em&~rime~?nauf
zQx~q#%e&XD6HG0;;oh%j@T?wEd>Bbzn9t;@D2~&z>dEq8R-WBB6|0U8qS#i1E|i9S
zR4>h8oJsSm6rS%7o_VO)fEVSjDtWnQzX`vr3h$70-LI<3&A(g0XwZkKZ2998kL*k6
zO~0WuE6(rNYP`G%DsV4(3<+=&e7fT2-n5*VlQ>1KNb;whId6PoCATn8APr$>FYVp2
z$u+W;IV9T(HjoV?a$G)mkwh+=%72v7FrQM!8FvV_J&(oiaVW^OxTe4CkBcEMUz+u~
zX}s-H&OZ_SMUSR$27mV8f;}MKRuxrw8)i*BH`#~Gm~xLxJB#3TYy5}tX4zPA<{{Fi
z)-XU$S@7^Jf`IZsq}&FH-<Qg~w%w#xP85Ev(VHLN{4|KR{`hm<dI4=<kh%z7h(2-R
z>q1SGx{8Vn(6+?}DFYSV_{8`Rqk!|9mds*;5ASV;f2gUdcw?4<?1&H3&&dfDq)Kvf
zy5gdMWe5nBMAMBc5uPGpJO>&lFwBnc&PG<gz(n_rzJd1+whXK!>*>-mKuSL}B<*$r
z!JrZ+iNeH$$@l0LqIaLO{rdn_20K6jHI<gGVV@KFCmDc2U>_YFtvdi|m-%I7ut~9&
z*rmrd!#@PbtAM|qj-LK0Oz!v|{%NscY)BRTB{_<mEi+l!izvx_<k!L`hU<JOccU8E
z8JXTDt4>Lc?klT5xfKk><efA6+BvJDsR#6P-00&<NGX>`ro0gNG56{7hTy4ne;TuE
z8<g5LnK;ITqy@>&jR^=KeA@P8*Cw!BBOFM2^D%C0B-Cse*;#|FUU*1yd6x&5#Z*>+
z=JFdy%lt_+(-n7GDPH49-%fXPv_8&2(=46nt%TTBouviQUUwyRCoj`?((RDpyH`|_
zV?OM-LI$>+<lc7{J`_r0%%<8$!yeB)9d~Q@Sn=N_SJg|IHa$_xD-^dWZ?9B)Z)J=8
zEQ*+?)7SOUZP@6NKP$jKc5lFFAeF_dpX@?4UlHxGW}k}g`_P-5Un)l92#Y(8MXj~(
zUe5;7n(AJXZG@xZz3dVAI7sT8VYdlwX|UWdp9|K!ll+P*T-o|2<9TQ)G7gFyPWUfD
z?#L3e%a)jTGZE^ml8tG4ts^{Gp|whp!<q{`NP5BxXx2WvjGVPDgIKHOtCiS`+H-FJ
zJ9F<3G&*dGt2U!var$h~FrQ%V&7P^<g7+srf)T1o0qCsjLllD}MWvKv#&vp5i3_1>
zu|chM4?1eC%bE+rsCcClezfh;CrWkSB#iONeL1lHR(dpMR%TK>&NU#y#Soy;GDF#b
z02AjoKUk?<Q89aad*y&l29y~^DG2=q9Npb3y~W1HDqx4D(4*F#pP`f?PII-iQmtZt
zua1sHB8Q)YU>=}Iv^_tPf|I&G$2avm&`tH7wF9g2HK3-Pbd#5@jleYWm((9LC2tTw
zv`^dSkkJc6-A}+C1F63G*Yp{T3@b02oSnX?w&sI!fJRcY??ol0gSdEYb@dP6l>$Nl
z*i-TH@ePFzyyotu#D+sb7@T<-!eYl>gk(@VsnsK@b<-*+!z(j|gEWZjnt=GS2jPf6
zMvO37pg{Kh!bnCIX^-7|CO4vdOFT!LRP^+4UoDC;n#}}Zdt<6n5~2+FXJ3sHHJ!2c
zYY7;w-N-V--yn;fX{O%Oe-_ZFicPM#hZ8DXnjMG^(r+^ry4d!<^&;+Acd{*tH<>S=
z0e48s=_-RtrPqL-DF4H^PLG9qVF4cozNen5uA^SJ?8-BSj!nA`NlI<<`7df6$~e(a
zXufOFeg3L-pto^t75&wKfN*PqPu}SO@5l=xxcH_h3)5{se)~OKE))E3_MbePo>7V*
zL|sb{|4=_Z9y(`CYU^mNRf}3-@l)E9#ZNuX`YpeNO=N8)E$3WE1hi%LsOpq^yo{Ft
zg_M_P^m^ly63r{@%z>{;#rL1NKN@5*t8{=(qjfDu)k2EZQ)-Kod<4lBucw~Ush_Df
z1!+du9Hms8q3X+c2+vQ1XCgJ+AbD{pJL3T!Prk3es@nT=#9TGS>YHwdEyTAd{wrN}
zw8{MF%VcGz1*c2#7HSb!sc-i&v(hWKijxyJF$wgVmKEJaq3f_&2jOC7P}Qk)ch@pB
zMS=r8-=rB+u)yl*#%KNfNhLzndX=0S8&p_`7TjSD>X<(wjtdgIyOF@Z#;2y}==sKy
zO6+!a>TX=l%CG-)<(Cw+&1|LOL#cnz8@9X?k^FlsyAC<{EOo!5Ng{MeGRLDx<wfuS
z1*W)`-DjRhfAGPimw3ZU@$WsP2R>j$hVzyioeYdf{Vetj&9l@mGmQf3sPm&G>J``X
zwLLI11078VIOe-<Ps_q%_5$C>-QmK|y;W#a`=-NL`^t9F*>$KjdaH)?Bx$eYT|d<-
zW-3*PE}xT}c8RUYo}XQ}`}ogalwGu<-1{e$SgxBC$}Rax9I67{3hHA&5cv_R;i});
z9Bv%|&+9;d?FgP6#@Ar)>)zBC^WF@W0~$B9o2}c)<tE5|7y2`FiRj%=h)>#0nf5Kd
zB`n!H#<DR-lC1RiKP9L9o}rLldBZ;Y23<3eD$IJw`TGJZqwtvpX`4x)`dX`Dzg42z
zw$?`DE?F;yw_`w9tHQa$LS@2%!41*XnPA^+*qeZSipu?quObpYAGFT#c!RQK1A3h-
zo-WHm?9IAF3m^mvV;muNIdNVZvuU9(8|&M#3^azH58^ts<~j=hfv`C)x=j1w%;i>C
z&!H%cJ*nVzm?(Qr)60%r=iAdsac|3}82gTAa_BGIVL*N%@~VXFpxBJRyq;c^FNaM{
z%7%?;XSPhwsiP^woIs4o(T#Ajpo}APovYzigWL<fYJBH|(1Ql<lZGpa&f5wW5(De;
zYjmWW)Abw^8VHxpfrwF3`$~BSTS3avhC;BQ%*)!lOK8F+@5<Bi3&lY{DZf$%|4Z>0
zbUR6QE60rkJyav-D^{cL#cz^mXEw*N>;`!|o3zh87$gkgULU&IH|q5M4b+$lhDI%H
z&ZqnCI_x#L-ZY1Q{bPMAaza;?AvDmkba@kpmHD%UDj{J51zJsmLoQB%8j7o?BBP<9
zpN-}s@1B|cmK+X~V@Q2F_G|clDy)!djcD%xp<|85c&>Owb=fwg@eb5dS!Q1bgA+bX
zEM^2HTIs~k`-?{ZHGel^|7LvG<8+A&JG5i||6gkh8_&mIa_#tKd9}_Drm#1xbJD4F
z6r(CzTz(CQ>`xRWi4=hvE$qL5TDpR}>&Ve=Gout40a@HbhXM<4(udX0mAJ#*ABQLv
zERhyngfp`Br_u(izm@~LoZtwCo!GFi>rziUUF*oB{TsEH$ZDuixZBnCKd{+g+GenJ
z!Ub8*aQ3=hlKHd=L)N1S8d>%e^#q4Bf~>|xHgq_xG)NODH_6C9?!Qr<U6)Bth6q&*
zly~_qB(5hUZhEadRg3-93Ce!4Xz{f&npe*X#q~*KGiT*Mp;Phwe$DYSmC7fi-$yJ+
zBb7=UN6nem!}X<OYZhFiU%8<jgoJGGP4f@k=~6k!a)^iD*rv6Q%l_2x^-}xXs$qdm
z%rtemi<9;Z{^x?lSsWMsAN{$Lr;h^Lz6c5uA4@xWB`+J?g0gLh>8z)CcaNtmO(D<6
z1U!~Q3PdY?a3e;pD++T4B$V&0#|~W0Do*1#&`$+*H+3dy&_cesnyBL!*QVNyam+=c
zlr-cwq&qHF9`N1T+vzqgkB1!F=_dTyF2iU^4fkPm2rMR5*SMk$!nrM&^#35GkoqUv
zj*Jd>s93Y1^eMbgiY*)aoS7@0bEX6;{Lc*bS$h1@>#+$heZpMtX~}E}4c$6N@?VEl
zSIS;RB~Rmhe&QiIP4SbZ+$RmRZhsv<P#ov93~7BfR9QW6o3-!aX;}UZz30tX)P1Eb
zp`c`5i<x66NdmuVp0&ewjvsniCy!n#!0Yy#uLK)ZP=Ak)Bf!CY7A))cHH9_?1$J-p
z%M|q>SYR_?ZtF$(KHrRnO$^zqrlti!<D<moG(NEWu_v}xQ;_iwev_E<Ci!=(_|N1U
zI8QD*vK0*=8F8Ggqop+`Jg0sS%<`GJxkw=$QzSVK)O{tc@k+<L!7&n%q7rpg^kh+9
z9Vh6=UlvTMw>Pji;BL#GdEoV?Qr=Z8t`a64K>E@$A$gK}6gU(Oxp6Zyf+;9jO;kbJ
zifPoBbvio)V*{mCJz;KrT}m}1{XHWk6{zu)9E8y6clr~A9gsZ3_j+$}R^L}go?(eg
zzxQ$#cP}736``r$T)iOf;uPW;?dxM=vxR7lCSuCeC-#tsH`~tg1PtIzH86P~6wb;U
zlGeCu+9CdM?e8z2S$n}un6OBcSh(1i_QO>v$*a^}fs{OCKb^k$F>L2`e~D9w5qEF+
z*HO|~g*)6L|M;9X<;d7X@5@)*UiyjN8X7KhkR30pDta5fH3Zv%TH4QH(WZ0F?bS1f
zgO{FxFV>^9eb)#XqR#6UT5q^5>IrTW60}l&aHPp^F8^YNa9LTWIW46I<QzaSE+xC}
z;Lx<>XX3tI(ntQ7u>M9U)Ld(HGJ$+_CADbd5g{RWNtHv-$@8+-xwAl;50Uf6UuT-R
zyD#`?Qa{#!LQJw@@Uilz2klJz`q>}D7=l12!Kzw697bKY@T+{e6&*cbM#Q6{{v%m;
zkv2cOZsHbV1={`28G&pquWCNe1@z@4t#lSJd&THJ_`Loj12f8cFM0_9%`i}r0Ef-I
z@RskqU?98#wd?cwlf=ZsU-#(5tJ5cIZrkReJ(O6|IEN$$gmClRww$1|BQ{M31g*sU
zQ8r3U@v!j%&PA6J%B|;fmYT4I8xAL|8A)d<tBMRmQF1T&j9$rCno;4^$&=NmS*3e|
zM#5Vzo~n+G(7K!JeYZ+CF|L7B{@u3=2+9MTjc3}2aGPC99jt9)y&FDRXl6uG--Rdt
zaBhBDA^F;cJl)03GsN3iH~x%b%3?Nc`J;}Aq^EQ1{p{JzV3Otlj}<<HfZHYBcfsk^
zRS36U1w<jslj@$!!Wdb7te7;mILv&y6z8jfShI803=JB5ZBzK>7Y;K6WX`HVQ*<8F
z@7g?x0V$Lk8=7ia_8E7=jlFR=!45|(N)6TWren@#Q!5O{;pSCSs*rb}4~QCT97WI{
z$*R_Xs?2Sa_h$0V<>la}5>dcHCqMmC*Wc{`u8OsH95;mOe5vai8!1wMn3UWF_td6$
z{l03GA0+C{+#5T}4iP-NMXwz!|HMVL<vD^s5Y@EwoQ}b~=gnNCHJpu+%{eYy@<DoG
z>9MX+9LHzHnOfHg#W!nK5c1Z_+n~ZDwu7}U6QTLrV~gv`yX83&pVoQxPS?5aTINbf
z3^4=8oR0Y|F$26{Yty1;lXyhk!d1?d81+emlS@(Ugi$MSiclh9P=sk~N>KLo{UNRP
zzrEOd9Rb0#hfKci=*AQ-udK{c2YULCJ^;&deU$guX7=FQoc942Xro_&)9Y)Xor}oM
zX1Hsx%PQKY%d{iAe75cK`74}oPjji!FiJ-O*D${d|1(9_+vmGXzMat)(cWK1oX8^@
zKL&YaP9MaG@GYz+iUiJhrAQRMb9bjIkV8obgX4KbB=3AXpXT5m+N!@5W*o1RlVDW!
zX$MhAYxHkA^B&3<5k}G#xv}bLhqnSGSZv?7iJ<C>9m}PS70%Pd3vH<0rol);(k};z
zH6pDB(&aE>K1<;7Xe40Qo^HPwv1-+@OIX?Pt)9JM!fkRqF^u}kYg*>@1$)wT$;v4~
zZQ9%^N{&vDC(LU(A}E_A*YUE#vm0tx65}m1UFexV%EjRkyGNJ4hImo4UK}+;W-`gp
z&XB<*$-)`P2q`LMy>(#sD<H4rp8;vrp)WiqtmB*IOc60B?sb`zVo{W@+w##f!GY-M
z@RiaDRafXx$;?#;NNSoLd;sgHUxAUq;_+nQ6?Lc-&!`=Bqsd?()URObHs4aJjfjV9
z(H9qKMo_1E!p@L_AZynpe@$0nYx=-VEU%{A-zjK%VrRC74U2*=#D?O=sx0V<_}Ts$
zr4y1gPTG5Qa={<P)zw);z)=zf>pOs5J#%GcRYgrcigk{dcv{>P2Q?T0vi8p&o5S)u
zh`C$NI-_R=<&;~objrf8TPFc~cTZBq=<xlU0~TYctO7$t>82BREYEQKWD`9R#HMJ|
zS~KLDvl%s#q?dlzrl}656tn@saLnZM6mJ7wY<Qe=z2Eje+SkA~4I{8sdX_5XHoZ~p
z__}d(A3`k?X+PsY8jlM9%<TnPt6bzcUKx8po*Ak0ieLB=2bR>^s1eoxDT{0)<HA}w
z@ucRh{7xmkJK_%g@Yqo)decw$yzs*uT-TL0)R91|gjx3Fc{SR1f!P|)nK7I||F3CB
z$}y47)w^ZL<k#0ZZLC@gYpJvJdDo~iA!_mQ;V~r#MrRA;NiAf|*G7>3#3(O8Oi1K!
zJVWAjJ}$%Wt7sFJlDExN8u#y7ue3^+>=8EsyP<X8pTl{GD5$78wvyneITD&z60B%g
zmzlrFq=hdRTIuD0yJ;LqsSr&Tl~QFx4=6#0f%Bg}e|DeeKe7?O>0C2tgkahjyR*Vf
zZh&C=y7m65r+6k%0hl7-;pS@Zu~pMS)@;ii-oKr5gLUh8pfQBePzrcMi(O-y9P%KQ
z{`B<Jb#2~<q;f<OXyH3!fh~|Z<BlB8^}No~bw!>pCOthG=+2vNhv(k@Eyw}*#15XG
zXhjpJ63bUDpioK`a4dayIxs>a?23aWmKxYxh`R}Fbh7gDh)9^T<bfb~CtqF2_zP%W
zEzh<ZhrVD5P80K9?Itf(lzw~=UJ33?=G*eU+tIXL2Fr}}l-Ijf@Iy`RH1F=tG(m|0
zbO|sFMF4n#22NQ{TBiv3Run~Y?Es1KEo?b5H9>(BhTOT;omURvqJ6^i(?VVKmIF`z
z;CnDJZM)44;7CuoTFNnYc1(_wT1}DR0PUm^7)e54w225C<4C|HXnL3}dV5%J>o%b~
z^}6f3%j=6>8CbO=$uvL&<er8Aia^uds5{K1AD@sw3jh+t#{5rvsKltg<^F7G!Qx^!
z3L$i9`2cvlz_1BQkA56Pi{527yL(b;5Hu!rQF#5q%p*Gd&LdP{&JP1kZVZZQA)puu
zJ+0&g4aA=<rC8uYf_o3%oa%E=&<x3PFilqv<9|(=1jnVoG;5a`ZDcIC|AE6afrb>U
zyUs4cT`T^cQ0fn(eLF>D&HIp{rZDa9vaFBoT_UvId7jD2?N{_ll>>)a)%5~9JkI&6
z8+&Rx>syFgsyG#L%9xdZE>2cAUJY=Ud3bg)1@+)(j0xbLbzKXbc8ATyf#*1pu*m3A
zcU)eBLZ6o4(jTlqk-YP=wclx6ydb3~Zo#TG^})TE-m@Bv9rs#bQusWj%}Bx8)w|u6
z=oGzEzV*Rdn)e&F#zsfcb7p+aW*iV$K1)+IbwITa<bZOe$p!Xt8rK3wtsl@waSb1Y
z7ap5X8WG@o_dXW4R4e>mS*?0fdt@aSplj^x&$)Fv480A{EI~TC9@=_)xKz@dwA*lo
zVF*3@BvH&bN-vIC852HtY!-t52iyBgM@dt6BJhzx+`#??jX6zt##pGO<hn;&12*De
zkvLk-Rb+dUrEThG&I-UK4fmt2j>M(R0Gx4#W!#i`h@?)rsRFj8VLKLkd&nxt@{qQ-
zf9BkBA(+jO2l(rc;d3sHgwP?g_usye!H{pl7u91t4|QwDOPY@n-MI=dvu=yuk-`bc
z2nUR$%!WcT7{3SRd>yXeT3P!d*)B!xL&B_<9=XP>-rWzp;8i2yQGg4hI#vsA`$J<_
zv4#y0Gj>b#)7Msj>V8XV=pNj)2T;A`K1Nm7nT;gNjGrCHy|UP=Eq;gH9MHuOS!^*3
zmzEPz6&01=z&GspaG`&9Ij5Hzxbg`Qu#AmAeKK3CHFEAwmb!ya0s)pF3kS#`D96t8
z_=Y>PBB<MHogO;?&k4X=I$Nb4P*z-%fs5z(m+j*{0r5~B3GC$}QyT=&Z7qEUcp3A<
zCZFqLv&VKAs_H2=#YfrhXhb;v@hQuh$}LwwP_dZpW41h@$6jl@C0<E1+M;JAfT0RD
zx$2%OE7OXf{{9GJxfFR^muZ0Nf*eL9nhb2Ef;|%;WA#j#mB_s0Mujnx*dMm&uLJJA
z>vmj(=%vgSsc;c0_J9DJJnq}KkVXH$ncf*KZfVqM1=b>J(`GboSol8ki<H#E8YYj}
z$qy7{0qsz9B4;;N#3y@jb8Z?~uOSOnXLDKCtRAt<7B-3eoYX<dg-x{^ERHEOtVZ77
zKUlu%9Ty{dY>)B%j-glVhQHp_y*3%pd#Z5f<?$ev&^U<_wAfE$HlpiRezUBL5=s5|
zlrPoM6@NwNgxqV$!9;NPv(`gNLkC){eWPyRYJjay*;@$LM_#u!hnv?OxD^A-hrN!F
z##+-u!jo}asOXA6wOOeSM3|Nwp^a0_i5@rh4W{Gmk3vO_E98-rV|b&eFS%~9Kc8_*
z`E#LbMXIS$p2Sk0tm}*4%zuNI4_LLh4Yc{*LB0GY%gF2#suF2y#D`j(&bRj$j}x^F
zPkekcHxdfS5GqvvFEBf+LqevCpat;`>P-1LBBJ7TTN+9A)gs(`DKj5|(#O4;>(z*n
zildg>l$Go}@3wI5yeDvz?`}C-?l;Nj-|acU)`a)lj_q9f0Uu!A=n=_Vf{qaE9)KQ;
z0MqXIp+B#n%VK24!;zxhEbJTY_jX;^7?V;U`~rd&4^Gf0a4_`I@SKbJC@S;od7d5_
zfM@ZY-KldMzL>6aqX*)}aAH$~5Os2)ADS7G1~t2?=erZ+pg{c|=yLedf$XR0aj}s^
z_zjND@LxVyY1w}%;4F$)9o&2tRK))UB3iAFM5r+0{Xe2S)d83pV0X1XqQLzkwN3wo
z2ps`{YFvd#ig0w!re1O9UF9*?wbVT=Ez{_R*;fQa0Z~PzEl4oP7u*l(v*v~Pbt?dN
z0<%25ghVstOAQ=3KQN$~6*p<L#0<r{nKn9VEjpchei9)x2{XO&h}<TKp-fUTSFluA
z=-Jb8D0xmF0hJgiauiH=G#pe+*=Cx{K$*K+w$^FQaNpoxQz6Wy#{E??U!zB%?*dJI
z)$J^`s+#$!PcHH1+A#(_#B{6x@61q(w?UICQSF^)p{0AIKJ#1`*Q51s_t7Fwbt9;D
zK<B5obHi^tF6bfC@~fS`F}gPdOEic<F=Irl-$Ip2<nxh<tA`V73(%c(duDg3zO(qP
zVfGkC5?nEIx-^S>U!!In@cczQAYqiQrY&?)%FWG%O$ckb<XbcV5*Np;xw8Ap*SA5$
zXw(2(kq#x4e!9{cy<u}R6Hs32r9h)<XJ?0njiU=#?%U+~IJ;p}_t}U<gj)|qL<Hxz
z5C04ECzS)n{PFjffMMrAw^cnf5CEv`RX+1N@rsR(vRC{lF2>j(Bz$Xk69M}*U%%o?
z;&)g>tgtWj1g38-U%9ma$R-$z>p27>$gDIuG4T_CEdU856`vknIG2?KW3}mw>sRKd
zEAvglq@RGdH~4UtKq6uv&#R6gZ2<IN$sbvPzz0_ai<ZD>q`!Z2mIY1;V99K366@1}
z*9}Ovfx6;<hY`i!WY264wbBW2VBTL&S5dx{$C0!Bh|s4IO}!;&B&@YYxZ<gY`F=QZ
zT3szw#!;;)nzpC?imGzdZiIT>x6~dfZ0R7q3r{uNO=5~I+*K`1!&S1k(}&iI@AC}q
zp>x%XHC&AO{jX_&R`;sJqqb-_uOCV1>u?#%9#QKvjfr}VIZHpwp5C>WGe0mm%rBT)
zNMldd;WIM!uL2LSUT|&9+0|C499wk|$t%s22{nZun|8cFo#fS;?87_aV^}L2(8vsM
z=+Dpa*w|3n)VZRnosxz>!Rn<!d2S*&EgBz|5_1xh-)7NB?<8PUWw|4MdFbn-h?ABP
z5`xrpI;zUTvi)Ur^yRz1J9)xxyE;`Z0?_IoKn(x9I*RST2teg9&|e4k<EK$dF+f{F
zhs!T0kOm9M--8N34UBbdUuR9`K6wl1`>k$|?YFSC4}+{)2sA?7I#NYQaK5X99w#=_
zCz<VUNujZnjIbsXSj|D-^@X8fftu_{x`dXlNfcl<k74Oq0alFc)VwiFD-GxqDPjPF
z^%MYjkfTXIZVZ^o0l3%Ch6Xfb%6DNL=|Dw)zCD9)6gc-8Pz;?z#?$={bJVnL^oaO5
zh|v$P0cTCc6<pHsZ&~c+OGNKyX0oa{a(Dbf0$KG1ea2iI3m?`E8ZZ7jl&$6@C0btY
zv++1yyWU-|VPDUwd%(l_|2>yCapI_TnG1Qizx9p>Z8T3D2Bkx~u;{_JW|T9guC?WS
zjB}lGjUPpR{$zfRaOyFXYD&2|C8^sKU^kG$<@90O*wa_OK#d_x6UC!eF=T71w$}W?
z&u7RX)0W1EvOXif?$wwn6Vs8`w(nimBR;cfmp5gaoPQqgz8+Mxg9bIvRea=?y|wts
z=;GB~Esi|CF1DEVW9YPi-5z{^>FNUEs>7EiH+zTq=m?>AgaOFWKG;Q0@^2=7DFo5X
zhMu0fzpJrN5E)?MW5b8RH;!7bIDs?*c^-002?NK0H_Q-Y$-C}m_D}4p#Xp=%se8@q
zovn=Hhufo-<&W6X;Nz)y48z@yO^;Tj@<Fl9@Zba=?J>yEpdrDqIEP1G2E5hdITs^<
zkddMh6C-D>m`U;5uV;pV_JAr5i`c}Ir{QY*gO|e;99*>UDN7^?51uBc&l4_oKdMk_
zHw2j19ahv55fK@!#-wiHYG1KEo?Z=HP4yT7$pk#GZl}lpO4GS~#`3H8Yt{<@5CW#<
z*8toH&K=zD<19_(j-)VgJ!tLAf#Z(jNp^Pj>;37D@;58ZFrFB&Z7<w~tS`68#@qev
zkVams(Kl;r3#AC+G-;rLI&juHEhW}P09=HkrR7tqKt~?V`hB!`P*77HfbI8W{{;Sm
z12;<`+<zm1UOCAFH7d{RU(dx|AL(FxP)XU)mAx`O^Z7c<n1r+_Ks_xiEUI{D1Ol#J
zzyqWgdln8H*6<8U5O*Cu0Z2-ys!eXTFO~dOUQMQzgW_V(UZnbZ*yCGDx-`3Pc(#1u
z@D?Z5nEILN$rIlSX@ZkGl=W~X+~KikqLw<;HA=kJTkpQrt|Rs_xg<vD*;@01(*)#z
z_sSW&+-IC>=hSEtr5&^EV|##0=l7P&!S8aHKbt#2e$st)Z2*>%l`*)Mbj;SfAh4~p
zFQpc?!O#%9$ACds)I?4g2nYy%7@1N5U=uyNNhQM6NIfpx?;>v(7#P#o<01i^MfuDc
z$uN-qKtXVQ%d&>}>9K6xNyr|&T<ZnoHc0GGo{JgqtS@&FC&D)5(tv%#?bA=7CgS!C
zP{aU1M`-mYGS#n|DdSIIh7NkTciYKHdJ31DDoj{YQ}gyBA?f7Ohz(F1ww9M=yH`Vx
zrc}oSU4PRU`w!IsUTLW7(1iXf49j!A!wfr}BhvispZfm>*??IDE+%OT^Y)-sO7iWa
zM5_CmU9Kye`(Q;69S+8Fy={8;eu_R&xnn1dq<$(jX?!+DfPqxuv86GX?t=)5_dIWY
zFV^kuI=q1}NLS;Mrlbg4?LSs|AD-wEct1Yw_Z=`G-~|~6b)qTNjAjO%>fn^WB-9xX
zDw&O_x!0YQ^hdFG04#8WoXJ|f7ju~<&>kZW7O9g-vp=Ug2v1jXGryp*GAKP^5SfpS
zTTiWOmC}HW>>m!AYG{<cTP)jW^Mlyhw($9VzX`Ch$y+WJBhIX?1@tA&=QkHZKY+`g
zkE?-XZYhu&-MOBWIl~=oSmH_*1U})zy?(BR>ul&s{&3gZ@piin8RtvSNf%do6uRvo
z0^DHJwuR$dEnx)6S*Y4F2BC;Ck|9XXkD`xo@B*(%o8^45QVzY+`p)li9m07!o}`+I
zuCkxaCLI!dkVuJ+{<W`0j&VJ|OMXpCYL~~SIF0mE$oOM`A`&H=m4zoat+X)FA$0K=
z<KQ!HQA#n?6GE9^G)F9fDmmrH70_zQ6@W+cRVn!~$|WXTm7Rz$skT<I(}JhEw)R_V
zo?6PN_00f3HhVoaET2~5>R~b!EdfWymzT}#9lWO0Jps|<?o=uy0cVw5eN0%UGLPON
zrpkQsY-c}xRC-iJ$b?S^X<v=Gbw}8YS0X4Ey5MlhYVX&t<GNq6Bn0loIyF;df3Hp@
z{YZ>mb&9<k=6{lAV889Kft0Rb98}LBd<*#tiD8-^d>JLpkP%ja1zkaZ+J!~_35kC)
zqG*FXnNlljh}+J_{kHpe*u)&j^3=Y>V5sDtO%Q5#Lxe7IV;2%yC?y;J5~cY|c`Kwg
z?~v_(E<p3cZ@%z>g{M*sxc2LTP?BIA3lJlH`D8nCKh1N)XRo+=(4cXLY|s;g9OXg0
zrMMcz{6_`O<NXTCOkMm1%yvc-mQ3mY>xya9kpGhps#F$YAxZ0x4SDvjOU!n`-F1En
zdxn3W=0Csr6aOd2^uNCzqwz85{~i8029h}c_ix|fuWY3I3U-yHO1YY`85v6pO#l3t
za}@(*3CQcTl$aLejFn~pOfi8*JVr5oRWf)0nI8inB921U!GR56&Sz(58`xd`xhe+#
z2Dun^upRkq^_QXWv-m&P>K5wt+Y)&)1$D>om~_!^C!Z!oiNP4L?_XmCc=f<Y0b6)4
z!^M9tPU-J|-pK#FLhz%N^1z7x@7MRQzm3}c^XdNQVGOdcxeYq+&X@To-=Qvn&8)LO
zf$Li<$e3&K9}-CBe!%E?X=n&=_CcqoJ^-AFW~HgCOGw1kVq_0O)wo`b-dqYy0snz;
z`;3!OgH^b7ptW^QhpAge#wktk`8%r-p_2!F3E9py-4R@xo2G{KRe%D!Bdr5}K9M>C
zAqC|B<CCy@Us(98>EW+KsX2z53m{}99&~key}b)(eo=2%RnP8sjXRhuf^XRqtv;8l
z%henV%KwBbuG1ARSEUPe2bXh0=Tw2Kr~r~I*6uW44)4uw9M-S?z2fq~E5D>jplcjN
zv3!yGi{h|k8VbIC0^MM9eY|hYi+Qd@EqnQ{2m~tJUp-O<8nrx0_%3L9nL1N<wP>a)
zMnm!>`=kl}^-er+&4v3sUeL4qFH7q<&qnHUwFZ5qSA<wZqtKdQ{%0Ki^QrLuDoiqM
z|3p0e;_!<cU9y>J^y$r++d<8eTNE2vlttI)jbsVGXdSh4zzmgkGU3Qo7t<%T=?vo?
zdE4^t;U<?GU^jUDE@4zj8nP%lP=hTjDid^~5OHT17CmDJQ<nh8cT`#l{FyVLnJN+9
z8>|}K>ZrEcT0LIrfF(II8Z+Rv^<=yQc(5T}s0ptFkseT<0P~pS5fNuY932C#Kgs`i
z`#od&`&Gs#CoJx+Px`sLS$cu@>23EF*bhB@@9vq+qn;@&QJ4mEm{0#UAJzKu=M6!P
zS4}#k7wn6>%YSxc%M{?2scajAfv{B_9UL<_iuYx8YHw@hGhs%@J|VMe5}V#TtX5Mg
zY!0`rZH1XL4iK9Sl&o<~nu1V5Vq(idWy^P7O5o&91NQ@%M*Xf1<;~5_Llr*a%lJyp
zEI7frDUMYi3V!(SVO<AMs>eWvy%Iw1EC;;8p=)Pkl)#Aq%4A0GTRF^rQm8X@uXNAv
zwIIW>aBy^uB2%4Hq!EP6m0R4P#gAlgEj)skmzCRq1XwSSeK3Ym?f2|Y@~j6&sV<aJ
zP&G{TNTxC_$nV?_uF4@J4!<vgty^<Hao=2%);$z2(Fn1PRC3{u2+8IfUyQ0I>jOp*
zu%~5A*IOdP{Q%6FPxoji$CcJ^_bU|P;igP)Df!rGvt54ulgtf9NsMV!uAOn6>y9Nl
zZF3ZJ#@i=jAaN=;m&}u#qk0XX-@xd+BEW7|p!n2bKJPWPuz58PK0Exghdss8r2zii
z)HDg(TF>}A+W5r^*PoU;n-N@1?`Iocu^YIOcPYs<e3&m5pBKHsRg(-r;^$yQC$U&B
ziKBK4`}%w{-DPShEdo4NjU*6>DN^d`1@bPB%61(Lv}7^5-Z$zpfhY49iGaZmzM&Ku
z7KM($oVLZ0(e<y{lwz*f_=XO=SthNNr14+`u8wPKdZBnD(<8&81qsf!%#K*G@>gH*
zn71Pszg@xD(20QMVs8qyM2it|c3LNy98R}-_Td#9R2YlepMec23|{;ByYpXG*p=e~
zsyCxT?(Mrc^%=(_gp-`J;ioa*8oas(Q*4mYZlU(5wEj;uX8s+KDw4bXChx1KqRWjs
zv`QhgqDpN<)~mGf);JtueHws@N35tEy9g`IoBCboHeK!(B_0?-9Zv)h3)8@ya4-i2
zH&-cSpY0iEyTsKU8FZ-@4xM<R;Eu=|+(R&bYX_zfk_veYIx2V#xzjB81WBOtfiLM1
z<nG%=%4fTZp7Ho(6GSjPFsf!RRWk&8VurBzOwEC_6jbdM6Cr(+i(G>QuyRp`eEVj9
zW(Y>$@d-2aTC8D}_yLe@vvsHPBZ0XN5cs9RkVkS?MA_;4pK;W7bkWxZ^VOsSQ~?Nl
zHpBdiXq;g3R!w3*p<G&Q_N(wdGW8gbN&CZ`7Mz1E9tOJs!0l|847*>!jb+^R8%*Oh
zF3r{trJ&aWa?g1H<47(`Yu<fe$e{jIe&ondPgi$kO;fTPOd<`Nd#7dZ5JA{n_uZ*G
z(9cbk2geLE3bA2B)6Q(?c{X?oNKl0p`TNsdk_Nwh+89Xst}Rh!c%})HwdLgGfW@L+
zVCtQ!D5fV^F%r4VoY9iNmxbNeQA~kj6|TT#StC^#q>ZBP$hrnwVJq%S@8$^={E4V8
z@*D5>ErWQMnS$L2%8q15lLCA>RO(-gcxMziz=N0h8BDqsE16<ER}Duivkt9mBq`UI
zvo*>5K9#nwfD&HT=SCdv*Ot^HqQ`lr<LA!$DgTkv#_DPURqD4maOEC7SZY#7s)_gD
zjqD6Ugc{bGKxQ_kn;nF5Gp-n6>&ym<ri{{7T#lD983~wiH%D5j^aoQgX}p#O<T_ys
zW#%Vz`0R9Qg}iW3T|q>5?nv|I<m~{*%Y)IKpQyCW#F+0jR`R!E550REW>?g~T0E-X
zJ6@%FL6HmFQ<#KK@kwm+N#T#Umhm^PO0@a<Uaeh;Uj;|!BDEb6)9kn_ah1LZ!xz2K
z)7hGu=6n!Jl%q3$&}6^^F=2^}L=h>fMn>ddFY(IAXlO}0S8b>A?gFW>u+VkMzqKP%
z-rL<?2e!<gqwuS*q4W(ikvS;<I6oGpXxL^hQ*})ZJRA^T#F)JRitNuXc;Dc(ue{qi
zamEywkOVu*XQ45YN@jIs3+Z+XUz3JCbs~B$YtQ6RXnUSq+BQ-D<knt&VLP!lRxuI~
z$(Y06S)hjYN_zV<7TEC#>5`=slINa9DPG(Vcf5gXTFZK_p|m*z#yH55)ZqDNPa=U9
z9kb7n`Nw8lM?dS~SAf|HGNlj+eSbeiyOlUqQV3LY<D30;&a3yA-EVA#JMTOD_99{i
ze-k4p(?}rO*seUh8~r-VQ7VS(q%YxTeX|#}^#$yX@lCTl=iBqQd#mPLUP&v?*vf=?
zW?QQZyS@sLD;-WoWr}OBpeDcDETQLPo>ok#&vE#|*L(4;uQpAf@Vs;m7%|N3zNRB9
zD&hUJK@y{&ol)K|D(Y%2f*{$WOi@pN3Hkd}*lnE!gH&{IzH}FHZ{E2SUP+)+%qaLg
zP7y6OB`Z(kKu(lciav+WtIWGLu7>Swl{im5<ob=c%YBb|;N|C5vAq<q`R%0U<x$jy
z>fw4KSiYbgevo+ESibJ9V;j@(!#+4WU2Pm?T`Zu?Wfqw-#s142+rfCi)v(;okN)q2
zOkC2VMXB?vXARC{xC|fB>JPWt>a5uHwU_Hy{(a%2&>u7@=8_BAA9oiTM@99fymSuc
zKY+a3m7Xu$wXeuVSA`hUqKtV`H+SJQZC_EX3AbiS>t6;RzPa0pEv<`jK6+bLsVR1J
zxyH->&GS;^$idTUJcRmAO(?O?kMm8y{z!?M8M>)P$9ltp)&XVNcM{fae|EFEV4P9>
z@~OO!VPb_lb=D(((DQ@6OyQi*Q<`J}V>Jim57mOt-u2klj8*pFO6KFRt18x-O!oB>
zsrWi7DwfWIaD!L31$+6c=h^|zeEhxbg{4jj63%lkd%S;84PYhyYuz~)VNtS)@%O5E
z$-_$&0n5z;y=V?VA#m%V42|GwA^C`e8QZPh>_-gTwjkb(8)O;5^<5?>t#wK|73JDR
zhvXNU@8;n;dzTtfuvk2uffy_LN=NMc?IP1lDy>zd=#7q^WsEHy>(JEPt#;fs53<r%
ztC<)(S@Tp`IBm<dh0IY`Lt7RU%I^Db`BECjyN7X(bw(KX0?o6t4-a1QrPp6}Q7PO|
zfV{j|+`I9($iLNv0S6aUv0kI-qokS_Q~*sxEEjxEDLCZ&!{nFB42QzbUC57Ojx{L9
zD*vCN7Mkw82Z@d!f_0SCR_mGi%~K^BEQvYnrma55WZ`U8@-=A}Z~wJ}4?{zXC8Z;C
z>INfJw3ZnUwFwB~0Zso`lh0X9T3Xco?G-@R>n8J9B7s)&v#6sbT``^?`6vn<GdK*^
z!}wpVj9z}sCB;-N(iZQH&$vt<vY?Rmdq1#$G4=xbc<Daqx!KDr)Ofet!^$A4A3IF3
z=c6r>f4APqEQ~ZNy478gW*r|@%98g(`=~!vJ@GpBE0W5T`u^n}+(rArBF1XI_KKpx
zg+o$5E2c>(Cra$Iyo`!cJ2IJ{F|zR(pJWnU3*A9}*QiMEqHLjj$nHHscKWl2OO+nY
zJeei0*Ct7mS?nvFUad#WCd7V<BKuVlA<h=BVthmRFrgkl@*JxaECxO=4F^Rhv-cD|
z6a_2Q4{6Nra`MjIqwJclG>euOmexl@o{f2#@I-^tGi+BrI`@+%h1R~XC?~27n6Lrj
za=GbjSQY}QtV0IS^8)QW3y_<qBK>m83rtPlwV{8#zD*<cdCDm}d>joZlg|B*7Qi?T
zEjF>PQ=x#Ng+?Qkra5%M7gMab!ZQ|Yaa<kxfihdD5x2zcu(NvJciAt&$s0X(C)MNE
z?&;1xg{L(sqMKyFA>|B89}Qjl{^F@e2BI{hTy8D-;}|*Rj(~mF0A~u0UB#c4r7k4d
zFwo>S77A8Mfm7B3lV=0cjK`t@Fnhn&;-!>Uwh4WP2^EDV(G(P8lg%++8jM28*1loq
z9rTgtWTq`h`uLE{S-BalT`=RR4!xLVo@I#`p~}-8yU2&K?!JCD*WBrNCHPZ~=JGI^
zsY==A<Dev|-GoO&{m{Qg7|M<~xZU2rsV2QZzGS<U|C*F!`}r%<&CN}iLe_75(dw9{
zpL&6>r9u+0kZDBK=jHq2>3{j}K5xwm-4Du^;7p+@m|H!uPyH?v#-Y_ZOyw>85?W(7
z7b<e|hN6gUHy{mZ#~CW-k-8Bx@BF1lJqCl5N!gnCQ88~tNonhyEzxbw=*e~JwFg3<
zoH+FCdlSR>R*z=cyNQb&6~1jBS4rgHofq1Z^|S09B~yVoq4_Gw1oFz1!|x)l?C8F_
zhQ&UAnSbu?4CeD4iY8GvL-{_0*f0J!=Ow0evHA;Lf0v#$_3h4Eyb3^2Ry1i_{Mvmv
z_fl}R;mBL3Q2Xok@CBLq7Es*3xgudQ%yQ-OsK>F}TeqRu!gy1mr4VyggqQaJF!t6#
zRd@Z~Fe)gBbV^D$NH<6~h;+AvgmiC|&P_;2OM`U7rlcDbq)S@ZgoJdwYhTxW&ikC1
zGxI!uI3pwOSiiN_w?3iOmCfwv%fK>o6)C6h2#263_=<(ZOu+lpS9k*ry7F^>?|@jF
z3(Wbxe*~C++EZjqN}=$(N0Hc=+fO3lzvF3;+=6RrkdTga$v~S9<@O4tfhAtv6c|%@
ztwr?z0IJ7<HxHFF`3PLM3_rHEwthSM$9)!iLhp6l2omtx9`XkxB_OX8-fK>%j*vWE
zeXq+TOY%Dc*)8ft>Ps1gYPrUbDKB=WECdLWpotn1<kl`7Z*3(=puVn4y_YY#-xDGe
z6fgFurp|5@J!zt(lCz3kfZ3<(jma+JS|{3koqF=6DAQ5Le6X@fYBF(qNzJf<JlQK~
zo(?82RQmbGP>H!Hxw^t7{}Q;7$e9rH3GA!S?IgF)aDVfmyzu<<bwXtetx8zd>MWdG
zOq!w2UO~_$llp6+ZQ&or^sFiQPm-VxjRL9Z<>n@1wm2nlJ^JnF8jfz9sg~fr7tE6}
zGtl4$|N7OlxU8ZaH$u}~_d50`>99;R&x$&eRQ_cZUGz_hF}|SBlu2!>5^Pg?3VKeB
z<rjGL4(`ZiMK(Ea%948E$qc@C8y+Q<G<q<{+@dnoBq(tS?xL1A0bgXF;y(XOj1-w!
z#@~Z1O^ZlAei~fcS0aQ`j4bHjiG+mQI{!9B1_k3|DXH5Bmi7J4e@u~c&W;s+3jy;B
z=a&=VULw#0iT=w-HQ;&GYDWM}xvJcD9svejNCg}raSI7p@duS5G%zsmoA&|x9T>`Z
z9S<@j%!F60Gw?43qq8@C$1N-`$0*fq3kGuoie|xPfIMPxzS^;Ni)#C~O+<`O%l$1!
z>Pgb|V@$GeAc<FI(m`Qzvqm)PB;O8{K|c$+7FsW&E$tF>X3#|hYsB%8(VJUL+_7<6
zw0xX>TgUfMLp1Awd`AR*BoUAY<tN4Jv!V9x7TL6k6O;(#nP@}CEST&+mRj;sEs8&A
zIA|DspAa5sX%}CR5;<%X=dLzGC|NB^?mSK&CN<Ezy2V01$5+|JiV4$<y@9S9Lm?IW
z`D`V=OBefc$Zq+}&URme6*#esbMs9MT9LKqj=s8|-#m!(lhd(MI==CZl}r(BL0U=(
z6?IBWCgWwAxAwFLH9iNZW;zj-Nv^%LXS(FWUw#b?!B_6Nw~gW-`>#dQ6g89=+KmV*
zEffwC``*Q_u(9cozUh-cp(bM_aU2Xf!c0a_ILHjJ{HymaQ?!1KO_q5~uVwV?xNbhx
zZ`&Z=bMZ}5OWD{~Rd4^_b)C3VT=g~~|K|GVy>)DGOae}S30&xF(V(p@dTEkf9L()J
z8=I23BYTr2W5l?e!m0Dl-+f?oP-5^)=fL2odkn|)^yA+`$4}AYL8#5m{fP7-=m}~3
zr}U^o8aeE!UcZG#>v0N%QW7cfoUWOdGq6hw1sxScXTzY;v2)H^O_BTDNJ)f3j%Pj^
z?$m^XsQtlDz~P2wF%%fNI+pdU^>#?Q|8*3(n_VXs@sj7)MKn&aB?BcTxE_IN9@BY<
zB$aZ801gmU>QCc+2U<peejNOq`>pBsFA`bK2AS*HVG&e{g=D+aS%ab6i@I1L2~gK>
z!_9|efOwXv8qYe#%r7m!PFzGI&ihnh`g$%}<;M#TJi^vsg*hiq(P2I;&WX`geCb5Z
zxdb6=s$s#Td>iMz@STgnmU;R)kB+eim)=QKu1_y<Xv;m|TjB*%$GLcS5t8`<*P_vh
z#On~zh|30(aRoD_)_|M!onLjczeWOg(-It9TXdGPFl2oksq-lTHuhO!R07mGq=JUZ
zeUFZH+;shUvIz0_94Wk_>36X#R#95T;9?iQ1O<)#R#M6%`KO=qt!YZ}3J5=s`>i)~
zkTNmBFQ})RdtWk>Zv2&8@3^Q?y~7OQvC$tW<FHLje)hKXq<FddtZs3)*qHn;tzh6S
zH|p_KXfx57PpNLddZgDHjK0FI#3#wLHvRWjF~e-v!my?`Lmg2}IwKQ-PDo@)$_pkU
zw<Qz>tv2QQ3Ol%0fs=_26&}s#`j1+`eG??u&5@@8MbySQJj~zS7w6r(ca*E2L(2A8
zgHKL=0ORW1k91k)v~d}`yr7%MB20Ru`wYa?2lB~UN<5JO<p>C9D}0ViFaitldvA?s
z{OA0RWOpm~*S?iFv<vg|@Be(KipJc|0lptcUW<m$5ZBCI=HJhLV}it7mZ)7I(2KR=
zPfblN*$DnqD<7ew3_kllJzcoiXwi?^dbySUS;(Ck;TE-5W=|&Kh7GVY?7MI{FwzEc
zMjs7j)_a#<^Y;#TbqUocO2*-*NJ}1MG#1!gXSx(eIX|bNfAEgOth?C>_0zGe%g}@T
zuJVtLM1+B7ihO5tlN#lvJ!E<r#+a1ipRM*7JvrGFV6u7_$|hTT)y;6rX@$M|cTTxY
zMSUuXCoaEH)P|kqufNu3>^;mN;))+ume%(>79kZa*P_nSic>aunY7fs=JfpQwStx`
z1lf1)<VCZ|!Ho+ZQ~7GyxIoe`xZ4)p7g7x~C2570^?88~pnTMH|Aor?K9uLT&jdx|
zHV$a5RdgDCt`j@o%$BW+O3?nO^ej(tfyr$UWzceINof9c5a#bQSXgascD7JS9&1_O
zQ$mHaD1%c?d0!)T%l0Q4t4qN=&BcWVI-_d|;qhy*%|+t-OvxI0zrrqKKH1d5@A>X8
zfn-u;;|`zin}+aB`nBn;KR}6Z%{em8{C3dxQ(RRl`VT^aG@NO6Mg86JP!;nLQMu3d
zLO#f7MsgAzlF}q_gl`a)l#=u5fEk&P8#bEg$FkRik&#be)9NyjkCR_HmG!T7hkft3
zN5Us)jE#%t0j*srkl(-h@eOx{ug@Haxd70}T6NQ9=1CT`0xsW!cQLirdjT9%gY;62
zBb^{82EQ5nbZP+^yuRLD;IMTE=|k&#1kA0w$oI@GW$xeLf`m^i91nm52+z5T`I+|6
z2ag_qUWfwTPP-*VYnv%1vVfKWOac*VtO%)>+oxB0^QJYA9jW8p(nysQk$Fg3kK?1y
zLJNgUN>Crb6U%d6%M*Juojpqqx7g<^B-vmJYiE=U*F_PaY;!}wQKeH>jIAxOO^&38
zPHQ9;%{#|eFxsl2=V0@g1(zzv)uq%gw`+t|f%MmiNR<NlNf7oEdnid!o-{ow3_Zly
zJYU>8i<eEyM{(uDjvSr?L8i}gamAz5?mlk^y%1Jk!EkT)=%24MEI16THXQ^Q63**B
z6TQ1JK2Nl1%=YcssnXc)KWI%Tc!#WzRH9+SYyU~K$kIIDH8@%$F*x~#i0e36z79S9
z%sOl8G020LqBLIM@6Mr>GBQy|DomeecEnrd4s7~u&mqf?-jTkf<<T>&DS10tk&?!l
zo=OOHop;zU81Z$Pc3E27)^4mux0`@v(dearpK2dvmlcAiQswV9nyZ%c2@NY4J0A0e
z8$dM8OZ0hork8d#`go2yr4_6%XBVQjoD;6f!L>vCIZ{b`ruMOR-`rHsy0fLV6%Ao5
zRs8oKl~v-q=Z8{C@6fN#DL;U~g@1M!3!+aP2tutQ=kYNS(hp-W{@OSSMFv7b3W?E>
zWO^Ur#P<JiJ4JOPC)VW}NC_8sJ7Rs*`DB3;a^uxsTLgoV1VM!>bi(7o$T%e|d(jQg
zvFS*5Z?PHg{Kk&+@iXENr4=xJ?`WWBXiL?DqZ9gXV@~u5C`Df|Fgz(QFQ1MP`m^kN
zxSHWQRt-AMZ;Ji)>u28okRdVyau`SnG)yTRCeXQB>%6L}@2TPJd_7t*o_S{F2GSp)
zPZI_y=Fy^vpFa(;hq_A)R4+Wv`(d9ARbXT_ptP4#{?21T{@wi@u@qJu??}wbSZJ+2
z<EM!DlF;UQoRpE4>a6*<jh(2!w$2oKEeOcVMfKc?Mb~5)61Be6L{fS@`MBVur>77?
z6-La|0=3_sK0VUSluav?NQrEP<*{0>eHK;W%$Smmh#;Jlj$afdPqpa9Dc@gQh>4F_
zIP2Zvse>-Ql--^SVdw9;kjmKzw_O)&NQpX9J22HSAzkC9a*xd?^Y7!9-1KuJrXtMC
zZ?&@Bfvp-Ug~tCy<v*cf$1Td*6-+<w-|f=SiDq$!_+9v+fkEn{wEX}@zaz>p^?*3{
zuIed$x{@d-Y~Kt?`B7%eL1UJhF^;tWx!nes?E4Il;rH<1yqZq^Y<c$vWVabh@^Z8#
zM&avJk1TKBeqmq#J}h%c0-OuJxb8BY$0PR~Hpg&)?gEK{Y1l346E&KQx37oPYNRgk
z#^-N`$A8Gb{kfdP$<L3~?CotM<nvSA+GBlSRm#S}LBhiWs@Xa+jGk9tfKp!0Cg5^`
z{TQFXx6d17uNJp3ci{8z2&gjJIEugjg=FmimtZ9G+J9WY=PAgW5gHS~G1|5$Gjy2a
z{^|0{ofzm;#%HntSrZsEIP15$68Pp|ObJ8OF_$PPm=ZOD^U<ItfA-w`y2+>IwV?a1
z<})$JmmY`9F>Su*Yu&)Us+Y(FcwKq`WJ`6))5hOF_<GwkEmgzXwFaspMf;qR;w-s&
zOCF+9%PL0mAS+h?c!$&9gJMp@Mwd3|BSwnh)&0>_fa=-xXjLw1xTYcW7(0YKR^4|n
zaelaOf>ab)MM-yviXc|s2IuJnuY^UTz*i+!r;|o{A{r~JbfEz43`rtZE33q!U9ZZl
zg|iD<9O5}g4(lXFhOB_?ON>D7rut`=o14i{#l*y<@^#&u5lLBNDXL%|jQ6QryzY<%
znVR4i#h3Ck-!2FVzEI&mbTi^!S2d2FzL`BV;gEPECON^x2SZPQxoI`2lU)*Ilh$A&
z_xW2kE>XXVgiFXe5HFBP)&wxngXre?YA^WhPL;KPcIx=$&yUbzX$gi84+{U#4B0xm
zyXgt-wA*QB4oP2I_UA7<K!i&4&gT{|?MTb45){YVK4qWK+9Vr|o$|~MFWH&2$cPQk
zQiNr?jU|C@IYD0Amp<?IvZE&SI>?@D`5`il(<hl2jkZX{0oa^+X!A)@VW`MKe>HUu
z0v)v52f>nQf`MG(E#J7?L60$R3o_<rB*%y^$x3))WdUr<DqvT3B4@wzh(&#P9%GOM
zPfu%$oQzCf?CNxcCg9#rcAQDq)Yh<OqPy1Aa=tg^+}*Wv20JW|js$^0Qx&)H<JbRp
z3V$;pymjz<^%?Q&joD;iXEFGRfks?>rKYXEoB%;I5%GEn22#KeNPlm>9vvV(WzEc}
zJPsBkY<TQKXC(DqaDt<Lo|aGrOP2Jq?*`9zM^Rf2&6yV>Rdcda^ZE7K`tMyh1e4fa
zKc}LHj^R(L+J&Tb8!AD29=CYEo|sFF)Oc%Wr<*iIIJ<|Nr=5~n_DtDgw0q-nYCh9)
z4Mti*`^Ni|ARFu1!d+A`@~i9SWO6v8Z+iT$3*ia#y=*M=sA>4NvXODt&TO|q1%_vl
z;jtU~Wj*=3wzD@2lKQA=gn@5UCG|WG2PSyPDyA>ktjw86MtNfoF7bwEn#0H0rcRWU
ztd?N|#|48!qwq`fm<c-*yXpn|vf;+kNovsD@)v;D<`PGorF^_4H!F>rJ8PcGXEh-E
zE9bk!p~WwMpGifuthrOz($q_HP+P<_zeX5)L{Z-!(EIZED$qb^I?}WMxPsMxd_B{n
zX!lFW)#oz%vJS1yEu$jbSglObJU`1B%-~+!O1V3$O&S*dbrQ@s2SySgnE`uTMK1P>
zjVao^xx+=>TYj<fxtIoBQjo=b+4+qF{u$+#ww7#;k##Q?5^}pLrq3tHYj0*2aPL8g
zZ@Spzd|`U+f%FZ`u{gc{U`Lbi4tbJ^ex#9un!=~q1bj{z8yuG+f!ErDbyZ;u0GIOu
zHZ9KZ^2RR(^#n!P9zxS)dO`lzyMH<;{euTOg9LW+KfxCK{^?<@J%WN8h7Oq3`kb>5
zHvomY#N=e5E<61iB3o8MsSe03c8sj^#sChOT&?V>q$ed=g<{!K(SCW9gItH4kW1_K
z8}`SjPP!|D`Frwb_nvH~jS>=1CWf{n1A9h;8Bvn(K1e@mq2}R%C0PlMU7BgSyOHwn
z=L&^)CNp2q@~-9^edddH2iaYX1xQb@yJ#J7C-LMQ24&snS~ZhzA~7G;c5;w8ZHzlQ
zF{^wNTPhi0H}Xu*WNxiyXVd5wQ=$mT+V^qU_-s?^zci4t6ZvP=4|}-NS%^%$EN{B!
zWr>C*TlxlFGAkwLV{2mv58JaHm}Ws~ful^wrvX7Oq*th@bn|kub|gFtb>+;;MWsKV
z(>q_;RN*I|2-R+>Z1Lb8K0h*cHtr>tQttMlEXhm^C9hfFRzQ7Kv+W~)L6MIW<|RH$
z4z**j8+We2ksPRwE}+P_9fZ|aNHwY*X3D>ssXKGZ8D6ihG-#mX*IiHS+w@B*4JMmw
znf8(^SRUO!Y98@fy<&c&tobYJNzv$;J7={2^n;yf4%kbIH;rm(zl>w6rZF-kv&!x)
zD&e%lY8n1LCYegn-S0xtd~apyXp*p+<!xryon)V!t0$aYEbZ>Gr#9qoc(gK)W$DU2
z1?oeuMX=*TeUQGz<rE|zR#MvAzXBDtdG?C$$mno)XHX0nnc3Jz<Yw<{fJT`*NTGQ6
zDP_Rk3k2m@z3nP_qs3hJ@cYvN9K(}+r}F`>ziXG<+5M!YIu@o1Xzh1@D=n^0IfT11
zt_wI;C)<3F)=8au;&Qs*kMgc?iHAu2Q<D4eDKv5yCBa{2``zH|V(pz1c!1diBM?X|
zR?owZWe{%%UbP`0keLJen1J=M;D^W0gdAT!#(F*>7V?EN$&~EK>tTen9Vcn_S&4}<
z=Wr~stzg-02NMn&^lxIfQS@;6DjTJl_4U{nxkrK_I8MHXp|!ntly=r3^GtDy!%Vcq
zZ87_~1-!9+m)N+q^z7>6dzTmyJE4-v6gTD+<r?0RRtF=cc1x^MIXAel$#^r*#LrP?
z9itNFDpLEWaeYaO-|ZT0Qhej*175W{?#WlG=ZHk-mH#L`q|r(pK6X&fvAgjUBAXg3
z{3&Xg`EV|a^5{yTFqO=V2`<CILX<T5U7yUZzXV8Z-i&!oZ7VC!+_lz3eeC1=p^Azr
zTTi~`blzGtp`2{1t&OUuH#aae#6{E?kFLD{md_2}D)UJREKN5hnJsy{{dEWO4I2NQ
zklq~p#n{C@xnGalo;UZh2{s%hGO?g=CplnjsXh2reG^@+fpNf(f`;N<T^C^_sl5|i
zYBs+4d3=v}ojQfT2iluzZ#{>g`EAn<XYg-X(67+nWmrQ)@{Upy&=-=qZH6~w+l|ZX
z7dHz0I1Y}ov=bk^SVLd?Zm&v<K+E>*@rhDi*ryW=#(;YMflWB*<C>TS;1ggWBawkp
z?00-O5FSMNVlnXAdiyPZgZ*6e?$Xp}_niX3Wt3J?;bm{xJAUPCiQD1ed^BG#p1pq5
zWEIhCzBK`w0U%I<FnDsF$fN;d4fwYT6G$s`4z?^LR@V*%bH*$TcO+tQvA_P0oOvv5
zZA%2dA{3ArS)>dM(t8E7dged#k!Iw?X%uskeC~n~)$|qr{?#aa`9K_s;+rSU&KGW5
z)KDNDtl8Qiz^3|0kXh~n`HE->N@;W}$u<om1eshTF8FIkxoG3QN3k@26k`c|Kkr~8
zuzHd&X_oC!hMj;f=0>T9C2EP!`U{<Lf8+(&f{C|{l~1IWf|l{0U_4NooG-F$P<_B0
zrM62v^{MR~qa!o@MB&j$iLsSNtk96Ln`5W<sNh<o38|zpIUTL@D}hQg@jy#1>%QAG
zm|EtTT(>NZk&0_%^g&ntRazB#g7F#+qHgalPLH^c*+28FD1)&1o|gm<eCdi}dLgOJ
z;PLcr&AFbh@_v8Ooo_@GX06-K*B)cuGtW%VWzl(b+??Ukinl};W$wtI-Pu#y%we*(
z{mODwu({aAg>CJAe0c9!Q%0^Wvv^=Cg*$PPN{!na_*NQ^(}aV$5cIpGJvla=@59v_
zzh}eZ6b=sMAO}W4+5lqY3=I5UhO2(k015l0m^ciJyk}MF$phNkhmRs7K`mwT;^XA6
zU_7y)qHLe1<M;dCHs4>11weiY{Btp&?%4An`CLIgscR}L2(^SgEom#_^JFaszMFx-
zhU&I7m%h-B>Gc=?vAtc4+^pq=<~qL@mV;+Yk8F*o5x;?kDrxHLO?Nimq@<zCJX{);
zDB4^VY%*KAfD1y}eeZ<1FHbpKO?AmFLr+xclOxBF<w|rj-VMQr21<G3etNVp&f&;~
zmbG%x$<xPr9#ltFu2DzoF#D39r(77sV{tpkfO*<<s^fKi+#m3I=Sl+u7A`^eH?KS>
z^22Bd>Q7Q>+pG!3S?2s-M1GSM%<r0YkndwjE@}$Tqp{l7drJu(88qkXlZbKGYB9EJ
zjzd-pAoQxL6XzDS0{5q?Y{{pRfBJFB?$yCQMnGV`4tbe>&?I3sg-t2m&_v=Co~HXF
zl}Y>~0~uqG0gGfGx9W{Imc`HuZ_9E`Unw(_d$$eQg$+4gy2I;~NT#LY+)B}}O0EIK
z&o>lc-==E2%Grkg1E=yQML->*xxmmD03`d*X@lN)bXmUyKOzkpw|)SwN~~ZQT#Mrn
zE}ipwp#I0sG-@K%V_s=Si=}e@>aYA&{@DaGkh+R~U1SA?D`PJ~jp+L!caR+;Q&pa}
zPSo|kW3r~iBsuaDH@9St{{1~ZDj~PFf3!MzM2VSw9hLuR$O-Gv?e{aPH(O=6oYD%w
zl-eUe?~Zg^Phh3SSIxt}MEd(i04K()nX)`u8Q~r;@*@U*`SJKgGx`9>CKDxD*kHn6
zn5Wgw!v6cGl?mz$fkuv!l{2Uck#QimbDxF3F%QE%YIgcryZ<+517huW=H6Jhe^J5@
zL$f*fOH|LeV^_g$lr-<qIN82TB{9LKlB!!$C5Jy9=!RP3k(f{fXX7)N+3(6v`9&lh
z$8-0jWZ~=HIh$-G<5+|c#`MR3x2qr_7?GNVQi?yEo144voErPq6<TPEfIVnLBb(xo
z$*6<jD8Qi7&UcWO;6MGz(!S?>&C#8$A;HF@o96+w;es~uf7@I&Wc~BwWy+aqDEECX
zF@Dcut$9bu$R&t+9KJ(*h!#1VT~TP?6;E$(jB~|X<?c_4jse-3JBQ_&`{`nRf3Dk2
z#OIkf$>78#>o*cy&AF|2tmJrr#(8W=UtW`(vrkcrmN3+cW}Y7}M_}i>2{oy7yS-^F
za!^|tE&NG!d@V^YKQCj_=$i&g%&oXKDXVMgz04a+_Z;YKPFLxA(yq~4B3-Ng>zW^q
zv2tGGnOA#o$l9@03l`NxtO{hF=POix*NyCLL#0x%`Sy=Uf&I*(jMb&xfKDNK*g^vP
zbRjwX)j!vEFd6)H+#Yi1GxE>}GBU*_6|%P<Z`+~I-4;y|x3z%%t#R;bIJU2ARBk-y
zQf~T}wdMBH-5;4x*EcN(qKotTN<U`qxFv}uj>gEsQtLaF;u4c<b@?ccT4J8MMkeGM
zA(>KQ6jBLB@>{j6aQ)eSc1%diwmoQDbx3jkyczQF@2n>!21|wS-<tFF;F=<<L-%Y&
zbf|#kOprml<-N>J3<;1)^AXMSi@GAO8fH3%#rhPy1m)CHQ0T@d!#(VRN8fod&V1sH
z;uIZ;)}CIFonMP-k~84Zx*MJQjawc2<K<846|QTAC=@MPF3@o<ET8Y%E+la>3ZcMq
zYWV+>RyD4)?s9#tYuh^<fkhe=J@|KWEWZ*0c!gk$vYyYG-5XxR1qiz9-*bX&9PK0l
zatR61D*|Od@yjo$AU78bmVcDj*ubbfi$XKrS9lx-@B3*S8(J;z84*vu-^nhO>~tyL
zKBlxVJoxiYs;Y<FSI{ToQ=e1n=K_+s?W%FQfUhfOUac97HR~7*d89i6ks{Q}<;;Nt
z$in=bZ{DVxSbwrh%x6Y~8wW=k;spzjjd7=K6pr+uFJO>dU(ld(5Jxz9L?aEGQ$eN5
zKT&XJt@W_sl2!;(_RxJwZP?t_64bZw+zahPDwKa|y>;0ut`AIY|J4O(hKxmshVL!9
z^~iGEOp~_u=(|7HgP=5U7zJ+p2dj#J<jf5QcV7}iZcv|zL!|Zl7v$tg7KDV@)Z$K;
zAPYNteff&f$_K;t`VzfCWAAk@acMP3V}e8+YD~m|G0YNSM_^RT35}~NnOtfC?vcCS
z_xEDdiskbj%`v~=;o(K|Z|%=X1Z|8``qK{vbi`+>xDS3&cNq9^IqU3g<kSp1qz^rA
z`3`RsL8M!lYZ^L4E1odSwzk?-O!raRPvZ_+)->g9a&hcvpCVvh^vBqiJyt^IMlc$d
zNt}1LKaH#wg6c8exTivsJD819jcP=irYvAeiOPj+<B$Gr0p=e{O4Ni|c$#}AVKdcs
zI{2QW#(!8SE_h|0^^l`q%6fBQ_{da3%y3vk*O?UMMPz~psbyFGPsb9YA<8#_k*4H1
z!ai?{gujlzGl1=UeH{zsu|Ug^{a!M2v$mZ@kX@9zXZcIVvT!m6K)sOC-r~?@w%n>o
z9dZc9!i-u(AA2}Y9JX{XzXc5H{_G|Kk#cCFD{Q9(QhHom^F!2sJv}z{9<xMuJZ|o3
zzIa+~>HFbFRBcHB{n>H|!y{#8W?cyQ(|r$csR0G)WlzT*DIN4TI2bsOw{`S>`}nA3
zA){`#Dd!<aYt_Sh-b%89g6<a3jRA{^3XcD3amG_1g_JoLhc5J{s@6Vk`$v^jhW6kR
zUqIf)&H2|cx49<=J4?%@%hjWFm`RLzB!VSqc_do7QQcz0PCvx%XP`QlSAuF1GNTpm
zBfXY1Bn~RwDmqVlIW5Q{{L_UX;(V5oUv{pV+b4Fu{pz0s=QlqJJG-;%t<lUU>M!t|
z%=-~OS-FP$mn$`CqRK)?h0p0Hb1h&VZYU7p2UpB$W=3(3w5E>hUQcmOR5uoVPq(M*
z!OBw;LIb{|yg*Os0TKY;!RB(?Re(O{-D$r#LMCoz^i~Y%3*g$cc<f6m)fJ?dpY-=(
z5O{5+7I8W)`(+5YSbC--svkFIfD%SC#;8BQMr|SSPGf3}S;0y8aBsZ6L|3M}rbf5%
zHrVo$k7k;3qI-JZL|U-VX^Ky9{@Y82ORC;?$mycDU#|CTQP8r{0wZrTSKXdM?E8o3
zdCxGPmZj3$ET%RQBD$nlMstFL$uH;e2x0T?%f8)Cw~ZXJhQpT62fj9Ld5^rtInKbD
z@C69kPCcMJOor*%$kdMv3O>+UxCT;<Jgy6Lwd}p%&%SJFU^SS{{`~p#MW?j@NMJ0G
zo+gN9WbJ-C5cG)1)%}p?6McK2OHP)G<NIun#=fnv`lsbGp+QFSx{yKf==&SdowPse
zZbOOPOrI{tqzxf5zm@aTRrOP=3K)#ufv}L_w&^;5ET$8^g}-wE)#xW7XA7!e?`nTP
z#`ra%9hl(qI$rjUJNI3neby19Jn|yzxE*b?vA6%`(8$qa5pc=f;II(cEPg>n5pb#w
zdhd@AZI8{9O8z3UrIvFIk*gH(ytPbEFx?B~v=EB|zxhB_)SVTe;8uXas+!o502u56
z*4B$f*e{Qa<K}TH+=yR4#Ki-7-`$}h2{>J)9JRr>5Z1NTy3Z=xuAXN3tvLg4?bYFJ
zlMjV?az-a>Z=b}a9cv{48cQ|gR!F2~PYofs%ISCUeuSliqA1(>F|fTjs!fMP11K(4
zMs_R)!QrnI&-<ql(qsXU4YStsgBE#OTw-y^L&u9FH3UvSD*GNk43k3I-JRDM;!ObY
zo-qeR*7cpD?5;JFTarB47%qpaE#8&B_1HTU0K@7|8Sg*>o3Q<zpr+P-qN))XgGP3U
z-s_a<-tm)(`rzlu#`eVqxZow<?!+?g>4azB-4FrXg$!WXKyFKWkv_nkZaD7_hltqv
z!9wt{2HbhK0w+SGZ?TXI{|sJdYR7h~2jFY``ThvYbU1kwP;k35SlS~iA^VD!*4F8l
z&AYo!zmEDTWTd1-K^qe;a36?Xb$WMQZL2{CCaE!$E2kP60I2iE*U9KTX;Ce}{7tY0
z!xoSd#L^1gz4J7Z-g?eXr2H@?ea;m9YD7~I3{v4ctf>u3R(T5z?H}5dZ$l4ld{R*t
z^k%H+yJ6(n3JYMXpJEEVIUnpvs2~?*!ZK{Kv{N^l2|ktO18z7hDZn-teY_w1k=yKx
zA?D0|W^y~9q<em*?|1V<4p7;-mzNp{R&Ec@U+e0kA|W($SW2~5JGPS6tvi~YPqlci
zV_}JggM07Mle6^{Pj;XrElRk2sdRJZ*#QLk2oLTyGcP=~2$lm5MG*=kO~2Qa{%mNd
ztw&ZGM<h=pEZA4i&u<AS{ZBhCMh_3V!Jd`w6^0+pY-a()i`PjE|DPi9y9e7U+0d}N
zrf1z@SpC9>Wjb4<!<dg6TQxOXgM1I0pKP1Fd=x8sv_k9&Boz)lJ0w(8>b-BkFZL6S
zi;=2{o{%9%)kgPs{OnD?Bt`BvG@4fXDA$)f8&^|{vL%6f(82Af6JkI5UEZMoIjs%o
zZJJd5lnNE~Ju?NviKcyM$i;k;&gvmh32B^ZM?v~Hyc#flgU}UxwgtI=;&oh7#OZx3
z2*y~-pWoAq-TZk3#8Vz10kh*O|LbeSA*qHeEkG^wbJ;Eq&MUebD{t8m^DmRzE91q}
z$?SE&v$@#Jj6y;RFg!zrAcDt9z%4MmUdK>^Ec<)19O%}eZfEk72lyZ8EkYI^8oCYA
zUF?iQpl$WOM{DRTfR0#jc9y(jk9g#wfX0Uvr)t5L>BQiX%(gROv~mSUbNk6&y=SS4
zB(BlmK?gZbAH4p;vXkhmI*@{yJ$YA{uFddc>O3pn7&arV=CA!9UJMNLnx9rKh5`lY
z;`oxtRKtpnBH%`yhuonHg=p;CU{QuS#Y{&)fZz7LAC{GsmB3}9MpaSaV~*Pu1g*8#
z_pm(*41-yX{jmD{&T0{-=z<dhj(U~j(!xa-QD5p2KK^O9Rf-8F(k#phy}^DtI>hr1
zmm!nq@hg|$4Pp4qYHk!q=Y0Kr*X(!z#R_aoAJAz{FaEGpy_;e8JMExUJUJV?`di_V
zF?)9_rDgoJ)N_4G$GGp}Xr0q{j0}|AYv2rGB$4u)!jsuP^IVc4ee1cuz{>F6(tAt#
z?kZ)R-$B57Nb_d=z6=oZ+18E(5Cc$9-)(Ge3CVIrJ|h#r)(N;JWn^LL?oE02EsgiS
zCydhX1CvG(3j34z++1_R+rLgoK*GGX`nZ><>h|{hwYGMsXQM;!7m0qey=`&CbtWJC
zg9qdC((KhFVg!#MHrxYlj{tGRukDT|lzz$pk<e$)10y3nt338QUb@foaEsS&`w@U8
z{pZY72Hc`+6sdLtpbx?%ecA5>19<7?m6xm7a)69!f*g@JSk4cUZwPyfPIWGmg9i>h
z6?#-zb29I=w8%Z&4Hs#Ss9sW#wdZVq!rVjGm$t+7;Tkv9ui`Wx9{C?Yt9x-f)pNiU
zyN+aezfj(2`s>@r&%E$AN-a5GzI-ENv%P^b0LlQ~Y@08?;$zGn=b$I)*XZcz>aSma
zxO(*D{m`~p7<>ytiHI3l-d9Y@_s5q_2e9VZdiV;kP465J@cGo63<OPh`1$iH8VD`=
zArvSmC`gFK4n8?f^ggNSX5mngOaHTzC0blj(Pvf5-q1rH)jRU{!R-@}<oDmSA@&wX
zn-CQIv%{5Gz_eN`i@;0r7{Yd#;K9f_tBIA(`#5Yi^wSm)$vUO5#6E;k_#q*#wTs=E
ziXL#xoVWDws&jH5T4##_0uHJ3)pKjpZyz2ESv*_S&$ruF1<K792j}hY<{;BO5pP?x
zM$}Xt*<D;*m9I~L#Mt7O^(v=(F&$qkTRf1lW&Sr$PrkB{VZ`VA6j_uveQ?~eA`eM#
zWXCNA7&~+U_3%H42bf|6X=YMv=ry-__YNh_uboohJ(72GGa^!;F=Tw0D!u>s==wZ8
z4=I*RFc64rBxb&U2!Q9#gJnvb7F#k1GMKK<{h{;CQNP8==W%NB4kX~*jxGz}9LOKa
zUZc(l3Nk+DLA^dZl;R;lxR`+01#Gvuu#7#3i;uYgSi3t`oFZG$nHKUVh>|)n$%^7r
zc6KZfmyt_Dgvk9yj&Fku+0hG!y1@Wox)^ZpzmxU&Npo}a$6+eK=$?UWw=`YBSH7XM
zX#Xm?hde}lx%|OT2tHN!?fFs|1~_Ch9iFQOD_49xDz2h^V*~1WFTMVlvNr8wMqQ)>
zY?}yC4iC96xTNALLRS#%;D0MTkb?#xT-l{$P?q&NC=Sa^V)qwT<X8#25lILo<l+H@
zr;-dXh&s8)MMB7h#W-UZbacY{Dg5yfQ7DFAd;KsVfP9@HBf_jZ6j-pR$#n!iyg7=+
zG6O@Oi{E+oy_8@d05;#}_gkr6hfAJE2*C;f3S(qumNdTpJ%T58@|-N-<_M9Is_Ph_
zgIvV{PH4Z}iUzi*!0jpb>t<(~EZ?)|AbkLLvp*(aQ)?mOP-Sbz`z|zrlaX4)Z!CLR
z@U9&ZBe*d-#>OGZgqQpn=|Hm9?UWJdW_<~foUO`vxX@5&4>0SXZQTXLvZ~zSgqnxT
z<iGtkx3`6dR-3J}J3}!DhAa@Lyv*R74<YjLh6`ISuu918rw!un0K`+G=;z#zvjvZ&
z$1M<6U=EIbVU+g$(`*JWw`#Lxz_|QmTs%xF43nB7)@)S#K4N!w$#%4FJ(&-2T}&Zp
zQboePVzo2%NftRGS6!N)+Wv~Thb$%I``8Npee470m6tck=V+ZlG;$_<XO9LMnyxE^
zM^~&>GQvwM?jGM=E!G0Dx=PcHfp`JO?=M;}`$)Y&)^HSM;D~~hh)D?@hn!j7Z1nSg
zDJdDu@Zbe%b2PGvs|UU3zhVQtP#c$T(2>4@eC=Zk(Mr&|T=Xk&Vob7q2|GFtJ%7(s
zQoc3vVPbFFbJ^J3T-`Eo>XpJ0`H&8Ap}~zn23mq4ly`sRkUl7Jw2;ZgQuLy;B(Eo>
z=&Tyd_>o$xrA1>kba0HOr;tB(^iJhGp+@?K5GL!mxx_hz&tP%CHAWag@1PE@$5MV&
zdTSKfA$HDsXFW<{cr;bHnmF!1wkU22L@KP#$XKr@DV?ta4XS^qc%q0|*SH9rD{Zgl
z-QQy8#JQ5m36S*#DW!aAZ>IoMk*@QK^r(pYBTA%%m2na4A^e-o@z`Ggv6(E$_H}_1
z@wotJE~EfdgLSSQ!K98ioR01850Y<>VlT!i{U`y{A^X0I=%JbhydMzOsPapHApLgB
zIy3ZgL_7t_iJ-uZ>PPSq5a2JK9kvx`4fc5)byR~s<VgT^{3{WPM%HTG5ktTT2awV4
z^YeChSzK0%DVrRVB2^m@gg(Lf;<bS*^Uq~PlYwD?2CM!9T>zO~xXGg5yDzqH+>QEO
z$Hk%mw(_va_ec~#0p%I=5v0gdb_DTD;lGY5_$UL_{fN-+xv~`MTBt1J>WX)Fc4KnX
z36$b4IULbwWhun`hzURzA3~IDu{9F)QupExG~}@*6aEKjJebTi_@w({JKbrmBirxc
zD;K-@bSI+^3ZLk&p+IPPZQ11h=|Y2J@1{v=Olij*2J{$kJS1t~4^2~Gj$<HRPu}M{
zj@#ZhA#Om`7wh)r$f)_3oiV#p1H{tP(qPo7VhRul#54WXKRcPljQn)=qx)OQD+<5R
zb7LW9`CZrnvph-Ee+W-;S!yY$3E;>Z#VcnAx3z(r3bFA2lSBU%CjmSwQ0{>H#3-5n
zpLIzP%Q@it@ZZ-N_+S6LpJ&eh#`^y+cGdr}qCyz|gFpSxe~(k8X=%ZDabS}+{U2cf
z?1?<H%+&vSmz}x)N$dRQP4oYEp@IMVTjmc=&?!{`7VU5YfY3XcxMBctJ+=j%3O^ix
zrB*+{3dGUzG}|!iy5L3-?=SwP>$|0kGUxtabZp*yJ2_?mR5O0qXf_9I4iOa`X=-Vi
z9j&#n^*<auaUxsD+ztXCd}jxds{Dp6uZHNF&HYP20LwtDp`0f298kasbL<eBn1^ki
zM}UNxT-D;a--nhh_~1X}{g-B4!4&{k4_-T`)sNypw+S22>+@VD-`;>s3n<Q5c&2at
zx;<a%-<xw)77ha>*{~Eg?sM^0`{xM8EP}#+6~kW*DBEGLTfvt#<h164k_oQOVt$Jz
z{qW{HA|yfG|9iErL{fkM-fnzkVBNnm<-O5WAWR6zfpm0qi2MXV3`QNCDvhGRhSdum
z0;?7)eo4IEmpN@z_%=E;^f6G`%&DvUx#$6~kLKW_T(U{Z0I+S{;1$55??UkD0fj#6
z6ZqjF5*R}uR00U8=CH|AL~p|BjIXO@7fW?258`QL5CQWb^#50tm>B*NE+;<@UK}5!
zh(HVqDK6vT>A(+~rZeG{UU0Nka$LYN{$A-2S5#6OwUvyC_X2F=rp@H^qdo3%#-e-R
z99*Xys~_-XxyFPy<f|y#H^I>|fm=9`V(?MzX2vtyFJ9w3hIt(=A*35LwYAN666m1u
zA!~e`hbe}BIDj5HB9f9a&OJOjo>+o`fq{6huGOl|4B}`~&on08hu>O{T}D_q&ZCKt
z0M7swNz^5u5uB!prGIkOTpe4_bNhYUs1+`=Ip@_0UUbAsLq!YyirITbK(z$?SNnP*
z@J7|$L*@BB_H?5KZKIhqr+;c%0Kov%u<i*j1pRu0Xycz}?{N7Pq4hx6=`whGZt<7Y
zDHrUB#p?G|+GV<q6r>T-FFRTh=>uO87GSya9kiX#AemNk;6|7Nt5=}Fm&XL#U#=$w
z>H)HVVhpqm913gS|DY}@2Psa^&E?E`q+l)iiY0P_xg{WePq(*?)ol(kWL0ha4Mb;`
z-Ygvb{L<_py-HRz5a8m@0?HG9H-r73`SuOvmWcqzK33$o>iL=J#tTHw3bvqVNH-{&
z30RUX)_Nj_PJX4Vt(k)__)NR)G@;pHG%dh<8%j<dnSwYkrC_-%0ln1^R`i$>@<)tM
z$MIF~Rik?Kor8VF;s-2oFUstL5(%F9JsSEY!$5({QFmvwIBjg7pwCn+q~kU4{9{zv
zKPM|XWH?Ki{aGFuh`hB&yym=o&nQElHZf{NC@*_|=O>O3x1T4wqZNhaj-r7Oi4MJk
zvZGE>PJ@IY>|W?KdxSKRI2-DYz*;d35cG4aOsKk6U#eb=pn3W3>jUaHkd`n7O#dN(
z0nLa&=g4^Qg6YBtQ1wAq=8?SW17Y7WFasw_zphLdo)Pf?dy`n5uS<ji2}o7UkmU$E
zF4_vXoT7r81oTjxw^FUw62~(G0fZ0G#St<RK>ijfA+Uh6>#zq;jc2ls8z=!FL^C4r
z7|f6JYe#=X%NkpcXIVr-CJX;jBG5p}<aDL)gOb1N;|1jOVVeo?vCRQ_{k5Ut-oW*2
zwS~H_u1zQ#GkcA4`d4ZYY{rC%%)s7i+N&8B?Y>@xHM^=C=)8k2mx;fQRo~x~N8INu
zKsn--2^}CntGM$5WJbz?lY;}IM}#R$UA)|e9t0(g#<8+O4Lf05ebz5|&0*FOV8C-E
zuY&$UQ6G95LeW$8?2E1bFP`2%#{K$HEUugJ&?N~_7}=gGa~VKW>vQr>3r_IyRVI;|
zvP}^8;-})>k2|eVL9N{_aHEw^aAMKH2Ict)y~~>ZQboBLciPg|ZLJhjK^0h%H`J<A
zw$XgZ36h&YW<cG*03E6DH&HOyX+W7lhf{;^ii-?0FW~+T+!x<||Hwno{P&hxh!DC!
zAdOeo(1<~-5s(deMk@3Sp&$SdCtV>?FAqB)!3ea;Tz9N)dk5os%`kgE;PsnByai>W
z8N0ztscRSoA$ak)6?Ju*f=RZ{&YXau4Mpq}a78TuMMEteBZsZq>VAq|z;<WrH+<h2
z^0wJmT}vzE9}N^kw<2rEGlSdcFVDido8T2K&ND`y={xpwu---^a4`&2Bclwenwl7~
z-5J$$zqY6YOmCi_l;0v~<jlbId&{Hch3(BL;Y8h8U-8=^-OjZ9zVOx$a)1AX=9y)W
zs9K~K?9B%i<V7_lh2R8yBMw;)T3Am}4u55|`SVBvI=ysvGOf;F1@qcu2xprvYl#ZT
zjA1od6O{uG-SR1aPG9><xg%rf&hM7U!2BdPxZc+*X`M_;aa;H4dfE<ctr?%MGzFrf
zMnv%b&IMm1Nvt+Uw4<)i?I)xB%T>{QJi#S@;nNRZ=}!iScAFtqmzQ^nkkbK3&1_wT
z<5+Da7MYWTgoJ>GGv~gq^{vm|N(UukBPS%_id^q;gFzP}2zH9R1wlmj?=j03Pu1qh
zwr`{tcuJu3;6^+<V2$?Ap+P8O48+rro5cXjZEzQpWci;xkA8llhs31*9&B($GtD!9
zC1EWst)|2FmDP@HpLx#t+WdUvFf7W3#B_l!UdFWnRYYo{yP8=3d}~saw|Kspro6AC
z0uKK22;4T+_DU)(pVA=x?}T3L)QRqEtX!ny4(JA|sO8Tu>uIo|L`bpnH?D6kBxq2h
zR5NL;T5ii`*fC9NXqOO9@um;bWxmT}IX<wmkgITZHnC1Dselh2pk!vsKB-`7d>0L_
zy+PzP;r<J!0HT(*{`DiTU!HCLCPIHhPj@5liVpWidez8>j4J?nrMmdcQzz@jn1RqB
zrgu|+qPKTOFp7pEB}uRAjqFZhioO2K0i%<o4-L55`+~5<kY3P<kVyWTuXl3)-4ep!
zw}o7$+unu$3xu;jSMbWz>lpQjwT2l`bjm@=Bmh>%c7>&~JrHtxmDAKTyV&lrZ-D6k
zBMmxfk*t)1y$Y@|NxN8LOnLtl7jSX_^CrV*w<P&c<f^mE8l*waAoQnM@!B3+vNqpC
zOxE&%&QDwL&Sa62Ocz3U0^CR=hX%6LIEc^T&hs@A1P@k|_Qjdg>VLL9s@%U6b#S{3
zSBw5XvDCxzjJF1eIDNiF-jBK?`COCbf6Z!UR{u6jvC;J6p_Gt$aBX8{V+@ydqNu;p
z9Gy<^{@u`+6Qrl4ebHBGVP7j4ckP&{QUtT3-|e)u6ncagwsKMlKT}WW+>1A&8M|gr
zN*>al<E8K0-p)W_GpHT+^`&wv`n~OL6hZT;*CN^<d~kVK@$TqXC>L|jdHi16z81%^
zR)>PDjW+|VO{#780MclUE55m^O>`cqQ(w*^s{kul-8LlMo}q{p%u;_-l30(Tv9Rgz
zNUK?QhCDfSLE}hIT<-^+yMo6XnzjsZDiFBK;C_Wq4C{YqOt@t_++MbO3*5GHJdlS3
z9i^|_5S|^XL70nyB=$Ln9)b_L^|SCl0v)Lh2=jLmo(zwx9S~D2%sM2WF*0-YegiM-
z3e!eHh(8t3;O(y>>B@2%|3}M%UQK9WF#sqob%LzMiUNbmwfC6dVioIta#0L~qLD1_
zg^`xe{2i?NP2V{;OU(}5UAO;<C?H!VyZmDgcEYHal9E#O>BlDpd6I~-Vq&@L*FYi^
zFNV)zA$b%ks}G8H@w+1|(BJ$OWpYCe%KGYndr0f?5X*nF?$rQp3n&W`$4E_uQ_nTm
zhR5y0->x^_c2HWHe@Nk`B{ySYG|mkrRg}<~(a>0cJx#bH$EjIi7H%8Xb#h8yxNqqv
z|H(-sJgr6skrwW7_98#rjDF*Qb<9S7KgN|*tLBit>nT@s_;5p`4n{Ty@zWoC+_eu&
z@W}eZ$c@MwFtq%owPPD%H)<&@UQE-xIb_-9OJaivInTl26X!)<t<+giN4&{el!kn`
zM@IHBDzoBS{kTN;z^5+J;VZDJN>`RzC7aUERz>jdIeE9^Q`&Rh&Ma!Fy0)XSzM@<j
zf9Jtjn}`f^6F1JJUd-zMiZl7Y*0eyQ16)wZa+5p&k&DkeH8r8=X<<PFm~8KXCn}Y&
zu-;<O6Rf_UB^uTK*B%8gO5j3(sn2<HfwSc_WiH1o-yqBnT2utgHv)8v?I_#4H6u|_
zR4fVd7v>hrgzCqXWt#=IW6L9sJF_!Z4MTe#jp9twUnk^sUMJ3N^;djpTWqU9;ZWx)
zj)N~AIw70OWmqvU`g~oGdwnIdJD@DH=aG*s_sjB89*kXUd&GejkvvS`XpT7@Uh)3I
zr!DWwSN!EtN}5KF6cTKi>1LUml!CgYU3pCRBkugaumBw2B5*G7Xky$OkKf~c)Y>Nn
z$f2&`v(jBtW4?jotz=60B}&4K()In>{-8+}AxtH_E`O3;o_?l$yRW|7OihYVb|QY9
zT^?p6S=RrbO3M;Kk@#W54RRNqy(nr9j&Xb%jN_9NoEX_01~(fj@1SxJS)Z|xW2y%$
zLbzYEDJq7@rxQQ749-puHy39w7MQ|W^gW#?oehm~F(Wd6KHn=ZFg)sX=^YWuTomKn
zZrPSs0LAQ7|A8Yhp~Q2HOM5GjxLASGp~@9CNniD1$HY`+bCCI=Fqv|iDD)SfSHu#S
zE)7vx{w4oQCV^XJJOkbS)Wbv{nZW!b6HyODDn{1@oPUP`fM|PI&pH2#NTsv7n+j67
z$iJ$-ORp#Eev%qe%Rk0p1PUf?m`7jVF$q8MnWd19RxWa6to_k`FolVGQZS@;toyCW
zcyA_w2SP)kAY?8q>x5OxvWC0B7q^e~S}l2VSk<Jw5~yYVzw+xD%hhuLB?>-W-i@aw
z0tHP}{0$=0-MSKB1Mw8}tWco;Zqc~0z(C8#z@SR!06nZ5w814<32Va>0L1_lF^ZfM
zK)DeK+t&sD9S@DxZMB0^VuD^(NE6>HcFR@BD0)2u<Bz6c36pG06?tzgF%uqLL7*kI
zneDfz)%~%DjWyhHygz}j%8uZte42d%HUTEhqtc0nb^3&6!Q>kOvzzeAWdDW}v-!_F
zUFu>7-h_=&GgWMAx!iIyA-=;+#uGSm?%j6d$0}-ZZp%7%(h8Tiv(Gc1AeGWg8A?*Q
zisC<2h{cfsjh~$ekcW?OaL8TWT();`OT(UMiOS&9SWPxY&i2YxJ7z2%F3$}*q(6^R
z>L=H_flSEDMf2<{Y9;vvpB(fsz+c!*JNVE3rh9c&f?hh7UbfgOt?Zi>?H9gJ)%h^T
z-|WVtdO>@pG3yZ7EiaFmcIH#tX#7x9IqMDD-kHl$F2~er?&xT^GzoTWFZR%oBw&O9
zyg!)`u>^2ChS(L0e<(W>z@&(N@zYopFe25}IWc8P069&a>$iZ(5g-Yr=#(SoCdusn
zNT8kl-JLw0&!Ow^um$U6Xc&wyum#4KK!ex^75IJz&#_+*s_?IZ!mcjZ_T9VguUZ_d
z0K+ZksLEc^x~rH0xq7~2j+nZD-T4^sV&DJ%F0t7Tn*882VZmoA8~vn?%Nv)wMpC&&
z*Qeb(ITNaclyUbl6VKxI@Ap*`ewqv1TCIiY<e5yruBSZQ+uvi8h4E(Gt`%83y@|t@
zODpv0G4LToUzG{_SXiHuN$hkTP?@z2bR}AdOX%?UWS(=XMvdZ1ywQ5hOlsMGfis%l
zR!7ibwQ0KYmWX!$vL>a?fFc7vNc?7-n~sarEXD=J6z8TF^Fb~n6Y;x7$r>YeSy)8J
zGE~aBqm68@K_Ir4(DQMKd<Z8MIOr39H|}4fMo4#2DMoI7Pa)F}j%)8mG=_k~c{C&G
zkEOymq^5}YGxblh0!MAkcr<OuQd;v|`R-CVP{yZ<5<)?PaEmcmFfV%KdFAt25^XJt
zGgypf9FGv1kiF)*+~>sXmc%3DhZegw+%7YJ#u`Fg?KD#VY-@QEO;#6L*AYx@Zqa+e
zBH|$^9@kElLNL<yiVpTdpr;LB`2h69NTP2yt#>}P4~!W3){Y4GR&>G^GsqI3kwj-K
z8qQppJ2-r(psB3F28csOW)k44;#Gws*xYO*<bn($Nu$5-*`5T56zxZ&PSmCTbp?gC
zh}s=goz<WZpW%O&&*QpM4{-g`d818tp`@JtS8m`Zpp7oj<xpJwYO_y~)%b=*Q|Ays
z3q+xvL1At||H|0WG6G$NSFReLTud18yFl-v+V9e(Ot1Da5Y<poQ9;CTKv~*&-q=>;
zA*m(+WMB>r>Je(3`R4g35~wajYGq+wXbIEzsZwqu1JdNxM0GYn>jn~mcs<bzZ=h)0
zZHbJ@LmeLtrE9hf4v=h!Vt6t12i^<WVitwfF*K{R)(V%FdAs0I_uf2)Cmn8?2EI5G
zBBRU2wm0C{K@pB=)pOu;Wvk~dFw+l__q|iT9`RLK_FXYxtTT5H794M;EXwrtVJ2<O
z5SWJ7Xh<tisYRTf5ZMvY{C$lYip&(5fKLsy$U?j~H<1#$Xm{p{g=7W^8{-ooLiTej
zM&tyvy`FgnM#>HBN=o$dLMYtB9KM0cc~j=)9anjJ)BBmMz3~u7cRYUQQC*!Vh^%e^
zpMF%g)HnRfqBAVvT}i>HeMY?}g5vJknwP}c#~1f|nZBQmwfqk|e8-iyG6xM^(ii1(
z6~bNc!=I>D6GT6hQ7?6=`YYLNV^F<IrTJCt>>;5j0kqyHa!RcCOxMXvKRBqIf<q+u
zm@)E2M(B&z4uO^*;)ZEcExBgS{m(BgI^G?+FZu4DbDfNBTz?#FseE@kJ^${oZThff
zdS0tQG&xD`xJHjdYrkeQrj&IPEkSQ#@^(mns~X5A>GxLW$-QR&`^EamoNTrOYcn-<
z9<?9S&CTP>&&i<F)aTFGjgnbpA0BB|e){z3_wPOF0>i$6oJUA&H>qhEJwJcqD;6X)
z#t3^J^eCx`i{j8&jftEnFZ!RKZ^yh4<mL|gVbNdJ{4=JrQ$mwDX+!NLFK@^b$T1Rd
zY!E3kY{o4(a72iGcXxNY{uf0bKqT=#r=~g|EP(MWXmA;WhCc?l<|M7<7-VB(%x5Z$
zh@U_2OrTSGU9Md{@WZQGP(GMZFP@B^3)D()4-JfF6G)CEu<c@|Ug2Jv3K2YGkoOoj
zn!59&qPukFDRvmv{-KQPzIm%E_tDYhi;%OXvjBkvTQ>*6LU1i`=0K&1AJ2&=a{Q<~
zgvUlfp2C=_<9M9Gs}~??Ux$_uF{gj2!8PryGG#eGQBcG=s-pulwCbjBzgnY-gprBO
z9m#B&%R&a844*qXbTT>cMXu?_P`gRvbm=!^2b&ddR5n>NDFX2wTfz#@(#r}W8anrn
zPpZ%y8?Fl3j0G#^BW*2T!{f9`Lz1R)zFT#mF3=xb{xtb1RTE3p|5zfJ5qCd`v05)6
z#Q+|edmCp~#O}3;=EN?+wSTcu#+-i1+{MSuAU5WrO07(vYf0i^r<OQdut0H7UrlmW
z67ZHmf_vP~`C)k3ei2XQ1dJJ5W^R+6<$gn8W4{7sG|ijJ(x(=kLn8CrXfZ5LPWJoM
zTu4&s^sk;-XEI^FNIOj#x!I4MbV_aTGB7Tp65<M6?~l#t2tW!_vZJAmrRY3b@BhBA
z5Y<^Q-0HxZveX_vHm0gML;$y^-IvFgDc1hlbXl1GCnfs|fBB-2fAx5{^8aJ)t)r@J
zyM9p=P^6^07bV>t(hU;Qu%x@YC8Rs0mF^|oAYB5|u>_>MyU)Fz=Y7Au_Za)HbIuqr
z7{I#os(H=%i=W23tr_a->Yh)xk4=ArP+q_-6=G>t8pdqr__<g8g4IcoC=mgqs5mU=
zNdCAZ<GHW55*Zj6XnOzmFNNV*V%lHm$`cPdxkxk{>S?4_+soo?cOtxN7R|+MRc`yi
zvToC4#W`!`cZF9E^~e-!aHP#IP}*NRgs?^Tk^EfNo0a)#r5`_yKrs5k$OXeJ%6q1F
zf%<ufD(%nbu)$8xB%C6m4&(A2!feWK!}&dVvPj9Qi7W2Vk768=(|mSweB}c*hUT_w
z*|99*_sEF}8Aj5}yM?`na2m1B1xm^$a1^69dW)0yzjCTvGfcsO2HN<71O{f)0~3~N
zxfE9VuUBoS&N{;hENjQTS*6P`-knLdJJ3tRdI+<<sv0gxN|;gPm1B&hOZ&(spY18_
zizvrDPx<rrSX5HQq$^`aRKJ)4RjMR*S~>Q$65ki+V9VweU_2_aPyW!!IhCqiuy0h!
zhR0a5^lqoBTsD&n=}|WGQT9_(A@8l>?lir(wF<u;fNtFUv3t1$aNgA13x6J*4vSkE
zS8}&kx$!Gz^6i$14qSFoYwWYvDix}U0mE=Og`;c+DeC@?-T4HrsHph&is<Kv2&aq7
zYZG5vRD&qI@2!G9rY6AblF$SCN+24z+~*eoFztgCQuEYGKRxsk<RNLd*fytyH<^t@
zo%CYItyk2JapYhE^MH1TabFt-=*73zR$}sp-(e?#`&B(T!agUW_8o8F;o&{+p)0FG
zbVx5l#KMso#!O%v5^>r4_hL0~T;1G^yuEdo2wubqUlEK69t%lDBN%@_Yh8I{F?_z8
zGqJQpdM}iC7Atu4vk;Ji=;-LU_)AezKXB$vw?7uzw933VDhH*G#6Wxzgi0xuN;B2(
z8)A)%)WeV*>a=z)ONyiuV?zF7V97@l?`HBMJha}?yQDoAw1ZAH!{U-@ZISi58XNvS
z4gp8p>ayx2{dHvQXIZ-wl>3c$jQR9<d6-3GNe@EU4MfCf&<829-Isz5^OAxl8Jt6y
zCT?s)RA1Z3OEGp&o_nERjQG`GTD+O{&M}Rsh&(LabXMa6ncP!Ja`VPNY)i+DZ!fEk
zsumNdM}@wVTtt-HShNax_Z?-(h#-$h3Mr5N_M?>BZ8{8w`U}mfT^^UZ5cK!nKf0$D
z#kPe$J=$<ek|eVPG{(F4Zn3ppmQ<fZ%5X$6&e}vkeA2vi#+<oG|CDFNJKP2|M=sS+
z<fbqqZNN0rqCBfj>ee9JO6Hu^(9)0-dg0m3axlj-owhlz&pxN9Bq^6E?B!-JZ1~d<
z&o)~cTFIHA>TiR6!lFAJBek?dAnGJ;1;5Si{y<PvT>N`s!3>wRwN>G3PDb~|1x|k~
zdC$+kiGSE&0#56J<j(|eg)cD1__wo6@4rigon#+Bfc5<@eVltN@w?f2fBu9kn_+-4
zU=>(yAvX)_qCFQETmpiJRps=NqBgKc#}MCojYFOJUc~`IDXXlg{1-?jYB#F^M0%x?
zKMi)op_-^h$II>WjSl2FzGrf6t7r~C0T{#SWLn3x&gz)BgLX06Tm}XnLIgqjg1)@>
zWKp|I51R-GkEYMRfLSNXGm&P)lzYC$XS{4p1p`421a_x4jS*1jk(0tOQ=y6tU*A~n
zQFRilxdJH&*Vsi8=u}dPhto%^4J6Zm54=!@?3V;;J-pq6MMsog6s{g(QE_IQ>Wb))
z3d<e4kG`QocE_0s5t-4@nqZ)k-71o3)FI?I+DgemAii?8L{93MulhzQzo*QB`F4`&
z%BiX4AQ5qh4fR81|7}%N!kQP&N}3c2OesrN)i%G!+Q)iChtzc1&x<J1#x&o~XQDB8
z*^9o)LzWc7Lhi5AOm(loUpl^_?i2;4UjmH{1#Xdvha(ND{aO@Laq7K|Y>HK3`l_xe
zqQWF@2xc{OnEsb7O_-gUdA1<xsfYM|`>keYda0-sM)Jz*_rwv2+1c4&zY@p*lSMb%
z&zpGyP1L@_dk`oLBUFqdsHV7<m$%KiIhqYAg;2{ik6xT0ls;|5kjLHC_3z=a=j*4{
zC~)uAXeKQ3R8&z}-v@W1bzTDCi5jz~sm=yaHYw>a(s<RFGLu0I!u_>q9De6b-&Y_Y
zc>*}9BTwf#E|xU^Y-~=={C_P?Y@wo}5<y#9S{#p>xATgNWfnw)Ib$Ls-k_qPt=>M4
zuLFA515+xZF)ri6_<nwV^R<9Q4IN$5dQyMQ8p+U8(s(6v;VYayBh+~xDSXttFMLv!
z`WFv%2aWx>h0kW;AJ=X&w(`RhirViWwxJ_Nf3c=&B(<~ehQ+^&?0M(NLRYnwso&*>
z*O~P4dj;hw3Dr}QaFzy3FBfmM@+~9vm^T=Cxb(@s$0q;2)vgq+crJpwx8C#THXmy7
zR9HPSN6Wu##ST2rr0<1*n!BGaZmk9-%7=aZr<XB=X&Q6!SI`6Qo|hXL(rVy0lcoFy
zq}6+mBghIX#l@7zzU+k^LiGS#xRcp5GQsQgmDuMWsU8hnw_x?d@zYW`C`5Pp>|6*{
zf@bCH3<-}|v31&cGj>HKx^Xkx&c{$>9I-v>9^=&uATBU++~xR{Y;p33)8`cUW>?SY
z`a5YxAj%%fhV;9&iIumlqr;!+XkW&?oi~T50RmZB8Cy040E+3JYo`M*;9%IS-@oN;
z7wd)uquoE*+M)`2JP`wu$AK^h%Bt3<w_|@=a19I$ZYJXVLqs2^M7yRhxC|RE&42{|
zz2o1X{tx%#0kQe{`Fxkt>f4L|;j+Jwk>v?A13XzgkEezkfPe$otMv2nAgz&=Z#ol3
z;j{K{Y*6?2_y1m5$-SsL+}V+heH#on<M~32J6W1eT24hQtt63)VI6mdGCqZ(6tG9A
zc=a1vM){dx5;LH|b)?gaU_kP;q|~+d+oPwAiGdA!)B|#l2H%^Y3m-9zsTm>=DoXSR
zlnWP)!1+4PXi_|*aEc0kNv<%lr$ONaJTC_NOuI5tV?E=rp50H_)>8h9Ri%|oH=F4#
zN)cdZ9J4pNq2aWUk?SCT2kjAaI0|M~D&I{anLw`53Sk7xSX$_%8}r=$H`Ot$>u+sx
zqWxcgE7XfJGJ%dLn9ntfGYMf-lS$W&>oV;*Dbi+pQu1Kkb~ZoOGI;dOmWaFkV7nqj
z)r9!{BV|mKNvLiasDH(&Vn)5fi956vJMG=_Zs*ypPOXZm8{dUo)B<h%;qcfTePrT-
zsVmfX-?#x?Pp1KT@Zlg%>%#ggAjy{<AI9=N@<d&1T1Zo&)F_TI_Tk4L=yoC-D*F%9
zcd=w-FW@Tl>uJ4|HOfCmlkrCn4ZUGHeOO-4JF<_CB@-)D>zbaX#=9=1+5&zuq#)DM
zDu08lfa4L?bTaK9YU9>sS^q?0o0tG<f8~oDD(6jr{!;aNj?WL*1rB}p1+%7;ZZL1G
z*X8Z@db8jCN!Xl0SW3C(`Y<CzR^&gl^TkZK_tU?m_lAZ80GbQ|zw7V)dBCj*K_Qi?
zt4JyHLuoHL_;_dMXNTYY51(uMERQ3v_i#*L_K@%2Q%=KKtW33lFsEL(GUlv|mMY^=
zV3DYCNF*&#cOB>R<hf=DT`svCn#bI9_8Q;qoLx|lz=GH+-vF)juy7EzPfDltsJqvN
zcEL>;H7GIH`<P^DmM!|r`-xiqC+yp7fu;jx68=t;9#^_AL>@J!_z_tFYUr}7_lh%n
z46j*;H+?y5%W1l4F`;L4N|iXFvzhw%G*ds+igQTp&53&b-x(TJ93V|i6%W|8S`axi
zXdjUlCox4%$G*|&vUVRC+{L;5gBgk>C@{IQ2qp*}f>e5Rk^$N%7;D{Ev9tT2JeJDm
zq5J8Ukev$}aUMbULg?hC(EY}bq<H2_4le@{)+cZ!{M~HrUYAUK9n?BBVMh8#-}+SS
zk2l_DH8z<zast62(;cT$<M(Z@W)Y1=1cc9J9~-#zRn0G(>`G31jWS1c@=QAjtVGA#
zM;jmpl0`!iZva{XL5ee>QRTT~y_%Se1zjqWPG}+zqZ;1pt7CYKZ$g|geSVJw`ZYLk
zYykULIhs_)VvY(9Q?rUgkk{hW;rZ&Bt<8hL!FMY2<fP~Adb&mE=@u_ojXv6ZjUk}H
zN8F!fWc;suVctW^$mWKFx%n$#+)qtS4c#$<Z-;dh06H$PiFl`sfdHsiGtE|l<9a}0
zZA29o*(v@j@5#`b%||m#HOw#&v>W|}&5JD50u}MJtYa)rV}$kcrv@T&S>-c=#IZVE
zoBl-2&q{c(Aj%mG$_FPNM%khFXeTS$PWRFXZ&8Vm(MV-*O5#&X`G<XH_>}HmEPU;U
zIK)MKfR3T{6mcHHsT{&Aje8Rw&+_^^XD2dJB1>5Qyg7EMow!frQnQwJyasFA#)q1?
zg7{-fttTA3O{Pu0^BkO!GtOST3L2rAv72A-haEP@DFyns)jR=!&!mv;F`=KNItD_C
zX1SU$6o=Z*h-cDC8lp0fz^(O2jD!)O0u|x*W<0@cuIZKK&ua5FN~PajJjS`=2$A(E
z=4y=T*q9-;+w5nMjXWfL>F_63b$^4URf!!d-p0Ff4=EL2Q*iE4URYRr$pzWmyog;`
z7!6Ll&Jwew1rPUa`E)SQx~QluU8g4beEzmL?+@?^2=s$avFVWCWCfuS8-9j%Tyg(-
zih*KM{JgS(Fq6Fcrzt2aY2h&H%euU4oIX9Dds>el6@}D0O_>7|2N7L=|C(V?tYNTI
zaBUe9El&oeY>PD0n@D7}GcO$;JTd(DX9z<#TBNJRD2byOAd_-biH`}2STviLTuN41
zS3*}F(#;5RnYGfw{r15lMc#dby#hL)r$Z*V*a$#R6+s0!$^<3()JvNJf+}eDF=u&&
zaxJN+-fQMH{i_}R%y`t7H)`15Uz-XmU~!o|r!&1$2rA&BQhRpcM}{uwNC9X@;omD(
zUT(O4k_93H9FWQltOnbGbfa|fVrG30l5T143iD~oJv-3dMp&i6U(nMnaw3ml&3@B@
zTXo(c({Ze=7ta9W*7U8ezR2YfQ|5WdP=(#7<lBIuL>lIpxVqRjpZP2Ot$$I9@n4iM
z0Enx)PO~-l@Mg`a@K9dG%E?REdxBd#ena(?DpybRPPnn}`ZkaL!kqxePV(-GcFg%=
z5NhU2G;m3QfB^{peIbY9zLf17WOH56?<9D$fs%Me&*9SQXguUTCyHBUEq`_C#?Pd0
zTws%HuT|xu68T$(WajX<UE&nuwhPc-hR2zVmR<w$sb7{4&JD)$4mfnFg=al0*$EQ}
z=n8JF32D+9kzr_@7|M|MbAr;(EUio=Jms;6W#E#ayhjq7*Q7KEoYCepwZ!-|c1Gr5
z1`vYMfy%{%gfv9NzKZjjZp*<V&pyI1Z5AvG)vg3LE?7+r2wd|&#M^S%sOW?Ni~7S^
zsqh!#6ETdxUx;~WjH%&5jD(mOF}~-+M-UK7VNzKU(l5Kr4Uj$ZmJhh(5PY1jR{vv2
zLF%`avo}@8pMAuIS}QqC`zA4?R;+=S6t^@o;SNb|p~KtTdF1r|VR%I6)Xa|4&N&V#
zTs=$DR(XYi^e>jxrJXa8DJGK*S59=?x14%|Mm>c>XM0tP6mv0VR11s+Wd^^c^93Wf
z>6xbqL8Ou?tnzM060@gE3gGVb=X*t)$0|A%%4f<b<r{)2tZHZUudqRWwsjLF6ojl%
zKOTB2i*r)!g7prP(xTj#hli)Aj5fjB2Ulq}&C3sE7XR^g2-y%5t3iadIec)ir@1Eq
zC=A^@yVkc412&bZ$pK{QuQlpUMd4NjL2#50(i*s3B$#QeSU9`cPzFF-n!8$OxtLyj
zuTImSO4m0>NXfEFsVq?0C-}X-19ZBSiuxKSPwITJ_`0bh3qP)t`8F?|<?ryE+L%ll
zQih?-X=aWI`Iihp=N7NoO!r_M17v44F@z6_S}<Dzhf(aRk8Oa3pD*1W^?_C^ARNp~
zdWcQvY~O}1K$e>hR~PrCssx%_{^*KvuqtxKnhwpIUj;Ixc3$eg?G&mzW~HKPIXV2j
zg<Km>Q3~M&b^g=xz=_g<w#O_~d#k*3MpdELNfss}?RYRxPuoAh&dCW6x3jk=uHwM@
z>eZ`i+goReaGb&R`aTB@Vg`JmFT^?Y;q=Y$v2p}e>^O7&K(;-N<my&#&@vpu17$Z1
zLs7W?y6N><w~@$?nCEOSY-bK!UiGpNIm{vrxwe|7S(~<uQp!d;8i2UhJFT&tb1)VX
zC*a9~OkJd9@ajg~6mf7F#v6X9VH$wlw>uSZid+Dshit85ySl!(Dd%2!M|SpwomWu0
zXXh})&cJpQxty$K|J_ic8#q76lwI%PjH0|MbLQPRuPCuxe%z<MDVAEhkrqwZA_a8&
zNd|h^hOcU+uVEd(zPO@%-?xYTEk)Vm6f!#p=g~{?l$L`PmsZRgqC+WQqKm1-Rl!C{
znTTfzRCND3B>ZT`Ap<}NOni%Nhog9XmW1UeX@#~Hl4)eAkW)@BR6Apk6Ei4xjaSvr
z$1RKa(irRT!x<emK3D2zf&y>RVBqM{zS&ZR=|X)sra9SR^Tkz=nt4R=p0|6G*D7w8
zN<4yoUV(#l%p%r+RwtVcHfVpBZN`#lzdc7M$aL8aklcbjM!Y7_X-C<KGG1U%ycaOD
zw2>TYd({Yb(7z=Pv_CEVcoThhPKw4a7{p3}lGFe;2*-i?`YhkiuP&OSbnZ;6PHIAG
zKGicX?M5r$)2x4o-(6@yDslj%?PVj5cVs~?PUREMG<z{MRnqM`PI8#!pnuG=i~+N<
z_=WD7E=CC1@8~g!s#t@|NHeK%hY<6ARjvx}^YWag3^)H-`VsTK1YAwwd;!01JH$#$
zhyT=+7g3NC?P3>#1>rDeLgXkSCshM#h4<L@Z|3og^xE{dnc~q_K^0puJg#;&MFtIr
z9cxKhp}*FJS>Iz?d{t?yYO^VlP<cCr0h&olKHtZs${yGQQKJ-5qIavrGZES2jglZH
zF2*xiK@VTj{9}t%8)2As>h-pHPgJV=1g)IViHRCd+@G64dJY?0yU1QSHekN^A2S~-
z6?)k*`00Ky)6t8fj_E=A<_FKm>-6qW43Y=wKJH*?@7TsNnQE0RFDP-137$^^wA*_6
zbd8fiD^39^(Ytzt2v;Z0ZgFVW*xJ+@qJ<F?6EB;8*|};yqBA$$2FtP{f6AoE$0haj
z?XfN3#8}Dgvn+nFzVs0BTPsU*AC~#2Z;B5-0NDLD2{N4xCs%l3rOacB(wHM#_ED@B
z^YS$NR+Zf83QywEajH2va-A%i(6LAfdZdhipqTmpVgW?JPMp$CzYuFTKf~<mbj8Yh
zvlpIXFMQ1?H@a+#j5;>wd~0ENQD7vfp#trpoF7vo?bF9ot2!U~j?#b&lyhtD&^i_U
z;HorX4LuU<ZcLb{Tb>T(EMCvd3?4@sa%a-JjO~CuQHGRYyF+9f1Uh8@@7)8_3K9-A
zKHuR+oh6-~?^lPb2Eocfm6c;{9-C>~rSMXtLZz5keI|}awtwT4fBP~9M;Z+6|I22p
ze1`{oXwQAf)5k<<>fd9*{68O)^?CnaYdH=Gzm7m%7Sk>@!l&YYZBxYYh*tH9|3U8m
z_fBA^)@k}bSp@$)b{+84|GDn}d^SGy|7Kjr@jvM9|4f>|VY;vW55u*8{vkWElNBS|
zKQLec%0QG;Q5o0&mqft93XljkU?c)OfJ873&Z8gx!}1*2X<c9Tpvi!{3DIXE4glh4
zAT<LNWYX*F{uw9ncj>rdHI0oPJb60tO$=xM+$%Nlte6U!wgs)}YL~^$L!qizjc%nm
zav~=uCvY@U4+apClai9wrt<vTvZDXxH~ibu|NL>1!`v+7fA<?iN$3ef|5g9ypDWZ3
z*Wfau<VyVaEyE6p7bqQ|gh3lIoNKz?>HWiT_+PIAiIO=OL=DZNK-yYF_@7t#p9}8&
z4+!1Vut(YVzb{<Yr|18Ap8thd|L=(k%>FlnK~pkJDb+21Ws`rU$dRmgfjOMt3vD!y
ztJY}I7FzQuI3r83>4<sxb*)1CINv45X~zFh24L6zZ=($cS?~x>VRGmVZt5PjHDC-2
z3a<bA!I~fcoA2T;kZn-@yfo#%&<u>pSYWYq$(X7A$R)2gq27?v?x1JIOL?e_BZX2`
zeDB*!w_?@_#u-w6Z^%g~Ap3^$P<GZOXS{Ouw`_LN!d&khUan^*p(e<wNm}VY9d=M3
z5U%J`R960bGKdsQO5E3b!)I=84hILMXLfcE`+okUNM#1cs+A5fws{jbSMD%p&M-C-
zB8dGo?AR!f?1=Mx`-@a6$Kvd}7=@<iC=#V<)oCT9W@`Lka?m3~&#Cn6AOX-GAk-9I
zWu?}B21w$-i#0U@77Z!bMblS}qDcfSmqdkyV|I6~0H9msYP*WbZ6qZS3oKJ9O3UX%
z9SUOG6QGvsyeOHUjrrvTXzPbU0Yt#03x~Rj!;^VjQ#OjOYN(!@16M6wdz?$TL3(+c
zo2sJa#UVl>liaxNee<DjC2-O2`J!`uE&E=OaZNU@n?*KoFGFX8MD%T}-6*$}^zx|m
zlZ@)d5-rXEv;h|60(UxSD*;4gB=gTg{<qUP;%Jiz60e;+H!uvFoUk>kbhB;ah_gP-
zZh}b-w9_kJ6_2vC#;i5DM%m{pM4PVb6q1Dv_&TYXu@mRr*(Plw%%sO%i$POb>1*V_
z#KdUIro!F0HSnbmX88Mvq*?(}Ztq8xQEX3FRc9W7KAh~s0^DpnT{*){X<^OqM9kg;
z_)4ruV%#FXV)gnjn=M-nc2bKW4UT@3c_g3})@F;XFetiN{J-6v;~o}K!`R-T*CGaU
z&8j%7rNXVMENRtO$!>6;t!G#+ZewGyN2Eg9D?;sNt6L1r`O2CyaNRKwG>s;&gxgd3
zYBT3|X04`|^HyT4`kmk^ydVw^c(tn<BlkQe?OrA*AjUX-5VvnE<oZ5ww8gydeEA?g
zKFr!W=_o)ho+)ufXE2}l;(SZjk<mLlq`9w3y}_j3K$-wkT-i`xJXSw|S+~=^H<rmZ
zDCXE>CR0bnmZlW#=qfPE+yI5RBU|KrY<&OoI!Jc0yE;Yhk+1nti%Y~Sx00ET;lpJr
z1*W}Vve<vx=m2P=2%wGHK1MU8jd*S($N<iP*Puu$z+CU8gJ%!%4<Na0!`I`JD{Wyx
z2Q-_Vo$Z}~k}0N&`zs6n(5MUa>*|q)EN;8_Kc8p&G&1R}YRe6~J_^!54T(ByTA8o6
zTWZH3AxjNIZ7)wC*CO;pnh8y3G6VxRe?~f{q0mlkvY}lDN1_c?Oe&IR!>5LvM^!ui
zpaB2-#q`CJ{^R=xJKW2H${RP1+@2OoMZm{~W3EY3_LeoO;;zUcyIU)My2n*Sg4Auc
zP2kbi*hcj0VUVv82Rd!%82GuB7W!&MAgR)SRnOg5;Fnp%zB7TQ5l0MCs+8%r1GP<}
z+bUzle|jq(El>sN-Pk|?IxCrp4^WkhB^88KX>F>SUjcb~KF<@1j>}4i)wL+r{<4qd
z6|0ZHUW<T$Bt&Sje~T|dj(EK6+iSQ$%A?!ASZJH7?|H;HAb}ORNi@<ey>gE?6=pJf
z6=R|1G08O(;XS>$5C_&L@18;A@%p8i`$d`GWdlZ9f;I7;d4jcB-|>*@1}{fjcyz9#
z{Ot`P?qHwCoHx#7_|H|9B+9<A&xCh_5^g>X65~IVoEQ7=*Xp>`zt%0RE*4G6Z)ZKX
zSLJTI#IEyKAzEU;dqY`(YdZ4|h`BY3MRT`X;^219JE~`VT%<_&^%ZVnX5sxla919*
zv7hVWpOQFnv8{~@&HgFs&z#lq-B;r25*+EzJLD9$&5UPhge2D#5K%sd$Dk8m-h9+M
zJ5kOoME&pkBZIv^&YqrG=>-7k41+KL_9SrG*-q|n(a?+l)`2I$WX=vU#gPJbXME``
zGlyL4eFT65m;?4e)0*2VmUE5wSBr>b^P3{1(&ycVxw(=wsRY!(0z@>E)^kanDaAqj
zv&c2~4-saahR`az4s?MuQvY2}h@Srf;^bK_ORH_UR(!>ZSnBeK$aQ2ulfB?M0#)r)
zu$2kztj{2e<z0Bo(S7l}%X>e69x8e1lV<Q<yWyyDgEZwJRYA4TfEN&XRK>cg;(XVw
z^o~lrM3#@44s%%#FK_@UjHEjaZF9Xjl}GPwouDjPgd!iIt2B(s^_O%8WmjH|rCPbV
z8%^I6$?P$qS_=>{N>B-D>5N7)deMyp5_T6DIyf!FFD8aP`+(m@T_XNF_VB2HH}(_g
zank6dt_PWt9v&W4(#YQ4-faB*5hX;FNQY=uz?50-J*o?5y{_(-p<#2s?s5=BhJo<i
zBY1AMDY^$^J3UXw(7}bAE?ObP7Er?9r_9ZE7p}aFr&C*y9P;*Qus~6$GULxWXmjiP
zcr5#aD*sghMuExUY7x);q1_h>oldsW$PICdk=BmO@LZk*CNN(tDs<A1kWcba$O2-M
zxg=)J8r%_NTAv}hR0m4dCyt!oAa`&wmx$+D7KRIAt6Mh9YuiP)<_8pwtnhTi3-lqg
zQbQFUj>`}-NC$Iyj#2r!`HVx7W5`cSOlmZr5K>JPYCVmf10x;uh{HN)){MEMhb{-R
zGqN4wCAG^Es+Oy!yxkxqcSqdR&}ZO@7`i$|>sVin{3cPiO{Zbka}GY{qI9<m5$ky)
zbeinfFGUk?Z=&$eRaGn+`3$k-#8S^cDdY=t#Er5Eh~Y6P4|d?-0BA*sQTTFS6bkfX
zrRM26P&EZVou#p{vj;Bc7~1;G@U(3*cSal?9d)n%8%Dr(mpp+zAkdg!q1qb&cL9WF
zk@Wn)0cxciI3UECG7J*+V!1sw%+Al2Kj~sWt^Pv#f}NkS|9j9H1KEhv?nj1r{BbVd
zGFjLie&~0qikAy{rtT5~ql^oo({bze$h;%pb2kYlvZ;>RIKE7`c>;;<)i(L=QGAer
z)!?vCW-yCF$<>I1jL0By9S0-Nu$hhs>tyQr!G|nCvb+MnC1z>!zGKjXIsbNzq<^5d
zaNR^m;ySh*0~5jh<^2a9Rkw_Vsj`A!-Uc(Sr32+wnByN?ImcC!>-g?Az$3LIgt|#z
zdW@|~$@S8agW!yC`tnQ<b*gefQHdeHv|@oU!Uo{*0IA5n1wc1pZVTh}9p?u~RQO%J
zT|vQF#oV%z6e0<~GPxMXv4Ne?Hn-~J$7}4;#5o(xuUE1tMMDYB$qZ$P(*9-<2}kZh
z3oiy4@~p0)`}y*b7zk(n%};g^6LZ6r#jcMdmos0wg;dqzYRSYV6<hrn+{jxCl4sW@
zCy(AcK<B5veiXIJ73kjRMF4IpTE02@M?O4Iy@x=^2c+X@FJ-~#aU|k0%+V7Q`A9Z|
zA7iLc(OJ57CO{<`4B8F8U$i`dr5n0(hX;6WpDc_&apN)ThR{cz41(hR2KaArHkseM
zUtC?`DWB_~^5#AZb)2QJ(v8==_1}^39JMhlCjkQUU<bc_up=NEZK66y)pmI3&@*Cq
zmAl;wqip}X`BM5jU#+^`QK*oX2cR+D3Z20DUup$#--d3y4Y-kLJ92}Jpb6rU9-?C}
zSWzV*B^rJH#vsU{Q7rA=wslQ<9)hwU4K`A%hEhpumVdMpOspGhFukP0@3bDbX?_9z
z<piFt&Yde?)GGKfP<}-{jy$qQ;uJ0?Vr;5;dxG1nk6zN!i>>n^c`ENIDSM^HE~CA{
zG3m$4sa;J|{+MOI+@{`4p^2%6@qvk5tXNzq)8;@1SkB)Z44%VrxN<GBh;V!4FBXuV
z8GF5#dzW>IO+`BU+Nv06sK<Cw>#2sUFlI^h{5TRHeaa>$e!)J-jwIHr7kO-wC5Kbv
zh4gY;oVo3rcn=rFqJ1rw`&)}RYH(0NC5YY#=}QCB2H$;Q=Pc*8J9oXWmmTGth;qV)
z>Ta9|_%rmE9~wVcb_6SBR)W;>krMP9KQc7y>Q9P#XQO^NAELc^6R13-VkK9HKW!?o
ztd*C8Efq?Ue!Z*#X-=3o1?SN3+JpO6hum;7>36kq_Hn7FxNcDr57l{rdiuab4~Ra+
zo2|)ONiCQEM*z8ifPiYL;_BbPNA2mEFJ>cQzw0ek%{@2M2`M6fFU`Rcr$EO+goBmd
z=JKQn$cZJI^{*O^f!^N-tYs(AG%#T8XgNZG<ao7Uu?`?4=9|w~PHZ}_A_de%TQwMP
zVbS<o5l2#%wi9vSR{&!}I3RrSH`w#0`0aX8rhWg(iJ|W<c?Ya`=JE+vr3OkZ$cRI<
zZ0sUOfAB*o0SE`lAHawbR>S?kkisS+5(~4W1l*a%(exDQ=${x;B3IcGh})cx=YG&i
zBUe+;8By`N8u4tLdt2@YndY#S<_p&4mmssxRIo@dW|6cwT4BRYHq9gydKterc$to<
z_cTMNhI8C($0tp_Ek~3$5}4FEx+Ph=unE$b%U&T==FSzmc3O)#hqvN~-liO0Bp5@M
zcw?83$mZm#Rk``<_5N6h#RI6A>s=>7NQ!TC7S{URf(%{xmHb-O4R@AiLtQacQA{oO
zj_L68-#ct&%d~9o7L9=t0dZkmYKeVrwZpQ`1L)G1Dh^wL_$Z1nE5`9PVd`F43jd;Q
z;p;c)ar(7>f}gd&QlG=85u|?%OIdD{<6}83!VNMdFb{C=y6Tusv*VFvwEo;6@P$(P
zCE(p-h@TwHwbDa1Uhn;7mZdt~VwyArt^dB%y{>*K-acsx5A5w@!TT63Tc$3f${@eD
zD?9ZGA2hR{X%H8iHr1vMY4o<!-)&srybmhaZ2Q$-tMLB?>zVWaH`de38oDidts~Up
zQe5-+t5WZ@;~LBfDH<2%5s1umxI>7IBOM46eZZ_(`9XP|)q4CSVt>D<<@kh%|97~2
zdFI2zC~7%U+~MMv&WCBb%2WSa1#oY>p!?q%08l7}-`-Ccs*k?mC^^r=()xhh_K=k(
zc&;DP4Cvb(?~4JmTOA`TK>776+GPbm{5T!AUmF8q9L$(bKv00)+ZG2<_v;=UL;?zx
zLDuz=QnCF}Ge&BaRAri~^#Y34Xu1d`uUbqx{KYtu#~b<dZI%5p=}T3_7~{W8(??>2
z0tj_U3`tEfHRWKI_lqHNn8ge{g~l7=nA8TV{D`7q`84B!CJMo$=?NAJI3Lj_gmEDc
zgRZ)KXA5RpiR5^yYG|6+--RS)t|8VE55)$xOkrOY>eSz|RjJ@0Amx?(tRKdpDHKW?
zPnorz(_m?IXCF6*p!B^fO%~LXc|{FR>iW8b+hDAY-e;0a_FDd%a1@5*?1grAm79<a
zPH_ol?BcDsaG6M2E)vvzd|>?e_s9zcBuW>tRL`_&1Dnf(n<d&kMYcWMs+Ri7941zL
zOzKUy+xDcCSAMypudJkae(E;YIW(XoI&b5glEqS;+RQp_c+||Z&M{wn4H35bl|gS+
zc|9GQyodq}#v9?vZJV?GGDaJIqgM0=0jZ2vhq`ou8JG5Y?Y%hxR>T8%Y2_@(*6O9(
z!<#boeP6tZZ|eOd-!&qz(M9JHNN`62(2}<@anaw(Yf%`rD!U@8*ZJISab`*)V}HN{
zh(hl<hgWGV60W8Q199XM0nc!+(x#<l$%OxbrZzU>13*<Ts5VQhA11KZDM?;OAH7q=
z{eO!_MF}y<&u==k0rvsUa!x}uX$<#d(0Y{Xqxl5lPz>fwB@Yi?|7(wx7+5FnIE@L&
z@Oa4!xSeDU4axbg&gwb!r2wvxi8L;D=<kpahwy3uV%)=yjA%C?HKYlkl&GPvU%x(0
zOlw0}dAe$Jx;Zfd;ybOjHC(>Kx~U&c9@Wd6co9fC_qgH(EVBI|WRossJoz>RIfY=b
z2#<3}Qcey}w;TK9?76<k>ko(#6sXp*QL<5-B9pW`y=Y#$^Bd4~JV7b{F4yH9cW#C7
z<U{V%shFC=L^K|~8Yw}83rGHyvjaCl$Ah2(6&>}FklXg6UP2mZqO@t_Og2)FVVa91
z{(KE7Q&~K%1NO+m7#ZM5?>sHWnm<b|aMr(e5_z2P+q>Nq^>yXw5bcu68VSJ&54&PD
z2dMLpmHPR6G9}~KD&?56LIvUk>&%ye&pH$+iHqm5KD1ql19$E7gXhvte`$<LjSD_f
zYiJ(a9=Ne01ae?a@(7nZhQ5*E21YJ?)flCw*t^JNk4~nxp>du$7tZTua;g5>`3GOI
z#nN6HS@ZVstW)z(N1FTAI&rT2at#8phR^Df?-lMP8|mIB(-#F^5L<Ny(h5Y@VoD-m
zsd5~0navw-e726)f2#%wTws@d$EvDfWAUP-J|K_YzkGjFK89cZ$=cj{&Y<(j{A(51
zC|C&<cXcr;nnA627x#YpzDKiDB^LQ$?Z#HURO9!;M1*r;v^974T8Do$iO}cL-FFw)
zZ$B9ullVP8!j@oQCEht2BU{j})O6Z7L89$f`R3sSrjmXM03Zv22oDCSqJNpnqIX0?
zWxsGnC3M=m&bMDt8+|u(a>AAh(Pn1_78g7Nk(=*tSK$E!4507#H{g#iHc$>bxoYg}
z@dB_8NWmDm8d(Fs5Cd+y-mYJ8j(xS^++xNzxXAdW8eaM7ALQdPzrOn|F0j>CY(V)w
znZ|81Yizk0&#ra_eEcVV=LIg!A6Q2Y)kFujxmrfn&K#V70=vYru5y)oVACzW=rjKa
zKG44d$CsT^o>s{_N^Dy%Q3Aqh$3=W%nKFn0fDcTg3lNfI=G#nGZyWOh!i-aZ75Wn5
ze_4()AoKqUwkrZcFSL3`WPw*KafTvgU0R7)|ElU;xDN56+Bz5NONwGjlX}qHcUB#G
zAw1Q|X{D=3X(tRzar5}t&%mZYOamKKPT36?;UdOo7t-@H)u9rL>XL1<-wy-9YI&Ov
z5;<??Qnrw4hvX#VA&*2C%8W)Olt%w9A9?2Nq9-qmmm-U?$h{<#j;FAFz21at`;)DQ
zw<Usth@4sPV5aUX8Y4NUUg$*|XSPuNJeHtYK-7q8+U8e<Y~eC&S!FFO$N_GJCg-tL
zbJo1H02D!voSl`Kx2Ce{;icp@f^fT)NaRIvJ}965J%P1&b7}*9<Of_3a<poTIT?^%
z!b_U+4fWh$DCe=LUp>IHXtH+;o8ldNc2#oo*F}(<QP}xnU(DhTz0xDS18Rxp)Z_Gz
zON`8P1Fud|;qz*9d^^h5Q^)Torqt#I)E7bqD=Z+K%L04p#s(0F<{)>J1akw$#-T;S
zQc{!h%vZzQSlOW;pmgF$Yj@wSA}>lgp=T29=vQOza%2(C$;rh+>}sQ5>MR%c*i%~&
zCEJH-q-W1SkpVNx##Jp}mw1{hie|>^42p8_N-q<5FhMUAbRhL)c+7kKFgRE)-}gG^
za{@ts)Tt@;or8m#$h4&;8buW)0L6`LG7x9<iLG<s8R#s=LMQ9w>)*r3x&b(FlC7xg
z4o1g$_H$G@#9zgp;1EEM5)cr)2LhbgN<Cmwe#RB`d9e7JlOt_WyyQl+cX2p&vfO^N
zLFdpvf4V-DoNKH*33T-}P{73iAkiS0^iJ$r_}Z3ZQW=l;OL)D*ii_O*nLj@noZLK6
zaqmz5em9+ew$ril*j|oOxC=xp02f{_+C-AbOs}zR2e5Z8>VD;wF*U-{`4TSro!({L
zkoxN48vkQ7XT{XcV((gM={p!B=J(u6+?1hjM$K_m>rwA%^}6RR<cY}t>}MS3x#axa
zCaWJi@AFa1{+Kr0<Kf7}(vlrgqO-S@NS51dKo@MZCCK>8!^$5Sy=df*^ve%h3R{b)
zLI4!<=9h&?Oq}1rdacM_ZGJv{ah5Z($oa0yIxsh+G0KbFAJpFbDi)2oet0^b!(DmU
zVVK*xxVR#M($dm70xmxl`lWvQ!jWHw0i6pY%RY>&qot_ahYdP_7akBk*ZFh_C?z)D
zVcvh+noEV+WqhT-ZJ(00?sNvNaC3j3N~eUtmr4}9ho9h%WHAW4uyBbUL3g9nE_K%|
z=Vn(ZP>J?b%ObHB&|i};e|8NMy8_Q-7_Nxk>gAgY)OK_CVQJ+I4TPI*?rmnVR%QR-
z)~V7cv?C0t-#3VvG+UxvuM=a6@=ZLaJH9XGcbc!_q;N<(AG~)jTf+3Z-B)(8My$9F
zvNh3M-o4eHY2@!1D704@$@2}^9}~Rw^x`tnHKeN4*GRrJwboqHEDh_N=}K2G8g&~o
zUt-^3diLfoKhH_a4M@lt*!3&i$kw0b9BEy2`Y9Xc-r>Y*<pltKTw-jtUV3r0c2qod
z3G6M=1`XZYo-PPDnR#HpsRR3XO1Ch1eK-auoZGo?WMhY(GNG?Q)5QpAYXw4dwi%2-
z=rX#zc2Un8=t_GB$hX-C`nQCkfmi_qvb%34{eIgf9Xf?&E~fWmhvhyY#@5YGrD;h|
zaTIT-r#|-wSTA0jQ$Abq)S+Z&pY9Bf#VUsweLk&buOQHkz?EQR7vTwILrug?X6aHa
z(q{po9;ic6U~uY?G8Ky8*jV(oN7Cb;D&*csAP@-dGf+wKecW$cZS>!-)Nc3{a5v{(
zP@6A7xVkX25CQD+KRrKfzkpLuN}7LuIM?1^$P8$>8By`WI&RrRZUaI%$Lpn)fjczf
zlbq`|d^pEr;p<PHo&?v+E^qJd?oXGm+rfkh9#E~$JjMIl#(;ZXg5_5H9>Atf<!K`h
zhh44ra=yxd4~XzPZy&a?x|Fw$T00$lJ5L%Q{)j*<kN7jo`r`QcNE1XxXh7oYx~=@j
zYk)V|q~oEGm4WKJ>`36_z0-sg1QAZCVP92INeNhwuwK6<=><Zu(=!)C``&Bd{7tKO
zqSZyCxZ|)PKk)3A$*wjL8s6CnArGFcZ@ND^USB2^JSpM@2aOizWDv))!fp^YwWRAc
z8jnO7nl5s3e{t|#&&6TKg5$BB{|s9cO-&JiRGCt37_hlrs4+uXKELmb8~44N^5ijL
z@YRX_Q`2`4y#WscA_oSF0oAH9+x@-0?&j^BsGJ-!v-^u*T(q>bY+PI++W=Vo{<xDI
zD2DP~|8bd^n}aRhpU$^N_vnY<KJ$p9k;T;0%gZR4-3FfP_lkXsK`KYwfqqJki=y%i
z`Ot7qqa<M`q*rjP(o-(3HlGAPMb@rE71g$quA^j0A;azT5n;1~#j8EO_8KY)_tCW`
z7hhYDy1YHF7Q?Kso(1|nQhKXIkR~PZP2ff4x0|~tJIp*+h*4U&9;bA+wMK;kwANWn
z8Qg|CqH2xg%pN)75wD7FJ+RxEian{6ps8UuWmkALLK%fQO%<CLP-7<|u0ib<J~xt+
z)p+Kv)pUk4Zba}FE@ld!3aM=ITpkxCr8CIt_f(?L+)M62IptRNcY%}t#RB9Aa<@89
zyiGXoCpfifeV$PdzCbu6v=A}5IPVk24555!B`_<wlRQ_sO9S9Kq^hRM#8tGhUs&h9
zLy`!YVJO>;IE6guLt<!?fQ)}m#f`y!3tRqEq0{1IQks3bbWUGGOSWyTeJ8X3rO+)m
z(|G)+bRDY66}Nge>lcL!NyvVsaOTJX-`BC<wiq}Q*_F(3Da!~gs!nrT9~&J$6rdw~
zOr8oDwR7?hKM97j78a<MtCXRs796(Cu%LQd_&6C<e}gcaQInu43~|eJZQaTMXij|W
z?j-AU{cKIHgs}knc{^tT1#ahHuRF1Dgw5X=)d=I8M>YRQf-)E^3Xou&9_A;a^Vdp^
z@R@Zt94s7IVeCnv)0=g^;}l3QfKO)Qs>1@fk7wxlqy)soJpm5`tUs&(jkt$x(E$UG
zM{-!&PDV=$9~NZ&&3(Sjya^V)f%_lG{GwIy>TdD%+RhHWvR$6`G=s9}I%-xx7h;pg
z0Q#Sk;s8_%vce|+o>!ZEl<$Y~?{glm>0VF}#+1aNwgE$B^^CDfzB^t<R9Q)Bwb~%=
zrL4^B$caQi1x(#`{>KYIAGe?ej1<cPI}A<FRP}s*haON(mjj4k>pkR8NV5*}@$+{Z
zouUzGx#!LREFTXbEq4LKm|Z|1((gW}=N4c8TX=2v6R^S0N#qS`^F*l01~mI+oO}=X
zc<dHKj?{#_Z>tSj6IC;eC2eY(u9tn-+#mRWr%)_cQV}}kBU@_5wg5;#jqQ&dCeK~)
zui3fzhmK{j#ATyyws?=b0i~SqeMsjEAlLm?^np#pyXW%e033i0NCfo*21$W)oky4R
z9gjqCKl>m)2F^@y09F}i&VD6!fGkSz2}Y5>Dc7@ykxgNxi@1OX6Fwl6KA8b#EIsfQ
z$3wqE8|L%j<1sv(zGv61=eFR=7n=r$+)G!7g&M?Tzm@we5X~2YTVQH@o5|}?B}j&x
zsPt*!Y?EO5zOJUSwierFwt_ttH|7Q)!}LYrn>agT0n&dv$Hyu}%fJ*dblNROHDcGY
zE>4E24y8X1o%mMA&62=Fxf%MMk7v4rm(KegfP=#*S$Q+{97KVOm(t&wDr5D~0QzOJ
zzC6HvFAi;7KO?1#pvWu#La1E07&!JLW+~%?hN#sa9!%8^mLf|$!tEjSDxm@0_?%B}
zd<#AwQT|M|5RGx@MM`;9EyO<{t4=!34|<t}rYR;BLgu<-^JHTbqUOv!yvHL}n6~qX
zLVep6t6Aj{dYGJKSkJvq%dh1Pb>bq9k3GE&C?C?Vn=)t@3>W%)#k8?cO=Z5v>gK5P
zD;@p$R15uOF%*jNKG~ZTzT|dq%;r9(a>I(b+Ss7u?G&5sh>oR-UEebuq<5sWRu^f^
zY5+YG`*$>*pC<jLMuAd+&NFT4I&tCQhADMOme71o*Q|#TK|kaR{mX8Q?<^<umr)nl
zG-2heP+QFT<%A+T+2xd~>wJ|K10I|%-?;Qu^EXyJ&^4hC7Sg}h)dh$65QY|mbaQ|2
zmvy+YpH^wC6tYZTNXfNRAAQ5_EYFusP-EU+43Y8i6T~H&5~`gcpSrNT#d%%UM``;Z
z;PN3QPDu?^FIGtd%5S@|%~XIf)DjE%y!ptynw)1c3P|-UHQBv4*Z@}1kKS{ixTuy^
zcEI&IMIKRIJxRO5uguKa8VmRh8=DRY6TySCIm?EBZY;?AD#1;-03_OR^P^V1f&bk<
z>G}a+-QBG*g9*Gju72sXCpq6cA0KeJzgm3@X+;NeB>gE`h6%pN#RiUk5@!$Rti2L%
zg+r>>2eR{D%vHo>2P`cuX?OT~)%dNroLVC4^y=0MT=Ju#qW*nAVePd8KgyqZY|U0S
zJw%o}p8OPpW0RJ9SxV4oKB{Y55|JMq9K3V9KXA(KBAGXpT3<S)7QzpVN&BWJmFV-$
zW6Idr*fk(hMTP@*tk1?IjMA)Ez;poIMcv|2q|C;3KEU<4hCB&NHT@FD6FXk2mLL@N
z27-nlzj5Jmq<pD(DGfhwZ3?{XK1=nqPcT;xFW-ZH;?rtk2ZVU!Fu=c?X8!)d(D&G9
zrOyWJ!+z9uj{fJSI?e=8K;-kiVe7chKK^uBHsg7d@cf$M32zhMz8!bYb|oh~A+2Lm
z&3AVM{0ajlE8rAAxA$^xCBC<HzuMrYpVWhvYK!-%$z`m_Hf5pBtM+5EE#UA9;3bd&
z6lyAjpnLFpaPxq>o7-x#x^fpxb=GQ%R^Mwg1#YcW^Xd>9hRdk=tr#b+OuxgJ-b%6;
zjil8?|AID^bTmj&=Ck*=iO<uddoA>(f`*doT6iEz-e}Gai`1F-np0&lzfZArHVA66
zp7MBWQ|Y7$to~Si<(Hi8L)BpaiNvB7hw?Iw&nz-wk4Lt10logc$P4%4q>-+5q9Gu6
z1~*f-60VmyC5e<EP9O)#+~cY<^w5bw*TCc;6r&6)4B2ORYwmCU=CiZmZvKJ>yIMzp
z;&x%W7CQ08<p;i<-g=H6<Q|L}>yK{)BgHk!F}pvI2jWB1V#jz$HP5&)=h%i`zXNMX
zw)CBYma0PX`NtE%>n(`&E+B+(Da*{89o;cpYMVEg*lV`qG~}<<n9<fmV%MgrpI?;`
zyo)P2K@qK&@b5R}mzS`z7KZu+#eW&pztE?CGL3K+e~)pgMQAXO3BB-^%GpW%vQKIv
z0`B8Ef3z$YobR?pjw~rkq$x`8DmcVz&QXsN7og>rSS%(ho~L-spT<qPR&5}7H()c{
zIoTxjuwa+6*j(MsT%l>3rh<PpwC~OTdmQt28(>xLN9cZHF;e4S?ueg#o0YI|{VUB|
zOhtt?$m|8I_~ti`4yte?tI}iu^bL9^%@{vSnoA8+MN%>Cu^2fUlK|T6pB#tO-~g#X
z(AO-2fxII%gKK*knQ)KJd+WASC5LXnhB?|IhmeJ&Uw;Y+=$@Zeo=Iln{77c3aZ}`J
zZhiU~4Fg@q_+JAcIN%Ggm!ScC5IF#1W4=C%34p4q8od^ej)wmXTM`XCmaLHU#1F8$
zalawQ#T|O%KpWbTfe|}@{UEaWCyK=zjiqIWdkASj1`u6<*PA>hTMU_8ZTG?Ufo<ES
z#`)lVu8;aU{Khwt*SqnmE0Sp7B9AGbPQpZg_VzYWg%7)?$rI@EhrlkD^!#LsHTyQ;
z1inJ2m6kVW{ONK#Wuj>1reBmWpXLi(X0#Af`iiF=9+ks5K+OZD7LKcHU^Lq~_`H5P
zCGU(4c-k`HJM1ea+$GZGpH?FVFd3xjU%$SWkqL9di;yo2a&FewqC=nKr4Cq+ap<)W
zIk$=?A?n)uSndQQg6Qs9{FnAmj>;iCvBH3%EzH*14RA`RhqUu8JeO&;69FOeTVQOZ
zp?+$;m~5mrHf^Pp9D?PVL>!l1!}aFbaQ4c64l<pBF?WE9>6x_<uv^v{su3b`9?jsE
z`;Hm}w?7LR`1K1lk6w-B*|_tjmY>2@KSnqcsU(+<H^fa$4PEazow4CvcfpqJAU3tZ
zyiYv*o`<UIsu<t2`ULwE_Dh+?+BqCICB{Rq441?FgZzUz)*t3!hacuH=O7XO6)gIN
zP&;L$%=K<2>^mggj|ga(uReaGt<fqMYh#X%=2)*$t>_;qMJh!}v|dg}7cxNlH9R0>
z)R*oNxcg8e`1R#|JN*0TpxCs-xe2p4r);iFjDl-L->i1uccf^a$S1xDt|C}_mX#Fp
zy-qNcz}AV6v8HloP-C!?AR;62suHc0jP^1v*roVL>e(QKUve#076z3R51`B5_=9Rq
zDOoK`NOM)>l}4iXn#ZD98wO!OX9~gKz;9Y!a&DJeHZK?5{Gz9k{Hr`*@KX2I&kCiO
z%*Q3+(8V_GrDnIsX4Jcz!tWMQiKR4W=2ECA2ge%~0ye27JLl+bZ+dI88ypKTIG{x4
zgtBpN^?(GyqngOV<TsQgfl=Sw@!}S-(&E?UKFVFcesKZe?hCjmJZ5pNwCB1qIqgC+
zMP<cLpB&!+(1t#MKm=#p`Sa&rEFdeSD*G45cK+n$pR0Pv>J>mrf_u>b_OV-KlRb}@
zp{fGHNb=i!(S8-Ohc`z{)$p+Rj~9@^xhe0wLnZUxq09<+`V#rKAZ`#_d<l?<0QROy
z6aE}P=2KTuNqMb5Zuyh%z0*1hZ=MFjDzNwLvz{CNSPq2Mw6JoN8$ux(CGDc^i_e$D
zJb$(PH?`JwtqK#O&ZbM(e8NS&DDV_nftr#@izWrxJ8!^rVQnH?FexF|SzG7yVg0#7
zX-EMMSX`S|f8gb91G)ulK&X2e9DMWBja(xZQ@ty4*YV2^bY(6s?qPyl&#sYDI@mnM
z-?t0JFup(m??Yes@2RILD-wP=B!0jH2K<Z*Fq>H&FMXEtZ6O*AH*5IM_yU50PMaxO
zUZc9JJ^eAnPOD$=0g1k&UhtB$!dA6H8jDmwCH6SyII0P-3`WjtGo%32*Eqm)M$cl}
zR))u6Iobp4$NhAWPmT!Zdm=$@ANkKZM+B^MFa%@HVr}cY)po~q+GKfQAR8SCM-fj-
z?-gX~EA)4-v8*BR5N(=COzP8q0%KG{{qz3b>ANt8d2-qIT&Z!VzJ5M~tL6FkslgO6
zJ@vvrvWkhT9_FV&XCsLXLN!3XafJ*0Cr!wXG73OUN<q{kOgI-rDl2*Q0;sdOFReK|
zZ1PXN+$DEvPckc*6T<wCBRCUp>$D@Dq&@1)b%&hPVtF(yxPZ>hDo!nY$eHa*TLe-c
zVO1a-a+>#99@+0B@hCMIN;KDM8BL|D4kwLDID2FQdz{)T`qMZm(m|L^Q!tsO)LITe
z@Je)rBhBx=6x+Mb8!zA$=Cfx|O7Efnou|IP7eh(}f^QtUH<T_xPw1+GAtmD$2GJFo
z<-@19ZU?h(64xG#U+Q8b4)OiC8K_Z0o+j#GWXZiYGJKqMi!LXl^*<CRr<i*?^~25$
z!Nb@7{?Be*J$s@+jAon$q8x!6n^rpa{!=W^_e76UVUg|G9^Z<$u5L4Q;=?d5-Oo=#
zXj<Us&($jpqhV$vsjEo=r=_8`pvrYXs983o4p;%0m6vJ|9lXzJnhwjsT`Rs%E;obZ
zk50}9g$}n$4+8-YFXI4%_l_t3wrjuRfuDaVUcGvKx*gz;ZQrqr9kD|nhbqJ)VBPDp
zu&MPI$n?ufOCb}RwzRgMwszhhQU8G*xGj9#X9vD7a~Yn6Eh&KIhZNQ_uw4VvAu6if
z_#ja?u@4kQcDPQ9MXb2`t`jyt%rA+g*l@dz4TU(W95{yaiiMDC7hqW$Q|g?Tx@4Eu
z>xl|1eMu@p5wL{|R{d=|ew?FTIjU2#1Imvm*>i@z>_rwuPWvlQ%z!`{1Kj&&{r)+J
zRx~)rK3pvxrD%k;<M$#re}jR^p7f~o7+jf8j|ixncAYMwA_4k!1F+2=P-l}$KG@&y
zsWBVLFki9#;dO5QuzNWN52ws;W-!%_1}AxmEZMsOm{YKK(CH*!0wl%y`Y0iG_E`GJ
z|A(=!j;d<w-bO_M2|-G_yF)sp8zcmg?vQRtLAp~Kq(efwLAtxUySw3A=X&oO<M;mY
zjd3{RaP~es)|z{*x#pbD^EAm5VaMvKF1%QSN0UgD<Le_T&)S^A8#v*^suLnbCvn>=
z_t~7GXCLq(qzaPH53wPcU-&j1!zqF%olp@uZ-{+{r<*5E(vV9@MZ&E+Vs3$=z&lAN
zzOzi3{$0uUXS{(bCfT<(j9LFDAH0>G6RS1GeOY<!9~k?b*FBMNn@eTN0QJW8&~g5S
z>hG9S+6wtFtp>wV8Fz>Hr{7K0O7&4lSNALL7~AFFGQ5_jg<Y}q9Cvr~{>4L)^HbfF
zN@_2c0*OqkFT_TC;;zDH@rs*o5#=)~skukx03F}JXF=G!*aD<al{Xc;cu^GY(-RuA
z>Xp-0<2d@mW9;>{DJ6)ok(K5}NZMb{U)-yEM7$Z=<v(Fk-N(`p55BBfEuCIhV+br%
z46dBY$2CCI+Q(JaQnd<*__B%KPEqjSwJ1-zFBEZ+*FTshH%*<bi|X;G_P-~(u-J8-
z#)!_XaH&`8h8T?4Bv_tehOv-D>UFjp)Vnm4uri-tmXO5LIxUfR60NYjx5ss?M+Xqz
zV2L&|{N-d#01Wu3$nidu89s{vQk7%o)ciuoEGa3et&{(ON!@u{4bstbR$zJm8>R>{
zDjq|S!aI(S_!jpqi_3dugR-H#n@P4u063iPDx~0j+i$tx14H1-c<q}BtCsTOA}=S!
zG{{oCGJy~l$WBcc@EYKOf%dpJ=K{^)DU85ZOp7^hfHaqyU5Stfql3h{ItSs|aKyoj
z90NV*oK>w#F--?JnOdQ?@j4Dozw>I^QfwBR!Hst|%v-wprh3#I)5&ZBxVcF`73-M}
z7$hf1#IbcaE6H}{No%!eZVLtV>sw*Ddj+x|u@MIdlbKn5MH_VMvMeNQ(YCO;)a6V}
zvQszHK2z0MH&^K~*8O?UH?l9EEO}#zVwA-7^fx*F?$%@<Jx@N{HP=hUIy;vYdjc2r
zK|Yaiv~+#rm(8ly`qPK>sqX7!i>kDO@O>fil~Yx9cuoC6^kSu3aTJ0It^naep3X=7
zm_HgZyWn<UWEwGmcHW43c3QS#2e0GKX82m<qKHF2T2*YUDt^1%@g*&>bkDhwqCfNq
zS8RQO<CNs3fmT#GUYcLLfgUJh%D26RjWoP!HyUN!qx!gMZioxq4iy9hq?OXeMqH2U
zJh@Lz`<$_0h*&;+e1PZRbHIf}OsD|&k?bcg!rzv69XRrZqSf1|9-)r+1BYXDqA&Rz
zRzt3)LfFZ7*<H^vrf%)-+}2|o&$1|EB&&Dw9aj<_FWg-(iuu99&v)&z>5*6c{=jMG
z#If;IBjBo9zx(ywI9=7!%>HbY6$5ZRt?tj+e<)Gw*w~Dib^@a*Ss$aTKJq#}9&l`g
z2Wv)6$Ap<=Kqhdt1((jk$?0k2>&IlX^<(n5R|P?5{^p!AX6#S|`0+ThD6uRHQczv<
zadbTEoLYh0XY*Gnss7j%F@*ERB_;0i6rU3bu1OL~kFcx_W)1gZCvAl#^ems~C}=A8
z<j%pfiK#O`?|#QT`*vSho5M_<_tZR;NvtQt%Jm`-iL~T^ow#oU*M2rRgih-On#<*`
z@-};l*8mjtP)vWWXs4ywaEtMe@Z{ne2^R8Bwfvm&z9@^9J;_V}L@gTixidacn3h??
zh1R}{AFpYzlm$rL6=$~E1-eQ-vt=mv!2(h4mg*e@FvZgx?V9QTd=+rI`)cxwSrH*z
z^^UixAKhppt^5dvLrO!uIg&y9VM5|@=HZQK&o`RG1cBkpdY*ptc&)XHb@M^((D1dt
zpv!H3pl*iO#R06!We@`*&i?}L14<@wXi<e=!X?=5@AA~=OJj5lEugl}+6feIgofzq
zx<cv_p&%u%AU&n4t&QCKoq^q3+|z2V*4Ydbg=DvR5-wdajQ2}R!YjUvA7@r>xbOI8
z-F|hf@7QY+E(m_fv9x?|cfMW0FiR3U`<wa0XL-*FGEt0vhPtk?f_jP8Q@V_Il}_Wq
zF0GGzOd?{p4>$WgWt|(e-$f*N`>qD*zOHkMX|S;hl7w!Gu23`YWTKq8RtAKtLZF3x
zFDfG<Pa3b1F&>`^v<~(YpQ8{AkDenW7kg#8BknNf53x_l43E(3)&k&jIBnp9gjCfe
zzT9U+A!7{JOVpJONad1p#tEoD3U?qw5CZ(#-)q>ujlqFB5Jl>9?R~1<NJ~Ks5eKfW
z0n{(5LodaIdA;;WLVZNNV@07AZO05w+r?GXi_Aq<`(Cz+r(%1mT(Je7%~XYakM1pN
zEEccN@6rzqKWhc*x$O&5O;gdO&MDKOR2D&t{;a$YPQ$nco2$}vx~V~XvRIY3>}t@x
z*eJ_-Vhv-veddIsR0rfQJ~#L2U9uMTzt#i`IefEp{ZGY6Nr&~yQ)y8Yk{jdlK@R1o
zS>pE#WNXvj-P5ixW21R}eS<5><2!}iTVDDXCC<q}i57B$KCOCT`z;jw*Akl#G{x1g
zo7{&*%8XI+Vxiu#;_#YExB)sqeNMS@6QFI4PM;vr&>|(j=>YDRWmHQz`YdcRL#(`W
zOI&LQ9c}D{#=~Xk?acsQaeWb}UME^H+xwKrmY_2cWh8Q0vy#VeQ5I|v!e$?@+}3Ou
z)QeWK?k~+GUGTHXrrM{^IG%EP#>nimkAx%N&q*PEO)Vg6rX2a<F|qgJeMI$jpVBeb
z2gwbFGT!HyCiq|Woo5RuC~l(*{{kezClfA37n+AjNgF#kXOPc~QtuqfBrQtSq}Y{z
z3a14cPu1G?W4TW-E8ERg__BY{W2g0(q`9YM)R2&dgzw<mC#q=f+P7U_Y{Z70?%E%+
zrwb!?dgyza3m0;S{xA`oG7Any>$^mWZ0rSN<78J^NT1*4sOvB5%3(2P<}gSdE@;h6
zw=_b|u=hDDs#hWV%2_3NCq>pcW}}|9tES`8h3AA}agzIzIbt-#3Hl)`=7#uHUg@JL
zZ$B$(kQ`$q?$D}1(QqNgoA_OIs8oiidg-HJQ^|>>PWQWswtqqQ<E~SDHPBA!0;uW*
z5A`!F6JPbQyBNW5{E;yM1vmU?07K`q#6e^$=MozaB|s=z|2(&IY(u(acHj%E<K(Xh
zS2LgP9rnf%8$E7%%NjhB5Vyhxa!ri#FO8^zUFwmO*W!G>e^~{1i!Xj3o+LJeB7i|Z
z;&{Kd%~>cG5VLpddD$yS7KvN6aY<<2mqn;L=zrm(?tp1C1MXhF&t&Af529xSX^&DX
z2o5fu#cZ^jd`AIox|3GHpNA?!Of-A8v`J+eNzpfZv=@Uj1t7A2noMpMnu|s|RQ%CW
z0tcXa3XpbPNxJA{t9U-GMDRFe1y>>AXqy9g+h?U;o4)>yw*AxY@XrAfGn~^;5aHP1
z;d@NYW2hc?__-Ua;HTz0H^YDKh{&6k_Fq8EjkoYMt*wHxI7F(y6#vE}!UtIuAwn1d
z{_f5{pJ>(p^`n1(|G&|j{{j5_=O89nXr%ua?wDcAMvO&3kQ!o)LCVX^Yis@#awA>!
z-u6RLFca}`s!m5(d>#Sml(uzuG!OaX`6p_5O3_U=HD-4*{|ZJ;jEMeqK|4mu(A^6Q
z3)B9F0xS7oEe*a6H~R>~`$aoBKHLW;b@?<_^m(^wMFN%hKwsYvNcveQy4S$Y&aUqh
z=r?d?@%#V4NdD6R;=TXh_w((4!7l$7WHxx9hV839Ds=PT$W}pdwN@ad<sDwLc9iz)
zpLQrHHEZu_+5E2qWXkSXcl`y8NHY7M7rXS2URale1e!?vEhoAeeE10u_oWg0<ED^m
zSDAb^-rgVhqBk;D=zmH9{<-6Fgirv^3_SCq^ZMDj=emVu)@pF6K06z{I|)Ly`N93<
zwr<IZo`d$rIr2~0Fk0;Y%Tz{O0q)zy+xQ*P-<n*Qs>$YNw_b!Fk@2c#zJFSnvH56c
zlMr;5`pTd=2i1goT8&|E?@teQwRi!rwuq&+=nqN|M+cYVPw>Snq`v7xi@(&JspC$?
ztP1Jpi>lW+=$mcV=L5`o8C&+1?ZeW?<>9=Xi%$xx5Oy5~{apUmYhQT<CMt**1kfXp
z3QW}1RR9Zq0tHIK({idXpFR5qkO`cUS@^rx2Oav*wki%ns^OF3{Rt1{^DZ+x16~d#
zRhry}G=pmBV#8Lu)?9slHmcsVFpFk6Ww|WBrZ0x!AoMC9(A<nf<j2M?6*M*KlNUYd
zXUl}^lqYlySv1wu&pRS0Y&LwfKx_H(s*<SfR_G9oumAldSOCy1SOCKDu<!%}cv0bP
zPEHPBtO*&;5M!#pG=VTYf#@PmOXdtmlykaa`LvmAupwK5#<D3)C%=9B7{~rhu6fLF
z#kS@5V|hA384HXjNB0=UDRi3G!z;|6iftvh2sO-n1?&}jDS}YW`BY}6yTO2=uM_b$
zUwUD(3oR}rkiIekyhoPJrxl7P|A+^zd1F6kx=}UnCPp)X^BsPXS*<+dqlP_~m`260
zLyoKL8(*J6ioY#|0gY7cw<qAEi<R4_8iT^&v_tk2Ls|xeCpzo-<J}iL0wZq=`_0Y@
z2F$kxN+_p`uA+m|b@h20?t;v!+Lw3zO?-2yV>j#1FnYo;V&t`O>V>-ryAC{uZ1(Vo
zu;Y<v4{x%L$0u7;!7yT-78Jo|Jz}q!aY&L{t5g=Z|7#a-e{yRq{dhZqSbC#<nmVu(
zHLZ(+JrH)=2LC!n4Mn!ZM9sW}ol7w4&oESKl}0$N57ClDICQHmvdy4uQFL*D#Izx<
zjCn<aFKqlIRK;82-5WM>-ho)vH}m6Nthu%#6BR#I{Hb;pzJ8AUrxt+lXD7<q>}tI{
zMHCHQseg>h_lDC9L}*(EohhapZMOZ0(C|>YovqT0)Y*g4G4Q~ec$_R0pA;7}n*0pv
zTE;+Gan1Q$c$v(RNP?!J19X-@>D%SYe!`4yMH&kJq@j7+V=v?CW6oJ$y%^72$v8=`
zHr-#UqUB&NmFVW)q91V~)LQn>B!z(hs>8cLKd7~LfxIk)I_z@MgFl_J1xQ^T`LfqP
z0pNuyUlw3fb`B1@plbmA(n!k3=sr{b9o>-KDrBrtrfFQ}X@P#XZ=;Uhx<6OwxHMuB
zRT^*Eu7X1K`|1XqRSP=1Gr43V$qZ7hUi37vCA`%ggNaq7wrtCZMf{WlRS`@owNN<`
zD?58>y1K8+Dwy*7K#+irGm)eoSbLIsH8kEegWG0+-ioao*Y$PdWr$;TeG#m=fO#Zz
z6Vf~P<d!kJ?M|w+Nh)FkIGt`zUHxR%mLhSyb~Ms?yqUliMFNMcUX^Hs^4$W<!BQ!@
z;&Tl@!Vq;X(JB#*s_B(aRqZAg?7hT)CPMvXfTfjyAVGj(GF7Vl{IEAw@~okup?V|X
zGa&K|01_1|pn@5LzVS-8;8R5p_5wrd%r{Uenmh0SDAVyMm;{g^?1P9Vm=dG%+*%lZ
zX4TjQBDnZpbkNBLId!DumejlFVBguwj^Q#~XQ=fvYAot?<EX|{pw;3j=fiGE#(s3*
z6vGA)5cBKxYAi*;amAFt(C=M=lN5t}Jd$G1s&T~{FAWzQN(MLX%0Q%NB`-<K27i0^
zrj&*r%v_|eVgdc8GF>|9(oXPdzEo!m(Gtm0S9($m;d|)r`kRlMpR#yG%aw^F%E)Mt
zFe`bOPu?|Rq%7~~+(=8!bkPzwT4NSI>s_a$QRl_w#cvS$5mwk^Q#(A1F`vS-m%+0B
z%jVnP<2EfJK-dL<m11E?DNtS0HZ^^Tsc!Xzi+gns9~-*`sMsG}t%h+w?*?$Kz9TF1
z9c4xTF_G@8q;k)nLF|oBLr0m0e_x+mPzDx+EE1!cK+jUH{4y5yk7mM!i#!#nAVN}f
zd{=W6@0ABgh#s6&qba7@T(0u)=+!ge1N|daWusW-`fLgbw4$ATBqnqH>r-xuIPCls
z8nyQ)zwt8E7r3dC(3mpeIBfT_-LCCYg*wLQCFX(%oHrVgTyS|%<bzkHD#)$443Y_p
zZj16hrApyQB0f)cm8aE;Hd6{eGpETsU$#>+jmU3kkX=(_80eV6@A2;>e`A={NhZD#
z5?&q<!8a)wLNZNU(H-egZ(c%Y)NX0P@?X{j2dqhZZAhTAQNqsAkwQ1~M@|k5pcwbh
zNAVh3Sb_|FKPL-B=6=XL0;*woQf|4iQ+<>XviF8M_R<{Q{ROtWSY(?*85y&#&$|ub
zi2~njBa^N=iOe0;7d2rzJ(M?99+ehVsZlz{K1m#v4Fmjqwa^!$#^q)+c#-W%92@q(
zdd5YQZfx*H+B%&Ns1zxmD|l+~P3$o)*A}6XfoF^rUL{!sovhu)IaJ2`Z2MO%m3Yr>
zrtR3J?#)79zSfkmN+M#ucy^XN($HlCjz~|5AuqjHb<|Fqs^G7X`hoA2cRfE9jV9Xz
zVI!xBe@?Tpm{%;nCQZhhUV$xNydwBgQ>pgJp$fBX#@S@NxY2pXRol=I8?bG>gN96~
z*dIV`5akWb3$RQ^d%4>-_2w(Aju;Ho4}~H^1fer}P4%fFu)-#Iyz0C<iEZ)*WTs~q
zXS%aLE0^g&5E!&6Ceq)+9S|lSI9z-z>jRn?$+(0B!5VdC;coDQXi2i1H&p&jL?&F)
zXA5&*xddPP$F?%Ewuuw?`G$rW6Ee)Yz~uB+zWDj-3$al|gj1!tFH38U?xIfbtm|fw
zbJ4@+ie78PAlOLN0U8wL?`2{#Dj!gL%98a;KN^(H)0P4LYQ9E){|SHCO`GbhP@&%+
zkk$+m2~8Y*r=j`zpD4B41+T9Q9j9DoQ&MdP&@=n#Y@zdkB?k#a3b$gmO7FH}as`C$
zQa;=I!_*>EO%|>jSQq>z7bS1P!pjQ2tRol4E{&C6j1cMGJ1X13=IiwlmZ))G%4OJT
zI*>K9p^)O2AHh?x@wPUbD5cXdy=+eR%H-7Z=a@tz8Anp1KLMn@MI73BNeR~7*IARp
zCuT!cH9doZxq~vY(o0*zt&gb<>|td;b59@mH!mFOM(3-d1}3Ii10pCTtX{)W`@hE5
z$Hce8_49;Ug?jn=g_7pLQ-mX)o*yl5)ZM@GbussGAiG}$2gCD63ZOBC_u0KB3N#@l
zGATW?spD=~a2Y%dv)xUakxQPfsycFO8sT&qui6>o&Dpul%m3y|@24d4Tp<r_XBTHE
zYF{)hyuen^s1rpAt+mUrE`oYPuK6;eo0SOQ&RqGzu=-h&TTa~w<bXlE0mDqgr91ri
z`1p|<0YtQpf8O?0(d@4$_V)GxqdfAim)wiZBw;+bd=yPrSq#g11l)=oMxe+M$Tl^t
z9(NLm*?$1}p-~Ut%Z5Wa@-|H`LRj!3#v&E}?wOKOa6EOkJqo1SzF}&)q7Z<HYm22g
zfE_or0azg(PNi%(!h;iv_~Otx&nq860Tf~>6SR&nSyUI*MB#1)m%*1N`k}Z-h&tm)
zid=2x?=V~<*TS6g=dsAvf<(j7%!mApusyTkg+%zdM#gZG9Npt_QSXeOYKE`%X6=2A
za?wv5>Fw<HwpZgEduhZ~B2%grE5<cent^#^{xoesHJ58;5ARu9)|=RdJyAT&tE=-S
zlCt-OK~fB&fuZyzJWo<69KJKcMRj_i1`+z}MY*tBwDmGH1wV(!lrE<dM#v6*XL|o>
z@2YbEeTV8Dr64&9DLOawGL2X9W~PE`vRI*BwVjm>Iw@*EM4zb^4^Z!3-F;SopZ|b<
zIt#<@^O;9fUg1tIFZJWDnb-S1mEabr^2%I$t|-Fp73F=aywfRR35{ergt|B-4b_op
zo%})S7OpC-#g0+G43aNcxFFPhGdw@-X;+I8&q=3~d_L6d05mCyQwds@g<#}0KKNku
zm%aa>VUEba&iwR>&va*3UR5<f+K>y1FmYe-gZ<l^+ney-^`!mTCJ%nVd3=N!tL_!J
zVk|Xy`pd8%8#1_5oHrdezjDuQ8w+E&cE$hp?b+2Xjzt>~u?_{M1cckx>tlghab;}P
z@=vV>RKVNYF2wHyTV~jw0u==JmofNfh7+oSOT7*01SUFBq!A>O$hHg$UWK@lMLj(D
z2e@`=S=re;ef!x*;GYlcv^-3GK^QeIRpP)NU0AAsOS&00fyJ4J;-HWn8|8#mAxJIE
zDWw(m{mHZvsHVQ0@Zr6+044@}>jvWxH<I+z%mLA5$&7tAv7`Z{VWPCA!%`ACG!l5P
z(L5(l`qqLko$$N$l-*%>F{8OMulfWtCBo5}7EzDo23!US-_5v;V!je5-)a}<d$eQg
z*?uh|ms}QE*V9a5Op~GO-t}eO4+&4xi7m&I5LVa5dfpci>Zwj-T*8*Hgl2d&_rcNA
z*cqnohlR-Yu3QEUYZ+(97xv-|d%saBkh|>>GLWhFX)NHjqjV%te?H%NTkEQ`yN4|j
z9o@978Z1sRDXMCa=YsZl`t)4J14+elG@CP6%S?sR3x`4TM&3v$QJgX;OkP8R!E|@0
z?!;|l_FF9%V-V%*ArYK(o`8$l6W@09_3%Ka8W;ofz_HVpK2M!%>%wIx(;a45ak-{K
z=eoqLz4e|`Q`3YO6}AJ+BJ-$GTVTXH#_?T{`vzY}46YAZuOWY3!bd<v(ghUw+jcY4
z9TOAExJ|kul%glVUwb*ob9zceA|4tXOgKCGEo&QFpBZcI^!g}_36v~jdYlr=@~xxw
zrSRfxCt&v_PI|fBUda4dhZaBvFK-&is1Ol>vRVSEWQHJp03@LV#M+gVm567f+6R)k
zhlhtfv$M(3UOrdC!Deth{M3labjTWkle&_d(Iv5RyU|gEOEDGS-tl=$DZDLqD`AUE
zKAcsqX^r~nj<Cdsa644~@vD|-(`59bUy9fA+BVqg!rdH93YH$xFK~)<N#WUR2UoU)
zH4@?o^MdEraizZUJpHPr(wi*{YoJStbNy2)kxE8g*0?8xlOXVOpg9*#6c@aYTO&j0
z%lGb#%^oQZ-Ltt>0`^<oO)}f;)Ev*wxA45`>GB(zStQV+74xFQ*`>SK+eIMvo0abJ
z>eSw}B2;6kXd)<_-YXL~C$FewlFAF|BOj04-ft2=ER{|cxCm>!Fgpna5eeIQ${CE}
z*yr7X)>JtZ{sLN6>=h(D57l;BYe@R8_lhzUpL>7VwK!QMy}`=re6_l^D`vAv#~I>0
zD=aWV`n5+VzNg?iMS?A^ClWapxvbVud{Q5c<~HmiZRs{QQ910O2ubOKvd%>k2JZf@
zh@2e8^QNzXO3#^PMw55*<F{Fs9PNKpRly)4hIFx_i-|iprh)&!Owc8rx@@LLZ*(C7
zRFR2Od;OBRDYzRCGr}2`28!L$7q4z6tsgr1L#60z&_=5dO_2audSMlk?tJa&6R5Y_
ztQ&pFLC<b4<)Wwm7=rLq@o-!rBzzu!OiiaJsW)ReLsL_44hHp^oj|Q#P)@2lHb7vC
zXDM6_`SE$L1H$f4^Q>v}IiIJPOT;FjVsPRc8Mt344Y!^4J=GkGnlSg)Cym<?b30}`
zaX6Xf(wA4*tLWpVW|f7nL?JmM!z4W?wi+v&f**u0ZFz-Dk1ggC+|PH+^8<}3Qfm^9
z-_zC`E~1f<E290)cLA-3%DhBEtm#+&p;&c<-2|(n*;1+G6v*+Yg|oOe`A}WcP`{&2
zJ9cQ5L~a;US-mos9wPUUPle`;sB29%MI7Fd_|D8lJB$68W^2?FrY6&5;BQ^q{Oi7h
z$()yE5^CO^Dz7c7&>zxgg{J3uSXD@&z2tj}=vi$0qSFaS#AV+rv$k+-p!zhO1Dz;x
zFm}bdMo2!KfX^!;#l}Sd7X>R@z`uQNI9x7qNTM*#%POyip&+DfBpWVC?MmGS@hwTW
zMRIbj1AI`T)};KWWbtrVGVYb$f^qV1$a$Oygb6+4FfA=@GjUu&yu1BaS|`^$)HKu)
zy_@eTui}&!zlOH@F|zV_`}&F^Ae?11raifLbIZ*y5|s&Y)7MLT|4zjS=EY4|y2U3q
zO3|n9vQ4<a0dB%BnlC-KSrU?k+YEXaLR7Teo&y<g<%3O7m_Ec~yAchM>B!E0p>;PB
zYt<UUo?cjp_~^8$GCVcqFXwSH7&7UU;ujq&i2r4k^N)$Nt$9LsGrtF7xy#Es);X{C
zW-8zTSSgTD^r`3j>(SH)G?1c20(8vJ3ExQ6K<X>)hDCCVi!r~Ayj^(fMaqr2BtoVd
z9Nqq`+pOpb)&+AY3MmOryL{4$gPo@OD-9f1J+7jvDq_hFe^=}D$Yx?0F1s&nm(ZBW
zj9g5#vYGbi#H~|wf|)xU)NFeSX7LKn<II~V48M9vUQV6KJ5V47#d7|fQefD5g4`HH
zO;DB<0v`~Ri2D5PQ9AZw5TEgt^ViL0%*N6D&^^WdKzCHHH{I(|OSx;Mf|Z_HrS_U@
zZ*w%z^`2YLEEzM$NDVfN8mhfdNtcf(NIGiCl#O1y+%<!EQvM3zT4c3ciq_8x7K~6+
z%?`=U?}hW(8JR**>RB@4iQ1&jbu;IdrPT&?Ci7tgx!ZUXYVD1!^xvWqWsIiZXoUMT
zo@`<khqp^i^Qpm<4rQ<0M;v;6%&{7(C6#C9Gj-D_cVb28w6ZrYDMX0hiN`ptIkIml
zbq!I!q}GTYYr)ZG6uole%(kbMZ@WvE*3{7Wwv&K;M!-uQ92$~QTm{qGDwJDLFcKL1
z_N@uRD?}Y9Cs?-zUgJL2cHb|6%VD`)>k*rw;p{b-_i+yRZPsAjPof@w18HPDoDO}W
z7|FDf5)>c7ClpCmPXTX)$4XW49R|>L$t@VGD{@^F6L`}N0IHDLL)uV0oc39Ty?r1d
zCnE<W@z<9^=ce93sgwfLXXD=5VnB)-FD@MR78-CiQ(WjT_NKqBhVg6WTGa)=c@`Mb
zrA<*+TAk{%iiz|6#9hc`@N(Hjb4&_7pCirD8x4B6@P~Og%&zMz15Vy_D)M8dQb`R4
zi(XAM89mK|c?*XZ#%;1)IwHdXI^y)?6G9vlH9u-UeEejfGeYWHk`<&Ko0;SBaU|0Q
zOOqysh>R?0i6Zn!v9})1h)Kc9%tZ7#cFTqbLp|0W^Pm-9(;y%?6D6jt@lRjOYwQ!g
zjic;V%Y6)?L{i~fn7Z@t0sIle_n~)3>Vu;kPUN1W0l*eG*p?R)hi?NsipB7puaHD5
zxe{(<%O_JsPgA0H2TH%9+g6<C(ta&<t3`B66i^Y9n$V$?j!-9nY2(T?k}H$-x2yF0
z`TMpRiN2&(eI&>86%DnJJU6ZNg4H^xY%IZp4a-Ze9%GcLE`PE>55{?2?H>d&=rQ71
zJZG2ZIvWK)+!n{Jq4T0KLw^($76c(O#P$-cXQhWGV!QIkC6mYYa!!Agm-m!=yiQ$(
z0rfQiC6-=Og9SSCD%Rr*g2zoxYD+NI!Dy4LC>U_OLrXry#KiG6z`?v~^jQt%MiTn=
zjpJ%U&1o^UAmts+Ghbidqh!m)AiToDs}@YlmcSUA&bJRKW*Cm{=QLaUyX`XUZdmcs
zqEnjH#`5V$k`jYO$=t^w#fv^4D3ZQ@E^0t}`}S=XxtN5U!mX4~R$XDCOjqZ{#j|D3
zb3{bZ#JKspYuAT%Jddk1m=c3iLv`2gERNOSFgTsEJ6`j7u7ak$z|!nQ$TQdxl*i=Q
zNt#o_l(F|SKfk4$A~kqs=9A9jQ5PeCQ8Rv?pslw*qPyEsX==f-toMwP<HI^XKQ{(K
zic3q{PK~mzN^RJLcTs9_UW_X0`GQ~hH0l{!9@=)#8cGb96p*Qddc~syps~9=S~!Oa
z%FcvWB%P@4w%%m&e>2WP6^Bj}rJ>$7W8S1%Dp__|S-7&8nPa{Q8Yv`rLM5Hm^Vr?V
zddY;rAQ>b}iP=NpnBwHlnm#~Yx!dOSUD<t}w2`@4t|4~AhIY+ekRbiIYPpOmHpBL1
zl6igMj->zzA@=GD1EvS&oqG)~jl<PRvDknuY^MQ^$gPvhm|gV-4dmI24*b}ueg2B=
zy!NW!j7`IhI_C8Qk42L@f62Yi<mVQ&7It5vNk76uq0dd5SS$It@A8R#ltf;lqf;qm
zrZ;WjE)+%c(K1}|m7DU{k@w6-Z#I`@YLpie|MDrs6bVquH)gmrLXxt5WW5xgBG5$5
zqB%&3A8DU0m^EA+4?R%{4dXwc(h>1EaqzK`rAEIGxQuXHRO^4mr#0rHc}K@FCl}T<
zfKf!Aj4Cr<?wrZ<>R#+NJf80vNev3FlPv>MeGMk~sGmLf?s1q8Y_=cW(QEx#Z27zV
z=Ec<W18vi(o0}Jo+`Bu!OvkC~Z+d8;zJhV2FX1f?(1EZ<(qkS1rP>n{j~yUAFg!C8
zn3HnjQL^KW3YncC4vfd+rH5bIvQGV>_a$Uu)0!p(b6mIhh(A9~yKr9QC{uoIU^F?9
zT)k2%b$lfBO17NJlE(cwX!BP_1v){~k|3>mIqb9<MuS_!z$E|qSd`ZkEY#)vrN-WD
z-Q;$42&krBSpgMs-+|1{=S^9oL|~MmZ(qQ`SRZzTY#kh=7%Td}{(%x{pe<_4a<T6w
zG^GO8dEdWdtgBC`y^ZbFnJG7UgNrMyrA2^^js4p>Ls>})cJrB8LaQK0Khfel8p17J
zT&~@$VZ-LgR}77vGz=C!NMWSEte(y)sX;SQOWN5rV1{grTndJXs*&w?_nHL}gsAMv
zYweBq-I$2w98Zc#Ab*oT4UKv3uqb_TdR)Ejov?71w$uh^I|R=o{cbF1c@F^~P(w_q
z*Pn<}30fHYx>f)hh}}y5YwQwft81!u4O-fxr6)-1q7<bwd!y4?@QQmS1Ll|>Fnlyq
zlFE73TPOX}XNWn33xq}=r{vwQTHe|u?bKeYgO%}mqFEI^o`lCLWS(f&K2&qZ3LxIY
z=~TZ@`03dC%FuPGbtN|2jhy>U%dKWU{5vO=o<pY+Svv1mzb~Z^?XIPTJJ&~*%Anh7
zrR^dbAG$t-XY|w^sWkg_a~Vk-`=3*PYhK!2vssAWwG^E1hj(TbwLd2$us=WgRY)>T
zN#D<6yR|b_dT-Nsa@{=h(Z_2lKKPI_PpGi-OCVycZ4Eptouu16N^L`j!{A!}Zk7TS
zE1Qg%qY(_0_C?b7BTjirwDA3%wxuPg1l*>}j~a^K%qro*T3blyTO2un`xqM|ga4jA
z6O&(Dq8ESKTp&|*-&$Dx=y_{hUi@m8q0Ve%JqJFF|AB*z|CTm;FwPS~nv|3Jz#nbP
z=R9M=F|-iMFy};KI2a#vzRQ5f?_*0l{Gfa*oXD8QYRG)mll;h0WDQ()oyh?_W0QEl
zsEHI(TwA;t4n0wp#+qX_<34?F`RqE6DjaxBx<Fq1&Xd*e5XTTK1zBiaF6+eJzKkJ+
zUD+RKz+qp3;Ya3vn0x$v2_gsyaHYn&U7M#suy3=(Y?`?*m49(N;r{k=wPI4URgC{;
zxa~Ls#0EyTKd}xb`Gk`A=?xZw0ru|tbQq)x$fUk&-`|`=dF3h3%+4~|Zb*-1f0K{t
zXEE{#MLx!HA7)i7i0FssFQB4ix3W+7M5;;4Wn0TAD_>EeetzY%@*^)DDiejF+$*zk
z7%d>Od4w;2*e*FzwtJamCbMHuxs`6gx@|q8lN+)6MI9|PknCG4_cs)lB}ugP#9Z}0
zQpj5(5tgj2wkyjji7j<%()W`hly-*A&Wy~4S~s`0dN-9Ma#w2}t-W;=si0o}Zg(qk
zKcELDkT_fQ<Fj6w3zs#s=%y&j0?gzj*H38HvUhTcTD4hl3!E6PqumS%cpEPXSU#4X
z$x>5p_Eh>0D3!1`%1n*>h#^BWO;=mA`UbFh{`%o^nSYpqrcX!oI^!(kI?66L;2Y-3
zSnUhKmnJ&WunX&ESV{`l@fc?JQ_+*`TAgokdSpMevb;16jHDX))SR`b#NdER*6)=`
zD=fOX#U*;YLd5^`8)?f93!!qjzD_`F$1Hs+#fD#)k|h7EUm+f8JktC<^JMRs8@=^(
zT!DSV%nX+k3l9hqr@KA!Wd<hu!GrYzH4T$nhjeC^YJ}NUW7tjt>kF8hi2VaWuo{3O
z1X0FjPj{us%#eLl954j{;L`_=$5nz(NIqjD@%FVJ)9~2j<f_Mg@ncBKzT=Pgl!U2+
zejWrjLw>&;_CKxJaDrEXRuevm88Z3$`9<`uGcq$X4{v-1`cSE>C1M24Cc6`91`Dn{
z7h5Dygwmbe*<1RM3EY_f7yn!pn9b|YMx?5@vl&Pd`&V$Znxy<my3c;qL%o2aqdPrX
zZ@N|khVRt?Wi?E}hlPXBe{U?+%ade#@MXdl%6qitVFhz=8Jq?s+tJ{-m}?nY-DcaM
zdJ{)W1pvNIgR&OU<bb*@$2e6hYu4UpP&(*PUb#|kzuUs2Q{HE5JCx%1&{=V-wo%D}
zx4C?XS*KFA*#`lJ4oyt>3c<VzomHv?Lschr)toa8ef3gH0Nb<TrUx#dIA$^Dev4;p
z8u%FM#F>|y`x`t7)`RnotG+mv!RTa{K-SXbpb<yK<D!hLUCc{A{^KtzA};Pwj<@*A
z#i5Oszr%dZOibX!J~*fNfgq)>6G!exKi={u{<;E$P|p#aZHs5M@#gFeuSTcDndR*Q
zir6n}WScKtvySnn(+*1t#LVB%dh^()I`g6~#tAt4c{}mKx301WdUgwvqLMsMdl?ZW
zepq1DYDd4g%P&pQlq`vEZrDPKLx-6Zt6PbaEe+9?<861ErtH?%O52($b*iG3g;B|o
zFCe7a1m&QB=ZZ3;l%&fL6Z7j}d$W5}pb#2tQ^~fJ3A0g*h(B%0-Zle5YZz`RZIj)i
z%UGv@8av*m$8Lf8^WL}!w69ixpxcX3H0TZ~R_txbef}F0j3&Ef3IPn#58Tt0Q%vt0
zCrA&v-{hkkAd>;n%_;gKDc!v8iOl3z>utgg(6@FiDGelOi@pIfDw2t!()GF-w2~N6
z7HvudrQ<$rvW5pFq}NC7q|x-^FD|B5f6eH@J9$Y=PUu?fy9Ng%=m7!)sP`HgA^G_`
zYdTq<nK&4~c1WW-yOeJ2cRz)_dm0i?4i-iU;!FCppU#kYE(RZiJ5!x-@p;UuA8y)o
zko8~~emwd89q{Q%e3ommtb7pVG!$YtJ!!mc#Btvp@;#XK+24mbx<BM6g!K-lVCRjX
ztOpM3)x+fh=D>87BLiUkkUcvWRZKZBHgA9Rc+RBmv@9}pvRCHyYr<WdA8IL>Wk6V_
z;_5cCU1`!umV4iB&T-MP&;;%@Bd)3bDz4vfcyczV6W>jkhH_RLsN<FQwGxL|#jSBL
z;1++ZdCC1rEu!DBWQfWDGLz~U0seyOo3hjpbh0l@HsBw!b`fB6;yIs>2im2MoM%%?
zy)VHh5Mm^b?WIAA=&Ct{7xWuH);{Ag9za*lqzcRY9M2+P4u#{4N`v&&rFfANqrwx1
zLUN`kB+>{|s9@RKE0a?FI6bC9rP^>?FbRq#$PUW;Q21$zmB+^fA$bJ~ao^i#Msf7?
z3tu|3%_|)HtKcKq%qD~XsRgLlIN{TnL4}J9Kb5y<re05hb9<3!$6VQ%!&McHYnx9e
zSmdvU;mIf)9{m0863_lR&2evg1wEr2KC(IW%AEAUMR3^Op(F}oSCXEXB-g6qA2odU
zC*dOxl5Nz(cdcq=dAa0ea73m3eln`B`f4yn$-Q5DClbyo_IuJ#=Aw4uiws-b#dNzk
z6TO;i_RaSPY);ySc`oktRW@$>eZdObTnT+Un!!ploC?D2*WJ(xA3h|&c8|uH2<nk<
zoog-*<>F56+v;=#V^!~d)*^^8Z<}fsUBlyYLUx?Dr*OV?1|8D6TDk;Hh%4VMhhA$n
zoc<nm^?9us8xD;)Af&?t79*$zwZy&Hh-q$a?qs{jw>MMs>>X+4Hng;cQ~mxOtQ6GL
zeck-l?mpt^@0Pjy9g8JF?Q56sdc7O{kPTh>%v0dY4317wh6#37SQ2tiZT%do6jZt3
zY|RiHnI35Qd1H|jU^UQmwrT}BB@szr0d+O^c9NQeel^t5(SD_=@-g<90~t2AC_@ht
z^LKPV%gFg<zpFgwdP*mrGdcw%G%Xs|4d-qPEi(X;U5>8?ZZpXZiOmdlA;&1$&B2Kt
z3d}I8fG_0NXO*LdMSzc8NyK4K&&z`Y7~<;H(Ag53c1fO_EfS7px5L&io5^8=S}urC
zOK0{u5M|)F@c6jzbZWkX8nz+w(fYb;n}DwxpquD8@n4hncI|Q6f;lAmP=efGIo%O>
zT{TcYU_+b5SvT4)g^b`9U8>Ne5#NQ~%57~UQ1T{;aGxnY-*%?;I|&eK9UWI~##<ji
z4f9@kjaem?p=v$`lLprkGccTH{d(J+eb%g0V1a_0yv;@lx%iT^6M;b(BNm@Ryhj$r
z7PmcRiR@*hD=vuq%6eDCz*jAtH`f*>O(hAFcZM&qt|i$xt0~oa^G232l#B5g{|dpB
zdNR)<e28XWCi1IOKHAP6`89YHy%8UHTO1Q~JDry09%Q+-HkI4Oi7?#e1V{%ecf3iW
zD5(fod@^PyW~d4{{3AmBiK#K+v<^|Y^aOZ|nkz_B3r8{3I^f)_)A6+}_~Q>nO67wj
zb`neb>A$?i7SK5Os!VT|yaTICJvuiRoR9#C=(CQo|7f^}DxId4{p9kxlINCoX7<(6
z4Pq*cHfFzmGXtF2*<$E~vg<{D)62_Ac2)?vi{C3eQ8%Gy-wCR4q25Qy>P_saiV8&f
zRNe9R3YAD>oW%Wx%*;BZkhvD>_s;lXCs@x6yK8$;T9s}qxNtOo4?Ao_l~c;5s%U5N
zcyLW}S_zmc{bI{u{&V+|@QHSNPmI%18s%Voc(vPY@62r*d`)eh&T1&j!|Ha<6KLHF
z(9KC^WZ+4Tw7oU2TE3XIc!mt;2P!IvE*eWP`ERG?tT*C~mb)p~mn&xvf3LI$LA=b=
zhc${gZX^0i^G61#<|;~p>PL6=Djgw8QO&b}prfJISI=Of2a4VH=^@svQ_t<V--eo)
zf*{gI!N$v}qgZ(Yltq<jB)>}qLxTtv_vr@1I|Bo<hbw0_Gd<OgQ=WR;<H+~H&`&Ag
zQ0ZSreiO#<>=95W86yAH-Oy!E9xrO+bBmWuYkgb8;$$0g5r>N@u`&{J5Q(RI0fLRf
zJyPck&#xbjF0$>?GfBmF%-$yv&LFT`<mPm6M44?@=wOnF)S1Z=Vb(b%M&D-I*OH-<
zesdbPjhr=b2tQ7SZM!9y)YEjx&Tm3&tlxeBtpl5$)TK)*#J(z?cfOnH71%3YS<NNx
zif4OQ(%5OQOX`R)H0dvCqSn1jZ|}}mWV4=A7^1&(w9d?>fZ1tm=7>p}mm-S1{(~v1
zS>@nP3@T#ie2Skxkm0d^k$Uq&zYH=VrTM>Q<uJx;Hf|w}eDY4qlELB8f*phYlQ(dG
zK<t-}t$x1vKva$`s6+b2Y*kYMZzm}f{ikwR;GX@u9iPvoll@Tde12P@!&nj(X1Tb~
z020-KAx8HGD%#-BdogmZ^b3n}v3nCSWoh0g8Io6izP>}l!$e6mr(=q8=?(W^tv^jx
zuLcM49ZTE+t^*yh&wnkr%Qrhh)<{7t?K^}9Ohn{){?GAgY7oJ;sY$B*CWf1BDGr>s
z>*~#vx?$_gXSSPt5cb9vJupbIL4aoKa|Z_&d(&kw@EG*J<Bd|#@gKXy_yUbm-7xm|
z_m?+s0N@%m?G5L&cKRA*H3a-NC}jVlbrAl3P1@-_ZM%^Unl176B5k!xC+Bm5(Ljrr
z4}64d&|;AI7tJGc&P6fFRZ?p_l#Rf=oZ<_PAJY8!yAlVtrWqgbyU{o6tqJzCd4+!Y
zge_L4u;Nc@PHsT>7k^TI#);2C?Q}{+mybjxw%=yv<hzpp`ZAO^U&{UsFo@QMdh2$M
z^?iMVjxjwAj%@obvNt|DC{Xsh&WU>&@z>|o3rE%$Q{EEEZzKljAts_8*CyVWp~VS}
zN7%^MZ-w$&W0xRG#D7h~j3kwyLve02KJ$Ql(mbjI-H%FLabBWQO4AXsY3z=Avj$oq
zZaBm#>8%TfDF@6tc*c)Mq!^YHK6{}=pTLT#Oc_gGJCg^~c?{Z=R}mmL#u)2eTldN@
z4iN?)L~{b}O33b1B$(5bLmkrONtG4%+uChQrH)N%I2fo5>sO6O?TH1)V2oP7jRX_X
z43$Ov?@m$mr#CKbVWb9vC+)H7fnWuTCM^a}dA((mgo!s=Q2`=*EF~b=@^~pGrvpyc
z8j-dSbAdDZ4jJ0I;AGC@fkM+||E;?H`FP6%$ZNw8-0_2`cH7N)tWWCd8#;(GEF|R(
ze6j#bi#cOn$D6ZlV`F0|sQT*-zP@A@6=a;zZB`Im0VQr&FC(LpLGW{>=Vwt1KXCD(
zmV&fu^JsNR-+8UYMaWLBXn+(6aL?1rGM@4Bsv?|S>Vbj^C`dGErk0D9&5$vpMiqq^
z%M2~;@QasiTe+re@QR@IwykcDan5tymdt?25yNer!ZL~?on+zg=+;qAPW2W$&Q4ZS
z<^ZSuz0nY5DJIV@V)2vRK;8|DrII#Iot4!~AD?p50CsiT()JCj(diGNi)OE3z6Vc9
zX;qTdd@QaS<e_dRl{~qX42gw!L(+`L5rw;<$LZ@%FC(+3U#c$#C@#BUea`qsh?Tsf
z%uv;CK4U~plF__Cgv98`7gYCHfS+^t)i6};RY*9ge?V520Y2YpJPoM*Ad%jD2?YY8
z9Q$XZLMXd4yKGC>T0DLruq&&>4gwG-i+6?AO6#d^H@cuA+<Up*r^#xVSl#V>v&H1S
zO0v~cKGz+wqkR|lmz#5Tqp|1$;eIl+FQI6F=x3;fNuR#eu6dQ;Vm~yo&M+B%%Fp75
zB<6h@!q6%G3`PUH#an&-GS#z-cu+`3U#7b*nN(?kS828oTz625%07R#ex#NNqI_w2
z>Tq68YStU7MmkRVZ!Q-d2`020u%HNIdzZEFT@awGwzGD7$wi+wI}%m_6glX=rJBtL
zMee}J;qh^wg_T>QW-p(qT6-E0mU}K=+SrKCV%SHS=(gHCk|lL~$-amH702%(Fx_$v
zbrn@2Mu!qUxE?L<kFc8ilQ|vLFfigd{5Nw`jx4rPu?YGg!fjnSDz>)sHrdGU3hj~_
zhwk>gHqJ53y8RWHHABym_}_QnPZ{D!qLO^$@G1PLrrxeF>#VQ>-R)GDZYdUc+Y4k*
zirC?zYW1=@WFYyIcdqxs3-l^tO;^sZ7~bWxp!>%*$t(mgCBu!6O6|g$%(7$b=Up+n
zO&R@QocCy)OIS_l$snbn$$LCgYF9dtHvh1A2?A9u1|S2-mx}oS$QrKLnVG%R>HU_M
zm#uCAhtpAYRv3qa4hivUwo)=>oLi-32yk9-e}V`B2#`JoL1=2bLV~qt%AHvav8~(D
zJpuv)1KXAXt1<~jgI)wN8xj)IN+`EQrwFFoQ{cU|(^bs{<5*OqKpsC3Jg^#%@$k7N
zxWb<(P(@7vyvv`|t(tvW*hy8ZK`2QPH2&u+L<tNwe#AXM<itnSNW?kelp;n#O2L~#
z!7BHK$p5gp_acVV)Sc$j`TY?g1DH+yKj((#5t_iYj!Q(0y_nqoflz|BYQs5cp^`+I
z7bL|l*)KxLd`>(m6SN^nMRI(`wiVN*PeSUMnel3MkGhGF6Wdw?gY0}VcE_qTMD`b4
zSZ8?|2!?sRQL#JJp1iCUzca4%{@#3=KJZTcoXb<D^GyN%l2yJGZ&~@Rx_h5>S8{Vt
zYRYkb7%FHg8i4Z>`}KJf$sl2@`!^(=F_jUv1Of}<!KAP&<^h{uI1cMi<teYOc2pkN
zi>`W`XjOyt=iFz_tM4mkTlUoeeT~cF6g(8i!_{hpY>xG`LF{VnpjMDe)44fRGho(u
zI89y7r};)T#L#pX_}<mb)U<^i6g2_<0`KJ%`-|!7>kYMV*&HSgj@$~p<CXT07exjf
zZu2J9cPBJfpxT8j$D~vUG$<!X+5O&fsr!yDbGWVm%^iDBwmQ}7T!1rcvHY_kF$!6Q
zZ7k(shy9sMONNC9)kSoRQ>V(ytiUNf1KY^q%ywRd__DA_>DRHlZ?k0cL?IR`L3KY*
zOF%Q}(#^-L;Je_50+i>akvj6#(S->1DHkQe9oLf_g5GEudy_&^63BWYz!cSH@o6>d
z^_6t>smx|85y8TO3hhmR{t#?86%>xaTP$pEq7;}b_aBCSbv))78MwT$QeL|{8i5+?
zEPAfa8i}G`cbdNGKZ?rF+0<L%5phK{A<j|?Cu(E^;MTr>*d)A|9`r3I5p%V+(s7MC
zW~>}IF*FnY)MCHhIiIe50n^KeHycyAB+|a25s*!gtrehd!D+JYyG%Kja6mXA=X1&r
zdpIlzwvyA?hviK2+i^T0cJ8b*Z#q_<zb-u#Q}o^z6%X8uW%Jo_V)}BB)+Idkp@^e>
z+O*R__*B2a101uhB;cTd#Pu*?LF(_52p~s=YScLZCG-Pkd@YY{=esbLfj447{t9VS
zY80G$*CAac+Ua5iDAe?$_am(F(C_c=OG6|WlbK=!!1S(L5dZT0vzJqypnY>5yv(%Z
zUso>BH56T__*Fp+FO<DBBx-u13bFAO!A=8XK*#EZo1CsfOKi~bYqAXE++Y-N9jMP5
zzCql{KQCQZLV-w1ctsHoH?`$2M^`A7%Lm>3$@EMQLk;Br-tDiQJ6^s9CZuSBP4$|U
zoM?_WtxiZ<IeWx5l+Zu#`MAt~?oAFuDh^o!L0(K*X#;f7)_VfUl7H{AGDZA$_{E=#
z|L=F}JwY$hKR^5LcfA*Ik$)fWzcvJeip76U^q(7;48sW}{`=T}ZElN`=fsaVySxk&
zW9=lZsHi|SfBI)bwD-;rOM=`1Y2;4)GlbOIt47QDL569qwD-v0uU$2-de?1w76Cc4
zO%1N7sAvbB`Jc-X-VP2TR8>)7#~;RxilaXH^Q|{t{<lWAA6zT~xGqC1t~<=11WMmi
zetg~ys;EGeG*f{Jyn~{@V6~Y)ZQ?%yEZ|S!-G8<t7?D`S!-41fPk;UEgKi(_xc~Dl
zs61f$1}*Wgz5e4v2f}O8|9t{#iW#Vu(9JLZG{t|nb2P%gTVC2E7nR`O%`9zU+@t&-
zr})=pb|7FANgyjCFJ4yMn%F`8`xk%rNEG6~uf<7CXJ^jf8<%^GEY-DnI_{-T`Nfu*
z6<itVY>kyvg)?=G1|LCA<UI87m$f0`MBw^?!!Z^0#c^^Uza<rywdt95N=2w<rOr`E
zh+>WGB+*c$I*fdu&!U^26r$%w(80nl8REEy8<wPK;T3o*%-KnPbIGf`jqg^o_H49>
z%Ub|R?$14>+ereX*k5;FKM!f$Y|2v9RNS3E?O|w#M;IAwnz$88)cG=NWA)>lU#3pY
zj5hW<yXkDuWSzIdgwwy;w+9L?QZbk*@uh#99jQHTTe95xpK}nmR1~!jWYmsry(y$r
z9=Ls<PuF;;wptaikWs2eBAlO$>QhLmc`6Zwant|jQot|*2N$W=2NF#{x?pHDs{Ne@
zKd?Y3s1F}L<QD!E($jmvl8^`-RMTRH3W`hpjA;D+D9+@J?KEDLFH2t*G6&>P*LUFf
z<ueF+k~df53DyH0Su1B&@fP#cC`Kv29fx|<i@qRZh~49QXH&)HW(m@`k*Lvxq2|(q
zxU&doS$s4dwmoMhrD=PlZ?-#GChR|{O-U^JWldDA6m4Eo1h$^O{*a))PxMdsTlqkD
zGwE7cL0KNm`ho0FMW>&i9}^Exu$dz}NOL{|nIN6!7N0;y)j&d%-5T!UMLwyW^7vd!
zs1A9_;(1a<?)VGUWYQMj`J!Wbn5@tRT=T;%g|@|G>znP+x<|H-TbxKe`30#kM_u46
zU^(xE<q#Iw{+6q>6c3CIp|=!wCH2?CRJ%7V$9s(Q*UR{VAA6e2WkM+*9*mR5@u??9
zPVdX0^m?rMi|JLNS=COaL%Vg0kr<+XEIAvOR6O*FA5x<af8)aU++iSozzCxCOUXg8
zkRa6Z1BX~ZUQXqJC+!|4!yEfono(};OEr4OI$@&WxM2}r*WXaZly}<h@rn(nksx8c
zcD9i#Z=H|csCHq)53MeFbN^jB`V4t9k|s7J<GL``1$%k8gIhDSq??s1lIc51VbtA5
z&s*no+-qvy2iySy{^1xx|L$*xx1R*Ws)}6jdj^pvH$@|F%xh9bP?=UG)s4zlMB(No
zIv!NbYd5Vgxn+Mx70cWp#q^rH&MTW<wg-o=4bo(hWX)r6XCF~hQzxzd(^a}BLLf5C
z`Rh?;Z}wJHV)CXjY;yJjIL|r@ch8sk+)ZXWTe00r8MklUhlb90N{$)4S8-<ZN<t)r
z<c#JiF*H6_iq=bIOp>-G^wae(Ya$hd0yUVZu4CjPe_~d(6IrxLSL&)V$;~*XfSn??
z=oMHyPUY|N{v{2Ms)y%JC9DH^F;i^)m2{dK*ES&(^z>@=^ua!gZy8CZ53`gKMNus{
z#Wtcd3ToP-&Z@S&COUVdN}F1{tmkb<)&YS;_KVUt+tkueGY;3*6=GKh$J^y4DZ&Gg
zNmOy!T%`8DZYen8B4*zO);(GqNKDF7i3~ZI<9M4xK{aM~hO!~HpDy1{+-OqajYYaU
z{uN6G7VNKw3W+_YeX}%a?*eY}KH%3>X}UpoUF__OXR!v!9#9>liZjsIVELo8^fgEk
z0fz?mau=8K&YjRE{ZufzRKG>vDPq?DwVI{%ws1Ebt;h?PR+fM(?Dn+4;`Np_>G0Jm
zjZHMZ-l`Sm0UhOff7KtbqA8e)NUx_jKG_lDL0K#1v=`ZMGOZ-BW%=$p7rHkk67KGJ
zOH*I$R#wQCZRwlWbEzl)kPyu$>s3Q{>?A<8{{i*21jkK7vRVSKPXb!v3xO@^%t5~~
z?n2g_;`!zKxmRWNmbTEn+oVsxsK#bJNUB_Q;-;l`$V@cIldcw4Mzwt_IXV0uvxrW1
z^0YSu%xI>KQx_o{SQZ6Z&!2o=wUSV=BWN8;8cBy=Bs*L?LB)iTN|k~sSLk^^;*9st
z_})nl3WWojo1ferpR*Zwq`m*W(Vr*}>gRWh>X2e${$FWl9n=Qbw)wPBT#8e?#fukr
zcPmz)SaElEiWGPEQVO(Ki#rsT(xAoN-Cg(OdEW2anVp^aW_J09BqSl3oSbvZ^}Ft5
z9$?<+cL$8#ORJzAS-j5G%lF`ppr;p?z0`Ub`l?_mU^SRNny&w$8p9NNOg2fw!Dnq6
zFY7PELo^vzSGK#ivY*(QDm!!Kx{ar|Qymjw{E@fcr8oE|HCDL0oyX4o=GgLz1Tlk(
zCcOy;RFFWFFCIOnH-WF(!;yDx(*lmXsAOwj75~~p&tFF>)Vg}iqAe0fE9N(6OS$8e
zjFWQylV|aR8qkqR+5HG_vKXn-=qAiN=dN>4?)SuC`qhYEurS~J-&*(JEE;TT<drGW
zgEiCJ)uGLi7Gk{+*7fT@D{NE5n(kF0_LYn4Sxz5HjCXdbWuM9F)ysAp>Y2+D5Zjzn
zsQC(d<N~$`UREzd;j(o6#A;^avSFfI+PUq&c2JL7G4Q>Fbp>oYOG`>n#l^+7>g-5g
zGX(7c>>poA@Law5WPm|RboA1<xxt=%<B!1y*DpWsyGuS`zgo>EYR;Fap}p{0B#?UB
z&8ed2^|+H#`%@v>m$U#S!H7~Xs&j2PR@_~9KHDVgxgN)W%VT0#e6#I(2b~-r&y@|8
zJ3>YgwHtD8#2G)5(b#kxqg~Zif{jGLA8j)f+Gg4j3~Q3cqbmXO=&9nSg}<UH96!Ev
z_Ge{r5f3^xq;i5enzKr;ZU!!M{cEXQqnc2n3nB)0d_z>?k{0n!s^Yu*-ItanwbZhJ
zIMB|9^rg>Yr~%!tOJ7{Z^D-W`H^;XhBN3nHYMxZ3_|r6eWh*}*xr|~?{(3H-SZ`Kk
zU47Y3C6Qq>p0j=QkT}+BfIVelr`b>)zjDINtgF^iLUQP#SO4D;42XGt|AL*IF(h0h
z#1f$WODFZl${I8Qd63$cI_0;Ctw^OYjO~64<mGA8@hQ59;eB?m-jS-`A`UHeWH@kb
z%t2;r<=Ib0)-l%El&L_bElx}~K%uc(jTCo;q8>kU+?H8cs|b(VxFrn}xD(v8tp;Z`
zbt$Whl8<&A+M09li}Yr9?>8U66FOFqbVVk(d80iQVi6;f@XEZ}Bx}1T$xI{Y8X8DY
zTAEnIe9-Ui6qf(uni})0)>pQxp6Yn(g7_4_co=Uok1|~G{Vm%1KoWVuS~UGVnGUyr
zvddJ?GEI{dLm`c)8T`fR&_EKGUL~FE^R96zogyP6lROGAU*MkTXQW~Ip^UJ{i%&z&
zB8#44nnj7WOJd18TpLOv#?(?LwQwqaeb+|VdmXl|2Wv#B>W`bT+do!^V$0)g*Xk0-
zGhHpmdk>lAcAm+$mOgE4EUO)qlCoGVn5Z=SHaoL)_`Bj)Umq*z_&*{4R$MIB&hojA
zHu6&s+UWL-gdyqvF5D8OhRPF2-{uKOvA$(;F;(b+JQNHa_yMzUGW_rX;#%X%b52>b
zf|GkiWd(e4LxGs$pH0R18FGT@=c@cp55{aIV}Ld^=qf#@MnpgW*={tbhSQ3i+^%iw
zB!;QJE~c==rc^{XO~jF=2?ue-c9}D4<```u)As<w2nJ~Ua^N;uFY@r6FE{T`fg$nN
z$xii;UQG!`&O+NAu8v)Fj)Ywdx2|70X=Gp2-0MTib*XV<Y?fz9q)uF!JHGBTC!Bt)
zlRu<#CNOgeG<k!iwLn1IN{u(a0{_-_!D&<OVBiaS1x=EPrf$P)PJ7*fWW_kfbzU;}
zR$D=4^zxzTt%knQk4L=UQ6nW}JEXu6q4LF_Pl(Ig$bdg|x`i_mqKj+!QysZ;X3`V(
z1cHUZbLBsM@<E@COPWfSce`X-C@lSIUnhLyLNDJsk^ZSQW)>$Yo2{|o@ig<i<Eul6
zQ7-ao3jz9bXkB=jSJS*?zlZ3kZXIX%=DUycNzy)zNoi*iq8=H(JtZXK<iZGu2*dO9
z;r|x^?djCCBRpO=Yvr`v*N7LYN4_R+6#LxVU*--OOPwkd9f4zT4ES*Ym8ZjD%c7X8
zD<`-G_;(&FU(N;Xa@mN0>Cr13${e?shrOw-SI_RI!Bh$`xI$q$?eNwE_!u4yWBLVr
z{OFhEd%??NJKu<0ne=ZKBl8sYQ5Vr#3vl_~xQvgFFLe_bbRh~IeLNygXuDfyf%%E{
ze%dEMX%7>JYQI8#*NhW*Uhj%Wd5w_Qf4IAXJA!ORBV8Q{Ct~xfBnGbm>rd7|vA9^S
zkY;F|eiUx@l;g6rVTg5to=S#k#k6D++Wu>)FF2H_A!4O*6h^s5YS7$z--y#_XOnO1
zD*I(+(fo}R0z(@n*xB3%Vs%0S+PbHmlB#T@xZIx$N6d_~=2g7bPr8bF%`2?@jk$Dc
zo|fg2@J3eRn`dP(b1GyWG4&RaA)55k=tL&;@~_F^P_Ih76?$u+R&Fyis|qhW5>Jer
zpf5)vX>rri(2S_=J(%w$#UQg2!~SygQmxySB3TZ(BmY28{P~+pyScDb1HTubdyxh-
zgM`&X*ax27T`~;^1(aUGR5(=A{GAs9<CENf&bi;!8Sb8V3+l&>%YB&<Ja~$GdGO&v
zZs=ViVY);d?#k&GR}Bx`F+5F!q<!3Sx8}COTc(*(d$n{MoZZpFyRi&{kp56&oFA$S
zUr$z@{JW^OW^x-7IIkC);Nb4J4)#R&^dbkdQhvgX<pu43`}R#jNH`eGaR1U+jKZE_
zo>$yBL!@tK0)ON?K0cWb;-mCI7l;VgY)J8r6_6vp1Zv~iI{(Mk#);1V(gOGaUTv9$
zxdE)Yk(8WGL*VMVwX-8;z3aakM1J=+{Ch4TSYrNm(=aB<GPdnv#@b`$*uS#|47~(<
z#nCS~%+HoLE~S(z|E9x6qadbzLAZ6uO(tKUs@3Gi1oN2(%5sct7oz+7d)Szz;kh{y
zVlH7{+(SkcQW{Z8b%z8kk{34!^>lPyypn`Dp+B)mXtR!|x)4UNKG=UKiN2x0ROsS2
zA3xGNX~)f(BTTKkK0CS8pcVS<IY6={#Ws4%17MASG{j@dnJb@_$?25mM4MSyAtV}M
z)$`&DFR4m1v-lIzR^JOHJ5+B;eEUj?!?8k`$~<3tFvBCAz$k-{;zWkzE<xPd#6!6u
zPrs6YZKR;zh>}w-W_QMjo<bB<Z90wHhC$1g5Q!PEH0Of%p!-ZVactsLz#}A(bu@!_
zRbfbEnyZEBj$P_dfJGy292puvmG-*u2}D(<VBGvEa(poAr0o=h;yF$D_m4-qPlFd*
zbr-n=gMu5mB8DRC&3U{RwiielW72L44+OFPCjP}r*m2e@o$Mc4{eorXm7J6ozl&zG
zM$oZo-%LS|Vt*Xgkxx5E?k8-Y+FagAC+D<X(UPg?s#ul1;T2(`RdJUAFI)2fMNL?m
zL3i?@nN7O7E_l|UZ#Yw=&+WO;4o(2Uc|9OXQQ@~G!XUMgwln$4(^2shFBwk;Xm>zo
z1%ORP-7*wuJFX56&+(Fz`!=1nc$|<#;tulKMbXgFUuG-u&rShd@2X}gQnyTwM#;P7
zbaOwUb@+ba)(1Yn+X4Gy+7eCc*h3(@0lp3uU>Z26y7(Nyk;96#J=1dkN&9hOgaR0!
z(qjx8UH}9M4m;nAU^Cplm41_`rH#zycmD!r?!bZvT$FEI9Qr<gws^FY(BKgQ+-bUa
z*&+F@?bninF<6dP{0_C-M9W5<Q#Hpdd~bdF&^5DtPyE!T9B*BqC@FRXqN97iR`yTo
zt6w(PHF}p4Q_}~d-}|1Z(R*Z^^{odGJbS7G$rhm~?4@{*2X_u>S7}F0*kD~(w}dWt
zm=kQ1D7*(DU$VVKNUh~4{wD5dk@(?}Gv0Tb<8&xnvZmg3QZ6-(biu1P*6?I_6>4zg
zKbT{_QenMvz2s1eO3HR@XFDK*9uxAypC6}Rd_NWo>x7Ya)aNVp8Hmdn4q4fqIo^BI
zeX%sv$!ue_R?25{Be_K^+&8y`1>%?dX4^}PhI@oniOLL*LO?k>6)4!L-6Ar1%%b!b
zWk=9UG{N5m-jyOuEJkV=d6!4mclPW7do-^Z=ZcTSpbqeI5qQ*j0`}8Q<J_nTl~)X#
zp1Sw4J`ac&k%y-;QK+Y*!)|e_<MaMZKKCg<tVNp<i|3C!OzN4}W$9$_0~>9rq-GDl
zD?*}oguW<RIVEatC>S=3-_s^M<onWH3GEdA&2K7!(@54x6D)cred{$cmM95gkyjcY
z6~<gPZ^X=Q(601IxAyl%#l<P#D0X8d%<I9f>FJRIqLODe?RUB_7RXXSoI;1opQ8Be
z=Jxg&G)Nd=BRg!SD<!?5zkUV$)Js%a9bWESH6;5t?O~Jqe}UqdHctH$(kM_+;w?5k
zg?tvv%xkt7RmMJGQwGtC<nKykPVqUj{!D`3Y(z<j&zHjGHR%l;LPjPFv?b;P$C(HR
zY7Up^D5D+1J8!aCf;pCHjA>*uY-&?}&yT<43j*)r3$2p7-_e`bzxjMoY34Yv62fKg
zW6+FQnU6qY{)tY2IGf<kG1a@Xdz<QrC`;UIC77p43%~n!fgXpHOk{Izou=+(@JV~h
z%}LiR?qR)CH<i>3{2Mo+TwPxDTHnGWPufZ!|Gz#sL-9}DUk|y7s@6)@$i^tgFf_Yo
z+;^iUFS;~8e__k;H0Q8$HRa?`Vbekh3<$SG85$EzO)Im*cqhcv&Oa!AeEQq)Cb;=b
zHVTw%h)=7g)h9QQbEr$p^?dA{hS1$G9`}qQkFF6qz2Ux4Q7Si(n^#%tTq<#HhO`Pn
zpl+nhLyDQvAgK|}8Wd<Ch3}@}jlI6531z62{zdfaB;2r`OH{SIRq~K%#B7;Vy_rIn
zU<Li5gS(YwgT<T(;wa}tonzD#Jl(NF-FTb6wgA5odH&Yb-;w{$-YI@)Q$<@PTvsSm
zti2Zy2QDN+!FkIsIXF0Agbiq6gBc0p0LHem+M^^!4SCwg$Im+Kj|(6LaWGd1u$kZq
zM*OQWTQL=KNA{>*G3#8|HQ($oXtj9NIJLpX32daZ7ex_n-wM^*Oh+{~T6#R*Ds!MD
z^#0KLc>9ohxN=XM6J|M9xEx||j~(J8>dpM01=m0!T8XBvp#h*Rt+{PD*d$Z>qO4b8
z@gfxJ53pgzV1`<dc9q!^Bq>$9nQCMLJr}H<-QDg04k*@f?4h;|K9!02r$0jjB$InS
z6XH4#WQHz&Cep)Ix^7amI8@8>P$a1DFQQE!W%CI*eiCkT$C*C)77A1RdMQd7gxws6
z9|};GNvs4$46|@djj(a#QJQS|RN*-+`q(p1?5R$uhNR{~Lq6uBuGHEs=637XDWQ$6
zrIqDV&AXH@7NHs>5t4YcdfD92<FH}{50?B}lIY^N5#)uD!^GQc%dQ*=u3{-`5|fM5
zPR?j8ylG+<si(|=RFf4Se@j!hWCe{}@rOIkAUK}59eb9$^XX*Q?p;#x2*aTUYMi@M
zOSKE*sK1O2kN0~Wf~zA}n`u)eSf@MMHxPYLN0ll+d5fwZJXT$K`64$qhddng6iAwm
zhL%kvI?!3(NbY)ll=tE8inNK(&I>Fc{Neq$-6d0ZX(v$oL19SIAb&Y};kghCWYK)+
zcBMsBedsKLJJdCaVH&qJ8e6ig<B)?OXv;;JQMs9L+gp@Y*cQR-t^+RdeSTxsdoG(V
zU+FedDh3IEhnPL4;iin_-StG6mNYgZ{N?1_682L6PA~)1e(gs`&tEf?RIivSDiU>y
zixZNOi5b{q60s{*7?QcqIeHvVw)M!fv;@~!Pky?MCE*PObKHa-{%UCUeqz&xN%s6e
zw{Z3F;oz`FZTO86&oX?LFO>JHhr2cA`gFti;qDorut=rl|E*PrslEh@X?)@@ec;-!
zB?xd6VD-MRIbQqn))RIJP7G>KHMz3@9e;)QrCpZyLBmv)IcALTgNORNN}bgTe|$$O
zE0^MZKH+95H@mKy^fhZ+!CX%j+V>z?OyvpcY4vfc$U}FaJc{571n4s<rsQh3!%Hqg
z#lWvI^*M{ha58c@v@Zq>x4bYzjY<wnE|u$fpbf7g+KUB^h}O>fEJtr7qM$+F22nf*
z58~qvPa0q5w$J;QN9~BIl&=ru(+z|>R;ge*ehKy%WR}>ebp^-T_hl3%#YKW(!i%C^
zo?k1&krFGa=EeQ}M3RQPNFTfrEJph-5FeAAwqBp~WE*>Pp_m3Zi=cRJ{(eQ#b(<f)
z$iSzpC@HUrk${vCUsfp|zqlkRv(be%F|8cA9({P*aR@!#A5zF9w8VLpyxQR{;u^EF
zV6U<u6{E+tzt@rnPh+FR>`o{8eEpSItK_V#;n0B0ujNhxX<0dfis-bX0xaJZdHUi_
zCs*mQ(~0%_tq5xwKDL@Hw{KYZkH$m(SBCl_6<$8lyshbRrIcyqrba>Mr)<;)e(sX{
zL=u)q0!nskofq{#r&X>6e@uwGe);<RH9=v80IkXE$OLeH5fW}mn@Uov(qjSyIE|OV
zV$t1|MD+D~2qm30!>&;$Xk^KF(wnYv#vUTFtAU7!mYCu7>!WSqN9VhxcEk#oZB^jw
z0FzBWp0LC&D?gs8rLlGT-b{v@?b`bV!F(e^2z&%e#~%EL1cFix7CyB-?6zS@4n#zt
zfED7&b2?ZB8-xa=1qLG&u1{(It!mNG!dwJ;deAE8=Q~<~1x1$6N&mO9GQ11SSTti$
z1OVm}9Xg1M9bj%K189vcttBc;`T7dZ%*_0B*&cOBqB>MCrPR=(l(gw8fZ+a$#lZTZ
zjNxy|n-S71V@&*nis!je^r>7e^x)ev@kPF}FULv5JdUF}@#2*Er8a(&s{WGPvFD~}
z#R$}nSGXgBoQ-3KBP{Ua&M^De_cFPAx~I)Dx(E=1RUS4(Qcvt;6;-9}@RTnP?FT_q
z^4XaF97(2K$y8CYh*$!sXU8$$#aUC99!~C`868uOaB5jdl)+oR?(W62EPEIGrBR-T
zksm(j4SuvqSnylFHlM|;QPKnDH;o@3(bI=s4~?<*U>lksEnVAWMg9&$@7LJ%9A&$X
zy;VeE5wKU~6-N#v6uhJRx#deWk*+nLkyk={GGs<W6p|enG0P~_5BZr&l-Luv*>b}(
z8GG=~{8QWz`X1A-OAW04y9amwiS7{7N*#CGDb6k&{)K+hf~(q~r<&v|i+>GK^U^d6
zr!igJq(r4_RLMu1!j-FRRF8#9NXfg;!mfK#2`U7RE#p=hCh$Al^A8D@2qLa6`uJO;
zK6z4=Wv1{|cQmY%j0q`gjm&bZj4PJ(j<o8Zk?)Ix*vbVcihpH#KY=7`Xjo(j!NFj@
z69I6aSY-5X0NMksQ!npECi7=%o$oX?n`X5&Ltzp7UrqgXdh!QW7%F5vVZ*3h*~J^x
z|7#tLt&e<MVR=i3%gQ<&8@+f(^RArl2{3{0gt407I_=##`ae=*K;Y$U=GD~T@w@H)
z0&|f#M>c>e16Dx7fH|0$ac~<iE^r6?g0F^!rKJkg6nzHN^})ev2=WSFUtb^yLn2<g
zJELm;+{In!if%C^Z|Qv(BbOv0hFG27wlH-&OCn(rE+m-0TT^ln8T{mBiVA0xX_0@k
z_^;FEw_%K|v`JHV1{O`HG5GkK7R09;cPc}isfrry>Ry%v`_YN{iZST=TC4@>1ca`p
z3Cadj@_J4w={AJq9QntP_K|hZkRyIJN2qv%X7lY;sH!ZD+#9x0uE28Ky^gQ6vhPwv
z6s})qnboT7XJJJ{IrU4zCsR{)KB2b|(r;oua^U7hji#);RZ`kwJ%0lBt|P$!azSio
z*J^6PP?s3<GP>~ayKEeIwiNh7=N7_#fAeU;-{UGKMp~t0g|{{VSA>R`?gtI~w=<V2
zrF7b8x-~4%xb_Qgou?E_U65ID$I_6Hq62oE^Y`;wxdRL67Pf;8?I@#kpHof?DJ20T
zFtO|;0t#*3Bj4@l-Xh+)mA%vuSx(Y;#f15=gSuBTUL#F$AusMc1A3#A)=y>Cj@fGP
zT*XWp7DL~Qs;X1dqJLLMiB=o~hB!|kAaJMlQ34(!CQW>xLK{HSdnovBavbJ*Bb3`a
zJWNseH}cg6_zjew2naD>TJv7UmjSfAexKZ~`yO*HHs9A*%YWKbt(;kn+m^`c{)5~-
z*l5(>X}ruX7xndRiAw?exzD||I~aR<1-EdTbGgFuc*35>?|uOP{y)Hay{e6QbPdkU
z)F$SSdooZR=Fe{Oy>;W@<TL~+A;97wftJ#+0};%c&vH7U4?u)LaN1SootO7VnNc9G
z1!{rop3l%HHg*<I9is(XKkijXIUZ-a3_5n=TnsQ@fn?=Q?4{Nxx9=^1t}XGA)}swJ
zE(#`f<(K79<UG_xj+*2Q#H{?{v<KW&#72Z1BC@LaadG~W{GZmzhf;E$^gIM&#_40y
zgOp`Kq65S#U)7`$(oSUDHoks+)4}iG;XQCZa}n7gN5>a(Z90)|(^97hrM_;>Z2e>T
zI=?n&#p=aTr=)gHacdky;A(h*tU1dgf6aOb6C<y0;ii-eiaT>IJe#O)<(fAWYDcl!
zs6|PfvX@H-ZX0u|&c)oSKZDbQC{!Fuc8o=17m3lg)j%P<Xrh(H$ox{+W0R5~m-UU<
zt^<6qH!Y83P_+6$&}KpK8$3o&L_6Hva+~Raboy+khRq+T-MS0fnDdQiO)?dxl9E3a
z3f{JtogVUzRV9ITXXJOvNZp~z`-WE9<Qwy!c{=NR!?OdS3@jm=Bm_TiO4p^=lT+)>
z>*?++CEh>y(ubR^@Eep;P92y(&$NJx9D69AoIG?nBzA6*pE7zEVmTb1V3i~5hI$U?
zOsa03Ki3nkH2$JAc)L>Qy^G=YDVxakT|Ybw4LUebT65<8-^AR=I0u}i<vS|kP>fo*
zqd4LhJs=k_$tZ+_RL<-1%uGfO6k9=r%!X9>xo59{%RLK#e=#@x?^a=<*n*EUIgAvO
zFigT3JMB0l9uv$xy>32A{k`7N_OBEK4HGkT795qKy-dFU?phK~0z>&&3F}6nN4~Yk
zv$AHR*W%?`5B)zOF%S3vfdAo!c=Q(26^ronR@>TX7EewQ9s78+=AuYd;rd*W1&Glr
zVPzB2&lGY%Id5IU6<+lmEgy^Nyb&EWpOAbN>cAw7{aUNi^8GaEB;g9M+?i#L=o?b&
zi?H)nt(?fF3J1!xkETY9_N^-&=PGJNvM_MbX4~m(zQsPR|COxb>p6zXJ8CbYu)W2`
zv+r^lTE_(4?g=K*jPJXf3v;v*O~t&S?~-6s)y2F^^!gah!szH}*BEN09pjfda;VO-
zfdW+zVtOy_d_~?dLRsiU{kb18o6d5OWy?=Ei!JP+VvF!R;)@BDLa`~T+_aHDApe)8
zpHVeX^zWriOglbYlcFTp^pjG8T7;M%g6Alh_f0TzD{`5$zKeCox!2Gs`9){FV|jA_
z@PmHXS~u6Vm-evp4{zE|6Bh5>VEKL}MG+!VYzI8bb=y|E-@Ufj)a%BLE)k?Aa#&QZ
z@`6qe+k5QO{j()yO*-(hyt*~|thGj8ttQrdFpEGBsm@JEO6n63HlRVim6uCtB;QsS
z8)|L8N5eq-%r+Lhki!TdGsx365#vJSd+AsjY@Qd9_$_d;_ou?E$FyXjh?t=MFXTul
zaqaQ1o56-d6X0_vbx%D7PL9Ma?1cj&SsHN7vyLl{u3)l4m`g%Rif8>XszDcJtUxf3
z;)<n}DDi-Yc$0!!Xit}!SrAi>dCoO2nfDnMOfn19u-$1>Z14XswhT3!`?F01FkUHz
zQ9BUkya4Ig4Oq&V2V&g{04yC5rTEP|J`h5x0dJQ2xM4q%)*tN2pMDw*E7<p-g4UV@
zs0O<;>jwhSKoWH`>=H0FYtUVIEpX*`CMc`zFk)z@w$uGgjZz;&*a72Iu&Tvk_OjEG
z=eoASD!)~;+6U}-Wx?h$-{kWJoseYm9|c_DKQsGiTP#aPZ^d@Em*aFUks3B{l}2{%
zL8_4AGXzvaD6$FrCEgL9&^~8WRlt3oMbyk=i~qvq0?9J&uuWAehzH~rbW#YW8n~Nh
zjv2oxBz*RZlki=0|HztRzj7UVR-4rAykMrLJsMIlL(C$Pfo&NfPpfotNqL}~sK=)}
zpj>Uh*x7hX@gr1<0so{;`#YmHNi<*5-O@f?kNv55Z+QF&Z^j}Yt-^`n@etF)b@%M<
zYdNbiBt;>4%a!bNvGi0w#P6(3JKx-APqTrZ04}>PQLbR=Wg6Kc&JNPWW-4Rjb`B|M
zZyJ`IZrQBwHW%_`G45CzAW#b}>gFyR3Nq3#r#2eslF_?LGAr2%YI*hSLPuJR6Rn$?
zufDl;;n;8?1<YK;s3QamoOMI3nO&{^#`NJkljb!a_I|%;Eh~Pl7`$dV$dSi31`qjW
zZ=oKud(psZ+=DiEUh^Y%fXnENHNNCWohI))1B2N0L+uzqD*^=9fTtD!I*<U^EuVTu
z2O!JP;o;{w9xICw2*@#uAYn#SkhAj(n0gUSQd-*~DfTx&0e*oY9FX#c3%*jV25bTY
zCwkb@E7iaE%a?)a6YIf29)@_(MxI)35L;MS7|s<cg9JJ~CO}Ek2PAcuREd=iBmAu1
zN=NAM+BRz;G7H)XT_dPzcW^lyBq~d6oGX&Vo|$QMmPg?~!-9KSE#*KRh&i0Fe=lkO
zZ#Qj`Ha97KB)2{zTkJyQ9)?ZaAw7#6%H_068>bRWVw~A;@}Kp2e8#WH{i$ZQvTsyo
zJQ33s<B}$8WXE~1DZRh&xLN{JMZdg&q)o@MrNXH7U--F|&|Xu;C*-wyVQc&NqaU7A
zr7OmJB&iN$X3~8tjGfleW&bM8qR_}sxNaVzrKI3S(|+(dDwyZ`y0_OBk5ZdY%p2WJ
zLW*!dfo&s5DlE#`PFf{%6)!jF<doq(H?O_CCwKa&CC;;sTP=?F+5@{eQ~h0Bd<k8$
zfoU0iuIks?-H)|u-*NB6p7_0fHsqd_-f^TWQ@MCPPt)8RL^^W{25rAzf6CEgO4)y^
zt7-lw#1w`5JD8JbTS;9mL>p|7K=^%TbB3)~tJkIZQI-!b{de)tg6YQ#d@AG)1e}H&
zFYk~MN669d&0ItX?1QqIZhp~ZFdq#}TB6g@z)k^>94xZUis&Osxy|ABAebXcIH*O1
zMB?YsW_B-&hj!k+OH>MdYRZ)<Nt4+P(Aa0s=W)1D+<vE+S3FcQIP|<AN0n}QV|a6v
z*GWi30{ZUgFun{F%{%}KZaCevC}>8h2dhB1AI#Td3177bb+rCRBF-*~uZRYm6NZEz
z1z>RC_30+RUX}l&Uo+_ZTy04UXYdGtt!J?L8ucx(%K#FscY!in%RrnJY((`LC81d@
z#JxOfLiWcD_O!Y#dqg~1w#>?CS}auq9Z8j5@zU~ZsT0EzBjD+_^-Z;#tID{a>iKc)
zPRCDV<rBviC$qWdD>0PK=045s8MrBa>hXa4gO?%LO!^a!i<}U^d~et|bx8Y8-6@h=
z%RJuUxH}jx6q;uOdT{Kb%yoC}M=L8%HJXf8{R0__>Tq2?43a-<msh^3Uq0azO<+2|
z=t4~}{DzRJFqKuwwX8|tHpkVbj8E;_(RR>4zUzZW$zIqi8JDzgy6pXNIfBj-`%pF*
zre<qBV7!Ay8c`VtFXb9S15I24s}yTD8xPVE><s3d7e5K1Gqyn6sn84}{$R(;&*&~9
z-_`zZQbywcNcX*o)<+A}Nbk4|dR#m?W@-(yj${s{16faJ4*g@n83MM5Ux2*i!lit&
zl(cfm#6HdV{{2QC0108%Ou)tD(~1^={}@N3suSa-4F^_egA{QFI#II(rx_1`ea`TL
z9}LiUfHrJuufBKfK!(Yvk$b1VwI>Q4i2^&aRj>>qKGV)xR2sB?s!OfIdt3BlU77`e
zddfW;%PCAlUw+ha;|5rdS`KCiq5>Ya&#WpfTL})S(DaYV8*l|wtkCN|%IF?!ZT%V^
zj-y~T18m6o#Xmh7`cItRP!f<g!h;9$xEy_UQ>O;mAKSy6({35g&Ae?7pbBC@<%+m&
z(XY2Y_NMfI1oYPkS-qjUK$iql;JA?R?zt$Q4r;@o{ZY$fZ>&2c+(cI7sB8-4KXnQ=
z=<a3Dzhe;v*H4|RYI!xOi@tH;i2P)|uV!0=oM5xfm7QyS=r-@>A-D+{3n$}y63VWv
zuVND>?$GLRsmvl%>9QpqlR=_qgq?t_R3X^gP+2Uidv^N-S9BD=PVp%0f^zUx3B*7O
zrXQwr%ap*^nPc9@zlfyeHK6S^eLYlY{?Sel>R8zM&dmlYB6M)|hL}Ze23`cm5o4MP
z3Z<%*2yE+Qf9vTs74BR<u<PVmSLS`^_lJF;M*JD?2V|q2&YeGZ35(<r@c~+xD@#Ad
zdR|HqS|>*K;a_G|h2Vt}e$p||80{o*tl<7m_u_J{_HXD^>xfHW1eiN!NV84#)wnvl
zzUwoSY1Tq0yy4gTGB?OC*f4GIne6jMrz`N-?q2M(7y}9vMlFK^XE)eN2xHPrjsjQy
z!+ZrF`fbk6&>JdV9KpbM$1z0%DVjtq_}2fX=#xV_!8#pqXL`}*c{~Yu>R3@%r-{Um
z_IQiAlpxQ-KJ(b=@2f!EYDY8&?sv7^CiLk%RWDDW;AX9mHp=rU1xfrsWF#<_x*9Yu
z@5(l~N3m<TK7@oVhVAv6jl5k1zCmzcnQ4VtWatU$Y6stgyP<^)0H_umYOhIL8-}f5
zYf3bV1(;uU{>{C&DW&U=j0ac7a&QoV;^&`0h{>B9pHVjq8iR3mX2LeS7z-kNh=_&;
z9x(nKo=R(v+Axz0Gx>>?5U|DiMB-zhZ7Q5bl*#Ufl+W7d_(Cm(;gYlv9Q$0UBwX~^
zXiBB9QQk7w+42hp!MST{oW8Umg-Yvc3<Mz|0$i2!*ho|wB(=jX?o_-M3i=<vXTQ)f
z6Ro}`I*O6fzWdwFV(f-AfMuy^yw5&8n8KWmz2;4!z*)-4#p`G(^SXXuSN2ldHazN0
z?ka`NZzZ|9H~G0wwW1BIEAVuh*Kw)VjSCB~xgY21n&E7Q>}T(}d2`oo^^=0nh*<?E
zS4U-F3L|{VnqD8_J&O2hv+S?>R+ZwHch28;lTMmPkrTStQlAO=WDZ+(p6NU9|1z5)
zcUQ`~vT3Zv^|p1Z-%GV+(##x&Zy`oDaycSg1S0|<Xu`4*qUw~pUX|Jagr}U#4F;hv
zN7gHKMBxxRmK4(}ZIh~L2NNpd20B!41-f-<%1TQ)(<=wJ{kd@P;Vrw09QpRt)^d^X
zlDJNBPyZmkp8}o<W1w7g^Sc~LTK>S#l{<z+h-8BtRhdkYo}Ggy49FJp^T1K^WC;w0
z!!6$iOVhpWbe~mEK_*2yI|CMe7v*?i1E(G_!HakNirw;HR|&r!iOuPlDARE~{ZmH)
zG)c3yw)N*JnU05bt<g}ZlEC#EO_uWo@6^wi9z)px%~@`M0I5y%F1O9Eay|Yh0Dmj(
z0_={2ni>ww396U0&Uif{+2d?P+M(liA@mf=PoCR$0mjvD?<#eID%eLLsv*2|VbQ5Y
z%Wc{q%BSn^>I1wydJ41NdnW-PRA$?DVFLQU0MAo`Bo{&FxD5C(r^xumt993GoQ&}J
z09up;WSNP`$zhpTrJtX66WqB}MoofBDCkSsr5nf<Xo;Bf+<(Ph==Vl^Z{=tVpQZ?I
z4_!Zr9%RMG55fMCNl02wza1}0#cSKVgu4CEw6UcXowgE`Q1ueH9sYh}uNl!qppe9v
zI$sc$AWPz6ibn|-w6}?3DudR(wiH=q&L~Bl#IW!+pZRLlXcNL_4^La(U9LLtnf`E<
zq;?|)e&;l+OD536``2VaO`G!t8l7kyBd6V@`PVX>Phq3f1Ko{AX~*VPl4E^zzFVsE
z6Ukq*A-0oUr0m(LRLlhJtn{)wdil{M>RR$~6bsPmLE9$*Q}nz9Oz(q1rUZ*zVo3Q*
z$7*(3UwY1L7r|U;kRMH+#J)t060kX2JGo@UEb=nF2;C%^!h~p5IB5{N{T8^lKo%mw
zzxXdwe(1Zsg$Sq~jXaDg@sk2qL{$$`;=H~+K)F{@e1f@gfH)b0oG<F;69S{K9dCfe
zjYcBHcVl232D?jKD&wPH)j2oJrfzvi$d`?ej}JJAab~St+%7he|M~OB@L|qjmEeiQ
z*s>i6#Y!~Wa=WB~5?OX|zi$51ESQfeLPeqvn7OIj9{syLbK!1)Fo)3Q&IQlfwZQ?(
zPRiVz*6$`U_rpO}!&L2k8w7swi_g--EzIaRkI-|3mbpV5Qy7inIZxX~O_KvyxxvQ=
zb2T{1HePRV*>b1O)`AtM2dY5fzl=_snGKsl)Je{8_pe}z<IKcw%h)o_ia*STZ62fF
zY?ddbcS~zGC~>j`SRDM=J~~B(xhAn@^30C2LS)8fDu4dD#zmg6Nfjt&@pI9vFI0>z
z!ReD;<2h#BR$nFe7Okw_)j*^*uoFBG@Z-(6l5%by=fMg083|D`EGdfp(=yS^ViWDC
z>n2_C+cp25G%5dXx(hzjnMdgxAnEo$-YKymCz1_}Z4ar3PLReDzud0$pIe}AE<+A(
zb=ut4((g3TwA##YimWJ~j5?Q*6=AgWiO!{1h+)mE0B|{LB?iRr`tH=Dmw(|Sh-O3b
z_hCrs<6Nb7TKV5+Tqp60ri}nM1_ODWJ1jauJgk%B%Y{4j2?4PtAHlt?kr+fgMC>n2
zQB-?CJ`Q9e<j9kHY{&(`VC&6{KiC2&qc(h2!u`e7##|ss(lRG!CRLEYk*NQeaG|vI
zTZ%pCn;6sJM0^9j3q8Y26d-LEdzr*!ZDobqjwK^hiTAeK0K~<waz1{10=gid8ynyA
zrVMSuj4<3|Q2+lxcMD78g(qN2a`@Y*EE`splLatZ7`VDZkR&FZ!s21b3W9zV$-YeD
znj_rt(>TmU^B8?$0b#o?3gz!BW~2I@vOnZsN$q4YR>b(|KVR*lEQ>Q6q%^$yLapKD
zB3RN{@N(S5$OKm`PWOHba;d*tEa?bsd~9pEjVwDUU4=aG+a_Xvt{#^75R@Tq=pQ_4
zL&az{3}HSnGBaa_QsA1CbV1nJ<%at<Y8f-6Sm<WE(;Nwi6b3Cmt@cnyes+&uM+lRT
zyXfFOSb8chH#DopvLwjA&nsAzbx}QkaZP2vkaa1z>6v>exbLlWvw!G0kgZ8WLtb~|
znxzDJgVSwjJ9D8fjH<Q|42$cCU%xMY#^!#CINa~sa{6t+x#S+I*?PgbNKV6{sk8OY
zayA<}udle-z|KLuKY>lBIm@LXqg8=oN#xs*>D}$JC~QdOQ>%VUro}{<RdRdn62sl%
zy<LqkkQ0CW<*>|DCwGPYadrOG|F9)fXneJ5&u)BlGM&V}aN}`4<hr7?hSSa0-Tm%@
zyT$Q*NBTH_69fOE;IH3zm#GN`%?CXXU8Uor&n23RIEWZz5t9b|`q+$0cn*r?stSS*
zk8l;$1qEMoyGMnT{`RPoP2b4e?cZO@>!(6LYBLk+wOF}MFMpVwoi)C_$aZ|V`yd-)
z@?J0lqafp*?mOTXLIO+=a5kJuT?9uj3w67<Hx3S_92R}4Po?pp)~f5fe`6o`4G-iX
zg@<#~RgTvu>r+6p7rbw5Y<xVS(+11px3;H=(b3VXoSK274XB<+J*eF~mj3v$;+)E2
zK*q$xgoSmy9Qqip!Jw&#L=1LgTyUG?{!EP+MZ>VGn_ExS?L{{W@CkeM%I{>XvkF^E
z3W<uKxsb*l3j!HbZ+ZNV6fjh)sHf*xdRUV%Y<uDp()~9{4SkXi;FE{+FR)#-t*s3$
z#>2wkLUSVh@9uS9vg*u^VBKCm{(SCXcW@A6YjADV3}6G{db^#S2)(9D+?lCXW9ib?
z&4uE;#mb2Zo|CFv&8*%E-A7tY3)mxy+Nu~bGBa0?mMKSOZ+EX2qlu}1u#m~s%r&GW
zek$7>dSvHvb?u&siSao9Ymj`_Fc;VGeI??LPMuxy9!riU`-+>!I^yFE1&9s^a&;Oi
z2Q;31sQe*(p%t|uwc15&FEO;xf`t`NC40BM)*lu&RaIm@(a{$+dn$r~hSrr)W4$uh
zP-R*|r#AV+AePu&C?5dR#BgwMY`{hBWs+{Ai)E=+h0(+fH*7xmDuHyYltfnxr;@Z5
zH2djGxDpUWL0H-UZp5<a7s(6dvXq`)`$R=YD{3WB(K9yaGAB@l1DE!WRomIxKhxL8
z{VDG_fO}x~a;J1*)}b?30bWY7m=feQF*$jx`{KPk_<!^Xy3C+9Nc8)CYB&3kk1!E2
z@nK`js;}?J@pVkXPe&6IDt*uOb&r#Ndr5P1^X8+D5#Sj}F3pu0-QM0lb-9PR(v{g3
z$)r<@o73dFI{}<w?3L2Q-`HNBZM%cvpPyMnO=jGVS$_hvSyUs8ey`sqZ`iym*kJGE
z*VDgXp(+cW?}vqX-0lmfmN{f860qooCHmiq+bmXy6C$(1r7O^o`QH&AF9jKdv71A?
zR;VMbF(}no+RjvMJg@RPoNmtek2k_`u&^o|S9?G-5ZU70Mi7cY76$0|uzJDJHSfcF
z&RT)Hw?5bM22o(O;&t@a*4FY&OcLA|-JseQ8k!XFQdUjd*l4xAbUT<L>n%aUx|J;w
z!v-%gKsyio{+8+^L@q9_`6^S7JD;@@A2=V4EczE){gUxaSLh*u1-Iab(FS~7D*Wz0
zT^}HDV#_@J=f<B)y3HOhy}Z4P<`%1pXj?C~@|~wBtxWsg!TxL(@=^!%#26F%B|3fF
z|9u4H>g>NB3~{B5ga7AgAUjeN$p2m%j~0QwGVt>)v#^1u?@uQ8<_at9`e6R?@o@wI
z6}J<HHfc+HdwOUXWfPJZ^Yin;id=JQ;N|CrK&-fFKdu3Xo&SDNIzqy=Ppc6{`tS8u
zvI(G78b&4irJ}+S3Ppzm%)F??gFQF+Z^R#|{=M{;`>E`|mp<FU|L4t%%p*}f`RB%f
xMy&t5_y6hT{|`@S^2*4k6@=6O{P^(QlV57*@Uq@K&cJSvl~j@_7yA(SzW}m(8q)v(

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-options.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-options.png
new file mode 100644
index 0000000000000000000000000000000000000000..be0593bb84691ff61ad84e0f6837978f054df7f8
GIT binary patch
literal 4753
zcmXw-1ys}B`@lzybd+?5LvkR}pn#+xEigbD#g`flqokxmCk!NX;7f?KAUSf35a~|o
zmL8J7@t*(xd+zr>_dNGJ_jzuf^LgS7^fd2Kuu=d3fIHe+YDNG6!3w@DP6ou+t$yS_
zctH-+f_ei0pw8Q$AWay=hF6mMXg^aYT_I&=P+<H{>QVpz(1~lSsh9+0@8*QTjLrP8
zE$5;$ms(3Sh*Xhorz-8n{F;@_;ky!4Z52c#b@TrsPzfpoGP^rsUB0y~*R5={)w{ZM
zR1{fLoBZJCTD4OT6&Upz8;OmdIt=%7*=i1^_Ee>#c(_vu+qxLf58Q789v|bszVuRo
z_28HDlYb^c)^mdvl>TG~%_EW}x|C^%RcO?pLr6<N1UFd(cQ-dZUJ(W6j?}&FVQmd~
z?ek^!!EL+KjFaP@FD<bI@-t6TceGxi@DDPmMEb2^>?SwsqH7qrs#@WQHW2#Pj50Mw
zmqrcK&WxafU_A#zwk@5~V~dC<hw=wEeFnGxJ`^ftb~;QYk0{bobNK1WE}Q)1L1t9_
ztST*oiXvxBn=K%9PYTJ_TLmV|%cD*5ROE#GxUUvXlY)Jx3vTnYviR`t?0+uQdEwYR
ziDZrZqIbKG|C~ffq_15$W9WHbg8ub%N>nMISbq1S@r&D#^Ihd$1;znE|C`&H-A1M(
z+3n>%*Km);Q53vSBN=Jo^{Hwuf9U=(T!{)ubPR8Ph_rIQT@FLfSUZg&9X)=!Sd9H^
zY^S}1pr@uzq?kl?EN8i5i}I!v)?Ol`|0O>{n>k72dHxH~e^!;ToK+uHlCjH!+b80z
zNsfsv_T7?y=;MfGlXYge5-_P+{9ghcOO=6{+_CX$oA-p9x$}p}5Iw}zQ&fl^{%C=k
zMRHon$XS{MW0p#D5x(D$to8p3XsA1>iXG7t_4TWexd<b^^caI96@Sp?gL@q5{P$)J
z-Ms51#@`#}qE*n3BA!7~mR~+wD_dlabPIjCP96FhlNH3(<uHPlmGG|*{}c$Z^Dv3I
z@K$G&dz(^vBr$53f~f|xp%_*oi@gS=vid8`MT)+DjTrkUddNAd%~tEN`;PqeRp*^1
zNxBZ`2FxarfU-ZJ-BYGkmdTE%UW6fflB@GIRkL;Zc?I~CK$OMdvkB)RA8zSvjr1<t
zV{A&Z;ddvh51*E?jaVHosC}73>mJ8Kt3T7K?8-Tr^p)#4F|W|=LL^`aOUB~ylYHb_
zny_p-8x?J8do07We`VZ?U_&mQ2>f~bJa|80t~KU{Lv=<Nxo>8fzO2uLcwWZ8l8FQG
zd(_i?&ed?vwv@ejO<0T34i<-NRt^xZUpdjn7Xk2_oT!oi5b63L)AnqM0v*<#xW4WF
zn-tY};1P!7-ZRp$)y1{d{C>o4dBSqNS*X%fy}NyOB>x1urF=K$Fk~q}QA}OqgR|#W
zgc0?t)Hf618ihnj^UC$=#kTfj)``6G(%~q5NhI4UqlX1?#llo101$P#0jurc5-N+*
z3R7U6xr+T66>!g1des<Iu~ec5j8v)JKs7#i+j8>-Snh5eZ-J=00w!O-B6B!&U=qXZ
z?Mj`U4BSv7eSqq63>8re80wn}`af@_xOG@ojkBJN=ScvCI-h_7I41WHZm<hjLx;6=
zAO-J=X1Ry3wZakA4nTZ1vTGjR<X=HjvzlI-SI5LQad30BKVaf#1KGnh@m=kj|6%#y
z=84)iBONl5aU#%p@`AGImBk@f;f7{SKdEO!VAsFG?00$uLTS|M7r`-E)c1xaaF&Ya
zlO2<F#DFE{M`5H%+rC<CUzs2s^O^(sxE+oiw~96NB8-~VpIvWe6z)uxbLU=}xwLAi
zk1MlEmh76ywRF=fw2}@J<P9`cKbRC+Gbap4Vp}1*+<mrTz1OiRDM-Y=FF!bW{p~bq
zrWY<E_=AdJfT8IUBH?<z%v{T!X|hw&o}kab_0%U2xah_R|AlvkJFk4Y9TIo{P7U>E
z9GB5i+_<7Nqj>9Sk`PtM8Oh-1p9n(~T{cM`3|$wyFk7Ut{6{oGyY?@9pD&6jls;vi
zZziKD`6!%x*2N}X-8lRA{b$|h2=Q?=je&^Wu|`*gx?4~<M&n$mNy5|z7K8;fRFIZa
zKOs9g;TE6mh>3Zw+G(^gxv8w#LZfIbr$3EU0bF3JR_!pUTpW67RWU(>b#~N1{oOWr
zA<@kl!tc5VYQ7NGo&pMF_NXIGvfnVW!U6A2r1deihQ3m`yi$5S^L)GbTiir=@-^Uc
zSLnp>1Byzj7q`om9&O1J1+Lx*gNvxnAbicOZn#4an&Fs3ZuSvTG>W{mPy+@ve?DQ?
zfc|^_#93ylLCc~gwMO`Zyh$!X-n5j1_bNX0p@=JDQ=yb&c-pk6qe8cqeb>Z9uA0XN
zl*1T3AK$pvk6?7+5$mC&WJl)L$zybYO@|F?iymf)3_>SHEuX5kty#Tc%rh8t$%Zi$
zD_oRBDd&@2ll`E_>?<18zUlA3{OMB=1GeRZ+vOp@^=VV=dXWB7gX_@=&IWTt>bJbU
zUg)VJ{i5tDIb_`iQnFL`^OW<9qw&FNM8`LeS47(^y;Znwy*0&sS_iX>Nij{Lo0grX
z7n<#xSiwG%T>qMsU9TO-5HrfOWxny{R1Y)uTh;UwwtZ<274lQCGzPlxYqX|a^R)6s
z)kzA7Y?W$P2crKzrN!^7wcJ+mhjV2j@7`^>?<sN|7n7RyITXYB=E*Q?i@CFqr9k6#
z%G0&*>YaWUPwBv*_myYFjS|uY=HRnyGquN*TvM6gtS0Lz-=aa>;G?yl=EzNhVjC41
zIo|+$3__ndJ~ZeFOFjdoJ>a-g<(+nAreU~Bc9Pm>;Pv;eyi=klJ9g<nHY+2;_BSl!
zMN`1L90mX6dz@ib7Qb>7uwvFt-R-}{Z@UiyvOU=gjqJi#zC7ikPoF_d4Is9kjiUt}
z5BpB?2Q|;MY;rFIQ}#xVi^~>Vm(#qgw1j2y#in`%V}iFr_!twkLmYg39_D*wD+QTu
zvHkE^cp0ar+U%jGF?C~A*JU5yKcVq<3QLRW>XbS?$Taj5Mdj5J4h0w?DQiWb-)n5D
zd&X;*q<Rv{)OBV|sW^kUXo>e5NH?alr+@sDLz$1{&0HTVZU2}SNoL(sN4JH1;s?_I
za>LN{`?O~*=4>17S(Un8Z7~Yr>Wri21MmjiFju_f_;T`&(z3FaK)FM*_;B0QuK#Hu
zix{-|a7>Z|iA8*rbc5x)tlF`20Ral~3d4N{5UvXUv%y{$!t41CXE&Yb;N6lR_Tm97
z|NfSTFMxh;b-$WC9-+k?vb-%YSo&P34W|eLaq<u%^kW``$UH<zIVi=xOPz$|rf-@Z
zw|Z|HXxI96M-PHxqW;POid<B(EL|;8phk>el|!jQwGERE$adjU#0nj*nA_vCVo8{_
z)hx&GKK8BqV!?D78_!PvhC}<IUy(TV)Vk?G!0v{k;}e`^=vh#t5eJdL$cf?1EMd_6
z#cQDkh-=gP6w1>v%Wz6QmY#sWeVJ~5pH9h`)V&hC)}k!~zEPJ}uVV#JCF~bDZ2kU6
z`N+FFBJVk!J1;T<HkA%A(B7(V;VkBHrI}-6-$?)CZv!;FufKH1!$6$^|M-l5mq867
z9^G`?*m%xS^2N61`ac>*!-awR)<9K0*~%vJc?Le&gY=4I__rmOo&nS+x&beguuB|t
zE7R=#F<cmtYsGo+m~G3O|50;gN4U%io9Q^ymzc}h6fQ-~jsK;`b3dlcQIhUy82)im
z2qt@&5NR*X!5BA?q!CERYgG~bCRqLhqM5_%-CsasCs@&>h@Vlk(n<0dlNQ+k7cp+6
z)&bjyT7b^aHre*$jKZ$^3B?MZvU9OFCN6G~I0tD-c#Vr;68;JK#$46UBU3jtHWNj^
z4O}cGIwSR9a?Kh`Fl_m>B}pw}j;qI(Pz`qts`lZ}^}jo8tC}6aOdM5%K5%gAvui5Z
z{A1}@CpYNZ3t>KHt9gEAB4|N%wt)muAl^F&r7oU&(IOq?_GW)n2*I=45a{fzx}8iw
zY)aH;`UBwG`hcq?+1GuPVuGUf&hKLt^sj3_{ba)GQAtQ~IM47x@=05v=lM^SQ2j84
zTtxD+l5(T7fhr$!+UaY4<9c(}+%^|?QuxK(zBJL4ulejZ6N}-DZ;4lOz8Sp!3M;%v
z1gBmwnm*GB!uxA&dEH)kOVRt`p7MuNLxC^Ja+VZVAvW#wxV3U^u&E-tfg<Z1vUKog
ztOJ}vn;e!rZ<A6IG(fqIa+@Qna}h!kzp>+LKzgW`V2N%h4y=3DV2+KSOwR4v8U~cC
z8O9XiS#U4a(Ld1#0t_Ef#ha<VZbu`|C-n?H0>wYKO#+t1;j3{Z3ZQ)78jj$}ZSh*9
zNY8x+blHnaMzK$p=^1=cA5EG5p+mOTK8T&4|GX$QSvlTcUJh;ZZ(9`1)TD)T3FtWq
zm(;;Q@ZhQyTIz;M#*(eGHi?rDy^oK-^m3`;EQ=3`Ja!3MelV7d6U+s@T6$p&y74?V
z-U$-GdifYheKov)3gSu+RNRkwI%4*Z**6kJ&NN({_ojHx&Ti^auX)X{Xc@mR0*%M#
zQJX34E(XeShj6vUg+@~IA3_6>&c!RjDzS$sr+@>TzyXs-*xRf_h|tGU*dwbuG1FC}
z@lE7YP;%RwWbOv($B}NFWDR|znqL-Dl>fVsn&e$2_%l=(EXj_}C3(8c6GqoH&D744
z6}cAZoMqbP=ab9wrnH$n>DQ<!@)e+PL@~A0oQRq=CvrHn9EO-t01l@4q4$rW6;$yR
zl`{fXjU@9n1RQK<2IQ&hIUPWmhQX+lUrOzs?MeQwqM`i#36tU*MAKVQ4O~?yLn>6+
zZ2Wi{wD;F@eTMR})ncq?A<+!MzBOw9mvantUv{uFCk!=~Lt!D<=b^Onq{IUNxGCFo
zQ6U{yz-eLiZ?5`C&VG%YOq#bs@@qDejB!@BSZV5t&?nT^3dVJyYNH9lKd5&mjRZ!_
zl1R`9fA0{eH}v~6KWn!mm8KZKZ~pQ1>&6KmS0LDEu^9ks&YsCt=Y^-n3Z-q!h-ftI
zMJ@rmGoavFN{z_X1)Xg6_)Ju~8OFH~k_WQntS2=+Qi4sU(MPK1Wt71J=es^SxF^Da
zgHY1XQ;}t-V4q{^){;?d@2dlAZ}f#=%-*)e;F_Op<B|AdU~l2-Ry=!o)w>_rQ|bE6
z9{hCb<2rmB%voy_HTC!1^&E?v=VKec7G7IHX?l_UaoNO8pyTOL)vxMwhxrbWeLi>?
zPFMqQkyGAkx+X{gzOX*%>?C$yKqpmJN+?#jAboxcK$@fe9<ApW6adG@#)kF93qtsp
z#(ggjTiQ3SY>2McAfjg&6l9E^gh{kBOJ7v<h&sdh32tiWZE&IlKOH%~=<4d)1_!e*
zFE76iS#Fw0AfaUZTu`8Kt}ZTmNjG_{<k-yM-!B}_uSUZ2HV@d%OrO>tp*}g;M8+0f
z9;YNd_eCrs1IVhk#rr*KYh9;s+vygo=|-rbc=_|eJxVCOck)vZ)J4AU<1Kchg;G_(
zcu98WKOU5elV#Ja_OjtvaqDL;sjC&hGiztICVRH9+Z%9!{=FJGC;UJX0tTQab}Ub(
z?$d;`<rBElUmkCUN@{%c#dC7WL|9K2?CT)|1b$$9y+hKRoK?o~45v=^*VPp!L>a>Z
z1AW9wLUgyZ54>gK&TQob9xc@@=bCbZ?vHpTRmZb@f^|7IW^OJPyNqXFJjIG<^^0ff
z;_G2emENlZQu{U9^<;-iX8X#FV-yXZU-7^e*siJkeVi*1sgZCK?vGCnc(sQWC*b*B
z`5`N2#qsX)vI8?4TL*_7&G@E|_{N<<wqtSD#CBu`z}Xo9ehKJmW&SjZ)B?BOlY=D^
zIZ%P~$;X9+-BZREPtQb0P0Vzt-7L<Gm_p<c_#h)Cz)ptxdV0L9N%pR~;@$px+^k82
zZ&u{Coj7SFaJ1D$m`8;BA#JYG`3()MQc_YGG9H{?OG@l2&21mDO4+3fIzGdv19+%q
zSgC-5iZ7l&zvsq8>LmIW9G9tnZODvI2q<M__P;bQHSG}|pMD5rag5*=VjSYm(gmBB
zUV4-#bY(8reP7`yrE2Kh`Rp3hY)$?D=qiLyEd+G&I{ugD=u{cE71x?kgWP|oH8@dE
zM(#PS8XQ2+^tU|hb=&>hP0F*URdNh0sFC&1>dK&br|;3tBpQeX?BC4DMovzY?#tuT
PNdRqiJ+(4b+lc=G{9FZB

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-tab.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-tab.png
new file mode 100644
index 0000000000000000000000000000000000000000..9147d3e4a84e1694859f3d70d1faba43c92dea6f
GIT binary patch
literal 16105
zcmeI3Wl&r}wC4v1?(Xgm!QI^<xVvj`clQK$2@u?!!7aEG2n-V3-C-wh_wCkx+YkHY
zRlQp^HPd~&=JxbGbNihC`JEV5Wf^1y0t5g6fGj5~sSW@@Y5)KbbZ{`>9)Cr5FYp_@
zi>&Tf003p^-wPs*5rq)k3F|JWBnA5y77quPkE$pP4geqn$VrNQ@y<Ql2y($Z2;sSO
zHs&wB>p7m|sHr<tGMdQnI-M6Y;qACBon3|*;r0=mHIc9zWi_EiHi=f!gA8vX!iZil
zi7MzAip(`HhghHqg>R)DQAV8i8|pOCSB&PGB3IGq@QB;I-g)p(C=>1tl5PF5A(Q?$
zEolEG>k6q_t81oKtIJqurfDY7)W*gJP7-`@vV2%pB8vX|^o?B+9emLDu}OiOrGP;!
za4Q88N#ox*1h)U8Co#*LFecK=etjhJed6%j?!1L;wFn>t_v{GhLRYl^4fUEwB>o|W
zdb*^tz3mQa4R9XR;5C0x^!OPaZG*wCIM=+@(G8oFIWstS5T~*!3`;PXbGf*8M5Ng5
z(ybLv+B1)^VhH;Fp0AY~*bP_ito(u}D=Eo-J^YhJlsD1*=c+p4(H}b-T)V=zbaY<{
z?$7D==ylm+^J)&>E;YXyDk822mi>|QxoCz|#C{H(NZYq4ux&(eIBu*0WqFRMDJY7^
zc_!@2p0_)f5?T?tD!kpGw94y-YL7j=VahuVu%<Ki!@W(X|Hv`RH1ChZlvm;H#6%18
zSm|b_;$8OL|JwDoNrHBQskCJxiR98vK0w7rs+y<i)v}vKe5j$}B=SK(y=WnGmncEO
z*KY|u()&xOK~w7wHiw$YbGE&M9=*hkmJJO<B!V#CCDYf}J%2n5{}lN&6Uoi(uimy(
zR8l|1P;;ja)EcazfaM?D%ll_C!x38TFe8EbZeq+vpbY2@LD0uiT%+o>9ak%>*%B7|
z+`(}31qZhLbG~-UjTbP;?_*1HrA{RB%?*>tYxt&185q)<5S3D!-~CzLos&`C)nDpp
zvHEqID|hV!(qRthoJi1_5OwuDGKi_hKtYiWVdapicUi-En1S@ciVOqrc0+ZLiK{=!
zt<Z46JVoJ{N3Lck125!imf@8D*Bw*uYumr!hghfgw<=CP(cs&>oMUK;0QeFVH5??e
z6!CB9OdS6DB(9#|&IRFtKCF;St3k+*VMsrjhcVIk%5W?jT$V^%LzYG)y$Xqq5mea9
zbeuvX{@<#R56X|D@&vbit{pfY&Rhe>w|$7Bd6_VSo&H!(Y~qYZ3wvjdQ9oKCaQp;v
zg@D;D4f_S{j^8djw{2Rt{F|^nWq1Uk06RM=)d~{#WfavMHt0$ZoHIYns=4(o7jC9K
z3oT-{kO5m~Q7@Q`4!y^r8_Uqz7l)pv`8ebB^lVny$#-v@SAoY(CfZt0t8b+adpbSM
zf+pg^M!jmW+vuf3yM_3!^+%r+;mw)x`V4U$m@f*i0t5_d*In+BlbX2%jk4kKPvT`&
zmPNVt4>0;&S1v-&&g>Qqn+MKC62HKMFR@P%^bNk##gdw$IN8cH)2)ArJi9jZ{$158
z(r3HV{S&NFb02-X-^BU~vb8Y}!=^}5Y&+Ip&0NVC^5?F}XXoYZ(Jn^Q4ENNF3tO3+
z22W0H!iI-}B#HwFY_?TYnKNa<z<F}QNp;>J*#;2z%#u9TMcp@6=RT-|I~v|Po+7Iy
z)9$Cs%s6}zXC49+;{KxvlyHako|Dj<PQ>XGC0=ta$^c{Ld{6~8QZF0yGqDY?+b7Mb
z4RVr<T|(9=j}z!-!^@4|I*--(>$kgIO>^c|l2=Ag2YY8H()x~kYjz;f=@`3H;!$=b
zNy(=AtQq?t*t@n*tV1<Xu0<x#g|Mx-Jlm#CybfbX?j=B8!Y-DM5{8wYX?X|wWZ0iu
zmilT}f8|zTyIpdb`f$XOF{UoyxE4M+<h-b}llZEml~O(H-<v<6`zUEBzWyX!ZV3I}
z&1oah2(Kdbl%@3PqK3d>oIzA-jEve_r2xB}bY>*IDW%tX6?_3fBck&gx1yqUEMy@y
zmfYxQz+@xa-rHZne1@N4hpD!7Q&C1*%-a#W78P9|BL<ib`#WO=z5BjUBAdEV(aZDt
zQ47?=-rd{-pYN87%5*uaEl%5})^%extme#(hYW<~YW*mDOgSzJ*7|1c`!$mCLMc;C
z7<Um@)u0D#5(Riwmu7|ENSTx*IgzJUt%OHemA7wu<KKHhPbf^<LIZIjc2fBFwF_fq
zegY~x_+mC{bqvE-8y&OEmp@pYodxXj=|{4r`+jt}?6*k&&5z#daP47f-?Fb|cl;I1
zzRjVNQzenUV(R?xW}c6dMYysnrX(T^+>DMyYr$`A_4Ho0f=;8{U*}#;=(LtF%v_qS
zVJDX;h<qyWD4M`|Zi@cd?v2NNE_u!%<Q_v%5p}V1>$~M390O$)SK5uT*yc`IJ|@Ed
zq<u#x_{MMzu~mz$`Es)Lz1G}RI3Hw-wAyAIW;1zH4`XPvs*RGvCi@eu*Gxz;a#%<3
zVH(f847@PCfQdHB!zAc<BCpJHiT!K`!HR-7fmWJD0~_4sW1kt_xfWXFXW5r2@U9u0
zMO4PJ(udyfzt$4vdTN5h*@zfUn9d-^oL+?FOu`L4Ri~F6d6s6?KL1d{>|&(PSbLX6
z(OLgf>-+YBj7*08*re2S4z%~9O>~Xy<fzC}y7<KfZ(avCDc?lgRegok;qj;oC7a@K
z;Ci<wqMh%jz4&kU>z^sU?xHxfX`4;#rYy%wDkOa0s4He-MZPLV>}4Psx1YH5FCb3p
z#^}cVgInW*^Mec@@P*(o{YAplm~|iOn(c0h>M(;bs5D_EkVKOQnsw}+^wqrVEZA}e
zhNzR_t+|HR?<ZkdF&wG(x6GuK6NMr|lx#-DvGK|wN`0w<1map1hyXK-I2sCy0^Oxa
zT-hEvMC$Uotph8yWXM_TC{0gS4RYrkIl+%^tV7Fy+G>|T47s;Bn24nDj4Hz>_#^Vo
zly{vu*<=FUU)jZI<~AL(gsbzoH;y+0@9#dQN*d1`Q4z#jOV8@Bx3v8I0%m07Q0s`|
zpXfy{HUeK)UOt^%^n?j~+f2u{`}moxfxZJ1%14knX|;W|UF(=|81<>J|Na0nbn#Lz
z1FOg-&F0;yee`%iMp9Coqt(hz5ix!Y)B)>b{^xD+!Up#b#)Z_|@|P#(ee+A?PXx7_
z6ozP8fXM|4ONiNJ#sG3eU6}r!*RPzjWst>wPam%tb3vnl>rN&5yn&)Dispg^GF^g%
z<1S<Ner97YwmhfAp6+kY=Dhp{?U=lRp~-|nub9Dd#0Z6ih8fV`cHL51{NrB`5Aajc
z;G4M=%23^RJxK>pt<f^5h0hD6-Rux%2M#nb(1!<3ku-XMT?L(iZYZpd7$B6OI^#uK
zzfinXvWo_2fU!h3PB4?=)Tlr73|jnCEAr-`kS;z1o_g}<WgRHvd`2h!IEa}$g6|pH
zgUdWnor-=JMaGNT3|w*s8oc5OPY*u<x_Rl?wIFhTGR38E-t*wPp()fGD+-F(#dyd4
z34!$xRA=`si5JaR2jfVSU|CiN)<_`n=8f%(B(CePA^-LBTV+*H`PJpX)h{c-=C{R3
zICa2fxxj#cB4yEB>2Nchq$HLfN3WG#BEdMJ@j%X3sl28)FOj!5_)Hwx&2o&l9awjJ
zgrbaTfyk!^l{izfu&Eu#n>B_j@0QovkrV;yZ@8jwZ9%YSg4p}-odh7CZYTL)_*BZo
zOE#Awe^};p3<>=ACgc&oE^7nl&EWR}s~UVu$KSkU?Jq~O=!mzhuwKCXx19{*3iZ!%
z^&4z&;*y+ZKu37FS@BuT2@hB=w9e7Yhi~T%q)QlFs01_P0&Z2yL?d1M)$9VLD)e_N
zg)vZMj>jkM$PZ*AbZxLb0}Nus&1&IhU_V5Mqcux~g(U0c{>h0kqcN>y$IL}S;q`3?
z_$9rHBWP=2)j5ZNKuu=f2$4WQg1LcodEz48-jN*nozNiEJ-tbbs5Cdv@j6CBJnlPo
z=s48DoO?jLO6dgwK^;OFs{zpy2YyVn&A?PK8#Gyecq&@k?mB~UFm*lVoj9dps3}Z0
zE`ypS;zCGQFJbz@F-5mf00Q`qG|Q%-lA`t{JX<r88<*nNetmH*<Qr+=lmyinC7Hne
zGD1{dlAhBziu*de;8@d6bL>xw&2`K8`O`v=4X^K~sR9He0+*ugF?7?Ze5X8Df2b%7
z^ttd%t||Y)X2J(kzd@_q^OSBj6RF`iCGShikFE4d&dgT3ITv+bAJ3v9UP8kxfh(It
z^yi_ccRdo;^V{aZ&Bf^K2`z7!>#JuD%wD10&k*Zn`kJ4V&ggw)j`MF;Th0-X?3V{K
zJMk)ko~!FjHbDHRZ#NV;#T^Z29eKRO*3z|3!e82>Hcyl)e6O%h=LB1+jl#b3!b#J$
z?Wk_<y5Lxl^Gzd{JF+wyu}C&k+WgeUHhZzJx!!FY4TU<<a}7*@e}+x1=iTOT_gI}<
zo@XH0A!osjuovGb0Y48kOqV0*C*{NfeaN#B>?~UFHmj_@wBlX8G8hxeUDI$}Z!(Jp
zB)O9t@#ZkP7IwH{APBO9Z3yw}m4y{oAXB9y!DXLk5lk!ME|bGhvraDj;>3ud+t%ba
zLKo?|MvZ!JWWXHvA4i$NhHU|=n-s46;Tbuxcai-PIo@k;5uyyrpGS)n7Z&tL10nk0
z8(ukCYb7kQR7~;R0gFq)XU-t-ljC6T<E}d$pAX*A4Na5#H>&;hGU;cIr7?wg_dw=W
z?7b1YJxWV9Czkl?7)Ewd*ay54omPZMWC5DyC&iXhth)R$;sgF>HqBho@zkt<ub<H8
z95@*Vu?j=CV+O~t-a<)j212wUBUN>hBMOZC5n*{s;RGC`^a9=Xd9X$590!Jd*LU3M
ze%45hU$gZT?7FWS1);3>V!j~u+RdR52~ZJeGl>?%iwNn)!j_zs<{97x{ze!k%paM_
zF&e&id0`9o^$|`q_9ukZZtzKpw&BkX0GrdkWubckx+Cl!D$KpnYFH)qO1+nNCcpzh
zai%-sv}VJmiEC%=#gn%Sid3Ok+}{l&m1K6Xf@h$f0(mV<JqP>5QR5`p>zSdEpPBa~
zj;8td+S`OWx$u*ig~OQGW+$i37XUx4)i+LiqXE_rAThEvp-G1?^0e^9*mD!NNUY4t
zA({v*-VE=h*hFjF;BSsU4+_X<1DuB|HD8SU(vl+`%j+n5S3*Y8rC0SjXO|X`XIz46
z+P$f0S^9T0r7dcHMLI#)mqbUGHL)TgBO@z$kb{GZXsb%ywMnp5NpkYxmHq3$GRdR>
zAL_xTvEY_0L?r#cCiH)w{I9VHR=q%{)jF?14&Ehb^5Wmorgri^CiKd~jpm7SasfD}
zdfBmt8G`Kkal1MU>C83Zl&{qssR!!p>CDWLKUg~-q?(MaUW9WuI$f>StzK<jtQ>xx
z<sT1BilTfOe$1uPA8h!-#Mo-GvkXui@f-@h@W=74y-E`}<Y$NXo{pQwE$;-Rd@Z!I
zg*b+;!<*E0@ppVJ&9GTJsvc^r={w<(FUmP?RD=Vu2R9MZ>3(LnzcgSNIZj9F_8JJE
zSwP?G_!7TlRrNR=s^{PCM?<9c=3?Xv<*f6^`*O_Gf(A)NB{Wb8;fph5mcqBP#^43{
zikaMlg_(?*6F$~uE7i>FZ~3b)Osi=v7!w8@d*P(gq41;5nIm^vGtLHp=EkGW4dO?a
zwgERK*nl?jwSmVL+RN>=LtNT5R;LVXQEADWY5ALGStB;>&yIGn7(%!NQ(QKY=+A{m
z42SvNh#%KOSlIS@96Kfp@R^Ze*4EVNj)pOYCWYC;?sOe<A*t|s&j;_hxRe~MigMJM
zs#Z?Jb~o6(o+nne2}pBPy4E8zR)a|x1O?PTyn6~!^e0<fs`F~N{zx|PFg_~|gX*BS
z2F?nFIo{u86=Xgt`NKdwYusnf-$>pGopSCUj0y5dDr+{{i27f`4iNP7`#fNJX@Z<x
zJ|K;s0yOVERw?M6$KK&m&oG_MMMc7<f3e*}lKB{qIYyZnKd*y>M)d}!Dk5&coqpJZ
zm<uV?2N2`F7w)_Sr`h=R#Y}-2pwFkJ@C)CLRQme&#D3N#kQ~$W7SI3D!KAk&u=(tx
z^}^eGU5MXj7Rv7|&|&<!HK<E_Yy0eA8^OQ430~8Wd&_UI?&4>N(4m0fYY$W8j~T?3
zAGp%#4?Ur8HtoMf^g0!Wb-3q|`(h<@Lob34GtVxhZyL%k$6WXl7_XwMi69EL*<mk#
zVr#0@4tb@Qnd$mMFtBuNA?N<?Jrh~0H*;TqSnQii!WS#yk`}zU3``3&j`(ztqj~^A
zW>NqfU`!#HBtLVccK<WpqDy)Pe*W|L3iecYQLB_Y5ZMEG+sl9NVV--?JvMzXXUJnU
z$mh1dq6p#gT8SbmoGSe+`}m@by|^=o`3};`OVerP!e-G83g&mvMd%hbNLbU2vD8Pb
zM|=`xR`o7{8kH%llU#c1fAb&$FY6C((mD|D_6PQX{zIe6FUYmRw>|dn+dYIK3tBs9
z0716<dmompxz=L@VL^5SC(yMPslqjn<8x&QY0p1{ca#h$i+oY|n|IcCwS9(PHQqcN
zZ;6VvJxKTi;)Nr19{^j~`h0(Ji6N8`+u&=@-W)Q8c-g1kjS=M#@`7<`(Ab9@ly*ad
z=xLcI!Fa@h{rV$rG^{E<xC49TSrK9acGe5ok(<mp$K>KMNBf^0P#-oCnom$Xp6=av
zoA7xuPo|cacxT=VCd9SkZt=drtZ@@bKMMldrg!(OSnCgMzgI6jS`oVxGSmU?g#IZ&
z-Iw;jquz^AmwXrFKm-xN)!26*ev9{dw4008-JLy+$2nL--c=XKGU$+#`+-0QOcX=d
zR9q@@{I>1x-{G;LPPe^x+^y75l`jdaTBVUao$x3&Cad2gu(;Sh0yPhnjvWV*ZthFY
zSPJE3#jeExP)@uckqFWrP;__Gfoh}V^}9-CgZ)=rUrer98sF_x*TVj8_y-_3u&7gq
zI+R)OcX)08ji?!l&L>5$3ObA2bHjB)1@O0AtC*SjxYP_IU|~h@MMY2BzV8P7WNbe|
zE1Ka+2Sw=kTT^T0)TF-aqvx-@_#eRQn`9&lgVz<i52g>z3D;fA4AJgtJ0YbBjcJ&%
z;Rmmri;<1g)4WzGkH^+vcyK_nCX(#EnEOp6$Nkg%!v)()f@{G|Jn!lvxh(;Xp+5SY
zhxu|YWt3HXZPBkqY6%77bA)W)gPrN3A3qf$83Z8r{e8w~=kqR*Hd0u`J{#U{raW0J
zTp;x{X*9kkmPjaQc%k&%_>IR>Ed)#m@GnwlIUYV-AYm)Cjf*Jh(a;<J4$Gj=rdd1R
z_P{d!eqOZQ2wMy41zAqqU7+>{qRg~S_T5D>_$8ygNZ)Uwt<$~{Nsh{ujw)Le^!N*u
zS8ZQ}9y+@R1#vHW_`c1~gC{7$dvi5A#-7|6SW)KZPI9u{{2wz-zYykee*r-=zAU5_
zy+wk52(nCM^@B9+$2~6aGgIB8$zfAbQPG^a^Z4xb#s$*bJ?lIEhnsW7+Yc__^;y?v
z&d%uVr@exSOE2HsrgomiTTD<hY4>aYY)^0e^vgQT2T;dYXz>mA=-tP?V!vcYx>Zvv
zQ6K?$;a=%8M$mrt5GZiF9_*Nh;=hj7T{i@hcycAW&ZXgJm2^=?d=8A6j+^%pS0>%<
z{wva!aPmU;2#l-4-1#iYQTNJ$ckrYxdJ8<9_Su<H3uKb=-N@uS7;~{Q;xKj;Q}x)g
z(?%EWM%U5U7PV(K(YY&RvOEFipswn<GFRv=!JYAh9^7btJ)opKOl<I`5&~>}Tc_kA
zPc&YFh(r>kdy{IgpuRSdT8GV_yUs-X+k1;aBI&zYAZNByHZ|rgY!iX}M2EFR$E+J8
z2&e_gGUy^|$^W_lk+!b8Q0fubAO}xzT@(KLu-EBKbiKaN)}Lr8ESpU(803|_|NYX&
zQ9-ouN02!cx9rnffaCOK9K#_(zVs$!pT|A24vS{V0E|uC<e19+%zO}X0&X|pv#Ql}
z1h+B}VMY@%8x}C7g^2{g#YG?ig9PZ#IE5qW6Ac>}Rh&i2Fi#|SCjCo^56JGC70PcY
zdDfd-g#>ia`A{Gq^OdmLa$}LRqKGCzFRM^ptm}loMhv!SG8}Tu2Yk4<&msaCu>Eru
zp-*~Y{EzLBITsqW?3(4=vwEvUH-Ecut(ymAymAdf97Js2C`nU!ZN=K9L9XDRcMGe(
zFjZJy6|9f!5z4XkA!Jn3C^Z{i2cW%mo8x~xsgHXMdQCG9mW0l*zpvx(ykXvVvO~?J
zkWY470fSky>U`@7(v=`IOWy^64*O|3RyfR}Yowxtvx0cYs7^tULHb`iTu>xLeVQK_
zdpNAx^>|$L{ss_2b{J~)B|{`!YJ&O=FWjIY$|=LNguOTe82y*JJo*<Rb9mlpMF$yN
zV~TN67h3&^)(B=7SA3xF*mkzs%w40@!wcSI`Cf1EDXQcP)VKKyM}HK#c;OJ-b8jc(
z_l5eOGS8ZpvY&!FXORHDlsFOXh_hY~Xj{S^_!G(qR(Ow!pT*+5kCeMq5QPA=1}-3o
z+quA~ATL6009z@U)EWk_43r}SAcyebUE*5rk2aYD?`coe3_$dajAWxmVx1k9Am0F9
zArz&o#!t0fEb5W3m`9mwe8Ye6&B5WRs0%TiuN>N_-UI#}F=*^YsZi^?wXP}0_idpg
zcDy5>H?KC+F!Uo3+7u=+=#JVu`_#x*Vjgdus~dHM{X(ah-+1J>b6ey<D49w)h?+_a
z@gwPydd`5yYK!l4couFM<e{f=f4_>>j;a=QDwXkTH#|`sooqY1_sA8ZsNJK2BO7dU
zke8O(Z>^P8=UkM?AX^HNLeTdQM3yW~pDm<%@Sj69xD{29ttNr=Nt3!tPMsq4DkJ^-
z4tTG77p4Sajwq6jTA#1%OF%vHf2#t9)=gqhmO=uttoX9AJH`}oG*?Q)MY2$CcToVM
z33YIGy=93A<IpYM7hPHgf*J|g6DXWS^rD0MPu@L1tWH}^trYJ}<;8)PW&l?Pf|*xt
zWG5Uf!TGEO=B?K)qMs4!5-cME<*qaKr`w$Cg3)5kDb%~epv5Qw<LS(k5hgyFX|S!4
zU9kyiz(5_Va`;DynuzCbc_`$(g^w^L5whf%xD^T`+SvurrsxnG5S-~O{Q`cD2~>-Z
z+BN97$k^A(+oAo-u|Qs8(*Dfrj@kbx`S=?aXnqFo5B4JJZ~@#+e8+QZ<p~h5%0l|E
z+6FkS*oVRS8oX${m5+i6bx%{v5$6zB6pQfmfM5~3riQl|;!qJ==1AOR?!AEH0VRM=
zGAD4qsgCw(q`1+eWS!B+aTZw{7Emh6G0on(7$g0cxN?{^=nh97Y>da313zp%(Gks?
z@r@`ZA3VIf1&n#4ce>2RM1RLH^4iqzsHXot?~t8AC(qesQ}5#9hTXjM@=vn)Gk|uW
zW_;FLO2d%tGm0?|jDGT<oIJn_!^zAFOw8RjMGy^zj}Q|81)+1TC_l120$ZQmy4gq0
zddyqly^PQk4@riM9huKo_PWB<sQmrf>jDJGf`9$8ko0BB87%FUe_L8CDSnxxKsKZd
zpl2}@3#bq_qd>nkjy`Qdy#lJzzSzzn%Cz9$2?aY@qqmAQjIIP7|3&A#eYBS29B76E
zFjer|BKzXxcXcdz4RB=^LT&Y^B2Sd}+aG%6%iJg(`L4U(*LdEdvf9rgPuMTHK+RTj
zQ0Vdt7+i)6Na7r(0O0`BCC6#OmQXIn)zX82U@00rj6o)uN)WQw78=|!)}aS*;_t^d
zE@NelcSQ3;(l6!##(Qr*#V@swb|crSQOsg(Pcq(#m#_)X#_;m@VvGZCp2*k;;=OGs
zHKC>udiLZM32|1N4U+Y&#XU}Rf(KGdtSqT_lYL+RPNHf6+`H^kU>Q;JZiw|dm4IuN
z%<~Nl{EX%=24&RHyf%R2Hu+Hm*FrmsjrTQ<e{Om~f7=qYL_5miyRqKjI?Q8b(GSO`
zKD<1@4-7>*4nk9oIwTU((wR_0{Sy<moRV%O9;}bLthM9dw_VY+pzaD$;Ed{f7GENC
zu4<G(derkU6W1U7?qLxpJv;z_#Qz@)fbD9n1j6MDMaf1FxDWZb@8y@KownUB#!vd|
znEtxd57D>ogE6z*84UeI_q!1K3%}rVCVDUwwhXfiDr7JWpUf|lXefgNu*13p1NzKe
z-M98;2rNQB*H21?WM(rNF7jZ!yu5#_@cn@S+gdwxJjJ?Yt{dfs{H4|GbtXZjXy-7{
z!N&#)#qbU?=E?g!iXP&|_G(HKur+d&2fQP(LAeV+rL#WU)p?uUpK}woj^LS&4wG@C
ztYgOGHjx?j(l(jsm(LB{!>UBV*}BsHBbtk@&!I8U8}!S^#AjMN$AEhzDQOm@{c-jj
z(!#GGf8`sp)itk+Zx&BSET8@N;BsvGg#UZ)6s#R$=*%5BBG|y_uZJ5nJyq=Ee;wou
z$LKaB(TPP=MI9H$8|^lS_XEc7bfQ1;vEClw{Z2rn;J75hABaEa;F6D$nUY@2L9AEs
zgC1SUc6pUfbyiF$L>YMUev@WeH{CVmp9?7k=i*b-2o_=KE*wS=Sra~CCh|aZH6qkI
z{56>#J>i*bH|%yhHCBM9ArkQ;oM?sVZY#tg&0qSp4vdls17*kh#=pha{6|3h2D}o3
zv>!FwSaE1JUcY>22gj?}ME=Ta*78xQgxZD7M)<E;_`fbUZGM{imLWL~zRZDiUE^CQ
zO8~3t_EMXzm?_xaa`Z;5cyEFd7fEm;ezvrCN1OfEwTRPQ^D(}CC!$kL9xh@LlN(aA
zPkyGOb-zQ-J{*Q^*U`UlibU_)?}R|p5cReL?pO;32rmS-x}hsD7n045P>pj{#oAto
z0`vVb%8i=}&wMcrRy3nk0@3)Q5Y^gcI|G@ojRYYK*mn1Lh!2zEqMVe_<pWb0kHSi&
z_s=tC??x%>-8;8#N6cOS;O#0hvu%58ATZHZse<NF4wwPp$endHYM@3J&GP_(mIXep
zw@&O^4T|;ob9%Y4My#X2P00n72z@mKNU1kEf0%dV;V$y^arx}L&u`7F8bvPy9X3at
zDe!N%cH)wP{#)K(O2Il-`r#<+5KDb1{whN7ip8XPoB!le)F@yb>u7`owncvKUilK~
zrdB{NfxqboLx=jO7VU+s(q|CiD=>b)6a9+Mxq7C-{8gmSdJVjP{vYA(ZzQP`OV4h+
z&9Riws%7}i{3Iu1_R~N8tqkG+CR^%f{wL^Co%R1$mIHzXBC_J~wj12@pDY6ho8zQ5
zWu0)6Sd?I*ra+?i_3ww02Rc|EMCQKv5ANnN0_@Ni{bczBZp|qUXaBb>_}|*7zu*~f
z6PT=N<HVjwuk9Q3voissNk!2kA)}wsl^Xxk+-+igh<ST{0<3+h7BCU7o;!$Vf0h-i
zO78ZVXGNFw{nHG|18$uk#or3BS@%1-owxhi%vAG5+wAJOFR=a$;Cih3HQ?|)414Ec
z9xY=(4Z{L_?Ph)LVcivIx<n;+hyHyHAm?eM-?k|noYC77UAUXAQ&#x8Fa8>47}4>S
zrh`dR{!)jgn4WE7aFOWs3^e4O5{AOLoJgEb1Wq;&d$;WF-1T{Egf74$)<0v*96sS#
z6|$+Z30<k-eWR^(kyP7iP?TI)y>;AwIqC4G=gQ_m+8!A#*tUjX4*MCmza0gNc5LXr
zm*zwY&pJwnzRx$X!8GqWk49=Y?KKM-zD8N&7rI1IVa3}O`l?=E(~5J9o3wLl3Hw|W
z34X}6ie$|Q({OrtGhxmlvHS5Cew4x58$Ee(CMsrz@hE6qj;)w=V6dLD3P+RX-M}bn
zh+!W@Xk*lK3V;TF)X+B=_*n2WHaOVl`TL473;(IfdA&wUz)iBG$R@Xv;{XBH)*!>M
zk~>eG&4@|?x5i=Abg~el1a8aa<5nKMjuBtkMowtKSdp!@XZTOhD}+p52qrMvS}Q<k
zzv`%st4NpMwcpHwY2}yoc}w5%cNK67z4*5!PB^_<&7yY0cAa@oe&Fh+bDEN7jeMAL
zxlGw9HV?~Mr@0{<_>q-uRptzPEBof;X7^)uC3XboND|u(SOvBCHa7Mtn|ev>d`+6S
zwM-QEjQO__Pp+dD=h~Xd$Dui|-?Pk0W-?@r7NYq+&EMKN@<0^v2WI#$`oWeh5Fb2X
zc@2|h2ns+{p{Ez@d*lbXf8_i->Eg^Wm6hj)`t{lcX0d1)43Jzn)Pyy=VpXB+W?<_M
zJoq?q72TOJGTq<LIVQ!)xb0vt8Ci=@Gf+0)jBNh7BDm<xv*y`K`4;NOyX)rq+EZ>C
zjafaZ8y3Y=kP3S0AS3-)R7L1H6bdtH&#S5DGL+Dl;puelU~_XH8m8pCx+vtbAomJ`
z?+j<>cAtf^p1{`8W2*OZAM{w^(M?N+JR2BhtC^5W7en+IGv|3_4-3R~aMmt4FUI!#
z0Dhq^HMs&=QwHV0M@sgWi@=Xw>vZ>^aJF&|EYJTVsRH5uw3SsO9ZFfEE?W23R=cg1
zE<nBb-SL_5J-`rT*Y*ECc!>n>wI(_lNdw5zHiOlWfM>t8x#ueG|D6*8O>JM75frTu
zrZk8XJ`2c8#!g+b-Qln4QMIVYy%YRquS<jcqYX+azys&~8{hzovvp&DY-%oTaKhID
z1ix_&=S&Gk$O4z+p<0&bz7>bJ)e%kuoxt$ZcGHW1>Swtyw94L`1R~BNv1jonVwA5i
zNaWmeJ|#*drG?_tzCM7PKr^x7e#&~@y^FqJ*lGP5mrXmVL3HfYAa5+%e9q?q3nV&2
zFSmUB^-b*fZXp*E%>zZYF(>Im8GXkV6F6k%>-=?kB=!6gE;`n_$Ql*ZkrX%It?s2n
zD`)j+<u#*r7UKR8TxJ)9#D?wNs-3r+if9EfqhY!4cmq;sd|nECfd(wbQQ%qMPi)j1
z*M@tZnGy+PLQlEleH>{pRwkaxyxj#}orJu!b`l*+b$DN!&?}<GAK-|w8sOfWPo!wc
zt}KHV68Fu|Y-+j9E<{MBlq>dv*1}`06AQPkKJ5kEB*}KFA$b0#&F1Ck%DVV?hY)$;
zbr~Q!eS8P)D6ku+5Vm^lnXgwY6Qu0)qE%#AlNoYH;igyRg|d-vH54<j5{mdzyC-L>
zS8|p*W8|%ZLhht1nB9x2l-Ovr|M-@&A{(WT-b0d%)8j_r<Fn>E<Lnj*;k292j*HNo
zXdS7xvyu|@3m8~~MAtXAY&WOvy8kd47qs@p6Dv@?fYtl;xhZd(m!Gp@3>aY~t44pq
zqo#Jqs5xd6o_8EhJFzy%n%h{hcei`CSGGHwNl`}+Ilc^Rs3%6PU`L^-L%#9M?5a-F
z5ZT3e25*WC2H2vKpnv*F2Br1owN8Fj@}+(y)G+4(JW`VL$jT*?KvG6QWcrixvvW`c
z>5#VpJwP-GJ3VJUh9Ogn37^=}$A|z4=1IRNV{I1u{F!G<R8x)pn6fid1sfZuPKOoG
za1C(+mi#&L&ZFN~L0DJABvjZ$Z1W#)<}Z94qTHiB(eT10V`0j*_}Q%8DJ_up-U;i|
zbO=pupnwah&#ZTuvT$smnecmqEbZ@6BVJ`3)0Lc!*w(KWd<Vsw>Z_B(ya5~oEnS<U
z!*R>e6URNipRlJi9<a=ut*JdPTH?PZ8{#tg#i=df57XXM;nuGcZNKC5CS^~gmRQsi
zT6?C)N#LL>Wo4~T9=t&X&Y=rRE{6m?^3xPECN$NcToc|b58{34!bpPE#)rt^@@@^e
zv1!T>C#@t#GFnZ<E&|dHO}JjMRqG~whfOV1c|@8{>YNKa%G)A{9lCogUyug%e$+sS
z@H1S{C29V6EWd-05dBD_ITprZ2;g?xnJzI}b6)^EzfQ!ZP>K%%YkNv1vnF}uh2s+^
zeLt;_|Kc|J;M4tN5}T$#{_+*zy-{EAJIN3nx{YWWCX67{nh;b4snW3<w;@E*qEOyk
zYuKcpQm%{>a5{U#XWanmY6!3!iA#oCuk&W*vLCuz!K+SqtX?Pn8hgh^ZJ+YJvcDkD
z(8aSGYC<#V)a>j`Fvj}R#Q!1dhzmA1Jr@Nv;yJ`1`Xe~%xF~o+g=G#so*v2xI=N^p
z4j0%ynpoU_5A8vA*Y{kb<Yq<4=7-4%q(cC}=5&VT{~me`dM_nRpD5Nd$2~6Ki-~Vj
zpd`d<9&HQy0xzA(ZP}N3iN98-H#^IOGLgvW+0J7pZ7(R&uw$0wFT9j0PQ=O@`Ys$q
z4%2gZ@j>ZZr*CR&g^V*NnbTl;?DQfe_)!3X3B-ybWy&Xf!AABRd~Pjd2r6N(@Pr2J
zXe7+`BiM$S4DQ*lI>F7!tv|t3vP3JFFdW7zZ~YjZ4}IQ0)CTyd2qJ@tB?H2IVHL!;
z%S$BV#$V~506O(}&wB`dN|STsU7}&n+EgzkZP<oF5wglixvQuzFQF(Wh&L%fm)qX+
zI2kn%W8Qdl*d1$sGnq-MJk%Q|t=e)EBy6bDr~2YEC{#uJ(YZQnie({Is2?x!HUe}t
z0XD-&da(0em8L#t-KPUTH+=BcapiIzI@P?s2(xbWdXxNy2r!8@aQcMcY2s`wFzt`l
z{G<L0yxjnjrT0xeeZ@?woftu@cJ{VBD5<s22MpFMTgNgrkKnsr)?l(F2%fG-PbLV|
zZy3ceCm{|fICBv=<52j((_HAlYyl0J1GB}<SQ52G66R{nfG%wT)&i9XBpDx<M>P`Q
z97kX_zHX^T4c*{OQsTLngcXZhI_|EiT0&Y6p^%X%hriA1sL=LTF<cP~0%Uann+)`w
zAaW|l*9PstDt7eYRV1*FCGt4@@vboY{j|AP`dHE-VIelI5s@Xii9%`fuZJ-~BhIe_
zsjrNu<bg!|b+I{k&CpBUcQMV$#MQeQxC6~}?hUl^jr~-IxQobD67yen&q58k>2M46
zt%nXP3`kb%5T1*%v7n=}(Cw(of61h^1>9coX7|xJZCu$;(&>}emAR|{Lq;YJ)TkXl
zEB^^OK>Sp)CotTC28JE0XsN{*RK*EeYmngx13Y!0rxtzI6?djVH|m8M#G_igA~6=M
zRmmEzoMf^I>L*@ib@iY;-0AgiZ!Rvl4!BY?j|-;GmL|yvg~}4+Uj@S7cGj|MqN^J|
zLs?oq1+G;84iVpWJs2VVzzY0%|4g8hTOC4?&A`!Qb-eO{TOO*+W<1my6n%%80MUo|
z(zO(79I88ucyik^EAk!kPwG9no%lCL(s|2X1H;4Tv_p#2kO4?rP?oJ(5&8*E?traa
zU$fzb<i}d@TATh^{n)0%P$xD-M)AAy>fTxKrMz<hYWV}obI7HVY6y+{#?{#CxG<+t
z+9m-gR>JBC(tTC`$ayE#g-<V{1??yadpsLzl)}mBt~k)X(jP8_y<G_Xbg$jOBBI+*
zGh#UMuCL>!QTw#O7htNGMV9Ym8YGOjOiAe){}93Z?s{k5o`U_3XOIHXQ^7irOI3;o
zFo3&xcc$tGjET&UAfh<7ZtV>rSvYc&(+VN4J=*%fkY}e^nM^H`@pryM5r=$x*C(2%
zHR1i_EimUPcWd7bFY@jLh8og7gkFo=IXu^2w4OEu!h*u}y~TNARoWNC5$10`wa}%m
z@oXo<RW+ud>*UOXNVn^r;MwL*j7-GGRR(yZjsnf3m5U!+1f1p?EW*jTI!VMIo@rfK
z%V`q$7DJBf%EqCAA0+3|Wg^K~G-v_H*|3rehV2`;{k|>PXcO9E#B!p_W76-a5>eCO
zstd3dJu+AYOt^5YljN|kil!N!MAY~=5?hz)C!X;teV+<<7kpS-9|~X?Dfxk3Gym-@
zZ_{;CinFB|=9|f6Hq9#W;FX*pmH4!tTyKNOpU41ldAtxgoi@*1l)v$OQ83bZTWXR3
z0O}v12KuOjh5J<|8}5!1oIhVMV!WB)?oyNxuy0j>u?4lr#?kL59=!EF)FeJqzlrN4
zu{I~|_g~scS>O0vLJ@w)z1u-*Eux-S`g|RF)OEe8BrHq#w)&l2?VN+c9(^nMcCg{q
zp68yxy|4VtCUv=ec#pzx%{*w@paSp&mb-CUnUl;!rc`2qa_$(*XPqwc!eh2*Jj&X+
zGS9yaY-ruK<kMUfiu5($dg==jS6^Ss<!aQK{GS+S0RvWx4L&X}m~-x2Kn$scDvGb1
zvOK*B4~hqB8XgRj-Wo={RdJV#Zwb6Wn&%wOXu8iFOp3_GySp=&FMV<`#v>w%Ltin@
z_2#G!MQg%$4H^FsewFcyqypzI#6Dp4c{+RG_$nV47sz&DrN8_^0<PP6M~6QVUkeau
z5;j?SiR_#Z9FniTgYh+C)7({IbIhLe{2T9kDK%K@m>kx^<6`tt9$6>@!Bi47>{$@H
zAo(?h9j7heuh+;A3mj9wYSc!NfJi^Mjiz5q%(bYCAf9pD=O+RxakMhw4rEk!bI!Yt
zxpnf)ZZi06xj-X@*HnYknyKN<E|%3g?t$yL8yg%L#*a%(dj!kD3^X-|$$Bf`2c`Ya
z`lZMs=KRn~P!HGR@}+59V|`5p+oW;&;~X*%q3H{!ODGJ;fIRz3&~7t-6FK;bv2l+Q
z_|RHhRZeOM#x9(Y5wzj&$6l#yq<Z&R^-T*7#o%e(Ho{mqzxR+Ke%EP%T8D<}TFdu?
z!09J0$%c&|80P7|M=?-~Cm;#x)xtwz)?POUy?(7izt2aj^C7NZjC&6GnVicx&eeLQ
z$Aq)=>-VOZy~<&mk3ikn2pSXsPo2%OCg`Slwr(Tjz`kzBcvFb{JZxn>B8l>7K}vG>
zbJM`0^E+{Zn3BJ-=sgtX+|8e`<%!UKNQl3JRwMVcp5agHQU2SjEGRk-A>{NVk&{T<
zzC^4zTcfz0bF7^<DEEUNcUS}#ZC&Q2Px57Z@(xhH1Svmj$<cb2RCN&>YJ=I^OcN|*
ze0Eysk(Ofg!I_fdQtbQ&$Uzg4+>BpptZT3-nSCAt_78>PY*=E`&oU_=g9iNv=Ksjh
zMwF{77%>y*;2c(yiT4}0rMC9o(bxrC$l^c$;MJ|e9@Q8I{mkj3w~cy1ZCcbwaz0fx
zJ@}|w9m3nb`$k>1THN6FJMzS&7{PQ669ZZV7nCnT`cP3eAm8c=UoAEx+%IEKK$D8^
z@LRUELs=(9A{<MQln5Ugyy2L0Ls@E5{=FZ6XZl;DjGsTJZ;C)LKHnm+AUNfq3Q>iA
zCwRWFhM2k*W6Zm&ad9H3anddqiFJ&rxrY5)OzJ4ZU2=v^{CTBxJLkikz1gMcq=cop
zrFp;ucTAv50(cB9x3gch$$z@$3Cl+~Ur5}J?03PV*2x;G-!Zx>J@~*8oW3>db7RMd
zL5<6AD5e#?4~>0$5?d(bCBKXg@~Fi_^{_CN>8HU{Z^^tMO<M9>f$r)-Pp}Rs={v|{
zCbWK{wb_^^AmXL3(BwRo*mlGILN{PE=tGq1FZ!QgYGrV1u@C+j>wIyI9<cj89rsdp
zg8pzhvoMGZKCUJBq{PX+g|oP(oRqF&_&!BRDa^JC2f5L$V^%dcp>{IQn{yN{V8=g*
z>~cq0Mc`B^p`ybf!kUb<P6X3V1mSkkbV9;#%%BOw_s!p1<TzB5-!2HSF>T<3$;P%l
z>UKSXVX^#6rs}~ne;~d3E2RnvxM%`p?M!?27AW!hXHx3N7`jv6r^`+k-xv8sDr@qf
z8=7kU6v(OWIkg#~g4W$`DVM?i(Ba2@?|ckVN%Sl+(_@Z5&k3cSTfH;GJhUcC=O+m}
z#yeT~vofo!;x$2NM>eTE*!OxS9$=S=*RaB!?se3^*%A3lC$0;Hv-e1JXrpZhY$R~2
zpCnkk^OPz?c2K<|KYy3*oJ3oUWU?scs&F{prx|DU8edgcA5YpLMI>mDx~#yg14C9X
zIjTSEbHBBo_dDhOrbV?5hFLGb3&c_oY;4=xtya<-+?M+Kgl=(&N*PePp$Bakg73o&
zO-{nIh&sAAW|xr4la=yNYs2@y*x=8hKO{{b+XFZz{bM5NexntKI20%C`QWd<V^Xe3
zQYN8#n{=sC;uR=R{7bFSJi<UifG1%+snkD1LmbA!8us=hnr0TsZvO@IeQ%{-gWCoe
z&pPZcR3t48Gp}7L^^R1JhAIs6r`?;Y9TaT`&M63`5S9qz>RDi0C`|_!9K)vcuulrk
zH~g^pGJ7V7Za~RlYu4e!N>q0?dPLH%_gNtsb2k2mo_aVf$1tj-@MY}Z0g`eFIgjW-
zwz=qqqQ4d<sySqc32ao-yw17kuqx+xyIG!?K}`0`B*Qa-pQi~?cHCFr*XGbD_f<$M
zu`RuwcE2Ych;p7x<+9z4&baJ~gwZk^UM{WH9cVEgOF`L63+WVp^p8TG$7%6Wr#W0j
zmS5e(MWr;+&3ja^@eI|O-Z5|(G0SI#i~b0Ge<>CgE%~fXFbF%#M_@q$j4#Mil1<#X
zchhvk0sg$DsmH5X_iG}ULCD?(5X+N%6V6aexE+;`;Gy?s?GD!PloOKcM)zawjyvEv
zra-x2Fm2Ms3G}^UCi;Um)lei3rkN?7#b4}T?zIX;jjmViRjChlABQnb!^Vb4Cm3va
z^7{Oo)B3T>CPOadru_-(c$Uo82W<T&m;qe3D&4VONs-<TXz0U}leYUWgT|Mhv*CQR
zfkO9Hu4_y?4c18b-fX{wVT(xoiEd3+L?0|oogHynADT;A#zU>Z+op4ew2X2=xzu$i
z6_b&r<Z`9Mp}0}>msz1JoJ|F1al;<y<)E|hukF3^;JwkqmaW#1$cK3y?~B5MX{-P%
z$sbM@+_DSl_H;fwsygPuna_yZ4o$^#%P=o8q+oh^4O0g!hk?btx3&e7S0|X;81~93
z^-iZcC@xE`0V}<wGGaDr1S464q=AIARcgPn7Q#E3$`n^+b#o4xu*rayG5>)eLU2*y
z^tn^}Im%37B$#PmbG95zPD?zMBG1-ZqGuDj!D(#sESXx4w!c`Xo=_tf=7X0*Jv3b;
zG}TFgas1w*YaGi{T>6gCs9&k3u?|<Yuv_JrQy#II95P9oncO1_r74N~IL?>8G)_b0
zKM_vrS8ekwMY+cR3Dol)>#(-~d4a)v@r6ojXN73kuT$CJB@O!?_0*-qDd{{Zc!p&o
z8Ck;j*CAADjE#7}znW&cR|iSSkbjCLSx{?15z<8-8-062NVLs<7T*-Os#Q{Q0qy_J
s{`^1HHH!(v{0F!_^<Tdv`tkz;|G91r8hQf+E>j1{NhwR#ikpP~5AS9w9RL6T

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-tab400.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-tab400.png
new file mode 100644
index 0000000000000000000000000000000000000000..29c6618677c0c3698dfebc4c7e0ebb50a8c1d512
GIT binary patch
literal 19531
zcmce7RZtz#wk_^18+Uhiceh|03v3AP?hxE91PSg=VB_xYF2N<ZyK{5vz0db?KhAw0
zJ-Sy_cdfaqde)k2jxnOtRpn5T2$3KlAW#+LrN2NxKqmfs9!7xshkR17eE)8cu3zLN
zA%0I0AO9P`SW2i!KtO;Kkl#SC|Hg<;@_Mci5NHGceL<!$p%FnqC~Yf9OK5q0J>P&g
z!5RF3zq(8@^tpsZ=zOfe_tC(BEDi}S<4)OZr|*<cVk8fi*G=3kmXb$MkcT?%d~|6w
zT>CuR_=*IRvyMIU`RecY*uv7xC)6&~{cCkKCelnCfg-en8hph@5sGp1h5kE+BmxH#
z>_4QC&4>7h1N1om{R(~<)IY>1REPM7rZ`CCp%{{}l92x}QsY1HQFqjbS`nk9p$lAt
z{?1JLT3$va^Z;d&!<WLJR8%6+NOAZ}Xsk}PykP;Ol|vFV({er*XbbE?oiR*y6GeTT
zk|UplNaUZ=h<H0(UZnd-DFJQw?1roCxJ?#VPBySp?{_4;7wz9s!eDqZ+=r?LV`k^1
zN{k<Izu*>|O=ozo1Wu8;tQ5$k<)@1sx_aqpNTnuz%G8{X>Ec?L9ItrJ^p@V}4x@=&
ztu7~n-$!_)X)Gm+^ILQX%$+$|b46nABvV+^rA0cTk-L&+kj9ORgB!#R1&<SgvCuMp
z7(Q*hp*9z~h8Bk=e)80SPs(JX3J_#uQo51!zI%I}5_&M_#wJn8nT>X3CTgO1hilou
z(pk!ZqDjQTh=zv5pIxlXsxb{m@cb?}XwfJ}R#2Kscq^@`jc&>+XFC>_tjd^@AIlx!
zF8CyQ7+WDZenG*$sUajz1wBk)R?7E!0}IpPL7+NHxxDE`EV#Z)VoRrSN4s7?c5*Fr
z$KL4U6{29OFC}-$><M0kV|xz~==uZ~oqMv;;AR~u5K~ep_0D+Za1e4lu3PAjiwt6*
z*bkhvZHF&lRPJv!?uwc3eX;&kjC%0lgixI=fOAknDL8;05%5fajval+#O}UH8ee@{
z(yRL5<AC{T*0D`G!j$ZaT-dHAou_kzQYi*=_&D`FIrPF2Lz3|k&Vbx>rM;zhvY(`p
zkXtSRGS~F&N|ZiOjJK4WAo|DhY`Yo)#lCqb7!X;WLZU;`7VWuyKi~25wcB)mVQ~bD
zkU}+1&}{l((W&`2@Ky(4K{@jXkfhqv$b*?U6PYcuwr#Ldhpj`R&<Gp0RNGP1D)^wS
zkD~GO@sBLgwoA;#iYHojpyI7ZI8fd68ZV_f@m{Iz8Cu$FkdO0<Bnm)JOf{Nlx(w4f
z7b;NT37}``&bMSh=DbQ&)6{}Odgd1J%6H~UEqVFM?)?>7kx9<3R_sC)Mam){X(^u6
z>fVEHA%sj2)q9h^3Ts_75Fe7GwM_=A9OV*?DCUH>O+iF8q_2uU6ef&{mKW}q3y<y1
zYMxEpAFGWL+;#i0xE03u!C9ly#0vSIV`#i22YwP_A`|)CCU#39yTb)iGE{3wY;WEv
zlC6XlyLZL|o%@+UFHipTqf#ZX{eH1@&-5q7t|q5?(L&$CI$;h^MxM<0i&MS#LzjX_
zgIIu=E74$IgJmW9OtTRWef^%(?H?Xt)v=J32>`0WOP<l*348Hue`tsEXC6d>%u`r3
zezOzZ4G?moa<hr8DX<$q-r~i&S~h5;Qq1i7#27QzI2NlI>COLZk~EU0rmGkCQ80~?
zMP65C@dtDjzaWn*R;pneI;xoUPONn$Z=u46472_#(+`)J{5dO%)byV965gR2!wAT@
zNoU_JN#^HOyf7r#1wz$kf7eqR{8ld((Q|dwzx}^-s>KIVHh>)uiL5GPrE~j>Eka%I
z7KA4)S{=ITSp;!psT2Lj@L*>3pW^+Z)E2p5r@Owx+`EA$m3H814DMTp3#7EckAyf^
z(V;G}J@**piR#*$D^$0;1r<pH;`qgRz>cXEWwg>y^>VE?`;f*bW#w<|T+PE*uwvWu
zs*4nV3qez;u_vO4y=oimY&DA63M;NoI1_aR?6z+Z>#+;d&7Of|Lh*hvgvISc5=q!0
zW|=yBrQ^Nyrmw|1mG{rRUB--DVPVzqF98DRW<I=O-mO+-_lKmhnQf4gc9P?>MBqGo
zN{i{O=%Xx3`o$`wo+gluMZ^Qy^iXrIXUMO+z$)A1#K81GW%y=JE)+SmocTt2H=t&o
z-fKWD4{nLx_iK?l!acxyBptzXmD2*=g0N~~xa8OGR^4Lk<`0UY-;iK0=YbG6Vqi#3
zz=b5U?ZH)VNa<pk`cLd=7UToae4BZC{hpvpOtgD%$grbv4pA5x9@{`CjuezP;krNr
zmKolqEWc86!4Gbk%~z6Siy8@F6Km+Pl`E;)UPq1d(SaGx2<{71PVTg*W;$sMiNOPS
z8`$(QK64;LwS8f>zmHdUN3Ya8*<7Ke2#a*{rPgv)*$`=RVfvGZVGasxce4x(d}DP%
z0_NAu!K0H72L>u|+{_i$dS2sCtomd%F63;9{Q5ZJwwPFp9VUQ%+3q!4qi2{JN+B7q
z{p&%9T1&o<>T3om-H%l7`q~V7jkkXS-5a71a6r;Q-5aS;f^i-k<N6PwGsTTZ_tlAg
zFqD?b<i2t+0cEiGyLe#Q(Q*f$k@3Kmf2p;=JFndQ-(a$b{un#t7uC%b7hx>dyz~})
z^;FK~fqobC(k&Ytn<v}uxzq(+tit80WyOO!4SM^Em}3^6LHvPKl3N*|Et<ePrc}ol
zXjmi)mGcPDW0Gqd_qqN9jj)@MBk>$rPS1<+r8u5XgNxyZvq-?B5&%gY^V<R1(bcTg
zM2-L~S%)TWR$VA=%Mc)eGW`$#ZZ)JaXncCu>EcZ$ODqshjD-Z14a6QyDMXm5M^O`#
zpySRSuqasdet@jSuqAf*j0UJOjA^u80!=NbvNs&(C}l^PDOv6rI@NWxCuZv(H2uCJ
z5F}NyP?6qJozz2C98pq@GkEpfRX529Xv2#7NK2xA7)s=r=P-A3<Tn@@i{l<2JkMpL
zx_rKlz_=mo07Dd5K<=N_tbxteJl@>4nRn-I-C;8(z=S@5oVdQavB8<;iNY$Z@gGhY
zqmprp6^htZU)eDyZCZOrM-k)N10pf2Z4hB&0p-nVRMlm5P{2@|Y|-J1>~VItEA|P4
zYwYmn1=evG9jmp4i(r;^KGV0do%FURcx9r6-)E%ZIx%N6@?}pdmG#bE{g6cn)^!gK
zL6>*|aV0!P?$$O-X5`^~x2!6fH|O;uCf1Cjsy&X6{da37-<Ezq`TTXL%6{d6Lwkln
zUMB6?oo?$ZTCY7wqX1V#wECi%?X6GGG&!U43kmg(u9C#H#rH>wE`~MoQ|CU)plk`V
zJIk!GX3rdFmpIYuO7{;TUtZm|yUDKcZhF1&4$r$tvVxieQ!xx7OZ7#8?T`3N)A%8q
zA!6pQji{NHfe`)J%=+#~4;L+=exMiYrQa&G7Q=uEd_H2Tt`{_ev_Qy1muA)In@h?X
zyB<=CeN-<q$f7R?sz>+F%oF%R_@p}Kd_Ie-<@{v1bjpx}4EgB-b!3~q&7~iUw&YFg
zQCK#2cCD0{&oU`)W>HnMV1I)ZWdBQ3E@bW+BNFpC6wL;kHP}V_`z@9qBQtr<Qt4@_
zIm9@M0#7+??mCoHv;c%#y;B+v1WmcS>ckR~0Ow+BMpJ9XpOr~z1W|YUb*A&Hx6p33
zy480F9U}u!Mlbg=sH=gDbxd@172z4AfRO~${$C+trXLG690h@DcNg<SnbWjLwj44F
zBlJoifeK+)z6p8i2;QumGMTLJvwf9@?K0F-8=k|xr8(@AIHE1#bmkF_!Hn)cg`kwW
zBuEGM&0vGpS9wBvG_3_Fiv2jBe|c_d8m;OdQJ>lqVFg@NHGX878i-m<t~K3~85vJO
zqZ#zJ)2C1d_ep67PsF+vm8NyxM2BH2p%`1~{(=3*8j@UT-|Eu@qoWFV>(mRv=LPU$
zq>bZpY+=#saxB|tc1Fjzs87s+uIw^6ff-}L__@R%t~9O3^t>oMrW2V9;TxJ%(E|qu
z#XR?E{S-`hjHxOFVV>|P!@=4HP7l+W2r*{Iqa)%$9dGYMEL(XmzE(UVlPt`gTae{A
z9$#6#+AwK;tn^QgOQf6f2NsDOrm0Wpoz7LQ9~OVnOqVx)zx4lC?zQm&#EVJ}j>Iek
zOQy3T7L`i+=T!rnv*s(DK!@o3fb@JOCvU<yNxrR~u~F#v@YtTK1g1d$g-4N<%<ex%
z^JUN6DX<8(hm22GGS(;a*i9vrWlH;1U0=~+n8V+h2M-7|n{4MuK|>vm&bw3CIzor!
zjc!tp`FmiyN!ho$Pxga=o7CEatpqcTroI3zK+meMx%0Cslci`0w&X|gCJ=&Qu;TN#
zijT=^dOW)u(CTN@O063WY00te6F_H*ovU%F^H9NVgX6BghQocVLDASa@PVVl&iFh8
zN{82hJtf6`R{mUs!*pUmalXI1i%<mRg7*uMUpq*<b(6t+z-(WuWp7#^Ga&@C%zIS>
zNL)a=DQQ=yUW^yTewIlFwj08~JKGI;xwq{P_Lbp79r)7HwkBbNzg6{xl0g_t4V`*^
zj0%H5<G1Z>2}wtG*kfp7U^X9_xSO(i_b2h)srrK!1>PfFlY>yaq|T=N`NqsFxJpcz
zjTh>*21crSHdV*%nUyK74&yPfJ#uBP>!+^Vn7%|daaAY-Ih`PiZ%t_J(%if?V^1d)
z9tPV)LtPD&&|#gOn!gJYon!cEIF4<jKD`Sz`227yU%m4i#7@JAvO>@otIf!jKvgs}
z3~<e2G1WUDK#ZWk7)THm^+BN+QpO%yRPJs)ht!{)s}?QDlF_%YfI*<$;(Cn#JM{4Q
zCS(il^RyGMnXNzD4TPK8mGR!zyVhbL@^5M11LYw=h#ZZBJv)UOi*xD)PF_xbb+b?v
z&HpA-!TH^bu7|=S<&O@NjSrjd?_bthenJupxFNg-ypd{(5rwm*Wy_7)B9JGxnOqf#
zI`I@KWJm06`NwN$rtKaYqa#`CM~vp8^)EBANik55&XvOn@|GLx18rmG!S+-1u{r$E
zN`T41qn(iJwT+fJ^1C!}YF1$-(KpHdn7|9utvTx_>rV;dr(<|OQ5)VjS7VHyb`|+S
zX;(R=C<DQ>xu%<adO+?^guCfZv0U>I*7VtWG!&69V-4iYFGYN7HG05$H%Qq8{OB<F
ze#Q37s`Wo6H{Sucq+`^fZ|!epPzc6U_g1q+*e^eA!*B-7`rjtKDB-j8{iC0;UwSJV
z24=UftGBNE+q8jT7g%1qwTMg##5T+?H8HN4(;S|5WWZD<&7-)jTI+K~3YG3{51{EF
z_oy9*+liK&3)Avoi4OVQ6mFKVKdIW61*^q2lA^h^^I+_JpIhECYvU!xvB<WV$x|KE
zbM$u1iALEP2c9sR6laNLiVaX?L`T7$x*@+SVlT(vix;tk5jZ2d>K=^TKgALfl?;7_
zLTOG%k6d0jDHVYip_od-*U#&#R;PNYI+7#Z(_-}B*|A*RNV<tdI>s+NaY}RgUW_dB
zW=5`-X7pCtf^oaf_4A@Lp-}==Qa%~54Di&r?H&Md@#k>MhwmnfTPoE3LR1GPr*)%8
z3rzwQEq~IA6~^ZFPr_s;w}$eZH@3g9DwL?Q)LIRDpq#G)w2jWl&E+JhQ+r$W{X2y0
zC;@86!}?fk-RPXnsle9oziKfrwabnB((GV2>5vEi+KY%Vt3$&VU?7dO)q*c$7ych;
z9uZ=SMbvz(-iba^(#6$=fMPsO@O58N%37`IoOpxnEXHpS-ZuZe(TS=Z?Mg_&`*-}c
zc#^*1OD{1l#Tbm6%bPy|$T4K#pGjB|P$2H#^2|X7xQ;+!O-|>Lad~NrfYn4zY%V3Q
zmi82Y?3;Ya`nn;`XiWZR6g7wPBn!yQ9$5)_-bKu-Oh!VVkrOHAo+@<3Q?S*$uj#B8
zjsAu!@y9PV6bankp<WWzhl8{1oH}}<QEP$XMoU*Fx|Y@z(c8jkMj1?(TNjEnrm^DD
z=;Bd09cC5W3pRv?G1G6BmZt$zp=S3U$V9&Uf`9s?jUv-S-BM}$)BY5+wHJOk7P#tv
zE2g1rmfs>62u!Hdb^rPB#-Zp<%E?u)Q8gz?$rTZj%vH52if2JfDKgD|w}Nu9nN#c4
zhOVF)oK?l#<PZDQJ<7_%VdlLHBg6#o<5n!9rR!lQ1X4DJ%i*S#2K4+G&X@lBeLc%>
zL`l)jn<*)yZ*B<AgLf%Kl)9XGOvc4#H6-%j;ljzYmR<yn`1RuF{x=+C&jT7xO)oDm
z30Z%W&<>6}zFEY79iP9si(xYVj@!l||EsN^|9?%U|Hw>%*xokGb2l+z43Zz8zUPqA
zg%c7plbJ0H9S$2^Aq!A(wRi6G<WEOfC@aS`nPa|w2-u~L(h^ZReDA`B5|omCTqZy!
zzfW>Mj(hZu)q)Ty2^$nsF5Euq2($67p@c4mm*c}o!50EiQeXVAGm+9Cdm7SET3G>l
z&OY=*{`>^_V|?y@jHOd?!{-L(hZvto@{Aa%U95!PXa>k>mYo*n!LBFrex2`F+{~As
zDhu9GxHnwnl!*Euyqn}2P;VAVB2(N}X>KZN|9g=zXbc}IE1M6JiM0rEzGgG*(sE~|
z|J%cF47p*H{&cFO7g)Ba`7#Uwk{Hvtt_Jn-`m6IJjh1BXqRfxxe`_x)+UDrma>HS7
z49>1*nfMz7d^-nx!z~Zv`O5ZD$8Jcdv)BeY8IY(=?BqANAw3&j>I_gvoY(ec9n4Y?
zWydYqLQsv7I}99hMCZDnr^FOY$O!L3&AOYP-dQy#1x#NcxjuYN!i{ooPskUi7g0X1
zG+T;hD08@(wkZRM34}0cmhQFVR)Q~HdD@nzJ+VTIYm~4&Vza~dAV>S2_hK<CJwfNC
zM&uyxPscCB-k3_dx#Cf+EN2rk{B`F<XB|{oa>csCnRhSq>JM=TN1T?32X6ORCB|rE
z><?!fVX;{L&$Jx%gGbNEGb^dxyC3h=F$6pBw)u>z1HURq@kMPQIy%>PbQ&=^9kQiB
z?@MLownL0liqi0}l)|)_day|UdU18gKS(08@Iwdjq*AcLX43Jg8I^a;ErXvDO+sac
z$#u;jErpQrS&h1M+&@9|SlHN!EKL!Wjmp3R372#-$%5UaAF1)Xu?XuLi@n<b(iz6v
zB+b0=>`v4HO4K<jC=6oE;ie>%V#M~ADrJqIqzSLfQ@dYd5gb(Y<?V${O5`PZ&vw3<
zm3#(hqmga|Mjj1F7g_x6pPD70eN(OFRh;OjW9OKsB)>{xwP!@uUCC5>QqwNdrlQ@&
z%#oI^zsKs;YwusGsv>7oMUMz{YGJh>v{6dO3ETa%cp9k<?3XPFt}cXDbg3f;gF~c~
z!t&CI`GvsmbN(4ps_Rq(jP@p#qv9n?aI65DDswOBwD;Ve{y{>UC|qLZ0r^R$&}8T}
zI3^qccSOqmV2oZHtteRHb&_X4(_1|jCSG9#HOkdDWdY)BViU>$_pma~QFPx+bJN)&
zk#rshYB+SlU{4~!LUI8piJfcqX4ml6C<GY-4g?=!Xf7eVjRs0F=$(9u$Y>>L)g%}+
z)uqJRB}oS#Vo9l7at0Cf5?(Y(*aC!vOE@XeIfS`BHK|CHbo>_>Un1Mc#j0X}8<8ct
zVQ__w`^qmXlgsVk-717{*1)ewhxu*%cp7SwdI5tJRJxE%LcZyBx8LXKG4J^?oRM79
z0W`ZBRxmC~K%cX!&^Km@FK+mKl%|OpdJxFI@aYQ1Mi{y!!UNa7gnq&YR13fLaZx98
zP5Q&}-G~;jegp&8A0~s<4pZA))5VrJKwVx~*&|b(hQK!dUc)b`yuYcjdjo<ZL5Ed4
zFQ{$aD6Es45p?aM3j*LP)Tof+PAVZ<)BS-6a&~4#&v>QtP7@lgEWW|Ww!;J`kGLXB
zT&kE9M7>3!o$L&qz8g*f=SR#Z{v3NMSVhdrbfjfafGNZe+|;TGuh8u)erg)rzNJZm
z66V&50_6=JkXc1fVGsELO;J$2i^+1jR`X<8ds<%ACK~E`RbuWBl<Gz%yUF`ky)L`a
ziKL#<MZ!Nn{6gVG#JPo<vFd+1d4MCdG$U($yINe9@pvCp)oqKNYQfST4uGn2;`?QU
z%BSLiFp7QWB3AUD2UE4pGo|_TOqgJSD%O#B334I1xjN*X?IW0SCwp_SE&mb6c>4l#
z`r6H*J<Z<{riYWMvF^xu8};;DW}LTYejZQ21METn!~zcbw8PMtrka~lG!#0huf@A1
z(-4MB1#OAtSN#1N+KvQs`%&ZbN{b)h_rPgpRCE=6RYo(e^%v}>Y~eRSf7aiks+NN#
zSY7RWCf96`7@2j+0%9oL7wu?L=qeh0JZBq$02;eC>R!Cpch{A}NpcC{CAN+52})dP
zECyv2Y78Z1ld;t6W%u2b;uXIK4rG<H{jvDoAFJ4U*o(@Kt9KE@9Nw?E`AX!t5tgdM
z4aWWyJRD(qO=1=kuW&oR!kd(T_1&>QZA3;OuEC|9#XR47P)IBb4N_cOfF?4YiK16H
zHOp~U5y3O^-`GJ>Nmpw;DaUAMlhEx>Vgkl^erZ!1q3T_^(WPTUv*yT7bg=TRV6@YC
zv0!~_i!B<nSGw8rv{+mu8Ug2(+E<7h?w6PJ%Ps=`znLh%%3%`F90og#n)TwLf+8$-
zum0jccxx8bNwPKXufBWZK1Fv$zUN*HmJEhr0)@Qc0y@Xy!xZC_*K|#LAB5U|5AMd2
zGiScRc4hDqG3i$Kv@IS2XW)Nao(<_5PYoo%2M#waBC~^b^+W6Zb{h~^1VI2^NBz)I
z*EEyAeb(vh9+VGTO2M)@aR$o{<Z;>_1*C?<gQuQ}l{4E1IW@H>>A4@kL$TgR&7ti|
z0%Wl1-!IC!oRFFp)pE*R0DS=P;dgEXgRPF);M+5>%}a17fg~bVPyHJ_{9}OW7LPY3
z8nIXq$tmBS&HCwC&O9YwJIq}3Nxy8mCM|MA>2%NK$MG34yOi?;&BU)J%vqQBFXlEF
z2g<pj5v?z-VhKhOE*~%)^om2C$d=oNKlODf6p%YZ_1Ybdo6J+a@#X={=CHJt<(0@z
zF6VqeZxNN|?6*iJexJvrix(f+A!t8e28HGv`Rt(T%qDWZ-(sJA(-XtNVMI<;8s!E#
zZqAT8mo1^DP5FJHzQ9^D)CYTE<i;ohZoPaUw>_+6&ghA$p>a3Vu+$x%T7V)sK+W7d
zCQ7+^vY=M3?PBXm2p%Jw4s<(!AX*EHtR_>JtQn}HfU^8EN(;~G;c_Dyhr+BcVR|6k
z_~QE_qn->mW{ibe?;wJIvsJ;C-WjkSX$=T**v)iy<59(bE#J%>l_D_Cw+T0Vz;sgw
zl-cV(rhH>_s?pOpuy<JaUeltqeCgEH)wTXCW!qA`hVC53$dcyvi05#%TWFZ1)9oN}
zr~Uh~<=!wlde5bX_3*`?H$o}-G;Q!hH0YGi1}&{1Q^&b$P0ls<9QoiWVRKC^ZOx4}
zcK#|Ry-X>y)zM>X`{qk<Yxx=1j!SVsknB|U*L$92&&*s0PQEkpW~WiK-;w@g!%aoF
zbNSi~ExCZny{VytqY^GQ=AEuA&v4D768?)(Ht5zGk9G6%ZT@a4rPi?5cempi2E|>A
zxTF4aU#&jcf>v+G#{;yj7`#+GXEBw)Tp=&M-*)dVC|lFc*6U08?=8vsuvz*!qt)r)
zMBhYhYG!P!#q~I&+ZG-?>`-eKPq$;{3*~RL!zo3snR53BOGb*b{%T9fO6zp}I<5+K
zls6+*4tL?F#JN;q3g|6KT)M7$Ht%@j^O7wb^=U50jHtTAFHDa+mPD=JK&6e=%`Hjq
zmM#<m4C_l2{;guc_ujXH`&%1hjn*4KeB1qfe}_y9wJo#t`u*c`&Nqx*I)|ALB|})9
zsKf{-vg5zeMV5RQ;_f6`zO8p`9kGKQC;V8k5m0fU=POj>bNGl~GmMfQAH}|Kmhy4i
z1`s3dEM%}dnBJxu=C;bU7^afxH)aX7SV1iN3;<X&%@cHpdME8>e;EXFNH()<&U&-7
zV%ko-*fa*ey6ypgD_u^vv^#reg|kc}3ruxh&W9NUaz<(biky+VywXku?HKT~D-RTJ
zG+ST`+nqNobGM`Sch=8XjanF()SL(39#e6gS6%vlz1i%)o*!(Ua{UtWpHFM|Js0M)
zog=)6a*ErhG5UKjy*Y)OQr3FpYTF7jKHICiYagd?8E1-c**XjCxltN4S{F`O^WZxE
z<?8)7m!IXRjN)mtMtKoqzx<?`oa8DtNz%6w&5^~Yf3Xmrw65_f&B}5{{P>*3Vu&Vm
z>4u}XK2`(ox|OZAs3s;e5}<>E<I>*sYw{d@bY5k1Yd!hZZzrM3ZdRo(+?cl6Z;XG6
zjVE^;O=$4`Vm+??huu@{kJ}B-45H?Tj0=7KW(QhNZt|#3rfsx9j-P8zA!?=3LhTNe
zo=?AbURX-GG3};FNe*7n*ZYd=_S5!hoLvv5cXy+oPIK+^>5~oWoUrhI=}x2!fN$)t
z<fp_s&+7H~mYnxWF1K&=GRSh*dfkt~;Yyf*(y*+Zm)MV-@qMJ$tuEq`YW_5!b?dcY
z=PW?}BDo&;*bXHnhZ0;Y9rHw&G!l44R1!}V;%qi-^5Q9!G@228EjhV5RVTna8TuIi
zZ;#)ET59_(%|M)8H1o|u0#zXR(y%|*SGSh1FhFSQyft=ZA7`INB-A~5sf?Cu)*jlF
zprb+vOc)$cM~TTj=5_|;hTEg_3&Vb-OiI$VCMgS!Jfb^VpE9u0-~hxQ&GwLfXuM>u
z0;V3y&i^tqH;c1eR?v?y{ccFp{Ymhh0h_MYKRx6YR%V3$M<M^Y=nnzgg<1^G-I_!J
z(<4hGOs5Y{q*YdFcoFG6&}DxichYAR+zvV!Iny&CKxN_Z_z89`Nf$pl*3Q<Acm+c!
z)h~`f$RSVqX@JRcFCL7%3>t5;Z_}MV@xv>IVR==R=r=W<$m&KU?HtNCa8FhH)yuz)
z?smR`xA{;~T%Ed}4gs_Om-1@NLz!3%pb7Z=e%67tA4Y@p*lc(G^|Ben1Uglkn0-5+
zszpPTrWPVw9d>v7B&0=AbaCcj$5owtEp*29=gU<IK|9hmiZ6TOM|ji(&E~^**wa+O
zIUvgE>RJV311smCjoN&7d&BJ0!6rO@*wISus$b#3tt^7vx}eLO+Y!8j<JzUAy*!u(
z(oJl%;&$6;!1)>l7cC@`IjbL4-E3Qv%4(}IBOYCMc8pkEhRI~<<xzblIl|-be>?mS
zg0@@h^%Zc{-}Hp^pTggyVG1o`nrb=R;(lcmf*YZQ+EV6mEX^KWn&J?Xoerjqz8xSv
zYU)+4w+ApGbbhIlFo9+x(hRjku(Yo3vN~{(uSPuKE{k~^ksrzR6l!9JS$?lmZ;$@>
zPs<HZyzP4U@dTihR0+bgQpR<Lny2h0;^V@poMKv?7&h^&0Z6tph@fG&Q2Q2M@<i4{
z2YEdl*wq-MMJ?l}`h~XFOUm)vclmI-dL@V)X}<#n^7Y1bjzs-v4?1u|>`y<x2RlC2
ze?I$NvozV6he3V5IJ5oU`V+n6@sbcFLwi;n_(_>nEi}YpXwa6OEk@Qm)e7C?X)oqq
zU5R@pE|UG31(;3a1MTa^s0Z%**sXRThO{r?0zT-b1=9N@Qfo=r8I~=XlSS4_$74D_
zL}UZq;mp$fryoEfa6I6d$-_&`)eJpxeFvh?U-%D~DB{Uyw({eXG8o8kBpEHp;~#>L
z0rg|?lS{cyXX}V=WuT~+_wN3DT;n`y6ZEe18<yQ$<Nogm*qU19dU&Wr+zXvq%=hp*
z)G2*S3ov6?u*zY-g{`=^Ys|Z1YTkC1ZFs8GlkyzaSdXqR+K*=2$%dvfq9puJY8esL
zP|6$5uo=xc7H9#r7$;=Y#bPP$bOx)>v~Kk&LXgjwthuCR+}i`GN4#cqO{~O-dOqX_
zbx_AEg>IlQ-Qj_C*f@hG+0!Na>rJ|T(5DmnTR{#9gBC@nFbHn=L(||_Pp`TF6I((^
zQw3~;^UjC{!XaEcDRISO{}1=@TWg{R5}|18PQoMJQTV4Xc1E~DI@4eEh`%_V_4d?s
z1<8Hlo(XP5CS?;L5C3+tX<F!4mEY403;Lpm;A)_oF6s!Kg=E@@SjC(}$XdwSli#{g
zE7S#8a#)XMQR@0$ekM~+fBB2JnteDUdmPS`gXwccpg%Xw!_hzL)>pT$eVcG7fjFog
zT;q#Vu$hTS4oAt=@aYCwwTHf=Uq!5ax+J~5qcnmQqbHlvnKQYI2NvIZ$!WpEnrt$5
z5IXzD;aVQH0JAg(f{l(>MC%^DE`AhOv{rOl<HNlS=tL3ac?!;y@=$CE_=PrXW9Y3e
z_AXG;<Z1MFOvI+lQRU&rumIS|@J8VJK!WwFF_e1L%Pq`FVHlt}Mo3r){8g^WB|q1P
zVWj1KPs?Rs^;@J6iLlwDXG09VU#t-Oq(x+{zZyF?uEUa5`(GN_#}^2}C#q|)s-X^t
z|E-pZLtCl+@NHm6?EiJe=gN7@QVcKGJ?yWi#GK8C(%bDYd`_*i=2j8rxslT1{>;f4
zeGd!t7%`Kt;1<_ru<aWYo_!5LzXpAxUvC;{Z|f}@l${^!ENu+W#F;D}>`whvV!yVI
z$taE!qlu1YY~3=mfF@h2oAh!bPQbeN*0|b-V;#`XcZegb!phIo7VuC#U??uz0zv3F
zJdqkzl<XW;<AZiiDHx~Z0F}}N;WsCd-^$iTkRQ<vCF9v+wm!cLbzND_eTUUHSZL7R
z-c2?H=?OGF9KAj(#$J#QHDf=Lr{r4B!|;%BUGdYj?>-Nx(i^C;g~G_yUM|y#YyM35
zKCwRsx-D)v6MUXWH<D%RYriK3Qi+EYopA%GVF+nV$zJ<0>Kih=LTP{IMHgd0^nHq}
zACH&_Tx25!$=vEslc`v5VB8DWVPa)}xkgfGj}a@_>|3EQa(|SoPtL6sv}#q<vJrI&
zdyO=gzN*l`Gwpsy7{jvQfJJwtoGxZyW+DP=1|e|5J5Ct2L7EA!Y{wdh=EuM2cdkP8
z$yZly_dotIdsm~QsGP?%%6_l)nA8wPL6V%Qj#+VIQ3c-CRBn0WAjLcOZk|FSn69<@
z-{L??&Vlxp@ck?Qn%q3nx!+!X<&WD}7NAzs1q^&ys4$H(PRO3G_S_pl=l?8Y)?aBp
zf^<wFgMtc9oO(n|nJ;?9*nU8IbK+HhT#e~|N6Gw3w%1t^u3-`wMo^*cD!Kg^836&M
zhfD~Ks#bjKELG39_RS{vGVNl(zv(>!opk#p#XucwqF3mREFJbjNzaTVQ^ot*@S>90
z`}jCs`&o;3rksO1p8D{Wxt3n9k`2L`;2Bp{zW&AkTJId{?e110mDa;9n04=vq^k-+
zVd$c@s%fm0h8|yLO65AhUuj3PMqQOsM~xs15?XAolU7+M`Y1xK)@IAhk3CN;qwxje
z{1gCsZhMzsY}uZtaozsm1P3j4ln?~{YI-)-KEuz~-vG|WbT$=$OCXF{<?0$386`^8
z_c_lDMqZ7pp;aC#gM@bG?_xZNI~|Hgn?_dgS=ruiW5DMzhb*Wchs6R5_yh<b8X4Ac
zT*l--S&56G<TR1|K949c9`<4DI{K;b1lq??{?(3wd^p|rel~=^*w|HjwWz^RceRfh
zXh^oZ@=>_`q8g?)c{7}pZG0Io&9=(2R3H{5?$J?``-Is&{Mci8xf~3nl)4NE!KiZ=
zh~M04#*So4`w&;P&Mm<?hl`h`D_u)(-Dm%CLvti}C-v6xBDapVV9XSlBOG}|%p-j2
zDW!BS!@TaPDfW5dSY=A>!@ITOexhAX=s+S`B=mWavlUYh*>+Vlta|PBDa7x!!@3qv
z=E0_i^!PxvZO*m;!92*{>J9I=>h5>H56WUa3)X`^>B#FFi$8r*XsNa3a}Zl7eO~V}
zqp!V}G>Y*uG+Ew}>RwxM?<4CgGa8w&*Jv)`a@atW*81WTmd9MVM8G6kHyAW2w)-KK
zYRRVxI{2W&zgr{+c3e?2^z0PBI>~vG!0kB4!*m+x2DVAu>qkBjQS`ko2L~py^K(O^
z5-x`;^EISQCR_H39U*oQHiWgO5L56$yHS06g4U_g)@%We<c&p3TUFo^^0>_}qAjk@
zdj0$sKNPp&K7aF*JQUBjKmk>5BZ^iHxi{pBc>^-}mqCF>eX0qI-9xXia2sB%T^yjq
zLR+IAsj|4taJHg?Wg%=dQc<H&r@A7s)@{=lBN|HwLrH|N$KWSwbv<8)-II6^g}^Q(
zrDn8x=jfUfJ(6^62^^tL<8rQ_j6%x}S#f1?y54HOb22UaGAx4t<$F#~qqF7`_hK$Z
z>osVEuO_%+3b(zEdkiX67)AWIB+8*pBglvteX1I<V&(dt3iV5$A7)Z75(|KT-Ihm&
z#nU#D+a>fBo-&0?uHGU}9fu4u%2LJX<NAr?7(GOCd$9<5{Z7P`c?$|Nzbu$`Q4cjf
zR~0opP#TT6lc*p*1|@&CyiB(S@a^nuf$=W_>Vs6%Oua_6wXasaHpNMk*pH_J{Pw)c
z1$!vRCbpUzL!HBcor}U2B)q~_b8Q`V97^88P}s49S~GKL)pcy0eird;T9zFvR>`kE
z#5vM5k_?<-zV|O>I~J2@#e~+gph!iFdz&Rf=lkE22Ww#DJr3IDj7Ztc=E4|v+8?)C
zPL=xTJRQVt{bSxYXI{cS#PCz=kSc^c;tmTcMPnxgdZ>6CAC<s>2r)Fv=i;E0Lb{WM
z>+oVNF=9dCJBpk0lYE|kXDF$r{*a^$+X#TYa3U#bcu|#K84aN7dsSS8LsMY+=@Rgy
z17;mHnqgcmg3)U0dt={9T7{lTR5Xipwcw%~3thE-d@Y37w`=II3F4VLZ+~E&esd7#
z9^ys#apnC|{Nikj1a6VE=y&%N+Ozc97;#VgfkMUpk}Hp&6u)qTHN3;xYzN1hXfwF)
z7d$0KHJ#_h4AW?p9^0-KiVA1IXf^_38~#5NFt*6Ql{Y2|EK2jt6aVC22y5;{eDm=8
zt`vWJ6;ulMOOa>bf#*ucjLpb9>Gp|R^n(L-t<+Q6P#S50lZo5m5B|f!3u_^YhiX}N
zMgN9uG>(ouQwL#T8+3Op85CKp+;wXkQYsA-QO2^%9C~HoL~vRZ!O6m%q@*7vA#V*T
z@`L$X*$g~Lq1LTBK77##lLQxXI)i!Zi6X0N5$BT{0(|_Y&a0{AxJ0b&W{#qsj+yXe
zYQVicjVWvJ<$FYsb=mR|Q7iLznZJ0)H<L|@g>$Em?*I6he^fuTDichiz1Ut1FI!-D
zWQTVf#BLo5*DH@t$-OB8Is8%pnob<KtdF4aKZY-{J5--MR4Y0}zkDg~WVhXAq#ONn
zp+n~`Yj4;(f6j?LDb>9@DNXMGsJzRNWBx~C?-};5H#Hc)^n&A-Q3EaR1CzBV``WtL
zZVR(QJM?kHN4kTJgNX|R{5Jw0-*N}F7=u3>1p9C(97$m@Zff$DT<Dp-58yjLORuIi
z*FJ`GpK15+|F00;4LkdP6v6+JM*TlRAO7!2=>H$#Me@sfseL$%5kGCU#jPmQte^18
zoyu+|YK(k*N>xg)QyIeuD}+U9x_7*LAg^RbhlYi|eLng?A-p0L>pV^yQ<^U4MM;OI
zb>j$FE!bE!{Oy*9DUU)NsCjK$0_>huSOcB=$iis!(*>4>?s&EejWyA!9%A0Gi(yEH
z7p$2ulZw9sEuvE24@~bTzSb5fLOqjR`#{Ot0EnB5DcbjI{Iz2;JX)^6bi^uQ1c6Dk
zY-shv3B4)9$9=>(R9&05Lb5zyK#6g3Fu&i&Gd_$o{v4&`<FP@lomKlX*~AEw^JR~n
zU+ar-Wz$jXf<utKkZ1lMThT=XZ_Td;Mp0~BpY!8A%CzBHl*%2Uu}|XC1K$ud;q>?e
z-$?iS7PcbHSQuHNISZWLh8@AjK0nxvO+X13i)V@<VIva+_m%A@`nvmDK{W=}Dc%Sz
zEo9h_o0tcw&NZv}tQO(W%)$1Hs<rhqYFIbj+xHFP`!0qE4Br*0l*Lqv`+A9<pNhYS
z0GWr-sVYE*{xL`rf5ql^rzZ<J{B`qw%hH?D@X@)MuX;E3m*nym1QkX(ymSv!ye&~w
zZFLX@Byjay>XbSL4F3_`d>MqJvF5M;gm92M$a79Zzm_;GVdtY{|FN7fj?gogLgcg~
z%O0(zpEuon^?BeADi^O5A6dla_Ypv7YW!omohW+MkVgphymg(>5|u-k6z&-?D*Y3y
zOm`U#UGzHidAunOCqI4l7Tb_@JH}P1!CDhJAV6ZKj+~Oyy?1|cjpL2vG7Uv>x>ujn
zvPoqin9LE8D+l{u8mIE!(KV2QHPTHPk;y~f5`6cXU-{#Z0-p{kgJ98rmE$n^v~~Dh
znXm*eWCm{AP*gJ9FrUxdcg8zmy(F~!U|zpM4$=oI{}UK=KMom?4>F7%wa~ynE`C>|
zg3ls6gCjatYQokMSP^k&Zd#9?aW`J|<r_R8Id!u4P_ql{;hm5tZZrEFH7~PgT~yIk
zjag4O$rANN;)Cu>G{_77CtKIH;gjtS3YjfQrTP$VffD<`41KGjF0#Ny%!RI6@7MuR
zLEBY;mUf@54k!knWn#dG3R$(mLbOu`k-Vxjz(za7VAHz$TNWdBj|Wq?iu1BuK+(oV
zSotYiEza?(=L-_i&~wiW;xPQ?@N&Xl&##zB`H_&w;(CQsR($prF&lx-{Uhig{Ur2H
zS2?Gr8&qmb94U+Q=+x}Z;k>Sm9Sdy_<+s4>c%DFN1WmiN4Y8i)%835K#KsIP!xwL!
zfHsUOwQl)n9e=u=(_VXWF1zr?-8w92r|X267LQ9zmlQ^wkXqRdxXD@Ht6?jn4OyT@
zPk9pHB*JVMeJ23Osc3?fCRokBT_|C-+=Gg%_KW+Blm{9Qm*z!bx*2@Yj_8zzQ~$me
zk*l^TA)62P+x?H(Q`yd0``P^|$4TVY)pfAcHqL5f<TTC!C$B@<UWuA!Kl-8RR9=ZZ
zx@gR0>P3(fwZ`rHFQ9M%O^#?kzdNF&AKUi&KcSeC@^?d)@IqT2?(+pAG7m?1x$)9A
zokqrW(OSqg)lK+uTydM|oaAK_EhS58c%z}IPI!z|Ed<xJKVE?=mPhj?g365LZVa4-
z&e!V%hMmr24Bkko-Kk|p?U?%RUg#Tw3n8!@iBzA(d_>|6if69^gt?)%<VlfWYamao
z?N!~Q==XvmcznJGrBK@Xn9%YyGei&8%a9{8R}PC+J)M;+>L;svhKb{ohqH(0K4wu2
zIS;>tPP`C}f&>BFg>yj|gYN8bCZVn&Pv3tE1SXI%5s{~(+^fwOV#0R<9kB&?9?@Fn
zttM!Z6aAe&K4Z}4D8!NDED+SQexLrVp(L+}T{6(>_zK#*WOz{ki*#*16Up+_n<*@k
zZ+>zwRU5`-&W64G{Tn&J=|<3rP%roRJ!CZ|*qlIBJ9b74-E{E}i`UPOv#CsAtI5j3
z<<%g3HSknDv|!;ioyP*{g8BryY+xPDxOyc7Q*_ZyMc;eOU-{LP*f05hXS&G;y=n_g
ztU~-;%q%}F(pMw2w3mjAu2E3Fe|Or65McLtznU*2@rC}uK|jctElm8{jp+-uRLDg?
zhvNxe*`X=xgz`YNC){qNVW4Q9kJ{Ns6MFn_qi|RB<S@TwY=v(}V>h-_mLed!WO3X#
zsy}h-l+4wJr)*8z5!a3s&zq33B;82i&K_~1UlX!51ykX?tM!9M)=I$vdxGmRzy0td
zqNG$%2)R&myS4})0DaeUsoQTu0>F+(Mj>o`Y%UaF11xI4r`hvn=8HF+DUsW&9U>t1
z9LVbj{1xUZqzn4nr8L4;UbVUb`|7V-m~&U0`4XyiB|DvW*5bz;Gry&mCSYKqzLADb
z+EFyKCa;W(gbbkn^LPttWa{bk_S9;`wvY<(m1Cu>`EgoKF9M-dsyZ~~ngXBDoiY+!
zTm${B*vuQ*dG=Cc&{8*=(&@e;|LeG<a`NvZ?P0}7QNAPHiS$;eW=2F(;dt1;<6>-s
z9mam{e2<^eS4sx#{<BMpA@FM2>G7SF7CW!58f}2EVkOsD(oMt?N$*mIsbNRDY4Its
zGiX?cw+56C$*b?$sD7<hjD)Ab@QGyZ@bjh0eHZnR|H3I9na?q~J}Y1G&;POAyY~~J
zvlia<Fd(5NcudFSMiLCVFw8<N!x#3-3ZJgQU2#&dV)%&L{rwqP?y4io=XIsEs=;6D
z1JHSQN%<SWersLT=$%>Yy!f$(`!B%E1f_Psu9bRDKnBy$JsDuTeFHBCTNvT_wWAfH
zU~yL;$h!M<0BNf@eR&2YXC_MzMn2eFH5=hGWO@*pEo|+o?42rRwb5~1?mRRfCYA!4
zg4t<I8XH5HN_O;>yRPyI5t_6Kci%CMw=?h8YWE^i@YiaDY}$mxnN#z|w*~lXKOwr#
zwzM9dLv;3*wtH&eolQ;^x!rxQLm*OBHv8qYQ5(&5x;7qUtdjEYwiB^^$eQ;hL9D!k
z2KH-x@r|?#Rpf@9UP1*o(X0BDE4uaxmk&9?HCxc@-L9nb@J&#a()C{y;$PQzw|&L}
z<HN`9GJ*9rVsp5DmQgsQabg2Yd%8|rpO6kl!jTDov}aL84sZlo+TuPPQfEyW^zVpb
z@==YH3=k31RCi3A1d*K%!4GzItX@$Av`5_Ans+wa1qKP4hxIy}vcj>Gi_K&B1_?e#
zFQe2|hRwK{-Im@WMO-#Q_&2gqnea>7I+5($Yh&2ZhmON>?H^aSopJW{V!<J-7_O1X
zt-<3TvoEamrRH?x)Eg+-qAw^+eCI=B&t}{6MT&Z!d36wn0V`qh9yao}ck?8}?^~#t
zsYrsc^JK;k8J{329Tjg5?HBhd;1k!EX!mUOs_<_S2P7{hQ_+(v9UdIAXeUUXO7DM5
z7jd@xHc47=GHWse;B4JXsEZ0E(h|Tf@90k!f8-Zj8gT%e%#rJz1NyFSuLW+zo!DWf
z6jaK@9pG<=1W(|-<3mp}-RaMu6t1l>cWc;ijJ?i(E{|_`=Z?KJ|H=kWOIMU?hIuwG
zy>d^dn<n*F(+vOZ5W>F8F!`#p+14&y>*YjYA-pbhDyD@ASJLdkAYb!F?^D6-T8}+i
z<_tl|OHZqqRL94jbXX=1%QFmMM(y^lKCb)8Vo+vsmyC(Y->=D&H8Fzj75!uCJb|QO
zrZ)78$T=b0uz)8nb$a0zEa479h(`8<)qy!U$IcBXT2mI&OQV5Ft$bc4F1Z?T@@#!R
z9d#8uMrPag#>YFzviQ>>KBnhB0<jp@{qF*TAQ&C;`K3|%LHp{y3eie)k<=8xGeLa1
zoeX(Sfs2&6-ls0CFgDv6VT~J`E`}VJg<7i4iN>}OWiO{nq5HdrE>rszVo&rO(RBwd
zOz;9p)ex0UDY+g!)nPRnH(55{pwz=^IqC0xtoDlF3yHtU7<%8O9Ms(-<Vu!K2%VW?
zH*c-Uur4)^+$kj0Y<;x)&$NB=D-C|z(PKKMA9;rZJWmb}x<^Z00&V{Mq)bayk`emm
zrQNizj8Fwg6m@P(WO9ypps1cDO|jh04nzCUo@Zf27?Mv^$iZ-~Nt{cRjNrz~uHNsY
zj)g{tUFrO;45?~<WX1m~Woi$S2fQ|eTv`dLT(#QWwWy<|e34Bu(WvZ%caRZlH12?`
zRPQn#uy%BBj8mdghoU~x$o$MJ8o1r;{5#k|s;xg63gMaPpXcWX>5sVj)|ba~TZ8_M
zzVw3#q{qNd*jYxYq;If%dK4F1?J>TdtEXSd7veqIEG6Bzy`OGL+vOL-@3kZSFpyfm
zw9E`z9Id=daql9lzY~jiT<Zb#KdaReeH$+z9fkTunVk3Lj7Ie88U|roF!7-KS@nGH
z#K-@jVOXa`B1DHNGBB%;fdfCt8>|<hs`XEdHzNMogmY$2Oe+7DnrnZh;!{7|`C!p$
z$KxISJ797#yrI;*Tw$(sm+6ebm|v+-sg+OOUB(Tu;@cgj_Tt8N9zPx}5>8e6-c!R`
zUmf#2PM6>0zKXhQ)vYPdXpb{G<3Ew+RcW)@pDIYnaAtqscp5z8+fu{sM+D!!!8P0E
zzWUK*vw;V{i$b(ODH7o*L%75?+=eRZQ-d}!mThX`v8dh*G6O|t6IRI(|N5$f`CL;L
z4V0m&u4<q714$y(9IkSV02SWIT<PhBes33MP5W3u#yP(1fKv2j!DfrpqgbqnHdy!k
zPc8E@!VZ7qM@#xzevI5|9)wB&7OyJl_sxD<vuW@xLcD6w4VxPY){Sn*FNi+ey@?I1
zZ{TLyFC3fI_K5w^oopdY%Kg2W<&w+TH5i8hhS6+vvBNMsJdU?AW#dNd*UP_q#gvY8
zW-1c1ei-Q3reyStj<>E)p6L!RRYPVhReaG;o<!yk4<%;Ve|DCSRRtVCiT1<y&Bu1m
zmL;htGA#_j+6_NL)xVt<|HPqE9`%e!@%Hg$TQ3?w5v7XQBZ(=M^N-Rf_2+xiV%t*G
zq@*aY>xK|osL=5VsraH-p5G_b%Vk}e-f~F0I12Yrb^pYzU@n#RfyPL)3;fQek`RT+
z%si26-I$)<*4t$$C098qoxh{=)w>Fcsvcb71XiTR3V5hjCT4fKV7{{kI%tuNmo^M9
z*IFOjDdP(PTs;lH-yCO3gyQeS!C;uz5ubA27dOS?ie^`)ZJ>J*9D~s@Q>bILUMly|
zou4G7t@(7qa_zq1rF_Zv36Qws!^#xOJ6v-o$BY+u2w)_o`$oxhCrCMWSB@?4l-Hfm
zE*e(VkQhB^UY?S%d!BC$>MaPH_D8kT1mrQ&1uHyj_WU7`qE)VOGiY0`Vz4^5H*Qi<
z4OtOdcGi8qt2SaG-Dn-s|00R4NnYX9#E?I8-zuD&j@$8f@lufZ7Ek8~>kiLLrw;Rz
zZryMd)U{i2W*C{yRGK^fbuK3tM+vSWqE3sDyz<yhRHMT}hGiyzQ5)?hlvE;TWdRZ(
z`>>yCxwC|I+eFegcl|!op<(pT1z==+Qw3wVAwZ^-F#Psc0uU-ZO@u(MA3A_bp?wr>
zJwF4tDf^Xs_K}UUSUlb2jHoN_(dW_UU~#aNV{AFBUyVeLGw@c1S*npx)x5jCICbx%
zbB%r}j@D<f$ZEY3@1(9Td>FhWBfo+z+~I-t(oTWJeS8w~C)^SS7^KzT3tNn9U5)Ud
z8aMMA@^Q4>T&FA6V7vXY3vK5RcCeIc4x9Z2Dq%?U$l&;4rE=Q0OxxkRxbuVA*}8KX
zclShwn=FathQY@H7BA~c)XE&BJm&%^Oz)TBoAVQ#i!nyENQXhKAtN#ZK?$i{;H!2H
z@59M#g^soOZ*m?&kXjtOCSY(o$+(DpP!$%8c;YRHsQF3rOW>saXS-Toygd;3#wAfj
zeuB39WYHr2r;WpqaY(uF7f^6_gAD-s=T%tgvKIpQKVzPuE)$f>Zbxyka}OYLEZL%y
zXJzznz`*YN{pz=gks?|pNJG%ZV$JCasx$2++&if5Z&vE^J!tg0P+q9f0TkcNIa0DS
zCND}9mwh&&uUDatH$?JxBiHki$T&$e&(*smrKE<|_82_9PY~dwR$66_F*C*vD75*I
z?l2I@E2)GTKJR8U1`QOGY+h2j1-rTkBX!2M>)tndfXi9_G}}Y|+CdaZLL_XcM7HIk
zXl_6<6l*0)Ba<d?u7$B_gtJM(YSmM?>V9GhxMul`8JMPM3R24@G)I3-DcU_G@!clM
ziR?4Q<$mK$LHbrQ^k1#q`9Bkm1IKaFK2kZ#Et<0=q$K)Sle-)lNn?bKQF0_En)cC3
zCdZcCX^vQtJJ;MJ<lL4VWoCsMJ}ft5`*=LQ-(NnD$M?tYzwv&)AFruxLb%cIdUsqw
zZ#Nq_`y(_grsX4YHttN9!$)ooEFC3SWXX#qCNTv0*PTESL>2$Q>n>(UhWk_b(~nF;
zd_Z*lYW%0=?cdn!O<o1>;<4Kdu?IuV3-!LQ8Hu7N(S)q)Z@+o+NZgsN%(%llk|yQG
zF`=nj@h=HbeLsywFwPozP3A@Z<9l8+@Ch4T<J^%+EVaq4p<Nv5BCVxVA1NkFR998I
z1bCPE^h{7;yf&@urtO$Qesht8bwqH-yNAhmd>U?|-`QgStM0j(hlJZ>_<lk2?GJk%
z=&kN+CG`jtrr=Hcq^ad-eg}!ws!_<hzj2Ebs&j}(UTl?J+^@nP55V9dg%B^wy5@qN
zujGZI1FxY<iQ1km^U6aJl9RwzSi}!k(jes3q@hqy>T3A?Ud4rsEe+Hy@y|?WnM_u5
zc^ZP&bM3vA=i|RTXT9kg>5l8}4F_aulR{ANQps?zlPiQ1<tI_An*)G(M0TlsUlvQq
zZWL`W%j`A5&rY*N4xPT)f2;OzU@`coDJ4qUdZW{wD~KpspkEre3l9`sp_olqo5SZv
zj%2TwTbgr2BRkfAaJ~;!F1vrw!va)nPYxH~lCGV7?}aqzYnpIY?>te!eZj2cFz!&?
z&g5Qc-^KwEL{HZnWBrpt1|?B#bm#ns*Hlld9l_x;<*K<Cz=0Gd-cfC}Zt3@zcx=z-
zU2uZj8k2hzCX);wpj2<Ju4u&R&}9c_2X!jYqgI;_T<7Q!flR}UI<}OJux4db?T3ii
z>b+xo7To8}oBUkv4qaFTnB(#66LY~l2{Q8BzMnPYAz6lcKcoIVSF^{$-Cgzlr7rIw
zmP1}^^egCZQ!}OYODNrt@Jg$DNCkT6!QP-y*aO7Z*;2WYVf&1BqP~OP{H{v9`=WQ)
zec_1u@hgz(QIPg-6XQ8heOPL$r)~kd>v&<#j^cJ=Fle!YP&|Gy^)b4EHGS4}rR91h
za$R{haoOg$x?<C^91^umEgkHOL@NN3iOEu|77U~AgjZke883n~Wf=qd9v=wl`<8OU
zXfwAbPxB<e0b1BY4H)yC18W0mzcNX)B9Zdt%>bwTp7xaUyWH4oMI61^+fdZKTfD#j
zjJGu>?hg(R5KsTPvp@a{61yHeI^9^bW&{YDT(ed&adz>EFT%=t_jY@*+_zJXDo#hf
z_ll27cx%*hg5>+rVXIL?)j9a9$iST3YpfU13lM09KK$LO%ElV9D;*?Ct`f*Ck0?HP
zFsvQ>leZ`^d<qD9aPHx1cC$i<@yL@xd~jC29Vl{Dpk-sJeRK%upqc`O7{rWwHk;m^
zO>+1d{cO-4<gJCaAfzPVFPm&`Pj*D}1uVM#E^8P(dxvj*dev0BK1brQaKI@jnT6#o
zwP!_>>=}z0pj;GNU*@B{AoK%EGjy{Rp!OoaW9n+gwzsj7Yw9|wf}*2TNh8E1*_y>T
zU1!aPbd(jG&BOTBSM>hjP@-jp?o^xjxiLB_YwAtwK>#W<YuGCe$c^n^TPTB&r|dYf
zWD6UVD+dp)&t?89r?on|a;9)T;nV<#VMeMkDZcu;gk*MHQ)}p78Y91qeMMu#g2iBY
zU*0;(s2PA2ShU}T?HzmDN+S9X?~%@!87tS_jri&miJdmtx?m=<-1xxZ&%)w39N<oi
z@ezGt!`vxTUcifw2^?Nc&+|db#O2g7<d<TyXzYa#QEZcy;w#B*WDjA2i}LW4Hb`%I
z#ev$^{2q6UASYJq=57=v-9W*g_O;Ri{VDEa+W(~HxSeC`mv8>x@=t*l?D5$t&v%+s
z{Vn0pi!RplgN(C2ZO`8R&4&It?R=N@b{<}po~o>)A#%}DTj!kZa3JmYQp8G30pJ;4
z5;KJ==2$emQzADrg$;6g6PtbP?Cc5BZ3pLmt<tl!-qf6pWEl;AF^tf{XM8P~G0vgo
z=NaBrR}4K=g&*1|t#lggYQEsc4QsD(L{LitJ;q)F>$dkHQLj1dDQs6wlkyK6d<qep
z53gytaiiuqn!M4~LqkyW2(sFpu14F8!-^PuS@6JFUB(IcI<=OXo^rH)r1%*%pqqdv
zG1Yw02Zn<Jsj)RJ>Q0A-F{ERYK_e2c#m-Ip`c*}1A_3(6VnJp8lX)g!AXO>+DKqEj
z)qV)SRO~^cCBkU@6NExfy9wDZdJ?X)@8oa*O;9K{fl{HOG`_C=MEON>c4M-#vxakB
z4h%k?_0fOkc2bzk^yd{R30Py^?n5CxRv%7oqD1<&lBMorKStWyrQ0zRt5PHIQ$9bj
zQo3K}3Si}6e@Djgt*gl)bE~EFv=ZCT5x?7ElZ77HNA+PJ*4S|u?2l1CDfSEuSU-wU
zd<ETSJVfTO4I~g<*V_Dut1;GFE=DBN;pV<geLWXU0Zi4hU=d53Y+TrJ@v)lP_<R$h
znIIHWOjl@T28i6xln?M7uMjAUsnQc}AYayqL9DrP*yjY)x}#(6VH-QxXL$XhDrc6z
zHdbtw>#yQg#7pGY?t|_gyOWs3w@wbUrs!75nvmMT9S2`78=oeCxul?rr7~_jjl1rh
zwK_+ihhs=@ss>i(SB4~hRXe_cIcU?$OJ?{@Whw;nd7Ciq&Uu}0>3;mf!CT+DQ(3EQ
zAELe@h5vGdpAeV=fa-KFB|l1v12~@TQ-72lwQX|D9o(=ZbccQrK_q%u_a}+-+Ypgm
z(`)+k^YreK@;yH#R}^n_E^*UxiyNdA7`)1%YH<!R<>lh&{fck{w?tiHBzXzZoo<q}
z1C;u)Bq@(t8Aoe&@MGmM34KYaU<P{9#j1ogYWT!I4daxCnTdE2ZD>+uJEq7D65$4U
zdyd(egHufmH$9!Eh`8dNV<M4}{J2(OvmWOBMZxJMIW^k@r+n>piF*;N|Hz@yzY<nd
z`><ucgs^YrzQP{`7ET$NpZr&ks9^N}+qCk4{(sX}|HI|}1(X6iz*HBZmkyz5>Rtd$
O;Hu>{i!w8>$NvC!K9(f_

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index bbfc235758..458bc46173 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -131,37 +131,83 @@ If you want to check how the ticket shows up in Intune, see [Use Intune to remed
 
 ## File for exception
 
-As an alternative to a remediation request, you can create exceptions for recommendations.
+As an alternative to a remediation request, you can create exceptions for recommendations. Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md)
 
-There are many reasons why organizations create exceptions for a recommendation. For example, if there's a business justification that prevents the company from applying the recommendation, the existence of a compensating or alternative control that provides as much protection than the recommendation would, a false positive, among other reasons.
+If your organization has device groups, you will now be able to scope the exception to specific groups. If you have global administrator permission (called Microsoft Defender ATP administrator), then you can choose to set the exception for all current and future device groups.  
 
-When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state changes to **Exception**, and it no longer shows up in the security recommendations list.
+When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state will change to **Full exception** or **Partial exception (by device group)**.
 
-1. Select a security recommendation you would like create an exception for, and then **Exception options**.
-![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-option.png)
+### How to create an exception
 
-2. Select your exception scope. There are two types of exceptions:
-    - **Global exception**: Global admins will be able to create a global exception. It affects all current and future device groups in your organization. It can only be cancelled by someone with admin privileges.
-    - **Exception by device groups**: Apply the exception to all device groups, or choose specific device groups. Device groups that already have an exception will not be displayed. If you have filtered by device group, just your filtered device groups will appear as options.
+Select a security recommendation you would like create an exception for, and then select **Exception options**.  
 
-    Some things to keep in mind:
-    - If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired.
-    - If a recommendation already has exceptions for specific device groups and a global exception is created, then the device group exception will be suspended until it expires or the global exception is cancelled before it expires.
+![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-options.png)
 
-3. Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
+Then choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab. 
 
-    The following list details the justifications behind the exception options:
+### Exception scope
 
-    - **Third party control** - A third party product or software already addresses this recommendation
+Exceptions can either be created for selected device groups, or for all device groups past and present.  
+
+#### Exception by device group
+
+Apply the exception to all device groups, or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.”
+
+If you have filtered by device group, just your filtered device groups will appear as options.
+
+If your organization has more than 20 device groups, select Edit next to the filtered device.
+
+A flyout will appear where you can search and choose device groups you want included. Select the check mark icon below Search to check/uncheck all. 
+
+#### Global exceptions
+
+Some things to keep in mind:
+
+- If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired.
+- If a recommendation already has exceptions for specific device groups and a global exception is created, then the device group exception will be suspended until it expires or the global exception is cancelled before it expires.
+
+### Justification
+
+Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
+
+The following list details the justifications behind the exception options:
+
+- **Third party control** - A third party product or software already addresses this recommendation
         - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
-    - **Alternate mitigation** - An internal tool already addresses this recommendation
+- **Alternate mitigation** - An internal tool already addresses this recommendation
         - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
-    - **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
-    - **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
+- **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
+- **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
 
-4. Select **Submit**. A confirmation message at the top of the page indicates that the exception has been created.
+### How to cancel an exception
 
-5. Navigate to the [**Remediation**](tvm-remediation.md) page under the **Threat and vulnerability management** menu and select the **Exceptions** tab to view all your exceptions (current and past).
+To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception.
+
+![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
+
+#### Cancel the exception for a specific device group
+
+If the exception is per device group, then you will need to select a specific device group to cancel the exception for.  
+
+![Showing how to select a specific device group.](images/tvm-exception-device-group-hover.png)
+
+A flyout will appear for the device group, and you can select **Cancel exception**.
+
+#### Cancel a global exception
+
+If it is a global exception, select an exception from the list and then select Cancel exception from the flyout.
+
+![Showing how to cancel the exception for a global exception.](images/tvm-exception-cancel-global-400.png)
+
+### View impact after exceptions are applied
+
+In the Security Recommendations page, select **Customize columns** and check the boxes for **Exposed devices (after exceptions)** and **Impact (after exceptions)**.
+
+![Showing customize columns options.](images/tvm-after-exceptions.png)
+
+The exposed devices (after exceptions) column shows the remaining devices that are still exposed to vulnerabilities after exceptions are applied. Exception justifications that affect the exposure include ‘third party control’ and ‘alternate mitigation’. Other justifications do not reduce the exposure of a device, and they are still considered exposed.
+
+The impact (after exceptions) shows remaining impact to exposure score or secure score after exceptions are applied. Exception justifications that affect the scores include ‘third party control’ and ‘alternate mitigation.’ Other justifications do not reduce the exposure of a device, and so the exposure score and secure score do not change.
 
 ## Report inaccuracy
 

From 2ac3759958666b852e4faefb7249af4c9a608c19 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 24 Jul 2020 17:05:45 -0700
Subject: [PATCH 004/209] more images

---
 .../images/tvm-after-exceptions-table.png     | Bin 0 -> 19211 bytes
 .../images/tvm-exception-cancel-global.png    | Bin 13617 -> 0 bytes
 .../images/tvm-exception-device-filter.png    | Bin 0 -> 20259 bytes
 .../images/tvm-exception-device-filter500.png | Bin 0 -> 26234 bytes
 .../images/tvm-exception-device-group-500.png | Bin 0 -> 18628 bytes
 .../tvm-exception-device-group-flyout-400.png | Bin 0 -> 12506 bytes
 .../tvm-exception-device-group-flyout.png     | Bin 0 -> 14781 bytes
 .../images/tvm-exception-edit-groups.png      | Bin 0 -> 2004 bytes
 .../images/tvm-exception-global.png           | Bin 0 -> 16485 bytes
 .../tvm-security-recommendation.md            |  26 +++++++++++++++---
 10 files changed, 22 insertions(+), 4 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-after-exceptions-table.png
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-filter.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-filter500.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-500.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-flyout-400.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-flyout.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-edit-groups.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-global.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-after-exceptions-table.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-after-exceptions-table.png
new file mode 100644
index 0000000000000000000000000000000000000000..f62d8f66b631c3a4874273add18f989c89e8d1de
GIT binary patch
literal 19211
zcmcG$byQT{|Nf11r<9Ze64E6N3P?#PNF&`T-5{OPogyvW-JPQ#4Barm&^5pi&%yit
ze1Feh&-$)seSWi+&aAVR=j^l3K6}5f>ve6zKPbuIU_Qe{KtRBela*3IKtMtVe&3^`
z0)J;S&_)Aa7+++yoDdLj`yT&1Nn*jJ01l!#%PGD?+e9NHC3^~?F9}9Kc#a?^_4bo{
z=Khk8_os_2*n<Y49bv36S~z~BT;C5PW4liuB$yeh3NA*7Z5yZ4V}oTE+O3}D-c?tO
zD&m9dy{7vtohz;1`|G10s<@RJH;iD0GZTLBU*wDk#w15Z!sSE^$0v**yBHkH9HZxX
z(HA7w1HX1ZcIPyo7>8sELg1n~M=&oXiA<#;B7(o4=e)B|!X7`e54p&1r5-=n^7wzh
z`@a7d4sg={d;Xy<-cyL%%2rY!Cp#s(Ueg<61;kE;a5EdtBRl54U1uRLw<KEH9#WdK
zQ$NbJ{Z!5#j(Q`w5gDHN>rk`-m?JYg?UK_PS>@fD<WF>C$}iiI>W8u!{V_(;D8k%v
zb{3oM;)zb{9i8iIa(WlCy@PEZ7Q1@I)07lA)Hxn+$TQ;(>Au=XMErecf2mp#@xlzh
zhwY@UuY<W1XC6`WrLMrxXa>cV(#(<=|3`CJ`*>{;(Ur?c&}u)!B$XdCBzQaRc74JS
z;nw3QRG|${5ruMPgT~<}mX)(4S_Xa%t~JNsCvhYql0Cg0tzO-!kM$gp?>61|VlX^B
z=vh!&F?_@bXY%Q{I`kG3mUm<-ZXOHZyWULR8QZ}t+ooi_EN$+8vo)-x$71^u?sd4i
zx)|DKjD${SwyaBdulw!5Duf(a46JI@vsIZV25ztE)B$_TxMDSjixz9N)Go6_snC)$
zk>d%Ss%E`38&M*an|J49mIY-HX+rnP2W4;L7zG7-guOtBoR<}y>*l1evx)xYS>G=g
zJGXZ~Tgs5ipXzSUe@WboO-y}b7fvT|0!uv-Et<~!Wer30->ccfTk{uQAo_Y7r#IZC
zs7h`w{)c4&wsXycuJ!KI_P~V^)1Bt6$}6lus-W|<bZ-(BDbu8*>#_yk-MA3R%%&4u
zyK`?`D(Sutpip$`D^HdOv(VI`)gU()`dXv+FLnbxX_jcGxHK;At;#b-Q)}DsRlk#4
zMKI;)$eZS3d@<O)!>=GD+6|s=Z>-p=-b^n~^*L0It}5jV$qDun!=p1Y@#2>lTk7?I
zJpZD>5&Qx{Kz^p@Mgnn#S$nRDEx25*;%xDw<Ao8_)}eVi)ywvCBs1`km=s{m_Z%TO
zmX#V`K{0}1O-pCY*w5I%km!nHwtt5$8*NUF91cHQn)6od_#OYJdipzbH+yVqh1c7Q
zd#vCIVy%in9X9E8-J%D#MqY3!Lk@kdMg?>@>VO0@>Z)zVyl=f7=g9b1j;AI){^0M4
zgXZXX%Iz(+D$9=n@XX`;rKLF^MKQU^h?1fAE_VZBkZ^lzr6MQAo9HEpiaDc1auhzj
z!Ih$ZMzr_e+{oA2ZQFcHqqp9|&#5#WRkUhrQ-i7erV7n^WWF8W?031&K;cykO1$UO
z6EKaA@;=~N8gtqS%68$?e%FUSZS95d_T<|cF8@(q`-65WL7Vfm5@Yh^YQ8^H0Tu;a
zP?3{p5OL(gO(~SSTb?{}2_reDX3*{hSoM<ro{r;MkW{#GMU6&B-f<qhQ9i|meVlQ<
zA7d`+zh^6c;Wy|=RF!^5L%QL4@I}!}e=zHkhdawgUbs%1pMZK>w5;;ULiP4#jNzBd
z(QcQI+T((n@~6U?omrI>58#{}C)}O$h0dw#MjMDhC|fYfNw&Mt@{wTGrb)FW#A^E`
z!|~#KDyZ(Q9(WnPb=0!!zOpq{bL0{Oz81RhQ@p8UEPG1tY2-#lBO~VvcR1B?_0adD
zincDgi!$zB)OK}llD6;64c>El;(Hu9D9B@_Quz`MLBMPM44fsd9OlO0dEedy0%o8r
zxL%aowuW$4(TaOdn*ITBq$sOW{P%tPR5K_o=Q!x>0`&Rp{`T8cR$-3s21e!Xp}oGd
zkGT!J-)ErZ^MZp=)-;CzQI7l4ZmUV?f%kpO83cnv0M-n#UzxCkK$Y887a@y~F_`yJ
z`w~dsZM)N<<?OXjvTe);#6I(NbTBsZ;n^Q(qnl7WXahIO>DR6oH915sbW7ZC>Doyg
zQh3gO1igS@WOEzm@QCNOV;^_0!`jJ?)Xc708-y#SV7EKY2NX6FEA76;cN-;H6B=SR
z51Q~n+liWi%7)6jr4G{ey-?&z<EuXC#MFe(gg3~c(l__cs|cDd=k1_hv~j@GzEQvF
zBPz7uSNqkplRw9^7f!h&-E5}|hi6{vZM_}z9J0T2Y3A-O^2MyG^o4Tzje2!B9jusw
zq5EH!-LA&Hp@;03)sZ)y8}|oZ)$MwhV!i_n-W8UWP=PLoeO*_u@QSxj%vsdQ_1Ckc
z#)TBC#oF=fR^u$Z(Kj3ID{ws<@k^lhf3*9aiJAFVh}-KyLONGEbRa+N6ZIfJHMD-c
zxUZ;yDsj1LS5Coh6pk|=?m@K^@ZVzgtDZlM_c^Z0S>|IbL!p&7C@|+0xYEN(6Cbr>
z$N3RFOZwvX;^sXF1yb?NUT8%G3aRo&X&35aVs8wq=|kQ&CH|PUot8d~YTO~9QuB&Q
z*sxzcQO-4KIJM(B-s|kI=ex|D;z<F+)2!iWRVwPAx(k0G&$z1#IuYY~v2B$Z6$lHz
z6idRk5=OQx81oX2t4-yZ;)`+d;v#<6Prv1{t!Nf38ja#%J*SD}aH2kfTTu0!@YuxR
zlB#3jTwy_LEWOXD(l{Z)!<7MxbPM09+_@IdqJsU<*)8U&M?vb8klVhOCouw8P*!*K
z(9a$?z2vL2v1;%{Rhz-+X<dgj0S`~YQ`iwXzi<M#aiNJiE6jN<J(Z6??KBTJtkS6-
zw;3{$iW8k@8k+)sr_tPK(ILENdq3`rB_4r1ur%Jgv8X@ic5>R!d@Iyex`l@1CmA)V
zCCDG@5pG&GJ1OSOAjknq1@VdoZ`#&V-gLp-GbTwA;#4DhLG_zg-=iXaOw$wB+cO)x
zh6)Xo?!(NM^c19B>p_ABfn8fSbfub&bC@R%nvDyoXJHt{SXE-^ntm>M3Srrc9my<g
zUbkR-gftU4%fc<S<nxXVdo$BK<)x*5F~Z=7n@(s`dyM`fU8#W+mBJu2{jwz*iBe{2
zGZojGx*tiE!reokuCs{+F}0`HX;CtYopLjHulm-;VYLYr=m(K?A%?<XE_#S*b4AgR
z)>v9io)5b?I44kG$9ZDSOMDvVH`m7l8es8;R2KFSWl*iRH1T6PD-C!aq{JYAS^KI@
ze3<3JOH9ft8L0fgmaEnbuMI>A1nfFZQ{bMQ6`fa~xElhYEkj0zN~}8Vp-&Z~Ufx)Q
zCWWr_fVTHdo0}8iQ$$S<H-=wE256Q=6r}bjeR&y<Pxiy_VQ%=3t6o8COCE`7P3|k=
zArr}Im6egX`)L_nvoaX{3%$akFDA9bOu_pFORY~bn@3=wD9@uuUb(qZ-gl(<GICQn
zO|!BJdT17sa*x7W)4jLnNL01d!mKUcLNdN}En>(5D@?f7JxF+$v7;-#HaV4T`jd2v
z-Pr3(12+Cb?}P=m%3ALoDic2^!VQbA%a42<G!dI~H1A-pzre8*;7P>i&8jN)1*@fY
zBlgYI{h5;QH2t|rYV&oziTmzx?D(er>a8g{6KeHU%01(1BfP&nvBEAp@SS_+3#X)B
zz9vz&$?gNG*c+~Y5pbvqaXAV;nKg#N4u3`YAF@ol-D@(Z>c4kQvd-+7&YUU{1k?CI
z@?E@0v98+9T0tw<PJGn2F{9;$r`$M+Aw#Vmm*Hj;zGiuQA6TNEfs7+NB;9G+L|Zi;
z;%lZeQJ|%BZ<4{YRYoHs4~;sS8i{i9-jvK*{bgs*SX#L7j2Id!S=bxXakO4r9enH?
zJI@BQaVPI&nI0I|S;>DR>2$3yU1;nKJk2_^H;SLDn*h~50p2pF;>3W1*vabe;hFuE
z>b1YU7IjQme+vsM@TAIeu$rRO>)9%B;|oU5%U;%nT#15pqiq%pMFMMnPu;8&bS92m
zq)`g~WK_8c#T*eoW((X_u<vW&37M5eKof3g_LZDEe>%j{5->s=5Of~u{@Rq%9FHn*
z@0VqhF)oLxZyxv|b^NPg<MCL-(*`@a+}pX!n#P_cv#u5ozOk(SMBKrJk2T4PszwVe
zzLnO)yn-PSN}Y<UH7n*7sV1*&`5TOGm;Fawh-$aznRrrq_9x0y9cp=m|FAsS;}D1c
zjx*PG8_iaNZ&mtYbv<zPf$V3h4?`+ozxD5E1frt{LBM6)8zs;t*9307DzKlMZM(Ve
zdj0;gN2V4U?Qj{gE7E%9Ye%!@c4-~Z3B~J#WCC-wwT#W7FpU?RjM>1tc3x7=4|Wnq
zEO#YT!sGOMl`8btpNP9@!Dk3rl~WZJ<bD@Ys}xt!F7JwJSPX7=Qya?=L0rNgN8{d{
zh2R+PkE?n-U&EzN<<3=(N4k0?ivCVZ@3VNCjV2xzUb&Gqdn!YP(bBDVnVQxc1{>w)
zmIUrCSsMtBkzq;-d@WAgGa3ohbGa;hrC}qoL{CW!&(gt3Y6HOgj4gMzw3M!uX5x%F
zDRpzIwmG5v9K*njft+V)C7-yaJGrZ^Z@L0QdVBXL!ptm5?WQBtsWF{(Ze4V|o`ZRT
zNK^9<wY?`EZnZ9z7=-fhjD=9ce)1MMz9yo0?DL{;hi8uUNr@DP{7cIW=<RU!x?mBv
zRvd)9Vs)uLeK>?==SNaUqCy>8OuiJD!#MG+hjm&?Dgu2%T+)6zA9q%ghv4BZnIx<E
zcs&;f*NZQsrdP;>gcbd;QjIDzUwCZ7W}8M@tu5d0x#?8e7hdv+pv18r5%Tz=Kc@;t
z0nnSFS3kJNk(~vWc{Hl)IoZ4F>k`YC&ss*e-T+Iwsx~!?ql%n7a?VPIK<Cy?ygL}D
zE3Qqu#_4X~^;YGz0#FUdpUHE<OFIjXc3Kp|lwW#!Q5p0kl6>DkSt43-`fY#rdh{qh
zyGfX)m(?og;w<C(&(dM8i7(Uw?0Gx$Ks7S{W)LJmgV^37@McciJo3d$wk~eTK}Yz3
zakFR_82k*V`5v6uCsyoN)*5*yHi0?WFw|N=H{X6KHEv6sBtba~`p|+q_Q01>BN|EP
zQP5{d`^ui}Y)t)?)17Y7lS2%oX(D`?kwjMGt1Jf>mogR+Q;ja?r9HlUzBFPTU2x!r
z1vq?Y`q!Wz)42c3qOjSXiKS9n+HMm*$Om{>HUZ|(bZ^HPGoRpGw!oC>OuS~K=0j|i
zJNw4iR>6i|Yo-25v5tGnm)HBL9nNo3s=G@Vb$eS#kUcCsD{;992?*jU*$?A1XLgC_
zG=}`Q=D4@7yu#EfgjBU(HC!X@;9Xr1sXLLFpglBCiygkjf0WsA{!*gow2vR74*}2r
z{y=^CUpzo|+P|C79sQ4fzX``Ln%c#7#s7PqNpXv?xW5XYEb;l@@36NR0ss92hC{(v
zqybccf6shQ^g^j<ihTe1Un3#k?-xGZU$=pa>7V`}2qZ-Q?;XI#a7Ey*%DlD^5A}QS
zs%YJ1ptWm@lfxS`+$sLpjr;zw5uV|m_?r=wUe;Kb5m^FOm(@o(zWvq?7@B?;oy|L6
zkcD|4+p~-EZ@W!aXREImqna<&845%Yx~@TcSLfgOuTH0oGvTB9=vXvLJFzc<f<t+n
z&zZC-I3{N%dxqo^nzm$OzKq6D<D61Ic7v=&;`1S5k2C+~#mg(&0fnsj-PVR}GwqCY
z3qe0>2}wb}eKI-*C3<?+s9GAov6IsS-W<_U9N6MGTg+Y9iClP4&`+Yr*5`|V40x_#
z;&jgDZN2dTijAZ5s=Eyrw}tF?2WAR?!T&-?_-r7xM8D{IOv^4)H1Y)jfw#}^o@E^E
z$6Iev#AANnm{nP7yfYLhs)UQc;A{PwsFRQ4>vpZVrHD(!nM{m>)sf!B{zK|aA;Ul8
z@@+oy+m`bCUxw1Y2Zee%D^=CT<gZ=JKs-2)ql!@X83Ox~y59~b-H#suR3VRdd!9?p
zh(118ra30Qrejv>74c1jbbPC$4>_KC=*Q|ED$E(};m!n6F8t6>kc1N9(Yv_TysPX;
zNd9>tayQw^>#k@$`;gPt<Vdb8ULTc&LW29crPJazvGIP(5`6A=qkO4vc5|<hd}1^=
zoJ}2JJ<!~F8yuIwfFc|vw#GDUDK0}qG{m;MS6{A<xd>^`qo;|y+v_9ypxB|&hRZ65
z@$?Te-;XC<@^ATl?N`od-*}id#%2^7AC9_EyLv22(HDD<@H>4k{nJ`Dc2a({Xqr=T
z)?E^c5s<XLl~FwhZMU1vOU>#02K)K*ddkV|<Nf}T;LiQFku^6<!zZBTQZzLbDr8yK
zLpnMV>iPpe8iXr5Qn>}4iTj>Vf<zkw>Z)6rn8k6s*4UsWlxKA6Vh@xt%EEmtmFiQI
z{m#4DH_EtNr-jQDMt@dJ%G`4D)TUFXDsEX1XcY2E)oba+W*yF*`0D%INAlT9pL2ke
zf0&!**;YF!*^Jj#|C;Jr69sQif6^_eLc^4iqi(RN+#osLmXr$k!I0yzpfalsv`>wh
z1=sZ2lF0$^q!5*tn#4l*&P2n%CIwuZj?GQFTr(kQ;1LB0)I??*cSoJ*O@(k-mBBm9
zIrk6AbZy5;b4#H0eBjNqyG=^gL8P%S-oi&&9Vz4|9We?DciVxB+-B%O(MG3=V5jX-
z&sBVQ8Nrxrd%~9xP7hDS4P5HgFI~HO^GYiB8Kz|(TXgKM4+gqCd)9b(d&s#7>E1c&
zhNXfKOi!#f?az*^0z!5BfK3+FGuui$xWWtO1|HzGruC^0q<oms@*@|qM~U=N=Jft_
z{05(&7gmh*XA)xyjT-&C57tEb*_Jyu`aYo&Ok!E*vakm_b1w73PU698dj5$klk{wf
z(+TapHuI8U^B1L>Yi`%pNr6-iPf3~*KB>+daYx8cw=hj=cz!_DZX`{JJFu+ci_6ZE
z>u;dy;J>=0N~|4eN)87Z^^X~iSba@bd2Pz}dgSBdKXgs5HhvC%xt^y%qvD#l$;nZP
zSa=(|^0cr?2TnD6sa|F2i)cMCa1z+*7u}fw<%_-xNJ_~mG1z{eA&1B5x#d1C^W_M!
z5LMp%nYhsc{F{Q8JLZ?K1Cd0jA`^E@O%4hcwNpL)2vZALtPgG@*RPdDJQ>$S#jyib
zMz7C!{TxEVDCjuE&k*V@KO$xz$eQ&hOH6vTF#xupiptNQT8M`)-qdn(=)XIxC7}$i
zwpmQ>8IefPU{Nyk0%<FXfnsG$lQ8JGn8pwzw3^z(Mt&AF5ypzJ>R^`W;x)_EM(N>g
zpw8I6a3ioO{>gv~yRd9fNuxk{s;X3CO~H3fZ`%-m=)xoNJqV|0t?SH$$~Vi*ZzWVr
z>X2XK<kt?u=z`k^B}^6$H>;fD0$LX0TCQ&SZra%oe3A2+)B|En(}u#xwNapteN6s@
zyTTf}s6xe}i3($MdS?nze9zuQwd_c-5v!`SOZ%jTWg%|KPzhAUQEuER7(M0UVX4YO
zKs~bU;VS@o{&fMdik8}VPBL!Zs=eP}xB6Fs<fhi0hjW!zgAa$M%UlC5=QLsGM3mPV
z63KmdXPuJ`NNt_M0dO<aA?k_!?W9}3jjKAD>t$Z$4xXUg0l!dB)3^SGk{kDa5Pi3A
z8=;Xj1_9Jdhxw0Fqf$2IKIhFRIDTHw<;+%g)zNovb1p1VHW=XPRZYJ&5n_QPb8$GZ
zagBav<L@XJV4pcSr1l49L_$@q+9~OBs^<wf1B#C#<*-KpVGs?F=E3F|kAn$!x<x09
zd-xJNFGBg{2Ft#kALmJj+S8>|{499_<^I`{jZy2U+uEvAM@gCk5=YWG%@f&7@Tpdn
zFEbKvIbqz}&5@BVAsb=gF;epP&Y^PAc@0Vn;SqAK<=rz51_dl0vE6yfdQL)C(yw@8
z%C<m7hCjjIW{QQW4JMXaOFCE6xU+XEznK+{zvcOurEK%Pz>JiSYsF-XOk96{Wv!q`
zCG`yXy$VCKn;E*KM2yqv(+bwhKXTEbF$U6IyI%;%xa}wja&p#8L=_@;>Ls}>{?Lex
z4P~68=GkR5N0f_tE)Tpk_8EkrQ)+s?DC@Ra_bFuxxKywEI{d^vds-H4<8AAX(%@qM
z$M~s|l);bjGS`bLW1cg;F-%5<e>{C$m!kSm*{I{JC1Im)#M?bDwWFO=P0}fms2qcY
zbWr;07%>kh|4<{E`6Y?Q-si*SM`EbDJZCOeLPQJpGo48rW6+-2P&&uRS-U^LY;FW1
zm_VE~(s8GaATB3(%=Lr(-fdZ(Kg`WX{x%9(JWT=VDCL$P2X-IC7`2IDfZ3>c7m$u8
zRuD`Q?fYT8zscPWLtx2tC*S@o@9FI2!nXr^Q9{W(#!%D)il~+v%T}+=x}~0$A9n0d
z$={z(Oxx^VsZ+EDn>Q3xxxB~R0<~n5hGk?87rJ!dxdK*^Tl)4oHQcf<K~A2OzqoLh
zIab3Y>drN>%ycSomYR_b$^Uo6jH%<V$KiDrFX&izM&OpX*%ab+P4A`tdRxtTXUhTS
zBlPA#1B^*jU6=C^9ba!VBCn<#Ii&XMj=M?{?>t=lmD#{#3Hh%b7gS|Je9<|zXX>+U
zM+<vZ2MP>k>l!O)yELBFXln>i>N|>8`-)LF19%>%{U{1JNX5OU{4u9L+rvNpW)`_$
zfHV!ZmKsP=zSr}NSfttf!0AzY^dWC!!Q<#wROI#a%B9%Wv7v>)Ew}QKqjJmIg2;6w
zS`!p4^6FgwJ}F7Lp3~%%-@`k%bcN-Ya|{Nv_;xiY2a;5Obi7IQ%xd#skuit!vSA^B
zYG9f;r$54_g#INWAZln!Td@EcH~PvE!Wg@m9bes%nCem*K2b676k|@6(7n)vWV^1w
zCN=(1#v#x{l8lsCOajY&(o6Y`NMbP-h-9^qvmx~B2<xihdWrIruQe)zU;NcwWA7D?
zwUsHcPhkoQZAZ*{txf{qZ<r!6^?eeb(jkQ_F1<AE%V%RUuNwBPk`<g^I<sI27k;WR
zOn4s!(i<(7dGfVsk#>Y|3DW7X3`meK*WAA@J~&PaVPRoTajkXLRHR1jTY(?Gow7y}
z=hsv-EU7h2KdlZ?v-yUmdTYc@2sZNQ<D&;p<5#81i~4a|1PNp*nO6m(Z?5`P7%hD3
z+zj7jx4Q8?l)BCd3yY#>70Ha#Zw>#ID;Y?o64Q2F{?zVaSDDPmdIgW0GAD5svOwle
zsp%LI#`Y%_wrtS$p}X8iHbrAA42tuS>YD1l03dv*WTk@s!H3xn8XKQNrQ_XoB{?Bp
zdRv*pA+IWhiU&%gZX<fF3LbXB7(E8Zmw}eNf*sF+>)v#FBfj9=OV+Uv@=5<?*o#gf
zmI<^2BQoqcJ+ee7?uLpaQf~!K=$Q&uZf^(yA&E4wOhrX}dqK+`&k%~FszRHx2PGG?
zqa;-p7O3_S1`qZV2+>DLw`RqC<p1q_$l5#j4T;fP@8jFeF?jCyaKCC1Moi|Lgx<G(
z-{OLTLJTX54c0RSgMxx5H?IQL!1|zT<3Tb4;&-wZ=w1(oC};OjoSq)|{hg9L{w+{G
z168YrOpZuC>p{Fa<l5WL+H!4ucPa>nLfXj(DOWOd)y6Wn+swG{8<C}TbKe{i8o8(`
zCYye?`A`^ormbz}^%W?pi7UR4$6P?)Enxe`F&#=l=DFm8O(B{-6G>`mYxQGGqSULM
z(NfGUdL~ja2*0NwgrnJgk2fgjm-i)WP|%m(4(UMo51foQTckhj4(`xU?@-d=Z<r_J
za1zO3A>>4osnpS7v8E=6OOFrGuJ-^<0}5+hq(6cGYDUozmcOFzzbYR8e<)Hi$F-hd
zgTa4Vbte@zwd;&3jQ&^A?b7h}$v(=C|1L-V9~LbcK=oCZVxIl;`ecf}<Nd5TZ;r5x
z&U>sP*#26}F#nYM-qWJXeZx=Z<8}3Qjvyxxs<1B5usG{vLgZbZaz({Iwk%saes^&<
zy`k5Wm&^qG(%dF}=si85Q_kD0dB(<MLY}<ikO_aHo)8=?*V)JZ2J^l|U(YLVPUG>r
z=P`fq{z|mvM+>|I4TTKP#6;!$aQJ`C%uAd#JJr3`%fDEE$Ii#QYGX~eK0wj@K?CiL
zwG)r6qN1+b**G?Za0td!FS&&Jf3g5YXZ2{Eqkwh{XmfkKl%t?LexCsx1fG4!SOLZj
z<wl1Cqa>{~CvY+ha_*p+_bHtH{g1EHdt*8}`-mU))o}zwjBhoW*l_f@ZN|tDwAo)1
ziusBFLmJg1=J7df$_M{5i^Q%9!cTIpZ5CcfcYKr>`jsnHROHm#4nyWE1jOdsr4C@Q
z4b>}%qJxW-+3XGOT*TNQAg5kYHy(!x%8tvd>wmR$fC5GjU!k22^UT8?;_7CyjBi&E
z{1D4k_VETLW0>AHg?OK=h3=0GZw+V-FWyh(APZAI4vyVW&)d++^cbz`RKK3aF?AR+
zT7z5Ub*KzLt^H@rC}m#Fo}cG!CJP``r4vOx=<8v@Ba%;4-bupq8%QQ7mlTIP%hn2N
z5-OUX#ng7%&~dP@4EcWDR%TwQ3Q1CC+t}T*W}4qhk5N53UROQzsCau3id*f|Enzo4
z_Q7#AG><+szYlps|Lu4Zt8Kya!2rlu$D+p})3DoTy0=?YwMg$Lk`B+_m;*Evb_w^I
z-h^ioQ9<g{+Y7z!?$-%++Aw*S<lh=8!RrkhW1%JbQu!$**ohSvRcPJvC#U0oWTvO^
zchlErFA+JYpW&b_)n>BOJ@kw7v|PLay>_r86~<j2D3g(?S9WR}J$g7MC$Pn-YhtAG
zcA^q~R#{ZtFRCAym24?)XgY%|V3oVt=x4IB6xmd2{t?>(5<|T)Hb`T<azQ=#el+!V
z)vbAV!H;;q>ZUyE;*m&gNSgv2Jx-$|yJ^vCter|XhdWMBlWPBY#VZ*(W-gtdB~i%W
zqb&Ju6VTBS3E)frEI7ykDn|%7KFbWTHMk~K<yEP|*U}%E=FtV*{D)SD(hq70%9FGd
z<XXc^=|CqL>gi#VYiV#v$62S2ylKv)zI@&n_xYR>%Pfk&Ftr0txxILVe~^YRnB(W|
zz<gG8rPWrCJDR|A)iEdU^p%Zrr8$x(9Oje)TN!Uzd*a(-^2BXrR?Ko9rg1!FzoHaG
zFw{QQ?uIBSVK}szk@jb%i&QTQAAuBRZ!$h*HWIiTvB0l%u-xk<?ibJI$Cq>0=@Fic
z^=<KTqkl2;UObR$9)Un60xsR(8r)}LSTfAm*tc%w!__JM)`%p-wZbgB^`f>tw5v6k
zp@^a#RqqU<`Ni47(j{?|jLRM7ewDGUJ>dV6k)~9GCDvNcx+t}L+dHa3J4c-k<P2_M
z9eCYRE3P5;KjJb0L|a%_pf{WYg^4-VK`%L=+tX5&`tp=-OoZM~Dh#**Hv8I#a_wIt
z>nVU9845@}ROEk@CiRJlZ=j{aNBWRVS-&6LA8y{@XTNQdUCIER(JG&e5II~uv^Ecx
zT;s=c+r#B`gtYG2;r3UkPKsU3u)cwqt6uBSaG!nV?ep(0O`Y?1ZhjzOVH9k4<B+Uq
zjixYv>Gbfv({OgSx*OMawHkmRPbFO|O8LKYlj`yhz0;i14K{wK$2O-n&H7|03sJD1
zl}TX`Sr5g8^1aB}EZe4CLp*hrOFv+mCO!q-KIT)#dfL2+n?c%No(|MF=wPy7DSk)*
zwb?S;l)vg@%C<iB2oZ6!ju!rpZX8;|G%0w_g*SRGk^G7Hy3d9l4KR8l4J6h09GY}o
z#{mmB@2k;>LnGPrX2PGXd);@2y_N#UB3hyPu$5K(8~o-K-G0eDr1Gw}2e~HOB1V|J
zfzV8Wx`?FaCo^CENS`jUwrB>PCoV}GwrDn}vrV56pU9YgKld-qexB(G@o<b8IL=Vq
zl?p~l-CbpWC9@1l5WVkh{YL2nZM?1E4ydCM??N`dksATuQ!GBvD+BVx=-PkdaXm<f
zWHZw9CT2XCKl_bW#ACGHXAsKw+*UiWivb~CtGeLVw7gMctgs&+arUlj7*hOM&CW!5
zwe?PrwWV1_4}k?U9CyTxq?Vz&$wyoLRenLOqaE%U;izVHe-ggtqm}UaKowu7kyQ2L
zCk2&k^9UC8A(KD{A{rTabre&^uL#4{8-d(IqdY%&3)mRwib&8tz9}rVCVwuL6m_s9
zfS@tl2Uq`yoW&xm-0!ZsYFfViX-0wB(XAdW)%?sVRcEjBv~<`Uct<IIe&V}qk+dGp
zqLFNfM~Y(y=BQ=YX`-Ot`jLiLdKC5MFYJOk1+`~kzQhSfejy+4J37jwFFS9neIJIO
zcEC3C7Po5Se@9V(-yA>~n}?8lyz1^tH^yY(f|uJmyxC&?*TycoKP!uN$H;+NCJ2X0
z9$1P}CUO{WLrxac)4Fk{j&NLuko4d@=+x?%+pV6MV_&B;B@dFyssJylq5qRQam!4S
zQ(A#}g;8niyG}--!K1FpUKbpxtXD&$>QNQB>SdLM++x2(Dy~N&01>Qutu>Cpnh$sq
zzP}Q<E#`{rB^RIXoe=M0y+SJB|9pXLcvUWLGFJn+z9+iwv(ugzloM!-q-v1bHoN4k
zqq9HLR-?BprQWJg%0gc2^LwaV15;dop5ySKH4W(GJO4SNR(d^YmUptroDRwkj>Qj=
zlKSPihB(piTB1h+1B0R`mVnNpeKxGN9w*Zls4BP*CoH9;q`4g~`5$XVmjp&4LPGhC
zUDc?tsGwNDc2~2$B>xM*2vM3aWy3u3;gP}sAdGfkQ&eQm2s3^AJ&n#dd^xRuAl-Q-
z!~0(?h$V7X7OWM#+c!R8vL+PCC4&C^6+@aLRblf}RrT7$Cig|jBJN?_U+=ID(z6lI
z7D817<!5RvM~uK#MNhhlpW7Zcrj(O?mTY0yDW6WPVP>hH;sVxDrVO9v2(^xQ=14A%
z%9n1wV%2KzTc@oV9obaLnc82XgPsQwC0!yuSa}8Ih)|9Cb*u{i*}0nd%)8wBwM5k0
z`(|@ZlGiaFtj@8)2dlG8dl)m$)_uONL=8V_^ccS7u3Wr&8gp^-ArGjA23CCdUl<xj
z-OeknIy<iQL84Lx;s8&%Cj@VBZe}D!CYsyvR1v7&C(rvyQ`eF79q4{|id@Q9NSO!$
z!YwtW>Dkc!Iu46NzQQnf$dhqLWj^3#5aOEV+h=4+h+^j_8H{Hu9m>ji6YnKIaHC>0
zQ_djN`b?GHL|JY%EnX{iD!HaR4C|3!6#*D;Mr?eVf(vUX=m3MB4KXKImC7jkVjcqU
zwg2e6?=m2UW!TfoCBaN+%T7RD`sZ@9EEZ|NH2Y*TchJr?bI@-xrne`oqu5b8tw3zN
z5~(oQ)-Pdag!ntlb66^$F3EqA;xSIiGy9fo9`|^j$DYSfj(ylTfJ)&=;IkI-K0azD
zP+WE68peJR)uhrXPS((`!2B{kft#=-H;tP!@>~Axy0(!}+vyBsjxdnr33RyB;hj_k
zb&|iM#~sUCvY^E0x`Hp!+u!|#Hjh7jfbuIz^{=8K6!}k9^H;Bo|GUR(&xBLu{{~_D
z-;0Eh7o_aE=&sn0#USmZ^1ll99}IT?Rx;|bky8JaZ0Y}Kg8y{FW7t&oVQOYlVk4X=
zbM~GcyyVRzkd;|cG2jgTjG!yxlb%Z_bJ`zD!*w&m{A;`Kewm#?A?Jxev-7=(WDnhy
z(TbR~-yO70x2daSsg<0^<(2LDc-?Eh$9lVWtv4zn{K@K~zL-P#=<a4VBnNAKIr34U
zEdb9bFdYiDbQBQKQ&;K>qOcHgNjJ9d7zSnzL9bN=p!~-tl+bh+Slf8~VQoz3vLKJ~
zL|aFjOvsTwWsl;^{(_9GEILHIH1D@Bp@f8mwH1T&?1yK{*_#1NO0&mbo*giT1A^aq
z=YxecoypDz35j0a9RJuChCw(qxG!FGiwZn;H@N9v^f$>b=6n6{wf5U~2&&l1J-Z<R
zUGc*vkwhpC9WpuvL3dbq0@-U<?8mawdgTrm{BC7zsJQt1fT$QVSMdTVP^&j5m!KKO
zT8MbWW93Xc93C4!p2nrXG%D4d&bUzFvBtnA_n^{;U+Qx?p2lF%h>OjxMF71aD_($X
z7|R5Q%6zX+Iv$dhkdSPKX*~1|W!Pc5YCg7-yNl^98M4yB9Fh_v&lpNK?%#onD$u^|
zj4yC;Z#S^y;8oR&A2)in+Md;o`&NqH;u9(^r93|B6FB^cXS<=K8&~pi6ruY6zmb#m
zY8v~e<I+uJOe+My^dOX#KfmV>^t;BVd?`r(a$;5Eh#$@lK;DehH!2zn--CVLjk=fo
z=r*74-=O(;KT@f6JtE^zYP+cTdur6(v=i>MK)UZ^io=qlJuo#2{!j<ax4tQHb3Z9D
z75V&0F%pCcu#6t=Y+oxnI7arA*Cn^zeBE<t&g15Z?n|dBmkHODqyS1RTo9uZV)M)B
zuTH}9r`5Ba@^$Uq!e-!l4^z0vFD>Tdn|7o-Jt|NnJ&X&=+b#q7CJuM^0q?RycJ3Q|
zMs*+HJ3_dhvnoZw{T^FD@_<NIe(a>3+Uiue--ZvZ7!8Om3A1z1E&&T8CrwW2FR1px
z`RAAmBk~>9i7Q{4Vw)6KQE$}$qff{!vdzlgUAK8Y;YQ#D6oO(4WFZU018?LS>qM%0
z`zQaT?Z%V*!Fs@3x*1a91#@wYAzOA~g1A<1tlExwIwykrklNJhvIZQ!)kR^}8DOD3
zKoxNt{2i=)j&1ee`xLk5bIuIH%iH|{536_fw^8H>YXnla*PoZgQ{J4C!EOiLYWauE
z{{Z#}z!O<}D?7!S{IL<qp`}`ccohLWXrlnOK+0b6@8424K0H{xNrcX~B@4*QhtH`f
zn$kD<9(}@O@bdN3AAStQDRdA`VU{SI-RJ^RrA3qEN~@zWt)<zvR4|E8HKLd`s<%D{
z$VS1lryfmE#CR{^p>*$flDVNF%&P4n=P|Y2gEKK}Lv=$ThSuQ4cU8GR(*<%+;^o9X
zMI;I2>_+2_6eDb(yWY|U>cU3epb2X#n5w;4mH$JUu39qYlENHmQ#Pxj=$Q`<@yedt
zyRWc!X~cH+MwnAOylG;{$$xj9|A~!n1i#a?mCSQC5MRdiw-amX?|vvZp55kkAhXHX
zIn0zQc|}|H;Y6}8sJXDu#N;&4*8bzRC5Dw~mmld;*M=6%nSA&pt5qPuUEB@lEZdV2
z@8J%V>SZmpiXvWpJP&E)IzX+oBp`54wy;F$k>MIi$cbtR%`b7;U-GK)A$2==L3^Ud
z;7o3~B2@3iu~E20(1(ti2SgloA8OO@>Z<;1Cg>PB)OV!n=RN0&R20_W0WHPPElaL0
zNlay_D^*@QJ<_-?A%Mn_wdsi8Dq0`aj}Fe4yqlS4HY=Sgy%@AFjs45t?uw@y>ccre
zyv_jD9X2OWomZ)(Fa;m^Y+68UIw#cMo^Ot-J;!B*+LUQ#PfS-@A=)m;Ykg#(h#C<B
zl93<o{lQ}MY$CO6!NgiV`07BOycAOlf2w^h0W#5ptjS-=;CZJav|`j3n}q}Q))p+c
z*)P3%hZ--&f~1&VRImRH5M2wMHDE^*GtAmWD5s+Gi|Y@z_}XhoDV>FN=a)6~V$(~S
z2b1kJck?s+py#?(DzS|*D1Hy<zR=K^#;V~HfnA=q!#$bBQKXptwQp`v1dC<kH8-9q
zkME--iyMEu(dA$(uBIn^z5uqJ;oA89l)*zeM#=C#Xz6xkYgF?(gF9r*H`Y=*jIQad
zVnLwUjeqb-dZ|a}o|)Mq#bPo%;i!EuwZ!xOyT%+_8B4^A*OSu}A0E-M8naUaF**Nl
zVvqX#Pim@ZaL)HXBZg7|R-#7bMY*o2vZdz>u!4-%y{|3?!^|$_wLjBG_O-K_{m-{b
z1!^V&dVP56fY1-$_1Hpkk2<W)3|418#AEbL3({Q8VYYVp33g8V<LtC*b^~#6e>y-1
zU}Q5Q6j<MKsrnPW8ma*l{P_^1_VjgT2-3C4?KUg*In4gO*uq}xUbyoIFQzoXsXGml
z43f`<SnY*je5xd{;>KN;)&ScKhQSYprA~g11|AJjf}>O62U7@0Jn=^dC5P%FX!W7o
zhOM3X^U?=>pMIRpSH6`Q)*iyuyQRI8rb+Rq{##wSt~kmJ5VqGwQ5{<UIeAM?tZG#0
zODE?x+Vx0R3vPJDbQ^3s2QKcdm2{w0B6rHiZtuK>Yo5F>B2S+?8(c9Qxj|CxZ7Yh|
z&PJmdthT{Iqq%?K@{(k7Dw+Fc^9acv`mYd7Km<+7EdbK519!L6WC8~#(aUGL%9`#a
zPKn6%B9elD{x}QAZE|CwSif6HO9x&|XHM(;`z#oq*pTiZJFZfD&LHi?2M3glBika^
zBg4}`JXEfLZsVyR$giKojzzEqR|NC{fb`x9W}i8RDctvD*h9-#TTs~P5e9>NLdJB1
z>3*pI2>FQBOwq^zURU->_PzPmBIWkW<Z7e$xur=!SeSfnS`4N7e^SGRO-3jy>YIsW
zm?KIEPcT*gGD34HOL-jyX(cw?A72$}M3<^hN=$5y2A(v@Gb}eo&_0JAL$5@JpZ+VR
zKi|sX8#6`c7!#)GD4JG40UiYGLeQMm-dR%F`iDpqh(@(VPfl`+o!;Ea-7$%=QQ0b_
z3GBY`br0>Vj{j^c9FdyVU&b=bZP&pDjWCpdwK@+uZ7xWq!_e-xpj-f^R7a~hZ2>H%
zZCM58BsB(bJ%rkGQ!n5@X=hwlo5&Xh_&YL?T-mB~HS(Qj=^H;&=0n#4N}t$Nmx3vt
zmllWiM&A6yM$T(oRQ68cSSWxI1x<M|`N0r~kCfb2Y@P@c39OStr`s~zUJr6U)E7^T
zE_3BzPr=-+b)F8E$DCcI8y=f|$EmM6x_ia2@__w>hUa+jga97R|E0#ASlO$Pm}8^A
zxzpqjlH+(+*J&of#JNYYNPc$Y?Ti}5C6(LAwXuw@HxFmun8@5bY{tM|%VL@HthB0{
z`y#YJM&R<2JRW&n=jzF0V%0jzurA%HxILbDW|IfBP2Oo)@EpSZ9;ADbgjqasB794~
z6R1&yd0Io9S9)sT!<V$=?%I`@JQ!i?v0qix*r-0|_F>|c`sLMJAd`wJX{?p^@*uSJ
zhx^XG-EI9Dd!sFFdlkBl(NAGZ1+#a046|SV*-_(1?nRL!KQN)Pmx|(EZzMfoG?7Rp
zR+|oFgg3RYqW85&AZBq&$Apw|_l3$MT~`I4)SK<P%D0i@XPTiUz*AamAAjE^%3Gg^
zqjn#H?pjbe^5*z_y>YNHnb<d*?OdnfJqIqA(3Nn<!||x*V1aRk6%8;l3!wx3?)WAv
zc6wQfJ)eKys}sH(fgP?*n`<};S^I`khu}^e7=^OMk)JG$Iy`f29~)U|>m8<`ULA%!
zq(QPD%(K1jQ^wk#6q?@iC>JWMhEOnmIZZ&yv_yLLvslnwbYtMU!hBK`#%=gOGv|6w
zZHDY&0xDVZBI7@pSViSZowF9?<{{B|WnECVGeY7<Sr3qZr66nh1tK#)T0llOr+@QZ
z?)jgHtQJ^@WZlfX#xm=Og7k+`ys)AZb75Jb&u3@^x7_Z!*$l5JiV*h3?9(W_4eE6F
zl~)mV9$|({KOdFzt!V1LK2-y5<*}>x2h_upGmV9<#sj{-@}IGqI$Y$ndAgz)@3aP-
z7_cJ0({fyJ+ebo^!m2l~JX{M36BT)k!+ZM5n)N_(vq0J*)QN*TYoFOvq;|q}ZVjIn
z{G)>vX~QvcXjbbzRfV2)PWJf~tNPgaPy31hmREioDK#%j5f?E0^j+B(UZVS<t*wS0
zb&W0Dif16Cc3e}%b10bJV~dMo>qQ?ezT0Sr@zj&T40<x(iHKN{qKu}ToL4S~ppl+r
zMSnZvU+i5<Fj(X#+=aTr8{Vf_h-rX=LE?}r;Vs_zgF0P{{M?3QJbfmEBk?kW{R3b<
z0!bAnh??@95d!rkYw%Y*$$>cTf;)eGJRpql<4k2~qwK`v&B%&SvW-@M+`HvU6DI=?
zS0I48o4QynqPqTt*jZY)0xd?-GFWVCUVm<zuh7ev+^NA`+wFEx;Sp5ZusT<oF9RuN
zz2HWb^TKeLXutKthU4cwtyP$z<`G(N`BV2LUSYt{7>4GGe5o>~c-!*vqVwQu<!t$|
z`C6_TYnWSm_0O80cPk;RvU;aj8&4#ULf7D|o<|zk>;X83**rk9)v2MmGVQwF1TF|$
zr<U_K5IuXrjc~3_ZqaCP;=#A0?Z$m%Rs3_dA+P=8NC%Mg9_~}v@2A?G+yaWbWWq{m
zyw+fsciC6$8Vy)){()LyEHkcO!Py=e81Eey^abaY)hfo2Ru{WF0WMtvNVz*e6?SZq
z06dD8o)z0%hr%4@H#TeOhEMpcry0pFxA~qDfDnOGa)9{j9n5HQKjmd3o!~hwWExoV
zVC0`j@1I?$JbrTU#K2p{s7jKI{vTZ1Hp#xyJpmZfNqkf~QDzlJ)@!V;oB2kg6=rg6
z;48HaugVt&fU|mLJ=_t%eu1~VFnkWb?U)}g_a_<*<#L!b)jOgzSWtIDgc|Ag3JQxo
z5L#TNPiJ<uK>ePyRvH6YwZzS1Y!A=7oT2a2!lvJq$v1pmj~v6{)2vA4W*T^wkSli8
z1}x4GL_tqXj!u)l0#?M?g--Wwen&&{@9JuSg?V%;p{EiO0=0gf(3mX2tjve9=y0cw
z{^C@NkSMa>mRS?YBoZO#_ZxI~!GuA}KmKket;i${5_4^-c{Te2Ti_qr9w76dIBLa>
z<jA8wq@DC*{=bnE{ojXAdt<Rk*^z}&AE6b&F5|xj4<K$I_sM>LA^o?N|Cge?g!>5j
z50<UY;aH4H$Jeb#j!T;vz|Jy(pQT(&E~HACx*`V#K#()@dWTMW#gnD3-VlI7L}p_M
znYu!L*^klBYS74zj(x#a4+;QG##2jFEv@Ye>r298t2m$G(wKcxz(#=FpJL?MXCW#v
z!bBc)zu<iZ?rezfk?R#-FAAnp;zp+=5s9s#vS$m8|K?vY0wDMVm4GZjGGFB80=ZWr
zJMOo#=;hx?1@ta)@g)`t-eb4h(T`tT2wZAmU|_7>n!5my8{@@`IzB!kAseP|mkGK8
zCxV7+y_R)3^gsjvhzjJEe~SeI0~k0?KBy8QK?JY81%iT*VXKe5th@1VpUbXXU2Q!C
z)|Mx|$HDQwKg8|n`Pa$7W2C1KstQAwR!ScN(y3RcJ6s)?OGn&$+Zp5pe9XlTG0O7T
zdzX*iLWSwxTQd4bGo{DeB~#ct71U^7WT!(;_k)3JJDC}qf<HNzu5zRBdc|xLY)9*T
zdu0&%7qs6c5(d5fv0q8!Kcn75M+dZZYuWFf7~rn|D=VY>|I^CwqTw{#`(qIL;&C(u
zzKJ0U+BQ~a-Of2?tK~aZAboYE=7@;GhwvC(rGM%9kkQ@gjSkdq@r35brLYX2lt!H)
zMTO@jrMAC%I)0e8efqu1bFh9A!{oOGF7w{X>xz7RSh%xm+E%l2*L;9=*-`U<7^%x7
z-`yYKwyQtf+3Y_H`^`}pnf(kOW4Cd4$e`VJFLHicZG1X1k+SX4EPK004kWNhqYG((
zilq2=%lm6+{khk<aZFOwGgXg9k@<ck><#Amk8SZZ0j>`@12v9aEX%C8Y)*aS=|F37
z`s@zcfM>W5k{q|x0qq{^Habe6!YA+hgnH>iE>LxGOpeUbKgzF4qoyor^4%l7nq=#2
z4`m3UOUl!bZ#UcCO$@ZZGQjzO+lBfuVc={JYI<8qen!5PU39nvo)a~42j^xk^hXCa
zazTH8)FZ+>R{!n#Y>;n~`_-=iHp<&de!*GPf%1#)MvsG9`{OC|skD9f3{tH7Kv?Gq
zj~POc4E_nk&Er8AaoBkAjAmtgxzd-<`=$A%-&hrwF_~S<qf3FQJ`xcxm)%Sf*&ciT
z72+yW;iQ9#`#*S9<6WA3_oh{HpIbJ+VC7S%^kI;YW2(6h;29X^3_`~f)n!f7!9hSB
zHq&48U2<RD>6LZi9LG&Q0s?0I<Npir^rIG8s5Q-5l>!I7=wvtU{6<4Mk*0+bz+)?5
z0cAk&HSSwf+2-h&hLqs26cYYm{7<W7_i{Rz1xdwD!at@(Tb{G`2Wb?}A{Z@cGea@<
z{s#9K{2fC)3Cg*5plSnY(#lbhrZ@;*VJz3wN{Wl7ul0+&K|BJY?R3I~xM948_IGJT
zFN-e_9zHuG#h5QmnbHrs9j+^^-!1ZudF^G1+``0-56cPsNpJgltaDZd>L}U@-$|`%
z{U{(tr|D->_T}EAjxU_4b~_rr{JdBn8rJ8P_RBQL2l^*lG%CYY1{hURR`P=JDT5=;
zfZ$iA2-jed!cBHNmDB#D@J{dNZzCf<h;hHXzw-N_Bt+#%dBuBE9jp9M?To8a1xfJ3
zUWPXbR{`6FJi><TZ~&c*@B_O`1LhA#w+gcEkpX~9;&=wHchyV`L~QL|Nm~|_F(u$g
zdpocWon?X<Ca2~%qBFAQ;D-Gi1vNioQMf*jn-my)W}S1o^MQ2L;MRQ0h$pM5HOvCl
zZ`|Ohn_Q^>qD4v^>AKfI#YOZv!|p+0LGgfV9>Zc*8-1_bu`(!Q62y9;6~2A#BF972
z%kGW1U$;d`eEE5@&{}NzMU}=wW1SytHAwU~WZF)xsCcLqyCKQ}?}|A6dhG6xPEE^h
z70D&d#D{q4`Un<1z_yu-tr;5#<I`>WE<8MkICi6V!=I0!*MWLQOLoQ+&O|^Qu*x>{
zx0)4Sk&0L&K=G{rk3`PTfH?`uBR9cPQ1h$xLj>K+(o}9`ese`;neB-l6JT45=yba`
z-&}(TPWX=EBXErc_1aIYzx8`)*sLw@D9x4ylzMy`&yxO2^bC^g-H-}q)2XMkaZ_rr
zOSKQGed)}Rt<wvp>6DVe<rP!T&`Tq3GyMbkW&fAvK(=-21kSykP78<+j|-C7;;dA8
zXT7)+3SbMqgsV`s2Ayu)y@Kf~0xJ@{bJ=g)(wZu{=mF!tBFtXqwZSg0B#+nqm9T=A
zpMg~>?ELrQ+3JQsvhCVxuXuh%pM>YU%Dujq8;$C;&!EFC&g?`*uUy&(!`gKl0}G5*
zRg~Xr!DeLUUzWHNe&kQyRhMDEPcL+0BIO;;)*hU#F~LqLwQ+$<+S@g-6UQo0tJAn2
zNAvy|d#`AK)GldSrIpkwj!Vhz?(y@vfp}%-D&^{}67H?9w_oQG%#FnP&hXs2{?Eq;
z6GShDvvt7!{wc5Y<_1d7v6njn{iM7^Kq<<+f8A{+;Yo45q|>>*G{ir5n(E-|YlB!y
zb#&}Is;;u+QYXc5JV~_lM`8U`^<ci)$=eW`Om5Si*CS_I8vHpIL5|+IpoJ&v{DUzG
zZE3gLprFcFw6}bW;EUG-=mM_D6qfi6i0X489qh(LoNG@R$U*BD*Rx;8{4xzRUnV@b
zI=<eny*tbEt8B(T*zoAv<W<Qr_TG0jIg@C}O6cGHGL7<@6r26G+x)Pc7lpYbdjf^o
zd`WR}{v7mdv=Q;T%BcHSd$27e<9CPS%ca@(G4XLp&<$Myf^ZpT7ZcokR5Jb1)2AEG
z3DuaWu@19t+TG5MBn7J@R-5%7yf;}Xcmjq!=pMF>W=+}FWQqFvT1wbsx>T@lFLHUc
zOw?6r1Sa<nkstvjc=#1Ld3)#YtduJAY>qW;DQyD<ZD_K#{#2t+M#EG2Bb4aquHG%P
z;T82>V^&hSQ{Icr2Om1F-JvGaKjpSc^XE7;V|PCP<-(iO9yl1?(G613XS~p-IsFr1
zkH3zGEH*e2=4Nq-$`d*y9svQ1b#qMQFch~&PM0{0ZTvB*5G(MUpFdt~9ZXpBd@&#B
zC@jxZTAs_=(IwKb7L{>sYwVrCkt;{v_^dWF$$Rt`&7zJ{DNP856ASFaSHkT#?^%=H
zW8@S-wy&+JTtuf#K;UjSE0;)+Rbu^K!<>>Thr_#;pTAGre|w9_xYsk6&FSBm<)*Is
zP7Lm&$B}w&L{V||R9)-I>nczSkuFk^u~UgXC#stHN6J$9GeIp8$8g_t=XvJ(x8K<8
zETW#{qN43iSpBT3S{W2)>4vh_QPpisv`DB~G3<U{mxz0^hZI`xdU@&Z)b|Gkovm{X
zy3#s+Z@iLQY*_Vl?whEWL7~O*6Fq@ZV1wSRZ%HK$Vf0o%pN**In@`czJ)Bkzm*YY|
zKcD0uX3nym|GA6L$$TKJ^mXI$@@?{1wIEfqze|j+yiH9}f1_cF{yBwXGK*5;gFTWW
zn{u^<l&{TfdVLV(4bfK4(okt!S3SmOUu|7sujubd^X)s`%_Z!iK7N+x+J(-JOv@oo
zI_$|~3YA)6C&&qjd+V|vQEa${a#mjw{Mmo)n@qx0lp^@1Wpx4QWn#@|&lpb><{hRb
zkOz49(9+4*|DV|fbFRE*$hPI7>;7|#ER4+V+Fur%3|#fLuc>Utvx66VZEtf`9*s+G
zG1RV1@!V+X)>9e3@MVhb`DGhK<h6N}7TI06o%5Rc`Ly<baxK&L&u==SaephP!-r$K
zIWM|Z-u~Q}e$+ba^^f<rSd^B3;B%T({(0*GE54_D58jjC%N||6IW^_irA4M|_?j0y
ze>Br4?eg)`?d$vh$L{w_kCoki_y4m0=VbpCf7LqcYXAJt_wO4GyuPyY=Oi36%DmC@
zG{Dx;r>}SEwJ8ggp86@69kqCt9KHQPso1TY1WBH*<YLRr(vO?Ag;Z;Zt*@W_I9@j2
z(^i=8H`fifoZT<CZe4ae&?)lKf%l#{T$0<)02?-H((GB~e72u6(^<AE7q`uIT`Y3Y
zeDB%QYkwZolb>7mCT{1UJa^92)%l-RH{MU(u3YWL{nA~(%jC$L4F_0?`&{ihudvtk
z*clYgd|$P~-@v~A_~V%`-F%|{yY`9ib3c)7=^Wj6E{K=4^+BVwuC7i`*P-+G=SQzy
zs}u3h^_Tsw=6DANx&HQd&(fO0)*U#1e!jGL^p4`!V&?j>i~hfhWqNl0`Q?QRzm$~}
zY~Mcpyv=7GN9{$GR+=v-#yI}Cv+Bppye6AVJyXvzE62Z>Iph4vM=Gn%hWaP}+?#Ww
za=q#cKWocOR%TNV>z{8~it^9@Sv#%tb#2~Tvjy$-Wj5y?Z7AGU{%*_U$z`o;1h1Ef
z9SxL9T(Wtm?9Dw1Yd>Brlm9-Iy_G$&zR=2Iljf0CQ!FOBPy2Pi@V$4#PAP>miqF44
zW30Qgr>2wjydC#nxvH3Oj+kvc=l9nAdCuCf-`?ErM?>qyiw{0txPI^4<@kFp4=ydW
z5v!<gJ-YYycFrGHEb48FXE1@bDo&iam?3di?E3r}FV)Uia)D1sO6vnl2?`q8eo;yV
z_Z4UE6@hND^kjr=vYbI*fy}u0`1?NFAv;0SIH55O>QZ%_c(XtRx(!p)0X!csI2q;v
d41vG$uDfEUPwR8o4?M_<!PC{xWt~$(69C8sQDy)D

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-cancel-global.png
deleted file mode 100644
index 79dd40f4d7dc9397f0f65069dee43fc585c32383..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 13617
zcmdVBWmuG7_$^F>FqCvi3kcGw64Ibj!T?e;lr%$kcM5`nN{7TqOLr*X4-k+Bi4o~W
zVu*pW`JYekr}x{r&YA0(0cLn+p1t?I?|ZFvuZh#qQX?g1B*wzRBGph=eu;&JLl1r*
zAtC^ejclcr;Kv<T^;aHPSY+RB@7VA8$(X>Cgq|9jDujOt>1o+nh#E_1v9Q>%G?W$e
zeY18K`~s<=9g+tn>3dETJ=}OW?8@nsI&7g2IhuZ3@WgIN|11^e^tGitBZVn+(YU@_
z{`~}}5Q6(N_AV+OCt`<~I8p^)A(DcPOC5(jWz=!<Qq2cyc#`T_MD!}BDpzuIZwu-0
zYvJVhQK!eVnKr+#k6o9a5`|-NfE$0TVE|!lY;5VCMHd_Rdr$;UK}q>`m0lP;Ip7YV
zS5{WGenbEPFV!;R5>Qf7zIuZl0bYC9AF2ReOSk%e=(HbTtfhNRt|%ORsDv4{iU>v@
zI@wr_RHVQM)1gbvPQ;-+=JS?I<7UApH}8fTk9`Xx;v(c5l9&OX^X_q$@?|ZU%|-5r
zQR<p?hbpAsp%bi2I9%R?(TDRrrBE(K5|1sVa}(iEtAw!;UHI26CGkDBBa9)&(xJhB
zHhLXJ!qB}9h2k44!487ytHhKkC_jq8Q*06|aQj>>+MYu5aXLa#2zDK1?9?Jf==~rw
z<L3%Z2GOozN>&hIK1HQu5j);^%iu&<-lTG9K`ey|Y+$rU3n~&wp&Rt=_Ig~(4*c77
zs8w$4ow{{Mv6ZM*O8M9{*7ojL4IJDn#K+XUEk!yIi})|!A)}AZv-r(=W6VaxfrVW_
z#2Zhfpu^`ZVUfbdK@9I=8}w~AFGb?0=$^n)C;rPP(c}!qT`9_xsSlOXZS)eNM67v<
z+2Zrf82Uo<FcV6uA6)YrE0yiKDX@48swNeoD!lQ;y823r$!<5{XAeGbX;>h5IFN(%
z!ULk_RchpP@daHghiKerI+kQZa)!Aun9vrr%78^r%>G>>4wSKAc!Ww3$M|yi__C#T
z*OD9u5d{rCl2?%iN>qRYrDUg%myJ+TZOZNLq@tXZg3udw|M#9>*y_R)b1`bsd(cCo
zN6Ew#Ky$Wr<kwED4;?dkD8rH*eCRKG;5$@7->1v@OlL5vhOB4$6IKYnD%{!&suWd|
zpj>qadk7m>I2lffAFKEso6~fe=sLSn4hlV-G@L)2%0!@MYD^)F;zY@^*LbOEX;r6{
zl#?3ulJKFy|9T2k_BW^bAFDrMCL79ngzIQfHHBc355{51k!dzQt?w8mo9mk+fpxj|
zuAFx59zH$vKM}To(1*E(rJ%|>IG&@o*%ccZOpO@#&X)iDT-Lqc;Y>oYEOa!X7|n(b
zks^p2ef-vSfg3_EF<7Qoa?qFcXkd64AFCYJ$r6{ui27)o6E*z0^}hhyq?P{UmG>F2
zzMt7oQnIoV{SY@a_V)HPa%&T1dPXNdcxI|CWXV|NAXpot`MA;KtYKpxKdL`_)>0nS
z;<<Tus^XIT8nJp~adVAvZO*b=XpwMfs}b63y$P<fA786o<gX9Hc)hA1rPu#Qua<z`
z5(>ob-97DE@$TLAzU+y)VXKNFsZeDfy~hzX6oneZ!og!t5$0p6DTsk6S(MZeC_$-%
zisBHv*P#^Lrf6fW9>N6I3I=HQ*N93P1q!x7uYa8Tf4(Oeopuu%Rl~7O1#R_{5B=MX
zYW`RaeU#<-D-uJ_+V{H|VKG}vF8uFv#%Q71NNzpMum24ys!Rxe<FoY9Wn^ST&HL27
z+_;{2MAMIqQ|*mtz1CF5$+VZ(zXesWO9lo9drx=gtF8LUWKL&R?4~OhXqH?KQgn7h
z_aq|8s&2ZfCZTo}45?gOgS_TK)Ec5*HdtYTsmrdEGL|Y;XTlBErNsK*b<hmV!gW9D
zuev!#RaW*{!myNy=xOki?aV4VUj@Adv#-VyG%=xabh#vN<Y*#9t)dVdEN2jSB~tq}
zqp+?{e5)UcjMtVoi+WYnNtWDC<<=Y?jx&@cg8Oy7E$sOCm~VG!b3Dq|<v$N;&ja{3
z8&g4^*CRPeYr~m^u+Hlf2h0gJuIjya85uD@$Zr^Uv~%#5FX0t-b|ug{TB3?C*jRbV
z8^Y6ayzz8T^GuX=+YbDL8e_8Mm0)Ih&pDgwxr80=dzy80S+PJZv-o=(S=U@CHfYDT
zgeXL;(djg}*eWFSx~~(zoJf7q##4CO8I0K;3WJa2$bJw%?9M%zxw;B`=)W&3YdTPy
z*v}Gz<MZ2%@VAQ;t)OXWh@d&7>ufIYY@ySzOlxTS<PYZaekR$^-k9VrJ#AV1%!M~T
zi|3gg*GILYS5{;4qpK}~>P{1-=H;Co@Jy|HMfW_v<WjiHNYKIgbo5oosf>w;AQq(8
z_8s&Qkp?nbr#|gX3ocEjg5Z$O){@R9lV&En+1HY0){@TZNEqKd7FdVLU41W;H!#WQ
zMIBd+=bKG8P@*?IAEU%8=QrcGV0&Ab;ZnJ|78{bIqod<(PSwP3Gc{I}R8$cJq>RfQ
zmwRd>Ibkku1xy;2NAs0*t8UPTD@L8y9vFWI2R@dI{To%wLe<!WgkD7OKNC}*1+NQC
z!0ApOiZ!HMYP(A4Hro~dQSaSHslw65Pq0E(l?GalDOsPfMe0)vD=LN2J`5+jzIH_s
zUo%J=NuTJTT&0(rJnv*MXSi<ux-VUq(2L!FKjyq-CG|llg_(U^TwK$7PQYl9M%uFs
zuVzze--Cd0XNGoBc;o!Zwq~ZJ%192w#R-_tzdLg@C)a`hhUKWKsW+xCPqu9tE5^%T
ziCG_SeTJR+%FHzSAlhGr1a%AE?aazz*7L9e8$ei!pTx$7u4bcM1;7NV_=JS9I(t2k
z@90-}64kb+9#BsEY)w3{wiW6RnW|I)fxL4{f81O{-j~eEI(hvrM?N`g;n7T;8z&iy
zOr%x6JL=Fk<-><qL9>=Wd$5J1j-bnra@655oespr#KL<&Yc5XCNoYAZIeY7dK8o2^
zyRQ-lcDQ7lYb>^SIYL+hNrJsbs`vsc8Lc#<?lOzwjg3xHR2s1Be9c3K5<~Z29{SS|
zDZ*>{t)vo!?0iw)twB*mER7a+PI>q7kba5+7%Ar|ZTj_EBAJrq$HXwYxEk|bS5Zk3
zVX-oAn2q2%q8NG;a=w~@M#Zo$yFapM?9Y3iA=rdDoj-(iUfusB>1@0yX9vRBJOm>V
zn3Y|zL~HLkwVoUD#x^JT8Q2Ra(<?%Vj;OvQrtL;d*0lb?M)lze&vJ6e1(iXSd6Lgf
z2gUjM`3Jcmf@m@(f-axx-_2Hp2IWR!N-<;{^761HtrD$lxBi)$jisgO`*&T$XD95(
zQ$9Z8wwC8JMpT)%i&*|u_uOBU-QjY8o<C%ebdqNAUB(tK>sk6SAU(J8yV(OQl*i{}
zx5wGidivHa6*hyT`7IU3jiP2FgHH%D25l~e?(~DL7n3*j#<6M_e$jXrkKNjH@NJ>m
zva2-TZgko1c9k~0FozDcklf{t-op>_OZqZUQ`5wqomKSJKQG^)DW~Jj@&03JD740F
zo3>5dgBt|K$-J2$PsdCP4a|Az&AWH;<Wu+W-}kjXvIg6|k^Ss_db;K1sq;)n5R>W~
z<~ZA&AhN^5!;C{2nsT$R1Ycjbv%KU=&&^H#{5)g1mt6i^nzn45h}B-HtHFQE1;Yon
zN;DV?g|celmr%+L1Kl=%qOsFgP#Rwub6**kabB9nc{<_WEH|+<Rn5_yM)+xO)Y{be
z(c&Z1l-zLBe58BHc--gb>5=zDz^c~Rj=1d1er4Kk`zIxXIToWA^|aH!wEQ|N>^lnA
z>jGJo?KaRs#9<_>rW0gaJzgZY+b=&2k}iB-^`L_Oa5cmH*EW9E^}4CPex&_)@t-fd
z^GYlk;Oas0t8<<=Ag3R@xW3#!1QmJatF6zslS<QOoCrelzON&i3jfxI`OVf(o#z#=
zWx?mvSpSf}oyM!x;YOtCXy)6uVId*aFFJ$wemC>UE|ykTv;CF)?ijq3^?)yYe6w5}
zE`5)TnwIvHi{rgDF`@gPlQ#Vo6tGRTY(Eoj%ynE}M4E9?GE2K+A%;Fu)rhv%)lqxA
z9{H7UB;M+?-&a?rr-|wrSUFq<X)S$c1quC9y%Rwm>@AXqL>kp^QMIA})DiQKg0+0z
ze*L%sF>ipn!1-r@H)3Vcq5cx?>#*!IMxltaj(3<utsBwuY$(m=94G3=l8DhIV?I!p
zH_}(818&)dC%-rm^yk<t(2MpuLF_=xwbRd!->==g?QF3Xy$xHc^pv)=w|`(B=*DPJ
zaly4UtzPmoTQg{|xw&~j)_<bzg`1nm>CS8+ELmH<D@kgRNP*&Ei010Ok=~fW^r%En
zS7~P7%UwT<-tVi@?th7La*s@BTq&K#i#2_N|MTD_b|5A4K3G2U-TeHK@<tZq@&h+-
z@A}E*Z+(3QP=1f?Z;eaAj&mJ@t38cNpE{S{nLSK!U^R1*ijN=44H<ipv44V&uAV+Q
zndX7e)2M4{0d(<drpANLd*^r5tFP;9A|kq-Hv?}u(Ia#9Aio~DUtPj(M1xX(kG4ON
zyRv)az4u@Dlu*YvJ#BfaNu#T}Q+wZ&`sst&t;ySWarfT8(@MTQ9a0(6W%K%t!p}Wf
zw4Gl=S*P%$M+~e2BdXwuf!TI7goC{I4*go^zc<$?=fI99KC8?7`yB}r6Z%*k@H*=s
zcR_+>b<6FIitAE2h>6RqW`C9vo-WZ~iTBg-?gw`9CbC|7+MZ|<0blxbi71F{9$pkl
z<KWpiJs(7&XVtTN(|t=mhz@oy=CC1N{{(S*G7Vd4_gR|ENV8!GLHDxO_zfET-C2xC
zVv<62T<%ZrgF5ly=I0aLm^p6EPaiH8vEln2?Zu()f4<#ee&nv)xp>ysVYjp>6*;yw
zJyD#*<hI-umNKuME0-kOip$O>$BvB{&i>MADCxWyE_Hpx{R!rwsXxMW&>nJg+Ii#1
z7rgVUo}U(DC2~7|Z?apf5B5W*&sYz<Vgj3-UPTd_C-+BaWk2D3a%r{m-)xe$K@cOL
zvAaG?1v`Jfm!6%t&p1gQ?>W2pVWgihu?C~_%>&+LXD0zP1r@kd@}k34#jAa|GHaXL
ztBFgvwbX!UKQXvE?YMj~cuy{nK10w92a8$O9}gCUc^?b|8};ybT)Qyn@{~e_5@f5U
z?aEfy=>;Fdrrn|<F0fNPuZ}X5MhjG)%gR1ajl{+!$h!%}zNn3gijro^uP+j1l5!HJ
z5tWrWr^KAc7sT!@1i=3e=w4th$#?n>sror9wIN$u!kT9Su^kB(r$3hy5bj@=4IoyA
z8t8CsS=UGsmN~C+3IoJI>ASA;mpEa)D`ZO?e~4W+4}8X(PF6A4eY++xP*9E}os19{
zk|E&Qta|o?V*pmc!n(^O(Gx+g^=;Y2Wh~<XFK_HcW(Su>liw(t9+8~uGL|4CS@7lQ
zp2V(Fu3XTu%i}LFz0j)5)fF248h%@;hTy~d1Y~WGc1oFa-yK)xMUygF9xQj?qKyLo
z#i!`A{dW)aMk`FDFcR~HYT7c_XsY6n+zOLMWv3dvK-BtMH5L_zR&NSC><Z)h9`v0~
zv5J+F@e<v@Q>Teb|K^L6-GmOz#pbju3;F92|9hCr6P26bAdvur@BgeQR0<cT;Q9uH
zV>MQ4rqiDjHYF7(M%x3($DKiS1W8cY)Rg%R^P_NpYcL%wvi=+r_1X4*8mXfo{Ls^v
z`-UyatE;PMkb-Lv`{sXF@AZxqs<|Eg)zBmPG5gilZLE6O?h!K?^CSOnp7Zb4bH0On
zQk%Su4eukvyMCXq&xMW|L@Y`TDT3&9X)p=I77@{<^{$bTkbf!Du1ZEUy<Fz;jOenE
zO9Q3#&pM<Y7LoE)j&MHro3!Ixw@E{74&>bCUnqJ@@+vvW)xBZR4b_7`-W2#M-EB~y
zF<N{{(ry&1UDV%Vyf5j(nUFk~6&l8Z<=J#<e7rG6^~7fn3yb+0MVR&9h#JU>y5<Ja
zm`mKRjK#&p1-bdLzqY3J{rw;3_;1-`FpR9M$!N4M;O62kzm3SnR&8v2uWHoB8e#H@
z3}OWB0cT@MhIM2&t~1Bi!yA(%yK_-mUl(fhc#29&wtFR$!6fRH9Jy&mPNkmO?`l@C
zgjU&<`2AZe7B<Mf4InCQnK;{Azqtv<&r7)<Vs#5utpE<aaDL$Y(g^kx`ceod`p-!Z
z3Sl!E`|^8|)Po1k6m)cS?g44snt*6BpGKg3bIvo3z8F;WRB~3P77WG5qs#xeO1mC?
z`|%$g<Yl1bk(7jhjvbY5H-%^&Ed;8AJ;p3-t#KOC`~Db_AD;gOPx$9=`|=+|#0(1Z
z^(pyCq})YslU&8?E?=#?P|_Fw*?hvDNTI<~2ra!R7BGa4!6q1q=n6JS9#l6C{JT2;
zSFG3psF50TI(;rYILYs-LUPOwAkf7i|849Q00X3bH`pF~?In)OW2`@s=i90h7}wch
zFaOt8?0>d*@6_6Q_>)Ahna`3l-}SMt4BB$rAh5=ZAHdufS<;l99cPQx``xbL+hxWL
zb_}PX4vq5`U-82~Rk854gv@^`0=Wa-|0jgwNx-A@kYh?vh;HHUHRf{V3~bE@Aqthn
zV76o9;+icl0UFnvsah^a0ybT*Td~VwpE)<>DSNgt7OSGa{_NQc3=(U!PUCxTkMfVe
z(D5vJSh$$&PklE;A)V<ro<UInI%7f}nkRy6Z810{bj<EA@kVk;uX8KcectHcfkw(z
zm}0ukKrQ6Qjb8fdQ%6<xno>WqB=vu`c*)nX;xE4&={V$M_QG!RF?7r_;aVxLXYK}8
zFxB4#a)q<y8CEUEYO9YT=4-47naN`8gRww3Z&x&$jg>W6S*`TY&fEzPeaoqay2ZZ$
zSW>um4z7NK-CRhT2b|CVItr`7eA%tjD6Ew?M}0xf)-ecm9`VgJB9f_iv_7Qo&efaf
zSFO*?7!}otG*ZMceRe-8^1~!$iiZir(>B}!o1&=(cu`SZ*u%k##teX$E#@1X2Zn|q
z=WDGV>slB{d}tL-L2bUx+h}GQ8k)=tZYoBu4c5>*(d5=x(lCD(m&PZ5ai!5w_MTU0
zxAKd>RG5ocO3p(7H8(Zq4K#mSH_nche|%&;oShk!336W>4U@5O;`-@m4?Z5+1UGSk
zb1l?@?{uOV-w^vLHrrF(p)@ZBp^kI$M7?wpoqQae;|nr9L0$Y<|D+hAr(>+^0dm4x
zpTb=8RatAd$o2b-src`6aos`(`L5hY9t7(nG5hAcLSn4?X^axcmlSqO9kMN6+tF2>
zN0VI4k9{dX9Vvc`fA5L6atv8m#3fCDrV3j;2LXgWG#GQiezu`|tMu?2ly_~8hp|UH
zPL+43<o6aZBIf|D8$T&15VL4~Zz@Rld#`IF57g^Ch0%b{27cL)Me!0<Kvy68>@iPT
zf!o`=;{88Ry)h>SN?m8oPFF7oLR}VGR8ANxZmEC+f<$$`VPmGIaI>Kq(H{4n-*9Wm
z=)b|i8u!&_LqXe`<L(QsXHPR5)@W1UK!{Ow(OGTpMRkF2e9`FD)DU65JSAD0>*b?G
zrj;w_+_DRloS9mi=ihd7WCNxqFu$7Iti}mVb#*B_$n~Hw%8KXRyxfwsfMSa;oK8-|
zUOm>=k{`J2jat0VL1-*wJ-bFu>u!fC$ye>Ae;m%UBkKH|$e~{NrzSgb7$bS_2CXiP
z`;$j(B!YcRN&my(2<09k9qhTf)7_J8mSn>DMrZQ#OtUs$%2xNGuY%q?6AzI2-k)yk
z+p=aDJS8(T0c_eoUDuck=LkgecTb(lH`Dsk1-u-XIY*Jr{Fnoj8Y?QJleu7N{m|ES
zZAe?UqQt61tGH(nB)p(-fkIZYd!my9MMXu+j3H9GW_i5CQ$ZbC`y9BTVYmoMFK8Ju
z-fR0h0@WLhO7D)S-e^Bt_9STWKx`~7Tp^krGwh`iy1H-eUyp*kwbHVUBY^-3;jf+}
zuIks<!>;qrjhQa|0s`NM7{)~oim?YaW^r*5jG-UJiZffZtY7t|uq*LpXCd3lA&52+
zLiy{B=aqCq=HJ54{~eyUcwLAd-nr9s(lCEaz6aF6%=l)IlY|3KA2Q1ao5K2gqDWqR
z_jy0t<c3RjPlgBzbz2)^xEg^ik!|kXdEGd#DIip$P4`FMak>Xk^X*iwJGd^4cK%dB
zO->AJLpe!6s=_R<f&7j>u(-nPlkhLNxPDP_WiNR+m_k}XW873d>vW+a>78Lm*RG}1
zsx2Co`gA(pZ$UDXRC1PJmYZn`A?7T!<Bge5yFV+RXh0&JdZT|-U~kfQGP5f=v*SHe
z|NMogX7Sk7u%(rih|`Af_>$A%pYLetCnn^Rwm-AF+sd1Zr;R|}9BV`@m7eyN8tyL^
zr+3_gg;e;E_wjJuCbHtG9{$5m@mxYe<RN}5q&xGC+CoFe?frt0iNWgXv6VAl^}vEo
zrGwG5UC%j6`yZE@t6zPes_@;dH`JU5gz<yi4<lzF&KxYZ?sM2q3u2bEb*ZzY-EgWp
zPx%0IYUywSJ8X~s$rQCt$km}*n}{ulenDlxdDeypdx|wPk1t!jH^a@_1GcBhnWaN-
zdGD|LOZt~UZxA7s?>JvmC?5Ga*AaYFR&NIKFWmDrcgMvRzuvFPp#j~(0+-qa(33zz
z@s*y5iHVKXI~rpAx2GyZ{5`qB2mC^e$Nwyt1iP&0^XJWBgrA>Z)7c_y`)sf_ab{+Q
zxb+#MluKe=-Dxp*TNDW$9N-fyoN=wQtx1xPAFZkb&(*L3mrm0KF0lsFgD7f${{3tH
z+ke}cX0KJmwA8qXLWTD_1^Z@$xWb^9o~$my>p&_5^P(gkN8zw%o2HJc?jqrd4R8D(
z`DK0`D8pRcig{IfE>sD9C(-h-Lf-Y6-!2;m5l&mURCN{>5z_n>jxGh;kC*DMM+>wY
zYj2fBw!W6BUP^6ytRyx4`{{;WjtId$m}G1N!}mRzH0-IA5)q+Hmb;(_m73x7I=;?j
zfpMY5ESZ#P3irTE%I@NLFNtj0oau-jVA{95@!{Zw%y^34&533)kYJ5bqMralhWA9?
zL7!$Kjx9<6<mxh8*-J!!00qnvfUx@7skMGi`9Hgj>(HhbmX;hjK`ze*9u|K7{F%Mp
zPM-O3B)d{zh1#vk9!A)=a+@sZ+JL-So*Op7D<MI1cD*K5oIdxzmrsB`v}*s~dqddw
z-J28GdqMs|QSPffAK!~j+X6<1_dpQ_5LUG<<ap!76^c9r@-g>%4~8MO>Wj>of0~w)
z^TutZPo=FB`o*B>CXBF0tMC4xC`-VO8<62jdxDaallyPs$)^;4=GKKbYODc}&hueJ
z;is!FqTMR*Qac@$rvz&uv#%pG(|a43@ftZknDF2bBCOcPjK!QJD^!#nHAjspox-N@
zdhd^J!IMV|D9fNqq6?MseVy4KK6HI&p~7vIZ9!fluZCItj&)z47xwuunfG~kR=}84
z5WP}0$XIX@nz#t!0N7Fo=7maLALi?kgx8~A<Ku@{|8A<Dp^%Q#F24UNn$@+nt2}4H
zfKZ1#Ic?=-7ml@(&U4F2oox)KCutu((7)`T0_b%7WU)Qqa=V|SlMuXz2$1xZa9%jW
z<j>WqxL^2+NJ!KhaJzOH;s=3jh?+7%C^@}&C}_&7q7hehFzk}tEfnl_Z?DPfq4|dk
z9GBMJ(^yu2e0+TL-?W?Ysz%3*=xOs1(%oObbc}RDzuJ!UxFjp=%LN?(B=BdtlT7|<
z`1Mzd<*v*zO!S^~z}~~)i%m$IxzJ<JjnK=zR#t7f6LC=fH1YMPy*EM?u74x}9Xy8Y
zo?B4k_Tl))+=Fp#c?D{f<Dr2rj}gu8;RphYZ90>~LexZ8p=vVO$BRa=lpFI^LW1wi
zpX!b==-m{!`DG4A13q*+mZ$|5s?#L|I+hYWo_n1LS`von$8OE0Yd9w8&aUn6$>AZ?
z8m{U@j0%>e&BD{Fc&ev(s%hwrLMccxNySMueiUU0T)6JBU15x}!tuz0g;8$jdqqjl
z7&Ojvh^6JuwT_h-=AF%>9pORO0!-$Q+Qh~7OE@|frT)Sx^5{tP-Me>Bb*Z_yxeIJZ
zATP4S?||`AgH;gPZePe#z;#+`AYCW@>I~S3<u4_26^K&CzfW_AC(|>I()>1Od$O)8
zNm9{Hy)KP~3W~U;I)J_uYkN-v+4y*Snzi!=6XCma*sr-y0;s%ziDc&DlL!KGvIpjE
zYo8p2AB#~<!$M>MXnFSh`N>J6<22c=1pjV5w|`^oqlG+fxcu|V=3;zMtzTbQ>b-m!
zKA9U-tPP*4wornw%Jq2GHX)J!J;qmfs;G#gtQ$GF`s+q+ZhO6^pS9mAS^f=(wa6fh
zxcx6Y055JeAVQ71BKE(O=p`K9ZT^E&;Cb%MQ1-@<t2sG6{CRauC1~0NVD4>pP0SU>
z9+9~;9k4YtGm<|i%9KJF5Rx$)IpRh`IkK^98cr(AH9?&f&$3*Q*DIF1lYUov^8@YU
z<I2c9IOXHEahbCy?_&KWr|fG6G1Bpn0Mg4m5ppHcPq5zVPL?XSg}L(FIp(`zQw+0`
zj#|JoK>h933$S#r0I=s^0%OzTa~ZsDPZx5If{TKwDY(usClL-?d`Ga902@)5UOChH
z8{r%xfu`?0GD}fai#@)l(A~p}@_eE?arM+9?FO4g7RB%cxhJLUaCLJA^QwMUUp``b
z<FglN4&B`%7hO6F3d%_l2)#7}#&b7(ng74Y{k%#vV%kLbityZ3>2a^7&T1x^(x_5&
z16fdmj&9_}Ne{n9iuEf*JJB8b>rgne9r7aM-^GX<M?m|5ueEwAVd~$pk)S^&8A8Xg
z1#YDk!=tN~f=6vHOB_Mpm-Mz1;@@=;1Hmk_zCImXW{^mdufI$ROr~QaLN0Px^6|ds
zYUfua5i8z3H*m<YB3Yw_>{{EW{tbJmaj;RrZq6HzYz)UU79LWv?43*j7jJlb@w=f_
zQFm7M`$8#y6H~g(?YVA~NvSmMABKmNB8gPSUawAQ$rTGR+!YLcN)lbbn{s7q{hsT=
zC}Y87a_L$qiiwuV?z=E;nfV@<iL$a6P;_3YI(B0z;wm(WB}C_ta8bx4%15vwAY2`;
z>>Db1Yr<A!^m8}R-p5I{wlwYL>hU;L{kX|o3Zm2{$m>vSqU*Q@E?H~4G#C3`_s_yS
zj+`7w1ikQ;sHkYl*MO19#Ux_^X?lHX!NlY{WnYMla}QfYsL_=q{?&)|=8+_H7mUYC
ziI>IrL=_3&x5?@H1nI0?iG4o#Vep(&i*nPrUOGZ3b%VM<ryp4w!1=2dW&DsMDq-{_
zfdWs!we;Gf&|aQXi~s_As(U;~wz5HM)kP$zCE*?Sp+&Whmcjcig|2KLIJs<N-XFS`
zQ0L@2Fshniw?MZ>p;w=RBB2dC7fVEOc*-S>Qe|qSQa9v8#+G(i0yDtXZ(IkJFdSh*
zLXUw1sD7kLrD*qpREIIy7^|q__M@ThKAElizFd%7g9t8xnS$XKmLr5ZgUTV1(=3oj
zL5w_#RPZHfB~2VPAH85~EWL0kZR_udCXrHLnOM35gSHDQZ8OG+w@sk~irxw<E1%GS
zrC58`Xr%vlz2S9afT`=YYEw`gwPe8pjH93hI8e6g2MYCil7r*Ke?_6fV+Rt!Q?gbm
z!UR$A;cDWIl$4XU5PE%{tKWNX)sw5r2Uph@)s*#N!f=WxN|#UW1cV#~8zOL>cA8C7
z9vT6kM}r`wfcUEnf6B&D%c!0H^#3()%m3ZJoiyxa<wX&!t;q!{;3PtdS!3DF3+_7X
z69PlgB>N5r`~Q#iC@WAxsuIb}_?%imfuizMkb+XB!WcK27SJ@V0v+S(*yFU=Qf_2J
zC{T=8xPbpg*g7_tRh~PJuLMVDx-yEFz+aL<G`6%DnI4)SMWUh$Xd0;TJCijQ1&{ky
z4xdu1fV{cXm!hC7p<7Su=YZ<j^)_689k&H(oF}cC24~FFt1C+w*Vn`8d!u?$Ps35y
z`|CfWkjP?$<&}Zz$=e!1jR5kiKX28JFNMrnA_2Goo+1T`<JI$E_JU8v#*V^?*uAB7
zb^13?ZLpapZH;{_i>B_x^kM_w(V(cZuK1)Ch(Rtx892SXFpWxB|4P{4s;Iz<dovqR
z_;uJ1a!uq&;>ol4f)9Hh&8F4!yTHVdV)LkIH5m-6w1KmEDx6Xf4m#q#GC3*adIc8)
z^nDTA?}1$W+oh33&L{>94O;((V@ysuLY~^@RrK)dhy|Az@W`b>q4IWVsB}?y3iQ`l
zz#*OeGex+vJ%s)tc<(Q#aSe4T7S>;9f!G%V#`W#nw++l7*j~AI`{Wse_>J?<e19P3
z(d-ei4lND>M-zC2gaDh~{^$4a?2?kSwGWk2xd<Rg!@2{3K~Yn|47npdUj_maP#7w=
zn$^Vt9TX7}iA_pUF*VIv)a(gWIEfR1tEW<X|D@lQ?Y><Uvm_$=R4#>dn|9ijb-cuv
zCE?FqVAIcWTVwH_s1@k!-j$iJ;L<2&coG-ukoM)SaCk(7q&W2Q>7?L$d`OI%%Bjz1
z-@|{o2P?BrMY6bvo64MJ%o+SiFB;+qnG{PUN29YGszS(SxeMmXRqNn(R8CQ?$}e5J
zBQ7(tzcsWyZ|bzYySV>8vOz-<t1B!w>%*muh|8;#7{UOlz8#bR1!9FzVlr^7;~IQ?
z3nQg461f~sXqCYnGgxT3|JT#g?zNnkaRPxTLCJl%o(n_pWw*u*7xvef`cTcgu7BE?
zZvIWaGIh_qtY+O=pf@x5roTR3O6l(5ad?n>6S*n&8uZ9l9QL*9`5!#!=1k)$G^{fB
z^*#FgrTq!0TdEZ#^hn~Nc>_p{$#)*|I+bUfCNrye*iD~<aOBWlOo`{~Zl2n2zM~Vl
zOg;H#e2XCW$^Plg)|lN5Ih7m!-_E6|-*O?{J^p^9m1PE%reQ#ZT8^SC=8%*;b=W7P
z)Xg^7#_7xF;7Q+klq{uMr~HhQ>6AwL;IC~II(Nvx|9M|aFP#YD@>QFM8b3rmslP}r
z>G0>9uLEtB?7?oDkd6zhfaj-xLlCBM%f*5gIh*Yn%XkpKVP&;7lXdorU%!&e^JmX`
z<Y|REhy#?A^&2N!dLpZ|O%;3TDRJk&<6@;U{g<MG4Q8|-#X&c9uOl`<UOLV@$=QyX
zM}Z=+g6e!-7M(u;{V`Wq5|sc<1<}sNBSXx+QzRhUG&-1d4gBbg6cn%=mHsIexc`Yj
z^xDnPu}HiYRqW&LHhsx+xXr|9F;$%&`#wm;-8t1sy*feKx9<+t0WV*}>id<neW8tv
z9+I5Wv;3kWyjLFUmRIOIx-qdp0<u2dv1s}G_wR@Fj~VZy)^l^idwLXQTyHQJ?j!Q@
z_y0ob=7Q-n1~+Coi&m{y|D!3sT(_}N!N^2_j)ct3)w|dc3v&a5Z|f57-(3H$tr@rM
zgIVdqJzGjnO}!g5k2>X-lA_~OgY*M?nZ@wdB>iY-ZbxDRE6O;l;5^fQ`{$1zcV?HC
zZQ^3L(u_e@+&s^|Es_3_jzx$jE<@UdxayDlLZAAc`<7}`$(qt<`=DQ|c>3$NwH-oK
zh2$z>r!<i)U7U|VQx!C)h21AgOVfoOJW#l`PAyeaK59L?U8xt@lBDCs9q`8+I9+j6
zJO}^r3t71s(1N~Z_XR1F+tD`-V0i1L7Ik-bcb%_jgzscqop@D(^M^l4j%VD?%g*ZT
zh4(aKCf2OgTLtp)y=+Vjx2EDCt-#6dFszyaL`5lU7LV4a$o$@D_9p?&9oN5qo0glk
z5{%mpDH|JqTD>$kHI4j{#;SUQjr-!J;eSq89{=^LdTV?{IQR+=a!(QhbD4jWwGhAu
ziTPJsE9|^Q0=lf;-_{-LHrjoHMg)4~Kz@~~7lhYoy>n~(7A0z!r|z+UO89Vm_~7@f
z1m$k#jO$3J)^c_J6J=d&73kZ=Z-#|$;dF<aX#LVE?=c~z$C9!BtXerTVL;Hy2dq|C
zAotz7$P8F8zJ`Vd&<_bnRmY2m4~C^chjH&_?}^Momv7K4XdWiEdptbdT}S{56IK}Q
zyRz|Ob}^4c`zN?AEq6lq**d&;8QY|TTI|izSpB}$RoY=Z4lRr7G`hcOq#e%#^mseM
zotYY3vKZW&ni}7O?l|Dz5jx#pB9G|}1B%Xa^xnc4(3JRV_W|(*D#{a03-Ae$zU17{
z@@5a+moHy_UN3VF87nw@k*^-mp;w~W3lu`7a0}pHq8GI;4GtR3>)x2FXKDyKw|U>F
zt*lQs(Gohwf1hlL_OaWaHU#mi(3|%wi{ya|9Q$t^lRkGoQvf+&&(t5M|L1x7Bd}Mh
zh&`QN4+~F#&HVNk_iC*w2k5?YeAaxXj<NvWqLiE*mllEhpGkrB$MtmQ)$KfNS9P-g
zxo8YJzwffKc<;xLAI0<I<Kw*qnel*?!lx_EHpWY|2R!!V;h~#(x#{WA>`KwMy%l%w
z-JXv2fWzeos+0a#?fc+Ni|NUbE-Y#~Iu!84=*nxaoW_tb6~}OJI-ATbDN<b_3Nb+>
z+H?lZ^}y>aSn5@%E^6Fg;1?eGz4iIQk&wyq#b2W<8|CM}Co3o|ZLn)dt=pbdN;I$v
zsckDW*a+f#G*IUoZcEo4YJdBT>}q~)-t@l9lwPAIwQT;gD35m5L}$I)bAE^fqkM4q
zrhn7&uObbq@ow+=44A=8IOu@s__k00M`+)t$uGTvVy8cAbobAiJ=S$VR5Og1SoIxm
zvY!zWhF$J;vL?UCNd%GJ2dqFZDzFUp15~zuDSmXjd_UH(RI4&r9WoEJ_Covd*V2AR
zk!6!yz!PHM3_2-wPGfhYN=OP9C4oKp<u;D$KRkvJGM6_?LL>c2&VNKM=t$jQ$z0>2
zKS*s7cT<TP4ZqLNk66OOsB&dS4XOrtefXOYvl@Zk8wJ-NB&c2%?s0>b6s_ZQWjDCe
z7Yi(J?b2RJIL|@0rJR&szP!s!M)>+?mTr`-3#}%}f9ON1huJb)>qFa=fy?+v#8O&X
z+88jZ4H^TChmonTOu)nHGo7YLCbNqVxc0*N+DM!KyCU+Tp8neRqGWB<YLe|i<CD~}
zLg;cRErRNBq*YG`9ms<bZ3<GHn4kXiqj2~2t#`F4KftF=EF@SztVq;ZZ+=UF7e(JG
zYceK-xSC=ituS9HE6E`%i>UTr;`EBpuh-(9+jXpXgbJskq{N^2FVrFpug&*TVt_F_
z(NK~$f0AE*c`+pSTj3Yt!wsZjqS3n;gDRGuXigjS->?Syv9kQl!*DF|xQx+)uyPpk
zmuxDC!nic<D1lQF+Oi+*d3ji%sa`Qhb=G=)!F0Qt!<kYlrp3S*VD!~r0_@P6uMHL;
znj_8I{n-Qjyg#d?8HfFysqwMgsJ6fg3|o1&8=#<|pg!s$%?vy`YBTAn@jaU2^EYdm
zL3VR>uhg?4l$0MQ{|m*&D!_UHz(KRNPgl8xfa^s8p<{4Utc1L2Bo{GyTK0kTu`(g#
z+4Ck2TfN~S<_NG=EPrQP^^%!nf&2>!6^7|>uHNxj803O*x)RMVN9trrw63pT<g$n^
z^{#JEVPgUFZ#c-mQIM#~wZu|~!9Jio-wp}%(4!z3lQ|&=S8Q_w$tnqpVx$c9{!0<l
z_3-Pfls_-oE_$?`JzpH0dbqpany_C4|D}9xTo4<(RcmY*L0RsW6{!)#X!SA|DG_CY
zLj6b+ai8FoxmuTx5(wUrhht$aT~UC@75NFv`T+D%;JAT<wzGV|JW!`oQh#w5*?C@v
zM_~nOVuU)ch}UdvHs>V-^(HBWfvef5_BcpJ)K8S)c)w(6vEET?=!Esyb|i;JR6bVZ
z;ZVS3mHPANUp<#vy?3Jlkb=)ml%e-p5hwHM4};{n@T{$^H}Z8%42#lZV|cVx=O-G9
zcX@!;S-3h2<zu|hfvmb+(JxX<f&XacLy<@Tx?Nirc!h-2UcF)fdQs@lXq=9SSFh}5
zs@d<}y-UH$N}f4Pppoj^;(#0lp7fM<877afwOh&w;Yg$oHNI8}6*z#f%nN!tUdeJu
zp?{d)&32=C*o=}+u}w|VGrQg$hOwopNYDoW98}-q|4Z!ZI|kCWs)mL{ivNA2pwu1i
zrv0C<W|$_~b?ZQ(Re95b;cV5SIa}|S&q7Z-*f@|$mCw3}u16>2jOxktcUyRC!=knb
zR~+Thipu&-ld-gr73q+I3-tpS7TaP-*>%}UY;1WiH%@_ZqyVF`zKOm`7hD$qtrt3&
zqu^7eajSY_R3>aB>kfeZ;CPj8aoYi(J+|*r(fu34JIQZ690iCAIL0?`<+y!qb@ivX
zy#cZN<Q&K!NCCJVO7WIzSrb#v#UN{%(hAi}JH}e%+svzib)hujY#aL@m(Kv;)PxFP
zE0K`=599|fA22K9t}<+{mg3GI_;iDc+J&$HWgDn1??i-~pwV)GVQs||LUxsO9NR}*
zl>Yqrb39*1uD5bDx37E>MO&w$D<0({V0v4TxVig08!S51ZpmPS;9UVz&@lkn6Oc6^
z$^y=!$4}4&S2!^_P^YZG=j7%l02Q~`01~=S$ASEatN>|@OCx;vHSRJAb2qlqC47~T
zd(y{vH>$=(W83(h%|`)xW&IVX<J*#{c<iV9jAO*J(jB?H?@l{Jri9}P1~`CS<Pceb
zuLOnaS$yKs$Rhj5OWc<ZS=pZpQobdh4RE{Rjy?pe&$T;Gff^1W@9VLpRiM&!*4d?U
zW(aWroQ$teSV6fy34+z1yo$4|kORJsQ_hb2G;_lHDjLL$ayn{OKkonh*LQAM8Dz^}
VdcM@;2VZx>(ooS-u2h7F|1TX?RZ;)|

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-filter.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-filter.png
new file mode 100644
index 0000000000000000000000000000000000000000..ebb2c939510d7cfdd693f9000b4ac3452eeec4e7
GIT binary patch
literal 20259
zcmcG$2RzmP`~QEWXv-+cEXoR@jLeW7kz=pO-g}e0k&wt}7$IaH^T;NfB71MgI`-cF
z*Qw9v^Zniax7+{s{oQW=@2_|763+2@J=b+z_s8RU1wB=ex^(`=c?1G+Nk&>i8G$&p
z4Ij^+C4fH_j~%4ouXDE28V(4=<vQH|cu}mEDdCfZjxtXk6HXIeC%?mcI-vFq0zrq6
zk$9xy8oM;&V@oyb#<+_zun}y_PQj~@h#f}!JZ+axEJ`w6-A_9H&;IkPh@iXo5XA~_
zpPZG)lOB<!a<vI-`FPjh{<yO4`;vzabUMBGP5&@AcSZ%BOO>X4Y4k=}L)_{M1qt1w
zlza`_yQi98YMi<*vz<;o^zi`STWdrJ{@cJu1db_2Wz;=V+!?Z|vf1exX+LPwnRk46
z=@#x+Y4*{eCi%<PxL@my)$zE$zn#99%ZU3T3*N=WAlzqU5%?asPb864|Nr}z1Hp@@
z{Z^Oz-_`~aJ&O2R#NJkVHLP)BB#(NOdWbkE<eHU0coS2(0D3Cu?d7k^=}A_B@Z(K|
zSX}iJq#1Itc~Tfrg#$fK{4#?e3CTS8cepgebUR7V={t8C@DNjmhTol+1~spSA-*az
z|0DGS@$%!xOxKNHyuD~q3HX&6qPSRa{VYKT?b#Qe%WJN`ySpzUOs&lxIXP{alZTSU
zDliTX4j~W^9%$t{%;H;U(c$hIx!r7#Q(lsCM(XWm&4ewP1GmM@%l1Hg;W15eKkt+x
zCn8O)oh&C#+)(w_eG<%5o6)v-rY$jA%3~$PQ7`p*C`U)KY*~fHpYh?tX~9L>likMk
zs-lvCq>$R$Gz6mg1&PPd&^V03nya9p&S0!H#{2cj<l6V=LNHtu7}~Q01-&UvtmIoM
zhs7ET@6n!vR%U&yEuX9eee-oCM(%R3QLx)M|BS@8IN!AyEf0dxooCNfW3QNs&OZ9k
zF|<Nkxvkk?_dD9-`SVBY#ra<9W+E-?EMdV6G89gUM~fpaV^JqoE_yK8re2!wt4Fb0
zN$o3yxg_@z1U#-)%YI=!HQ&~DwBFU{tA7P9^_~2kOMMhUA;x#<U)foSp3a(nUR->1
z&e%97Lm0cYw|>Kw`4n#+t*p?9PJr*)>S}t(IuTJq{)0P-B3GKEDHn)Nt6=Z3jIFLR
z*XCCoESIhBP&bzzN!;?~@R?WSUfAR~o-`Z56i{=gbp@4{KHS@2RZGQSj7>~1OWi#^
z6Y(C)oOjh2xZVWPx<5s-ml-ind$V4;c$!m~=gx^h-?pI?*T=d_4j-AKkr!M+_=-Z!
z<FK&jcvQQqy*({2hF;pi3SYG}H<xsfyMWL)FrZqgJYfGZL5z6WiusW<Qik`<@95Jf
zHolYnGj$v~lADu5{mKPrs%7;bTtAPeE^`v3>q*%WY}1M*iWf|$%nCM|ieXPKa1ePJ
zMyTsvq1!Xd9&^D&^2ckv(u=6R%(AKohKahMDf^dwvpe+O^ZDjNuuj*%Xl4H%zcLxa
z-pVV4xW~_L#`=yF%g0R;(26;QfTg>BT;;l7s4bjlX=>Y4XlYV;pwso4C2vJs+;839
zV645$8}C8YLj_sYFb#3T<ij}1m63NRCkFRfPO9uF3YM6{o*#A^6$<Wu%g!e=sEWeP
z%`0re(V~f45v@R^m(0qY&#+vrMJ#w+dnataWM@-X%ZjcgoNV;n6MAq4F}FPL+c@RR
zAd{hg@=+9_koN5OcuMc^7S(0Kwm6~S7hLCJTK#i!tof)e!|(3CK77PAa+~LFZW={i
zn0!R8#f~-q6*Q&%h2|H^qk%Kg*W7HgqqbNH$CroqUQ&^@wg1v$mou65-b)qd|L$Tu
z!veF5<lbY7$<D}#C{DW=f5u4EbFsgm)bLKowhsR{Wb*>&vuL(!!8fC1alfwx8+CuC
z$)iS`-K6zzoC-hL-kl1oop+q+_O>6f$%fTxzq)K+Vs9<tyyxzLsr+hblk^tW_uO_t
zs-H=PF2_TG9Yfb$vYcN(o5qOoLK$Q}Bzz`BM8?=iXlQ6OJY<mh@#EJS1Z|pv>FxJ2
zciGs|D^WUn8X6QWt-QuwTvo<rW-`aesUE!P+gc^w75X}5p6o2VYM+j^G%6=1o|Vqi
zT;L_=YU%Cn&N}~k>%&snkWQjzZyV=^tKhfH%-Wwnk$VJ2wE>sZwad>SzM)WowG+QD
zIYtfHm1y_pKKGmFQf-N7_qJdjlQ+^*LvI@fqS;~Shp$?9soaJ$N%N$4#4%=%fUOwc
z#s2{PiCNmiFLy9fF>`iy))v!Jc=(SOw%5u+6YY6@B+J;LtcVu(BI?Ip1__~DKDr-1
zmb@WXOlZJMP~2ir`YQf<6AunH{jQ47h%CV%D%WMV+O*adGW@0eNIy;oFZaslwFKX_
z*%{u;>@^pwx390~A4Zm3QJmdk>N16qnx1ArY>{dzRl=~JiOcA+9D~bHX&vM@Huz{&
zR3v@pJ)h5U`QaXVP?LYWFM0TF$1|5Qqh^z;4UL$%?PSlc6e%t87ROto_pcBWk5u+9
z26?eWiLFk{AXxE`rnb^;8*v}5OWg{8is5H`FC#d$(^^x)Amh3frA8+cA?V8WQQpAR
z^q%4QpMTD|?I`>+Q6+~jkM-r3vhKP|AkKgD2~`!S?zGG`5tgXHt1hzWoA&*93!xfq
z<GQQTV99~1+&6FA>$!zI{dA?wUOyuu&M?)Iu%mcXY%{wU;TaoXD5=qRTuGmyp;vc2
z(}`PQ+|EN`9q1_DbV)ck+(e?Lu4HvH6B83>E5aCy2=k<V+QQ%EThZkgkaJNaD%a(J
zxN?u%0eLz1E!DjEvuE6Q7#ZQb3c$su-9$npc5s8yC#j{UZz$D1n&Nhapu>{>&wvI=
zHww<U7pAsnkw_#3)`5>|ZegKevzsiUnZdoZj4N8{vL@U8WU4hZ+L>RSn^o`0uWR>t
zc}+aW&Zl*q)3ZU9D^z%?<$L@@TaVlk`9+}5e@Uu@+Un@_(XS%-<JwYhi}&ZeA@4fJ
zFC~^*HX?h$6%Zwhiyycd_$&|e_mD;3`tY=^?Pls0{AfPsMU9bh*^d#n)w5kX4NU6k
z=>xA&K1bgd3SizT3M!dqhl_tqt&RVbR*z><V!qF((yf;v<hp9s<6Lja(?WSJtkEw<
z_xSCyN{H2x6-By&vulN}+k$*zfrC$j$txIi&rg?LDAsmZOQ9~d6q1%LNu?J#g=HV{
z7#1H<t?o^y-}8-fcVA11ajHUT&tUaLax$vmXz}DGYr*c45)*d}ma@hvr1h0v$-EsU
zo7gvt+h^U~mNm`#t7xJZx5Ab7q|)~fz4xRlOqVX5_FKOMhwC>}8}qDp4Ckc6whcWk
z@22IQh9M|C&Mwoidu`1d-elUqaa!tDvi;Kps~j&}Iv}Rr1z(c&zwVQWd{%IVkVyC!
zUOK!+#Szk_^%tAsD)OPY@9S}t!t}#c5fewT%>3&E1i?0Zr-a1qm%c){uPB|<*H^@S
zLgm!;|NdKgpXk&6Ctc#aa?$uGHtWCgAe98Uh<_mT*OVCwI16nvrKY8=Nk~a4Vbv`Q
z)Q6-QNcy+>lV3|n2IqU{+t6LFo2U(>lj+nXPZ^i+2yUFR(1~=C@p#)2?`N%+u5w<{
z(Q#GKPzj<eBrWe`QxIgRV}e(YdYn~*oy**3{S9IXLk*IB^`9OeI`i?GVegD>uuO#@
z&o0u3E4jK@@@D_zD)=^jnf)Jvz$;ab6oj6_UF{bh$Ld=LHt0!1M4apJMu<Xa<=d%P
zG2EE>WueV-tCV_PNbt8nqpM(i5zDQCFXilS=$hyD*`nDTMdPFyes|;%1xegOVI2i&
z^xo@N^@rdt;7XqQ#aX?om%AygtL_zN#;lopP15&XaH_@2rd**pmz<c0_x}BRQ*-lx
z+KDE0Yj5w%klj5+B8}!Z#58nu8zv{Sld?Q2Osz)zdV7U3+TlDq92SJ_Iz2Vv_;78h
zE3Gf-^_i(PSKDQeF+Hrom65g0Hcl1yQO}J_U&9+ZCvQRMx<Dg6n7A`;<Lzzz1g&N1
zo)^v_qyD|*C1fvracxOfI|?oWbriUxK|tUFVs7}v<iqFB;#?o^&dlHv+^f<N|1>wt
z6c!gJr>9epCwCOFlMp91`5x7qk~uj!eap#_eEj$f1m4X3vL+<tPjHl6B@)@B!_D)k
zJ65VRfmLto4OxQa-p(MV&f@ET^0bbwkuxiAmrC7qCp}c{CF)tlG23-maU<PC=Ml*g
zmlmpr1(;1Vt8Se61|{LEM}mjH{cyqISX4AeprBmJ$}M|(nR&wkvr=ae(E6ELv0zxn
z$U9!cI-YCgDT+P2w}_@<MRLqtuE#iXi**}WrZ~v8uvDOwlgi|$t82m%rA&Px8J#s!
z*+ca>Svd8pRkCE`GgS6`kxW5lYBp)IVTL8gpjYm}pk5hUg`Jo?_Wr@=IdS(!trZ)0
zFNFi0g2QLYYkbZWafa(7B6-VV+u@c6;Y+dl&cnZ=xmg2yjIy<p*ZEOK@8$1s^6~~|
zYZWIZ<`I*UPFXyBE9N#_zxRkj{6orVtd3#G;FoPpji$pr%UO}+5A*)y0l)igMH(6#
z?g@IbOsQja!!8Xb=$2KvZKP)JlPwk=Xb;QS1+dNED)ByY-_MiM>daHW3x`Wra<Wg{
za(^*LMR|E_URK9gh%hb<-1l^I;~&Yh(cAx>h)NaNpG$Up7^mQ~*&#JA9$5Kl?Wov$
zlYVb(kn23WO@*OH_QFP=_p0CK7PhZod1Y=+FSD1v_h!p(_xlrFq(Vi0u$Rwb$2GUl
zk_YrH8N<u#>-PKEv`0<3m+N_o#yY(3RHCwjv3;mCluntkI=TA+gYZyZ1rN2Ln{tsS
zdMe#TaI+=LMKE+>r-=4Y^tiaEv^QBzWRe^6Fsf0n>_pP&B3!d(;I4d`_QUKkV?Rd4
z)SaaRd-t(Q4wEc#8=s;^Y?PWV=ZFidmptmCv6U_=TWH%fIHN6p>p@<QWur>gY&zpf
zg}IJ9=6CX8rS4vxi2=Mwr#ozP?fxLq5|0GM)`E;pLcNK*5$B*PkNX(+!-VNlpZW!Q
z_xw2SkT#6_tU)r@Oj%Zxg^KX(1J=kbOXu>UKDtaR`h@lCRzuQvuW?(}x;KjNeT3tt
zFVXTyFiw|WxLw#oey87JC~MT4V#}&xBTQ*nAERkjbaa=4BaMi9Kf_$3;@CRnIHcDn
zt&YO^>Qc~A6l+(%s#fsAf;pnPEshAG-rU?OB}mg)SH~BB?)0=E*Plqqk(!n|?U)c0
zWcRcE*VK!9-&%Mr4i9GwW)gHlBs+#XZ^cj}Dp#B6Q~j!Pv_DF^?Mb?c;8kO{jHju*
zS8D?KAj%=F54e31@ILoAIWOyDay;*miG4ZwR{kWg))zA6yX>P8&tjF+$zCxkLUpBv
z=@5uhxbJ<uk$Pb2&m;wDP7y6l7~#%{OTxsC?jbU#a@4z2o4qGr^{ojKdDYw;{i1xq
z3u@Wi@2(fLimkcXg3Eq{(o5~DlvL`uP7^~K-s)tfD&pl`mEjEq>6ZeBs%019-Er|n
z>|B$k9^&^%mmg$f*KgeTxtDW1`17K>M^%z}+2Gcl_cHQ|PZG1Ub)3p+d=BlpoV1n<
z2f6s-6bg%q)Auu#ble4LPVa{qxb8+C{==Z9SKuMPQaMX=|G|USlhKk5ype6=>1B`Q
zM=pwrk{|0y<^Ps#bq1V0U0<N;Rlggszwcfv=-7cqX@6ApVqf@@k#RnP;kl{ll_7Hr
zB*qq!3m8BIZE@aKL(4H<{Sv+AKpVxYZEam0oluDI@(KzqMnR2J*J*@P%!8|CJ(e~O
zIIo{?RxDY%`+4a`RJ+@+^BvCh{NkJQtJ1q@Ds>Gc(tmwDG{c!sKp@y7c4yorGeaez
zy}kXpmX%dQ(OtdEf%tky3pac6$gNls?lX48N6iwT`hp>m$v~SIjc8#UAKF3rkzr8-
zYvx6_L(Xy}A3gcwbBpy~G%#o6w1*=vF_V)gD~%|mEPlAP!_oJMA?h<L@=@SbYnL-n
zY#9rQx*OR;G7n1+N;AYeH>ECi#v7xHi<Z3vF+|DsAHo%Pm#hK~(qCX)7tTmdUgv%A
zfO6DU<6LZ3Z_$8D6kh7@-~HbXsF&7wGdW-d!3e_2oE<jVBuKF6(^6FpfcrzU(>U*c
z(4`n&J`cG$R4I7(P;z!ZuHqNNJ}qlh84~_mG~6B5&Q)1)Uy`F_S{$qpm^y8pasqP-
z6PVfdd9bvvjFVJiEU%O!^H<C9)v_=q4StiegXk4ozTElICmH#3XU1RgEhiE6Yw!#`
zU`g2cbafIh&i)7%A*<}W{2QB-?}Iy-XuNlydv5Otv+8|*JXF{zeEv~ky7mD|!^7It
zGIHo$oO1$^o%PkNkC_6@ZB37rPI)9>h|a%>5ewO;p`{cztUb!mz8&6mPPFnj(mLm-
znZRU@y^Y6bOzbl|6SnoO(DkODEesD=LU*jct@qdY+zM3qemyj)+>^egrDbvD#kHhI
zWvs*Khov9PnwD~M3oo%Yk~UoospI51|HU`TnUC9{r|_;Sc5trD*(}Tly>DN}irYu6
zt*z+dGu4~BL0fOqtZwmk$y!&$38$(BT%zRprjXA&TJ~IBb*Y~2&zdiC;$TlzHL}oq
zd3^5B;J&$g&6UF0C*ecoQ0yXT2|XxzEPo$)V`f@jovEyUXLa&sL@F{Xmiu%C8g(ci
zJH|6oCR3~vOu4YP$FJ3TY5=9Q7u%Q5S(?tF`YvBH@<`&e1+1MLHz+asim^Lcg<;xe
z8;gN~ikNct4wpK0a*Pk~ly!UO!3v$0@^!I7k@2=S-1bV5^Xwdw$xvhU4~?cC>^PXT
z&pddn0;P4=O7MH_oKO|{qYu&yw&UrHdBqi%ezCDppfn<3S-hq8xCXgvsBQugyzjU4
zfr#)_eMvXvcC=89^|)0`hkxq3d}>8euMSA7qQ~w){a5=^Dp#}5{f*8^{nv74vaY1d
zr~P0{`a{7>!L087#?6=8AO(eSkiQ^v+I_M)p9=|fdQIQZXD8~GG+8*@)N<sLlai9g
z(-9U%6-x<G4h@<G_Mt4Qv{!1{T)EOI9pS)(1$ux!7<mP;{P{hyAB&53c`W;1!XCyQ
z8Zckd^r0Ax5v=tA?_et=)QPC}!1{Wv>rk|o;4)NL>rECT18o>NIk_`7J4sg2F*bF3
zeH_*Ejv3x#21O%nb^$tPd<+06!a@C3xQcd7E{6LUyEvQ>ZebqP)2BR`Mp;6#5fwlX
zcn^ruZ1rbi#$j&y=Wu|xG+Fg{w6M;2UVHSihtaa$lOzVqDq2uVe(<rCM?#-0xIQ;G
zSD*Qkgya1+iD!z!PNv&BnN}QHT5$;pt*)$wY2}iwH-v7AjBng@U$eSjTuA4-{`I*C
zn+h%I&jsZnk<-bQ=t0GATMMEqK@nWYM}oxpBy>z&r<K!HBw0k!&N(hweb3Al&_}G!
zv`YE*ZMiH%drt-=7w=}ia13QJrsZ?l&Z5dPL#+UQLU1+84_}se$}1ug2>fhqVC>*7
z@J(%YauyaA93v3y(&L;7BA<W4QE?deYJ^NfNRd2$<ic!Qd_5HEP*kzFdX31~NwS}(
z=?}ha70EmJyWf<Vd_-E@kRI|T+oiz=wMKRRKNdveEkkvucL!xEt}vdnGVCl%@2G4c
z#uG*RHmJt5Mn#qOl9-XY8#32<&y-%utFqDl{>2?>BSGb7>sps9j(HX+Su#3_EV^oJ
zg<Oep!OX~x6yhiIWT^?SeHxgv3gIjHn8Mq?WH|7FI?%FYZm?2y(K|7vueaXq=^mNX
z-u)))mvo&-gOzf6Mb2+JC|!ZR8J`7=?}fdYikVu=fA7M@<(Q7WCkOX`x8-XNTBzjh
zzcf{pv{LKVt2CTH-)#OVdX93oJ)v=LV-~Y{!A{r{;&7g=!_8T;G0RQs>c?KQEemdg
z3T4I036kkXlU9nA%U>ZNoVm1EFVkyT_q{3X*H#^K<;sdcQVT1YLsziVn~zcov3xm$
zZJDS_7GB$>FUSckj`A;>#b@vSyll(BmC>^G;KpwrU;@ZgiCcI+W5kZm%Q1RUL3l<-
zzAw$=A{d$-+JZ5q9`0PxattK96BekCy~$S%rpwVeQ)}NRuAk!U^l&#n@0a*4L!MF5
z8^7nlgA7bIjpF#!)YZ^Rqj_Y7k_HqrnW*wpG7)$CisJSuF8Z(59ISkfe$xCc`*MI7
zATPCFN%Zy>QB~)N!y18#U(eCg5SEFsovgF#aV8BqUAgt+!uq-@!NreJS_6$)To$c>
zL4Xa0w?<^+Ho5~aj8t>INmr)Ui&=$@fFa6BJqTCoMw{Jho@V6aG{8!dxRt!CJu=JH
zYth}N7|VCr#b4_IHmr#rsS6c(M@ZrMaLUhCISXR<hD5&XdP(HMvaVgE8l*j2-8aNa
z*yJ4j%lXd{@#wu$Tb}8ZGws>>skK*!0k5K+f7|g~3JrZ-xpgh)goRqlwv5$wrfjT!
zvs<O(PUg2^?eq-Z4xge&89GT-76)&4k1kicmlbO!Ox}^%8zO)rw|)2M%wA&WpNRCx
zVG)w)fVDi%&Ap@4lDVy|t?L*40d-qd*^}%QO%kR?ius9WXt-8VoX1tK_j!gnIJ$;A
zUkQ0^H(?im%lM|n*8$V!CtOGqIZ8JlVULlE+Ax;jzy3H<>T_T3><<3R4Ee!%7T>7I
z*Db%ID6oqg2S`O($knQsa(<6E-+XO9*Aoa6;paOWAA`NB{*eN+yGDBb`ctBxh3<m&
z`EW^dM5pD4KA`Wyo~7R0_XI74-Dh;5MDMr~Qha**?MS1Qjf0Ng{bzl~!m}{=KZh20
z#c%d_znL$ObQ*$-)we|mkNJi;@fH`3%jxZNT^8K>>M7QvWy2@<YBs?~;kY=;Q-am&
z=j8%)){@jfbo1<o!K*i@G@F}M3OSNvdowavhW*RNb8LrNZmOY=+Kzmp*IWvmbA;X+
zJZyt<pTB=;ahO9f{rk22B|XlA*Q#iTfRXXhIVyK!hFH5Nd8N37Kk?utgUs1LDMynM
zWn~4*4^|;>pJp*L)Z^nT5xVzj-d1w9I=R1J{tiZFyupK4rIGbMA46LBwCq59l$TV9
zT&GssoTgctaG8gDuC2o(>ofrFjf#i2b-njeVs{>w>AA?pKJUY+TsprWM6h$-OU<tM
zwOJ>Ya+8GOu`7e6#j0as&?7bM^DE5RO|yczG=nOfQTxZ?!kl07D=XvsB$G}t4HBsk
zkEE|3QJ-Paxpnl|rqY{xviQ;Fj1~KtluDl$@(~Q4yAy$r<?L>jc7a~jqQnyQ1BeRO
z`qbvScTgRQXojTx4TaC*=#^o1S+A3(57%F7gp3*9EG4~aMB|Yp;M+A{2l#kmB9KPK
zD<@`0&V`*b!GY`J&regCx4qS>mu(FGypTx%)`PySes=I96|N74|AIvy-iZGnQ=|VK
zSklwSuc3>dn-gV;Vp(v8;sp0G1J@^~0Z?Of!i3DtG`Pc?zL}3nP!PPTDev_V_%Ghn
zTgv2ezaw>OZC8`LzFYL(>wk-S=Mkb23{=9N-{`!0+xTD0)|%^#otN=w>$NB@ZrwYr
zPHPm}I92MTnWe5Tv{*o4Wm(vJy&vT;DW)w;-Y)&({;WPD35CB)qw~m#Z2DVM|L^))
z4d;Yt!cdv-xjQtU>#6Hxy2U4V?lc#%i>C9BZ(Mcsf?~qkng;d<KdKf8<nT_VUbS+z
z?Zdd;?fEWrmCIBGrJGeB#{T(u$?U|M>vTKZs=Jr)CgG{GmoC>}w`Phi(Pw9S{2nY#
zW5TA&Lz)3#zKCV$Q$m7P)Y6q~7fG+g-+jeBwgRyQY8!%T7fTvWsZe<uDBgY)s}4kQ
z_u%b4WB{O?WxmH37K@lk@oV%YX(G66%;~QG19yUa6Cf?Flq2=|$Ma}z^Jpzbv{j)l
zX1!&}!~>c7D;>F<j8@3cW+kDhuO$+C4Nw^NIS7I}J6ooLH0|FkZYLk!SDKX^Yi(d^
zRMje;y#Bf!GQ;P8)hw+HLV-`8KILVjuR-uedgb&*M-Dw`rAE>`OV)l^flkUMuMmD7
z6?ObokjB6bGuBrs5>#5KNeENFjV`|VQ9dcHtkt$+u(U(2xzkz=HM)<F_w%PV?ov#d
zi&`z?B=h4o3cWM{3piP+sE+W^2B$|84|QSvjD5H@dl$c($0+4!MIvo{wg$hVt2C&0
z3{r@ghKkTXojZ?y?w9ce3|a-Z7j30kSq!ciS@5<vn>c6XZ=Ffzq*on$A-rYYeJ!*>
z5NeKDu`CNvD0|+9^xCB8X2s8Ls?WP54VUP8I1cqn(WXapzByAkgj|kU|86=|9Oa;Z
zuC(MqKV7j=ZL4rUD5Pn;e(iQHsHIREPW+U<4tX6hphv`S+Ou=)BAyFc5D|g^6XHNN
zRLcw`=N7GOYGD&LV_$=$hgh8z5^{6u1QFpzKmY+|J<jLo)XeOR-KJ?(hLY!=oX;Ed
zHjmpuVohRfF+aQ=f)170z9OaQ5@UvM4ft>ar6&pi9>NDme<3yr!k5yz(g$Pwz1=VV
z+Y4apdK#x38d1>*8@VTuQ5#ImygICa7gpOG_u62}eZ+uFjBfKlwcT>CAB8$31PSW2
zlk>8agIsX=l341mziJ!(wczwq#Ud;7N<}FkBZ3w%?QU*rSqHrPXIooFZw#={;QFU}
zdPIS>&%d_=D*Td>9Sirv6KxY2LvfaXnC9HnA(ni)s?mT`j?uR4Xg&~C5df9y)1sK7
zWyO-h5`1CWwvc}&>`SiPpi+*b{b%CYSi}x;GZWBY5325jb!SLtq9KU1@up0~f|VlN
z_ulo76_xGiHp|U6H&F2py`-kyy9I=S_4cUg)l@sQXAb5&Cp`X4_$6cIDbqg?Xx&O6
zoZ$F;z3Khr5U8dhBmPoaI_RjE73&8(6r`0B>-szrn?8xExcE<ETpv}kML_I<tOvqA
zVzd3%h>#GJJ<$*7K7c^v<yDc90Lr4_J+jUbRB(r>q>$FR<$^62I6*~EltRKnCkBfw
z)^~6MCV-H+<DNWHy!ZKIAo4c&5eYK+G|H9{2Pk^U6)8gg4DT4@_g;Hn430y)HW6-;
z27RWll$+DasH8aaXa882yWoRx4;4*o0&eLV+O1uCdz6+80*&g{k#2$_a!eIl-{PjA
zh&E)Nc36UQ6Ikr+7*_9jt_3W1VuQL#Q*m%flA|(|?SU58Lg%c&OVE3?@`&G6aFl7Y
zTV`h0Pfx#S@YXHi3WZX?A2^GfNcQH<vcAb8<<)9onlPMxdFn_C$^RRM0bC3nM{OfJ
z!+xo$#(QIb=*m;4SNN*0(0+so1c>qvQo?<Nw4SfwU(o_@A^Q9mtfJef#(&v|{l$N_
zXL$;E$93JOOTU-poSYtf($aLKETChLw6a>tc<6e#*0{lP;S23W&xvp;6|2O401r?W
z{a9b;dKrbD%(2ZJjOfEYhT^j%KIBv^@0cfkaBy+16P9PhDn*(3v|_wO!WgP_m;W#M
zLa6T7{R_i={)^#I)^y2{az6XxenfewWbxx2_c_ISa|f3(hcNSm&Hbo8ED}Q?Ky|sW
zsK_MSgL^OMnTIea8<41}G!B4_ota4qKX95-0f-68d+S{W+iPLeu!)`E*4yA#Ohk;s
z!#I#%pN*Ww-+o2UI!gzn%CIpWDHMqtUJ!pH{kS?BBOl$!C0T^BQ38pK8jk+_=@arO
zJ3XC0`SPaeMt0mEj|kVc-eOEXtp<PbsosM!K0^Om`gaU6%h(p-TWvbv6G?wtOHSh^
z;f*j(896(6e9QV?095juGb)x<!2Wb7fAxNrt9av_p?xPxc4Fn^V9ao(>cAzVJtih5
zTyk(VHV*ZIE4?%|s1oIQFH)|e-^lSU<DCW!@AW-xkC5#|@SK2v4T*fL2u`V3dPsFy
z@VK5MW6+N4qlAY?+44Rh-A}@{Exj?JG}r#B3t*jSCaTEVOw`V)w@4ZHt>}10qtxtP
zNKRBiCwhh2b7DrU?O9V0eg?zxa$U7Tahcf8IqRIlgE?D1$oFQ8Xhml#;q<XAbs>dQ
z@zTE;l-rofT>7x~N407dQ)4_?Fe7NIRv@He5fG9t*~o)9@&w;UKSdE1H1do}b;~m*
zBYne7ow6gDp*y|eJ}j!ATZ{Cp`g8FRxrK!)x%vGXY3Sj}M`AGc=KM-w##?vx%ll0#
zf-{`GWXqga+RmQJF0{BA<M2+sO=lu{==CTm&r+pn!YFHBiq|ufsO?9hl?O&?RV#xP
zlwHrBy>2vsMDsUf$d~Q2hP4N*c-^sF?l-LcNAYtlvA>FRqh>AiQ$oFGxD#q<PdaEb
zD?KnR_n|`OTBv%e&8{X{1#&#THhWAts-!zuN3v0Qpkcja`@@nS`ot`#GH&UPI*Pr1
ze{25*&tPSimn-5$C0^lRpnb_TRMe}sH}o<j*R0w5kK;l9-!J}t@6Cl2RVZ))jY>yE
zc4eZW3<&TcC6`(wOH3=ffLM<=dt4UQ5^N{Dx&631jM&a(i1w^LY;%}wa!a&doB*w;
zD?>=dl2vIzUlsx8+_RrNxad~N{w#jgd1*8h$FJMkeqgt}sjlqMJ{ax=0SSYlR8mz<
zJ#gt@gtA?Q`HC#4uc>22a{nIxf-V$rlZ!+NEgql!)nW7jd)=J9kL?h?356%$YWMpL
zO4GG&=|Z<9o)9Ju{Yfep&KnOZ5|Q~1m)|r_t@9(V9NdZb+&_3r_fZ}M;1|RCfM=RZ
zn%vFrqxQF8^(9LkAdi$d&i=#<n-^Dk2+}z2Y*xd82QHg+%KQ4aZR0+coCmpjVtWxy
zS-=zCYH0-5fCrW0PI+R59jSe~nyA;*B4}`&H|il^CzhrXRLgoH)zl2_?MXf_kElf6
zr$Us@daR9$HKph-f)8q=Wc#(#^(AqhB#s?N7hI-<Lti#=h@(<a&%b(Rg}%VHw(tr)
zdGZVJ^LKlr8-SuQh!I&@5+{wH&PeIUAD7pi2i$~O@@WOO?_Q?yyip-c3xW12Xugbo
zH6dyG#q?`8<WAoK57&9FCtsU7$b503yH-KxE^YutQm*)hMR|1*@JYI?YpN=E@14$1
z=}dUjGn0>t1+-^zfIgO#d2rTUGcC&dR;rVZc6myv8O>P&2XAS*cs_qH0d*~_-!;DR
zbnx~<Dxl6bF#UiNr;>@4If3EL_>+S=&ICe&q@}IBBV0~{VCAKR@_cXUizNGz&Whlq
zeaS_eCV#Owy<gV9`|vS)C8eb|z?L#y{BHR?@67BhsG$CPC2nw-qMYpdBG=Wgt=Gg+
z>!QdZbHX@acKg*OTQWXcT8)|O;UF&UHDG{%;*HCfntB6!TZt}eB7dt;EwMgl%XIlR
zplgO5kr|Y^{hKxL1Bb4MJ*n@)$MAdL3c^GMm(x(M?p>+a<$-{bKT|kxlc43_cukZ1
z^Y&JeYlH!&C~e*8_{Wb|EJW?nut~bqng;eI(Cd+!KBwOF&20X)^v!J?TyVByZFpEv
zL_hJ1cMO3j-&}XOh_6+^!|^t_w>Nue+L0<e;{8%U?`2M=&CiMN%zTuEpKGbBH%UKk
zX7pzXm&RGXAc;%*Wno=h6?`}f9tJ)*(U7w;tOvmU&$?UvSf-@O9O4xqoED2sAh%{8
z-`~RSuGSJMA(6Lzg!%b{EV#K5=ZBmf@@{NJEUC{pEaCm!sZqG0WPzo@S;im$UJMY+
zpa==+w1RP#Pna2+Z*2)Y0||qJgG0t9EvwhJr+t$>%Bxf!$y64^wi-8=f7XAwRk8K@
zeT9a1ypj<X^ZZR;yd)#9QmUuJqyzG20KGy;$#kI+{rb5gOtAxJzH9_TET0|K^7&%H
zdrGIzx1@y|OT64@@V@}caxJ*n*w{Euu?s<-L{Xrpj?6e}w*K7ufVPLpl$g<tjTMtu
zroft2NH2PFM}Fwq&vmVOyAEaHOBL5cjVlt1YUduHrJcG+O1c5oArKi<dIjj%P$gN-
z#6~amrInUPO9>~*B4Sz|pIKJ(@=>Zoq5Aj5&%V>(P~Cquu)P%0mD{qEQw=^9uw4An
z1d2NV=T6iTiPVi9jf`Ppg_WgCdV}LOVxtT{wih*;#wK3(Fjj-u5vxmYYI0vWXKayg
z@XwI>Z0Ma>H0)l;^!j$?&xlp){-i$+8AILp#}z2mu-A^s-E8p?>G=3h%1^{o$-m>#
z5*;hke2{+8eQ(FfcqYSKv-B@s>#4rY*_WfwgUI`Ep7XmBYq<0{06Dsop%yx&OdROS
z5U{r+c}CFWj&E2;mG3+gq)O7of2zqf<<4NBGmF^T&?(tTgByU>%n;E{;XMkxz|~i4
z`*iVF*RqHPY1>FPc0N(}DbFjGp!t{Rw9D$cER1Z)!Wx|#wU{=(Uno+@6r>@7sK`AC
z?f`J1Vhr_4N|c=vuQfiU$fBfPfs*?@W7W-B2G*e1eiwt4@wk2g4I9&?E4;xi0}pY<
z`PzY#%|CUdXwyx$5#MOY$*$8<wth%bhT59s(aUvS_Md}JIa%8~5C(9H9%Mt81I3rI
zIM1Lfd9wGx0xPPi%UIKl_Z50nqHJk-UTI4_)2n9jaCSu?B5%|)2yF-a3@Nn6&dOSQ
zkiN5axY2&q>XV$nVy_(gEI(@_SAs>@ha#DSk(#GxY0FP4%?37mZSL=?Xi4EPq~2WK
zP>c(Np^_4QPoKpD3eMOb;TN--u{MJ5QLkqEA#tPP?+nC613zMbX&(|2!~w^cL2Xa?
zzXGkC7>+xsZVU6v5ga*jaR(i<JJ>eGVc=(o8<fjxUa4Lw$<$wpZtPXNZ#y}D>6^u=
zNA~ePl~6ATo*X)?S6zq--04a<R=J#ucjT!Kx*p`jZv16cM1b><LkLxZUlnj@I3{qh
z3`MMe!1koLMhwG&+`dxm=nF;=e8_!@D_%R%2yAB^iZcuv{X{Ft9x=!8FuwW>cG4iw
zJM7uNA`RX&!oQefP+$$_sNCd=7vA-GvFPHW80JY8y8dV>tLrTkQQ!(RE=(4#(zEUZ
z!e9#|BEtyoodQ2Vh=zzD-a|KsS3jkKR>b=hKK}k}*na>Uxu<0Kay$*l8SjRwz?iy5
z>Jt>B=gn-Wv33ua`9It_(P$V0CnHp8$OD2bDtyePjOcuw;1yiC2)?E-{M)MgWoLgt
z?qDMSxxZ_~|H+Q^54?o-!m&3S0a4D$!^iceDn;xS*iSu`hz|)T=e;V(ti%uMhUPYk
zUZm-Uv^f~}5&W5RBE;Td)}eL67{_e(=b(B6ilb*`ieRI;GPe>~g;Mn9d+y9ezPN1!
zp3paM&Vx>gO*PY)7xyo{h6*U_oOg6D;<-cMnmr>bdz*7LE4w1wls{S`)Bh;wd{AS7
zV^B@2?{Tuly6qcjARqwf%2`MwUi<D(29$JP#l)Cwksb7nzg}ioR8%p&wIypaYJMwe
zs0Unp;8aEaCac}b8u#_O6<*y}xt+yQ+`<$S^ZI9=NQe2Af`YlDZ&!&smShhfdfsff
zGRl5F-f+dfWc7W*p+uC;g{%?n42fdyZAO+m7$Tj4kA|PXYfhT(&&{p2@*RuG_?K%-
z$u3Lt?H{`q@l~S#At(I*jGz9$eV6Le%Zp&^0T_2Sf??p;8XzSpH8q&PE~v&!zaRsX
z7hRMrX7k7(QpSw#`p-<y7kV&|IgK<p{DylKugz#3yaIPx8LeCK?vX4hXrwA9Wse!G
zp!jCiT+7F?>|2J9B_!&Rh1H{rr*0q50Jhp1gSU8mE1XF+{PlT=xZ~B&6qCx*2qCY)
zsp`AkX~IVHWl2P2^n45~WE~0xLi*th=K_gnTfQeE<Hw?WNLx1^ohDX#?v=03>b<sU
z_MLSYR0kz5;VTynAbR7s3lW7iChu#3Jq@%iZed1?%e$TyI{yf?bas*;^uhbOZlaJz
zIwtJ(5bFXpRo-{kOjDz0`I@Q9b^<Fa?yLu&Z7O|%v)QVBe-a~i=luu33tA^i2-ev>
zuqyzNdD%5D@mE{~FBQ1gpz`_G*|jz~-zDfmOng;ZDZZbP<Qz`%(9s!zEOLDokQ(Is
zI0q!JtIc0WSv?a8G4TL6=)jDorMW#kQ1CB1O5K#5ynM*iA9porb<3qzD9A^HD(I`C
zocO3rEi7;jm9cIT+|N060J1I!r>8(tIF^rHEUNKlk97MrDN<1Gw6yMyiUNC@r1?`}
zGm=5aWWcs>1_m@*Ti;xWb2Z9VGhV{lBy*l~-%1(g&5PIG)>$b7Yio-u8|tSVB%9oC
z{h|!bBZsooq*{!M8hg#%KPXYZHu5MfgToRe<0rbKEqrhOS3_Bp61nQzK)znE&F5&_
z476mjz2`yxSa7|@>h-wf$<q2>2q&l9N|T9Cl-qui*WmmG_eS{=Z$SH4<>M!)#U#rM
z7cOL2T~EoIi&KOyhov<kj(Fivu*!h|#;e2r$K4HX6l(Bj029L1jd3S<)foFk7=S;#
z1()}0S+N1fu_)1&kaz+6zk;v1udlBaul$d&0DT>?E}x#j>VQ%S9O93`3y-5bkdG3G
z-y8`(B+~P^1W^(E_LA@=92ol-==1D&lA;V1qwVq5h4qIAf5`6iCId69;a0u<XSf;~
zO9@gl0AGDbE|&A5mRisMi=hHs1uy?~YC!M>teR2Ds_VmhpJy-!rRcNYwO)DRrbvWy
z0UUdPqZdSX4L`)14g%PtR?gU8A~v#eF=782gp3ycd3djF&LYFz?qaBVkl8K<27*(m
z;vN?vcm!a{=1CH3ZbCj@V&zt$D`)g@d;^C(K?s3QBX#=uX&}+u<v78hRy$kA@`}9l
zF%5KrB+)~jf7==AJ9lt^&a16g*L!!+B4eNE(q&wC2J`p7{4^bX3322r`e@q)xRz%n
zzNx9DN*p1SKlubZV6OwmdQ25#8@FHL6$DO~hgbj?`D=F>>P@J#z_7@peKI-8Ms=Vl
z)zQ<#7Bi+ZA&F{FJHNaX>+$n7At$bqFI|L9cylHBDz02Qsp6|*1L@u@;`FUs%B-&X
zRpsR&_d7Gn4P_$kiSUL&rR<h10LeSJs(>M#H-KCU;1?&(y?5%chLCo0ye19v`Qn<a
zE8xMt9G&+f0#Fm}6>%aKhxZU*+s}w+*SIM|0%#XVx$1*T(MTnm0Z0sx=as>a4TZ@x
zooIIo`Ytf^$Kda(y^!$@^?UrOq!+Zucp)|$#lWo$E3|QX`s;lCcD)|v6t)MoZ5C&{
zBee4chlfI(-=<UJP}Q>C)0~}_C^G;`b%4{FT49Q`eC-oqR{D&MSL;aQGMp{^5C18u
zcygRmJ5ddd6-o0$g<zP4%mS7xa^#Cgg)VSp;96YP|A_qcaJ@Ux`QwI)&a!G<K!f)6
zd$?2i-O-af?@euN)TnpBy*jrz95&wkKGjdK$m}0D|6p;xt~ZcQQ3fRhxYzrWY_`wq
zk6y<^TMUQb`s?zQTcJj<iVyGnZYyb&|LeJj()@+j6#y6DP)9lq;Y>($V%mg-fci!-
zL9d%CUlDGDwc`5)m&B|r`D6KuWR7L5Dy<6@l{_9|ndC3eO$PNJ9>y+gl$Mr;R5ya=
zqGgr6+{FzI2Gu$fszN&XVl)!lnSGt^M&0b0UX$$c20?V9k!lnd=g+WeCRK)<@+tW8
zV{S6*C}(v0vD=nuaa1d3k+{uRA=U|g5MHNdo`)c~;ncllGZ+TZBjbaM&H3N=$nf8s
zu{r^pdcWh!9mqh)UkoLoKID~F!I8NoDhBJf4%Q>s1hv>XayxS($A*eLc%e8=9~=OS
z34Abb&8sy4Rue=_>+NDgfms^*zkNFpA&|V|k~yFa&!;mZ2PE8oaeG&JlEMfbFQATT
zzlOJ|H-cXX@d8bK>sG!EayGAzz!c7|#<xPORhn(v(@UUX0ztzH4{)8Y`!z~ps&~TT
z;7dul%q!2xNzbk@X%J<lVH97qE@I^F>-sS5;$r@p(~~lvl)Uh0$85I<Pf-l5%rA4X
zdE^w7n%XSe^QZ1vDwbJ|Po*_Y@@4gqMLLHC4&*(cAMD!gzYZC4aikW<AMS)}=x{97
z`0Ev;@X|(|40t)jSPc!RkBs5mafBqY%`dnt#?!r?CJGt56Opk?CPyoiZMEE4(7rPJ
z-V?%;p|`c}*0r_}-M#t{UZ4gv-gA$@-i-qth3Mr+j~^TRbT1PU6Jv5ryL4EBNL_^S
zG&x_3KKd!8t6QlQAO8fDK%qgsO)fa9M$$!!GBPrzyXnFj4f#Z$w94N5`lKhX_O7k&
zio{E1>w851FUay}$c)|pUHe*Y3wG-kaC4|8L9v6HM?7InFTX$;QwFo!x@qhMZgvpf
zVZ;2zAVlYJXPZ&okpHT*x_1P1aQ!%T>6c;qVpNwrSjQ>))`vHu2XQH5UEO!<PhoS<
zlGqVVywCPhUyu-o=ONt;P``M8A%Q{Es_ja;9lG<94jR>~SdCruU%x#4Q<v2u!G6f?
z44b_pBO_y8ZtlAW9BN+$KU|XKc5gBFA8-k^H`|)FmtTrhv(ZTIzQ@V54M#JMOLLyi
zyqz!=o(WqOClP_$u#|sY488qACC&ex)sQpI^$$xZrP5!pf9AV9iN}GF<c~60j+8!8
zXe4IlFZudxKF?vfgM^fd$;6H1<PuRr#F#S^p^#n)7n`D;*<<K?8y?nf&}!&8d_s6D
zNm*^R+8dgTr0L`Ae98E`_fE@ACNUX5f668Mq@(QPhqySMy^gCc{u377;VAQ%vu&H}
zJ2;1C1q(T9rgnl@Zm;21`+n#Ja)c-^hfdkyZvO{CX?3~byG#jmnnuyZcNhB33p94m
z{R$fh{Rce2bT5(_KTm$oYLKUHp%aE1MFli8WX<0(USb|{ed`InzHaJ`n+>=7Q;Mr#
z;TgUxjf&(+-V~^Cc*#XQYj8h9fPhKOxlKs3rBHgw2Uq!lV_~ko7(+?U+31CSR3(cu
zC(SMhryV%ki@UkC+1!ARF2gfKi>)m!w&cq#-$maHC_^i#)2tqFqrR!NFOYPCn}&tx
zVYqbln2UtVwLnPv`0OUXn|nL_wcG^uVWScVSbP|uWn_Y)N+it_`PUH)z&<_Rx_-(o
zBqZdUvPon~m4T+<qn{_)44rmK9mRLgoHpROx>OivVC^zKh3D1skfim)6B(f8zk7N@
z{~Q%ypiziFB*?HZmv6n(&!0N^D{NgosK#58mt?RMG;k1kRj@r^_oS;6BgTv0zH_^8
z>UrRYOq~*M)@SUWiqein5tXB(v9DB;$Ml|>o16DizjON+^pNkfG4Ux{vIUFWW_RTL
zip}enD*WUgkn-T%c&%@QPZSoZAvJC6bc|3P;NO{+8-9%y(uPJCROR}cjLLeB4i*z>
z5->Bj?T(P%y4CWe#$hpvnI3p(MsQ-|R87f>7cIzmu;FV$R(iWFJA~F)i_puyLptG{
z_kJ;Plt70l0!%QdefhnXau{bIi@D%1td{-lbXcc1iHXt6&u#ozu8R^ZF1~&mXFi!~
zR2=7s_kL(N0CqYm*993Q9mKE*PFDYKLvYo&wutB!`|4S7*m-Vab;p+kcLZNX8LmSH
z^9YiM4Ek_G>xQW{eGu`HMkwe$f;ZIHuiii0aDHnB=xx|_CBWS0RSjOPQy@VgBqX>h
zrfW;nO40w8b%?~s12DZbg;$op4WtGaesTphe`m~=WWzThila}CJd>dsXvQi7(V33q
zqYMYApwDh>IB59X>}ffM+kf<>iuSltcuz7f)%b$0`<_55?_Gn3&0u+PqlA@83?eC}
z{{pmWL13)WnP7LlXE8hcp0$FRy(s5+!S@YF5VT{xZd$CpMzhT##Ka$^$!oy;-*vF<
z#qV{rzh#gW-&=ygU>qAOz2-YQs&osuw5z;@j{1|?=GE__jg7u6_O_N7IBuf4s1LSN
zpr#3~%r2Uv^<N}{d%=C%8Gd7bZE|Abl&;4Vg4i|J)soV7uvovVy5mZi|B#orqqDP<
zIws(Gbc6C;{~P#9O?t%S*!*>Ib;zKfbQsqYS9yN>MV;0Oeb~m+UY|o<=sLmv(CX&B
zKNP;3VpMQH+7s7~Z0N8~ji1OsFhH}qx2_px|L{4h$Ujg3_L5oAc-Y~6=_~@d4>!3z
zVP<%l+(ZIV0m^Z_dUA)VlF;w6uyW@9eV&Emd#X8xbZ`9o;FOyD4ozDo#|^x=hA83@
zRaFdO1~@685&irB&bspd)i(8oN#tpi0)F4|a|(P?pWx<!6JNcPX~xy|s@>a~=#q|&
z-?ZZ{-Wz)4h6Okajf6|qs}s>44(~k<*X5$B$CC-(ud4bh&Q$4aQzBGf9i4b@;BUs2
z{G+;Je26*;CUhA=HnIKb>KZ9If1^LGtGd`{b7yxh!6#^$(1#Ylf^lklyZ5nN?C$8r
z<&#C5i3xMHM4l(OALS?|qpkW4o*9sVdoBR0>D!|%pZzOcD{NCiBF94f-}LsI+ieer
zk<ub3w-MvdP8LY#+{bq~Z+H;NiR@|I<o$EYj*Tp)`aXLVk3AC`{Ks~;!k+EKophn5
zd=7q8)uajUo!cvT(xy1I!#m>Va&i;d^y}}%=E23D6i*ZGj*RVxEEJ?99A0dcOk3+{
z_etFMv@oJL9{NG(KP-rwf)487E*&UZp>gfyD}rqp3A4j4!iW?j(vvB16|?x|Kkuky
z4ez+J8yC7;)8kW(8^6@nij$KgZuTQr;)D@Lm;bunImei)T};*ZZV83uN!%sV(S_c)
zG+p_iy&%1V2a5-u$p4HF>n@SXk;Fd#sR`!8iIc^;m>b^Y3Hxfa?ExEI2}h?+cKRP6
zs!vKhf|mt%a3d=5LazqjLm$(8w39kx2Sax_TH!K<o8GB~P@}_5ld5VT&#W7I-}bBy
zZ}>Pz|5;Z0Z%F!Cy_k-uL=N^i)+iJ9znXjhAt|?5Vv`8}Ht4B%%G>{6dI-XQ3vK=n
zp0-fUc%dY}%1uDCsRuV-i({i>-+Ld^!Sfu*?&lJ^-nw%u>2U24F>$z;eEm&mM*P3<
zEQkM*+pr?<Pg7<V?C9{7exY)F7yM5Eo1k9NsDcdkGOh4w=v~9LE#fr(vjoU7#ea1%
zHcmYr3KPpOIB^GnpiS<7=WU<pJ@r*5+{)}|?A6hy4GQ^DW?05z%RvTq)=g6p1RXf8
zV-H4m!2WgDXJ>Un{4q1RQex1y`|j#Z5M$R|>}pdEL7L>y9HWQs%}FgaUtAY5$gNN@
zg6g$Ez_16=bHicdZ@cz85wLMj45cYT*SYZ#`@q!SW<k5^SuJeRuo7e;oKUuc+d{R-
z2`5xlgEyzg1jIEc&_Nt}?B*d}%qtVII$SMtm*G9S%7dAv@dOC{W2URb#LU^5)!xp|
z*ATx;PTKE5XWNU*<X4ge;=VuH-r8Om&3aRXP5<kzjTP`f_t$?NlAqjnsx##DT(W4i
zJhKxsX?O8-m2ce^_Kc4@SOv|oEV)(CFOidTxu>V++qZ8_rnb;PItlJWoM#BKYMhgF
z){E%0UjXxkYFYPp+hv2X&f#JV$6Yg#!GgQEXI8i-CDYSmZVv4%v71PI)p~t`o1ppR
zFvpmy^EV7MjA$ya2Y!h`CsHMU;k_eP7Mm~FVt2`Ss9lmjTI`VA3(E#TQ5tD7@HQA-
zS!mR~jMAluw36eeF`&DCAAH-?8tHyG#|Q#s$&`Z~=uel_(V@oC>%(7vpHKkc!P8uk
z#m9Bbi*Nkkys+zuS8Gkh*@csFqT@@I>s2RGBgInCOUsA7lM5>a=LrI@I`le#;f6T4
z-k#=4hEw%yEi?msfgldHJzzrUSenkkQpTyWmhL!!Tod8<a4IVfR008l;+cZ?0%Y#1
zK1Y~yf~05Zpb7z3YXAN*_#Ht5`TLlM5HOV?ULK29cY1@_d2W7L47$0Fy}i7IfSgdY
z-XS^nANSY*AboJ1i3`#M0@DX~^hjhn5KJZA%8q-vWJUu+qXA%5ayx=I-rY<Su`)X_
z2I1$pJdLorMg6=|TH@2Q@bm}@XvHLl^cCp^dCu>yktj8qeW-4CJqe*{hzV8v*Og{I
zHVIge+6%*aQsX!Rjv&y=p_{Z+5j(ZU2kSEr`c`V4RFKF-(3Yd4qwPnfSe^)!>$cVi
z`ME>?a<TQP1GqMvuMidu;w88b5UXolja#y(W!q1mvZsS4sR`^7*sUX3;+Q_lPhJQU
zOuCV4v30QKN(HL;l{t}&eQ#)g$BDkt-2Y}bM5sPipHbYHH)n$mcH@S`vu6cV)2BrL
zQW!|vqHHP)512XyLr%#VY2ZxP`L2RA!$4u8(Ka*nU1@ltQF_a;-Q?+@SdYpp@38C0
zv;mbzxJm>ixCwA$d)s+r>IyVNR(=FUGpQuy@iHlbt0nz*!z;)>j1Sp>F}kiZfVW=0
zZ{m-=#U$ILlw0H6GDSBjadxN^aeuJ>Q~qx~^Nz4(a+v%~FU%X<e*>m53cO_31vlIi
z7CyrKf!b`pU#a_!Q1o(c0kL97{iXL2JZI(q;N+HF?Sngy7lZ9-O-xLHKeuiM*`gWu
zRf|!K|00|fY*P(l<wn1`9<sY{T@uyh>0=ypAHr9CTl<$(;3II_(J-G;!5<WcdoIL+
z!(Veg@Nnp8=Fx%2MpT0z;`zkPkJ4q2Lg$~aJP5WVBrIm%Tj(Ihr}UpvF2W7}7;`z@
z{GxNcFfvmnf&mnzYN+I_-w-08zpwd3Pq&iT$jAs?#SuN^xRM&n5%Jf1G1R#e6CDi@
z7<_B6AHl1EP>s)pHZ`2*;;(HYfS2W!^i@vQ;GQMy-(G6Af{|8zN9~Y>vaGC&;5^|J
z5lM4jh{tY6!Xpb{jg7Cl;-0K?HtZi<Hxl4VK=}y{B3BBgV=of075M_@gTCo^UFf+s
zx>pCj<GiayDC%0ZD);LryJ06yU*cbzUdj%xK8D$Vd9HXvr#=rv9qV3N2gS5o6vxm`
z-(-4vkEpWS22xe^jtE=3^P_g>_YpR9SZB5A&5EKK`;zIjC4-FLptj<)JOIRCovR6_
z_d=ga1p)_~8ZOD^VG3)w&fxg5-_DrHQ$>lwfL_6?QWrm6^;0f70ey{Qj&4w_h1aNN
zVW)r%=PuSLMwUR+ki$mlSVBU=vm>q3(W=T%BALY{ZFD2E77OB*ESM8gEi{hUURfHE
z*_<ilC2}9?PL?n3@YY)~tNd5J1)%|4iq8!UhC7{KMtNNhl$xeA!Q2&u%>=DT0Sy5M
z+ywYqX3r#EK4c4gBm@sU(A=ojoi?F7;|D@NG;XuB+g0@z;wk>8MW-mX*JSHJa<BJR
znjj@k)}(oC9um>?m?%&xe>9h=QS5M>kQ9~@dNXp&GGWP5PwwJjH|1we0fEnJ$?_$U
zN&=Fi!}6v>0Ue<dV80BNyV7bbrvwy73>=?bUvRVRGQqx=+B9K1-k)c3$>!5%Eln_b
zpv~Xqzf)WwAJKq^Jh<+2RJP!zE;QRrpW_upLF^*5<AT|9nr!-N#993!MZ3p)fNWF>
zzP@&ADTo?a*a6cW?%aU}jrE}moOJ8UWg_p34k3C%t;LPz27@omj2av33>PgeWi2=}
zaazzP&XE^z=g@+?TI_RBTw0K)&L$^F1KqyG6<$^YWu>K@LJv~*tpWTrzaJBIdh(=q
z-H6rDhwjV%8Y5T%!QR_5yfWE;eMA}}Vg?Ssg2ae>%nkp&{oV^4-_TY@`t~=C3yFDy
zRo~tYUk%(DY5doHy*<JSk}yfaRb#8K=#0gn*=AaBxhNl%j1R^kz;aSBVz9{Jp#nG!
z4AL3yhO_W=gnZq(I?^7?F&Aipwf{;4kD-{t^#rhSi-?%)$|cF(3eziz1Npe^z1q5a
z1t=E(?laljn2C-K(LhQ(e7ozz3i=nW;e{o*DYLlDi|ua{iJDh21iH7hBEG(OSdlp+
zl?HD5iI8HF{|M23HFzUi|5e@cui~m|+%q~@2#^1tfi|(^{Y{y@3b-di4p=V&H=+4i
zetopI?`pCqu;u;wFnEK-im89k-VXe8`}fZ&{nwTQcl!eO69R{wcdb-k4cTp>b6-TP
z`G!Amb=TX-YT$k(VDB0@M7yliHes%p{Cag4mv3t;`)n^}Z8X}kU8LiR!qfiP$Wq|m
zGT<0)a=g3yL@!{C?sD|dfq7njpcp>wtu(P=|9g*X@v*w1Kz{^;hqnu>_eIOi76R^I
z0+v)#_MoG_w)dAB_S*(3=HA`K%RaA42sjAz>N9XO-_Ks7boZv&UXQ<40oR7_^jHdP
z9WP2s22Jm-wcayNK=9`A5E)Q|nc}m~h;JW%IO(+hL;k%!v8t&+m%F%3ISLBdz1Lbn
rr;h;}@&=-yQ_yI6E*nm_{<p7MF-M5yK+yx>0e1|Zu6{1-oD!M<+$e4s

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-filter500.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-filter500.png
new file mode 100644
index 0000000000000000000000000000000000000000..770141ad54cba4236f846e5af59aff2116c7f0c2
GIT binary patch
literal 26234
zcmZs?Wl$Vl7d48zh2R7T5ZocSySv)}!GpV7@Zb(X26tz$;1Jy1-CYNlJJ0*w`|G>A
zYNTtrx_VBZbJpH#tsSYNB#n+jgaQQxg)S>2p#}v7eFype2MGc4Ze;Wq2l4^!q9!c{
zRXy?L7;*q-DXJ(61yvV^`f36XIYxGr(RG1>!ua>!3p#}XgBS|R0#jB(RKpW+o(<ow
z(T_ifNtNqbLW`20>xxQInv2a90h5oND5t9<Qx+%_F2_wvmz#_-v%bFmmE=Wu^Y)&3
z^d|5jr<)9TyW7ydPV8bik;TjDa`^9x?qARUV%sPt{k;q0|HQ`+p3sY}{{jnr3+Hd}
ze<A)oQ2prt{5%b%l*iBWUr50I|D7lTQa=iKe=1S<^IdiVD10e=bJ^P;g>Sx4smty;
z^_AE4DE`B0k1gQcm+<X&()s>O_u~^HB*KrPY3c5$<Wq-Sa7W~iOLEYB`8=K{lBcWS
zM#_!4I@wKn;Y<Ruf)O$01|9fiMpKPOn(S6zwcpyH&`XrEDFl7)<6#jo9^<4iXq0o3
znGN|ywT&86QW&(K<M{q}yOt8Nc|d-TiDb(akoEr4p;0_Oz*p6Ie}a<j$G<BhC!4F6
z%P#qv9Krp&<Jo(DubVx!8h==?k2lP{i?+)q(+|ltufyz{3I59=pBN(f`?KXYX_7CH
z$me)h9eUfACQTsXw2`aQYb?^K`@wELf<veNOlQ4NS(e4)B-UiROp!w0NdZ1xOfnse
z9qIIY+3WBi9{F4(w_-V0nsA_dx!$JzbFtifuw28-(A{>^K8K!s*AnO@^?ZL!>2^9-
zcT3j((fLK#e=P^RpT@K|mcen5(gn6~Tkh~_Mk5r^@h9SxQ_AKuH?PralmmD@6?Jo@
zF&k3gGaJNHO2-b_q!^`~IJBFXcvD~~r_nKSSd7)a{1Vl@<hG$^>AY%>CSY5uE~rHQ
zJfN?;b=mciipSJhy9@GKUuo2W%ovxwVH&yNhs}qD$%mV1X|g|}IMD^tadNZNif0=L
z;M37*O6fPte<NR4RQAD(XTIxvmqYJwFXnw==r@T(YB9temLQAYdE((13$dZ7c(iuX
z!!lJ2=WwrYcS*{XXeYP93-Cmj%MH>$=POMHD>SR<`902RPsK$+x$ft+LO*9(>cE3G
zHJVMG`gK1-1)J?Mxn>HaJ<19O;O@TiUERpDtO)w1G8_K9%kM-dnoBF!tRPT!tP~Hw
zSIhI|)$Q<ZRLJB~91(hnc0FCt{1fn6w=UmSKvd@liAR<#GCEhWOT#vIww^Y%(C30U
zA$oXJ+{CBbgW-DfQL|e5#cY0$5n=}o?S3DvjWWa4kXMEpjbynLK#J$}&hU0$_<Vsq
zbvOoD;_noCSq1Qo@cSbrzrS7zI0*K|d?>yrad-QR8tACtBxSPpX<s3OUA9g-O14s`
zuF$yWms*nnZzM5yH6eztidMiIr~Juc1%qrNb;=?jz>riGw$Q)Bo89mEyLvM1jQMEl
z$iK)gnd?E)*_T*ZAXz|dSI^eUZU7lKZ0M601-A8UaT3P)>gezN(er0a;YSgRa+9kW
zc^3V>eAQj4daqk*%?(RC=GQbM|GIir*B;}QT)!9hpBk^^$^uV?W}~T!c#P?n!VL9>
zF~rfiI(4SRe)kn>Hc$I$&WnZ~$A?OsI$HXm5I)HK)BiCLO=mq@)Nq*lFAw(c50_p3
zz=*5YMeAYFjZKa0&NtaJp=g#Pk!5^8{35U01F08d$M=Rwp%l#(56J&W(I`{1-el40
z3%+4VXX|OO>g$Gvy?dr)cR2t`oth0N5ucO!KboAPK2IK%x$zb6s|k01hc-88aRgX9
z51erMF0smHQ#U4i?;z{8IOY+NcfcYf|F>WD?LSJR_*Kxi3@1^K)+Etn?ud$NYqDUH
z#|(nQQ7+}mX;lh^-@eOr^sLV)2->zkH`~m`m*mjf{kHFW2CFs7X=>u_?_DQSX@0Wj
zVj;=R&GC8nD${L9om0Q$RQ&UuT^|=;uHoNqoV=~3YiJZs<CHMUI&99%Py(gmHuujt
znR4xbS+OYt4)?RA?jLoo<*z3TRWxpMyJIN~&0bk~DC^?AA;?AkZwNQ{tDJ>$DfGqP
z566KtQTQyWl2Lea@S3Un3>xtza%l;a<v3}~x+h)gxXlZexkMCpE1(n}r=7>R-)Aau
z1matD*i?HR4@9y|oZdJ4qldz$4Ycq%)^41?bCnY)B+Z^~%n$YtM$?Q=9Sykb)@b#c
z?Nj{p9%jr(WYjo~e~ErDPV+4|Oo^P#RoQ?_bHQ1qpu-J%&5F=zz;Ub7E&@mIuR4=H
zZ{2Eym4?aGl)vB;`Ek9*z0Q}52Ve)>^GP__i_G99pKjMc<Y#@N3hvA4_gMZ5)|GH6
z+G>Qy0{3%|xl9MEu!*x}m$8=rmYQP=_J>TKw&w*eA-{cAG%1JHh`<|YJdg57zSLPv
zbt^?!ud;<?v%{vDu70j;7Vcn070Tz~qAs3`^sC9jL^fYWJzwR<9}h*y_ImE{3l904
zY+@mF&4r$b_1SvEB97<IKiM-KY_QztZ!)wr%2{a1J-!_K0}-EQlZ7`Zfmb4LbivOh
zG8r@PfELGT9Om0c;rFYKWQLc@?;nqpHnTnAh+tk5a}(b+9|w!u%HW`1J4y8B^c4(l
z-98A1lSc7=FAo{pQ>D{BQb6dpmsRkWzQ;Tz32_L%**)N>d#i^buC#h=0@RDGXA3#`
zU<x`&OLBnzGixIkD@9S$8>q8BJg!HzB+4m#je>FBVNI}mDlD%XK9`(*7`qhqYo5?6
zre?-i@U!oF5oLBVRg(owbJ><IoAb{D5Uk$riVY~7>VqY>I%rn)h2UOto;X70*NJ$x
zV6T2paE|eT$6wcDMQD)iyqv}Bd$^zf+d22G1oR^N<ml#ln@0v>2BS5*I(?usl1(@a
zRXn-4H*eAJ1)sMlXQaVRk4?Y(u^|}B?RdK5C@#0adf6oE#zLhOxt+l{hnyGCF-Il(
zXBx%SMWdSh-yCC}$jZ<#I3#ioht=75np-Z$AO8IK{O*kEy=$vwE@@DH)F028p|uSb
z<Mge!d#aOQmfI#W?<4ZzEZ&CoQ|SI|W;;FxkK5Gop!mjVK%98^g53%rzaw=VM~YR)
zR)!?qC>(*-<A~t*<Mqz!t;+K;hZ(CWdHOv81?jo!QpiaeB9LU21=!YA3SMiqNt;i*
zdRgJL`33=A)f4XjQi>0lAAZ$W0dcJEWx3e`UWs3{S)6vm(AjMc6qf7VqUewSDPmgz
zZ;Jf41MiQ!nCk5CC^#Tqtplg#%Oz$Ga86g;2UDEjeL4w{-!hi2@#*$(_!)dkrCn`M
z?|!bA@wRAG@Atx`Pas9$QA3Y#5U2_WAQNWZ9f)as{=(}kQExV!zo@_(Ix65H2hOKa
z%(B|AGN@AvizBdiX+$UDN|uPk9-b6_GyC0T@N|Rs_v3ugNYm>}{LMZ?X`<qpgIzks
zhvp<3u838pq;V4U`;Ui(QdM>IaI~hSSTECjm?%7E4J!WCh0nP|=^m3w+%<cXz)hna
zD&zD@K*xwxi|HXo=H`dZ0%HXxSj1Wx$fbzKr1xz#1;OQTBE|6M5+s8d#i2=nw(1sZ
zO#}GrIv-A$o&&#I=YP>Me||+}8G3uzbhyhd55rTZ^xbUmX-;O;9O->?Iix@Lpg%tx
zR}Z!>*c-`S&AAM^oO8I|k>rwuV$$&mOk}A66?A!#ev0_fAEn=cO|9@P39LhKu03?M
z-KWt5ObwIsDVF!d@N2U><r40AXNNsrwgfiP#cf)S)%ve@+O=I1?YBS9$R~0;bc%!w
z{+FX}W9RSX?NVLqE%AaYb-F{bE!^01!0&H}dl{Caa<N}{ZQoyWAd9Hz_ph^+s!Te=
z1D8)bp4YVN4l9jmg~N%<C$_OAsx>&~$STz4BLYknTGi~6DZIAHNMhNV_q3MnEw~J+
zt40FvuE(>P&a^tU@vfKC>Jt@W#W^MOre_Ns;bxOLeG|Kq?BTK6vR)yc9A;xyD0Bi-
zVeL;h!)lrqbZUk1%!X}*B#GARY{sNs-%9A*k9zV2#hya$E?W;tZEQTd8xA@70WA6*
zKU2JFQy97|_QhbM^J+TZ^?q2BSi^3E$1*M(_=4BUee+-ul-^(AD@g$Q>_7E$$yA{P
zULhG6QTCE6wd#(9J35$J%owCyKyLRJqzwW#HCex;5HgQ#-j03YCA}ABDE_Bj@U370
zUzyag-Eq5D?)0L`z1ylLO!|RTa8DG1L^ayY)nLj~dY#96x&GhpT;Y;{mV;rMoLX*t
zTN88e$<0Yc3hcT2|Mu%IY`)FMh2Q3hxNOtybozd<wR7O~f53WzAwZZ4K3$N#ybNH4
ze=~yF_RdElV5FU+Q}=I3xre}F!lcm4Ygky%v4_A7OXDkdMHk)trtd7B(|?N-sasYq
z{Pfol;^h=R%YCVUo<_=J2~e)d7E^Avczi9Z=|3E|`?b0tj@bS%{-YF;%va@NB6&FA
zZXwvCzzg$vscu)TRD~S1=p!vq?6AXS0Wr|?dY6s_W!1HJ9LnXeo!Vpb?O_$?-v<Nx
zE~K2fa_F_In)+YH{^bh=0=~1y|L`aR!4YNse`OFkQ8%3{<klcJX9ZRA|DKr-ZU0Bi
zvgoD_oml3>|Ltu3hdY7IQf?<25zkaWe;1j0iBf`YgN5D;l-+xwm&@@+N9Nt-=B9g8
z6#WvD-Q(4E6Vp$P?sDJyp|{1JiC@78=pZ`_2gGiM!Xv7bv#w85b(WK)H`mf+8+gaI
z%cAjqsPE_LoHnV$sH^)<I}-BuIJ&P-gJh|Ef7tEemSkOy6RDcishzXd`Jj;tmYmqx
zbCn>;ef&TS@iMj9ncejDszXYg&|eCVf8#Lc1bOVZ%W}+UH(?<bsc4wC_V9)U_5N8t
zOU=PJ>&-9_ASRoGHrzdLwmqHR8c3|kGGhRraK|rJXw(U|3qN0pdp&eW-Td4id9R?r
zXu_j1;%RMgpy~d4I2lTZLICn<wr^r$^7+dk`ksJo65x%!CgJ9IV|(&oG&rnYV)phI
ztV$HkjoRjZ4thKOKsP?@^L9H;hYG=Gi(Trux@FN@!ua*!@Ks-hxmo?AKAU}&GAY#Q
zU&Qu%fyolcI!U8KZyqhdxYm?nfaZLu_#BxtHJ-(`VtirNDB!KpE{X(&g&QWY>(6(4
z+sq%5xRwbH_{=(8w*sC}weU?3g8Av(9@Tak>*bm@URyzkd*PQ|&4v<PR?|D>ZB_u(
z0*#*f26HnJf25`?DdroK#nA{Jg{gS|DEhc;brPrd*Q$hm$N<#<8V1y2#dMnP?*iH7
z{(LLjAGb(jiAWWYbY4B+q;K<g`j~c140`SANd*-O?h9HY%$CiTeDk_7YjXQJ|8u?&
zQVYH_I0(wr_5!XjFh1ahYEk_Qu!E!y1ldmv?R?A-i$0ST;R20=vo5>d`Ic`q;<?G|
zxBM9vKe%zsj4JO=DyU7_pz?{<Z&m7kNDgOm*L*Ar_ia;#?_acWWU$Hb$A0)3%#_G`
z=uSioZC!1PZ_jMG!~WeqE&-+vlCc~MJG*=;+GB)5wVWGDxVht)Oz%&n@N!n)3SnIV
z*_#t5)LQcUq<lQ~VK%7_B~r=T*0^F9yxz?!<J}Ml+h=8|*sxUS*|F{%jAt^&9LDE~
zo2|^1S&W09uBBJW{OX7>Xch0dY0hRl^tB0v{j>i4CK;V+LU0fftH&PcDd?7?Zln<_
zh0Ng7&83+t8~h64ZJc|m@VW>n*Yg!k1dOAa$s7v=nUn9<(N0L88yz+$#8_sFm1lkG
z_17^=siH%lV)Vw(!Y63*njEgSdh{$9htsd^iFE>AuiJcA^ExCsmQZv27K1Y~Y=#Jx
zvs)4V7#Er1IFj)0^82oeN}-XN4C^nshWf3yxn3|rh=^vJC8#j(_*XdZgeT_JV9XV#
z#68G$f}@G~rBZ8j>|fT%rbQPZg(Yf<VmAAH^rs8-^&xo7qtlws!~{yIp>{79rpcGs
zY<?yug~3=7^Yy=ta-*N>T@IO7;UWqdHh&rp#uA!FS}!e<I>bhZA5LT!T21FSr3sx^
zRKgso+EK!iV8Y2aIc#>a`!1<0x0n=|rxa|~Ui2M(Bwb@KKZ?bO7YlTLbT&7Y)KIOo
z9_IMOFe6QVrg?8dLP_;YER?m|^xR63_e?N2|CW{4NnjQ5`rZ}_KN$VKTt84}DU>se
zb-sGB-lkv5Z4sS*VBO6>{)dar1ibD+V)v6ycIKOwmX+YLGO+YBxz>ri46}S{<$^Nj
zhQIy|J}s6E#&_>KtBit0!9<P{Flzfyoe{M{Jd8Jq`K~C|CsQ<5X2`H39xpb>-Awby
zhe!ZLE|s!7XAg7G%=R)_P1?<mDXmqkNCe{zthRgMZ|2mMmputlKWL3ewEA-(w2Vl0
z7#bl(*N0GF;-L!O`O8k!B-0=iC}hxos_C758~@h5^mAn7)f_>^27=gZv0}p%BQX#B
zVx%RjoirH+(f1*<zK#_P9Q=)oXE1Se8f2uIGA>7L>ycO+r^_|vNh(au_ev8I1$5a*
zow^&4$bI(TDors<LcB#7vXUJ-pH@aFAE5oj{0OA0^!%+O^RMo$q>t<)2V+T7ct$4g
z$X}tzU>>utMQ|{m5Y{^s%a`;B0b(25%arOz%9tQv7Qz)Wd#X1AO*~9U67qafbmU*k
z;KRwx8gP`&q7Om2Uw`r%CFDBjZ*U}Dq}x{cWpR7H5?-Y>!wZl~*JktGev$I?_TWo{
zS>0uiaWu$bQ7P=_s!T{|R*?d>5_zBOj0FF%hHO49wgCBL-Zo51CJDd4&5hf9x#o>X
zlWmg|uJ3oTeT=ues2c`5qvF?xhLI0RRQ%;eubTtpy+A0?G2%RLbQKUZN!TC&OEi(e
zF&K^W95CY0B|Ds0RJ}xtwj71_-08uRlC~SoMesFFNN?<-U_(My>f<%(T8gWRq5c<~
zhU9M?P9f18%BX3ZD-KslJQY0Te|&z6vecy)ze<K<L^s{7HUaw^ti;lL<02L}?J}ao
zgjBTTevr!a{`l(^U4pOQ^Xrj%kl7&yslb-aN@3*X(R9JR&*er(r^lw<5x@Uy%Nr?&
zMYIEi_7b9MS0=ttm)up~-<y?s`on2=vijGp!ccmdKG%1Iwv&i+qsh4&vfuBkQ-f}k
z^GGZPgV`Lrp*H8r)X&@4LzP2wlp{|nv>MADRzPJx_W+=JAJ@wZ^&X2w-z$F(Ach%#
zN$|RMg@qyzg}6fdbfF4nQrPDp+7AJv{SNJ9s>O-2!y+!_#XJhH69VHat%MvFkKT7j
zCT>u#V5@ym!nwucwoBiYZFeQa&Kd{}(+L6mCk@?4qK=2^`N+S=#&?|4mSr#veBO6z
zQnwu?i=u~-pJ|@wL~3`-*L<`2+)xC7{&^i_{#QW`8|_|N#q6my7BNIYT;5wNQZXB-
z2GYxS2`HF0mJpQm{rL_4*?8dYxKml^>D$!e)CGixn)`ckSGEN%+o=;moN6*?tzTeX
zd79vF^n<`Y$oc8+baAm{ME2=8ce>Z+BY{%-%z>5XzD!6PorQn!ZAvXAyvAVJ(yv_L
zyoHFYlgOcKU%h8bUA+IH^S+gyi6OX2O<NPjd!4U<N<ci|D$Tn>4b&NQ+0t1zBL&~4
zj4p0e^t*;28_G|;S&3w`2Nv<H8Sx}ns<_5_mRbn+>RvwvWfPJb>3N-ZJ`HgDzk2dx
z1O&WJOKTk(Pi=DAET}x6H*C`X^8@-nmw|(bBu6|N&UnCDumcZ%mm6A}7$hq%8WGF9
zxnTt{f)j@5<p#cuHjDM|Xbc6x%J86%Gb)k8ziu0K{*Zib;=0j(e&ks+h60E}XY-ki
zbHES6*VWy4Kb#cZWmyddp?KSfTV)@yXpTwQRD++j;md2DiRaIF9#3m@sfl^I%t!Gm
zKKml%UX}p;ck~-9Vuq8s%Qa^^0ob{2mgo9=*mi-+9d+FfCk1kYi&Zw-yP6k-T(+gk
zF(Pf$6oK~!%DS-64-YYff_zi<xX(hI^ydbXIf8ya8CR}{jF+bJxGZRsoCecPvcknk
zSdCVj?4tcapM)-FAZ5Sp{s=DhV$7l@si=`vfgE763iP6Ro&Jg$N;Dqigz1;b{jp?)
zp%M9{F-)X<^Cd^v;lhBwBo+u}T6E5Fzq?o;?W|DU&Md5tz6^AddErqG2tl+ON<ZK`
znXNT}-CSw3@hxfGgy6Z|?u6^_5om`q!~$iYkQU;|HV1@tCk~(MF_UVr2&$_Hi@he^
z?EtL*?d;QIRw)@+%<spS;&-Kd#hjzPM<*4a{R(T%@me$y=<px!d!Y9wzv%^vLZcx2
z(6XW&hwc5*GeRA_k~*$$d-3W$g_2o9!mpKn7-Ej6&&1n~XHLy9dYePbzZ3-y-2Y`>
z&^ybRcjX*ox}DgH?(oYw0tbq{VBh!K*lM1wTIdOsHmY^Fx9-b$B1Okhlb!y4HJr!t
zeS^+ePCs02=aU2+2w(mQLN%k$1$FgoguDMOLiJPY_$r_|VIo<qn6@w>o~fg!Er4<&
zMG{A5sdW3R$h_$N4q40fxJ1s#!by#50}fF4;7jrCWxhaTS6rzaULga-VUizm;09+p
zTO1=-!efyw&N1TudOi4N*(YLn3`<hV?l<5{r{83oi(%H#rY)G<;ZxJ~PA++alUfwx
zzb)R%kXpkUhwLDM&Kp&FB{=77Zl54D*mwPmrw23h*Bh*y!Or-*Ft}e}@(j})(~}7K
zGc|~=5W@QF>P|)U%jrC3^?lx`+@RvU*fwl`k<i0;V2-PF&!K^<DU`_&izN}Z=o0Tq
zMp`~D{rnJ5mh-)5lKwoxa|#HO4UH&N2KEGK6A+Mj-R^NJr=4Eikud<)RvIlINKubr
z9%<ul9;D922ZqPtOdcWS($I=Xwho-c9(+cwocIen<2e(V^J9%}$3eaI-%}F^FTX(Z
zO$z0FGaQ8JB^0P-tE#YE_>&p%S|@@h@{Hy1yH4>RgHP;Ps#n5I{3j|>7HemCfAwXn
zSE&#f|6PJ<ZZq7QKsNDW(RQWk4pIVQ3EJxc+6tLz3NCwI|B8eGGB*M5y@+eaNC-pu
z>pp{so<0*_-}M{4I=#n+SK4~Gf>DD-<2AJDp`M7)&OQZ;R@vc%0l#0+8TC$Bw6v7Z
zO`=d?S2g@mR8|QvVoIe%@ZGMW2Jz92?ncim&G`{$st)B6dO&Z@)5%T|T0n$Yx5n`>
z`<m&d(fZcnR6XBb8Nv&*^NB^#sh8-uF7U@PN*$2$I%_~m&Ehe?mwO_hr1`i`G7jG_
zbSlXu$dluS=rNm(DmYQ1)rd%r7q7gZ{X;Y^W|Xgg^cO+kyWVH<0?C|R94av=M#U-^
z0o-T!Rjk?pC(e5W&mvqmh!9y+B8=M@%h`=aK4**|%$rIfUS(BFPywpcn2PBXOaLJZ
z0FB+zJ=F*VffE>7|Fl@%2D`<*Xp~b8PH|FWIWuOex7*Mac|Y0HoS!&pexdc9X+sFc
znw&0>w#7n(4U#5f6~tQDfK#hlAx^#LBG{``{_{PO%^ix|Oy&<`*_-6k7j09@?>I6~
zpV;nOV&9R&Xl#kU+ZyN9di-3hKmMaaj&hq6#wjqR<N%e2gwzV#J5ZQ_ez7R=b1q(=
zEcDfUREs)mZnQy#<PC=#ARwDXTQ|=cM8r0!>B(%ob%mxpd?napm==EXE8+VwmH*b0
z31@`K_Le%0a)z_iR0@;!L=G-W$d_J%zdyFfT?x_@Zs8tqd&6zE`ZCdr8&jDKE!27E
zsDL*V0c--nry(Z8PM#e3OC?g!reE9HhUUT$J>gdhXjxaV(t94_OMus&JA25)yFK81
z;i|aCXg;@-69Qf;@aa4*_+OR4fE9ZcEPIrY*H;@YRA9JviHh;uSk_ZXXhT8<FyKC;
zgS=tA%lTCc=K1R(SH-6;p9f}+pYf3)er)N;r_%7WlbAxDn`WpZZ|oUPxFXuo8xXFU
zK=H{qi_?B)Zo~wISs?sePXy1?!9<1BR46}?#>?JQwxqIpF!s+bbd3s^`ncQa0>|?B
z_pb=ZD5Qu7d1uQkyXcRIotX3R(UZwPUujhQ3&$iz3LLuLns^fuBq0-x)O{kWweTY_
z=w>(0uh5~(|K<tbXb2)U#t<yRz+jq0VjBadURafrg#5f49l0`oAi=||eU{U)8H)tj
zY>LurRhqfrVDS?mp(pEqK*J`N{s7R6Ji_b8u(CyQ*6x(?-+lpPr|Xv#T(mxra&oy#
z4q;=$pG)Sk=GGv<$&}BP**SXgcwWV`eM9Tn`E=lz9(R2b#x1dYJX^vsioufbL_bM<
zEwW5E2V0cgBU6cYcsy&V5aemjZZs}}DK(<ueHoh#y^V?v(Gkox#e;H(l8;GsOAu0}
z8J_pMdtfb8Si3#W*KoH!C2qjYCf|Ekbn#BOTu$Jm;*;*~k2i1Bzuu2^IoYw&l3jim
z*k~n6w^?s;)88V^k$uCWog&$VNK*$hAYBd)((N`L`Y%TeaTdN})})_ommID41%D$J
zL^%b0&FjJ|WtV1ULnI-+LWuay7Cz(=LJDs2oVL7;CDr*CW_*Q1(!L}35Pkm<BeB4!
zJ2tcxY%)Y3;n^SQGH7lZ+bN&K6%)f$k>sr$#FvfUrBrFo>v?1x@`4X&W4ZOK2ONJ{
z>#F=_*-q&Y&xxdi$?q0Tqx8k1y?8;WTH{#rsaoAqzb5!lX(HfgNDrmvvcqbpv6~<_
zIt}2xY(~Z2puFjyitT-$wH(y6X|=@@D$TMIj(v!ZurVWgA#^38#i?g0?+gCk0Y*%K
z$1tq=)5u7Kyg3l*=f?v4Yc>|II*~1CgODe!oyGOYn{$K3&W|(2*nWgCXy+G6)B;Hh
z3!6CFz`7F9%GhqE)7gk-+^?gLUDErj!|F8qqIN)S?FH=q-?;kw!+uRd$l_UGro32m
zbC<L3ptpBQ6XSJk3@W?(k#8qBDGI3xT1T|=t+xj&;>T!kWMsVsY^MF7sdKQ1sqR=P
zK8%jzz=QA8ZAEh{-<3T#xn!kvC7xJwPVFG}Hyi{{F1e7do<QD?o{<Xt4Y99$hv8(M
z&F(4)dG=xov>{^;7ES%cS*BmFglO~R@Zy<tST|3QuR_FeM;g0Pr15lWt>CbJqTVZE
z{lul$s0}5Rz^+|-ez>Gz`w`ZNEFZVqrIcgqDoW12AC%jTEd_nuCKB|jJq2x1t=ISm
zO{4E1VkX@OiPF?eApRWsc)p<o9j&G#5Ab>WC&D9+X1+is)>649!<!`w;_KDSD9b2h
z6<U0Uq1~JvsYL4hej-XElis~yS5yf})peI9VSiW2A1W>Qx3`z6m&hH@n4fXK!L?ul
zj2+>ELq!a@EymJWDaBq89d`AG(pb9AHX2sNTmt*EL!xgPNHTt20hq*Oi?xd)>cnN<
zPit0I8cI=Tzx1Gd&o{otlp=5?<NR58{S}3TXy;map;M`>>zWm!;D{8P`8R0JwpMMb
z<{+`-2|_=oggQV(QI3LAiO50o{og4A!tH$Au16|u82*>*6=`EC!LL9l@er=DbkZgs
zjNCb0m4zCk&041-AoA|u=xF&`sd_@br1|auI@g5GmqCiwE0MzJcQf+OTYAa}2IvyU
z5L1CkRBiWPw^M~4%Ds%0U;txSh!JhgWSp?fa3YmmCAsO5k<jowWx-{FKBL|*WhnCP
zh#`I)>`w~M2t^`B(~}CiN^@+7!;M!WOF$<PK?>LbM7f!yx;zomdMhv})?;t-?ZJ{w
z4@)!OUKRSrJu{Z<NLC}bziSZ|6o_a=iGYv`)CD2N6(sA1$Yoq%-h^Kg7$^{iA&wNr
z5$L<jo91x36n~6?gW4qk4W6kl3CoP-#R@7agLF|L(};mw4PRs5MT>X7j{kWo!GWYc
z6Ns<{FDcseBe_Ar3KMEVs1Z&SpJ`+(Z-k@qt!ZimZ@B9t?&v*;kW{_Q8FWh7dHRS*
z`g&=QG!B?d@aWyQx<xZrDPMa=9N;uB0fLIMqB!X!{fbClXX$lKKZ$zT7KfaO#^rPY
zMwEMN6_%J85N*WZ&M<iq;Ip3d8SS7#$8hrJ5`?1J7!kE%RaXD2V12xH%ujV-Tc+LB
znKCY7+D$Q}>fiNtUooz{TST7B%H@53ME*G-BbW4ukFH#c_E%Os>X@YT*=n0|)!3H-
z98c}FObSUke&BJA!pw17>;k|lgnNtw+ErYZPFu!7^R-f=3h<^FiOZ3S%+APJ2}tI0
z%~Leb@gIQ0HW!gUa0mL{lm%*rV+Gl>5};&oxt}l0Cv$00AP`pA>hiOS#2~I@a%fKk
zZtn*5WD6U0b~jwMpDIP+)IO&?oxsu~sk-NA#%=jLCWPCC(m6mIw=R_FFFpnfiA`aW
z3JhuSt0Nxdpx`pw9$udrX^6%-KdB@3pVnxz$&>Z}Losj9G9OJ__Ib}UVR%F#`m`XC
z$D|&l090ij!6(P4I-;Q<rxk@mkn3>R6w=ZbkiVDfmN)%Vkaj~;(S5yRGhc3Z_m4f!
zMf!_=-8h2`D6=zU@Y5J?%Ag=11Tg|;4Hw&cP{-?Fxt=ffV5BxrJem8VuE{%3G$$B3
zRP3+b5>q7;zDD{hIZM}#obhW9OS|G!^JE-XoOYfse8p$uDyWfHX-+F-u+YOR>Pdoi
zKzVqN0IAD6;ha7S!bprY{s0Wv)PUm+PB|O~z^h!o4UY;sJA^$K_1Z}h;ehkVC;@UI
z20l~3eX^%@9so$<dRFRC!yF>3ioEC`{$hh7tLH+<=;1_CcaUruCOStni;+COIjF-O
z-5rQ+jF3vAR*aD@v&j>KA5SO#?ig5AVl@NGi23{&gF9MzB2C9RyGuZSC4Uc5vN+%N
zWRq+GK;Gw5ufQQT;Ef?N=bXSFs686GjJ|wrzSz&y^>wZ?r$DtQ6e8tJuK8yg0q^jg
zTB5<^;d1XiDBsYm5cdrtSj;Pec9mLVXfW37@?{c@(#l#VcPioP6;P7k;e6g(z_>oR
zk!q+(#q@Ilk$B4dDitY%iH#+XlrSq5f%eOM5(|L}&kxV-<X};Lm6xFAPYacXl#>Ft
zmD4FN+q^!+66P9Bi1oVkcI|rk)jamRnz2(-P{OPWX^em$4*RS{2*52BW5?cbQ1JWU
z*P(3wN%I`mhgq)t;L00IzJ}*ahZUy{f_$a_G}mTF)`()|OzQoSH13=q3PgS&JAz4o
z(eC+YlaT5m(*<$x(Z>27;$JM@-?Kxny!$^uy{E;WDIz~Ko;BcnPPMA``XHJ|`Qfgk
z-B(tAS1XpulR)v7b=t26o|2VP<9}39Or&YBVj;U|v+vDuiM9lVfbsgn*|K`5GPRdp
zOq=ok!v{=zPlYsrd}U-S$;q7q!T?T<2s`j{FGXAetBBV%`~xH6r|)82f!8-%w^0p|
zmG9P}4-zEyj8|wM&o-%EcnXFFiW#4OlGfzVN5Ngg*(3H36UDHZN};xuW6?Q{yaHkU
zhf>c)Z*xe#Q2hEx4p(YPaYV|KW?4IT^uxOO;ZKZ}L$T&oaEwS?pW--UHq7|t-UtrB
zeOn)bi9BhjNLMd{C`66s(}v_z?3wNy$o)$^9b(99#`vK7|J-_p+iM#Cw|bQ&_J7M<
zU-cMV0gV(S^cCTh!3~y^OTRt4i}9=Unm{2Kd0UOxY8!Q#>Jr^jlxN##=LmyBx7&6$
zM?riN-^viqO_PY#LcD=PO}sd^f3AC8#w&9^a6@J?V=NHR2(Y$7BVals7~i}wyE1Re
zAGmsA5bTV@{|%k}>1VcrSfcub4~jmBbSxDDyia46L5E4oLUpFi*k>(IhJy|<WXn*Y
zhOp55w{^T2F9>V2Q(9)`o;H<U47<S(n_U+ZF$wVekxka?D+7$HRf#h^^nn;t!Pou`
zJqQ3>XV->>d}*7|9A-c7;e*LeT-EMZyH!wQv^G>P8K19CoYC-W`(LoiefT%c^3huu
zBXlGw_Z9J$`b+};qR<ORe6*X3MB!I&*f_&#`YyfUXnZc>V+eIa7k-tvAc1q{`|rYd
zvE0bDFLgZAj$0&d1L=3yn|`|#!d{UDO~X)N_CJ+_1Wr;4l$F410>YwRovoZqD&Kqt
zPru7POd%v&!Ev3DY=%Xq0Foqavf-z|tlr40lVC=E_q&062Is1Ne4`~7u^yM);h67V
zp<ag<nvy4#{LfnOG)3Yfc$7bIz5#xZXia~TOvdGl<m^q9`@%^M-5{a^hmAX+Cr;qG
zAh_tc=rRF2cuataHUF8<_rc$VEET}|86k}@2VWF12>~<ge&pA7OAcSy;FJLD!Jfkv
zCn)M3ZV?FmtaCkR+vU>D=?OB}MbD`SVuD*PS@N+=d-mC%W%f_X4ZZx*wP9@BHV9$e
zWeTKXigX(u_Kz)d>TEr~rCehvuqZoa&3Gd)e9D21A^3U*ePL&VOp=TIFe7zITKzB*
z(y0yWcV>wACa|K0F}Vw1Z}i$16Rt+L<6lI0;57G|-2XC}XM3^lz}m7<A<jApozs(=
z2THIE%f>wQx$K0fS#fE<PKVeMBe1BD_q8zrZ!Ih>0+?%koS;#LRsI3L<nxqKqc|<!
zU)J!ythd+uIP+d*JH#)+TVN75<YGbaZO&;7vgg>#MNoZ*rH@-^>PDRkT$;QW>7)O}
zn(nF!&7A>lZUr}<SEom`(6yD4{;%Vmn7FO?y_KoIp5G6N927k7_P#vP<U;RXrDbCh
z#^pGTac=nad<Tz&ZkU00d})C&)tCoNHNqX6mf#El{0x=Xx<QI|OSlIgU#Rm^@vGa8
zXRkY?;!h}<d|q}Km}`?>7wG5w7sy4@o>!ifcYIA6=4~37py1PXwo$HO0MN_r>VyoX
z`oVLM*yc;H_Twq^il<!>v%w?{=#6x|a`KgZ--3L`rxljZbgDZj)xq=pPh(ThYpy7)
z9hrN?e9N>?(+7v_rzP<;71Wo4hB!VSn$P(b0Y8#;wKe&4n9RzdA&SzENIIDgnLi5m
z?9?U$YppJf3DB*rbV=D|OO4S6+X3&_;dXd^?}I(YHHO&3wKW_soi4(%bW0p*-$<Lf
zYUr6UUGWHaWz>2$`e+&fXQ#xe#(T-;-G6v(iqCsSJ1;%otMr@e(S-;=0>O%4?NSe^
z95aWmpO~(+gpoO(JIJOjHC@jmTrc5u&v#GLYL^LB;Tj2rkKc4*ki{^{eg&G;G`&%R
zbUJNY1@aJJ#DXpBKiGAHj$rTkEQGDG&885ilFw8L1UB7|z9P>B8;fHRq)n{>1Kv$u
zSQ^CFOzE*`;{=ZeW5_JMD$|(sEp(@T3`EccL)<fh*Z3^Dj4l?FO@15V-29^5bu4_m
zPz#j+J7mQ$43ZzNfz$f_%e~GzNv{VRV;NPx?FRmnK;@0=l%Pt}P2bzb`T5gkf4`Td
zjw|IC_j5)}4*e3b(P>ku%rr53=wkk*hU`M(Jv|GZ=?~H^)%!eZCyXbUC7+B!_PGo=
z<}>B@S>=MU?jV{{?pF9xhCIc@>DmhX_Hojavs2}^%gMz3`nNV&jDJhI)eqB{NXYjU
z)Yiy!ddmT%8=lQ3u%GFZF$3&2+GWGgNb|qz7Ck6(K#K`(#eC|M)<KYPp03er9dWjw
zwY;N}WgoiibnFq+t#b}N=f})7t^3g*V}vF0YH@kAbscCT54_lD7`)H6G<un}R9amM
zwOr;P<Kq~RdF<mceGQ{Rp*Q{wN9218)=q`}Q;Prc*ay28TAXc`jzUU_Bs-G+bf}=)
zVwD#|Q%_345WzPcF!bgAinQi6ok@S`eJ3ydyLI9|ld(Wgo0&%+l*4>^kvV=a3&CPC
zkVctwx3MP};n-6*Z`UKkoJ2nHTUj)z;K~3$a^%)(+vS9r+tb;sa&(CdExXaGGC|6_
zF(aG3Y`gg8z@kmuX^SO`^Nh`k&dd#UG|+g`tTI6#YC}|ads+Wv4gOZKdOYJT?Y#ez
za3S!}|8W~JbuH8hr31MtNdpc55r8sBwhQ<UJmAcZ2hfS5o6cM&q*Ns?QSh04b?2b^
zXZ4PQoh<|?D~7T~lrToj8GCK!URbIYZ_MSH7zo~mmICq2LKWh-n2B8gT{FzjH~{f5
ziqQ-VzoQ;RCht1f<+<jXYrbKPrWKtLcS#9Y-o+w$OVpSoGppep$&t2_BC}yNE~Pvw
zfrvAbLf^1TeUM{942yF#_eV=>R)Z7Q>WvBG%u7NHC`RCL2+It$_4^T!Y9;4-cfdwp
zjV}8#S-EjCK^$Q3TJI}n$_~I#+t_{*$h=9Y8tS1czl`Uf$}H4?P}H@S@iDCFmktCP
z5z<6_NWKsu@pLw}ev=-~ukq)?9UbK}#J|4l1D=-?BJp%rO6j_U*mA+gB6XYP-~H5!
z6|T!DuFF)e+>WL;O3<tiyIY)0&k4*i3EBTWY_wfIYt$~cLd2IRh!c9W+3i$o6XNXh
zE3d5*7*VxowE2|>vr+;(T+%x^Vz<_kpp2N2U4Txq(%gL6liL|X%za<B1=<{`d>&ir
zRHc;G<IVbjIA?(DIm+;Pmr2ThUQ$_%E>^n&x*&SnUm+4kce2IMU(bs*+LI-}*Gqm)
zEWYl>oxec*-FGk2_l#T9nkf*i$gaf>H4FpGDEJxd$M^M3x>ux?tbKEAB(!)$!#(R}
z6=Z!r8?;9ZaWvG-dTbJsSSv$X2=shfnyr(l7h=(gxgJ-V9q@BWT(>wNod!VmM!&=N
z?Y^)ljffS_o}<MYpu@k2+S6``>DiCdX0G-|gXgKd>pDys9iJbO#BJ+Qqi4loWuw7T
z8Hl1^@sMWJ#Oi;0<#!1X!Yy_;tVm_@tI}^onevC213Mo!d=@?Kjy|0RJY%V7#|`wT
zh;G{~USvXbK&<*l6;-cN*?}luHt~T0_J`ZNHC-C5FA(pQ@f)hQwcosB<7M6!;0Udy
z(_)-RNHeQ5Ne=a7!UMOoa}iK+rXIX}f)Yc-RZ5l{No2aP8O?pN-5C0AS?RQXpqP1=
zgP?`CwbH!dJIlS_ym|Hn^m{IINCLplE!{TS%^slS7&hByUyh&5pL;<GJsuTcp7YL)
z?jq)F?nJRf8?`n8*7+7NSk11CcUd^^s{BCkBI=&w#H*yV4|m6`e{T$9+><b;&@)6k
z%4p6nmK(xrn(w;?wMn<umE8=y!3MR)LDvXi4arlR*}shrqp3`ti$*@<D@r6QO?Jdb
z!WVhIoVC6k-e8m|{8moKEfEID!x^~uJ?RI_r!unfLM#3n<W+$`vYFmNWsr^`B0imh
z?H0e{zX@@+SuDqmw*e*DKt|Ab(R=Gly?hKB!|kdAKf&9!N6u4cte2+<y1Ws@F<Z&>
zc_2<ZgLmwrM99e6r^DTA3$Rx~BzKSIzvy*Hvg@<Q_lD8|^<A5)a#z?^p{yQUMv1=_
zX*{(65eskMUT>A5b@QakVv^KXEX>yG&E?N|9s-_+X%<qAMNngBsjCaVaMD(h@jM&?
z1D-XU^fFtNQYzM^KOD~?9xY#UpdWQ^8V`n1ETQ1aMG$GU$JRCee*&eHes$2|TxsL3
zfjDqxaW|#u=M>xum+g@XkVtJ{H$@Yl-5$#Ctsft_n!fcnGe{<Ut&zgQ+Stj5{98Rd
zmApUQ3oc$m8WqZ9xJo&G>Ht0Y%M5d)TnerG8HBSEHZoSWX-7QhPf<y2v@G}LDO^zh
zVRQg*h^|wf^AN%9ymyq~D6W^+O%ZUFhd935tv1lm2XWj!)gak$WXyM7uCFro8Am;P
zckAaWnq~C{-yS_H=b@Rsg_bmWPXD;A)p_l4aW4<=lz%}$P03m@=xeC^eGD|N-3qA`
z@q~rqo4SAciOZp_fTD$KZ^7HJMV-z(vRChRidWEq|4dns!aWZ)Qx<w^j;Cg-sP;|S
z<P*L~mzp$Qw?tvh&A}*fuAo2!qR7Gb-nc@ye$#%+7}}WOYef*ON(m}H3qhAC4awa=
zfW+@1fRyWrcdlSzG?gL?VMoM3>DT{U>H_@i5o~}6o+<7^-J%bvxcB9Yo}>a&P&gk}
z&^90Lzk1P^AW$+ui|;62P}==PX;qg@bPjq;aYxmYu;Ldqi)Th>F09?5*IZN+)_nKN
zHy8>1czE4<vqpc7ZQD<%^%dlZLxD2Ssw>?_YMC=(#wyHDv$_Is%G=jlY~CWIQ(d4;
z-^0D`@Ik?D9|_$1OJU=jPv%>^2~5#{^>Z$G>X;N+bU|C6Jfq?(@w0O=l9lI7-~Kjo
z0ZKV?9-rM#VP4Ud#bK*yX1X7ZQBL)A+C3xpJRcJR6$+THxIYnex8$<WCb>knQA#r#
z(GIs(VwyD`k=#Y)eUy$egN^fC>I;Wqc4_L3Pxm1fQuv&>O32m<lnfi%2=hQD7@hN(
z%!y!fjUwSs^(tDEUM_}pKW8T#+ZnZ1FVQvHF58Wyl>XJTln+G3rMG=hSE^oX1&{3m
znBPQ`qvpCLtXn3M_@`z@`3Bu8O;*~?Z_Qs}2@r=QPB=^l&~7gh1kD!oi(HM@8m!Wt
zB+OD9m8cPYLWf23^UZuDsP`t4Xs#5Vxzc9tEhywrvj08xL{b`G8IzOhBf`SLV)dR%
zU}o|A9M}fN|EyTrymGXB9qns2Kq>g7^?KD8r(ir+r9KF^40c@1_IT<Fb^Eh8y(o^>
z5t|%KdLidn_65_`e%4~#mbDz;G_PMps+9=q?<UB`VIM-9D*Hc~_nO~D({mjK(yY^%
zQ)vfBeb2;Y(E6``XBd(%5~9x@L3Id^zEShwvjEJ<`&G=P|4vSI^ji}@U5=))IP9xJ
zy23h2#BQoatHtwRCkdcVOdq>KgFwGG1dAEnt`LLY2Y9ZnoS9bs#o@nx0fO25V!k@O
zXzHWRYijVZex>~7DY`G3##6Ve(;9-lX}2^LG9u5?VQbA&gLpwXw*=W)yiUqW_8^UF
zNCc>PS10HbSwf~J+Nb<)8r83VAd1jN2$NSqCZ`=e#Ie)pvhlr_ki=+;i2z_EavDxH
zLEdmUh7mH~p;4F@f&Y=X9h!LS37fYn;>FoW@8~R$#6{qUJ`$=z3B&L8d(WbKx(4Z5
zn_dg#-Kp1Fe?O>=_l|)O=3MZw(fHTdP!xBo2T4g%p5CYm^r20V%Qg$6fU8-4SDvB@
z5hLYpwJgTO)n^<ork*+6pjZPFzbQF~3Uqt=+?35gzgKI%kPz=~xb?L6c;=oL4z%N?
z|Bb@Gyz$Qirf)z;m+|ia*eiRJI0IkziMee-SNzt3*0Xq=S;zP|xNeas7b>PByTp&=
zwrc~m&+u_3B19&8o)VuJ#q+cciuyuP@u?I~zC#mfdxJGoLeD`Ta*s7=u#1CQ;*2eE
zy-785Pu84YPZw((X1h;%5Yg<8PL8RdYT^q72$F|0<!4Kj8=MrW#V<2>ND4JW2NW85
zOs_t(=lMRNXaxujiK<BfHP^#!QL8xw+&G+g5v8H9LNJUcuzo>R{u4*UTz*i=MY2+<
zrRwyUBpv;X9-M1N9>2&tMvM^bh093M-M)XINDS-Mef@>c{~=pXw3SJ@UK<#I0$kWn
z4hWP)0EG)oWw*Je5YAc}Z2K9Yvyzj}L3+&6Af0z0-WiVfqyB5t1S50wp`p;hu~+N`
z@7|Ee=vZ1Tp)uI$G~aZ2bByGtieK-olg3{oGQz<)Fe0^<YWrO_i}nno4BW0$eOCkl
zJ*ltu9fv=s3E>3f2Kbd%Gd_0hVBi$bboTZ(91fvwlX`T@QX2>5$8fQqa+N@l0*6K*
zt30`VTz#WYYowU8lc&?fd`eGtzfm4nQk#h-gSbzEoY_RgL^D0zN|o06ETBaCJ}+J$
zLFIgkBDM~ewxke4vOB1?S*WzW4MC#OI)xcPK*(N{I_Z1OMszkFobNR0K-y<hqC`0g
z7Gco4Q_aM;u#<Ll-4Uun-A(=5qkk26xZLB=V~4cQd0<I4l4FRTGvlr(kx$x_+YV_X
zTGB&0+7^tu?&s;N2%UuV2~xkkfI0uNBBD%w@<Kw8OXB37n`H=R7wki<ncu|)*z~J_
zledp&O;82J6V7{V>+R3~1}X$=M_Sb0e`C)LcsS+JsWt8d3+^IhD8L0-K`1M~-_Si2
zY?u-{?CVLxAE<}tzAdIG22<|#8|}*<3}-1ER>*cv&#dJFM7P(`x|q=>3q`EO(5{w-
z!Tt@KJ%NLyo?kN|zAPg*c+xv|ekBcTSR@gTg;j`sW1F2+!XBHX8|mMR6o$`Epi``A
z_X<w6=^Iqwee~qkvkTKh(k`$G`q_86eyHOOTUSCaFStZbm<r;%3`ZwQkLZWi{`|{z
z>9ewsIch}hlF5c_5{+yq$|T{od>UN=TIT?O@P{fqs@$(02HkJImL^|NPvue|(*~BD
z7eRQS8`7g`=aj)c^^R=(4Nq&U=hI1Bj^jh%4gsfgVdE!q5uV?%F-Qx?U(G~u9_n=<
zqlH-x_6ZM|o+T$nBH$YreqT~c4@1NY$FeU#JDSP!<M%oTFOHcOC?WxR!|w1GYr7BU
z%2>^NVUoqeF_)qGW-#H0A5_cN`Z_|k9!|TB;m`jWQR~pA?4sf^*4~Ks>@;`!J+FMF
zZkO6LjH%Y?fiP~(oy7{h+Na!=X_h%&3y(#RE<56?+*wFrZ{7YWn((LYZlf4SZ@D>;
z$>#jW^w{4<n;0XEGht(sRuvY6&R+4IKdiwNuY43xi6t^7QdnX?>TfvAeT<#PE$kQs
zwh8eApE;O<#q!>-Mxi?nyaO?jx;}&R?57BV;h=+>5!dPBLc?s{YV?0teG%{!@qd4^
zET9yl<+%}kynMn3BqOf`RCX8Je}dnQu4Rr2J5qjzW!WsiL*SP4Zw(Ml@rZ_xQ;=09
z6T7=gDp?XRe$C_IQO;0ck-%dd;&-`^X5!n^rFGiF9U<103@I=xQ#&CaXpnRw;8wu(
z6c~h|9{84kup%{-v&(2^P{BUAYxo=}*_u3Akzd#@dHwbFV#Yn!K+xnO$l&^L64(&x
zlsx={(KE(M*9<Bfn@WxmQn<14_FYDuoG1Eovk&M>1SMQuQDTlpd@^B=#k#%hnyh90
zF5*>pg|&gE^-QXB$17(Yhqko=X=Iay485H#9-W>9pT~)rYe<}K`<I_srtv9E`U`kc
z>`hKu=__dP13leAu&~at{V@arP=q7B(w?X#$QfF+5)L7X@B^%^!5GF)B(rRRPLnzr
zMc<3bIwVIzHJdQL@N^e{^`hP-hF3N_5#mHa#3Z$K{uSyOK!(YoQg#TbmTE)ixUp6B
z_A#6|EISv)K&wsm9OP~0qZW+=QG}w{3<YeSf<ePyU^b9Ucp_wF;K<>xF4W57#p$xT
z9035&YpMp%nL=5cTY{&X1CCx%;{&J;ETo0+E>FqfKTN<DrD9#;Kv@|=1nIImlnwRz
zIVS6wZ;9mM1EUwa{AjhB@VMK;I0j-Qj3AoIhQ4GWn83fAMX3a&ICzB7VcH?AUhkp!
z)kt1y4hZ~rTThh{=3s9|!HF!?u~_5&(Qv>NAyx2K*^1w>PfQnJEnV-3A^?LitBS*c
zwoU2c!MGnxGTJOY8g=z{t7jxA&5|7JrXuk+1R5+~96XnKDOJXy4f2|`xD`O!=QvC^
ztkQUf?!nll>=wtRGM~Y``-ml3WfDNEB4yEKKU-c=I$+PkB-8rQaPbRTK6w{jQ((h@
z)m7N%J}X;3nI|EcL3?5a+EBF?BBrE48nlOsV~7>4@WF=%QdaeUvztt7*^tCV`2{8a
z;Yg}!>ItM-sv)?^$Fl}a$MTV?1;>fTd4R3zr0on5VX}q9uP>I{29FNu<d1r@h!{)>
zS?0(stFs0iu22NvF2z5Ga1K6AG_=NXOS3MdXEJEC#NUXj4gUc{XYQ`n`Uh9p&{e{q
zcu!$O8wkMRe0$Z;74dK7-(8nt5b3yD8Kp-T_rg^%$|r)P;#abz=azb5e@zr>e~@fI
zWIoFn=BcO`ol~)v?D^HH7@xdlI<SFujh<cmZ<<&NBm@CT+HAV7R<cMODK~73{j-~d
z95YSwV47#RaoSDT!Q1^&2RXvLm^}ST&+BeIc+U*BF`ZvsN8Fw}rNBehz3YFT)C15C
zRa=f(|4(UW9TjD`wtJ-o1d$dP8tGK&5F`cZk{A#W6zT2;K}s6wmPQ(+k&dA|rE}<p
z`5yM(>wM>|wb%LfI)^{_gZ1*RcV^!AdG7nVuj@B_E^R3Md+lPb$Hg@YHZ7_g1#@j*
z(N9Q^JGx&uGqaTg%eBzE`J)2)c20wKQX!XIv`x2}NHIe4ov?<x1LLqsQ%E|~?NJM|
zHk+?hUFa|LF}^(E<UB}zj0m|jQLY@Jl=L7q`c{@f{UHTvl5)y}2>4IYQ>pbK2J+Bx
z=J-SV!mCEDmg6n-PG|RKr|sB*#q8d~0}PyJJCKAQMtWEqOY|C1v>Vm=U`IQWhkLd-
z&B)$v;^wNSvgr&OV;Nx!<S2Qr>=B%WFFosgR3ChNa=bpE!&(_Z-ZJF*_8O+zd+_WA
z3(*>XK)G^Fzo$u#?TlJK%rS@X?<ER#ePFS~G=sxot>>6S_~MU}VA0^yK`UkpT0_^X
zXt%@#F{d|Uhu<(VV?+pjAVm5hrW4E%vXoXD{AYHwVs*eos45j<b&QXL(5I?&o{xO3
z*jz64zz<u}Bg;Fl%iKF6*12E26=xC+Da?%I*c}wu4TdXc%@3T<qt_{u#Glu%SzjZ!
zSHIn0AE{R$<59^(GA3TW{!Sa%*EJv-Y|GD!ul%e-&}l!iRLvPoetH*lR&W1c!h|>c
zeI;s_gl((M{Gn4)@k;i<wQ*xgVfixM>$g>tMubUp43p|im=1c-&I8&KC-}ly?xW#=
zS>;4OMwiVwag5R5u|r5{WRI;pAHxQh7qJ>%qxpAn_!o<}AMqkpi|h9_lA1_AcfM^+
za4=%|e6YC@n&E}M<g#Aep7cHhBU0~#AM{soHY`u*|22MFvUY1tjQ`IV8UHa%<3B#I
zg-v<W_~UGup`S@Z9T8tMh^Jlxn#HX&O(0kT-e2PN@JM7{-z#=rk~qd*S)RtHR~*Yz
zzl^wn(fDmmoyBbRgWC%%VJo_&SP<#ci`TTI2Ld4*Iu1GK-AuJZ;qF4?tQUiAt@W~R
zk#3zhz)Y-(KDC(wIX`6&kkpenkp_b)-x@%7C|5^KMvwV?kAEN=FPPr=9lrSEXtu^G
z4V#>gDiY`PGgagKd83<oqRtJtI$(_L@qReTLCFej(#@5>96+$xwhV0oy9-k-0@KVK
zxTtrnlKGsvFKkwfuPQ$|T5gXqmAg-KUx!C+PiF-s3%QJVN)s{;ig;XU6|~KwHY4tS
zvnGfxhK6z(b#{ktjozBlpm*L!bu5J55G_;)&n%j8z9WT!0_1?Q&L0>-XD&LZ?(q-}
z0Hr~;2<-h;$KBr57Be?1O<;6-Vfr;nyh|rR$fZ2{ZM+8e$9}UmgUuo8qe6)J;<C=x
zXicfdy(2=LwVp~gif*LD!%g-(O#njX1U=+ts8vEG-QaakB(>jIzK*88+pPm)`t4FZ
z;kF0O3F48nl({<2;Y!yzWu1rE{?66oXWfOdEY}fp0+B0?p0`&jmsOKD(w3}otlBg{
zv>Npka+S<BAI|KELv{s1BDd`yjC()Y)^J6hq=iQDdlPP|w-c<~U#5m;nalq!9Y7^w
z2(G~S9jHoUxJ^=DQS-W;eZgO?`aBs2pcUFrokdWwh@wCW`4V1_660Q|!M5f=_)fi0
z?K?2xU%>nyDqgHah*Taox}9S(27}+dI#!LJx)$APG6H5mm%5kJwsATMjdm>v1yPSp
zQT#xDyLFjU-i1hzGcZ}UFM-e2L{x8;dK(A=?8}KNazHZ(+e@_IQ)dp{qdPK9RPz*)
zUQOEw#nn4(PyJf-ydDn^2m;KO-q|bNlJ?`P!!F8!(SRn9)?peQ$9K<jWV;7FNK*dP
zBvjAU6?NJtXYmsNK{EP-FDToa!=gK;mE&IP{fS3Gt_jXgbCX4%@Ku{2AGa>It<);)
zgr1Z5JLyzjv|ZIZ7XK)h+xaGz#%ooA2;p2(S6wuD8!uP<<K^z<7&0oL1h{pEk~*?E
zY%eyavFg>o`Mgs%RDPg;eY#`5hlKz9UFEg;nDcBV%d+A1*<Po#?qtJdm(Sg@Rs3Me
zp2$_2XIpy%<SUN*?Wv~5f~LhR%C>k?;A0Br;|*BF;?N<jXj--9d@r^Rff00#5L-XB
zr;b9<aq2V!s5`%0e(R1_nBuMoU!_MJ`E(t}OgHHX7M_<Gwj;qHqMi*dqx!;L7kAe!
z!Up*hE5*Evl}DxnKj`P{9UBYK2b^_(nt)|?&TI84-+BB36fj3RBNRnWv*~0aTRL3=
zHc~4*jf(&nMylF!+O^}t79bfMz&*ZLXO~C!HclSIwawbBK*moc+ZykfrUV@Yg?g@w
z(n}W&=UFzy10AcvYWgYBM`;^{)EC+dh$V^3Uy79cU{oDSAvobrXji-FIXk@1a{33q
zAX^GLO1nh<-46gOx?6nwvOD6Ty(H@PV-Gugxe>r;zqODR1UjAAM<y{(AYIUkJ4_52
z6!;~U;j()Sc^6(~O4AM_Frh}?A*0C=6DDBPvnBEBXx)7yV#|)NHvh}foS=ex>N-)P
zO$&NJRiB$MNuD@%9R?o6&1mm>g%oUbVNkEWw;fj$e1i6I&NeHu&3CssI_LY`R~y3&
zKR?mlzD^QKH)!Nv1gj*;<B?nib9)xel7>n(0jfD=`(}kph1tc??KB}5TdzlkOR0*Y
zxAG8I#^0{SjjKLiri~ZxZsSQ&yuWrxQ}V`3+pbscq`K|9WFbo_?Yy$c$r~|R{kmN6
zq^+%k<Q+Z;(!rZ{=<e+<Mv(NKRAILwJw{3KtD!uPYn)EIj26aB%BDS%PT~k*4RHZ`
zGpiHtaPUIQ@3IhEEAW#UTImuIIP89mF!D+?`&K|K)up=V=4Mp!uEG!v9gWyTbpjA+
zDtCJ0*i1tn8`;m*{`%N`)Q>B2qttY_UC2T}u?P0iqT$pt3L$Hyd)|R;JbOwJv|0b%
zWh{p|!C;E0sn93b#NmUp-35AN^b<|wbBnD)ca(u8$}93LgQavIB5^nf!c(O2m^#)P
z1sI)xP(%+sNP*vF#fxdn#_s2<<V1lzW#^*7_{Gq|-fZ=(lQSiUM?}(!ll4V2wH&5L
zGo}Lp=>k8}F7OLSG1`0(4B`bbKl6OG{LHaJ&GV4UHu|?jZ|4O6%7OU%u2XLeQw}gE
zjLjxkH8UL#f9Q~>TCnM&AX?C^u`Fh~5)Z&c7rK*%xV$;rn<p-bJo0`bNhOSE!#X1i
zIH-56^~XK*M}JJt2opy5x{v{HXB;LWb3$GeZCAVP<^i=i8Co9*tM5*a4In!Rq>Eql
zJWqSkD#Zs0_-d;A_wZ@%>VCuVyL^qk$M`=}<I&Cf04^i@OP#I8bL?<1eUi(SPrT9m
zO2ML4mi|bYKu}-5?r5zTXDIzcj+|7VdDUXO#B>Eq<MFJM_y(iG1Vys)S^!d({I(ZN
z_<ZW6^1~MgcbU6Vq2x^TZ)0P!WutrboaX7R3jR{Re?ak}BQ&SdbMR{UeR{-x!_J^s
z5>Tq(qIQpX#;DvbV>OXFWdPlUHOlWh@+R^X#+=9bd=!Jjv$by$XM#dc#KZA;0vC>B
zgn6aI$yM|(X$UIu7QT|5;{YdVHcYG&oAjPxah7szx9v0$kK*UX`Eki+ACzXbhXf~b
zAWQH?sr{+JO}0YPzTA7Jly4v=c!3V-NqHVol%-hpP9hLnL!^`@xJt3E6qu`)naw!?
z&P(U#dC@cWF(#6Oo;0r;cJQcF3a^0h&PzWMzd+AqzC&XELaE>&y5MLOY&#IK*NFhU
zuW!u#4XrRJ!5A>&?((*6fk!n8KpkYZ)$-SpF#`;q#PtER$s-J0#!=zl=TlC-Z&L(f
zJ<wx<c!U3H=d~3#yZ%&2dJzYrot+Is<`3ZvadAOyXVyWOd@(q_5$ZGZza65_lU~N+
zE?6;uqBy#8n>vG>`)8}Kw~5JNVudNYs-yF349{@tNMW%cP#*OvW=Ux$x})JjvQytq
zc()-7kp)D*`1BNk$K~pb`S1Wx!OH5cK+%x2K{OX`%zUDl$_JKIO2~ebpz6})P`qt8
zxd;tz;Zt$#hJ%~q?L&n7c;pvjADXEuyP!}K5h1Z4Lx~`nxa$fn;iq)+1|d7|m+C)!
zp4ywK>&w;lymdGtJeA1jd>kcr*^i9LY7!D7SJ8Mz2E)t2F>?!vVJi8I^1AO95NO2D
z2pCT>a(|;=QIs}->p5yV!U>r~?&YcFp!P6R^A>o*4WByH$-*6dLOgc8*5rP9H2dPw
zo)OnVmgG0I&Ls2_THn8?EP*!tBwS%N2T}OfkH553v6^9{2J&~V3&O{^vRDX6RzP|w
z3e=H{o~G&|?9hyc%Fojyp=UIbAwQm;N9u-6kx-x7|6~7{**wO=^IqyMMfy7FLW6|D
z3{fdl687BHqDl@?5?;q;K_a-+b6PNg3^S_7NUGO*0P4!8iQU^4VNGOlO!~e?NP^P_
zuQ<E*k@1m!mekSs<l<DG#cXLds7`X_A5p@7@b?Lkq;4^xdOuM}W;`@mL&_z8`dpT|
zR5Sk>V>Ir9N}2bDAjIb27UP3Z+CijNqbgA@D%9&}l_{8bv04AM7o~tbQ#M(_3NEC<
z_#&MSquod?qw?7cGpfd0RY-f#<6|hH!;seyNAO6-44IX#RFGV0lWQWildyqS6`<+F
zO6w%@xP>#F8XyOjZyLc8P)^SAETALVlj~sz57?9qq;G`&KI|ZdfF*_wu)@9*>pQ;|
zsI(&fDs_0XbPY=pHpMG8cw$4!>sSQRL>*?TjaNx`JT%i4rtvS$HD(+5m2>Tv-!PN}
zaxTcZPG8WB*#BLnfA(-Y=y^o^KoS!n)J0n=l*ID*v>5@ZUN9Wa3?Q06%pFO`J>Ind
zKAPMQj4LAQXQ|4qzV%pl`Aq+M!t7D@0Dw%P_AkGXdVM9pj!DL`HW47L!?$=eORQnh
z&r4l?Ezq$0AC8#3rT6kFdm@Axg!+NeR;Y2&^Hx2~JBH!sqt?tnOi8E$V_-2##i)s8
z(U`JY_XHKkCtnOyy>eqF{0~CtoVZ&qKGWqUJRHeRnTheI{&7J<F2}vx#Wfp=)Gz9Y
z{k-`#;kRE>NuSAz;Sn<Hb`ymhelb5j`DDu}!-P(I>~Y>BxhR<kI6K4SYZ2(@V7!x%
zm%ujbS8m^<VonUxX-d}YVP_JV;Bzh|=H3XM{K0KfAm%puGtbE@j`fu$S<zP-<ZV11
zRME8zHNexN7Y(~&DzpCH{9T(<QZS$Lv=!guAR~xfb<SI)C!RMg6o7h$tad7!!L-q4
zehYcKLj00O>(EC&abIJ_{;dHNc|y%vk8w#lRIA~<NSl%~XX9`fkl<pP+r`((s*){c
zYqSZNNg#Sp>150T!Cq^$%j<2m%t0gkhKZ))FC{Ho>4Ko)jdLL`rT*xR;2*7Q0Hu2Y
zdeXd}13X%jsRO*DqrOs^6$XXSMXq;uYH+|W3_@yvCHTW0;xSxsL7Uvq$XepJMkMDh
z?x9(~K!x`F=C@tfJM}U{@fcLW1{EH+!7ur0hlCYp+RFVj>@i$O)Q&}*uuvuQ`TEmr
zg&hsYdC-9M;wuVKpXZMtVU)_B8%O<kX)a@Oy1D<=El90IciLa~jC?xhV_1!aq$@XD
z&=X1w7DO+q3&!k^s?V~e`oeqKtZ^Wp5lPYYq_sjWj<v3se8W9WL=;Uti3G=4j**$e
zy~plDN4SaCBb)LkMQ$}Ej#iEJ4)QWQaJ^i4Qk}KI!wAu<%@Av*=Dzq+gHEYf=F(X?
zYw^XQVIDGHVQm6yU?;TbaFWb{13ckNKR<p26dt>765d#5jTo57?H}=`R83SZv2LW7
z+dRexRG(&cJ(8lO4s~X$<R>`QinO-Muf2ygcG{rk%@gzHxL%D<Snz_Lr@G56SWJmY
zg*{`s$Iv{D5M{55y%PeO!vOMmhl>7CW?O);#Ev(2hnd@LRj=c{!e;S{V#7~4+f2D9
zMKGe+c0&OB#Z|J%*){~bHy5R05#WKK$`H)_Cg%FHy(X@DF+1l@^XKRIGg8XcpGG@N
zKAkMMsoW0mBHP_W{LDB#Rut9oXu7*H&)2(7X(<ecuswoSh<KlQOlJl#FS|dSIj(U&
z?CNg;sf0)hWR3F#!_z9)iyah3o{vQdj>(glMup1i+Lzg$x2{CoUEaSTj1jn%rZ0tW
z2;C`1@!%kQUbWLj*%V(eUVu7-Dy-G-1pYQ-^^d2XM8LUJ^br|S1H*ctwz2=xBf=1z
z@922nfSpAyt21o;Ywg*GU)=_6{)aPA;&E?Axai*peTb7$MxC3B7G&Iuhy{|eg9w)`
z28ASjL-{vo#~T9`-Gmv=io?=`Z+>vvYt24wSYP=}^<k)P)ai3}gURssorkXF;$9s`
zYaiuN6*>6%_~rz3xesX{qF^tK+_)Ui7fdkvPJSf<gVa$B|JC14a0bwkj6GIg$5}>3
z^;dSSid{q~a-y~{-@f)kEBK`=B-iT>^xW!n`~@2Oh5aO})tq?!@JMcSdFk<d9gen>
z*J$@?KbPHiiGqALh$r;8^UG;|{AWJMXehaC%s+kXvl=B^u6(}DbTstsTOYS3Uo+ft
z4&aeLjbKbj>P%u+-wtLxCq;Xx%372~brOD<0y@{SXdvGV6a6>e^bOPMKS`+f;?BQA
z17!*Yc`j!v-idg;8{C2FzkmCLBYX~Tb{hSkIuHW)9yuyxr_aE#$doszUxr(n(KUt$
z`KUmzJ))b)KK>8vQ0wwK%?Kt1%>5#H;7BQuE{aw{h2QNi^G_JQ>bqnSj`j`9xbiw4
zx$QrAiv=V9`j<4?5w0V)>-IBSPd+1+<9=TFbKXkDr=1bB^bmO#mTF3z8OgbS9jieF
zPLG<(qRNf+Yh{*W)=_5g0^c=To<I@j&ZE=uFX#a8e?S*lDIP)gJT6(piHVk&+6hMA
zZ2kSfP3s8jAGUH(vIWVooUrEO_w1ftw-MCQDBtk;tg`Ch-mo#@2b$FV_jyh-`ASmj
z97_Wx(t2WB_0?CV+6K^#JHp$KRD9fa319uM^D#D7OO;2c3x>-?d@`rEEATJBK9KG4
zP_%XVCB_g;cAb{v3hImdpRYoh4ZpCL1}li!Wp)#|=r!btKmOC%e&MwY;GO?E<t(yg
zsm6cig8#R$r+;Uc{~r$gdZNFtQ}ZPbC`WSGw;O;oW&QF`D5+|>P~-rj51`9F(qdwI
zL>qS}$bRUs{iFg2R3+gK=94lS_lzk^Qr+(VD}L(#;fnqzpjCmmY0?GIFuDQJ4mjmF
zo%VG}K}O9ZjsIA2Yq2y<x50VX6MY3FQ%5o++*~SL9khRasH^-uE(az#R6#ftQ4u0H
zVmOo{UnWz)z7=9RXI7;5TWY5IlM$>Q!tgGc@m_^PXs(ty!S&q+LF08JeMjc4X=Z2r
z`C$|2rbn(O1ikj>_z~LoA61aSoLWE=07~TR73MP6LfP@h0HT;n5?5))3vpZHfr~bY
zxY{X=;xrV$ybGcPB1KUYiza(8F-IyB0w|8NP?6g)sus@LM6vJW!meY8of*Cyxv!3r
zs6hLQ2c{Rf-Kk%<;0m<rY;)}43j+kTLEy5xXRR9P?biEW<%rm>Vr<P9=BaM;;)Uj^
z7i#FocY@C8JMb@GdEGB&IJNnh6x6qXiPsBi0Qq2PG-o69aWd(QtecfT!L$*gceQg4
zlX`b7Z3dGRLS|B}zl^$&0+G88mz3L5&m$tm4V4zawd}ngw0S&ftH}A2rwdPiGUS00
z&YDeeY$3w8)sD#zcd>EDuMhCre8<Digf%k%m|)JEV^IPNz34W_@$O5rzEj<<#>ya5
z=e@v><XD!J8;z!@SPtRnlkwL=u7(ZPZ1!tSD_tC?$W#S*b9YKggCHcehPp;r>c#Q-
zI#(g3z{9P@a}-h9prRaZ1_jQ{;c)&rXY%2@oyD3``P3IZ&a6V@qavI06+!(;g3mdt
z0o(Wv@%6N>4IwPf=ek-(Czt%kmI8{!_$|%rSq|ncs&<8IShhm6R203U<wn^q-ac4G
zxj7&K$sAsu!FVew;inznh<a9gqD^4?^95XzDtYhNKy9qTAzbt52jJAo0>!}i_R4|#
zFdoW^?X^2)bGllQ&_c<X-dv<tq45!M8ow)A1}z5!NkEbO2h=&kFUYtne9v~#<9xOe
zXa}+CESlPHsPwK*qI7ra%qQ8mG9W8*ry3fi`fLD@$lcMwBca;G9l)9H<pt`~3ZMk3
z#j)zsoSO^pHzPc=kX12(xv-l1?&cV`&<NPM>7@EeY~hWG#q&U`i?&(m1V(GpF|0j$
zR7|25IiQi^CKWO(D;jkKbZcl7oh<XCr*x5E*P4NwTs4q3!y>;-LmJwqUVjJDx!6Zo
zDnJdE-gAWe06Ht%dYMM*I6~w~>D`Toc-$7xe$%z3cH`$NY)TQ`i4q+ayN&+u{LE#5
zlKHx@%ZWm;z$RAgUX|)~1z0pWm^L6HijeYIdrQh}7NWk-<I0kL+Z&U=`#x93)gE5r
z@k@&6Q`$nlgM3!QlTaX|b_3JrTB2#{ql0m@z4n)`FrX7W2fW_#E0c29Kj9S86UBNg
zpaW?Rg_2uh|6O#+GoG;FvYaFN_QGV)ebMB`60;c!-HWzA`ummx$`i)jsdYrabkhuO
z49i!RKZ2T^4?j?xY|#hcY>Ee9^~tN}w(8HGMmCE*WV+hSQW0-FIwEA2DJt|&2ly7F
zz}H|%vpTK`eaTS{BB$MNnZE$+EX&K!6E74253A8pIHbAF4%YLHqlwO3ovTR61l%ur
zzpL#NxpSA4=NLEJBtzud1L60G?KObguD+INO+FWU30ZKxW&>z$0hKH%1@(H_UGl&#
zpt#dJ{1{WIu@t_~Vk(fPPsznGGuf#Pt3Vs(fiqM4XuZcS(L1|@@f<k5w5Q=s*Qulo
z%{Sby_iJfOfEWec(Ni4Bw@%^ms7I8%B>}oCxsbim_C%p6j6<hn&SXIdlMm1_?g74)
zR&SbatNj{odRe3*Iu(8-fcJ2>cE{DQI&gW;#bvpJIQvWxF0(fSPr&oz;sN+k*#yRn
zu>w7vZC*1fTv2y^isfLi*vS6++kve7h=y$rH|(I_@4NovlD*HNdIN6u7aO&}HM~|_
z^SK+&lMCX^?{J2G$V>nlH+R+%DurmPG96e)5u%nM;?mUbe())W5V3v0#N;psS#XA*
zR<90(&I>j99Ct~!W~#oq{JcJg<My8mN1i^!TFH{RQ-OO-4yGIdxAI7_j^=Ty)82x~
zvUQ9WM7_+}$2p8~<N$>v)ihWB{3q{^LC-92p&UuZM2uFz8!o;9I%dK~1od}bMSXs^
z{p4YPBVu;_NZmR+be9y7W2NZliiWA|>5wt=)*IAv&v}6)yZzy;-#~U;$mR8IpC)-^
zH{Q+;TtMn~PE%Yl%kzoc(@rf`nFIzvuKD<8IUhMSR(j{FvW;*6M6(ZIbK2a{m{fD3
zXr*y<paz_*x@BSjk8WgmtrQXN$>(z9Pp9x>%+qKol$>9M(4DIeamVV&N^(Mh$w2cB
zpCS{@`2Zw3#<hw#yntffEKkC5eZCj%>ERg@O1dAX$)bsK007eMdwxloL(1u7ycRJ;
zP<QIsadXR`sna9$Z!;T?1i8hi=i)C#^50h#G~CVXoYk1Z^rJYSo`SGU9u%UG)!k_x
zmF?i?t5uVQQ&qrh9|fc^*7RDxSX?<adrR_kzLky$C+&-KU+BZ5&{~_7nK_QN<I9Vz
zh;hGSHd!?vlP2DZF9$3uzNlDwMBI})7VJNUK9*6xPW-j<M+0}OLo5*x-J(Cjo4pcw
z&G$y@U51fxi8*vt25nY4uwp#k5z>hZI5V%|u;EIyw+E!V`Qb^xgUQaLfUW9qW$}|m
zmx0-QZgG(+ayGDYPo^NGe8~CAp!c%&t}4B6JglLC7pi!hZ0c<8t>U#~A#_SQQm_7&
zr#@A)=^Mq<mo}hM6t-3+5U{HT(S0C^2K6jaOPs)!E_aVP)G}b4sLnhGHLl|iGAc~r
z5PpxVP&y5hbr12_2O-qbXXLM7gUOXn6mqA4qaSljJeXvNq@)CVe=%4arP#;0u*lZ+
z#YXi#=LldRtA_he-g8!meclA)qo*#D5>DH#MuI)2n?c<cbxaTkZR79;Ofo*;A>%Uc
zg_3gr_#mIasGKgpO^*GWePzBtX7c^*L(Hd&LPA40L>%SSt?dkruhe_hqy&2x|2D@T
zDOEx?RSBxk$s1hTc7v-1Drrr6V}SMq?X!akmo6-z{O&~FSou@ez8N&^UoI2>>I<eJ
zps8tlXh)Zs!YqG7{05wq!=B}hSqW^C9gppd$8#%+vc)ntuM63s2hEc3>SnCSvS~MT
zuUFw=K)~~2DtA9Fx})Vqa~{SOJ^K1(s`j-be1R=kt%s0ZS4+U*YLI9yL*DDzOXj)p
z@%}wZe%Ci2f1(4tAdYs`=U6st2~r{!4S4`4qfV;A4$snRmjGWZu-ooi4aP^^DC@<z
zx`0azl!b1km!A`Cmq@|$SHAN=6_3?bFi(!zK7)j+KTS~6l2qhN!f;rCFWIXvoXY}W
zrdh~hGMK=1iz)e7FTpKM#G+o9?0s1zyX;7xup@4N5)qT`pIk=pg$p0QT}y?Nu!HU`
zrfLNM(k&=ZGVbn?^!Dnt`iu}sk<Y6#i5sQhWAs}C1WGQyz?Y9mFv+{L7`1+;&#yd$
zWbECylW<^J{SGjrkK7ZQoEuhGs-2%4Fq26|sczQbB&z3&s@I1e`rJQ=-^iMJQ(ROA
z*9KFrxgUBz_~@hi_fIgLcKK=)x1`*4m{TXFqev^-12Jk&uh7W>{&mH~^Bi3QeBVIZ
z#B<>c2(8^PBg2Ab*N%R1h;tq@3@l8E@!cNzC;Tz8E;k=zU+M1xmep#yYa9u(e+axu
zFq#yd(QdsCgcD3*gFk!eYWHHIRUe1kv$Kg6Q$h&6`e*!tdP6Rg->0n=j8$9A=UT`T
zX=M!9rN72ef6w?bT-ot2T`;{~{Yh>NWltjL;DijVFqa6kmKc94Wr&|O9Zaz4SeP8q
zz7HA_$+(+_xDTZ^S|L1L>g7pQ_gP>4sRc4i;vBgD94TR)oC03UzQcP{zp{ud11zc3
z3)IdIGx5OtJ?;jtas^Q@l~naB^2sZ%fEF^WF<9@oo3=!m$E;%={O+3G>kjFx$lwVf
zX(^hre)BMK=tVE`7Ed;Ae@X<I-~<iXNkDtCgjt#-ie>C?zxHBD?9-BxWRfN{Fc-{*
zsN}K`@$%1kQoZ*j4=3hmav60#k#~DxIk(Dfw3C(zU2KY?H`h2W$qE5eTlGeG<5{k_
z^8)XekUZG+@Z&{~$x!N`S+bpplJCHfevG)EGEUbr*=^#~pkt(X9bRsX9QAQn_|Oy%
zEV}OOkrnh?5r7wNG8}|O+_u<)?&lw74z_iRy#9M&Z=28YP!`wbd!iy2y-=EFQac!{
z8ZF(9a~n0upoEikZIv~|^#z(-oC8Kt!G>K0QIv9t>iT^Tj)4BV?<o0?Z5999fyy&l
zfwwbR<uw)Hw)8>=<^o%?KF}J7-#auJ=l%k|Fr^>Q6=>+#GPD214kowcsOA4>XZn8-
kh5tWVx@9Qtcf><|%`2q$^PyJY`(hr*O1^tjB5vUOUm9okM*si-

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-500.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-500.png
new file mode 100644
index 0000000000000000000000000000000000000000..8532d279bc5ec58c419b2cb5ef4c50fe81a8dafb
GIT binary patch
literal 18628
zcmZsiWmw!?w6<~A;!p-HP@uRJin|X^aWC#RxVw9?!QI`xIK_**ySsk#o^yVFKV~M$
zmE=k$J8Q3XKhFwRRFFhRAx43Mf<l*;5>tkPg1&_;+ae)AzNdAzNFYDZPRf!ZP*oG3
zk02{>X2SBqP*An8sIP|bkac8xDNQFRD2zY<eV~&WFd#=rX-bO;tAg~-vfwk5|IH3z
zej{I_$Z<xYj0jGkR7R0PHbPZ)&G*H|Q*2XelNAwaYbSv|!Z?b%?7GSF%)WDU^EZXo
z*V!L36Fe1gFq+6Lbpo@qdcl~n5TYRjZV5*J_WwXf2<$arc?~s0Su=oa4l##PIsBhZ
zVz9qOxc}Rag185_4YCg*+BDR(LN1wr^DsK`_bHq84j%ix?oe1nj2694AJ>!lN_3r8
zpVRfu6?DR>jkAqzLHmLKIf_V0`S4&e+pSWo$=OsUH6>fwP%x5!8HMla!Vq%Q`5D69
z+E#xkss83)F#C$j>0&QBfNxm0#h&7F&KH$#Ya)xcHJL#Jp-P90Nw;lRBAWP!x54g$
zMvjoI#qz&vK8&LCJS<koax|OBbOrL?C6(*thrAcarV7|UY=|x}Wv!9<zHYt0zt|B_
zNuWLa!5Pr$mx$K+o6f15`P~5qxTYC~$B^Rr{zPBputQU&(`p8*@!$V~mE|Bx@c_Eo
zZoS5%Z`08CmiJAd1)i^4EYBr-w?$<L*rd}hy}vz|J_!68H^2Lx%BZ<buS$0zgX=rm
z`8>*SzF3>@;k`eecE02|*)nr&oxR?<rtkaq1)-nlVeq87eYw%H)nR9_^?EX8Hk-$3
zzh!4Aw%vpI-@lF6&pg{@-HLzZvv~hiYBi3ce`XOn)-1bIkyvT6X%O(yYP9_70+_x3
zcz?O5ax9cNznK(p(rtHj_#%tz#ynqDNpYb#p7ld=<6^$D{N;G;*Ry9LP4wDyzU1Be
zKqSFh(n#Xk?2Oy_-RZRGi~aT=<b@m`Z;kR_=-f8Tsv3=!c$M6Qpt)}O%tP?kmxl76
zxdGZ;)|#6!WK)RG{JKRADg0iKEN<7k(zz};8l^_?&1z`GLK_T8zVnSwSCW-hn?2Bm
zE?Ga^CgceP^-gl4n%BK%v-myLquHKS%S@yT&-&m|8~AfKmzr#r>7ofSDUp)u&8J1&
zo^LIPB2!KH^j&9*feT#L8(q3X@IIS7K7+DvNup0{?Jlzi_)I!EJ7OQ^D=iMjduukl
zVEIDdv*pHryxG20bt`qIkrIZGVcUxZ;4YZLo(O94eZ4|lkjJGAc+PU$aB&-my?DMm
zIhn7}+<AVuIB?t@-jYeCKl8yWTrF^*O1<lPS!Jm1I*!2qM&Gx3;Pd8^`Lca8xk?qw
zcMSGC=UD)*6LFZw(T}JUE3`$EaJOvuWE@(~RqQ2DOCNVx-v_UBdZyA1Su)9{Ffw(`
z4Ruy%)|Xw2E_osdN8)d^#8XMM$Rsng6X;j${F?Z^B>?*HemKbXwe$pLen0;;3EpGU
zYbjZO+y9%PGYRJJ3qI*|^nE{~O=VM~|7KT8NK40cE}zaZ@^;~?Z}BHj=3iM=^{wyl
zX75b5>~bjS57(BI4d08HaA>Rw79~Z<H9Gvw@I9+D9osKcE2r^(`)0pTT1Ud;7({<m
zJeGn7TNV&9lPj4kf_bRbN{~KuxY+Ji?RnXYnC#k++H^Imo5XeI`Fb_9W>wvJ?zlf%
zC<AuPokV5s*hC@lneu+UlC-_r9!UMFu)I<XwBt4zHqfY8OsrBpnz21ytkn{@yJSQd
zY_eI=wPO8k4vW(Hu5H&=sr_N^BEBSeGtPdlO%!>))^6cB0scW^z9C*2X!`km|3fzQ
zU0u|Cx-a<rG_AhM<Bs_Gf%|X93HyJ62`QFD`4H(wEl=(;fgs{iT-anZNjgc?rP;6_
z;o;3~qs-4oyu*z}tD}a)Vx|o!_@a}{Ad^+|xX5a()8>4nW2&@25SeO!G*jeqBgUfy
z=(+hg%#Yp6B3O%bIWD27bv|O#IA1bb<9}G)`9v+16VlW9uwFjtDO5V1+?33uGRSFu
z*;KC5Tt&CKUDm*D^J$VZr{Vfwvf9S|tZ_kyUTMDDZnXqKSPXRDdeB(Wyk2&Jf=jnq
zB%fUbHr^2Mo@*hWi@r*r@J48MUQ*7D*LTmqUAJ9SG-sLL`(%3T-xUSm*FsCCK3{uS
zU*PJxK4$Q5pCILR9=<#OCmWrIk~jYKhs8{R?LY)xl~g<>lXwKKtv~1=A>GaX#6PQG
z@mxe>$hfiH{u9pB-OwyO>!wq=+^Cx`5q--G;0#f-P?~|f{~EAHjiBdVl&rd;kLU8S
z4DM`CU{tQh-Ek`l9s}I@J1kmi2s%ltX8l1+ASAv+0?X0&?ptO4hi4MIw(+$3mZzKj
zQpXsyI+Ion^R=GN*HH#bDaZrY9pivZ8KR)oI1ykHUHnUzDT9)fu}*f^o6hlE>D_aF
ztU#HJ*=&(KQzYFIpZj%*ksy79|49ep&y%;4YNzwvQk6E0cjYzS^MU2YKU5os7^DIf
z7f@iyEoj`Ir;84AH=Xz~WIu|m-b$5=l>7akSuhmU4<_~P!J{%Me8G_<+*OfZA2dTT
z)qmwmWm9xU60sMhBy(u8Jv4)=#b7W1d^r+mxh_6U)=Q@f5!=_#adO}R*shoJ_B(G(
zP&r*U=<3`t9M)MngDdMD(_C<H;CgRNH~RSB+Sr|*GUo5DLfP!~y|Gk%DnhIIiuu3J
zu>$wM+fS<6VeDS~^9o6$FyG*6jfe27mp8hQacB;edps{X%eS0F_If!kt5{vdM01qN
zRNrecBs?r8jbjC?ykFU|!VNk=;D;ROH}n`q9rRM=Vn>Ia0Tr!c=?sY#=f+xA$PD*`
z2olSvU;yi4N>~*t#d2vgmHN#J{nHiA#h-#5A1^7Cd=T$6`Rs8um6hg$#(bYl8!~>l
zfirllnoeemtLdSHG&=%W^y@tut6u7$Csm@vP!w@<r6}(5gIv#-OJ%V48qF>MYL*tW
z1xn&hor_H_<@D6cx1peYBKBXZ)!+}Oz0tEl;P1oziHvGJ%NGn%-M%2?JN~3kG90)K
z@B?02&(30KfI~^RUQx)%<AhOau{Y$tYL@n|Gi$%-vMYT6)7=M!v}@+&#2^CbK3C~W
zf1*`-zQDi0-$P@;O`wsc4^hxT-vMR_h>n2;jEg{5@{Np`gsOzFh=0tt_zye1SLS=x
ze6hG~J8GiC#B}IjJ!Xq{hKTxMEs+!f4}?HU+|`YGGrRAmopu`now2=Qb5Ok0(h1+~
z7yipZdc*FL$uB(%{6#Xp$?QFBaF=NeOO!$Gt%Wep;352BvCI3%!)_w**yFh(jol@y
zSu8w(@^YueVz%h0h<V<7NileVnCcfAx9KP@dLWJrnAJO7HtBo(SR6$l3AbxSNXV5)
z>WHUGk(|2emHONB@m-~Ez50Szv&~A84Bp;g`Xg)}6d8`4%R|+gtp_=yfbpO+x8(9)
zUT&EvbQ`aE7hsW`2l_xSuONWwf!_|lM#<`WcZB$Qt-~TQgHZy-6Hd=(pql`yKL}md
zS|s1s>EJIOkTYJEDg+h*V^B6Y0`H$EIzq%ZiKySiGy5w~UuFon!meJaVg-&PaNUOo
zl3t95Vw8*n<b#u<4`h9n96Mx#0y#llTte>EI<0+`Sk+yi@J~#3>mBDk@36eTP8O=&
zA_=~wu<aiy{{i#2uR$g;F=4yeDgIlE4j^?uth2#WfajFMd_`ItH1@!|T&p9K&2oe7
zEpvB?zgnxKsW-ql@RHYf@Y7(mKUZBrk1{+q0tkA?w2{!l>8BC)-rwKYxdu8c+f7LF
zC2mJEg)*pvUnu*BA<ydESxh>&oZzbr`kwp#xTdc09<6)CF1;5HwbUVT$C@IpsDj(}
zBeGiANFuEh9=)owX1ysMMfWP{+f9iqn6Z^U^Ysa}WLvw*IV}a}q6$<c5uILks(1)$
zO{Q1Fhc$>FOF9B9Y_D9*F(5pIn@tWfBsuj4Jd_)mR^Is|0_@#y_GT{yNvgweGx;25
z)JnDF7wVLF8+_kF?wCBAPTS(qFackpxg&%>y)I=GPo2z_mXoyIU#whM&X*OEG%2#s
z&CYFm=SgvzeB&t7dE)7wu63=vrSQLPY@y#Y*p$DqjY#@B_gy-UysJty|20BDXKrse
zO(m7_vQDE?>#ONUDcBlvrHzc{PLIQeZd<SLYbt)B7_Mi_M;N5M6%?1_Y3%KJv3z+F
zJ)?LG$%EE%jOrD?ZQ=O5pOfgG(LG41a;=x@QoqXMa$>`ncQ_p=kZMHzE|g6T3#cqX
z@h&7ZB7}~jb?!&?-A{A0EeBm|H`}T#bG=;4YLuyd{dOTxy1|aCEVE(pl0DNLO6Ifp
zMLt~)&*T1diStvvym@Ti$L=gJ8T`Lf@d_^)@7C6WzNcE}zjg2DkjnfIU#N@sw}*A7
zXku>HyW`H!EglC@zzq3NIvYyli>{lPNajJwX4^I9n|(Wkj{bnUgW)Z$CTmlfRmiia
z^v~!Du?+)n5^8nfFh5_4wmGmW<+ZOt@*{`Y<ktU+ki3wUWl^(AaKAFr6#?VV%MX{c
z+u`{Bw)gR3RWEwCV*h^ETa|7o$lFs+@v04d&sKBm;MNz!q;bBQYBR<D-|Y0Kr4sLd
z3!0GOUXk<v?u6z4TkRB0{ZDlihR{-ol7%y@=hF(#;5g!5D^<9!)!4OT{;}vw`Z@6V
zFZbU&d)%I?S0-KF_UF5enb{i;=L^7*)0il9CjuHFmZ_FQ3;Kw|`R%Dmrm2u4iR;7$
z)9)W{Re+vbeK<+RX6vU;tGP>?z1k08O?GM`9i)uGZn@roV+%-{%xoKhmOEQ%j#d7Y
zrziMPLCdp_W<NX^EBKnj7UN)hvxCVS`aLGiIw|v$JO3s_+Jc_9+E_t%ri}En6$Zvj
z^Sx<5LuQ|}cYIc0L!;eBSGqnmJ$bA8iF##U%xc%a7K&gD!|&540|ZtlS5>{_x`&7Q
z60I?$KU#~knaU;Is&t#@T`s0o1clr6;$)oWN|gM&Z87b)iOdFWct{(_3+b|dx*X3f
znT}>IeUbTm=QQ-y?&ICtBVAWjXeB{v<?%xS0mt#8t5b=q!WRDf{e8*nD?yKiUo;7)
zs$oogI16n#xjTyOKeNaMSOw<Y16OFT`8F3T$N=GexS14eb-&q%KYwKPd9AKe|C?UM
z!vA>Crk^Idqx-`x#5DcZ{_)cAVaY7}*kL%^=UO@_gtwU8Bm3Sl$o0kbtf8YsXiqYM
z`dLt76~h9@G#)1~zooiZ=Xs{dhUDSg^TMJ@;@UmVuwLb0!sGM(-ToXT`Hd~=!6=+=
z?8y}E6}cFm5C*T&UQ?B!5P8Q@TO^#E8>>2q&Hw@u29tCaKC2O<C0N>Xl)3?UM|jwN
z4HNF!MF6wzY2jP5gg(9(CGRK`fs&XvN@gY5V*e$DzkJ-GbB5a-FWBWIt{Suu35AjU
zpuhR~_@=;(Ta6MAj}1K_RTU}{jB@lu%nh?EPgmA?89=PPxmZiW?r5*7=lOPLFR3O8
zZ!#!{B`Cb;uy!!<R*0xPkZPsWyHtOWXI=8Tl9O%MakVd>Yixp5Sij1Dy4bZw%IB=;
z6qQK68!rh^f^U-k-DK5V<>B+Z%xSe697(WxY1q%vJF0NCdePmTLj$`-w4T9Z93q>=
z8x78li5H?wScg>iv&HgG+V6|oOu8Mr9uG%n^Od^gUuEjeCUezQXs_OVGrsrACuNHS
z1CYk75q|Sge>|3&0p$zooEDf;ne_$GyNx=TwA<#;Nw`#TidPel0I6)I^xmO$ZO-R;
z$hz~D`WKFS<45NaWcp4Z%+KF@&`Eh!$MUl>4Pzce-W^1~Q-xqI2sqO4AnPGu67K>S
zmBoU|!mZofF7|1{g5OW7cXXOgmzaN;q9YXQlJYhzz;RF;E-|FA@C@@rl173vPecp<
zs?Y$H1H+N8mx{A3yQM<<sLA+1HQMd2(H_8T-}f}n?Qq&T%OPU}WP{hBt8LD4msY2P
z6xRWJD#<A4&Y<}z%LnjUdO80inx~)r;aBI+ye45ZN?YUZ$L`mq#SMQ05iw^14Ui16
zy_e{W=kg`pqSu8Oly@Di83DtXf(`Q~te+1e8b7Wi$t=|Q(8&2B1Wh^)WJn=rw@)n0
z<|*XAjovYUB-(iZ44(6g?vHnS$vz`*Ou{Ms73qL%!fR&lHs|#5{o5n<wq4OrX@aqz
zr*E!^Qqf7~+t1fbbP6hWOmyB~Z^CGbd-G^o<+!(|N7w*UNjImtKRQ;6-RugN1g<I^
zQDQe)u|pszB>QBeIy(ku((&B8L`f0=H<(hu85mStl2I#1{`zvvP<;qWD8=ewm@S^1
zT7_!}XMI0w4j*mLECw!tF#mQvint%2F0u21#fEY=5Vj=ipxBD2<#`#v_ni-G#ilqu
znY=C$G*WE|0W@mNqs5Sd@SGr*)Fl!BDe5-b6$aF--`zzlezQFC6D!?J@A_p@@NHKj
z_I*G;i%kvZt1x@iTMQ{LoiE$F-;=nW9}HVpZw`h@_>czb{^V?bG?M(qO8ewDtq!RJ
zG9|W0)L^)7`82*Im-AI=Q#6Z!kw+;<T0gYI#oE9Ii#n1ow{3KeAr-Mxzr`fRHP+3}
zXE5_{MME(h-k$GWW{VVNed4VsZhIK^>0cExAjJs|SIThp*^j372t0<b--dxb?R<!5
z=G<)7&$mbE+LYg60@z_=dz)V;>vM0C?77&G?LKI8x!vj2D|HH6DRU4FCcI}mT8kR@
ziPyOtw|fyI&DUhb&*hR>LnJ`|Fa>o~O-Y^VOhyu9U{jz+ps~jnrmTBkpV;)<jy^Gr
zG!0Kf^ST`G;xqj$=?F6$f7PVA33uO|4&Mt<qLM_3jZScAC%2g>;~V+Z2Nb-Uo8psY
zxUKg6@EJ`!nXgI|pmreoqjW3uLyB`vVOan|bGWrYtJ&7{!6APw1dXL<Xu-jlfm_ky
zv|DLk6N{1F)XQ`jf7ZlZ(;3HL5V0DyjKWj0iLnVhZhB`)Qg7txfGJ|(AJTo_8b=Ke
z#ohTm?iKY+G`W1=UwND2x5}l2>0{Z%N*?i<^-ghUuB7w5A=m?B_3BCN>RI4z*SHf=
ztmRRR{3Qsgt3MR;g_zU&Fma^h;g4l<_r`tr%q?>Mi;2;5L81pRC=VERiqpH3I8wDB
zw8CZMl~-`<MpRI9z#les$!W2=NIPDAp@K1adph0!(ED-`s=LwQUSFL%=Y6>;yphRM
z@7?M7a2;;6;CTxS3VnY&Yu>OVGw;?|hty+U)!p}HK$>8^i<RbTAa2Y&Fk4L6BJ1{H
z%`H9TF7;Y$@$drh=lgZ%T8=-ECjZ?Vg0D6r8?9c%YRrjr+nn#i1E$-6S-g8Mb(-up
zo)83AnALwvx;$GTZJbRfxY6bP;srrL*I9h-$|rBvW4~r%M4vz3sq7EOQzfszDtInS
zYet!|v|v<*Vv-e2Ua{M63gy~R6~5$&M|$1qc}TCIioEo)LrBfHhK!1C-xnLyjd&`_
zTQCyJhUZ1siFTWF>HC{aB>qe`mmy#O9Rv=Y{Pezj_Y}aU_Q-mf`ayVGsxlNKz{-*&
z@p}20!@bm&G#hDzWgUlVyxH@?He2qqKGl==N>inwsn7xP&XCp1QRsqttnVMGn>SwD
z%y)$+2xPnshnjY@`d6`)!Q)gk|4n2~<D;_KYb6+vyXif6RKf>KNCqyfvej*WM!3DG
zHWkVS3cN2i`@DI0PXy9w?)`X2oI>{TW7hJziGJ-At5z8V9myUjWHof!EWaLRaJiJN
z!$x(|adf(UVJS|_Fyf%|rqd7d+&mZbJAfcnu@$I4bpKihJ@vhx3V~6cHkdBq(|b4r
z72R&;8v@p^y>S$xUPf5(@6U*rYW2VL>9YKX`n#iu@wgPCn7x*(bhSIVMF(F)=PQ$A
z{8&Tn(ny9wHT2yz5BLojA;I*=S@n0+t`NKKvmYL}CF?hXUBK-1u5cV$Oa3I}Z(_BF
z><chw;t~;C<rlMqg71%1r+~B7TI109flRD?=?h&<x_$<g&!4g;b8mvW5zz>99MQ+K
z1veIQguT51Lfyfr1au!C|1mkw08?aV(G-vq2jLVdFYAO6<FlCX(H#V5KD|Hu(=crK
zrO;rxq?`?Z`I;w=dgnHZ7btonTqK0L%WyfUlhiRh>(*d{4eh>_EZ@rSc|XM!E?m|v
z3cJ7go7MO>&49d_gxj*94!VcE(dwTnpwOmLyLo2gD=-RY1Cp%g*u3p$?02!|OP>6=
zJk+-9JX&dWDsFm%B;+bfL!S+q$Vs5;k_Fa~^n)o!9oV^K7=L$@Gg{5>82Q&AD<Bbp
zwnxeNe6ME2b+h}g``UlFA16Uh5UTYJ{+t=>*W1>SM8kWW1mlKu_ghh^j5Go9F+8@T
zfcte24rTcOjt+(%yB?YE&YO{NJw~Xh8wA+gElcOq!{(=ud#};k3`PuC?(&aDq6G~q
z56b+7jd4M)=@6;3>Hr%7@n<WXpiW-j1ALgp2{rgt@4rkjDW}%K`QOP5HVj1Km+qCO
zP1PMBp|-n|uaKmTDHmLNqRauwzGuG;Z&4}W{>BNJ@sMgIMysl|)#v~r7qSYPh@k>-
z1|ttqkj@bGIKW88Oo>9(y2xT8IknAlqJkJ>iz8y6F4#j!80NXKq0d7-l0f27sRz0@
z{Z6m3@UfDUKR^@(<)$4+g0j>PtBKNMeoS+~cQ3{>h<H&VIr)w?m~oFo!R!1OH-l!E
z+~m$dHAe1Sr0~cfI*5i{<q|-t44e__@--irL6Wuuf793N{60GHLLC7UivW9ZG(7~+
z&|=@fk95<@6GJY9?g0OA19-={ZjLBn?5)XcT5LV-Osfz8miomb=`V!ZE4IJP03H#6
z`w!9G<%p!375GHLsv|dAL=3TrD1twK=Ig#@eR0CS;}ut=ua4WodV&fIh#QIJ+79M_
zQoUliAkzD)xareub-*O=DW@791~)n5bJ%h8AfG;)T|%ix=Yl04hGvfAg#4b9CDs?G
z`@vO00w#x{8x=iLEOI7l_F41LWfNNu9*rG_vBTwo_ZAx|HS_%DO^(pqWO}pztqe8p
z=wR}ra9aP7r0Y75JIcKzGZtx_e=zzwjHWIglgI1ZCEAc@Dx(^G6!Y(lr$3Ph)>zba
zAxuITlfQZTvv|BEp4<K<Gir{0!_^W|d1s;qcpqYKO>ybJdzEEC@d_n9qF<@e<yA}>
zO5m!!HLpAWEAP(9H4<S$+O&cm{FQ?R4hDdP@WddL9R*vZG{<yC7j=^Vp`+;7dU~7W
z;cnprmA1y9YF_a5@cmOR1%3&Nft?}_ZI_qs5)KDeT@I4Z@*m72J<SjDf;3+F<1vxv
zg}}EL%oe#cwy&ak$i?Cmv~nQ#D(C9XhR8ND#_OD>$SJ$oqKgtXGslD<00g~GkL04L
zLcw0YqFq8v1k<4iB8H0UAQ}A%m7#wnN>rCYWGtUy{;JfGJ3GcL{}UB^lS-niWqG&w
z@YG1th!TE%OeK+-ifV&MVkcmxm#CNX75wvApny661wodQ)p#H(ZV>qs4HA0}mbo0r
z{&@GRT0!q^UbUR^;aZ)Vm0H{Ozas*~DN2Ra@9BB-!1}&)_iD>V%V%50(hU{B?cO;S
zFWk;~PAB?QFxhe#R4y7W#a3(GWKyL4TV>5$w{Q^Vn}Ex41Jet+oOxjJp^%Qn#SwdP
z<Jl(tZnxp?M6!0$q2t>0X9ibBbhCsVumiF!&YPiyAJ@~0)0sLc4nQG$f_YJND>xC_
zm{bLgYn0~im9E=cJ)<be&v_vS*5VO7EWY~&R8b=1Dzy``BmxphE&zedMSJn{JfKs3
z?=#Ma)tgDg^)BA|YW-paiM2KtRlPbd>h&68!w)V+ju-Kf_+QUaQLr8L5LW3zNEk6Z
zyrF228E#gJ(kkQ+lb*l}8n1?1k0hmS8sz}ucV6vlpHoaDe^-78TkQalGyHHnE*R4b
zs&_gVIolq5l62KY9sW8fNC@u8ue9bEq$tQDEF$xMt!2=<#n!b95@acHP(;P2FSvk%
z-3fM{>g|zk!R|s4Pr~J0CqKcd^nL6_ClTm_R4U`q#CMTZrBwu&`&tINPLt>SWzI_m
z{g~>6>Rb_s40M#_pZT^aK@>*a@35=)HY;lh1Ce(gEOZx~6c}H>L#qAKGX#=(J0u)?
zkfP_qX>t>_YZ|-hyp;a}jSpR*YaT9k-2y5cf)W}H2h4+vP+Yywse3J5MKsB4whX!X
z_MaFk(}9i(8y(3<V{{`6yY&Xmg;&vd3Q>>ROy-9;3j&_Sj|49G)U=<^#Ar!hQF?Ls
zrhLcn=d*7o?OP;A4JxPV$KAo4QuC*Zj!4RrR(k-PDcGHM<DrQf){y-vun*fhCjV_5
z2?r>Q?qAE609EgcQT2cYQTOn6SH(lCjdpXX<CULb5>Mm?Rnhr@sgcXkvit(R5}b4*
zwc5@VTRJ>i&<Qlh)nNaJ#gt+6ra|0l#-3hu+bO|7m<BO6mh<Vley2yH$K@0faSv6m
z613y?j)U<3p!k;pUx0V#lYM=U590n7gvC2oY?97bl!iJy2vIYQbv{^R7@-0`^Br!u
zqiy<!#R-TaG;2OG{SK{0IF#BQm@I#<BjUc7+LWu=Ft|(qmnx2YA0~->1}z~HP0Xnq
z8biuyDMj`v`~agHA=cZ3E9-h<mB*=((d3Ju=q_!2)EKcv;6hgh`mVg#ZJ($~Mc8d^
zc6b;jUyz*H**d#SHKG_|JWh4@Rmk-(ov&1EZvhjff8vch_|kvH)zZ|3G8zghi0KI!
z6HU9I2}bF-&QUqBjPq;yej~?83(VlQL&+!c8UwTR{G>7tSQ*8%2~NG)A1R+^%i}xM
zMuO*!q0_nit*Ea0L{AApqWOzPqhb*Dr?DA91`HR;=Cu0t-Hr#Bg$=-*QCg!_V~G@N
zFuipaMaU{r>4orXFp7xRo``)t|BmvN9Ldmu@%wuB%XtuGW<7$;1FV%(EfT?~5Ua^3
zqa6Mv+lb8s|GF7F!Wg`DI=R?)>qEt6i6H6=Y#)CmrDF(;oS}m=)aA;$^fBqBrikKp
z8O8mUif*~yd;(ZJt+P2%=XSp~@eYY*^?iAT1-4&J{AjQ%MnUvP*X8q<lR~0Mr+1-G
zRSxo?TZ9vNL^(;TOQW_{aEI`SMj#8(!V?#6IvlLH(rfAVvp2sn3_m_|-UT*rp3nWJ
zEcJb?MCm-J!Rf9{jrg8ktt<%zrQ#P?qWj&nEoRisrZB9_S7=xW)(%QYi@QX;n0k2J
zc5yfSj!CE1ciidmFmrX!xL1yh$5qiwU|o=B-4}d`K;pC6_;hn{a+g1YpY$d1G+vU-
z<v;oO3*31vQNnW-!K~Qtx~&K{=fJt0*m4%(62+lR9;Z1`w0nU-VPE78g=d>QPoWOz
z^?oP{%V0N=)~GKTNJ~M%5BhD+7MzT^=m_u`!%%$%YGWyF!silxMpB71l@Rs3)q@yn
zFJ5+6?4qXy>)m7rQ{Rt#{I@5gCQH>Rlq8K9+&)%Fo+P^uCYKIn->m8AVe?SZ*bh3E
z<$xY9Rdcx@%lisV4@^D7#Lr;78_%sic#o`FU<Q-T;$pMKO@2sXtK`yxC9IzYQmIGA
z6%<O2RwKb`&=n37JAFX!9md(pNoKpA$=`JOWmma9;}Q|k3H)Jwq5i?8dNUQ#j6#&%
zL;}4oJuGBOTzTzyC2KEKuK8*>6B1cx>)jyzT!vh$cg*B3gjbhLV@!uopsx)vi+u+#
zn5PT!3w$g2o|xYl>Uv~<)sx;}KG))gSHaSq2Lz+E-LrjcVVj?9+@37BO~p*&&W2k@
zn6G~drwJH9kY5h6{^JlyuP+`%cjg!xXCX#Wzw%jl+h1{D1c&w?n~2|^ND|;TJi;(&
zDSDXDkw0QIa=i~JH)7;<gD<LA+dfwEaI`YvYx@iu6{=RT_M8tf+25JKhm?&phQz!v
zY#yb0o%SbqELUhs5o0OeW-kExUbQg_lzn;wU@zrhR9U!S039_<bzT#;zto}G%&s)?
zIUmIxwt6n}EtNywpEBH~PT)^u@z_4{0ou_BfjaH%JAx|XLXYfP?0HIRg)ElOW9Ypp
zEZu_7hsJqg`_dVyWi`K2&1u}pa!c-L74m+3Xh!;5EXJe088*xoE3_L8fYG##3w%Uk
zgZPz3fil^e<$Z~Q9;YQ$1Z?;a*+H$Spu538YpgeyZFDH3H?c3w;FQeckwVR<qWp$Y
zokg9~z<OyqyiaJU_tviCsfeC@H197+9>gz(v?wmC-#U4|gp%iFj@ow@ZZvQ^hU}MM
z)`8to!5&(5qtp}v8ekCCWP2hau<Jyrj%xDn4(1L^Coc%Uu35<>Jv(jlzWLjngh(Xo
zdbZ<W<b{n8*v(4qxHtNhBctMs+B$OcY9HFgW9v=UGAyLI=_#uCbk_8rxqp#GkeMDR
zx9u8PXjne=BucYLF10$_Gp7rcVB$pU?nbTb@CU$q5(OP=0#LcA0kx?iGPMdRD+;=X
z*a-L{9ELw``3ZeL&Q#v}^7Fk@gP6v<!{G2cgoZt;FOd*F`_9rtsi9pR%@&<_RccjQ
z{_OtEa3D_Jx6sfolUzox9gs}s#~qJ-`b!c4>s#;lC<>RJn{@!j@>u;i!Gym7MlA!F
zbL5Zor*?X^a(c2Uu6^pAvCK`YtdMBp6GC<YcC+!h60{duJ)bAMJ%_;rM^<`5Pjex-
z0g{)n9zJT`!5A+)GJnKDSOMb;=!JNvVLEd;e!><)gINB15Ft<(oexM9MNk)2h=HbB
z6?{#81EU$d1<!woI!GvM2Otxn+DEpzF+pB{NTS~s-rA@5A&R7GGz?{~uavJoXbXO;
zaL(WT_=7jl$3p?nrB5>H?`jktL(_!z;V6g_=g_H!k%w{u*H~erZZ$*PEtkD$eG&F>
z2uw8J9M9fp`43-|CweY<;3=qTM1@*IGq^s9PxIRT72_<7>53DxEnw~JHls<I`9)=u
z*%=iDq6Jrsj@`oYc)l(=?5P0Hr!Ibq&_3^^_5({X$YF*Ou-<Y{Pxi_gwqj(mM|XRv
z4%j&{+F8Xg=%i^VaR^0AeLvor!jZ;Gs%~_Uz4~qsjblrdTxbK$Q2=8E`W!0apRlpk
zAx;4o2(x$iB9nxs^Y#Jn)yGTk<!{8YO4ww#v7f@MzeTT6<&}2LL0AR1^Qm9WzjKHU
zYP2bXF0M+qy=3nv#CZV=B(%jxTB}|CQwM~^<?51gWE(bo5Q~_LEn-c|<S*(Dq7IDy
z=)h{4j%s$akm1dk>nUhGIGjJIZ-iCo^Q9f~@^ntP(F9#xX$JhrUtAbQ-<kbNrOcP}
zuaZS<qYx<^ML_Y$1Meg~god`*b@w7o5HH-u0BQ06sXZ|@KV$yS?)IMm)K418WwYFZ
zfKGg9R`og=+k2@W9K8D9cGP>y%R5veD(T<7UBOd{eP|&cDC43K&zu|M;?FP`GZnH8
z%M3Q|*Hr9EJl=L&X@(IBjs@7Rt34B1W>D`IcOU}#+=gf`G)?9gposr)j()d~M-Qrt
z*GgV6iJ*_yrUFP&u$cDh^j}Z&R_4^7hp~0cV(K-dOC5oaQx$%peFbPRF|E**pr2jW
z<LiwT*ozPagWs_E`Oc5k`erBAgLtD7YA=yKDNv9S_0x2m$XtFXg`=N7p(M~JZZovj
z6zyH!`E*JTb7<=i&kUoJ6uQmfQhum*gSpaXX$Gvq_x4Yd5OG-Kq$BN3lEyItz!#DE
zvHAAE*=eha_0Qd>GY7CtlpebMi&BfhS>R}kPV-_8JRD#w*zR@#aIGMx<<^xhb#x>=
z@E(dGZJi8-c=t+R5`YKvYE`Ewc#MQCIDomOX1i=Fz_(E`N(<!Ta)&Y^S``NtWSGyt
zVo@F|s+Up!G5-ku+6KE*YLh|MPxBdu2+*>wRw|uHBmP@^Q|t0(u~Hj4-%DX6lJW2%
z`ElLeG|sp?bQlxp?_h1y>bUoQcQG=?r>hS1fW53W`~8({Rg4N<!2cjM;x!y8bKQ;M
zF^sL0gh#*J)h3m7w_$3Svh3#7L->hMqqz=DNBVXQJrD}R<9b?hqpbX?Zu_$qF0vk_
zq_3k1AZxQis{%Jhb&pVmFjKfU{jRIs^b_cazO~!)fr*r5f`?W!_#v8UQ*%Oku)Ht-
zHiiH_Wb&bzYJ~tTia<8)y*?S!Qd_ip$JBsl%zNqD)FX&|==F;6ja&ueZ2)#QAFq&c
zbkAI{&P<8h#xM|l$YW+=>bh2)=Tp2fb!nudA~;F(J|BXIEOi^uJ^rS#YlDHM8~2|+
zp`DTS)MavdrqCpA230|X;FI{$&-K!57zul@=3+3vA#P2}?i^O*AQ-A!By+@}_G@nA
zLDrz##0^Z8w<D4ZdofB=7N2#(DY8Lw$|;E$qXOIGp1fk8=X%eDs+#wqXcFMq-niE@
zP`B4uVRyGLIP#gvZy|^CHo*2a_zIbnRw(N>+k|{-_JrLa&jF5gh|RHr+8D;yL2L&$
zm@Mwv)jT7>9ib~2pmRWcR@7N<%E*MIOGoAr<daIe%01Du|6To1cI~q`s*RgWtDNU(
z@weAYfW?<sDc>#lu7v~sgoxASM(r_Kh<ZMQWsk|ra=`L@`D><7{y@1{I^X7DKe9WD
ze_7%9O2|D^eXusEA=Q0C=lU6E88e|<k*T2oQ|O@i5@Cm66)?e><6~zXuvP8W{tkTp
ziScuqD?-PQX59Gkn=@J<bans7xb8mfWG`mN!JW3dWYqVVu(PH5VuqL7S$fY+szceQ
zhD66hh6ewOLmV4}@weAoAn9D>gKQpk452*8P2?MG*Xj+3@L7?jA<qkxbkE|uX}1sK
z6ydbn>41UYm~!=Mrtn!+FZcs0ZSK1(vGmr+7e~>!n6!Ka9*iG0ZO&UUV?}4{kE~Tw
zLm3}__fH3x{$u<24gLqx+;SOwOXtw;eTxo39N69Yl5aQvP6%#yc_)<~l1-2%-JPjA
zzkSu`QBD?c7-zF79N(-BwKK;ViDhAIk>E8vJebbvVwvQrORin+_RWr|=H8#eTatVO
zuWq^R)0nD+3@yx^C8N@17?*FEE_YZTvGL>cs4}lIifQI1{`kxs=j4V-CXjao#nT&+
z|AXhi_0Of@bEdB!&WU%}CvH6*{z#o*ja-pFjv<{3y-p5YurG@O!~^s)vG+GoGOccj
z;P2~GX)r7HY9IoJbL$>JjOMe{J#~jMA&eEr?<ZFJHkXqkT8&&qf#*xuH!`CH)Qkec
z%r5}OKZGSNCks|EiJsy$w6ZBWC#F3-uvynbQACwdBHn28Vc7j^qL>bs?<m}^r-VdP
zf9SuPQyp+3_NyFHZ<}v)bxzU5(>-`{U@{HyQQ|@b%=|&Pam1`}n7Gwor)qu)WCZW+
z@m~t)foV`U5eL%NLJ+-?s<<Ow2FqUviBaQRCq30;j=B4gy`$gcXra3LKiAv|Qv=l&
zl(7_B`t*$5p|C{0)4@cUzbIR@_shL(v;eo`A0!3v^i4+K3bOpw&zOjuAfL=7xm|y!
z^rx3G=I%M<Sc71_%jvjW(OWkfxIH5%R>PP3v+{+Gn-Oek>XshAEk={U{puUvqer=H
z0r_N7vvBqh@8{e3KTNa=;3?^7mP<eKEjc$3L^vso`^;^diK07bdcMkI`)^b&Zxgk=
zhUCYuC<S}C>7=iTx)fVx=As2~S~RJx!uXwv;9ZXIxa2Sf5c6o26ghiZ@f0>6#3&t4
zQy|33HdJD~Sd+_}`h6vx?*rm7oUWxFL0_!f!{mNWRT@Q{^355?dkl5ss10w3cPg`R
zDpnv}+lhUdL>fXmo@uS0C^s;Sz)I(I3VHWUy<|HuPE3nS>b%rx@xgVMN@TAU6OWKK
z_siJ<_$FSYxlYke*cR(3q@eEOMKRU+IGjyV`L=EKOP0i=pi7gBZtO%(2Pn-~YHRS9
zlXf8?h~UAKs*IAi4nf>k$+SuyjIqMT>lESW2ry<@iKf_JBJwEUIXEN_6Fca9Ug4IR
zcHwVe^n_FFZ69<k|D3wPBHS*tiu@Rnu5lVt_-oOtBMES<5-9F6#C71a<%<s#ATmR9
zz-2LWV}CfLB7&7>s{@S~@%zW#{0YRP-V-&OFbq|oz9$#`a-CFbz0g#7P5BytmQx+C
zbZ8}h?!{ckZP*7V!!YqGX%V0BG*_Bf1u>kREIk?Y20RfXi#2^((xSA9CSp&S`c`<|
zVRj1*a%+qF%Gd9*k7Z*3n10U{4K1S>xEL;%_0^xbSqpp$c;d_P_5Irt$`?>=h9a03
z#Og6c)G7|{og7YItTncv8TppCI3mjO6BO4vUf&Q{yQ?{&gsFZwjC{>t-}JiP>3Q1$
zipc}>xhF6sdvI(t9Jy5@5=qqIE#v6#|5M$v`iwh>6SxUcPSjit3gXca!3RlywF{^E
zGlt@!qGE(-2%OW{Om&v(OxJdRd_GH1SVcbfOV_-cbZw|co!IzW_Rq_W`l`W0&oNQ6
zYW|cWM+q-47PUEJ!<aIO$P((Aj(gyL)c6n<tMmKLnKS3lFiI%5=lLm*X@NmbP}(J(
zPMxj0G-XVfJ;e`Y2O{U=OdgdE7K;o-1ncR%;Pmm}f-exC*OVAhJUr2&Ie~Yn%EOn+
zY}cG|X_G|R-)z6T;-SYQp@a|FEwFTeV?X&B(8L3X*<kUoD4b*n(^*Yt$mP-w!Ht-T
zdY>h=G?v9lh+x@T;xnPX3@5-IgfDm>eZhl~`)v@{81;vj+B(N~R~J(u!mn>qKgUl2
zgXY8lyC+j$UiXV^iZdR)`rN7f)T7pS@8_s%(u=P9<&$(yWMd$|F6%EDDR<LRzRLFW
zK>q|`a>_WV5NPzAX5f1~f&R*y5h*9!L_~rCQStg1^NGvj#?F_Z?`a>39wr(nMO1#0
zC;!Te`9ywP6(LWD1V)L+Wb!0k5J}<=vQH+>K9p%xQy`qL9amEEW&3tTH0*qZIP}#B
zfTNNWhPbswkNX*R^xvdpL{OBWfbr%?)t@f~BN+4cl6QuHbQ@Hs^cp@Bl~{pESJ5S8
zB;2-Gdf&>FIFsmif<H;-P~LLetQQz#{{7Fr_9nrD02`QR`Ok8h48-ZQFURWx_!MC%
zn-x^UdYlqz<YyPiYBkSTIL3aBc8$C)wl!s!;1Wg5sm$&XFCWhupl(9uwG+*qq&^oZ
zLOZKos$8i1biJo`Zz7c~j4pslCv^zpn}iQ0=C-Yf!9$>S46H@vJRISW6rnShZaadA
z-VxiRMIo3yAjYqN&m3jSg%L#|zibf#!;p;!UG}+l{8{@xAmQ;}(3jqjrMu1BBNckP
zY>%>*a+(`FaS8q@4$qiV-USO1Hm}p)wa3Wp8gVX{d=kHE0(ZCUi1M%TMnj|dCCDeR
zlxiET)UEVKD#Fl&!$X+x5?C=!-)Cg+8qjv#QiRG@3=D7$v67g+?JzlY)*Zq}Q9MRD
zR}AB<OLE2i#peHnwhv``gLZ=s7_1ekqPhrMw?{`rq(yrExL*;|$p0n37o1w~CY!>f
zl-`R;{hLySb}t_7t14jC8ba}AzY-!;BMa4dUffmx0|{+<sw1VW=Ew38-*dypz_&^w
za5}SvP{w=Iyn8_51PhB^vI}o`K9JriQs$pxiKM}3f*-RS(}d!o)zb+isNsB+38BSz
zp^0(vPtciLAQG_0g$FK+1*s<D1ucMX{^~Cj0-~Ut^UQrTc5IztfAiXk9k>0?AG*Fs
zA*kHLG#!@QY$dYP_t#n1sOUupqtIBc3aumc$QjT>R*}{|W~Fv%E<R&{q0fx*wzNB#
z-Z=DN6B?CE7T<S}lJO@EkrFCq5L0*z$ZADHbPEwRRGv5qHw4>sMv@EO`+0<x9*yb;
zSLwjzC7+Nv{6;n^A>(bL0JqJI7(YJa+pwR{=2tG8nV&;@zd;_k232t|iLTq6ao80$
zD_k-MMe-TuhZw^B-upXd**<v-BXA&z(Tz5n42jO1Z+<lE9`rjxMXVj4{0#qkp~X;x
zdS-Jr{0=9BZ+yTo*mr?Zx>2MQvdfKnNnA33z=%_qi&3va%#W92S-kz+QIwvKU5rg0
zWiZ<UA1)T6e``pwq;E`kEfJ$Ah+q%hm)mktaqMuTy1FU!0IM%*1<3E&LL;9+@4ac<
zQD-0yw;?i??fWb}mcv-b;?Y_gXo@UUimkNSSq>eDRd{ek_L|f!<a0LzedLw+<>p4a
z5AK~RMKl^P2pc@4Lq!~P>PG|WBdocUSLGL~D{=RX`JGSLV*R+*<dQ+pS-m#?jgr=6
zJPM6PB+MD=Q0^8bFcAsv8lDFuOS|z^uU_dB7y}^$7Xj88@iw-V6a|;<CIbm&Fl0fG
z^6Qfr0{m>2`v8!o1ykSm<IRn?dg}`)DGYk)`lr#BfKzPJkcs)9#mC2d%*Ho;u9v>E
zm3Ckj`Cw>C6yhOKe615Z_LpFca|O`T^Gz^T5$eLF;?u~6fA}zU$Fdkwlz)Jk;rFDI
z1AVWpbPkK-=li3bE<97h(Z^ha8ou0ti-rDMMm!Mt=N;A%#CN9WVXE_kY|kTuc|2fH
zW=A}{;qR16Evv(#a3raqt>^%@OZ+RYux~!kM`l&VLkiEc?Lhs9k>c#K97*H}JYlGM
z8u<hcM*1yi=n1iKsm;WNHqo4MCf)W{FeOyKJEBOL7$p>6I>pbx=v+c0J|UG&<O9WL
zOKT3lNa6VSa{s#buG{9O(2==X6|-nUPRlt((YW4-O&Rj2!$xsDX=`7)_&5p?uygg<
za`Wt5<JR(L=tp{(t>EItDsRNQK}r}?_*s&@={nQ$nk$I*QR4w8CfN19p^=xlK7E3u
zi<w*5TLYUEZBHE(_DSgHC#IN^H;3(acF99Q!A+UBoWDtpsvWp_++ry?{HFaoXM38l
z8qW`8n+Jc%Yb0J=1D|J_i*H+HL^cfInh#{wF~;a2IWjn^Ia?jVtsTg`E)9RKKu19L
z&xn>3BPd5~y}R7(Yay7T6LTzfKFw?Ux2M8_<x==G3qa(r!>>2ZzT<Dc?97zuPPZA+
zu7oDqCKGkzBW&0RCq*0Fr8n4W<T(7ih8*s9IHf3v7W<86ab&Ck&m}kdhsiQjA_5O0
zcgLwCaS#nN^qYGyg-MkqQEH!EL;vE_)ezTctXE-wT_CR%1-0ac!FR*oaDi`_7h$=Q
zygROED^||9LO3aP>eX76P9aEC7#NlGx<ye|8@c&S-6{u6RUdxPhHM-yTFcl(X--sO
z2_m6Lp%|odoG?P78WlS31HA*DLy`AE-%*T`v1mMFKJ(UITJv4(Zx6_xXZ{odD1iC)
zTrciJ5ume8gym>31Rn?(4}Bi5B+<Qtw6wWll5!8ibubM|Ae}zrc+5(x->^@3>R_ex
z71KAGtxLO&TLbFNCPI+6PoNuqS>&mXDD&zCU5q@T^Yxx0lW|RBzyFaHJ`5o?hNL$x
zzSd8o{Y3y!YUVKru3?fPG27sh`$Uz5%k~n;2z@f%?xx!{w*^g{^BR~c@>}TVFp|MF
z)5T&d)i~521{4Hvx!GbbW{^LBp|Cd6Q`gPJkMjiw<Nn|~sCB8DT5RkR&!=nCDuuPS
zHUux}s1Wa$hu~<=H$IBj&%E~?Lxfn@L&jS?eftYA2-anDrOx@vELlXbd1Q>iLfnJB
z`6Lu(9mdtnAR>m8>ZuLrb##<4okvh=?sRJTme!k4IF6Fg_fK^atXLFRT<q`<6u1yc
zQIRS<4CCRdq8f2dT)_j4Y4aa!B_Za0Sx$jD#Bp~w_XQa(k~W(WA3x@9U33EL*WKvl
zDD)-9dQ)h0x1B1n#{(-C<#s+A5&JQlKjQAX!q&k!#nW3g!m*zKqy^z$A-cKjE;MX(
zS1&3z$-}Q!jeHhB2|?QCnJKijYx^gbxsIp7_l(Y$d&?jW->z4B(G~)^1I5kXHJVHL
zU-hn&_c1Q&(dJIas#jZTjX6<dpH4Hb_o)G{2?f&qc|bo;F?2nMEFAqFCz!?e1UO{y
z#laIUR>E9(U#t@!e0elI8)C^jB^7=xA9E3IJ5wi@LCKn0VTWX!Q*7-uY19>+I><kx
zkf6D8Ayyq=B@L2)b5NYb5*jJ5SZ6fEOn3Mkfyl_i#aoLUWY?q-M*bz0r_T^#{d&eA
z>65DR<rg`!6oSryd-|2?K?zG39gS~2V{|hYzC-KmJ(01w0F!$U5l^freffw*IOP-$
z|8R1-O@U(to>@dhVR>1%auC;D+g)uqb&hTLN`ICnXx;1#eUwf190nCYp#(-V)4>Kg
z&@JW+Jrlgp{B+A^G3?N8H3}Z1y&#`@lE`K&md_}X5H6t<1sRcF0c=R_#!71TA{FgB
zJ)+ZX5927b2sjMcH3nqxT=Ht}<w2h?Gwe^3zN*03J@*oCUvBlQO4T68aLObRWF$aZ
zW(!RrfOSHxOqEB61Z#7t?qKS#g>@M6Stw!()p;T^ze69~8K#%?;ottZ2ZA|sL>a+F
z!u&Uo@{Jf)J<W(`P+m2Bl-~S^<_(o~<&DXllp4Yjdx2Xb4Nx6mctg-$0BsEXSZwLP
zskkx31@)L4lcvgRP9}Lutl(?vl#@-dnvSYkUK)o%qoJiJ@J7&zdj3LYp50d@E`~Hz
z{Y_zGCHxI6SFc1{4d(;+zOr&YOT+>yU25?sh}o^KDkhDfES~k#2skZO7dTI?HS1d~
z)ygdkVsUm@5H!mr?+pm4nip&Kc+erOU{gGQ9&fUEvcJ};PwI@tQx!`%9+JgKuq<vx
zQHBs4QDroiMTQa+<F(^2?n<iS@&se|zud+?feMEQqW$iCqDZ(zL{vc0leV3mG=vW%
z+}5~64U~OSU$@M-8n0}9pR&II(7d^f_D8aY&~d9%Jgrm2VuG&Wd8wnvjrX}Gj}TUo
zdi3D#UoO$M90jyPBpRl7)XpjNE$1s-h$=xeJN!g0<Bb?;#$LL6{)OBi&*^RP8GYYJ
z@O%AMy+*YjFL;=N3*xt^YYylX9Hs}QoAL~zT!!oSH<JVr@o=Lm2|On+)Gz|U-%DW-
z?figMHK1CB){DvkC|p1y3e7G~jAt-~F#<0lY)!}*ciq=u10>-fmJ6??iZsu1A8+5G
zLODiFMzSPgwA0|{t9wx*A}Sb(YescO>IxC&xe5MJ6pT)HgKf$=i0?ONa+U`7+os#P
zDa#Y7X>d>9@oY(O1J1tjrD(4QQ$PyuQd&eZQvX(XO*xTanlxdS)n?Ss)D<^tH!l<s
zZR7*b#9`QRSgLwWR3VKD*J?COA3K9$EpWq@UabhfaEyz$$Y8<)9m#U;XGouF{@a0F
z5Z4cT=o9Ir-o@TqaJ+xc!+dK1G*HO*ID|>?<F&qgBgdaO^b|!tgQ=2^=;N{X$5bj%
z9_ghfjbZU;;Di?|Hl*Ljkw5tSm+1mi`@|BK%5E>EmcG%~m3%w^{i_TTc<okCP_*}F
z9Xq(uK;-V!U@*sDp&`;7`t?uyC7BDY$|Ra7cWF#HH{g;vrEAE}kF5of^yo)>8V(Yv
zMLEG}K9hiUf5uJT7rnJI#a*|)-iCPI%hgGCvmk^h*qazu1MA;TUNec5J?#yX+Mjyu
z-ytUWhu%=K5O!OrbvWmsW@wiyjEFQYi8;(iA{L49B?G;GO(N_TC&{2WV7m=*nus4I
z1D_pYAdbN0emQ}7q&fKM30?2u$dSmZUndZ=gn&gO9O3$n?M{T@5J`W_-%zo>bS{#{
z-77HReRn5zHI&So(VMT_WmDMW1rI8whawmHI)Y2NYeC^KLIW|tJ^m_Bp3dwYBP%f1
zppsAv<jI$VX?zmRY-3;@7dg(qORzJ(c&SHsc4hLUiqUm*Tr9UN`WAJ7f7Otdh`j3^
zg#z>e?F_z(RDp6mgj%Pv%pT>YNH8ymk}3N7!HnGrX#Tc*p<t<0fvgTU;TMIEIErDN
zedNiWn_ipKwf5ApH1^aOXr~lTuh@yXi@#3KQA~Zp*ZWb|xl_?~O81DEpPeCYia}Ga
zzdDzcW8j!=cXN3Tl5~fxr?JeO|5wVnM?;;4alD!`xhs?iUDoa7-lD>A4DF^|A|^37
zDz-B<J5dc5V_asnE=8mcGe}4ny3WX@8B!Z*DjG5~Y9vvN6b3P~&t#8(_Ut)(+JAq)
zbDsA(@A<vY?>X=D{d_HgB1}3<g`LhIz@dhRq18-P4BY|q;D7O>^>B9K*M+XsnER?9
zrzVtJ-AY2Fyub9!*rhk~-Fj3=>}(#!ykN#|1@-tq_6@F>AH_k^wdpHU)QZx>Om7_K
zt9w##h>{E!X?YuCjkY?4r)oUu5HlY_bJg788@D#iIs!dCmS$WamvZrA<3Zlb>jAAz
zVo?J<E>*$ZGI_H`^byeR)-<-L;=JRAPTtC`7tT574rST}ujg!{&~;!6q(xUMOa=D;
zrA*2^@ya@DbWEY+ZaA=sa_Apfor?WBGG;w=hLmh_N(LlpU0J@b<l8ef<<S4+&9Fo(
zrM+NV7slftGzMLLaL|m=wM>~pQUn)<Dt~h#@TKw|R<gGWpB)LoaYLq(<2aaraksiF
z#4q&On0qzPlkY<^!pQRhI5C|HaVexVcPaSAToeCyewL~K9*WSRIR`Mt2+;YZ5%#~$
ze5}0>A9dUtTReaGDb@ac^NHsz->fCXkwHuX`$TVDa1jFT1fmqzn-Z!pHIeHrf(aYl
z?jL@nvT(NL#^fU0rO5Y5^}JiA=NS8^7m+ygsf6X{G~eD+n;1`)Zf$AL+a?$dxP=Aj
zOt<AQ_f9$}$g+5iN7FyPCMBX;o5%<x6AIMG>u<sM$AAXY9iQ)he1Q(EIDYDb4Y?{C
zNt>TM*2TZ|uA>2Ty7!>DxCfpQOr(C?vpf^uhh~SE&W_WdB&-jrkE{pv39=tR>HX}>
zT@~1htT6#i(15_SAkguB-Ie(E!9C<{u>WURW`4ul{HqD6ZnNu*y`2rEgLQQ=M<%|G
z>j?H(t@bH%FC#rtEAylsP5k{_$T^~lUUYF?^p|Z1dVv_ew%L=<G)K>6(0waZM9>b9
ztMU&&tq#C*pKK6Gl2#!wN^-4ZiGk(M_E#6!E{MSH;DdGelVNZ%7`SK_sLj;b3FZr}
znlabXK<-LQS2xN6{-{R)kpw9dZw158OR=B~k|FhzuYhH!?<}wl*}r;&5(SqW<KG<S
zmhVJb-gCE86%RBz*<Knwv^~O;sH|;!s?xVYo)1tn1A)Kn0@C>g9)nn9+;`R7zxp8k
zNTm;+owO=@x_E*Gg8NF!GS+sZt284oy?n=?RPrGPBUG}2IP_#glRnHy{XV3OD9fR{
z$v(ByE~hcfPs!Q|PHQc5-anz$&|+G5dj$2}PC)mCTJlj$0|lz?n7YwE0!eS7%jVa9
ze!OHh0$d8L@Ll5td~n7<cwzOkz<1-KId%Z9+=MqHI3m5+;m!H*KeZcSygo2n`pF{r
zCZT~%*j`MFT{Y4D<sI<^PcpnabE6Qv97G@NqIqTR)Lox)*`Z7-VXwxn_WY?)i{@X3
z4&9#dCpFKOr*@e2Pxalw!BV=_nMNKt-MXkju}av(3?Zg(xoXjCPLWeBF2SMWwCz)a
zpU*pw>nKrl&_S02Up`0-C$)b*+7VRx&?D&H<OqTYBj_<o;FV`RHG%JMhIb6TDEH7|
zCb?vdxaS%RAD)xinC?q3<LBE{1#StRg+>(%$caGROCt(^hLbYtXyL24i_;B^OF8Ez
zZvi0qC_rj^?nB&6gjbVGo4e=&2SqeN6!^-PI;(|}B85GvQ@9?c!|Z3IL_t-<tj!P>
zBebbD4g+62a!7pk?IVF8(&@}-ujqmN?1ISk9#>DvMU34=<Z`&)+}y_%gz5{2Hx)Nd
zY+<p;2&})=vfdQ1qmhu<d_fbgqNDI#KT9*2O{hA#*I^Q-M)rl)NaJy6Yp)M@8n$bF
zEF#3@{2<AUDtU8g#QG@zl2z%{7aN*K_LkJWMX07&sc}^9e2&51L5V!(ns*7SVDZQX
zFb(wPI#+hupBzZhmS1BM@9fIra+E1N<Pg+YDGL880%xa~po)5|nYYvVm8@LD>7Zut
zf)`70DAV?Pi}6yibME&1BalJa${%ECNfaS3!iG5WfX^D{*f}M#Y}0FY=l<=pL*Xf|
qi~NW8&Qg6}3i+L-SQ@iKOsY_6d9yFcW)z%<mhEx#bfvq5CjAAux_Tb~

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-flyout-400.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-flyout-400.png
new file mode 100644
index 0000000000000000000000000000000000000000..aa59d18577217c47e9474147ceffc4f1b71bfca6
GIT binary patch
literal 12506
zcmb7rWmsHImo4trxCLn}A-KCX5<J1(Aqfrv8V?d^+!8EUAR)NBy9W#IF5S38(=fc>
zJomYGeta``ejKSfR&`F*-fOMBPo$QH5<U(!4iXX){u^b`J0v9Jgy;Q!ER5&%1O05$
z^9I@Dost|<`55iNa{<j>R$UeesVW}#!4mzsjP0sy=z)Yp(EHDV{OvUX4H6QM%Nvla
z4%qBy1>2u=2O)hrethU$-J~psl|a<3-ndgZ%#sJRs8dm`OP#ecF4HT~eX2L=E57<D
zx%iP&uc*w3u=Pw)<_twahJlEfIL>wZ^YVb*_|t{N#i$(#F^l}et9zfG?R1~rbo=bs
z_V%>^J3B)q5E20JmO|9?4G1*NqQ(FM+2E330RRi#XmTJ>Jx?$ZAd&OmRGXh^=0!|u
zRpEa5g}L!(u&?s5%|hgo3kbY_=b0o!eRf%vx>c6t%Rl@jrYn@^!^2RTsI|n@X8Zhm
zy5hw+hw^6P5}~8u2K%6g;}cD*;|Y<rR0yP9Ez6`E$7+05^K@vj?kHsjyj8^J3Ofmk
z<KNAUgl7lP3v!yTqxElmW>kH2Fa?3kMYBd_KDymB@t=Vo_dw1}*nflkB_BU66e&N*
z9T$X6YPFLrsStL4=OyZK_v`9YHF&-TJBR)n9@B}+-5MG%Wfo1iX8h&p;f|eFm;;qP
zE`qw!_W*I5yZ-s(A|g{6Dv3qH_98kFHBI8Vc`8yt7*pQN<eWxfZxBhB?O4<!vs?8e
zfsu3d5g<ak(WVEk<;&y`lQhde`uSQBQ_)~pvcCX2{&w8=$h!+o`6n9+BkHKrb@d<x
z%Nk`u)VMx%iYF||RxVEy>w|&Dt@Z(}719uoL8?ZCK1tPOoZqRlLfO1HW$LmQ`gy4(
z*5kc<D*{>reoE#nBu4aI(LzMm;EWn{$+oN_yrH57t>oivm(=xNb-EKXBa3P};%f@_
zx?BSTg>dLNx-P~gVhQUH75sNCG9MB2KMwLEPNy;gWa5JxABLlOMgBy$y>{t48jlpS
zyo|5tdHCti;rl?wtloi?nk{4$%d%b41GOEu-dR+CS#jQ#oE?3@mJ`09t<+6(VIwnS
ze6x{Ffs3Tc*M3p6w*GZ8VERn(drsd~v|f}TA?r8-eN5B|Eha<GBxnFQEl}HeB#Jz@
z;>%voX&R!h9~33VgvypFM!zQNCLjS7%Pn#{QRE2N@hs(>4^64WO-Dpn_b>aTNddK=
z#vl-a_*gWn;h+u0hlc`+4GLJ3J%T{f)LUp7sHN*1KqJi2O63skKs0MAPOHIuN&Us)
zq?P11o@ysz4nY}Tz8tFD{eBs7iJF$k0w=H@c^x#sA}krw{2BB2<Hp-%FC!FZ_y&qZ
zP071M`gpiLNB>!omEd$po_9`X9q!4%Sh&`u#HJc$z;T&@{~ax*mDlB2&5h+ofU4Fc
zY49E23s<qMeQB87G8}%9n7k=O=)g^^c(6#}_GczY@on4q;o8RMk^Rt84r#9wDXdHC
z=!i!@`u-aY#f>fdtq5<jBKd)=AW<W;AgrZfY970;HUs}50Uaklng;GxfD46iRC%9)
zj;aSoTmPS)BVqG6Uc*TC&n~y)eU0lC^eATsw^uI+Hy#d9bp!f}J1mZO;-dw*$68Oh
zO#C)%8i%F3m+4J|qoAyf%lxiW0*Q@lufohTdk&?M|8g~x1R3$5V~=4)t@===a{CkQ
zT*)Hf3EU&WZqf*vN1p|OPv=VvKxo2|IK@GzVt%UGny%^Z5XZuElI45&m)rM#g2WhO
zohQ!ixZW#)BpP%p6o1I>8sU#md1Am-+4v{&&7GFb0=ZHXd$Y%=FuD2512F-#-dx}K
z?uQ}6;&vuKVUE5NXD|{AkSJVRY5k$ZrF-ROIa=JMnR*L;L;Qn3%&7wLVr~^7FifNH
zSpvql9C*`q`}fJ1AxRNUJXJd6sr7+3#B#+_Jh(ve_NFaJ-qMu6dsRvVrjP43ZrZTX
z-E=VjI(fi;zW(y<*RR5$6S%N0>AI%yY8aUUJ{C>-?W&8jj&<90w~w+%gjV|ox(Ph>
z=|_D{7j1!s1zEk$PL$!GX(J+hgr`(VqI*NJ)aa9B_A<jjD~0CM9pl#-^n`goqVmVB
z9Jlcm@2&n4uFl46UTsofUXRVwYy%l1dIMt%w&ev(wbEC!%|NrCO8SmhkzhY|^blFZ
zO@&UPoQI$sK}oNV#_Kh#W5YZ+;D#`0I%E=nw0C#mI2ty*8I`A{<g*gM_{}z4E>6@P
z!TqE(D)HdTy0hNg@))BU=!#)Cniia_`Gm~%T^KoTS4HA(^P>(XXh2@08{J+_My~>I
zdt1G?Fj&+T?R(`zzUIW#n~CzJR?-pNk3?>bJXbO1o5ML-kt7<Ku{mZp!kPT96dIsu
zf3sr0M4NX(XXw|*_vj+pX!I@QEwjKSCtaDUF1=6UH{u^l*ANRVBJf6lt76Ff(-^;j
z*>av=<p9|nq5i`ed1fF~ZB*>SfBEeD)}I$Y*!|C)gKyR0Z@niZBL1EhK5^x<Y4m^C
zGl?;OIt7nOK?+A4*%F3B>Ix@dOz>;c;E9Ot2UM)0G?REX=X>-q@f$Xgo8^ns2!)Xi
z+$gB>E0x!wknt?YN$i^h{Eeq=(X%nb*3i`}0x1pv^4bTB!$^CEUw_Bb4*U8WZVKxz
z52eyXDus<)><34L2x<j%tX*`|)3@rmdw$^t7WccahD4u1?@f!_%kyyXH{wW?4+_ZG
zi@J7XpCY$5X1q`E^>HxbXn)L#^FzfudWWoQ)~~^djCRQI2A7c5(9ke7HM&%qwwujU
zX6sL88LfP*f!t&-Ile{CNip5v#SBk=kolCse*m)iZjAMnj`V{t&EIx@BbKP<HsiCF
zH4}&`R~v1^6I_rM@6&Y)D-fC)i$*MK-8TR}oZP`0RA(aFQo_>}o(P@%e5jZc+>?-+
zI_FFUA&nRLC1N+*s-3&b5WE6*F~y$kxE9#{Le69f+|B0M=EoqH$z3qv&(!dw|Iy~k
z9Oi0Z$H7>|7Ea(IO;B|Sv&A?esJ+!0)DNC_ZJCzDQvI3y(>fCNI!S31c_V=?Vr!ym
z7*0s8k6DqA{|#S!PuZPGXfOO@$=mX|K5muPa1mbAd)#u-6H+|73BorUzNF43p?h?V
z$f>3slrxXxqR4=^;yEOBi#T_%D%%~8#^ZBXrBx0UrFISL=C*Z2_p8-1`<pjYHOQ!J
zCho#?PirI*9MZH7W+*B-0`$r7=x-KCEo(ve+^xF5p%GbEBr$5S_zOq2mJ{HMqO#&@
z6~`s-eaXniTT*Z`-)QW%%SJ&2z4#{%Z?l+Dk(!+ADL<HDIHhsl>`|qagNQ-o5lwvt
zO~flEd!A{Nk}7JNsMkgpGL=*cEOk65w)U3F&eg?n#M(_Mib1sjwg+BqvsGGM@RvoC
zG{7Nee;2Y(P`Rl=TEPofwyXZuk*AoaM?c<2uelu8#eLF5BKemK)wJU5o_ef6F}0i=
znc@1)xeLwyuR{aY_c7X)>lsU@X0pF<9M6gtZZ`z=tw7;Qj(wKPuaXmwzX{s}fDcks
zPfthab1N&c6pSybpgRL+!{>h{b9XgHyLzqJiv5sUW;-Hp2%?a7sXpJW(P1wb@3p2$
zcuOUjYM>Q+TWrkCZ5(*dmRvaApXze>y0w9YvxEOC5%AK#=JF%aM_hZA8a1FRD0~?-
z@4y(B@}d_?@d_MgbU06^OlL4tnvW+NN05wjJfSI|)0}RX&8??DV5~q-@zO+;M!h!s
z@bc)!*E})l%$qb~J$JO9I-gd@mF6uOJZ8OlU(dBZOnb=CwVrpV<dVCzKj6*oP*@;_
z2V5^YgbEQ^*a9w{YbS;=>c+TdlO<1G-E2Z7zDn+NyE$TdKQE8K;Ee!-t4YPLdeaPC
zO_;>f$#|O`nXk<_a=z6@LI`Z($@^4Hn%yqtjd&hx+x2ERQ3BR07tyB!9g^Xao{Xj+
z-gG{wo^;Jfi<9rdAF)(ceUT_kp17wE3|9T7sKDFVUk25tHPP>`KiyKg<Q^cc8u-6<
zHf<$7`rBEUvm72|&Wl;N5R7@!Oc&plO=#XyqOqEda2=3W<q_0JyCwk1af0E}b6fX8
z?O%2+U?-h}X^^Ub8w*6ixd#1KR{g2y!_{c;M^nI?!tFMe#=8{1s<Y4Eq>OFjp17Rh
zTP{51=26W$yA`kcol?z0e%<X%E=2I#Vzqm})8z26jGc$x@|ykjK=Qp}SMc$HoviFn
z5=ysia5sW?T_?Q(<(aNRtF!RDWl6U&7ndH}i>qWe5GZ1(@$CeRH{|8R{tF$&se}~r
zmdn1dgBsTjUE$3P^D!ke4c{d=7J=~n_KWByHu`uvMI=sO3QNIH>xokr%hfxIb<E$I
zitd?$2W||4g4jz!j`GZm*dGqscml>yGDUuv!#WyiJ}P!)coq_$B>bJi*x0VokjoL_
zeeaDDt|39SmMx`%SBK0gE9_fXl@;aDE>3~UN4#-aV7XblkQS&W9Y%w|qM`eF1&ys@
z8|^};FpVtop~`w3X(#xNi`t+4Il2E@UR}Mcc|+1`wyAL|W#n@i_f~$Mk%*s-^{V0T
zAKrPGS1r=Li>4Y^;?!b@Pipj(7e7<dEPr0n#~S|5i3>i!c;Mu8WxJGln$$i^R;}o|
zqWGhv(Jbtn(+AP)X<*e18!(UU&m}<&WQCMGx^im#x!UOA{I*Hk#^XDMr$#%2Io96>
zepnEm*vIW8@y0oRoU7O<d!@vml;Hg^)CgUqaozoCawcYbVs=Ti7YXvmYUw*^@eWeU
zx(F}{=(!Sc7`6b5!EK2Eo_WbsSf0!VP2?StH*&4!0LAN{HK(U-bNTvmsm@HE6=_t;
znKzCcK2JB3Y!%Ox;=Q@mB^(F${`CIhslR4KFaJGU<8ZkN6{aWgMU~tnl2GCNvpBl;
z?wHbjYWhDM#3nQN6Z3pngi8zB6Zmn0W=_#vXx9|X$t7uzlhl6bhmjdfG?@x<`5|uA
zyAk$xtm`4!&SJll_HyJPK5;;8K(oRC@;f__SpUi5JT*sxSzqGb&NljNhe2FiT{=?+
zbQu)NPXq*3fBDZfb{GWWXo<oI1RAHwKp=zUtp7Ur|5x4ohIt~4aMhRY3BI;vP*qOE
zc*Tv6QF)ZbQheOx-JsMlYaA7Za%*#iqjN`qsGl0wuD52oo)&<WIg?^r&fRmqbRpP}
z8smK?qMpeG{nX$j%+21S<jUQHxx}@7O!ispfNr-m(F<l~=O%Q`fOkKPM_i5qNp6;}
zIEKH2TDTVLu23DNCw?|attn}mMB&2;wj>gBmB9{`Ek6(x;q+0@-6;IdTwrH8<u;J(
zqDOvzqb>*1AmWSfBW$0c4}f3yxoPj^Rap?qRl9khXM+RLG1Rgc8Wte}sa6X~zpFqT
z;;_+XQ<~LxORrZsKk!E*cfVY!B_1EVrY8rMJ_TGsU(gp_bGKb%;0OnP{^k%>>3Co~
zKf^G#T8YUmaT7EDB<3~!y$wBMq*AUn==e*j)~qYo-0jaZ|DHCLiv?e0ORxX#XeFj%
z%Zi(%a&D7n{^E)%1-{a?iKWMp|Cyj^ZbWdhy~e;TFAO=~3Jo%iD1OxDu~iWY(Um!h
zAY7-XS8!eaT2#1DMXEqnmRery<quJkF6wbhj+gIl#;mLrft;2LpGNrM@F>>OC%y>d
zcM>^wC+2nUro42Y-3o3o2c6HqN#mQ3H>Riv;eHp#R(^{L>?yG7o;TTcF$x{;_}uqT
zTLWT1nO=RI;O!jmANO?%;JV&SsauEot#3*c`TNGWZuf&W(_|I>89c7LjiUr1l_VcR
z`#08SZ%*A5xWe(?_qU95ht5rY_M{JrfkqMGc)yr-3P#+~OuP#~$|*IC|I9`;-qAwv
zI>#u|F!c$`XJLU-?0ShZ=`YE_D`%U_p|JcWVoatMt*ZlH|JD|&&?qxf{;#oMpZR#+
z023h$h(``b(pv{8jP_aGc<UVr+BO&2O5$}&!oBOelIanW03Z2L2KL`I9`?%SB@&)U
z2eM_~k8g>b3`qAf<+UE`2g%CjFQBi>t$s+|!t^L$2<VYpu5y>&OjfjfI3wY)>_!_E
zgFB8=t{69vmHp*&9R+)=g)K-A9NF(MN=-(PcMNK&ES=ze5;5Hu{)E-9nfWp<J;oy_
z2tT|a>eI$Wdg^R9<Do;LXekxMEkAcI60(n_b7T}pk?IUO7~=#xIU&__c%W3C@k*>E
zgk^Jnn>W)5Q^~<)8+{TC^g51ry?*fF!CN2DH-P{oOK%=L!Mi!nY*Z&c0|Rpt^F_ph
zb+Ek|oJdgwf{Gt_37aFt^e&gL+<S?4LK3l4Q6bB7C~vEP{?0?m+CWdj41B6Ui=|^d
zkP@prNF6!RPFNY(LV-9B-|WnY9dvOHJCR}e7_0V-@<=vx<E>U6iLOr;zx*i?w%mWk
zpOCyiX$__9m`Zt`S79izFPF3#SKGuB(`Iq0im<T+buC?NIf1@%M5&qKtCHFqIyXg3
zg(W3q{NbcvJXnYpS}f*uUbWdM^5)-(j*9oMKRUej$~78$w|ut0^jo;QT?`~Kq<ku(
zWv&+<`e#>L`(Obz0SL`-xXy1~#Oz59X*ZM%PN6<rTZ7bQaxjNM-x}$$^pgfBPU9kc
zSr|7fdfMAC0er*>nMCnnwKly<1Jk_!Y0qx{*S76{X9@rNv-_&rT#Z2$Bmlq*A*Gk3
zR?p@(kIMsu)}{dheVPXo{$Cs1d_<fwz9%m)A8Mqjq9W(--)h7L%&Yj#q``20nv_KR
z>^exC8)yh3P&qj{DaAg$bocP^e4ST;arad65LC;QQx^{*@a#>kghHW}emBl)Sz=^t
znXV`WnmOgO!Y->Z85z_o#i)r$>^DvWyRkHt2Y;{T&35O+<8)p`3GL*!8@klb8ANu6
z0H+%ujA1BPVRF8h0V{Wiz}AQJ5fRt*&*i*ddMrsPD6FrbGas`c1mgg<gs3PSJW8J2
zKP;~+=AtL_m8_p05zV_=UH2=6jxkEB`_?>m(^xjF&6n9sWW1p=_7}yyW|S$yq(g4N
zTpiN<pLsZVRBL#2@k(u7h7Hc90+EA;O0u%ZDypiy&vQ>CtCdsvQ)ApMaZ2Wg%l%1I
zQBl$6e&*x|H7@IcxTDi*nU|HAU%nu36F?)t6-%Qwz|)39PB~d!{!FX3y<E3J=!VR}
ztmfM-Z-&iFtHDZ38P!)_M`aWNpb3Wwq+Z=4#Se99U6fpSl=C!x(O!(3*FehCp8dqo
z4OBi0P=qVd7n+fY7H<rdo8vHUD~4B`H1hD4D#;-32du92gf9U3`&_#L)~~`X0D`-9
zwd2T3Wl46ZKi0rae_AU?7~xk7)en-iV?<LmtiYC3DfEC}L+NKUF0H}o{Px9EwXF|g
z*8O;%*eMW#H9*ITil*j3S19I;xM;M=T8%y7)YOz%TY+O^^`!J`WI=IUtyX*K5XM9a
zC_!#+{};=x-clQ7){i4904#W7k|bI_$TSB`&mJl@8ASQ0MTqx8oI29euWCFs&yJ7j
z+#PVjON1?+xEO?`7)ME9e`KapH<SnnlVb$=UiMG4OD1G~i?#%Ief@SQFL(ShhDw<D
zRWP5<?7hM!RyS2nRBNJjf|hwWwAV3)N|f@r0EhPd2ib#1_Mex3NCxnfjPj1N+t1%=
zYxDYDJC>R>5i2MteAMgSmYw!g%9PnYw1&-=SqZ&`6cn)5IW9K>uCA^Ihli)i#2AQG
zt&Ci3@acm;<s+l_?VO@h6J5?&z<<+J7X3u&vcTH-jN5gdHO~RPo~dOhOb&isj=4!B
zqaHxAnGElCf{5u?W1(SWhSR)Jq{ZvOj!*MNn*n6uMgXmrrF4!K!_;%gbBkFx#$ejk
zm#l+<p!76I?KE2FR@exY;vjv*BNOJ2U;em4+o?Sy1Gtt-xOW&zX5C4trX|J2(@!O!
z=jMNvv8e_>A#Qj-Ofd@x2^IG;a(@^yjA;FF?Cu$8&a@0B!jBE)MM0%YRbq~2Xgy}`
zWx4FP5JjaDMz&VOSN!Qu!ybzlL+%-%Eph)on&tzxnZV4EJOdgUO5G{EB~W|$6){N8
z9eBSR1K5+q*y`7mSu=a(>rzth@hY*kIE#|2e}TIlndO(0%jlGTvKpOnz2n;(iQUok
z(7&3}ZGR*IKr#RNlVAa1Ve5rzTWG(vmsh<C_4#fchj@!4*=y353SGM@VOe=)uL1Jm
zcp>_&EftGRWWPKEzbz0?)g*i;liT<W2N2g_i>xS92~f7lVQTsE;P+s%4jrI=RH?V{
zme)GGwpw53IOJZ9mI_s57&_`H&m-=QHq>zOq5FmN<@@l2{k}4@NJeE_C6e-Cv}L-6
zBj;*7571R)D?!qR8EE@`GIN4(A^nv|rGt2aAQ2Uvw2BY~lUt{2?cqZBA~~<BoCHQ3
zT^y;X;{9;aQ^|<Z*p7DS-vae$v-;w)vOb53ws6B5yC3%B*~M`Xshl!2VDf<9N!xEJ
z7-LQ+P>g!euskyWk6wz_&CRWOmf591Ur*0!B3Cxz3ga2#G82i87}S0Imd1-0IrfaR
z_rLE!=(kvac`mGGwQT<f{igJ^hY8w^Qa*~yUdDdS$*Guwyd*#QSDd6ZOyPfunfyPY
zl&Lc8pM86&Yn1T1jT<t{tEIm6y_08xJEM-x9I_a&R22ww4r{L@te@LlEg2t($_w@N
z6VGmbLPfirrC=n!{?T5(1N%x6329buU`}X$kz=)D#ui7#kEM9|{i)f!W16G&VoK@#
z^b!bkxx?#BdU<b&mH(rFV5||G<|8*I5mmMGnI@SHFMJOdp)yBK8rV$1-|yHn0`s*t
z$qp`apyAz|&j#;gmz;Gbb6e^vuouMQZ*-lkMe9fDZ_cpLyfwa~qr1J)E>x%e3<w~p
z^0`}c+e2tt%=F{Lh}hvJNoK{1k`{KB6SH9uob-Kvel<s*M7f0MUUsKUv3nZ+_8Pz_
zUEAxutqR?^N3o}?s@7=42(7~C!whI<MV410l-1S6ziz)k8~)xKt+F2)9oRy&m$eZB
zPrGm(sH0$<t|Ym_j6OYiDw9#LC97{kFt2h{-7^65%Ar;$Zh1Gkyr(*(>&XxP+xl$Q
zi@m`RZ-jZfbo@Z?8~Lh-tU4<V6toNaz7_Gfp3Ntzu#@<6*~jRMvtt3~UMikeGiKkd
zbytWds%vNT<XRIcq4fF7l-39KG5X~9UJJomFQ<J^nAVk)D~JJ!MX<y*s)$x>65c|4
zO*Kk!ta9!R@yWmL@qJb5^cGoIXK{~A3HQS*w|ya)TKf-&ODout@E_(Yn2om-d)8ec
z9l4cF$;PLN4E1d-C^RF`XW<%rKRNgIXbuj6D2q0?6M_f?Gb({re}4#Bn}^8j)CwhE
z9T8{Ff2d1w5+^I{FNuB%_x578?$Yh(KE<n8l?8!_JG7wuVW_c%<+zM(_9}3J=P?jF
z@UM{G>4DBa)b4*~Zv=O=%AF@l0j6cEKp+rmz=r)((FFhic*dkw{(Baf!UV<{LGC#U
z9@vt-giSD6qM-)fB7$ctLZ2s61&c9u?}lslk-DNP(R^(KVBFC`#&a;3O8y-Wzc8}s
z8Rw~>AQP<}H6!r88S0Ay80z`{H6%&$s?p{HmEH@i`gAAeU*NNW1;a+0Fl2LiNjb~5
zo^T5uBy*2sWsqgvvzMAQ2eB0F7rr3iWxkuK*AP)S__{Qk_g(os+HppeOcnHk`(7uj
z*5~e{_Do^HdEvZD^s!+Oi}Pis#&7nWKo2}S8V3n?|LRyq^516Ljke;cmWAyQNF2GT
z21B?w_J*BwT!5=^6hiN_(}+`J)&2wH?b`}FfqSD*PIGm&w_5tfEW{DYbX^Q6R@fNw
zSP-W~P10`?pLm2oM0&x77!G8$e}t00N!S3R_QOcY-~3z|arr}5T_&aIthA&ss-bXV
z=bixL1MKsrMantD`0P3?MK;`<rbSG-8rc8XY<?a%(nAmfUT`*pNlek2!NSKTW(%_C
zuDL-uHkrcg*pYEa<n7h;g5@G)gYjW_lk8Z=2uSy`(42K>3x}<{Rt;`CgH7IKbf#zF
zHsj)8uSM)i#*0FNGKHf`p+5*aE56XSZw#e~s6*{o`4nKw&;^7lnL4?2?$<&%WPg9I
z4{Z~`{}oB9)L9Q%gm+aYV*u|oz?XI7WbIE^j>c$bAt~w(zPf=K8*!Z27#&%LCsKpT
zl~P#=D=Sr6eoYia)Eawa#MFtRN%N1`G-DQ~JO3+#y$>B}HF$MtOfg9T8L4yIl%v~#
ztTTuw>??G6mRQ{u1X4=nVkKge>*6u$J(M2<1qSWPv_7<Pj8bLC1!b-fl9)<8SRMrW
zo3L>6D`>%B=h%zYD0Th=+$tAY9aqQZjwKAvNwS9M9|4VJ3lS>J?ij#^e7Frm>Rg8v
zYQv$@6Cj|NdZ9s$+<n)QGu*I$wI?CkGe!-o+U2#+;FOw?-Mgw312uZkr&_3$KVi>~
z7jSF~l*<yP-yjI|&=N~|V4(TiifnSROefLaf*v?IWi66$j4rnuTyKbM^ldV??8I{)
zM2x?lgg2$voe<rg`75NsId9N9FZvtLXy4(Igv(*Q$#wwV?`ChySlNcZD@JTp#9!FU
zexXioJ&!y-Q#FP_N@rmWC>3D@)+oK>%Yi#?U5lA9F_SB`S1E^QOohhR8XDb0Ljc+#
zHaVlv2CC8>@gS;B-6E)Mkv-6=YLH)%;;hHSY7NoA8XZUe`c>iMRjf}s&$QLbZORtp
zIC<!gSbONtT=qUG4|(oth#?zLY<S)mX9R#{ah|s_zeuYmI{|agWg&_i6WV<4X0-*+
z?k~X~lWcoT*Jvn#0>XlYRAH^Oq+c~Hi$>m^XNPAR)~<R$+OZJsR^~bag)jy#)V5WD
z5iePj<Ay*^_E&=lXoVU_vEC6sJ?89<s7+Daq<zZ3kOC`Bx{b}IThlr@wt-YNjF=^-
z8<>}GnCkL2EJWRv#pkTM3Bl74kL3$|FVx2zPxm467QTSs<>trAQC3uv3;%Fo+Sac2
zGqenE5E}XNErlP|NX!xY6pYBl+32;qZoM{K*YdH-0AT<-mnhcA>dCO(7i%&fm9sIe
z%`zL!R{uD%NYPUEOupmvt{-2K0FYKzNvk${>k+Zw=3KJ?Vnpu`Ngn=z=xoKBG|}5j
zad&trA#pLy-$_G=Px7+=l*+hNsX{wkKWHgOAJdU)xz8LnX?6A2WQNm9!MiY^>`iW+
z>1FFjR_2^zz6LUw3Hw2MYWsE@i6ESaACRhQ_Q(gb?VxKIk%)urzqI5Iejh%P&oxxo
zSqk(9jcPq$p)CfAWjzakfpIUN0mr2993Vg~^ts&hZ*(~^ADj}sf7$HA1T>&D5nJ+e
zYR9Dg#@@fE?kej4DCsR>_gXdra?((|<*0|{hhE|r<g!TNN4|OE+Jd(d_59>=#{h!f
zQ|3+@`uN|gOA#%?!aqu1h2`$E%)q)&gAc%9FKS;j*yJ|uKGQRxf)$KB-w>RTknkD4
z#?j~LK)wF=s*E;`j}KKd`&;Ct489SHrD>2&Mn(n^!HA2QaL2pZ2l8HnqlQ1JWbn<!
zR-LNy`ckpCh13@(j5;Ti+JhAhvE>ThiV;7HOJip%n!ec{5^W=&Q`W@KGFd4MEbq#^
zX^0b5MriZ`JF4{q5ao}@U=P!4ZkVpBDKTJSZU=2sL#;2IaD>OtRxo2}p!OxEoyK6F
z!<x{<G(*Q<6Mg#N&7`B#JAZb{3}h|t1mt)1?`Z%`zJKq{t|9kh?iV>96Lns7Xq(PP
z3l;0EIXPqaF9<E>8&r+4X|h^X8KtgymqR@d1g!d5$ldg2^hHRCf8AvrR|lO5`(_^Y
zxDKBvrP{*C6a+Ea3ag4!E!)XO8ES$AGxzHs#;*2n%3D^Tu<$a40K%5#iUIccnrD1d
zogaN810o`pe$rV6E1$bkab-%D(XUFhaEG&@&_v%buAKx=a#ea02Drb_QHVME>gh!$
zpiqQT$gxxJukVbmV;H4y+>kQsbjF^yWM}-FvB7pi2sT|0Zm5V$M)Yyzjp3c|N;!lx
zjO;tg5>%5+25z5y#H)%%mS@JO+i!kPBT5&b0n9s|eRc+ls;Wp=_<@l3Ukpk3+!hAW
zzzP{64j;*nv(lrK^V7N@D>IK+v$Kl5fE9Uk6RK8E9w&AD7ep<k<a#_#_^s9SXU^uB
z%k`>iJoV(M99f$$TEY6<6mQv5ua8Qb=i6;vg+m*CG(33ivE5hv)$N{xW7OWG4gw?^
zFkZWkdvMjD;TN%nOw++WPF2&2#i6;C#hfeE#FA&1F?_9Ua7Kq(bN<e4D;?pswt#SZ
ziXnA0Fb_ws(6=;S=Py7LN<W$Qto-(?cm}{5zR3Ml=(Q{E-;{>DqDIU<KjLXP%tHOy
zlgHWnj?EWa8N;s5yurKas=jHBv)(rABb%K~74{I$eHHebnG!dHp*}TA_JyMBU8&by
z=>y;Q>if6Pz|-JmI!O#sGoQef4i)BegDbxePfO3(tK#_s;xRL`Zj}y1o%M4`ze^%^
z?P;Yo5gQHt=5W20XNy@?(|5>~AA#v&CO{dAsKW}J6)fnfZTXa%hN#`=>}nqRkv1f!
zsKoDMFyqT&#MuAi5&AApbtPGgW>VEsZ(&i>;R6c`zij%+=?sVbABOD(;~_ZRt|Xq%
z2~+9VUtei?0e$SA%rAvbRplB$&{NI69N+kddSTTz&N1%5v@K$I>4K7gPZ6jf8A4k_
z_tQrT2=sGY0X=>4q_V3hR7@7(d&Nk%Muu&(&@XlvFXg(^`6}7H>Qi~}u5)u_yUQBg
zE$V%h#iTi0>W{@s@+*A|6<w+tZdP(w=#FZ9*rmE>Nl#i}KC&J~v!5<^>Z}YGN+U<v
zbqLg$lP?mo%}4@ieaj8g!L5m(SD1;KqE<OH_&HxcTiPwrFi1a3sneD|G0maqI1)xI
zsmGd?_6UI-RwF1+P)DxUZ%Sa|{xROg&x;xB)WgaRrHg`X6Qwb1Ph~OAC>i-3nHUc=
zcL8u!ZOfw{UCiSR>M0R3d5kH0=V_P2X8_BkZGlMYX_oOP)c^W*)i_V3e0av|w3GAR
zuWAtON3ya*n`leIl^spG@+TTYHh3cbcHTYn^Cum_2JuOl^$rYJ55aA3mr_^{9kAq9
zuaz}jnOrQWAKg^gr{wTg?q$27P<FIXSu)d|ge5#9?JnMe7z~xSMqTe-u*J`D8(*=^
z<-Zt~p*1en<t&h{`k3NG(FZkth*YO5);LKXy)GM2h^Hvk)AO5D$&s%o8R}Fqv&vB;
z)|37?314JQP4h5-LD>L_lJ&$8=BHQ5jbQF>0IDCg+-bBK9|``?CX`cn1^{cA5aF5A
z+-!6uibG{M^SQ5b3C|=NKP3xY1;*0ws%&igOmAUVW+k<}X3QFWdwxVeiaIAfa~ddZ
zo>xDkF$1FeJy!5oFK$*DZu538ImpUhDo;u%co65c8-#vR=%aD8DI2hQ#0%xFV|IT2
zJuA^0^u2LAj5ky=GvUR5CymiB<5b>!F}~BM_jq496EG~;1SB^cE`Gn17C1wHHzeED
zIzHvgRg%Boq{Ge2`D{8BmWD3sT9|)9N3)#zrwreKKK+c#KqJOMU+ULxn-uC@#7f8u
ztv?vV>HWCHKbTvl&r&tHOT^ngYc}&{G4mI`n?+0hxA%T`MoTwqflE_wBuOv<o(=h|
z|M*b-=(}6Oe^Ma-i7@?_R7dwg^-p)f4Kke-4G;)KY<5H20RO7aHyQ#dwDymAPE~Z=
zko<1~VLOoQZax#b#ud84iu?rNKRgHxrEBbI$M88p(x@_3hL)hQ?G*$>J6~M^P^}lt
zW!>(KVU*;l36kJ5l@buXGwQI<eD<(j&Dk=v8og}4az6#3av3+%j|?x33B7wq;tF5p
z;Go?6Tv3Jm<M>YH)AMbk4%|_Am*0Gr{=7wT)GuV-*rTfJ<}6J9<cQUtx*DTs9$kJU
z*3p5EkB<+{(NA1cq@1!fu=(W*3Y=?v|C8K<bXM~&X`A;W0OoE?SF$)1Q2e!IS1Q@W
zdvNGmhGmh<1If_4K+{r7$h+A-f3{>#M^Mhd;nZQrH=me8C8r^W0C!`j!2r96Dy6jE
z_WjD<s0T5Vx5IOei2<U0jd(risUzqOw^<`oJLIrDf$e6?G;42aD?q^TRw)JJxJ&tS
z+UeA@SCR2|XFmpeu{keHh1DnHVpjXISg07GjYNH)VB*Jj;2sQXsnY0|Hnu@2s;G!&
zjkC~V2D}a~%;iKaaV|~ww5!zpg?C!bwYX}cV=P&@U;k3)^Gug1`Ue2mmiR65JWhMk
z;Q-XQ0`~Dvy8x-q>6%3~Jz?>heuOr7NR7^_18Q7aJVo1~KzH&LTaFbcT}C2XD6*H6
zIFj+Y#RTXB@fZOC6*^i><GM_kfYraEH7$LJaL`UQbZb=T+??5xOzaq--!dQ_ffdrn
zl6AuUKdE1qxb&X;VlJD@q`l*vF(E7E<WDfRLj5H0J{pvZ;-dC}bJkIQR*AyL5pzrb
z%Bthma!hU8t5(zSH@xazdv9V-7pAwA=24<>GiS#;&a#xI3P;S|8kzfjUsG@t1iTgg
zNAUnsV&(VI2aB)9u4M@lsqS5MMTWjRo2&8Q5nPS`ZoU!`PZ&;wrJ%KfM|rR8H`@6D
zefxdotm^O5+}EM?&0$+wC;j+<Qr)7}^pO#X-R3I|Q>PL!w-_@Udb<Rn@xs|FE0)jK
z0S(tA+G3tX6rPX!%^ZKWW_DP0q3ts}Y%mGCqU#Zbc12NEUPXmJI+vviPEnp7v5{er
zW>X3hWdk%2+ol8onz0<X<tG(tg#G%LoNWs)6{0!G4$Np(BZd>-Mtsb7TRQ+HMHUpQ
zQtQ<K?@ZazfGQ{J&`Pp(+jYHYgVY<G(Gkh>>Ud*E7#z#DL!$ps{^m7Fl2NH|)u2}u
zqTYO45~nIH5>#%C-NRu#R~7~wSXylG$?2hODQ)PVSybdW_iVWP(#wpOuAT>LW(Gnr
zOxrOx)iwG!$B%oRj59zI?pC|EY9`WM(ZBVMdzi$0ltlxkDzEp_PX%U6;AmcGD98eW
zf*HaSSHyT23RHSG3fpZ&L%!I+xQt7cON6&0Q7j8ow{F$m%ld__E{v1v=kt*3GI9wz
zhVczB#`DJu&sjIH%*4_~3(gAtvT-WW3pr-X0A1oKu>h+E{TSGvF%%1N@iN;GTH)Z<
zAHiqQ(NXdX+1cG$nL^9k!}vmm6lOc-SWaLeOo*!|HX=v}ZO?{wLEE4!SB*g(st9&K
zsY-eSQ+FdX6eP?1^KI5*X_w5a^CS6@rqnI7>WgXJSgdxw{V0W$B+v3V6t_>bQ5xi%
z5v2_&`@x%NvrRL1+f6&>ume;{){<#sJ85^XpLR^Uzqt5=(;}J0E&xv39BSE`V`HP%
zy0Rb}<5Us|L=Wo0&~iPyHK#gKSzUd!CzGVz+UVm<&PDCqIj0o_%0W%6!Oy8^Qb)m#
zL?b5s<=f1Dznv@^@_r&N#qP(xY(~qXf@Ym2hU?W|j<Vm4m-VFIWlEVXvT97@RX$0)
zQ!}R8XK`4f?eH`+%!n?GN-0}(OhXK#0UuioQd{#<$DXxKPeRDEoYibNM*?Baiy!zN
zVlf~5$B*VzM;5hMo?w)A5tVJnH*x2KtVc55!%>JSg&{VGU{Zyy7;l8n3uB6%x;Fop
z;b7wuwSYJzyO`#JA6Tsl<F)vvtb>}x)0?4&<Sv<^JRK-o(K`()ax*;IY1aK+%Zl&g
zEPA08G#$RU5@*O5WP}jC#OrO1pSsSDGIU`jcn&H;xvq&Jc8#0sXN`YGURoJr7+<+q
z-l0bHOVDiN$**GaqLzqmCA@i)VwXkmv$!^-nq4gmG&H+7kKnTz>E_UVI*)&r2h<%Z
zXA#Aob#~=JbTh2G2D(wd5I#H2<$Q*}%p#p}KB5&HOA3k7e5e@&*-NRDJ8`SlJhOx&
x2=O!53-Cyv<A3&E&Huch|B}RkvHpZA{;<?DRbTb|I|35Y8wCwextvAFe*ok+Gm!uQ

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-flyout.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-device-group-flyout.png
new file mode 100644
index 0000000000000000000000000000000000000000..92dd636c71d8ece7b756c1afe46f51cb15d6cd5f
GIT binary patch
literal 14781
zcmeIZXIN8R*d`hqC<s_Uq^nryNN)ntrMHACpaRl+2|WrTuLwbU?=_)G3y@H(AT_iQ
zAOu7REs!XkP%`nG@5jt_o%zl?bLQvyv6EaY+1YFD^_2U*pJ%@_G16gT;A8**08F}1
zG|d2jv*rN6nFkl?Xd{W7JtefaOTJI60{{T#Z-0+7>B7uhv_bknT|+JUCHkA}O2TB~
z_A~%+3!tm11`NsD#D_<K2>IkcWE-Uoz-`uqw6Tun*PmaTl?%jVT9(va<S9nH%)2Un
zuG~Ud*~_^KT8Tg~n|RoU8~F*iD>;tFjD)Rmb8(0Yy{Kjq_tyFB%HyhV-<`kwHsP9v
z`mOMM)ji}RkIj~V=bKDt3tQ{G_Uy4Pn+NV)C(7us41zqApEf)0t4CIHwD+GO+F54-
zfG4jWUH||-0G`v<dF#v<Rsi7f**Ag!z^n5YX{!ZXx>7-Vy>`ps3;=NV@xM7C@9A?m
z3Y5#2RcVaLtL>8+m!ZBkbl+5&Or%|{S8BkIyK=?Q1|;W`LwbrGmo10il(TW{F)|%W
zb3=yAXo8r<oTL~_y@oa^OJ3C)17e*=_wX{E$2VIp(&kQP0A?#zO>W|v57*d`E(=d1
z5zBY%_B$25e1r!_87s<wYmRu@{`jg3n#nojaz-^g!P-Yv7lgLTyU1T7u;a`4B4OHW
zG545MKr#*#IlN>#oVH|n{|oEOL^TYza`V;=!wA0Mqrb}ya!QA_5A1FU+a6;n?1fm!
zF;Ns5_|%PrFcjX|)M>rvc^?4ybY!lEJRBpiaYl}E<6Ha_qa?wB!;~I+Vsm@-6&Ko?
zLm+~JtD|Ow9RG1Me8Xa+Z|l$3ikR*{L5A6BD19s{7ub62hv@{?Z=#s>Qu?chLAyIP
zk=}ck6Sw1}y~Y~{>PAm`Zr1F~5^Pi<FNP&rRYS7tI$IU2OgbN<MQcId>lB9y8=mZ*
z#&hBu!eH(?Jx}$)xt!P&y(CrZ${||>%&#65G3A=5gwmE9MCqDWk0~5^I&6RBwQsQ?
z%1XlxQ|Joeek*n*Gr~R-HQU0!x?8)ZFhximzR5*&+x+-Xa~V<x2W1w5GIjClwkx!|
z`7|BUN$P!j&xMF2^fWAsVF$K*tNk!9B9D55+^6mto{+{Vg_&=0SY(S)(n%o(PQ^pq
z!p(F2PFCQ1Th-E~Va@&K?S@`<GRB4L#mXsVweMvP8HE!r1ni6mx4ORYA%eZe`ol9}
z-uQ|QveT5SA?#Gi4l>Sd`0hw~FOX-k*Q38uwX!}U?2#O851>}hzoy+S7n0fLs~^J?
zdCg4{6ssy)ZOe6g3dc#ZG9ul&4jrv(qa`5Q@%zf#pJ+!@oXim^JSZS2w(L)iVt5CM
zsy5<0)$%eGfiA4_EAHglU1uCBzGto)`HphkamL=Zm?{BjkR>Ntx3`+&Ao!{WsuGsw
z)d{6tO*Y`+Zo44E<V}{1$vp?v3KZldi&S_Tq}=>dD3P>s(6B7?UYd$flv(Bm$95eO
z!!S=-$2(_Ajb!R6E_SGob5s&)&_SJeUlg@yf$zS(9Bi;pA)oF#B2jP)u&8yBzA<rS
zEomgz<Hj0pl>FSMR93aqD!1^o{H5wam3M*Dw-VAz<$xm@%5u&lY(udr&U|G(ppbXI
zo~i->JY*wyckT36xVk%8N0xH<A}4&wPwm*Rm#H&*j`xSQuKuam=pDthFkp)3?5Ztu
z?;J^cnc=yXqd9U+@%u`9NQBsAP{8(iSj1fI__4=}XrLx8hfJKgx2x<B(5zgK&*Umo
z=LAvBRC~*KLezvIA1Zn1IRnv&4hbw~riMY3WtnXt7)Y9WTC5a)$ZIjzY$ATp-6|$?
zeAIDp>jL2M88#R9H(OT~TjDTwwq#6e1{dT;wR=!+e`e#k89AQ`IHXhW^N(se{K+C_
zTC8c@U3yVu`w6bOu2?2;WAbg7mz+vveI3Zqp=n~S#U^k({x{zS+y=k*)7++en#Z?$
zA@roTJ4#E9#i4q=tM$n)eFwTcCuFhP4MPV$V&@(8(k4_9+2^tGCR0S+ru9>-alp(X
z#FDFE%-B0`iYf+ocvR8L@~w7tY&o2oYaz?=p3Zn;cb^{HecD%^19GlWHK|wXwygZ^
zQ~YEQv2+Z+v-ZjTgm~Tl<7@?`Ft*fkNUq>vRFb$GCWcWu+!InA1^~R_iRtZYhMoRl
zV^{~KQ?|f2s)D0)L(JSj_B(8mhh~nMGToSE#0DbsIMQ&{b(aevRHfX!hGFWl;z@_^
zmFPw?a}9a$PD;J}aqye_#EEcrC<h2@mXj5*D;{OX7v*;T(ZWGs^h1B1kF&4pI4D}C
z&*{b`Vr#_lMg2cT!u&P(gmrP29t4l&=yyo3hCg=Y!ZHN?{q;KiBfg7csoo>T1v9Jk
z-|9h``d-~2d?|fmt)2{#M88AWjv*QsT9o2$K$M@}e!8DEDZ7ihbi(SUFI3zAzN-$^
z1>~54hkli%cGt!zyq54f<{bbjz%1m@g=*}4fLqC5lCo3E!1I?uad+KjpVU8^sIn}S
zz)BNOr(KAryev~y_}Y~I^7!{J-QnxI(XH#*L+(}~@8IJpNPEo7?J2%4wH9*<XSvPp
z4DzjSt_wB4Vn?zI7Iak2kT_x!fKq8+-s9bOn`^PPGpoNXzA^>b2E*&(y+L(3##lY{
zqsf8M%P}sib>AIE)1H%70%L`Q?|ManiXDc2TIcvh83<PoV-hZz#W+02RRnc=U~1qm
zdQz-&IL9;m%q#R%W$ED5c{z*_%#02GNI&JOHnAI=t#UYVd5CgkGt{>FG?Dj)GA96V
zVwu(twAJX8)yarFmTryyNHmn$J^BYXu`zFGS*l-=OI&a6J1RZxxsT!S5UQ^lZOcLp
z{gNSe+cSt~OR9i#;_^B<iQ)MBy(knWGx?E1@9ES{P>*M(7|}&%zS0GL|NfI^QbNKL
z#qb0n$L{W8J(eU9p}ljZ)Rze=+}I3LN8t4)D>!g-D1h~Z3DJqL8MqN;N`1H+VRw|j
zzrdeFOU3zL;$U@jwFmnx$+4NMi+sWpLn{P$*TJ>LZ8hc77l@LH-@g`niq_xdC`U%T
z9uAG>c(ikn%TNU5yxDq;9-2vW$=oTk-5KF$lqS}+sRhutoV?RQ29sXMe1r0x0~Gl%
z;D)gH8l;l<SYyTSUpts4X-xH-%c>wg=31V5TtUd)M^)|Y1dLQ5Y?5MUHZ6E<Y^I~<
zCOKfz0JKlcIPnJ=eQ>(WjLsgu?OmU|c#p%esO~9zcfLx{z)Ck$PqNO<^8L(Rtx`22
z?vU(9OxlWng7?sG$|=v1&^p4jJm^^Z%61abvrv5MRZuVL1#xGdPd`{Fmel!>o>YzT
z8t@3(M&Wk8AQfw)J{s+!63ESNv7}InkaD2&(;*hXt2wqZNepJPW)po3q()Mlky0xb
zJDhmgquE<e%Y<dZqT8c#Eqqp8ZVGgpNYzWLbfc`PyJOWh9<wE?yE)knb}tSSCl3S{
zUeE4Q!$a#q@B7D9c<p}&cFM9>jY))gIz_*8vGA}9?0-wru02uJ8NuA-R}PM78`${d
zUW@0HdaXWwzm^%FY*p&#82(REBC17cjHxY>$oL1h9Pq3~c4hX$G`ywSA}*s$JSS_s
z<$>-ROA@x+GRjWBz^1hD*zuq{;Vn3+zw;l!tLqcVu`oh_%wb;B3HCx^n*nw%%3*NU
zpd4;}5QKTFXIcu13=NswddoM6fk2+6=HL=kXX$4qj(gl|J0fGheEo7yuvU=W!5IjV
zU29=SaKy}skKS9^Z!){%_N!d(4fTp#?Ff6lLm5)e21AH_eU9d}Emr%FQcuq16-a`b
z2G!Q-dB<x<Bax^HM73#d;t8cBqCYnI5IN~SD!T8sjUw#_7MY@F57Ee@maP1wZ$Gkg
zg337ra$B}CaJy}OqFz1|Ys0o(e3bmM`VKv*#OYpPZJn2_ko`&|l^r)RDGEdB4~a)Q
z%pd!Oyui%K5KnzX$D|BNEnpcBJd4j5zL?(Ea{cW<$IrPUX9v3)BvYch3>Br==HQha
zVPzdP8x(dHFsCEZ>z7v`=LW)exGnU4-O+8Y5R1^HZZ}En7L&Yef(bInZkTxQyGJj-
zjkoB6jZa=2N9Z0RXTl=$3^F-+v#P~ULu~7>drXQ%*z2q0ZU(yB(qd8&Ze7K&$Bl$#
z$MJQjW9M+_e!D{62dPIld3DF;T9DiEwjeB4SHF6BwK%=iwS+?e)#^4)SkR$rmeXg#
ziLVrxG<=d$*X$_$<zb`LPPx^BfMs{*`f$SuFJlq1rJNK1Q1NT<l}eoj_|aBi#D|o!
zi4eQ)t*iKm^O(|~cURnd(*3rD)7>Y(ukbEpl{ep?YkR6n?YXD0m=b2Da)P2Hp*&>j
z3X|Tgz4r^qT(4VGZmw{Lk`7i5j;5hMKI#Ydif6d*wau;6=@}!{R6}oFE4wQwV;|6!
z8vY=^d%lfp$7entgMN$IIhe}ZT4UVdb0Dr*wR~Qb3152=%}NXVXPF+0V^=TnVcOO?
z;Q4;<DuBDU<1h2pPw#h^am;DBQpwe)F;JNUU}80;O+}?sTdD#*SgY55->6$HeSpk}
z{ytIPUjD00hSE<hpMN@0gnYn@krMZstj2*+pvs?$^>Aj(Orc8g5j2{bH>tdxwO%k=
zHsm8s8Rtv0OvD}}8IDe@K`J>gCwcD$K`?!Cl)XzNMFLM<6+fXD$h6F_ULUB(iZ-Fs
z3kuk$A1u_&vB@Aq3Hmv^Gxa-8OW;&q1$#bfE~g!3za=L$Ln7NvbI%Bwv|dR){b=Dc
zTQPZVLDsSZ(N>tqSxbbpnP64_ydpuCEN5oZc;Zzl$DA1Z$Wk$M=<1g1(9@9jNc-b-
z+JMCI{Ny*m9REKC7<-%2(Mwy8006T><l*lq?8l`DyVggmlGPn+S8FL>{8U6WjpQ5(
zNcJ?m+u-<Ho`ZElDamcxKVZYOTuhZJ&q5=p+&UM{$>91E;CAMO8=h;(U5X9|Zjq^8
zV1FODDKnp`AfZkvsjmuFA2y}&ykypu=?H;5(h1xls&GAXzY7LmUY+k6hzUOfkk6?y
z$iLN(?$%-vO=@pq1^`&u(qa23cs9~8Ds!?n6jU$kOpZ@Y3-4Ww%MQ5)c;)ySb@-Pm
z7Ui=1Ut*H~ntB@f)>bdOZ7H}M)rTYAPQtzIKYDL<D7Gvs7=2AC!15*6zGs9C@;6i)
zZKJJg-tteS(>U*^OSPbGuMSOgXQP&QH|<cB*Aec1_U3Kv04AgpMM@V9bKSTT>8@)~
zHU+A59!PqLI;wo$H=WbHKBX!7mnc7IX21;BgJSpn#-xWVO6O(?kzHDH#tevpklnKw
z5r|5q`uOkFJD{O_^W$aSxW9ZlPt(RyxhOrr2e|p;5!Xh9`7Xv0=q83kT46V>iqMfI
znK5Me`0*qByM?-*0_6A|JaklOdh&a+*ucgfRy1>+-DrF%U>W9ZIg9A=*ENeFNhCEj
zWO@+Q`jW{s1`lOKtxH3C?qKw3fxW}Nz#-Y?s|7~Xwm4@EO`k3zvsxf7y$;2+R=rsH
z#cMPMN0LR%Ffq2xPG-T~baDnQbvc#Bwe5fJ36O1W<sMU5=;^mv$HCkR2V;o6xOnYv
z)%m6%eMA@{sNp_DEo?PiG-uV`5<kp<5yO{A=nqdej-oyKT<{q>t$3tWYPWeMW9B4W
zoe8;;*FF|wyR%jHvqM-$2fM!#9%Pz*7VuM3uF*n&R>G885*sR{G5y$YWs0D7D|zCh
zQ(evtu|bEvc-Jr-SF5z?b$rnlPG&bJGI9iC^=Fz(MyW#B6cttNP@h{$JlVFa+M_7g
z9KML@D3Uw+Y`diMF}Vev&#L?nj>K+R^>ShM8BRAKC~k7S6?NAu(q6cleKp{;iw%A<
zc^0#?c`d-??_}<p{h2NgtNP<9YAYjm(a@U!@2{V5`g>D|!6G98p~BY1{MEs0+hZMW
zIUOcrvjlGf%sP=+mQEa=>>t^a;q26Bz*Gcx!NO`yP85W{#MSYZTIePc-K8nEk?s8!
zo$VTM2NL4@!|=)pN^q%ka1O;E6sbm2Rem}lXvXQ%0V8&j9y%aO%7S(&6AJIuJye2*
zZD_3C&7egHN3akEbH?7IDH6weiFI|OJoE85`!S=%lPU=~%)SU>ZNqgv&_)J{v`<vJ
zw`+5+dL*l1Y=hYPh7L=wt?w}htiDgTGJROFeh*3W)W_fI6!DHm93O)k>TK;x-=hb5
z{&}mzuKN<4CC-)5A$YyRjSWas7&@=9CvXNPNmzCG2PQ)D7%TO`QI#wKx``bo>>kNo
zJWAiyV#V_8uNO={x6EHh^mq!n{d#c6{Bf3cqUjJ)D{N|B4i_6zRz*{geD826Xxq33
zgE33M^mX>0z&PcsdU&dFxi&egqHm>*kG3oA<<tKx2Z_EFdKx8H1XFL(&#eBF=NsOE
z07eAE3dSEruIDu+dce}t^2gMqD%`fz_bK=BB`Y^_aA96>(DxrUqSm5Ag?@<p;k}{0
zuiYm*rwbYPtf7nYI?WGg;c0dG98L3z{=ckw{p(2ef2^wg*H?I*l1Rkz5M^l#<Zk^7
zVI1)^wd~a*8$N<I^#7vay-q0&Dj|`)Pe|bI@tGEnT?(<@<Hv{FIr4rbFNgDBrls0E
zwJ&M^!#ZJ_?Xv#!b4=J)--Gl%r@*!HO!uje&;7Y|$Q|3z_4RdW=YH0F$mwCDNcEKA
z8DCasNsj4Y@`c}B-t+*njuwkKba7R#`!ErSL`r+jNSB+zMkvF>M#_}cQsipMd+C>h
zSy9~WS~xkXeK<>ap}w@|MkuFTiHRr~cgT`hHJJ^HoIYmi>?k$VfVy+Nc66bho=^_a
zkUDh4vJ||gW)Ni;5YTkGtx7e=+K1P^W#$QEwY><4HQk{KxB1MgbZ!qT!C|nzOJ*t3
zzCRz^g)GE|?P4rxYoUZp-0$pC;c^;AeTqyJ&75Jx?L~7+sHKWOj0O&Hg@vA2bVeF*
zU0_9z6l?5eqa(DFl=rf7a&sM9-Mqag9g~zR{?6gNAfUIlBo3w=zUR6+Qq1`%#COh1
z8_ErfJlcbmmX`X^dnpvf2#t>jIZpp`iPJLOB^=PJ>Fiuyhg^qGJtka$Ro5Zmz5Q%}
zj(N670Hs(XZb{y#ez90GJApF0DF5Q49(ZH)^u8`A6yY`lPgLqO1GO=J48mz|PA%@U
zz&+Ejpp{^JIt%u*a(G~yQ(KQwc2RtW+|CwMd23IA;}o0oXihcR-eG>@#`mywch4~*
z5$yJ9YFoNa*%dduOKfhcF<UXLiRT_rLjO}VWXCU~H`GtEsW4?XFw6E6UEYgtR%p}y
zxhi=sojvcO8Nlc+ZC5Mv{NtIq<%?qIS>Vmh(!se1glu|xI>D~6TF(WlT$Bl}8SlxT
zHt|EYBi*WHNom@4Ci!-A%^<GaITPYPm*6JvgTd(@8yBtvZ_AZ6cN9;;H(YexeNubu
zP4Z7Rl7isD8fK{oA4VfgS3o`O<XWkFo%oMNN+;Vp6UVxW^&5X}LZAN_;S!Uk4I*|3
zk+*Ya<|OZ2blDu5QH9&A7zUzSqVo0LQd@>m&)$R&4TahA2O@2nJKd7>bU+@B;We$f
zlmpCJt!H%boE%OJ7JI!6koPctZfO5COT^=Q_wLO!IO=RrXl~*))2!>*3&p%TbB+@A
z^Xhf!!)W(>IU!s8^wh{weONdIrT5m7?o2h@?CV4YUNl8oeepis^U9Kvr}yGe>R)U7
z6CUpD4J(iRme6j2=`Hrqmsd8Ls(nz3ocNvRxNALb-;#M5TLu65sPwHqxdm~Psd}ec
zzmi2X6<BfA-WL8AW<Za5?iuy5>AULW8t5z(*59vZ7d-78wv?<BIPIKy^*<(VpUwI3
z*{fmY{in*uzrX&+XZgj;-2-Hr`GzgTvQJ<z<xRti#2-c`GP)}uXVi-QoJB?7VmUNs
zY+-NSW05i+CoAfaDXpF?_E=YFAmI0nAnr81xEs_x)Z{SjH^G}$-A2VzYjTPuBDE<g
z5u$v>e&%JHxp?v?vi5ms{_^rm<=qK$<Z_P3&V;!!E!q2i5eUn2r#Xu_<WT?QtLkx#
zec0MP<v-u9bIN(=DJm)LqUKMG3Xhi_fNX7X-Ebh3CJG)KZf?3~0?XCPl?|*%Xcl8T
z#u@(kZYfv2Fxihj{nVZugb<J&VKw>w$!t@A%lgxZl=@<Y6Ye<ptD=|ZmDdct27w7c
zXXks46@T}Wv!aB0j?$16X^@|vKhxxrq^GYRL`b)Umn~h)8QFSk@556pbwWbi*z{Ja
zN!jwuU*0Kpo@ooHo~w&bC{M9HBgC@|UTi@i);?|}VH6`>vx7;}y<#$MM+nJ8u0n7o
zzqyQoGck8J%p7!vE?#bJmu}5K?ooQVepy85Re{E~&&z%>V`qMbfSMnslfCm_pQFDI
zi5UFn^BB}u&VJPh0oUckwVNtU){hTAi`mEzUDR=3p}h2ZTG(lbDyykk5ifR686LOr
znr$%R!k@M_nqpFH!e**jun*PvgX<XaL+qE~`&^N4t|w=>efm6qgw5*QgF9_rfIc<`
zZ(gke<O#$}o>Od9KKG0+5b)rAbetfKp0S{p&-qFUtWv{TT3d;0m4)}8ocU0uLVq`!
z_0^*FC|}@ZT1Dl~B9)m|&G>&P0=?Eu4Gu$3oqP3S(Vhc9wtV-6mAXhP!WabyZvX4D
z(SM!b{<AREd&?lmgW7dYhuYlRS&O7rSMO9h;%T$H;-B^v*qY-I_S9HzLls#$R1FH+
z9-dsf$CON9Lb}-J+a&4c(uy^ImIU6yJU@i#vb#;j@+pQ@Zh{isg9kCnwn;%sf4^T9
zh!y02Vh4mxj4HSl+C`k4l@TqyMyrrf$O3O*```~LcN5{5T}SpcT=lPCX*jkJ=+PGH
zJXauE;XQ^1rBL1toP%Ec_%}@Y(T;;j$}}z{&&wuYz%v4=wJyctN(Pc*ZV__iA?@%R
zVnBS|YR-Q^=S+v`l1ztCd+<icr>U2*b>V(F_EFC73v8#Vh{M(bkpp<6_d6ePK~o=>
zJZn!heG}eezva`@vVD>sLqOJN%Iab1juSrBY?Gka^i;7R8aSzmKmO@z7}c!Svdv#j
z)9{zXYksQ^&k4Gf-5na$*nXgwB4orTI+R~Albix9mT)ZB)-|i1o4sB8GzwwC8Fv{<
z+c~Jq1qSn!e)I&P#s3_poU@DYZc*S#`~4vd&p^dmLG3_{vn{*FR-;51jV-}H*gCK8
zzxD|1T`%_@p;^j<lrPY1AyxBC>}mSxym$r=L`{!&sTm(plkrCSi6t?&NR%n3k~UjP
z8C|Vi0eGdOms<*94_4vKk19?=QcF}fp(41G2b*gujbG0IUVRZd2JCD}1s$r|L%8V#
zu|I6=R1x;Oq~3V+T-Efz3Nog*Fmrj2`r-PDYQ0kMAQN3fVUtxP)PlS@a{YZ*We^J0
zSU7K24ml*HQp|OzINAys(Ei-L3X_SC#piJFqwYV-7^-0H*0}o)#s^}`$KzkaMcewj
zUnc%6{x!EFuAo2IOEjL{QTX4@Ri2JTk!I-fe*emP|Ld}9QCVd=Wcp;K6hkB1uNJSR
z|9>gM?i|Qxm&J*R3Y)tr)~0#&HO_vA@;?Z$ibE=5M(2u2zhr25u4py>TE)g|4UoO8
ziJ<euSlDB<H?DLg*!iw*C6v1aog|KZ6Yn4S?B}hZ7V>y_zNQc@3`8_?_xf$sK1!kI
zVG-b}yB$O4N+l^%w&GiNw<jNQSzN}hE2JZLfVOc;dv1_$%WgF74*J%x$r><mRxCK5
z+ZpByUQZpcotPpryWwT_>vs~R=vIBh-_Iygz{t}Xd?O7c3Z(W4jOUwz!L3LXDo8$+
z_DMV2TZcnutNY48inDd2r#`}KpwV-h6ppiXv2MI;EwK`?^uv$4)kCT@;b`2C+c|Fo
zZAE(F)4AxBwCJ@-&TK*vPH`#NdUtDkT&IV`99R8@STX^T-)Vuf5ONlFuAJQ$q_!dQ
zm5swby^1=eL1}pjR$l<+RyvDb^&+}9^0HaVM7fU`6%uxghSFW;tQh+ub3embn|EN#
zA){670h_|sHGSDnnqLz6{I`x5F9?cXB%o_UIk~;-3EeFnjFK}qq?g+P01lJCy#OBP
z1!FC9pAUMrCLoaPH<-OoWl-2n>UjX5AUakM<@tfmDsE>4opW@v?2#Rk;sP0s60Uvi
z3{#hRAU;6VS(tjhe4YPm$QjM}OQul%-o77w^8HTS3Zs@rt6L?y;(p)aJ6dPY9BZ?Q
zRK*i4vJwU^1$@m1I~RXku^4nZFQ|GYXI>30N)Py1W?u9#eXJ<(9dio_Yk1i6<Zul6
zD@CZblcJHMFl#q4Q?p{rQ$7}xM0v`Taa5mI0=%2}MqTUfU1!vWWWT2Up|CnhQ2q9g
z5Dt8xneT%#_7c`jD6tqP7RY2~Wb0q|AUwJF6IR3cAuS+up2ZJY3gI$Ne@_nEBlL;!
zYn5wVjB%?P*=jSmX5;Re4?F_9Ev?M!@$qS6DT<8aRoofQeaZf36I6SCAe@{#Mw~Wo
z!iJsF42z+QZ=#Ltqb#4T`bK)xFaEd;G@1+08ZU%=c%oEd7!Xa?NRi~|L)_C*SU{84
z1G)FxpxnJFn8oks0KPATO|ta*5Zs&Y5*6|{Re<w{xT_S`0dG7qxR7(`R{7Vk=O-v+
zkjBGb$F&(>{cBzex$6|-440RH;OJKbC#mR~Eauv0KU+%^P=$+ay@Sf>-CiL-+paeS
z85=U61$pl0+uAfGXzYaq)~_#F`HS?jm_iqw=qvRbdBC0gi|I<M%8-xe06&*Zn{}1Y
zyx{mc9#zfK2bU*4Ub7ttjE}O~q=N-PCYaD9;>r|!spHwTd71mvN{;L5pTE_N-K54d
zn*G64Mo9Gb<G!!9$dP5TV>+GM)kY$7eezQI6*5v$U;K{G5G|Y{Kq6x_ohp{W9N#aW
zp$&baOUhfemF=juRsAp)iP4bW{W2~CN|8K_nb6Tr`{6ICm46kF%2!S8dsE5a%RSxy
z!_Tu%w)gsXzTRY~?}6FQ#&=Z1mzdNf25KYn!BNga9U@T<!qT<suJgQfANC90ZMD?)
z=F>b!kd>D4fcK>|T_T*)%2bg9$enLZ<R^-T`@6+=c4Ly#^s<fE0@jVh--HzRvlt>o
zdy_qt_?;UU?ksMW7HELxVyCYeuXZ$e#a|LSM95{vRXo1PRMqGoot8;%EQYOwUkc|<
zbtc>uILk(pPAot619h;^nW}HX!-bt@M>Cm#`T6|P=3bPA_eYDUJs}~P+An6{l{2c}
zST(Lxc<N?9d!d(&_lHVC`Em6|7s@M^_M5-6Op-i`7&5*ODmWXFe>(A}60DNdmPoJu
z6a_ACa&(}jT0v#EKP%9r(LOd`x*atk)$*rt!Q{zo)phh!b2nv*@nRqb7Kb^_>{Oge
zlG?Mxohp+quTCEpBc(W;k*FqBDUKj8YMk4t@pV6OeSjmJl}Cx~D)OticcWpfu%dF%
zA7^9sI^V<V31I;*Lu1O0mz{ex6ygWL1j}je?YpN9oztUUj>`c`>1O@m?M;O^Seoa{
z$Mk^5W@;{v$tJcsnRJmK)w{Em)Ju<=jraT{n^auaOmzHWfEFPm?Ou;0ze9it&MukO
z86v{_qr%f)trp<WP&(n`+ni+yc8O~mrM(~Td={oWxmoHJ?5*U53(iClJNHS!pKEL^
z9)i;wq>mFh2DYEliVY8%z6>W%H&~K`xF_9QBCKq?!jN^ftIu)q3pOX1?#WG;%O>F7
zt`gNuV@dUd@+a$;)S=E7KHs*wQ73R=LH+dM9jUwRw#!Nl9XFltr{{gDIB<@yvpha6
zzOowoBg<pRt!{L3_BHA7N<Hmb^<Pw0r<_^1;aiQb^#n^ZCYhB{UP%SGbRMRl^&ht>
z#|Qp~RX2;S@mN?MsdQqk2g47}l3O-|P@9b`Ji`b0a1LtZ{nX9%f#3^56I#nb`MM0<
z=;y%Vj>F=?ho!5zUC><rr1B@O@w^7f*24ivia+Ymsjq583wbz8>I4eS$3R8P=~=xp
zm;it|EG=a=>H%#mD#ikB1aUV*Hs$>#<ASQH&3QI?wDK8fn4)MZ-pWY6CT8;}@MC9)
z3oX&gPeS(sVrgF)3H;X>;D6bR6&4}ONBg6&$;GC_6y?>MwDzrUI&!q3|Knz@u!uZ^
zF^$ZObeMF$ML)vHn)ISKIaQ%X!!Cc_m23k3L#tu~OaiqoneTln782*GN|SVVQ!a98
z-5d=-Nv4#U>oAY5^k#afYqhI9^!<RG*<b54y2D0Wtjb@t?a+d^F9u4V#)SQ#cCHz+
z&l?%~9Y+cEC}0wP>#>`sXBP&q{mOIH+}&9{zd{3x@{<f)6?9DFzZ=hlt*|KV_7Ozg
zH-h4tNjXQBlpc<Afo+{yUOXpCJT#ErVDagp%o9Ro8gYb#SKQVaio9r6(9C;M>4#jO
z`07p_u;<z6<w&LAx$2L|q5~;TeT_9gI~yKNX){2cL#fk#jpWYy3BSC&eOg%VO$=3)
z`n<BC?=NZOI?tVfyCICzww{)7%V2As?q*)>{EId?us5HkLPWC@xF7KM`la<brTtB}
zc_Tr#2+@H?Cmh0aAY(I97E0tBZ96r%pV~RO5&ft;{TX$mI69cJVpyKm=rs*X)6>&S
z+k(8DcX0>~<^mV~3@gQ620WI$fXYRSah08!ysf;`bb4M;cYO?_dh~wJ){RL-pAD|?
z&gtAM_OnhMEb1Sq@e9-iivt$0z|Rn>=DDOWMvV-S0cZqtUT($NvpUb~L|f>hw8ik9
z?MEjByQEN0M=w$fQXI#mh2Z-+=phT~@4g|t%<3cncq~DS(dE(tb|o6MM?vOY5@ub^
zb!}yO9`&amUNVE(TV#oc7CNw<pN@|#HLjFIZ>6So|8tF>m96AVubnsQbI)a#cqXId
zpU>LW`kCqZam<K)Y`Zuv<nRbpe3x~`>3f7Mj`z~@X;G*^(VM#O;nNwO-Cp)bo~lo*
zgAY0_%NgQyrC9g6?Pwh4-TyW$u>XGHOz))(CFu3QO%AdKu9thnKhu_mgBqQ(>04@w
zN}TomMFdkXL7&^2-A8q{c0)q89imPdEI*43*k*DK{z4)}tWyX-jQQ+yMfIVnOb>cy
zvdHKvPwQkRNA)T;@MCiIyYsTt%5vX}(lP05Z$A32Hbpz;UXY+shMLFEh3?_}o2$QP
z{d#s_61n1|vsx;O3L?%#x=Y8TF%x5V$?KC$pa0ozwP7A;pj&qh-iiI1Y(2K>82Yt;
z=sfhQ_uwtUk7RCPoS|#GsuYx4!QT_dBS#39u=#vY{bNnt@V!O+3k_fy+?kGXz_ruS
z86_%(aB`8Hmetj6t&n)xzZxZlx-=xFscJ@97)^0jn8W>U^$0B%o3(Q*5C+C>eFf?X
zDiP>Jgv}Zl=?wvZ_;T0O-~we5tDRERKibAOtDfIOWUR5Ce4Jr2Bc4`q72vVx22d<J
zS4E!dhj^+v_YAh*j^sior+>h9OWdR{#gXgW=sm|<NcDw#^1<E#UyHvU<tb_R%YFf_
zTG`iEEVgY9i1j;3HhS4|^d@^<zJuPp*6fU1@K)=7ZU12_N^$zJbD5+gpmW*|8=gMI
zb>Lm;>1Y5dQ%~P-r6sThnkfbeFIsUb+_~2tkmED`yUzRMvEDw2Wpskk7z@<xUt%%i
z<1oE5(8rD881)*c?K;q}DM}jVj^Js}6{o2Du=69vNLWFWKSY1tP}}Y0+8`a^ZdU#<
z*KFz#Q{9y?2t7K)a$If$bL(XAJI|g-K~p!~6K1Vlp`G!}u1P)Y1GQfc@!_Kb|I`*;
zu!~Z7-M>1stpV(3hMT{vD)V6h__F>BM8h)#Q`!U?RF+&VJDdEB048hEJv%ya=~3r@
zqxm&WPA1wReG6R}Uixf~SC??f>?PJpI!jZ0nnfR~WF&Mn9-Qftck4=6;yb#cjbF3w
z_O4-ZDseF1)?)UAK{Uel>Ok<J7X36mmV^B_03c8n4XRK?GJ9BkH^JN9UW9ge7Oih^
z7iYVVvpCH1&9_*Z!ra(0kV-59*IT=um<iezt2T#5C$MgINk%{Zs5Xd5K7K|g>@%3g
zHn^~)siE(y`F$yEWU6#ZLVNUK$_fePn$_r~lbt{i-$xyGAVRRbw3b1vx4jO_yxY@o
zFDX{7v+0)3jQH=avzJzbw)^-Z3&Oo=-a#lUXx`2T&!w>DT=<-6%fY~uAQ`sjUu|mf
z^hGj9M#4K`9><TNEanf-ue__fXxZmqZJx|v{L$96anv)nL#)%lHN_OdojH9&m>WKO
z<K|{lG;yc<)vQPVC1CJf13@_ht#g^qm*2E{DOH-eFi$2O(NgY{l2_+OlqM!k;R}2<
zBR<Q)yTt!QKS!fXW+`bxf_;bQ=81V`ero-81x+GvA>cf!edx>cNl<0~%<tTDwl1d$
z#ArtKBwR)jDEX(;${X14!!M3ygGDYA>*@|(!xF5QOp}Fxo>^NOFCsoQ;^z|yRAI6u
z9pLfjya^V?)9pg=1-=B6R5D|qDnJ<=I^1@bYABy~{&l~{<H3esJ^F(42sKN4&!T=e
z%PSkd?4!7bnm8k&e)w?Hmjrb3bq2GSN&%!<bLl4+RyHD!p4h@@<+Av)pU?GD{s)3S
zQ~cl4Z)0h(5s!jqA)iCtCAM?GlCSIT^OgIGNz2L+uO}z*pW{^C2*UOsJ8R7gUn`p}
zoaRgZ_{+yNVW3~mUa0XFcgGiSvsN!K)a#O%a)itC5&TNsri8(T&3_nyhj8<S{xo&A
z`;hiQ-=)Y0$yW&Wfk|pY#yFbEy(xJEtGSl`pO8WJ?CZrJecY49bw)wWU~UZTO35Ax
zzladz4w=<bj<5Z(V|MaS_0AGcAc;P9qx)CWD~=n#aBS>V38|<`X1L>mN%@nuK=lVw
zy-x^}9SP%_XpZT5zMF*)ZuMC$Z?5>%XVLls^=P$GR{hcYo3ya{>_~;jQ+$piMX%f}
zS!tMZqs*Wk#2I@;_!Vu=LOyYHhU_#TQ*b=1u~*2E(w<pf+b(u;U(#A1k>yhA&!)Ky
z0t;;KeqHFTG05&s6iH%?1D4Uc;PkG3o%nNmf=D>|Owy=|XEH6;GdwuofIi&rxpFx0
z^(gj^9!omxx1ytGa%f)GAG1c0KCk!uIvI|K#d^?I<6z|Z!}%v=oEQyfp@|{4sL^Ea
zkyUxACI&W!r+yAJ$k#ii%Tv)m5XVcTH7dVa%!{n~`-p(=BmRHiQNMHGNo(W<?9}vf
zjHLem;P2mnzoY7w7A+{hf{}K1LaD+1Qj&o-$0F?kh@+IHNU0vnr7UW2tIYm@W>nab
z;;Bnt^3k|zonzjYEr?adJsLk6$e^J<FLEV;I=Ij}AL1-IP23X`*s~-hdJOO?p?*Y?
zA<gQlF+O*osM_||`;qdW_ZKvw&!!O~xC}2G%|1U@mucQBMo$+a^3DFLOE}X0i=+7@
zEJIUgqsaFN4;t!eh{g}OWHOBbh#z<<){yA5yFqK~g(q4^was)H<qViSs|>dDZ#y8S
zomU7IunoTBXARxijv@gXNr#OImcHHtEV_sG#a_<s)F&1x=bsf|J?p`A<nVW1j^5!K
zakBQy*C5ue;f@2pjntI3Yf@M#%I6g@C(655h%{HOI2#K~qbt`BtP1M(?w8Z<&zxk-
z1iEcv_{IhoNF|dmmFL$5(s?5WSKR-htC;eNjy7YKx)}2O4rfYOSSTp{)>6plN^)^O
zqv7d*QrFQOLS(wp3B@K(eH#C^@<0~nO%SjZWVA;(_aW}$2GSUY*IMz6Uh(Zw9H254
z(1#AV!vQ$Cdy;{c``K2#yUeB$J8`YSdyRHBmIkVZ`*!l0eEpZl<|-m7n712`VfCFs
zCYHdmw2TSsENy~|;8CyK7Ix-{pL=uSJ??&>{D4_i>jcwTiOP#!Tpj4^T!XhNj&oxz
zLVKmZ{&Uo>6ZMaTu;WY1QqypTPV{yA<AKKGZ6)X;naGx2G9>xcGQ@f3F4Qz%QoJdS
zd>!!Wj==w}KJ-$jknajNxs#0&o-cQEN%<Lq@+<DVeu`t?7Lu;k_rq_F#frPJld(<d
zghKwhBhfIs9{Z@QR086Gn2EyanJ>NmXqd@<VFFn=BCqJsh$N|V%I;yE0onWv=5a$!
z8?MU?Niw@b-K2&&D6R@A;~JJ?0Kf&{zmbpBf5XM0BE3Wgsh<6tsz)g>5o_;<7n5%K
zi}d+NGbCFl|2aH29&n?51+1FIcBk*6*(mxYG5vZ;SR4A*6q?0UITm*C=7q&nBewe1
zNS4>bF0KLp7s6rfc*tjkua;LYllHsOzguZUbd*-*_?IA#HAs7>NRq8~>%4d`>SXZU
zTGxAE;}?24IFR&bo9^Z!3uKllIF#P}=(UjRd%3zkpEs?qu^8-%nXPwFKcn#<3@nSr
zpTxr0S3}YT1#vf8{g>o38eUs|lI+o^d9RXuH+z-;3((TB{jRW&sxa+VSrk1CGRYpi
zlK&^!H05+vj5u~3-NnBqjmO5tPq3)ad{hxM2vaI;-OD`(?^OMUa2Do&fCEk792^&u
zI!b46C1-L}B*?wQf?RJ!Y_tfN^(D_+2uFNWiRZXZxRBje*ZsTP2{o^-N`MTn4PW-T
z(xpPqnRR3KC*5skg@RuC*l*OwOJ4v8)ctGNW}Zd&J^rnrl%_R86qhV%p^Yd@;4|{q
z(5+H*j{TZ;bh~UtOqKw&EFs6_V!qhDm}{}>L63ae_T_(J%tJyjLRA06jK*xLCxVxZ
z`4?L8UTq30A~y+z0b0c#18?PV7eV%^zk1ZQGLj1c0G&}?88;VO-06sB?rF6WEnc=B
zO`G1oZV-~qb`oEc_ZVZIwGLvjbB3xGS6&4s*lmtX-KkedR>LdjDS|Jjji%p({XE3!
zfc?H~GBX$(eH7!YxI@;+hmC&TJ7v9`p=4Sqs`OW7zf;(>Fc2)9Q2hDmv?2UJlE(bc
zUf_N;SB!v~F;SnzMoG0+J0zuM@2cs?&AjI-yQ_6t#d-T1!bu6it>3um=_R66(Z2Fp
z?j_i2SiW-hj@jJe8zib@-~M?oOVHd>u~Aj7FfdzkZsn=ZadrSgifa>uJl_7sZD}^5
zQmTYzc|}VK79)fQ!uLIU%8a{h#gD_cNH-p8<Y$wA=mB1pZkC0O_=O*ZE2IndLTU_5
zvbQF~2kQk`@2Zn&^^+3N2bI(8{R)up9ku?*op|e|WPf4v(UH{pOPz-AI1Fy&DD{X`
zjB1C(17Tax?D)=*rZYVXn?>r*^r>&(3Ynj7ZS2jJ2LJ7aim&}&fxCsJiDZqP!#{)^
z6N$(76l?1CBE#yNvi5&p7<@=eVUqZTl`UFhjdR{D6WzleB|`9a`}=c7As`Z+ggOXz
zD@(rrCb@HO31;veRP`dqx9oZUv778{1gVIxYOt<rqz%@=PVU~Wbp2gz{(1Y-NhS`%
zF2bnVJ%Tc#H8mDx{m%l|MZW)`Ze%(^19>yJ`P94A&)*c(`s)pxAz>v=X)BCoopfou
zD!R!^XHTBJuqfva9g^(T`F=r=S|`64c^drPaw?1gxLmH}EhsuGn$1-;`~I?B162%c
zWg}o>ogsR)0stUuXkGsM#NmT3$CIbe|6(Q1fAdV@Z|a%M(69+5Pt7RW$pBp~Bh5PX
HXVL!+&ziqx

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-edit-groups.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-edit-groups.png
new file mode 100644
index 0000000000000000000000000000000000000000..64cfbd439f3d472bec33c8ed2b67db065434dfe1
GIT binary patch
literal 2004
zcma)-`9Bkk1IOvf5sfF&oS8i4VHh25bLE&hCwnAWvnX>PQ8KwAw-|CxU%8it+(xq;
zNjyZp4b#_<YavHw#^d`RJU@IspZDwY<L8%8vZK8fKuB7Mhld9Mx4w=%N#=<Z1^G|h
z+ncg~5@&*}Z-(;lh`j&5cyl2lGAE@#7~IZ6U_n3<2;q&+{?p^6358!bz45S^RqS9Z
z^HpxZm{5yEO`G3UfZjaA2U%4x%Q%*;6}LLq3{(N$eJ+f|ygt2{I3+X$aJ5xvJ^jVZ
z=(S)7CZe4u0}AoKQ!e=15HI<*v`_h$`YgeR=|$#sOO16a82-oo56Qvnvv3Y9TWN{1
zamd)96wD28aQ((W@azN=(Ee9;-zY1_1eA4-`seSGr_ZIGiZ%WHUtz+*X)M_69p;{@
z$INrZ`M;V6l!Ffx7s3D^BCBZjppJe5Q|<eg0^5WbZ1!EsjuIR<Wm2}8!l9k{(ZkcI
z5+I^{-|>l=ipYZz!>A4ftrx-u70oYgYM{LlzB)iLK7YA=FQYUtu)l424SRGmyHneD
zGCX7q#LVyYvx8`NgzpTT{aWC2TVcYhHqwxZUHs8<Bz@S^*q-GzJ=;6)1riR*NKc*%
z+9f3xs;SvmXEdn<Bu0NL^<2X_2%{7B+K%T>ndkd1bfxHbN#&3dIY9!3JBh~1*)@#u
zX#K>xT^hX|yg#Q{G*A7Z_v1nF@fm)D(T&&XXO-8s!%29}{=Z)QdPMf@W2J8GJi3<r
zs<@OPWUjVMUD-VULA;`^3YUp5c)vo1$h#Q8D`lfEIaL@F)XI%v1Em|pNRI%K#hs_(
z?o9KVFzq>%CxD<%Z74Ch8qtB53vuePEIM1`r*bRK+PVPImB9Va?szc~of!uP?lR9R
zIi%IKM!VhO6NxycA*VUHJ$&e{8x>?I8}*r;!Wr;cP0hcWaMULjxIY`DV8ktB8FfS)
zfAX$imhjc|{{d@)=NJr8N6bHHk=5iDA7{Q=jQxDzKtEX6a<cf2Yqsg(z9eMXtehWz
zH4D~*A&TKd`CD5S<x`O!mQeZp(pzJO*Fqty2JU&V22tyeNl%0GUG!(0A@j>yF?;&!
zh6LI0N%qiIGP}4jTDd-nkOg+>zG!su?+mAf(5+^NbwW2nyE_FjJ9pId_a=9);>XLj
zgw>pl<FyDe^EtRoAN|c<ZX({ta~V1goU7xw93Ts&k<&U@aIbBfXsexG%cJGnXfKvJ
zauNrJ711Pip3gPVqteRu`ueOhn=j*|p0f9xV6ajkxQkZaw!;st8YOLoQ8JGXkG>?d
zq8ZruWMBDqLXW9E=XTiP-hzj2yCy#s<gp!`DiN4plg9N7AsHo)O>Za}$N6X7L_fDR
zlJ7h6GjS0mvn73q*j=?gCA4evKt4Xr=;lY@qUQ=Xia1$`77lum>O2wZXX|c?gr(XD
zbrwXKw|3TSUhr?+RE}Uu$>#aDYICjKss^{UC*H>7Jnpthlhhh0Zow)f>p0>Ss)QV@
zxd2a$=tx;h)h`}Rq8)J>K~oaV%}X3w6-B;(VbE^Rx)9>3^<ehpRD;>&JAKk<3?m{*
zU5*I#fNI(3aSHqK<7*mjNs!{125z`85hrcuszLosku4U}ts3|HU`!^(%6XfI7mJkP
z34xUqi8oJtJaR^2Xa~;g>UHIb)M`VFJS%9b5;t;PaK<r!L<gYw+5O8b=+6oq9%2ah
z30#O5*DC8FH0NDD@D{E=*?E#eCAHyUC}#YoUj}0>z5|xu#r{Z#f-T*)v$B6HLCHO8
z;+u+0!Rum<JwM(`7&c9j%sYH}jZ8zCFwo%#V}L={uy32Y#^A_j90S{6T{Lp&`m{X#
zt+q?Bn-ng;Qne<vbKhGVUCtz}AOK{K4eU|);@nzEZD7kcH+kkLTW{gn@Ng~?RjGq6
zkJmb?b|wsRw*8Rxwrhrtq$$obzWBo48-Enm4R#L+1;`JNR(Ch0CrP1=7sVF~8Azb}
ze9jD#eSoP$<b;6DVN0p3`?V~1Wx%M)N=Sxv^|#C#i;Wtd*Grapmjj0!wp}|5)y2_`
zDi_yLVYt|J-wRDWwFu2G>z`h@ODZl2pVuE#+=%VJcPYvc{~ARrc}Kq@q+_TXuVL9;
z+V3l~P*g^=PojYI)o1nW0{6rYq)+Lr>+%L^{k$(e6<PcCiq|f<>oaCt#NUndLDlbK
zWFTkXD#*gPoD68(y)X71V8B$BF?qyMCB;fu9$wU!!-m8|he?4MQj}n=|CM;~_E^~~
z@-Ab;A8T&Z)j$RZbK*WRtT2%@qVK2u8BNSU&FOAPo7o_Ex>XaknFRB0MW9<n>5THn
zF7*KyRBJ={-p2f-V69{X*2kk}rgnU_XVTSHCa)H%&G;e)Tj+&Zks2m@0(o@CJ*No&
z+A7oR_r|Zp#B&tqe`VF{etP4XP)!`!k!!&@BL3@cz4>k?8#*zOITa;ESLBZ6Ml2$p
zP&@54r0;f3<k8C9Sw6iD9m>bD^%;H|>stb$&bLpUTiprOrFL3qtX5r-bZ)-yY|jjh
zeVHu$Kz<Q7DzRE%nR3+yq$zmGPD1c(oS<dwJJ7Q`;{O^Cfu!?WO7p;L_f8&}2X0}1
Jz259j+&@|A+YtZ&

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-global.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-global.png
new file mode 100644
index 0000000000000000000000000000000000000000..4cc8e84eebbe7fb7347727904c9effa12c3c5a1c
GIT binary patch
literal 16485
zcmb_^Wn5HU-|iqt2uLa2pn$Y=OQWQsgfxgqcXuO=bazQ3-Hp;Pz>q^XL+4OukI!?z
zzjMBv=RNTOW;1)w+H2PS=XG6+?<z{N*iT5GfIuMZw{lV+K%hso!0|jfD)3vS4n6_A
zVA#lM+Jit(dk{ZJ@yt)jfH%<`-YQC?t)r2EP+lBsytD&>s6lU~#6P;E!CJj-v}PT*
zu3_hg{7Q4;_%%Uw3i=zNd;~@yj>!EN#6hU}p<m53Z1R7M7x>7$S7;vO@xwJWbNX4Q
zfM;=G0XvA3GZ0V}vc&!)5xd8j`~}^%K8Wpm4GRIe)>}CVcCKHrYK6+Ff*16D%>@16
zgD=9?4=(Ko?k<NbNGK@p;9fsJuHM)lid-&G9k$pXbbHDq7?T9xN}$u|EVu8~fe?qT
zZrL=z8v)Vf;*$S5<sSt6i7U~Bij9Xj;ebs_i#V}E$}NRBF~RdK1TjRO`4}$ZIyp$z
zzXurilFa)o#Y-xlxub{LYc?-$mT^);t6UKBx!xFY<?mP+UUAu%F`@|lf(6UBh`|i|
zn}rhWA5h9iUoP)yAVthp#0@cY5mnZDW(#%wy-TF*79O4iZ)k8%kfDsgNI9b~K9e=o
z2xn$y5dCH%Q%*sk_E}3@i!A0lcs^Ic&B+h8giRjKLg$gC@n+fuqtvJiW#)M|U34PT
z^K>RM!HGS~#{L6R;MOM%V*-+2?C}|TgG<GH!y1V}`ljU}pBsIO6+t_XPUuACT)S;>
zi^bYQ-h)Y_99tZ|z88D7VV42Pom6|xpUma1_^#2QJEZcD_fGh*Wcz0+wT6C&`$_tD
zx+B&~t9iz-0jRdpI37qJFZU-NSc3tv0BfCeI&`aKe+*iv1|%<sXnmd$R?}pC?$Jg9
z84~L)c1~YBt*bMM@o^Fj41`fwSXLD8K&p;ah8+lqKY&^Ckg@_&>wSAlov`S)oGU*O
zz5H=xR{n*}Ui2}DadC!&a@XztF+CFK`Mw~jpp5P{9#vk+&#D-<BFDK-HQv0;sEz5#
zQ!{Al-VE*u8-=@gW1FBaG3ePe^(P$%J7Pi<0^q4C0*jL8{RmPUTw#TB6-_L^Q{Q7}
z8lYghN_;eLTo*F_4aIZZpi@#Mvw#8DTzm}V_c?jRV2XOC*GuPK1pQ3t%ZjqT0*_yT
z(p0d`4}Y5ZFRijXV8(!kls3Dim+4|5(56W?L4-9>5>OtibMZXe((Yo6v_7AkZ(nA;
z)?|$^;GSevIuBT0VXQE~0KxsYO<yOfsKvmVaJ}I2=W`RRH_yr4FV8;FXsC-w_|ox0
zN}6X%<SlavwCExMixFrMPT`^b8Jt!30}Kgd#M#F$D1TQ+8QAs>RT@jbh>8PxPv;n>
z*lV7<+wHO4Ab_6BuEvv&z2d5fTBhKbE^Al%r@}KJun?XSYb1`9HZAeWG<Kin+=Gd)
zG((vgRR#VymNQ!qG98;2jCbNbj)AZwm!oZA+NBINstL~U%%`1vCw};-OnEUn#WZm|
z(+<Q}(Mg{mZ}`W>d;`<)e!Lwa%Rqwp9tK!{sVg5^zkNCq+^RO9S+F;YyR1yzZbs)X
z=6mZg;K8QTp*Bt4^>)O3??Zra>o%}t=&lMbfD1RyOVk8hZ2Y0QYW?Aq>-ii^n2Yd8
zfga)U_R@ENTSa$c|J!#X`uVse5%2U<y8Q?5{eO1<|2V+m!M6kJyT=LEZGr4dH)OXY
z8J(jK>Lgdo?#DRy2fwbm3ca6-oo7TQC?RGnIl@)VG6);JXkUfOJZ`5$dH^qvuGV`W
zce`Y6y1Q;E-tLqIU+J}Bd#q5Q9yR8s*9IaYik-{On{S)_4fXdFw<G?UJyc#RYs7cG
zm#ezhj<<Uohs)j%-g>gdaNXOJKT&ILCk!-qVoRNg?U!r3aZCm;f#7w;t}2D?6Q>?&
zGC)~fOc?Wg!mTjK@TDJMLA_@3&$mfaysDXpr;>mrH${W-NnJoY#EM&}9ya+RmkTL9
zh#uDUU@PkFa7fbaNR-WWZF`^feJ7=t<8gDtWj0;X)xyp3p*pmq{$U<zfLS@0J*Dr%
z{Hvocxx|!FnVrBxTK|&=vyGYH^9pDeyR{|vyg_>Tu+4tF;k<iz?R3r_bDQhD)@SX7
zLeRR@*L5LurRRO^$r|_4U~?$v#H7im%;I-L^#_ZxN6Oqh`%s=t3}ffYcvvJiU_Wy6
zBDAU2tyEP|=atd+Yr^~52)vwQ7-Xr7O2mao^#1$h+9=fJSAMk_v-&e-IUp=!%AkV+
zWbls!^1xkqb7J$AimspA%Y#`1>^&8OY|NNRXv%hD#!kV)&tyX0#{9vzn;86+HY)%1
z`s7EkFkOX#g5{$(7^;PFH~SLmk?^YFOz3kU$drMdB-cm1Ha)NSp`Do`-)b(_`mds_
zTad{;sl2Y)f%ocFroHk}Kq2YGJ~-3Ct*yQ^8+631Nu#XkRnX?hL~dnFpAT%ohR=%@
zOOgnzfN=X2r9nmO&+?aY`ZOkk-AV4eqsJ_HQ)?wZtTcM<%=xJjIE={bss;4qQXwu2
zt$v9CCkZ18xm9sy2fAlQ1MLCDiK#lO2v1=Y)@i5vz-m|y0x_{z9O|39qe1LBK^+sU
zEALw|u*zORcqCUgVWb{(zh*vwEz6XsQ9;hmWWoV2T2h#iLJSt-wrHmZ-!N*u!3RAt
z?bX=H?C8bIoSn~&7f1!wobLF&jhu+UmW&(*_0>67*0u&6dzF>qj_mdSWFch#;e1zg
zZ7w*o(A(Dkk{WnoQgc=z9w#@4%kwT&qSp(}qzl(<w-d5UXbbLW-f;WF?$LS`HRU(1
za%MON!zwD2XKZI^<GJ@cLX;JJjPNz$qtrnV3r(16EUqVc#QScV_a*%_0bBMmB!4*V
z<=&oNOum;B8jPU~GBmux6`qcZeiCt(yK#t<Qy;jGh-?vcWVCmq_vrbpRBKyCqpQw3
z)0tkkzyV*z4QJckT-4E@D6fY6>a*bWO?q9k%~RDC>^3KN9oJ|oOi~<=l_tXbPQ9{M
z&_~0PoS9}HK6lgQ+zC;kVnu!T;|VuBaR~WFiPx!>Ggv`}eIBMNGA<{Eu+r3T%{2Ho
zLx7t=+QQrqU7tSe^LdfB-}%DbMGqcKS?>DmU6wA}!v3^g8gb7J5OINSF~W<XQ6H={
zF4Z(3{F6&S&OV36ex6ycAuix3XLjx7aG=d=xdZa@7j8dM1MKfYG(EMB)P?(ATl8fW
znBx+>_RKt2GP)`fyq{goNWb+ZZsJvG;p7&M6BZWW;)J~>3Hzi4#sOAjf^x21Chs!0
z;n@|Q*H+ZQT1CbUI-6%Uk>10;vf*mGx0u%@f!KHN8?DwWw_Q4Zxc^O(_C4PH{cqXh
zV`MqJ0YMjriN{lG`mK6e4B2?ySGz3uUMn9TPzZZ${@en`oB{aVS1nDVUAf^-D>;1X
zuYYF8cFly~WP^9zq82#54$!16sX?Mbt_Xft@G=VN;0}Ztc%1uD{(KwW=x!&x6O0H;
z1h?NW8NQ#?tQJ?@7Cb>jMU9>4=SNoL6j%J^-Y4vp9;Y-v_LfTK&kk_JMimbc@wPC1
zq=_!$PQc^9UMzUju?852CP28{f$?tw!JSAd+(R4w8)1w7Dfs?l#MgN(ML!hcp7$~A
zw+!8O*jJTOCt2EbGrZZNrsK3LK5@$z{-xkezu;nQ%i`=LQ=PiGcQQ*<+r`<Rr7p(m
zwpJtt=JyvTUrja(u?`K^#w*;+6>8ON%+ee5(WJ*k@sA!-6yyel#6`_0L2KigH9j~;
ziBO^DmBhZW!q%E+Juv-{;RUC}rw#7VKY<4EJmX4Ggi|5|p1VmAnTdLfv93iCt4xx;
zue3M+N~7Pp@LV^8ka8eu%Y|N<Fr7>4r}WUGBF%S4iy4iJsy9(P4VT-hJiTHumDqr9
zaLe~&#mvDRm!(KYGeK5RUXSM=bZ0-e#gWPAon@}+eWfL41<9MB9DYC8jLI5?7wBcE
zjWR=c)m{(CSf|GF7YDipj71q0b$paDw??Ur52ukY2uX>UmmeT=WiGGCq17q~X=Wxl
z+X!R)8sH{4sbkOj&Q-p30K6^4^Btd%lho0sOknDhI{|@%**o@v!Dm(06_1~>TDm|;
zyMUxMb<P!DtXS2W3f5E<F=4KdzxkrhGBLk1+xIIkFn3qGIl-$)=lE5s%aVfTnC~me
z_wlW5VyTj#oN|Z8$-Q&WK97pxhq=Zwn0BX<r!>pbYWg#swj7p%s<KNw9YMOduO$RR
znlJ};gO@4dw#IV~(Dx5&B#)Eh+~js$%B(N<-<2sn<;00?tF3WbgUsPj>}|5C8twPx
zVmo=ZP6_nB^40P_idOdI7q_$yu1o-H*m!Ox6=5_vZ9|$UKWPp~Koe}$9<atIcwD?R
zZDW?IM(Xx4&%pzA$0@b*nC#90!6zrPzfMk&H4~^<2DfMv*M(N6%uP1zA(XrQ&TPRO
zI}~?v8IeV%#+nJvY=6do4W3BCtZ6EOAqnyAz3%J4$2B>{&@d`=UMFU6Fb|m1HEW>d
zDrmOZTWWeSF2xkGUWPd~+Y4C4Jd~0@-`oA*yrE0Su6oU8$6Ic$5vi-DDyoq%y0fA6
z<^AFFc}1zx!dlM_w80aB{tHualf-kntvcRwjFR&7GmGKT?fwEg3V62q?9ip=u12BB
z3#vVr@yKB#*?7g_`8g8>nE7}VtD{k8aYcxR19MG<<51EUj&r;+=qmZ@!e!j+Qdj{6
zGepX>c~`HEPFZVCWwMrE_fVVn<oSG$E)mYg#$cC+?d(r^1FWRT#obM|SUL$RQ+_?c
zi*vQjXI$7f{;HxmUZr<4ANk}pm5e%J$wni+uL%!-4?-vhMm%L;?ryr9bv52W8gtz{
zt{)+?+8Jb#o{QnN?B8K#!-ZCnV$|u!A#s>V66DBUpnD{&b9TeU+<tLQu@gT$Dr_9O
z#>OyD&_tOu{TBP1upYP!eo@o_99I~1f6-o#bCs-7pRGI9B_(dA0V&*jT!Raj^tjH8
zIzc|wm~eMj&3Oa*Xe9X4byPndK}F-TF60?u%}kv)Nb>H*$AkIbtIErUY@69N7e?C(
zT_pngw>3~?4jbC9;Ax<9AdDgBn(N{F(e2XiHuZiq;r1t4L-Dy0(v8>lC*D0zAPE<l
z$5!EeI<Z4iO#;$zu5+N0GKi12rR+OC91BPq`SPK`Cvs!<4|p5Zd(2-YLJ9*<H+Wd`
zgR$?>jZjy(`zR#pos6R*W}-MOhm&=c5e<>SPQpbSA;H<A+yhP8Xv(|_eZt_*-AnGI
zM+XOjb^dY6M#}9=!BT2T?5L^{ulB2~hW|{mDA`*v+lRg|!MW>{6ipEL&{P|;p4I)C
zBDiYI20B$_wOnAz5)@5*+}S$X6CfCbt86~{GT0<U5Sj_uAn#D|e%#Dv)T8OeZXZEX
z#ZHsf*8tzYpopR?xMY^T$X<hC_BwyL)Y+M)HDs9n_?Q{F@Gv3Z)F3LX@rmi#^Bw|D
zl%G7yR#?8^h}ht2bK(K4Tz0e`JM-W3O8WR;b4*!w`k8uK-=gVL#Sep4(=`;nYB^{1
zyJd=n=<d4>O`7XGrz_8iCof_?$5rW?EJiQrQQh&(8o>&uvFUk1h9(jm+3%akr$Y8t
z|6!Njt>0-GS%Jo1ryqC-bs)dtvvebI`=|HRZhVjwZrW#Vk9O&Il&Qrk8d`my5!SKK
z5T9Em-Gs`0;|P53*usnxgbAXbgv<voSK&_|BHNfV<4m4U(TO{*V$ChU${*(5p)%ON
zpgT<Kj*#`U;T|3Y6H6m$tuCl$sCE4&-7zqsK}p;D3O2NQ%@d)eXKks(30Cm78DI!-
z5sWxLc^uG%KaI)M^NZ~h{#gH`Wnrq2lf@<Jota7)W+6n>C~oHjYc{Rt&vxF<$Leun
z+vxV4#=d|o`v*`^bhiwTFG?IyO_-&}y<-P%Or<X9oeCC`|C7+d)-sfOK1wr2iP{jd
z%@s*QCp3&nl_4yn&F#n|ne5;E1g(A@yHD$G=Z-%cbt*8bnH3H9g~YB*!pW5O99cgN
z;f&wC!$7ZLkxM;-kJVhndw%4_K2FE}XxZ`jy=~fL8X|VEcosH=iPX<e1xK=3Iug0x
ziJyTK$>?t4@!im-(*8mw;(8F<Rvo>^fnefH<~NU6a8UP>Y~9Crf@>?9M7S5u^biH|
z#$yZ1(cOM_9@dC}WUh{`x-kMEr=()8!s`rYa)cw=w4iqOC0fjV-|T13&z*)c-!#J|
zx6e>E%in>X9nQN(?VMHFj9Q9T>QjXA%VpZS1m$5~=;=4QNbheXa)9@>jU+5^sPK)D
zzF0#ze1P;=UZ#gzC&EqVmBM_lHKyH#eMAw3+?Y1}h@y9+)<H(QL(`&CqmM>Gb+I?&
z8&d)VWe|!PdgHolY(O*r4v*)InmQ<Z08GrvzhOXEX0(X&Cd~01FnzTK!{0!eK4PTf
zA&bnolkHC$%C4NV?&8cPh)I*7+w-k^30dW4AZ=U}s0`d%7ti;*J1~|vr+D`BgDoY!
zFYd-lEX<Y~U$OAF?&f43ar{V)b$P3u<>H9X&k3T6<74SoWH*rUSVIL>VFO0Snum*%
zYHiA@uoi@a%<xKMw8B6cr(`OM#2%e51ghB03M{UH8Q93Qe=X$sM3<o;54Xu)jx*%J
zE1%wl+H9s_Wx+l@`ovTpY7sqs@JS(qb!R$9XF@QgBvnpGbkK2o4=qE?H|Q>#<QAE@
zsW~WF>$xg%&ePzkWmjk!Sr~pOb1mUbcsCclaClyEE7=;0cdR|O&xdmA8pn|Z$`yk%
zDC6=J8B#xoX-Ul@UA1j)!1|2E;`NyRlYFkna&$zy-B`5uC?}`Q+XOlbKLfYPl6xJ$
z*t{lvKXR$O3`d`wS>;fYVTei7lhn7GN$Qy(ye#_M*P9ltEI74Jinrm6On8FV9hktT
zFOMmi{+$t-OQ%D^4R24E%dyx!*THB9T_!i|Ji)fav36hrz&W(B>~$xez>s=4M8$lQ
zGE~Oi|Hb%HCNvqFgN}zd;5l>2#C_^}B9?72nk*l~FTQU)AwFz3)Z?qwRvaDZ$dEd`
zeXK<SSpI0P#k3&(7N#6w8kA9zzg?$8Ve*J0)N-H973ojWW`d%DfoR~1V?`kfG~LK7
zYj89JibfYo*ER2o5M{rv6@_F;*Bs$q())S6uuQQ`WTl^$hGrEqi0b*#tSa7Fap8|s
zHTELk)O*R<M{bTf{m}}1B->+HI}$xE{D`Ho7}5UvS%c1yqP<_MLhE!gO4hcn=5P-!
zQ_NT9F1t|>E3HU>SB4z27*1UH_hC_m{kf)~m-)QMbuk)^J5r&PG}oN1tG#Y*RgPrX
zNIjj47yd{^xW%xMrY9<&Gt|$dB33;k##qzJJ|iIdYY}0LCrQK1CY1tMr?2dOY+8I<
zC0(#<jh?wm8Y6hUB~V>%Q0^Li8g1Sbo!O>>M4~AaziC2(Rr$%p)Z4R2k*7Ep45|;x
zMEJVHwPM<DSU!d&H8XpRgJlFyrm$#wNSLTNEBvc4sYJ`a(PTOxX;CCq&UF%$JrrV<
zvBsVPNHZ%w-bQXzvEqxgsqZmeV^~1*06@W#T)@l!76P8I`YHW|qTb4BDW}Oeplm5s
zd_c(J0ji{ZZeXw6T%Y(7XhMoswwhsmnQy#=vMCueMLzY-Js@+ysN)tp)e12=ce=Yp
zV7wDRi$QL-jfc3e9ArC$hIRw!99}(CuYT3(x^63Ki1~o(c}*Kia{d{pmzzvuZ7qPt
zpZGdS0u#t(c=P5TME&+dzpR_uJ_v0Ue_*9$9(bR@yOkX%dp715kX%%~H9SEgPjNsL
z6EO!FE@sQ29EJ>?tL$oWmv6l|y>k>ScAbcNi!*L2w_!>oQnFzZTC@YNoDGl%7i;ks
zyxJbfAAUB=RiFsp2Y+wcdy^CnOw<0i<>pH5FT1l7iknlD#Esy&@9FaJ<8GiJ{kC4(
za{DI1_&U4AgIC+x<6y44$pOH%oY~AFESJgUOx|R!Kl@YCB3)C=sM#}lCd68t-ikU;
zr!AdDvJB!RY}m)hpHPTIxal^^XG8`BR>v8wHFb=<SiAK%zD|>-a&-Oa_<pxIzC!mG
zxw)yxp6q&OwFeumF4x|ocAF;EbldUKoaT%4BCgo`gWq63g#xGQn&d_tf&5>)09q<n
zZ`v%|<ID|OSgdW?kayuh3-^9M<4&8_#~*Il9^)mxnE!FsZO%>m=f339BdwWkTJEF|
z<?)zFT_|i%#HPpvMUb}V$C0bFm6kAgfKwX|f56&YC{gh?r%u=dYNH)v7~B2L&X#rR
z^)Fs-(*(GX&NQ2>5n$+XOvhiLaZFa+mraAOS|4ynMhg|*8Wog5_M$8Y{bRlM<qX7^
z<P>LHe|?#-pS##f@C4%Oj_XfB;e%WMPDHOaaf38z+2CAd4gT5|L*92omVZj)GSqkv
zm<^=}Os|x*&1a9{^}uvr0W1s|J*DoO8s+}prLXVHFbzREiz;l;o%kdw5;<myH`)@F
z)Zr#+>C4BUWjWl{ufuh&v|k3;xsxPzrbSg2dxwp>e^V{>4wvk5`YA$?L2i$fv}DZN
z4=X78Im+)$%S;$5w}E~Ej>Zu{&ifOC{(y+XasRQ!^-9~D+AK@k3OvcIpZDH**ACzJ
zNrPSwBrH}fkUH<t2Sl@hV=BHPa3s?A^)#bsRq>B~o;a1fk>iswn`tGJT;}$1A6_rF
zXo)@2Qc5hG;&bVADLOE$5DTH~fD)U=6~+Tu%Ve4w`%$YuMhDIrVVqH#T>UsdM_b)&
z%2cF%pRv4%`Q<B1=EfHXhdB-w#G>32zkuZBlV}COEoGq<aLG29zUY&{mX1?t#Cc==
z3n)8$ear==gL?L#;{S{^iKHB1PXX{q)9hTmVPb<6+|?cY0$oBPcS4RpepFJC+hGC2
zWt5@oZvnwE3u!&_tE)35x^<UMe||+$qQIGxQcH@g*Jygc165if*{&DwXP-f@N`MO8
zRc6wy?I$}t4qz`P`>I<jLj-h2@xP7$Q`)vXlwUgLx5@Q!#K~p>j-m%=Sr|WcIm+A1
zq)w@oZ&R{vIcy4_aVWaZ8IN-Su!YiuQ<NNlBgDe}IRgVNUvRGt9_Z6hy_ewiVX^=Z
zA$Rb-4hsy8#))Ii8V&we{`hFyj11K|9C4jqEGA~<TWu(+$Vbom2<o%Ier0?owUmsW
z0B5lA<lU}Hph?Tb$vXUqq6!+zl&IEgs1x+vFGhzWu)(3iN{2zCX-k?wn)NZFPjdnZ
zT9VKb^-eJ#8U@2$4WunHXzCj;FUS~jmc?ua_EfDVi+YF4Lp<t^+t3P|<&E>PJS70J
zM8%nW(M)J&MR5%WV!udjSQQMj4)a5Ea6s}l>1wbN8*q))5!&!?0$-rDU=mTFLs&T1
z6~W<pRS)^20MgxD62vfMSi=a!CeNJXUx5GrJDv9*(VhRq2mUj_+9Jj9T^Zyke#!lL
zFWHNhAj;c)t(y)8!>j$@r*i36D57WO|A78V{lc_2ddWT3-Yb{K>Y3O5S7Hw^$Z@Ur
zrTbNPg%^dl%QY3<h5u52*q^r^8xhEaK!hiY$QnIk_cyF%{lrhaVJe-WfLCiZXa@q|
z=`(4%-{s_4gvudoKwhcIj3lPLVJ5i+Tc>w1%M)Cc+2BB#-9(}D{$tik%Y%A?fe(k?
zBUx9iN^(crF(<*l(Gk=qCBYn3%IuA&f+tU;x9yJlf+RZ?{CQgYnaCIW_Newt?>jn_
zr}zZ`(tAFO;(_*iRe!S59b)&&14(P1sEKws+rJ6Ga#!B~=)3m`nqIGoH=i#hdr<Gv
z+hu35n@_i$nYW7WfnyR#O~Ddf;iOH;OsP?2G|0WbvhPxZP>5-=6!3UNtXZ{b3|<NX
zpbm)9VD}@6r|X|+8ulH-<kRUdwj+A&Y^$%rbbmB@rC|9fgtD03DF7V^@%d6wvsGff
zlhP6T_jBtaOuF>4drOXk!K?<_ATRD~F2;oCI;KswlioVpawSop+o;<Kf7)440d}Ma
zkh$w(o`jjZ=U(2+;LKigp$dx9vEjFA&muw**gC*P7MI`yL_sAAb%Iv+b!9;EH&S`t
zS)e$P!CXz24o{ipDP7Cw3WL9AN<1YGEgmJ)5H#{kN<P&ST)U-qO6V={3apt`X>@;V
zPpF9{z?1s~M93M>{9T>m<Um||>T-B~H}^JyR?Cj#i>gd3+y1E5c?FQ^(J$jU;<W-O
z__khVzdclZz;1AV%#H!Ku|~{V7eJ0r%2YtUU-3P-ea5_@mN&G0Ds?{epl1{O$;?Q1
z1P%PF;0XLPps+(wt<IG^sXi5-KT?hS8|%kjy94q5L%DwbG{Lfs1EoxZ97toWl?crY
ze5P!3bUj>lV?zaLG`$cWIJ^Bc`@XY0Hrt3<ez-`lDQnWw@ewB|pNuRhl5fGOEg1x&
zx<Y6HkcsD^0K5A*iGFJ1<6ibw*>ZyOsQwd>%Flh|=*seGKFYe^ma2Wz7cBTT<Lz(J
zfbuO~VTVU2g$apa8ej?hZ;!F9;no4=d}XafRZ10zA}M6VtL>(!Qil$|>$H(LVUllV
zJ;_eTow#2Ki@%gfv*+97JvP~$E!I`Mm^(137dJQL8(2BAcVK7XNaA;li_gP3L>_=Z
zjbt%ry!t*tg4FY=E>2$X`@=$hedvk-eN{+)7ik_?e4po)EMs?g*u5eO?nm%m6Sq#3
z!FEG_VEUQZb~gW;q9~kBqkk=b24eX!KRkYZ8|qx~o9ww<`<0l3es=N2W@)9vSJGn`
zCfvWs!3en)ulaE~6U&Ut6RSrZn`{?ISD=0M6mAKY9rJofJla+jwa1Kzif&zX9_D#Q
z@`=ON2`a8KvV5TQP%F74#)Sb%Zn&exM*_J?5;|UZz4S3*;H@7U*-G96or<u~-1%;~
zp`2!8a~P?_(JZSHP<T$@Tk=VXo;$aPip}20qMx}nx1S7GtP;eG{>!Apm3D)HqP@pD
z|J;$rDBd8PkdU+fhm6<yV|x1+EZ<EL*}w@vq~4f<Ph>LK^!I9<^gXp8&?cVDplS`r
zS2`UDR|zm>eHM}LAF@U7u6A(8LTOg1!*F&}+j`Ao(v~`}Wi;Uw4p}+wc>5<$k+VCW
zsc1-<{z93r#G>Aon2LXOb7eN7`S3EAA&*qp5H53WmgOxrhM6__o6Km(B+`){2p`FH
z6?oT^)}DlVt=c{JQ6dYst+Z_3=fAGXlw0e|UbpB>5ONi8@UBX3*EA*2@P#Map>Lh@
z5Yvj%f32NqN4_J_z@4U}-!hrva|7CQCiP?qO>-z`c*V$^3ySb6eVCYUOOsQstB0J&
zdpUEaTm!%aBrDhql2xW#E~MC-WA4w-Ry~2VSJEU#=x|orxTlA)W=g*WgQNL4h(`+r
z9e-laAOn2RN|<i2df`CfQvLN+Vf-^)fxQzgTCppmArCJ+U-@5hx9LvuV_$)0L0K_p
z@_dO|;7c|66EnuIaqOOkjXdkJf>|*q-0%?=!Js@u$X1diEV&3DTGjI~#%F)29&=^V
z?%%@@sHc9H>L~}g$G)%kMiYMU9$JOqG~-D;r2vrhlNWIqy*JW8<#L>3q&Iwa3rA_Y
z-9hA^8+HE64|fI56)d)3p$WDYHk%hfTQajP_bmvKJbN%H<~<Ytrcu2AZgTraEhCeN
zg@?g4jt<Yk8;Z-mwQ%MB7h&v7zYC!ISn$`<p7JdKdgTdR@>+VKR@<ECVgFs206>k1
z8o;e6Ft~!1h=Si2e60*Wmh_2>su9(Fiih~%$%n-y#qon<_Dyvl)ujia3@#~dnFtf~
zG@g#vX1QYVg1!0q_+(|V@tCZaY!LxDj!oZOYqs`NlOV=A5Ih!FU)pT!$S#Ptt^i$s
zLK{_hfVzFh6#z(mCE)+sH2oMsgiP_#s11M%&~hBZ3Ea=n5~RJKgmOX#kQE1*QM1;N
z$GPv#8NWXL#!=@g$|*)LWN*T3ziDI~AR1_Izl9ZJhG*}rDrZPR#+#tSGG-)rAOh#!
zC%}Jm#I&ouzSAez_tt(=tz4fy{gIUgc~fGktnYPlN8{<+0;3=~*oB}CZNwIU%UY9l
z%MHldyjGWB;tOxv7VB>xlH&LbN*F<h5-hS3iDyogss9&=GE#&fQJQ_R>nn{K`pdC~
zBN!75+~jQs)my%{M4WBB;925Ms04UG?81?Jv*N@uX4N<W)t<JE>Nvgu^-}LtJ_HX1
zR0@KLrmeS;ZYR{K^ex|+tm&j*c-KZqYbsuwo$Qc6RE9LP+mv8yZ`Gt3zKRqt@Il14
zYhNz9>=Hb!W^9T^At7xjgMFz!2F<k|Ph}G5439WYKnol#mZsA=qij=;_h_3B{OZAl
zs_m7XaZyZ*ZCUR2ZvCRg@l>^kd<E4Cx->VZ&?191R1OEh2%6x;M&#@$Zw#*Y#+PPb
zauz5<2D5UiWA1r`ngj=7`YTT*l1w<)N-u^-=WFLj2TeTnclh_#JYw_rMTTZKYAt)^
z_P-X%ZI2qS_3!qgY5qUaBtk64--H3WL%PfEtXkI(Xk<$V%>F<=RtTLq^mtgh$`%*K
zKqy@2=$mbZi*>DDmsFd%aVHx8HWOvvhWg)@TaE`<0Gtf#xsdsY?9e69ppJYDs%00b
zjgm}F!97%8*PR9jJx-SL)BrP{SHTFB;JCYm+g%M#TXr*(qMO29FGWZ$Kku0xXbDbV
z%r)i}IG4ma3Wx4!S1uS)tZljp{I()ND-hkCW@pj3fux&9I3CV1l&wixI2Upn2(a%$
z2qZjVeU)zyWGvU>+RM%B1;C|S!4S4TTO%os{H=75`uN4A=`?@~io#oIgPZt82ZvcL
z&OtRFoYzfp>_hD-txhvf?bqJepNii=XmYtIV*o-S#Ha(OL(C`pUb@shT<lfV22uEx
zh70kZVI3f)Td~p#SnpTwlD(bTZ`hSQBCd2E9WH>0XSD|mcs83ev3xnl2e^c6L^AwK
zPMm&jnMVu;G=QK1bB%XI;TjEMzET9Xw(RFW!9Z{hYfMV;$Cnhb{4HWb8`SE~a~0W-
z*W6t4`D#~d+E$);NZhNw?uac_f+bOHFK+-YO*2iVWVCRql_`1CP*?oU5t)zEH;nG{
z9~%0zb|XIppf59{`Y^vJha8}!Ty$V}(>5(<4K(uYgro{cZZ{g=lh2+Biuh_6VB;fb
zk){MlWgKNW6=s56zE+sr(;(8xVle+7T}j&!;it<$>VtV6sHngj-dfZ3EnPG@AI8qP
z5gC<*O&lgzz3qshHgq(SC>u<o?gjwKP{(zCI-PVBC9DoKMx%zx>07_ix@E~Djko7!
zC8xm$8|4O<R!@!zA)sp+wxs@$!jD!>j@Irb68xDwqv^xTf)9<te4jH@aiHx_$qo;s
z3IOh@N2#><-3L_5C02~BZc08g_PlX*T;(3zqG_LIP820RCCY(v14gd!Hgep-G8!>M
zSSXMeF+-a%-`GKo#TR3!&#W2+zQ>Ng1#hf-W;s>Z`M9`XH&gCy=*j^471|_x<@`(E
z7$hv3;0Uuv-)|l(P`D#$d4aklmp*yT*MTGwTrBO+>-*f}|5)9L`p_wUK}LtIWh)*c
z8t)mfVSR=V2MGmc3i!%@dr`YvR2!b+5A};Yaqpm#Vs}DfBp59cEO>^z=BMZfblKd~
zgG9Jb<Tcpya7Q08HbaWRGlROwxRM<c_aaEWSr<@tpqa*^J}?&XeS10LX$RuHyOC3I
zMQ8#>nX@IRfj+o9`m-QG=Z~ZUu@F)TN_b|#xdfJE$!_{RO5X%tErrNr$#4LwD&yiD
z+Rx?&R}13nHQ?owhzu?=>lO<@>JmD{Nh}z>b6@OopVulX1E6B{i72DS&57m_@28{K
z0XV#T^}zB|QE*7nmlFBl$Nibj@>?~vX7+_e1e1oUEaj2@FHA^LdNy9yHH;z+vbtIF
zOK!$E9{{?10RVE=&FH5S&QG2>Gom9kc5@Pd(7+vw9E#2Q4Z!vJ^E@cbN;oVg*Rc5<
z&Dl~$Ym^|)wMF8R?l0OiHN~F_ot;yuN~gJ}boS5DvK4U7Jz=i=d$2dwwT6uVd$;u@
z8r0oUN#o%5$X@*gD0FM3C0NjLf!H>#)r)*z{oOW&g_E}CjXJYwfT$^7Tdx;Un@<@~
zq{0*Tejx*j%=$fVU4#npMF-r_wmxLb#L}dA1fNpoWQa6RJj<B_>B<-CXBSSeLueub
z<bG!K(gQ{uJ-MXs<*o{Qd0H4{HJ%7$A|BAQij+{buZsxypq^%S+e;p|)d=!YWqDIb
z%u%M`iOmx{u;$4ZNS7!9PVK8b@)a*-^|h9u5zA_E*)uYQ{jva4Le4^VsaOts8Ap@g
z;24%XOEFtj?Lt%VqtP4_=jwVlCSz?*R%j}CsX;QNkce})QvZ*$@Y4lG{l(6RUHW!=
zEpEEh=e;~)=hY1$C9I9d<ISc4re@3n3YMWe6m$Inl1VRx!x17L{0Sm5&k6O!zI|Rk
z4tR=sD^CH?=($zAIX14+rb1QvSec>Mok4j~4FDb4&E`pspExC)v3Dm4LYNHDHl6?|
z4(Vm>2A7=B>|Vd`MAW3{e5KyE$xC+A{P9)EOHoZe(V8Ql+NB)>(hVe|fl;o{A!hxr
zg9)P-_B(PuDW6e~>2)q>OP^~5;wm%uJ7%L)d~~j2aLXPr->i3+U2vFxH_t5Nzv2j_
zOqoCD_k!OSHpLRRf)eVk8?UMF_G|z&=yzWP{tu&Hj$4xcOmQR6s3Wv}N(hz!)Y*&3
zb9LUw>^)rOt1SgdTDVNyDbNs#KH|v`3I{x&ehY$|M8^BF7_dr5>w>R|`YiQ99>hQ8
zS^gqCtjQHL0jDJdzcW5)Ke%20!ngwJCUqKZKz_r6v~XI$)$i80lkfcqvypgnaxi<J
zw2!NMJIo9NC2aQJkWi-!UEQW7L%TfUVZ^IAp<!N!tdvil6>0aL3M}WPsQ(3sp3~H-
z-tgBHH-1T5V$*+V=Cb$WRLJHMX|j;Bg(8$FudTv$QcKd17^gIwJ*95FV)-x6v1qe0
zpCf!$Xw_q@<Lz!&La_XoA0hnw4#AJ)Ybl08LBJ#F^ZhdjDbgdJJg)%0<+rf`E6-{x
z5A^KzlbVw$N|5DHAV~iUA!dBYpBIOukEQ`)dh_d(bJe1gXo}WXD^0P5RS1T#oAr!~
z$HVKT-wUt?cR5ZPr~tU_dp$jZH^rdvTDZ&sK-w#P+jAILBgM<l<lmVthItk;_^5Vo
z4^Fv9B8ZmrDqP9eiwmT9m)D~kjYu`Zd^cUJ7Zs8N2+ijr;p&(QE3La3k<n9{r>hi9
zRGo1BR5aB2eudhQ{lSi2RI!u1h7|h@35zJKsA_^kK#=WnzP)dB!$GUezF;0ylX=1|
zgIQKlzyOUdSITiN9rxGnDrp4uJ&nbCRDt+Fr7c|tr!1vBf)#NcKmcz%7zV?QD>*M=
zvY2Rjm@{^+M{=$k!D+zS2N$vm4=APd2KSWS8OlmL75eWYZ4rfYxG^WN8BxuJ&v#kI
zlh)vavoMcf-??`MwXDA~85ic;7lEl$ES)sh{V+X%sA|nV%9v4QrM*GFiS=xpcHPDs
z1XtbD8^{b_X4$K|dl}4N0wN}zZJekiU}!+t`T6R37ilQTA*zJAF$mtqWR=P9Mp+p;
z<oW)z-Jetd;MOce9L40Ov~PsEg87hkZ+ro5u@lh+u4~VRXcJnai1OBgql@cL?3ltZ
zfQ}n>S6@~T5|%(vFMAGsxCk8)w1rDr&aXthDj;mY3HH;xwC)EUbdsxJ*uVPaW%72x
z2b~~edrcl85^|`pbcy!07QQf=lPUd>RD7#+!idH|vo(A0pOZ`K*hZExww{^|)3fvx
zDU2}Uh`JM}?0vo;H5St!88Vx4i;|k-)P)~88u*>mj77@a<+ZE?+QzE3SQl6{ysxeA
z%b8PtW*q=<U4sPcW9wXh@^v9!coU7;C0k2}>)RWxF$FCroeJt~jyh&`daI(6&y8P!
zU+bQWXp+xCtFU`7h~~Q0(0D1cQ;ajdEtrt+=54V4UaMU)z0}mX+{7(u)Go7BIOks6
z<4~SGM=sH2xqDL@TrV)VI|syoDcfnk;BqgPWJ&ak)27w;<gB3lg~}V@?Xk=uxHFCx
ze}w(%f^njr|5jMzvsABdYXZ+5_fJ@G&l7ZZu5@RDksDzPF@<y{8yjf5D*$h!P0y0q
ze4*0lCcq*~2S}IZU_yyQ{RpyW?ie_|FbmK{8JCi-*QE)U6t05!3AtV8LW$h~zm)Dq
zl1ATZ5kDwrv~IkC;FMUD4@1tMZ>U7p?#Ynoe!)Mqg=@W;jAzb)ra9;{8EyUe%wRqX
z)UmZg!H^MB!Rnf|Zu7zO%gG(3=rM=P{7emabV8J^_EJK@YbUlHS0F2^MLvP$u9r=Y
zzVa6tu6Y2aQLXb3M^?AkZJsz}X;647*vem<eNwNJzSv)4KcA`sPTH855ZLMXDVrPR
z2IGo!w2SZmX;N4n(5`4{Ou2O8Z|v&YpJP5NSe~}YWDdn1sNU|{OFIXMsoW@_uP7XS
z(myv-#9ZIGKnID+2d0?<PhD$aOYJwOn7-hOaF+MBA(6GR549aG_HL|Ced`tM^^JAu
z8``DqtAyh1hT~uRwuLatn7M)HEctpIh7tEDY@0*PBz<RP?X|2Gfr>*2r4Lcn0TU`!
z_Z3kDzaAiGFbw38Q=0GK8(>WYZ#=~=@M&(QB;xvR7XYN4`OZ{R#RC6A%V_&Irm0O%
znE#SEIYN|M_fJR@Cb}KPNZ1x%*XLT(`{L5Kr1)3ewKPq+w_256G6@-`IIk&?+~fm#
zDFjJ&QwWsT2+2{cdXs)>>oEgI0^48tuq?7-O=F1a%}w<0CwKN78v?RRzaQIc@k33w
zdmFKl0@%?VDLYie_Q6SgCG~ZXb&auUiEA{Dyi0Wk3JtgfP|oA^`z)Df+Lp&Q3)5N|
zUq@f9qFii-GU}#FRZQ0pnrl>_WlCwJ_xBB*vwW(l*DQ1$pvbojsGiiZOSB?kY8}#S
z%SDQtta{(v`ZO(M&nVxi!f$;Ui5G;sehTO->KeoDkVp4?iti@f60Iz<3L@{e6k)oZ
zR_W?JgK0VI6vAKm^pG>=hqI~RKqms8&kc$o>lm}m9ON%MltoZ-ig)lod35f>J&#0&
z7a}_FPLnfy1WCxNlvhF!$|8wb=j^P8!Likg-?Dz+?6|&Bz*ej_sbAM-i$48Zo1GzD
zf}YisE%6wlfAsCqf0A2IpN4ap#joCZMN~$hj@|5Rgq~K%oE^Yq>248mCaO}ez~ZCN
zg}D*=cv#?Xoo&CkyNJ=++C^k@CnYocdEQCr?Byvk%X|;A9FF^tbe95m#EU!rz=p&x
zPc4a0fL@=`;05fq;UaO+1$)Pm>O=UjIQva9W30Qhki(eop$oZ-D{^fN%0&f`Q!LO#
z<&K~xX?yFhqA(Jx0TZJL(|^|2#$W6HT-K8{{X07BaTZW~`<?Uco_;ji9T3F-NM*&_
z=MPSMPAOw&k9|{Qa47>io<-V+G8Xl}Sq{sPG7T@*Wjl3i2z>uy+S2|5N$#URH=x~3
z9Bcb`fNUZgkWJXVVX5D2k*_ss7C4jqFICbr$(x*)QQiEt;Cb*HSuDH_#g1=72uTq?
zw5+8VokGT&pI82`W{6Qz{ccw(?7Ym$;Ds9nTFjr9F!A1ELQZu#0~XBXj6v!%96Hyp
z*b_Tht{lll*0O;JiI&TZgQ9B*hUpHl)5gA8Cq3NJG_cNkni%gU)%pve7TvqFi!Y)x
zt3=ALfapH_*w)isHs%+iPSC}Fm-Jm%T;CB*%M0c*tQvD+S)>pbUqxXtY}PMu_jAt$
zyO2{<-3LX#HCjS=?=2QGAH_C-Bkprms4hI*J-ub^gIaA!V>1(dOrOFm$9)<6g9@)(
zDb*;i7Y<l>LrF*T()qn0FBVnG&KA(mnwBO8`x<r2b)b=JeT>BGKlK7xJ_y%DoC;D;
zx~tD}jDs7_1Pg)PIE&&EFjX#D3f(h{E#i8wZAn8GpM4l9YUR_k-<@b#sEM|p3+n+k
zREIKC8Ql_R7}09~V)031=7&c35^%DlbFz=5fa{_!(Z-t_Be8iZ=H4k)3jSq8J`W&t
zNRJp$SyZLAx=72w*&GqWs}i!46!tuczW@{Zy+Kas1r)dJhIhN=5nf2mPNikfXo`1a
z$h?ws13=+*AM3ue3oKG1Yy_YEJLY9MspS$u2*!aq2G{C5KPco5Slahx?caIK1Qd)^
zn$<a7t@5<O$}jg2g>u_)JY>jv?kRu$is-A<u2eN3PVhx=AFNFU`w~1a-GWpW27hc_
zD@O(@c@SSkIUr)Xc7bt?IG#jmX%2Wy2st5b^?%SvQSFP*si>(!ulg)iRXS<3Yg|~h
zWt{P|u$*PsaY=$Pp8>ZUy6}9zm@;8Z|DC`Ewd^T(5=5jbM8MO7*@$0&_(NaYTLvX=
zfx;rY)NXFwxiWDvES%g+8Kep*`ZmqSE!&^FmP*?DUcJOO%0~<ju*<)_>tT+vz4L{#
zJ`GWKS~m=+UbJOV8FKN?!>@t>j^lqWksYzte0k2K!2<@sh8H}lQY)B-74~(Vr9gQP
z^Ua7<<)oPJ-Y?#Ab*-ngv8r>3o;O^EDBfOn@uadTOI2eA%Gqn92t!SR3QPDig=ZA&
zdrW!F{WR~t$Izxi@|fibHwhXinmVZQw#U*ukRKt6X5n{5ievZsniDGY3G$tHOjh^J
z>z|FHsv1ek25--#^42;A@y;wsPXe;s#O>xj#&>nq>3r*RzqygI+Z4<X<e~MFpZ{(x
zi%3l<It8k1=29ryb4RxxZ-`@==x-<{X2R70w)?_vkJ#>;JD;{A$nt|4mLayeUgaSd
zo1@vI!fHSDU`|H`%s<*4T~#5wH1gE#PrfKK8GP8dNAXwzG*q+&(Y|;RjwyvIOE{63
zUDsvCwUh~;&RQa~*?(>X1&=o;qxK1&%99?PHZ>LOO#-n*iL&@vP_(4pN0O+%G@`ES
zDU4X9w5}rP<}-N>Y3o$ahPu@E@BF=pC2loHa~YRgoCb{3;4(vZMfb^<UrxeV2JH$l
zV@~i&aq6sf{8LJH+eEQwh$fr>XkQPNt?pVj7$9KNN?U9yqX)q<!E>uSKBtpwZ*S(x
zxJKI<!bTpllKuBmaZOs9E8cF!AnNpR8Gv|HWi>n~KZ?hx$_K=7jxb-mFfQ$-0DhW{
zcq)O3Do6hxvY{8X@^e>a04MU8bv;-3fj_qKR8HcrLW#x+p@{-`ga7`n)qhy(e}Mdd
zw!KEwJ@nk%J1>26P6&u*NXv-wsF|k)v`|tvmnldL&m}^fuTCU>gR%d!Gzu}F|AXzd
zPqS%0^z!Lx_L_@*jIwI?tMJ%^9fTrw??p$BeUe;<S(mNKS9l;#P1|>vm*iyUkbCbu
z-&j&_JLf%GCPQQKM-Uk4IdrK|*W6GcJ$J(F%76j?(T)dgOif|NwLP)ejxFyMWR>t}
z^<%YlX^;Cj7qCe*y!O)qe0u)sT<_|QyA)!#s+`t#1|TP5%d^4Fyw^aV*eknYhW42Y
z;Y(1RmR!eI5qVH%)^UClJ&FMx)xK_}4X6ogze75BxW+lEufDN7yfuD)`2cShAx#G4
z2`_Yj{S*}?GClU<0R!{!6x`9<Bgg$kOq!##n5ADX6nd`Gn8WBRNjP3ut+Gp9sly54
z=v5om4}*I8&L+r9EjOMmYx?0Ws?A~69>2o*ptm&NLUAS1wj*gyx*?US)8Xi1k5=4g
zZmcjdKSX&Ei#-OpkXd_CMLYR+66y79>3QH4>$zh>tjr63qaCeeHU`&wjg>#aJ#jeA
z$b7o09_jsP=I-VFOdqjpp%c;475H$O!Ry$&hu!;3GT8Q$FwJ`OSp4-0>`={yojic_
zqwhl^s_!CXJdWwapU-yG?$xtvl$uY}R9A8!*}-P4e%uKf=&1!Rus$;1fTc{y#ti$k
z)VJ4s>EnKRlwW;4kdBsFsk3G<7%Uo|3-3fs2?=VJ86AL&!`O#@G(5l5L$#)g?s;`H
zGdq_H?881D%H@-yj5~J3qCL-9X$8e8yAtVDxbaDWmZ7Ov%pfYz@`DCCq}&tPmq-j*
z%xBlTCD45Z#Y^W8g|*iMW5!+n#V3E<oGdcBhwOlgyJ6*JIjRU;z=$auX+C)Bbd4{c
zR(i?Z_(q}FoSDzNz!Gzyui?x6W9~J6eBS6+V(7~P8(fRM>bmdCg9)x~ZF#OvyCGH1
zhniBNGv%LwjcR|tZe%M}#Y3VAp2q<L;%f_^0zm>>w8K2|?y$`l;X&z|f~U)5R}*{U
z-OD!12umjPifE^k_)W7OGeQDv`s`o3TRqVxZinCH+$eX5U7-@TU$D?}|8*hYBn;36
z3SZcaP_OT79$)<3hrV7F^nbfy{U6uQ1$+hOeHo$jMIPa04B>$53n2uEA?m~_{}Lkp
ix3@g~!yDdv*T^#|y}^7g2>gox&|7IGsd5Q@zyAS9!}oOn

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index 458bc46173..39dc1b16be 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -143,7 +143,7 @@ Select a security recommendation you would like create an exception for, and the
 
 ![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-options.png)
 
-Then choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab. 
+Then choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab.
 
 ### Exception scope
 
@@ -151,16 +151,32 @@ Exceptions can either be created for selected device groups, or for all device g
 
 #### Exception by device group
 
-Apply the exception to all device groups, or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.”
+Apply the exception to all device groups or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.”
+
+![Showing device group dropdown.](images/tvm-exception-device-group-500.png)
+
+##### Filtered
 
 If you have filtered by device group, just your filtered device groups will appear as options.
 
-If your organization has more than 20 device groups, select Edit next to the filtered device.
+![Showing filtered device group dropdown.](images/tvm-exception-device-filter500.png)
 
-A flyout will appear where you can search and choose device groups you want included. Select the check mark icon below Search to check/uncheck all. 
+##### Large number of device groups
+
+If your organization has more than 20 device groups, select **Edit** next to the filtered device group option.
+
+![Showing how to edit large numbers of groups.](images/tvm-exception-edit-groups.png)
+
+A flyout will appear where you can search and choose device groups you want included. Select the check mark icon below Search to check/uncheck all.
+
+![Showing large device group flyout.](images/tvm-exception-device-group-flyout-400.png)
 
 #### Global exceptions
 
+If you have global administrator permissions (called Microsoft Defender ATP administrator), you will be able to create and cancel a global exception. It affects all current and future device groups in your organization. The recommendation state will change from “active” to “full exception.”
+
+![Showing global exception option.](images/tvm-exception-global.png)
+
 Some things to keep in mind:
 
 - If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired.
@@ -209,6 +225,8 @@ The exposed devices (after exceptions) column shows the remaining devices that a
 
 The impact (after exceptions) shows remaining impact to exposure score or secure score after exceptions are applied. Exception justifications that affect the scores include ‘third party control’ and ‘alternate mitigation.’ Other justifications do not reduce the exposure of a device, and so the exposure score and secure score do not change.
 
+![Showing the columns in the table.](images/tvm-after-exceptions-table.png)
+
 ## Report inaccuracy
 
 You can report a false positive when you see any vague, inaccurate, incomplete, or already remediated security recommendation information.

From b966630f283298d169ca1a6caacc13a9a8fc0f02 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Tue, 22 Sep 2020 14:09:51 +0500
Subject: [PATCH 005/209] Update policy-csp-servicecontrolmanager.md

---
 .../client-management/mdm/policy-csp-servicecontrolmanager.md  | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/windows/client-management/mdm/policy-csp-servicecontrolmanager.md b/windows/client-management/mdm/policy-csp-servicecontrolmanager.md
index 762c801e6c..b220e10a02 100644
--- a/windows/client-management/mdm/policy-csp-servicecontrolmanager.md
+++ b/windows/client-management/mdm/policy-csp-servicecontrolmanager.md
@@ -78,6 +78,9 @@ If you enable this policy setting, built-in system services hosted in svchost.ex
 
 This includes a policy requiring all binaries loaded in these processes to be signed by Microsoft, as well as a policy disallowing dynamically-generated code.  
 
+> [!IMPORTANT]
+> Enabling of this policy could cause compatibility issues with third-party software that uses svchost.exe processes (for example, third-party antivirus software).
+
 If you disable or do not configure this policy setting, the stricter security settings will not be applied.
 
 <!--/Description-->

From 92ee7782db94206cd8742cbe64a1bb44bc55c14d Mon Sep 17 00:00:00 2001
From: brbrahm <43386070+brbrahm@users.noreply.github.com>
Date: Wed, 7 Oct 2020 10:41:50 -0700
Subject: [PATCH 006/209] WMI and GP alternative for deploying WDAC multi
 policy

Recommend customers use MDM bridge WMI provider
---
 ...e-windows-defender-application-control-policies.md | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
index bf44f8cd81..99abb1a572 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
@@ -85,17 +85,18 @@ When merging, the policy type and ID of the leftmost/first policy specified is u
 
 ## Deploying multiple policies
 
-In order to deploy multiple WDAC policies, you must either deploy them locally by copying the `*.cip` policy files into the proper folder or by using the ApplicationControl CSP, which is supported by MEM Intune's Custom OMA-URI feature. You cannot use the "Deploy Windows Defender Application Control" group policy setting to deploy multiple CI policies.
+In order to deploy multiple WDAC policies, you must either deploy them locally by copying the `*.cip` policy files into the proper folder or by using the ApplicationControl CSP, which is supported by MEM Intune's Custom OMA-URI feature.
+
+Note that WMI and GP do not currently support multiple policies. Instead customers should use the [ApplicationControl CSP via the MDM Bridge WMI Provider.](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp#powershell-and-wmi-bridge-usage-guidance)
 
 ### Deploying multiple policies locally
 
 In order to deploy policies locally using the new multiple policy format you will need to:
 
-1. Ensure policies are copied to the right location
-   - Policies must be copied to this directory: C:\Windows\System32\CodeIntegrity\CiPolicies\Active
-2. Binary policy files must have the correct name which takes the format {PolicyGUID}.cip
-   - Ensure that the name of the binary policy file is exactly the same as the PolicyID in the policy
+1. Ensure binary policy files have the correct naming format of {PolicyGUID}.cip
+   - Ensure that the name of the binary policy file is exactly the same as the PolicyID GUID in the policy
    - For example, if the policy XML had the ID as `<PolicyID>{A6D7FBBF-9F6B-4072-BF37-693741E1D745}</PolicyID>` then the correct name for the binary policy file would be {A6D7FBBF-9F6B-4072-BF37-693741E1D745}.cip
+2. Copy binary policies to C:\Windows\System32\CodeIntegrity\CiPolicies\Active
 3. Reboot the system
 
 ### Deploying multiple policies via ApplicationControl CSP

From 76f4587c63bcc9439470052d829c6ac7f2b0b6fa Mon Sep 17 00:00:00 2001
From: brbrahm <43386070+brbrahm@users.noreply.github.com>
Date: Wed, 7 Oct 2020 10:47:43 -0700
Subject: [PATCH 007/209] Add warning for MDM WMI Bridge

---
 ...multiple-windows-defender-application-control-policies.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
index 99abb1a572..c3b796cf52 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
@@ -87,8 +87,6 @@ When merging, the policy type and ID of the leftmost/first policy specified is u
 
 In order to deploy multiple WDAC policies, you must either deploy them locally by copying the `*.cip` policy files into the proper folder or by using the ApplicationControl CSP, which is supported by MEM Intune's Custom OMA-URI feature.
 
-Note that WMI and GP do not currently support multiple policies. Instead customers should use the [ApplicationControl CSP via the MDM Bridge WMI Provider.](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp#powershell-and-wmi-bridge-usage-guidance)
-
 ### Deploying multiple policies locally
 
 In order to deploy policies locally using the new multiple policy format you will need to:
@@ -102,3 +100,6 @@ In order to deploy policies locally using the new multiple policy format you wil
 ### Deploying multiple policies via ApplicationControl CSP
 
 Multiple WDAC policies can be managed from an MDM server through ApplicationControl configuration service provider (CSP). The CSP also provides support for rebootless policy deployment. Refer to [ApplicationControl CSP](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp) for more information on deploying multiple policies, optionally using MEM Intune's Custom OMA-URI capability.
+
+> [!NOTE]
+> WMI and GP do not currently support multiple policies. Instead, customers who cannot directly access the MDM stack should use the [ApplicationControl CSP via the MDM Bridge WMI Provider](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp#powershell-and-wmi-bridge-usage-guidance) to manage Multiple Policy Format WDAC policies.
\ No newline at end of file

From 6b71ec0122e682dbce5ea84f33ef3c75373c7206 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 9 Oct 2020 14:55:30 -0700
Subject: [PATCH 008/209] updated text

---
 .../images/tvm-selected-device-groups.png     | Bin 0 -> 6812 bytes
 .../tvm-security-recommendation.md            |  40 +++++++++++-------
 2 files changed, 25 insertions(+), 15 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-selected-device-groups.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-selected-device-groups.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-selected-device-groups.png
new file mode 100644
index 0000000000000000000000000000000000000000..d4f3f506e5c535c50454f5026d49cb40fd13282f
GIT binary patch
literal 6812
zcmchc^;?utw}uf!Qa})CK?Fn)aHt_gkuHg$OBgyFItB?rP^5&B7%7pKl9HD07&@f8
zW9XE#{k}io{B+KBku&hlp1s$4p8HvEsJfc`ZDM+292}h6iV8BCI5;=7z|T^Ix4>6p
zV(xkHjmSws-xUXktmWV5jaY6n2Jj$(o1&^L!4feMwJ_^bPHJi#9C~p@nHMmxr0r>M
zBkhqt4cJ+_1ngS(Hx@3INJ1o)>{G`6;WEa}k;3n}mIhx}dij-0k#)VJs;w$X^234z
z!_`n~$LDDLn;M^=Q`{lbQdxBhIU!%FWgWT^H8!(z?)U8S#>G}$O5O1U#>Bp;97<Vd
zQY24t^Mx17pgdCm3t?00JB6%37D5h|m|PaZK%$QpT!ewIaaqyCfh-9D|5s1>_uq!;
z>S~#o%xoO-@bDCumA&nMdh-Rv{agaIEFvPJTEX2`ouccVjS-b3k@XkN{}!BaUj&Ui
zJ~2_eHlpk7;v$SpE-B#;gyutKvE<XmaQU;js}t=0{z{(vrp;L4bUNAkySp?rr50H8
zm>5dtQ}g59e1=#hS-o+huCA^GL0f*u$zQ%UmPFFZXg0Kgo?d?iLTYMyI>IEovNA!~
z@opC9??~y)n1{1W4=$%f3r*`I<<eiIsrP3`(eTyp6Z@VYLcGyU_3}ze{HcEXMD!82
z2nYyLkQ?jrOfmh01v<(K9ag^(lWl*>O(~vQ5aMi(6~Nmgw{I5?O$A@|C5zYAnTu-2
z#=br5w07H>qN_7`)wJCGK4j<NW5}IkwGTdHg*}8{LsL_wC_`@sbaW`h)t}uOO7V&G
zJ}{ByK%w8JUc>OzqoboGPNoEZ&s0W#`Epl~{x(i#W~PkHrINv)BY8%%gJC<N`T6<U
zzZID+?d_5qPJh+K+&6jx-r-^Q_P%){F!D^1{qGYJXvyA(@Vkyaxg;PL?i5}$hj(=L
zSv5R274z8oD3@-A*)jgNTCB6PjUc_77}L6~ZT{JuuNtG2+_rzo2^MR1en_`9T@&BY
zq0AAw>c?S={(EO>b+y!QT9-3c=@!|cB{qiLZFh#L%BXKQGqa_o?c2~gvwK4CkDQ#>
z7rz|Y*xC7g<@(dfR>@l%8{f^%MMQ~_rqN}xvu{mR;mOO(bEtlGu)+T^Vn<B8|1K^n
z76yYk?M&(S^!5@lLU7S4a^}*wAL=D<HY8Q?J+<Ax+tbrSDCHSf^cTxs<FTC~AC+>r
zG0lKhX?q_^B|_sDDd}_E-(E^iOf}1awCRLp4@INVoyp>!^hPE+I&Hi4@iEcSjhV_q
zy2SSO_Q>O{(5fo$u<q`zE>=-dI&pFFI9_8Vj7c47_g%+HN?MWc?&7S3(qZ6zQ7}=r
zDj%#aE-aXz)~IE_Odr9W+nOqtovih{qJP}kd3b!7;d62y=koI4RSt~nzQ06(A}X79
zziqGK&Qzsy5Q3a(Dc;mC%eu%!fsOJ{#co4K^uq~SMwOP<uy8toHW?qI#WePzgVknl
z`!ko9x;2m*&u#OQLgSFxpg^k<ug(~q*`XZGT<{Too^Mk0h>PnJcwZC@RAFk_%Y0Fi
zZAlZZdrX3axn*ZHEbL%|CoAHIvelwdsGzz!NmRCq*`HzC@rlW?vwXGe#r<V3viJAr
z1~bFH#KkQvEHn+<4kZY0iwgT*xhG#JmY1@nFp9@%=gqVZ4wlG5Hjj`oDAYtHBw;Ow
zGryp~`+Oa%@>OCY=e$bS(vqD(`sG9gf=?+kW~R>PV4s_006Opo)7xt~Ia-h;#T==b
z+cGi|Yn|d7_gE{Xv8(IT=2+3e#`oa6)YQe;P1V!W(_#JV{>GrUmsojH#<lM3RKHIp
zKR@fz@UTIl@x2cWH{SlPsumIuu*YKURMgaj8ySS1c8o-D-o0x^Uo??8%>GW^eU)l;
zyd_#&?FCWy4A|La_UlLsA`tc3V=1-jU0BvNfwbKBUZ<=%+2Ro9xL0lv92Q0bZ;!~M
z(N$3)<?HpiV{L6ciXbc$P}8W{nrUpfAYkzIB`5}!9y0!clxQwCILyh_HLoIyK$?8-
z>Lgo(E0*&v@qKc_*PStAPHt`vWp6-JN*SLL1xvqZSiBM96Q_RQJ8bKY!y{H-ZosqJ
zmm*uBLq#is3o7r&j~^Yqb@<Og4Q~iGuu&4t_+IR9rv+u0sHT1Yj?2Kn03N#$ML<#Q
zFBQ*g!uIs(Pwm?kZ4zY`1_lOQROxbbF#(X#BE$CW+DRa|6(VSl^+EhsuU>&u(yuvo
zjpOqtdG!h-MsQ$aP!Q+qb5df~jLgua+cBOVuq$h6Z!Koyjr7zhw75JaiYO%id^U;5
zM|x80#>6-|JEuj((^R;+PEb-x8#z2-_B(`-k&%V$|8kt}isN|@LZb44Ol@g-IXWgL
zP$y4zK<5Q$n2yTmcLoJby}h>?3=Oxox1yCYc|PeEjk)eGDgOO!b=$6-xXLIpHdg53
zczb!Os+8v|gOR#=!^X(23xpLn;FsehSb6ho+;6#TwPbpuN4&go+T6M^iHTu}i406)
zZY<*BiF~7l%LaB_-LnSoz}d~r_=@@*lis;gKUnYY|I$}iTl<c`==}h*=8!a-$$OS&
zX6fxE|1FvUP&5`6Y}~Wn44Im?oU1)(0U24@2k}rpF>T$vi4ykrRP9lCv<vw_w6<4M
zoe$SEaPAW0>*&NSEiL_IXM68zjoHUON*ye>ALCf$ZyWiN2U<U9YHG5~F^@$`DpkO`
z?{i#Sn{{eYYjZPRz~Q0WjNY*r8jT*GoE&QJ4%;u`Uszn=<mR^LN3X1|qCPvJcO;Sh
z*c6?|!#!=4?wdMci@)7B?+s`~SGsMqz_09izgbyXao!c0KK%5FSdd;d`JAu%!uT;S
zuUvr+91h2OE>A;KeX{mKy2*0?;9#>XiTR6SjIE;WV*;}Gqv(4mq!6_|gT0o+3}<9y
zB<KmE?%B6N+=_}l$pVQ14_+of5%+;q{)oQ|H#Z+=EJ6ESonxi!NBh%)sP_ER{ltGE
zvi<#2<xsNP+SG|Jg;B^OuDluJ-uFaQpOrF!NbhyFGvB#)uMPM!TKohbRBJZqzwS5+
zP-NUXwVkI#R6l?I{8myDW9s*pE*I8yfWcTTv?zwewM_2j=MSBK3J(_)TS-b{^w^#P
zm1Dk=uiukekHgK)t)#4Ux>br1ao@<$IQlWRNhIzZ7<T7QWp(xb%mwq@_I3nNKUUVj
z*xg!V1XHGFXWQKCuI}y$3PuN7Z5~d}xov91zopH!<IxIOk=}TTD+21Iv$OL{Z0tam
zD#N!dZ6DER_ksD`B4r%62yYv9RF2YpX}62d6|2-1PS;#wiFj>|h*HWl-;CpNn6Azo
zpw-gSDlRKo=!o83TiCFxoMV#mOG=lITG-m^**KYLZnwtK%>9y||76AoAr!y3I8p7c
z97fL`A?mX9w205JEkh9nfkKP4+GZquyzE<vE%@o=$^4bAtT-^wE}j(e`QW*_x*j4W
zZEbD!457YitE;o~E4_)N^ny8^n9<|vt?g|(VF!`Y)t<K2%z4*s^OhoDzbRL{xgj#V
zsLs9P<CUJM>xD5>|Frf{lW?Dn$G|5Q6e@dmjKvwI;tC3QB$0<K9AaNDFU2`jv&aR%
znrdh?V&U?+oP4W5ci%hAIGk2F&DZ9d3w|vs;$x_vX@N%_$)^uc`0X%aFkf4<Q{PI@
zPsiOHc9Z=r<@@#1zKc~aa^~|FoZ7lN?7_h!0RdE=ZjrEoj-4GB4X+Uk3roNNP^s#%
z(a}+fqeHK69A;xv41bfgvemv1*d$2#Kf_2|Jh^x89*&;AKDH%Cqt^p!K<}!eBDlW3
zez-fEiWaaov$Vt?o{~zbe|@8{uuyKq*4Y`diur)IceyojxIIY|Dia9fvfP_%yxE(i
zk4RoyvoVLm>7Z{IfBy~w=M8wH7~Xz^f|^><-CgL}Gdw4EcXkLQx~FHBbh6T8o4%^5
z>XelB`D$M>Lj-2L+OZRB*K<@R_&xo*lZS`ZjPk+lX#@!gNnl_gtw?{xfcvtGDBo`p
za$P9&r7s}RgXWX$8wn?a%D}PgKjtaN^FGnvryms-mNBW8SwYkb{jyD0P2mr=PVpYy
zGu|A`Bq_C$B!6v_yY40ivlGIh%pLB3`9*;Z;8QXglbE2s+>3XV5ppkq0B#=fc6WC_
z<|{I+2cG&+o{UNmehVPs(Jx(1&8Fak)#BoE%e8(pcV4%bA!P8+smxrlpAf>177M4@
zv?oh8GsuGoImCb>8>Lv;Zh%~R+PCKubJhlVBRoTYb`;IcS<?u}2J3uI#JZ!H#Q(fr
zmT&;SSRG8iF;q|>)X<1#l<)!~CioIsn4cdGy!ysZi_QhP3is=G^<xo-Zd_g6MC9bw
z9iIb2#`w79^F}mbFc}>y4i68H(~AqJ_vSYUPbd(7RCM%>=gfS3TU%QjZ`)>OQc@&+
z0FO;LR0RhIFD*}}y(D;4TU)#N1f{^{<#SSS00poNup1{WE$w|sh;Zd}SC>+m0nhei
z#VVh_cR0Z8n1s(C<Kv-r<zJO)_;8=Pt^MRMw7|#5mm6_Zj?{&hlp;WR?H%ugp-@`M
zmX3Fckw-hSFj(`fH#s?ZH4xfWgz5-SKwciV@pMhhmoEx_etyX>Mn>0sJz*Dr`IC~9
zbASAh1{!N+6*9{r1xUCLP=sPlid=sW8oW6MUQN|pNo)Fz*y_s4z3usjA+x~Sor{a}
z4eKL;zHZHwQvn-xaCE$#S{3u9C4yo7^n$$Y==Vi6=!ASPA9g^qEx9N&(7&Lo(dSd9
z&Tei?K_@y;TDYTwYVvHszz+++!xQE9kK%ca7yL)_bK@15g>qq^Fab9tM(d?O3mi0F
z>{3xtHSZYL=+#;f0ons3b>pdD(|hD2xq>VM#KgqJ^Ik=MxAC91cH<x4CGP3%;e7H0
zz!VLjoSukNY2gfZNFI!9|G+-$TSrC-l1Pp<nkANQ>@lzy4!&LCzP`TOCfmDGqPsjb
zruBZOWc0&x9>!wTEU3<>0s{Xku04{8U066S6vd$dP9OLX$XFnz+3`PvZ~kI$&x7cr
z^>Gv|2XAe{I2<pZ)uYkgbu;p=?mm2$X|{$Ms(|kUW4U#U{jS6SQ-_9yWrAvmt39Sq
z-?1H$;si(!(v0`jk>wMEvd`h+q`>BGcftyET#tLAaKdTNWP<9TpgXfLgg>AWdlutF
zI7vy#x9dti6liw}0$Kp<TRgX{>*Tqs<m~KRhk@znj9es|6lLe<lNRWN!B`vHMvv1Z
zLe-VIV)@^Cu~fX7UI;6<4~>diJ(=}yZ)>{+IPT3G-o-Y_;3CB0bZOf#8O+PeZ84a}
z#9==`UoQdf2oF-rmd_q4w=*@Mbai)kM_~bsF;Kd?+QAV$SCbF{f%NI=GauiJBlzD-
z{N7(Jb+xrlo}Q1`+0nJN5`#lSogE!4oHkbJG!Ykz_JwZ@U25s!Lo$;8GPI__;P>r`
zKjW{#i4C88&(sPH&(z6P&xN@gB=e)gu~ZySkv+7mtgPduK2T@p;@TQJcE>+uW=>S7
zJ$pV)>Sb!V_HXK(HhDSMf)+rI034+h8cVJX^~jd@J<A<wX>G%uTUjwFvesfS)WQn^
zb*HS7DD3FuvD2~PsS9zDc^xE`>U*wOcLd|2X7<0l^HBaKzwfzeXIB?;j>#rchV=zk
zZcXAZVPO&Rv08Z+2&8fEi;VK{OuMpbogM9jqsqlG)7n%nmA7|=A`tfKTA!LEp3sS&
zp72P|SHHP+3)KxYPuMV>ohx$4Y7NNcnE%8;ny-(Gt810Vwn5$Lj=z#J2WlW!OLf{v
zwW<r`%ig&8rKOf{FM>LHd)Y<Lh@Fce9m_7a&d!8<iiLjtXZwbh-@IaH7excr7V9P^
ziDi5AsKUm_<M>!aR5Uu?GchBh1=%eiAW#+Uj0bkMxk1?xS0@*ivzv(P#UoVSxlc??
zyfN}hS{fH<l$*1A0Tk8P)D$@1{Gs%LNCMdPZv!?TLnGgmkkZi5EV+n!d+vw-O<A?D
zMx~}kfsCGZlsmQwtW;vz(vp-(IA3<xtTH-9?Q+@6!NHM^-@+!@5?Pm0EA9;zjv{;Z
zf*X~aoXm86y20I-BssQ*VL<Q}Rip$5<0I<I0|l%x#fVwIYPa?M261)n$B&~O4J%@j
zlU0GCsS7Ol%{O@;?@Z$jyJ0~lEB;m7h`}%iNY;2BT&)j<#JvNY#LXRMEbghPtzGYK
zoCmU}7ZMo*5^=m~zL1+^+RAt5t#OTJqJ_1!j<o?Hs`vHh?eR&HKBJ#GK_ouKnqEu$
zo@CX-SYL1yDYAeuK}e+meJRi(y~%OltDQj4)u$z~pf!mmYOB<0Re_defCb~cEnT<Q
zEHWuT^W_X-G0c8*7J7Ph?tr&Grl&sy2IKIjEVoZE9}Ie=Pj-u3>vcF#^Sh=)e?)yZ
z1R)TJ#Ic@#ZMaudV6ppT%;HFbNgZ;2V?zn>((F{J>3^mN#i(J9TTd7k=H@_<euYC(
z;w=EK8v_3t8{4XDdKCl+C4}G>eP8UKn?`zi9icy|fB=k2q^5js0Jf9(1cBL^Hmaos
zdj!od^}l|GgZqJC5YQpWa5TJ0*(D`|KU37Q1=x173|4U>Be&P5ssx~=B{}&ylVZJ~
zYsI*_oZbR&0_kiijBgaU&f4s3yVF1i2J?t@K^JH{_5e}IZe*a@<S9><Uh88vw0UF{
z8MT^DKBjJ>)0U%=?o^LZ(zlew2bWy~R|hYWI29jf=Pq7Rb@JIjUtd#Q{ka?Lu9cix
zcyDiAa7OG29L6Qo*vLRgHq$@n0t_wCs!!19ECqRP3r1l?BqZ?VF3;2bZaya$kF3g^
zkASX0ivQKQzmxol`u_bsjMQ~_Vxl;IRnOB`ZmtTwFuG8gf5E?_qw<BG9xdW`F)0XX
zb#-{4W4&Fr^qRw1K+$54_g7rrO3c134ejs0B4rRxT1M23d`|#cmH>g@dXNY$1<}Q0
zXX;%<#BE?jV6qqbX1bc;s1O%Wt<_EZJIu`T;OK_3uc-|U4Tm@EfXjL<glaH~x>WXw
zO;@`w#s-s|U3?W{6rt$yob|O%pt_hu(20nN@poW~`ozjRdBKk2nCMr27QXFvwPWot
z{cFifsI9d%c*1pM??lKRWCgbC%T@9amk=_hkktBmGu}eTPLyxs<r&E6Ae^v!`cV1(
z{o9iw+1@W*q}l+|z}9R<RP*fpEJs7Y{hzRlj|4??#=#5_QKV;<;1`EN;WdDq4e>DQ
zeL|9~)=n;U*{~0dUz{2FH|yG-GHQNF^H46*!6g+O_4-5}4P;<oX{uV=S|ao3&(CKE
zrglz}%*@OtU!`W9{6?RBkXq?1cH0`?;~^_hYhTxTG;!IRh3v+~4SDK1x`i}8OERpe
zbXg{ThIi{VV(BG)8`1`KEGZ$;QR$rC8NG^Z>{zZXb;;C74><vw3Lp5cdv-Kts-Uc#
zURHM3)s^J@aJ_jAl1?Y(C!Ks@0Z;?{HTB;hW@|9w%gD(12IF!D|JFBErGnm9DLpuU
z>+3sF>d7}*fmrQ{l8TA*U<#Ig7ZpXWm95%3d2uagv&*yle9aGp^2c0UO_<qK=fxC$
ziL{5P&IB-Tv2iyb^Y=;E-*<V!!vmteo`C^9Q>h9Ed}oTrX??Bfczd#=rzgX>#^Z_c
zITYwKwynfcZmi(L2ZBwg!&8Z)bRAtV2}ueLyLX3)$(RqV#75Z`mHIsDzU25XcW$Yx
zLxEh~B69=+^YP9@w3wq^U85uz&Yho}KqM&NUJnVVLjJ4vtkDWyU=%ezDZY2qHdn(p
zl)EybOC#Vs$oA~|QXqY^EO-3I`SEu5(qk=JAv?F^-2xfb`J$n0_#3mnlxd%i?wW|8
zAUqNpo~Eg(rhXFpj+}w?ggb&kbGI236crl*vaSzVKi#fcCAA!mT$%0ad;rFT5pqFb
z{=nClXg#cD9v2r!$|M#JrcWyX%-uFedz~1Qlaj!zmCX|gfp*HywywK!SQEVr`ImIO
z8Yr4D$;<yXXxT+Vq8hS{w%$8no|+5Lerv>dc6Qd=M`?RI^tTX{G-7zLVlOcfEhIYr
zfY2XCy}X=nP#&|lw<k4Bf>Ax&F@VR$efhbtO%2!&yBu#iil%Z5?~Y&e_FNVR)5xXi
zkzMG;w}9gP{Wqm<>zWSv1!t$ISE@7ozBxs6zyZ_2@yK0&l;OJck98La1AhG45f1ly
zav&A^-O&*EXQlT6#|JVdJC~iED|#f^>|G#t?NLmRBzYoMQ&S!HWr)Fy7){*N4Aa(b
zJ$9U|jQL`rKmpthTxxIr19J>;L=Yz5ylJavyTWvhc~S^i^~^QA!{b5v=csTjmS_4e
z9+F?1_n=gx49jG|7!C}FEJ2NO_|$J){T195pnmWFq3lpl*g-F<stSK+=grc}iYC(Y
zJRTGh2@UU$gPRzCE<lQb_<W_W8@r>#?tWYGJFD9JaPhGQ+~Ro6_74#Mp1|A;m>`gW
zjI1oy`0n-T8YqbFW=$=j*SptJ3H?ZNcN`^(oAXk^mDc|s_elQN`!Sb%0pDj^&2g^&
Q-EP8BlvR@{lztufKl~JZ-v9sr

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index afd2f918cb..2a5e336617 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -134,11 +134,9 @@ If you want to check how the ticket shows up in Intune, see [Use Intune to remed
 
 ## File for exception
 
-As an alternative to a remediation request, you can create exceptions for recommendations. Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md)
+As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md). If your organization has device groups, you will now be able to scope the exception to specific device groups.
 
-If your organization has device groups, you will now be able to scope the exception to specific groups. If you have global administrator permission (called Microsoft Defender ATP administrator), then you can choose to set the exception for all current and future device groups.  
-
-When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state will change to **Full exception** or **Partial exception (by device group)**.
+When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state will change to **Full exception** or **Partial exception** (by device group).
 
 ### How to create an exception
 
@@ -146,7 +144,7 @@ Select a security recommendation you would like create an exception for, and the
 
 ![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-options.png)
 
-Then choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab.
+Choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab.
 
 ### Exception scope
 
@@ -154,13 +152,19 @@ Exceptions can either be created for selected device groups, or for all device g
 
 #### Exception by device group
 
-Apply the exception to all device groups or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.”
+Apply the exception to all device groups or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.” The state will change to “full exception” if you select all the device groups.
 
 ![Showing device group dropdown.](images/tvm-exception-device-group-500.png)
 
 ##### Filtered
 
-If you have filtered by device group, just your filtered device groups will appear as options.
+If you have filtered by device group on any of the threat and vulnerability management pages, only your filtered device groups will appear as options.
+
+Button to filter by device group on any of the threat and vulnerability management pages: 
+
+![Showing selected device groups filter.](images/tvm-selected-device-groups.png)
+
+Exception view with filtered device groups:
 
 ![Showing filtered device group dropdown.](images/tvm-exception-device-filter500.png)
 
@@ -176,13 +180,13 @@ A flyout will appear where you can search and choose device groups you want incl
 
 #### Global exceptions
 
-If you have global administrator permissions (called Microsoft Defender ATP administrator), you will be able to create and cancel a global exception. It affects all current and future device groups in your organization. The recommendation state will change from “active” to “full exception.”
+If you have global administrator permissions (called Microsoft Defender ATP administrator), you will be able to create and cancel a global exception. It affects **all** current and future device groups in your organization, and only a user with similar permission would be able to change it. The recommendation state will change from “active” to “full exception.”
 
 ![Showing global exception option.](images/tvm-exception-global.png)
 
 Some things to keep in mind:
 
-- If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired.
+- If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired or been cancelled. After that point, the new device group exceptions will go into effect until they expire.
 - If a recommendation already has exceptions for specific device groups and a global exception is created, then the device group exception will be suspended until it expires or the global exception is cancelled before it expires.
 
 ### Justification
@@ -192,21 +196,27 @@ Select your justification for the exception you need to file instead of remediat
 The following list details the justifications behind the exception options:
 
 - **Third party control** - A third party product or software already addresses this recommendation
-        - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
+        - Choosing this justification type will lower your exposure score and increase your secure score because your risk is reduced
 - **Alternate mitigation** - An internal tool already addresses this recommendation
-        - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
+        - Choosing this justification type will lower your exposure score and increase your secure score because your risk is reduced
 - **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
 - **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
 
+### View all exceptions
+
+Navigate to the **Exceptions** tab in the **Remediation** page.
+
+![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
+
+Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can Export. You can also view the related recommendation or cancel the exception.
+
 ### How to cancel an exception
 
 To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception.
 
-![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
-
 #### Cancel the exception for a specific device group
 
-If the exception is per device group, then you will need to select a specific device group to cancel the exception for.  
+If the exception is per device group, then you will need to select the specific device group to cancel the exception for it. 
 
 ![Showing how to select a specific device group.](images/tvm-exception-device-group-hover.png)
 
@@ -214,7 +224,7 @@ A flyout will appear for the device group, and you can select **Cancel exception
 
 #### Cancel a global exception
 
-If it is a global exception, select an exception from the list and then select Cancel exception from the flyout.
+If it is a global exception, select an exception from the list and then select **Cancel exception** from the flyout.
 
 ![Showing how to cancel the exception for a global exception.](images/tvm-exception-cancel-global-400.png)
 

From cb04295981d407c3871a7c0bc621fd85a5e50a93 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 12 Oct 2020 14:03:39 +0530
Subject: [PATCH 009/209] New_4490409

Created new topic "Schedule scans with Microsoft Defender ATP for Linux"
---
 images/linux-mdatp.png                        | Bin 0 -> 5634 bytes
 .../linux-schedule-scan-atp.md                | 247 ++++++++++++++++++
 2 files changed, 247 insertions(+)
 create mode 100644 images/linux-mdatp.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md

diff --git a/images/linux-mdatp.png b/images/linux-mdatp.png
new file mode 100644
index 0000000000000000000000000000000000000000..f8c9c07b16906f1465cf3b97f50b71ab49b3f10f
GIT binary patch
literal 5634
zcmV+d7X9goP)<h;3K|Lk000e1NJLTq00KGy003SH0{{R39c)gQ00004XF*Lt006O%
z3;baP00009a7bBm000@*000@*0T|KB?EnA*B2Y|JMF0Q*001ii0RaL60s{jB1Ox;H
z1qB8M1_%fU2?+@b3JMGi3=Itp4-XFz5D*a&5fTy-6B82@6ciN|6&Dv585tQFIZ_%L
z8XFrM92^`S9UUPdAtE9oBqSsyB_$~-DJm)|D=RB2MO!QY04*&oE-o%FFE24MF)}hT
zGcz+ZG&D6eH8wUjH#avqIXO8}XE{=6IyyQ#J3Bl)JU>4_KtMo6D;h>!XGcdzOG`^k
zOiWEpO;Au!Qc_Y=Q&Ut_R8>_~R#sM5S65hASXo(FT3T9NU0q&YUSD5dU`H%sVP0cl
zUt?lmV`F1vV_;-sVPs@vWn^MyWn*S#V`^$@Yinz4D*$Y4Yi(_8Zf$LDZf<XHZ*XvM
zb#--ic6N7ncX)VsdwY9)e0+a@e}I61gM)*Gg@uNOhKPuWiHV7dii(eqkC0FRkdTm)
zPymvWl9iQ}mX?;6mzS8Bn3<WGnwpxMo12`RoSmJWo}QkdprE0lp`@gwrKP2(r>Cf>
zsHv%`sj8}~s;R1~s;jH3tgNi9t*x%EuCcMPvT!c5uc@=Mv$V0QwX?0YwY9gjuDG_a
zxwWynwz9gov%9&pytuTyyu7`;w!XTyzP+EnySKl;zrnq^!NI}8!otPR-^S11#?ar!
z(BR69Ps+im%gM*g%gN2KbIr}n&d$!y&dt!!(9zJ((b3V;($dq@)6~?|)z#J4*VozE
z+1uOO-QC?QUjx<v026jeL_t(|+U=eBV;e^m#|Jr4s>qgHpeUs%xPU|Dwm@VT8WkMH
z1sv|n;!?0$6QYEo($unvF(!sB4flQD_kES)|6}g+&1khckeq!#B<tBZ-t2z0J9_%;
zTl9<6QcGkgJp`!@Af5j{cM0W-#Byk+fd4DZAY!77Y~}es2xVm%uE%$XdZ6XpUi21j
zf2swvW%P2-PE<DrgT~OkSM^3V-`mB6bf(YpjaC&EyOwlPOQqA(a<$Io`ucuzVd~Gp
zv6)ONo$=ag3tM^mKfWi9A4{b(sfO1p*$MXU_)IFDNwvjpcX4vPJ3gIvtlL96l_;vD
z>)KICXQ7TQ&XThP)Wc;Zv!q&&+aEYaE$3Yv*O^t}F>qNeS0#JZjH>l!6g891ZE)|2
z&(%<am)6(bbT>koDV0t=I@oGeW3(u59XMZz?N4=fvE9K-*xhEbMQmxUTlDP0-^OXr
zQ41P_l(qL(+MQLRm=^W4A77xkCGmdV3?pn{cLTb}R6h2V{Z}D0Ww$L&I^NS|pS^A8
z@Y-t$9&Twxtwc@*d?{S()>zNn4Py+l7yCl12se1W#(pc=+>&@dZxw9@rE>x;J$raR
z{*q4XWNt6%*xz7ACmkI9&H1H6_GVS2SC>wHePX3EgO+X)=}hkpD<B;$g2HbDIF{R5
zB|F%yf$k;o-7?;+_LL6okKP`|mTHT)I^yQ(*5l@pj(c~L(m|y%<N=LI(|^?5oY9;X
z<@ny0nRIr85vZkG(F4=FO!iBMEl7FXwtBg<zE4g_H;Ov-dME1OHQ_>&u61a97nfbG
zl5<ufdt2~QSJZ>I>X)Pab-Y}K_R0?IGOu)aJ!AQ+dAhCCCFTb8Z2HpNU+?L?e$+Oj
zPB8AhbnBT1Ge=N5`1F@6m6bid<XmM(8!uPeQPl3xW@4F4F9GC=fX^8&i(u*SYZAU<
z;jWsMN~O)4iE9Y=MO|0&4Z6x@*Elq{ve&N0S^mm_?0Tv{B^_;U!1aumQ4d<tZX-`-
z`7|w~cO&(Wx?z!{c0*K|-LO2xdx_Dq`;Vw}8Z(8h{qD|9aZrVHh&U?s<kDd$WWP(S
z5ta^F<!*`fRBq+w&LTo_Z&>OUXH1IsXU+)ql8)-C(QSmKGgEk+A2q#-vW+gAc?Pd>
zD!0Dy;8DC`<qOvi)*0R~0_m(%f+62aI{Ebj@hz^lw{uT+Q0a*N5=#f;7h&lXu9BnH
z^-71K8)W7)=#^YLnIk40@W{rK4tz5)q+^~CuXIqULT^)^y#eXu8)ZN`qQAt_A!R}7
z(7jF-$c~}=o_*$lR60^R{>Uts4vzVX^(hIqTGCN_aT#8GvQ=}nf9Vvr>H5^Dr~2zt
zI?B_qbcpw{rE?rh=kNitFO!*0>FljkO7I;EFDff%FX3gL+A^e5T8pB!k|rHm4_lx=
zyg2Txsx3o0RTdG3>j~)?Wnfg7E$yLtR?pVl!Y%M}I%+RwEe|wt2=6yUe`Iev<mstL
z55D;B7h>T|r*vvv6@_(I%H8g@LW3-3#TJj-F4pj$sx7a=>V^B0E!?&=I_>P0{m~)K
zUO>~l+KZySn%@I!Zg9_{49^_bD_Xs5ko7M82YbIQ%5c2~+Y$D3?^E4Rp3B{lolfcG
zLcFcP<<c!4x6S4V*xQ3X2K!UQZ<q&mwouMxi9yr6T8W~SoZka$Zg9^dq?u35&CQig
z5L$35rE{ch;-QO~<Hx3Vt#hQ!g+eCDGV;4sDxK8&vSU+8wWrdVgu4|=rIXt2WT|vg
z8&o=+<Q44i0#fWRjlJ?ns{H0F7-7v!B-hUu_rHXtqs8qnUOh73QhNS}Af0k^mx2j6
zLK?9x1vL;fqHG7|C3Jy})N6IjUouK-dn<Fp`r=HzYUE=nC+4`-cKVdWP^44b+HY`v
zSN|Of2_7%nD$H2Y*{hM0UK4>@{8Ka!^0Je?ez0?MCC=x+_cKzte0)|l{<xDA>zU>U
zhr0*sdCu>`(!sj0q_dJE2R|nQwHSaYXkQiZpZDzS)na(i`^n5&BffOvkDET5H5}<g
zir<B$gL&Is{p@8I=h(rYt5oJR?2a1!QIX#9R&|CMqI(6`>~P2m*I4bebm@3`WyIYO
z<LU%)BX4-1ODEJ{YO$q*s8%|XFP74|+yuZa^|>txa+yC~XUdK-%%oGB?j_4rn`_pY
zUW5c{A*AEwmBk8-j~nKnmG|NPQtMMXyY#sL<Mh|b!);#al-3Tm45$mY<;*c|tCrIm
zhs@|+)r-#l3KE*w90$B4Bh!U>WqVxh>Zubsa<4WnFN69^txxH+2vM3hrGr_61D|x%
z3RystxGiCh4_I5q^<XnOWDZyu(m{mj-I7eN;E*Bd7`(EQ4j<Pe9qEBKt}Ju=ORZn&
zkh9mYq=U<R(orkq21m7VTf!V~S<*2%WR57<(orNdk{mKD9gSC3(&6KJq$54h#+7Am
zf2qZmPIc9@Os*r~OAb5u{6dfKGmX4>K*Ve-rK8K!>P1OMf9`Iz!+1Q253U*y2P$6K
zS?hSDQ%Bx$q5e|qEgil-z1-?wI^y6jG*w72ARUA5b$Y4tB{uz2z{pZM*gt(CtnteI
zNQXzo?Qx<0Qi~By#-DFV-Wq(dc&-h2rhpO2e4$xsMq%mTZ}$$}t9pTG;o`Qq1ke_8
zF$?g@0qM|sE~N~Q8zP8PbEWg~_Uk3dOUPTBFXq`L__9_->NHlDnu;c?7COUh(!B+v
z7l;-vTw7HAb>(6f;+36oEl!#*yA8rQ#6PDN|EeQMUP9j5d@;{1VPziHTQF16WYt1v
zm?64XCx~rYc&3n5{mBR3KwjAy7tXJ25Y8d~Iki5d6U#_!m|48vBFAH4uULNN?WxGG
zoayzqu<4VILM>_&^x+J9b#(G8PxV!2I&Hf1D`!&aq!wQ-8RH%`p)yLPGl|N{D4`fD
zn~6%WEWezmHc{Ha61mg9(%`KL`f?(#I)mjo9>hw0ueif426$Xg<CS}k;pUDGwTMqb
zvy05kadhh8JIxL=$Iy!(p1-5#mxgngdKt&X>6h64^N(g_pghL|DQ7Ki=G2%ilGA^f
z&)zzq89RE70pwS9vLzcvNa&^b7aaWm-H$%?eEarPdgIeC=y}WPm8E&8()st_o6$hY
zYWw>tZC-S}d3|!ei?h|ju9y6M5DYh|#~1^M69Fl2^|qD6c+!z}{?P3YDg$hDJkt3U
zwtxNg!()_Atr1T;Ry}VEyI%6Q&@kMj9%GDtq*J4bQ;w)~p8NBMBKGT`DV<f78F?sW
zYzHBYHA)%Ckqp)Y@)C=BP!8vCo@026esapCIAiGfm08AU-ooInd0SmNYP2`t;P))<
zFTa6XY|1j`^M>+(mYqg!nMF~vvgHiVmrA!rE}eh=@q<`8m@l>vQk+NFVRZ*7Lr%tH
zC`U3}56Vj{>M8yi%HiBA&#|^eJD}0&;20vmvZAQN^H4V|p9ijgcJ}3a$?_MMT_j_i
zdxF(l))&XL?1{_EB)M4U0^1t7bpH1H4`6P1&3Wdb(qusKVs;p1#29I8Fv4bLKqE7<
z4tuysDvf$h4regWF~Bt&xtY~tf`Kt;wm05Pqp0N#OV1lPw{nAXBTPCfwcz~q=t2hn
zd4XOfb{n&#O#DgO%9|6*zD#zAvf_1m{I2NtC6a#bG`aMwW@LY3kj`Iz_m<DQPg-Gs
zVV?oT227E-45^IAIwNdK$E?>&I$AwDB_^2X7~q<nF>L8LV^CyGFt>`LhNP2Q`RvXa
z6hk^KnoJIoj>x`jNoQZ=TvoQRzctTRdEum&LzT{-K5^Hf`+O$`7}gn3Y`_$W%aF==
ztTV!pbb!prpmel)J*AT`<{_@Rr*xb#lyvmW$e?s^+m~cxN{8iPcBF&HxHyl;u%vTw
zUNYA5y7T7Gbh~H9ES*2R{6(L0pDIU^92{a9y?+^uFd!XSuZMK>dOf9stoP;Ud6NUu
zamP^7!KYBBw}qsm$m$r<L3FPp9a>hrZcFC^APYRB8|~%HSf%qN^cwKXd6m8Dt~#7D
zh5Z_gu$d#7GQzT+Uph`bk95pD#{kzHkd9}JfOP0+;>4XaFy}<lVcC~W>5ww^CqKF@
zdX5*-Z2i2P8K-ofeBSF?qvvuJX>3ryPLAYa7pm7%nTL4`)t@09hdGAw979_MF)hY;
z+8u*3)>fuv)k5V+E?(Cjt`J^r$Z^RQUH)bluSD%LS-#XI%iqo_5yq9hhw#>{$i93U
znPsHjdG)oQv|XZQCl;@aM>@a8_9S}s7`R+T8k-cbog*2p*NP6T76!Qt=5TgNXgFUp
zKuib6Xz+Z<jG``zT+cjP@+SARa8(Ox*HnIGZHq2{3s+ShX14c{jOdSS(d^4wMrK~7
z*E^%PCH<)!&Lfu2Z_vxez~w5^*rb5%9LaFKR<vccFvw*vhjTd3aj0H+3@FpGn#X2@
zzv)=>@Q~1S`3w68WnYH!Nvr6&K99Uhl8;6@zkUB*Xwq#gzmW{Z;@v4o3|TC0rqqaZ
ze*UA^PPmsU(u<CWr$>O8Cer!Y58gN7UeaeCCg~xJA$Tf&o0@9r{N%guMX9BhKsrDD
z&U?}Wky;Yz{P>&iN)JS8Nu=|`Z@d#^lZVeM`}tk+7@ihEi%IhK%?J-`9+rQm_aUp2
z=M1a<%43?*Ssh>Y(98?x>-AGTr1QP6y&YhaW4sKy?<4Lfeof9SE?*2Y!o`tGr(%)D
z)O+XPmn-(6!;#}od+(t(jTgf+di=ot!XBoc6GjjYA2WcB=rPx!vsdseGhyj``>SsQ
ze#7EfBZe7J33AB#Kt8_MWrVu`=s9}nxc))W9E?E}%~yxuNN-I<oqaQMVm&dj(!R`!
zH5*EjcHd!7>3r+UZv~{ovqp?XI(BAcA7AV;!v7!Xxc))XAvqRJUwBMfi`v)hp9{t#
z9V^zHSUUI-K9EgDTDCV~@!4cM3$jD}YL!`L<X!P(cvZG=IN!vKFyxi(AKZfGT&DRl
z=syU|^~@*>i^X;_ySl-h4#9{C+DG|5HX|Y(mq^wbW-B_x_AZmX%Na!}>t*Iy6+=pz
z`EVDAF$w9YdX%STo-*lt|LgAn*<_UuSzG4C;*g;%$QJQyR;Fk~M~nvKQWo{_WhMzD
zY<UIy7iys>3+~^N>7PScc#fYtb9|YxX2ggJP9&=t`H5s)Mz)&!7x@;WlyzR&9QWK4
z(PJldn)$GE@za;?1*JoJxj^fklv`3dG!3Q0CPSZ^xE!*cgV^ME-J6M)8ChQA?DwXt
zdg`?%jEd+2j4&I+MsRem;4IB<3-+$^Z3ECz%Vhp1?FFM2Pzp=JLU^w`j9kWJh#5UZ
zIS(owmq>;XE?(InlIO20>c>m&;5(GSS;@T$|1-O>(>x7HhmY|Q+~O(480pe+*ktF8
zA*de?S+Ku0zw1cH%#3WL;Wo+?*K8nHU4RkxNyj0Qk?CJT>G0DULC<#*wAcqfaB`WP
z3&PygG2|;w4MZddq@(r{!a13AGVX#WwsdSZ*?D6K>W4!X?5~jp8Iq2f8QCu##Wg$9
zfyaQPV-d;7^lt>xA^5WI2d&x-N-jgvfr#W-(jkQN*rnsJ$<7LyuT<l4$Oijc?0ThR
zWk&W&N9USt>8KOjOF9;jY=~n}=|DHEvUr9aTp=?y5Ry(&!%zE?4wB^Z7^UNUIXANm
zt7vFE4%uLTb?JC`<*;;2uDPdl6p?Jq$RUy$`#Y#~1d;46lNa!#d8NP#S)Tr$(lMxK
zM><s!3?7zrO6NrkIi7S{U=CvKWgLBm4S+1jNaJ_q7~ATDs?o=s<kiz=OGdaGml4+b
zgS~S6gBR9X&SfzM$UnO$31`k|%zBQHBA1nP<cv<|0V0`n-(KS6vbGAZNFrGg&P$wJ
z4oPQLuXjj$rmVA!=9DfRMvtDt{q0<0^=8SISiDQ=z&VJ!>SY}LnwtfgM`5ioKweqn
ziyJ)qvX2oiNJiKmL#LTRuN?o>KSm3cb6Jex^3Na-9KwSOSI?Lc<}<Zzf*=bH86uJy
z_54W23=1nF*(IDe0Iz5?kX~W*dWv;^1@?t*oZA+Ax4UXfEZ&uLz#PQIqVu3w{BUJ4
zz}BiUKweoRdGkE`a{r95PBVjEIsWAVrq{^1EXDx&XQ-|J&<#R8Lo@Ob*sfPpNmM#;
z#%LKS_wdx)wsel34eb|{iOIPv?mQ$I%=1Lg#{3{_E!a&A{N<r{FU#&)=g0|Xcr-JK
zvQNS*M@R^`^T<gKN$@<;C*!tNEvg?)ng@f%mDh39`DjaLcr<gFzRh$3X0*}AWhP{2
zH(RZQ*>?<{`sm)U!oPH<Hn80u(pgO3u9r$DnWgVEAEk5_;&R9!J?pT<gK^DahMBz(
z8~J!@!T!n_RqObt{q*%BBa=?ugJHSLMwbV6KGg$q%>llcKo_Lvs0EEd%4EcvgJ2_I
ztW&e36Bo<`;v9?an}6#AgjNE+C}J9Vtt5{%ix{%{g^OSSt@Lb9pmehC`^HBk9Yst-
z(y`cIT{`*oR63)T4##gfja#<(U3D9Pauur<dah7!f5sM^85v@UsRiDHY%5r#-72Lw
ctfAWf03;rIZBhViga7~l07*qoM6N<$f)nxr0RR91

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
new file mode 100644
index 0000000000..8515254bac
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -0,0 +1,247 @@
+---
+title: How to schedule scans with MDATP for Linux
+description: Learn how to schedule an automatic scanning time for Microsoft Defender ATP in Linux to better protect your organization's assets.
+keywords: microsoft, defender, atp, linux, scans, antivirus
+search.product: eADQiWindows 10XVcnh
+search.appverid: met150
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: dansimp
+author: dansimp
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance
+ms.topic: conceptual
+---
+
+# Schedule scans with Microsoft Defender ATP for Linux
+
+For the command line to be able to run a scan on MDATP for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
+
+Linux (and Unix) have the tool called **crontab** (similar to Task Scheduler) to be able to run scheduled tasks.
+
+## Pre-requisite
+
+> [!NOTE]
+> To get a list of all the time zones, run the following command: 
+> timedatectl list-timezones
+
+> Examples for timezones:
+> America/Los_Angeles
+> America/New_York
+> America/Chicago
+> America/Denver
+
+## To set the Cron job
+
+**To backup crontab entries:**
+
+sudo crontab -l > /var/tmp/cron_backup_200919.dat
+
+> [!NOTE]
+> Where 200919 == YRMMDD
+
+> TIP: 
+> Do this before you edit or remove.
+> To edit the crontab and add a new job as a root user:
+> sudo crontab -e
+
+> [!NOTE]
+> The default editor is VIM
+
+You might see:
+
+0 * * * * /etc/opt/microsoft/mdatp/logrorate.sh
+
+Press “Insert”
+
+Add the following entries:
+
+CRON_TZ=America/Los_Angeles
+
+0 2 * * sat /bin/mdatp scan quick > ~/mdatp_cron_job.log
+
+> [!NOTE]
+> In this example, we are setting it to 00 minutes, 2 a.m. (hour in 24 hour format), any day of the month, any month, on Saturdays. Meaning it will run Saturdays at 2:00 a.m. Pacific (UTC –8)
+
+Press “Esc”
+
+Type “:wq” w/o the double quotes.
+
+> [!NOTE]
+> w == write, q == quit
+
+To view your cron jobs, type sudo crontab -l
+
+:::image type="content" source="../../../../images/linux-mdatp.png" alt-text="linux mdatp":::
+
+**How to inspect cron job runs:**
+
+sudo grep mdatp /var/log/cron
+
+**How to inspect the mdatp_cron_job.log**
+sudo nano mdatp_cron_job.log
+
+## For those of you that are using Ansible, Chef, or Puppet]
+### How to set cron jobs in Ansible:
+
+cron – Manage cron.d and crontab entries
+
+See [https://docs.ansible.com/ansible/latest/modules/cron_module.html](https://docs.ansible.com/ansible/latest/modules/cron_module.html)
+
+### How to set crontabs in Chef:
+cron resource
+
+See [https://docs.chef.io/resources/cron/](https://docs.chef.io/resources/cron/)
+
+### How to set cron jobs in Puppet:
+Resource Type: cron
+
+See [https://puppet.com/docs/puppet/5.5/types/cron.html](https://puppet.com/docs/puppet/5.5/types/cron.html)
+
+Automating with Puppet: Cron jobs and scheduled tasks
+
+See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/)
+
+## Additional information:
+
+**To get help with crontab**
+man crontab
+
+**To get a list of crontab file of the current user:**
+
+crontab -l
+
+**To get a list of crontab file of another user:**
+
+crontab -u username -l
+
+**To backup crontab entries:**
+
+crontab -l > /var/tmp/cron_backup.dat
+> [!TIP]
+> Do this before you edit or remove.
+
+**To restore crontab entries:**
+
+crontab /var/tmp/cron_backup.dat
+
+**To edit the crontab and add a new job as a root user:**
+
+Sudo crontab -e
+
+**To edit the crontab and add a new job:**
+
+crontab -e
+
+**To edit other user’s crontab entries:**
+
+crontab -u username -e
+
+**To remove all crontab entries:**
+
+crontab -r
+
+**To remove other user’s crontab entries:**
+
+crontab -u username -r
+
+**Explanation**:
+
++—————- minute (values: 0 – 59) (special characters: , – * /)
+
+| +————- hour (values: 0 – 23) (special characters: , – * /)
+
+| | +———- day of month (values: 1 – 31) (special characters: , – * / L W C)
+
+| | | +——- month (values: 1 – 12) (special characters: ,- * / )
+| | | | +—- day of week (values: 0 – 6) (Sunday=0 or 7) (special characters: , – * / L W C)
+| | | | |
+* * * * * command to be executed
+
+
+
+
+
+
+
+
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+
+While you can start a threat scan at any time with Microsoft Defender ATP, your enterprise might benefit from scheduled or timed scans. For example, you can schedule a scan to run at the beginning of every workday or week. 
+
+## Schedule a scan with *launchd*
+
+You can create a scanning schedule using the *launchd* daemon on a macOS device.
+
+1. The following code shows the schema you need to use to schedule a scan. Open a text editor and use this example as a guide for your own scheduled scan file.
+
+    For more information on the *.plist* file format used here, see [About Information Property List Files](https://developer.apple.com/library/archive/documentation/General/Reference/InfoPlistKeyReference/Articles/AboutInformationPropertyListFiles.html) at the official Apple developer website.
+
+    ```XML
+    <?xml version="1.0" encoding="UTF-8"?>
+    <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN"
+      "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+    <plist version="1.0">
+    <dict>
+        <key>Label</key>
+        <string>com.microsoft.wdav.schedquickscan</string>
+        <key>ProgramArguments</key>
+        <array>
+            <string>sh</string>
+            <string>-c</string>
+            <string>/usr/local/bin/mdatp --scan --quick</string>
+        </array>
+        <key>RunAtLoad</key>
+        <true/>
+        <key>StartCalendarInterval</key>
+        <dict>
+            <key>Day</key>
+            <integer>3</integer>
+            <key>Hour</key>
+            <integer>2</integer>
+            <key>Minute</key>
+            <integer>0</integer>
+            <key>Weekday</key>
+            <integer>5</integer>
+        </dict>
+        <key>StartInterval</key>
+        <integer>604800</integer>
+        <key>WorkingDirectory</key>
+        <string>/usr/local/bin/</string>
+    </dict>
+    </plist>
+     ```
+
+2. Save the file as *com.microsoft.wdav.schedquickscan.plist*.
+
+    > [!TIP]
+    > To run a full scan instead of a quick scan, change line 12, `<string>/usr/local/bin/mdatp --scan --quick</string>`, to use the `--full` option instead of `--quick` (i.e. `<string>/usr/local/bin/mdatp --scan --full</string>`) and save the file as *com.microsoft.wdav.sched**full**scan.plist* instead of *com.microsoft.wdav.sched**quick**scan.plist*.
+
+3. Open **Terminal**.
+4. Enter the following commands to load your file:
+
+    ```bash
+    launchctl load /Library/LaunchDaemons/<your file name.plist>
+    launchctl start <your file name>
+    ```
+
+5. Your scheduled scan will run at the date, time, and frequency you defined in your p-list. In the example, the scan runs at 2:00 AM every Friday. 
+
+    Note that the `StartInterval` value is in seconds, indicating that scans should run every 604,800 seconds (one week), while the `Weekday` value of `StartCalendarInterval` uses an integer to indicate the fifth day of the week, or Friday.
+
+ > [!IMPORTANT]
+ > Agents executed with *launchd* will not run at the scheduled time while the device is asleep. They will instead run once the device resumes from sleep mode.
+ >
+ > If the device is turned off, the scan will run at the next scheduled scan time.
+
+## Schedule a scan with Intune
+
+You can also schedule scans with Microsoft Intune. The [runMDATPQuickScan.sh](https://github.com/microsoft/shell-intune-samples/tree/master/Misc/MDATP#runmdatpquickscansh) shell script available at [Scripts for Microsoft Defender Advanced Threat Protection](https://github.com/microsoft/shell-intune-samples/tree/master/Misc/MDATP) will persist when the device resumes from sleep mode. 
+
+See [Use shell scripts on macOS devices in Intune](https://docs.microsoft.com/mem/intune/apps/macos-shell-scripts) for more detailed instructions on how to use this script in your enterprise.

From da50b63b45e3cfe776aa45fccfe215ca77d1c256 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 12 Oct 2020 14:22:47 +0530
Subject: [PATCH 010/209] Update linux-schedule-scan-atp.md

---
 .../linux-schedule-scan-atp.md                | 109 +++---------------
 1 file changed, 15 insertions(+), 94 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 8515254bac..0d706608ba 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -26,14 +26,16 @@ Linux (and Unix) have the tool called **crontab** (similar to Task Scheduler) to
 ## Pre-requisite
 
 > [!NOTE]
-> To get a list of all the time zones, run the following command: 
-> timedatectl list-timezones
+
+To get a list of all the time zones, run the following command: 
+
+timedatectl list-timezones
 
 > Examples for timezones:
-> America/Los_Angeles
-> America/New_York
-> America/Chicago
-> America/Denver
+America/Los_Angeles
+America/New_York
+America/Chicago
+America/Denver
 
 ## To set the Cron job
 
@@ -42,12 +44,13 @@ Linux (and Unix) have the tool called **crontab** (similar to Task Scheduler) to
 sudo crontab -l > /var/tmp/cron_backup_200919.dat
 
 > [!NOTE]
-> Where 200919 == YRMMDD
+
+Where 200919 == YRMMDD
 
 > TIP: 
-> Do this before you edit or remove.
-> To edit the crontab and add a new job as a root user:
-> sudo crontab -e
+Do this before you edit or remove.
+To edit the crontab and add a new job as a root user:
+sudo crontab -e
 
 > [!NOTE]
 > The default editor is VIM
@@ -65,14 +68,14 @@ CRON_TZ=America/Los_Angeles
 0 2 * * sat /bin/mdatp scan quick > ~/mdatp_cron_job.log
 
 > [!NOTE]
-> In this example, we are setting it to 00 minutes, 2 a.m. (hour in 24 hour format), any day of the month, any month, on Saturdays. Meaning it will run Saturdays at 2:00 a.m. Pacific (UTC –8)
+In this example, we are setting it to 00 minutes, 2 a.m. (hour in 24 hour format), any day of the month, any month, on Saturdays. Meaning it will run Saturdays at 2:00 a.m. Pacific (UTC –8)
 
 Press “Esc”
 
 Type “:wq” w/o the double quotes.
 
 > [!NOTE]
-> w == write, q == quit
+ w == write, q == quit
 
 To view your cron jobs, type sudo crontab -l
 
@@ -163,85 +166,3 @@ crontab -u username -r
 * * * * * command to be executed
 
 
-
-
-
-
-
-
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-
-While you can start a threat scan at any time with Microsoft Defender ATP, your enterprise might benefit from scheduled or timed scans. For example, you can schedule a scan to run at the beginning of every workday or week. 
-
-## Schedule a scan with *launchd*
-
-You can create a scanning schedule using the *launchd* daemon on a macOS device.
-
-1. The following code shows the schema you need to use to schedule a scan. Open a text editor and use this example as a guide for your own scheduled scan file.
-
-    For more information on the *.plist* file format used here, see [About Information Property List Files](https://developer.apple.com/library/archive/documentation/General/Reference/InfoPlistKeyReference/Articles/AboutInformationPropertyListFiles.html) at the official Apple developer website.
-
-    ```XML
-    <?xml version="1.0" encoding="UTF-8"?>
-    <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN"
-      "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-    <plist version="1.0">
-    <dict>
-        <key>Label</key>
-        <string>com.microsoft.wdav.schedquickscan</string>
-        <key>ProgramArguments</key>
-        <array>
-            <string>sh</string>
-            <string>-c</string>
-            <string>/usr/local/bin/mdatp --scan --quick</string>
-        </array>
-        <key>RunAtLoad</key>
-        <true/>
-        <key>StartCalendarInterval</key>
-        <dict>
-            <key>Day</key>
-            <integer>3</integer>
-            <key>Hour</key>
-            <integer>2</integer>
-            <key>Minute</key>
-            <integer>0</integer>
-            <key>Weekday</key>
-            <integer>5</integer>
-        </dict>
-        <key>StartInterval</key>
-        <integer>604800</integer>
-        <key>WorkingDirectory</key>
-        <string>/usr/local/bin/</string>
-    </dict>
-    </plist>
-     ```
-
-2. Save the file as *com.microsoft.wdav.schedquickscan.plist*.
-
-    > [!TIP]
-    > To run a full scan instead of a quick scan, change line 12, `<string>/usr/local/bin/mdatp --scan --quick</string>`, to use the `--full` option instead of `--quick` (i.e. `<string>/usr/local/bin/mdatp --scan --full</string>`) and save the file as *com.microsoft.wdav.sched**full**scan.plist* instead of *com.microsoft.wdav.sched**quick**scan.plist*.
-
-3. Open **Terminal**.
-4. Enter the following commands to load your file:
-
-    ```bash
-    launchctl load /Library/LaunchDaemons/<your file name.plist>
-    launchctl start <your file name>
-    ```
-
-5. Your scheduled scan will run at the date, time, and frequency you defined in your p-list. In the example, the scan runs at 2:00 AM every Friday. 
-
-    Note that the `StartInterval` value is in seconds, indicating that scans should run every 604,800 seconds (one week), while the `Weekday` value of `StartCalendarInterval` uses an integer to indicate the fifth day of the week, or Friday.
-
- > [!IMPORTANT]
- > Agents executed with *launchd* will not run at the scheduled time while the device is asleep. They will instead run once the device resumes from sleep mode.
- >
- > If the device is turned off, the scan will run at the next scheduled scan time.
-
-## Schedule a scan with Intune
-
-You can also schedule scans with Microsoft Intune. The [runMDATPQuickScan.sh](https://github.com/microsoft/shell-intune-samples/tree/master/Misc/MDATP#runmdatpquickscansh) shell script available at [Scripts for Microsoft Defender Advanced Threat Protection](https://github.com/microsoft/shell-intune-samples/tree/master/Misc/MDATP) will persist when the device resumes from sleep mode. 
-
-See [Use shell scripts on macOS devices in Intune](https://docs.microsoft.com/mem/intune/apps/macos-shell-scripts) for more detailed instructions on how to use this script in your enterprise.

From 32e1b1490b117de100bbed41d6478cb7e035c398 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 12 Oct 2020 15:12:25 +0530
Subject: [PATCH 011/209] Update linux-schedule-scan-atp.md

minor corrections during self review
---
 .../linux-schedule-scan-atp.md                | 62 +++++++++----------
 1 file changed, 30 insertions(+), 32 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 0d706608ba..aee27d7e1f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -27,33 +27,31 @@ Linux (and Unix) have the tool called **crontab** (similar to Task Scheduler) to
 
 > [!NOTE]
 
-To get a list of all the time zones, run the following command: 
-
-timedatectl list-timezones
+> To get a list of all the time zones, run the following command: 
+`timedatectl list-timezones`
 
 > Examples for timezones:
-America/Los_Angeles
-America/New_York
-America/Chicago
-America/Denver
+> - `America/Los_Angeles`
+> - `America/New_York`
+>- `America/Chicago`
+>- `America/Denver`
 
 ## To set the Cron job
 
 **To backup crontab entries:**
 
-sudo crontab -l > /var/tmp/cron_backup_200919.dat
+`sudo crontab -l > /var/tmp/cron_backup_200919.dat`
 
 > [!NOTE]
-
-Where 200919 == YRMMDD
+> Where 200919 == YRMMDD
 
 > TIP: 
 Do this before you edit or remove.
-To edit the crontab and add a new job as a root user:
-sudo crontab -e
+To edit the crontab, and add a new job as a root user:
+`sudo crontab -e`
 
 > [!NOTE]
-> The default editor is VIM
+> The default editor is VIM.
 
 You might see:
 
@@ -72,7 +70,7 @@ In this example, we are setting it to 00 minutes, 2 a.m. (hour in 24 hour format
 
 Press “Esc”
 
-Type “:wq” w/o the double quotes.
+Type “:wq” without the double quotes.
 
 > [!NOTE]
  w == write, q == quit
@@ -83,22 +81,22 @@ To view your cron jobs, type sudo crontab -l
 
 **How to inspect cron job runs:**
 
-sudo grep mdatp /var/log/cron
+`sudo grep mdatp /var/log/cron`
 
 **How to inspect the mdatp_cron_job.log**
-sudo nano mdatp_cron_job.log
+`sudo nano mdatp_cron_job.log`
 
-## For those of you that are using Ansible, Chef, or Puppet]
+## For those who use Ansible, Chef, or Puppet]
 ### How to set cron jobs in Ansible:
 
-cron – Manage cron.d and crontab entries
+`cron – Manage cron.d and crontab entries`
 
-See [https://docs.ansible.com/ansible/latest/modules/cron_module.html](https://docs.ansible.com/ansible/latest/modules/cron_module.html)
+See [https://docs.ansible.com/ansible/latest/modules/cron_module.html](https://docs.ansible.com/ansible/latest/modules/cron_module.html) for more information.
 
 ### How to set crontabs in Chef:
-cron resource
+`cron resource`
 
-See [https://docs.chef.io/resources/cron/](https://docs.chef.io/resources/cron/)
+See [https://docs.chef.io/resources/cron/](https://docs.chef.io/resources/cron/) for more information.
 
 ### How to set cron jobs in Puppet:
 Resource Type: cron
@@ -107,50 +105,50 @@ See [https://puppet.com/docs/puppet/5.5/types/cron.html](https://puppet.com/docs
 
 Automating with Puppet: Cron jobs and scheduled tasks
 
-See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/)
+See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/) for more information.
 
 ## Additional information:
 
 **To get help with crontab**
-man crontab
+`man crontab`
 
 **To get a list of crontab file of the current user:**
 
-crontab -l
+`crontab -l`
 
 **To get a list of crontab file of another user:**
 
-crontab -u username -l
+`crontab -u username -l`
 
 **To backup crontab entries:**
 
-crontab -l > /var/tmp/cron_backup.dat
+`crontab -l > /var/tmp/cron_backup.dat`
 > [!TIP]
 > Do this before you edit or remove.
 
 **To restore crontab entries:**
 
-crontab /var/tmp/cron_backup.dat
+`crontab /var/tmp/cron_backup.dat`
 
 **To edit the crontab and add a new job as a root user:**
 
-Sudo crontab -e
+`Sudo crontab -e`
 
 **To edit the crontab and add a new job:**
 
-crontab -e
+`crontab -e`
 
 **To edit other user’s crontab entries:**
 
-crontab -u username -e
+`crontab -u username -e`
 
 **To remove all crontab entries:**
 
-crontab -r
+`crontab -r`
 
 **To remove other user’s crontab entries:**
 
-crontab -u username -r
+`crontab -u username -r`
 
 **Explanation**:
 

From 970adb587ffd9881b9a735f74d6b7e9bdbe370ab Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Mon, 12 Oct 2020 15:27:59 +0530
Subject: [PATCH 012/209] Add files via upload

Added new file
---
 .../threat-protection/images/linux-mdatp.png     | Bin 0 -> 5634 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/security/threat-protection/images/linux-mdatp.png

diff --git a/windows/security/threat-protection/images/linux-mdatp.png b/windows/security/threat-protection/images/linux-mdatp.png
new file mode 100644
index 0000000000000000000000000000000000000000..f8c9c07b16906f1465cf3b97f50b71ab49b3f10f
GIT binary patch
literal 5634
zcmV+d7X9goP)<h;3K|Lk000e1NJLTq00KGy003SH0{{R39c)gQ00004XF*Lt006O%
z3;baP00009a7bBm000@*000@*0T|KB?EnA*B2Y|JMF0Q*001ii0RaL60s{jB1Ox;H
z1qB8M1_%fU2?+@b3JMGi3=Itp4-XFz5D*a&5fTy-6B82@6ciN|6&Dv585tQFIZ_%L
z8XFrM92^`S9UUPdAtE9oBqSsyB_$~-DJm)|D=RB2MO!QY04*&oE-o%FFE24MF)}hT
zGcz+ZG&D6eH8wUjH#avqIXO8}XE{=6IyyQ#J3Bl)JU>4_KtMo6D;h>!XGcdzOG`^k
zOiWEpO;Au!Qc_Y=Q&Ut_R8>_~R#sM5S65hASXo(FT3T9NU0q&YUSD5dU`H%sVP0cl
zUt?lmV`F1vV_;-sVPs@vWn^MyWn*S#V`^$@Yinz4D*$Y4Yi(_8Zf$LDZf<XHZ*XvM
zb#--ic6N7ncX)VsdwY9)e0+a@e}I61gM)*Gg@uNOhKPuWiHV7dii(eqkC0FRkdTm)
zPymvWl9iQ}mX?;6mzS8Bn3<WGnwpxMo12`RoSmJWo}QkdprE0lp`@gwrKP2(r>Cf>
zsHv%`sj8}~s;R1~s;jH3tgNi9t*x%EuCcMPvT!c5uc@=Mv$V0QwX?0YwY9gjuDG_a
zxwWynwz9gov%9&pytuTyyu7`;w!XTyzP+EnySKl;zrnq^!NI}8!otPR-^S11#?ar!
z(BR69Ps+im%gM*g%gN2KbIr}n&d$!y&dt!!(9zJ((b3V;($dq@)6~?|)z#J4*VozE
z+1uOO-QC?QUjx<v026jeL_t(|+U=eBV;e^m#|Jr4s>qgHpeUs%xPU|Dwm@VT8WkMH
z1sv|n;!?0$6QYEo($unvF(!sB4flQD_kES)|6}g+&1khckeq!#B<tBZ-t2z0J9_%;
zTl9<6QcGkgJp`!@Af5j{cM0W-#Byk+fd4DZAY!77Y~}es2xVm%uE%$XdZ6XpUi21j
zf2swvW%P2-PE<DrgT~OkSM^3V-`mB6bf(YpjaC&EyOwlPOQqA(a<$Io`ucuzVd~Gp
zv6)ONo$=ag3tM^mKfWi9A4{b(sfO1p*$MXU_)IFDNwvjpcX4vPJ3gIvtlL96l_;vD
z>)KICXQ7TQ&XThP)Wc;Zv!q&&+aEYaE$3Yv*O^t}F>qNeS0#JZjH>l!6g891ZE)|2
z&(%<am)6(bbT>koDV0t=I@oGeW3(u59XMZz?N4=fvE9K-*xhEbMQmxUTlDP0-^OXr
zQ41P_l(qL(+MQLRm=^W4A77xkCGmdV3?pn{cLTb}R6h2V{Z}D0Ww$L&I^NS|pS^A8
z@Y-t$9&Twxtwc@*d?{S()>zNn4Py+l7yCl12se1W#(pc=+>&@dZxw9@rE>x;J$raR
z{*q4XWNt6%*xz7ACmkI9&H1H6_GVS2SC>wHePX3EgO+X)=}hkpD<B;$g2HbDIF{R5
zB|F%yf$k;o-7?;+_LL6okKP`|mTHT)I^yQ(*5l@pj(c~L(m|y%<N=LI(|^?5oY9;X
z<@ny0nRIr85vZkG(F4=FO!iBMEl7FXwtBg<zE4g_H;Ov-dME1OHQ_>&u61a97nfbG
zl5<ufdt2~QSJZ>I>X)Pab-Y}K_R0?IGOu)aJ!AQ+dAhCCCFTb8Z2HpNU+?L?e$+Oj
zPB8AhbnBT1Ge=N5`1F@6m6bid<XmM(8!uPeQPl3xW@4F4F9GC=fX^8&i(u*SYZAU<
z;jWsMN~O)4iE9Y=MO|0&4Z6x@*Elq{ve&N0S^mm_?0Tv{B^_;U!1aumQ4d<tZX-`-
z`7|w~cO&(Wx?z!{c0*K|-LO2xdx_Dq`;Vw}8Z(8h{qD|9aZrVHh&U?s<kDd$WWP(S
z5ta^F<!*`fRBq+w&LTo_Z&>OUXH1IsXU+)ql8)-C(QSmKGgEk+A2q#-vW+gAc?Pd>
zD!0Dy;8DC`<qOvi)*0R~0_m(%f+62aI{Ebj@hz^lw{uT+Q0a*N5=#f;7h&lXu9BnH
z^-71K8)W7)=#^YLnIk40@W{rK4tz5)q+^~CuXIqULT^)^y#eXu8)ZN`qQAt_A!R}7
z(7jF-$c~}=o_*$lR60^R{>Uts4vzVX^(hIqTGCN_aT#8GvQ=}nf9Vvr>H5^Dr~2zt
zI?B_qbcpw{rE?rh=kNitFO!*0>FljkO7I;EFDff%FX3gL+A^e5T8pB!k|rHm4_lx=
zyg2Txsx3o0RTdG3>j~)?Wnfg7E$yLtR?pVl!Y%M}I%+RwEe|wt2=6yUe`Iev<mstL
z55D;B7h>T|r*vvv6@_(I%H8g@LW3-3#TJj-F4pj$sx7a=>V^B0E!?&=I_>P0{m~)K
zUO>~l+KZySn%@I!Zg9_{49^_bD_Xs5ko7M82YbIQ%5c2~+Y$D3?^E4Rp3B{lolfcG
zLcFcP<<c!4x6S4V*xQ3X2K!UQZ<q&mwouMxi9yr6T8W~SoZka$Zg9^dq?u35&CQig
z5L$35rE{ch;-QO~<Hx3Vt#hQ!g+eCDGV;4sDxK8&vSU+8wWrdVgu4|=rIXt2WT|vg
z8&o=+<Q44i0#fWRjlJ?ns{H0F7-7v!B-hUu_rHXtqs8qnUOh73QhNS}Af0k^mx2j6
zLK?9x1vL;fqHG7|C3Jy})N6IjUouK-dn<Fp`r=HzYUE=nC+4`-cKVdWP^44b+HY`v
zSN|Of2_7%nD$H2Y*{hM0UK4>@{8Ka!^0Je?ez0?MCC=x+_cKzte0)|l{<xDA>zU>U
zhr0*sdCu>`(!sj0q_dJE2R|nQwHSaYXkQiZpZDzS)na(i`^n5&BffOvkDET5H5}<g
zir<B$gL&Is{p@8I=h(rYt5oJR?2a1!QIX#9R&|CMqI(6`>~P2m*I4bebm@3`WyIYO
z<LU%)BX4-1ODEJ{YO$q*s8%|XFP74|+yuZa^|>txa+yC~XUdK-%%oGB?j_4rn`_pY
zUW5c{A*AEwmBk8-j~nKnmG|NPQtMMXyY#sL<Mh|b!);#al-3Tm45$mY<;*c|tCrIm
zhs@|+)r-#l3KE*w90$B4Bh!U>WqVxh>Zubsa<4WnFN69^txxH+2vM3hrGr_61D|x%
z3RystxGiCh4_I5q^<XnOWDZyu(m{mj-I7eN;E*Bd7`(EQ4j<Pe9qEBKt}Ju=ORZn&
zkh9mYq=U<R(orkq21m7VTf!V~S<*2%WR57<(orNdk{mKD9gSC3(&6KJq$54h#+7Am
zf2qZmPIc9@Os*r~OAb5u{6dfKGmX4>K*Ve-rK8K!>P1OMf9`Iz!+1Q253U*y2P$6K
zS?hSDQ%Bx$q5e|qEgil-z1-?wI^y6jG*w72ARUA5b$Y4tB{uz2z{pZM*gt(CtnteI
zNQXzo?Qx<0Qi~By#-DFV-Wq(dc&-h2rhpO2e4$xsMq%mTZ}$$}t9pTG;o`Qq1ke_8
zF$?g@0qM|sE~N~Q8zP8PbEWg~_Uk3dOUPTBFXq`L__9_->NHlDnu;c?7COUh(!B+v
z7l;-vTw7HAb>(6f;+36oEl!#*yA8rQ#6PDN|EeQMUP9j5d@;{1VPziHTQF16WYt1v
zm?64XCx~rYc&3n5{mBR3KwjAy7tXJ25Y8d~Iki5d6U#_!m|48vBFAH4uULNN?WxGG
zoayzqu<4VILM>_&^x+J9b#(G8PxV!2I&Hf1D`!&aq!wQ-8RH%`p)yLPGl|N{D4`fD
zn~6%WEWezmHc{Ha61mg9(%`KL`f?(#I)mjo9>hw0ueif426$Xg<CS}k;pUDGwTMqb
zvy05kadhh8JIxL=$Iy!(p1-5#mxgngdKt&X>6h64^N(g_pghL|DQ7Ki=G2%ilGA^f
z&)zzq89RE70pwS9vLzcvNa&^b7aaWm-H$%?eEarPdgIeC=y}WPm8E&8()st_o6$hY
zYWw>tZC-S}d3|!ei?h|ju9y6M5DYh|#~1^M69Fl2^|qD6c+!z}{?P3YDg$hDJkt3U
zwtxNg!()_Atr1T;Ry}VEyI%6Q&@kMj9%GDtq*J4bQ;w)~p8NBMBKGT`DV<f78F?sW
zYzHBYHA)%Ckqp)Y@)C=BP!8vCo@026esapCIAiGfm08AU-ooInd0SmNYP2`t;P))<
zFTa6XY|1j`^M>+(mYqg!nMF~vvgHiVmrA!rE}eh=@q<`8m@l>vQk+NFVRZ*7Lr%tH
zC`U3}56Vj{>M8yi%HiBA&#|^eJD}0&;20vmvZAQN^H4V|p9ijgcJ}3a$?_MMT_j_i
zdxF(l))&XL?1{_EB)M4U0^1t7bpH1H4`6P1&3Wdb(qusKVs;p1#29I8Fv4bLKqE7<
z4tuysDvf$h4regWF~Bt&xtY~tf`Kt;wm05Pqp0N#OV1lPw{nAXBTPCfwcz~q=t2hn
zd4XOfb{n&#O#DgO%9|6*zD#zAvf_1m{I2NtC6a#bG`aMwW@LY3kj`Iz_m<DQPg-Gs
zVV?oT227E-45^IAIwNdK$E?>&I$AwDB_^2X7~q<nF>L8LV^CyGFt>`LhNP2Q`RvXa
z6hk^KnoJIoj>x`jNoQZ=TvoQRzctTRdEum&LzT{-K5^Hf`+O$`7}gn3Y`_$W%aF==
ztTV!pbb!prpmel)J*AT`<{_@Rr*xb#lyvmW$e?s^+m~cxN{8iPcBF&HxHyl;u%vTw
zUNYA5y7T7Gbh~H9ES*2R{6(L0pDIU^92{a9y?+^uFd!XSuZMK>dOf9stoP;Ud6NUu
zamP^7!KYBBw}qsm$m$r<L3FPp9a>hrZcFC^APYRB8|~%HSf%qN^cwKXd6m8Dt~#7D
zh5Z_gu$d#7GQzT+Uph`bk95pD#{kzHkd9}JfOP0+;>4XaFy}<lVcC~W>5ww^CqKF@
zdX5*-Z2i2P8K-ofeBSF?qvvuJX>3ryPLAYa7pm7%nTL4`)t@09hdGAw979_MF)hY;
z+8u*3)>fuv)k5V+E?(Cjt`J^r$Z^RQUH)bluSD%LS-#XI%iqo_5yq9hhw#>{$i93U
znPsHjdG)oQv|XZQCl;@aM>@a8_9S}s7`R+T8k-cbog*2p*NP6T76!Qt=5TgNXgFUp
zKuib6Xz+Z<jG``zT+cjP@+SARa8(Ox*HnIGZHq2{3s+ShX14c{jOdSS(d^4wMrK~7
z*E^%PCH<)!&Lfu2Z_vxez~w5^*rb5%9LaFKR<vccFvw*vhjTd3aj0H+3@FpGn#X2@
zzv)=>@Q~1S`3w68WnYH!Nvr6&K99Uhl8;6@zkUB*Xwq#gzmW{Z;@v4o3|TC0rqqaZ
ze*UA^PPmsU(u<CWr$>O8Cer!Y58gN7UeaeCCg~xJA$Tf&o0@9r{N%guMX9BhKsrDD
z&U?}Wky;Yz{P>&iN)JS8Nu=|`Z@d#^lZVeM`}tk+7@ihEi%IhK%?J-`9+rQm_aUp2
z=M1a<%43?*Ssh>Y(98?x>-AGTr1QP6y&YhaW4sKy?<4Lfeof9SE?*2Y!o`tGr(%)D
z)O+XPmn-(6!;#}od+(t(jTgf+di=ot!XBoc6GjjYA2WcB=rPx!vsdseGhyj``>SsQ
ze#7EfBZe7J33AB#Kt8_MWrVu`=s9}nxc))W9E?E}%~yxuNN-I<oqaQMVm&dj(!R`!
zH5*EjcHd!7>3r+UZv~{ovqp?XI(BAcA7AV;!v7!Xxc))XAvqRJUwBMfi`v)hp9{t#
z9V^zHSUUI-K9EgDTDCV~@!4cM3$jD}YL!`L<X!P(cvZG=IN!vKFyxi(AKZfGT&DRl
z=syU|^~@*>i^X;_ySl-h4#9{C+DG|5HX|Y(mq^wbW-B_x_AZmX%Na!}>t*Iy6+=pz
z`EVDAF$w9YdX%STo-*lt|LgAn*<_UuSzG4C;*g;%$QJQyR;Fk~M~nvKQWo{_WhMzD
zY<UIy7iys>3+~^N>7PScc#fYtb9|YxX2ggJP9&=t`H5s)Mz)&!7x@;WlyzR&9QWK4
z(PJldn)$GE@za;?1*JoJxj^fklv`3dG!3Q0CPSZ^xE!*cgV^ME-J6M)8ChQA?DwXt
zdg`?%jEd+2j4&I+MsRem;4IB<3-+$^Z3ECz%Vhp1?FFM2Pzp=JLU^w`j9kWJh#5UZ
zIS(owmq>;XE?(InlIO20>c>m&;5(GSS;@T$|1-O>(>x7HhmY|Q+~O(480pe+*ktF8
zA*de?S+Ku0zw1cH%#3WL;Wo+?*K8nHU4RkxNyj0Qk?CJT>G0DULC<#*wAcqfaB`WP
z3&PygG2|;w4MZddq@(r{!a13AGVX#WwsdSZ*?D6K>W4!X?5~jp8Iq2f8QCu##Wg$9
zfyaQPV-d;7^lt>xA^5WI2d&x-N-jgvfr#W-(jkQN*rnsJ$<7LyuT<l4$Oijc?0ThR
zWk&W&N9USt>8KOjOF9;jY=~n}=|DHEvUr9aTp=?y5Ry(&!%zE?4wB^Z7^UNUIXANm
zt7vFE4%uLTb?JC`<*;;2uDPdl6p?Jq$RUy$`#Y#~1d;46lNa!#d8NP#S)Tr$(lMxK
zM><s!3?7zrO6NrkIi7S{U=CvKWgLBm4S+1jNaJ_q7~ATDs?o=s<kiz=OGdaGml4+b
zgS~S6gBR9X&SfzM$UnO$31`k|%zBQHBA1nP<cv<|0V0`n-(KS6vbGAZNFrGg&P$wJ
z4oPQLuXjj$rmVA!=9DfRMvtDt{q0<0^=8SISiDQ=z&VJ!>SY}LnwtfgM`5ioKweqn
ziyJ)qvX2oiNJiKmL#LTRuN?o>KSm3cb6Jex^3Na-9KwSOSI?Lc<}<Zzf*=bH86uJy
z_54W23=1nF*(IDe0Iz5?kX~W*dWv;^1@?t*oZA+Ax4UXfEZ&uLz#PQIqVu3w{BUJ4
zz}BiUKweoRdGkE`a{r95PBVjEIsWAVrq{^1EXDx&XQ-|J&<#R8Lo@Ob*sfPpNmM#;
z#%LKS_wdx)wsel34eb|{iOIPv?mQ$I%=1Lg#{3{_E!a&A{N<r{FU#&)=g0|Xcr-JK
zvQNS*M@R^`^T<gKN$@<;C*!tNEvg?)ng@f%mDh39`DjaLcr<gFzRh$3X0*}AWhP{2
zH(RZQ*>?<{`sm)U!oPH<Hn80u(pgO3u9r$DnWgVEAEk5_;&R9!J?pT<gK^DahMBz(
z8~J!@!T!n_RqObt{q*%BBa=?ugJHSLMwbV6KGg$q%>llcKo_Lvs0EEd%4EcvgJ2_I
ztW&e36Bo<`;v9?an}6#AgjNE+C}J9Vtt5{%ix{%{g^OSSt@Lb9pmehC`^HBk9Yst-
z(y`cIT{`*oR63)T4##gfja#<(U3D9Pauur<dah7!f5sM^85v@UsRiDHY%5r#-72Lw
ctfAWf03;rIZBhViga7~l07*qoM6N<$f)nxr0RR91

literal 0
HcmV?d00001


From 7fdb7d4916eeb0dfe676d610da7ae319ed13cee1 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 12 Oct 2020 17:25:02 +0530
Subject: [PATCH 013/209] Linux_MDATP_4490409

Minor edits
---
 .../threat-protection/images}/linux-mdatp.png | Bin
 .../linux-schedule-scan-atp.md                |  34 ++++++++++--------
 2 files changed, 20 insertions(+), 14 deletions(-)
 rename {images => windows/security/threat-protection/images}/linux-mdatp.png (100%)

diff --git a/images/linux-mdatp.png b/windows/security/threat-protection/images/linux-mdatp.png
similarity index 100%
rename from images/linux-mdatp.png
rename to windows/security/threat-protection/images/linux-mdatp.png
diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index aee27d7e1f..347e58511a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -19,16 +19,16 @@ ms.topic: conceptual
 
 # Schedule scans with Microsoft Defender ATP for Linux
 
-For the command line to be able to run a scan on MDATP for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
+To run a scan on MDATP for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
 
-Linux (and Unix) have the tool called **crontab** (similar to Task Scheduler) to be able to run scheduled tasks.
+Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to be able to run scheduled tasks.
 
 ## Pre-requisite
 
 > [!NOTE]
 
-> To get a list of all the time zones, run the following command: 
-`timedatectl list-timezones`
+> To get a list of all the time zones, run the following command:
+> `timedatectl list-timezones`
 
 > Examples for timezones:
 > - `America/Los_Angeles`
@@ -37,6 +37,7 @@ Linux (and Unix) have the tool called **crontab** (similar to Task Scheduler) to
 >- `America/Denver`
 
 ## To set the Cron job
+Use the following commands:
 
 **To backup crontab entries:**
 
@@ -66,7 +67,7 @@ CRON_TZ=America/Los_Angeles
 0 2 * * sat /bin/mdatp scan quick > ~/mdatp_cron_job.log
 
 > [!NOTE]
-In this example, we are setting it to 00 minutes, 2 a.m. (hour in 24 hour format), any day of the month, any month, on Saturdays. Meaning it will run Saturdays at 2:00 a.m. Pacific (UTC –8)
+In this example, we have  set it to 00 minutes, 2 a.m. (hour in 24 hour format), any day of the month, any month, on Saturdays. Meaning it will run Saturdays at 2:00 a.m. Pacific (UTC –8).
 
 Press “Esc”
 
@@ -75,33 +76,36 @@ Type “:wq” without the double quotes.
 > [!NOTE]
  w == write, q == quit
 
-To view your cron jobs, type sudo crontab -l
+To view your cron jobs, type `sudo crontab -l`
 
-:::image type="content" source="../../../../images/linux-mdatp.png" alt-text="linux mdatp":::
+:::image type="content" source="..\images\linux-mdatp.png" alt-text="linux mdatp":::
 
-**How to inspect cron job runs:**
+**To inspect cron job runs:**
 
 `sudo grep mdatp /var/log/cron`
 
-**How to inspect the mdatp_cron_job.log**
+**To inspect the mdatp_cron_job.log**
+
 `sudo nano mdatp_cron_job.log`
 
 ## For those who use Ansible, Chef, or Puppet]
-### How to set cron jobs in Ansible:
+
+Use the following commands:
+### To set cron jobs in Ansible:
 
 `cron – Manage cron.d and crontab entries`
 
 See [https://docs.ansible.com/ansible/latest/modules/cron_module.html](https://docs.ansible.com/ansible/latest/modules/cron_module.html) for more information.
 
-### How to set crontabs in Chef:
+### To set crontabs in Chef:
 `cron resource`
 
 See [https://docs.chef.io/resources/cron/](https://docs.chef.io/resources/cron/) for more information.
 
-### How to set cron jobs in Puppet:
+### To set cron jobs in Puppet:
 Resource Type: cron
 
-See [https://puppet.com/docs/puppet/5.5/types/cron.html](https://puppet.com/docs/puppet/5.5/types/cron.html)
+See [https://puppet.com/docs/puppet/5.5/types/cron.html](https://puppet.com/docs/puppet/5.5/types/cron.html) for more information.
 
 Automating with Puppet: Cron jobs and scheduled tasks
 
@@ -110,6 +114,7 @@ See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](h
 ## Additional information:
 
 **To get help with crontab**
+
 `man crontab`
 
 **To get a list of crontab file of the current user:**
@@ -161,6 +166,7 @@ See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](h
 | | | +——- month (values: 1 – 12) (special characters: ,- * / )
 | | | | +—- day of week (values: 0 – 6) (Sunday=0 or 7) (special characters: , – * / L W C)
 | | | | |
-* * * * * command to be executed
+
+*****command to be executed
 
 

From a86c74982cd7697a858c64c1c468dfc8f1e9a854 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Mon, 12 Oct 2020 17:56:30 +0530
Subject: [PATCH 014/209] linux-mdatp-1.png

New file
---
 .../threat-protection/images/linux-mdatp-1.png   | Bin 0 -> 5634 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/security/threat-protection/images/linux-mdatp-1.png

diff --git a/windows/security/threat-protection/images/linux-mdatp-1.png b/windows/security/threat-protection/images/linux-mdatp-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..f8c9c07b16906f1465cf3b97f50b71ab49b3f10f
GIT binary patch
literal 5634
zcmV+d7X9goP)<h;3K|Lk000e1NJLTq00KGy003SH0{{R39c)gQ00004XF*Lt006O%
z3;baP00009a7bBm000@*000@*0T|KB?EnA*B2Y|JMF0Q*001ii0RaL60s{jB1Ox;H
z1qB8M1_%fU2?+@b3JMGi3=Itp4-XFz5D*a&5fTy-6B82@6ciN|6&Dv585tQFIZ_%L
z8XFrM92^`S9UUPdAtE9oBqSsyB_$~-DJm)|D=RB2MO!QY04*&oE-o%FFE24MF)}hT
zGcz+ZG&D6eH8wUjH#avqIXO8}XE{=6IyyQ#J3Bl)JU>4_KtMo6D;h>!XGcdzOG`^k
zOiWEpO;Au!Qc_Y=Q&Ut_R8>_~R#sM5S65hASXo(FT3T9NU0q&YUSD5dU`H%sVP0cl
zUt?lmV`F1vV_;-sVPs@vWn^MyWn*S#V`^$@Yinz4D*$Y4Yi(_8Zf$LDZf<XHZ*XvM
zb#--ic6N7ncX)VsdwY9)e0+a@e}I61gM)*Gg@uNOhKPuWiHV7dii(eqkC0FRkdTm)
zPymvWl9iQ}mX?;6mzS8Bn3<WGnwpxMo12`RoSmJWo}QkdprE0lp`@gwrKP2(r>Cf>
zsHv%`sj8}~s;R1~s;jH3tgNi9t*x%EuCcMPvT!c5uc@=Mv$V0QwX?0YwY9gjuDG_a
zxwWynwz9gov%9&pytuTyyu7`;w!XTyzP+EnySKl;zrnq^!NI}8!otPR-^S11#?ar!
z(BR69Ps+im%gM*g%gN2KbIr}n&d$!y&dt!!(9zJ((b3V;($dq@)6~?|)z#J4*VozE
z+1uOO-QC?QUjx<v026jeL_t(|+U=eBV;e^m#|Jr4s>qgHpeUs%xPU|Dwm@VT8WkMH
z1sv|n;!?0$6QYEo($unvF(!sB4flQD_kES)|6}g+&1khckeq!#B<tBZ-t2z0J9_%;
zTl9<6QcGkgJp`!@Af5j{cM0W-#Byk+fd4DZAY!77Y~}es2xVm%uE%$XdZ6XpUi21j
zf2swvW%P2-PE<DrgT~OkSM^3V-`mB6bf(YpjaC&EyOwlPOQqA(a<$Io`ucuzVd~Gp
zv6)ONo$=ag3tM^mKfWi9A4{b(sfO1p*$MXU_)IFDNwvjpcX4vPJ3gIvtlL96l_;vD
z>)KICXQ7TQ&XThP)Wc;Zv!q&&+aEYaE$3Yv*O^t}F>qNeS0#JZjH>l!6g891ZE)|2
z&(%<am)6(bbT>koDV0t=I@oGeW3(u59XMZz?N4=fvE9K-*xhEbMQmxUTlDP0-^OXr
zQ41P_l(qL(+MQLRm=^W4A77xkCGmdV3?pn{cLTb}R6h2V{Z}D0Ww$L&I^NS|pS^A8
z@Y-t$9&Twxtwc@*d?{S()>zNn4Py+l7yCl12se1W#(pc=+>&@dZxw9@rE>x;J$raR
z{*q4XWNt6%*xz7ACmkI9&H1H6_GVS2SC>wHePX3EgO+X)=}hkpD<B;$g2HbDIF{R5
zB|F%yf$k;o-7?;+_LL6okKP`|mTHT)I^yQ(*5l@pj(c~L(m|y%<N=LI(|^?5oY9;X
z<@ny0nRIr85vZkG(F4=FO!iBMEl7FXwtBg<zE4g_H;Ov-dME1OHQ_>&u61a97nfbG
zl5<ufdt2~QSJZ>I>X)Pab-Y}K_R0?IGOu)aJ!AQ+dAhCCCFTb8Z2HpNU+?L?e$+Oj
zPB8AhbnBT1Ge=N5`1F@6m6bid<XmM(8!uPeQPl3xW@4F4F9GC=fX^8&i(u*SYZAU<
z;jWsMN~O)4iE9Y=MO|0&4Z6x@*Elq{ve&N0S^mm_?0Tv{B^_;U!1aumQ4d<tZX-`-
z`7|w~cO&(Wx?z!{c0*K|-LO2xdx_Dq`;Vw}8Z(8h{qD|9aZrVHh&U?s<kDd$WWP(S
z5ta^F<!*`fRBq+w&LTo_Z&>OUXH1IsXU+)ql8)-C(QSmKGgEk+A2q#-vW+gAc?Pd>
zD!0Dy;8DC`<qOvi)*0R~0_m(%f+62aI{Ebj@hz^lw{uT+Q0a*N5=#f;7h&lXu9BnH
z^-71K8)W7)=#^YLnIk40@W{rK4tz5)q+^~CuXIqULT^)^y#eXu8)ZN`qQAt_A!R}7
z(7jF-$c~}=o_*$lR60^R{>Uts4vzVX^(hIqTGCN_aT#8GvQ=}nf9Vvr>H5^Dr~2zt
zI?B_qbcpw{rE?rh=kNitFO!*0>FljkO7I;EFDff%FX3gL+A^e5T8pB!k|rHm4_lx=
zyg2Txsx3o0RTdG3>j~)?Wnfg7E$yLtR?pVl!Y%M}I%+RwEe|wt2=6yUe`Iev<mstL
z55D;B7h>T|r*vvv6@_(I%H8g@LW3-3#TJj-F4pj$sx7a=>V^B0E!?&=I_>P0{m~)K
zUO>~l+KZySn%@I!Zg9_{49^_bD_Xs5ko7M82YbIQ%5c2~+Y$D3?^E4Rp3B{lolfcG
zLcFcP<<c!4x6S4V*xQ3X2K!UQZ<q&mwouMxi9yr6T8W~SoZka$Zg9^dq?u35&CQig
z5L$35rE{ch;-QO~<Hx3Vt#hQ!g+eCDGV;4sDxK8&vSU+8wWrdVgu4|=rIXt2WT|vg
z8&o=+<Q44i0#fWRjlJ?ns{H0F7-7v!B-hUu_rHXtqs8qnUOh73QhNS}Af0k^mx2j6
zLK?9x1vL;fqHG7|C3Jy})N6IjUouK-dn<Fp`r=HzYUE=nC+4`-cKVdWP^44b+HY`v
zSN|Of2_7%nD$H2Y*{hM0UK4>@{8Ka!^0Je?ez0?MCC=x+_cKzte0)|l{<xDA>zU>U
zhr0*sdCu>`(!sj0q_dJE2R|nQwHSaYXkQiZpZDzS)na(i`^n5&BffOvkDET5H5}<g
zir<B$gL&Is{p@8I=h(rYt5oJR?2a1!QIX#9R&|CMqI(6`>~P2m*I4bebm@3`WyIYO
z<LU%)BX4-1ODEJ{YO$q*s8%|XFP74|+yuZa^|>txa+yC~XUdK-%%oGB?j_4rn`_pY
zUW5c{A*AEwmBk8-j~nKnmG|NPQtMMXyY#sL<Mh|b!);#al-3Tm45$mY<;*c|tCrIm
zhs@|+)r-#l3KE*w90$B4Bh!U>WqVxh>Zubsa<4WnFN69^txxH+2vM3hrGr_61D|x%
z3RystxGiCh4_I5q^<XnOWDZyu(m{mj-I7eN;E*Bd7`(EQ4j<Pe9qEBKt}Ju=ORZn&
zkh9mYq=U<R(orkq21m7VTf!V~S<*2%WR57<(orNdk{mKD9gSC3(&6KJq$54h#+7Am
zf2qZmPIc9@Os*r~OAb5u{6dfKGmX4>K*Ve-rK8K!>P1OMf9`Iz!+1Q253U*y2P$6K
zS?hSDQ%Bx$q5e|qEgil-z1-?wI^y6jG*w72ARUA5b$Y4tB{uz2z{pZM*gt(CtnteI
zNQXzo?Qx<0Qi~By#-DFV-Wq(dc&-h2rhpO2e4$xsMq%mTZ}$$}t9pTG;o`Qq1ke_8
zF$?g@0qM|sE~N~Q8zP8PbEWg~_Uk3dOUPTBFXq`L__9_->NHlDnu;c?7COUh(!B+v
z7l;-vTw7HAb>(6f;+36oEl!#*yA8rQ#6PDN|EeQMUP9j5d@;{1VPziHTQF16WYt1v
zm?64XCx~rYc&3n5{mBR3KwjAy7tXJ25Y8d~Iki5d6U#_!m|48vBFAH4uULNN?WxGG
zoayzqu<4VILM>_&^x+J9b#(G8PxV!2I&Hf1D`!&aq!wQ-8RH%`p)yLPGl|N{D4`fD
zn~6%WEWezmHc{Ha61mg9(%`KL`f?(#I)mjo9>hw0ueif426$Xg<CS}k;pUDGwTMqb
zvy05kadhh8JIxL=$Iy!(p1-5#mxgngdKt&X>6h64^N(g_pghL|DQ7Ki=G2%ilGA^f
z&)zzq89RE70pwS9vLzcvNa&^b7aaWm-H$%?eEarPdgIeC=y}WPm8E&8()st_o6$hY
zYWw>tZC-S}d3|!ei?h|ju9y6M5DYh|#~1^M69Fl2^|qD6c+!z}{?P3YDg$hDJkt3U
zwtxNg!()_Atr1T;Ry}VEyI%6Q&@kMj9%GDtq*J4bQ;w)~p8NBMBKGT`DV<f78F?sW
zYzHBYHA)%Ckqp)Y@)C=BP!8vCo@026esapCIAiGfm08AU-ooInd0SmNYP2`t;P))<
zFTa6XY|1j`^M>+(mYqg!nMF~vvgHiVmrA!rE}eh=@q<`8m@l>vQk+NFVRZ*7Lr%tH
zC`U3}56Vj{>M8yi%HiBA&#|^eJD}0&;20vmvZAQN^H4V|p9ijgcJ}3a$?_MMT_j_i
zdxF(l))&XL?1{_EB)M4U0^1t7bpH1H4`6P1&3Wdb(qusKVs;p1#29I8Fv4bLKqE7<
z4tuysDvf$h4regWF~Bt&xtY~tf`Kt;wm05Pqp0N#OV1lPw{nAXBTPCfwcz~q=t2hn
zd4XOfb{n&#O#DgO%9|6*zD#zAvf_1m{I2NtC6a#bG`aMwW@LY3kj`Iz_m<DQPg-Gs
zVV?oT227E-45^IAIwNdK$E?>&I$AwDB_^2X7~q<nF>L8LV^CyGFt>`LhNP2Q`RvXa
z6hk^KnoJIoj>x`jNoQZ=TvoQRzctTRdEum&LzT{-K5^Hf`+O$`7}gn3Y`_$W%aF==
ztTV!pbb!prpmel)J*AT`<{_@Rr*xb#lyvmW$e?s^+m~cxN{8iPcBF&HxHyl;u%vTw
zUNYA5y7T7Gbh~H9ES*2R{6(L0pDIU^92{a9y?+^uFd!XSuZMK>dOf9stoP;Ud6NUu
zamP^7!KYBBw}qsm$m$r<L3FPp9a>hrZcFC^APYRB8|~%HSf%qN^cwKXd6m8Dt~#7D
zh5Z_gu$d#7GQzT+Uph`bk95pD#{kzHkd9}JfOP0+;>4XaFy}<lVcC~W>5ww^CqKF@
zdX5*-Z2i2P8K-ofeBSF?qvvuJX>3ryPLAYa7pm7%nTL4`)t@09hdGAw979_MF)hY;
z+8u*3)>fuv)k5V+E?(Cjt`J^r$Z^RQUH)bluSD%LS-#XI%iqo_5yq9hhw#>{$i93U
znPsHjdG)oQv|XZQCl;@aM>@a8_9S}s7`R+T8k-cbog*2p*NP6T76!Qt=5TgNXgFUp
zKuib6Xz+Z<jG``zT+cjP@+SARa8(Ox*HnIGZHq2{3s+ShX14c{jOdSS(d^4wMrK~7
z*E^%PCH<)!&Lfu2Z_vxez~w5^*rb5%9LaFKR<vccFvw*vhjTd3aj0H+3@FpGn#X2@
zzv)=>@Q~1S`3w68WnYH!Nvr6&K99Uhl8;6@zkUB*Xwq#gzmW{Z;@v4o3|TC0rqqaZ
ze*UA^PPmsU(u<CWr$>O8Cer!Y58gN7UeaeCCg~xJA$Tf&o0@9r{N%guMX9BhKsrDD
z&U?}Wky;Yz{P>&iN)JS8Nu=|`Z@d#^lZVeM`}tk+7@ihEi%IhK%?J-`9+rQm_aUp2
z=M1a<%43?*Ssh>Y(98?x>-AGTr1QP6y&YhaW4sKy?<4Lfeof9SE?*2Y!o`tGr(%)D
z)O+XPmn-(6!;#}od+(t(jTgf+di=ot!XBoc6GjjYA2WcB=rPx!vsdseGhyj``>SsQ
ze#7EfBZe7J33AB#Kt8_MWrVu`=s9}nxc))W9E?E}%~yxuNN-I<oqaQMVm&dj(!R`!
zH5*EjcHd!7>3r+UZv~{ovqp?XI(BAcA7AV;!v7!Xxc))XAvqRJUwBMfi`v)hp9{t#
z9V^zHSUUI-K9EgDTDCV~@!4cM3$jD}YL!`L<X!P(cvZG=IN!vKFyxi(AKZfGT&DRl
z=syU|^~@*>i^X;_ySl-h4#9{C+DG|5HX|Y(mq^wbW-B_x_AZmX%Na!}>t*Iy6+=pz
z`EVDAF$w9YdX%STo-*lt|LgAn*<_UuSzG4C;*g;%$QJQyR;Fk~M~nvKQWo{_WhMzD
zY<UIy7iys>3+~^N>7PScc#fYtb9|YxX2ggJP9&=t`H5s)Mz)&!7x@;WlyzR&9QWK4
z(PJldn)$GE@za;?1*JoJxj^fklv`3dG!3Q0CPSZ^xE!*cgV^ME-J6M)8ChQA?DwXt
zdg`?%jEd+2j4&I+MsRem;4IB<3-+$^Z3ECz%Vhp1?FFM2Pzp=JLU^w`j9kWJh#5UZ
zIS(owmq>;XE?(InlIO20>c>m&;5(GSS;@T$|1-O>(>x7HhmY|Q+~O(480pe+*ktF8
zA*de?S+Ku0zw1cH%#3WL;Wo+?*K8nHU4RkxNyj0Qk?CJT>G0DULC<#*wAcqfaB`WP
z3&PygG2|;w4MZddq@(r{!a13AGVX#WwsdSZ*?D6K>W4!X?5~jp8Iq2f8QCu##Wg$9
zfyaQPV-d;7^lt>xA^5WI2d&x-N-jgvfr#W-(jkQN*rnsJ$<7LyuT<l4$Oijc?0ThR
zWk&W&N9USt>8KOjOF9;jY=~n}=|DHEvUr9aTp=?y5Ry(&!%zE?4wB^Z7^UNUIXANm
zt7vFE4%uLTb?JC`<*;;2uDPdl6p?Jq$RUy$`#Y#~1d;46lNa!#d8NP#S)Tr$(lMxK
zM><s!3?7zrO6NrkIi7S{U=CvKWgLBm4S+1jNaJ_q7~ATDs?o=s<kiz=OGdaGml4+b
zgS~S6gBR9X&SfzM$UnO$31`k|%zBQHBA1nP<cv<|0V0`n-(KS6vbGAZNFrGg&P$wJ
z4oPQLuXjj$rmVA!=9DfRMvtDt{q0<0^=8SISiDQ=z&VJ!>SY}LnwtfgM`5ioKweqn
ziyJ)qvX2oiNJiKmL#LTRuN?o>KSm3cb6Jex^3Na-9KwSOSI?Lc<}<Zzf*=bH86uJy
z_54W23=1nF*(IDe0Iz5?kX~W*dWv;^1@?t*oZA+Ax4UXfEZ&uLz#PQIqVu3w{BUJ4
zz}BiUKweoRdGkE`a{r95PBVjEIsWAVrq{^1EXDx&XQ-|J&<#R8Lo@Ob*sfPpNmM#;
z#%LKS_wdx)wsel34eb|{iOIPv?mQ$I%=1Lg#{3{_E!a&A{N<r{FU#&)=g0|Xcr-JK
zvQNS*M@R^`^T<gKN$@<;C*!tNEvg?)ng@f%mDh39`DjaLcr<gFzRh$3X0*}AWhP{2
zH(RZQ*>?<{`sm)U!oPH<Hn80u(pgO3u9r$DnWgVEAEk5_;&R9!J?pT<gK^DahMBz(
z8~J!@!T!n_RqObt{q*%BBa=?ugJHSLMwbV6KGg$q%>llcKo_Lvs0EEd%4EcvgJ2_I
ztW&e36Bo<`;v9?an}6#AgjNE+C}J9Vtt5{%ix{%{g^OSSt@Lb9pmehC`^HBk9Yst-
z(y`cIT{`*oR63)T4##gfja#<(U3D9Pauur<dah7!f5sM^85v@UsRiDHY%5r#-72Lw
ctfAWf03;rIZBhViga7~l07*qoM6N<$f)nxr0RR91

literal 0
HcmV?d00001


From bf0ab135c7fc687ed044243853982abe13e93610 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Mon, 12 Oct 2020 20:54:38 +0530
Subject: [PATCH 015/209] 4490409

minor image tag changes
---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 347e58511a..6862347fd7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -78,7 +78,7 @@ Type “:wq” without the double quotes.
 
 To view your cron jobs, type `sudo crontab -l`
 
-:::image type="content" source="..\images\linux-mdatp.png" alt-text="linux mdatp":::
+:::image type="content" source="..\images\linux-mdatp-1.png" alt-text="linux mdatp":::
 
 **To inspect cron job runs:**
 

From 2c781644824327ee8ca4f743cda8455830c6a314 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Tue, 13 Oct 2020 19:55:32 +0530
Subject: [PATCH 016/209] Update linux-schedule-scan-atp.md

---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 6862347fd7..4881a157db 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -88,7 +88,7 @@ To view your cron jobs, type `sudo crontab -l`
 
 `sudo nano mdatp_cron_job.log`
 
-## For those who use Ansible, Chef, or Puppet]
+## For those who use Ansible, Chef, or Puppet
 
 Use the following commands:
 ### To set cron jobs in Ansible:

From cd76be762770237fe42059bdd96cd438e5eac045 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Tue, 13 Oct 2020 20:57:59 +0530
Subject: [PATCH 017/209] Update linux-schedule-scan-atp.md

---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 4881a157db..491a44df0e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -21,7 +21,7 @@ ms.topic: conceptual
 
 To run a scan on MDATP for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
 
-Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to be able to run scheduled tasks.
+Linux (and Unix) have a tool called **crontab**(similar to Task Scheduler) to be able to run scheduled tasks.
 
 ## Pre-requisite
 

From ac4ce3a6408ffcf5ac0c6d172c226ad27f2d887f Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Tue, 13 Oct 2020 21:00:28 +0530
Subject: [PATCH 018/209] Update linux-schedule-scan-atp.md

---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md       | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 4881a157db..09fcee81f1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -26,10 +26,8 @@ Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to b
 ## Pre-requisite
 
 > [!NOTE]
-
 > To get a list of all the time zones, run the following command:
 > `timedatectl list-timezones`
-
 > Examples for timezones:
 > - `America/Los_Angeles`
 > - `America/New_York`
@@ -67,14 +65,14 @@ CRON_TZ=America/Los_Angeles
 0 2 * * sat /bin/mdatp scan quick > ~/mdatp_cron_job.log
 
 > [!NOTE]
-In this example, we have  set it to 00 minutes, 2 a.m. (hour in 24 hour format), any day of the month, any month, on Saturdays. Meaning it will run Saturdays at 2:00 a.m. Pacific (UTC –8).
+>In this example, we have  set it to 00 minutes, 2 a.m. (hour in 24 hour format), any day of the month, any month, on Saturdays. Meaning it will run Saturdays at 2:00 a.m. Pacific (UTC –8).
 
 Press “Esc”
 
 Type “:wq” without the double quotes.
 
 > [!NOTE]
- w == write, q == quit
+> w == write, q == quit
 
 To view your cron jobs, type `sudo crontab -l`
 

From 47429eb530bedc9d4ecc942939d5ca9246d6c445 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Tue, 13 Oct 2020 21:46:01 +0530
Subject: [PATCH 019/209] Update linux-schedule-scan-atp.md

---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 737bba28fe..2daf8f2576 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -21,7 +21,7 @@ ms.topic: conceptual
 
 To run a scan on MDATP for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
 
-Linux (and Unix) have a tool called **crontab**(similar to Task Scheduler) to be able to run scheduled tasks.
+Linux(and Unix) have a tool called **crontab**(similar to Task Scheduler) to be able to run scheduled tasks.
 
 ## Pre-requisite
 

From b5c866a3520e0cb37d2df908b76b535a659ca054 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Thu, 15 Oct 2020 14:32:58 +0530
Subject: [PATCH 020/209] Update linux-schedule-scan-atp.md

Updated per comments from Yong Rhee
---
 .../linux-schedule-scan-atp.md                  | 17 ++++++-----------
 1 file changed, 6 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 2daf8f2576..b04e20d3a6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -155,16 +155,11 @@ See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](h
 
 **Explanation**:
 
-+—————- minute (values: 0 – 59) (special characters: , – * /)
-
-| +————- hour (values: 0 – 23) (special characters: , – * /)
-
-| | +———- day of month (values: 1 – 31) (special characters: , – * / L W C)
-
-| | | +——- month (values: 1 – 12) (special characters: ,- * / )
-| | | | +—- day of week (values: 0 – 6) (Sunday=0 or 7) (special characters: , – * / L W C)
-| | | | |
-
-*****command to be executed
++—————- minute (values: 0 – 59) (special characters: , – * /)  <br>
+| +————- hour (values: 0 – 23) (special characters: , – * /) <br>
+| | +———- day of month (values: 1 – 31) (special characters: , – * / L W C)  <br>
+| | | +——- month (values: 1 – 12) (special characters: ,- * / )  <br>
+| | | | +—- day of week (values: 0 – 6) (Sunday=0 or 7) (special characters: , – * / L W C) <br>
+| | | | |*****command to be executed
 
 

From 104c43ff75a1f4af29a932f8e2b49618176c5ca9 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Thu, 15 Oct 2020 14:42:18 +0530
Subject: [PATCH 021/209] update-toc-per-4490409

Updated the new topic link in the TOC - "Schedule scans with Microsoft Defender ATP for Linux"
---
 windows/security/threat-protection/TOC.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index f69cdfadb5..7325a5cf3e 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -284,6 +284,7 @@
 ##### [Static proxy configuration](microsoft-defender-atp/linux-static-proxy-configuration.md)
 ##### [Set preferences](microsoft-defender-atp/linux-preferences.md)
 ##### [Detect and block Potentially Unwanted Applications](microsoft-defender-atp/linux-pua.md)
+##### [Schedule scans with Microsoft Defender ATP for Linux](microsoft-defender-atp/linux-schedule-scan-atp.md)
 
 #### [Troubleshoot]()
 ##### [Troubleshoot installation issues](microsoft-defender-atp/linux-support-install.md)

From 4eebe0f6f82af97bfc6e9a94c9184cbaa34e3d0a Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Thu, 15 Oct 2020 14:54:54 +0530
Subject: [PATCH 022/209] Update linux-schedule-scan-atp.md

minor edit
---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index b04e20d3a6..22187f7d02 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -21,7 +21,7 @@ ms.topic: conceptual
 
 To run a scan on MDATP for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
 
-Linux(and Unix) have a tool called **crontab**(similar to Task Scheduler) to be able to run scheduled tasks.
+Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to be able to run scheduled tasks.
 
 ## Pre-requisite
 

From 272b272988926a83aac025515b09846e6b1e452e Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 15 Oct 2020 11:08:06 -0700
Subject: [PATCH 023/209] Update linux-schedule-scan-atp.md

using correct brand names from MDATP to Microsoft Defender for Endpoint (Linux)
---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md  | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 22187f7d02..d5c088430a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -1,7 +1,7 @@
 ---
-title: How to schedule scans with MDATP for Linux
-description: Learn how to schedule an automatic scanning time for Microsoft Defender ATP in Linux to better protect your organization's assets.
-keywords: microsoft, defender, atp, linux, scans, antivirus
+title: How to schedule scans with Microsoft Defender for Endpoint (Linux)
+description: Learn how to schedule an automatic scanning time for Microsoft Defender for Endpoint (Linux) to better protect your organization's assets.
+keywords: microsoft, defender, atp, linux, scans, antivirus, microsoft defender for endpoint (linux)
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: w10
@@ -17,9 +17,9 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Schedule scans with Microsoft Defender ATP for Linux
+# Schedule scans with Microsoft Defender for Endpoint (Linux)
 
-To run a scan on MDATP for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
+To run a scan for Linux, see [Supported Commands](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/linux-resources#supported-commands).
 
 Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to be able to run scheduled tasks.
 

From 59eb12e1ebca06511ad3e3ff02e09363171e3921 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Fri, 16 Oct 2020 22:49:48 +0530
Subject: [PATCH 024/209] Update linux-schedule-scan-atp.md

---
 .../linux-schedule-scan-atp.md                   | 16 +++++++++-------
 1 file changed, 9 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index d5c088430a..ff23ec7922 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -31,8 +31,8 @@ Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to b
 > Examples for timezones:
 > - `America/Los_Angeles`
 > - `America/New_York`
->- `America/Chicago`
->- `America/Denver`
+> - `America/Chicago`
+> - `America/Denver`
 
 ## To set the Cron job
 Use the following commands:
@@ -44,9 +44,10 @@ Use the following commands:
 > [!NOTE]
 > Where 200919 == YRMMDD
 
-> TIP: 
-Do this before you edit or remove.
-To edit the crontab, and add a new job as a root user:
+> [!TIP]
+> Do this before you edit or remove. <br>
+
+To edit the crontab, and add a new job as a root user: <br>
 `sudo crontab -e`
 
 > [!NOTE]
@@ -109,7 +110,7 @@ Automating with Puppet: Cron jobs and scheduled tasks
 
 See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/) for more information.
 
-## Additional information:
+## Additional information
 
 **To get help with crontab**
 
@@ -126,8 +127,9 @@ See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](h
 **To backup crontab entries:**
 
 `crontab -l > /var/tmp/cron_backup.dat`
+
 > [!TIP]
-> Do this before you edit or remove.
+> Do this before you edit or remove. <br>
 
 **To restore crontab entries:**
 

From c2b1ce54a71a141ca0ab9b953dce06198784fbed Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <69782111+Lovina-Saldanha@users.noreply.github.com>
Date: Fri, 16 Oct 2020 23:08:33 +0530
Subject: [PATCH 025/209] Update linux-schedule-scan-atp.md

---
 .../linux-schedule-scan-atp.md                | 30 +++++++++----------
 1 file changed, 15 insertions(+), 15 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index ff23ec7922..18d93d4b7d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -37,7 +37,7 @@ Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to b
 ## To set the Cron job
 Use the following commands:
 
-**To backup crontab entries:**
+**To backup crontab entries**
 
 `sudo crontab -l > /var/tmp/cron_backup_200919.dat`
 
@@ -79,7 +79,7 @@ To view your cron jobs, type `sudo crontab -l`
 
 :::image type="content" source="..\images\linux-mdatp-1.png" alt-text="linux mdatp":::
 
-**To inspect cron job runs:**
+**To inspect cron job runs**
 
 `sudo grep mdatp /var/log/cron`
 
@@ -90,18 +90,18 @@ To view your cron jobs, type `sudo crontab -l`
 ## For those who use Ansible, Chef, or Puppet
 
 Use the following commands:
-### To set cron jobs in Ansible:
+### To set cron jobs in Ansible
 
 `cron – Manage cron.d and crontab entries`
 
 See [https://docs.ansible.com/ansible/latest/modules/cron_module.html](https://docs.ansible.com/ansible/latest/modules/cron_module.html) for more information.
 
-### To set crontabs in Chef:
+### To set crontabs in Chef
 `cron resource`
 
 See [https://docs.chef.io/resources/cron/](https://docs.chef.io/resources/cron/) for more information.
 
-### To set cron jobs in Puppet:
+### To set cron jobs in Puppet
 Resource Type: cron
 
 See [https://puppet.com/docs/puppet/5.5/types/cron.html](https://puppet.com/docs/puppet/5.5/types/cron.html) for more information.
@@ -116,46 +116,46 @@ See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](h
 
 `man crontab`
 
-**To get a list of crontab file of the current user:**
+**To get a list of crontab file of the current user**
 
 `crontab -l`
 
-**To get a list of crontab file of another user:**
+**To get a list of crontab file of another user**
 
 `crontab -u username -l`
 
-**To backup crontab entries:**
+**To backup crontab entries**
 
 `crontab -l > /var/tmp/cron_backup.dat`
 
 > [!TIP]
 > Do this before you edit or remove. <br>
 
-**To restore crontab entries:**
+**To restore crontab entries**
 
 `crontab /var/tmp/cron_backup.dat`
 
-**To edit the crontab and add a new job as a root user:**
+**To edit the crontab and add a new job as a root user**
 
 `Sudo crontab -e`
 
-**To edit the crontab and add a new job:**
+**To edit the crontab and add a new job**
 
 `crontab -e`
 
-**To edit other user’s crontab entries:**
+**To edit other user’s crontab entries**
 
 `crontab -u username -e`
 
-**To remove all crontab entries:**
+**To remove all crontab entries**
 
 `crontab -r`
 
-**To remove other user’s crontab entries:**
+**To remove other user’s crontab entries**
 
 `crontab -u username -r`
 
-**Explanation**:
+**Explanation**
 
 +—————- minute (values: 0 – 59) (special characters: , – * /)  <br>
 | +————- hour (values: 0 – 23) (special characters: , – * /) <br>

From aae02c543a8b17fb9fb47edf4989936f2b929499 Mon Sep 17 00:00:00 2001
From: Thomas Garrity <31856350+poortom1004@users.noreply.github.com>
Date: Mon, 19 Oct 2020 10:59:00 -0500
Subject: [PATCH 026/209] Update active-directory-security-groups.md

---
 .../access-control/active-directory-security-groups.md        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/access-control/active-directory-security-groups.md b/windows/security/identity-protection/access-control/active-directory-security-groups.md
index 61198672fc..5e7db538d0 100644
--- a/windows/security/identity-protection/access-control/active-directory-security-groups.md
+++ b/windows/security/identity-protection/access-control/active-directory-security-groups.md
@@ -3368,9 +3368,9 @@ This security group has not changed since Windows Server 2008.
 
 ### <a href="" id="bkmk-serveroperators"></a>Server Operators
 
-Members in the Server Operators group can administer domain servers. This group exists only on domain controllers. By default, the group has no members. Members of the Server Operators group can sign in to a server interactively, create and delete network shared resources, start and stop services, back up and restore files, format the hard disk drive of the computer, and shut down the computer. This group cannot be renamed, deleted, or moved.
+Members in the Server Operators group can administer domain controllers. This group exists only on domain controllers. By default, the group has no members. Members of the Server Operators group can sign in to a server interactively, create and delete network shared resources, start and stop services, back up and restore files, format the hard disk drive of the computer, and shut down the computer. This group cannot be renamed, deleted, or moved.
 
-By default, this built-in group has no members, and it has access to server configuration options on domain controllers. Its membership is controlled by the service administrator groups, Administrators and Domain Admins, in the domain, and the Enterprise Admins group. Members in this group cannot change any administrative group memberships. This is considered a service administrator account because its members have physical access to domain controllers, they can perform maintenance tasks (such as backup and restore), and they have the ability to change binaries that are installed on the domain controllers. Note the default user rights in the following table.
+By default, this built-in group has no members, and it has access to server configuration options on domain controllers. Its membership is controlled by the service administrator groups Administrators and Domain Admins in the domain, and the Enterprise Admins group in the forest root domain. Members in this group cannot change any administrative group memberships. This is considered a service administrator account because its members have physical access to domain controllers, they can perform maintenance tasks (such as backup and restore), and they have the ability to change binaries that are installed on the domain controllers. Note the default user rights in the following table.
 
 The Server Operators group applies to versions of the Windows Server operating system listed in the [Active Directory Default Security Groups table](#bkmk-groupstable).
 

From bdce156a229f89854ec66ed766bcda89d05904e3 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Mon, 19 Oct 2020 15:27:54 -0700
Subject: [PATCH 027/209] Added mfc40.dll to recommended block list

---
 .../microsoft-recommended-block-rules.md                        | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
index 06d6ee7d8f..4561b40720 100644
--- a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
@@ -158,6 +158,7 @@ Pick the correct version of each .dll for the Windows release you plan to suppor
   <Deny ID="ID_DENY_KILL" FriendlyName="kill.exe" FileName="kill.exe" MinimumFileVersion="65535.65535.65535.65535" />
   <Deny ID="ID_DENY_LXRUN" FriendlyName="lxrun.exe" FileName="lxrun.exe" MinimumFileVersion="65535.65535.65535.65535"/> 
   <Deny ID="ID_DENY_LXSS" FriendlyName="LxssManager.dll" FileName="LxssManager.dll" MinimumFileVersion="65535.65535.65535.65535"/>
+  <Deny ID="ID_DENY_MFC40" FriendlyName="mfc40.dll" FileName="mfc40.dll" MinimumFileVersion="65535.65535.65535.65535"/> 
   <Deny ID="ID_DENY_MS_BUILD" FriendlyName="Microsoft.Build.dll" FileName="Microsoft.Build.dll" MinimumFileVersion="65535.65535.65535.65535" /> 
   <Deny ID="ID_DENY_MS_BUILD_FMWK" FriendlyName="Microsoft.Build.Framework.dll" FileName="Microsoft.Build.Framework.dll" MinimumFileVersion="65535.65535.65535.65535" /> 
   <Deny ID="ID_DENY_MWFC" FriendlyName="Microsoft.Workflow.Compiler.exe" FileName="Microsoft.Workflow.Compiler.exe" MinimumFileVersion="65535.65535.65535.65535" /> 
@@ -896,6 +897,7 @@ Pick the correct version of each .dll for the Windows release you plan to suppor
   <FileRuleRef RuleID="ID_DENY_KILL"/>
   <FileRuleRef RuleID="ID_DENY_LXSS"/> 
   <FileRuleRef RuleID="ID_DENY_LXRUN"/> 
+  <FileRuleRef RuleID="ID_DENY_MFC40"/>
   <FileRuleRef RuleID="ID_DENY_MS_BUILD" /> 
   <FileRuleRef RuleID="ID_DENY_MS_BUILD_FMWK" /> 
   <FileRuleRef RuleID="ID_DENY_MWFC" /> 

From b7f5d38e67c4fce459f4c94795fe7491df8cbf80 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Tue, 20 Oct 2020 23:38:41 +0530
Subject: [PATCH 028/209] Update linux-schedule-scan-atp.md

minor correction in note
---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 18d93d4b7d..3bd8a7cde1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -27,7 +27,7 @@ Linux (and Unix) have a tool called **crontab** (similar to Task Scheduler) to b
 
 > [!NOTE]
 > To get a list of all the time zones, run the following command:
-> `timedatectl list-timezones`
+> `timedatectl list-timezones`<br>
 > Examples for timezones:
 > - `America/Los_Angeles`
 > - `America/New_York`

From 0b0786fd866118df010ca7b23b25b1ab7de04736 Mon Sep 17 00:00:00 2001
From: Jordan Geurten <jogeurte@microsoft.com>
Date: Tue, 20 Oct 2020 14:32:35 -0700
Subject: [PATCH 029/209] Added contributor to the acknowledgements section

---
 .../microsoft-recommended-block-rules.md                         | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
index 4561b40720..620cfbcd0b 100644
--- a/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-block-rules.md
@@ -88,6 +88,7 @@ Unless your use scenarios explicitly require them, Microsoft recommends that you
 |Lasse Trolle Borup | Langkjaer Cyber Defence |
 |Jimmy Bayne | @bohops |
 |Philip Tsukerman | @PhilipTsukerman |
+|Brock Mammen| |
 
 <br />
 

From 3f52aca0f46c3c59738dc1183053f0b2f3dcbc1a Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Thu, 22 Oct 2020 21:33:58 +0500
Subject: [PATCH 030/209] Update hello-cert-trust-adfs.md

---
 .../hello-for-business/hello-cert-trust-adfs.md                | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index 4486823bc5..edd7419a58 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -45,7 +45,8 @@ Prepare the Active Directory Federation Services deployment by installing and up
 > 2. Right click "Scope Descriptions" and select "Add Scope Description".
 > 3. Under name type "ugs" and Click Apply > OK.
 > 4. Launch Powershell as Administrator.
-> 5. Execute the command "Get-AdfsApplicationPermission". Look for the ScopeNames :{openid, aza} that has the ClientRoleIdentifier Make a note of the ObjectIdentifier.
+> 5. Get the ObjectIdentifier of application permission with ClientRoleIdentifier parameter equal to "38aa3b87-a06d-4817-b275-7a316988d93b":
+```(Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier```  
 > 6. Execute the command "Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'.
 > 7. Restart the ADFS service.
 > 8. On the client: Restart the client. User should be prompted to provision WHFB.

From 6cf756296e063e53048024942dc01b9d67d2891e Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 23 Oct 2020 18:58:41 -0700
Subject: [PATCH 031/209] new section

---
 .../microsoft-defender-atp/tvm-exception.md   | 113 ++++++++++++++++++
 1 file changed, 113 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
index f8f6565174..76ce732c92 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
@@ -89,6 +89,119 @@ Select **Show exceptions** at the bottom of the **Top security recommendations**
 
 ![Screenshot of Show exceptions link in the Top security recommendations card in the dashboard.](images/tvm-exception-dashboard.png)
 
+## File for exception
+
+As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md). If your organization has device groups, you will now be able to scope the exception to specific device groups.
+
+When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state will change to **Full exception** or **Partial exception** (by device group).
+
+### How to create an exception
+
+Select a security recommendation you would like create an exception for, and then select **Exception options**.  
+
+![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-options.png)
+
+Choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab.
+
+### Exception scope
+
+Exceptions can either be created for selected device groups, or for all device groups past and present.  
+
+#### Exception by device group
+
+Apply the exception to all device groups or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.” The state will change to “full exception” if you select all the device groups.
+
+![Showing device group dropdown.](images/tvm-exception-device-group-500.png)
+
+##### Filtered
+
+If you have filtered by device group on any of the threat and vulnerability management pages, only your filtered device groups will appear as options.
+
+Button to filter by device group on any of the threat and vulnerability management pages: 
+
+![Showing selected device groups filter.](images/tvm-selected-device-groups.png)
+
+Exception view with filtered device groups:
+
+![Showing filtered device group dropdown.](images/tvm-exception-device-filter500.png)
+
+##### Large number of device groups
+
+If your organization has more than 20 device groups, select **Edit** next to the filtered device group option.
+
+![Showing how to edit large numbers of groups.](images/tvm-exception-edit-groups.png)
+
+A flyout will appear where you can search and choose device groups you want included. Select the check mark icon below Search to check/uncheck all.
+
+![Showing large device group flyout.](images/tvm-exception-device-group-flyout-400.png)
+
+#### Global exceptions
+
+If you have global administrator permissions (called Microsoft Defender ATP administrator), you will be able to create and cancel a global exception. It affects **all** current and future device groups in your organization, and only a user with similar permission would be able to change it. The recommendation state will change from “active” to “full exception.”
+
+![Showing global exception option.](images/tvm-exception-global.png)
+
+Some things to keep in mind:
+
+- If a recommendation is under global exception, then newly created exceptions for device groups will be suspended until the global exception has expired or been cancelled. After that point, the new device group exceptions will go into effect until they expire.
+- If a recommendation already has exceptions for specific device groups and a global exception is created, then the device group exception will be suspended until it expires or the global exception is cancelled before it expires.
+
+### Justification
+
+Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
+
+The following list details the justifications behind the exception options:
+
+- **Third party control** - A third party product or software already addresses this recommendation
+        - Choosing this justification type will lower your exposure score and increase your secure score because your risk is reduced
+- **Alternate mitigation** - An internal tool already addresses this recommendation
+        - Choosing this justification type will lower your exposure score and increase your secure score because your risk is reduced
+- **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
+- **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
+
+### View all exceptions
+
+Navigate to the **Exceptions** tab in the **Remediation** page.
+
+![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
+
+Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can Export. You can also view the related recommendation or cancel the exception.
+
+### How to cancel an exception
+
+To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception.
+
+#### Cancel the exception for a specific device group
+
+If the exception is per device group, then you will need to select the specific device group to cancel the exception for it. 
+
+![Showing how to select a specific device group.](images/tvm-exception-device-group-hover.png)
+
+A flyout will appear for the device group, and you can select **Cancel exception**.
+
+#### Cancel a global exception
+
+If it is a global exception, select an exception from the list and then select **Cancel exception** from the flyout.
+
+![Showing how to cancel the exception for a global exception.](images/tvm-exception-cancel-global-400.png)
+
+### View impact after exceptions are applied
+
+In the Security Recommendations page, select **Customize columns** and check the boxes for **Exposed devices (after exceptions)** and **Impact (after exceptions)**.
+
+![Showing customize columns options.](images/tvm-after-exceptions.png)
+
+The exposed devices (after exceptions) column shows the remaining devices that are still exposed to vulnerabilities after exceptions are applied. Exception justifications that affect the exposure include ‘third party control’ and ‘alternate mitigation’. Other justifications do not reduce the exposure of a device, and they are still considered exposed.
+
+The impact (after exceptions) shows remaining impact to exposure score or secure score after exceptions are applied. Exception justifications that affect the scores include ‘third party control’ and ‘alternate mitigation.’ Other justifications do not reduce the exposure of a device, and so the exposure score and secure score do not change.
+
+![Showing the columns in the table.](images/tvm-after-exceptions-table.png)
+If there is a large jump in the number of exposed devices, or a sharp increase in the impact on your organization exposure score and Microsoft Secure Score for Devices, then that security recommendation is worth investigating.
+
+1. Select the recommendation and **Open software page**
+2. Select the **Event timeline** tab to view all the impactful events related to that software, such as new vulnerabilities or new public exploits. [Learn more about event timeline](threat-and-vuln-mgt-event-timeline.md)
+3. Decide how to address the increase or your organization's exposure, such as submitting a remediation request.
+
 ## Related topics
 
 - [Threat and vulnerability management overview](next-gen-threat-and-vuln-mgt.md)

From 54bcb53231b5f88622d15add7b4b8e6807172a89 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 23 Oct 2020 19:29:11 -0700
Subject: [PATCH 032/209] updated exceptions

---
 .../microsoft-defender-atp/tvm-exception.md   | 96 ++++---------------
 1 file changed, 16 insertions(+), 80 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
index 76ce732c92..4421ece5a0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
@@ -29,91 +29,27 @@ ms.topic: conceptual
 
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
-Sometimes, you may not be able to take the remediation steps suggested by a security recommendation. If that is the case, threat and vulnerability management gives you an avenue to create an exception.
-
-When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state changes to **Exception**, and no longer shows up in the security recommendations list.
-
-## Create an exception
-
-1. Go to the threat and vulnerability management navigation menu in the Microsoft Defender Security Center, and select [**Security recommendations**](tvm-security-recommendation.md).
-
-2. Select a security recommendation you would like to create an exception for, and then **Exception options**.
-![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-option.png)
-
-3. Select your justification for the exception you need to file instead of remediating the security recommendation in question. Fill out the justification context, then set the exception duration.
-
-    The following list details the justifications behind the exception options:
-
-    - **Third party control** - A third party product or software already addresses this recommendation
-        - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
-    - **Alternate mitigation** - An internal tool already addresses this recommendation
-        - Choosing this justification type will lower your exposure score and increase you secure score because your risk is reduced
-    - **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
-    - **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
-
-4. Select **Submit**. A confirmation message at the top of the page indicates that the exception has been created.
-
-## View your exceptions
-
-When you file for an exception from the security recommendations page, you create an exception  for that security recommendation. You can file exceptions to exclude certain recommendation from showing up in reports and affecting your [Microsoft Secure Score for Devices](tvm-microsoft-secure-score-devices.md).
-
-The exceptions you've filed will show up in the **Remediation** page, in the **Exceptions** tab. You can filter your view based on exception justification, type, and status.  
-
-![Example of the exception page and filter options.](images/tvm-exception-filters.png)
-
-### Exception actions and statuses
-
-Once an exception exists, you can cancel it at any time by going to the exception in the **Remediation** page and selecting **Cancel exception**.
-
-The following statuses will be a part of an exception:
-
-- **Canceled** - The exception has been canceled and is no longer in effect  
-- **Expired** - The exception that you've filed is no longer in effect
-- **In effect** - The exception that you've filed is in progress
-
-### Exception impact on scores
-
-Creating an exception can potentially affect the Exposure Score (for both types of weaknesses) and Microsoft Secure Score for Devices of your organization in the following manner:
-
-- **No impact** - Removes the recommendation from the lists (which can be reverse through filters), but will not affect the scores.
-- **Mitigation-like impact** - As if the recommendation was mitigated (and scores will be adjusted accordingly) when you select it as a compensating control.
-- **Hybrid** - Provides visibility on both No impact and Mitigation-like impact. It shows both the Exposure Score and Microsoft Secure Score for Devices results out of the exception option that you made.
-
-The exception impact shows on both the Security recommendations page column and in the flyout pane.
-
-![Screenshot identifying the impact sections which list score impacts in the full page security recommendations table, and the flyout.](images/tvm-exception-impact.png)
-
-### View exceptions in other places
-
-Select **Show exceptions** at the bottom of the **Top security recommendations** card in the dashboard. It will open a filtered view in the **Security recommendations** page of recommendations with an "Exception" status.
-
-![Screenshot of Show exceptions link in the Top security recommendations card in the dashboard.](images/tvm-exception-dashboard.png)
-
-## File for exception
-
-As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md). If your organization has device groups, you will now be able to scope the exception to specific device groups.
+As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. If your organization has device groups, you will now be able to scope the exception to specific device groups. Exceptions can either be created for selected device groups, or for all device groups past and present.  
 
 When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state will change to **Full exception** or **Partial exception** (by device group).
 
-### How to create an exception
+## Permissions
 
-Select a security recommendation you would like create an exception for, and then select **Exception options**.  
+Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md).
+
+## Create an exception
+
+Select a security recommendation you would like create an exception for, and then select **Exception options** and fill out the form.  
 
 ![Showing where the button for "exception options" is location in a security recommendation flyout.](images/tvm-exception-options.png)
 
-Choose the scope and justification, set a date for the exception duration, and submit. To view all your exceptions (current and past), navigate to the [Remediation](tvm-remediation.md) page under the **Threat & Vulnerability Management** menu and select the **Exceptions** tab.
-
-### Exception scope
-
-Exceptions can either be created for selected device groups, or for all device groups past and present.  
-
-#### Exception by device group
+### Exception by device group
 
 Apply the exception to all device groups or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.” The state will change to “full exception” if you select all the device groups.
 
 ![Showing device group dropdown.](images/tvm-exception-device-group-500.png)
 
-##### Filtered
+#### Filtered views
 
 If you have filtered by device group on any of the threat and vulnerability management pages, only your filtered device groups will appear as options.
 
@@ -125,7 +61,7 @@ Exception view with filtered device groups:
 
 ![Showing filtered device group dropdown.](images/tvm-exception-device-filter500.png)
 
-##### Large number of device groups
+#### Large number of device groups
 
 If your organization has more than 20 device groups, select **Edit** next to the filtered device group option.
 
@@ -135,7 +71,7 @@ A flyout will appear where you can search and choose device groups you want incl
 
 ![Showing large device group flyout.](images/tvm-exception-device-group-flyout-400.png)
 
-#### Global exceptions
+### Global exceptions
 
 If you have global administrator permissions (called Microsoft Defender ATP administrator), you will be able to create and cancel a global exception. It affects **all** current and future device groups in your organization, and only a user with similar permission would be able to change it. The recommendation state will change from “active” to “full exception.”
 
@@ -159,7 +95,7 @@ The following list details the justifications behind the exception options:
 - **Risk accepted** - Poses low risk and/or implementing the recommendation is too expensive
 - **Planned remediation (grace)** - Already planned but is awaiting execution or authorization
 
-### View all exceptions
+## View all exceptions
 
 Navigate to the **Exceptions** tab in the **Remediation** page.
 
@@ -167,11 +103,11 @@ Navigate to the **Exceptions** tab in the **Remediation** page.
 
 Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can Export. You can also view the related recommendation or cancel the exception.
 
-### How to cancel an exception
+## How to cancel an exception
 
 To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception.
 
-#### Cancel the exception for a specific device group
+### Cancel the exception for a specific device group
 
 If the exception is per device group, then you will need to select the specific device group to cancel the exception for it. 
 
@@ -179,13 +115,13 @@ If the exception is per device group, then you will need to select the specific
 
 A flyout will appear for the device group, and you can select **Cancel exception**.
 
-#### Cancel a global exception
+### Cancel a global exception
 
 If it is a global exception, select an exception from the list and then select **Cancel exception** from the flyout.
 
 ![Showing how to cancel the exception for a global exception.](images/tvm-exception-cancel-global-400.png)
 
-### View impact after exceptions are applied
+## View impact after exceptions are applied
 
 In the Security Recommendations page, select **Customize columns** and check the boxes for **Exposed devices (after exceptions)** and **Impact (after exceptions)**.
 

From d907ecdd8f30f39db98314e2a3681a70ffbc9275 Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Sat, 24 Oct 2020 19:10:38 +0530
Subject: [PATCH 033/209] removed  REG_SZ  added  REG_DWORD

as per user report #8526 , i  removed **REG_SZ**   and added   **REG_DWORD**

https://user-images.githubusercontent.com/3296790/97083291-8a530200-162c-11eb-83e6-a4cc001a18d5.JPG
---
 ...windows-operating-system-components-to-microsoft-services.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
index 956ca7dc78..13846802f8 100644
--- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
+++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
@@ -1659,7 +1659,7 @@ You can turn off **Enhanced Notifications** as follows:
 
   -or-
 
-- Create a new REG_SZ registry setting named **DisableEnhancedNotifications** in **HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows Defender\Reporting** to a value of **1**.
+- Create a new REG_DWORD registry setting named **DisableEnhancedNotifications** in **HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows Defender\Reporting** to a value of **1**.
 
 
 ### <a href="" id="bkmk-defender-smartscreen"></a>24.1 Windows Defender SmartScreen

From 2e58aa16fc0869d7f63a8fff1082daa1388e4a1d Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sat, 24 Oct 2020 21:21:12 +0500
Subject: [PATCH 034/209] Update
 windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-cert-trust-adfs.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index edd7419a58..379208652b 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -44,7 +44,7 @@ Prepare the Active Directory Federation Services deployment by installing and up
 > 1. Launch AD FS management console. Brose to "Services > Scope Descriptions".
 > 2. Right click "Scope Descriptions" and select "Add Scope Description".
 > 3. Under name type "ugs" and Click Apply > OK.
-> 4. Launch Powershell as Administrator.
+> 4. Launch PowerShell as an administrator.
 > 5. Get the ObjectIdentifier of application permission with ClientRoleIdentifier parameter equal to "38aa3b87-a06d-4817-b275-7a316988d93b":
 ```(Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier```  
 > 6. Execute the command "Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'.

From dd8487ef9baf8469d3e493a424ffb2835ecb89b3 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sat, 24 Oct 2020 21:21:22 +0500
Subject: [PATCH 035/209] Update
 windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../hello-for-business/hello-cert-trust-adfs.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index 379208652b..1d233bb60e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -45,7 +45,7 @@ Prepare the Active Directory Federation Services deployment by installing and up
 > 2. Right click "Scope Descriptions" and select "Add Scope Description".
 > 3. Under name type "ugs" and Click Apply > OK.
 > 4. Launch PowerShell as an administrator.
-> 5. Get the ObjectIdentifier of application permission with ClientRoleIdentifier parameter equal to "38aa3b87-a06d-4817-b275-7a316988d93b":
+> 5. Get the ObjectIdentifier of the application permission with the ClientRoleIdentifier parameter equal to "38aa3b87-a06d-4817-b275-7a316988d93b":
 ```(Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier```  
 > 6. Execute the command "Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'.
 > 7. Restart the ADFS service.

From 6a97dfb5454dda514bc3f8a6c03f57f3c055fbd9 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Mon, 26 Oct 2020 07:28:55 +0500
Subject: [PATCH 036/209] Update
 windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../hello-for-business/hello-cert-trust-adfs.md               | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index 1d233bb60e..14ba52e89e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -46,7 +46,9 @@ Prepare the Active Directory Federation Services deployment by installing and up
 > 3. Under name type "ugs" and Click Apply > OK.
 > 4. Launch PowerShell as an administrator.
 > 5. Get the ObjectIdentifier of the application permission with the ClientRoleIdentifier parameter equal to "38aa3b87-a06d-4817-b275-7a316988d93b":
-```(Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier```  
+> ```PowerShell
+> (Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier
+> ```
 > 6. Execute the command "Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'.
 > 7. Restart the ADFS service.
 > 8. On the client: Restart the client. User should be prompted to provision WHFB.

From c3955bf1426e417b293c2d422c736e07235712b8 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Mon, 26 Oct 2020 07:29:21 +0500
Subject: [PATCH 037/209] Update
 windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../hello-for-business/hello-cert-trust-adfs.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
index 14ba52e89e..8e3e7d4f74 100644
--- a/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-cert-trust-adfs.md
@@ -49,7 +49,7 @@ Prepare the Active Directory Federation Services deployment by installing and up
 > ```PowerShell
 > (Get-AdfsApplicationPermission -ServerRoleIdentifiers 'http://schemas.microsoft.com/ws/2009/12/identityserver/selfscope' | ?{ $_.ClientRoleIdentifier -eq '38aa3b87-a06d-4817-b275-7a316988d93b' }).ObjectIdentifier
 > ```
-> 6. Execute the command "Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'.
+> 6. Execute the command `Set-AdfsApplicationPermission -TargetIdentifier <ObjectIdentifier from step 5> -AddScope 'ugs'`.
 > 7. Restart the ADFS service.
 > 8. On the client: Restart the client. User should be prompted to provision WHFB.
 > 9. If the provisioning window does not pop up then need to collect NGC trace logs and further troubleshoot.

From 4bcb2f09de05e089822439e5af8ebc17b679c392 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Wed, 28 Oct 2020 10:51:10 +0530
Subject: [PATCH 038/209] Update-4594479

Updated linkid in the link: https://go.microsoft.com/fwlink/p/?linkid=2069559   to 2146631
---
 .../threat-protection/change-history-for-threat-protection.md   | 2 +-
 .../device-control/control-usb-devices-using-intune.md          | 2 +-
 .../enable-virtualization-based-protection-of-code-integrity.md | 2 +-
 .../security/threat-protection/device-guard/memory-integrity.md | 2 +-
 ...nes-for-virtualization-based-protection-of-code-integrity.md | 2 +-
 .../manage-protection-updates-microsoft-defender-antivirus.md   | 2 +-
 .../microsoft-defender-antivirus-in-windows-10.md               | 2 +-
 .../troubleshoot-microsoft-defender-antivirus-when-migrating.md | 2 +-
 .../microsoft-defender-application-guard/faq-md-app-guard.md    | 2 +-
 .../md-app-guard-overview.md                                    | 2 +-
 .../microsoft-defender-application-guard/reqs-md-app-guard.md   | 2 +-
 .../microsoft-defender-atp/tvm-assign-device-value.md           | 2 +-
 .../microsoft-defender-atp/tvm-end-of-support-software.md       | 2 +-
 .../threat-protection/microsoft-defender-atp/tvm-exception.md   | 2 +-
 .../microsoft-defender-atp/tvm-prerequisites.md                 | 2 +-
 15 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/windows/security/threat-protection/change-history-for-threat-protection.md b/windows/security/threat-protection/change-history-for-threat-protection.md
index af17bfed1e..d4391adcbe 100644
--- a/windows/security/threat-protection/change-history-for-threat-protection.md
+++ b/windows/security/threat-protection/change-history-for-threat-protection.md
@@ -1,5 +1,5 @@
 ---
-title: Change history for [Windows Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+title: Change history for [Windows Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 ms.reviewer: 
 ms.author: dansimp
 description: This topic lists new and updated topics in the WWindows Defender ATP content set.
diff --git a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
index add9bc1309..3c7fb12101 100644
--- a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
+++ b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
@@ -15,7 +15,7 @@ audience: ITPro
 
 # How to control USB devices and other removable media using Microsoft Defender ATP
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Microsoft recommends [a layered approach to securing removable media](https://aka.ms/devicecontrolblog), and Microsoft Defender ATP provides multiple monitoring and control features to help prevent threats in unauthorized peripherals from compromising your devices:
 
diff --git a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
index 35846937a0..4661467e5e 100644
--- a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
@@ -18,7 +18,7 @@ ms.reviewer:
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 This topic covers different ways to enable Hypervisor-protected code integrity (HVCI) on Windows 10.
 Some applications, including device drivers, may be incompatible with HVCI.
diff --git a/windows/security/threat-protection/device-guard/memory-integrity.md b/windows/security/threat-protection/device-guard/memory-integrity.md
index 3ebdf7bf95..9fb8ce4166 100644
--- a/windows/security/threat-protection/device-guard/memory-integrity.md
+++ b/windows/security/threat-protection/device-guard/memory-integrity.md
@@ -18,7 +18,7 @@ manager: dansimp
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Memory integrity is a feature of Windows that ensures code running in the Windows kernel is securely designed and trustworthy. It uses hardware virtualization and Hyper-V to protect Windows kernel mode processes from the injection and execution of malicious or unverified code. The integrity of code that runs on Windows is validated by memory integrity, making Windows resistant to attacks from malicious software. Memory integrity is a powerful security boundary that helps to block many types of malware from running in Windows 10 and Windows Server 2016 environments.
 
diff --git a/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
index d594900ce7..5b41e23255 100644
--- a/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
@@ -19,7 +19,7 @@ ms.author: dansimp
 
 **Applies to**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Computers must meet certain hardware, firmware, and software requirements in order to take advantage of all of the virtualization-based security (VBS) features in [Windows Defender Device Guard](../device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md). Computers lacking these requirements can still be protected by Windows Defender Application Control (WDAC) policies—the difference is that those computers will not be as hardened against certain threats.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
index 2ac2800429..cb5f433122 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md
@@ -22,7 +22,7 @@ ms.custom: nextgen
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 <a id="protection-updates"></a>
 <!-- this has been used as anchor in VDI content -->
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index e9bcff7d72..df6dcb310f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -23,7 +23,7 @@ ms.custom: nextgen
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 ## Microsoft Defender Antivirus: Your next-generation protection
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md
index 09535418a1..42ea33f88f 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/troubleshoot-microsoft-defender-antivirus-when-migrating.md
@@ -21,7 +21,7 @@ manager: dansimp
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 You can find help here if you encounter issues while migrating from a third-party security solution to Microsoft Defender Antivirus.
 
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
index b3bb7867ee..efc5e96416 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
@@ -16,7 +16,7 @@ ms.custom: asr
 
 # Frequently asked questions - Microsoft Defender Application Guard 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Answering frequently asked questions about Microsoft Defender Application Guard (Application Guard) features, integration with the Windows operating system, and general configuration.
 
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
index 4acd29aa2d..4a6ef8896a 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
@@ -16,7 +16,7 @@ ms.custom: asr
 
 # Microsoft Defender Application Guard overview
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 Microsoft Defender Application Guard (Application Guard) is designed to help prevent old and newly emerging attacks to help keep employees productive. Using our unique hardware isolation approach, our goal is to destroy the playbook that attackers use by making current attack methods obsolete.
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
index 5757f18c10..5b18d1b484 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
@@ -16,7 +16,7 @@ ms.custom: asr
 
 # System requirements for Microsoft Defender Application Guard
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 The threat landscape is continually evolving. While hackers are busy developing new techniques to breach enterprise networks by compromising workstations, phishing schemes remain one of the top ways to lure employees into social engineering attacks. Microsoft Defender Application Guard is designed to help prevent old, and newly emerging attacks, to help keep employees productive.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
index 8dfec3f344..7e59c7cb67 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
@@ -25,7 +25,7 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
index 7d2f8da30c..aaab188cac 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
index f8f6565174..dcd537fb96 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
index 9aba0d42d1..8ccaa9eb8d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
@@ -23,7 +23,7 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)

From 928e222bf520c0d196b9ec112d268a7c64ff2a5d Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sun, 1 Nov 2020 09:25:10 +0500
Subject: [PATCH 039/209] Update linux-support-install.md

---
 .../microsoft-defender-atp/linux-support-install.md         | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
index 15d0e69c78..2444acd2f4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
@@ -97,7 +97,9 @@ Then rerun step 2.
 4. If the above steps don’t work, check if SELinux is installed and in enforcing mode. If so, try setting it to permissive (preferably) or disabled mode. It can be done by setting the parameter `SELINUX` to "permissive" or "disabled" in `/etc/selinux/config` file, followed by reboot. Check the man-page of selinux for more details.
 Now try restarting the mdatp service using step 2. Revert the configuration change immediately though for security reasons after trying it and reboot.
 
-5. Ensure that the daemon has executable permission.
+5. If ```/opt``` directory is a symbolic link, create a bind mount for ```/opt/microsoft```. 
+
+6. Ensure that the daemon has executable permission.
     ```bash
     ls -l /opt/microsoft/mdatp/sbin/wdavdaemon
     ```
@@ -110,7 +112,7 @@ Now try restarting the mdatp service using step 2. Revert the configuration chan
     ```
     and retry running step 2.
 
-6. Ensure that the file system containing wdavdaemon isn't mounted with "noexec".
+7. Ensure that the file system containing wdavdaemon isn't mounted with "noexec".
 
 ## If mdatp service is running, but EICAR text file detection doesn't work
 

From 198e2f8b18484ae8fe1e493e2dcf9f3b2cbd5709 Mon Sep 17 00:00:00 2001
From: Tina McNaboe <53281468+TinaMcN@users.noreply.github.com>
Date: Mon, 2 Nov 2020 17:09:26 -0800
Subject: [PATCH 040/209] Update ie-edge-faqs.md

Fixed Localization Priority metadata
---
 browsers/internet-explorer/kb-support/ie-edge-faqs.md | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/browsers/internet-explorer/kb-support/ie-edge-faqs.md b/browsers/internet-explorer/kb-support/ie-edge-faqs.md
index 0257a9db03..5c29be5126 100644
--- a/browsers/internet-explorer/kb-support/ie-edge-faqs.md
+++ b/browsers/internet-explorer/kb-support/ie-edge-faqs.md
@@ -10,9 +10,7 @@ ms.prod: internet-explorer
 ms.technology:
 ms.topic: kb-support
 ms.custom: CI=111020
-ms.localizationpriority: Normal
-# localization_priority: medium
-# ms.translationtype: MT
+ms.localizationpriority: medium
 ms.date: 01/23/2020
 ---
 # Internet Explorer and Microsoft Edge frequently asked questions (FAQ) for IT Pros

From 22ff0f75b8f8b1035e1f57bd5250038da0ce6826 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 3 Nov 2020 09:03:23 -0800
Subject: [PATCH 041/209] Update whats-new-in-microsoft-defender-atp.md

---
 .../whats-new-in-microsoft-defender-atp.md                      | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
index 7e173b6a93..a24854407e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
@@ -67,6 +67,8 @@ For more information preview features, see [Preview features](https://docs.micro
  
  - [Threat & Vulnerability Management role-based access controls](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/user-roles#create-roles-and-assign-the-role-to-an-azure-active-directory-group) <BR>Use the new permissions to allow maximum flexibility to create SecOps-oriented roles, Threat & Vulnerability Management-oriented roles, or hybrid roles so only authorized users are accessing specific data to do their task. You can also achieve even further granularity by specifying whether a Threat & Vulnerability Management role can only view vulnerability-related data, or can create and manage remediation and exceptions.
 
+- [Device health and compliance report](machine-reports.md) <br/> The device health and compliance report provides high-level information about the devices in your organization.
+
 ## October 2019
 
 - [Indicators for IP addresses, URLs/Domains](manage-indicators.md) <BR> You can now allow or block URLs/domains using your own threat intelligence. 

From 01d53bd1861df85fe97bd22a9ad4cdb31bf5f8da Mon Sep 17 00:00:00 2001
From: bb-froggy <ch-git@hannebauer.name>
Date: Thu, 5 Nov 2020 10:23:17 +0100
Subject: [PATCH 042/209] OCSP as alternative to CDP

---
 .../hello-for-business/hello-hybrid-key-trust-prereqs.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
index fa3b1d7a97..18959a0f1e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-key-trust-prereqs.md
@@ -67,7 +67,7 @@ Key trust deployments do not need client issued certificates for on-premises aut
 
 The minimum required Enterprise certificate authority that can be used with Windows Hello for Business is Windows Server 2012, but you can also use a third-party Enterprise certification authority. The requirements for the domain controller certificate are shown below. For more details, see [Requirements for domain controller certificates from a third-party CA](https://support.microsoft.com/help/291010/requirements-for-domain-controller-certificates-from-a-third-party-ca).
 
-* The certificate must have a Certificate Revocation List (CRL) distribution point extension that points to a valid CRL.
+* The certificate must have a Certificate Revocation List (CRL) distribution point extension that points to a valid CRL, or an Authority Information Access (AIA) extension that points to an Online Certificate Status Protocol (OCSP) responder.
 * The certificate Subject section should contain the directory path of the server object (the distinguished name).
 * The certificate Key Usage section must contain Digital Signature and Key Encipherment.
 * Optionally, the certificate Basic Constraints section should contain: [Subject Type=End Entity, Path Length Constraint=None].

From 9b9e0c2568933b78376cec5bc5e86622cd93ba33 Mon Sep 17 00:00:00 2001
From: Alexey-Zheltov <71097129+Alexey-Zheltov@users.noreply.github.com>
Date: Thu, 5 Nov 2020 21:45:35 +0400
Subject: [PATCH 043/209] Update hello-hybrid-cert-trust-devreg.md

Set-AdfsGlobalAuthenticationPolicy -DeviceAuthenticationEnabled $true -DeviceAuthenticationMethod All` command to enable Device Authentication will trigger certificate prompt on Azure AD Joined devices when they are connecting to ADFS.

Set-AdfsGlobalAuthenticationPolicy -DeviceAuthenticationEnabled $true -DeviceAuthenticationMethod SignedToken` not causing such issue.
---
 .../hello-for-business/hello-hybrid-cert-trust-devreg.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-trust-devreg.md b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-trust-devreg.md
index e5ebf54b09..81afb0421e 100644
--- a/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-trust-devreg.md
+++ b/windows/security/identity-protection/hello-for-business/hello-hybrid-cert-trust-devreg.md
@@ -506,7 +506,7 @@ The following script helps you with the creation of the issuance transform rules
 #### Configure Device Authentication in AD FS  
 Using an elevated PowerShell command window, configure AD FS policy by executing the following command  
 
-`PS C:>Set-AdfsGlobalAuthenticationPolicy -DeviceAuthenticationEnabled $true -DeviceAuthenticationMethod All` 
+`PS C:>Set-AdfsGlobalAuthenticationPolicy -DeviceAuthenticationEnabled $true -DeviceAuthenticationMethod SignedToken` 
 
 #### Check your configuration  
 For your reference, below is a comprehensive list of the AD DS devices, containers and permissions required for device write-back and authentication to work

From 2ccf6cad86ab94e5d00d8d7b126bdead03d9088f Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 5 Nov 2020 16:42:32 -0800
Subject: [PATCH 044/209] completed by

---
 .../images/tvm-completed-by.png                  | Bin 0 -> 6687 bytes
 .../microsoft-defender-atp/tvm-remediation.md    |  10 ++++++++++
 2 files changed, 10 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-completed-by.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-completed-by.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-completed-by.png
new file mode 100644
index 0000000000000000000000000000000000000000..d41220688ee5d37253919069c76334c034459ba1
GIT binary patch
literal 6687
zcmb7}bx>PhyQqUxq-Y@tT3RSj+)7J;Qmp*Y;wf&yf)<Bj#ag^ARvd~|a6*s-heB|N
z;8NTvE+_rYy))na<DNO+%-(D7S+i!XJ+t?E-{*bydo2xRN-{7R005v=d8wcc0N{z^
z?%ha<acy<3SP$-U$Mq%j4FJHv`S-+A(SEp(>m>0|QCB2cAtwgh6&2YSvH$=;XcYxH
zU7w7dOiegFG_b3w?Az3~(qo${>4yFfV+ygzl_ezhgCsC4l#-TlH0327kyXpxf9Qvl
z+W3b#YCC?ogPE4cOe2WIsqLMeGYE!%#D+CTKAoHufN?cEpXpYxUQhC;voVnO_S8c$
z&t?0KnK;3T({rybbKDJ3et+h^e=`f3-@7)|Ym;1KCX}PT)8aQv$xa&Tlax?QLzu|@
za+EamCH+GOLb-=zwBn)cv_$X0a@)_c7R_we4z@j?SfxiX*7$*z>-dPrM3w{k9GKM@
zd+gw=37hntYf|xcImW526Hb(g5b#m>py?Z^nn7(vr5|X-1Oc+|Q=PQG@@`M#$uXXH
zC-)XFDgC@jPdosaFyKWVg24*ZMjdJ0OJe^Rnx?&-RlkqM^YC$?{2T;r>yTm`oKLGV
z?L1Qht-fG*7cK&}i~3{C@UE`hz#Y~)r|t9lZs8j%WR2K+tEXdIlBxQrZ$naPsGVaJ
z<!h77596;gKlpvh#45O#q`3X*CX|txx2XU;gGkyq7V@i>X{?Q$aHD=|7;WW^Br|a{
zD!JNkaA`Qk3*R)*f@u2qj%B(8`vT&Aj2sh6)p|djS(#!M%t&9}f<)N9X-tsrTFZLh
zH-=e!79`O{o?;+%*KqC4n#=-+XOiZId!I+Y?<#>Q5+#748Zi*0iaIV8A@R|esOc%H
zTsxbovP(-u(7cCTpVR@R5_M%3p0;Jxs4K#KlQeDQjf_x`<|5vVQ-pZ`dDT-HPyfu*
zY8!Nj^yc0NZnM#`S^d&@7NOxbt8tg?XlCpYxc!hbyU9I0s4o1$+{60FY$jnZhI1K!
zYq_Ccuu%b@K*?KqI=dXU4cz<ddQ?FOkc^7<%xN0n&JSesPH|q+-YtB!OA0n5{GhmV
z|AdW|2p#3v&Rx1?TF2IAMOA)g11^dicg-g|rjj%a5Q))w>()ivaA$2!J>yD+$i8m&
zwx4i+NM`{+VKf)rJIEcO8D)GOsa#R48dW6@ko~A44F^p+A~<duw9VQ~)XXiP7gEM7
zJRG;|Ut$-y5fdD^A1kj+wY1Af`IU+y|0I!s;<&BOpe@mRSh#CfBQI~fmMX1)2tu^K
zq$>7d>v3kAF3CvO#C~Z^*Hh8(No-i|od8IB{OC~Xyu(QTdU_1eXk46A-n9bl%cjhh
zVN@S<8$oS_StmQ~3NYAQEi-VLzt8Ne9ZI0}XiiR9?I&B&2l0%!-d4%f-4B{Oim-LA
zQm;<nreiVX&Zq0o?>e;AV&7gSK)<xd#!ZzRV?lh^o9NPsI`672trm5@Z&q72#{99C
zK7d0mLGue!O69u=Uw6R7ovsJnhGKJinXMjrJ|?w+py|q^p@#`mOh#%DX}J1OTXO#K
zS?TePJj|ZvbgUQViC1eG9~9h>y)N1u%klMXk=wc*Wwa=HF^hDyuga-ec_yGfB71|b
z>I_K4j8X5QAHw7~Ul`l3*s2z<DhV0V^T>A)89z<zYPhUAoP3qRtaE-T+!#dB<sOan
zv1QnsO=~_o;3Hn0`!vDp<FbHXx@8se$tqv^3xsS2W4TWOU~cb_s;VTRe{!z9!<Sq#
zF|GJDG1~+{mdkJXBW(2uKwZNVlT;qSK?%R0d2fm+T;H?6v@*o6R$5A(Gz`a|mf8sU
z7~fUxQgRbPP?98;+!Idq&%q3+UTUxbm3|^4ybUCH?046Y7n;#$-@BV=utCL3jC9!x
zWw+;h2aNO6E1bRr<{6LHiXt=8_!y`R_UD?Tk7(OF#k2%Im%B*(Rta_?8{?svV`_1a
zPn$Qq(drQ7x*^g;uPzzw243x0;{~11?l>-Ov4dRbf7zdoa3|)_Gyu+l-5?+xD1D`Y
z;H;~=sqH3=44fdO8Ou(}0m=f)QHO;o#Ii>z$mJ<fE99}idO*tY>VJrb)bB(8ZTQP;
z=j+<C21;BsEu-+u&HOu0o96!so&WF9|8VC29{$zTn}Br5W^ut`wZJ0A3618z%IVYZ
z;WXtx9+7WPj})7FGUTeVjbJ+*je3$bcP%3CvO%|0sTVu-gX;Oxp9|b9bKKR%u6OUo
zxr%DQ!-^HJp3U*Y((kd~y}KV99;-+`{!?obfhwtwN{Lj6^;xFQYi;pG5=Qh3S*gDS
z$Gc5R2s*>I1vDm+uZno{Q;><pPO=Xj+L;s;215aORMdpbcqyh#Rx|^@dfCX*7v;Kp
zD?$rDRu{T0-UsKw95}521mxHp3`Onf_SDhvng%?M9ss%BJl($rp!eF22z=0G{xUG&
z9V+~x$Hc7(^fAIh#D<$(o9Rq0e8ylX^{>jWAz;o{O9r4-IbTK8vvx~iVoYT-U&P+6
zy`O(6#X+p1zpWfVc7IXTKZfbvheo+|6Gh!$`<u_Ce*j~3{(Na=xF^m)gD5vHY@!Of
z%5(`reR^aXb&vs`AkOh`VSm2xI6ski#eW~dmbDhH+CW)08?jYy*Wgq=D>386<W#pF
zfM%5Lr@IUoc()d5bJ2N&c!Y5?sWvefU47qi3Yj_~?g{53ezPcIGP_woZ3DkXmc4WE
z##{9xSZ$@x$oz4mt`JS8+^nelV_R{`2zxXrF)}0Z+L`=ka-G<agTxRVchn5xS`ite
zpA5zmW6_h&ElHPO_}z>R(taj$myNx0{vHm)h--wwy&9<7G{*?+sd`d&1H=YFgfjSM
zWEpHZRgN(p&OHsoruxX}t;KhTqcNt`m1dtz(>9N-%}6i^b1Va&YCs+?haM<0*Xgvl
zn;Axme(G32(IyX^x*TfbcKJ{ENj(bujdMo2K6rIXESR`Q%IK1boTRyK+k?O?PAK3^
zh6LE$()^X5s8as7TyQhh3r*D&dXDYBYG_-M=#uvftpeL(WicgCeP*jFK~;0=Js3y&
ztUezgLe*(Tj8igXoANCix(FgZM(#H(`ew+vuAb4cMj^g1*$bN_U2OQdcI;&ORlNE{
z?k0^d_FEUc!LD|-2!g)4;fR|_Q)IP?SyP}AF-^tqH*jTP%QKD?%1f)<1r>dNZiQy|
z`}G1u=_{N8%AY9F2uH2Q(DCPMDdp!Ev1Csan7?Kz!o+nO30htCs`K4b7D~MY1)2g|
z3JTICSthK!5e1_Bj0h|aO(3#1qihIUTmR!7IqxWU-P~;*{}U&{<8cZqGk=|7DM#^i
zI~fDa8?kKJt~cjX0dt?T^mVZA-^X5H^jK3C)9MOs9}R!$bM<9~z6OA;tFZ8@SvsN~
z^H4wrK}eP;V<+7iI;zPxB(B1(KZKo{_)+vLRHltlIb7A>X<DqthgVRY^^uiNOm|`g
zO@<9cxf8ipj}rCSLP%`G<-pQEX1GrZJZDm}K!yXa@p8uJ7p}wxvi9sjfamr!NZf19
zMw)->AmS_gy4Y*&mj9*8pP*B`I7K*+7>U*n*%jS#R08E0Q2O(cjMQ=TkiaVT@`V>(
z6JeBm`+Hw{&q-Aw-JK|x&0-dN-irkXHOG^4Zl|MyU&^vzlkHwxp@XeN<F*&s7XIc2
z1A(aH8E|Qt?!GB1=HL`#*ZVuMnEPQ$5QU2@;8;jJfu*w2h?USX%-mx|o3|kLwK;<5
zak<A817C)#R)tjQrqGg&+UuYk#gzLCd1^vT<_ua*niA1FHBfTWS?8L$r^dQ@v}C61
zp(MjUPgfIk{XK`V+FNqw0wGy&E#XGedT0AoIdh69tyTp6iQU^t5h5Id3#Qg5T^Spb
z(3Q)To7`88{x6IRZ`$%rpiJ3(_#MI?l=vQ?y9}xppy#q0_d=#q@*0h7$?|GDI(?tW
z8yh_v8Gh8iwDL)Os*Sb1!@E5Tm*y!-0^UZtKHRNu?B3tk(Uds=%#=TIip+{Z)krA;
zOUY|F87IQG5Z3j~oIXy{9|zqm%-Y}9puX4R>!mRIeb|vO*0VKg5AKH5PQb#8p$vSm
z4Ul4ViPMmd{hrFTD9l&)hbqmJiK(p;XD(Z1MHB-ZJ04vi!#^cZxQXBp&8?Z%$#G#5
z*~HgVMII}B-kbTp_$!3vM3q>;+_!+Vk&T6mx{O$KuIKBl5GKM#CA|VJ{LDO8-ALa~
zIhiJYM=e^QG5|zHC%XSzxK&1{<g@9?x+fD)TXLIXFD9|iS#Vf~uG0eA%6+V^wWaOK
zxBNRbTYrX9OyL{W{Bv&jd5y*P)H_{=cnfy-3Y~Ht9;g=?A~V!!O7hSe@9qVTENHvj
zp?|ZnXI-GU&S%u<_)9h*@rMFRnCFEs#EZ@#HnlyLBjG$z0PlQ?$haMxg%)yw#Gd1K
zt}#_OZKyf+21OZNo^m=G*5PqLT0A0)x#HpWMhKfN&zhfvnv)*fYRN1$^4QI4gQ*QL
zKF{`8gwy19*5`7pt^<`eqI^OlM0E<WFY^mlI|kDMtWeV3X)U9DqOHzQY#8nYC51Dg
z+18<h!6bf?-%L$tY(B^)cQkMBPJMN4FB$&1e=b@KG4AZwr65eq8b>&-1mRQsE_8ic
z5W0HwP3_G!=Q_qJ&#<||SRWprRDPu)rh0o$D^f>8!O(Hi?Ram+W@gDl<tybq#srdJ
zR$m&owGl~=>IkbkJ`L0F3!_R-Pv;XQ#6se2pGaAqz}kSHs?ycSHG2?v0*%P$8tx@p
z?`@!@Kb~Wq7cgralnr_=EJ6q6HtPl5$ny7bpvP2kB|`+w*3d<7g8io}y+!;@^!Ald
zb0eo@xBj{buLlRb1E;a6DWFlt5Ph>bu}m%^^(H0!brP5G+%PJxh<Mj6t}uC3@lo9d
zA4!7mp;Zpt4w$)f5|?W&jYLh$Zpn(=rBDhOtqMm*h6wEUs_hxOcWvLdNf*139_L&|
zN<TwPUMRyxl+89Y0zOKxq=teFw2}1uA!zBPB?sPIbp>&eJxHIG0Ip?RW)(@729s2T
z60?gX{IZtIVP*dKBr{#Gbpr`q*>L)0>+|(jcwXV$L#;G5%~xnE+q+V@?0wyR>h=2{
znt9URuK3W>?tJ!u;ifj2e8@6s@9C2|Kg(FA0Yxt~<p>Lp{(UBK`5wbb^!_~odD2yD
z<9Va``J3o!3{AX;5OMSrV0rrI#EU#<zpgiMh*r}_YV<Y}RCwkjOE#3+SDcgnF?$AU
z{J0~8y`&KPel{{t&Nxhcl<=dCqLc+YuZSN@W|`W-Zsk}p$9Q{Q*^Z(qrvi8VB7keV
z`TdS^=V;hgZ+Kd8RdEj9>=H~P-=)2?o(|1c6xt-@huWW@em1wYCG^npl%2#kg3$(#
zAu_f&_KQcHq@P#&^V$|?b_ampq=j8sJ&*MdsR(-UW_qA2>tm%%rGtM0#SBn@n7Fl7
zj@7QH*ORW6DVAj9YmJYKsT3mf9E^Uf(_c@J9w}jjwzk)!)cwWdqoTlR8*v=-+(IV1
zbKLp9oR$n`Awys6-VP!DfElRYcQJ2*UW^~r4nA`d@08lAhM5FXF-5aH2$QQhdl$v>
z;N*1F6r)Mgb>ic|C>kT0k;q~40HGEmH7>f+Fza+5L39ys@VEXyz73@P|H**=m}oiv
zj2W1rb|t6@<r+oSiz5FnAa?ceKSAt&=Von(j#KH1))02m=BM#ceAh&x7-0ZKjId!$
z_YNcb{IAUbLDi-bPBLQMbBctZ{Y;nJAxzc-IqC*deuvjc{JX4#q@jQi+RET}^1B8k
z9#LSRye4${LQ`Q72=sWL$da2A{#pfB2ee1uQB)@btucq}wHaXXl$!~5)WfGAgsbsu
z4;!Yi!AK{Riurn^w*Fd@D8_s%2lQIYDWn=JU_23yb!c%y3_8>dIv^Gh#ucRuwc*KI
zc?Bcsb~t*FFtU?Kcc<C<S;+kWVmiKv7}8fY;w!}_U$zfB)C@V)#Bx2+60jCdB~RJd
z)YmlnT=8caefQfe(dRA7&*VC;UX>T^%jVPN?+?y9$K&`vS0p{~`q&vDmof6w2snW9
zYq0NSY~6c-YUKCaerTcA=h$}o_6!}5SZi^N{==TororInV5v^|R1Xpxoth>*s(T>B
z;$mg_3*_fx!TJjML*Cb3q^$7YKrwZ@*IL-83|IYKr$ctc4y%&Xf4^1KRYm%H;9;ul
z0hFJ;5hv}-y)k$byoRhkv;4kelE{Pa76FYS(PDs%nctfihsesxK2Nx4ZqaWXW^4MW
zIWv_$ZWJ}}vv$VB`e;pma;Ky!<$*{n=GJgzWp35y&3LUR)nHj6Wt0O)3pE`@)VdYb
zdj8X_I4Io{T>6y>U3t~%qv0dH9L}>4Ks0f1zsHkwF`dWJ#kn4Q;_*(&WxE%MdgaM`
zd<Dy}1L1@b%bdkJ5pXU<K#I!+hby8_Ds-7!%y(_id@Tr5lAV`4GE%0dlKaK-89iZS
z+yk1RKao3AP{Cu*k>=@7yVdTw?C?A*BdokY^v1V$8#6#>e)T0ojnyZ6xs7w_)!(@b
zPm6brM)OBcOP+-voVz1kIum!aoIW{;!(XgryGhuRd;US)!H%Q~E*Ku*IcL7|1bZG=
zUQQwc-z|Kczdixo?gZU323=%}->_-29w=uAb;<^vB?Q%P?nmlH%6c&03_@4qjP==`
zHD2uBH+y@QQ1*=K{M+*W*d}k8{<p?@?Zu=dvNC;x^UZH<Y|pX}HD#}3f=;HI4hCdz
z#c%(V1+@hor7K?z<#$~jEdM<pEgcP6-MkdkJj?I8?PrrVU5;lhbGw1ZF$$Eq_fMS9
z)KQ)Bu4NqQ$#^=)mA(1D8tc$z;GoXdJ;>|%*Ejt*p|xK^ma<hD^Vfvwt*UU?L@n!r
z^3*B@_%w$empQYov8)Y3U5t%dtN&ove0C4Nm8$+Mo0sW&16|G-^_=2|q%ViVeWWGV
zh8#<`ADv7Cz1p9e;mqabFSqpa?+KnV-ld|b2YrpTNmQ+uUAU)unlCVm(32_X7yNk3
z32#A4Y}F2cb||(ce<d$tFZ!PQJ3#hn&O%Zj?za!>1QE;N&oheV;fh1jW390x$j+*-
zDU)dfe<Oe0ncr{-W=i*ITTh2;(sz(PtH#UXx1^)+AHZaoh=0h%+nHHeeBr^F=-wM(
z0jpGWK=zER*avUTuXq5Q)oQ4ekbx3@uv!NrH$|BFl3PWB12cH>YXlX2Yx`5@p6@lL
z-!J9QwBMk!bvx|-a!he|X-Udb^J0f0LKlsem!$PJ`KV^bYM{@1CV7+_V}uU`%KbJt
z9STOqrL|ozO`Fqp`S~&8P?gGc19|)+PSaAwWRHLH-sY(rBb}spx!h|r*1fo~a;_ca
zdD*WxN%T9s2tr?x)Hf9>`e0xSSLBRkIcr^XA{xgKyAOvVUG&yfrSmL=g)pHVe1^$H
zm`V#H26z$-l3jQU7R_U*YCphrCU;FE4Ec<b?KeD80|>=HtWpmmq0$NP{O1Y%IyN#!
zq|)I|%1Zgav>bu`Ha7udd80Pr+`Jv>i|vOvDP@QjjcM3R8G0@oaVoeJhzhxE>M{2L
zXdR5MwvjVYj3~R|(8{K!_jg5Gat*)OZ*t@pDD|3$ExvqNgB&)DK^#VS-9W@cFQ$4Y
z!KS6sS_W29jy6oCmM=VfT=7rAN|AAOF!c30oFC?;urlaPs+`5wEQebw8rZggqA^a{
zG7wdqigu1Y4zb8FoHj=k;l$+=x3Q@FS#JC^whh{ZY?EfiAB!90N1eExXdZy3!6x@t
zcV0yzYl6%;(AH9Nw~G|Jfx04%{@u+)d}d6FJJJ26c7h`Ezoi3IzAF3V*UP;|#e6TI
zI6;NYqA4^TsS<pR3^kTNDe^g`UarE=(}T0FtKm!t@ZHe+IPHNiexIjNqVxDcb*8)u
zt1F>g4mm8QrP9gJi<e%o(;S*iub%WO&<hg4bP>cW4?fQZysP6Giq0}f>-&?EBN+eQ
z5)a4M71H{xhf+g)*K4Z3R{lyp?4vThggv^_tBsE@nRo@*sQ}W493q73%Y#GUxYbHY
z-=Cp6Of{<k%F}~{GFh|Re0$EhA?~<9cU*hSE-;r^6;ANrSH?MYn$+Q!F$_>vhNo#T
zABp}*oY1*{Bg~B9Us}RNSe#M>ow^nygCCP1rVGUmWi$Wf4n0j6pA9QWd2c$OG>L|M
zuiVY8c(qeffOEE9km!~Q?Uja6%x*=uYtPn;TNmxyQ&~!o^3j5?%yd>%cuCij_9$Ia
z3gt867tI8&W*;(o2LOu&pthG-goP-1uVuM8<Tswe9PeNo6h;Q#f5(RA)aOv*0rCng
z^xQc#i2`og#57T<J+vlOX$0~+G~Le6D~8@WX-el4gLthD@?ed=&8v>OCV5<uNy!CE
zt`5lP$%(H^Vf@$Qr`{`})GBhmF0D*{X@i6Zuot&`kK}MT6X+N9zjJ>bw*+Wai?GbY
T^+4Ru9e|3WhC=BJ^U(hS*^tCn

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
index 83f4fa34f0..17ec33ff29 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
@@ -69,6 +69,16 @@ Once you are in the Remediation page, select the remediation activity that you w
 >[!NOTE]
 > There is a 180 day retention period for completed remediation activities. To keep the Remediation page performing optimally, the remediation activity will be removed 6 months after its completion.
 
+### Completed by
+
+Track who closed the remediation activity with the "Completed by" column on the Remediation page.
+
+- **Email address**: The email of the person who manually completed the task
+- **System confirmation**: The task was automatically completed (all devices remediated)
+- **N/A**: Information is not available because we don't know how this older task was completed
+
+![Created by and completed by columns with two rows. One row for completed by has example of an email, the other row says system confirmation.](images/tvm-completed-by.png)
+
 ### Top remediation activities in the dashboard
 
 View **Top remediation activities** in the [threat and vulnerability management dashboard](tvm-dashboard-insights.md). Select any of the entries to go to the **Remediation** page. You can mark the remediation activity as completed after the IT admin team remediates the task.

From 0902f1de628988eaecf4d9098c5afb7f164323e1 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Thu, 5 Nov 2020 16:43:25 -0800
Subject: [PATCH 045/209] update name

---
 .../threat-protection/microsoft-defender-atp/tvm-remediation.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
index 17ec33ff29..41b47476e8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
@@ -69,7 +69,7 @@ Once you are in the Remediation page, select the remediation activity that you w
 >[!NOTE]
 > There is a 180 day retention period for completed remediation activities. To keep the Remediation page performing optimally, the remediation activity will be removed 6 months after its completion.
 
-### Completed by
+### Completed by column
 
 Track who closed the remediation activity with the "Completed by" column on the Remediation page.
 

From 0e4ce05d012416e2daf174d4cb461397a1f956b8 Mon Sep 17 00:00:00 2001
From: Kurt Sarens <56369685+kurtsarens@users.noreply.github.com>
Date: Fri, 6 Nov 2020 15:18:45 +0100
Subject: [PATCH 046/209] Update enable-exploit-protection.md

Audit of mitigations is not always available via PS but is with other management options
---
 .../enable-exploit-protection.md                   | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 2d44c8da7d..373ad6ff74 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -210,7 +210,7 @@ Set-Processmitigation -Name test.exe -Remove -Disable DEP
 This table lists the PowerShell cmdlets (and associated audit mode cmdlet) that can be used to configure each mitigation.
 
 Mitigation | Applies to | PowerShell cmdlets | Audit mode cmdlet
-- | - | - | -
+-|-|-|-
 Control flow guard (CFG) | System and app-level |   CFG,   StrictCFG,   SuppressExports  | Audit not available
 Data Execution Prevention (DEP) | System and app-level |   DEP,   EmulateAtlThunks  | Audit not available
 Force randomization for images (Mandatory ASLR) | System and app-level |   ForceRelocateImages  | Audit not available
@@ -225,20 +225,20 @@ Code integrity guard | App-level only |   BlockNonMicrosoftSigned,   AllowStoreS
 Disable extension points | App-level only |   ExtensionPoint  | Audit not available
 Disable Win32k system calls | App-level only |   DisableWin32kSystemCalls  |   AuditSystemCall
 Do not allow child processes | App-level only |   DisallowChildProcessCreation  |   AuditChildProcess
-Export address filtering (EAF) | App-level only |   EnableExportAddressFilterPlus,   EnableExportAddressFilter  <a href="#r1" id="t1">\[1\]</a> | Audit not available
-Import address filtering (IAF) | App-level only |   EnableImportAddressFilter  | Audit not available
-Simulate execution (SimExec) | App-level only |   EnableRopSimExec  | Audit not available
-Validate API invocation (CallerCheck) | App-level only |   EnableRopCallerCheck  | Audit not available
+Export address filtering (EAF) | App-level only |   EnableExportAddressFilterPlus,   EnableExportAddressFilter  <a href="#r1" id="t1">\[1\]</a> | Audit not available<a href="#r2" id="t2">\[2\]</a>
+Import address filtering (IAF) | App-level only |   EnableImportAddressFilter  | Audit not available<a href="#r2" id="t2">\[2\]</a>
+Simulate execution (SimExec) | App-level only |   EnableRopSimExec  | Audit not available<a href="#r2" id="t2">\[2\]</a>
+Validate API invocation (CallerCheck) | App-level only |   EnableRopCallerCheck  | Audit not available<a href="#r2" id="t2">\[2\]</a>
 Validate handle usage | App-level only |   StrictHandle  | Audit not available
 Validate image dependency integrity | App-level only |   EnforceModuleDepencySigning  | Audit not available
-Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot  | Audit not available
+Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot  | Audit not available<a href="#r2" id="t2">\[2\]</a>
 
 <a href="#t1" id="r1">\[1\]</a>: Use the following format to enable EAF modules for DLLs for a process:
 
 ```PowerShell
 Set-ProcessMitigation -Name processName.exe -Enable EnableExportAddressFilterPlus -EAFModules dllName1.dll,dllName2.dll
 ```
-
+<a href="#t2" id="r2">\[2\]</a>: Audit for this mitigation is not available via Powershell CmdLet.
 ## Customize the notification
 
 See the [Windows Security](../windows-defender-security-center/windows-defender-security-center.md#customize-notifications-from-the-windows-defender-security-center) topic for more information about customizing the notification when a rule is triggered and blocks an app or file.

From 270aff93e29a8fa322638e9af089674428257785 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 6 Nov 2020 23:19:11 +0500
Subject: [PATCH 047/209] Instructional updates

As suggested, some of the information was missing and has been added.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8567
---
 .../exposed-apis-create-app-nativeapp.md      | 20 +++++++++++++++----
 1 file changed, 16 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
index c93c7f464b..aa97239067 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
@@ -56,12 +56,24 @@ This page explains how to create an AAD application, get an access token to Micr
 
    ![Image of Microsoft Azure and navigation to application registration](images/atp-azure-new-app2.png)
 
-3. In the registration from, enter the following information then select **Register**.
+3. When the **Register an application** page appears, enter your application's registration information:
 
-   ![Image of Create application window](images/nativeapp-create2.png)
+   - **Name** - Enter a meaningful application name that will be displayed to users of the app.
+   - **Supported account types** - Select which accounts you would like your application to support.
 
-   - **Name:** -Your application name-
-   - **Application type:** Public client
+       | Supported account types | Description |
+       |-------------------------|-------------|
+       | **Accounts in this organizational directory only** | Select this option if you're building a line-of-business (LOB) application. This option is not available if you're not registering the application in a directory.<br><br>This option maps to Azure AD only single-tenant.<br><br>This is the default option unless you're registering the app outside of a directory. In cases where the app is registered outside of a directory, the default is Azure AD multi-tenant and personal Microsoft accounts. |
+       | **Accounts in any organizational directory** | Select this option if you would like to target all business and educational customers.<br><br>This option maps to an Azure AD only multi-tenant.<br><br>If you registered the app as Azure AD only single-tenant, you can update it to be Azure AD multi-tenant and back to single-tenant through the **Authentication** blade. |
+       | **Accounts in any organizational directory and personal Microsoft accounts** | Select this option to target the widest set of customers.<br><br>This option maps to Azure AD multi-tenant and personal Microsoft accounts.<br><br>If you registered the app as Azure AD multi-tenant and personal Microsoft accounts, you cannot change this in the UI. Instead, you must use the application manifest editor to change the supported account types. |
+
+   - **Redirect URI (optional)** - Select the type of app you're building, **Web** or **Public client (mobile & desktop)**, and then enter the redirect URI (or reply URL) for your application.
+       - For web applications, provide the base URL of your app. For example, `http://localhost:31544` might be the URL for a web app running on your local machine. Users would use this URL to sign in to a web client application.
+       - For public client applications, provide the URI used by Azure AD to return token responses. Enter a value specific to your application, such as `myapp://auth`.
+
+     To see specific examples for web applications or native applications, check out our [quickstarts](/azure/active-directory/develop/#quickstarts).
+
+ When finished, select **Register**.
 
 4. Allow your Application to access Microsoft Defender ATP and assign it 'Read alerts' permission:
 

From 342d51170c2026887adb68299555e459d5fc4500 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Fri, 6 Nov 2020 23:35:42 +0500
Subject: [PATCH 048/209] Update
 use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md

Path values in rules were defined incorrectly.

Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8564
---
 ...licy-to-control-specific-plug-ins-add-ins-and-modules.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
index 79a167e2a1..a6e3ec2b41 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
@@ -36,14 +36,14 @@ To work with these options, the typical method is to create a policy that only a
 For example, to create a WDAC policy that allows **addin1.dll** and **addin2.dll** to run in **ERP1.exe**, your organization's enterprise resource planning (ERP) application, run the following commands. Note that in the second command, **+=** is used to add a second rule to the **$rule** variable:
 
 ```powershell
-$rule = New-CIPolicyRule -DriverFilePath '.\ERP1.exe' -Level FileName -AppID '.\temp\addin1.dll'
-$rule += New-CIPolicyRule -DriverFilePath '.\ERP1.exe' -Level FileName -AppID '.\temp\addin2.dll'
+$rule = New-CIPolicyRule -DriverFilePath '..\temp\addin1.dll' -Level FileName -AppID '.\ERP1.exe'
+$rule += New-CIPolicyRule -DriverFilePath '.\temp\addin1.dll' -Level FileName -AppID '.\ERP1.exe'
 New-CIPolicy -Rules $rule -FilePath ".\AllowERPAddins.xml" -UserPEs
 ```
 
 As another example, to create a WDAC policy that blocks **addin3.dll** from running in Microsoft Word, run the following command. You must include the `-Deny` option to block the specified add-ins in the specified application:
 
 ```powershell
-$rule = New-CIPolicyRule -DriverFilePath '.\winword.exe' -Level FileName -Deny -AppID '.\temp\addin3.dll'
+$rule = New-CIPolicyRule -DriverFilePath '.\temp\addin3.dll' -Level FileName -Deny -AppID '.\winword.exe'
 New-CIPolicy -Rules $rule -FilePath ".\BlockAddins.xml" -UserPEs
 ```

From a886efe0b1106c8bddc2c0d045dd79ec9b05f019 Mon Sep 17 00:00:00 2001
From: Peter Smith <pesmith@microsoft.com>
Date: Fri, 6 Nov 2020 15:56:48 -0800
Subject: [PATCH 049/209] Update vpnv2-csp.md to fix minor type (Inbound was
 missing the I)

---
 windows/client-management/mdm/vpnv2-csp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index 5f3d865cbd..125734b5c8 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -241,7 +241,7 @@ Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 Added in Windows 10, version 2004. Specifies the traffic direction to apply this policy to. Default is Outbound. The value can be one of the following:
 
 - Outbound - The rule applies to all outbound traffic
-- nbound - The rule applies to all inbound traffic
+- Inbound - The rule applies to all inbound traffic
 
 If no inbound filter is provided, then by default all unsolicated inbound traffic will be blocked.
 

From 9cf77e70111abd7e62df26a76dde795b21bbe71b Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Sat, 7 Nov 2020 19:45:23 +0500
Subject: [PATCH 050/209] Update
 windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 ...l-policy-to-control-specific-plug-ins-add-ins-and-modules.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
index a6e3ec2b41..a30934a529 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
@@ -33,7 +33,7 @@ As of Windows 10, version 1703, you can use WDAC policies not only to control ap
 
 To work with these options, the typical method is to create a policy that only affects plug-ins, add-ins, and modules, then merge it into your 'master' policy (merging is described in the next section).
 
-For example, to create a WDAC policy that allows **addin1.dll** and **addin2.dll** to run in **ERP1.exe**, your organization's enterprise resource planning (ERP) application, run the following commands. Note that in the second command, **+=** is used to add a second rule to the **$rule** variable:
+For example, to create a WDAC policy allowing **addin1.dll** and **addin2.dll** to run in **ERP1.exe**, your organization's enterprise resource planning (ERP) application, run the following commands. Note that in the second command, **+=** is used to add a second rule to the **$rule** variable:
 
 ```powershell
 $rule = New-CIPolicyRule -DriverFilePath '..\temp\addin1.dll' -Level FileName -AppID '.\ERP1.exe'

From be9e630af24ee289711b5467e0b70bea0ee65213 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Sat, 7 Nov 2020 19:46:02 +0500
Subject: [PATCH 051/209] Update
 use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md

minor changes.
---
 ...l-policy-to-control-specific-plug-ins-add-ins-and-modules.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
index a30934a529..fc7de322fe 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-policy-to-control-specific-plug-ins-add-ins-and-modules.md
@@ -36,7 +36,7 @@ To work with these options, the typical method is to create a policy that only a
 For example, to create a WDAC policy allowing **addin1.dll** and **addin2.dll** to run in **ERP1.exe**, your organization's enterprise resource planning (ERP) application, run the following commands. Note that in the second command, **+=** is used to add a second rule to the **$rule** variable:
 
 ```powershell
-$rule = New-CIPolicyRule -DriverFilePath '..\temp\addin1.dll' -Level FileName -AppID '.\ERP1.exe'
+$rule = New-CIPolicyRule -DriverFilePath '.\temp\addin1.dll' -Level FileName -AppID '.\ERP1.exe'
 $rule += New-CIPolicyRule -DriverFilePath '.\temp\addin1.dll' -Level FileName -AppID '.\ERP1.exe'
 New-CIPolicy -Rules $rule -FilePath ".\AllowERPAddins.xml" -UserPEs
 ```

From a8b5947f4d25f55c561de1421f76f0607035b88e Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Sat, 7 Nov 2020 19:49:06 +0500
Subject: [PATCH 052/209] Update exposed-apis-create-app-nativeapp.md

minor tweak.
---
 .../microsoft-defender-atp/exposed-apis-create-app-nativeapp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
index aa97239067..0767f473d0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
@@ -50,7 +50,7 @@ This page explains how to create an AAD application, get an access token to Micr
 
 ## Create an app
 
-1. Log on to [Azure](https://portal.azure.com) with user that has **Global Administrator** role.
+1. Log on to [Azure](https://portal.azure.com) with user account that has **Global Administrator** role.
 
 2. Navigate to **Azure Active Directory** > **App registrations** > **New registration**. 
 

From 30bedf7c74e426fdb6b56e9c3d407e11a54fd4b9 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sun, 8 Nov 2020 07:44:42 +0500
Subject: [PATCH 053/209] Update
 windows/client-management/mdm/policy-csp-servicecontrolmanager.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../client-management/mdm/policy-csp-servicecontrolmanager.md  | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-servicecontrolmanager.md b/windows/client-management/mdm/policy-csp-servicecontrolmanager.md
index b220e10a02..8f43acb2ab 100644
--- a/windows/client-management/mdm/policy-csp-servicecontrolmanager.md
+++ b/windows/client-management/mdm/policy-csp-servicecontrolmanager.md
@@ -79,7 +79,7 @@ If you enable this policy setting, built-in system services hosted in svchost.ex
 This includes a policy requiring all binaries loaded in these processes to be signed by Microsoft, as well as a policy disallowing dynamically-generated code.  
 
 > [!IMPORTANT]
-> Enabling of this policy could cause compatibility issues with third-party software that uses svchost.exe processes (for example, third-party antivirus software).
+> Enabling this policy could cause compatibility issues with third-party software that uses svchost.exe processes (for example, third-party antivirus software).
 
 If you disable or do not configure this policy setting, the stricter security settings will not be applied.
 
@@ -125,4 +125,3 @@ Footnotes:
 - 8 - Available in Windows 10, version 2004.
 
 <!--/Policies-->
-

From 29bb6fc16b81301fa6bb971a257988a42f9edc84 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Sun, 8 Nov 2020 08:15:47 +0500
Subject: [PATCH 054/209] Update secure-the-windows-10-boot-process.md

---
 .../secure-the-windows-10-boot-process.md                       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/secure-the-windows-10-boot-process.md b/windows/security/information-protection/secure-the-windows-10-boot-process.md
index 017eb64762..d3ff0fb615 100644
--- a/windows/security/information-protection/secure-the-windows-10-boot-process.md
+++ b/windows/security/information-protection/secure-the-windows-10-boot-process.md
@@ -84,7 +84,7 @@ These requirements help protect you from rootkits while allowing you to run any
 -  **Configure UEFI to trust your custom bootloader.** All Certified For Windows 10 PCs allow you to trust a non-certified bootloader by adding a signature to the UEFI database, allowing you to run any operating system, including homemade operating systems.
 -  **Turn off Secure Boot.** All Certified For Windows 10 PCs allow you to turn off Secure Boot so that you can run any software. This does not help protect you from bootkits, however.
 
-To prevent malware from abusing these options, the user must manually configure the UEFI firmware to trust a non-certified bootloader or to turn off Secure Boot. Software cannot change the Secure Boot settings. For more information about Secure Boot, read the blog, [Protecting the pre-OS environment with UEFI](https://blogs.msdn.com/b/b8/archive/2011/09/22/protecting-the-pre-os-environment-with-uefi.aspx).
+To prevent malware from abusing these options, the user must manually configure the UEFI firmware to trust a non-certified bootloader or to turn off Secure Boot. Software cannot change the Secure Boot settings.
 
 Like most mobile devices, ARM-based Certified For Windows RT devices, such as the Microsoft Surface RT device, are designed to run only Windows 8.1. Therefore, Secure Boot cannot be turned off, and you cannot load a different operating system. Fortunately, there is a large market of ARM devices designed to run other operating systems.
 

From e4003af0132bc301b9a9835945b47f78f6660a81 Mon Sep 17 00:00:00 2001
From: schmurky <maccruz@microsoft.com>
Date: Mon, 9 Nov 2020 12:06:38 +0800
Subject: [PATCH 055/209] Updates for GA

---
 .../microsoft-defender-atp/investigate-files.md    |  1 -
 .../microsoft-defender-atp/review-alerts.md        | 14 ++++----------
 2 files changed, 4 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
index 599bf6a2fd..a9e415015a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
@@ -29,7 +29,6 @@ ms.date: 04/24/2018
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-[!include[Prerelease information](../../includes/prerelease.md)]
 
 >Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-investigatefiles-abovefoldlink)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
index 7188c9c212..821c82fed3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
@@ -29,9 +29,11 @@ ms.date: 5/1/2020
 
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-managealerts-abovefoldlink)
 
-The new alert page in Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) provides full context to the alert, by combining attack signals and alerts related to the selected alert, to construct a detailed alert story.
+The alert page in Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) provides full context to the alert, by combining attack signals and alerts related to the selected alert, to construct a detailed alert story.
 
-Quickly triage, investigate, and take effective action on alerts that affect your organization. Understand why they were triggered, and their impact from one location.
+Quickly triage, investigate, and take effective action on alerts that affect your organization. Understand why they were triggered, and their impact from one location. Learn more in this overview.
+
+> [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4yiO5]
 
 ## Getting started with an alert
 
@@ -90,14 +92,6 @@ If you are experiencing a false alert with a line-of-business application, creat
 > [!TIP]
 > If you're experiencing any issues not described above, use the 🙂 button to provide feedback or open a support ticket.
 
-## Transitioning to the new alert page
-
-When making the move to the new alert page you will notice that we have centralized information from the alert process tree, the incident graph, and the artifact timeline into the [alert story](#investigate-using-the-alert-story), with some information available through the [affected assets](#review-affected-assets) section. Any additional information has been consolidated into the details pane for the relevant entities.
-
-## Video overview of the new alert page
-
-> [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4yiO5]
-
 ## Related topics
 
 - [View and organize the incidents queue](view-incidents-queue.md)

From 58e7b8d5bb2d1c7569c9276f39f3d7140aad3948 Mon Sep 17 00:00:00 2001
From: ImranHabib <47118050+joinimran@users.noreply.github.com>
Date: Mon, 9 Nov 2020 21:04:34 +0500
Subject: [PATCH 056/209] Update
 windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/exposed-apis-create-app-nativeapp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
index 0767f473d0..f936483ccd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
@@ -50,7 +50,7 @@ This page explains how to create an AAD application, get an access token to Micr
 
 ## Create an app
 
-1. Log on to [Azure](https://portal.azure.com) with user account that has **Global Administrator** role.
+1. Log on to [Azure](https://portal.azure.com) with a user account that has the **Global Administrator** role.
 
 2. Navigate to **Azure Active Directory** > **App registrations** > **New registration**. 
 

From 226cccf52940619a134b5b21b2356f15ea4b8b45 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 9 Nov 2020 11:46:12 -0800
Subject: [PATCH 057/209] add field

---
 .../microsoft-defender-atp/indicator-manage.md             | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
index a446f06755..b7fbb4cac8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
@@ -65,8 +65,13 @@ expirationTime | DateTimeOffset | The expiration time of the indicator in the fo
 severity | Enum | The severity of the indicator. Possible values are: "Informational", "Low", "Medium" and "High". **Optional**
 recommendedActions | String | TI indicator alert recommended actions. **Optional**
 rbacGroupNames | String | Comma-separated list of RBAC group names the indicator would be applied to. **Optional**
+category | String | Category of the alert. 
+mitretechniques| String | MITRE techniques code/id (comma separated). For more information, see [Enterprise tactics](https://attack.mitre.org/tactics/enterprise/).
 
-## Related topics
+For more information, see [Microsoft Defender ATP alert categories are now aligned with MITRE ATT&CK!](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/microsoft-defender-atp-alert-categories-are-now-aligned-with/ba-p/732748).
+
+
+## See also
 - [Create indicators](manage-indicators.md)
 - [Create indicators for files](indicator-file.md)
 - [Create indicators for IPs and URLs/domains](indicator-ip-domain.md)

From f6d212195dad0e8bb61e70c413f1cef2c1cca950 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 9 Nov 2020 11:51:15 -0800
Subject: [PATCH 058/209] update keyword

---
 .../microsoft-defender-atp/indicator-manage.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
index b7fbb4cac8..82fe774e42 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
@@ -2,7 +2,7 @@
 title: Manage indicators
 ms.reviewer: 
 description: Manage indicators for a file hash, IP address, URLs, or domains that define the detection, prevention, and exclusion of entities.
-keywords: import, indicator, list, ioc, csv, manage, allowed, blocked, whitelist, blacklist, block, clean, malicious, file hash, ip address, urls, domain
+keywords: import, indicator, list, ioc, csv, manage, allowed, blocked, block, clean, malicious, file hash, ip address, urls, domain
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: w10

From 539c1ccd99ef48e314fb4178011a68ed470f801e Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 9 Nov 2020 17:37:05 -0800
Subject: [PATCH 059/209] updated zeroday

---
 .../microsoft-defender-atp/tvm-security-recommendation.md   | 2 +-
 .../microsoft-defender-atp/tvm-zero-day-vulnerabilities.md  | 6 +++++-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index b4ffcd5ce4..cab17aed46 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -95,7 +95,7 @@ From the flyout, you can choose any of the following options:
 
 - **Open software page** - Open the software page to get more context on the software and how it's distributed. The information can include threat context, associated recommendations, weaknesses discovered, number of exposed devices, discovered vulnerabilities, names and detailed of devices with the software installed, and version distribution.
 
-- [**Remediation options**](tvm-remediation.md) - Submit a remediation request to open a ticket in Microsoft Intune for your IT Administrator to pick up and address.
+- [**Remediation options**](tvm-remediation.md) - Submit a remediation request to open a ticket in Microsoft Intune for your IT administrator to pick up and address. Track the remediation activity in the Remediation page.
 
 - [**Exception options**](tvm-exception.md) - Submit an exception, provide justification, and set exception duration if you can't remediate the issue yet.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
index 62b6465eab..f1747bc294 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
@@ -84,10 +84,14 @@ Go to the security recommendation page and select a recommendation with a zero-d
 
 There will be a link to mitigation options and workarounds if they are available. Workarounds may help reduce the risk posed by this zero-day vulnerability until a patch or security update can be deployed.
 
-Open remediation options and choose the attention type. An "attention required" remediation option is recommended for the zero-day vulnerabilities, since an update hasn't been released yet. If there are older vulnerabilities for this software you wish to remediation, you can override the "attention required" remediation option and choose “update.”
+Open remediation options and choose the attention type. An "attention required" remediation option is recommended for the zero-day vulnerabilities, since an update hasn't been released yet. You won't be able to select a due date, since there is no specific action to perform. If there are older vulnerabilities for this software you wish to remediation, you can override the "attention required" remediation option and choose “update.”
 
 ![Zero day flyout example of Windows Server 2016 in the security recommendations page.](images/tvm-zero-day-software-flyout-400.png)
 
+## Track zero-day remediation activities
+
+Go to the threat and vulnerability management [Remediation](tvm-remediation.md) page to view the remediation activity item. If you chose the "attention required" remediation option, there will be no progress bar or ticket status since there is no actual action we can monitor.
+
 ## Patching zero-day vulnerabilities
 
 When a patch is released for the zero-day, the recommendation will be changed to “Update” and a blue label next to it that says “New security update for zero day.” It will no longer consider as a zero-day, the zero-day tag will be removed from all pages.

From f11c8139d7340f866cf435bf471d6dc35133b96f Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Tue, 10 Nov 2020 09:24:57 +0100
Subject: [PATCH 060/209] Update vpn-conditional-access.md

Updating the note describing prerequisites for using SSO with information relevant for AAD only joined devices.
---
 .../identity-protection/vpn/vpn-conditional-access.md         | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/vpn/vpn-conditional-access.md b/windows/security/identity-protection/vpn/vpn-conditional-access.md
index fc09e68a62..002d10e812 100644
--- a/windows/security/identity-protection/vpn/vpn-conditional-access.md
+++ b/windows/security/identity-protection/vpn/vpn-conditional-access.md
@@ -77,7 +77,9 @@ Two client-side configuration service providers are leveraged for VPN device com
    - Upon request, forwards the Health Attestation Certificate (received from HAS) and related runtime information to the MDM server for verification
    
 > [!NOTE]
-> Currently, it is required that certificates used for obtaining Kerberos tickets must be issued from an on-premises CA, and that SSO must be enabled in the user’s VPN profile. This will enable the user to access on-premises resources. 
+> Currently, it is required that certificates used for obtaining Kerberos tickets must be issued from an on-premises CA, and that SSO must be enabled in the user’s VPN profile. This will enable the user to access on-premises resources.
+> 
+> In the case of AzureAD-only joined devices (not hybrid joined devices), if the user certificate issued by the on-premises CA has in Subject and SAN (Subject Alternative Name) the user UPN from AzureAD, the VPN profile must be modified to ensure the client does not cache the credentials used for VPN authentication. To do this, after deploying the VPN profile to the client, modify the *Rasphone.pbk* on the client by changing entry **UseRasCredentials** from 1 (default) to 0 (zero).
 
 ## Client connection flow
 

From 8ecbbdad2bb68911f49da71a20918431ae319f09 Mon Sep 17 00:00:00 2001
From: Alekhya Jupudi <v-ajupudi@microsoft.com>
Date: Tue, 10 Nov 2020 16:27:45 +0530
Subject: [PATCH 061/209] Rebranding task -4626590

---
 windows/deployment/s-mode.md                  |  2 +-
 .../olympia/olympia-enrollment-guidelines.md  |  2 +-
 ...-diagnostic-data-events-and-fields-2004.md |  2 +-
 .../security/includes/machineactionsnote.md   |  6 +--
 windows/security/includes/prerelease.md       |  4 +-
 .../control-usb-devices-using-intune.md       | 42 +++++++++----------
 ...tion-based-protection-of-code-integrity.md |  2 +-
 .../device-guard/memory-integrity.md          |  2 +-
 ...tion-based-protection-of-code-integrity.md |  2 +-
 .../intelligence/fileless-threats.md          |  2 +-
 .../intelligence/phishing.md                  |  2 +-
 .../intelligence/prevent-malware-infection.md |  6 +--
 .../intelligence/understanding-malware.md     |  2 +-
 .../faq-md-app-guard.md                       |  2 +-
 .../install-md-app-guard.md                   |  2 +-
 .../md-app-guard-overview.md                  |  2 +-
 .../reqs-md-app-guard.md                      |  2 +-
 ...defender-application-control-management.md |  2 +-
 ...events-centrally-using-advanced-hunting.md |  6 +--
 .../types-of-devices.md                       |  2 +-
 ...control-with-intelligent-security-graph.md |  2 +-
 ...r-application-control-operational-guide.md |  4 +-
 .../windows-defender-security-center.md       |  2 +-
 .../ltsc/whats-new-windows-10-2016.md         |  6 +--
 .../ltsc/whats-new-windows-10-2019.md         | 36 ++++++++--------
 25 files changed, 72 insertions(+), 72 deletions(-)

diff --git a/windows/deployment/s-mode.md b/windows/deployment/s-mode.md
index 9223db8e03..ea76222dde 100644
--- a/windows/deployment/s-mode.md
+++ b/windows/deployment/s-mode.md
@@ -58,4 +58,4 @@ The [MSIX Packaging Tool](https://docs.microsoft.com/windows/application-managem
 - [Consumer applications for S mode](https://www.microsoft.com/windows/s-mode)
 - [S mode devices](https://www.microsoft.com/en-us/windows/view-all-devices)
 - [Windows Defender Application Control deployment guide](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide)
-- [Windows Defender Advanced Threat Protection](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp)
+- [Microsoft Defender for Endpoint](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp)
diff --git a/windows/deployment/update/olympia/olympia-enrollment-guidelines.md b/windows/deployment/update/olympia/olympia-enrollment-guidelines.md
index 6c713170eb..8997b5e4f9 100644
--- a/windows/deployment/update/olympia/olympia-enrollment-guidelines.md
+++ b/windows/deployment/update/olympia/olympia-enrollment-guidelines.md
@@ -22,7 +22,7 @@ Windows Insider Lab for Enterprise is intended for Windows Insiders who want to
 
 As an Olympia user, you will have an opportunity to: 
 
--   Use various enterprise features like Windows Information Protection (WIP), Advanced Threat Protection (ATP), windows Defender Application Guard (WDAG), and Application Virtualization (APP-V).
+-   Use various enterprise features like Windows Information Protection (WIP), Microsoft Defender for Office 365, Windows Defender Application Guard (WDAG), and Application Virtualization (APP-V).
 -   Learn how Microsoft is preparing for GDPR, as well as enabling enterprise customers to prepare for their own readiness.
 -   Validate and test pre-release software in your environment.
 -   Provide feedback.
diff --git a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
index a1832d8486..0b34139584 100644
--- a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
+++ b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
@@ -6052,7 +6052,7 @@ The following fields are available:
 
 ### Microsoft.Windows.Sense.Client.PerformanceScript.OnboardingScript
 
-This event is triggered whenever WDATP onboarding script is run. The data collected with this event is used to keep Windows performing properly.
+This event is triggered whenever Microsoft Defender for Endpoint onboarding script is run. The data collected with this event is used to keep Windows performing properly.
 
 The following fields are available:
 
diff --git a/windows/security/includes/machineactionsnote.md b/windows/security/includes/machineactionsnote.md
index 246c89eb92..542eec5756 100644
--- a/windows/security/includes/machineactionsnote.md
+++ b/windows/security/includes/machineactionsnote.md
@@ -1,6 +1,6 @@
 ---
-title: Perform a Machine Action via the Microsoft Defender ATP API
-description: This page focuses on performing a machine action via the Microsoft Defender Advanced Threat Protection (MDATP) API.
+title: Perform a Machine Action via the Microsoft Defender for Endpoint API
+description: This page focuses on performing a machine action via the Microsoft Defender for Endpoint API.
 ms.date: 08/28/2017
 ms.reviewer: 
 manager: dansimp
@@ -10,4 +10,4 @@ ms.prod: w10
 ---
 
 >[!Note]
-> This page focuses on performing a machine action via API. See [take response actions on a machine](../threat-protection/microsoft-defender-atp/respond-machine-alerts.md) for more information about response actions functionality via Microsoft Defender ATP.
+> This page focuses on performing a machine action via API. See [take response actions on a machine](../threat-protection/microsoft-defender-atp/respond-machine-alerts.md) for more information about response actions functionality via Microsoft Defender for Endpoint.
diff --git a/windows/security/includes/prerelease.md b/windows/security/includes/prerelease.md
index a83544340f..a008aa45d7 100644
--- a/windows/security/includes/prerelease.md
+++ b/windows/security/includes/prerelease.md
@@ -1,6 +1,6 @@
 ---
-title: Microsoft Defender ATP Pre-release Disclaimer
-description: Disclaimer for pre-release version of Microsoft Defender ATP.
+title: Microsoft Defender for Endpoint Pre-release Disclaimer
+description: Disclaimer for pre-release version of Microsoft Defender for Endpoint.
 ms.date: 08/28/2017
 ms.reviewer: 
 manager: dansimp
diff --git a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
index add9bc1309..f37748f9d5 100644
--- a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
+++ b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md
@@ -13,13 +13,13 @@ manager: dansimp
 audience: ITPro
 ---
 
-# How to control USB devices and other removable media using Microsoft Defender ATP
+# How to control USB devices and other removable media using Microsoft Defender for Endpoint
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2069559)
 
-Microsoft recommends [a layered approach to securing removable media](https://aka.ms/devicecontrolblog), and Microsoft Defender ATP provides multiple monitoring and control features to help prevent threats in unauthorized peripherals from compromising your devices:
+Microsoft recommends [a layered approach to securing removable media](https://aka.ms/devicecontrolblog), and Microsoft Defender for Endpoint provides multiple monitoring and control features to help prevent threats in unauthorized peripherals from compromising your devices:
 
-1. [Discover plug and play connected events for peripherals in Microsoft Defender ATP advanced hunting](#discover-plug-and-play-connected-events). Identify or investigate suspicious usage activity.
+1. [Discover plug and play connected events for peripherals in Microsoft Defender for Endpoint advanced hunting](#discover-plug-and-play-connected-events). Identify or investigate suspicious usage activity.
 
 2. Configure to allow or block only certain removable devices and prevent threats.
     1. [Allow or block removable devices](#allow-or-block-removable-devices) based on granular configuration to deny write access to removable disks and approve or deny devices by using USB device IDs. Flexible policy assignment of device installation settings based on an individual or group of Azure Active Directory (Azure AD) users and devices.
@@ -28,22 +28,22 @@ Microsoft recommends [a layered approach to securing removable media](https://ak
            - Microsoft Defender Antivirus real-time protection (RTP) to scan removable storage for malware.  
            - The Attack Surface Reduction (ASR) USB rule to block untrusted and unsigned processes that run from USB.  
            - Direct Memory Access (DMA) protection settings to mitigate DMA attacks, including Kernel DMA Protection for Thunderbolt and blocking DMA until a user signs in.  
-3. [Create customized alerts and response actions](#create-customized-alerts-and-response-actions) to monitor usage of removable devices based on these plug and play events or any other Microsoft Defender ATP events with [custom detection rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules).
+3. [Create customized alerts and response actions](#create-customized-alerts-and-response-actions) to monitor usage of removable devices based on these plug and play events or any other Microsoft Defender for Endpoint events with [custom detection rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules).
 
 4. [Respond to threats](#respond-to-threats) from peripherals in real-time based on properties reported by each peripheral.
 
 >[!Note]
->These threat reduction measures help prevent malware from coming into your environment. To protect enterprise data from leaving your environment, you can also configure data loss prevention measures. For example, on Windows 10 devices you can configure [BitLocker](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-overview) and [Windows Information Protection](https://docs.microsoft.com/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure), which will encrypt company data even if it is stored on a personal device, or use the [Storage/RemovableDiskDenyWriteAccess CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-removablediskdenywriteaccess) to deny write access to removable disks. Additionally, you can [classify and protect files on Windows devices](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/information-protection-in-windows-overview) (including their mounted USB devices) by using Microsoft Defender ATP and Azure Information Protection.
+>These threat reduction measures help prevent malware from coming into your environment. To protect enterprise data from leaving your environment, you can also configure data loss prevention measures. For example, on Windows 10 devices you can configure [BitLocker](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-overview) and [Windows Information Protection](https://docs.microsoft.com/windows/security/information-protection/windows-information-protection/create-wip-policy-using-intune-azure), which will encrypt company data even if it is stored on a personal device, or use the [Storage/RemovableDiskDenyWriteAccess CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-removablediskdenywriteaccess) to deny write access to removable disks. Additionally, you can [classify and protect files on Windows devices](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/information-protection-in-windows-overview) (including their mounted USB devices) by using Microsoft Defender for Endpoint and Azure Information Protection.
 
 ## Discover plug and play connected events
 
-You can view plug and play connected events in Microsoft Defender ATP advanced hunting to identify suspicious usage activity or perform internal investigations.
-For examples of Microsoft Defender ATP advanced hunting queries, see the [Microsoft Defender ATP hunting queries GitHub repo](https://github.com/Microsoft/WindowsDefenderATP-Hunting-Queries).
+You can view plug and play connected events in Microsoft Defender for Endpoint advanced hunting to identify suspicious usage activity or perform internal investigations.
+For examples of Defender for Endpoint advanced hunting queries, see the [Microsoft Defender for Endpoint hunting queries GitHub repo](https://github.com/Microsoft/WindowsDefenderATP-Hunting-Queries).
 
-Sample Power BI report templates are available for Microsoft Defender ATP that you can use for Advanced hunting queries. With these sample templates, including one for device control, you can integrate the power of Advanced hunting into Power BI. See the [GitHub repository for PowerBI templates](https://github.com/microsoft/MDATP-PowerBI-Templates) for more information. See [Create custom reports using Power BI](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/api-power-bi) to learn more about Power BI integration.
+Sample Power BI report templates are available for Microsoft Defender for Endpoint that you can use for Advanced hunting queries. With these sample templates, including one for device control, you can integrate the power of Advanced hunting into Power BI. See the [GitHub repository for PowerBI templates](https://github.com/microsoft/MDATP-PowerBI-Templates) for more information. See [Create custom reports using Power BI](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/api-power-bi) to learn more about Power BI integration.
 
 ## Allow or block removable devices
-The following table describes the ways Microsoft Defender ATP can allow or block removable devices based on granular configuration.
+The following table describes the ways Microsoft Defender for Endpoint can allow or block removable devices based on granular configuration.
 
 | Control  | Description |
 |----------|-------------|
@@ -54,11 +54,11 @@ The following table describes the ways Microsoft Defender ATP can allow or block
 | [Allow installation and usage of specifically approved peripherals with matching device instance IDs](#allow-installation-and-usage-of-specifically-approved-peripherals-with-matching-device-instance-ids) | You can only install and use approved peripherals that match any of these device instance IDs. |
 | [Prevent installation and usage of specifically prohibited peripherals with matching device instance IDs](#prevent-installation-and-usage-of-specifically-prohibited-peripherals-with-matching-device-instance-ids) | You can't install or use prohibited peripherals that match any of these device instance IDs. |
 | [Limit services that use Bluetooth](#limit-services-that-use-bluetooth) | You can limit the services that can use Bluetooth. |
-| [Use Microsoft Defender ATP baseline settings](#use-microsoft-defender-atp-baseline-settings) | You can set the recommended configuration for ATP by using the Microsoft Defender ATP security baseline. |
+| [Use Microsoft Defender for Endpoint baseline settings](#use-microsoft-defender-for-endpoint-baseline-settings) | You can set the recommended configuration for ATP by using the Defender for Endpoint security baseline. |
 
 ### Restrict USB drives and other peripherals
 
-To prevent malware infections or data loss, an organization may restrict USB drives and other peripherals. The following table describes the ways Microsoft Defender ATP can help prevent installation and usage of USB drives and other peripherals.
+To prevent malware infections or data loss, an organization may restrict USB drives and other peripherals. The following table describes the ways Microsoft Defender for Endpoint can help prevent installation and usage of USB drives and other peripherals.
 
 | Control  | Description
 |----------|-------------|
@@ -75,7 +75,7 @@ The above policies can also be set through the [Device Installation CSP settings
 
 > [!Note]
 > Always test and refine these settings with a pilot group of users and devices first before applying them in production.
-For more information about controlling USB devices, see the [Microsoft Defender ATP blog](https://www.microsoft.com/security/blog/2018/12/19/windows-defender-atp-has-protections-for-usb-and-removable-devices/).
+For more information about controlling USB devices, see the [Microsoft Defender for Endpoint blog](https://www.microsoft.com/security/blog/2018/12/19/windows-defender-atp-has-protections-for-usb-and-removable-devices/).
 
 #### Allow installation and usage of USB drives and other peripherals
 
@@ -189,7 +189,7 @@ Allowing installation of specific devices requires also enabling [DeviceInstalla
 
 ### Prevent installation of specifically prohibited peripherals
 
-Microsoft Defender ATP blocks installation and usage of prohibited peripherals by using either of these options:
+Microsoft Defender for Endpoint blocks installation and usage of prohibited peripherals by using either of these options:
 
 - [Administrative Templates](https://docs.microsoft.com/intune/administrative-templates-windows) can block any device with a matching hardware ID or setup class.  
 - [Device Installation CSP settings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation) with a custom profile in Intune. You can [prevent installation of specific device IDs](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventinstallationofmatchingdeviceids) or [prevent specific device classes](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventinstallationofmatchingdevicesetupclasses).
@@ -212,26 +212,26 @@ Using Intune, you can limit the services that can use Bluetooth through the ["Bl
 
 ![Bluetooth](images/bluetooth.png)
 
-### Use Microsoft Defender ATP baseline settings
+### Use Microsoft Defender for Endpoint baseline settings
 
-The Microsoft Defender ATP baseline settings represent the recommended configuration for ATP. Configuration settings for baseline are located in the edit profile page of the configuration settings.
+The Microsoft Defender for Endpoint baseline settings represent the recommended configuration for ATP. Configuration settings for baseline are located in the edit profile page of the configuration settings.
 
 ![Baselines](images/baselines.png)
 
 ## Prevent threats from removable storage
   
-Removable storage devices can introduce additional security risk to your organization. Microsoft Defender ATP can help identify and block malicious files on removable storage devices.
+Removable storage devices can introduce additional security risk to your organization. Microsoft Defender for Endpoint can help identify and block malicious files on removable storage devices.
 
-Microsoft Defender ATP can also prevent USB peripherals from being used on devices to help prevent external threats. It does this by using the properties reported by USB peripherals to determine whether or not they can be installed and used on the device.
+Microsoft Defender for Endpoint can also prevent USB peripherals from being used on devices to help prevent external threats. It does this by using the properties reported by USB peripherals to determine whether or not they can be installed and used on the device.
 
 Note that if you block USB devices or any other device classes using the device installation policies, connected devices, such as phones, can still charge.
 
 >[!NOTE]
 >Always test and refine these settings with a pilot group of users and devices first before widely distributing to your organization. 
 
-The following table describes the ways Microsoft Defender ATP can help prevent threats from removable storage.
+The following table describes the ways Microsoft Defender for Endpoint can help prevent threats from removable storage.
 
-For more information about controlling USB devices, see the [Microsoft Defender ATP blog](https://aka.ms/devicecontrolblog).
+For more information about controlling USB devices, see the [Microsoft Defender for Endpoint blog](https://aka.ms/devicecontrolblog).
 
 | Control  | Description |
 |----------|-------------|
@@ -327,7 +327,7 @@ For information on device control related advance hunting events and examples on
 
 ## Respond to threats
 
-You can create custom alerts and automatic response actions with the [Microsoft Defender ATP Custom Detection Rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules). Response actions within the custom detection cover both machine and file level actions. You can also create alerts and automatic response actions using [PowerApps](https://powerapps.microsoft.com/) and [Flow](https://flow.microsoft.com/) with the [Microsoft Defender ATP connector](https://docs.microsoft.com/connectors/wdatp/). The connector supports actions for investigation, threat scanning, and restricting running applications. It is one of over 200 pre-defined connectors including Outlook, Teams, Slack, and more. Custom connectors can also be built. See [Connectors](https://docs.microsoft.com/connectors/) to learn more about connectors.
+You can create custom alerts and automatic response actions with the [Microsoft Defender for Endpoint Custom Detection Rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules). Response actions within the custom detection cover both machine and file level actions. You can also create alerts and automatic response actions using [PowerApps](https://powerapps.microsoft.com/) and [Flow](https://flow.microsoft.com/) with the [Microsoft Defender for Endpoint connector](https://docs.microsoft.com/connectors/wdatp/). The connector supports actions for investigation, threat scanning, and restricting running applications. It is one of over 200 pre-defined connectors including Outlook, Teams, Slack, and more. Custom connectors can also be built. See [Connectors](https://docs.microsoft.com/connectors/) to learn more about connectors.
  
 For example, using either approach, you can automatically have the Microsoft Defender Antivirus run when a USB device is mounted onto a machine.
 
diff --git a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
index 35846937a0..d855eb2606 100644
--- a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
@@ -18,7 +18,7 @@ ms.reviewer:
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2069559)
 
 This topic covers different ways to enable Hypervisor-protected code integrity (HVCI) on Windows 10.
 Some applications, including device drivers, may be incompatible with HVCI.
diff --git a/windows/security/threat-protection/device-guard/memory-integrity.md b/windows/security/threat-protection/device-guard/memory-integrity.md
index 3ebdf7bf95..7183046686 100644
--- a/windows/security/threat-protection/device-guard/memory-integrity.md
+++ b/windows/security/threat-protection/device-guard/memory-integrity.md
@@ -18,7 +18,7 @@ manager: dansimp
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2069559)
 
 Memory integrity is a feature of Windows that ensures code running in the Windows kernel is securely designed and trustworthy. It uses hardware virtualization and Hyper-V to protect Windows kernel mode processes from the injection and execution of malicious or unverified code. The integrity of code that runs on Windows is validated by memory integrity, making Windows resistant to attacks from malicious software. Memory integrity is a powerful security boundary that helps to block many types of malware from running in Windows 10 and Windows Server 2016 environments.
 
diff --git a/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
index d594900ce7..dcd19d4f9b 100644
--- a/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/requirements-and-deployment-planning-guidelines-for-virtualization-based-protection-of-code-integrity.md
@@ -19,7 +19,7 @@ ms.author: dansimp
 
 **Applies to**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2069559)
 
 Computers must meet certain hardware, firmware, and software requirements in order to take advantage of all of the virtualization-based security (VBS) features in [Windows Defender Device Guard](../device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control.md). Computers lacking these requirements can still be protected by Windows Defender Application Control (WDAC) policies—the difference is that those computers will not be as hardened against certain threats.
 
diff --git a/windows/security/threat-protection/intelligence/fileless-threats.md b/windows/security/threat-protection/intelligence/fileless-threats.md
index a5f4583231..9be24dcbe2 100644
--- a/windows/security/threat-protection/intelligence/fileless-threats.md
+++ b/windows/security/threat-protection/intelligence/fileless-threats.md
@@ -98,6 +98,6 @@ Besides being vulnerable at the firmware level, CPUs could be manufactured with
 
 ## Defeating fileless malware
 
-At Microsoft, we actively monitor the security landscape to identify new threat trends and develop solutions to mitigate classes of threats. We instrument durable protections that are effective against a wide range of threats. Through AntiMalware Scan Interface (AMSI), behavior monitoring, memory scanning, and boot sector protection, Microsoft Defender Advanced Threat Protection [(Microsoft Defender ATP)](https://www.microsoft.com/windowsforbusiness?ocid=docs-fileless) can inspect fileless threats even with heavy obfuscation. Machine learning technologies in the cloud allow us to scale these protections against new and emerging threats.
+At Microsoft, we actively monitor the security landscape to identify new threat trends and develop solutions to mitigate classes of threats. We instrument durable protections that are effective against a wide range of threats. Through AntiMalware Scan Interface (AMSI), behavior monitoring, memory scanning, and boot sector protection, Microsoft Defender for Endpoint](https://www.microsoft.com/windowsforbusiness?ocid=docs-fileless) can inspect fileless threats even with heavy obfuscation. Machine learning technologies in the cloud allow us to scale these protections against new and emerging threats.
 
 To learn more, read: [Out of sight but not invisible: Defeating fileless malware with behavior monitoring, AMSI, and next-gen AV](https://cloudblogs.microsoft.com/microsoftsecure/2018/09/27/out-of-sight-but-not-invisible-defeating-fileless-malware-with-behavior-monitoring-amsi-and-next-gen-av/)
diff --git a/windows/security/threat-protection/intelligence/phishing.md b/windows/security/threat-protection/intelligence/phishing.md
index d70c3f606b..f2cd0a919e 100644
--- a/windows/security/threat-protection/intelligence/phishing.md
+++ b/windows/security/threat-protection/intelligence/phishing.md
@@ -64,7 +64,7 @@ If in doubt, contact the business by known channels to verify if any suspicious
 
 * [Microsoft Exchange Online Protection (EOP)](https://products.office.com/exchange/exchange-email-security-spam-protection) offers enterprise-class reliability and protection against spam and malware, while maintaining access to email during and after emergencies.  Using various layers of filtering, EOP can provide different controls for spam filtering, such as bulk mail controls and international spam, that will further enhance your protection services.
 
-* Use [Office 365 Advanced Threat Protection (ATP)](https://products.office.com/exchange/online-email-threat-protection?ocid=cx-blog-mmpc) to help protect your email, files, and online storage against malware. It offers holistic protection in Microsoft Teams, Word, Excel, PowerPoint, Visio, SharePoint Online, and OneDrive for Business. By protecting against unsafe attachments and expanding protection against malicious links, it complements the security features of Exchange Online Protection to provide better zero-day protection.
+* Use [Microsoft Defender for Office 365](https://products.office.com/exchange/online-email-threat-protection?ocid=cx-blog-mmpc) to help protect your email, files, and online storage against malware. It offers holistic protection in Microsoft Teams, Word, Excel, PowerPoint, Visio, SharePoint Online, and OneDrive for Business. By protecting against unsafe attachments and expanding protection against malicious links, it complements the security features of Exchange Online Protection to provide better zero-day protection.
 
 ## What to do if you've been a victim of a phishing scam
 
diff --git a/windows/security/threat-protection/intelligence/prevent-malware-infection.md b/windows/security/threat-protection/intelligence/prevent-malware-infection.md
index 3313e1d680..026d1653b0 100644
--- a/windows/security/threat-protection/intelligence/prevent-malware-infection.md
+++ b/windows/security/threat-protection/intelligence/prevent-malware-infection.md
@@ -103,11 +103,11 @@ Microsoft provides comprehensive security capabilities that help protect against
 
 * [Microsoft 365](https://docs.microsoft.com/microsoft-365/enterprise/) includes Office 365, Windows 10, and Enterprise Mobility + Security. These resources power productivity while providing intelligent security across users, devices, and data.
 
-* [Office 365 Advanced Threat Protection](https://docs.microsoft.com/office365/servicedescriptions/office-365-advanced-threat-protection-service-description) includes machine learning capabilities that block dangerous emails, including millions of emails carrying ransomware downloaders.
+* [Microsoft Defender for Office 365](https://docs.microsoft.com/office365/servicedescriptions/office-365-advanced-threat-protection-service-description) includes machine learning capabilities that block dangerous emails, including millions of emails carrying ransomware downloaders.
 
 * [OneDrive for Business](https://support.office.com/article/restore-a-previous-version-of-a-file-in-onedrive-159cad6d-d76e-4981-88ef-de6e96c93893?ui=en-US&rs=en-US&ad=US) can back up files, which you would then use to restore files in the event of an infection.
 
-* [Microsoft Defender Advanced Threat Protection](../microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md) provides comprehensive endpoint protection, detection, and response capabilities to help prevent ransomware. In the event of a breach, Microsoft Defender ATP alerts security operations teams about suspicious activities and automatically attempts to resolve the problem. This includes alerts for suspicious PowerShell commands, connecting to a TOR website, launching self-replicated copies, and deletion of volume shadow copies. Try Microsoft Defender ATP free of charge.
+* [Microsoft Defender for Endpoint](../microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md) provides comprehensive endpoint protection, detection, and response capabilities to help prevent ransomware. In the event of a breach, Microsoft Defender for Endpoint alerts security operations teams about suspicious activities and automatically attempts to resolve the problem. This includes alerts for suspicious PowerShell commands, connecting to a TOR website, launching self-replicated copies, and deletion of volume shadow copies. Try Microsoft Defender for Endpoint free of charge.
 
 * [Windows Hello for Business](https://docs.microsoft.com/windows/security/identity-protection/hello-for-business/hello-identity-verification) replaces passwords with strong two-factor authentication on your devices. This authentication consists of a new type of user credential that is tied to a device and uses a biometric or PIN. It lets user authenticate to an Active Directory or Azure Active Directory account.
 
@@ -117,6 +117,6 @@ Microsoft provides comprehensive security capabilities that help protect against
 
 ## What to do with a malware infection
 
-Microsoft Defender ATP antivirus capabilities help reduce the chances of infection and will automatically remove threats that it detects.
+Microsoft Defender for Endpoint antivirus capabilities help reduce the chances of infection and will automatically remove threats that it detects.
 
 In case threat removal is unsuccessful, read about [troubleshooting malware detection and removal problems](https://support.microsoft.com/help/4466982/windows-10-troubleshoot-problems-with-detecting-and-removing-malware).
diff --git a/windows/security/threat-protection/intelligence/understanding-malware.md b/windows/security/threat-protection/intelligence/understanding-malware.md
index eb417b74dd..87e0080d20 100644
--- a/windows/security/threat-protection/intelligence/understanding-malware.md
+++ b/windows/security/threat-protection/intelligence/understanding-malware.md
@@ -21,7 +21,7 @@ Malware is a term used to describe malicious applications and code that can caus
 
 Cybercriminals that distribute malware are often motivated by money and will use infected computers to launch attacks, obtain banking credentials, collect information that can be sold, sell access to computing resources, or extort payment from victims.
 
-As criminals become more sophisticated with their attacks, Microsoft is here to help. Windows 10 is the most secure version of Windows yet and includes many features to help protect you whether you're at home, at work, or on the go. With Microsoft Defender Advanced Threat Protection ([Microsoft Defender ATP](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp)), businesses can stay protected with next-generation protection and other security capabilities.
+As criminals become more sophisticated with their attacks, Microsoft is here to help. Windows 10 is the most secure version of Windows yet and includes many features to help protect you whether you're at home, at work, or on the go. With [Microsoft Defender for Endpoint](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp), businesses can stay protected with next-generation protection and other security capabilities.
 
 For good general tips, check out the [prevent malware infection](prevent-malware-infection.md) topic.
 
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
index 007fa751d5..ab42d2eb12 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/faq-md-app-guard.md
@@ -16,7 +16,7 @@ ms.custom: asr
 
 # Frequently asked questions - Microsoft Defender Application Guard 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2069559)
 
 Answering frequently asked questions about Microsoft Defender Application Guard (Application Guard) features, integration with the Windows operating system, and general configuration.
 
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
index 1903c17792..2ead755621 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
@@ -17,7 +17,7 @@ ms.custom: asr
 # Prepare to install Microsoft Defender Application Guard
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 ## Review system requirements
  
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
index 4acd29aa2d..ead96a7a5d 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview.md
@@ -16,7 +16,7 @@ ms.custom: asr
 
 # Microsoft Defender Application Guard overview
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2069559)
 
 
 Microsoft Defender Application Guard (Application Guard) is designed to help prevent old and newly emerging attacks to help keep employees productive. Using our unique hardware isolation approach, our goal is to destroy the playbook that attackers use by making current attack methods obsolete.
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
index 5757f18c10..81623005a4 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/reqs-md-app-guard.md
@@ -16,7 +16,7 @@ ms.custom: asr
 
 # System requirements for Microsoft Defender Application Guard
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2069559)
 
 The threat landscape is continually evolving. While hackers are busy developing new techniques to breach enterprise networks by compromising workstations, phishing schemes remain one of the top ways to lure employees into social engineering attacks. Microsoft Defender Application Guard is designed to help prevent old, and newly emerging attacks, to help keep employees productive.
 
diff --git a/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md b/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md
index 61a59f78bf..b64d307ca9 100644
--- a/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md
+++ b/windows/security/threat-protection/windows-defender-application-control/plan-windows-defender-application-control-management.md
@@ -65,7 +65,7 @@ Each time that a process is blocked by WDAC, events will be written to either th
 
 Collecting these events in a central location can help you maintain your WDAC policy and troubleshoot rule configuration problems. Event collection technologies such as those available in Windows allow administrators to subscribe to specific event channels and have the events from source computers aggregated into a forwarded event log on a Windows Server operating system collector. For more info about setting up an event subscription, see [Configure Computers to Collect and Forward Events](https://go.microsoft.com/fwlink/p/?LinkId=145012).
 
-Additionally, WDAC events are collected by [Microsoft Defender Advanced Threat Protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) and can be queried using the [advanced hunting](querying-application-control-events-centrally-using-advanced-hunting.md) feature.
+Additionally, WDAC events are collected by [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) and can be queried using the [advanced hunting](querying-application-control-events-centrally-using-advanced-hunting.md) feature.
 
 ## Application and user support policy
 
diff --git a/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md b/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md
index 19bcd021e5..1e729211c5 100644
--- a/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md
+++ b/windows/security/threat-protection/windows-defender-application-control/querying-application-control-events-centrally-using-advanced-hunting.md
@@ -22,12 +22,12 @@ ms.date: 12/06/2018
 A Windows Defender Application Control (WDAC) policy logs events locally in Windows Event Viewer in either enforced or audit mode. 
 While Event Viewer helps to see the impact on a single system, IT Pros want to gauge the impact across many systems. 
 
-In November 2018, we added functionality in Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) that makes it easy to view WDAC events centrally from all systems that are connected to Microsoft Defender ATP. 
+In November 2018, we added functionality in Microsoft Defender for Endpoint that makes it easy to view WDAC events centrally from all systems that are connected to Defender for Endpoint. 
 
-Advanced hunting in Microsoft Defender ATP allows customers to query data using a rich set of capabilities. WDAC events can be queried with using an ActionType that starts with “AppControl”. 
+Advanced hunting in Microsoft Defender for Endpoint allows customers to query data using a rich set of capabilities. WDAC events can be queried with using an ActionType that starts with “AppControl”. 
 This capability is supported beginning with Windows version 1607.
 
-Here is a simple example query that shows all the WDAC events generated in the last seven days from machines being monitored by Microsoft Defender ATP:
+Here is a simple example query that shows all the WDAC events generated in the last seven days from machines being monitored by Microsoft Defender for Endpoint:
 
 ```
 DeviceEvents
diff --git a/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md b/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md
index 601d01340e..91a81e3359 100644
--- a/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md
+++ b/windows/security/threat-protection/windows-defender-application-control/types-of-devices.md
@@ -41,7 +41,7 @@ In the next set of topics, we will explore each of the above scenarios using a f
 
 Lamna Healthcare Company (Lamna) is a large healthcare provider operating in the United States. Lamna employs thousands of people, from doctors and nurses to accountants, in-house lawyers, and IT technicians. Their device use cases are varied and include single-user workstations for their professional staff, shared kiosks used by doctors and nurses to access patient records, dedicated medical devices such as MRI scanners, and many others. Additionally, Lamna has a relaxed, bring-your-own-device policy for many of their professional staff.
 
-Lamna uses [Microsoft Endpoint Manager](https://www.microsoft.com/microsoft-365/microsoft-endpoint-manager) (MEM) in hybrid mode with both Configuration Manager (MEMCM) and Intune. Although they use MEM to deploy many applications, Lamna has always had very relaxed application usage practices: individual teams and employees have been able to install and use any applications they deem necessary for their role on their own workstations. Lamna also recently started to use [Microsoft Defender Advanced Threat Protection](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp) (MDATP) for better endpoint detection and response.
+Lamna uses [Microsoft Endpoint Manager](https://www.microsoft.com/microsoft-365/microsoft-endpoint-manager) (MEM) in hybrid mode with both Configuration Manager (MEMCM) and Intune. Although they use MEM to deploy many applications, Lamna has always had very relaxed application usage practices: individual teams and employees have been able to install and use any applications they deem necessary for their role on their own workstations. Lamna also recently started to use [Microsoft Defender for Endpoint](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp) for better endpoint detection and response.
 
 > [!NOTE]
 > Microsoft Endpoint Configuration Manager was previously known as System Center Configuration Manager. 
diff --git a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md
index 7705229827..5b14874133 100644
--- a/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md
+++ b/windows/security/threat-protection/windows-defender-application-control/use-windows-defender-application-control-with-intelligent-security-graph.md
@@ -90,7 +90,7 @@ This step is not required for WDAC policies deployed over MDM using the AppLocke
 
 ## Security considerations with the Intelligent Security Graph 
 
-Since the Microsoft Intelligent Security Graph is a heuristic-based mechanism, it does not provide the same security guarantees that explicit allow or deny rules do. It is best suited for deployment to systems where each user is configured as a standard user and there are other monitoring systems in place like Microsoft Defender Advanced Threat Protection to help provide optics into what users are doing. 
+Since the Microsoft Intelligent Security Graph is a heuristic-based mechanism, it does not provide the same security guarantees that explicit allow or deny rules do. It is best suited for deployment to systems where each user is configured as a standard user and there are other monitoring systems in place like Microsoft Defender for Endpoint to help provide optics into what users are doing. 
 
 Users with administrator privileges or malware running as an administrator user on the system may be able to circumvent the intent of WDAC when the Microsoft Intelligent Security Graph option is allowed by circumventing or corrupting the heuristics used to assign reputation to application executables. The Microsoft Intelligent Security Graph option uses the same heuristic tracking as managed installer and so for application installers that include an option to automatically run the application at the end of the installation process the heuristic may over-authorize.  
 
diff --git a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md
index 8a7ad0700f..b91a1efb4b 100644
--- a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-operational-guide.md
@@ -24,7 +24,7 @@ ms.date: 03/16/2020
 - Windows 10
 - Windows Server 2016 and above
 
-After designing and deploying your Windows Defender Application Control (WDAC) policies, this guide covers understanding the effects your policies are having and troubleshooting when they are not behaving as expected. It contains information on where to find events and what they mean, and also querying these events with Microsoft Defender Advanced Threat Protection (MDATP) Advanced Hunting feature.
+After designing and deploying your Windows Defender Application Control (WDAC) policies, this guide covers understanding the effects your policies are having and troubleshooting when they are not behaving as expected. It contains information on where to find events and what they mean, and also querying these events with Microsoft Defender for Endpoint Advanced Hunting feature.
 
 ## WDAC Events Overview
 
@@ -42,4 +42,4 @@ WDAC events are generated under two locations:
 | - | - |
 | [Understanding Application Control event IDs](event-id-explanations.md) | This topic explains the meaning of different WDAC event IDs. |
 | [Understanding Application Control event tags](event-tag-explanations.md) | This topic explains the meaning of different WDAC event tags. |
-| [Query WDAC events with Advanced hunting](querying-application-control-events-centrally-using-advanced-hunting.md) | This topic covers how to view WDAC events centrally from all systems that are connected to Microsoft Defender ATP. |
+| [Query WDAC events with Advanced hunting](querying-application-control-events-centrally-using-advanced-hunting.md) | This topic covers how to view WDAC events centrally from all systems that are connected to Microsoft Defender for Endpoint. |
diff --git a/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md b/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md
index a3bf04355b..7f5c78c55f 100644
--- a/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md
+++ b/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center.md
@@ -34,7 +34,7 @@ In Windows 10, version 1803, the app has two new areas, **Account protection** a
 ![Screenshot of the Windows Security app showing that the device is protected and five icons for each of the features](images/security-center-home.png)
 
 > [!NOTE]
-> The Windows Security app is a client interface on Windows 10, version 1703 and later. It is not the Microsoft Defender Security Center web portal console that is used to review and manage [Microsoft Defender Advanced Threat Protection](https://docs.microsoft.com/windows/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
+> The Windows Security app is a client interface on Windows 10, version 1703 and later. It is not the Microsoft Defender Security Center web portal console that is used to review and manage [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
 
 You can't uninstall the Windows Security app, but you can do one of the following:
 
diff --git a/windows/whats-new/ltsc/whats-new-windows-10-2016.md b/windows/whats-new/ltsc/whats-new-windows-10-2016.md
index 37619d2d6f..63e15a057b 100644
--- a/windows/whats-new/ltsc/whats-new-windows-10-2016.md
+++ b/windows/whats-new/ltsc/whats-new-windows-10-2016.md
@@ -124,11 +124,11 @@ Several new features and management options have been added to Windows Defender
 - [Run a Windows Defender scan from the command line](/windows/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus).
 - [Detect and block Potentially Unwanted Applications with Windows Defender](/windows/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus) during download and install times.
 
-### Windows Defender Advanced Threat Protection (ATP)
+### Microsoft Defender for Endpoint
 
-With the growing threat from more sophisticated targeted attacks, a new security solution is imperative in securing an increasingly complex network ecosystem. Windows Defender Advanced Threat Protection (Windows Defender ATP) is a security service, built into Windows 10 that enables enterprise customers detect, investigate, and respond to advanced threats on their networks.
+With the growing threat from more sophisticated targeted attacks, a new security solution is imperative in securing an increasingly complex network ecosystem. Microsoft Defender for Endpoint is a security service, built into Windows 10 that enables enterprise customers detect, investigate, and respond to advanced threats on their networks.
 
-[Learn more about Windows Defender Advanced Threat Protection (ATP)](/windows/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
+[Learn more about Microsoft Defender for Endpoint](/windows/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
 
 ### VPN security
 
diff --git a/windows/whats-new/ltsc/whats-new-windows-10-2019.md b/windows/whats-new/ltsc/whats-new-windows-10-2019.md
index 591f85814f..cee461354f 100644
--- a/windows/whats-new/ltsc/whats-new-windows-10-2019.md
+++ b/windows/whats-new/ltsc/whats-new-windows-10-2019.md
@@ -44,11 +44,11 @@ This version of Window 10 includes security improvements for threat protection,
 
 ### Threat protection
 
-#### Windows Defender ATP
+#### Microsoft Defender for Endpoint
 
-The Windows Defender Advanced Threat Protection ([Windows Defender ATP](/windows/security/threat-protection/index)) platform includes the security pillars shown in the following diagram. In this version of Windows, Windows Defender ATP includes powerful analytics, security stack integration, and centralized management for better detection, prevention, investigation, response, and management. 
+The [Microsoft Defender for Endpoint](/windows/security/threat-protection/index) platform includes the security pillars shown in the following diagram. In this version of Windows, Defender for Endpoint includes powerful analytics, security stack integration, and centralized management for better detection, prevention, investigation, response, and management. 
 
-![Windows Defender ATP](../images/wdatp.png)
+![Microsoft Defender for Endpoint](../images/wdatp.png)
 
 ##### Attack surface reduction 
 
@@ -72,9 +72,9 @@ But these protections can also be configured separately. And, unlike HVCI, code
 
 ### Endpoint detection and response 
 
-Endpoint detection and response is improved. Enterprise customers can now take advantage of the entire Windows security stack with Microsoft Defender Antivirus **detections** and Device Guard **blocks** being surfaced in the Windows Defender ATP portal. 
+Endpoint detection and response is improved. Enterprise customers can now take advantage of the entire Windows security stack with Microsoft Defender Antivirus **detections** and Device Guard **blocks** being surfaced in the Microsoft Defender for Endpoint portal. 
 
-   Windows Defender is now called Microsoft Defender Antivirus and now shares detection status between M365 services and interoperates with Windows Defender ATP.  Additional policies have also been implemented to enhance cloud based protection, and new channels are available for emergency protection. For more information, see [Virus and threat protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection) and [Use next-gen technologies in Microsoft Defender Antivirus through cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus). 
+   Windows Defender is now called Microsoft Defender Antivirus and now shares detection status between M365 services and interoperates with Microsoft Defender for Endpoint.  Additional policies have also been implemented to enhance cloud based protection, and new channels are available for emergency protection. For more information, see [Virus and threat protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection) and [Use next-gen technologies in Microsoft Defender Antivirus through cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus). 
     
    We've also [increased the breadth of the documentation library for enterprise security admins](/windows/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10). The new library includes information on:
 - [Deploying and enabling AV protection](/windows/threat-protection/microsoft-defender-antivirus/deploy-microsoft-defender-antivirus)
@@ -104,20 +104,20 @@ Endpoint detection and response is improved. Enterprise customers can now take a
   - [Take response actions on a file](/windows/threat-protection/windows-defender-atp/respond-file-alerts-windows-defender-advanced-threat-protection) - Quickly respond to detected attacks by stopping and quarantining files or blocking a file.
 
 Additional capabilities have been added to help you gain a holistic view on **investigations** include:
-- [Threat analytics](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/threat-analytics) - Threat Analytics is a set of interactive reports published by the Windows Defender ATP research team as soon as emerging threats and outbreaks are identified. The reports help security operations teams assess impact on their environment and provides recommended actions to contain, increase organizational resilience, and prevent specific threats.
-- [Query data using Advanced hunting in Windows Defender ATP](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection)
+- [Threat analytics](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/threat-analytics) - Threat Analytics is a set of interactive reports published by the Microsoft Defender for Endpoint research team as soon as emerging threats and outbreaks are identified. The reports help security operations teams assess impact on their environment and provides recommended actions to contain, increase organizational resilience, and prevent specific threats.
+- [Query data using Advanced hunting in Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection)
 - [Use Automated investigations to investigate and remediate threats](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/automated-investigations-windows-defender-advanced-threat-protection)
 - [Investigate a user account](/windows/threat-protection/windows-defender-atp/investigate-user-windows-defender-advanced-threat-protection) - Identify user accounts with the most active alerts and investigate cases of potential compromised credentials.
 - [Alert process tree](/windows/threat-protection/windows-defender-atp/investigate-alerts-windows-defender-advanced-threat-protection#alert-process-tree) - Aggregates multiple detections and related events into a single view to reduce case resolution time.
-- [Pull alerts using REST API](/windows/threat-protection/windows-defender-atp/pull-alerts-using-rest-api-windows-defender-advanced-threat-protection) - Use REST API to pull alerts from Windows Defender ATP.
+- [Pull alerts using REST API](/windows/threat-protection/windows-defender-atp/pull-alerts-using-rest-api-windows-defender-advanced-threat-protection) - Use REST API to pull alerts from Microsoft Defender for Endpoint.
 
 Other enhanced security features include:
-- [Check sensor health state](/windows/threat-protection/windows-defender-atp/check-sensor-status-windows-defender-advanced-threat-protection) - Check an endpoint's ability to provide sensor data and communicate with the Windows Defender ATP service and fix known issues.
-- [Managed security service provider (MSSP) support](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/mssp-support-windows-defender-advanced-threat-protection) - Windows Defender ATP adds support for this scenario by providing MSSP integration. The integration will allow MSSPs to take the following actions: Get access to MSSP customer's Windows Defender Security Center portal, fetch email notifications, and fetch alerts through security information and event management (SIEM) tools.
-- [Integration with Azure Security Center](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#integration-with-azure-security-center) - Windows Defender ATP integrates with Azure Security Center to provide a comprehensive server protection solution. With this integration Azure Security Center can leverage the power of Windows Defender ATP to provide improved threat detection for Windows Servers.
-- [Integration with Microsoft Cloud App Security](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/microsoft-cloud-app-security-integration) - Microsoft Cloud App Security leverages Windows Defender ATP endpoint signals to allow direct visibility into cloud application usage including the use of unsupported cloud services (shadow IT) from all Windows Defender ATP monitored machines.
-- [Onboard Windows Server 2019](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#windows-server-version-1803-and-windows-server-2019) - Windows Defender ATP now adds support for Windows Server 2019. You'll be able to onboard Windows Server 2019 in the same method available for Windows 10 client machines. 
-- [Onboard previous versions of Windows](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/onboard-downlevel-windows-defender-advanced-threat-protection) - Onboard supported versions of Windows machines so that they can send sensor data to the Windows Defender ATP sensor.
+- [Check sensor health state](/windows/threat-protection/windows-defender-atp/check-sensor-status-windows-defender-advanced-threat-protection) - Check an endpoint's ability to provide sensor data and communicate with the Microsoft Defender for Endpoint service and fix known issues.
+- [Managed security service provider (MSSP) support](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/mssp-support-windows-defender-advanced-threat-protection) - Microsoft Defender for Endpoint adds support for this scenario by providing MSSP integration. The integration will allow MSSPs to take the following actions: Get access to MSSP customer's Windows Defender Security Center portal, fetch email notifications, and fetch alerts through security information and event management (SIEM) tools.
+- [Integration with Azure Defender](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#integration-with-azure-security-center) - Microsoft Defender for Endpoint integrates with Azure Defender to provide a comprehensive server protection solution. With this integration Azure Defender can leverage the power of Defender for Endpoint to provide improved threat detection for Windows Servers.
+- [Integration with Microsoft Cloud App Security](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/microsoft-cloud-app-security-integration) - Microsoft Cloud App Security leverages Microsoft Defender for Endpoint signals to allow direct visibility into cloud application usage including the use of unsupported cloud services (shadow IT) from all Defender for Endpoint monitored machines.
+- [Onboard Windows Server 2019](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#windows-server-version-1803-and-windows-server-2019) - Microsoft Defender for Endpoint now adds support for Windows Server 2019. You'll be able to onboard Windows Server 2019 in the same method available for Windows 10 client machines. 
+- [Onboard previous versions of Windows](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/onboard-downlevel-windows-defender-advanced-threat-protection) - Onboard supported versions of Windows machines so that they can send sensor data to the Microsoft Defender for Endpoint sensor.
 - [Enable conditional access to better protect users, devices, and data](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/conditional-access-windows-defender-advanced-threat-protection)
 
 We've also added a new assessment for the Windows time service to the **Device performance & health** section. If we detect that your device’s time is not properly synced with our time servers and the time-syncing service is disabled, we’ll provide the option for you to turn it back on.
@@ -127,15 +127,15 @@ We’re continuing to work on how other security apps you’ve installed show up
 This also means you’ll see more links to other security apps within **Windows Security**. For example, if you open the **Firewall & network protection** section, you’ll see the firewall apps that are running on your device under each firewall type, which includes domain, private, and public networks).
 
 You can read more about ransomware mitigations and detection capability at:  
-- [Averting ransomware epidemics in corporate networks with Windows Defender ATP](https://blogs.technet.microsoft.com/mmpc/2017/01/30/averting-ransomware-epidemics-in-corporate-networks-with-windows-defender-atp/)
+- [Averting ransomware epidemics in corporate networks with Microsoft Defender for Endpoint](https://blogs.technet.microsoft.com/mmpc/2017/01/30/averting-ransomware-epidemics-in-corporate-networks-with-windows-defender-atp/)
 - [Ransomware security intelligence](https://docs.microsoft.com/windows/security/threat-protection/intelligence/ransomware-malware)
 - [Microsoft Malware Protection Center blog](https://blogs.technet.microsoft.com/mmpc/category/research/ransomware/)
 
-Also see [New capabilities of Windows Defender ATP further maximizing the effectiveness and robustness of endpoint security](https://blogs.windows.com/business/2018/04/17/new-capabilities-of-windows-defender-atp-further-maximizing-the-effectiveness-and-robustness-of-endpoint-security/#62FUJ3LuMXLQidVE.97)
+Also see [New capabilities of Microsoft Defender for Endpoint further maximizing the effectiveness and robustness of endpoint security](https://blogs.windows.com/business/2018/04/17/new-capabilities-of-windows-defender-atp-further-maximizing-the-effectiveness-and-robustness-of-endpoint-security/#62FUJ3LuMXLQidVE.97)
 
-Get a quick, but in-depth overview of Windows Defender ATP for Windows 10: [Windows Defender Advanced Threat Protection](/windows/security/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
+Get a quick, but in-depth overview of Microsoft Defender for Endpoint for Windows 10: [Defender for Endpoint](/windows/security/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
 
-For more information about features of Windows Defender ATP available in different editions of Windows 10, see the [Windows 10 commercial edition comparison](https://wincom.blob.core.windows.net/documents/Windows10_Commercial_Comparison.pdf).
+For more information about features of Microsoft Defender for Endpoint available in different editions of Windows 10, see the [Windows 10 commercial edition comparison](https://wincom.blob.core.windows.net/documents/Windows10_Commercial_Comparison.pdf).
 
 ### Information protection 
 

From bb424a17745a1e383655d0f138719fc7d26a980e Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Tue, 10 Nov 2020 16:38:52 +0530
Subject: [PATCH 062/209] updated-4567381-Batch11

rebranding
---
 .../machines-view-overview.md                 | 10 ++--
 .../microsoft-defender-atp/manage-alerts.md   | 26 +++++------
 .../manage-atp-post-migration-intune.md       |  2 +-
 .../manage-auto-investigation.md              |  2 +-
 .../manage-automation-file-uploads.md         |  4 +-
 .../manage-automation-folder-exclusions.md    |  4 +-
 .../manage-incidents.md                       |  4 +-
 .../manage-indicators.md                      | 12 ++---
 .../manage-suppression-rules.md               |  2 +-
 .../microsoft-defender-atp/management-apis.md | 32 ++++++-------
 .../mcafee-to-microsoft-defender-migration.md |  4 +-
 .../mcafee-to-microsoft-defender-setup.md     |  4 +-
 .../microsoft-cloud-app-security-config.md    | 12 ++---
 ...icrosoft-cloud-app-security-integration.md | 12 ++---
 ...oft-defender-advanced-threat-protection.md | 26 +++++------
 .../microsoft-defender-atp-android.md         | 28 +++++------
 .../microsoft-defender-atp-ios.md             | 10 ++--
 .../microsoft-defender-atp-linux.md           | 36 +++++++--------
 .../microsoft-defender-atp-mac.md             | 46 +++++++++----------
 .../microsoft-defender-security-center.md     |  6 +--
 .../microsoft-threat-experts.md               |  4 +-
 .../migration-guides.md                       |  4 +-
 .../minimum-requirements.md                   | 44 +++++++++---------
 .../microsoft-defender-atp/mssp-list.md       |  8 ++--
 .../microsoft-defender-atp/mssp-support.md    |  8 ++--
 25 files changed, 175 insertions(+), 175 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md b/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
index c4df93659f..fae0dfc00e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machines-view-overview.md
@@ -17,16 +17,16 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# View and organize the Microsoft Defender ATP Devices list
+# View and organize the Microsoft Defender for Endpoint Devices list
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-machinesview-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-machinesview-abovefoldlink)
 
 The **Devices list** shows a list of the devices in your network where alerts were generated. By default, the queue displays devices with alerts seen in the last 30 days.  
 
@@ -61,7 +61,7 @@ The exposure level reflects the current exposure of the device based on the cumu
 If the exposure level says "No data available," there are a few reasons why this may be the case:
 
 - Device stopped reporting for more than 30 days – in that case it is considered inactive, and the exposure isn't computed
-- Device OS not supported - see [minimum requirements for Microsoft Defender ATP](minimum-requirements.md)
+- Device OS not supported - see [minimum requirements for Microsoft Defender for Endpoint](minimum-requirements.md)
 - Device with stale agent (very unlikely)
 
 ### OS Platform
@@ -106,4 +106,4 @@ Filter the list based on the grouping and tagging that you've added to individua
 
 ## Related topics
 
-- [Investigate devices in the Microsoft Defender ATP Devices list](investigate-machines.md)
+- [Investigate devices in the Microsoft Defender for Endpoint Devices list](investigate-machines.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md
index 9a210d00da..92810d1d1f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md
@@ -17,17 +17,17 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Manage Microsoft Defender Advanced Threat Protection alerts
+# Manage Microsoft Defender for Endpoint alerts
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-managealerts-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-managealerts-abovefoldlink)
 
-Microsoft Defender ATP notifies you of possible malicious events, attributes, and contextual information through alerts. A summary of new alerts is displayed in the **Security operations dashboard**, and you can access all alerts in the **Alerts queue**.
+Defender for Endpoint notifies you of possible malicious events, attributes, and contextual information through alerts. A summary of new alerts is displayed in the **Security operations dashboard**, and you can access all alerts in the **Alerts queue**.
 
 You can manage alerts by selecting an alert in the **Alerts queue**, or the **Alerts** tab of the Device page for an individual device.
 
@@ -43,7 +43,7 @@ If an alert is not yet assigned, you can select **Assign to me** to assign the a
 
 
 ## Suppress alerts
-There might be scenarios where you need to suppress alerts from appearing in Microsoft Defender Security Center. Microsoft Defender ATP lets you create suppression rules for specific alerts that are known to be innocuous such as known tools or processes in your organization.
+There might be scenarios where you need to suppress alerts from appearing in Microsoft Defender Security Center. Defender for Endpoint lets you create suppression rules for specific alerts that are known to be innocuous such as known tools or processes in your organization.
 
 Suppression rules can be created from an existing alert. They can be disabled and reenabled if needed.
 
@@ -82,7 +82,7 @@ Create custom rules to control when alerts are suppressed, or resolved. You can
 3. Select the **Triggering IOC**.
     
 4. Specify the action and scope on the alert. <br>
-   You can automatically resolve an alert or hide it from the portal. Alerts that are automatically resolved will appear in the resolved section of the alerts queue, alert page, and device timeline and will appear as resolved across Microsoft Defender ATP APIs. <br><br> Alerts that are marked as hidden will be suppressed from the entire system, both on the device's associated alerts and from the dashboard and will not be streamed across Microsoft Defender ATP APIs.
+   You can automatically resolve an alert or hide it from the portal. Alerts that are automatically resolved will appear in the resolved section of the alerts queue, alert page, and device timeline and will appear as resolved across Defender for Endpoint APIs. <br><br> Alerts that are marked as hidden will be suppressed from the entire system, both on the device's associated alerts and from the dashboard and will not be streamed across Defender for Endpoint APIs.
 
 
 5. Enter a rule name and a comment.
@@ -120,10 +120,10 @@ Added comments instantly appear on the pane.
 
 ## Related topics
 - [Manage suppression rules](manage-suppression-rules.md)
-- [View and organize the Microsoft Defender Advanced Threat Protection Alerts queue](alerts-queue.md)
-- [Investigate Microsoft Defender Advanced Threat Protection alerts](investigate-alerts.md)
-- [Investigate a file associated with a Microsoft Defender ATP alert](investigate-files.md)
-- [Investigate devices in the Microsoft Defender ATP Devices list](investigate-machines.md)
-- [Investigate an IP address associated with a Microsoft Defender ATP alert](investigate-ip.md)
-- [Investigate a domain associated with a Microsoft Defender ATP alert](investigate-domain.md)
-- [Investigate a user account in Microsoft Defender ATP](investigate-user.md)
+- [View and organize the Microsoft Defender for Endpoint Alerts queue](alerts-queue.md)
+- [Investigate Microsoft Defender for Endpoint alerts](investigate-alerts.md)
+- [Investigate a file associated with a Microsoft Defender for Endpoint alert](investigate-files.md)
+- [Investigate devices in the Microsoft Defender for Endpoint Devices list](investigate-machines.md)
+- [Investigate an IP address associated with a Microsoft Defender for Endpoint alert](investigate-ip.md)
+- [Investigate a domain associated with a Microsoft Defender for Endpoint alert](investigate-domain.md)
+- [Investigate a user account in Microsoft Defender for Endpoint](investigate-user.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
index 36d77dce37..94a77a1007 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-atp-post-migration-intune.md
@@ -61,7 +61,7 @@ The following table lists various tasks you can perform to configure Microsoft D
 |**Use Conditional Access** to control the devices and apps that can connect to your email and company resources |[Configure Conditional Access in Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-conditional-access) |
 |**Configure Microsoft Defender Antivirus settings** using the Policy configuration service provider ([Policy CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-configuration-service-provider)) |[Device restrictions: Microsoft Defender Antivirus](https://docs.microsoft.com/mem/intune/configuration/device-restrictions-windows-10#microsoft-defender-antivirus)<br/><br/>[Policy CSP - Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender)  | 
 |**If necessary, specify exclusions for Microsoft Defender Antivirus** <br/><br/>*Generally, you shouldn't need to apply exclusions. Microsoft Defender Antivirus includes a number of automatic exclusions based on known operating system behaviors and typical management files, such as those used in enterprise management, database management, and other enterprise scenarios.* |[Virus scanning recommendations for Enterprise computers that are running currently supported versions of Windows](https://support.microsoft.com/help/822158/virus-scanning-recommendations-for-enterprise-computers)<br/><br/>[Device restrictions: Microsoft Defender Antivirus Exclusions for Windows 10 devices](https://docs.microsoft.com/mem/intune/configuration/device-restrictions-windows-10#microsoft-defender-antivirus-exclusions) <br/><br/>[Configure Microsoft Defender Antivirus exclusions on Windows Server 2016 or 2019](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus)|
-|**Configure your attack surface reduction rules** to target software behaviors that are often abused by attackers<br/><br/>*Configure your attack surface reduction rules in [audit mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender) at first (for at least one week and up to two months). You can monitor status using Power BI ([get our template](https://github.com/microsoft/MDATP-PowerBI-Templates/tree/master/Attack%20Surface%20Reduction%20rules)), and then set those rules to active mode when you're ready.* |[Audit mode in Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender)<br/><br/>[Endpoint protection: Attack Surface Reduction](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10?toc=/intune/configuration/toc.json&bc=/intune/configuration/breadcrumb/toc.json#attack-surface-reduction)<br/><br/>[Learn more about attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction)<br/><br/>[Tech Community blog post: Demystifying attack surface reduction rules - Part 1](https://techcommunity.microsoft.com/t5/microsoft-defender-atp/demystifying-attack-surface-reduction-rules-part-1/ba-p/1306420) |
+|**Configure your attack surface reduction rules** to target software behaviors that are often abused by attackers<br/><br/>*Configure your attack surface reduction rules in [audit mode](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender) at first (for at least one week and up to two months). You can monitor status using Power BI ([get our template](https://github.com/microsoft/MDATP-PowerBI-Templates/tree/master/Attack%20Surface%20Reduction%20rules)), and then set those rules to active mode when you're ready.* |[Audit mode in Microsoft Defender for Endpoint ](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/audit-windows-defender)<br/><br/>[Endpoint protection: Attack Surface Reduction](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10?toc=/intune/configuration/toc.json&bc=/intune/configuration/breadcrumb/toc.json#attack-surface-reduction)<br/><br/>[Learn more about attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction)<br/><br/>[Tech Community blog post: Demystifying attack surface reduction rules - Part 1](https://techcommunity.microsoft.com/t5/microsoft-defender-atp/demystifying-attack-surface-reduction-rules-part-1/ba-p/1306420) |
 |**Configure your network filtering** to block outbound connections from any app to IP addresses or domains with low reputations  <br/><br/>*Network filtering is also referred to as [network protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/network-protection).*<br/><br/>*Make sure that Windows 10 devices have the latest [antimalware platform updates](https://support.microsoft.com/help/4052623/update-for-microsoft-defender-antimalware-platform) installed.*|[Endpoint protection: Network filtering](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#network-filtering)<br/><br/>[Review network protection events in Windows Event Viewer](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/evaluate-network-protection#review-network-protection-events-in-windows-event-viewer) |
 |**Configure controlled folder access** to protect against ransomware <br/><br/>*[Controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/controlled-folders) is also referred to as antiransomware protection.*  |[Endpoint protection: Controlled folder access](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#controlled-folder-access) <br/><br/>[Enable controlled folder access in Intune](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-controlled-folders#intune)  |
 |**Configure exploit protection** to protect your organization's devices from malware that uses exploits to spread and infect other devices <br/><br/> *[Exploit protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/exploit-protection) is also referred to as Exploit Guard.* |[Endpoint protection: Microsoft Defender Exploit Guard](https://docs.microsoft.com/mem/intune/protect/endpoint-protection-windows-10#microsoft-defender-exploit-guard) <br/><br/>[Enable exploit protection in Intune](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection#intune) |
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
index ab130cb910..3f4c0af91b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
@@ -70,7 +70,7 @@ The following table summarizes remediation actions following an automated invest
 |Any of the **Full** or **Semi** automation levels |A verdict of *No threats found* is reached for a piece of evidence. <br/><br/>No remediation actions are taken, and no actions are pending approval. |[View details and results of automated investigations](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/auto-investigation-action-center) |
 |**No automated response** (this is not recommended)|No automated investigations run, so no verdicts are reached, and no remediation actions are taken or awaiting approval. |[Consider setting up or changing your device groups to use **Full** or **Semi** automation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/machine-groups) |
 
-In Microsoft Defender Advanced Threat Protection, all verdicts are [tracked and viewable in the Microsoft Defender Security Center](#review-completed-actions).
+In Microsoft Defender for Endpoint, all verdicts are [tracked and viewable in the Microsoft Defender Security Center](#review-completed-actions).
 
 > [!TIP]
 > To learn more about remediation actions following an automated investigation, see [How threats are remediated](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations#how-threats-are-remediated). 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md
index 0b5d31597f..a82c4c98cc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-file-uploads.md
@@ -25,11 +25,11 @@ ms.topic: article
 **Applies to:**
 
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-automationefileuploads-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-automationefileuploads-abovefoldlink)
 
 Enable the content analysis capability so that certain files and email attachments can automatically be uploaded to the cloud for additional inspection in Automated investigation.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md
index 29529c8847..c60093cd86 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-automation-folder-exclusions.md
@@ -25,11 +25,11 @@ ms.topic: article
 **Applies to:**
 
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-automationexclusionfolder-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-automationexclusionfolder-abovefoldlink)
 
 Automation folder exclusions allow you to specify folders that the Automated investigation will skip. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md b/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md
index f0cd8403c1..4fa8c2f463 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-incidents.md
@@ -19,13 +19,13 @@ ms.collection:
 ms.topic: article
 ---
 
-# Manage Microsoft Defender ATP incidents
+# Manage Microsoft Defender for Endpoint incidents
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Managing incidents is an important part of every cybersecurity operation. You can manage incidents by selecting an incident from the **Incidents queue** or the **Incidents management pane**. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md b/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
index d5186273e9..a2904c5d62 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
@@ -24,22 +24,22 @@ ms.topic: article
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-automationexclusionlist-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-automationexclusionlist-abovefoldlink)
 
 Indicator of compromise (IoCs) matching is an essential feature in every endpoint protection solution. This capability gives SecOps the ability to set a list of indicators for detection and for blocking (prevention and response).
 
 Create indicators that define the detection, prevention, and exclusion of entities. You can define the action to be taken as well as the duration for when to apply the action as well as the scope of the device group to apply it to.
 
-Currently supported sources are the cloud detection engine of Microsoft Defender ATP, the automated investigation and remediation engine, and the endpoint prevention engine (Microsoft Defender AV).
+Currently supported sources are the cloud detection engine of Defender for Endpoint, the automated investigation and remediation engine, and the endpoint prevention engine (Microsoft Defender AV).
 
 **Cloud detection engine**<br>
-The cloud detection engine of Microsoft Defender ATP regularly scans collected data and tries to match the indicators you set. When there is a match, action will be taken according to the settings you specified for the IoC.
+The cloud detection engine of Defender for Endpoint regularly scans collected data and tries to match the indicators you set. When there is a match, action will be taken according to the settings you specified for the IoC.
 
 **Endpoint prevention engine**<br>
-The same list of indicators is honored by the prevention agent. Meaning, if Microsoft Defender AV is the primary AV configured, the matched indicators will be treated according to the settings. For example, if the action is "Alert and Block", Microsoft Defender AV will prevent file executions (block and remediate) and a corresponding alert will be raised. On the other hand, if the Action is set to "Allow", Microsoft Defender AV  will not detect nor block the file from being run.
+The same list of indicators is honored by the prevention agent. Meaning, if Microsoft Defender AV is the primary AV configured, the matched indicators will be treated according to the settings. For example, if the action is "Alert and Block", Microsoft Defender AV will prevent file executions (block and remediate) and a corresponding alert will be raised. On the other hand, if the Action is set to "Allow", Microsoft Defender AV will not detect nor block the file from being run.
 
 **Automated investigation and remediation engine**<BR>
 The automated investigation and remediation behave the same. If an indicator is set to "Allow", Automated investigation and remediation will ignore a "bad" verdict for it. If set to "Block", Automated investigation and remediation will treat it as "bad".
@@ -64,5 +64,5 @@ You can create an indicator for:
 ## Related topics
 
 - [Create contextual IoC](respond-file-alerts.md#add-indicator-to-block-or-allow-a-file)
-- [Use the Microsoft Defender ATP indicators API](ti-indicator.md)
+- [Use the Microsoft Defender for Endpoint indicators API](ti-indicator.md)
 - [Use partner integrated solutions](partner-applications.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md b/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md
index d13aa975d2..bf6e43d5b2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-suppression-rules.md
@@ -24,7 +24,7 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 There might be scenarios where you need to suppress alerts from appearing in the portal. You can create suppression rules for specific alerts that are known to be innocuous such as known tools or processes in your organization. For more information on how to suppress alerts, see [Suppress alerts](manage-alerts.md).
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
index c3176ac54a..83cad3a708 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
@@ -24,19 +24,19 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mgt-apis-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mgt-apis-abovefoldlink)
 
-Microsoft Defender ATP supports a wide variety of options to ensure that customers can easily adopt the platform. 
+Defender for Endpoint supports a wide variety of options to ensure that customers can easily adopt the platform. 
 
-Acknowledging that customer environments and structures can vary, Microsoft Defender ATP was created with flexibility and granular control to fit varying customer requirements. 
+Acknowledging that customer environments and structures can vary, Defender for Endpoint was created with flexibility and granular control to fit varying customer requirements. 
 
 ## Endpoint onboarding and portal access 
 
 Device onboarding is fully integrated into Microsoft Endpoint Configuration Manager and Microsoft Intune for client devices and Azure Security Center for server devices, providing complete end-to-end experience of configuration, deployment, and monitoring. In addition, Microsoft Defender ATP supports Group Policy and other third-party tools used for devices management.
 
-Microsoft Defender ATP provides fine-grained control over what users with access to the portal can see and do through the flexibility of role-based access control (RBAC). The RBAC model supports all flavors of security teams structure:
+Defender for Endpoint provides fine-grained control over what users with access to the portal can see and do through the flexibility of role-based access control (RBAC). The RBAC model supports all flavors of security teams structure:
 - Globally distributed organizations and security teams
 - Tiered model security operations teams
 - Fully segregated divisions with single centralized global security operations teams 
@@ -44,30 +44,30 @@ Microsoft Defender ATP provides fine-grained control over what users with access
 ## Available APIs
 The Microsoft Defender ATP solution is built on top of an integration-ready platform.
 
-Microsoft Defender ATP exposes much of its data and actions through a set of programmatic APIs. Those APIs will enable you to automate workflows and innovate based on Microsoft Defender ATP capabilities.
+Defender for Endpoint exposes much of its data and actions through a set of programmatic APIs. Those APIs will enable you to automate workflows and innovate based on Defender for Endpoint capabilities.
 
-![Image of available API and integration in Microsoft Defender ATP](images/mdatp-apis.png)  
+![Image of available API and integration in Microsoft Defender for Endpoint](images/mdatp-apis.png)  
 
-The Microsoft Defender ATP APIs can be grouped into three:
-- Microsoft Defender ATP APIs 
+The Defender for Endpoint APIs can be grouped into three:
+- Microsoft Defender for Endpoint APIs 
 - Raw data streaming API
 - SIEM integration
 
-## Microsoft Defender ATP APIs
+## Microsoft Defender for Endpoint APIs
 
-Microsoft Defender ATP offers a layered API model exposing data and capabilities in a structured, clear, and easy to use model, exposed through a standard Azure  AD-based authentication and authorization model allowing access in context of users or SaaS applications. The API model was designed to expose entities and capabilities in a consistent form. 
+Defender for Endpoint offers a layered API model exposing data and capabilities in a structured, clear, and easy to use model, exposed through a standard Azure  AD-based authentication and authorization model allowing access in context of users or SaaS applications. The API model was designed to expose entities and capabilities in a consistent form. 
 
-Watch this video for a quick overview of Microsoft Defender ATP's APIs. 
+Watch this video for a quick overview of Defender for Endpoint's APIs. 
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4d73M]
 
-The **Investigation API** exposes the richness of Microsoft Defender ATP - exposing calculated or 'profiled' entities (for example, device, user, and file) and discrete events (for example, process creation and file creation) which typically describes a behavior related to an entity, enabling access to data via investigation interfaces allowing a query-based access to data. For more information, see, [Supported APIs](exposed-apis-list.md).
+The **Investigation API** exposes the richness of Defender for Endpoint - exposing calculated or 'profiled' entities (for example, device, user, and file) and discrete events (for example, process creation and file creation) which typically describes a behavior related to an entity, enabling access to data via investigation interfaces allowing a query-based access to data. For more information, see, [Supported APIs](exposed-apis-list.md).
 
 The **Response API** exposes the ability to take actions in the service and on devices, enabling customers to ingest indicators, manage settings, alert status, as well as take response actions on devices programmatically such as isolate devices from the network, quarantine files, and others. 
 
 ## Raw data streaming API 
-Microsoft Defender ATP raw data streaming API provides the ability for customers to ship real-time events and alerts from their instances as they occur within a single data stream, providing a low latency, high throughput delivery mechanism.
+Defender for Endpoint raw data streaming API provides the ability for customers to ship real-time events and alerts from their instances as they occur within a single data stream, providing a low latency, high throughput delivery mechanism.
 
-The Microsoft Defender ATP event information is pushed directly to Azure storage for long-term data retention, or to Azure Event Hubs for consumption by visualization services or additional data processing engines. 
+The Defender for Endpoint event information is pushed directly to Azure storage for long-term data retention, or to Azure Event Hubs for consumption by visualization services or additional data processing engines. 
 
 For more information, see, [Raw data streaming API](raw-data-export.md).
 
@@ -76,7 +76,7 @@ For more information, see, [Raw data streaming API](raw-data-export.md).
 When you enable security information and event management (SIEM) integration, it allows you to pull detections from Microsoft Defender Security Center using your SIEM solution or by connecting directly to the detections REST API. This activates the SIEM connector access details section with pre-populated values and an application is created under your Azure Active Directory (Azure AD) tenant. For more information, see, [SIEM integration](enable-siem-integration.md)
 
 ## Related topics
-- [Access the Microsoft Defender Advanced Threat Protection APIs ](apis-intro.md)
+- [Access the Microsoft Defender for Endpoint APIs ](apis-intro.md)
 - [Supported APIs](exposed-apis-list.md)
 - [Technical partner opportunities](partner-integration.md)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
index e9fa0412b0..efb438eb60 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-migration.md
@@ -24,12 +24,12 @@ ms.date: 09/22/2020
 ms.reviewer: jesquive, chventou, jonix, chriggs, owtho
 ---
 
-# Migrate from McAfee to Microsoft Defender Advanced Threat Protection
+# Migrate from McAfee to Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-If you are planning to switch from McAfee Endpoint Security (McAfee) to [Microsoft Defender Advanced Threat Protection](https://docs.microsoft.com/windows/security/threat-protection) (Microsoft Defender for Endpoint), you're in the right place. Use this article as a guide to plan your migration.  
+If you are planning to switch from McAfee Endpoint Security (McAfee) to [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection) (Microsoft Defender for Endpoint), you're in the right place. Use this article as a guide to plan your migration.  
 
 ## The migration process
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
index 8813e53523..858c7f0d06 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mcafee-to-microsoft-defender-setup.md
@@ -34,10 +34,10 @@ ms.reviewer: jesquive, chventou, jonix, chriggs, owtho
 ||*You are here!* | |
 
 
-**Welcome to the Setup phase of [migrating from McAfee Endpoint Security (McAfee) to Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](mcafee-to-microsoft-defender-migration.md#the-migration-process)**. This phase includes the following steps:
+**Welcome to the Setup phase of [migrating from McAfee Endpoint Security (McAfee) to Microsoft Defender for Endpoint](mcafee-to-microsoft-defender-migration.md#the-migration-process)**. This phase includes the following steps:
 1. [Enable Microsoft Defender Antivirus and confirm it's in passive mode](#enable-microsoft-defender-antivirus-and-confirm-its-in-passive-mode).
 2. [Get updates for Microsoft Defender Antivirus](#get-updates-for-microsoft-defender-antivirus).
-3. [Add Microsoft Defender ATP to the exclusion list for McAfee](#add-microsoft-defender-for-endpoint-to-the-exclusion-list-for-mcafee).
+3. [Add Microsoft Defender for Endpoint to the exclusion list for McAfee](#add-microsoft-defender-for-endpoint-to-the-exclusion-list-for-mcafee).
 4. [Add McAfee to the exclusion list for Microsoft Defender Antivirus](#add-mcafee-to-the-exclusion-list-for-microsoft-defender-antivirus).
 5. [Add McAfee to the exclusion list for Microsoft Defender for Endpoint](#add-mcafee-to-the-exclusion-list-for-microsoft-defender-for-endpoint).
 6. [Set up your device groups, device collections, and organizational units](#set-up-your-device-groups-device-collections-and-organizational-units).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
index 16dd867662..98816a74b8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
@@ -25,26 +25,26 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-To benefit from Microsoft Defender Advanced Threat Protection (ATP) cloud app discovery signals, turn on Microsoft Cloud App Security integration.
+To benefit from Microsoft Defender for Endpoint cloud app discovery signals, turn on Microsoft Cloud App Security integration.
 
 >[!NOTE]
 >This feature will be available with an E5 license for [Enterprise Mobility + Security](https://www.microsoft.com/cloud-platform/enterprise-mobility-security) on devices running Windows 10, version 1709 (OS Build 16299.1085 with [KB4493441](https://support.microsoft.com/help/4493441)), Windows 10, version 1803 (OS Build 17134.704 with [KB4493464](https://support.microsoft.com/help/4493464)), Windows 10, version 1809 (OS Build 17763.379 with [KB4489899](https://support.microsoft.com/help/4489899)) or later Windows 10 versions.
 
-> See [Microsoft Defender Advanced Threat Protection integration with Microsoft Cloud App Security](https://docs.microsoft.com/cloud-app-security/wdatp-integration) for detailed integration of Microsoft Defender ATP with Microsoft Cloud App Security. 
+> See [Microsoft Defender for Endpoint integration with Microsoft Cloud App Security](https://docs.microsoft.com/cloud-app-security/wdatp-integration) for detailed integration of Microsoft Defender ATP with Microsoft Cloud App Security. 
 
-## Enable Microsoft Cloud App Security in Microsoft Defender ATP
+## Enable Microsoft Cloud App Security in Microsoft Defender for Endpoint
 
 1. In the navigation pane, select **Preferences setup** > **Advanced features**.
 2. Select **Microsoft Cloud App Security** and switch the toggle to **On**.
 3. Click **Save preferences**.
 
-Once activated, Microsoft Defender ATP will immediately start forwarding discovery signals to Cloud App Security.
+Once activated, Microsoft Defender for Endpoint will immediately start forwarding discovery signals to Cloud App Security.
 
 ## View the data collected
 
-To view and access Microsoft Defender ATP data in Microsoft Cloud Apps Security, see [Investigate devices in Cloud App Security](https://docs.microsoft.com/cloud-app-security/wdatp-integration#investigate-machines-in-cloud-app-security).
+To view and access Microsoft Defender for Endpoint data in Microsoft Cloud Apps Security, see [Investigate devices in Cloud App Security](https://docs.microsoft.com/cloud-app-security/wdatp-integration#investigate-machines-in-cloud-app-security).
 
 
 For more information about cloud discovery, see [Working with discovered apps](https://docs.microsoft.com/cloud-app-security/discovered-apps).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md
index a23303c507..87814b1b25 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md
@@ -19,12 +19,12 @@ ms.topic: conceptual
 ms.date: 10/18/2018
 ---
 
-# Microsoft Cloud App Security in Microsoft Defender ATP overview
+# Microsoft Cloud App Security in Defender for Endpoint overview
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
@@ -33,9 +33,9 @@ Microsoft Cloud App Security (Cloud App Security) is a comprehensive solution th
 >[!NOTE]
 >This feature is available with an E5 license for [Enterprise Mobility + Security](https://www.microsoft.com/cloud-platform/enterprise-mobility-security) on devices running Windows 10 version 1809 or later.
 
-## Microsoft Defender ATP and Cloud App Security integration 
+## Microsoft Defender for Endpoint and Cloud App Security integration 
 
-Cloud App Security discovery relies on cloud traffic logs being forwarded to it from enterprise firewall and proxy servers. Microsoft Defender ATP integrates with Cloud App Security by collecting and forwarding all cloud app networking activities, providing unparalleled visibility to cloud app usage. The monitoring functionality is built into the device, providing complete coverage of network activity.
+Cloud App Security discovery relies on cloud traffic logs being forwarded to it from enterprise firewall and proxy servers. Microsoft Defender for Endpoint integrates with Cloud App Security by collecting and forwarding all cloud app networking activities, providing unparalleled visibility to cloud app usage. The monitoring functionality is built into the device, providing complete coverage of network activity.
 
 > [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4r4yQ]
 
@@ -44,9 +44,9 @@ The integration provides the following major improvements to the existing Cloud
 
 - Available everywhere - Since the network activity is collected directly from the endpoint, it's available wherever the device is, on or off corporate network, as it's no longer depended on traffic routed through the enterprise firewall or proxy servers. 
 
-- Works out of the box, no configuration required - Forwarding cloud traffic logs to Cloud App Security requires firewall and proxy server configuration. With the Microsoft Defender ATP and Cloud App Security integration, there's no configuration required. Just switch it on in Microsoft Defender Security Center settings and you're good to go. 
+- Works out of the box, no configuration required - Forwarding cloud traffic logs to Cloud App Security requires firewall and proxy server configuration. With the Defender for Endpoint and Cloud App Security integration, there's no configuration required. Just switch it on in Microsoft Defender Security Center settings and you're good to go. 
 
-- Device context - Cloud traffic logs lack device context. Microsoft Defender ATP network activity is reported with the device context (which device accessed the cloud app), so you are able to understand exactly where (device) the network activity took place, in addition to who (user) performed it. 
+- Device context - Cloud traffic logs lack device context. Defender for Endpoint network activity is reported with the device context (which device accessed the cloud app), so you are able to understand exactly where (device) the network activity took place, in addition to who (user) performed it. 
 
 For more information about cloud discovery, see [Working with discovered apps](https://docs.microsoft.com/cloud-app-security/discovered-apps).
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
index b37274b4cb..ff9263b229 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
@@ -24,14 +24,14 @@ ms.topic: conceptual
 
 > For more info about Windows 10 Enterprise Edition features and functionality, see [Windows 10 Enterprise edition](https://www.microsoft.com/WindowsForBusiness/buy).
 
-Microsoft Defender Advanced Threat Protection is an enterprise endpoint security platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.
+Microsoft Defender for Endpoint is an enterprise endpoint security platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.
 <p></p>
 
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4wDob]
 
-Microsoft Defender ATP uses the following combination of technology built into Windows 10 and Microsoft's robust cloud service:
+Defender for Endpoint uses the following combination of technology built into Windows 10 and Microsoft's robust cloud service:
 
--   **Endpoint behavioral sensors**: Embedded in Windows 10, these sensors collect and process behavioral signals from the operating system and send this sensor data to your private, isolated, cloud instance of Microsoft Defender ATP.
+-   **Endpoint behavioral sensors**: Embedded in Windows 10, these sensors collect and process behavioral signals from the operating system and send this sensor data to your private, isolated, cloud instance of Microsoft Defender for Endpoint.
 
 
 -   **Cloud security analytics**: Leveraging big-data, device-learning, and
@@ -42,12 +42,12 @@ Microsoft Defender ATP uses the following combination of technology built into W
 
 -   **Threat intelligence**: Generated by Microsoft hunters, security teams,
     and augmented by threat intelligence provided by partners, threat
-    intelligence enables Microsoft Defender ATP to identify attacker
+    intelligence enables Defender for Endpoint to identify attacker
     tools, techniques, and procedures, and generate alerts when they
     are observed in collected sensor data.
 
 
-<center><h2>Microsoft Defender ATP</center></h2>
+<center><h2>Microsoft Defender for Endpoint</center></h2>
 <table>
 <tr>
 <td><a href="#tvm"><center><img src="images/TVM_icon.png"> <br><b>Threat & Vulnerability Management</b></center></a></td>
@@ -72,8 +72,8 @@ Microsoft Defender ATP uses the following combination of technology built into W
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4vnC4?rel=0] 
 
 > [!TIP]
-> - Learn about the latest enhancements in Microsoft Defender ATP: [What's new in Microsoft Defender ATP](https://cloudblogs.microsoft.com/microsoftsecure/2018/11/15/whats-new-in-windows-defender-atp/).
-> - Microsoft Defender ATP demonstrated industry-leading optics and detection capabilities in the recent MITRE evaluation. Read: [Insights from the MITRE ATT&CK-based evaluation](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/03/insights-from-the-mitre-attack-based-evaluation-of-windows-defender-atp/).
+> - Learn about the latest enhancements in Defender for Endpoint: [What's new in Microsoft Defender for Endpoint](https://cloudblogs.microsoft.com/microsoftsecure/2018/11/15/whats-new-in-windows-defender-atp/).
+> - Microsoft Defender for Endpoint demonstrated industry-leading optics and detection capabilities in the recent MITRE evaluation. Read: [Insights from the MITRE ATT&CK-based evaluation](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/03/insights-from-the-mitre-attack-based-evaluation-of-windows-defender-atp/).
 
 <a name="tvm"></a>
 
@@ -104,15 +104,15 @@ In conjunction with being able to quickly respond to advanced attacks, Microsoft
 
 **[Microsoft Secure Score for Devices](tvm-microsoft-secure-score-devices.md)**<br>
 
-Microsoft Defender ATP includes Microsoft Secure Score for Devices to help you dynamically assess the security state of your enterprise network, identify unprotected systems, and take recommended actions to improve the overall security of your organization.
+Defender for Endpoint includes Microsoft Secure Score for Devices to help you dynamically assess the security state of your enterprise network, identify unprotected systems, and take recommended actions to improve the overall security of your organization.
 
 <a name="mte"></a>
 
 **[Microsoft Threat Experts](microsoft-threat-experts.md)**<br>
-Microsoft Defender ATP's new managed threat hunting service provides proactive hunting, prioritization, and additional context and insights that further empower Security operation centers (SOCs) to identify and respond to threats quickly and accurately.
+Microsoft Defender for Endpoint's new managed threat hunting service provides proactive hunting, prioritization, and additional context and insights that further empower Security operation centers (SOCs) to identify and respond to threats quickly and accurately.
 
 >[!IMPORTANT]
->Microsoft Defender ATP customers need to apply for the Microsoft Threat Experts managed threat hunting service to get proactive Targeted Attack Notifications and to collaborate with experts on demand. Experts on Demand is an add-on service. Targeted Attack Notifications are always included after you have been accepted into Microsoft Threat Experts managed threat hunting service.<p>
+>Defender for Endpoint customers need to apply for the Microsoft Threat Experts managed threat hunting service to get proactive Targeted Attack Notifications and to collaborate with experts on demand. Experts on Demand is an add-on service. Targeted Attack Notifications are always included after you have been accepted into Microsoft Threat Experts managed threat hunting service.<p>
 ><p>If you are not enrolled yet and would like to experience its benefits, go to <b>Settings</b> > <b>General</b> > <b>Advanced features</b> > <b>Microsoft Threat Experts</b> to apply. Once accepted, you will get the benefits of Targeted Attack Notifications, and start a  90-day trial of Experts on Demand. Contact your Microsoft representative to get a full Experts on Demand subscription.
 
 <a name="apis"></a>
@@ -123,7 +123,7 @@ Integrate Microsoft Defender Advanced Threat Protection into your existing workf
 <a name="mtp"></a>
 
 **[Integration with Microsoft solutions](threat-protection-integration.md)** <br>
- Microsoft Defender ATP directly integrates with various Microsoft solutions, including:
+ Defender for Endpoint directly integrates with various Microsoft solutions, including:
 - Intune
 - Office 365 ATP
 - Azure ATP
@@ -132,8 +132,8 @@ Integrate Microsoft Defender Advanced Threat Protection into your existing workf
 - Microsoft Cloud App Security
 
 **[Microsoft Threat Protection](https://docs.microsoft.com/microsoft-365/security/mtp/microsoft-threat-protection)**<br>
- With Microsoft Threat Protection, Microsoft Defender ATP and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate, and automatically respond to sophisticated attacks.
+ With Microsoft Threat Protection, Defender for Endpoint and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate, and automatically respond to sophisticated attacks.
 
 
 ## Related topic
-[Microsoft Defender ATP helps detect sophisticated threats](https://www.microsoft.com/en-us/itshowcase/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection)
+[Microsoft Defender for Endpoint helps detect sophisticated threats](https://www.microsoft.com/en-us/itshowcase/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md
index 4b4a872950..e71d9f1081 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android.md
@@ -20,24 +20,24 @@ ms.collection:
 ms.topic: conceptual
 ---
 
-# Microsoft Defender Advanced Threat Protection for Android
+# Microsoft Defender for Endpoint for Android
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-This topic describes how to install, configure, update, and use Microsoft Defender ATP for Android.
+This topic describes how to install, configure, update, and use Defender for Endpoint for Android.
 
 > [!CAUTION]
-> Running other third-party endpoint protection products alongside Microsoft Defender ATP for Android is likely to cause performance problems and unpredictable system errors.
+> Running other third-party endpoint protection products alongside Defender for Endpoint for Android is likely to cause performance problems and unpredictable system errors.
 
 
-## How to install Microsoft Defender ATP for Android
+## How to install Microsoft Defender for Endpoint for Android
 
 ### Prerequisites
 
 -   **For end users**
 
-    -   Microsoft Defender ATP license assigned to the end user(s) of the app. See [Microsoft Defender ATP licensing requirements](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements#licensing-requirements)
+    -   Microsoft Defender for Endpoint license assigned to the end user(s) of the app. See [Microsoft Defender for Endpoint licensing requirements](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements#licensing-requirements)
 
     -   Intune Company Portal app can be downloaded from [Google
         Play](https://play.google.com/store/apps/details?id=com.microsoft.windowsintune.companyportal)
@@ -57,7 +57,7 @@ This topic describes how to install, configure, update, and use Microsoft Defend
     -   Access to the Microsoft Defender Security Center portal.
 
         > [!NOTE]
-        > Microsoft Intune is the only supported Mobile Device Management (MDM) solution for deploying Microsoft Defender ATP for Android. Currently only enrolled devices are supported for enforcing Microsoft Defender ATP for Android related device compliance policies in Intune. 
+        > Microsoft Intune is the only supported Mobile Device Management (MDM) solution for deploying Microsoft Defender for Endpoint for Android. Currently only enrolled devices are supported for enforcing Defender for Endpoint for Android related device compliance policies in Intune. 
 
     -   Access [Microsoft Endpoint Manager admin
         center](https://go.microsoft.com/fwlink/?linkid=2109431), to deploy the
@@ -72,24 +72,24 @@ This topic describes how to install, configure, update, and use Microsoft Defend
 
 ### Installation instructions
 
-Microsoft Defender ATP for Android supports installation on both modes of
+Microsoft Defender for Endpoint for Android supports installation on both modes of
 enrolled devices - the legacy Device Administrator and Android Enterprise modes.
 **Currently, only Work Profile enrolled devices are supported in Android Enterprise. Support for other Android Enterprise modes will be announced when ready.**
 
-Deployment of Microsoft Defender ATP for Android is via Microsoft Intune (MDM).
-For more information, see [Deploy Microsoft Defender ATP for Android with Microsoft Intune](android-intune.md).
+Deployment of Microsoft Defender for Endpoint for Android is via Microsoft Intune (MDM).
+For more information, see [Deploy Microsoft Defender for Endpoint for Android with Microsoft Intune](android-intune.md).
 
 
 > [!NOTE]
-> **Microsoft Defender ATP for Android is available on [Google Play](https://play.google.com/store/apps/details?id=com.microsoft.scmx) now.** <br> You can connect to Google Play from Intune to deploy Microsoft Defender ATP app, across Device Administrator and Android Enterprise entrollment modes. 
+> **Microsoft Defender for Endpoint for Android is available on [Google Play](https://play.google.com/store/apps/details?id=com.microsoft.scmx) now.** <br> You can connect to Google Play from Intune to deploy Microsoft Defender for Endpoint app, across Device Administrator and Android Enterprise entrollment modes. 
 
-## How to Configure Microsoft Defender ATP for Android
+## How to Configure Microsoft Defender for Endpoint for Android
 
-Guidance on how to configure Microsoft Defender ATP for Android features is available in [Configure Microsoft Defender ATP for Android features](android-configure.md).
+Guidance on how to configure Microsoft Defender for Endpoint for Android features is available in [Configure Microsoft Defender for Endpoint for Android features](android-configure.md).
 
 
 
 ## Related topics
-- [Deploy Microsoft Defender ATP for with Microsoft Intune](android-intune.md)
-- [Configure Microsoft Defender ATP for Android features](android-configure.md)
+- [Deploy Microsoft Defender for Endpoint for with Microsoft Intune](android-intune.md)
+- [Configure Microsoft Defender for Endpoint for Android features](android-configure.md)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
index 118ea48672..46b7669ddf 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
@@ -20,7 +20,7 @@ ms.collection:
 ms.topic: conceptual
 ---
 
-# Microsoft Defender Advanced Threat Protection for iOS
+# Microsoft Defender for Endpoint for iOS
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -33,7 +33,7 @@ ms.topic: conceptual
 > As with any pre-release solution, remember to exercise caution when determining the target population for your deployments.
 
 
-The public preview of Microsoft Defender ATP for iOS will offer protection
+The public preview of Defender for Endpoint for iOS will offer protection
 against phishing and unsafe network connections from websites, emails, and apps.
 All alerts will be available through a single pane of glass in the Microsoft
 Defender Security Center. The portal gives security teams a centralized view of threats on
@@ -44,7 +44,7 @@ iOS devices along with other platforms.
 
 **For End Users**
 
--   Microsoft Defender ATP license assigned to the end user(s) of the app. Refer
+-   Defender for Endpoint license assigned to the end user(s) of the app. Refer
     [Assign licenses to
     users](https://docs.microsoft.com/azure/active-directory/users-groups-roles/licensing-groups-assign)
     for instructions on how to assign licenses.
@@ -74,5 +74,5 @@ iOS devices along with other platforms.
 
 ## Next steps
 
-- [Deploy Microsoft Defender ATP for iOS](ios-install.md)
-- [Configure Microsoft Defender ATP for iOS features](ios-configure-features.md)
\ No newline at end of file
+- [Deploy Microsoft Defender for Endpoint for iOS](ios-install.md)
+- [Configure Microsoft Defender for Endpoint for iOS features](ios-configure-features.md)
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
index b53befb8a7..873df4353b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
@@ -20,17 +20,17 @@ ms.collection:
 ms.topic: conceptual
 ---
 
-# Microsoft Defender ATP for Linux
+# Microsoft Defender for Endpoint for Linux
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-This topic describes how to install, configure, update, and use Microsoft Defender ATP for Linux.
+This topic describes how to install, configure, update, and use Microsoft Defender for Endpoint for Linux.
 
 > [!CAUTION]
-> Running other third-party endpoint protection products alongside Microsoft Defender ATP for Linux is likely to cause performance problems and unpredictable system errors.
+> Running other third-party endpoint protection products alongside Microsoft Defender for Endpoint for Linux is likely to cause performance problems and unpredictable system errors.
 
-## How to install Microsoft Defender ATP for Linux
+## How to install Microsoft Defender for Endpoint for Linux
 
 ### Prerequisites
 
@@ -40,19 +40,19 @@ This topic describes how to install, configure, update, and use Microsoft Defend
 
 ### Installation instructions
 
-There are several methods and deployment tools that you can use to install and configure Microsoft Defender ATP for Linux.
+There are several methods and deployment tools that you can use to install and configure Microsoft Defender for Endpoint for Linux.
 
 In general you need to take the following steps:
 
-- Ensure that you have a Microsoft Defender ATP subscription, and that you have access to the [Microsoft Defender ATP portal](microsoft-defender-security-center.md).
-- Deploy Microsoft Defender ATP for Linux using one of the following deployment methods:
+- Ensure that you have a Microsoft Defender for Endpoint subscription, and that you have access to the [Microsoft Defender for Endpoint portal](microsoft-defender-security-center.md).
+- Deploy Microsoft Defender for Endpoint for Linux using one of the following deployment methods:
   - The command-line tool:
     - [Manual deployment](linux-install-manually.md)
   - Third-party management tools:
     - [Deploy using Puppet configuration management tool](linux-install-with-puppet.md)
     - [Deploy using Ansible configuration management tool](linux-install-with-ansible.md)
 
-If you experience any installation failures, refer to [Troubleshooting installation failures in Microsoft Defender ATP for Linux](linux-support-install.md).
+If you experience any installation failures, refer to [Troubleshooting installation failures in Microsoft Defender for Endpoint for Linux](linux-support-install.md).
 
 ### System requirements
 
@@ -68,7 +68,7 @@ If you experience any installation failures, refer to [Troubleshooting installat
 - Minimum kernel version 3.10.0-327
 - The `fanotify` kernel option must be enabled
   > [!CAUTION]
-  > Running Microsoft Defender ATP for Linux side by side with other `fanotify`-based security solutions is not supported. It can lead to unpredictable results, including hanging the operating system.
+  > Running Defender for Endpoint for Linux side by side with other `fanotify`-based security solutions is not supported. It can lead to unpredictable results, including hanging the operating system.
 
 - Disk space: 1GB
 - The solution currently provides real-time protection for the following file system types:
@@ -99,33 +99,33 @@ The following downloadable spreadsheet lists the services and their associated U
 
 |**Spreadsheet of domains list**|**Description**|
 |:-----|:-----|
-|![Thumb image for Microsoft Defender ATP URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
+|![Thumb image for Microsoft Defender for Endpoint URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
 
 
 
 > [!NOTE]
 > For a more specific URL list, see [Configure proxy and internet connectivity settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#enable-access-to-microsoft-defender-atp-service-urls-in-the-proxy-server).
 
-Microsoft Defender ATP can discover a proxy server by using the following discovery methods:
+Defender for Endpoint can discover a proxy server by using the following discovery methods:
 - Transparent proxy
 - Manual static proxy configuration
 
-If a proxy or firewall is blocking anonymous traffic, make sure that anonymous traffic is permitted in the previously listed URLs. For transparent proxies, no additional configuration is needed for Microsoft Defender ATP. For static proxy, follow the steps in [Manual Static Proxy Configuration](linux-static-proxy-configuration.md).
+If a proxy or firewall is blocking anonymous traffic, make sure that anonymous traffic is permitted in the previously listed URLs. For transparent proxies, no additional configuration is needed for Defender for Endpoint. For static proxy, follow the steps in [Manual Static Proxy Configuration](linux-static-proxy-configuration.md).
 
 > [!WARNING]
 > PAC, WPAD, and authenticated proxies are not supported. Ensure that only a static proxy or transparent proxy is being used.
 >
-> SSL inspection and intercepting proxies are also not supported for security reasons. Configure an exception for SSL inspection and your proxy server to directly pass through data from Microsoft Defender ATP for Linux to the relevant URLs without interception. Adding your interception certificate to the global store will not allow for interception.
+> SSL inspection and intercepting proxies are also not supported for security reasons. Configure an exception for SSL inspection and your proxy server to directly pass through data from Defender for Endpoint for Linux to the relevant URLs without interception. Adding your interception certificate to the global store will not allow for interception.
 
-For troubleshooting steps, see [Troubleshoot cloud connectivity issues for Microsoft Defender ATP for Linux](linux-support-connectivity.md).
+For troubleshooting steps, see [Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint for Linux](linux-support-connectivity.md).
 
-## How to update Microsoft Defender ATP for Linux
+## How to update Microsoft Defender for Endpoint for Linux
 
-Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender ATP for Linux, refer to [Deploy updates for Microsoft Defender ATP for Linux](linux-updates.md).
+Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender for Endpoint for Linux, refer to [Deploy updates for Microsoft Defender for Endpoint for Linux](linux-updates.md).
 
-## How to configure Microsoft Defender ATP for Linux
+## How to configure Microsoft Defender for Endpoint for Linux
 
-Guidance for how to configure the product in enterprise environments is available in [Set preferences for Microsoft Defender ATP for Linux](linux-preferences.md).
+Guidance for how to configure the product in enterprise environments is available in [Set preferences for Microsoft Defender for Endpoint for Linux](linux-preferences.md).
 
 ## Resources
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 4f2891c210..da5844b30c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -20,38 +20,38 @@ ms.collection:
 ms.topic: conceptual
 ---
 
-# Microsoft Defender Advanced Threat Protection for Mac
+# Microsoft Defender for Endpoint for Mac
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-This topic describes how to install, configure, update, and use Microsoft Defender ATP for Mac.
+This topic describes how to install, configure, update, and use Defender for Endpoint for Mac.
 
 > [!CAUTION]
-> Running other third-party endpoint protection products alongside Microsoft Defender ATP for Mac is likely to lead to performance problems and unpredictable side effects. If non-Microsoft endpoint protection is an absolute requirement in your environment, you can still safely take advantage of MDATP for Mac EDR functionality after configuring MDATP for Mac antivirus functionality to run in [Passive mode](mac-preferences.md#enable--disable-passive-mode).
+> Running other third-party endpoint protection products alongside Defender for Endpoint for Mac is likely to lead to performance problems and unpredictable side effects. If non-Microsoft endpoint protection is an absolute requirement in your environment, you can still safely take advantage of MDATP for Mac EDR functionality after configuring MDATP for Mac antivirus functionality to run in [Passive mode](mac-preferences.md#enable--disable-passive-mode).
 
 ## What’s new in the latest release
 
-[What's new in Microsoft Defender ATP](whats-new-in-microsoft-defender-atp.md)
+[What's new in Microsoft Defender for Endpoint](whats-new-in-microsoft-defender-atp.md)
 
-[What's new in Microsoft Defender ATP for Mac](mac-whatsnew.md)
+[What's new in Microsoft Defender for Endpoint for Mac](mac-whatsnew.md)
 
 > [!TIP]
-> If you have any feedback that you would like to share, submit it by opening Microsoft Defender ATP for Mac on your device and navigating to **Help** > **Send feedback**.
+> If you have any feedback that you would like to share, submit it by opening Defender for Endpoint for Mac on your device and navigating to **Help** > **Send feedback**.
 
-To get the latest features, including preview capabilities (such as endpoint detection and response for your Mac devices), configure your macOS device running Microsoft Defender ATP to be an "Insider" device. See [Enable Microsoft Defender ATP Insider Device](endpoint-detection-response-mac-preview.md). 
+To get the latest features, including preview capabilities (such as endpoint detection and response for your Mac devices), configure your macOS device running Defender for Endpoint to be an "Insider" device. See [Enable Microsoft Defender for Endpoint Insider Device](endpoint-detection-response-mac-preview.md). 
 
-## How to install Microsoft Defender ATP for Mac
+## How to install Microsoft Defender for Endpoint for Mac
 
 ### Prerequisites
 
-- A Microsoft Defender ATP subscription and access to the Microsoft Defender Security Center portal
+- A Defender for Endpoint subscription and access to the Microsoft Defender Security Center portal
 - Beginner-level experience in macOS and BASH scripting
 - Administrative privileges on the device (in case of manual deployment)
 
 ### Installation instructions
 
-There are several methods and deployment tools that you can use to install and configure Microsoft Defender ATP for Mac.
+There are several methods and deployment tools that you can use to install and configure Defender for Endpoint for Mac.
 
 - Third-party management tools:
     - [Microsoft Intune-based deployment](mac-install-with-intune.md)
@@ -74,15 +74,15 @@ After you've enabled the service, you may need to configure your network or fire
 
 ### Licensing requirements
 
-Microsoft Defender Advanced Threat Protection for Mac requires one of the following Microsoft Volume Licensing offers:
+Microsoft Defender for Endpoint for Mac requires one of the following Microsoft Volume Licensing offers:
 
 - Microsoft 365 E5 (M365 E5)
 - Microsoft 365 E5 Security
 - Microsoft 365 A5 (M365 A5)
 
 > [!NOTE]
-> Eligible licensed users may use Microsoft Defender Advanced Threat Protection on up to five concurrent devices.
-> Microsoft Defender Advanced Threat Protection is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
+> Eligible licensed users may use Defender for Endpoint on up to five concurrent devices.
+> Microsoft Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
 
 ### Network connections
 
@@ -92,11 +92,11 @@ The following downloadable spreadsheet lists the services and their associated U
 
 |**Spreadsheet of domains list**|**Description**|
 |:-----|:-----|
-|![Thumb image for Microsoft Defender ATP URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
+|![Thumb image for Microsoft Defender for Endpoint URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
 
 
 
-Microsoft Defender ATP can discover a proxy server by using the following discovery methods:
+Defender for Endpoint can discover a proxy server by using the following discovery methods:
 - Proxy autoconfig (PAC)
 - Web Proxy Autodiscovery Protocol (WPAD)
 - Manual static proxy configuration
@@ -106,7 +106,7 @@ If a proxy or firewall is blocking anonymous traffic, make sure that anonymous t
 > [!WARNING]
 > Authenticated proxies are not supported. Ensure that only PAC, WPAD, or a static proxy is being used.
 >
-> SSL inspection and intercepting proxies are also not supported for security reasons. Configure an exception for SSL inspection and your proxy server to directly pass through data from Microsoft Defender ATP for Mac to the relevant URLs without interception. Adding your interception certificate to the global store will not allow for interception.
+> SSL inspection and intercepting proxies are also not supported for security reasons. Configure an exception for SSL inspection and your proxy server to directly pass through data from Defender for Endpoint for Mac to the relevant URLs without interception. Adding your interception certificate to the global store will not allow for interception.
 
 To test that a connection is not blocked, open [https://x.cp.wd.microsoft.com/api/report](https://x.cp.wd.microsoft.com/api/report) and [https://cdn.x.cp.wd.microsoft.com/ping](https://cdn.x.cp.wd.microsoft.com/ping) in a browser.
 
@@ -125,25 +125,25 @@ The output from this command should be similar to the following:
 > [!CAUTION]
 > We recommend that you keep [System Integrity Protection](https://support.apple.com/en-us/HT204899) (SIP) enabled on client devices. SIP is a built-in macOS security feature that prevents low-level tampering with the OS, and is enabled by default.
 
-Once Microsoft Defender ATP is installed, connectivity can be validated by running the following command in Terminal:
+Once Defender for Endpoint is installed, connectivity can be validated by running the following command in Terminal:
 ```bash
 mdatp --connectivity-test
 ```
 
-## How to update Microsoft Defender ATP for Mac
+## How to update Microsoft Defender for Endpoint for Mac
 
-Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender ATP for Mac, a program named Microsoft AutoUpdate (MAU) is used. To learn more, see [Deploy updates for Microsoft Defender ATP for Mac](mac-updates.md)
+Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Defender for Endpoint for Mac, a program named Microsoft AutoUpdate (MAU) is used. To learn more, see [Deploy updates for Microsoft Defender for Endpoint for Mac](mac-updates.md)
 
-## How to configure Microsoft Defender ATP for Mac
+## How to configure Microsoft Defender for Endpoint for Mac
 
-Guidance for how to configure the product in enterprise environments is available in [Set preferences for Microsoft Defender ATP for Mac](mac-preferences.md).
+Guidance for how to configure the product in enterprise environments is available in [Set preferences for Microsoft Defender for Endpoint for Mac](mac-preferences.md).
 
 ## macOS kernel and system extensions
 
-In alignment with macOS evolution, we are preparing a Microsoft Defender ATP for Mac update that leverages system extensions instead of kernel extensions. Visit [What's new in Microsoft Defender Advanced Threat Protection for Mac](mac-whatsnew.md) for relevant details.
+In alignment with macOS evolution, we are preparing a Defender for Endpoint for Mac update that leverages system extensions instead of kernel extensions. Visit [What's new in Microsoft Defender for Endpoint for Mac](mac-whatsnew.md) for relevant details.
 
 ## Resources
 
 - For more information about logging, uninstalling, or other topics, see the [Resources](mac-resources.md) page.
 
-- [Privacy for Microsoft Defender ATP for Mac](mac-privacy.md)
+- [Privacy for Microsoft Defender for Endpoint for Mac](mac-privacy.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
index e04a02313b..baaaf022b3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-Microsoft Defender Security Center is the portal where you can access Microsoft Defender Advanced Threat Protection capabilities. It gives enterprise security operations teams a single pane of glass experience to help secure networks.
+Microsoft Defender Security Center is the portal where you can access Microsoft Defender for Endpoint capabilities. It gives enterprise security operations teams a single pane of glass experience to help secure networks.
 
 ## In this section
 
@@ -35,9 +35,9 @@ Get started  |  Learn about the minimum requirements, validate licensing and com
 [Understand the portal](use.md) | Understand the Security operations, Secure Score, and Threat analytics dashboards as well as how to navigate the portal.
 Investigate and remediate threats | Investigate alerts, devices, and take response actions to remediate threats.
 API and SIEM support | Use the supported APIs to pull and create custom alerts, or automate workflows. Use the supported SIEM tools to pull alerts from Microsoft Defender Security Center.
-Reporting | Create and build Power BI reports using Microsoft Defender ATP data.
+Reporting | Create and build Power BI reports using Defender for Endpoint data.
 Check service health and sensor state | Verify that the service is running and check the sensor state on devices.
 [Configure Microsoft Defender Security Center settings](preferences-setup.md) | Configure general settings, turn on the preview experience, notifications, and enable other features.
-[Access the Microsoft Defender ATP Community Center](community.md) | Access the Microsoft Defender ATP Community Center to learn, collaborate, and share experiences about the product.
+[Access the Microsoft Defender for Endpoint Community Center](community.md) | Access the Defender for Endpoint Community Center to learn, collaborate, and share experiences about the product.
 [Troubleshoot service issues](troubleshoot-mdatp.md) | This section addresses issues that might arise as you use the Microsoft Defender Advanced Threat service.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
index 47fcaf8d7d..07c5bb4248 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
@@ -25,7 +25,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Microsoft Threat Experts is a managed threat hunting service that provides Security Operation Centers (SOCs) with expert level monitoring and analysis to help them ensure that critical threats in their unique environments don’t get missed.
   
@@ -40,7 +40,7 @@ Watch this video for a quick overview of Microsoft Threat Experts.
 > [!NOTE]
 > Discuss the eligibility requirements with your Microsoft Technical Service provider and account team before you apply to the managed threat hunting service.
 
-Microsoft Defender ATP customers need to apply for the Microsoft Threat Experts managed threat hunting service to get proactive Targeted Attack Notifications and to collaborate with experts on demand. Experts on Demand is an add-on service. Targeted Attack Notifications are always included after you have been accepted into Microsoft Threat Experts managed threat hunting service.
+Defender for Endpoint customers need to apply for the Microsoft Threat Experts managed threat hunting service to get proactive Targeted Attack Notifications and to collaborate with experts on demand. Experts on Demand is an add-on service. Targeted Attack Notifications are always included after you have been accepted into Microsoft Threat Experts managed threat hunting service.
 
 If you are not enrolled yet and would like to experience its benefits, go to **Settings** > **General** > **Advanced features** > **Microsoft Threat Experts** to apply. Once accepted, you will get the benefits of Targeted Attack Notifications, and start a  90-day trial of Experts on Demand. Contact your Microsoft representative to get a full Experts on-Demand subscription. See [Configure Microsoft Threat Experts capabilities](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-microsoft-threat-experts#before-you-begin) for details. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md b/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
index 308308a4d0..24527c0a89 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
@@ -29,8 +29,8 @@ If you're considering switching from a non-Microsoft threat protection solution
 
 |Scenario |Guidance |
 |:--|:--|
-|You do not have an endpoint protection solution yet, and you want to know more about how Microsoft Defender for Endpoint & Microsoft Defender Antivirus work.  |[Microsoft Defender ATP evaluation lab](evaluation-lab.md)   |
-|You have Microsoft Defender for Endpoint & Microsoft Defender Antivirus and need some help getting everything set up and configured.  |[Microsoft Defender Advanced Threat Protection deployment guide](deployment-phases.md)  |
+|You do not have an endpoint protection solution yet, and you want to know more about how Microsoft Defender for Endpoint & Microsoft Defender Antivirus work.  |[Microsoft Defender for Endpoint evaluation lab](evaluation-lab.md)   |
+|You have Microsoft Defender for Endpoint & Microsoft Defender Antivirus and need some help getting everything set up and configured.  |[Microsoft Defender for Endpoint deployment guide](deployment-phases.md)  |
 |You're planning to migrate from McAfee Endpoint Security (McAfee) to Microsoft Defender for Endpoint & Microsoft Defender Antivirus. |[Switch from McAfee to Microsoft Defender for Endpoint](mcafee-to-microsoft-defender-migration.md) |
 |You're planning to migrate from Symantec Endpoint Protection (Symantec) to Microsoft Defender for Endpoint & Microsoft Defender Antivirus. |[Switch from Symantec to Microsoft Defender for Endpoint](symantec-to-microsoft-defender-atp-migration.md) |
 |You're planning to migrate from a non-Microsoft endpoint protection solution (other than McAfee or Symantec) to Microsoft Defender for Endpoint & Microsoft Defender Antivirus. |[Make the switch to Microsoft Defender for Endpoint](switch-to-microsoft-defender-migration.md)   |
diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 0f05ee52c8..7a36a23ea9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -17,25 +17,25 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Minimum requirements for Microsoft Defender ATP
+# Minimum requirements for Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 There are some minimum requirements for onboarding devices to the service. Learn about the licensing, hardware and software requirements, and other configuration settings to onboard devices to the service.
 
-> Want to experience Microsoft Defender ATP? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-minreqs-abovefoldlink).
+> Want to experience Defender for Endpoint? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-minreqs-abovefoldlink).
 
 
 > [!TIP]
-> - Learn about the latest enhancements in Microsoft Defender ATP: [Microsoft Defender Advanced Threat Protection Tech Community](https://techcommunity.microsoft.com/t5/Windows-Defender-Advanced-Threat/ct-p/WindowsDefenderAdvanced).
-> - Microsoft Defender ATP demonstrated industry-leading optics and detection capabilities in the recent MITRE evaluation. Read: [Insights from the MITRE ATT&CK-based evaluation](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/03/insights-from-the-mitre-attack-based-evaluation-of-windows-defender-atp/).
+> - Learn about the latest enhancements in Microsoft Defender for Endpoint: [Microsoft Defender Advanced Threat Protection Tech Community](https://techcommunity.microsoft.com/t5/Windows-Defender-Advanced-Threat/ct-p/WindowsDefenderAdvanced).
+> - Defender for Endpoint demonstrated industry-leading optics and detection capabilities in the recent MITRE evaluation. Read: [Insights from the MITRE ATT&CK-based evaluation](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/03/insights-from-the-mitre-attack-based-evaluation-of-windows-defender-atp/).
 
 ## Licensing requirements
-Microsoft Defender Advanced Threat Protection requires one of the following Microsoft Volume Licensing offers:
+Microsoft Defender for Endpoint requires one of the following Microsoft Volume Licensing offers:
 
 - Windows 10 Enterprise E5
 - Windows 10 Education A5
@@ -44,18 +44,18 @@ Microsoft Defender Advanced Threat Protection requires one of the following Micr
 - Microsoft 365 A5 (M365 A5)
 
 > [!NOTE]
-> Eligible Licensed Users may use Microsoft Defender Advanced Threat Protection on up to five concurrent devices.
-> Microsoft Defender Advanced Threat Protection is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
+> Eligible Licensed Users may use Microsoft Defender for Endpoint on up to five concurrent devices.
+> Microsoft Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
 
 
 
-Microsoft Defender Advanced Threat Protection, on Windows Server, requires one of the following licensing options:
+Microsoft Defender for Endpoint, on Windows Server, requires one of the following licensing options:
 
 - [Azure Security Center with Azure Defender enabled](https://docs.microsoft.com/azure/security-center/security-center-pricing)
-- Microsoft Defender ATP for Servers (one per covered server)
+- Defender for Endpoint for Servers (one per covered server)
 
 > [!NOTE]
-> Customers with a combined minimum of 50 licenses for one or more of the following may acquire Server SLs for Microsoft Defender Advanced Threat Protection for Servers (one per covered Server OSE): Microsoft Defender Advanced Threat Protection, Windows E5/A5, Microsoft 365 E5/A5 and Microsoft 365 E5 Security User SLs. This license applies to Microsoft Defender ATP for Linux.
+> Customers with a combined minimum of 50 licenses for one or more of the following may acquire Server SLs for Microsoft Defender Defender for Endpoint for Servers (one per covered Server OSE): Microsoft Defender for Endpoint, Windows E5/A5, Microsoft 365 E5/A5 and Microsoft 365 E5 Security User SLs. This license applies to Defender for Endpoint for Linux.
 
 For detailed licensing information, see the [Product Terms site](https://www.microsoft.com/licensing/terms/) and work with your account team to learn the detailed terms and conditions for the product.
 
@@ -64,7 +64,7 @@ For more information on the array of features in Windows 10 editions, see [Compa
 For a detailed comparison table of Windows 10 commercial edition comparison, see the [comparison PDF](https://wfbdevicemanagementprod.blob.core.windows.net/windowsforbusiness/Windows10_CommercialEdition_Comparison.pdf).
 
 ## Browser requirements
-Access to Microsoft Defender ATP is done through a browser, supporting the following browsers:
+Access to Defender for Endpoint  is done through a browser, supporting the following browsers:
 - Microsoft Edge
 - Internet Explorer version 11
 - Google Chrome
@@ -94,7 +94,7 @@ Access to Microsoft Defender ATP is done through a browser, supporting the follo
 
 Devices on your network must be running one of these editions.
 
-The hardware requirements for Microsoft Defender ATP on devices are the same for the supported editions.
+The hardware requirements for Defender for Endpoint on devices are the same for the supported editions.
 
 > [!NOTE]
 > Machines running mobile versions of Windows are not supported.
@@ -110,22 +110,22 @@ The hardware requirements for Microsoft Defender ATP on devices are the same for
 - macOS
 
 > [!NOTE]
-> You'll need to know the exact Linux distributions and versions of Android and macOS that are compatible with Microsoft Defender ATP for the integration to work.
+> You'll need to know the exact Linux distributions and versions of Android and macOS that are compatible with Defender for Endpoint for the integration to work.
 
 
 
 ### Network and data storage and configuration requirements
-When you run the onboarding wizard for the first time, you must choose where your Microsoft Defender Advanced Threat Protection-related information is stored: in the European Union, the United Kingdom, or the United States datacenter.
+When you run the onboarding wizard for the first time, you must choose where your Microsoft Defender for Endpoint-related information is stored: in the European Union, the United Kingdom, or the United States datacenter.
 
 > [!NOTE]
 > - You cannot change your data storage location after the first-time setup.
-> - Review the [Microsoft Defender ATP data storage and privacy](data-storage-privacy.md) for more information on where and how Microsoft stores your data.
+> - Review the [Microsoft Defender for Endpoint data storage and privacy](data-storage-privacy.md) for more information on where and how Microsoft stores your data.
 
 
 ### Diagnostic data settings
 
 > [!NOTE]
-> Microsoft Defender ATP doesn't require any specific diagnostic level as long as it's enabled.
+> Microsoft Defender for Endpoint doesn't require any specific diagnostic level as long as it's enabled.
 
 Make sure that the diagnostic data service is enabled on all the devices in your organization.
 By default, this service is enabled. It's good practice to check to ensure that you'll get sensor data from them.
@@ -176,7 +176,7 @@ You'll need to set the service to automatically start if the **START_TYPE** is n
 #### Internet connectivity
 Internet connectivity on devices is required either directly or through proxy.
 
-The Microsoft Defender ATP sensor can utilize a daily average bandwidth of 5 MB to communicate with the Microsoft Defender ATP cloud service and report cyber data. One-off activities such as file uploads and investigation package collection are not included in this daily average bandwidth.
+The Defender for Endpoint sensor can utilize a daily average bandwidth of 5 MB to communicate with the Defender for Endpoint cloud service and report cyber data. One-off activities such as file uploads and investigation package collection are not included in this daily average bandwidth.
 
 For more information on additional proxy configuration settings, see [Configure device proxy and Internet connectivity settings](configure-proxy-internet.md).
 
@@ -184,11 +184,11 @@ Before you onboard devices, the diagnostic data service must be enabled. The ser
 
 
 ## Microsoft Defender Antivirus configuration requirement
-The Microsoft Defender ATP agent depends on the ability of Microsoft Defender Antivirus to scan files and provide information about them.
+The Defender for Endpoint agent depends on the ability of Microsoft Defender Antivirus to scan files and provide information about them.
 
-Configure Security intelligence updates on the Microsoft Defender ATP devices whether Microsoft Defender Antivirus is the active antimalware or not. For more information, see [Manage Microsoft Defender Antivirus updates and apply baselines](../microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md).
+Configure Security intelligence updates on the Defender for Endpoint devices whether Microsoft Defender Antivirus is the active antimalware or not. For more information, see [Manage Microsoft Defender Antivirus updates and apply baselines](../microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md).
 
-When Microsoft Defender Antivirus is not the active antimalware in your organization and you use the Microsoft Defender ATP service, Microsoft Defender Antivirus goes on passive mode. 
+When Microsoft Defender Antivirus is not the active antimalware in your organization and you use the Defender for Endpoint service, Microsoft Defender Antivirus goes on passive mode. 
 
 If your organization has turned off Microsoft Defender Antivirus through group policy or other methods, devices that are onboarded must be excluded from this group policy.
 
@@ -201,7 +201,7 @@ If you are onboarding servers and Microsoft Defender Antivirus is not the active
 For more information, see [Microsoft Defender Antivirus compatibility](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md).
 
 ## Microsoft Defender Antivirus Early Launch Antimalware (ELAM) driver is enabled
-If you're running Microsoft Defender Antivirus as the primary antimalware product on your devices, the Microsoft Defender ATP agent will successfully onboard.
+If you're running Microsoft Defender Antivirus as the primary antimalware product on your devices, the Defender for Endpoint agent will successfully onboard.
 
 If you're running a third-party antimalware client and use Mobile Device Management solutions or Microsoft Endpoint Configuration Manager (current branch), you'll need to ensure that the Microsoft Defender Antivirus ELAM driver is enabled. For more information, see [Ensure that Microsoft Defender Antivirus is not disabled by policy](troubleshoot-onboarding.md#ensure-that-microsoft-defender-antivirus-is-not-disabled-by-a-policy).
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md b/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
index 36d7f8db37..73e5616d8b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
@@ -21,12 +21,12 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Logo |Partner name   | Description 
 :---|:---|:---
 ![Image of BDO Digital logo](images/bdo-logo.png)| [BDO Digital](https://go.microsoft.com/fwlink/?linkid=2090394) | BDO Digital's Managed Defense leverages best practice tools, AI, and in-house security experts for 24/7/365 identity protection
-![Image of BlueVoyant logo](images/bluevoyant-logo.png)| [BlueVoyant](https://go.microsoft.com/fwlink/?linkid=2121401) | MDR for Microsoft Defender ATP provides support in monitoring, investigating, and mitigating advanced attacks on endpoints
+![Image of BlueVoyant logo](images/bluevoyant-logo.png)| [BlueVoyant](https://go.microsoft.com/fwlink/?linkid=2121401) | MDR for Microsoft Defender for Endpoint provides support in monitoring, investigating, and mitigating advanced attacks on endpoints
 ![Image of Cloud Security Center logo](images/cloudsecuritycenter-logo.png)| [Cloud Security Center](https://go.microsoft.com/fwlink/?linkid=2099315) | InSpark's Cloud Security Center is a 24x7 managed service that delivers protect, detect & respond capabilities
 ![Image of Cloud SOC logo](images/cloudsoc-logo.png)| [Cloud SOC](https://go.microsoft.com/fwlink/?linkid=2104265) | Cloud SOC provides 24/7 security monitoring services based on Microsoft cloud and helps you to continuously improve your security posture
 ![Image of CSIS Managed Detection & Response logo](images/csis-logo.png)| [CSIS Managed Detection & Response](https://go.microsoft.com/fwlink/?linkid=2091005) | 24/7 monitoring and analysis of security alerts giving companies actionable insights into what, when and how security incidents have taken place
@@ -36,8 +36,8 @@ Logo |Partner name   | Description
 ![Image of Red Canary logo](images/redcanary-logo.png)| [Red Canary](https://go.microsoft.com/fwlink/?linkid=2103852) | Red Canary is a security operations partner for modern teams, MDR deployed in minutes
 ![Image of SecureWorks Managed Detection and Response Powered by Red Cloak logo](images/secureworks-logo.png)| [SecureWorks Managed Detection and Response Powered by Red Cloak](https://go.microsoft.com/fwlink/?linkid=2133634) | Secureworks combines threat intelligence and 20+ years of experience into SaaS and managed security solutions
 ![Image of sepagoSOC logo](images/sepago-logo.png)| [sepagoSOC](https://go.microsoft.com/fwlink/?linkid=2090491) | Ensure holistic security through sophisticated automated workflows in your zero trust environment
-![Image of Trustwave Threat Detection & Response Services logo](images/trustwave-logo.png)| [Trustwave Threat Detection & Response Services](https://go.microsoft.com/fwlink/?linkid=2127542) | Threat Detection and Response services for Azure leveraging integrations with Sentinel and Microsoft Defender ATP
-![Image of Wortell's cloud SOC logo](images/wortell-logo.png)| [Wortell's cloud SOC](https://go.microsoft.com/fwlink/?linkid=2108415) | 24x7 managed Microsoft Defender ATP service for monitoring & response
+![Image of Trustwave Threat Detection & Response Services logo](images/trustwave-logo.png)| [Trustwave Threat Detection & Response Services](https://go.microsoft.com/fwlink/?linkid=2127542) | Threat Detection and Response services for Azure leveraging integrations with Sentinel and Defender for Endpoint.
+![Image of Wortell's cloud SOC logo](images/wortell-logo.png)| [Wortell's cloud SOC](https://go.microsoft.com/fwlink/?linkid=2108415) | 24x7 managed Defender for Endpoint service for monitoring & response
 ![Image of Zero Trust Analytics Platform (ZTAP) logo](images/ztap-logo.png)| [Zero Trust Analytics Platform (ZTAP)](https://go.microsoft.com/fwlink/?linkid=2090971) | Reduce your alerts by 99% and access a full range of security capabilities from mobile devices
 
 ## Related topics
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md b/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
index 6982d30ef4..e6d53ec221 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
@@ -23,18 +23,18 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mssp-support-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mssp-support-abovefoldlink)
 
 
 Security is recognized as a key component in running an enterprise, however some organizations might not have the capacity or expertise to have a dedicated security operations team to manage the security of their endpoints and network, others may want to have a second set of eyes to review alerts in their network.
 
 
-To address this demand, managed security service providers (MSSP) offer to deliver managed detection and response (MDR) services on top of Microsoft Defender ATP. 
+To address this demand, managed security service providers (MSSP) offer to deliver managed detection and response (MDR) services on top of Defender for Endpoint. 
 
 
-Microsoft Defender ATP adds partnership opportunities for this scenario and allows MSSPs to take the following actions:
+Defender for Endpoint adds partnership opportunities for this scenario and allows MSSPs to take the following actions:
 
 - Get access to MSSP customer's Microsoft Defender Security Center portal
 - Get email notifications, and 

From f36d7d30ce0a9cc219de7bddc3499b4348434cfb Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Tue, 10 Nov 2020 16:55:13 +0530
Subject: [PATCH 063/209] Update endpoint-detection-response-mac-preview.md

fixed warning
---
 .../endpoint-detection-response-mac-preview.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md b/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
index 9c552f4e9c..b86fec795a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
@@ -26,7 +26,7 @@ ms.topic: conceptual
 To get preview features for Mac, you must set up your device to be an "Insider" device as described in this article. For scale deployment, we recommend using [Jamf](#enable-the-insider-program-with-jamf) or [Intune](#enable-the-insider-program-with-intune).
 
 > [!IMPORTANT]
-> Make sure you have enabled [Microsoft Defender for Endpoint (Mac)](microsoft-defender-atp-mac.md#how-to-install-microsoft-defender-atp-for-mac), and pay attention to the “earlyPreview” flag. See documentation for [Jamf](mac-install-with-jamf.md), [Intune](mac-install-with-intune.md), and [manual deployment](mac-install-manually.md) instructions.
+> Make sure you have enabled [Microsoft Defender for Endpoint (Mac)](microsoft-defender-atp-mac.md#how-to-install-microsoft-defender-for-endpoint-for-mac), and pay attention to the “earlyPreview” flag. See documentation for [Jamf](mac-install-with-jamf.md), [Intune](mac-install-with-intune.md), and [manual deployment](mac-install-manually.md) instructions.
 
 ## Enable the Insider program with Jamf
 

From 99dca4838c0fda5a1d603ba6124aae6a88b068d1 Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Tue, 10 Nov 2020 15:03:00 +0100
Subject: [PATCH 064/209] Update vpn-profile-options.md

Adding additional information for the scope / limitation of the VPN proxy settings configuration
---
 .../security/identity-protection/vpn/vpn-profile-options.md   | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/vpn/vpn-profile-options.md b/windows/security/identity-protection/vpn/vpn-profile-options.md
index 29b5df1daf..ccb29a9823 100644
--- a/windows/security/identity-protection/vpn/vpn-profile-options.md
+++ b/windows/security/identity-protection/vpn/vpn-profile-options.md
@@ -34,7 +34,6 @@ The following table lists the VPN settings and whether the setting can be config
 | Routing: forced-tunnel | yes |
 | Authentication (EAP) | yes, if connection type is built-in |
 | Conditional access | yes |
-| Proxy settings | yes, by PAC/WPAD file or server and port |
 | Name resolution: NRPT | yes |
 | Name resolution: DNS suffix | no |
 | Name resolution: persistent | no |
@@ -45,6 +44,9 @@ The following table lists the VPN settings and whether the setting can be config
 | LockDown | no |
 | Windows Information Protection (WIP) | yes |
 | Traffic filters | yes |
+| Proxy settings | yes, by PAC/WPAD file or server and port |
+>[!NOTE] 
+>VPN proxy settings are only used on Force Tunnel Connections. On Split Tunnel Connections the general proxy settings are used.
 
 The ProfileXML node was added to the VPNv2 CSP to allow users to deploy VPN profile as a single blob. This is particularly useful for deploying profiles with features that are not yet supported by MDMs. You can get additional examples in the [ProfileXML XSD](https://msdn.microsoft.com/library/windows/hardware/mt755930.aspx) topic.
 

From 3e347e58249309624bda7242a67d0228fce1f8a8 Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Tue, 10 Nov 2020 16:22:31 +0100
Subject: [PATCH 065/209] Update vpnv2-csp.md

Adding additional information for the scope / limitation of the VPN proxy settings configuration
---
 windows/client-management/mdm/vpnv2-csp.md | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index 5f3d865cbd..f0ab6733f3 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -345,7 +345,10 @@ Added in Windows 10, version 1607. The XML schema for provisioning all the fiel
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-proxy"></a>**VPNv2/**<em>ProfileName</em>**/Proxy**  
-A collection of configuration objects to enable a post-connect proxy support for VPN. The proxy defined for this profile is applied when this profile is active and connected.
+A collection of configuration objects to enable a post-connect proxy support for VPN Force Tunnel connections. The proxy defined for this profile is applied when this profile is active and connected.
+
+>[Note]
+>VPN proxy settings are only used on Force Tunnel connections. On Split Tunnel connections the general proxy settings are used.
 
 <a href="" id="vpnv2-profilename-proxy-manual"></a>**VPNv2/**<em>ProfileName</em>**/Proxy/Manual**  
 Optional node containing the manual server settings.

From b6567fc91858e019b820c169d7bd9c00229a9cd3 Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Tue, 10 Nov 2020 23:19:40 +0530
Subject: [PATCH 066/209] removed duplicate entry

as per the user report  #8609 , so I removed the duplicate entry which is appeared two times.
---
 windows/deployment/planning/windows-10-deprecated-features.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/deployment/planning/windows-10-deprecated-features.md b/windows/deployment/planning/windows-10-deprecated-features.md
index 18d1d96008..fa4f088b49 100644
--- a/windows/deployment/planning/windows-10-deprecated-features.md
+++ b/windows/deployment/planning/windows-10-deprecated-features.md
@@ -28,7 +28,6 @@ The features described below are no longer being actively developed, and might b
 | ----------- | --------------------- | ---- |
 | Microsoft Edge | The legacy version of Microsoft Edge is no longer being developed.| 2004 |
 | Companion Device Framework | The [Companion Device Framework](https://docs.microsoft.com/windows-hardware/design/device-experiences/windows-hello-companion-device-framework) is no longer under active development.| 2004 |
-| Microsoft Edge | The legacy version of Microsoft Edge is no longer being developed.| 2004 |
 | Dynamic Disks | The [Dynamic Disks](https://docs.microsoft.com/windows/win32/fileio/basic-and-dynamic-disks#dynamic-disks) feature is no longer being developed. This feature will be fully replaced by [Storage Spaces](https://docs.microsoft.com/windows-server/storage/storage-spaces/overview) in a future release.| 2004 |
 | Language Community tab in Feedback Hub | The Language Community tab will be removed from the Feedback Hub. The standard feedback process: [Feedback Hub - Feedback](feedback-hub://?newFeedback=true&feedbackType=2) is the recommended way to provide translation feedback. | 1909 |
 | My People / People in the Shell |  My People is no longer being developed. It may be removed in a future update. | 1909 |

From 98b06537adf8e6ece3350b8afc4470abec9c2eff Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Tue, 10 Nov 2020 11:00:14 -0800
Subject: [PATCH 067/209] Update manage-auto-investigation.md

---
 .../microsoft-defender-atp/manage-auto-investigation.md          | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md b/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
index ab130cb910..9eb235425e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-auto-investigation.md
@@ -50,7 +50,6 @@ Whether taken automatically or upon approval, remediation actions following an a
 - Remove a registry key 
 - Kill a process 
 - Stop a service 
-- Remove a registry key 
 - Disable a driver 
 - Remove a scheduled task
 

From d6b9339bc9b47f582cacec91abeac7b572cbad29 Mon Sep 17 00:00:00 2001
From: Samantha Robertson <samanro@microsoft.com>
Date: Tue, 10 Nov 2020 11:01:36 -0800
Subject: [PATCH 068/209] attempting to add m365 nav again

---
 windows/application-management/docfx.json | 1 +
 windows/client-management/docfx.json      | 1 +
 windows/configuration/docfx.json          | 1 +
 windows/deployment/docfx.json             | 1 +
 windows/hub/docfx.json                    | 1 +
 windows/privacy/docfx.json                | 1 +
 windows/security/docfx.json               | 1 +
 windows/whats-new/docfx.json              | 1 +
 8 files changed, 8 insertions(+)

diff --git a/windows/application-management/docfx.json b/windows/application-management/docfx.json
index 09bd474c3e..abbb5fac56 100644
--- a/windows/application-management/docfx.json
+++ b/windows/application-management/docfx.json
@@ -32,6 +32,7 @@
     "externalReference": [],
     "globalMetadata": {
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.technology": "windows",
       "audience": "ITPro",
       "ms.topic": "article",
diff --git a/windows/client-management/docfx.json b/windows/client-management/docfx.json
index ffd1c9d266..c81879ba3f 100644
--- a/windows/client-management/docfx.json
+++ b/windows/client-management/docfx.json
@@ -32,6 +32,7 @@
     "externalReference": [],
     "globalMetadata": {
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.technology": "windows",
       "audience": "ITPro",
       "ms.topic": "article",
diff --git a/windows/configuration/docfx.json b/windows/configuration/docfx.json
index ea2a557e39..662747f3a4 100644
--- a/windows/configuration/docfx.json
+++ b/windows/configuration/docfx.json
@@ -32,6 +32,7 @@
     "externalReference": [],
     "globalMetadata": {
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.technology": "windows",
       "audience": "ITPro",
       "ms.topic": "article",
diff --git a/windows/deployment/docfx.json b/windows/deployment/docfx.json
index d90a888be9..bc71e70299 100644
--- a/windows/deployment/docfx.json
+++ b/windows/deployment/docfx.json
@@ -35,6 +35,7 @@
     "externalReference": [],
     "globalMetadata": {
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.technology": "windows",
       "audience": "ITPro",
       "ms.topic": "article",
diff --git a/windows/hub/docfx.json b/windows/hub/docfx.json
index 07a8ea153b..2fad5a8fc9 100644
--- a/windows/hub/docfx.json
+++ b/windows/hub/docfx.json
@@ -36,6 +36,7 @@
     "globalMetadata": {
       "audience": "ITPro",
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.technology": "windows",
       "ms.topic": "article",
       "feedback_system": "GitHub",
diff --git a/windows/privacy/docfx.json b/windows/privacy/docfx.json
index f7ff32cbfe..0f24cde486 100644
--- a/windows/privacy/docfx.json
+++ b/windows/privacy/docfx.json
@@ -33,6 +33,7 @@
     "externalReference": [],
     "globalMetadata": {
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.technology": "windows",
       "audience": "ITPro",
       "ms.topic": "article",
diff --git a/windows/security/docfx.json b/windows/security/docfx.json
index ab00e42eba..1998bdf279 100644
--- a/windows/security/docfx.json
+++ b/windows/security/docfx.json
@@ -33,6 +33,7 @@
     "externalReference": [],
     "globalMetadata": {
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.topic": "article",
       "manager": "dansimp",
       "audience": "ITPro",
diff --git a/windows/whats-new/docfx.json b/windows/whats-new/docfx.json
index 5ff6fb5017..c04bfa1498 100644
--- a/windows/whats-new/docfx.json
+++ b/windows/whats-new/docfx.json
@@ -32,6 +32,7 @@
     "externalReference": [],
     "globalMetadata": {
       "breadcrumb_path": "/windows/windows-10/breadcrumb/toc.json",
+      "uhfHeaderId": "MSDocsHeader-M365-IT",
       "ms.technology": "windows",
       "ms.topic": "article",
       "audience": "ITPro",

From 55fba333be68ee6109296a8a28a62114a58d2de5 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 10 Nov 2020 11:30:34 -0800
Subject: [PATCH 069/209] update parameters

---
 .../microsoft-defender-atp/indicator-manage.md                | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
index 82fe774e42..3cb8685e67 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/indicator-manage.md
@@ -65,8 +65,8 @@ expirationTime | DateTimeOffset | The expiration time of the indicator in the fo
 severity | Enum | The severity of the indicator. Possible values are: "Informational", "Low", "Medium" and "High". **Optional**
 recommendedActions | String | TI indicator alert recommended actions. **Optional**
 rbacGroupNames | String | Comma-separated list of RBAC group names the indicator would be applied to. **Optional**
-category | String | Category of the alert. 
-mitretechniques| String | MITRE techniques code/id (comma separated). For more information, see [Enterprise tactics](https://attack.mitre.org/tactics/enterprise/).
+category | String | Category of the alert. Examples include: Execution and credential access. **Optional**
+mitretechniques| String | MITRE techniques code/id (comma separated). For more information, see [Enterprise tactics](https://attack.mitre.org/tactics/enterprise/). **Optional** It is recommended to add a value in category when a MITRE technique.
 
 For more information, see [Microsoft Defender ATP alert categories are now aligned with MITRE ATT&CK!](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/microsoft-defender-atp-alert-categories-are-now-aligned-with/ba-p/732748).
 

From c1e3ce52385ea06f99f49dd03cd7817c3d7a4422 Mon Sep 17 00:00:00 2001
From: JesseEsquivel <33558203+JesseEsquivel@users.noreply.github.com>
Date: Tue, 10 Nov 2020 15:24:20 -0500
Subject: [PATCH 070/209] Item is missing from proxy/firewall requirements

Should be the same as this link (missing *.azure-automation.net).  The *.azure-automation.net url is also called out and checked in the defender for endpoint connectivity analyzer.
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/log-analytics-agent#firewall-requirements
---
 .../microsoft-defender-atp/configure-proxy-internet.md         | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md
index 6abe8ff951..48fd0bee7d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md
@@ -140,7 +140,8 @@ The information below list the proxy and firewall configuration information requ
 |------|---------|--------|--------|   
 |*.ods.opinsights.azure.com |Port 443 |Outbound|Yes |  
 |*.oms.opinsights.azure.com |Port 443 |Outbound|Yes |  
-|*.blob.core.windows.net |Port 443 |Outbound|Yes |  
+|*.blob.core.windows.net |Port 443 |Outbound|Yes |
+|*.azure-automation.net |Port 443 |Outbound|Yes |  
 
 
 > [!NOTE]

From 941857293e86e7c4169a5e061b9de246066ba890 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 10 Nov 2020 16:10:32 -0800
Subject: [PATCH 071/209] Updated GP name

---
 windows/client-management/mdm/policy-csp-multitasking.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-multitasking.md b/windows/client-management/mdm/policy-csp-multitasking.md
index 019a3f61c5..fd1e3372e8 100644
--- a/windows/client-management/mdm/policy-csp-multitasking.md
+++ b/windows/client-management/mdm/policy-csp-multitasking.md
@@ -96,7 +96,7 @@ This policy only applies to the Alt+Tab switcher. When the policy is not enabled
 <!--ADMXBacked-->
 ADMX Info:  
 -   GP English name: *Configure the inclusion of Edge tabs into Alt-Tab*
--   GP name: *MultiTaskingAltTabFilter*
+-   GP name: *BrowserAltTabBlowout*
 -   GP path: *Windows Components/Multitasking*
 -   GP ADMX file name: *Multitasking.admx*
 

From 574286732f8382fb24c30095007cade38b39e82e Mon Sep 17 00:00:00 2001
From: Alekhya Jupudi <v-ajupudi@microsoft.com>
Date: Wed, 11 Nov 2020 15:15:42 +0530
Subject: [PATCH 072/209] Update
 required-windows-diagnostic-data-events-and-fields-2004.md

---
 ...required-windows-diagnostic-data-events-and-fields-2004.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
index 0b34139584..b1c3b25c91 100644
--- a/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
+++ b/windows/privacy/required-windows-diagnostic-data-events-and-fields-2004.md
@@ -1638,7 +1638,7 @@ The following fields are available:
 - **LicenseStateReason**  Retrieves why (or how) a system is licensed or unlicensed.  The HRESULT may indicate an error code that indicates a key blocked error, or it may indicate that we are running an OS License granted by the MS store.
 - **OA3xOriginalProductKey**  Retrieves the License key stamped by the OEM to the machine.
 - **OSEdition**  Retrieves the version of the current OS.
-- **OSInstallType**  Retrieves a numeric description of what install was used on the device i.e. clean, upgrade, refresh, reset, etc
+- **OSInstallType**  Retrieves a numeric description of what install was used on the device i.e. clean, upgrade, refresh, reset, etc.
 - **OSOOBEDateTime**  Retrieves Out of Box Experience (OOBE) Date in Coordinated Universal Time (UTC).
 - **OSSKU**  Retrieves the Friendly Name of OS Edition.
 - **OSSubscriptionStatus**  Represents the existing status for enterprise subscription feature for PRO machines.
@@ -1786,7 +1786,7 @@ This event sends data about the current user's default preferences for browser a
 The following fields are available:
 
 - **CalendarType**  The calendar identifiers that are used to specify different calendars.
-- **DefaultApp**  The current uer's default program selected for the following extension or protocol: .html, .htm, .jpg, .jpeg, .png, .mp3, .mp4, .mov, .pdf.
+- **DefaultApp**  The current user's default program selected for the following extension or protocol: .html, .htm, .jpg, .jpeg, .png, .mp3, .mp4, .mov, .pdf.
 - **DefaultBrowserProgId**  The ProgramId of the current user's default browser.
 - **LocaleName**  Name of the current user locale given by LOCALE_SNAME via the GetLocaleInfoEx() function.
 - **LongDateFormat**  The long date format the user has selected.

From 16493255e42647c3e2bb3893d921dd7dc54fc48b Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Wed, 11 Nov 2020 11:33:31 +0100
Subject: [PATCH 073/209] Update windows/client-management/mdm/vpnv2-csp.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/client-management/mdm/vpnv2-csp.md | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index f0ab6733f3..75becc7f08 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -347,8 +347,8 @@ Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-proxy"></a>**VPNv2/**<em>ProfileName</em>**/Proxy**  
 A collection of configuration objects to enable a post-connect proxy support for VPN Force Tunnel connections. The proxy defined for this profile is applied when this profile is active and connected.
 
->[Note]
->VPN proxy settings are only used on Force Tunnel connections. On Split Tunnel connections the general proxy settings are used.
+> [Note]
+> VPN proxy settings are only used on Force Tunnel connections. On Split Tunnel connections the general proxy settings are used.
 
 <a href="" id="vpnv2-profilename-proxy-manual"></a>**VPNv2/**<em>ProfileName</em>**/Proxy/Manual**  
 Optional node containing the manual server settings.
@@ -1332,4 +1332,3 @@ Servers
 
 
 
-

From 074bc73f723625fc63563ed01df40586cef1d216 Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Wed, 11 Nov 2020 11:37:35 +0100
Subject: [PATCH 074/209] Update
 windows/security/identity-protection/vpn/vpn-profile-options.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../security/identity-protection/vpn/vpn-profile-options.md  | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/vpn/vpn-profile-options.md b/windows/security/identity-protection/vpn/vpn-profile-options.md
index ccb29a9823..4c4e67842d 100644
--- a/windows/security/identity-protection/vpn/vpn-profile-options.md
+++ b/windows/security/identity-protection/vpn/vpn-profile-options.md
@@ -45,8 +45,9 @@ The following table lists the VPN settings and whether the setting can be config
 | Windows Information Protection (WIP) | yes |
 | Traffic filters | yes |
 | Proxy settings | yes, by PAC/WPAD file or server and port |
->[!NOTE] 
->VPN proxy settings are only used on Force Tunnel Connections. On Split Tunnel Connections the general proxy settings are used.
+
+> [!NOTE] 
+> VPN proxy settings are only used on Force Tunnel Connections. On Split Tunnel Connections the general proxy settings are used.
 
 The ProfileXML node was added to the VPNv2 CSP to allow users to deploy VPN profile as a single blob. This is particularly useful for deploying profiles with features that are not yet supported by MDMs. You can get additional examples in the [ProfileXML XSD](https://msdn.microsoft.com/library/windows/hardware/mt755930.aspx) topic.
 

From ea38b9d7d7c0644c7d50a5b031f9fdd2a195981a Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Wed, 11 Nov 2020 11:41:25 +0100
Subject: [PATCH 075/209] Update vpn-conditional-access.md

---
 .../security/identity-protection/vpn/vpn-conditional-access.md  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/vpn/vpn-conditional-access.md b/windows/security/identity-protection/vpn/vpn-conditional-access.md
index 002d10e812..fa1a76285a 100644
--- a/windows/security/identity-protection/vpn/vpn-conditional-access.md
+++ b/windows/security/identity-protection/vpn/vpn-conditional-access.md
@@ -79,7 +79,7 @@ Two client-side configuration service providers are leveraged for VPN device com
 > [!NOTE]
 > Currently, it is required that certificates used for obtaining Kerberos tickets must be issued from an on-premises CA, and that SSO must be enabled in the user’s VPN profile. This will enable the user to access on-premises resources.
 > 
-> In the case of AzureAD-only joined devices (not hybrid joined devices), if the user certificate issued by the on-premises CA has in Subject and SAN (Subject Alternative Name) the user UPN from AzureAD, the VPN profile must be modified to ensure the client does not cache the credentials used for VPN authentication. To do this, after deploying the VPN profile to the client, modify the *Rasphone.pbk* on the client by changing entry **UseRasCredentials** from 1 (default) to 0 (zero).
+> In the case of AzureAD-only joined devices (not hybrid joined devices), if the user certificate issued by the on-premises CA has the user UPN from AzureAD in Subject and SAN (Subject Alternative Name) , the VPN profile must be modified to ensure the client does not cache the credentials used for VPN authentication. To do this, after deploying the VPN profile to the client, modify the *Rasphone.pbk* on the client by changing entry **UseRasCredentials** from 1 (default) to 0 (zero).
 
 ## Client connection flow
 

From 9128c8a4d38c507f355e32afa7fe3e1252f5d005 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Wed, 11 Nov 2020 17:17:33 +0530
Subject: [PATCH 076/209] updated-4567381-Batch12

rebranding
---
 ...Onboard-Windows-10-multi-session-device.md |  2 +-
 .../microsoft-defender-atp-mac.md             | 46 ++++++-------
 .../microsoft-defender-security-center.md     |  8 +--
 .../microsoft-threat-experts.md               |  4 +-
 .../migration-guides.md                       |  4 +-
 .../minimum-requirements.md                   | 44 ++++++-------
 .../microsoft-defender-atp/mssp-list.md       |  8 +--
 .../microsoft-defender-atp/mssp-support.md    |  8 +--
 .../network-protection.md                     | 10 +--
 .../next-gen-threat-and-vuln-mgt.md           | 12 ++--
 .../microsoft-defender-atp/non-windows.md     | 40 +++++------
 .../offboard-machine-api.md                   |  8 +--
 .../offboard-machines.md                      |  6 +-
 .../onboard-configure.md                      | 24 +++----
 .../onboard-downlevel.md                      | 24 +++----
 .../onboard-offline-machines.md               | 10 +--
 .../microsoft-defender-atp/onboard.md         |  8 +--
 ...boarding-endpoint-configuration-manager.md | 18 ++---
 .../onboarding-endpoint-manager.md            | 18 ++---
 .../onboarding-notification.md                |  6 +-
 .../microsoft-defender-atp/onboarding.md      | 18 ++---
 .../overview-attack-surface-reduction.md      |  2 +-
 .../overview-endpoint-detection-response.md   |  6 +-
 .../overview-hardware-based-isolation.md      |  4 +-
 .../partner-applications.md                   | 66 +++++++++----------
 25 files changed, 202 insertions(+), 202 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
index 11c95b7ebf..928df9d3fd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/Onboard-Windows-10-multi-session-device.md
@@ -24,7 +24,7 @@ manager: dansimp
 Applies to: 
 - Windows 10 multi-session running on Windows Virtual Desktop (WVD) 
 > [!IMPORTANT]
-> Welcome to Microsoft Defender for Endpoint, the new name for Microsoft Defender Advanced Threat Protection. Read more about this and other updates here. We'll be updating names in products and in the docs in the near future.
+> Welcome to Microsoft Defender for Endpoint, the new name for Microsoft Defender for Endpoint. Read more about this and other updates here. We'll be updating names in products and in the docs in the near future.
 
 > [!WARNING]
 > Microsoft Defender for Endpoint support for Windows Virtual Desktop multi-session scenarios is currently in Preview and limited up to 25 concurrent sessions per host/VM. However, single session scenarios on Windows Virtual Desktop are fully supported.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 4f2891c210..955a6448f5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -20,38 +20,38 @@ ms.collection:
 ms.topic: conceptual
 ---
 
-# Microsoft Defender Advanced Threat Protection for Mac
+# Microsoft Defender for Endpoint for Mac
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-This topic describes how to install, configure, update, and use Microsoft Defender ATP for Mac.
+This topic describes how to install, configure, update, and use Defender for Endpoint for Mac.
 
 > [!CAUTION]
-> Running other third-party endpoint protection products alongside Microsoft Defender ATP for Mac is likely to lead to performance problems and unpredictable side effects. If non-Microsoft endpoint protection is an absolute requirement in your environment, you can still safely take advantage of MDATP for Mac EDR functionality after configuring MDATP for Mac antivirus functionality to run in [Passive mode](mac-preferences.md#enable--disable-passive-mode).
+> Running other third-party endpoint protection products alongside Defender for Endpoint for Mac is likely to lead to performance problems and unpredictable side effects. If non-Microsoft endpoint protection is an absolute requirement in your environment, you can still safely take advantage of MDATP for Mac EDR functionality after configuring MDATP for Mac antivirus functionality to run in [Passive mode](mac-preferences.md#enable--disable-passive-mode).
 
 ## What’s new in the latest release
 
-[What's new in Microsoft Defender ATP](whats-new-in-microsoft-defender-atp.md)
+[What's new in Microsoft Defender for Endpoint](whats-new-in-microsoft-defender-atp.md)
 
-[What's new in Microsoft Defender ATP for Mac](mac-whatsnew.md)
+[What's new in Microsoft Defender for Endpoint for Mac](mac-whatsnew.md)
 
 > [!TIP]
-> If you have any feedback that you would like to share, submit it by opening Microsoft Defender ATP for Mac on your device and navigating to **Help** > **Send feedback**.
+> If you have any feedback that you would like to share, submit it by opening Microsoft Defender for Endpoint for Mac on your device and navigating to **Help** > **Send feedback**.
 
-To get the latest features, including preview capabilities (such as endpoint detection and response for your Mac devices), configure your macOS device running Microsoft Defender ATP to be an "Insider" device. See [Enable Microsoft Defender ATP Insider Device](endpoint-detection-response-mac-preview.md). 
+To get the latest features, including preview capabilities (such as endpoint detection and response for your Mac devices), configure your macOS device running Microsoft Defender for Endpoint to be an "Insider" device. See [Enable Microsoft Defender for Endpoint Insider Device](endpoint-detection-response-mac-preview.md). 
 
-## How to install Microsoft Defender ATP for Mac
+## How to install Microsoft Defender for Endpoint for Mac
 
 ### Prerequisites
 
-- A Microsoft Defender ATP subscription and access to the Microsoft Defender Security Center portal
+- A Defender for Endpoint subscription and access to the Microsoft Defender Security Center portal
 - Beginner-level experience in macOS and BASH scripting
 - Administrative privileges on the device (in case of manual deployment)
 
 ### Installation instructions
 
-There are several methods and deployment tools that you can use to install and configure Microsoft Defender ATP for Mac.
+There are several methods and deployment tools that you can use to install and configure Defender for Endpoint for Mac.
 
 - Third-party management tools:
     - [Microsoft Intune-based deployment](mac-install-with-intune.md)
@@ -74,15 +74,15 @@ After you've enabled the service, you may need to configure your network or fire
 
 ### Licensing requirements
 
-Microsoft Defender Advanced Threat Protection for Mac requires one of the following Microsoft Volume Licensing offers:
+Microsoft Defender for Endpoint for Mac requires one of the following Microsoft Volume Licensing offers:
 
 - Microsoft 365 E5 (M365 E5)
 - Microsoft 365 E5 Security
 - Microsoft 365 A5 (M365 A5)
 
 > [!NOTE]
-> Eligible licensed users may use Microsoft Defender Advanced Threat Protection on up to five concurrent devices.
-> Microsoft Defender Advanced Threat Protection is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
+> Eligible licensed users may use Microsoft Defender for Endpoint on up to five concurrent devices.
+> Microsoft Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
 
 ### Network connections
 
@@ -92,11 +92,11 @@ The following downloadable spreadsheet lists the services and their associated U
 
 |**Spreadsheet of domains list**|**Description**|
 |:-----|:-----|
-|![Thumb image for Microsoft Defender ATP URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
+|![Thumb image for Microsoft Defender for Endpoint URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
 
 
 
-Microsoft Defender ATP can discover a proxy server by using the following discovery methods:
+Microsoft Defender for Endpoint can discover a proxy server by using the following discovery methods:
 - Proxy autoconfig (PAC)
 - Web Proxy Autodiscovery Protocol (WPAD)
 - Manual static proxy configuration
@@ -106,7 +106,7 @@ If a proxy or firewall is blocking anonymous traffic, make sure that anonymous t
 > [!WARNING]
 > Authenticated proxies are not supported. Ensure that only PAC, WPAD, or a static proxy is being used.
 >
-> SSL inspection and intercepting proxies are also not supported for security reasons. Configure an exception for SSL inspection and your proxy server to directly pass through data from Microsoft Defender ATP for Mac to the relevant URLs without interception. Adding your interception certificate to the global store will not allow for interception.
+> SSL inspection and intercepting proxies are also not supported for security reasons. Configure an exception for SSL inspection and your proxy server to directly pass through data from Microsoft Defender for Endpoint for Mac to the relevant URLs without interception. Adding your interception certificate to the global store will not allow for interception.
 
 To test that a connection is not blocked, open [https://x.cp.wd.microsoft.com/api/report](https://x.cp.wd.microsoft.com/api/report) and [https://cdn.x.cp.wd.microsoft.com/ping](https://cdn.x.cp.wd.microsoft.com/ping) in a browser.
 
@@ -125,25 +125,25 @@ The output from this command should be similar to the following:
 > [!CAUTION]
 > We recommend that you keep [System Integrity Protection](https://support.apple.com/en-us/HT204899) (SIP) enabled on client devices. SIP is a built-in macOS security feature that prevents low-level tampering with the OS, and is enabled by default.
 
-Once Microsoft Defender ATP is installed, connectivity can be validated by running the following command in Terminal:
+Once Microsoft Defender for Endpoint is installed, connectivity can be validated by running the following command in Terminal:
 ```bash
 mdatp --connectivity-test
 ```
 
-## How to update Microsoft Defender ATP for Mac
+## How to update Microsoft Defender for Endpoint for Mac
 
-Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender ATP for Mac, a program named Microsoft AutoUpdate (MAU) is used. To learn more, see [Deploy updates for Microsoft Defender ATP for Mac](mac-updates.md)
+Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender for Endpoint for Mac, a program named Microsoft AutoUpdate (MAU) is used. To learn more, see [Deploy updates for Microsoft Defender for Endpoint for Mac](mac-updates.md)
 
-## How to configure Microsoft Defender ATP for Mac
+## How to configure Microsoft Defender for Endpoint for Mac
 
-Guidance for how to configure the product in enterprise environments is available in [Set preferences for Microsoft Defender ATP for Mac](mac-preferences.md).
+Guidance for how to configure the product in enterprise environments is available in [Set preferences for Microsoft Defender for Endpoint for Mac](mac-preferences.md).
 
 ## macOS kernel and system extensions
 
-In alignment with macOS evolution, we are preparing a Microsoft Defender ATP for Mac update that leverages system extensions instead of kernel extensions. Visit [What's new in Microsoft Defender Advanced Threat Protection for Mac](mac-whatsnew.md) for relevant details.
+In alignment with macOS evolution, we are preparing a Microsoft Defender for Endpoint for Mac update that leverages system extensions instead of kernel extensions. Visit [What's new in Microsoft Defender for Endpoint for Mac](mac-whatsnew.md) for relevant details.
 
 ## Resources
 
 - For more information about logging, uninstalling, or other topics, see the [Resources](mac-resources.md) page.
 
-- [Privacy for Microsoft Defender ATP for Mac](mac-privacy.md)
+- [Privacy for Microsoft Defender for Endpoint for Mac](mac-privacy.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
index e04a02313b..df24150d36 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-security-center.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-Microsoft Defender Security Center is the portal where you can access Microsoft Defender Advanced Threat Protection capabilities. It gives enterprise security operations teams a single pane of glass experience to help secure networks.
+Microsoft Defender Security Center is the portal where you can access Microsoft Defender for Endpoint capabilities. It gives enterprise security operations teams a single pane of glass experience to help secure networks.
 
 ## In this section
 
@@ -35,9 +35,9 @@ Get started  |  Learn about the minimum requirements, validate licensing and com
 [Understand the portal](use.md) | Understand the Security operations, Secure Score, and Threat analytics dashboards as well as how to navigate the portal.
 Investigate and remediate threats | Investigate alerts, devices, and take response actions to remediate threats.
 API and SIEM support | Use the supported APIs to pull and create custom alerts, or automate workflows. Use the supported SIEM tools to pull alerts from Microsoft Defender Security Center.
-Reporting | Create and build Power BI reports using Microsoft Defender ATP data.
+Reporting | Create and build Power BI reports using Microsoft Defender for Endpoint data.
 Check service health and sensor state | Verify that the service is running and check the sensor state on devices.
 [Configure Microsoft Defender Security Center settings](preferences-setup.md) | Configure general settings, turn on the preview experience, notifications, and enable other features.
-[Access the Microsoft Defender ATP Community Center](community.md) | Access the Microsoft Defender ATP Community Center to learn, collaborate, and share experiences about the product.
-[Troubleshoot service issues](troubleshoot-mdatp.md) | This section addresses issues that might arise as you use the Microsoft Defender Advanced Threat service.
+[Access the Microsoft Defender for Endpoint Community Center](community.md) | Access the Microsoft Defender for Endpoint Community Center to learn, collaborate, and share experiences about the product.
+[Troubleshoot service issues](troubleshoot-mdatp.md) | This section addresses issues that might arise as you use the Microsoft Defender for Endpoint service.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
index 47fcaf8d7d..d73aa55b7b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts.md
@@ -25,7 +25,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Microsoft Threat Experts is a managed threat hunting service that provides Security Operation Centers (SOCs) with expert level monitoring and analysis to help them ensure that critical threats in their unique environments don’t get missed.
   
@@ -40,7 +40,7 @@ Watch this video for a quick overview of Microsoft Threat Experts.
 > [!NOTE]
 > Discuss the eligibility requirements with your Microsoft Technical Service provider and account team before you apply to the managed threat hunting service.
 
-Microsoft Defender ATP customers need to apply for the Microsoft Threat Experts managed threat hunting service to get proactive Targeted Attack Notifications and to collaborate with experts on demand. Experts on Demand is an add-on service. Targeted Attack Notifications are always included after you have been accepted into Microsoft Threat Experts managed threat hunting service.
+Microsoft Defender for Endpoint customers need to apply for the Microsoft Threat Experts managed threat hunting service to get proactive Targeted Attack Notifications and to collaborate with experts on demand. Experts on Demand is an add-on service. Targeted Attack Notifications are always included after you have been accepted into Microsoft Threat Experts managed threat hunting service.
 
 If you are not enrolled yet and would like to experience its benefits, go to **Settings** > **General** > **Advanced features** > **Microsoft Threat Experts** to apply. Once accepted, you will get the benefits of Targeted Attack Notifications, and start a  90-day trial of Experts on Demand. Contact your Microsoft representative to get a full Experts on-Demand subscription. See [Configure Microsoft Threat Experts capabilities](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-microsoft-threat-experts#before-you-begin) for details. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md b/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
index 308308a4d0..24527c0a89 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/migration-guides.md
@@ -29,8 +29,8 @@ If you're considering switching from a non-Microsoft threat protection solution
 
 |Scenario |Guidance |
 |:--|:--|
-|You do not have an endpoint protection solution yet, and you want to know more about how Microsoft Defender for Endpoint & Microsoft Defender Antivirus work.  |[Microsoft Defender ATP evaluation lab](evaluation-lab.md)   |
-|You have Microsoft Defender for Endpoint & Microsoft Defender Antivirus and need some help getting everything set up and configured.  |[Microsoft Defender Advanced Threat Protection deployment guide](deployment-phases.md)  |
+|You do not have an endpoint protection solution yet, and you want to know more about how Microsoft Defender for Endpoint & Microsoft Defender Antivirus work.  |[Microsoft Defender for Endpoint evaluation lab](evaluation-lab.md)   |
+|You have Microsoft Defender for Endpoint & Microsoft Defender Antivirus and need some help getting everything set up and configured.  |[Microsoft Defender for Endpoint deployment guide](deployment-phases.md)  |
 |You're planning to migrate from McAfee Endpoint Security (McAfee) to Microsoft Defender for Endpoint & Microsoft Defender Antivirus. |[Switch from McAfee to Microsoft Defender for Endpoint](mcafee-to-microsoft-defender-migration.md) |
 |You're planning to migrate from Symantec Endpoint Protection (Symantec) to Microsoft Defender for Endpoint & Microsoft Defender Antivirus. |[Switch from Symantec to Microsoft Defender for Endpoint](symantec-to-microsoft-defender-atp-migration.md) |
 |You're planning to migrate from a non-Microsoft endpoint protection solution (other than McAfee or Symantec) to Microsoft Defender for Endpoint & Microsoft Defender Antivirus. |[Make the switch to Microsoft Defender for Endpoint](switch-to-microsoft-defender-migration.md)   |
diff --git a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
index 0f05ee52c8..ac90bc5d2f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements.md
@@ -17,25 +17,25 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Minimum requirements for Microsoft Defender ATP
+# Minimum requirements for Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 There are some minimum requirements for onboarding devices to the service. Learn about the licensing, hardware and software requirements, and other configuration settings to onboard devices to the service.
 
-> Want to experience Microsoft Defender ATP? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-minreqs-abovefoldlink).
+> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-minreqs-abovefoldlink).
 
 
 > [!TIP]
-> - Learn about the latest enhancements in Microsoft Defender ATP: [Microsoft Defender Advanced Threat Protection Tech Community](https://techcommunity.microsoft.com/t5/Windows-Defender-Advanced-Threat/ct-p/WindowsDefenderAdvanced).
-> - Microsoft Defender ATP demonstrated industry-leading optics and detection capabilities in the recent MITRE evaluation. Read: [Insights from the MITRE ATT&CK-based evaluation](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/03/insights-from-the-mitre-attack-based-evaluation-of-windows-defender-atp/).
+> - Learn about the latest enhancements in Defender for Endpoint: [Defender for Endpoint Tech Community](https://techcommunity.microsoft.com/t5/Windows-Defender-Advanced-Threat/ct-p/WindowsDefenderAdvanced).
+> - Defender for Endpoint demonstrated industry-leading optics and detection capabilities in the recent MITRE evaluation. Read: [Insights from the MITRE ATT&CK-based evaluation](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/03/insights-from-the-mitre-attack-based-evaluation-of-windows-defender-atp/).
 
 ## Licensing requirements
-Microsoft Defender Advanced Threat Protection requires one of the following Microsoft Volume Licensing offers:
+Defender for Endpoint requires one of the following Microsoft Volume Licensing offers:
 
 - Windows 10 Enterprise E5
 - Windows 10 Education A5
@@ -44,18 +44,18 @@ Microsoft Defender Advanced Threat Protection requires one of the following Micr
 - Microsoft 365 A5 (M365 A5)
 
 > [!NOTE]
-> Eligible Licensed Users may use Microsoft Defender Advanced Threat Protection on up to five concurrent devices.
-> Microsoft Defender Advanced Threat Protection is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
+> Eligible Licensed Users may use Defender for Endpoint on up to five concurrent devices.
+> Defender for Endpoint is also available for purchase from a Cloud Solution Provider (CSP). When purchased via a CSP, it does not require Microsoft Volume Licensing offers listed.
 
 
 
-Microsoft Defender Advanced Threat Protection, on Windows Server, requires one of the following licensing options:
+Defender for Endpoint, on Windows Server, requires one of the following licensing options:
 
 - [Azure Security Center with Azure Defender enabled](https://docs.microsoft.com/azure/security-center/security-center-pricing)
-- Microsoft Defender ATP for Servers (one per covered server)
+- Defender for Endpoint for Servers (one per covered server)
 
 > [!NOTE]
-> Customers with a combined minimum of 50 licenses for one or more of the following may acquire Server SLs for Microsoft Defender Advanced Threat Protection for Servers (one per covered Server OSE): Microsoft Defender Advanced Threat Protection, Windows E5/A5, Microsoft 365 E5/A5 and Microsoft 365 E5 Security User SLs. This license applies to Microsoft Defender ATP for Linux.
+> Customers with a combined minimum of 50 licenses for one or more of the following may acquire Server SLs for Microsoft Defender Advanced Threat Protection for Servers (one per covered Server OSE): Defender for Endpoint, Windows E5/A5, Microsoft 365 E5/A5 and Microsoft 365 E5 Security User SLs. This license applies to Microsoft Defender for Endpoint for Linux.
 
 For detailed licensing information, see the [Product Terms site](https://www.microsoft.com/licensing/terms/) and work with your account team to learn the detailed terms and conditions for the product.
 
@@ -64,7 +64,7 @@ For more information on the array of features in Windows 10 editions, see [Compa
 For a detailed comparison table of Windows 10 commercial edition comparison, see the [comparison PDF](https://wfbdevicemanagementprod.blob.core.windows.net/windowsforbusiness/Windows10_CommercialEdition_Comparison.pdf).
 
 ## Browser requirements
-Access to Microsoft Defender ATP is done through a browser, supporting the following browsers:
+Access to Defender for Endpoint is done through a browser, supporting the following browsers:
 - Microsoft Edge
 - Internet Explorer version 11
 - Google Chrome
@@ -94,7 +94,7 @@ Access to Microsoft Defender ATP is done through a browser, supporting the follo
 
 Devices on your network must be running one of these editions.
 
-The hardware requirements for Microsoft Defender ATP on devices are the same for the supported editions.
+The hardware requirements for Defender for Endpoint on devices are the same for the supported editions.
 
 > [!NOTE]
 > Machines running mobile versions of Windows are not supported.
@@ -110,22 +110,22 @@ The hardware requirements for Microsoft Defender ATP on devices are the same for
 - macOS
 
 > [!NOTE]
-> You'll need to know the exact Linux distributions and versions of Android and macOS that are compatible with Microsoft Defender ATP for the integration to work.
+> You'll need to know the exact Linux distributions and versions of Android and macOS that are compatible with Defender for Endpoint for the integration to work.
 
 
 
 ### Network and data storage and configuration requirements
-When you run the onboarding wizard for the first time, you must choose where your Microsoft Defender Advanced Threat Protection-related information is stored: in the European Union, the United Kingdom, or the United States datacenter.
+When you run the onboarding wizard for the first time, you must choose where your Microsoft Defender Advanced Threat Protection-Defender for Endpoint related information is stored: in the European Union, the United Kingdom, or the United States datacenter.
 
 > [!NOTE]
 > - You cannot change your data storage location after the first-time setup.
-> - Review the [Microsoft Defender ATP data storage and privacy](data-storage-privacy.md) for more information on where and how Microsoft stores your data.
+> - Review the [Microsoft Defender for Endpoint data storage and privacy](data-storage-privacy.md) for more information on where and how Microsoft stores your data.
 
 
 ### Diagnostic data settings
 
 > [!NOTE]
-> Microsoft Defender ATP doesn't require any specific diagnostic level as long as it's enabled.
+> Defender for Endpoint doesn't require any specific diagnostic level as long as it's enabled.
 
 Make sure that the diagnostic data service is enabled on all the devices in your organization.
 By default, this service is enabled. It's good practice to check to ensure that you'll get sensor data from them.
@@ -176,7 +176,7 @@ You'll need to set the service to automatically start if the **START_TYPE** is n
 #### Internet connectivity
 Internet connectivity on devices is required either directly or through proxy.
 
-The Microsoft Defender ATP sensor can utilize a daily average bandwidth of 5 MB to communicate with the Microsoft Defender ATP cloud service and report cyber data. One-off activities such as file uploads and investigation package collection are not included in this daily average bandwidth.
+The Defender for Endpoint sensor can utilize a daily average bandwidth of 5 MB to communicate with the Defender for Endpoint cloud service and report cyber data. One-off activities such as file uploads and investigation package collection are not included in this daily average bandwidth.
 
 For more information on additional proxy configuration settings, see [Configure device proxy and Internet connectivity settings](configure-proxy-internet.md).
 
@@ -184,11 +184,11 @@ Before you onboard devices, the diagnostic data service must be enabled. The ser
 
 
 ## Microsoft Defender Antivirus configuration requirement
-The Microsoft Defender ATP agent depends on the ability of Microsoft Defender Antivirus to scan files and provide information about them.
+The Defender for Endpoint agent depends on the ability of Microsoft Defender Antivirus to scan files and provide information about them.
 
-Configure Security intelligence updates on the Microsoft Defender ATP devices whether Microsoft Defender Antivirus is the active antimalware or not. For more information, see [Manage Microsoft Defender Antivirus updates and apply baselines](../microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md).
+Configure Security intelligence updates on the Defender for Endpoint devices whether Microsoft Defender Antivirus is the active antimalware or not. For more information, see [Manage Microsoft Defender Antivirus updates and apply baselines](../microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md).
 
-When Microsoft Defender Antivirus is not the active antimalware in your organization and you use the Microsoft Defender ATP service, Microsoft Defender Antivirus goes on passive mode. 
+When Microsoft Defender Antivirus is not the active antimalware in your organization and you use the Defender for Endpoint service, Microsoft Defender Antivirus goes on passive mode. 
 
 If your organization has turned off Microsoft Defender Antivirus through group policy or other methods, devices that are onboarded must be excluded from this group policy.
 
@@ -201,7 +201,7 @@ If you are onboarding servers and Microsoft Defender Antivirus is not the active
 For more information, see [Microsoft Defender Antivirus compatibility](../microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md).
 
 ## Microsoft Defender Antivirus Early Launch Antimalware (ELAM) driver is enabled
-If you're running Microsoft Defender Antivirus as the primary antimalware product on your devices, the Microsoft Defender ATP agent will successfully onboard.
+If you're running Microsoft Defender Antivirus as the primary antimalware product on your devices, the Defender for Endpoint agent will successfully onboard.
 
 If you're running a third-party antimalware client and use Mobile Device Management solutions or Microsoft Endpoint Configuration Manager (current branch), you'll need to ensure that the Microsoft Defender Antivirus ELAM driver is enabled. For more information, see [Ensure that Microsoft Defender Antivirus is not disabled by policy](troubleshoot-onboarding.md#ensure-that-microsoft-defender-antivirus-is-not-disabled-by-a-policy).
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md b/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
index 36d7f8db37..c4a27275f1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mssp-list.md
@@ -21,12 +21,12 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Logo |Partner name   | Description 
 :---|:---|:---
 ![Image of BDO Digital logo](images/bdo-logo.png)| [BDO Digital](https://go.microsoft.com/fwlink/?linkid=2090394) | BDO Digital's Managed Defense leverages best practice tools, AI, and in-house security experts for 24/7/365 identity protection
-![Image of BlueVoyant logo](images/bluevoyant-logo.png)| [BlueVoyant](https://go.microsoft.com/fwlink/?linkid=2121401) | MDR for Microsoft Defender ATP provides support in monitoring, investigating, and mitigating advanced attacks on endpoints
+![Image of BlueVoyant logo](images/bluevoyant-logo.png)| [BlueVoyant](https://go.microsoft.com/fwlink/?linkid=2121401) | MDR for Defender for Endpoint provides support in monitoring, investigating, and mitigating advanced attacks on endpoints
 ![Image of Cloud Security Center logo](images/cloudsecuritycenter-logo.png)| [Cloud Security Center](https://go.microsoft.com/fwlink/?linkid=2099315) | InSpark's Cloud Security Center is a 24x7 managed service that delivers protect, detect & respond capabilities
 ![Image of Cloud SOC logo](images/cloudsoc-logo.png)| [Cloud SOC](https://go.microsoft.com/fwlink/?linkid=2104265) | Cloud SOC provides 24/7 security monitoring services based on Microsoft cloud and helps you to continuously improve your security posture
 ![Image of CSIS Managed Detection & Response logo](images/csis-logo.png)| [CSIS Managed Detection & Response](https://go.microsoft.com/fwlink/?linkid=2091005) | 24/7 monitoring and analysis of security alerts giving companies actionable insights into what, when and how security incidents have taken place
@@ -36,8 +36,8 @@ Logo |Partner name   | Description
 ![Image of Red Canary logo](images/redcanary-logo.png)| [Red Canary](https://go.microsoft.com/fwlink/?linkid=2103852) | Red Canary is a security operations partner for modern teams, MDR deployed in minutes
 ![Image of SecureWorks Managed Detection and Response Powered by Red Cloak logo](images/secureworks-logo.png)| [SecureWorks Managed Detection and Response Powered by Red Cloak](https://go.microsoft.com/fwlink/?linkid=2133634) | Secureworks combines threat intelligence and 20+ years of experience into SaaS and managed security solutions
 ![Image of sepagoSOC logo](images/sepago-logo.png)| [sepagoSOC](https://go.microsoft.com/fwlink/?linkid=2090491) | Ensure holistic security through sophisticated automated workflows in your zero trust environment
-![Image of Trustwave Threat Detection & Response Services logo](images/trustwave-logo.png)| [Trustwave Threat Detection & Response Services](https://go.microsoft.com/fwlink/?linkid=2127542) | Threat Detection and Response services for Azure leveraging integrations with Sentinel and Microsoft Defender ATP
-![Image of Wortell's cloud SOC logo](images/wortell-logo.png)| [Wortell's cloud SOC](https://go.microsoft.com/fwlink/?linkid=2108415) | 24x7 managed Microsoft Defender ATP service for monitoring & response
+![Image of Trustwave Threat Detection & Response Services logo](images/trustwave-logo.png)| [Trustwave Threat Detection & Response Services](https://go.microsoft.com/fwlink/?linkid=2127542) | Threat Detection and Response services for Azure leveraging integrations with Sentinel and Defender for Endpoint
+![Image of Wortell's cloud SOC logo](images/wortell-logo.png)| [Wortell's cloud SOC](https://go.microsoft.com/fwlink/?linkid=2108415) | 24x7 managed Defender for Endpoint service for monitoring & response
 ![Image of Zero Trust Analytics Platform (ZTAP) logo](images/ztap-logo.png)| [Zero Trust Analytics Platform (ZTAP)](https://go.microsoft.com/fwlink/?linkid=2090971) | Reduce your alerts by 99% and access a full range of security capabilities from mobile devices
 
 ## Related topics
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md b/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
index 6982d30ef4..e6d53ec221 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mssp-support.md
@@ -23,18 +23,18 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mssp-support-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mssp-support-abovefoldlink)
 
 
 Security is recognized as a key component in running an enterprise, however some organizations might not have the capacity or expertise to have a dedicated security operations team to manage the security of their endpoints and network, others may want to have a second set of eyes to review alerts in their network.
 
 
-To address this demand, managed security service providers (MSSP) offer to deliver managed detection and response (MDR) services on top of Microsoft Defender ATP. 
+To address this demand, managed security service providers (MSSP) offer to deliver managed detection and response (MDR) services on top of Defender for Endpoint. 
 
 
-Microsoft Defender ATP adds partnership opportunities for this scenario and allows MSSPs to take the following actions:
+Defender for Endpoint adds partnership opportunities for this scenario and allows MSSPs to take the following actions:
 
 - Get access to MSSP customer's Microsoft Defender Security Center portal
 - Get email notifications, and 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
index eec4470439..51421ea4a3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/network-protection.md
@@ -25,7 +25,7 @@ ms.custom: asr
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Network protection helps reduce the attack surface of your devices from Internet-based events. It prevents employees from using any application to access dangerous domains that may host phishing scams, exploits, and other malicious content on the Internet.
 
@@ -38,7 +38,7 @@ For more details about how to enable network protection, see [Enable network pro
 > [!TIP]
 > You can visit the Windows Defender Testground website at [demo.wd.microsoft.com](https://demo.wd.microsoft.com?ocid=cx-wddocs-testground) to confirm the feature is working and see how it works.
 
-Network protection works best with [Microsoft Defender Advanced Threat Protection](../microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md), which gives you detailed reporting into Windows Defender EG events and blocks as part of the usual [alert investigation scenarios](../microsoft-defender-atp/investigate-alerts.md).
+Network protection works best with [Microsoft Defender for Endpoint](../microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md), which gives you detailed reporting into Windows Defender EG events and blocks as part of the usual [alert investigation scenarios](../microsoft-defender-atp/investigate-alerts.md).
 
 When network protection blocks a connection, a notification will be displayed from the Action Center. You can [customize the notification](customize-attack-surface-reduction.md#customize-the-notification) with your company details and contact information. You can also enable the rules individually to customize what techniques the feature monitors.
 
@@ -52,11 +52,11 @@ Windows 10 version | Microsoft Defender Antivirus
 -|-
 Windows 10 version 1709 or later | [Microsoft Defender AV real-time protection](../microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md) and [cloud-delivered protection](../microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md) must be enabled
 
-## Review network protection events in the Microsoft Defender ATP Security Center
+## Review network protection events in the Microsoft Defender for Endpoint Security Center
 
-Microsoft Defender ATP provides detailed reporting into events and blocks as part of its [alert investigation scenarios](../microsoft-defender-atp/investigate-alerts.md).
+Microsoft Defender for Endpoint provides detailed reporting into events and blocks as part of its [alert investigation scenarios](../microsoft-defender-atp/investigate-alerts.md).
 
-You can query Microsoft Defender ATP data by using [Advanced hunting](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection). If you're using [audit mode](audit-windows-defender.md), you can use advanced hunting to see how network protection settings would affect your environment if they were enabled.
+You can query Microsoft Defender for Endpoint data by using [Advanced hunting](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection). If you're using [audit mode](audit-windows-defender.md), you can use advanced hunting to see how network protection settings would affect your environment if they were enabled.
 
 Here is an example query
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md b/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md
index 54a1538ebe..d0317cd1ba 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md
@@ -23,9 +23,9 @@ ms.topic: overview
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 Effectively identifying, assessing, and remediating endpoint weaknesses is pivotal in running a healthy security program and reducing organizational risk. Threat and vulnerability management serves as an infrastructure for reducing organizational exposure, hardening endpoint surface area, and increasing organizational resilience.
 
@@ -43,11 +43,11 @@ Vulnerability management is the first solution in the industry to bridge the gap
 
 ### Real-time discovery
 
-To discover endpoint vulnerabilities and misconfiguration, threat and vulnerability management uses the same agentless built-in Microsoft Defender ATP sensors to reduce cumbersome network scans and IT overhead.
+To discover endpoint vulnerabilities and misconfiguration, threat and vulnerability management uses the same agentless built-in Defender for Endpoint sensors to reduce cumbersome network scans and IT overhead.
 
 It also provides:
 
-- **Real-time device inventory** - Devices onboarded to Microsoft Defender ATP automatically report and push vulnerability and security configuration data to the dashboard.
+- **Real-time device inventory** - Devices onboarded to Defender for Endpoint automatically report and push vulnerability and security configuration data to the dashboard.
 - **Visibility into software and vulnerabilities** - Optics into the organization's software inventory, and software changes like installations, uninstalls, and patches. Newly discovered vulnerabilities are reported with actionable mitigation recommendations for 1st and 3rd party applications.
 - **Application runtime context** - Visibility on application usage patterns for better prioritization and decision-making.
 - **Configuration posture** - Visibility into organizational security configuration or misconfigurations. Issues are reported in the dashboard with actionable security recommendations.
@@ -79,7 +79,7 @@ Watch this video for a comprehensive walk-through of threat and vulnerability ma
 Area | Description
 :---|:---
 **Dashboard**   | Get a high-level view of the organization exposure score, Microsoft Secure Score for Devices, device exposure distribution, top security recommendations, top vulnerable software, top remediation activities, and top exposed device data.
-[**Security recommendations**](tvm-security-recommendation.md) | See the list of security recommendations and related threat information. When you select an item from the list, a flyout panel opens with vulnerability details, a link to open the software page, and remediation and exception options. You can also open a ticket in Intune if your devices are joined through Azure Active Directory and you've enabled your Intune connections in Microsoft Defender ATP.
+[**Security recommendations**](tvm-security-recommendation.md) | See the list of security recommendations and related threat information. When you select an item from the list, a flyout panel opens with vulnerability details, a link to open the software page, and remediation and exception options. You can also open a ticket in Intune if your devices are joined through Azure Active Directory and you've enabled your Intune connections in Defender for Endpoint.
 [**Remediation**](tvm-remediation.md) | See remediation activities you've created and recommendation exceptions.
 [**Software inventory**](tvm-software-inventory.md) | See the list of vulnerable software in your organization, along with weakness and threat information.
 [**Weaknesses**](tvm-weaknesses.md) | See the list of common vulnerabilities and exposures (CVEs) in your organization.
@@ -91,7 +91,7 @@ Run threat and vulnerability management-related API calls to automate vulnerabil
 
 See the following articles for related APIs:
 
-- [Supported Microsoft Defender ATP APIs](exposed-apis-list.md)
+- [Supported Microsoft Defender for Endpoint APIs](exposed-apis-list.md)
 - [Machine APIs](machine.md)
 - [Recommendation APIs](vulnerability.md)
 - [Score APIs](score.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
index 2de422a306..928c6f6e42 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
@@ -18,12 +18,12 @@ ms.collection:
 ms.topic: article
 ---
 
-# Microsoft Defender ATP for non-Windows platforms
+# Microsoft Defender for Endpoint for non-Windows platforms
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 Microsoft has been on a journey to extend its industry leading endpoint security
@@ -36,44 +36,44 @@ have committed to building security solutions not just *for* Microsoft, but also
 heterogenous environments. We're listening to customer feedback and partnering
 closely with our customers to build solutions that meet their needs.
 
-With Microsoft Defender ATP, customers benefit from a unified view of all
+With Defender for Endpoint, customers benefit from a unified view of all
 threats and alerts in the Microsoft Defender Security Center, across Windows and
 non-Windows platforms, enabling them to get a full picture of what's happening
 in their environment, which empowers them to more quickly assess and respond to
 threats.
 
-## Microsoft Defender ATP for Mac 
+## Microsoft Defender for Endpoint for Mac 
 
-Microsoft Defender ATP for Mac offers AV and EDR capabilities for the three
+Microsoft Defender for Endpoint for Mac offers AV and EDR capabilities for the three
 latest released versions of macOS. Customers can deploy and manage the solution
 through Microsoft Endpoint Manager and Jamf. Just like with Microsoft Office
 applications on macOS, Microsoft Auto Update is used to manage Microsoft
-Defender ATP for Mac updates. For information about the key features and
+Defender for Endpoint for Mac updates. For information about the key features and
 benefits, read our
 [announcements](https://techcommunity.microsoft.com/t5/microsoft-defender-atp/bg-p/MicrosoftDefenderATPBlog/label-name/macOS).
 
-For more details on how to get started, visit the Microsoft Defender ATP for Mac
+For more details on how to get started, visit the Defender for Endpoint for Mac
 [documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac).
 
-## Microsoft Defender ATP for Linux
+## Microsoft Defender for Endpoint for Linux
 
-Microsoft Defender ATP for Linux offers preventative (AV) capabilities for Linux
+Microsoft Defender for Endpoint for Linux offers preventative (AV) capabilities for Linux
 servers. This includes a full command line experience to configure and manage
 the agent, initiate scans, and manage threats. We support recent versions of the
 six most common Linux Server distributions: RHEL 7.2+, CentOS Linux 7.2+, Ubuntu
 16 LTS, or higher LTS, SLES 12+, Debian 9+, and Oracle Linux 7.2. Microsoft
-Defender ATP for Linux can be deployed and configured using Puppet, Ansible, or
+Defender for Endpoint for Linux can be deployed and configured using Puppet, Ansible, or
 using your existing Linux configuration management tool. For information about
 the key features and benefits, read our
 [announcements](https://techcommunity.microsoft.com/t5/microsoft-defender-atp/bg-p/MicrosoftDefenderATPBlog/label-name/Linux).
 
-For more details on how to get started, visit the Microsoft Defender ATP for
+For more details on how to get started, visit the Microsoft Defender for Endpoint for
 Linux
 [documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux).
 
-## Microsoft Defender ATP for Android
+## Microsoft Defender for Endpoint for Android
 
-Microsoft Defender ATP for Android is our mobile threat defense solution for
+Microsoft Defender for Endpoint for Android is our mobile threat defense solution for
 devices running Android 6.0 and higher. Both Android Enterprise (Work Profile)
 and Device Administrator modes are supported. On Android, we offer web
 protection, which includes anti-phishing, blocking of unsafe connections, and
@@ -83,7 +83,7 @@ through integration with Microsoft Endpoint Manager and Conditional Access. For
 information about the key features and benefits, read our
 [announcements](https://techcommunity.microsoft.com/t5/microsoft-defender-atp/bg-p/MicrosoftDefenderATPBlog/label-name/Android).
 
-For more details on how to get started, visit the Microsoft Defender ATP for
+For more details on how to get started, visit the Microsoft Defender for Endpoint for
 Android
 [documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-android).
 
@@ -91,19 +91,19 @@ Android
 
 ## Licensing requirements 
 
-Eligible Licensed Users may use Microsoft Defender ATP on up to five concurrent
-devices. Microsoft Defender ATP is also available for purchase from a Cloud
+Eligible Licensed Users may use Microsoft Defender for Endpoint on up to five concurrent
+devices. Microsoft Defender for Endpoint is also available for purchase from a Cloud
 Solution Provider (CSP).
 
-Customers can obtain Microsoft Defender ATP for Mac through a standalone
-Microsoft Defender ATP license, as part of Microsoft 365 A5/E5, or Microsoft 365
+Customers can obtain Microsoft Defender for Endpoint for Mac through a standalone
+MDefender for Endpoint license, as part of Microsoft 365 A5/E5, or Microsoft 365
 Security.
 
-Recently announced capabilities of Microsoft Defender ATP for Android and soon
+Recently announced capabilities of Microsoft Defender for Endpoint for Android and soon
 iOS are included in the above mentioned offers as part of the five qualified
 devices for eligible licensed users.
 
-Microsoft Defender ATP for Linux is available through the Microsoft Defender ATP
+ Defender for Endpoint for Linux is available through the Defender for Endpoint
 for Server SKU that is available for both commercial and education customers.
 
 Please contact your account team or CSP for pricing and additional eligibility
diff --git a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
index 19496bd97c..8cc6f7bed9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
@@ -21,13 +21,13 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
-Offboard device from Microsoft Defender ATP.
+Offboard device from Defender for Endpoint.
 
 
 ## Limitations
@@ -41,7 +41,7 @@ Offboard device from Microsoft Defender ATP.
 > This API is not supported on MacOS or Linux devices.
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md b/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md
index 7d9a09d143..3eb9642bf4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/offboard-machines.md
@@ -17,7 +17,7 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Offboard devices from the Microsoft Defender ATP service
+# Offboard devices from the Microsoft Defender for Endpoint service
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -27,10 +27,10 @@ ms.topic: conceptual
 - Linux
 - Windows Server 2012 R2
 - Windows Server 2016
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-offboarddevices-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-offboarddevices-abovefoldlink)
 
 Follow the corresponding instructions depending on your preferred deployment method.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md
index dab5b79f99..1a625303aa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md
@@ -17,24 +17,24 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Onboard devices to the Microsoft Defender ATP service
+# Onboard devices to the Microsoft Defender for Endpoint service
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-onboardconfigure-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-onboardconfigure-abovefoldlink)
 
-You'll need to go the onboarding section of the Microsoft Defender ATP portal to onboard any of the supported devices. Depending on the device, you'll be guided with appropriate steps and provided management and deployment tool options suitable for the device. 
+You'll need to go the onboarding section of the Defender for Endpoint portal to onboard any of the supported devices. Depending on the device, you'll be guided with appropriate steps and provided management and deployment tool options suitable for the device. 
 
 In general, to onboard devices to the service:
 
 - Verify that the device fulfills the [minimum requirements](minimum-requirements.md)
-- Depending on the device, follow the configuration steps provided in the onboarding section of the Microsoft Defender ATP portal
+- Depending on the device, follow the configuration steps provided in the onboarding section of the Defender for Endpoint portal
 - Use the appropriate management tool and deployment method for your devices
 - Run a detection test to verify that the devices are properly onboarded and reporting to the service
 
@@ -57,15 +57,15 @@ The following table lists the available tools based on the endpoint that you nee
 ## In this section
 Topic | Description
 :---|:---
-[Onboard previous versions of Windows](onboard-downlevel.md)| Onboard Windows 7 and Windows 8.1 devices to Microsoft Defender ATP. 
-[Onboard Windows 10 devices](configure-endpoints.md) | You'll need to onboard devices for it to report to the Microsoft Defender ATP service. Learn about the tools and methods you can use to configure devices in your enterprise.
-[Onboard servers](configure-server-endpoints.md) |  Onboard Windows Server 2012 R2 and Windows Server 2016 to Microsoft Defender ATP 
-[Onboard non-Windows devices](configure-endpoints-non-windows.md) | Microsoft Defender ATP provides a centralized security operations experience for Windows as well as non-Windows platforms. You'll be able to see alerts from various supported operating systems (OS) in Microsoft Defender Security Center and better protect your organization's network. This experience leverages on a third-party security products' sensor data. 
-[Run a detection test on a newly onboarded device](run-detection-test.md) | Run a script on a newly onboarded device to verify that it is properly reporting to the Microsoft Defender ATP service.
-[Configure proxy and Internet settings](configure-proxy-internet.md)| Enable communication with the Microsoft Defender ATP cloud service by configuring the proxy and Internet connectivity settings.
+[Onboard previous versions of Windows](onboard-downlevel.md)| Onboard Windows 7 and Windows 8.1 devices to Defender for Endpoint. 
+[Onboard Windows 10 devices](configure-endpoints.md) | You'll need to onboard devices for it to report to the Defender for Endpoint service. Learn about the tools and methods you can use to configure devices in your enterprise.
+[Onboard servers](configure-server-endpoints.md) |  Onboard Windows Server 2012 R2 and Windows Server 2016 to Defender for Endpoint 
+[Onboard non-Windows devices](configure-endpoints-non-windows.md) | Defender for Endpoint provides a centralized security operations experience for Windows as well as non-Windows platforms. You'll be able to see alerts from various supported operating systems (OS) in Microsoft Defender Security Center and better protect your organization's network. This experience leverages on a third-party security products' sensor data. 
+[Run a detection test on a newly onboarded device](run-detection-test.md) | Run a script on a newly onboarded device to verify that it is properly reporting to the Defender for Endpoint service.
+[Configure proxy and Internet settings](configure-proxy-internet.md)| Enable communication with the Defender for Endpoint cloud service by configuring the proxy and Internet connectivity settings.
 [Troubleshoot onboarding issues](troubleshoot-onboarding.md) | Learn about resolving issues that might arise during onboarding.
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-onboardconfigure-belowfoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-onboardconfigure-belowfoldlink)
 
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
index ca403709b0..f99a9fbab3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel.md
@@ -28,32 +28,32 @@ ms.topic: article
 - Windows 7 SP1 Pro
 - Windows 8.1 Pro
 - Windows 8.1 Enterprise
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-downlevel-abovefoldlink).
+>Want to experience Defender for Endpoint? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-downlevel-abovefoldlink).
 
-Microsoft Defender ATP extends support to include down-level operating systems, providing advanced attack detection and investigation capabilities on supported Windows versions.
+Defender for Endpoint extends support to include down-level operating systems, providing advanced attack detection and investigation capabilities on supported Windows versions.
 
-To onboard down-level Windows client endpoints to Microsoft Defender ATP, you'll need to:
+To onboard down-level Windows client endpoints to Defender for Endpoint, you'll need to:
 - Configure and update System Center Endpoint Protection clients.
-- Install and configure Microsoft Monitoring Agent (MMA) to report sensor data to Microsoft Defender ATP as instructed below.
+- Install and configure Microsoft Monitoring Agent (MMA) to report sensor data to Defender for Endpoint as instructed below.
 
 > [!TIP]
-> After onboarding the device, you can choose to run a detection test to verify that it is properly onboarded to the service. For more information, see [Run a detection test on a newly onboarded Microsoft Defender ATP endpoint](run-detection-test.md).
+> After onboarding the device, you can choose to run a detection test to verify that it is properly onboarded to the service. For more information, see [Run a detection test on a newly onboarded Defender for Endpoint endpoint](run-detection-test.md).
 
 ## Configure and update System Center Endpoint Protection clients
 > [!IMPORTANT]
 > This step is required only if your organization uses System Center Endpoint Protection (SCEP).
 
-Microsoft Defender ATP integrates with System Center Endpoint Protection to provide visibility to malware detections and to stop propagation of an attack in your organization by banning potentially malicious files or suspected malware. 
+Defender for Endpoint integrates with System Center Endpoint Protection to provide visibility to malware detections and to stop propagation of an attack in your organization by banning potentially malicious files or suspected malware. 
 
 The following steps are required to enable this integration: 
 - Install the [January 2017 anti-malware platform update for Endpoint Protection clients](https://support.microsoft.com/help/3209361/january-2017-anti-malware-platform-update-for-endpoint-protection-clie) 
 - Configure the SCEP client Cloud Protection Service membership to the **Advanced** setting
 - Configure your network to allow connections to the Microsoft Defender Antivirus cloud. For more information, see [Allow connections to the Microsoft Defender Antivirus cloud](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus#allow-connections-to-the-microsoft-defender-antivirus-cloud)
 
-## Install and configure Microsoft Monitoring Agent (MMA) to report sensor data to Microsoft Defender ATP
+## Install and configure Microsoft Monitoring Agent (MMA) to report sensor data to Microsoft Defender for Endpoint
 
 ### Before you begin
 Review the following details to verify minimum system requirements:
@@ -77,7 +77,7 @@ Review the following details to verify minimum system requirements:
 1. Download the agent setup file: [Windows 64-bit agent](https://go.microsoft.com/fwlink/?LinkId=828603) or [Windows 32-bit agent](https://go.microsoft.com/fwlink/?LinkId=828604).
 
 2. Obtain the workspace ID:
-   - In the Microsoft Defender ATP navigation pane, select **Settings > Device management > Onboarding**
+   - In the Defender for Endpoint navigation pane, select **Settings > Device management > Onboarding**
    - Select **Windows 7 SP1 and 8.1** as the operating system
    - Copy the workspace ID and workspace key
 
@@ -93,10 +93,10 @@ Once completed, you should see onboarded endpoints in the portal within an hour.
 ### Configure proxy and Internet connectivity settings
  
 - Each Windows endpoint must be able to connect to the Internet using HTTPS. This connection can be direct, using a proxy, or through the [OMS Gateway](https://docs.microsoft.com/azure/log-analytics/log-analytics-oms-gateway).
-- If a proxy or firewall is blocking all traffic by default and allowing only specific domains through or HTTPS scanning (SSL inspection) is enabled, make sure that you [enable access to Microsoft Defender ATP service URLs](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#enable-access-to-microsoft-defender-atp-service-urls-in-the-proxy-server).
+- If a proxy or firewall is blocking all traffic by default and allowing only specific domains through or HTTPS scanning (SSL inspection) is enabled, make sure that you [enable access to Defender for Endpoint service URLs](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#enable-access-to-microsoft-defender-atp-service-urls-in-the-proxy-server).
 
 ## Offboard client endpoints
-To offboard, you can uninstall the MMA agent from the endpoint or detach it from reporting to your Microsoft Defender ATP workspace. After offboarding the agent, the endpoint will no longer send sensor data to Microsoft Defender ATP. 
+To offboard, you can uninstall the MMA agent from the endpoint or detach it from reporting to your Defender for Endpoint workspace. After offboarding the agent, the endpoint will no longer send sensor data to Defender for Endpoint. 
 
-> Want to experience Microsoft Defender ATP? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-downlevele-belowfoldlink).
+> Want to experience Defender for Endpoint? [Sign up for a free trial](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-downlevele-belowfoldlink).
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
index 41098d9b2e..e3aea210fc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md
@@ -18,7 +18,7 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Onboard devices without Internet access to Microsoft Defender ATP 
+# Onboard devices without Internet access to Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -47,25 +47,25 @@ For more information about onboarding methods, see the following articles:
 
 - Setup Azure Log Analytics (formerly known as OMS Gateway) to act as proxy or hub:
   - [Azure Log Analytics Agent](https://docs.microsoft.com/azure/azure-monitor/platform/gateway#download-the-log-analytics-gateway)
-  - [Install and configure Microsoft Monitoring Agent (MMA)](configure-server-endpoints.md#install-and-configure-microsoft-monitoring-agent-mma-to-report-sensor-data-to-microsoft-defender-for-endpoint) point to Microsoft Defender ATP Workspace key & ID
+  - [Install and configure Microsoft Monitoring Agent (MMA)](configure-server-endpoints.md#install-and-configure-microsoft-monitoring-agent-mma-to-report-sensor-data-to-microsoft-defender-for-endpoint) point to Defender for Endpoint Workspace key & ID
 
 - Offline devices in the same network of Azure Log Analytics
   -  Configure MMA to point to:
      - Azure Log Analytics IP as a proxy
-     - Microsoft Defender ATP workspace key & ID
+     - Defender for Endpoint workspace key & ID
 
 ## Azure virtual machines
 - Configure and enable [Azure Log Analytics workspace](https://docs.microsoft.com/azure/azure-monitor/platform/gateway)
 
     - Setup Azure Log Analytics Gateway (formerly known as OMS Gateway) to act as proxy or hub:
       - [Azure Log Analytics Gateway](https://docs.microsoft.com/azure/azure-monitor/platform/gateway#download-the-log-analytics-gateway)
-      - [Install and configure Microsoft Monitoring Agent (MMA)](configure-server-endpoints.md#install-and-configure-microsoft-monitoring-agent-mma-to-report-sensor-data-to-microsoft-defender-for-endpoint) point to Microsoft Defender ATP Workspace key & ID
+      - [Install and configure Microsoft Monitoring Agent (MMA)](configure-server-endpoints.md#install-and-configure-microsoft-monitoring-agent-mma-to-report-sensor-data-to-microsoft-defender-for-endpoint) point to Defender for Endpoint Workspace key & ID
     - Offline Azure VMs in the same network of OMS Gateway
       - Configure Azure Log Analytics IP as a proxy
       - Azure Log Analytics Workspace Key & ID
 
     - Azure Security Center (ASC)
       - [Security Policy \> Log Analytics Workspace](https://docs.microsoft.com/azure/security-center/security-center-wdatp#enable-windows-defender-atp-integration)
-      - [Threat Detection \> Allow Microsoft Defender ATP to access my data](https://docs.microsoft.com/azure/security-center/security-center-wdatp#enable-windows-defender-atp-integration)
+      - [Threat Detection \> Allow Defender for Endpoint to access my data](https://docs.microsoft.com/azure/security-center/security-center-wdatp#enable-windows-defender-atp-integration)
 
         For more information, see [Working with security policies](https://docs.microsoft.com/azure/security-center/tutorial-security-policy).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard.md b/windows/security/threat-protection/microsoft-defender-atp/onboard.md
index 78edeae3ef..d35f1668f8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard.md
@@ -18,15 +18,15 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Configure and manage Microsoft Defender ATP capabilities
+# Configure and manage Microsoft Defender for Endpoint capabilities
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Configure and manage all the Microsoft Defender ATP capabilities to get the best security protection for your organization. 
+Configure and manage all the Defender for Endpoint capabilities to get the best security protection for your organization. 
 
 
 ## In this section 
@@ -35,7 +35,7 @@ Topic | Description
 [Configure attack surface reduction capabilities](configure-attack-surface-reduction.md) |  By ensuring configuration settings are properly set and exploit mitigation techniques are applied, these set of capabilities resist attacks and exploitation. 
 [Configure next-generation protection](../microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md) | Configure next-generation protection to catch all types of emerging threats.
 [Configure Microsoft Threat Experts capabilities](configure-microsoft-threat-experts.md) | Configure and manage how you would like to get cybersecurity threat intelligence from Microsoft Threat Experts.
-[Configure Microsoft Threat Protection integration](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration)| Configure other solutions that integrate with Microsoft Defender ATP.
+[Configure Microsoft Threat Protection integration](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration)| Configure other solutions that integrate with Defender for Endpoint.
 [Management and API support](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/management-apis)| Pull alerts to your SIEM or use APIs to create custom alerts. Create and build Power BI reports. 
 [Configure Microsoft Defender Security Center settings](preferences-setup.md) |  Configure portal-related settings such as general settings, advanced features, enable the preview experience and others.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
index 7435ab66b6..3098a40473 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-configuration-manager.md
@@ -24,11 +24,11 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 This article is part of the Deployment guide and acts as an example onboarding method that guides users in:
 - Step 1: Onboarding Windows devices to the service 
-- Step 2: Configuring Microsoft Defender ATP capabilities
+- Step 2: Configuring Defender for Endpoint capabilities
 
 This onboarding guidance will walk you through the following basic steps that you need to take when using Microsoft Endpoint Configuration Manager:
 - **Creating a collection in Microsoft Endpoint Configuration Manager**
@@ -37,7 +37,7 @@ This onboarding guidance will walk you through the following basic steps that yo
 >[!NOTE]
 >Only Windows devices are covered in this example deployment. 
 
-While Microsoft Defender ATP supports onboarding of various endpoints and tools, this article does not cover them. 
+While Defender for Endpoint supports onboarding of various endpoints and tools, this article does not cover them. 
 
 For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
 
@@ -100,7 +100,7 @@ Follow the steps below to onboard endpoints using Microsoft Endpoint Configurati
 After completing this task, you now have a device collection with all the Windows 10 endpoints in the environment. 
 
 
-## Step 2: Configure Microsoft Defender ATP capabilities 
+## Step 2: Configure Microsoft Defender for Endpoint capabilities 
 This section guides you in configuring the following capabilities using Microsoft Endpoint Configuration Manager on Windows devices:
 
 - [**Endpoint detection and response**](#endpoint-detection-and-response)
@@ -120,11 +120,11 @@ Manager and deploy that policy to Windows 10 devices.
 
 2. Under Deployment method select the supported version of **Microsoft Endpoint Configuration Manager**.
 
-    ![Image of Microsoft Defender ATP onboarding wizard](images/mdatp-onboarding-wizard.png)
+    ![Image of Microsoft Defender for Endpoint onboarding wizard](images/mdatp-onboarding-wizard.png)
 
 3. Select **Download package**.
 
-    ![Image of Microsoft Defender ATP onboarding wizard](images/mdatp-download-package.png)
+    ![Image of Microsoft Defender for Endpoint onboarding wizard](images/mdatp-download-package.png)
 
 4. Save the package to an accessible location.
 5. In  Microsoft Endpoint Configuration Manager, navigate to: **Assets and Compliance > Overview > Endpoint Protection > Microsoft Defender ATP Policies**.
@@ -156,7 +156,7 @@ Manager and deploy that policy to Windows 10 devices.
 
 15. Click **Close** when the Wizard completes.
 
-16.  In the Microsoft Endpoint Configuration Manager console, right-click the Microsoft Defender ATP policy you just created and select **Deploy**.
+16.  In the Microsoft Endpoint Configuration Manager console, right-click the Defender for Endpoint policy you just created and select **Deploy**.
 
      ![Image of configuration settings](images/configmgr-deploy.png)
 
@@ -166,7 +166,7 @@ Manager and deploy that policy to Windows 10 devices.
 
 
 #### Previous versions of Windows Client (Windows 7 and Windows 8.1)
-Follow the steps below to identify the Microsoft Defender ATP Workspace ID and Workspace Key, that will be required for the onboarding of previous versions of Windows.
+Follow the steps below to identify the Defender for Endpoint Workspace ID and Workspace Key, that will be required for the onboarding of previous versions of Windows.
 
 1. From a Microsoft Defender Security Center Portal, select **Settings > Onboarding**.
 
@@ -264,7 +264,7 @@ After completing this task, you now have successfully configured Windows
 Defender Antivirus.
 
 ### Attack surface reduction
-The attack surface reduction pillar of Microsoft Defender ATP includes the feature set that is available under Exploit Guard. Attack surface reduction (ASR) rules, Controlled Folder Access, Network Protection and Exploit
+The attack surface reduction pillar of Defender for Endpoint includes the feature set that is available under Exploit Guard. Attack surface reduction (ASR) rules, Controlled Folder Access, Network Protection and Exploit
 Protection. 
 
 All these features provide an audit mode and a block mode. In audit mode there is no end-user impact. All it does is collect additional telemetry and make it available in the Microsoft Defender Security Center. The goal with a deployment is to step-by-step move security controls into block mode.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
index 29548856da..f1112b1d8d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
@@ -24,14 +24,14 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
 
 This article is part of the Deployment guide and acts as an example onboarding method that guides users in:
 - Step 1: Onboarding devices to the service by creating a group in Microsoft Endpoint Manager (MEM) to assign configurations on
-- Step 2: Configuring Microsoft Defender ATP capabilities using Microsoft Endpoint Manager
+- Step 2: Configuring Defender for Endpoint capabilities using Microsoft Endpoint Manager
 
 This onboarding guidance will walk you through the following basic steps that you need to take when using Microsoft Endpoint Manager:
 
@@ -43,7 +43,7 @@ This onboarding guidance will walk you through the following basic steps that yo
 
     -   In Microsoft Endpoint Manager, we'll guide you in creating a separate policy for each capability.
 
-While Microsoft Defender ATP supports onboarding of various endpoints and tools, this article does not cover them. 
+While Defender for Endpoint supports onboarding of various endpoints and tools, this article does not cover them. 
 
 For information on general onboarding using other supported deployment tools and methods, see [Onboarding overview](onboarding.md).
 
@@ -100,11 +100,11 @@ needs.<br>
 
 8.  Your testing group now has a member to test.
 
-## Step 2: Create configuration policies to configure Microsoft Defender ATP capabilities
+## Step 2: Create configuration policies to configure Microsoft Defender for Endpoint capabilities
 In the following section, you'll create a number of configuration policies.
 
 First is a configuration policy to select which groups of users or devices will
-be onboarded to Microsoft Defender ATP. 
+be onboarded to Defender for Endpoint. 
 
 Then you will continue by creating several
 different types of endpoint security policies.
@@ -137,9 +137,9 @@ different types of endpoint security policies.
     > ![Image of Microsoft Endpoint Manager portal](images/cea7e288b5d42a9baf1aef0754ade910.png)
 
     > [!NOTE]
-    > In this instance, this has been auto populated as Microsoft Defender ATP has already been integrated with Intune. For more information on the integration, see [Enable Microsoft Defender ATP in Intune](https://docs.microsoft.com/mem/intune/protect/advanced-threat-protection-configure#to-enable-microsoft-defender-atp).
+    > In this instance, this has been auto populated as Defender for Endpoint has already been integrated with Intune. For more information on the integration, see [Enable Microsoft Defender for Endpoint in Intune](https://docs.microsoft.com/mem/intune/protect/advanced-threat-protection-configure#to-enable-microsoft-defender-atp).
     > 
-    > The following image is an example of what you'll see when Microsoft Defender ATP is NOT integrated with Intune:
+    > The following image is an example of what you'll see when Microsoft Defender for Endpoint is NOT integrated with Intune:
     >
     > ![Image of Microsoft Endpoint Manager portal](images/2466460812371ffae2d19a10c347d6f4.png)
 
@@ -350,13 +350,13 @@ To confirm that the configuration policy has been applied to your test device, f
 ### Endpoint detection and response
 
 
-1.  Before applying the configuration, the Microsoft Defender ATP
+1.  Before applying the configuration, the Defender for Endpoint
     Protection service should not be started.
 
     > [!div class="mx-imgBorder"]
     > [ ![Image of Services panel](images/b418a232a12b3d0a65fc98248dbb0e31.png) ](images/b418a232a12b3d0a65fc98248dbb0e31.png#lightbox)
 
-2.  After the configuration has been applied, the Microsoft Defender ATP
+2.  After the configuration has been applied, the Defender for Endpoint
     Protection Service should be started.
 
     > [!div class="mx-imgBorder"]
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
index 30c80bb608..ff6119eee4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-notification.md
@@ -23,7 +23,7 @@ ms.topic: article
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Create a notification rule so that when a local onboarding or offboardiing script is used, you'll be notified. 
 
@@ -48,7 +48,7 @@ You'll need to have access to:
 
     ![Image of the notification flow](images/build-flow.png)
 
-4. Select the + button to add a new action. The new action will be an HTTP request to the Microsoft Defender ATP security center device(s) API. You can also replace it with the out-of-the-box "WDATP Connector" (action: "Machines - Get list of machines"). 
+4. Select the + button to add a new action. The new action will be an HTTP request to the Defender for Endpoint security center device(s) API. You can also replace it with the out-of-the-box "WDATP Connector" (action: "Machines - Get list of machines"). 
 
     ![Image of recurrence and add action](images/recurrence-add.png)
 
@@ -164,7 +164,7 @@ You'll need to have access to:
 
 10.  Extract the values from the JSON call and check if the onboarded device(s) is / are already registered at the SharePoint list as an example:
 - If yes, no notification will be triggered
-- If no, will register the new onboarded device(s) in the SharePoint list and a notification will be sent to the Microsoft Defender ATP admin
+- If no, will register the new onboarded device(s) in the SharePoint list and a notification will be sent to the Defender for Endpoint admin
 
     ![Image of apply to each](images/flow-apply.png)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
index f26781b856..f79266bf23 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
@@ -19,32 +19,32 @@ ms.collection:
 ms.topic: article
 ---
 
-# Onboard to the Microsoft Defender ATP service
+# Onboard to the Microsoft Defender for Endpoint service
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
-Deploying Microsoft Defender ATP is a three-phase process:
+Deploying Defender for Endpoint is a three-phase process:
 
 <br>
 <table border="0" width="100%" align="center">
   <tr style="text-align:center;">
     <td align="center" style="width:25%; border:0;" >
       <a href= "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment"> 
-        <img src="images/prepare.png" alt="Prepare to deploy Microsoft Defender ATP" title="Prepare" />
+        <img src="images/prepare.png" alt="Prepare to deploy Defender for Endpoint" title="Prepare" />
       <br/>Phase 1: Prepare </a><br>
     </td>
      <td align="center">
       <a href="https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/production-deployment">
-        <img src="images/setup.png" alt="Setup the Microsoft Defender ATP service" title="Setup" />
+        <img src="images/setup.png" alt="Setup the Defender for Endpoint service" title="Setup" />
       <br/>Phase 2: Set up </a><br>
     </td>
     <td align="center" bgcolor="#d5f5e3">
       <a href="https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboarding">
-        <img src="images/onboard.png" alt="Onboard diagram" title="Onboard to the Microsoft Defender ATP service" />
+        <img src="images/onboard.png" alt="Onboard diagram" title="Onboard to the Defender for Endpoint service" />
       <br/>Phase 3: Onboard </a><br>
 </td>
 
@@ -54,13 +54,13 @@ Deploying Microsoft Defender ATP is a three-phase process:
 
 You are currently in the onboarding phase.
 
-These are the steps you need to take to deploy Microsoft Defender ATP:
+These are the steps you need to take to deploy Defender for Endpoint:
 
 - Step 1: Onboard endpoints to the service 
 - Step 2: Configure capabilities 
 
 ## Step 1: Onboard endpoints using any of the supported management tools
-The [Plan deployment](deployment-strategy.md) topic outlines the general steps you need to take to deploy Microsoft Defender ATP.  
+The [Plan deployment](deployment-strategy.md) topic outlines the general steps you need to take to deploy Defender for Endpoint.  
 
 After identifying your architecture, you'll need to decide which deployment method to use. The deployment tool you choose influences how you onboard endpoints to the service. 
 
@@ -88,7 +88,7 @@ The tools in the example deployments are:
 - [Onboarding using Microsoft Endpoint Configuration Manager](onboarding-endpoint-configuration-manager.md)
 - [Onboarding using Microsoft Endpoint Manager](onboarding-endpoint-manager.md)
 
-Using the mentioned deployment tools above, you'll then be guided in configuring the following Microsoft Defender ATP capabilities:
+Using the mentioned deployment tools above, you'll then be guided in configuring the following Defender for Endpoint capabilities:
 - Endpoint detection and response configuration
 - Next-generation protection configuration
 - Attack surface reduction configuration
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md b/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md
index 6af7ba9c0f..6f7a10acf3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-attack-surface-reduction.md
@@ -26,7 +26,7 @@ ms.topic: conceptual
 
 **Applies to:**
 
-* [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+* [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Help reduce your attack surfaces, by minimizing the places where your organization is vulnerable to cyberthreats and attacks. Use the following resources to configure protection for the devices and applications in your organization.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md b/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
index 0f3c036938..f79f0792f3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
@@ -25,15 +25,15 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Microsoft Defender ATP endpoint detection and response capabilities provide advanced attack detections that are near real-time and actionable. Security analysts can prioritize alerts effectively, gain visibility into the full scope of a breach, and take response actions to remediate threats.
+Defender for Endpoint endpoint detection and response capabilities provide advanced attack detections that are near real-time and actionable. Security analysts can prioritize alerts effectively, gain visibility into the full scope of a breach, and take response actions to remediate threats.
 
 When a threat is detected, alerts are created in the system for an analyst to investigate. Alerts with the same attack techniques or attributed to the same attacker are aggregated into an entity called an _incident_. Aggregating alerts in this manner makes it easy for analysts to collectively investigate and respond to threats.
 
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4o1j5]
 
-Inspired by the "assume breach" mindset, Microsoft Defender ATP continuously collects behavioral cyber telemetry. This includes process information, network activities, deep optics into the kernel and memory manager, user login activities, registry and file system changes, and others. The information is stored for six months, enabling an analyst to travel back in time to the start of an attack. The analyst can then pivot in various views and approach an investigation through multiple vectors.
+Inspired by the "assume breach" mindset, Defender for Endpoint continuously collects behavioral cyber telemetry. This includes process information, network activities, deep optics into the kernel and memory manager, user login activities, registry and file system changes, and others. The information is stored for six months, enabling an analyst to travel back in time to the start of an attack. The analyst can then pivot in various views and approach an investigation through multiple vectors.
 
 The response capabilities give you the power to promptly remediate threats by acting on the affected entities.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md b/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md
index 8b32269fe0..c1705995b8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-hardware-based-isolation.md
@@ -22,9 +22,9 @@ ms.date: 09/07/2018
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Hardware-based isolation helps protect system integrity in Windows 10 and is integrated with Microsoft Defender ATP. 
+Hardware-based isolation helps protect system integrity in Windows 10 and is integrated with Microsoft Defender for Endpoint. 
 
 | Feature | Description |
 |------------|-------------|
diff --git a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
index 822b5afaab..0edc028048 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
@@ -18,21 +18,21 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Partner applications in Microsoft Defender ATP 
+# Partner applications in Microsoft Defender for Endpoint 
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
-Microsoft Defender ATP supports third-party applications to help enhance the detection, investigation, and threat intelligence capabilities of the platform.
+Microsoft Defender for Endpoint supports third-party applications to help enhance the detection, investigation, and threat intelligence capabilities of the platform.
 
 
-The support for third-party solutions helps to further streamline, integrate, and orchestrate defenses from other vendors with Microsoft Defender ATP; enabling security teams to effectively respond better to modern threats.
+The support for third-party solutions helps to further streamline, integrate, and orchestrate defenses from other vendors with Microsoft Defender for Endpoint; enabling security teams to effectively respond better to modern threats.
 
-Microsoft Defender ATP seamlessly integrates with existing security solutions. The integration provides integration with the following solutions such as:
+Microsoft Defender for Endpoint seamlessly integrates with existing security solutions. The integration provides integration with the following solutions such as:
 - SIEM
 - Ticketing and IT service management solutions
 - Managed security service providers (MSSP)
@@ -47,16 +47,16 @@ Microsoft Defender ATP seamlessly integrates with existing security solutions. T
 
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of AttackIQ logo](images/attackiq-logo.png)| [AttackIQ Platform](https://go.microsoft.com/fwlink/?linkid=2103502) | AttackIQ Platform validates Microsoft Defender ATP is configured properly by launching continuous attacks safely on production assets
+![Image of AttackIQ logo](images/attackiq-logo.png)| [AttackIQ Platform](https://go.microsoft.com/fwlink/?linkid=2103502) | AttackIQ Platform validates Defender for Endpoint is configured properly by launching continuous attacks safely on production assets
 ![Image of Azure Sentinel logo](images/sentinel-logo.png)| [AzureSentinel](https://go.microsoft.com/fwlink/?linkid=2135705) | Stream alerts from Microsoft Defender Advanced Threat Protection into Azure Sentinel 
-![Image of Cymulate logo](images/cymulate-logo.png) | [Cymulate](https://go.microsoft.com/fwlink/?linkid=2135574)| Correlate Microsoft Defender ATP findings with simulated attacks to validate accurate detection and effective response actions
+![Image of Cymulate logo](images/cymulate-logo.png) | [Cymulate](https://go.microsoft.com/fwlink/?linkid=2135574)| Correlate Defender for Endpoint findings with simulated attacks to validate accurate detection and effective response actions
 ![Image of Elastic security logo](images/elastic-security-logo.png) | [Elastic Security](https://go.microsoft.com/fwlink/?linkid=2139303) | Elastic Security is a free and open solution for preventing, detecting, and responding to threats
-![Image of IBM QRadar logo](images/ibm-qradar-logo.png) | [IBM QRadar](https://go.microsoft.com/fwlink/?linkid=2113903) | Configure IBM QRadar to collect detections from Microsoft Defender ATP 
-![Image of Micro Focus ArcSight logo](images/arcsight-logo.png) | [Micro Focus ArcSight](https://go.microsoft.com/fwlink/?linkid=2113548) | Use Micro Focus ArcSight to pull Microsoft Defender ATP detections
-![Image of RSA NetWitness logo](images/rsa-netwitness-logo.png) | [RSA NetWitness](https://go.microsoft.com/fwlink/?linkid=2118566) | Stream Microsoft Defender ATP Alerts to RSA NetWitness leveraging Microsoft Graph Security API
-![Image of SafeBreach logo](images/safebreach-logo.png) | [SafeBreach](https://go.microsoft.com/fwlink/?linkid=2114114)| Gain visibility into Microsoft Defender ATP security events that are automatically correlated with SafeBreach simulations
+![Image of IBM QRadar logo](images/ibm-qradar-logo.png) | [IBM QRadar](https://go.microsoft.com/fwlink/?linkid=2113903) | Configure IBM QRadar to collect detections from Defender for Endpoint.
+![Image of Micro Focus ArcSight logo](images/arcsight-logo.png) | [Micro Focus ArcSight](https://go.microsoft.com/fwlink/?linkid=2113548) | Use Micro Focus ArcSight to pull Defender for Endpoint detections
+![Image of RSA NetWitness logo](images/rsa-netwitness-logo.png) | [RSA NetWitness](https://go.microsoft.com/fwlink/?linkid=2118566) | Stream Defender for Endpoint Alerts to RSA NetWitness leveraging Microsoft Graph Security API
+![Image of SafeBreach logo](images/safebreach-logo.png) | [SafeBreach](https://go.microsoft.com/fwlink/?linkid=2114114)| Gain visibility into Defender for Endpoint security events that are automatically correlated with SafeBreach simulations
 ![Image of Skybox Vulnerability Control logo](images/skybox-logo.png) | [Skybox Vulnerability Control](https://go.microsoft.com/fwlink/?linkid=2127467) | Skybox Vulnerability Control cuts through the noise of vulnerability management, correlating business, network, and threat context to uncover your riskiest vulnerabilities
-![Image of Splunk logo](images/splunk-logo.png) | [Splunk](https://go.microsoft.com/fwlink/?linkid=2129805) | The Microsoft Defender ATP Add-on allows Splunk users to ingest all of the alerts and supporting information to their Splunk
+![Image of Splunk logo](images/splunk-logo.png) | [Splunk](https://go.microsoft.com/fwlink/?linkid=2129805) | The Defender for Endpoint Add-on allows Splunk users to ingest all of the alerts and supporting information to their Splunk
 ![Image of XM Cyber logo](images/xmcyber-logo.png) | [XM Cyber](https://go.microsoft.com/fwlink/?linkid=2136700) | Prioritize your response to an alert based on risk factors and high value assets
 
 ### Orchestration and automation
@@ -64,31 +64,31 @@ Logo |Partner name   | Description
 
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of CyberSponse CyOps logo](images/cybersponse-logo.png) | [CyberSponse CyOps](https://go.microsoft.com/fwlink/?linkid=2115943) | CyOps integrates with Microsoft Defender ATP to automate customers' high-speed incident response playbooks
-![Image of Delta Risk ActiveEye logo](images/delta-risk-activeeye-logo.png) | [Delta Risk ActiveEye](https://go.microsoft.com/fwlink/?linkid=2127468) | Delta Risk, a leading provider of SOC-as-a-Service and security services, integrate Microsoft Defender ATP with its cloud-native SOAR platform, ActiveEye.
-![Image of Demisto, a Palo Alto Networks Company logo](images/demisto-logo.png) | [Demisto, a Palo Alto Networks Company](https://go.microsoft.com/fwlink/?linkid=2108414) | Demisto integrates with Microsoft Defender ATP to enable security teams to orchestrate and automate endpoint security monitoring, enrichment, and response
-![Image of Microsoft Flow & Azure Functions logo](images/ms-flow-logo.png) | [Microsoft Flow & Azure Functions](https://go.microsoft.com/fwlink/?linkid=2114300) | Use the Microsoft Defender ATP connectors for Azure Logic Apps & Microsoft Flow to automating security procedures
-![Image of Rapid7 InsightConnect logo](images/rapid7-logo.png) | [Rapid7 InsightConnect](https://go.microsoft.com/fwlink/?linkid=2116040) | InsightConnect integrates with Microsoft Defender ATP to accelerate, streamline, and integrate your time-intensive security processes
+![Image of CyberSponse CyOps logo](images/cybersponse-logo.png) | [CyberSponse CyOps](https://go.microsoft.com/fwlink/?linkid=2115943) | CyOps integrates with Defender for Endpoint to automate customers' high-speed incident response playbooks
+![Image of Delta Risk ActiveEye logo](images/delta-risk-activeeye-logo.png) | [Delta Risk ActiveEye](https://go.microsoft.com/fwlink/?linkid=2127468) | Delta Risk, a leading provider of SOC-as-a-Service and security services, integrate Defender for Endpoint with its cloud-native SOAR platform, ActiveEye.
+![Image of Demisto, a Palo Alto Networks Company logo](images/demisto-logo.png) | [Demisto, a Palo Alto Networks Company](https://go.microsoft.com/fwlink/?linkid=2108414) | Demisto integrates with Defender for Endpoint to enable security teams to orchestrate and automate endpoint security monitoring, enrichment, and response
+![Image of Microsoft Flow & Azure Functions logo](images/ms-flow-logo.png) | [Microsoft Flow & Azure Functions](https://go.microsoft.com/fwlink/?linkid=2114300) | Use the Defender for Endpoint connectors for Azure Logic Apps & Microsoft Flow to automating security procedures
+![Image of Rapid7 InsightConnect logo](images/rapid7-logo.png) | [Rapid7 InsightConnect](https://go.microsoft.com/fwlink/?linkid=2116040) | InsightConnect integrates with Defender for Endpoint to accelerate, streamline, and integrate your time-intensive security processes
 ![Image of ServiceNow logo](images/servicenow-logo.png) | [ServiceNow](https://go.microsoft.com/fwlink/?linkid=2135621) | Ingest alerts into ServiceNow Security Operations solution based on Microsoft Graph API integration
-![Image of Swimlane logo](images/swimlane-logo.png) | [Swimlane](https://go.microsoft.com/fwlink/?linkid=2113902) | Maximize incident response capabilities utilizing Swimlane and Microsoft Defender ATP together
+![Image of Swimlane logo](images/swimlane-logo.png) | [Swimlane](https://go.microsoft.com/fwlink/?linkid=2113902) | Maximize incident response capabilities utilizing Swimlane and Defender for Endpoint together
 
 
 ### Threat intelligence
 
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of MISP Malware Information Sharing Platform)logo](images/misp-logo.png) | [MISP (Malware Information Sharing Platform)](https://go.microsoft.com/fwlink/?linkid=2127543) | Integrate threat indicators from the Open Source Threat Intelligence Sharing Platform into your Microsoft Defender ATP environment
-![Image of Palo Alto Networks logo](images/paloalto-logo.png) | [Palo Alto Networks](https://go.microsoft.com/fwlink/?linkid=2099582) | Enrich your endpoint protection by extending Autofocus and other threat feeds to Microsoft Defender ATP using MineMeld
-![Image of ThreatConnect logo](images/threatconnect-logo.png) | [ThreatConnect](https://go.microsoft.com/fwlink/?linkid=2114115) | Alert and/or block on custom threat intelligence from ThreatConnect Playbooks using Microsoft Defender ATP indicators
+![Image of MISP Malware Information Sharing Platform)logo](images/misp-logo.png) | [MISP (Malware Information Sharing Platform)](https://go.microsoft.com/fwlink/?linkid=2127543) | Integrate threat indicators from the Open Source Threat Intelligence Sharing Platform into your Defender for Endpoint environment
+![Image of Palo Alto Networks logo](images/paloalto-logo.png) | [Palo Alto Networks](https://go.microsoft.com/fwlink/?linkid=2099582) | Enrich your endpoint protection by extending Autofocus and other threat feeds to Defender for Endpoint using MineMeld
+![Image of ThreatConnect logo](images/threatconnect-logo.png) | [ThreatConnect](https://go.microsoft.com/fwlink/?linkid=2114115) | Alert and/or block on custom threat intelligence from ThreatConnect Playbooks using Defender for Endpoint indicators
 
 
 
 ### Network security
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of Aruba ClearPass Policy Manager logo](images/aruba-logo.png) | [Aruba ClearPass Policy Manager](https://go.microsoft.com/fwlink/?linkid=2127544) | Ensure Microsoft Defender ATP is installed and updated on each endpoint before allowing access to the network
+![Image of Aruba ClearPass Policy Manager logo](images/aruba-logo.png) | [Aruba ClearPass Policy Manager](https://go.microsoft.com/fwlink/?linkid=2127544) | Ensure Defender for Endpoint is installed and updated on each endpoint before allowing access to the network
 ![Image of Blue Hexagon for Network logo](images/bluehexagon-logo.png) | [Blue Hexagon for Network](https://go.microsoft.com/fwlink/?linkid=2104613) | Blue Hexagon has built the industry's first real-time deep learning platform for network threat protection
-![Image of CyberMDX logo](images/cybermdx-logo.png) | [CyberMDX](https://go.microsoft.com/fwlink/?linkid=2135620) | Cyber MDX integrates comprehensive healthcare assets visibility, threat prevention and repose into your Microsoft Defender ATP environment
+![Image of CyberMDX logo](images/cybermdx-logo.png) | [CyberMDX](https://go.microsoft.com/fwlink/?linkid=2135620) | Cyber MDX integrates comprehensive healthcare assets visibility, threat prevention and repose into your Defender for Endpoint environment
 ![Image of Vectra Network Detection and Response (NDR) logo](images/vectra-logo.png) |[Vectra Network Detection and Response (NDR)](https://go.microsoft.com/fwlink/?linkid=866934)| Vectra applies AI & security research to detect and respond to cyber-attacks in real time
 
 
@@ -100,13 +100,13 @@ Logo |Partner name   | Description
 ![Image of Corrata logo](images/corrata-logo.png)| [Corrata](https://go.microsoft.com/fwlink/?linkid=2081148) | Mobile solution — Protect your mobile devices with granular visibility and control from Corrata 
 ![Image of Lookout logo](images/lookout-logo.png)| [Lookout](https://go.microsoft.com/fwlink/?linkid=866935)| Get Lookout Mobile Threat Protection telemetry for Android and iOS mobile devices
 ![Image of Symantec Endpoint Protection Mobile logo](images/symantec-logo.png) | [Symantec Endpoint Protection Mobile](https://go.microsoft.com/fwlink/?linkid=2090992)| SEP Mobile helps businesses predict, detect, and prevent security threats and vulnerabilities on mobile devices 
-![Image of Zimperium logo](images/zimperium-logo.png)| [Zimperium](https://go.microsoft.com/fwlink/?linkid=2118044)|Extend your Microsoft Defender ATP to iOS and Android with Machine Learning-based Mobile Threat Defense
+![Image of Zimperium logo](images/zimperium-logo.png)| [Zimperium](https://go.microsoft.com/fwlink/?linkid=2118044)|Extend your Defender for Endpoint to iOS and Android with Machine Learning-based Mobile Threat Defense
 
 
 ## Additional integrations
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of Cyren Web Filter logo](images/cyren-logo.png)| [Cyren Web Filter](https://go.microsoft.com/fwlink/?linkid=2108221)| Enhance your Microsoft Defender ATP with advanced Web Filtering
+![Image of Cyren Web Filter logo](images/cyren-logo.png)| [Cyren Web Filter](https://go.microsoft.com/fwlink/?linkid=2108221)| Enhance your Defender for Endpoint with advanced Web Filtering
 ![Image of Morphisec logo](images/morphisec-logo.png)| [Morphisec](https://go.microsoft.com/fwlink/?linkid=2086215)| Provides Moving Target Defense-powered advanced threat prevention and integrates forensics data directly into WD Security Center dashboards to help prioritize alerts, determine device at-risk score and visualize full attack timeline including internal memory information
 ![Image of THOR Cloud logo](images/nextron-thor-logo.png)| [THOR Cloud](https://go.microsoft.com/fwlink/?linkid=862988)| Provides on-demand live forensics scans using a signature base with focus on persistent threats
 
@@ -114,27 +114,27 @@ Logo |Partner name   | Description
 
 
 ## SIEM integration
-Microsoft Defender ATP supports SIEM integration through a variety of methods — specialized SIEM system interface with out of the box connectors, a generic alert API enabling custom implementations, and an action API enabling alert status management.  For more information, see [Enable SIEM integration](enable-siem-integration.md).
+Defender for Endpoint supports SIEM integration through a variety of methods — specialized SIEM system interface with out of the box connectors, a generic alert API enabling custom implementations, and an action API enabling alert status management.  For more information, see [Enable SIEM integration](enable-siem-integration.md).
 
 ## Ticketing and IT service management 
-Ticketing solution integration helps to implement manual and automatic response processes. Microsoft Defender ATP can help to create tickets automatically when an alert is generated and resolve the alerts when tickets are closed using the alerts API. 
+Ticketing solution integration helps to implement manual and automatic response processes. Defender for Endpoint can help to create tickets automatically when an alert is generated and resolve the alerts when tickets are closed using the alerts API. 
 
 ## Security orchestration and automation response (SOAR) integration 
-Orchestration solutions can help build playbooks and integrate the rich data model and actions that Microsoft Defender ATP APIs expose to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others. 
+Orchestration solutions can help build playbooks and integrate the rich data model and actions that Defender for Endpoint APIs expose to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others. 
 
 ## External alert correlation and Automated investigation and remediation  
-Microsoft Defender ATP offers unique automated investigation and remediation capabilities to drive incident response at scale.
+Defender for Endpoint offers unique automated investigation and remediation capabilities to drive incident response at scale.
   
 Integrating the automated investigation and response capability with other solutions such as IDS and firewalls help to address alerts and minimize the complexities surrounding network and device signal correlation, effectively streamlining the investigation and threat remediation actions on devices.  
 
-External alerts can be pushed into Microsoft Defender ATP and is presented side by side with additional device-based alerts from Microsoft Defender ATP. This view provides a full context of the alert — with the real process and the full story of attack.  
+External alerts can be pushed into Defender for Endpoint and is presented side by side with additional device-based alerts from Defender for Endpoint. This view provides a full context of the alert — with the real process and the full story of attack.  
 
 ## Indicators matching
 You can use threat-intelligence from providers and aggregators to maintain and use indicators of compromise (IOCs).
 
-Microsoft Defender ATP allows you to integrate with such solutions and act on IoCs by correlating its rich telemetry and creating alerts when there's a match; leveraging prevention and automated response capabilities to block execution and take remediation actions when there's a match.
+Defender for Endpoint allows you to integrate with such solutions and act on IoCs by correlating its rich telemetry and creating alerts when there's a match; leveraging prevention and automated response capabilities to block execution and take remediation actions when there's a match.
 
-Microsoft Defender ATP currently supports IOC matching and remediation for file and network indicators. Blocking is supported for file indicators.  
+Defender for Endpoint currently supports IOC matching and remediation for file and network indicators. Blocking is supported for file indicators.  
 
 ## Support for non-Windows platforms
-Microsoft Defender ATP provides a centralized security operations experience for Windows as well as non-Windows platforms, including mobile devices. You'll be able to see alerts from various supported operating systems (OS) in the portal and better protect your organization's network. 
+Defender for Endpoint provides a centralized security operations experience for Windows as well as non-Windows platforms, including mobile devices. You'll be able to see alerts from various supported operating systems (OS) in the portal and better protect your organization's network. 

From 6b5a7798026e58b0c71eb82f6cc125fbe4a05cab Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Wed, 11 Nov 2020 17:25:55 +0530
Subject: [PATCH 077/209] updated

to fix warnings
---
 .../endpoint-detection-response-mac-preview.md                  | 2 +-
 .../microsoft-defender-atp/onboarding-endpoint-manager.md       | 2 +-
 .../microsoft-defender-atp/overview-custom-detections.md        | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md b/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
index 9c552f4e9c..b86fec795a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
@@ -26,7 +26,7 @@ ms.topic: conceptual
 To get preview features for Mac, you must set up your device to be an "Insider" device as described in this article. For scale deployment, we recommend using [Jamf](#enable-the-insider-program-with-jamf) or [Intune](#enable-the-insider-program-with-intune).
 
 > [!IMPORTANT]
-> Make sure you have enabled [Microsoft Defender for Endpoint (Mac)](microsoft-defender-atp-mac.md#how-to-install-microsoft-defender-atp-for-mac), and pay attention to the “earlyPreview” flag. See documentation for [Jamf](mac-install-with-jamf.md), [Intune](mac-install-with-intune.md), and [manual deployment](mac-install-manually.md) instructions.
+> Make sure you have enabled [Microsoft Defender for Endpoint (Mac)](microsoft-defender-atp-mac.md#how-to-install-microsoft-defender-for-endpoint-for-mac), and pay attention to the “earlyPreview” flag. See documentation for [Jamf](mac-install-with-jamf.md), [Intune](mac-install-with-intune.md), and [manual deployment](mac-install-manually.md) instructions.
 
 ## Enable the Insider program with Jamf
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
index f1112b1d8d..0027824386 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
@@ -39,7 +39,7 @@ This onboarding guidance will walk you through the following basic steps that yo
 
     -   Creating an Azure Active Directory group (User or Device)
 
--   [Creating a Configuration Profile](#step-2-create-configuration-policies-to-configure-microsoft-defender-atp-capabilities)
+-   [Creating a Configuration Profile](#step-2-create-configuration-policies-to-configure-microsoft-defender-for-endpoint-capabilities)
 
     -   In Microsoft Endpoint Manager, we'll guide you in creating a separate policy for each capability.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md b/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md
index 3e8077b6b8..9135f4ebe0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-custom-detections.md
@@ -23,7 +23,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured devices. You can do this with customizable detection rules that automatically trigger alerts and response actions.
 

From c14df08a10d48e6af49a2d2018c4ab28737588eb Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 11 Nov 2020 06:53:09 -0800
Subject: [PATCH 078/209] Update change-history-for-threat-protection.md

---
 .../change-history-for-threat-protection.md               | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/change-history-for-threat-protection.md b/windows/security/threat-protection/change-history-for-threat-protection.md
index d4391adcbe..53466cf41c 100644
--- a/windows/security/threat-protection/change-history-for-threat-protection.md
+++ b/windows/security/threat-protection/change-history-for-threat-protection.md
@@ -1,8 +1,8 @@
 ---
-title: Change history for [Windows Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+title: Change history for [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 ms.reviewer: 
 ms.author: dansimp
-description: This topic lists new and updated topics in the WWindows Defender ATP content set.
+description: This topic lists new and updated topics in the Defender for Endpoint content set.
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
@@ -16,11 +16,11 @@ ms.localizationpriority: medium
 ---
 
 # Change history for threat protection
-This topic lists new and updated topics in the [Microsoft Defender ATP](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md) documentation.
+This topic lists new and updated topics in the [Defender for Endpoint](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md) documentation.
 
 ## August 2018
 
 New or changed topic | Description
 ---------------------|------------
-[Microsoft Defender Advanced Threat Protection](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md) | Reorganized Windows 10 security topics to reflect the Windows Defender ATP platform.
+[Microsoft Defender for Endpoint](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md) | Reorganized Windows 10 security topics to reflect the Defender for Endpoint platform.
 

From 33660224ef1c19795acd6d4e77686a3898c149c0 Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Wed, 11 Nov 2020 21:18:14 +0530
Subject: [PATCH 079/209] removed invalid links . added correct links

as per the user report #8614 , so i removed  three invalid links  and added correct links
---
 .../threat-protection/intelligence/exploits-malware.md        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/intelligence/exploits-malware.md b/windows/security/threat-protection/intelligence/exploits-malware.md
index c7b63fd5fd..36ef30a468 100644
--- a/windows/security/threat-protection/intelligence/exploits-malware.md
+++ b/windows/security/threat-protection/intelligence/exploits-malware.md
@@ -37,9 +37,9 @@ Several notable threats, including Wannacry, exploit the Server Message Block (S
 
 Examples of exploit kits:
 
-- Angler / [Axpergle](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=JS%2fAxpergle)
+- Angler / [Axpergle](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Axpergle)
 
-- [Neutrino](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=JS%2fNeutrino)
+- [Neutrino](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?name=JS/NeutrinoEK)
 
 - [Nuclear](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Neclu)
 

From f976a899b7346434776ad926bb69733483ffc880 Mon Sep 17 00:00:00 2001
From: tiburd <v-tibur@microsoft.com>
Date: Wed, 11 Nov 2020 07:52:00 -0800
Subject: [PATCH 080/209] Edit pass: Acrolinx fixes

---
 ...nced-troubleshooting-802-authentication.md |  47 ++++----
 .../manage-settings-app-with-group-policy.md  |   8 +-
 .../mdm/esim-enterprise-management.md         |  10 +-
 .../troubleshoot-inaccessible-boot-device.md  | 114 +++++++++---------
 .../troubleshoot-tcpip-connectivity.md        |  34 +++---
 .../auditing/audit-detailed-file-share.md     |   6 +-
 .../auditing/audit-group-membership.md        |  15 ++-
 .../auditing/audit-logoff.md                  |  10 +-
 .../audit-non-sensitive-privilege-use.md      |   8 +-
 9 files changed, 128 insertions(+), 124 deletions(-)

diff --git a/windows/client-management/advanced-troubleshooting-802-authentication.md b/windows/client-management/advanced-troubleshooting-802-authentication.md
index 4af9868736..c27a78fa4c 100644
--- a/windows/client-management/advanced-troubleshooting-802-authentication.md
+++ b/windows/client-management/advanced-troubleshooting-802-authentication.md
@@ -17,17 +17,17 @@ ms.topic: troubleshooting
  
 ## Overview
 
-This is a general troubleshooting of 802.1X wireless and wired clients. With 802.1X and wireless troubleshooting, it's important to know how the flow of authentication works, and then figuring out where it's breaking. It involves a lot of third party devices and software. Most of the time, we have to identify where the problem is, and another vendor has to fix it. Since we don't make access points or switches, it won't be an end-to-end Microsoft solution.
+This article includes general troubleshooting for 802.1X wireless and wired clients. While troubleshooting 802.1X and wireless, it's important to know how the flow of authentication works, and then figure out where it's breaking. It involves a lot of third-party devices and software. Most of the time, we have to identify where the problem is, and another vendor has to fix it. We don't make access points or switches, so it's not an end-to-end Microsoft solution.
  
 ## Scenarios
 
-This troubleshooting technique applies to any scenario in which wireless or wired connections with 802.1X authentication is attempted and then fails to establish. The workflow covers Windows 7 - 10 for clients, and Windows Server 2008 R2 - 2012 R2 for NPS.
+This troubleshooting technique applies to any scenario in which wireless or wired connections with 802.1X authentication is attempted and then fails to establish. The workflow covers Windows 7 through Windows 10 for clients, and Windows Server 2008 R2 through Windows Server 2012 R2 for NPS.
  
-## Known Issues
+## Known issues
 
 None
  
-## Data Collection
+## Data collection
 
 See [Advanced troubleshooting 802.1X authentication data collection](data-collection-for-802-authentication.md).
  
@@ -35,11 +35,11 @@ See [Advanced troubleshooting 802.1X authentication data collection](data-collec
 
 Viewing [NPS authentication status events](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc735320(v%3dws.10)) in the Windows Security [event log](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc722404(v%3dws.11)) is one of the most useful troubleshooting methods to obtain information about failed authentications.
 
-NPS event log entries contain information on the connection attempt, including the name of the connection request policy that matched the connection attempt and the network policy that accepted or rejected the connection attempt. If you are not seeing both success and failure events, see the section below on [NPS audit policy](#audit-policy).
+NPS event log entries contain information about the connection attempt, including the name of the connection request policy that matched the connection attempt and the network policy that accepted or rejected the connection attempt. If you don't see both success and failure events, see the [NPS audit policy](#audit-policy) section later in this article.
 
-Check Windows Security Event log on the NPS Server for NPS events corresponding to rejected ([event ID 6273](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc735399(v%3dws.10))) or accepted ([event ID 6272](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc735388(v%3dws.10))) connection attempts.
+Check Windows Security Event log on the NPS Server for NPS events that correspond to rejected ([event ID 6273](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc735399(v%3dws.10))) or accepted ([event ID 6272](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc735388(v%3dws.10))) connection attempts.
  
-In the event message, scroll to the very bottom, and check the [Reason Code](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd197570(v%3dws.10)) field and the text associated with it.
+In the event message, scroll to the very bottom, and then check the [Reason Code](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd197570(v%3dws.10)) field and the text that's associated with it.
  
    ![example of an audit failure](images/auditfailure.png)
    *Example: event ID 6273 (Audit Failure)*<br><br>
@@ -47,35 +47,35 @@ In the event message, scroll to the very bottom, and check the [Reason Code](htt
    ![example of an audit success](images/auditsuccess.png)
    *Example: event ID 6272 (Audit Success)*<br>
 
-‎The WLAN AutoConfig operational log lists information and error events based on conditions detected by or reported to the WLAN AutoConfig service. The operational log contains information about the wireless network adapter, the properties of the wireless connection profile, the specified network authentication, and, in the event of connectivity problems, the reason for the failure. For wired network access, Wired AutoConfig operational log is equivalent one.
+‎The WLAN AutoConfig operational log lists information and error events based on conditions detected by or reported to the WLAN AutoConfig service. The operational log contains information about the wireless network adapter, the properties of the wireless connection profile, the specified network authentication, and, in the event of connectivity problems, the reason for the failure. For wired network access, the Wired AutoConfig operational log is an equivalent one.
 
-On the client side, navigate to **Event Viewer (Local)\Applications and Services Logs\Microsoft\Windows\WLAN-AutoConfig/Operational** for wireless issues. For wired network access issues, navigate to  **..\Wired-AutoConfig/Operational**. See the following example:
+On the client side, go to **Event Viewer (Local)\Applications and Services Logs\Microsoft\Windows\WLAN-AutoConfig/Operational** for wireless issues. For wired network access issues, go to  **..\Wired-AutoConfig/Operational**. See the following example:
 
 ![event viewer screenshot showing wired-autoconfig and WLAN autoconfig](images/eventviewer.png)
  
-Most 802.1X authentication issues are due to problems with the certificate that is used for client or server authentication (e.g. invalid certificate, expiration, chain verification failure, revocation check failure, etc.). 
+Most 802.1X authentication issues are because of problems with the certificate that's used for client or server authentication. Examples include invalid certificate, expiration, chain verification failure, and revocation check failure. 
 
-First, validate the type of EAP method being used:
+First, validate the type of EAP method that's used:
  
 ![eap authentication type comparison](images/comparisontable.png)
 
-If a certificate is used for its authentication method, check if the certificate is valid. For server (NPS) side, you can confirm what certificate is being used from the EAP property menu. In **NPS snap-in**, go to **Policies** > **Network Policies**. Right click on the policy and select **Properties**. In the pop-up window, go to the **Constraints** tab and select the **Authentication Methods** section.
+If a certificate is used for its authentication method, check whether the certificate is valid. For the server (NPS) side, you can confirm what certificate is being used from the EAP property menu. In **NPS snap-in**, go to **Policies** > **Network Policies**. Select and hold (or right-click) the policy, and then select **Properties**. In the pop-up window, go to the **Constraints** tab, and then select the **Authentication Methods** section.
 
 ![Constraints tab of the secure wireless connections properties](images/eappropertymenu.png)
  
-The CAPI2 event log will be useful for troubleshooting certificate-related issues.
-This log is not enabled by default. You can enable this log by expanding **Event Viewer (Local)\Applications and Services Logs\Microsoft\Windows\CAPI2**, right-clicking **Operational** and then clicking **Enable Log**.
+The CAPI2 event log is useful for troubleshooting certificate-related issues.
+By default, this log isn't enabled. To enable this log, expand **Event Viewer (Local)\Applications and Services Logs\Microsoft\Windows\CAPI2**, select and hold (or right-click) **Operational**, and then select **Enable Log**.
 
 ![screenshot of event viewer](images/capi.png)
  
-The following article explains how to analyze CAPI2 event logs:
+For information about how to analyze CAPI2 event logs, see
 [Troubleshooting PKI Problems on Windows Vista](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-vista/cc749296%28v=ws.10%29).
 
-When troubleshooting complex 802.1X authentication issues, it is important to understand the 802.1X authentication process. The following figure is an example of wireless connection process with 802.1X authentication:
+When troubleshooting complex 802.1X authentication issues, it's important to understand the 802.1X authentication process. Here's an example of wireless connection process with 802.1X authentication:
 
 ![authenticator flow chart](images/authenticator_flow_chart.png)
  
-If you [collect a network packet capture](troubleshoot-tcpip-netmon.md) on both the client and the server (NPS) side, you can see a flow like the one below. Type **EAPOL** in the Display Filter in for a client side capture, and **EAP** for an NPS side capture. See the following examples:
+If you [collect a network packet capture](troubleshoot-tcpip-netmon.md) on both the client and the server (NPS) side, you can see a flow like the one below. Type **EAPOL** in the Display Filter for a client-side capture, and **EAP** for an NPS-side capture. See the following examples:
 
 ![client-side packet capture data](images/clientsidepacket_cap_data.png)
 *Client-side packet capture data*<br><br>
@@ -85,16 +85,16 @@ If you [collect a network packet capture](troubleshoot-tcpip-netmon.md) on both
 ‎
 
 > [!NOTE]
-> If you have a wireless trace, you can also [view ETL files with network monitor](https://docs.microsoft.com/windows/desktop/ndf/using-network-monitor-to-view-etl-files) and apply the **ONEX_MicrosoftWindowsOneX** and **WLAN_MicrosoftWindowsWLANAutoConfig** Network Monitor filters. Follow the instructions under the **Help** menu in Network Monitor to load the reqired [parser](https://blogs.technet.microsoft.com/netmon/2010/06/04/parser-profiles-in-network-monitor-3-4/) if needed. See the example below.
+> If you have a wireless trace, you can also [view ETL files with network monitor](https://docs.microsoft.com/windows/desktop/ndf/using-network-monitor-to-view-etl-files) and apply the **ONEX_MicrosoftWindowsOneX** and **WLAN_MicrosoftWindowsWLANAutoConfig** Network Monitor filters. If you need to load the required [parser](https://blogs.technet.microsoft.com/netmon/2010/06/04/parser-profiles-in-network-monitor-3-4/), see the instructions under the **Help** menu in Network Monitor. Here's an example:
 
 ![ETL parse](images/etl.png) 
 
 ## Audit policy
 
-NPS audit policy (event logging) for connection success and failure is enabled by default. If you find that one or both types of logging are disabled, use the following steps to troubleshoot.
+By default, NPS audit policy (event logging) for connection success and failure is enabled. If you find that one or both types of logging are disabled, use the following steps to troubleshoot.
 
 View the current audit policy settings by running the following command on the NPS server:
-```
+```console
 auditpol /get /subcategory:"Network Policy Server"
 ```
 
@@ -106,13 +106,12 @@ Logon/Logoff
   Network Policy Server                   Success and Failure
 </pre>
 
-If it shows ‘No auditing’, you can run this command to enable it:
-
-```
+If it says, "No auditing," you can run this command to enable it:
+```console
 auditpol /set /subcategory:"Network Policy Server" /success:enable /failure:enable
 ```
 
-Even if audit policy appears to be fully enabled, it sometimes helps to disable and then re-enable this setting. You can also enable Network Policy Server logon/logoff auditing via Group Policy. The success/failure setting can be found under **Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Advanced Audit Policy Configuration -> Audit Policies -> Logon/Logoff -> Audit Network Policy Server**.
+Even if audit policy appears to be fully enabled, it sometimes helps to disable and then re-enable this setting. You can also enable Network Policy Server logon/logoff auditing by using Group Policy. To get to the success/failure setting, select **Computer Configuration** > **Policies** > **Windows Settings** > **Security Settings** > **Advanced Audit Policy Configuration** > **Audit Policies** > **Logon/Logoff** > **Audit Network Policy Server**.
 
 ## Additional references
 
diff --git a/windows/client-management/manage-settings-app-with-group-policy.md b/windows/client-management/manage-settings-app-with-group-policy.md
index dc31960057..2950a6c6d9 100644
--- a/windows/client-management/manage-settings-app-with-group-policy.md
+++ b/windows/client-management/manage-settings-app-with-group-policy.md
@@ -19,13 +19,13 @@ ms.topic: article
 
 -   Windows 10, Windows Server 2016
 
-You can now manage the pages that are shown in the Settings app by using Group Policy. This lets you hide specific pages from users. Before Windows 10, version 1703, you could either show everything in the Settings app or hide it completely.
-To make use of the Settings App group polices on Windows server 2016, install fix [4457127](https://support.microsoft.com/help/4457127/windows-10-update-kb4457127) or a later cumulative update. 
+You can now manage the pages that are shown in the Settings app by using Group Policy. When you use Group Policy to manage pages, you can hide specific pages from users. Before Windows 10, version 1703, you could either show everything in the Settings app or hide it completely.
+To make use of the Settings App group policies on Windows server 2016, install fix [4457127](https://support.microsoft.com/help/4457127/windows-10-update-kb4457127) or a later cumulative update. 
 
 >[!Note]
 >Each server that you want to manage access to the Settings App must be patched.
 
-To centrally manage the new policies copy the ControlPanel.admx and ControlPanel.adml file to [Central Store](https://support.microsoft.com/help/3087759/how-to-create-and-manage-the-central-store-for-group-policy-administra) if your company uses one or the PolicyDefinitions folder of the Domain Controllers used for Group Policy management.
+If your company uses one or the PolicyDefinitions folder of the Domain Controllers used for Group Policy management, to centrally manage the new policies, copy the ControlPanel.admx and ControlPanel.adml file to [Central Store](https://support.microsoft.com/help/3087759/how-to-create-and-manage-the-central-store-for-group-policy-administra).
 
 This policy is available for both User and Computer depending on the version of the OS. Windows Server 2016 with KB 4457127 applied will have both User and Computer policy. Windows 10, version 1703, added Computer policy for the Settings app. Windows 10, version 1809, added User policy for the Settings app.
 
@@ -39,7 +39,7 @@ Policy paths:
 
 ## Configuring the Group Policy
 
-The Group Policy can be configured in one of two ways: specify a list of pages that are shown or specify a list of pages to hide. To do this, add either **ShowOnly:** or **Hide:** followed by a semicolon delimited list of URIs in **Settings Page Visiblity**. For a full list of URIs, see the URI scheme reference section in [Launch the Windows Settings app](https://docs.microsoft.com/windows/uwp/launch-resume/launch-settings-app#ms-settings-uri-scheme-reference). 
+The Group Policy can be configured in one of two ways: specify a list of pages that are shown or specify a list of pages to hide. To do this, add either **ShowOnly:** or **Hide:** followed by a semicolon-delimited list of URIs in **Settings Page Visibility**. For a full list of URIs, see the URI scheme reference section in [Launch the Windows Settings app](https://docs.microsoft.com/windows/uwp/launch-resume/launch-settings-app#ms-settings-uri-scheme-reference). 
 
 >[!NOTE]
 > When you specify the URI in the Settings Page Visibility textbox, don't include **ms-settings:** in the string.
diff --git a/windows/client-management/mdm/esim-enterprise-management.md b/windows/client-management/mdm/esim-enterprise-management.md
index 79545b45cc..43f44a4d2a 100644
--- a/windows/client-management/mdm/esim-enterprise-management.md
+++ b/windows/client-management/mdm/esim-enterprise-management.md
@@ -12,15 +12,15 @@ ms.topic: conceptual
 ---
 
 # How Mobile Device Management Providers support eSIM Management on Windows
-The eSIM Profile Management Solution puts the Mobile Device Management (MDM) Provider in the front and center. The whole idea is to leverage an already existing solution that customers are familiar with and that they use to manage devices. The expectations from an MDM are that it will leverage the same sync mechanism that it uses for device policies to push any policy to the eSIM profile, and be able to use Groups and Users the same way. This way, the eSIM profile download and installation happens on the background and not impacting the end user. Similarly, the IT admin would use the same method of managing the eSIM profiles (Assignment/de-assignment, etc.) the same way as they currently do device management.
- If you are a Mobile Device Management (MDM) Provider and would like to support eSIM Management on Windows, you should do the following:
+The eSIM Profile Management Solution puts the Mobile Device Management (MDM) Provider in the front and center. The whole idea is to use an already existing solution that customers are familiar with and that they use to manage devices. The expectations from an MDM are that it will use the same sync mechanism that it uses for device policies to push any policy to the eSIM profile, and be able to use Groups and Users the same way. This way, the eSIM profile download and the installation happen in the background without impacting the end user. Similarly, the IT admin would use the same method of managing the eSIM profiles (Assignment/de-assignment, etc.) the same way as they currently do device management.
+ If you are a Mobile Device Management (MDM) Provider and want to support eSIM Management on Windows, perform the following steps:
 - Onboard to Azure Active Directory
-- Contact mobile operators directly or contact orchestrator providers. Windows provides the capability for eSIM profiles to be managed by MDM providers in the case of enterprise use cases. However, Windows does not limit how ecosystem partners might want to offer this to their own partners and/or customers. As such, the eSIM profile management capability is something that can be supported by integrating with the Window OMA-DM. This makes it possible to remotely manage the eSIM profiles according to the company policies. Contact mobile operators directly or contact orchestrator providers. Windows provides the capability for eSIM profiles to be managed by MDM providers in the case of enterprise use cases. However, Windows does not limit how ecosystem partners might want to offer this to their own partners and/or customers. As such, the eSIM profile management capability is something that can be supported by integrating with the Window OMA-DM. This makes it possible to remotely manage the eSIM profiles according to the company policies. As an MDM provider, if you are looking to integrate/onboard to a mobile operator on a 1:1 basis, please contact them and learn more about their onboarding. If you would like to support multiple mobile operators, [orchestrator providers]( https://www.idemia.com/esim-management-facilitation) are there to act as a proxy that will handle MDM onboarding as well as mobile operator onboarding. Their main [role]( https://www.idemia.com/smart-connect-hub) is to enable the process to be as painless but scalable to all parties. 
+- Contact mobile operators directly or contact orchestrator providers. Windows provides the capability for eSIM profiles to be managed by MDM providers in the case of enterprise use cases. However, Windows doesn't limit how ecosystem partners might want to offer this to their own partners and/or customers. As such, the eSIM profile management capability is something that can be supported by integrating with the Window OMA-DM. This makes it possible to remotely manage the eSIM profiles according to the company policies. Contact mobile operators directly or contact orchestrator providers. Windows provides the capability for eSIM profiles to be managed by MDM providers in the case of enterprise use cases. However, Windows does not limit how ecosystem partners might want to offer this to their own partners and/or customers. As such, the eSIM profile management capability is something that can be supported by integrating with the Window OMA-DM. This makes it possible to remotely manage the eSIM profiles according to the company policies. As an MDM provider, if you are looking to integrate/onboard to a mobile operator on a 1:1 basis, contact them and learn more about their onboarding. If you want to support multiple mobile operators, [orchestrator providers]( https://www.idemia.com/esim-management-facilitation) are there to act as a proxy that will handle MDM onboarding as well as mobile operator onboarding. Their main [role]( https://www.idemia.com/smart-connect-hub) is to enable the process to be as painless but scalable to all parties. 
 - Assess solution type that you would like to provide your customers
 - Batch/offline solution
 - IT Admin can manually import a flat file containing list of eSIM activation codes, and provision eSIM on LTE enabled devices.
-- Operator does not have visibility over status of the eSIM profiles and device eSIM has been downloaded and installed to
+- Operator doesn't have visibility over status of the eSIM profiles and device eSIM has been downloaded and installed to
 - Real-time solution
 - MDM automatically syncs with the Operator backend system for subscription pool and eSIM management, via sim vendor solution component. IT Admin can view subscription pool and provision eSIM in real time.
 - Operator is notified of the status of each eSIM profile and has visibility on which devices are being used
-**Note:** The solution type is not noticeable to the end-user. The choice between the two is made between the MDM and the Mobile Operator.
+**Note:** End users don't notice the solution type. The choice between the two is made between the MDM and the Mobile Operator.
diff --git a/windows/client-management/troubleshoot-inaccessible-boot-device.md b/windows/client-management/troubleshoot-inaccessible-boot-device.md
index 0bdc744338..bdb67e2528 100644
--- a/windows/client-management/troubleshoot-inaccessible-boot-device.md
+++ b/windows/client-management/troubleshoot-inaccessible-boot-device.md
@@ -1,6 +1,6 @@
 ---
 title: Advanced advice for Stop error 7B, Inaccessible_Boot_Device
-description: Learn how to troubleshoot Stop error 7B or Inaccessible_Boot_Device. This error may occur after some changes are made to the computer,
+description: Learn how to troubleshoot Stop error 7B or Inaccessible_Boot_Device. This error might occur after some changes are made to the computer,
 ms.prod: w10
 ms.mktglfcycl:
 ms.sitesec: library
@@ -15,27 +15,27 @@ manager: dansimp
 
 # Advanced troubleshooting for Stop error 7B or Inaccessible_Boot_Device
 
-This article provides steps to troubleshoot **Stop error 7B: Inaccessible_Boot_Device**. This error may occur after some changes are made to the computer, or immediately after you deploy Windows on the computer.
+This article provides steps to troubleshoot **Stop error 7B: Inaccessible_Boot_Device**. This error might occur after some changes are made to the computer, or immediately after you deploy Windows on the computer.
 
 ## Causes of the  Inaccessible_Boot_Device  Stop error
 
-Any one of the following factors may cause the stop error:
+Any one of the following factors might cause the stop error:
 
-*	Missing, corrupted, or misbehaving filter drivers that are related to the storage stack
+* Missing, corrupted, or misbehaving filter drivers that are related to the storage stack
 
-*	File system corruption
+* File system corruption
 
-*	Changes to the storage controller mode or settings in the BIOS 
+* Changes to the storage controller mode or settings in the BIOS 
 
-*	Using a different storage controller than the one that was used when Windows was installed
+* Using a different storage controller than the one that was used when Windows was installed
 
-*	Moving the hard disk to a different computer that has a different controller
+* Moving the hard disk to a different computer that has a different controller
 
-*	A faulty motherboard or storage controller, or faulty hardware 
+* A faulty motherboard or storage controller, or faulty hardware 
 
-*	In unusual cases: the failure of the TrustedInstaller service to commit newly installed updates because of Component Based Store corruptions
+* In unusual cases, the failure of the TrustedInstaller service to commit newly installed updates is because of component-based store corruptions
 
-*	Corrupted files in the **Boot**  partition (for example, corruption in the volume that is labeled **SYSTEM**  when you run the `diskpart`  > `list vol`  command)
+* Corrupted files in the **Boot**  partition (for example, corruption in the volume that's labeled **SYSTEM**  when you run the `diskpart`  > `list vol`  command)
 
 ## Troubleshoot this error
 
@@ -43,9 +43,9 @@ Start the computer in [Windows Recovery Mode (WinRE)](https://docs.microsoft.com
 
 1. Start the system by using [the installation media for the installed version of Windows](https://support.microsoft.com/help/15088).
 
-2. On the **Install Windows**  screen, select **Next**  > **Repair your computer** .
+2. On the **Install Windows**  screen, select **Next**  > **Repair your computer**.
 
-3. On the **System Recovery Options**  screen, select **Next**  > **Command Prompt** .
+3. On the **System Recovery Options**  screen, select **Next**  > **Command Prompt**.
 
 ### Verify that the boot disk is connected and accessible
 
@@ -55,7 +55,7 @@ Start the computer in [Windows Recovery Mode (WinRE)](https://docs.microsoft.com
 
 A list of the physical disks that are attached to the computer should be displayed and resemble the following display:
 
-```
+```console
   Disk ###  Status         Size     Free     Dyn  Gpt
 
   --------  -------------  -------  -------  ---  ---
@@ -65,7 +65,7 @@ A list of the physical disks that are attached to the computer should be display
 
 If the computer uses a Unified Extensible Firmware Interface (UEFI) startup interface, there will be an asterisk (<em>) in the **GPT</em>*  column.
 
-If the computer uses a basic input/output system (BIOS) interface, there will not be an asterisk in the **Dyn**  column.
+If the computer uses a basic input/output system (BIOS) interface, there won't be an asterisk in the **Dyn**  column.
 
 #### Step 2
 
@@ -73,7 +73,7 @@ If the `list disk` command lists the OS disks correctly, run the `list vol` comm
 
 `list vol` generates an output that resembles the following display:
 
-```
+```console
   Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
 
   ----------  ---  -----------  -----  ----------  -------  ---------  --------
@@ -86,7 +86,7 @@ If the `list disk` command lists the OS disks correctly, run the `list vol` comm
 ```
 
 >[!NOTE]
->If the disk that contains the OS is not listed in the output, you will have to engage the OEM or virtualization manufacturer.
+>If the disk that contains the OS isn't listed in the output, you'll have to engage the OEM or virtualization manufacturer.
 
 ### Verify the integrity of Boot Configuration Database
 
@@ -94,57 +94,57 @@ Check whether the Boot Configuration Database (BCD) has all the correct entries.
 
 To verify the BCD entries:
 
-1. Examine the **Windows Boot Manager**  section that has the **{bootmgr}** identifier. Make sure that the **device**  and **path**  entries point to the correct device and boot loader file.
+1. Examine the **Windows Boot Manager** section that has the **{bootmgr}** identifier. Make sure that the **device** and **path**  entries point to the correct device and boot loader file.
  
-   An example output if the computer is UEFI-based:
+   If the computer is UEFI-based, here's example output:
     
-   ```
+   ```cmd
    device                  partition=\Device\HarddiskVolume2
    path                    \EFI\Microsoft\Boot\bootmgfw.efi
    ```
 
-   An example output if the machine is BIOS based:
-   ```
+   If the machine is BIOS-based, here's example output:
+   ```cmd
    Device                partition=C:
    ```
    >[!NOTE]
-   >This output may not contain a path.
+   >This output might not contain a path.
 
-2. In the **Windows Boot Loader**  that has the **{default}** identifier, make sure that **device**, **path**, **osdevice**, and **systemroot**  point to the correct device or partition, winload file, OS partition or device, and OS folder.
+2. In the **Windows Boot Loader** that has the **{default}** identifier, make sure that **device**, **path**, **osdevice**, and **systemroot**  point to the correct device or partition, winload file, OS partition or device, and OS folder.
  
    > [!NOTE]
-   > If the computer is UEFI-based, the filepath value specified in the **path** parameter of **{bootmgr}** and **{default}** will contain an **.efi** extension.
+   > If the computer is UEFI-based, the file path value that's specified in the **path** parameter of **{bootmgr}** and **{default}** contains an **.efi** extension.
 
    ![bcdedit](images/screenshot1.png)
 
-If any of the information is wrong or missing, we recommend that you create a backup of the BCD store. To do this, run `bcdedit /export C:\temp\bcdbackup`. This command creates a backup in **C:\\temp\\** that is named **bcdbackup** . To restore the backup, run `bcdedit /import C:\temp\bcdbackup`. This command overwrites all BCD settings by using the settings in **bcdbackup** .
+If any of the information is wrong or missing, we recommend that you create a backup of the BCD store. To do this, run `bcdedit /export C:\temp\bcdbackup`. This command creates a backup in **C:\\temp\\** that's named **bcdbackup**. To restore the backup, run `bcdedit /import C:\temp\bcdbackup`. This command overwrites all BCD settings by using the settings in **bcdbackup**.
 
-After the backup is completed, run the following command to make the changes:
+After the backup completes, run the following command to make the changes:
 
 <pre>bcdedit /set *{identifier}* option value</pre>
 
-For example, if the device under {default} is wrong or missing, run the following command to set it: `bcdedit /set {default} device partition=C:`
+For example, if the device under {default} is wrong or missing, run this command to set it: `bcdedit /set {default} device partition=C:`
 
- If you want to re-create the BCD completely, or if you get a message that states that "**The boot configuration data store could not be opened. The system could not find the file specified,** " run `bootrec /rebuildbcd`.
+ If you want to completely re-create the BCD, or if you get a message that states that "**The boot configuration data store could not be opened. The system could not find the file specified,** " run `bootrec /rebuildbcd`.
 
-If the BCD has the correct entries, check whether the **winload** and **bootmgr** entries exist in the correct location per the path that is specified in the **bcdedit**  command. By default, **bootmgr**  in the BIOS partition will be in the root of the **SYSTEM**  partition. To see the file, run `Attrib -s -h -r`.
+If the BCD has the correct entries, check whether the **winload** and **bootmgr** entries exist in the correct location, which is in the specified path in the **bcdedit** command. By default, **bootmgr** in the BIOS partition is in the root of the **SYSTEM**  partition. To see the file, run `Attrib -s -h -r`.
 
 If the files are missing, and you want to rebuild the boot files, follow these steps:
 
-1. Copy all the contents under the **SYSTEM**  partition to another location. Alternatively, you can use the command prompt to navigate to the OS drive, create a new folder, and then copy all the files and folders from the **SYSTEM**  volume, as follows:
+1. Copy all the contents under the **SYSTEM** partition to another location. Alternatively, you can use the command prompt to navigate to the OS drive, create a new folder, and then copy all the files and folders from the **SYSTEM**  volume, like shown here:
 
-```
-D:\> Mkdir  BootBackup
-R:\> Copy *.* D:\BootBackup 
-```
+   ```cmd
+   D:\> Mkdir  BootBackup
+   R:\> Copy *.* D:\BootBackup 
+   ```
 
-2. If you are using Windows 10, or if you are troubleshooting by using a Windows 10 ISO at the Windows Pre-Installation Environment command prompt, you can use the **bcdboot**  command to re-create the boot files, as follows:
+2. If you're using Windows 10, or if you're troubleshooting by using a Windows 10 ISO at the Windows Pre-Installation Environment command prompt, you can use the **bcdboot** command to re-create the boot files, like shown here:
 
    ```cmd
    Bcdboot <**OSDrive* >:\windows /s <**SYSTEMdrive* >: /f ALL
    ```
 
-   For example: if we assign the `<System Drive>` (WinRE drive) the letter R and the `<OSdrive>` is the letter D, this command would be the following:
+   For example, if we assign the `<System Drive>` (WinRE drive) the letter R and the `<OSdrive>` is the letter D, the following is the command that we would use:
 
    ```cmd
    Bcdboot D:\windows /s R: /f ALL
@@ -153,13 +153,13 @@ R:\> Copy *.* D:\BootBackup
    >[!NOTE]
    >The **ALL** part of the **bcdboot** command writes all the boot files (both UEFI and BIOS) to their respective locations.
 
-If you do not have a Windows 10 ISO, you must format the partition and copy **bootmgr**  from another working computer that has a similar Windows build. To do this, follow these steps:
+If you don't have a Windows 10 ISO, format the partition and copy **bootmgr** from another working computer that has a similar Windows build. To do this, follow these steps:
 
-1. Start **Notepad** .
+1. Start **Notepad**.
 
 2. Press Ctrl+O.
 
-3. Navigate to the system partition (in this example, it is R).
+3. Navigate to the system partition (in this example, it's R).
 
 4. Right-click the partition, and then format it.
 
@@ -171,7 +171,7 @@ Run the following command to verify the Windows update installation and dates:
 Dism /Image:<Specify the OS drive>: /Get-packages
 ```
 
-After you run this command, you will see the **Install pending** and **Uninstall Pending** packages:
+After you run this command, you'll see the **Install pending** and **Uninstall Pending** packages:
 
 ![Dism output](images/pendingupdate.png)
 
@@ -179,27 +179,27 @@ After you run this command, you will see the **Install pending** and **Uninstall
 
     ![Dism output](images/revertpending.png)
 
-2. Navigate to ***OSdriveLetter* :\Windows\WinSxS** , and then check whether the **pending.xml**  file exists. If it does, rename it to **pending.xml.old**.
+2. Navigate to ***OSdriveLetter*:\Windows\WinSxS**, and then check whether the **pending.xml** file exists. If it does, rename it to **pending.xml.old**.
 
-3. To revert the registry changes, type **regedit**  at the command prompt to open **Registry Editor**.
+3. To revert the registry changes, type **regedit** at the command prompt to open **Registry Editor**.
 
 4. Select **HKEY_LOCAL_MACHINE**, and then go to **File**  > **Load Hive**.
 
-5. Navigate to **OSdriveLetter:\Windows\System32\config**, select the file that is named **COMPONENT** (with no extension), and then select **Open**. When you are prompted, enter the name **OfflineComponentHive** for the new hive
+5. Navigate to ***OSdriveLetter*:\Windows\System32\config**, select the file that's named **COMPONENT** (with no extension), and then select **Open**. When you're prompted, enter the name **OfflineComponentHive** for the new hive.
     
     ![Load Hive](images/loadhive.png)
 
 6. Expand **HKEY_LOCAL_MACHINE\OfflineComponentHive**, and check whether the **PendingXmlIdentifier** key exists. Create a backup of the **OfflineComponentHive** key, and then delete the **PendingXmlIdentifier** key.
 
-7. Unload the hive. To do this, highlight **OfflineComponentHive**, and then select **File**  > **Unload hive**.
+7. Unload the hive. To do this, highlight **OfflineComponentHive**, and then select **File** > **Unload hive**.
 
     ![Unload Hive](images/unloadhive.png)![Unload Hive](images/unloadhive1.png)
 
-8. Select **HKEY_LOCAL_MACHINE**, go to **File** > **Load Hive**, navigate to ***OSdriveLetter* :\Windows\System32\config**, select the file that is named **SYSTEM** (with no extension), and then select **Open** . When you are prompted, enter the name **OfflineSystemHive** for the new hive.
+8. Select **HKEY_LOCAL_MACHINE**, go to **File** > **Load Hive**, navigate to ***OSdriveLetter*:\Windows\System32\config**, select the file that's named **SYSTEM** (with no extension), and then select **Open**. When you're prompted, enter the name **OfflineSystemHive** for the new hive.
 
 9. Expand **HKEY_LOCAL_MACHINE\OfflineSystemHive**, and then select the **Select** key. Check the data for the **Default** value.
 
-10. If the data in **HKEY_LOCAL_MACHINE\OfflineSystemHive\Select\Default**  is **1** , expand **HKEY_LOCAL_MACHINE\OfflineHive\ControlSet001**. If it is **2**, expand **HKEY_LOCAL_MACHINE\OfflineHive\ControlSet002**, and so on.
+10. If the data in **HKEY_LOCAL_MACHINE\OfflineSystemHive\Select\Default**  is **1**, expand **HKEY_LOCAL_MACHINE\OfflineHive\ControlSet001**. If it's **2**, expand **HKEY_LOCAL_MACHINE\OfflineHive\ControlSet002**, and so on.
 
 11.	 Expand **Control\Session Manager**. Check whether the **PendingFileRenameOperations** key exists. If it does, back up the **SessionManager** key, and then delete the **PendingFileRenameOperations** key.
 
@@ -207,7 +207,7 @@ After you run this command, you will see the **Install pending** and **Uninstall
 
 #### Check services	
 
-1.	 Follow steps 1-10 in the "Troubleshooting if this issue occurs after an Windows Update installation" section. (Step 11 does not apply to this procedure.)
+1. Follow steps 1-10 in the "Troubleshooting if this issue occurs after a Windows Update installation" section. (Step 11 doesn't apply to this procedure.)
 
 2. Expand **Services**.
 
@@ -225,9 +225,9 @@ After you run this command, you will see the **Install pending** and **Uninstall
     
     *	VOLUME
 
-If these keys exist, check each one to make sure that it has a value that is named **Start** and that it is set to **0**. If not, set the value to **0**.
+If these keys exist, check each one to make sure that it has a value that's named **Start**, and that it's set to **0**. If it's not, set the value to **0**.
 
-If any of these keys do not exist, you can try to replace the current registry hive by using the hive from **RegBack**. To do this, run the following commands:
+If any of these keys don't exist, you can try to replace the current registry hive by using the hive from **RegBack**. To do this, run the following commands:
 
 ```cmd
 cd OSdrive:\Windows\System32\config
@@ -237,7 +237,7 @@ copy OSdrive:\Windows\System32\config\RegBack\SYSTEM OSdrive:\Windows\System32\c
 
 #### Check upper and lower filter drivers
 
-Check whether there are any non-Microsoft upper and lower filter drivers on the computer and that they do not exist on another, similar working computer. if they do exist, remove the upper and lower filter drivers:
+Check whether there are any non-Microsoft upper and lower filter drivers on the computer and that they don't exist on another, similar working computer. If they do exist, remove the upper and lower filter drivers:
 
 1. Expand **HKEY_LOCAL_MACHINE\OfflineHive\ControlSet001\Control**.
 
@@ -245,8 +245,8 @@ Check whether there are any non-Microsoft upper and lower filter drivers on the
 
    >[!NOTE]
    >These filters are mainly related to storage. After you expand the **Control** key in the registry, you can search for **UpperFilters** and **LowerFilters**.
-
-   The following are some of the different registry entries in which you may find these filter drivers. These entries are located under **ControlSet**  and are designated as **Default** :
+   
+   You might find these filter drivers in some of the following registry entries. These entries are under **ControlSet**  and are designated as **Default**:
 
 \Control\Class\\{4D36E96A-E325-11CE-BFC1-08002BE10318} 
 
@@ -258,19 +258,19 @@ Check whether there are any non-Microsoft upper and lower filter drivers on the
 
 ![Registry](images/controlset.png) 
 
-If an **UpperFilters**  or **LowerFilters**  entry is non-standard (for example, it is not a Windows default filter driver, such as PartMgr), remove the entry by double-clicking it in the right pane, and then deleting only that value.
+If an **UpperFilters**  or **LowerFilters**  entry is non-standard (for example, it's not a Windows default filter driver, such as PartMgr), remove the entry. To remove it, double-click it in the right pane, and then delete only that value.
 
 >[!NOTE]
 >There could be multiple entries.
 
-The reason that these entries may affect us is because there may be an entry in the **Services** branch that has a START type set to 0 or 1 (indicating that it is loaded at the Boot or Automatic part of the boot process). Also, either the file that is referred to is missing or corrupted, or it may be named differently than what is listed in the entry. 
+These entries might affect us because there might be an entry in the **Services** branch that has a START type set to 0 or 1, which means that it's loaded at the Boot or Automatic part of the boot process. Also, either the file that's referred to is missing or corrupted, or it might be named differently than what's listed in the entry. 
 
 >[!NOTE]
->If there actually is a service that is set to **0** or **1** that corresponds to an **UpperFilters** or **LowerFilters** entry, setting the service to disabled in the **Services** registry (as discussed in steps 2 and 3 of the Check services section) without removing the **Filter Driver** entry causes the computer to crash and generate a 0x7b Stop error.
+>If there's a service that's set to **0** or **1** that corresponds to an **UpperFilters** or **LowerFilters** entry, setting the service to disabled in the **Services** registry (as discussed in steps 2 and 3 of the Check services section) without removing the **Filter Driver** entry causes the computer to crash and generate a 0x7b Stop error.
 
 ### Running SFC and Chkdsk
 
- If the computer still does not start, you can try to run a **chkdisk**  process on the system drive, and also run System File Checker. To do this, run the following commands at a WinRE command prompt:
+ If the computer still doesn't start, you can try to run a **chkdisk**  process on the system drive, and then also run System File Checker. To do this, run the following commands at a WinRE command prompt:
 
 *	`chkdsk /f /r OsDrive:`
 
diff --git a/windows/client-management/troubleshoot-tcpip-connectivity.md b/windows/client-management/troubleshoot-tcpip-connectivity.md
index 0d4f00510a..77e524634d 100644
--- a/windows/client-management/troubleshoot-tcpip-connectivity.md
+++ b/windows/client-management/troubleshoot-tcpip-connectivity.md
@@ -14,27 +14,33 @@ manager: dansimp
 
 # Troubleshoot TCP/IP connectivity
 
-You might come across connectivity errors on the application end or timeout errors. Most common scenarios would include application connectivity to a database server, SQL timeout errors, BizTalk application timeout errors, Remote Desktop Protocol (RDP) failures, file share access failures, or general connectivity.  
+You might come across connectivity errors on the application end or timeout errors. The following are the most common scenarios:
+- Application connectivity to a database server
+- SQL timeout errors
+- BizTalk application timeout errors
+- Remote Desktop Protocol (RDP) failures
+- File share access failures
+- General connectivity
  
-When you suspect that the issue is on the network, you collect a network trace. The network trace would then be filtered. During troubleshooting connectivity errors, you might come across TCP reset in a network capture which could indicate a network issue.  
+When you suspect that the issue is on the network, you collect a network trace. The network trace would then be filtered. During troubleshooting connectivity errors, you might come across TCP reset in a network capture that could indicate a network issue.  
  
-* TCP is defined as connection-oriented and reliable protocol. One of the ways in which TCP ensures this is through the handshake process. Establishing a TCP session would begin with a 3-way handshake, followed by data transfer, and then a 4-way closure. The 4-way closure where both sender and receiver agree on closing the session is termed as *graceful closure*. After the 4-way closure, the server will allow 4 minutes of time (default), during which any pending packets on the network are to be processed, this is the TIME_WAIT state. Once the TIME_WAIT state is done, all the resources allocated for this connection are released.  
+* TCP is defined as connection-oriented and reliable protocol. One of the ways in which TCP ensures reliability is through the handshake process. Establishing a TCP session would begin with a three-way handshake, followed by data transfer, and then a four-way closure. The four-way closure where both sender and receiver agree on closing the session is termed as *graceful closure*. After the 4-way closure, the server will allow 4 minutes of time (default), during which any pending packets on the network are to be processed, this is the TIME_WAIT state. After the TIME_WAIT state completes, all the resources allocated for this connection are released.  
  
-* TCP reset is an abrupt closure of the session which causes the resources allocated to the connection to be immediately released and all other information about the connection is erased.  
+* TCP reset is an abrupt closure of the session; it causes the resources allocated to the connection to be immediately released and all other information about the connection is erased.  
  
 * TCP reset is identified by the RESET flag in the TCP header set to `1`.  
  
-A network trace on the source and the destination which will help you determine the flow of the traffic and see at what point the failure is observed.  
+A network trace on the source and the destination helps you to determine the flow of the traffic and see at what point the failure is observed.  
  
 The following sections describe some of the scenarios when you will see a RESET. 
  
 ## Packet drops
  
-When one TCP peer is sending out TCP packets for which there is no response received from the other end, the TCP peer would end up re-transmitting the data and when there is no response received, it would end the session by sending an ACK RESET( meaning, application acknowledges whatever data exchanged so far, but due to packet drop closing the connection).  
+When one TCP peer is sending out TCP packets for which there is no response received from the other end, the TCP peer would end up retransmitting the data and when there is no response received, it would end the session by sending an ACK RESET (this means that the application acknowledges whatever data is exchanged so far, but because of packet drop, the connection is closed).  
  
 The simultaneous network traces on source and destination will help you verify this behavior where on the source side you would see the packets being retransmitted and on the destination none of these packets are seen. This would mean, the network device between the source and destination is dropping the packets. 
  
-If the initial TCP handshake is failing because of packet drops then you would see that the TCP SYN packet is retransmitted only 3 times. 
+If the initial TCP handshake is failing because of packet drops, then you would see that the TCP SYN packet is retransmitted only three times. 
     
 Source side connecting on port 445:
 
@@ -44,7 +50,7 @@ Destination side: applying the same filter, you do not see any packets.
 
 ![Screenshot of frame summary with filter in Network Monitor](images/tcp-ts-7.png)
 
-For the rest of the data, TCP will retransmit the packets 5 times.
+For the rest of the data, TCP will retransmit the packets five times.
 
 **Source 192.168.1.62 side trace:**
 
@@ -58,16 +64,16 @@ If you are seeing that the SYN packets are reaching the destination, but the des
  
 ## Incorrect parameter in the TCP header
  
-You see this behavior when the packets are modified in the network by middle devices and TCP on the receiving end is unable to accept the packet, such as the sequence number being modified, or packets being re-played by middle device by changing the sequence number. Again, the simultaneous network trace on the source and destination will be able to tell you if any of the TCP headers are modified. Start by comparing the source trace and destination trace, you will be able to notice if there is a change in the packets itself or if any new packets are reaching the destination on behalf of the source.  
+You see this behavior when the packets are modified in the network by middle devices and TCP on the receiving end is unable to accept the packet, such as the sequence number being modified, or packets being replayed by middle device by changing the sequence number. Again, the simultaneous network trace on the source and destination will be able to tell you if any of the TCP headers are modified. Start by comparing the source trace and destination trace, you will be able to notice if there is a change in the packets itself or if any new packets are reaching the destination on behalf of the source.  
  
-In this case, you will again need help from the network team to identify any such device which is modifying packets or re-playing packets to the destination. The most common ones are RiverBed devices or WAN accelerators. 
+In this case, you'll again need help from the network team to identify any device that's modifying packets or replaying packets to the destination. The most common ones are RiverBed devices or WAN accelerators. 
  
      
 ## Application side reset
  
 When you have identified that the resets are not due to retransmits or incorrect parameter or packets being modified with the help of network trace, then you have narrowed it down to application level reset.
     
-The application resets are the ones where you see the Acknowledgement flag set to `1` along with the reset flag. This would mean that the server is acknowledging the receipt of the packet but for some reason it will not accept the connection. This is when the application that received the packet did not like something it received.  
+The application resets are the ones where you see the Acknowledgment flag set to `1` along with the reset flag. This would mean that the server is acknowledging the receipt of the packet but for some reason it will not accept the connection. This is when the application that received the packet did not like something it received.  
  
 In the below screenshots, you see that the packets seen on the source and the destination are the same without any modification or any drops, but you see an explicit reset sent by the destination to the source.
     
@@ -83,7 +89,7 @@ You also see an ACK+RST flag packet in a case when the TCP establishment packet
 
 ![Screenshot of packet flag](images/tcp-ts-11.png)
 
-The application which is causing the reset (identified by port numbers) should be investigated to understand what is causing it to reset the connection. 
+The application that's causing the reset (identified by port numbers) should be investigated to understand what is causing it to reset the connection. 
  
 >[!Note]
 >The above information is about resets from a TCP standpoint and not UDP. UDP is a connectionless protocol and the packets are sent unreliably. You would not see retransmission or resets when using UDP as a transport protocol. However, UDP makes use of ICMP as a error reporting protocol. When you have the UDP packet sent out on a port and the destination does not have port listed, you will see the destination sending out  **ICMP Destination host unreachable: Port unreachable** message immediately after the UDP packet
@@ -96,7 +102,7 @@ The application which is causing the reset (identified by port numbers) should b
 ```
  
  
-During the course of troubleshooting connectivity issue, you might also see in the network trace that a machine receives packets but does not respond to. In such cases, there could be a drop at the server level. You should enable firewall auditing on the machine to understand if the local firewall is dropping the packet.
+During the course of troubleshooting connectivity issue, you might also see in the network trace that a machine receives packets but does not respond to. In such cases, there could be a drop at the server level. To understand whether the local firewall is dropping the packet, enable the firewall auditing on the machine.
  
 ```
 auditpol /set /subcategory:"Filtering Platform Packet Drop" /success:enable /failure:enable
@@ -106,6 +112,6 @@ You can then review the Security event logs to see for a packet drop on a partic
 
 ![Screenshot of Event Properties](images/tcp-ts-12.png)
 
-Now, run the command `netsh wfp show state`, this will generate a wfpstate.xml file. Once you open this file and filter for the ID you find in the above event (2944008), you will be able to see a firewall rule name associated with this ID which is blocking the connection.
+Now, run the command `netsh wfp show state`, this will generate a wfpstate.xml file. After you open this file and filter for the ID that you find in the above event (2944008), you'll be able to see a firewall rule name that's associated with this ID that's blocking the connection.
 
 ![Screenshot of wfpstate.xml file](images/tcp-ts-13.png)
diff --git a/windows/security/threat-protection/auditing/audit-detailed-file-share.md b/windows/security/threat-protection/auditing/audit-detailed-file-share.md
index 69a9d636c7..3b223b9331 100644
--- a/windows/security/threat-protection/auditing/audit-detailed-file-share.md
+++ b/windows/security/threat-protection/auditing/audit-detailed-file-share.md
@@ -37,9 +37,9 @@ There are no system access control lists (SACLs) for shared folders. If this pol
 
 | Computer Type     | General Success | General Failure | Stronger Success | Stronger Failure | Comments                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         |
 |-------------------|-----------------|-----------------|------------------|------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| Domain Controller | No              | Yes             | No               | Yes              | Audit Success for this subcategory on domain controllers typically will lead to very high volume of events, especially for SYSVOL share.<br>We recommend monitoring Failure access attempts: the volume should not be very high. You will be able to see who was not able to get access to a file or folder on a network share on a computer.                                                                                                                                                                                                                                                                                                                                                                                              |
-| Member Server     | IF              | Yes             | IF               | Yes              | IF – If a server has shared network folders which typically get many access requests (File Server, for example), the volume of events might be very high. If you really need to track all successful access events for every file or folder located on a shared folder, enable Success auditing or use the [Audit File System](audit-file-system.md) subcategory, although that subcategory excludes some information in Audit Detailed File Share, for example, the client’s IP address.<br>The volume of Failure events for member servers should not be very high (if they are not File Servers). With Failure auditing, you will be able to see who was not able to get access to a file or folder on a network share on this computer. |
-| Workstation       | IF              | Yes             | IF               | Yes              | IF – If a workstation has shared network folders which typically get many access requests, the volume of events might be very high. If you really need to track all successful access events for every file or folder located on a shared folder, enable Success auditing or use Audit File System subcategory, although that subcategory excludes some information in Audit Detailed File Share, for example, the client’s IP address.<br>The volume of Failure events for workstations should not be very high. With Failure auditing, you will be able to see who was not able to get access to a file or folder on a network share on this computer.                                                                                   |
+| Domain Controller | No              | Yes             | No               | Yes              | Audit Success for this subcategory on domain controllers typically will lead to high volume of events, especially for SYSVOL share.<br>We recommend monitoring Failure access attempts: the volume should not be high. You will be able to see who was not able to get access to a file or folder on a network share on a computer.                                                                                                                                                                                                                                                                                                                                                                                              |
+| Member Server     | IF              | Yes             | IF               | Yes              | IF – If a server has shared network folders that typically get many access requests (File Server, for example), the volume of events might be high. If you really need to track all successful access events for every file or folder located on a shared folder, enable Success auditing or use the [Audit File System](audit-file-system.md) subcategory, although that subcategory excludes some information in Audit Detailed File Share, for example, the client’s IP address.<br>The volume of Failure events for member servers should not be high (if they are not File Servers). With Failure auditing, you can see who can't access a file or folder on a network share on this computer. |
+| Workstation       | IF              | Yes             | IF               | Yes              | IF – If a workstation has shared network folders that typically get many access requests, the volume of events might be high. If you really need to track all successful access events for every file or folder located on a shared folder, enable Success auditing or use Audit File System subcategory, although that subcategory excludes some information in Audit Detailed File Share, for example, the client’s IP address.<br>The volume of Failure events for workstations should not be high. With Failure auditing, you can see who can't access a file or folder on a network share on this computer.                                                                                   |
 
 **Events List:**
 
diff --git a/windows/security/threat-protection/auditing/audit-group-membership.md b/windows/security/threat-protection/auditing/audit-group-membership.md
index e9047b6c8a..5775f97220 100644
--- a/windows/security/threat-protection/auditing/audit-group-membership.md
+++ b/windows/security/threat-protection/auditing/audit-group-membership.md
@@ -1,6 +1,6 @@
 ---
 title: Audit Group Membership (Windows 10)
-description: The advanced security audit policy setting, Audit Group Membership, enables you to audit group memberships when they are enumerated on the client PC.
+description: Using the advanced security audit policy setting, Audit Group Membership, you can audit group memberships when they're enumerated on the client PC.
 ms.assetid: 1CD7B014-FBD9-44B9-9274-CC5715DE58B9
 ms.reviewer: 
 manager: dansimp
@@ -20,8 +20,7 @@ ms.date: 04/19/2017
 -   Windows 10
 -   Windows Server 2016
 
-
-Audit Group Membership enables you to audit group memberships when they are enumerated on the client computer.
+By using Audit Group Membership, you can audit group memberships when they're enumerated on the client computer.
 
 This policy allows you to audit the group membership information in the user's logon token. Events in this subcategory are generated on the computer on which a logon session is created.
 
@@ -33,15 +32,15 @@ Multiple events are generated if the group membership information cannot fit in
 
 **Event volume**:
 
--   Low on a client computer.
+- Low on a client computer.
 
--   Medium on a domain controller or network servers.
+- Medium on a domain controller or network servers.
 
 | Computer Type     | General Success | General Failure | Stronger Success | Stronger Failure | Comments                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               |
 |-------------------|-----------------|-----------------|------------------|------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| Domain Controller | Yes             | No              | Yes              | No               | Group membership information for logged in user can help to detect that member of specific domain or local group logged in to the machine (for example, member of database administrators, built-in local administrators, domain administrators, service accounts group or other high value groups).<br>For recommendations for using and analyzing the collected information, see the ***Security Monitoring Recommendations*** sections.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
-| Member Server     | Yes             | No              | Yes              | No               | Group membership information for logged in user can help to detect that member of specific domain or local group logged in to the machine (for example, member of database administrators, built-in local administrators, domain administrators, service accounts group or other high value groups).<br>For recommendations for using and analyzing the collected information, see the ***Security Monitoring Recommendations*** sections.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
-| Workstation       | Yes             | No              | Yes              | No               | Group membership information for logged in user can help to detect that member of specific domain or local group logged in to the machine (for example, member of database administrators, built-in local administrators, domain administrators, service accounts group or other high value groups).<br>For recommendations for using and analyzing the collected information, see the ***Security Monitoring Recommendations*** sections.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
+| Domain Controller | Yes             | No              | Yes              | No               | Group membership information for a logged-in user can help to detect that member of specific domain or local group logged in to the machine (for example, member of database administrators, built-in local administrators, domain administrators, service accounts group, or other high value groups).<br>For recommendations for using and analyzing the collected information, see the ***Security Monitoring Recommendations*** sections.<br>This subcategory doesn’t have Failure events, so this subcategory doesn't have a recommendation to enable Failure auditing. |
+| Member Server     | Yes             | No              | Yes              | No               | Group membership information for logged in user can help to detect that member of specific domain or local group logged in to the machine (for example, member of database administrators, built-in local administrators, domain administrators, service accounts group, or other high value groups).<br>For recommendations for using and analyzing the collected information, see the ***Security Monitoring Recommendations*** sections.<br>This subcategory doesn’t have Failure events, so this subcategory doesn't have a recommendation to enable Failure auditing. |
+| Workstation       | Yes             | No              | Yes              | No               | Group membership information for a logged-in user can help to detect that member of specific domain or local group logged in to the machine (for example, member of database administrators, built-in local administrators, domain administrators, service accounts group, or other high value groups).<br>For recommendations for using and analyzing the collected information, see the ***Security Monitoring Recommendations*** sections.<br>This subcategory doesn’t have Failure events, so this subcategory doesn't have a recommendation to enable Failure auditing. |
 
 **Events List:**
 
diff --git a/windows/security/threat-protection/auditing/audit-logoff.md b/windows/security/threat-protection/auditing/audit-logoff.md
index c4d6606795..011a5d397c 100644
--- a/windows/security/threat-protection/auditing/audit-logoff.md
+++ b/windows/security/threat-protection/auditing/audit-logoff.md
@@ -23,7 +23,7 @@ ms.date: 07/16/2018
 
 Audit Logoff determines whether the operating system generates audit events when logon sessions are terminated.
 
-These events occur on the computer that was accessed. In the case of an interactive logon, these events are generated on the computer that was logged on to.
+These events occur on the computer that was accessed. For an interactive logon, these events are generated on the computer that was logged on to.
 
 There is no failure event in this subcategory because failed logoffs (such as when a system abruptly shuts down) do not generate an audit record.
 
@@ -31,13 +31,13 @@ Logon events are essential to understanding user activity and detecting potentia
 
 **Event volume**: High.
 
-This subcategory allows you to audit events generated by the closing of a logon session. These events occur on the computer that was accessed. For an interactive logoff the security audit event is generated on the computer that the user account logged on to.
+This subcategory allows you to audit events generated by the closing of a logon session. These events occur on the computer that was accessed. For an interactive logoff, the security audit event is generated on the computer that the user account logged on to.
 
 | Computer Type     | General Success | General Failure | Stronger Success | Stronger Failure | Comments                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            |
 |-------------------|-----------------|-----------------|------------------|------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| Domain Controller | No              | No              | Yes              | No               | This subcategory typically generates huge amount of “[4634](event-4634.md)(S): An account was logged off.” events, which typically have little security relevance. It is more important to audit Logon events using [Audit Logon](audit-logon.md) subcategory, rather than Logoff events.<br>Enable Success audit if you want to track, for example, for how long session was active (in correlation with [Audit Logon](audit-logon.md) events) and when user actually logged off.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
-| Member Server     | No              | No              | Yes              | No               | This subcategory typically generates huge amount of “[4634](event-4634.md)(S): An account was logged off.” events, which typically have little security relevance. It is more important to audit Logon events using [Audit Logon](audit-logon.md) subcategory, rather than Logoff events.<br>Enable Success audit if you want to track, for example, for how long session was active (in correlation with [Audit Logon](audit-logon.md) events) and when user actually logged off.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
-| Workstation       | No              | No              | Yes              | No               | This subcategory typically generates huge amount of “[4634](event-4634.md)(S): An account was logged off.” events, which typically have little security relevance. It is more important to audit Logon events using [Audit Logon](audit-logon.md) subcategory, rather than Logoff events.<br>Enable Success audit if you want to track, for example, for how long session was active (in correlation with [Audit Logon](audit-logon.md) events) and when user actually logged off.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
+| Domain Controller | No              | No              | Yes              | No               | This subcategory typically generates huge amount of “[4634](event-4634.md)(S): An account was logged off.” events, which typically have little security relevance. It's more important to audit Logon events using [Audit Logon](audit-logon.md) subcategory, rather than Logoff events.<br>Enable Success audit if you want to track, for example, for how long a session was active (in correlation with [Audit Logon](audit-logon.md) events) and when a user logged off.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
+| Member Server     | No              | No              | Yes              | No               | This subcategory typically generates huge amount of “[4634](event-4634.md)(S): An account was logged off.” events, which typically have little security relevance. It's more important to audit Logon events using [Audit Logon](audit-logon.md) subcategory, rather than Logoff events.<br>Enable Success audit if you want to track, for example, for how long a session was active (in correlation with [Audit Logon](audit-logon.md) events) and when a user logged off.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
+| Workstation       | No              | No              | Yes              | No               | This subcategory typically generates huge amount of “[4634](event-4634.md)(S): An account was logged off.” events, which typically have little security relevance. It's more important to audit Logon events using [Audit Logon](audit-logon.md) subcategory, rather than Logoff events.<br>Enable Success audit if you want to track, for example, for how long a session was active (in correlation with [Audit Logon](audit-logon.md) events) and when a user logged off.<br>This subcategory doesn’t have Failure events, so there is no recommendation to enable Failure auditing for this subcategory. |
 
 **Events List:**
 
diff --git a/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md b/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
index f1227802bd..b75e993891 100644
--- a/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
+++ b/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
@@ -1,6 +1,6 @@
 ---
-title: Audit Non Sensitive Privilege Use (Windows 10)
-description: This topic for the IT professional describes the Advanced Security Audit policy setting, Audit Non-Sensitive Privilege Use, which determines whether the operating system generates audit events when non-sensitive privileges (user rights) are used.
+title: Audit Non-Sensitive Privilege Use (Windows 10)
+description: This article for the IT professional describes the Advanced Security Audit policy setting, Audit Non-Sensitive Privilege Use, which determines whether the operating system generates audit events when non-sensitive privileges (user rights) are used.
 ms.assetid: 8fd74783-1059-443e-aa86-566d78606627
 ms.reviewer: 
 manager: dansimp
@@ -14,14 +14,14 @@ author: dansimp
 ms.date: 04/19/2017
 ---
 
-# Audit Non Sensitive Privilege Use
+# Audit Non-Sensitive Privilege Use
 
 **Applies to**
 -   Windows 10
 -   Windows Server 2016
 
 
-Audit Non Sensitive Privilege Use contains events that show usage of non-sensitive privileges. This is the list of non-sensitive privileges:
+Audit Non-Sensitive Privilege Use contains events that show usage of non-sensitive privileges. This is the list of non-sensitive privileges:
 
 -   Access Credential Manager as a trusted caller
 

From c7dc0cc6df273fb0e50f92cebb62bc177e1a12a2 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Wed, 11 Nov 2020 21:26:23 +0530
Subject: [PATCH 081/209] updated-4567381-batch13

rebranding
---
 .../overview-endpoint-detection-response.md   |  6 +-
 .../partner-applications.md                   | 68 +++++++++----------
 .../partner-integration.md                    | 24 +++----
 .../microsoft-defender-atp/portal-overview.md | 20 +++---
 .../post-ti-indicator.md                      |  4 +-
 .../preferences-setup.md                      |  4 +-
 .../prepare-deployment.md                     | 25 ++++---
 .../preview-settings.md                       | 14 ++--
 .../microsoft-defender-atp/preview.md         | 24 +++----
 .../production-deployment.md                  | 40 +++++------
 .../pull-alerts-using-rest-api.md             | 42 ++++++------
 .../raw-data-export-event-hub.md              | 12 ++--
 .../raw-data-export-storage.md                | 16 ++---
 .../microsoft-defender-atp/raw-data-export.md | 10 +--
 .../microsoft-defender-atp/rbac.md            | 14 ++--
 .../microsoft-defender-atp/recommendation.md  |  4 +-
 .../respond-file-alerts.md                    | 16 ++---
 .../respond-machine-alerts.md                 | 10 +--
 .../restrict-code-execution.md                |  6 +-
 .../microsoft-defender-atp/review-alerts.md   | 12 ++--
 .../run-advanced-query-api.md                 |  8 +--
 .../run-advanced-query-sample-powershell.md   |  6 +-
 .../run-advanced-query-sample-python.md       |  6 +-
 .../microsoft-defender-atp/run-av-scan.md     |  6 +-
 .../run-detection-test.md                     |  8 +--
 25 files changed, 202 insertions(+), 203 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md b/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
index 0f3c036938..f79f0792f3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response.md
@@ -25,15 +25,15 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Microsoft Defender ATP endpoint detection and response capabilities provide advanced attack detections that are near real-time and actionable. Security analysts can prioritize alerts effectively, gain visibility into the full scope of a breach, and take response actions to remediate threats.
+Defender for Endpoint endpoint detection and response capabilities provide advanced attack detections that are near real-time and actionable. Security analysts can prioritize alerts effectively, gain visibility into the full scope of a breach, and take response actions to remediate threats.
 
 When a threat is detected, alerts are created in the system for an analyst to investigate. Alerts with the same attack techniques or attributed to the same attacker are aggregated into an entity called an _incident_. Aggregating alerts in this manner makes it easy for analysts to collectively investigate and respond to threats.
 
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4o1j5]
 
-Inspired by the "assume breach" mindset, Microsoft Defender ATP continuously collects behavioral cyber telemetry. This includes process information, network activities, deep optics into the kernel and memory manager, user login activities, registry and file system changes, and others. The information is stored for six months, enabling an analyst to travel back in time to the start of an attack. The analyst can then pivot in various views and approach an investigation through multiple vectors.
+Inspired by the "assume breach" mindset, Defender for Endpoint continuously collects behavioral cyber telemetry. This includes process information, network activities, deep optics into the kernel and memory manager, user login activities, registry and file system changes, and others. The information is stored for six months, enabling an analyst to travel back in time to the start of an attack. The analyst can then pivot in various views and approach an investigation through multiple vectors.
 
 The response capabilities give you the power to promptly remediate threats by acting on the affected entities.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
index 822b5afaab..4c47c0f8bd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
@@ -18,21 +18,21 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Partner applications in Microsoft Defender ATP 
+# Partner applications in Microsoft Defender for Endpoint 
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
-Microsoft Defender ATP supports third-party applications to help enhance the detection, investigation, and threat intelligence capabilities of the platform.
+Defender for Endpoint supports third-party applications to help enhance the detection, investigation, and threat intelligence capabilities of the platform.
 
 
-The support for third-party solutions helps to further streamline, integrate, and orchestrate defenses from other vendors with Microsoft Defender ATP; enabling security teams to effectively respond better to modern threats.
+The support for third-party solutions helps to further streamline, integrate, and orchestrate defenses from other vendors with Defender for Endpoint; enabling security teams to effectively respond better to modern threats.
 
-Microsoft Defender ATP seamlessly integrates with existing security solutions. The integration provides integration with the following solutions such as:
+Defender for Endpoint seamlessly integrates with existing security solutions. The integration provides integration with the following solutions such as:
 - SIEM
 - Ticketing and IT service management solutions
 - Managed security service providers (MSSP)
@@ -47,16 +47,16 @@ Microsoft Defender ATP seamlessly integrates with existing security solutions. T
 
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of AttackIQ logo](images/attackiq-logo.png)| [AttackIQ Platform](https://go.microsoft.com/fwlink/?linkid=2103502) | AttackIQ Platform validates Microsoft Defender ATP is configured properly by launching continuous attacks safely on production assets
-![Image of Azure Sentinel logo](images/sentinel-logo.png)| [AzureSentinel](https://go.microsoft.com/fwlink/?linkid=2135705) | Stream alerts from Microsoft Defender Advanced Threat Protection into Azure Sentinel 
-![Image of Cymulate logo](images/cymulate-logo.png) | [Cymulate](https://go.microsoft.com/fwlink/?linkid=2135574)| Correlate Microsoft Defender ATP findings with simulated attacks to validate accurate detection and effective response actions
+![Image of AttackIQ logo](images/attackiq-logo.png)| [AttackIQ Platform](https://go.microsoft.com/fwlink/?linkid=2103502) | AttackIQ Platform validates Defender for Endpoint is configured properly by launching continuous attacks safely on production assets
+![Image of Azure Sentinel logo](images/sentinel-logo.png)| [AzureSentinel](https://go.microsoft.com/fwlink/?linkid=2135705) | Stream alerts from Defender for Endpoint into Azure Sentinel 
+![Image of Cymulate logo](images/cymulate-logo.png) | [Cymulate](https://go.microsoft.com/fwlink/?linkid=2135574)| Correlate Defender for Endpoint findings with simulated attacks to validate accurate detection and effective response actions
 ![Image of Elastic security logo](images/elastic-security-logo.png) | [Elastic Security](https://go.microsoft.com/fwlink/?linkid=2139303) | Elastic Security is a free and open solution for preventing, detecting, and responding to threats
-![Image of IBM QRadar logo](images/ibm-qradar-logo.png) | [IBM QRadar](https://go.microsoft.com/fwlink/?linkid=2113903) | Configure IBM QRadar to collect detections from Microsoft Defender ATP 
-![Image of Micro Focus ArcSight logo](images/arcsight-logo.png) | [Micro Focus ArcSight](https://go.microsoft.com/fwlink/?linkid=2113548) | Use Micro Focus ArcSight to pull Microsoft Defender ATP detections
-![Image of RSA NetWitness logo](images/rsa-netwitness-logo.png) | [RSA NetWitness](https://go.microsoft.com/fwlink/?linkid=2118566) | Stream Microsoft Defender ATP Alerts to RSA NetWitness leveraging Microsoft Graph Security API
-![Image of SafeBreach logo](images/safebreach-logo.png) | [SafeBreach](https://go.microsoft.com/fwlink/?linkid=2114114)| Gain visibility into Microsoft Defender ATP security events that are automatically correlated with SafeBreach simulations
+![Image of IBM QRadar logo](images/ibm-qradar-logo.png) | [IBM QRadar](https://go.microsoft.com/fwlink/?linkid=2113903) | Configure IBM QRadar to collect detections from Defender for Endpoint 
+![Image of Micro Focus ArcSight logo](images/arcsight-logo.png) | [Micro Focus ArcSight](https://go.microsoft.com/fwlink/?linkid=2113548) | Use Micro Focus ArcSight to pull Defender for Endpoint detections
+![Image of RSA NetWitness logo](images/rsa-netwitness-logo.png) | [RSA NetWitness](https://go.microsoft.com/fwlink/?linkid=2118566) | Stream Defender for Endpoint Alerts to RSA NetWitness leveraging Microsoft Graph Security API
+![Image of SafeBreach logo](images/safebreach-logo.png) | [SafeBreach](https://go.microsoft.com/fwlink/?linkid=2114114)| Gain visibility into Defender for Endpoint security events that are automatically correlated with SafeBreach simulations
 ![Image of Skybox Vulnerability Control logo](images/skybox-logo.png) | [Skybox Vulnerability Control](https://go.microsoft.com/fwlink/?linkid=2127467) | Skybox Vulnerability Control cuts through the noise of vulnerability management, correlating business, network, and threat context to uncover your riskiest vulnerabilities
-![Image of Splunk logo](images/splunk-logo.png) | [Splunk](https://go.microsoft.com/fwlink/?linkid=2129805) | The Microsoft Defender ATP Add-on allows Splunk users to ingest all of the alerts and supporting information to their Splunk
+![Image of Splunk logo](images/splunk-logo.png) | [Splunk](https://go.microsoft.com/fwlink/?linkid=2129805) | The Defender for Endpoint Add-on allows Splunk users to ingest all of the alerts and supporting information to their Splunk
 ![Image of XM Cyber logo](images/xmcyber-logo.png) | [XM Cyber](https://go.microsoft.com/fwlink/?linkid=2136700) | Prioritize your response to an alert based on risk factors and high value assets
 
 ### Orchestration and automation
@@ -64,31 +64,31 @@ Logo |Partner name   | Description
 
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of CyberSponse CyOps logo](images/cybersponse-logo.png) | [CyberSponse CyOps](https://go.microsoft.com/fwlink/?linkid=2115943) | CyOps integrates with Microsoft Defender ATP to automate customers' high-speed incident response playbooks
-![Image of Delta Risk ActiveEye logo](images/delta-risk-activeeye-logo.png) | [Delta Risk ActiveEye](https://go.microsoft.com/fwlink/?linkid=2127468) | Delta Risk, a leading provider of SOC-as-a-Service and security services, integrate Microsoft Defender ATP with its cloud-native SOAR platform, ActiveEye.
-![Image of Demisto, a Palo Alto Networks Company logo](images/demisto-logo.png) | [Demisto, a Palo Alto Networks Company](https://go.microsoft.com/fwlink/?linkid=2108414) | Demisto integrates with Microsoft Defender ATP to enable security teams to orchestrate and automate endpoint security monitoring, enrichment, and response
-![Image of Microsoft Flow & Azure Functions logo](images/ms-flow-logo.png) | [Microsoft Flow & Azure Functions](https://go.microsoft.com/fwlink/?linkid=2114300) | Use the Microsoft Defender ATP connectors for Azure Logic Apps & Microsoft Flow to automating security procedures
-![Image of Rapid7 InsightConnect logo](images/rapid7-logo.png) | [Rapid7 InsightConnect](https://go.microsoft.com/fwlink/?linkid=2116040) | InsightConnect integrates with Microsoft Defender ATP to accelerate, streamline, and integrate your time-intensive security processes
+![Image of CyberSponse CyOps logo](images/cybersponse-logo.png) | [CyberSponse CyOps](https://go.microsoft.com/fwlink/?linkid=2115943) | CyOps integrates with Defender for Endpoint to automate customers' high-speed incident response playbooks
+![Image of Delta Risk ActiveEye logo](images/delta-risk-activeeye-logo.png) | [Delta Risk ActiveEye](https://go.microsoft.com/fwlink/?linkid=2127468) | Delta Risk, a leading provider of SOC-as-a-Service and security services, integrate Defender for Endpoint with its cloud-native SOAR platform, ActiveEye.
+![Image of Demisto, a Palo Alto Networks Company logo](images/demisto-logo.png) | [Demisto, a Palo Alto Networks Company](https://go.microsoft.com/fwlink/?linkid=2108414) | Demisto integrates with Defender for Endpoint to enable security teams to orchestrate and automate endpoint security monitoring, enrichment, and response
+![Image of Microsoft Flow & Azure Functions logo](images/ms-flow-logo.png) | [Microsoft Flow & Azure Functions](https://go.microsoft.com/fwlink/?linkid=2114300) | Use the Defender for Endpoint connectors for Azure Logic Apps & Microsoft Flow to automating security procedures
+![Image of Rapid7 InsightConnect logo](images/rapid7-logo.png) | [Rapid7 InsightConnect](https://go.microsoft.com/fwlink/?linkid=2116040) | InsightConnect integrates with Defender for Endpoint to accelerate, streamline, and integrate your time-intensive security processes
 ![Image of ServiceNow logo](images/servicenow-logo.png) | [ServiceNow](https://go.microsoft.com/fwlink/?linkid=2135621) | Ingest alerts into ServiceNow Security Operations solution based on Microsoft Graph API integration
-![Image of Swimlane logo](images/swimlane-logo.png) | [Swimlane](https://go.microsoft.com/fwlink/?linkid=2113902) | Maximize incident response capabilities utilizing Swimlane and Microsoft Defender ATP together
+![Image of Swimlane logo](images/swimlane-logo.png) | [Swimlane](https://go.microsoft.com/fwlink/?linkid=2113902) | Maximize incident response capabilities utilizing Swimlane and Defender for Endpoint together
 
 
 ### Threat intelligence
 
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of MISP Malware Information Sharing Platform)logo](images/misp-logo.png) | [MISP (Malware Information Sharing Platform)](https://go.microsoft.com/fwlink/?linkid=2127543) | Integrate threat indicators from the Open Source Threat Intelligence Sharing Platform into your Microsoft Defender ATP environment
-![Image of Palo Alto Networks logo](images/paloalto-logo.png) | [Palo Alto Networks](https://go.microsoft.com/fwlink/?linkid=2099582) | Enrich your endpoint protection by extending Autofocus and other threat feeds to Microsoft Defender ATP using MineMeld
-![Image of ThreatConnect logo](images/threatconnect-logo.png) | [ThreatConnect](https://go.microsoft.com/fwlink/?linkid=2114115) | Alert and/or block on custom threat intelligence from ThreatConnect Playbooks using Microsoft Defender ATP indicators
+![Image of MISP Malware Information Sharing Platform)logo](images/misp-logo.png) | [MISP (Malware Information Sharing Platform)](https://go.microsoft.com/fwlink/?linkid=2127543) | Integrate threat indicators from the Open Source Threat Intelligence Sharing Platform into your Defender for Endpoint environment
+![Image of Palo Alto Networks logo](images/paloalto-logo.png) | [Palo Alto Networks](https://go.microsoft.com/fwlink/?linkid=2099582) | Enrich your endpoint protection by extending Autofocus and other threat feeds to Defender for Endpoint using MineMeld
+![Image of ThreatConnect logo](images/threatconnect-logo.png) | [ThreatConnect](https://go.microsoft.com/fwlink/?linkid=2114115) | Alert and/or block on custom threat intelligence from ThreatConnect Playbooks using Defender for Endpoint indicators
 
 
 
 ### Network security
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of Aruba ClearPass Policy Manager logo](images/aruba-logo.png) | [Aruba ClearPass Policy Manager](https://go.microsoft.com/fwlink/?linkid=2127544) | Ensure Microsoft Defender ATP is installed and updated on each endpoint before allowing access to the network
+![Image of Aruba ClearPass Policy Manager logo](images/aruba-logo.png) | [Aruba ClearPass Policy Manager](https://go.microsoft.com/fwlink/?linkid=2127544) | Ensure Defender for Endpoint is installed and updated on each endpoint before allowing access to the network
 ![Image of Blue Hexagon for Network logo](images/bluehexagon-logo.png) | [Blue Hexagon for Network](https://go.microsoft.com/fwlink/?linkid=2104613) | Blue Hexagon has built the industry's first real-time deep learning platform for network threat protection
-![Image of CyberMDX logo](images/cybermdx-logo.png) | [CyberMDX](https://go.microsoft.com/fwlink/?linkid=2135620) | Cyber MDX integrates comprehensive healthcare assets visibility, threat prevention and repose into your Microsoft Defender ATP environment
+![Image of CyberMDX logo](images/cybermdx-logo.png) | [CyberMDX](https://go.microsoft.com/fwlink/?linkid=2135620) | Cyber MDX integrates comprehensive healthcare assets visibility, threat prevention and repose into your Defender for Endpoint environment
 ![Image of Vectra Network Detection and Response (NDR) logo](images/vectra-logo.png) |[Vectra Network Detection and Response (NDR)](https://go.microsoft.com/fwlink/?linkid=866934)| Vectra applies AI & security research to detect and respond to cyber-attacks in real time
 
 
@@ -100,13 +100,13 @@ Logo |Partner name   | Description
 ![Image of Corrata logo](images/corrata-logo.png)| [Corrata](https://go.microsoft.com/fwlink/?linkid=2081148) | Mobile solution — Protect your mobile devices with granular visibility and control from Corrata 
 ![Image of Lookout logo](images/lookout-logo.png)| [Lookout](https://go.microsoft.com/fwlink/?linkid=866935)| Get Lookout Mobile Threat Protection telemetry for Android and iOS mobile devices
 ![Image of Symantec Endpoint Protection Mobile logo](images/symantec-logo.png) | [Symantec Endpoint Protection Mobile](https://go.microsoft.com/fwlink/?linkid=2090992)| SEP Mobile helps businesses predict, detect, and prevent security threats and vulnerabilities on mobile devices 
-![Image of Zimperium logo](images/zimperium-logo.png)| [Zimperium](https://go.microsoft.com/fwlink/?linkid=2118044)|Extend your Microsoft Defender ATP to iOS and Android with Machine Learning-based Mobile Threat Defense
+![Image of Zimperium logo](images/zimperium-logo.png)| [Zimperium](https://go.microsoft.com/fwlink/?linkid=2118044)|Extend your Defender for Endpoint to iOS and Android with Machine Learning-based Mobile Threat Defense
 
 
 ## Additional integrations
 Logo |Partner name   | Description 
 :---|:---|:---
-![Image of Cyren Web Filter logo](images/cyren-logo.png)| [Cyren Web Filter](https://go.microsoft.com/fwlink/?linkid=2108221)| Enhance your Microsoft Defender ATP with advanced Web Filtering
+![Image of Cyren Web Filter logo](images/cyren-logo.png)| [Cyren Web Filter](https://go.microsoft.com/fwlink/?linkid=2108221)| Enhance your Defender for Endpoint with advanced Web Filtering
 ![Image of Morphisec logo](images/morphisec-logo.png)| [Morphisec](https://go.microsoft.com/fwlink/?linkid=2086215)| Provides Moving Target Defense-powered advanced threat prevention and integrates forensics data directly into WD Security Center dashboards to help prioritize alerts, determine device at-risk score and visualize full attack timeline including internal memory information
 ![Image of THOR Cloud logo](images/nextron-thor-logo.png)| [THOR Cloud](https://go.microsoft.com/fwlink/?linkid=862988)| Provides on-demand live forensics scans using a signature base with focus on persistent threats
 
@@ -114,27 +114,27 @@ Logo |Partner name   | Description
 
 
 ## SIEM integration
-Microsoft Defender ATP supports SIEM integration through a variety of methods — specialized SIEM system interface with out of the box connectors, a generic alert API enabling custom implementations, and an action API enabling alert status management.  For more information, see [Enable SIEM integration](enable-siem-integration.md).
+Defender for Endpoint supports SIEM integration through a variety of methods — specialized SIEM system interface with out of the box connectors, a generic alert API enabling custom implementations, and an action API enabling alert status management.  For more information, see [Enable SIEM integration](enable-siem-integration.md).
 
 ## Ticketing and IT service management 
-Ticketing solution integration helps to implement manual and automatic response processes. Microsoft Defender ATP can help to create tickets automatically when an alert is generated and resolve the alerts when tickets are closed using the alerts API. 
+Ticketing solution integration helps to implement manual and automatic response processes. Defender for Endpoint can help to create tickets automatically when an alert is generated and resolve the alerts when tickets are closed using the alerts API. 
 
 ## Security orchestration and automation response (SOAR) integration 
-Orchestration solutions can help build playbooks and integrate the rich data model and actions that Microsoft Defender ATP APIs expose to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others. 
+Orchestration solutions can help build playbooks and integrate the rich data model and actions that Defender for Endpoint APIs expose to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others. 
 
 ## External alert correlation and Automated investigation and remediation  
-Microsoft Defender ATP offers unique automated investigation and remediation capabilities to drive incident response at scale.
+Defender for Endpoint offers unique automated investigation and remediation capabilities to drive incident response at scale.
   
 Integrating the automated investigation and response capability with other solutions such as IDS and firewalls help to address alerts and minimize the complexities surrounding network and device signal correlation, effectively streamlining the investigation and threat remediation actions on devices.  
 
-External alerts can be pushed into Microsoft Defender ATP and is presented side by side with additional device-based alerts from Microsoft Defender ATP. This view provides a full context of the alert — with the real process and the full story of attack.  
+External alerts can be pushed into Defender for Endpoint and is presented side by side with additional device-based alerts from Defender for Endpoint. This view provides a full context of the alert — with the real process and the full story of attack.  
 
 ## Indicators matching
 You can use threat-intelligence from providers and aggregators to maintain and use indicators of compromise (IOCs).
 
-Microsoft Defender ATP allows you to integrate with such solutions and act on IoCs by correlating its rich telemetry and creating alerts when there's a match; leveraging prevention and automated response capabilities to block execution and take remediation actions when there's a match.
+Defender for Endpoint allows you to integrate with such solutions and act on IoCs by correlating its rich telemetry and creating alerts when there's a match; leveraging prevention and automated response capabilities to block execution and take remediation actions when there's a match.
 
-Microsoft Defender ATP currently supports IOC matching and remediation for file and network indicators. Blocking is supported for file indicators.  
+Defender for Endpoint currently supports IOC matching and remediation for file and network indicators. Blocking is supported for file indicators.  
 
 ## Support for non-Windows platforms
-Microsoft Defender ATP provides a centralized security operations experience for Windows as well as non-Windows platforms, including mobile devices. You'll be able to see alerts from various supported operating systems (OS) in the portal and better protect your organization's network. 
+Defender for Endpoint provides a centralized security operations experience for Windows as well as non-Windows platforms, including mobile devices. You'll be able to see alerts from various supported operating systems (OS) in the portal and better protect your organization's network. 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md b/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
index 7aa19efe08..349dc8d30d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
@@ -18,42 +18,42 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual 
 ---
 
-# Microsoft Defender ATP partner opportunities and scenarios
+# Microsoft Defender for Endpoint partner opportunities and scenarios
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:** 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-> Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+> Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
-Partners can easily extend their existing security offerings on top of the open framework and a rich and complete set of APIs to build extensions and integrations with Microsoft Defender ATP. 
+Partners can easily extend their existing security offerings on top of the open framework and a rich and complete set of APIs to build extensions and integrations with Defender for Endpoint. 
 
-The APIs span functional areas including detection, management, response, vulnerabilities, and intelligence-wide range of use cases. Based on the use case and need, partners can either stream or query data from Microsoft Defender ATP. 
+The APIs span functional areas including detection, management, response, vulnerabilities, and intelligence-wide range of use cases. Based on the use case and need, partners can either stream or query data from Defender for Endpoint. 
 
 
 ## Scenario 1: External alert correlation and Automated investigation and remediation
-Microsoft Defender ATP offers unique automated investigation and remediation capabilities to drive incident response at scale. 
+Defender for Endpoint offers unique automated investigation and remediation capabilities to drive incident response at scale. 
 
 Integrating the automated investigation and response capability with other solutions such as network security products or other endpoint security products will help to address alerts. The integration also minimizes the complexities surrounding network and device signal correlation, effectively streamlining the investigation and threat remediation actions on devices.
 
-Microsoft Defender ATP adds support for this scenario in the following forms:
+Defender for Endpoint adds support for this scenario in the following forms:
 
-- External alerts can be pushed into Microsoft Defender ATP and presented side by side with additional device-based alerts from Microsoft Defender ATP. This view provides the full context of the alert - with the real process and the full story of attack.
+- External alerts can be pushed into Defender for Endpoint and presented side by side with additional device-based alerts from Defender for Endpoint. This view provides the full context of the alert - with the real process and the full story of attack.
 
-- Once an alert is generated, the signal is shared across all Microsoft Defender ATP protected endpoints in the enterprise. Microsoft Defender ATP takes immediate automated or operator-assisted response to address the alert.
+- Once an alert is generated, the signal is shared across all Defender for Endpoint protected endpoints in the enterprise. Defender for Endpoint takes immediate automated or operator-assisted response to address the alert.
 
 ## Scenario 2: Security orchestration and automation response (SOAR) integration
-Orchestration solutions can help build playbooks and integrate the rich data model and actions that Microsoft Defender ATP APIs expose to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others.
+Orchestration solutions can help build playbooks and integrate the rich data model and actions that Defender for Endpoint APIs expose to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others.
 
 ## Scenario 3: Indicators matching 
-Indicator of compromise (IoCs) matching is an essential feature in every endpoint protection solution. This capability is available in Microsoft Defender ATP and gives the ability to set a list of indicators for prevention, detection, and exclusion of entities. One can define the action to be taken as well as the duration for when to apply the action.
+Indicator of compromise (IoCs) matching is an essential feature in every endpoint protection solution. This capability is available in Defender for Endpoint and gives the ability to set a list of indicators for prevention, detection, and exclusion of entities. One can define the action to be taken as well as the duration for when to apply the action.
 
 The above scenarios serve as examples of the extensibility of the platform. You are not limited to the examples and we certainly encourage you to leverage the open framework to discover and explore other scenarios.
 
-Follow the steps in [Become a Microsoft Defender ATP partner](get-started-partner-integration.md) to integrate your solution in Microsoft Defender ATP.
+Follow the steps in [Become a Microsoft Defender for Endpoint partner](get-started-partner-integration.md) to integrate your solution in Defender for Endpoint.
 
 ## Related topic
 - [Overview of management and APIs](management-apis.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md b/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md
index 699cc87da7..e4679370bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/portal-overview.md
@@ -23,9 +23,9 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink) 
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink) 
 
 Enterprise security teams can use Microsoft Defender Security Center to monitor and assist in responding to alerts of potential advanced persistent threat activity or data breaches.
 
@@ -33,7 +33,7 @@ You can use [Microsoft Defender Security Center](https://securitycenter.windows.
 
 - View, sort, and triage alerts from your endpoints
 - Search for more information on observed indicators such as files and IP Addresses
-- Change Microsoft Defender ATP settings, including time zone and review licensing information
+- Change Microsoft Defender for Endpoint settings, including time zone and review licensing information
 
 ## Microsoft Defender Security Center
 
@@ -42,7 +42,7 @@ When you open the portal, you'll see:
 - (1) Navigation pane (select the horizontal lines at the top of the navigation pane to show or hide it)
 - (2) Search, Community center, Localization, Help and support, Feedback
 
- ![Microsoft Defender Advanced Threat Protection portal](images/mdatp-portal-overview.png)
+ ![Microsoft Defender for Endpoint portal](images/mdatp-portal-overview.png)
 
 > [!NOTE]
 > Malware related detections will only appear if your devices are using Microsoft Defender Antivirus as the default real-time protection antimalware product.
@@ -54,29 +54,29 @@ Area | Description
 **(1) Navigation pane** | Use the navigation pane to move between **Dashboards**, **Incidents**, **Devices list**, **Alerts queue**, **Automated investigations**, **Advanced hunting**, **Reports**, **Partners & APIs**, **Threat & Vulnerability Management**, **Evaluation and tutorials**, **Service health**, **Configuration management**, and **Settings**. Select the horizontal lines at the top of the navigation pane to show or hide it.
 **Dashboards** | Access the active automated investigations, active alerts, automated investigations statistics, devices at risk, users at risk, devices with sensor issues, service health, detection sources, and daily devices reporting dashboards.
 **Incidents** | View alerts that have been aggregated as incidents.
-**Devices list** | Displays the list of devices that are onboarded to Microsoft Defender ATP, some information about them, and their exposure and risk levels.
+**Devices list** | Displays the list of devices that are onboarded to Defender for Endpoint, some information about them, and their exposure and risk levels.
 **Alerts queue** | View alerts generated from devices in your organizations.
 **Automated investigations** | Displays automated investigations that have been conducted in the network, triggering alert, the status of each investigation and other details such as when the investigation started and the duration of the investigation.
 **Advanced hunting** | Advanced hunting allows you to proactively hunt and investigate across your organization using a powerful search and query tool.
 **Reports** | View graphs detailing threat protection, device health and compliance, web protection, and vulnerability.
 **Partners & APIs** | View supported partner connections, which enhance the detection, investigation, and threat intelligence capabilities of the platform. You can also view connected applications, the API explorer, API usage overview, and data export settings.
 **Threat & Vulnerability management** | View your Microsoft Secure Score for Devices, exposure score, exposed devices, vulnerable software, and take action on top security recommendations.
-**Evaluation and tutorials** | Manage test devices, attack simulations, and reports. Learn and experience the Microsoft Defender ATP capabilities through a guided walk-through in a trial environment.
-**Service health** | Provides information on the current status of the Microsoft Defender ATP service. You'll be able to verify that the service health is healthy or if there are current issues.
+**Evaluation and tutorials** | Manage test devices, attack simulations, and reports. Learn and experience the Defender for Endpoint capabilities through a guided walk-through in a trial environment.
+**Service health** | Provides information on the current status of the Defender for Endpoint service. You'll be able to verify that the service health is healthy or if there are current issues.
 **Configuration management** | Displays on-boarded devices, your organizations' security baseline, predictive analysis, web protection coverage, and allows you to perform attack surface management on your devices.
 **Settings** | Shows the settings you selected during onboarding and lets you update your industry preferences and retention policy period. You can also set other configuration settings such as permissions, APIs, rules, device management, IT service management, and network assessments.
-**(2) Search, Community center, Localization,  Help and support, Feedback** | **Search** - search by device, file, user, URL, IP, vulnerability, software, and recommendation. </br></br> **Community center** - Access the Community center to learn, collaborate, and share experiences about the product. </br></br>  **Localization** - Set time zones. </br></br>  **Help and support** - Access the Microsoft Defender ATP guide, Microsoft and Microsoft Premier support, license information, simulations & tutorials, Microsoft Defender ATP evaluation lab, consult a threat expert.</br></br> **Feedback** - Provide comments about what you like or what we can do better.
+**(2) Search, Community center, Localization,  Help and support, Feedback** | **Search** - search by device, file, user, URL, IP, vulnerability, software, and recommendation. </br></br> **Community center** - Access the Community center to learn, collaborate, and share experiences about the product. </br></br>  **Localization** - Set time zones. </br></br>  **Help and support** - Access the Defender for Endpoint guide, Microsoft and Microsoft Premier support, license information, simulations & tutorials, Defender for Endpoint evaluation lab, consult a threat expert.</br></br> **Feedback** - Provide comments about what you like or what we can do better.
 
 > [!NOTE]
 > For devices with high resolution DPI scaling issues, please see [Windows scaling issues for high-DPI devices](https://support.microsoft.com/help/3025083/windows-scaling-issues-for-high-dpi-devices) for possible solutions.
 
-## Microsoft Defender ATP icons
+## Microsoft Defender for Endpoint icons
 
 The following table provides information on the icons used all throughout the portal:
 
 Icon | Description
 :---|:---
-![ATP logo icon](images/atp-logo-icon.png)| Microsoft Defender ATP logo
+![ATP logo icon](images/atp-logo-icon.png)| Microsoft Defender for Endpoint logo
 ![Alert icon](images/alert-icon.png)| Alert – Indication of an activity correlated with advanced attacks.
 ![Detection icon](images/detection-icon.png)| Detection – Indication of a malware threat detection.
 ![Active threat icon](images/active-threat-icon.png)| Active threat – Threats actively executing at the time of detection.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
index f74d49ee22..ab2b412ae2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint]https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
diff --git a/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md b/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md
index 59653a5fc2..335e716372 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/preferences-setup.md
@@ -23,9 +23,9 @@ ms.topic: article
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-prefsettings-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-prefsettings-abovefoldlink)
 
 Use the **Settings** menu to modify general settings, advanced features, enable the preview experience, email notifications, and the custom threat intelligence feature.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md b/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
index fe2d128e37..3c320f4601 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
@@ -20,30 +20,30 @@ ms.collection:
 ms.topic: article 
 ---
 
-# Prepare Microsoft Defender ATP deployment
+# Prepare Microsoft Defender for Endpoint deployment
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
 
-Deploying Microsoft Defender ATP is a three-phase process:
+Deploying Defender for Endpoint is a three-phase process:
 
 <br>
 <table border="0" width="100%" align="center">
   <tr style="text-align:center;">
     <td align="center" style="width:25%; border:0;" bgcolor="#d5f5e3">
       <a href= "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment"> 
-        <img src="images/prepare.png" alt="Plan to deploy Microsoft Defender ATP" title="Plan" />
+        <img src="images/prepare.png" alt="Plan to deploy Microsoft Defender for Endpoint" title="Plan" />
       <br/>Phase 1: Prepare </a><br>
     </td>
      <td align="center"  >
       <a href="https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/production-deployment">
-        <img src="images/setup.png" alt="Onboard to the Microsoft Defender ATP service" title="Setup the Microsoft Defender ATP service" />
+        <img src="images/setup.png" alt="Onboard to the Defender for Endpoint service" title="Setup the Defender for Endpoint service" />
       <br/>Phase 2: Set up </a><br>
         </td>
     <td align="center">
@@ -68,7 +68,7 @@ Deploying Microsoft Defender ATP is a three-phase process:
 You are currently in the preparation phase.
 
 
-Preparation is key to any successful deployment. In this article, you'll be guided on the points you'll need to consider as you prepare to deploy Microsoft Defender ATP.
+Preparation is key to any successful deployment. In this article, you'll be guided on the points you'll need to consider as you prepare to deploy Defender for Endpoint.
 
 
 ## Stakeholders and approval
@@ -111,8 +111,7 @@ required in technologies or processes.
 
 ## Role-based access control
 
-Microsoft recommends using the concept of least privileges. Microsoft Defender
-ATP leverages built-in roles within Azure Active Directory. Microsoft recommends
+Microsoft recommends using the concept of least privileges. Defender for Endpoint leverages built-in roles within Azure Active Directory. Microsoft recommends
 [review the different roles that are
 available](https://docs.microsoft.com/azure/active-directory/active-directory-assign-admin-roles-azure-portal)
 and choose the right one to solve your needs for each persona for this
@@ -132,7 +131,7 @@ Management](https://docs.microsoft.com/azure/active-directory/active-directory-p
 to manage your roles to provide additional auditing, control, and access review
 for users with directory permissions.
 
-Microsoft Defender ATP supports two ways to manage permissions:
+Defender for Endpoint supports two ways to manage permissions:
 
 -   **Basic permissions management**: Set permissions to either full access or
     read-only. In the case of basic permissions management users with Global
@@ -144,7 +143,7 @@ Microsoft Defender ATP supports two ways to manage permissions:
     groups access to device groups. For more information. see [Manage portal access using role-based access control](rbac.md).
 
 Microsoft recommends leveraging RBAC to ensure that only users that have a
-business justification can access Microsoft Defender ATP.
+business justification can access Defender for Endpoint.
 
 You can find details on permission guidelines
 [here](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/user-roles#create-roles-and-assign-the-role-to-an-azure-active-directory-group).
@@ -167,16 +166,16 @@ place. The bare minimum every organization should have been an antivirus solutio
 
 Historically, replacing any security solution used to be time intensive and difficult
 to achieve due to the tight hooks into the application layer and infrastructure
-dependencies. However, because Microsoft Defender ATP is built into the
+dependencies. However, because Defender for Endpoint is built into the
 operating system, replacing third-party solutions is now easy to achieve.
 
-Choose the component of Microsoft Defender ATP to be used and remove the ones
+Choose the component of Defender for Endpoint to be used and remove the ones
 that do not apply. The table below indicates the order Microsoft recommends for
 how the endpoint security suite should be enabled.
 
 | Component                               | Description                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              | Adoption Order Rank |
 |-----------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------|
-| Endpoint Detection & Response (EDR)     | Microsoft Defender ATP endpoint detection and response capabilities provide advanced attack detections that are near real-time and actionable. Security analysts can prioritize alerts effectively, gain visibility into the full scope of a breach, and take response actions to remediate threats. <br> [Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-endpoint-detection-response)                                                                                                                                                                                                                                             | 1                   |
+| Endpoint Detection & Response (EDR)     | Defender for Endpoint endpoint detection and response capabilities provide advanced attack detections that are near real-time and actionable. Security analysts can prioritize alerts effectively, gain visibility into the full scope of a breach, and take response actions to remediate threats. <br> [Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-endpoint-detection-response)                                                                                                                                                                                                                                             | 1                   |
 |Threat & Vulnerability Management (TVM)|Threat & Vulnerability Management is a component of Microsoft Defender ATP, and provides both security administrators and security operations teams with unique value, including: <br> - Real-time endpoint detection and response (EDR) insights correlated with endpoint vulnerabilities <br> - Invaluable device vulnerability context during incident investigations <br> -  Built-in remediation processes through Microsoft Intune and Microsoft System Center Configuration Manager <br> [Learn more](https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Introducing-a-risk-based-approach-to-threat-and-vulnerability/ba-p/377845).| 2 |
 | Next-generation protection (NGP)        | Microsoft Defender Antivirus is a built-in antimalware solution that provides next-generation protection for desktops, portable computers, and servers. Microsoft Defender Antivirus includes: <br> -Cloud-delivered protection for near-instant detection and blocking of new and emerging threats. Along with machine learning and the Intelligent Security Graph, cloud-delivered protection is part of the next-gen technologies that power Microsoft Defender Antivirus.   <br> -  Always-on scanning using advanced file and process behavior monitoring and other heuristics (also known as "real-time protection"). <br> - Dedicated protection updates based on machine-learning, human and automated big-data analysis, and in-depth threat resistance research. <br> [Learn more](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10).                                                                                                                                                                                                                                                                                                                                                                       |3                   |
 | Attack Surface Reduction (ASR)          | Attack surface reduction capabilities in Microsoft Defender ATP help protect the devices and applications in the organization from new and emerging threats. <br> [Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-attack-surface-reduction)                                                                                                                                                                                                                                                                                                                                                                                       | 4                   |
diff --git a/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md b/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md
index 0609532537..8c1f70f474 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/preview-settings.md
@@ -16,15 +16,15 @@ audience: ITPro
 ms.collection: M365-security-compliance 
 ms.topic: article
 ---
-# Turn on the preview experience in Microsoft Defender ATP
+# Turn on the preview experience in Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-previewsettings-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-previewsettings-abovefoldlink)
 
 Turn on the preview experience setting to be among the first to try upcoming features.
 
@@ -36,8 +36,8 @@ Turn on the preview experience setting to be among the first to try upcoming fea
 2. Toggle the setting between **On** and **Off** and select **Save preferences**.
 
 ## Related topics
-- [Update general settings in Microsoft Defender ATP](data-retention-settings.md)
-- [Turn on advanced features in Microsoft Defender ATP](advanced-features.md)
-- [Configure email notifications in Microsoft Defender ATP](configure-email-notifications.md)
-- [Enable SIEM integration in Microsoft Defender ATP](enable-siem-integration.md)
+- [Update general settings in Microsoft Defender for Endpoint](data-retention-settings.md)
+- [Turn on advanced features in Microsoft Defender for Endpoint](advanced-features.md)
+- [Configure email notifications in Microsoft Defender for Endpoint](configure-email-notifications.md)
+- [Enable SIEM integration in Microsoft Defender for Endpoint](enable-siem-integration.md)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/preview.md b/windows/security/threat-protection/microsoft-defender-atp/preview.md
index 5ed93079a0..f8bc3dccad 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/preview.md
@@ -19,7 +19,7 @@ ms.collection:
 ms.topic: conceptual
 ---
 
-# Microsoft Defender ATP preview features
+# Microsoft Defender for Endpoint preview features
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -27,19 +27,19 @@ ms.topic: conceptual
 >The preview versions are provided without a service level agreement, and it's not recommended for production workloads. Certain features might not be supported or might have constrained capabilities.
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-The Microsoft Defender ATP service is constantly being updated to include new feature enhancements and capabilities.
+The Defender for Endpoint service is constantly being updated to include new feature enhancements and capabilities.
 
 > [!TIP]
-> Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-preview-abovefoldlink)
+> Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-preview-abovefoldlink)
 
-Learn about new features in the Microsoft Defender ATP preview release and be among the first to try upcoming features by turning on the preview experience.
+Learn about new features in the Defender for Endpoint preview release and be among the first to try upcoming features by turning on the preview experience.
 
 >[!TIP]
 >Get notified when this page is updated by copying and pasting the following URL into your feed reader: `https://docs.microsoft.com/api/search/rss?search=%22Microsoft+Defender+ATP+preview+features%22&locale=en-us`
 
-For more information on new capabilities that are generally available, see [What's new in Microsoft Defender ATP](whats-new-in-microsoft-defender-atp.md).
+For more information on new capabilities that are generally available, see [What's new in Defender for Endpoint](whats-new-in-microsoft-defender-atp.md).
 
 ## Turn on preview features
 
@@ -54,22 +54,22 @@ Turn on the preview experience setting to be among the first to try upcoming fea
 ## Preview features
 
 The following features are included in the preview release:
-- [Microsoft Defender ATP for iOS](microsoft-defender-atp-ios.md) <br> Microsoft Defender ATP now adds support for iOS. Learn how to install, configure, and use Microsoft Defender ATP for iOS.
+- [Microsoft Defender for Endpoint for iOS](microsoft-defender-atp-ios.md) <br> Microsoft Defender ATP now adds support for iOS. Learn how to install, configure, and use Microsoft Defender ATP for iOS.
 
-- [Microsoft Defender ATP for Android](microsoft-defender-atp-android.md) <br> Microsoft Defender ATP now adds support for Android. Learn how to install, configure, and use Microsoft Defender ATP for Android.
+- [Microsoft Defender for Endpoint for Android](microsoft-defender-atp-android.md) <br> Microsoft Defender for Endpoint now adds support for Android. Learn how to install, configure, and use Microsoft Defender for Endpoint for Android.
 
-- [Web Content Filtering](web-content-filtering.md) <br> Web content filtering is part of web protection capabilities in Microsoft Defender ATP. It enables your organization to track and regulate access to websites based on their content categories. Many of these websites, while not malicious, might be problematic because of compliance regulations, bandwidth usage, or other concerns.
+- [Web Content Filtering](web-content-filtering.md) <br> Web content filtering is part of web protection capabilities in Microsoft Defender for Endpoint. It enables your organization to track and regulate access to websites based on their content categories. Many of these websites, while not malicious, might be problematic because of compliance regulations, bandwidth usage, or other concerns.
 
 - [Device health and compliance report](machine-reports.md) <br/> The device health and compliance report provides high-level information about the devices in your organization.
 
 - [Information protection](information-protection-in-windows-overview.md)<BR>
-Information protection is an integral part of Microsoft 365 Enterprise suite, providing intelligent protection to keep sensitive data secure while enabling productivity in the workplace. Microsoft Defender ATP is seamlessly integrated in Microsoft Threat Protection to provide a complete and comprehensive data loss prevention (DLP) solution for Windows devices.
+Information protection is an integral part of Microsoft 365 Enterprise suite, providing intelligent protection to keep sensitive data secure while enabling productivity in the workplace. Microsoft Defender for Endpoint is seamlessly integrated in Microsoft Threat Protection to provide a complete and comprehensive data loss prevention (DLP) solution for Windows devices.
 
     >[!NOTE]
     >Partially available from Windows 10, version 1809.
 
-- [Onboard Windows Server 2019](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-version-1803-and-windows-server-2019) <BR> Microsoft Defender ATP now adds support for Windows Server 2019. You'll be able to onboard Windows Server 2019 in the same method available for Windows 10 client devices.
+- [Onboard Windows Server 2019](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-version-1803-and-windows-server-2019) <BR> Microsoft Defender for Endpoint now adds support for Windows Server 2019. You'll be able to onboard Windows Server 2019 in the same method available for Windows 10 client devices.
 
 
 > [!TIP] 
-> Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-preview-belowfoldlink)  
+> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-preview-belowfoldlink)  
diff --git a/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md b/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
index a1c3772e14..516c64e1b5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
@@ -20,28 +20,28 @@ ms.collection:
 ms.topic: article 
 ---
 
-# Set up Microsoft Defender ATP deployment
+# Set up Microsoft Defender for Endpoint deployment
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
-Deploying Microsoft Defender ATP is a three-phase process:
+Deploying Defender for Endpoint is a three-phase process:
 
 <br>
 <table border="0" width="100%" align="center">
   <tr style="text-align:center;">
     <td align="center" style="width:25%; border:0;" >
       <a href= "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment"> 
-        <img src="images/prepare.png" alt="Prepare to deploy Microsoft Defender ATP" title="Prepare" />
+        <img src="images/prepare.png" alt="Prepare to deploy Microsoft Defender for Endpoint" title="Prepare" />
       <br/>Phase 1: Prepare </a><br>
     </td>
      <td align="center"bgcolor="#d5f5e3">
       <a href="https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/production-deployment">
-        <img src="images/setup.png" alt="Onboard to the Microsoft Defender ATP service" title="Setup" />
+        <img src="images/setup.png" alt="Onboard to the Microsoft Defender for Endpoint service" title="Setup" />
       <br/>Phase 2: Set up </a><br>
     </td>
     <td align="center">
@@ -63,7 +63,7 @@ In this deployment scenario, you'll be guided through the steps on:
 
 
 >[!NOTE]
->For the purpose of guiding you through a typical deployment, this scenario will only cover the use of Microsoft Endpoint Configuration Manager. Microsoft Defender ATP supports the use of other onboarding tools but will not cover those scenarios in the deployment guide. For more information, see [Onboard devices to Microsoft Defender ATP](onboard-configure.md).
+>For the purpose of guiding you through a typical deployment, this scenario will only cover the use of Microsoft Endpoint Configuration Manager. Defender for Endpoint supports the use of other onboarding tools but will not cover those scenarios in the deployment guide. For more information, see [Onboard devices to Microsoft Defender for Endpoint](onboard-configure.md).
 
 ## Check license state
 
@@ -94,11 +94,11 @@ To gain access into which licenses are provisioned to your company, and to check
 
 ## Tenant Configuration
 
-When accessing Microsoft Defender Security Center for the first time, a wizard that will guide you through some initial steps. At the end of the setup wizard, there will be a dedicated cloud instance of Microsoft Defender ATP created. The easiest method is to perform these steps from a Windows 10 client device.
+When accessing Microsoft Defender Security Center for the first time, a wizard that will guide you through some initial steps. At the end of the setup wizard, there will be a dedicated cloud instance of Defender for Endpoint created. The easiest method is to perform these steps from a Windows 10 client device.
 
 1. From a web browser, navigate to <https://securitycenter.windows.com>.
 
-    ![Image of Set up your permissions for Microsoft Defender ATP](images/atp-setup-permissions-wdatp-portal.png)
+    ![Image of Set up your permissions for Microsoft Defender for Endpoint](images/atp-setup-permissions-wdatp-portal.png)
 
 2. If going through a TRIAL license, go to the link (<https://signup.microsoft.com/Signup?OfferId=6033e4b5-c320-4008-a936-909c2825d83c&dl=WIN_DEF_ATP&pc=xxxxxxx-xxxxxx-xxx-x>)
 
@@ -128,11 +128,11 @@ When accessing Microsoft Defender Security Center for the first time, a wizard t
 If the organization does not require the endpoints to use a Proxy to access the
 Internet, skip this section.
 
-The Microsoft Defender ATP sensor requires Microsoft Windows HTTP (WinHTTP) to
-report sensor data and communicate with the Microsoft Defender ATP service. The
-embedded Microsoft Defender ATP sensor runs in the system context using the
+The Microsoft Defender for Endpoint sensor requires Microsoft Windows HTTP (WinHTTP) to
+report sensor data and communicate with the Microsoft Defender for Endpoint service. The
+embedded Microsoft Defender for Endpoint sensor runs in the system context using the
 LocalSystem account. The sensor uses Microsoft Windows HTTP Services (WinHTTP)
-to enable communication with the Microsoft Defender ATP cloud service. The
+to enable communication with the Microsoft Defender for Endpoint cloud service. The
 WinHTTP configuration setting is independent of the Windows Internet (WinINet)
 internet browsing proxy settings and can only discover a proxy server by using
 the following discovery methods:
@@ -145,7 +145,7 @@ the following discovery methods:
 
 If a Transparent proxy or WPAD has been implemented in the network topology,
 there is no need for special configuration settings. For more information on
-Microsoft Defender ATP URL exclusions in the proxy, see the
+Microsoft Defender for Endpoint URL exclusions in the proxy, see the
 Appendix section in this document for the URLs allow list or on
 [Microsoft
 Docs](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-proxy-internet-windows-defender-advanced-threat-protection#enable-access-to-windows-defender-atp-service-urls-in-the-proxy-server).
@@ -163,8 +163,8 @@ Docs](https://docs.microsoft.com/windows/security/threat-protection/windows-defe
 
 ### Configure the proxy server manually using a registry-based static proxy
 
-Configure a registry-based static proxy to allow only Microsoft Defender ATP
-sensor to report diagnostic data and communicate with Microsoft Defender ATP
+Configure a registry-based static proxy to allow only Microsoft Defender for Endpoint
+sensor to report diagnostic data and communicate with Microsoft Defender for Endpoint
 services if a computer is not permitted to connect to the Internet. The static
 proxy is configurable through Group Policy (GP). The group policy can be found
 under:
@@ -236,20 +236,20 @@ URLs that include v20 in them are only needed if you have Windows 10, version
 needed if the device is on Windows 10, version 1803 or later.
  
 
-If a proxy or firewall is blocking anonymous traffic, as Microsoft Defender ATP sensor is connecting from system context, make sure anonymous traffic is permitted in the listed URLs.
+If a proxy or firewall is blocking anonymous traffic, as Microsoft Defender for Endpoint sensor is connecting from system context, make sure anonymous traffic is permitted in the listed URLs.
 
 The following downloadable spreadsheet lists the services and their associated URLs that your network must be able to connect to. Ensure that there are no firewall or network filtering rules that would deny access to these URLs, or you may need to create an *allow* rule specifically for them.
 
 |**Spreadsheet of domains list**|**Description**|
 |:-----|:-----|
-|![Thumb image for Microsoft Defender ATP URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
+|![Thumb image for Microsoft Defender for Endpoint URLs spreadsheet](images/mdatp-urls.png)<br/>  | Spreadsheet of specific DNS records for service locations, geographic locations, and OS. <br><br>[Download the spreadsheet here.](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx) 
 
 
-###  Microsoft Defender ATP service backend IP range
+###  Microsoft Defender for Endpoint service backend IP range
 
 If you network devices don't support the URLs listed in the prior section, you can use the following information.
 
-Microsoft Defender ATP is built on Azure cloud, deployed in the following regions:
+Defender for Endpoint is built on Azure cloud, deployed in the following regions:
 
 - \+\<Region Name="uswestcentral">
 - \+\<Region Name="useast2">
@@ -267,4 +267,4 @@ You can find the Azure IP range on [Microsoft Azure Datacenter IP Ranges](https:
 ## Next step
 |||
 |:-------|:-----|
-|![Phase 3: Onboard](images/onboard.png) <br>[Phase 3: Onboard](onboarding.md) | Onboard devices to the service so that the Microsoft Defender ATP service can get sensor data from them.
+|![Phase 3: Onboard](images/onboard.png) <br>[Phase 3: Onboard](onboarding.md) | Onboard devices to the service so that the Microsoft Defender for Endpoint service can get sensor data from them.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
index 5ded65750b..d656f995c8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/pull-alerts-using-rest-api.md
@@ -17,24 +17,24 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Pull Microsoft Defender ATP detections using SIEM REST API
+# Pull Microsoft Defender for Endpoint detections using SIEM REST API
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-pullalerts-abovefoldlink) 
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-pullalerts-abovefoldlink) 
 
 >[!Note]
->- [Microsoft Defender ATP Alert](alerts.md) is composed from one or more detections.
->- [Microsoft Defender ATP Detection](api-portal-mapping.md) is composed from the suspicious event occurred on the Device and its related Alert details.
->-The Microsoft Defender ATP Alert API is the latest API for alert consumption and contain a detailed list of related evidence for each alert. For more information, see [Alert methods and properties](alerts.md) and [List alerts](get-alerts.md).
+>- [Microsoft Defender for Endpoint Alert](alerts.md) is composed from one or more detections.
+>- [Microsoft Defender for Endpoint Detection](api-portal-mapping.md) is composed from the suspicious event occurred on the Device and its related Alert details.
+>-The Microsoft Defender for Endpoint Alert API is the latest API for alert consumption and contain a detailed list of related evidence for each alert. For more information, see [Alert methods and properties](alerts.md) and [List alerts](get-alerts.md).
 
-Microsoft Defender ATP supports the OAuth 2.0 protocol to pull detections from the API.
+Microsoft Defender for Endpoint supports the OAuth 2.0 protocol to pull detections from the API.
 
 In general, the OAuth 2.0 protocol supports four types of flows:
 - Authorization grant flow
@@ -44,19 +44,19 @@ In general, the OAuth 2.0 protocol supports four types of flows:
 
 For more information about the OAuth specifications, see the [OAuth Website](http://www.oauth.net).
 
-Microsoft Defender ATP supports the _Authorization grant flow_ and _Client credential flow_ to obtain access to pull detections, with Azure Active Directory (AAD) as the authorization server.
+Microsoft Defender for Endpoint supports the _Authorization grant flow_ and _Client credential flow_ to obtain access to pull detections, with Azure Active Directory (AAD) as the authorization server.
 
 The _Authorization grant flow_ uses user credentials to get an authorization code, which is then used to obtain an access token.
 
-The _Client credential flow_ uses client credentials to authenticate against the Microsoft Defender ATP endpoint URL. This flow is suitable for scenarios when an OAuth client creates requests to an API that doesn't require user credentials.
+The _Client credential flow_ uses client credentials to authenticate against the Microsoft Defender for Endpoint endpoint URL. This flow is suitable for scenarios when an OAuth client creates requests to an API that doesn't require user credentials.
 
-Use the following method in the Microsoft Defender ATP API to pull detections in JSON format.
+Use the following method in the Microsoft Defender for Endpoint API to pull detections in JSON format.
 
 >[!NOTE]
 >Microsoft Defender Security Center merges similar alert detections into a single alert. This API pulls alert detections in its raw form based on the query parameters you set, enabling you to apply your own grouping and filtering. 
 
 ## Before you begin
-- Before calling the Microsoft Defender ATP endpoint to pull detections, you'll need to enable the SIEM integration application in Azure Active Directory (AAD). For more information, see [Enable SIEM integration in Microsoft Defender ATP](enable-siem-integration.md).
+- Before calling the Microsoft Defender for Endpoint endpoint to pull detections, you'll need to enable the SIEM integration application in Azure Active Directory (AAD). For more information, see [Enable SIEM integration in Microsoft Defender for Endpoint](enable-siem-integration.md).
 
 - Take note of the following values in your Azure application registration. You need these values to configure the OAuth flow in your service or daemon app:
   - Application ID (unique to your application)
@@ -67,7 +67,7 @@ Use the following method in the Microsoft Defender ATP API to pull detections in
 ## Get an access token
 Before creating calls to the endpoint, you'll need to get an access token.
 
-You'll use the access token to access the protected resource, which are detections in Microsoft Defender ATP.
+You'll use the access token to access the protected resource, which are detections in Microsoft Defender for Endpoint.
 
 To get an access token, you'll need to do a POST request to the token issuing endpoint. Here is a sample request:
 
@@ -92,10 +92,10 @@ The response will include an access token and expiry information.
   "access_token":"eyJ0eXaioJJOIneiowiouqSuzNiZ345FYOVkaJL0625TueyaJasjhIjEnbMlWqP..."
 }
 ```
-You can now use the value in the *access_token* field in a request to the Microsoft Defender ATP API.
+You can now use the value in the *access_token* field in a request to the Defender for Endpoint API.
 
 ## Request
-With an access token, your app can make authenticated requests to the Microsoft Defender ATP API. Your app must append the access token to the Authorization header of each request.
+With an access token, your app can make authenticated requests to the Microsoft Defender for Endpoint API. Your app must append the access token to the Authorization header of each request.
 
 ### Request syntax
 Method | Request URI
@@ -200,7 +200,7 @@ Here is an example return value:
 
 ## Code examples
 ### Get access token
-The following code examples demonstrate how to obtain an access token for calling the Microsoft Defender ATP SIEM API.
+The following code examples demonstrate how to obtain an access token for calling the Microsoft Defender for Endpoint SIEM API.
 
 ```csharp
 AuthenticationContext context = new AuthenticationContext(string.Format("https://login.windows.net/{0}", tenantId));
@@ -250,7 +250,7 @@ echo ${tokenArr[1]} | cut -d "\"" -f2 | cut -d "\"" -f1 >> $scriptDir/LatestSIEM
 ```
 
 ### Use token to connect to the detections endpoint
-The following code examples demonstrate how to use an access token for calling the Microsoft Defender ATP SIEM API to get alerts.
+The following code examples demonstrate how to use an access token for calling the Defender for Endpoint SIEM API to get alerts.
 
 ```csharp
 HttpClient httpClient = new HttpClient();
@@ -318,7 +318,7 @@ echo $apiResponse
 ```
 
 ## Error codes
-The Microsoft Defender ATP REST API returns the following error codes caused by an invalid request.
+The Microsoft Defender for Endpoint REST API returns the following error codes caused by an invalid request.
 
 HTTP error code | Description
 :---|:---
@@ -327,8 +327,8 @@ HTTP error code | Description
 500 | Error in the service.
 
 ## Related topics
-- [Enable SIEM integration in Microsoft Defender ATP](enable-siem-integration.md)
-- [Configure ArcSight to pull Microsoft Defender ATP detections](configure-arcsight.md)
-- [Configure Splunk to pull Microsoft Defender ATP detections](configure-splunk.md)
-- [Microsoft Defender ATP Detection fields](api-portal-mapping.md)
+- [Enable SIEM integration in Microsoft Defender for Endpoint](enable-siem-integration.md)
+- [Configure ArcSight to pull Microsoft Defender for Endpoint detections](configure-arcsight.md)
+- [Configure Splunk to pull Microsoft Defender for Endpoint detections](configure-splunk.md)
+- [Microsoft Defender for Endpoint Detection fields](api-portal-mapping.md)
 - [Troubleshoot SIEM tool integration issues](troubleshoot-siem.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md
index 3dd71c46a6..9e61246a70 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-event-hub.md
@@ -17,16 +17,16 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Configure Microsoft Defender ATP to stream Advanced Hunting events to your Azure Event Hubs
+# Configure Microsoft Defender for Endpoint to stream Advanced Hunting events to your Azure Event Hubs
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-configuresiem-abovefoldlink) 
+Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-configuresiem-abovefoldlink) 
 
 ## Before you begin:
 
@@ -65,7 +65,7 @@ Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://w
 
 - Each event hub message in Azure Event Hubs contains list of records.
 - Each record contains the event name, the time Microsoft Defender ATP received the event, the tenant it belongs (you will only get events from your tenant), and the event in JSON format in a property called "**properties**".
-- For more information about the schema of Microsoft Defender ATP events, see [Advanced Hunting overview](advanced-hunting-overview.md).
+- For more information about the schema of Microsoft Defender for Endpoint events, see [Advanced Hunting overview](advanced-hunting-overview.md).
 - In Advanced Hunting, the **DeviceInfo** table has a column named **MachineGroup** which contains the group of the device. Here every event will be decorated with this column as well. See [Device Groups](machine-groups.md) for more information.
 
 ## Data types mapping:
@@ -88,6 +88,6 @@ To get the data types for event properties do the following:
 
 ## Related topics
 - [Overview of Advanced Hunting](advanced-hunting-overview.md)
-- [Microsoft Defender ATP streaming API](raw-data-export.md)
-- [Stream Microsoft Defender ATP events to your Azure storage account](raw-data-export-storage.md)
+- [Microsoft Defender for Endpoint streaming API](raw-data-export.md)
+- [Stream Microsoft Defender for Endpoint events to your Azure storage account](raw-data-export-storage.md)
 - [Azure Event Hubs documentation](https://docs.microsoft.com/azure/event-hubs/)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md
index ae061aa91b..804a1ff98e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export-storage.md
@@ -17,16 +17,16 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Configure Microsoft Defender ATP to stream Advanced Hunting events to your Storage account
+# Configure Microsoft Defender for Endpoint to stream Advanced Hunting events to your Storage account
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-configuresiem-abovefoldlink) 
+Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-configuresiem-abovefoldlink) 
 
 ## Before you begin:
 
@@ -36,7 +36,7 @@ Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://w
 
 ## Enable raw data streaming:
 
-1. Log in to [Microsoft Defender ATP portal](https://securitycenter.windows.com) with Global Admin user.
+1. Log in to [Microsoft Defender for Endpoint portal](https://securitycenter.windows.com) with Global Admin user.
 2. Go to [Data export settings page](https://securitycenter.windows.com/interoperability/dataexport) on Microsoft Defender Security Center.
 3. Click on **Add data export settings**.
 4. Choose a name for your new settings.
@@ -65,8 +65,8 @@ Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://w
 ```
 
 - Each blob contains multiple rows.
-- Each row contains the event name, the time Microsoft Defender ATP received the event, the tenant it belongs (you will only get events from your tenant), and the event in JSON format in a property called "properties".
-- For more information about the schema of Microsoft Defender ATP events, see [Advanced Hunting overview](advanced-hunting-overview.md).
+- Each row contains the event name, the time Defender for Endpoint received the event, the tenant it belongs (you will only get events from your tenant), and the event in JSON format in a property called "properties".
+- For more information about the schema of Microsoft Defender for Endpoint events, see [Advanced Hunting overview](advanced-hunting-overview.md).
 - In Advanced Hunting, the **DeviceInfo** table has a column named **MachineGroup** which contains the group of the device. Here every event will be decorated with this column as well. See [Device Groups](machine-groups.md) for more information.
 
 ## Data types mapping:
@@ -89,6 +89,6 @@ In order to get the data types for our events properties do the following:
 
 ## Related topics
 - [Overview of Advanced Hunting](advanced-hunting-overview.md)
-- [Microsoft Defender Advanced Threat Protection Streaming API](raw-data-export.md)
-- [Stream Microsoft Defender Advanced Threat Protection events to your Azure storage account](raw-data-export-storage.md)
+- [Microsoft Defender for Endpoint Streaming API](raw-data-export.md)
+- [Stream Microsoft Defender for Endpoint events to your Azure storage account](raw-data-export-storage.md)
 - [Azure Storage Account documentation](https://docs.microsoft.com/azure/storage/common/storage-account-overview)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md
index e5a93c9ecf..d619e6803f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/raw-data-export.md
@@ -24,13 +24,13 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-configuresiem-abovefoldlink) 
+- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-configuresiem-abovefoldlink) 
 
 ## Stream Advanced Hunting events to Event Hubs and/or Azure storage account.
 
-Microsoft Defender ATP supports streaming all the events available through [Advanced Hunting](advanced-hunting-overview.md) to an [Event Hubs](https://docs.microsoft.com/azure/event-hubs/) and/or [Azure storage account](https://docs.microsoft.com/azure/event-hubs/).
+Defender for Endpoint supports streaming all the events available through [Advanced Hunting](advanced-hunting-overview.md) to an [Event Hubs](https://docs.microsoft.com/azure/event-hubs/) and/or [Azure storage account](https://docs.microsoft.com/azure/event-hubs/).
 
 > [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4r4ga]
 
@@ -39,8 +39,8 @@ Microsoft Defender ATP supports streaming all the events available through [Adva
 
 Topic | Description
 :---|:---
-[Stream Microsoft Defender ATP events to Azure Event Hubs](raw-data-export-event-hub.md)| Learn about enabling the streaming API in your tenant and configure Microsoft Defender ATP to stream [Advanced Hunting](advanced-hunting-overview.md) to Event Hubs.
-[Stream Microsoft Defender ATP events to your Azure storage account](raw-data-export-storage.md)| Learn about enabling the streaming API in your tenant and configure Microsoft Defender ATP to stream [Advanced Hunting](advanced-hunting-overview.md) to your Azure storage account.
+[Stream Microsoft Defender for Endpoint events to Azure Event Hubs](raw-data-export-event-hub.md)| Learn about enabling the streaming API in your tenant and configure Defender for Endpoint to stream [Advanced Hunting](advanced-hunting-overview.md) to Event Hubs.
+[Stream Defender for Endpoint events to your Azure storage account](raw-data-export-storage.md)| Learn about enabling the streaming API in your tenant and configure Defender for Endpoint to stream [Advanced Hunting](advanced-hunting-overview.md) to your Azure storage account.
 
 
 ## Related topics
diff --git a/windows/security/threat-protection/microsoft-defender-atp/rbac.md b/windows/security/threat-protection/microsoft-defender-atp/rbac.md
index d0659c30a2..754b84fd55 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/rbac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/rbac.md
@@ -24,9 +24,9 @@ ms.topic: article
 **Applies to:**
 - Azure Active Directory
 - Office 365
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-rbac-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-rbac-abovefoldlink)
 
 
 Using role-based access control (RBAC), you can create roles and groups within your security operations team to grant appropriate access to the  portal. Based on the roles and groups you create, you have fine-grained control over what users with access to the portal can see and do. 
@@ -41,10 +41,10 @@ Tier 1 | **Local security operations team / IT team** <br> This team usually tri
 Tier 2 | **Regional security operations team** <br> This team can see all the devices for their region and perform remediation actions.
 Tier 3 | **Global security operations team** <br> This team consists of security experts and are authorized to see and perform all actions from the portal.
 
-Microsoft Defender ATP RBAC is designed to support your tier- or role-based model of choice and gives you granular control over what roles can see, devices they can access, and actions they can take. The RBAC framework is centered around the following controls:
+Defender for Endpoint RBAC is designed to support your tier- or role-based model of choice and gives you granular control over what roles can see, devices they can access, and actions they can take. The RBAC framework is centered around the following controls:
 
 - **Control who can take specific action**
-  - Create custom roles and control what Microsoft Defender ATP capabilities they can access with granularity.
+  - Create custom roles and control what Defender for Endpoint capabilities they can access with granularity.
  
 - **Control who can see information on specific device group or groups**
   - [Create device groups](machine-groups.md) by specific criteria such as names, tags, domains, and others, then grant role access to them using a specific  Azure Active Directory (Azure AD) user group.
@@ -61,18 +61,18 @@ Before using RBAC, it's important that you understand the roles that can grant p
 
 When you first log in to Microsoft Defender Security Center, you're granted either full access or read only access. Full access rights are granted to users with Security Administrator or Global Administrator roles in Azure AD. Read only access is granted to users with a Security Reader role in Azure AD. 
 
-Someone with a Microsoft Defender ATP Global administrator role has unrestricted access to all devices, regardless of their device group association and the Azure AD user groups assignments
+Someone with a Defender for Endpoint Global administrator role has unrestricted access to all devices, regardless of their device group association and the Azure AD user groups assignments
 
 > [!WARNING]
 > Initially, only those with Azure AD Global Administrator or Security Administrator rights will be able to create and assign roles in Microsoft Defender Security Center, therefore, having the right groups ready in Azure AD is important.
 >
 > **Turning on role-based access control will cause users with read-only permissions (for example, users assigned to Azure AD Security reader role) to lose access until they are assigned to a role.** 
 >
->Users with admin permissions are automatically assigned the default built-in Microsoft Defender ATP global administrator role with full permissions. After opting in to use RBAC, you can assign additional users that are not Azure AD Global or Security Administrators to the Microsoft Defender ATP global administrator role. 
+>Users with admin permissions are automatically assigned the default built-in Defender for Endpoint global administrator role with full permissions. After opting in to use RBAC, you can assign additional users that are not Azure AD Global or Security Administrators to the Defender for Endpoint global administrator role. 
 >
 > After opting in to use RBAC, you cannot revert to the initial roles as when you first logged into the portal. 
 
 
 
 ## Related topic
-- [Create and manage device groups in Microsoft Defender ATP](machine-groups.md)
+- [Create and manage device groups in Microsoft Defender for Endpoint](machine-groups.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
index 4e9bf9b693..4d71206462 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/recommendation.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
index b22362ce0a..336099ffa7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
@@ -24,11 +24,11 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
  
 [!include[Prerelease information](../../includes/prerelease.md)]
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-responddile-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-responddile-abovefoldlink)
 
 Quickly respond to detected attacks by stopping and quarantining files or blocking a file. After taking action on files, you can check activity details in the Action center.
 
@@ -131,7 +131,7 @@ You can roll back and remove a file from quarantine if you’ve determined that
 > [!NOTE]
 > In some scenarios, the **ThreatName** may appear as: EUS:Win32/CustomEnterpriseBlock!cl.
 > 
-> Microsoft Defender ATP will restore all custom blocked files that were quarantined on this device in the last 30 days.
+> Defender for Endpoint will restore all custom blocked files that were quarantined on this device in the last 30 days.
 
 ## Add indicator to block or allow a file
 
@@ -177,7 +177,7 @@ When you select this action, a fly-out will appear. From the fly-out, you can re
 
 ![Image of download file fly-out](images/atp-download-file-reason.png)
 
-If a file is not already stored by Microsoft Defender ATP, you cannot download it. Instead, you will see a **Collect file** button in the same location. If a file has not been seen in the organization in the past 30 days, **Collect file** will be disabled.
+If a file is not already stored by Defender for Endpoint, you cannot download it. Instead, you will see a **Collect file** button in the same location. If a file has not been seen in the organization in the past 30 days, **Collect file** will be disabled.
 
 ## Consult a threat expert
 
@@ -216,7 +216,7 @@ Use the deep analysis feature to investigate the details of any file, usually du
 
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4aAYy?rel=0] 
 
-**Submit for deep analysis** is enabled when the file is available in the Microsoft Defender ATP backend sample collection, or if it was observed on a Windows 10 device that supports submitting to deep analysis.
+**Submit for deep analysis** is enabled when the file is available in the Defender for Endpoint backend sample collection, or if it was observed on a Windows 10 device that supports submitting to deep analysis.
 
 > [!NOTE]
 > Only files from Windows 10 can be automatically collected.
@@ -224,9 +224,9 @@ Use the deep analysis feature to investigate the details of any file, usually du
 You can also manually submit a sample through the [Microsoft Security Center Portal](https://www.microsoft.com/security/portal/submission/submit.aspx) if the file was not observed on a Windows 10 device, and wait for **Submit for deep analysis** button to become available.
 
 > [!NOTE]
-> Due to backend processing flows in the Microsoft Security Center Portal, there could be up to 10 minutes of latency between file submission and availability of the deep analysis feature in Microsoft Defender ATP.
+> Due to backend processing flows in the Microsoft Security Center Portal, there could be up to 10 minutes of latency between file submission and availability of the deep analysis feature in Defender for Endpoint.
 
-When the sample is collected, Microsoft Defender ATP runs the file in is a secure environment and creates a detailed report of observed behaviors and associated artifacts, such as files dropped on devices, communication to IPs, and registry modifications.
+When the sample is collected, Defender for Endpoint runs the file in is a secure environment and creates a detailed report of observed behaviors and associated artifacts, such as files dropped on devices, communication to IPs, and registry modifications.
 
 **Submit files for deep analysis:**
 
@@ -249,7 +249,7 @@ A progress bar is displayed and provides information on the different stages of
 
 **View deep analysis reports**
 
-View the deep analysis report that Microsoft Defender ATP provides to see the details of the deep analysis that was conducted on the file you submitted. This feature is available in the file view context.
+View the deep analysis report that Defender for Endpoint provides to see the details of the deep analysis that was conducted on the file you submitted. This feature is available in the file view context.
 
 You can view the comprehensive report that provides details on the following sections:
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
index 89647f9832..4bb5a90936 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
@@ -23,9 +23,9 @@ ms.topic: article
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-respondmachine-abovefoldlink) 
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-respondmachine-abovefoldlink) 
 
 Quickly respond to detected attacks by isolating devices or collecting an investigation package. After taking action on devices, you can check activity details on the Action center.
 
@@ -128,7 +128,7 @@ One you have selected **Run antivirus scan**, select the scan type that you'd li
 The Action center will show the scan information and the device timeline will include a new event, reflecting that a scan action was submitted on the device. Microsoft Defender AV alerts will reflect any detections that surfaced during the scan.
 
 >[!NOTE]
->When triggering a scan using Microsoft Defender ATP response action, Microsoft Defender antivirus 'ScanAvgCPULoadFactor' value still applies and limits the CPU impact of the scan.<br> 
+>When triggering a scan using Defender for Endpoint response action, Microsoft Defender antivirus 'ScanAvgCPULoadFactor' value still applies and limits the CPU impact of the scan.<br> 
 >If ScanAvgCPULoadFactor is not configured, the default value is a limit of 50% maximum CPU load during a scan.<br>
 >For more information, see [configure-advanced-scan-types-microsoft-defender-antivirus](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus).
 
@@ -163,7 +163,7 @@ Depending on the severity of the attack and the sensitivity of the device, you m
 >- Full isolation is available for devices on Windows 10, version 1703.
 >- Selective isolation is available for devices on Windows 10, version 1709 or later.
 
-This device isolation feature disconnects the compromised device from the network while retaining connectivity to the Microsoft Defender ATP service, which continues to monitor the device.
+This device isolation feature disconnects the compromised device from the network while retaining connectivity to the Defender for Endpoint service, which continues to monitor the device.
 
 On Windows 10, version 1709 or later, you'll have additional control over the network isolation level. You can also choose to enable Outlook, Microsoft Teams, and Skype for Business connectivity (a.k.a 'Selective Isolation').
 
@@ -175,7 +175,7 @@ Once you have selected **Isolate device** on the device page, type a comment and
 ![Image of isolate device](images/isolate-device.png)
 
 >[!NOTE]
->The device will remain connected to the Microsoft Defender ATP service even if it is isolated from the network. If you've chosen to enable Outlook and Skype for Business communication, then you'll be able to communicate to the user while the device is isolated.
+>The device will remain connected to the Defender for Endpoint service even if it is isolated from the network. If you've chosen to enable Outlook and Skype for Business communication, then you'll be able to communicate to the user while the device is isolated.
 
 **Notification on device user**:</br>
 When a device is being isolated, the following notification is displayed to inform the user that the device is being isolated from the network:
diff --git a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
index 7b9e53a6e8..414c106934 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
@@ -37,7 +37,7 @@ Restrict execution of all applications on the device except a predefined set.
 [!include[Device actions note](../../includes/machineactionsnote.md)]
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
index 821c82fed3..28ce3b1696 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/review-alerts.md
@@ -18,18 +18,18 @@ ms.topic: conceptual
 ms.date: 5/1/2020
 ---
 
-# Review alerts in Microsoft Defender Advanced Threat Protection
+# Review alerts in Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-managealerts-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-managealerts-abovefoldlink)
 
-The alert page in Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) provides full context to the alert, by combining attack signals and alerts related to the selected alert, to construct a detailed alert story.
+The alert page in Microsoft Defender for Endpoint provides full context to the alert, by combining attack signals and alerts related to the selected alert, to construct a detailed alert story.
 
 Quickly triage, investigate, and take effective action on alerts that affect your organization. Understand why they were triggered, and their impact from one location. Learn more in this overview.
 
@@ -37,7 +37,7 @@ Quickly triage, investigate, and take effective action on alerts that affect you
 
 ## Getting started with an alert
 
-Clicking on an alert's name in Microsoft Defender ATP will land you on its alert page. On the alert page, all the information will be shown in context of the selected alert. Each alert page consists of 4 sections:
+Clicking on an alert's name in Defender for Endpoint will land you on its alert page. On the alert page, all the information will be shown in context of the selected alert. Each alert page consists of 4 sections:
 
 1. **The alert title** shows the alert's name and is there to remind you which alert started your current investigation regardless of what you have selected on the page.
 2. [**Affected assets**](#review-affected-assets) lists cards of devices and users affected by this alert that are clickable for further information and actions.
@@ -46,7 +46,7 @@ Clicking on an alert's name in Microsoft Defender ATP will land you on its alert
 
 ![An alert page when you first land on it](images/alert-landing-view.png)
 
-Note the detection status for your alert. Blocked, prevented, or remediated means actions were already taken by Microsoft Defender ATP.
+Note the detection status for your alert. Blocked, prevented, or remediated means actions were already taken by Defender for Endpoint.
 Start by reviewing the *automated investigation details* in your alert's [details pane](#take-action-from-the-details-pane), to see which actions were already taken, as well as reading the alert's description for recommended actions.
 
 ![A snippet of the details pane with the alert description and automatic investigation sections highlighted](images/alert-air-and-alert-description.png)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
index 91772a215f..ce6887fc58 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-api.md
@@ -22,9 +22,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 ## Limitations
 1. You can only run a query on data from the last 30 days.
@@ -36,7 +36,7 @@ ms.topic: article
 5. 429 response will represent reaching quota limit either by number of requests or by CPU. The 429 response body will also indicate the time until the quota is renewed. 
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
@@ -137,6 +137,6 @@ Here is an example of the response.
 ```
 
 ## Related topic
-- [Microsoft Defender ATP APIs introduction](apis-intro.md)
+- [Microsoft Defender for Endpoint APIs introduction](apis-intro.md)
 - [Advanced Hunting from Portal](advanced-hunting-query-language.md)
 - [Advanced Hunting using PowerShell](run-advanced-query-sample-powershell.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
index dfb227ec23..cc1e69bc35 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
@@ -22,7 +22,7 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 Run advanced queries using PowerShell, see [Advanced Hunting API](run-advanced-query-api.md).
@@ -65,7 +65,7 @@ $aadToken = $response.access_token
 
 where
 - $tenantId: ID of the tenant on behalf of which you want to run the query (that is, the query will be run on the data of this tenant)
-- $appId: ID of your Azure AD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
+- $appId: ID of your Azure AD app (the app must have 'Run advanced queries' permission to Defender for Endpoint)
 - $appSecret: Secret of your Azure AD app
 
 ## Run query
@@ -117,6 +117,6 @@ $results | ConvertTo-Json | Set-Content file1.json
 
 
 ## Related topic
-- [Microsoft Defender ATP APIs](apis-intro.md)
+- [Microsoft Defender for Endpoint APIs](apis-intro.md)
 - [Advanced Hunting API](run-advanced-query-api.md)
 - [Advanced Hunting using Python](run-advanced-query-sample-python.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
index 55f4d1ec1b..c7d5c9e145 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
@@ -24,7 +24,7 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 Run advanced queries using Python, see [Advanced Hunting API](run-advanced-query-api.md).
 
@@ -68,7 +68,7 @@ aadToken = jsonResponse["access_token"]
 
 where
 - tenantId: ID of the tenant on behalf of which you want to run the query (that is, the query will be run on the data of this tenant)
-- appId: ID of your Azure AD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
+- appId: ID of your Azure AD app (the app must have 'Run advanced queries' permission to Microsoft Defender for Endpoint)
 - appSecret: Secret of your Azure AD app
 
 ## Run query
@@ -147,6 +147,6 @@ outputFile.close()
 
 
 ## Related topic
-- [Microsoft Defender ATP APIs](apis-intro.md)
+- [Microsoft Defender for Endpoint APIs](apis-intro.md)
 - [Advanced Hunting API](run-advanced-query-api.md)
 - [Advanced Hunting using PowerShell](run-advanced-query-sample-powershell.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
index ac66c55986..9525f7a282 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
@@ -37,7 +37,7 @@ Initiate Microsoft Defender Antivirus scan on a device.
 [!include[Device actions note](../../includes/machineactionsnote.md)]
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md b/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md
index 21efcfa495..0ade180410 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-detection-test.md
@@ -19,7 +19,7 @@ ms.collection:
 ms.topic: article
 ---
 
-# Run a detection test on a newly onboarded Microsoft Defender ATP device 
+# Run a detection test on a newly onboarded Microsoft Defender for Endpoint device 
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -30,10 +30,10 @@ ms.topic: article
 - Windows Server 2016
 - Windows Server, version 1803
 - Windows Server, 2019
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
-Run the following PowerShell script on a newly onboarded device to verify that it is properly reporting to the Microsoft Defender ATP service.
+Run the following PowerShell script on a newly onboarded device to verify that it is properly reporting to the Defender for Endpoint service.
 
 1. Create a folder:  'C:\test-MDATP-test'.
 2. Open an elevated command-line prompt on the device and run the script:
@@ -55,4 +55,4 @@ The Command Prompt window will close automatically. If successful, the detection
 ## Related topics
 - [Onboard Windows 10 devices](configure-endpoints.md)
 - [Onboard servers](configure-server-endpoints.md)
-- [Troubleshoot Microsoft Defender Advanced Threat Protection onboarding issues](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding)
+- [Troubleshoot Microsoft Defender for Endpoint onboarding issues](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding)

From 4d5eac991e3f43d22066314a81ade73bd5298df8 Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Wed, 11 Nov 2020 08:23:30 -0800
Subject: [PATCH 082/209] pencil edit

---
 .../microsoft-defender-atp/manage-indicators.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md b/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
index a2904c5d62..e13c8bff5c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/manage-indicators.md
@@ -27,7 +27,7 @@ ms.topic: article
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
->Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-automationexclusionlist-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/WindowsForBusiness/windows-atp?ocid=docs-wdatp-automationexclusionlist-abovefoldlink)
 
 Indicator of compromise (IoCs) matching is an essential feature in every endpoint protection solution. This capability gives SecOps the ability to set a list of indicators for detection and for blocking (prevention and response).
 

From 012c07945ec3b3166316b750bc4c948b4009f526 Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Wed, 11 Nov 2020 08:26:28 -0800
Subject: [PATCH 083/209] pencil edits

---
 .../microsoft-defender-advanced-threat-protection.md        | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
index ff9263b229..0969e12f2d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
@@ -27,7 +27,7 @@ ms.topic: conceptual
 Microsoft Defender for Endpoint is an enterprise endpoint security platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.
 <p></p>
 
->[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4wDob]
+>[!VIDEO https://www.microsoft.com/videoplayer/embed/RE4wDob]
 
 Defender for Endpoint uses the following combination of technology built into Windows 10 and Microsoft's robust cloud service:
 
@@ -69,7 +69,7 @@ Defender for Endpoint uses the following combination of technology built into Wi
 
 <p></p>
 
->[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4vnC4?rel=0] 
+>[!VIDEO https://www.microsoft.com/videoplayer/embed/RE4vnC4?rel=0] 
 
 > [!TIP]
 > - Learn about the latest enhancements in Defender for Endpoint: [What's new in Microsoft Defender for Endpoint](https://cloudblogs.microsoft.com/microsoftsecure/2018/11/15/whats-new-in-windows-defender-atp/).
@@ -136,4 +136,4 @@ Integrate Microsoft Defender Advanced Threat Protection into your existing workf
 
 
 ## Related topic
-[Microsoft Defender for Endpoint helps detect sophisticated threats](https://www.microsoft.com/en-us/itshowcase/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection)
+[Microsoft Defender for Endpoint helps detect sophisticated threats](https://www.microsoft.com/itshowcase/microsoft-defender-atps-antivirus-capabilities-boost-malware-protection)

From cfbcd4467189163ba235c9f9c3f74c9722cad491 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Wed, 11 Nov 2020 22:48:47 +0530
Subject: [PATCH 084/209] Update tvm-dashboard-insights.md

fixed warnings
---
 .../microsoft-defender-atp/tvm-dashboard-insights.md   | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
index 004ad94602..85b1ba0c5b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
@@ -24,12 +24,12 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
-Threat and vulnerability management is a component of Microsoft Defender ATP, and provides both security administrators and security operations teams with unique value, including:
+Threat and vulnerability management is a component of Defender for Endpoint, and provides both security administrators and security operations teams with unique value, including:
 
 - Real-time endpoint detection and response (EDR) insights correlated with endpoint vulnerabilities
 - Invaluable device vulnerability context during incident investigations
@@ -51,7 +51,7 @@ Watch this video for a quick overview of what is in the threat and vulnerability
 
 ## Threat and vulnerability management dashboard
 
- ![Microsoft Defender Advanced Threat Protection portal](images/tvm-dashboard-devices.png)
+ ![Microsoft Defender for Endpoint portal](images/tvm-dashboard-devices.png)
 
 Area | Description
 :---|:---
@@ -64,7 +64,7 @@ Area | Description
 **Top remediation activities** | Track the remediation activities generated from the security recommendations. You can select each item on the list to see the details in the **Remediation** page or select **Show more** to view the rest of the remediation activities, and active exceptions.
 **Top exposed devices** | View exposed device names and their exposure level. Select a device name from the list to go to the device page where you can view the alerts, risks, incidents, security recommendations, installed software, and discovered vulnerabilities associated with the exposed devices. Select **Show more** to see the rest of the exposed devices list. From the devices list, you can manage tags, initiate automated investigations, initiate a live response session, collect an investigation package, run antivirus scan, restrict app execution, and isolate device.
 
-For more information on the icons used throughout the portal, see [Microsoft Defender ATP icons](portal-overview.md#microsoft-defender-atp-icons).
+For more information on the icons used throughout the portal, see [Microsoft Defender for Endpoint icons](portal-overview.md#microsoft-defender-for-endpoint-icons).
 
 ## Related topics
 

From d291e049b1454d0121e74058450a1f368638b1fd Mon Sep 17 00:00:00 2001
From: Kurt Sarens <56369685+kurtsarens@users.noreply.github.com>
Date: Wed, 11 Nov 2020 19:13:24 +0100
Subject: [PATCH 085/209] Update
 windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/enable-exploit-protection.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index 373ad6ff74..d32e84b405 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -238,7 +238,7 @@ Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot
 ```PowerShell
 Set-ProcessMitigation -Name processName.exe -Enable EnableExportAddressFilterPlus -EAFModules dllName1.dll,dllName2.dll
 ```
-<a href="#t2" id="r2">\[2\]</a>: Audit for this mitigation is not available via Powershell CmdLet.
+<a href="#t2" id="r2">\[2\]</a>: Audit for this mitigation is not available via Powershell cmdlets.
 ## Customize the notification
 
 See the [Windows Security](../windows-defender-security-center/windows-defender-security-center.md#customize-notifications-from-the-windows-defender-security-center) topic for more information about customizing the notification when a rule is triggered and blocks an app or file.

From 0f26cd1d82e151cf3d32178ff43837b535bbf219 Mon Sep 17 00:00:00 2001
From: jaimeo <jaimeo@microsoft.com>
Date: Wed, 11 Nov 2020 11:26:06 -0700
Subject: [PATCH 086/209] corrected endpoint list to latest, linked to
 authoritative source, fixed some Acrolinx and other language issues

---
 .../update/prepare-deploy-windows.md          | 23 ++++-
 .../update/windows-update-troubleshooting.md  | 86 +++++++++----------
 2 files changed, 63 insertions(+), 46 deletions(-)

diff --git a/windows/deployment/update/prepare-deploy-windows.md b/windows/deployment/update/prepare-deploy-windows.md
index 53b1f289ec..19c0a83aa5 100644
--- a/windows/deployment/update/prepare-deploy-windows.md
+++ b/windows/deployment/update/prepare-deploy-windows.md
@@ -41,13 +41,13 @@ Your infrastructure probably includes many different components and tools. You
 
 You should also look at your organization’s environment’s configuration and outline how you’ll implement any necessary changes previously identified in the plan phase to support the update. Consider what you’ll need to do for the various settings and policies that currently underpin the environment. For example:
 
-- Implement new draft security guidance. New versions of Windows can include new features that improve your environment’s security. Your security teams will want to make appropriate changes to security related configurations.
+- Implement new draft security guidance. New versions of Windows can include new features that improve your environment’s security. Your security teams will want to make appropriate changes to security-related configurations.
 
 - Update security baselines. Security teams understand the relevant security baselines and will have to work to make sure all baselines fit into whatever guidance they have to adhere to.
 
 However, your configuration will consist of many different settings and policies. It’s important to only apply changes where they are necessary, and where you gain a clear improvement. Otherwise, your environment might face issues that will slow down the update process. You want to ensure your environment isn’t affected adversely because of changes you make. For example:
 
-1.	Review new security settings. Your security team will review the new security settings, to understand how they can best be set to facilitate the update, and to also investigate the potential effects they might have on your environment.
+1.	Review new security settings. Your security team will review the new security settings to understand how they can best be set to facilitate the update, and to also investigate the potential effects they might have on your environment.
 
 2.	Review security baselines for changes. Security teams will also review all the necessary security baselines, to ensure the changes can be implemented, and ensure your environment remains compliant.
 
@@ -98,7 +98,24 @@ You can check these services manually by using Services.msc, or by using PowerSh
 
 ### Network configuration
 
-Ensure that devices can reach necessary Windows Update endpoints through the firewall. 
+Ensure that devices can reach necessary Windows Update endpoints through the firewall. For example, for Windows 10, version 2004, the following protocols must be able to reach these respective endpoints:
+
+
+|Protocol  |Endpoint URL  |
+|---------|---------|
+|TLS 1.2         |  `*.prod.do.dsp.mp.microsoft.com`      |
+|HTTP     | `emdl.ws.microsoft.com`        |
+|HTTP     | `*.dl.delivery.mp.microsoft.com`        |
+|HTTP     |  `*.windowsupdate.com`       |
+|HTTPS     |  `*.delivery.mp.microsoft.com`       |
+|TLS 1.2     | `*.update.microsoft.com`        |
+|TLS 1.2     |  `tsfe.trafficshaping.dsp.mp.microsoft.com`       |
+
+> [!NOTE]
+> Be sure not to use HTTPS for those endpoints that specify HTTP, and vice versa. The connection will fail.
+
+The specific endpoints can vary between Windows 10 versions. See, for example, [Windows 10 2004 Enterprise connection endpoints](https://docs.microsoft.com/windows/privacy/manage-windows-2004-endpoints). Similar articles for other Windows 10 versions are available in the table of contents nearby.
+
 
 ### Optimize download bandwidth
 Set up [Delivery Optimization](waas-delivery-optimization.md) for peer network sharing or Microsoft Connected Cache.
diff --git a/windows/deployment/update/windows-update-troubleshooting.md b/windows/deployment/update/windows-update-troubleshooting.md
index bce6aa30cb..32a55ed102 100644
--- a/windows/deployment/update/windows-update-troubleshooting.md
+++ b/windows/deployment/update/windows-update-troubleshooting.md
@@ -21,7 +21,7 @@ If you run into problems when using Windows Update, start with the following ste
  
 1. Run the built-in Windows Update troubleshooter to fix common issues. Navigate to **Settings > Update & Security > Troubleshoot > Windows Update**. 
 
-2. Install the most recent Servicing Stack Update (SSU) that matches your version of Windows from the Microsoft Update Catalog. See [Servicing stack updates](servicing-stack-updates.md) for more details on SSU. 
+2. Install the most recent Servicing Stack Update (SSU) that matches your version of Windows from the Microsoft Update Catalog. See [Servicing stack updates](servicing-stack-updates.md) for more details on servicing stack updates. 
 
 3. Make sure that you install the latest Windows updates, cumulative updates, and rollup updates. To verify the update status, refer to the appropriate update history for your system: 
 
@@ -41,8 +41,8 @@ Advanced users can also refer to the [log](windows-update-logs.md) generated by
  
 You might encounter the following scenarios when using Windows Update. 
 
-## Why am I offered an older update/upgrade?
-The update that is offered to a device depends on several factors. Some of the most common attributes include the following:  
+## Why am I offered an older update?
+The update that is offered to a device depends on several factors. The following are some of the most common attributes:  
 
 - OS Build 
 - OS Branch 
@@ -50,20 +50,20 @@ The update that is offered to a device depends on several factors. Some of the m
 - OS Architecture 
 - Device update management configuration 
 
-If the update you're offered isn't the most current available, it might be because your device is being managed by a WSUS server, and you're being offered the updates available on that server. It's also possible, if your device is part of a Windows as a Service deployment ring, that your admin is intentionally slowing the rollout of updates. Since the WaaS rollout is slow and measured to begin with, all devices will not receive the update on the same day.  
+If the update you're offered isn't the most current available, it might be because your device is being managed by a WSUS server, and you're being offered the updates available on that server. It's also possible, if your device is part of a deployment group, that your admin is intentionally slowing the rollout of updates. Since the deployment is slow and measured to begin with, all devices will not receive the update on the same day.  
  
 ## My device is frozen at scan. Why? 
-The Settings UI is talking to the Update Orchestrator service which in turn is talking to Windows Update service. If these services stop unexpectedly then you might see this behavior. In such cases, do the following:  
+The Settings UI communicates with the Update Orchestrator service which in turn communicates with to Windows Update service. If these services stop unexpectedly, then you might see this behavior. In such cases, follow these steps:  
 
 1. Close the Settings app and reopen it.  
 
-2. Launch Services.msc and check if the following services are running:  
+2. Start Services.msc and check if the following services are running:  
 
    - Update State Orchestrator 
    - Windows Update 
 
 ## Feature updates are not being offered while other updates are
-Devices running Windows 10, version 1709 through Windows 10, version 1803 that are [configured to update from Windows Update](#BKMK_DCAT) (including Windows Update for Business scenarios) are able to install servicing and definition updates but are never offered feature updates.
+Devices running Windows 10, version 1709 through Windows 10, version 1803 that are [configured to update from Windows Update](#BKMK_DCAT) (including Windows Update for Business) are able to install servicing and definition updates but are never offered feature updates.
 
 Checking the WindowsUpdate.log reveals the following error:
 ```console
@@ -95,12 +95,12 @@ The 0x80070426 error code translates to:
 ERROR_SERVICE_NOT_ACTIVE - # The service has not been started.
 ```
 
-Microsoft Account Sign In Assistant (MSA or wlidsvc) is the service in question. The DCAT Flighting service (ServiceId: 855E8A7C-ECB4-4CA3-B045-1DFA50104289) relies on the Microsoft Account Sign In Assistant (MSA) to get the Global Device ID for the device. Without the MSA service running, the global device ID will not be generated and sent by the client and the search for feature updates never completes successfully.
+Microsoft Account Sign In Assistant (MSA or wlidsvc) is the service in question. The DCAT Flighting service (ServiceId: 855E8A7C-ECB4-4CA3-B045-1DFA50104289) relies on MSA to get the global device ID for the device. Without the MSA service running, the global device ID won't be generated and sent by the client and the search for feature updates never completes successfully.
 
-In order to solve this issue, we need to reset the MSA service to the default StartType of manual.
+To resolve this issue, reset the MSA service to the default StartType of "manual."
 
 ## Issues related to HTTP/Proxy 
-Windows Update uses WinHttp with Partial Range requests (RFC 7233) to download updates and applications from Windows Update servers or on-premises WSUS servers. Because of this proxy servers configured on the network must support HTTP RANGE requests. If a proxy was configured in Internet Explorer (User level) but not in WinHTTP (System level), connections to Windows Update will fail. 
+Windows Update uses WinHttp with Partial Range requests (RFC 7233) to download updates and applications from Windows Update servers or on-premises WSUS servers. Therefore proxy servers on the network must support HTTP RANGE requests. If a proxy was configured in Internet Explorer (User level) but not in WinHTTP (System level), connections to Windows Update will fail. 
  
 To fix this issue, configure a proxy in WinHTTP by using the following netsh command: 
 
@@ -113,14 +113,13 @@ netsh winhttp set proxy ProxyServerName:PortNumber
  
 If downloads through a proxy server fail with a 0x80d05001 DO_E_HTTP_BLOCKSIZE_MISMATCH error, or if you notice high CPU usage while updates are downloading, check the proxy configuration to permit HTTP RANGE requests to run.  
  
-You may choose to apply a rule to permit HTTP RANGE requests for the following URLs: 
+You might choose to apply a rule to permit HTTP RANGE requests for the following URLs: 
 
-*.download.windowsupdate.com  
-*.dl.delivery.mp.microsoft.com
-*.delivery.mp.microsoft.com
-*.emdl.ws.microsoft.com
+`*.download.windowsupdate.com`  
+`*.dl.delivery.mp.microsoft.com`
+`*.delivery.mp.microsoft.com`
 
-If you cannot permit RANGE requests, keep in mind that this means you are downloading more content than needed in updates (as delta patching will not work).
+If you can't allow RANGE requests, you'll be downloading more content than needed in updates (as delta patching will not work).
  
  
 ## The update is not applicable to your computer 
@@ -128,13 +127,13 @@ The most common reasons for this error are described in the following table:
 
 |Cause|Explanation|Resolution|
 |-----|-----------|----------| 
-|Update is superseded|As updates for a component are released, the updated component will supersede an older component that is already on the system. When this occurs, the previous update is marked as superseded. If the update that you're trying to install already has a newer version of the payload on your system, you may encounter this error message.|Check that the package that you are installing contains newer versions of the binaries. Or, check that the package is superseded by another new package. |
+|Update is superseded|As updates for a component are released, the updated component will supersede an older component that is already on the system. When this occurs, the previous update is marked as superseded. If the update that you're trying to install already has a newer version of the payload on your system, you might receive this error message.|Check that the package that you are installing contains newer versions of the binaries. Or, check that the package is superseded by another new package. |
 |Update is already installed|If the update that you're trying to install was previously installed, for example, by another update that carried the same payload, you may encounter this error message.|Verify that the package that you are trying to install was not previously installed.| 
 |Wrong update for architecture|Updates are published by CPU architecture. If the update that you're trying to install does not match the architecture for your CPU, you may encounter this error message. |Verify that the package that you're trying to install matches the Windows version that you are using. The Windows version information can be found in the "Applies To" section of the article for each update. For example, Windows Server 2012-only updates cannot be installed on Windows Server 2012 R2-based computers. <br>Also, verify that the package that you are installing matches the processor architecture of the Windows version that you are using. For example, an x86-based update cannot be installed on x64-based installations of Windows. |
-|Missing prerequisite update|Some updates require a prerequisite update before they can be applied to a system. If you are missing a prerequisite update, you may encounter this error message. For example, KB 2919355 must be installed on Windows 8.1 and Windows Server 2012 R2 computers before many of the updates that were released after April 2014 can be installed.|Check the related articles about the package in the Microsoft Knowledge Base (KB) to make sure that you have the prerequisite updates installed. For example, if you encounter the error message on Windows 8.1 or Windows Server 2012 R2, you may have to install the April 2014 update 2919355 as a prerequisite and one or more pre-requisite servicing updates (KB 2919442 and KB 3173424). <br>Note: To determine if these prerequisite updates are installed, run the following PowerShell command: <br>get-hotfix KB3173424,KB2919355,KB2919442 <br>If the updates are installed, the command will return the installed date in the "InstalledOn" section of the output. 
+|Missing prerequisite update|Some updates require a prerequisite update before they can be applied to a system. If you are missing a prerequisite update, you may encounter this error message. For example, KB 2919355 must be installed on Windows 8.1 and Windows Server 2012 R2 computers before many of the updates that were released after April 2014 can be installed.|Check the related articles about the package in the Microsoft Knowledge Base (KB) to make sure that you have the prerequisite updates installed. For example, if you encounter the error message on Windows 8.1 or Windows Server 2012 R2, you may have to install the April 2014 update 2919355 as a prerequisite and one or more pre-requisite servicing updates (KB 2919442 and KB 3173424). <br>To determine if these prerequisite updates are installed, run the following PowerShell command: <br>`get-hotfix KB3173424,KB2919355, KB2919442`. <br>If the updates are installed, the command will return the installed date in the `InstalledOn` section of the output. 
 
 ## Issues related to firewall configuration 
-Error that may be seen in the WU logs:  
+Error that you might see in Windows Update logs:  
 ```console
 DownloadManager    Error 0x800706d9 occurred while downloading update; notifying dependent calls. 
 ```
@@ -150,33 +149,34 @@ DownloadManager [0]12F4.1FE8::09/29/2017-13:45:08.530 [agent]DO job {C6E2F6DC-5B
 Go to Services.msc and ensure that Windows Firewall Service is enabled. Stopping the service associated with Windows Firewall with Advanced Security is not supported by Microsoft. For more information, see [I need to disable Windows Firewall](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc766337(v=ws.10)).
  
 ## Issues arising from configuration of conflicting policies 
-Windows Update provides a wide range configuration policies to control the behavior of WU service in a managed environment. While these policies let you configure the settings at a granular level, misconfiguration or setting conflicting polices may lead to unexpected behaviors. 
+Windows Update provides a wide range configuration policy to control the behavior of the Windows Update service in a managed environment. While these policies let you configure the settings at a granular level, misconfiguration or setting conflicting policies may lead to unexpected behaviors. 
  
 See [How to configure automatic updates by using Group Policy or registry settings](https://support.microsoft.com/help/328010/how-to-configure-automatic-updates-by-using-group-policy-or-registry-s) for more information.
 
 ## Device cannot access update files
-Check that your device can access these Windows Update endpoints:
 
-- `http://windowsupdate.microsoft.com`
-- `http://*.windowsupdate.microsoft.com`
-- `https://*.windowsupdate.microsoft.com`
-- `http://*.update.microsoft.com`
-- `https://*.update.microsoft.com`
-- `http://*.windowsupdate.com`
-- `http://download.windowsupdate.com`
-- `https://download.microsoft.com`
-- `http://*.download.windowsupdate.com`
-- `http://wustat.windows.com`
-- `http://ntservicepack.microsoft.com`
-- `https://*.prod.do.dsp.mp.microsoft.com`
-- `http://*.dl.delivery.mp.microsoft.com`
-- `https://*.delivery.mp.microsoft.com`
-- `https://tsfe.trafficshaping.dsp.mp.microsoft.com`
- 
- Allow these endpoints for future use.
+Ensure that devices can reach necessary Windows Update endpoints through the firewall. For example, for Windows 10, version 2004, the following protocols must be able to reach these respective endpoints:
+
+
+|Protocol  |Endpoint URL  |
+|---------|---------|
+|TLS 1.2         |  `*.prod.do.dsp.mp.microsoft.com`      |
+|HTTP     | `emdl.ws.microsoft.com`        |
+|HTTP     | `*.dl.delivery.mp.microsoft.com`        |
+|HTTP     |  `*.windowsupdate.com`       |
+|HTTPS     |  `*.delivery.mp.microsoft.com`       |
+|TLS 1.2     | `*.update.microsoft.com`        |
+|TLS 1.2     |  `tsfe.trafficshaping.dsp.mp.microsoft.com`       |
+
+> [!NOTE]
+> Be sure not to use HTTPS for those endpoints that specify HTTP, and vice versa. The connection will fail.
+
+The specific endpoints can vary between Windows 10 versions. See, for example, [Windows 10 2004 Enterprise connection endpoints](https://docs.microsoft.com/windows/privacy/manage-windows-2004-endpoints). Similar articles for other Windows 10 versions are available in the table of contents nearby.
+
  
 ## Updates aren't downloading from the intranet endpoint (WSUS or Configuration Manager) 
-Windows 10 devices can receive updates from a variety of sources, including Windows Update online, a Windows Server Update Services server, and others. To determine the source of Windows Updates currently being used on a device, follow these steps:  
+Windows 10 devices can receive updates from a variety of sources, including Windows Update online, a Windows Server Update Services server, and others. To determine the source of Windows Updates currently being used on a device, follow these steps: 
+ 
 1. Start Windows PowerShell as an administrator.
 2. Run \$MUSM = New-Object -ComObject "Microsoft.Update.ServiceManager". 
 3. Run \$MUSM.Services.  
@@ -192,14 +192,14 @@ Check the output for the Name and OffersWindowsUPdates parameters, which you can
 |- Name: Windows Update<br>- OffersWindowsUpdates: True|- The source is Windows Update. <br>- The client is configured to receive updates from Windows Update Online.| 
  
 ## You have a bad setup in the environment 
-If we look at the GPO being set through registry, the system is configured to use WSUS to download updates: 
+In this example, per the Group Policy set through registry, the system is configured to use WSUS to download updates (note the second line): 
 
 ```console
 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU] 
-"UseWUServer"=dword:00000001                                        ===================================> it says use WSUS server.  
+"UseWUServer"=dword:00000001
 ```
 
-From the WU logs: 
+From Windows Update logs: 
 ```console
 2018-08-06 09:33:31:085  480 1118 Agent ** START **  Agent: Finding updates [CallerId = OperationalInsight  Id = 49] 
 2018-08-06 09:33:31:085  480 1118 Agent ********* 
@@ -215,7 +215,7 @@ From the WU logs:
 
 In the above log snippet, we see that the Criteria = "IsHidden = 0 AND DeploymentAction=*". "*" means there is nothing specified from the server. So, the scan happens but there is no direction to download or install to the agent. So it just scans the update and provides the results. 
 
-Now if you look at the below logs, the Automatic update runs the scan and finds no update approved for it. So it reports there are 0 updates to install or download. This is due to bad setup or configuration in the environment. The WSUS side should approve the patches for WU so that it fetches the updates and installs it on the specified time according to the policy. Since this scenario doesn't include Configuration Manager, there's no way to install unapproved updates. And that is the problem you are facing. You expect that the scan should be done by the operational insight agent and automatically trigger download and install but that won’t happen here.  
+Now if you look at the below logs, the Automatic update runs the scan and finds no update approved for it. So it reports there are no updates to install or download. This is due to an incorrect configuration. The WSUS side should approve the updates for Windows Update so that it fetches the updates and installs them at the specified time according to the policy. Since this scenario doesn't include Configuration Manager, there's no way to install unapproved updates. You're expecting the operational insight agent to do the scan and automatically trigger the download and installation but that won’t happen with this configuration.  
 
 ```console
 2018-08-06 10:58:45:992  480 5d8 Agent ** START **  Agent: Finding updates [CallerId = AutomaticUpdates  Id = 57] 

From 25a70fc716fcc93b42f4abdbde37c09489239c3b Mon Sep 17 00:00:00 2001
From: Beth Woodbury <40870842+levinec@users.noreply.github.com>
Date: Wed, 11 Nov 2020 12:06:56 -0800
Subject: [PATCH 087/209] Update exploits-malware.md

---
 .../threat-protection/intelligence/exploits-malware.md      | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/intelligence/exploits-malware.md b/windows/security/threat-protection/intelligence/exploits-malware.md
index 36ef30a468..ac9b1e0cb1 100644
--- a/windows/security/threat-protection/intelligence/exploits-malware.md
+++ b/windows/security/threat-protection/intelligence/exploits-malware.md
@@ -37,11 +37,11 @@ Several notable threats, including Wannacry, exploit the Server Message Block (S
 
 Examples of exploit kits:
 
-- Angler / [Axpergle](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Axpergle)
+- Angler / [Axpergle](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Axpergle)
 
-- [Neutrino](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?name=JS/NeutrinoEK)
+- [Neutrino](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=JS/NeutrinoEK)
 
-- [Nuclear](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Neclu)
+- [Nuclear](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Neclu)
 
 To learn more about exploits, read this blog post on [taking apart a double zero-day sample discovered in joint hunt with ESET.](https://cloudblogs.microsoft.com/microsoftsecure/2018/07/02/taking-apart-a-double-zero-day-sample-discovered-in-joint-hunt-with-eset/)
 

From 4454ae46ef7f425612416cc3c618104de597a2e4 Mon Sep 17 00:00:00 2001
From: Beth Woodbury <40870842+levinec@users.noreply.github.com>
Date: Wed, 11 Nov 2020 12:08:58 -0800
Subject: [PATCH 088/209] Update exploits-malware.md

---
 .../threat-protection/intelligence/exploits-malware.md        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/intelligence/exploits-malware.md b/windows/security/threat-protection/intelligence/exploits-malware.md
index ac9b1e0cb1..f7895be9f2 100644
--- a/windows/security/threat-protection/intelligence/exploits-malware.md
+++ b/windows/security/threat-protection/intelligence/exploits-malware.md
@@ -37,11 +37,11 @@ Several notable threats, including Wannacry, exploit the Server Message Block (S
 
 Examples of exploit kits:
 
-- Angler / [Axpergle](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Axpergle)
+- Angler / [Axpergle](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=JS/Axpergle)
 
 - [Neutrino](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=JS/NeutrinoEK)
 
-- [Nuclear](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Exploit:JS/Neclu)
+- [Nuclear](https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=JS/Neclu)
 
 To learn more about exploits, read this blog post on [taking apart a double zero-day sample discovered in joint hunt with ESET.](https://cloudblogs.microsoft.com/microsoftsecure/2018/07/02/taking-apart-a-double-zero-day-sample-discovered-in-joint-hunt-with-eset/)
 

From 69d5498bc33f85474f0bb932c1443d39afa58ac5 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 11 Nov 2020 13:14:26 -0800
Subject: [PATCH 089/209] Move Big Sur note to top of What's new page and on
 landing page

---
 .../microsoft-defender-atp/mac-whatsnew.md    | 22 +------------------
 .../microsoft-defender-atp-mac.md             |  5 ++++-
 2 files changed, 5 insertions(+), 22 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 7c00c8af5a..aade908feb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -23,25 +23,8 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 > [!IMPORTANT]
-> In preparation for macOS 11 Big Sur, we are getting ready to release an update to Microsoft Defender for Endpoint for Mac that will leverage new system extensions instead of kernel extensions. Apple will stop supporting kernel extensions starting macOS 11 Big Sur version. Therefore an update to the Microsoft Defender for Endpoint for Mac agent is required on all eligible macOS devices prior to moving these devices to macOS 11.
-> 
-> The update is applicable to devices running macOS version 10.15.4 or later.
-> 
-> To ensure that the Microsoft Defender for Endpoint for Mac update is delivered and applied seamlessly from an end-user experience perspective, a new remote configuration must be deployed to all eligible macOS devices before Microsoft publishes the new agent version. If the configuration is not deployed prior to the Microsoft Defender for Endpoint for Mac agent update, end-users will be presented with a series of system dialogs asking to grant the agent all necessary permissions associated with the new system extensions.
-> 
-> Timing: 
-> - Organizations that previously opted into Microsoft Defender for Endpoint preview features in Microsoft Defender Security Center, must be ready for Microsoft Defender for Endpoint for Mac agent update **by August 10, 2020**.
-> - Organizations that do not participate in public previews for Microsoft Defender for Endpoint features, must be ready **by September 07, 2020**.
-> 
-> Action is needed by IT administrator. Review the steps below and assess the impact on your organization:
-> 
-> 1. Deploy the specified remote configuration to eligible macOS devices before Microsoft publishes the new agent version. <br/>
-> Even though Microsoft Defender for Endpoint for Mac new implementation based on system extensions is only applicable to devices running macOS version 10.15.4 or later, deploying configuration proactively across the entire macOS fleet will ensure that even down-level devices are prepared for the day when Apple releases macOS 11 Big Sur and will ensure that Microsoft Defender for Endpoint for Mac continues protecting all macOS devices regardless OS version they were running prior to the Big Sur upgrade.
-> 
-> 2. Refer to this documentation for detailed configuration information and instructions: [New configuration profiles for macOS Catalina and newer versions of macOS](mac-sysext-policies.md).
-> 3. Monitor this page for an announcement of the actual release of MDATP for Mac agent update.
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue.
 
 ## 101.10.72
 
@@ -57,9 +40,6 @@ ms.topic: conceptual
 
 - This product version has been validated on macOS Big Sur 11 beta 9
 
-  > [!IMPORTANT]
-  > Extensive testing of MDE (Microsoft Defender for Endpoint) with new macOS system extensions revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue.
-
 - The new syntax for the `mdatp` command-line tool is now the default one. For more information on the new syntax, see [Resources for Microsoft Defender for Endpoint for Mac](mac-resources.md#configuring-from-the-command-line)
 
   > [!NOTE]
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index e0e09fc815..808f3f9bc1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -65,10 +65,13 @@ There are several methods and deployment tools that you can use to install and c
 
 The three most recent major releases of macOS are supported.
 
+> [!IMPORTANT]
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue.
+
 - 10.15 (Catalina), 10.14 (Mojave), 10.13 (High Sierra)
 - Disk space: 1GB
 
-Beta versions of macOS are not supported. macOS Sierra (10.12) support ended on January 1, 2020.
+Beta versions of macOS are not supported.
 
 After you've enabled the service, you may need to configure your network or firewall to allow outbound connections between it and your endpoints.
 

From 3627397d9d4378249e7963165e0237b76b1ae28e Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Wed, 11 Nov 2020 23:23:52 +0200
Subject: [PATCH 090/209] Fix broken link

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8578

Used social technet link instead of web.archive one.
---
 .../information-protection/bitlocker/bitlocker-overview.md      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-overview.md b/windows/security/information-protection/bitlocker/bitlocker-overview.md
index 131a256f82..2b79e081bc 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-overview.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-overview.md
@@ -62,7 +62,7 @@ A computer with a TPM must also have a Trusted Computing Group (TCG)-compliant B
 The system BIOS or UEFI firmware (for TPM and non-TPM computers) must support the USB mass storage device class, including reading small files on a USB flash drive in the pre-operating system environment.
 
 > [!IMPORTANT]
-> From Windows 7, you can encrypt an OS drive without a TPM and USB flash drive. For this procedure, see [Tip of the Day: Bitlocker without TPM or USB](https://blogs.technet.microsoft.com/tip_of_the_day/2014/01/22/tip-of-the-day-bitlocker-without-tpm-or-usb/).
+> From Windows 7, you can encrypt an OS drive without a TPM and USB flash drive. For this procedure, see [Tip of the Day: Bitlocker without TPM or USB](https://social.technet.microsoft.com/Forums/en-US/eac2cc67-8442-42db-abad-2ed173879751/bitlocker-without-tpm?forum=win10itprosetup).
 
 > [!NOTE]
 > TPM 2.0 is not supported in Legacy and CSM Modes of the BIOS. Devices with TPM 2.0 must have their BIOS mode configured as Native UEFI only. The Legacy and Compatibility Support Module (CSM) options must be disabled. For added security Enable the Secure Boot feature.

From 6b5b3b3dd2d785f4d14f95af57360b2b3a8ba962 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 11 Nov 2020 13:32:29 -0800
Subject: [PATCH 091/209] Add info on how to submit feedback

---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md    | 2 +-
 .../microsoft-defender-atp/microsoft-defender-atp-mac.md        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index aade908feb..eb1f868d60 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue.
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
 
 ## 101.10.72
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 808f3f9bc1..de9fa4ec68 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -66,7 +66,7 @@ There are several methods and deployment tools that you can use to install and c
 The three most recent major releases of macOS are supported.
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue.
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
 
 - 10.15 (Catalina), 10.14 (Mojave), 10.13 (High Sierra)
 - Disk space: 1GB

From 209277d6a700975891e26100f5be51c5ca6148d8 Mon Sep 17 00:00:00 2001
From: Marty Hernandez Avedon <v-maave@microsoft.com>
Date: Wed, 11 Nov 2020 17:12:50 -0500
Subject: [PATCH 092/209] attempt to improve acrolinx score

typo fixes, shorter sentences, misc other copyedits
---
 .../threat-protection/fips-140-validation.md  | 704 +++++++++---------
 1 file changed, 354 insertions(+), 350 deletions(-)

diff --git a/windows/security/threat-protection/fips-140-validation.md b/windows/security/threat-protection/fips-140-validation.md
index 867aadf0d5..755d20142f 100644
--- a/windows/security/threat-protection/fips-140-validation.md
+++ b/windows/security/threat-protection/fips-140-validation.md
@@ -1,6 +1,6 @@
 ---
 title: Federal Information Processing Standard (FIPS) 140 Validation
-description: This topic provides information on how Microsoft products and cryptographic modules comply with the U.S. Federal government standard FIPS 140.
+description: Learn how Microsoft products and cryptographic modules follow the U.S. Federal government standard FIPS 140.
 ms.prod: w10
 audience: ITPro
 author: dansimp
@@ -16,41 +16,48 @@ ms.reviewer:
 
 ## FIPS 140-2 standard overview
 
-The Federal Information Processing Standard (FIPS) Publication 140-2 is a U.S. government standard that defines minimum security requirements for cryptographic modules in information technology products, as defined in Section 5131 of the Information Technology Management Reform Act of 1996.
+The Federal Information Processing Standard (FIPS) Publication 140-2 is a U.S. government standard. FIPS is based on Section 5131 of the Information Technology Management Reform Act of 1996. It defines the minimum security requirements for cryptographic modules in IT products.
 
-The [Cryptographic Module Validation Program (CMVP)](https://csrc.nist.gov/Projects/cryptographic-module-validation-program), a joint effort of the U.S. National Institute of Standards and Technology (NIST) and the Canadian Centre for Cyber Security (CCCS), validates cryptographic modules against the Security Requirements for Cryptographic Modules (part of FIPS 140-2) and related FIPS cryptography standards. The FIPS 140-2 security requirements cover eleven areas related to the design and implementation of a cryptographic module. The NIST Information Technology Laboratory operates a related program that validates the FIPS approved cryptographic algorithms in the module.
+The [Cryptographic Module Validation Program (CMVP)](https://csrc.nist.gov/Projects/cryptographic-module-validation-program) is a joint effort of the U.S. National Institute of Standards and Technology (NIST) and the Canadian Centre for Cyber Security (CCCS). It validates cryptographic modules against the Security Requirements for Cryptographic Modules (part of FIPS 140-2) and related FIPS cryptography standards. The FIPS 140-2 security requirements cover 11 areas related to the design and implementation of a cryptographic module. The NIST Information Technology Laboratory operates a related program that validates the FIPS approved cryptographic algorithms in the module.
 
 ## Microsoft’s approach to FIPS 140-2 validation
 
-Microsoft maintains an active commitment to meeting the requirements of the FIPS 140-2 standard, having validated cryptographic modules against it since the inception of the standard in 2001.  Microsoft validates its cryptographic modules under the NIST CMVP, as described above.  Multiple Microsoft products, including Windows 10, Windows Server, and many cloud services, use these cryptographic modules.
+Microsoft maintains an active commitment to meeting the requirements of the FIPS 140-2 standard, having validated cryptographic modules against it since it was first established in 2001.  Microsoft validates its cryptographic modules under the NIST CMVP, as described above.  Multiple Microsoft products, including Windows 10, Windows Server, and many cloud services, use these cryptographic modules.
 
 ## Using Windows in a FIPS 140-2 approved mode of operation
 
-Windows 10 and Windows Server may be configured to run in a FIPS 140-2 approved mode of operation. This is commonly referred to as “FIPS mode.”  When this mode is enabled, the Cryptographic Primitives Library (bcryptprimitives.dll) and Kernel Mode Cryptographic Primitives Library (CNG.sys) modules will run self-tests before Windows cryptographic operations are run. These self-tests are run in accordance with FIPS 140-2 Section 4.9 and are utilized to ensure that the modules are functioning properly. The Cryptographic Primitives Library and the Kernel Mode Cryptographic Primitives Library are the only modules affected by this mode of operation. The FIPS 140-2 approved mode of operation will not prevent Windows and its subsystems from using non-FIPS validated cryptographic algorithms. For applications or components beyond the Cryptographic Primitives Library and the Kernel Mode Cryptographic Primitives Library, FIPS mode is merely advisory.
+Windows 10 and Windows Server may be configured to run in a FIPS 140-2 approved mode of operation, commonly referred to as "FIPS mode."  If you turn on FIPS mode, the Cryptographic Primitives Library (bcryptprimitives.dll) and Kernel Mode Cryptographic Primitives Library (CNG.sys) modules will run self-tests before Windows runs cryptographic operations. These self-tests are run according to FIPS 140-2 Section 4.9. They ensure that the modules are functioning properly.
 
-While US government regulations continue to mandate that FIPS mode be enabled on government computers running Windows, our recommendation is that it is each customer’s decision to make when considering enabling FIPS mode. There are many applications and protocols that look to the FIPS mode policy to determine which cryptographic functionality should be utilized in a given solution. We recommend that customers hoping to comply with FIPS 140-2 research the configuration settings of applications and protocols they may be using to ensure their solutions can be configured to utilize the FIPS 140-2 validated cryptography provided by Windows when it is operating in FIPS 140-2 approved mode. 
+The Cryptographic Primitives Library and the Kernel Mode Cryptographic Primitives Library are the only modules affected by FIPS mode. FIPS mode won't prevent Windows and its subsystems from using non-FIPS validated cryptographic algorithms. FIPS mode is merely advisory for applications or components other than the Cryptographic Primitives Library and the Kernel Mode Cryptographic Primitives Library.
+
+US government regulations continue to mandate FIPS mode for government devices running Windows. Other customers should decide for themselves if FIPS mode is right for them. There are many applications and protocols that use FIPS mode policy to determine which cryptographic functionality to run. Customers seeking to follow the FIPS 140-2 standard should research the configuration settings of their applications and protocols. This research will help ensure that they can be configured to use FIPS 140-2 validated cryptography.
 
 Achieving this FIPS 140-2 approved mode of operation of Windows requires administrators to complete all four steps outlined below.
 
 ### Step 1: Ensure FIPS 140-2 validated cryptographic modules are installed
 
-Administrators must ensure that all cryptographic modules installed are FIPS 140-2 validated.  This is accomplished by cross-checking the version number of the cryptographic module with the table of validated modules at the end of this topic, organized by operating system release.
+Administrators must ensure that all cryptographic modules installed are FIPS 140-2 validated.  Tables listing validated modules, organized by operating system release, are available later in this article.
 
 ### Step 2: Ensure all security policies for all cryptographic modules are followed
 
-Each of the cryptographic modules has a defined security policy that must be met for the module to operate in its FIPS 140-2 approved mode.  The security policy may be found in each module’s published Security Policy Document (SPD).  The SPDs for each module may be found by following the links in the table of validated modules at the end of this topic.  Click on the module version number to view the published SPD for the module. 
- 
+Each of the cryptographic modules has a defined security policy that must be met for the module to operate in its FIPS 140-2 approved mode.  The security policy may be found in each module’s published Security Policy Document (SPD).  The SPDs for each module may be found in the table of validated modules at the end of this article.  Select the module version number to view the published SPD for the module. 
+
 ### Step 3: Enable the FIPS security policy
 
-Windows provides the security policy setting, “System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing,” which is used by some Microsoft products to determine whether to operate in a FIPS 140-2 approved mode.  When this policy is enabled, the validated cryptographic modules in Windows will also operate in FIPS approved mode.  The policy may be set using Local Security Policy, as part of Group Policy, or through a Modern Device Management (MDM) solution.   For more information on the policy, see [System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing](https://docs.microsoft.com/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing).  
+Windows provides the security policy setting, *System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing*. This setting is used by some Microsoft products to determine whether to run in FIPS mode.  When this policy is turned on, the validated cryptographic modules in Windows will also operate in FIPS mode.  This policy may be set using Local Security Policy, as part of Group Policy, or through a Modern Device Management (MDM) solution.   For more information on the policy, see [System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing](https://docs.microsoft.com/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing).  
 
-### Step 4: Ensure only FIPS validated cryptographic algorithms are used
+### Step 4: Ensure that only FIPS validated cryptographic algorithms are used
 
-Neither the operating system nor the cryptographic modules can enforce a FIPS approved mode of operation, regardless of the FIPS security policy setting.  To run in a FIPS approved mode, an application or service must check for the policy flag and enforce the security policies of the validated modules.  If an application or service uses a non-approved cryptographic algorithm or does not follow the security policies of the validated modules, it is not operating in a FIPS approved mode.
+FIPS mode is enforced at the level of the application or service. It is not enforced by the operating system or by individual cryptographic modules. Applications or services running in FIPS mode must follow the security policies of validated modules. They must not use a cryptographic algorithm that isn't FIPS-compliant.
+
+In short, an application or service is running in FIPS mode if it:
+
+* Checks for the policy flag
+* Enforces security policies of validated modules
 
 ## Frequently asked questions
 
-### How long does it take to certify cryptographic modules?
+### How long does it take to certify a cryptographic module?
 
 Microsoft begins certification of cryptographic modules after each major feature release of Windows 10 and Windows Server. The duration of each evaluation varies, depending on many factors.
 
@@ -58,29 +65,29 @@ Microsoft begins certification of cryptographic modules after each major feature
 
 The cadence for starting module validation aligns with the feature updates of Windows 10 and Windows Server.  As the software industry evolves, operating systems release more frequently. Microsoft completes validation work on major releases but, in between releases, seeks to minimize the changes to the cryptographic modules.  
 
-### What is the difference between “FIPS 140 validated” and “FIPS 140 compliant”?
+### What is the difference between *FIPS 140 validated* and *FIPS 140 compliant*?
 
-“FIPS 140 validated” means that the cryptographic module, or a product that embeds the module, has been validated (“certified”) by the CMVP as meeting the FIPS 140-2 requirements. “FIPS 140 compliant” is an industry term for IT products that rely on FIPS 140 validated products for cryptographic functionality.
+*FIPS 140 validated* means that the cryptographic module, or a product that embeds the module, has been validated ("certified") by the CMVP as meeting the FIPS 140-2 requirements. *FIPS 140 compliant* is an industry term for IT products that rely on FIPS 140 validated products for cryptographic functionality.
 
-### I need to know if a Windows service or application is FIPS 140-2 validated.
+### How do I know if a Windows service or application is FIPS 140-2 validated?
 
-The cryptographic modules leveraged in Windows are validated through the CMVP, not individual services, applications, hardware peripherals, or other solutions.  For a solution to be considered compliant, it must call a FIPS 140-2 validated cryptographic module in the underlying OS and the OS must be configured to run in FIPS mode.  Contact the vendor of the service, application, or product for information on whether it calls a validated cryptographic module.
+The cryptographic modules used in Windows are validated through the CMVP. They aren't validated by individual services, applications, hardware peripherals, or other solutions.  Any compliant solution must call a FIPS 140-2 validated cryptographic module in the underlying OS, and the OS must be configured to run in FIPS mode.  Contact the vendor of the service, application, or product for information on whether it calls a validated cryptographic module.
 
-### What does "When operated in FIPS mode" mean on a certificate?
+### What does *When operated in FIPS mode* mean on a certificate?
 
-This caveat identifies required configuration and security rules that must be followed to use the cryptographic module in a way that is consistent with its FIPS 140-2 security policy. Each module has its own security policy—a precise specification of the security rules under which it will operate—and employs approved cryptographic algorithms, cryptographic key management, and authentication techniques. The security rules are defined in the Security Policy Document (SPD) for each module.
+This label means that certain configuration and security rules must be followed to use the cryptographic module in compliance with its FIPS 140-2 security policy. Each module has its own security policy—a precise specification of the security rules under which it will operate—and employs approved cryptographic algorithms, cryptographic key management, and authentication techniques. The security rules are defined in the Security Policy Document (SPD) for each module.
 
 ### What is the relationship between FIPS 140-2 and Common Criteria?
 
-These are two separate security standards with different, but complementary, purposes. FIPS 140-2 is designed specifically for validating software and hardware cryptographic modules, while Common Criteria is designed to evaluate security functions in IT software and hardware products. Common Criteria evaluations often rely on FIPS 140-2 validations to provide assurance that basic cryptographic functionality is implemented properly.
+FIPS 140-2 and Common Criteria are two separate security standards with different, but complementary, purposes. FIPS 140-2 is designed specifically for validating software and hardware cryptographic modules. Common Criteria are designed to evaluate security functions in IT software and hardware products. Common Criteria evaluations often rely on FIPS 140-2 validations to provide assurance that basic cryptographic functionality is implemented properly.
 
 ### How does FIPS 140 relate to Suite B?
 
-Suite B is a set of cryptographic algorithms defined by the U.S. National Security Agency (NSA) as part of its Cryptographic Modernization Program. The set of Suite B cryptographic algorithms are to be used for both unclassified information and most classified information. The Suite B cryptographic algorithms are a subset of the FIPS Approved cryptographic algorithms as allowed by the FIPS 140-2 standard.
+Suite B is a set of cryptographic algorithms defined by the U.S. National Security Agency (NSA) as part of its Cryptographic Modernization Program. The set of Suite B cryptographic algorithms are to be used for both unclassified information and most classified information. The Suite B cryptographic algorithms are a subset of the FIPS approved cryptographic algorithms allowed by the FIPS 140-2 standard.
 
 ### Is SMB3 (Server Message Block) FIPS 140 compliant in Windows?
 
-When Windows is configured to operate in FIPS 140 approved mode on both client and server, SMB3 is FIPS 140 compliant and relies on the underlying Windows FIPS 140 validated cryptographic modules for cryptographic operations. 
+SMB3 can be FIPS 140 compliant, if Windows is configured to operate in FIPS 140 mode on both client and server.  In FIPS mode, SMB3 relies on the underlying Windows FIPS 140 validated cryptographic modules for cryptographic operations.
 
 ## Microsoft FIPS 140-2 validated cryptographic modules
 
@@ -314,7 +321,7 @@ Validated Editions: Home, Pro, Enterprise, Education, S, Surface Hub, Mobile
 <td>Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll)</td>
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3095.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3095">#3095</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a>); CKG (vendor affirmed); CVL (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1278">#1278</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1281">#1281</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">#1555</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">#1223</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">#1133</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">#127</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#140">#140</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a>; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2521">#2521</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2459">#2459</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a>); CKG (vendor affirmed); CVL (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1278">#1278</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1281">#1281</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">#1555</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">#1223</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">#1133</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">#127</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#140">#140</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a>; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2521">#2521</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2459">#2459</a>)<br />
 <br />
 <em>Other algorithms:</em> HMAC-MD5; MD5; DES; Legacy CAPI KDF; MD2; MD4; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1133">#1133</a>); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#2521">#2521</a>); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1281">#1281</a>); SP800-135 - Section 4.1.1, IKEv1 Section 4.1.2, IKEv2 Section 4.2, TLS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1278">#1278</a>)</p></td>
@@ -324,7 +331,7 @@ Validated Editions: Home, Pro, Enterprise, Education, S, Surface Hub, Mobile
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3094.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3094">#3094</a></td>
 <td><p><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3094">#3094</a></p>
-<p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a>); CKG (vendor affirmed); CVL (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1278">#1278</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1281">#1281</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">#1555</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">#1223</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">#1133</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">#127</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#140">#140</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a>; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2521">#2521</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2459">#2459</a>)<br />
+<p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a>); CKG (vendor affirmed); CVL (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1278">#1278</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1281">#1281</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">#1555</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">#1223</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">#1133</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">#127</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#140">#140</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a>; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2521">#2521</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2459">#2459</a>)<br />
 <br />
 <em>Other algorithms:</em> HMAC-MD5; MD5; NDRNG; DES; Legacy CAPI KDF; MD2; MD4; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3094"><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert.</a><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1133">#1133</a><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3094">); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert.</a><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#2521">#2521</a><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3094">); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert.</a><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1281">#1281</a><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3094">)</a></p></td>
@@ -333,40 +340,40 @@ Validated Editions: Home, Pro, Enterprise, Education, S, Surface Hub, Mobile
 <td>Boot Manager</td>
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3089.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3089">#3089</a></td>
-<td><p><em>FIPS Approved algorithms</em>: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); CKG (vendor affirmed); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
+<td><p><em>FIPS approved algorithms</em>: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); CKG (vendor affirmed); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
 <p><em>Other algorithms</em>: PBKDF (vendor affirmed); VMK KDF (vendor affirmed)</p></td>
 </tr>
 <tr class="odd">
 <td>Windows OS Loader</td>
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3090.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3090">#3090</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
 <p><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3090"><em>Other algorithms:</em> NDRNG</a></p></td>
 </tr>
 <tr class="even">
 <td>Windows Resume<sup>[1]</sup></td>
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3091.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3091">#3091</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</td>
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</td>
 </tr>
 <tr class="odd">
 <td>BitLocker® Dump Filter<sup>[2]</sup></td>
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3092.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3092">#3092</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</td>
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</td>
 </tr>
 <tr class="even">
 <td>Code Integrity (ci.dll)</td>
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3093.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3093">#3093</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v1.5 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1282">#1282</a>)</p></td>
 </tr>
 <tr class="odd">
 <td>Secure Kernel Code Integrity (skci.dll)<sup>[3]</sup></td>
 <td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3096.pdf">10.0.15063</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3096">#3096</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">#3790</a>)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v1.5 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1282">#1282</a>)</p></td>
 </tr>
 </tbody>
@@ -401,7 +408,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile
 <td>Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2937.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2937">#2937</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
 <br />
 <em>Other algorithms:</em> HMAC-MD5; MD5; DES; Legacy CAPI KDF; MD2; MD4; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#922">#922</a>); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#888">#888</a>); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#887">#887</a>); SP800-135 - Section 4.1.1, IKEv1 Section 4.1.2, IKEv2 Section 4.2, TLS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#886">#886</a>)</p></td>
@@ -410,7 +417,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2936.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2936">#2936</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
 <br />
 <em>Other algorithms:</em> HMAC-MD5; MD5; NDRNG; DES; Legacy CAPI KDF; MD2; MD4; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#922">#922</a>); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#888">#888</a>); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#887">#887</a>)</p></td>
@@ -419,14 +426,14 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile
 <td>Boot Manager</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2931.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2931">#2931</a></td>
-<td><p><em>FIPS Approved algorithms</em>: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)</p>
+<td><p><em>FIPS approved algorithms</em>: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)</p>
 <p><em>Other algorithms</em>: MD5; PBKDF (non-compliant); VMK KDF</p></td>
 </tr>
 <tr class="odd">
 <td>BitLocker® Windows OS Loader (winload)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2932.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2932">#2932</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> NDRNG; MD5</td>
 </tr>
@@ -434,7 +441,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile
 <td>BitLocker® Windows Resume (winresume)<sup>[1]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2933.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2933">#2933</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -442,13 +449,13 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile
 <td>BitLocker® Dump Filter (dumpfve.sys)<sup>[2]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2934.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2934">#2934</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>)</td>
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>)</td>
 </tr>
 <tr class="even">
 <td>Code Integrity (ci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2935.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2935">#2935</a></td>
-<td><p><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> AES (non-compliant); MD5</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#888">#888</a>)</p></td>
@@ -457,7 +464,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile
 <td>Secure Kernel Code Integrity (skci.dll)<sup>[3]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2938.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2938">#2938</a></td>
-<td><p><em>FIPS Approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#888">#888</a>)</p></td>
@@ -494,7 +501,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 <td>Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2605.pdf">10.0.10586</a></td>
 <td>#<a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2606">2606</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">#955</a>); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">#1024</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">#760</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#72">#72</a>; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#72">#72</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1887">#1887</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1888">#1888</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1889">#1889</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">#3047</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2024">#2024</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">#955</a>); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">#1024</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">#760</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#72">#72</a>; key agreement; key establishment methodology provides between 112 bits and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#72">#72</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1887">#1887</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1888">#1888, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1889">#1889</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">#3047</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2024">#2024</a>)<br />
 <br />
 <em>Other algorithms:</em> DES; HMAC-MD5; Legacy CAPI KDF; MD2; MD4; MD5; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#666">#666</a>); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#665">#665</a>); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#663">#663</a>); SP800-135 - Section 4.1.1, IKEv1 Section 4.1.2, IKEv2 Section 4.2, TLS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#664">#664</a>)</p></td>
@@ -503,7 +510,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2605.pdf">10.0.10586</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2605">#2605</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">#955</a>); DSA (Certs.  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">#1024</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">#760</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#72">#72</a>; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#72">#72</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1887">#1887</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1888">#1888</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1889">#1889</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">#3047</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2024">#2024</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">#955</a>); DSA (Certs.  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">#1024</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">#760</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#72">#72</a>; key agreement; key establishment methodology provides between 112 bits and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#72">#72</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1887">#1887</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1888">#1888, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1889">#1889</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">#3047</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2024">#2024</a>)<br />
 <br />
 <em>Other algorithms:</em> DES; HMAC-MD5; Legacy CAPI KDF; MD2; MD4; MD5; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#666">#666</a>); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#665">#665</a>); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#663">#663</a>)</p></td>
@@ -512,7 +519,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 <td>Boot Manager<sup>[4]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2700.pdf">10.0.10586</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2700">#2700</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">#3047</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">#3047</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; KDF (non-compliant); PBKDF (non-compliant)</td>
 </tr>
@@ -520,7 +527,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 <td>BitLocker® Windows OS Loader (winload)<sup>[5]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2701.pdf">10.0.10586</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2701">#2701</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; NDRNG</td>
 </tr>
@@ -528,7 +535,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 <td>BitLocker® Windows Resume (winresume)<sup>[6]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2702.pdf">10.0.10586</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2702">#2702</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -536,13 +543,13 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 <td>BitLocker® Dump Filter (dumpfve.sys)<sup>[7]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2703.pdf">10.0.10586</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2703">#2703</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>)</td>
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a>)</td>
 </tr>
 <tr class="even">
 <td>Code Integrity (ci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2604.pdf">10.0.10586</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2604">#2604</a></td>
-<td><p><em>FIPS Approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
 <br />
 <em>Other algorithms:</em> AES (non-compliant); MD5</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#665">#665</a>)</p></td>
@@ -551,7 +558,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 <td>Secure Kernel Code Integrity (skci.dll)<sup>[8]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2607.pdf">10.0.10586</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2607">#2607</a></td>
-<td><p><em>FIPS Approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">#3048</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#665">#665</a>)</p></td>
@@ -592,7 +599,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 <td>Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2605.pdf">10.0.10240</a></td>
 <td>#<a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2606">2606</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">#868</a>); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">#983</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">#706</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">#64</a>; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#66">#66</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3507">#3507</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1783">#1783</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1798">#1798</a>, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1802">#1802</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">#2886</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1969">#1969</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">#868</a>); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">#983</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">#706</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">#64</a>; key agreement; key establishment methodology provides between 112 bits and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#66">#66</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3507">#3507</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1783">#1783</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1798">#1798</a>, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1802">#1802</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">#2886</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1969">#1969</a>)<br />
 <br />
 <em>Other algorithms:</em> DES; HMAC-MD5; Legacy CAPI KDF; MD2; MD4; MD5; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#572">#572</a>); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#576">#576</a>); SP800-135 - Section 4.1.1, IKEv1 Section 4.1.2, IKEv2 Section 4.2, TLS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#575">#575</a>)</p></td>
@@ -601,7 +608,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2605.pdf">10.0.10240</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2605">#2605</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">#868</a>); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">#983</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">#706</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">#64</a>; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#66">#66</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3507">#3507</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1783">#1783</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1798">#1798</a>, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1802">#1802</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">#2886</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1969">#1969</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">#868</a>); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">#983</a>); ECDSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">#706</a>); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a>); KAS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">#64</a>; key agreement; key establishment methodology provides between 112 bits and 256 bits of encryption strength); KBKDF (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#66">#66</a>); KTS (AES Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3507">#3507</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1783">#1783</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1798">#1798</a>, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1802">#1802</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">#2886</a>); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1969">#1969</a>)<br />
 <br />
 <em>Other algorithms:</em> DES; HMAC-MD5; Legacy CAPI KDF; MD2; MD4; MD5; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#572">#572</a>); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#576">#576</a>)</p></td>
@@ -610,7 +617,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 <td>Boot Manager<sup>[9]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2600.pdf">10.0.10240</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2600">#2600</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">#2886</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">#2886</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; KDF (non-compliant); PBKDF (non-compliant)</td>
 </tr>
@@ -618,7 +625,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 <td>BitLocker® Windows OS Loader (winload)<sup>[10]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2601.pdf">10.0.10240</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2601">#2601</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; NDRNG</td>
 </tr>
@@ -626,7 +633,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 <td>BitLocker® Windows Resume (winresume)<sup>[11]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2602.pdf">10.0.10240</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2602">#2602</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -634,13 +641,13 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 <td>BitLocker® Dump Filter (dumpfve.sys)<sup>[12]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2603.pdf">10.0.10240</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2603">#2603</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>)</td>
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a>)</td>
 </tr>
 <tr class="even">
 <td>Code Integrity (ci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2604.pdf">10.0.10240</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2604">#2604</a></td>
-<td><p><em>FIPS Approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
 <br />
 <em>Other algorithms:</em> AES (non-compliant); MD5</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#572">#572</a>)</p></td>
@@ -649,7 +656,7 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 <td>Secure Kernel Code Integrity (skci.dll)<sup>[13]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2607.pdf">10.0.10240</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2607">#2607</a></td>
-<td><p><em>FIPS Approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">#2871</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#572">#572</a>)</p></td>
@@ -658,13 +665,13 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, and Surface
 </table>
 
 
-<sup>\[9\]</sup> Applies only to Home, Pro, Enterprise and Enterprise LTSB
+<sup>\[9\]</sup> Applies only to Home, Pro, Enterprise, and Enterprise LTSB
 
-<sup>\[10\]</sup> Applies only to Home, Pro, Enterprise and Enterprise LTSB
+<sup>\[10\]</sup> Applies only to Home, Pro, Enterprise, and Enterprise LTSB
 
-<sup>\[11\]</sup> Applies only to Home, Pro, Enterprise and Enterprise LTSB
+<sup>\[11\]</sup> Applies only to Home, Pro, Enterprise, and Enterprise LTSB
 
-<sup>\[12\]</sup> Applies only to Pro, Enterprise and Enterprise LTSB
+<sup>\[12\]</sup> Applies only to Pro, Enterprise, and Enterprise LTSB
 
 <sup>\[13\]</sup> Applies only to Enterprise and Enterprise LTSB
 
@@ -690,25 +697,25 @@ Validated Editions: RT, Pro, Enterprise, Phone, Embedded
 <td>Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2357.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2357">#2357</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">#2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">#2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)#2832, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</p>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)#2832, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#288">#288</a>); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#289">#289</a>); SP800-135 - Section 4.1.1, IKEv1 Section 4.1.2, IKEv2 Section 4.2, TLS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#323">#323</a>)</p></td>
 </tr>
 <tr class="odd">
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2356.pdf">6.3.9600 6.3.9600.17042</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2356">#2356</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</p>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</p>
 <p><em>Validated Component Implementations:</em> FIPS186-4 ECDSA - Signature Generation of hash sized messages (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#288">#288</a>); FIPS186-4 RSA; PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#289">#289</a>)</p></td>
 </tr>
 <tr class="even">
 <td>Boot Manager</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2351.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2351">#2351</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; KDF (non-compliant); PBKDF (non-compliant)</td>
 </tr>
@@ -716,7 +723,7 @@ Validated Editions: RT, Pro, Enterprise, Phone, Embedded
 <td>BitLocker® Windows OS Loader (winload)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2352.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2352">#2352</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; NDRNG</td>
 </tr>
@@ -724,7 +731,7 @@ Validated Editions: RT, Pro, Enterprise, Phone, Embedded
 <td>BitLocker® Windows Resume (winresume)<sup>[14]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2353.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2353">#2353</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -732,7 +739,7 @@ Validated Editions: RT, Pro, Enterprise, Phone, Embedded
 <td>BitLocker® Dump Filter (dumpfve.sys)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2354.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2354">#2354</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>)<br />
 <br />
 <em>Other algorithms:</em> N/A</td>
 </tr>
@@ -740,7 +747,7 @@ Validated Editions: RT, Pro, Enterprise, Phone, Embedded
 <td>Code Integrity (ci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2355.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2355">#2355</a>#2355</td>
-<td><p><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>)<br />
+<td><p><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</p>
 <p><em>Validated Component Implementations:</em> PKCS#1 v2.1 - RSASP1 Signature Primitive (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#289">#289</a>)</p></td>
@@ -767,9 +774,9 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td>Cryptographic Primitives Library (BCRYPTPRIMITIVES.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1892.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1892">#1892</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258); DSA (Cert.); ECDSA (Cert.); HMAC (Cert.); KAS (Cert); KBKDF (Cert.); PBKDF (vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258); DSA (Cert.); ECDSA (Cert.); HMAC (Cert.); KAS (Cert); KBKDF (Cert.); PBKDF (vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
 </td>
 </tr>
@@ -777,17 +784,17 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1891.pdf">6.2.9200</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1891">#1891</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#259">#259</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1110">#1110</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#259">#259</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1110">#1110</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258 and); ECDSA (Cert.); HMAC (Cert.); KAS (Cert.); KBKDF (Cert.); PBKDF (vendor affirmed); RNG (Cert.); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258 and); ECDSA (Cert.); HMAC (Cert.); KAS (Cert.); KBKDF (Cert.); PBKDF (vendor affirmed); RNG (Cert.); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Certificate, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="even">
 <td>Boot Manager</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1895.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1895">#1895</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); HMAC (Cert. #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1347">1347</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); HMAC (Cert. #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1347">1347</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -795,7 +802,7 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td>BitLocker® Windows OS Loader (WINLOAD)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1896.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1896">#1896</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>; non-compliant); MD5; Non-Approved RNG</td>
 </tr>
@@ -803,7 +810,7 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td>BitLocker® Windows Resume (WINRESUME)<sup>[15]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1898.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1898">#1898</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -811,7 +818,7 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td>BitLocker® Dump Filter (DUMPFVE.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1899.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1899">#1899</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>)<br />
 <br />
 <em>Other algorithms:</em> N/A</td>
 </tr>
@@ -819,7 +826,7 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td>Code Integrity (CI.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1897.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1897">#1897</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -827,19 +834,19 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1893.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1893">#1893</a></td>
-<td><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#686">#686</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, vendor affirmed)<br />
+<td><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#686">#686</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, vendor affirmed)<br />
 <br />
-<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#1902); Triple-DES (Cert.); Triple-DES MAC (Triple-DES Cert., vendor affirmed)<br />
+<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#1902); Triple-DES (Cert.); Triple-DES MAC (Triple-DES Certificate, vendor affirmed)<br />
 <br />
-<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert., key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Certificate, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 <tr class="even">
 <td>Enhanced Cryptographic Provider (RSAENH.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1894.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1894">#1894</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>); HMAC (Cert. #1346); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>); HMAC (Cert. #1346); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 </tbody>
 </table>
@@ -870,11 +877,11 @@ Validated Editions: Windows 7, Windows 7 SP1
 <td><p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1329.pdf">6.1.7600.16385</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1329.pdf">6.1.7601.17514</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1329">1329</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#24">#24</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#386">#386</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#141">#141</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#677">#677</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides 80 to 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#24">#24</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#386">#386</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#141">#141</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#677">#677</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides 80 bits to 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4#559 and); SHS (Cert.); Triple-DES (Cert.)<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4#559 and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
+<em>Other algorithms:</em> AES (Certificate, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
 </tr>
 <tr class="odd">
 <td>Kernel Mode Cryptographic Primitives Library (cng.sys)</td>
@@ -887,16 +894,16 @@ Validated Editions: Windows 7, Windows 7 SP1
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1328.pdf">6.1.7601.21861</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1328.pdf">6.1.7601.22076</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1328">1328</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#24">#24</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#141">#141</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#677">#677</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides 80 to 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#24">#24</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#141">#141</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#677">#677</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides 80 bits to 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
 </tr>
 <tr class="even">
 <td>Boot Manager</td>
 <td><p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1319.pdf">6.1.7600.16385</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1319.pdf">6.1.7601.17514</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1319">1319</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5#1168 and); HMAC (Cert.); RSA (Cert.); SHS (Cert.)<br />
 <br />
@@ -913,7 +920,7 @@ Validated Editions: Windows 7, Windows 7 SP1
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1326.pdf">6.1.7601.21655</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1326.pdf">6.1.7601.21675</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1326">1326</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -932,7 +939,7 @@ Validated Editions: Windows 7, Windows 7 SP1
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1332.pdf">6.1.7601.21655</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1332.pdf">6.1.7601.21675</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1332">1332</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> Elephant Diffuser</td>
 </tr>
@@ -945,7 +952,7 @@ Validated Editions: Windows 7, Windows 7 SP1
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1327.pdf">6.1.7601.17950</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1327.pdf">6.1.7601.22108</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1327">1327</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -954,7 +961,7 @@ Validated Editions: Windows 7, Windows 7 SP1
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1331.pdf">6.1.7600.16385</a><br />
 (no change in SP1)</td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1331">1331</a></td>
-<td><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#385">#385</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>, vendor affirmed)<br />
+<td><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#385">#385</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>, vendor affirmed)<br />
 <br />
 <em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4</td>
 </tr>
@@ -963,9 +970,9 @@ Validated Editions: Windows 7, Windows 7 SP1
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1330.pdf">6.1.7600.16385</a><br />
 (no change in SP1)</td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1330">1330</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#673">#673</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#673">#673</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
 <br />
-<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 256-bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 </tbody>
 </table>
@@ -993,13 +1000,13 @@ Validated Editions: Ultimate Edition
 <td>Boot Manager (bootmgr)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp978.pdf">6.0.6001.18000 and 6.0.6002.18005</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/978">978</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#415">#415</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)</td>
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#415">#415</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)</td>
 </tr>
 <tr class="odd">
 <td>Winload OS Loader (winload.exe)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp979.pdf">6.0.6001.18000, 6.0.6001.18027, 6.0.6001.18606, 6.0.6001.22125, 6.0.6001.22861, 6.0.6002.18005, 6.0.6002.18411 and 6.0.6002.22596</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/979">979</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1007,37 +1014,37 @@ Validated Editions: Ultimate Edition
 <td>Code Integrity (ci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp980.pdf">6.0.6001.18000, 6.0.6001.18023, 6.0.6001.22120, and 6.0.6002.18005</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/980">980</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
 <tr class="odd">
 <td>Kernel Mode Security Support Provider Interface (ksecdd.sys)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1000.pdf">6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742, and 6.0.6002.22869</a>6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742, and 6.0.6002.22869</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1000.pdf">6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742, and 6.0.6002.22869</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1000">1000</a></td>
-<td><p>FIPS Approved algorithms: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)#739 and); ECDSA (Cert.); HMAC (Cert.); RNG (Cert.  and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)</p>
-<p><em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</p></td>
+<td><p>FIPS approved algorithms: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)#739 and); ECDSA (Cert.); HMAC (Cert.); RNG (Cert.  and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)</p>
+<p><em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 bits and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</p></td>
 </tr>
 <tr class="even">
 <td>Cryptographic Primitives Library (bcrypt.dll)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1002.pdf">6.0.6001.22202, 6.0.6002.18005, and 6.0.6002.22872</a>6.0.6001.22202, 6.0.6002.18005, and 6.0.6002.22872</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1002.pdf">6.0.6001.22202, 6.0.6002.18005, and 6.0.6002.22872</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1001">1001</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#283">#283</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP 800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)</p>
-<p><em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant provides less than 112 bits of encryption strength)</p></td>
+<td><p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#283">#283</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP 800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)</p>
+<p><em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 bits and 256 bits of encryption strength); MD2; MD4; MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant provides less than 112 bits of encryption strength)</p></td>
 </tr>
 <tr class="odd">
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1002.pdf">6.0.6001.22202 and 6.0.6002.18005</a>6.0.6001.22202 and 6.0.6002.18005</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1002.pdf">6.0.6001.22202 and 6.0.6002.18005</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1002">1002</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#407">#407</a>); RNG (SP 800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)</p>
-<p><em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</p></td>
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#407">#407</a>); RNG (SP 800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)</p>
+<p><em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</p></td>
 </tr>
 <tr class="even">
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1003.pdf">6.0.6001.18000 and 6.0.6002.18005</a>6.0.6001.18000 and 6.0.6002.18005</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1003.pdf">6.0.6001.18000 and 6.0.6002.18005</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1003">1003</a></td>
-<td><p><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#281">#281</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>, vendor affirmed)</p>
-<p><em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC2 MAC; RC4</p></td>
+<td><p><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#281">#281</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>, vendor affirmed)</p>
+<p><em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC2 MAC; RC4</p></td>
 </tr>
 </tbody>
 </table>
@@ -1059,23 +1066,23 @@ Validated Editions: Ultimate Edition
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp893.pdf">6.0.6000.16386</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/893">893</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#553">#553</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#297">#297</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#321">#321</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#255">#255</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#258">#258</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">#618</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#549">#549</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#553">#553</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#297">#297</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#321">#321</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#255">#255</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#258">#258</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">#618</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#549">#549</a>)<br />
 <br />
-<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 <tr class="odd">
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp894.pdf">6.0.6000.16386</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/894">894</a></td>
-<td><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#226">#226</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#321">#321</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">#618</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#549">#549</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#549">#549</a>, vendor affirmed)<br />
+<td><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#226">#226</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#321">#321</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">#618</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#549">#549</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#549">#549</a>, vendor affirmed)<br />
 <br />
-<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC2 MAC; RC4</td>
+<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC2 MAC; RC4</td>
 </tr>
 <tr class="even">
 <td>BitLocker™ Drive Encryption</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp947.pdf">6.0.6000.16386</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/947">947</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#715">#715</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#386">#386</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">#737</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#715">#715</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#386">#386</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">#737</a>)<br />
 <br />
 <em>Other algorithms:</em> Elephant Diffuser</td>
 </tr>
@@ -1083,9 +1090,9 @@ Validated Editions: Ultimate Edition
 <td>Kernel Mode Security Support Provider Interface (ksecdd.sys)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp891.pdf">6.0.6000.16386, 6.0.6000.16870 and 6.0.6000.21067</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/891">891</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. #553); ECDSA (Cert. #60); HMAC (Cert. #298); RNG (Cert. #321); RSA (Certs. #257 and #258); SHS (Cert. #618); Triple-DES (Cert. #549)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. #553); ECDSA (Cert. #60); HMAC (Cert. #298); RNG (Cert. #321); RSA (Certs. #257 and #258); SHS (Cert. #618); Triple-DES (Cert. #549)<br />
 <br />
-<em>Other algorithms:</em> DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 to 256 bits of encryption strength); MD2; MD4; MD5; RC2; RC4; HMAC MD5</td>
+<em>Other algorithms:</em> DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 bits to 256 bits of encryption strength); MD2; MD4; MD5; RC2; RC4; HMAC MD5</td>
 </tr>
 </tbody>
 </table>
@@ -1111,22 +1118,22 @@ Validated Editions: Ultimate Edition
 <td>Kernel Mode Cryptographic Module (FIPS.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp997.pdf">5.1.2600.5512</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/997">997</a></td>
-<td><p><em>FIPS Approved algorithms:</em> HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#429">#429</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#449">#449</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#785">#785</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#677">#677</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#677">#677</a>, vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#429">#429</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#449">#449</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#785">#785</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#677">#677</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#677">#677</a>, vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES; MD5; HMAC MD5</p></td>
 </tr>
 <tr class="odd">
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp990.pdf">5.1.2600.5507</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/990">990</a></td>
-<td><p><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#292">#292</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#448">#448</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#784">#784</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#676">#676</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#676">#676</a>, vendor affirmed)</p>
-<p><em>Other algorithms:</em> DES; DES40; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits); MD5; RC2; RC4</p></td>
+<td><p><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#292">#292</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#448">#448</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#784">#784</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#676">#676</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#676">#676</a>, vendor affirmed)</p>
+<p><em>Other algorithms:</em> DES; DES40; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits); MD5; RC2; RC4</p></td>
 </tr>
 <tr class="even">
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp989.pdf">5.1.2600.5507</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/989">989</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#781">#781</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#428">#428</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#447">#447</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#371">#371</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">#783</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#675">#675</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#675">#675</a>, vendor affirmed)</p>
-<p><em>Other algorithms:</em> DES; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits)</p></td>
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#781">#781</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#428">#428</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#447">#447</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#371">#371</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">#783</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#675">#675</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#675">#675</a>, vendor affirmed)</p>
+<p><em>Other algorithms:</em> DES; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits)</p></td>
 </tr>
 </tbody>
 </table>
@@ -1152,14 +1159,14 @@ Validated Editions: Ultimate Edition
 <td>DSS/Diffie-Hellman Enhanced Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp240.pdf">5.1.2600.2133</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/240">240</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>)</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#66">#66</a>); RC2; RC4; MD5; DES40; Diffie-Hellman (key agreement)</p></td>
 </tr>
 <tr class="odd">
 <td>Microsoft Enhanced Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp238.pdf">5.1.2600.2161</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/238">238</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#81">#81</a>); AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#33">#33</a>); SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>); RSA (PKCS#1, vendor affirmed); HMAC-SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>, vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#81">#81</a>); AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#33">#33</a>); SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>); RSA (PKCS#1, vendor affirmed); HMAC-SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>, vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#156">#156</a>); RC2; RC4; MD5</p></td>
 </tr>
 </tbody>
@@ -1186,7 +1193,7 @@ Validated Editions: Ultimate Edition
 <td>Microsoft Enhanced Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp238.pdf">5.1.2600.1029</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/238">238</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#81">#81</a>); AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#33">#33</a>); SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>); RSA (PKCS#1, vendor affirmed); HMAC-SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>, vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#81">#81</a>); AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#33">#33</a>); SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>); RSA (PKCS#1, vendor affirmed); HMAC-SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#83">#83</a>, vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#156">#156</a>); RC2; RC4; MD5</p></td>
 </tr>
 </tbody>
@@ -1213,7 +1220,7 @@ Validated Editions: Ultimate Edition
 <td>Kernel Mode Cryptographic Module</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp241.pdf">5.1.2600.0</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/241">241</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#35">#35</a>); HMAC-SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#35">#35</a>, vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#35">#35</a>); HMAC-SHA-1 (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#35">#35</a>, vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#89">#89</a>)</p></td>
 </tr>
 </tbody>
@@ -1240,7 +1247,7 @@ Validated Editions: Ultimate Edition
 <td>Kernel Mode Cryptographic Module (FIPS.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp106.pdf">5.0.2195.1569</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/106">106</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#35">#35</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#35">#35</a>)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#89">#89</a>)</p></td>
 </tr>
 <tr class="odd">
@@ -1250,7 +1257,7 @@ Validated Editions: Ultimate Edition
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp103.pdf">(DSS/DH Enh: 5.0.2195.3665 [SP3])</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp103.pdf">(Enh: 5.0.2195.3839 [SP3]</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/103">103</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>); RSA (vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>); RSA (vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#65">#65</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#66">66</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#67">67</a> and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#68">68</a>); Diffie-Hellman (key agreement); RC2; RC4; MD2; MD4; MD5</p></td>
 </tr>
 </tbody>
@@ -1277,7 +1284,7 @@ Validated Editions: Ultimate Edition
 <td>Kernel Mode Cryptographic Module (FIPS.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp106.pdf">5.0.2195.1569</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/106">106</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#35">#35</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#35">#35</a>)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#89">#89</a>)</p></td>
 </tr>
 <tr class="odd">
@@ -1291,7 +1298,7 @@ Validated Editions: Ultimate Edition
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp103.pdf">(Enh:</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp103.pdf">5.0.2195.2228 [SP2])</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/103">103</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>); RSA (vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>); RSA (vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#65">#65</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#66">66</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#67">67</a> and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#68">68</a>); Diffie-Hellman (key agreement); RC2; RC4; MD2; MD4; MD5</p></td>
 </tr>
 </tbody>
@@ -1321,7 +1328,7 @@ Validated Editions: Ultimate Edition
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp103.pdf">(DSS/DH Enh: 5.0.2150.1391 [SP1])</a></p>
 <p><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp103.pdf">(Enh: 5.0.2150.1391 [SP1])</a></p></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/103">103</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>); RSA (vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#16">#16</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">#29</a>); RSA (vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#65">#65</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#66">66</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#67">67</a> and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#68">68</a>); Diffie-Hellman (key agreement); RC2; RC4; MD2; MD4; MD5</p></td>
 </tr>
 </tbody>
@@ -1348,7 +1355,7 @@ Validated Editions: Ultimate Edition
 <td>Base DSS Cryptographic Provider, Base Cryptographic Provider, DSS/Diffie-Hellman Enhanced Cryptographic Provider, and Enhanced Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp76.pdf">5.0.2150.1</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/76">76</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (vendor affirmed); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">29</a>); RSA (vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (vendor affirmed); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#28">#28</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#29">29</a>); RSA (vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#65">#65</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#66">66</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#67">67</a> and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#68">68</a>); RC2; RC4; MD2; MD4; MD5; Diffie-Hellman (key agreement)</p></td>
 </tr>
 </tbody>
@@ -1375,7 +1382,7 @@ Validated Editions: Ultimate Edition
 <td>Base DSS Cryptographic Provider, Base Cryptographic Provider, DSS/Diffie-Hellman Enhanced Cryptographic Provider, and Enhanced Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp75.pdf">5.0.1877.6 and 5.0.1877.7</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/75">75</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (vendor affirmed); SHA-1 (Certs. <a href="https://social.msdn.microsoft.com/forums/en-us/f93c9ee5-89b9-41a4-96c4-6eb9346625b9/msrai-msra-parsing-remote-assistance-packets-in-network-monitor?forum=os_windowsprotocolshttps://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#20">#20</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#21">21</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#25">#25</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#26">26</a>); RSA (vendor- affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (vendor affirmed); SHA-1 (Certs. <a href="https://social.msdn.microsoft.com/forums/en-us/f93c9ee5-89b9-41a4-96c4-6eb9346625b9/msrai-msra-parsing-remote-assistance-packets-in-network-monitor?forum=os_windowsprotocolshttps://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#20">#20</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#21">21</a>); DSA/SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#25">#25</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#26">26</a>); RSA (vendor- affirmed)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#61">#61</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#62">62</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#63">63</a> and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#64">64</a>); RC2; RC4; MD2; MD4; MD5; Diffie-Hellman (key agreement)</p></td>
 </tr>
 </tbody>
@@ -1396,7 +1403,7 @@ Validated Editions: Ultimate Edition
 <td>Base Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp68.pdf">5.0.1877.6 and 5.0.1877.7</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/68">68</a></td>
-<td><em>FIPS Approved algorithms:</em> SHA-1 (Certs. <a href="https://social.msdn.microsoft.com/forums/en-us/f93c9ee5-89b9-41a4-96c4-6eb9346625b9/msrai-msra-parsing-remote-assistance-packets-in-network-monitor?forum=os_windowsprotocolshttps://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#20">#20</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#21">21</a>); DSA/SHA- 1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#25">#25</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#26">26</a>); RSA (vendor affirmed)<br />
+<td><em>FIPS approved algorithms:</em> SHA-1 (Certs. <a href="https://social.msdn.microsoft.com/forums/en-us/f93c9ee5-89b9-41a4-96c4-6eb9346625b9/msrai-msra-parsing-remote-assistance-packets-in-network-monitor?forum=os_windowsprotocolshttps://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#20">#20</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#21">21</a>); DSA/SHA- 1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#25">#25</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#26">26</a>); RSA (vendor affirmed)<br />
 <br />
 <em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#61">#61</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#62">62</a>, <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#63">63</a> and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#64">64</a>); Triple-DES (allowed for US and Canadian Government use); RC2; RC4; MD2; MD4; MD5; Diffie-Hellman (key agreement)</td>
 </tr>
@@ -1631,7 +1638,7 @@ Validated Editions: Standard, Datacenter, Storage Server
 <td>Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2937.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2937">2937</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
 <br />
 <em>Other algorithms:</em> HMAC-MD5; MD5; DES; Legacy CAPI KDF; MD2; MD4; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
@@ -1639,7 +1646,7 @@ Validated Editions: Standard, Datacenter, Storage Server
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2936.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2936">2936</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a>); KTS (AES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a>; key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a>)<br />
 <br />
 <em>Other algorithms:</em> HMAC-MD5; MD5; NDRNG; DES; Legacy CAPI KDF; MD2; MD4; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
@@ -1647,14 +1654,14 @@ Validated Editions: Standard, Datacenter, Storage Server
 <td>Boot Manager</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2931.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2931">2931</a></td>
-<td><p><em>FIPS Approved algorithms</em>: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)</p>
+<td><p><em>FIPS approved algorithms</em>: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)</p>
 <p><em>Other algorithms</em>: MD5; PBKDF (non-compliant); VMK KDF</p></td>
 </tr>
 <tr class="odd">
 <td>BitLocker® Windows OS Loader (winload)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2932.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2932">2932</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> NDRNG; MD5</td>
 </tr>
@@ -1662,7 +1669,7 @@ Validated Editions: Standard, Datacenter, Storage Server
 <td>BitLocker® Windows Resume (winresume)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2933.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2934">2933</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1670,13 +1677,13 @@ Validated Editions: Standard, Datacenter, Storage Server
 <td>BitLocker® Dump Filter (dumpfve.sys)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2934.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2934">2934</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>)</td>
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a>)</td>
 </tr>
 <tr class="even">
 <td>Code Integrity (ci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2935.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2935">2935</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> AES (non-compliant); MD5</td>
 </tr>
@@ -1684,7 +1691,7 @@ Validated Editions: Standard, Datacenter, Storage Server
 <td>Secure Kernel Code Integrity (skci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2938.pdf">10.0.14393</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2938">2938</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">#3347</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1710,23 +1717,23 @@ Validated Editions: Server, Storage Server,
 <td>Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2357.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2357">2357</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">#2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">#2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="odd">
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2356.pdf">6.3.9600 6.3.9600.17042</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2356">2356</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a>); KBKDF (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a>, <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493, and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); AES-GCM encryption (non-compliant); DES; HMAC MD5; Legacy CAPI KDF; MD2; MD4; MD5; NDRNG; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="even">
 <td>Boot Manager</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2351.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2351">2351</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a>); PBKDF (vendor affirmed); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; KDF (non-compliant); PBKDF (non-compliant)</td>
 </tr>
@@ -1734,7 +1741,7 @@ Validated Editions: Server, Storage Server,
 <td>BitLocker® Windows OS Loader (winload)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2352.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2352">2352</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5; NDRNG</td>
 </tr>
@@ -1742,7 +1749,7 @@ Validated Editions: Server, Storage Server,
 <td>BitLocker® Windows Resume (winresume)<sup>[16]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2353.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2353">2353</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2396">#2396</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1750,7 +1757,7 @@ Validated Editions: Server, Storage Server,
 <td>BitLocker® Dump Filter (dumpfve.sys)<sup>[17]</sup></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2354.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2354">2354</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">#2832</a>)<br />
 <br />
 <em>Other algorithms:</em> N/A</td>
 </tr>
@@ -1758,7 +1765,7 @@ Validated Editions: Server, Storage Server,
 <td>Code Integrity (ci.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2355.pdf">6.3.9600 6.3.9600.17031</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2355">2355</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373"># 2373</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1766,9 +1773,9 @@ Validated Editions: Server, Storage Server,
 </table>
 
 
-<sup>\[16\]</sup> Does not apply to **Azure StorSimple Virtual Array Windows Server 2012 R2**
+<sup>\[16\]</sup> Doesn't apply to **Azure StorSimple Virtual Array Windows Server 2012 R2**
 
-<sup>\[17\]</sup> Does not apply to **Azure StorSimple Virtual Array Windows Server 2012 R2**
+<sup>\[17\]</sup> Doesn't apply to **Azure StorSimple Virtual Array Windows Server 2012 R2**
 
 **Windows Server 2012**
 
@@ -1786,27 +1793,27 @@ Validated Editions: Server, Storage Server
 <td>Cryptographic Primitives Library (BCRYPTPRIMITIVES.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1892.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1892">1892</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#687); ECDSA (Cert.); HMAC (Cert. #); KAS (Cert.); KBKDF (Cert.); PBKDF (vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#687); ECDSA (Cert.); HMAC (Cert. #); KAS (Cert.); KBKDF (Cert.); PBKDF (vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Certificate, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="odd">
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1891.pdf">6.2.9200</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1891">1891</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#259">#259</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1110">#1110</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#259">#259</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1110">#1110</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#1110); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#1110); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Certificate, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="even">
 <td>Boot Manager</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1895.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1895">1895</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); HMAC (Cert. #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1347">1347</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); HMAC (Cert. #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1347">1347</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1814,7 +1821,7 @@ Validated Editions: Server, Storage Server
 <td>BitLocker® Windows OS Loader (WINLOAD)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1896.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1896">1896</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>; non-compliant); MD5; Non-Approved RNG</td>
 </tr>
@@ -1822,7 +1829,7 @@ Validated Editions: Server, Storage Server
 <td>BitLocker® Windows Resume (WINRESUME)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1898.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1898">1898</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1830,7 +1837,7 @@ Validated Editions: Server, Storage Server
 <td>BitLocker® Dump Filter (DUMPFVE.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1899.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1899">1899</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a>)<br />
 <br />
 <em>Other algorithms:</em> N/A</td>
 </tr>
@@ -1838,7 +1845,7 @@ Validated Editions: Server, Storage Server
 <td>Code Integrity (CI.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1897.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1897">1897</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -1846,7 +1853,7 @@ Validated Editions: Server, Storage Server
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1893.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1893">1893</a></td>
-<td><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#686">#686</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, vendor affirmed)<br />
+<td><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#686">#686</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, vendor affirmed)<br />
 <br />
 <em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
@@ -1854,9 +1861,9 @@ Validated Editions: Server, Storage Server
 <td>Enhanced Cryptographic Provider (RSAENH.DLL)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1894.pdf">6.2.9200</a></td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1894">1894</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1346">#1346</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1346">#1346</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 </tbody>
 </table>
@@ -1874,65 +1881,65 @@ Validated Editions: Server, Storage Server
 </tr>
 <tr class="even">
 <td>Boot Manager (bootmgr)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1321.pdf">6.1.7600.16385 or 6.1.7601.17514</a>6.1.7600.16385 or 6.1.7601.17514</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1321.pdf">6.1.7600.16385 or 6.1.7601.17514</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1321">1321</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
 <tr class="odd">
 <td><b>Winload OS Loader (winload.exe)</b></td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1333.pdf">6.1.7600.16385, 6.1.7600.16757, 6.1.7600.20897, 6.1.7600.20916, 6.1.7601.17514, 6.1.7601.17556, 6.1.7601.21655 and 6.1.7601.21675</a>6.1.7600.16385, 6.1.7600.16757, 6.1.7600.20897, 6.1.7600.20916, 6.1.7601.17514, 6.1.7601.17556, 6.1.7601.21655 and 6.1.7601.21675</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1333.pdf">6.1.7600.16385, 6.1.7600.16757, 6.1.7600.20897, 6.1.7600.20916, 6.1.7601.17514, 6.1.7601.17556, 6.1.7601.21655 and 6.1.7601.21675</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1333">1333</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
 <tr class="even">
 <td>Code Integrity (ci.dll)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1334.pdf">6.1.7600.16385, 6.1.7600.17122, 6.1.7600.21320, 6.1.7601.17514, 6.1.7601.17950 and 6.1.7601.22108</a>6.1.7600.16385, 6.1.7600.17122, 6.1.7600.21320, 6.1.7601.17514, 6.1.7601.17950 and 6.1.7601.22108</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1334.pdf">6.1.7600.16385, 6.1.7600.17122, 6.1.7600.21320, 6.1.7601.17514, 6.1.7601.17950 and 6.1.7601.22108</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1334">1334</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
 <tr class="odd">
 <td>Kernel Mode Cryptographic Primitives Library (cng.sys)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1335.pdf">6.1.7600.16385, 6.1.7600.16915, 6.1.7600.21092, 6.1.7601.17514, 6.1.7601.17919, 6.1.7601.17725, 6.1.7601.21861 and 6.1.7601.22076</a>6.1.7600.16385, 6.1.7600.16915, 6.1.7600.21092, 6.1.7601.17514, 6.1.7601.17919, 6.1.7601.17725, 6.1.7601.21861 and 6.1.7601.22076</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1335.pdf">6.1.7600.16385, 6.1.7600.16915, 6.1.7600.21092, 6.1.7601.17514, 6.1.7601.17919, 6.1.7601.17725, 6.1.7601.21861 and 6.1.7601.22076</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1335">1335</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#27">#27</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#142">#142</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#686">#686</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides between 80 and 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#567">#567</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#27">#27</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#142">#142</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#686">#686</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides between 80 bits and 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#567">#567</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
 <br />
-<em>-Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
+<em>-Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
 </tr>
 <tr class="even">
 <td>Cryptographic Primitives Library (bcryptprimitives.dll)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1336.pdf">66.1.7600.16385 or 6.1.7601.17514</a>66.1.7600.16385 or 6.1.7601.17514</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1336.pdf">66.1.7600.16385 or 6.1.7601.17514</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1336">1336</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#27">#27</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#391">#391</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#142">#142</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#686">#686</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides between 80 and 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#567">#567</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#27">#27</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#391">#391</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#142">#142</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#686">#686</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides between 80 bits and 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#567">#567</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; HMAC MD5; MD2; MD4; MD5; RC2; RC4</td>
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 bits and 256 bits of encryption strength); DES; HMAC MD5; MD2; MD4; MD5; RC2; RC4</td>
 </tr>
 <tr class="odd">
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1337.pdf">6.1.7600.16385</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1337">1337</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#687">#687</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>); DRBG (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#687">#687</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
 <br />
-<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 <tr class="even">
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1338.pdf">6.1.7600.16385</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1338">1338</a></td>
-<td><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#390">#390</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>, vendor affirmed)<br />
+<td><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#390">#390</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>, vendor affirmed)<br />
 <br />
 <em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4</td>
 </tr>
 <tr class="odd">
 <td>BitLocker™ Drive Encryption</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1339.pdf">6.1.7600.16385, 6.1.7600.16429, 6.1.7600.16757, 6.1.7600.20536, 6.1.7600.20873, 6.1.7600.20897, 6.1.7600.20916, 6.1.7601.17514, 6.1.7601.17556, 6.1.7601.21634, 6.1.7601.21655 or 6.1.7601.21675</a>6.1.7600.16385, 6.1.7600.16429, 6.1.7600.16757, 6.1.7600.20536, 6.1.7600.20873, 6.1.7600.20897, 6.1.7600.20916, 6.1.7601.17514, 6.1.7601.17556, 6.1.7601.21634, 6.1.7601.21655 or 6.1.7601.21675</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1339.pdf">6.1.7600.16385, 6.1.7600.16429, 6.1.7600.16757, 6.1.7600.20536, 6.1.7600.20873, 6.1.7600.20897, 6.1.7600.20916, 6.1.7601.17514, 6.1.7601.17556, 6.1.7601.21634, 6.1.7601.21655 or 6.1.7601.21675</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1339">1339</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
 <em>Other algorithms:</em> Elephant Diffuser</td>
 </tr>
@@ -1952,61 +1959,61 @@ Validated Editions: Server, Storage Server
 </tr>
 <tr class="even">
 <td>Boot Manager (bootmgr)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1004.pdf">6.0.6001.18000, 6.0.6002.18005 and 6.0.6002.22497</a>6.0.6001.18000, 6.0.6002.18005 and 6.0.6002.22497</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1004.pdf">6.0.6001.18000, 6.0.6002.18005 and 6.0.6002.22497</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1004">1004</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#415">#415</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#415">#415</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
 <br />
 <em>Other algorithms:</em> N/A</td>
 </tr>
 <tr class="odd">
 <td><b>Winload OS Loader (winload.exe)</b></td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1005.pdf">6.0.6001.18000, 6.0.6001.18606, 6.0.6001.22861, 6.0.6002.18005, 6.0.6002.18411, 6.0.6002.22497 and 6.0.6002.22596</a>6.0.6001.18000, 6.0.6001.18606, 6.0.6001.22861, 6.0.6002.18005, 6.0.6002.18411, 6.0.6002.22497 and 6.0.6002.22596</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1005.pdf">6.0.6001.18000, 6.0.6001.18606, 6.0.6001.22861, 6.0.6002.18005, 6.0.6002.18411, 6.0.6002.22497 and 6.0.6002.22596</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1005">1005</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
 <tr class="even">
 <td>Code Integrity (ci.dll)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1006.pdf">6.0.6001.18000 and 6.0.6002.18005</a>6.0.6001.18000 and 6.0.6002.18005</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1006.pdf">6.0.6001.18000 and 6.0.6002.18005</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1006">1006</a></td>
-<td><em>FIPS Approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
+<td><em>FIPS approved algorithms:</em> RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
 <tr class="odd">
 <td>Kernel Mode Security Support Provider Interface (ksecdd.sys)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1007.pdf">6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742 and 6.0.6002.22869</a>6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742 and 6.0.6002.22869</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1007.pdf">6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742 and 6.0.6002.22869</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1007">1007</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#757">#757</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#413">#413</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP800-90 AES-CTR, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#757">#757</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#413">#413</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP800-90 AES-CTR, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping: key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#83); HMAC (Cert.); RNG (Cert.  and SP800-90 AES-CTR, vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
+<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 bits and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping: key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#83); HMAC (Cert.); RNG (Cert.  and SP800-90 AES-CTR, vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping: key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 bits and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping: key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 <tr class="even">
 <td>Cryptographic Primitives Library (bcrypt.dll)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1008.pdf">6.0.6001.22202, 6.0.6002.18005 and 6.0.6002.22872</a>6.0.6001.22202, 6.0.6002.18005 and 6.0.6002.22872</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1008.pdf">6.0.6001.22202, 6.0.6002.18005 and 6.0.6002.22872</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1008">1008</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#757">#757</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#284">#284</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#413">#413</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#757">#757</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#284">#284</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#413">#413</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant provides less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 bits and 256 bits of encryption strength); MD2; MD4; MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant provides less than 112 bits of encryption strength)</td>
 </tr>
 <tr class="odd">
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1009.pdf">6.0.6001.18000 and 6.0.6002.18005</a>6.0.6001.18000 and 6.0.6002.18005</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1009.pdf">6.0.6001.18000 and 6.0.6002.18005</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1009">1009</a></td>
-<td><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#282">#282</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>, vendor affirmed)<br />
+<td><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#282">#282</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>, vendor affirmed)<br />
 <br />
-<em>-Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC2 MAC; RC4</td>
+<em>-Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC2 MAC; RC4</td>
 </tr>
 <tr class="even">
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1010.pdf">6.0.6001.22202 and 6.0.6002.18005</a>6.0.6001.22202 and 6.0.6002.18005</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1010.pdf">6.0.6001.22202 and 6.0.6002.18005</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1010">1010</a></td>
-<td><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#408">#408</a>); RNG (SP 800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)<br />
+<td><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#408">#408</a>); RNG (SP 800-90, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)<br />
 <br />
-<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> DES; MD2; MD4; MD5; RC2; RC4; RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 </tbody>
 </table>
@@ -2032,22 +2039,22 @@ Validated Editions: Server, Storage Server
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp875.pdf">5.2.3790.3959</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/875">875</a></td>
-<td><p><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#221">#221</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#314">#314</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#245">#245</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#611">#611</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#543">#543</a>)</p>
-<p><em>Other algorithms:</em> DES; DES40; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC4</p></td>
+<td><p><em>FIPS approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#221">#221</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#314">#314</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#245">#245</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#611">#611</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#543">#543</a>)</p>
+<p><em>Other algorithms:</em> DES; DES40; Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC4</p></td>
 </tr>
 <tr class="odd">
 <td>Kernel Mode Cryptographic Module (FIPS.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp869.pdf">5.2.3790.3959</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/869">869</a></td>
-<td><p><em>FIPS Approved algorithms:</em> HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#287">#287</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#313">#313</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#610">#610</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#542">#542</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#287">#287</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#313">#313</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#610">#610</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#542">#542</a>)</p>
 <p><em>Other algorithms:</em> DES; HMAC-MD5</p></td>
 </tr>
 <tr class="even">
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp868.pdf">5.2.3790.3959</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/868">868</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#548">#548</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#289">#289</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#316">#316</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#245">#245</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">#613</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#544">#544</a>)</p>
-<p><em>Other algorithms:</em> DES; RC2; RC4; MD2; MD4; MD5; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</p></td>
+<td><p><em>FIPS approved algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#548">#548</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#289">#289</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#316">#316</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#245">#245</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">#613</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#544">#544</a>)</p>
+<p><em>Other algorithms:</em> DES; RC2; RC4; MD2; MD4; MD5; RSA (key wrapping; key establishment methodology provides between 112 bits and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</p></td>
 </tr>
 </tbody>
 </table>
@@ -2073,7 +2080,7 @@ Validated Editions: Server, Storage Server
 <td>Kernel Mode Cryptographic Module (FIPS.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp405.pdf">5.2.3790.1830 [SP1]</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/405">405</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#201">#201</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#370">#370</a>[1]); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#177">#177</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#371">#371</a>[2])</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#201">#201</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#370">#370</a>[1]); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#177">#177</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#371">#371</a>[2])</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#230">#230</a>[1]); HMAC-MD5; HMAC-SHA-1 (non-compliant)</p>
 <p>[1] x86<br />
 [2] SP1 x86, x64, IA64</p></td>
@@ -2082,7 +2089,7 @@ Validated Editions: Server, Storage Server
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp382.pdf">5.2.3790.1830 [Service Pack 1])</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/382">382</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#192">#192</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#365">#365</a>[2]); AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#80">#80</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#290">#290</a>[2]); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">#364</a>[2]); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#99">#99</a>[2]); RSA (PKCS#1, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>[2])</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#192">#192</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#365">#365</a>[2]); AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#80">#80</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#290">#290</a>[2]); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">#364</a>[2]); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#99">#99</a>[2]); RSA (PKCS#1, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>[2])</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#226">#226</a>[1]); SHA-256[1]; SHA-384[1]; SHA-512[1]; RC2; RC4; MD2; MD4; MD5</p>
 <p>[1] x86<br />
 [2] SP1 x86, x64, IA64</p></td>
@@ -2091,7 +2098,7 @@ Validated Editions: Server, Storage Server
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp381.pdf">5.2.3790.1830 [Service Pack 1]</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/381">381</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#199">#199</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#381">#381</a>[2]); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#181">#181</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#385">#385</a>[2]); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#95">#95</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#146">#146</a>[2]); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#199">#199</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#381">#381</a>[2]); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#181">#181</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#385">#385</a>[2]); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#95">#95</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#146">#146</a>[2]); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>)</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#229">#229</a>[1]); Diffie-Hellman (key agreement); RC2; RC4; MD5; DES 40</p>
 <p>[1] x86<br />
 [2] SP1 x86, x64, IA64</p></td>
@@ -2120,7 +2127,7 @@ Validated Editions: Server, Storage Server
 <td>Kernel Mode Cryptographic Module (FIPS.SYS)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp405.pdf">5.2.3790.0</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/405">405</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#201">#201</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#370">#370</a>[1]); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#177">#177</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#371">#371</a>[2])</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#201">#201</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#370">#370</a>[1]); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#177">#177</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#371">#371</a>[2])</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#230">#230</a>[1]); HMAC-MD5; HMAC-SHA-1 (non-compliant)</p>
 <p>[1] x86<br />
 [2] SP1 x86, x64, IA64</p></td>
@@ -2129,7 +2136,7 @@ Validated Editions: Server, Storage Server
 <td>Enhanced Cryptographic Provider (RSAENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp382.pdf">5.2.3790.0</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/382">382</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#192">#192</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#365">#365</a>[2]); AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#80">#80</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#290">#290</a>[2]); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">#364</a>[2]); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#99">#99</a>[2]); RSA (PKCS#1, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>[2])</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#192">#192</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#365">#365</a>[2]); AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#80">#80</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#290">#290</a>[2]); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">#364</a>[2]); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#176">#176</a>, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#99">#99</a>[2]); RSA (PKCS#1, vendor affirmed[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>[2])</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#226">#226</a>[1]); SHA-256[1]; SHA-384[1]; SHA-512[1]; RC2; RC4; MD2; MD4; MD5</p>
 <p>[1] x86<br />
 [2] SP1 x86, x64, IA64</p></td>
@@ -2138,7 +2145,7 @@ Validated Editions: Server, Storage Server
 <td>Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp381.pdf">5.2.3790.0</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/381">381</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#199">#199</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#381">#381</a>[2]); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#181">#181</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#385">#385</a>[2]); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#95">#95</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#146">#146</a>[2]); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#199">#199</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#381">#381</a>[2]); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#181">#181</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#385">#385</a>[2]); DSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#95">#95</a>[1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#146">#146</a>[2]); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a>)</p>
 <p><em>Other algorithms:</em> DES (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#229">#229</a>[1]); Diffie-Hellman (key agreement); RC2; RC4; MD5; DES 40</p>
 <p>[1] x86<br />
 [2] SP1 x86, x64, IA64</p></td>
@@ -2169,15 +2176,15 @@ Validated Editions: Server, Storage Server
 <td>Enhanced Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2957.pdf">7.00.2872 [1] and 8.00.6246 [2]</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2957">2957</a></td>
-<td><p><em>FIPS Approved algorithms: AES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4433">#4433</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4434">#4434</a><em>); CKG (vendor affirmed); DRBG (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1432">#1432</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1433">#1433</a><em>); HMAC (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2946">#2946</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2945">#2945</a><em>); RSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2414">#2414</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2415">#2415</a><em>); SHS (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">#3651</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">#3652</a><em>); Triple-DES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2383">#2383</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2384">#2384</a><em>)</em></p>
-<p><em>Allowed algorithms: HMAC-MD5; MD5; NDRNG</em></p></td>
+<td><p><em>FIPS approved algorithms: AES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4433">#4433</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4434">#4434</a><em>); CKG (vendor affirmed); DRBG (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1432">#1432</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1433">#1433</a><em>); HMAC (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2946">#2946</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2945">#2945</a><em>); RSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2414">#2414</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2415">#2415</a><em>); SHS (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">#3651</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">#3652</a><em>); Triple-DES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2383">#2383</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2384">#2384</a><em>)</em></p>
+<p><em>Allowed algorithms: HMAC-MD5, MD5, NDRNG</em></p></td>
 </tr>
 <tr class="odd">
 <td>Cryptographic Primitives Library (bcrypt.dll)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp2956.pdf">7.00.2872 [1] and 8.00.6246 [2]</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/2956">2956</a></td>
-<td><p><em>FIPS Approved algorithms: AES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4430">#4430</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4431">#4431</a><em>); CKG (vendor affirmed); CVL (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1139">#1139</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1140">#1140</a><em>); DRBG (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">#1429</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">#1430</a><em>); DSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">#1187</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">#1188</a><em>); ECDSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1072">#1072</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1073">#1073</a><em>); HMAC (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2942">#2942</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2943">#2943</a><em>); KAS (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#114">#114</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#115">#115</a><em>); RSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2411">#2411</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2412">#2412</a><em>); SHS (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">#3648</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">#3649</a><em>); Triple-DES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2381">#2381</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2382">#2382</a><em>)</em></p>
-<p><em>Allowed algorithms: MD5; NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength</em></p></td>
+<td><p><em>FIPS approved algorithms: AES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4430">#4430</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4431">#4431</a><em>); CKG (vendor affirmed); CVL (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1139">#1139</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1140">#1140</a><em>); DRBG (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">#1429</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">#1430</a><em>); DSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">#1187</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">#1188</a><em>); ECDSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1072">#1072</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1073">#1073</a><em>); HMAC (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2942">#2942</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2943">#2943</a><em>); KAS (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#114">#114</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#115">#115</a><em>); RSA (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2411">#2411</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2412">#2412</a><em>); SHS (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">#3648</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">#3649</a><em>); Triple-DES (Certs.</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2381">#2381</a><em>and</em><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2382">#2382</a><em>)</em></p>
+<p><em>Allowed algorithms: MD5, NDRNG, RSA (key wrapping; key establishment methodology provides between 112 bits and 150 bits of encryption strength</em></p></td>
 </tr>
 </tbody>
 </table>
@@ -2204,7 +2211,7 @@ Validated Editions: Server, Storage Server
 <td>Enhanced Cryptographic Provider</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp825.pdf">6.00.1937 [1] and 7.00.1687 [2]</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/825">825</a></td>
-<td><p><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#516">#516</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2024">#2024</a> [2]); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#267">#267</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1227">#1227</a> [2]); RNG (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#292">#292</a> [1] and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1060">#1060</a> [2]); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#230">#230</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1052">#1052</a> [2]); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">#589</a> [1] and #1774 [2]); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#526">#526</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1308">#1308</a> [2])</p>
+<td><p><em>FIPS approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#516">#516</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2024">#2024</a> [2]); HMAC (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#267">#267</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1227">#1227</a> [2]); RNG (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#292">#292</a> [1] and <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1060">#1060</a> [2]); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#230">#230</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1052">#1052</a> [2]); SHS (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">#589</a> [1] and #1774 [2]); Triple-DES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#526">#526</a> [1] and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1308">#1308</a> [2])</p>
 <p><em>Other algorithms:</em> MD5; HMAC-MD5; RC2; RC4; DES</p></td>
 </tr>
 </tbody>
@@ -2229,9 +2236,9 @@ Validated Editions: Server, Storage Server
 </tr>
 <tr class="even">
 <td>Outlook Cryptographic Provider (EXCHCSP)</td>
-<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp110.pdf">SR-1A (3821)</a>SR-1A (3821)</td>
+<td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp110.pdf">SR-1A (3821)</a></td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/110">110</a></td>
-<td><p><em>FIPS Approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#18">#18</a>); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#32">#32</a>); RSA (vendor affirmed)</p>
+<td><p><em>FIPS approved algorithms:</em> Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#18">#18</a>); SHA-1 (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#32">#32</a>); RSA (vendor affirmed)</p>
 <p><em>Other algorithms:</em> DES (Certs. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/des/desval.html#91">#91</a>); DES MAC; RC2; MD2; MD5</p></td>
 </tr>
 </tbody>
@@ -2320,7 +2327,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Tag Lengths: 32, 48, 64, 80, 96, 112, 128 (bits)</li>
 <li>IV Lengths: 56, 64, 72, 80, 88, 96, 104 (bits)</li>
 <li>Plain Text Length: 0-32</li>
-<li>AAD Length: 0-65536</li>
+<li>Additional authenticated data length: 0-65536</li>
 </ul></li>
 <li>AES-CFB128:</li>
 <li><ul>
@@ -2393,7 +2400,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Key Lengths: 128, 192, 256 (bits)</li>
 <li>Tag Lengths: 96, 104, 112, 120, 128 (bits)</li>
 <li>Plain Text Lengths: 0, 8, 1016, 1024 (bits)</li>
-<li>AAD Lengths: 0, 8, 1016, 1024 (bits)</li>
+<li>Additional authenticated data lengths: 0, 8, 1016, 1024 (bits)</li>
 <li>96 bit IV supported</li>
 </ul></li>
 <li>AES-XTS:</li>
@@ -2426,7 +2433,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Tag Lengths: 32, 48, 64, 80, 96, 112, 128 (bits)</li>
 <li>IV Lengths: 56, 64, 72, 80, 88, 96, 104 (bits)</li>
 <li>Plain Text Length: 0-32</li>
-<li>AAD Length: 0-65536</li>
+<li>Additional authenticated data length: 0-65536</li>
 </ul></li>
 <li>AES-CFB128:</li>
 <li><ul>
@@ -2499,7 +2506,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Key Lengths: 128, 192, 256 (bits)</li>
 <li>Tag Lengths: 96, 104, 112, 120, 128 (bits)</li>
 <li>Plain Text Lengths: 0, 8, 1016, 1024 (bits)</li>
-<li>AAD Lengths: 0, 8, 1016, 1024 (bits)</li>
+<li>Additional authenticated data lengths: 0, 8, 1016, 1024 (bits)</li>
 <li>96 bit IV supported</li>
 </ul></li>
 <li>AES-XTS:</li>
@@ -2532,7 +2539,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Tag Lengths: 32, 48, 64, 80, 96, 112, 128 (bits)</li>
 <li>IV Lengths: 56, 64, 72, 80, 88, 96, 104 (bits)</li>
 <li>Plain Text Length: 0-32</li>
-<li>AAD Length: 0-65536</li>
+<li>Additional authenticated data length: 0-65536</li>
 </ul></li>
 <li>AES-CFB128:</li>
 <li><ul>
@@ -2606,7 +2613,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Key Lengths: 128, 192, 256 (bits)</li>
 <li>Tag Lengths: 96, 104, 112, 120, 128 (bits)</li>
 <li>Plain Text Lengths: 0, 8, 1016, 1024 (bits)</li>
-<li>AAD Lengths: 0, 8, 1016, 1024 (bits)</li>
+<li>Additional authenticated data lengths: 0, 8, 1016, 1024 (bits)</li>
 <li>96 bit IV supported</li>
 </ul></li>
 <li>AES-XTS:</li>
@@ -2669,7 +2676,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Tag Lengths: 128 (bits)</li>
 <li>IV Lengths: 96 (bits)</li>
 <li>Plain Text Length: 0-32</li>
-<li>AAD Length: 0-65536</li>
+<li>Additional authenticated data length: 0-65536</li>
 </ul>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4902">Val#4902</a></p></td>
 <td><p>Microsoft Surface Hub BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4896">#4896</a></p>
@@ -2682,7 +2689,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Tag Lengths: 128 (bits)</li>
 <li>IV Lengths: 96 (bits)</li>
 <li>Plain Text Length: 0-32</li>
-<li>AAD Length: 0-65536</li>
+<li>Additional authenticated data length: 0-65536</li>
 </ul>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4901">Val#4901</a></p></td>
 <td><p>Windows 10 Mobile (version 1709) BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4895">#4895</a></p>
@@ -2695,7 +2702,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Tag Lengths: 128 (bits)</li>
 <li>IV Lengths: 96 (bits)</li>
 <li>Plain Text Length: 0-32</li>
-<li>AAD Length: 0-65536</li>
+<li>Additional authenticated data length: 0-65536</li>
 </ul>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">Val#4897</a></p></td>
 <td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4894">#4894</a></p>
@@ -2732,8 +2739,8 @@ The following tables are organized by cryptographic algorithms with their modes,
 <p><b>CMAC</b> (Generation/Verification) (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 16 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 16 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 16 Max: 16)</p>
 <p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)</p>
 <p>(KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)</p>
-<p>IV Generated: (External); PT Lengths Tested: (0, 1024, 8, 1016); AAD Lengths tested: (0, 1024, 8, 1016); 96BitIV_Supported</p>
-<p>GMAC_Supported</p>
+<p>IV Generated: (External); PT Lengths Tested: (0, 1024, 8, 1016); Additional authenticated data lengths tested: (0, 1024, 8, 1016); 96 bit IV supported</p>
+<p>GMAC supported</p>
 <p><b>XTS</b>((KS: XTS_128((e/d)(f)) KS: XTS_256((e/d)(f))</p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a></p>
 <p>Version 10.0.15063</p></td>
@@ -2778,8 +2785,8 @@ The following tables are organized by cryptographic algorithms with their modes,
 <p><b>CMAC (Generation/Verification)</b> (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
 <p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)<br />
 (KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)<br />
-<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); AAD Lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested: (0, 0); 96BitIV_Supported<br />
-GMAC_Supported</p>
+<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); Additional authenticated data lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested: (0, 0); 96 bit IV supported<br />
+GMAC supported</p>
 <p><b>XTS((KS: XTS_128</b>((e/d)(f)) <b>KS: XTS_256</b>((e/d)(f))</p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a></p>
 <p>Version 10.0.14393</p></td>
@@ -2830,8 +2837,8 @@ Version 10.0.10586</td>
 <p><b>CMAC (Generation/Verification)</b> (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
 <p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)<br />
 (KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)<br />
-<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); AAD Lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested: (0, 0); 96BitIV_Supported<br />
-GMAC_Supported</p>
+<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); Additional authenticated data lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested: (0, 0); 96 bit IV supported<br />
+GMAC supported</p>
 <p><b>XTS((KS: XTS_128</b>((e/d) (f)) <b>KS: XTS_256</b>((e/d) (f))</p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a><br />
 <br />
@@ -2856,8 +2863,8 @@ GMAC_Supported</p>
 <p><b>CMAC(Generation/Verification)</b> (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
 <p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)<br />
 (KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)<br />
-<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); AAD Lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested:  (0, 0); 96BitIV_Supported<br />
-GMAC_Supported</p>
+<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); Additional authenticated data lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested:  (0, 0); 96 bit IV supported<br />
+GMAC supported</p>
 <p><b>XTS((KS: XTS_128</b>((e/d)(f)) <b>KS: XTS_256</b>((e/d)(f))</p></td>
 <td>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a><br />
 Version 10.0.10240</td>
@@ -2881,7 +2888,7 @@ Version 10.0.10240</td>
 <tr class="odd">
 <td><p><b>CCM (KS: 256)</b> (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">Val#2832</a></p></td>
-<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 BitLocker� Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2848">#2848</a></p>
+<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 BitLocker Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2848">#2848</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -2889,10 +2896,10 @@ Version 10.0.10240</td>
 <p><b>CMAC (Generation/Verification) (KS: 128</b>; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
 <p><b>GCM (KS: AES_128</b>(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)</p>
 <p><b>(KS: AES_256</b>(e/d) Tag Length(s): 128 120 112 104 96)</p>
-<p><b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 128, 1024, 8, 1016); AAD Lengths tested:  (0, 128, 1024, 8, 1016); IV Lengths Tested:  (8, 1024); 96BitIV_Supported;<br />
+<p><b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 128, 1024, 8, 1016); Additional authenticated data lengths tested:  (0, 128, 1024, 8, 1016); IV Lengths Tested:  (8, 1024); 96 bit IV supported;<br />
 <b>OtherIVLen_Supported<br />
-GMAC_Supported</b></p></td>
-<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">2832</a></p>
+GMAC supported</b></p></td>
+<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">2832</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
@@ -2902,12 +2909,12 @@ AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a></p>
 <p><b>GCM(KS: AES_128</b>(e/d) Tag Length(s): 128 120 112 104 96) <b>(KS: AES_192</b>(e/d) Tag Length(s): 128 120 112 104 96)<br />
 <b>(KS: AES_256</b>(e/d) Tag Length(s): 128 120 112 104 96)<br />
-<b>IV Generated:</b> (Externally); <b>PT Lengths Tested:</b> (0, 128, 1024, 8, 1016); <b>AAD Lengths tested:</b> (0, 128, 1024, 8, 1016); <b>IV Lengths Tested:</b> (8, 1024); <b>96BitIV_Supported<br />
-GMAC_Supported</b></p></td>
+<b>IV Generated:</b> (Externally); <b>PT Lengths Tested:</b> (0, 128, 1024, 8, 1016); <b>Additional authenticated data lengths tested:</b> (0, 128, 1024, 8, 1016); <b>IV Lengths Tested:</b> (8, 1024); <b>96 bit IV supported<br />
+GMAC supported</b></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a></td>
 </tr>
 <tr class="even">
-<td><p><b>CCM (KS: 256) (Assoc. Data Len Range:</b> 0 - 0, 2^16 <b>) (Payload Length Range:</b> 0 - 32 (<b>Nonce Length(s)</b>: 12 <b>(Tag Length(s)</b>: 16)</p>
+<td><p><b>CCM (KS: 256) (Assoc. Data Len Range: </b>0 - 0, 2^16<b>) (Payload Length Range:</b> 0 - 32 (<b>Nonce Length(s)</b>: 12 <b>(Tag Length(s)</b>: 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">Val#2196</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a></td>
 </tr>
@@ -2927,13 +2934,13 @@ GMAC_Supported</b></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Symmetric Algorithm Implementations (RSA32) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a></td>
 </tr>
 <tr class="odd">
-<td><b>CCM (KS: 128, 192, 256) (Assoc. Data Len Range:</b> 0 – 0, 2^16 <b>) (Payload Length Range:</b> 0 - 32 <b>(Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s):</b> 4 6 8 10 12 14 16 <b>)</b><br />
+<td><b>CCM (KS: 128, 192, 256) (Assoc. Data Len Range: </b>0 – 0, 2^16<b>) (Payload Length Range:</b> 0 - 32 <b>(Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s): </b>4 6 8 10 12 14 16<b>)</b><br />
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a></td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1187">#1187</a></p>
 <p>Windows 7 Ultimate and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a></p></td>
 </tr>
 <tr class="even">
-<td><b>CCM (KS: 128, 256) (Assoc. Data Len Range:</b> 0 - 8 <b>) (Payload Length Range:</b> 4 - 32 <b>(Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s):</b> 4 6 8 14 16 <b>)</b><br />
+<td><b>CCM (KS: 128, 256) (Assoc. Data Len Range: </b>0 - 8<b>) (Payload Length Range:</b> 4 - 32 <b>(Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s): </b>4 6 8 14 16<b>)</b><br />
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a></td>
 <td>Windows 7 Ultimate and SP1 and Windows Server 2008 R2 and SP1 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a></td>
 </tr>
@@ -2950,11 +2957,11 @@ AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <td>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed</td>
 </tr>
 <tr class="odd">
-<td><b>CCM (KS: 128, 256) (Assoc. Data Len Range:</b> 0 - 8 <b>) (Payload Length Range:</b> 4 - 32 <b>(Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s):</b> 4 6 8 14 16 <b>)</b></td>
+<td><b>CCM (KS: 128, 256) (Assoc. Data Len Range: </b>0 - 8<b>) (Payload Length Range:</b> 4 - 32 <b>(Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s): </b>4 6 8 14 16<b>)</b></td>
 <td>Windows Vista Ultimate SP1 and Windows Server 2008 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a></td>
 </tr>
 <tr class="even">
-<td><b>CCM (KS: 128, 192, 256) (Assoc. Data Len Range:</b> 0 - 0, 2^16 <b>) (Payload Length Range:</b> 1 - 32 <b>(Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s):</b> 4 6 8 10 12 14 16 <b>)</b></td>
+<td><b>CCM (KS: 128, 192, 256) (Assoc. Data Len Range: </b>0 - 0, 2^16<b>) (Payload Length Range:</b> 1 - 32 <b>(Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s):</b> 4 6 8 10 12 14 16<b>)</b></td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#757">#757</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a></p></td>
 </tr>
@@ -2995,7 +3002,7 @@ AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </table>
 
 
-Deterministic Random Bit Generator (DRBG)
+### Deterministic Random Bit Generator (DRBG)
 
 <table>
 <colgroup>
@@ -3124,7 +3131,7 @@ Deterministic Random Bit Generator (DRBG)
 </tr>
 <tr class="odd">
 <td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">Val#2832</a>)]</td>
-<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a></p>
+<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -3280,7 +3287,7 @@ Deterministic Random Bit Generator (DRBG)
 <p><b>PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)]</p>
 <p><b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p><b>KeyPairGen</b>:   [(2048,256); (3072,256)]</p>
-<p><b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ]</p>
+<p><b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p><b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
 <p>DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></p></td>
@@ -3289,16 +3296,16 @@ Deterministic Random Bit Generator (DRBG)
 </tr>
 <tr class="even">
 <td><b>FIPS186-4:<br />
-PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
-<b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
+PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
+<b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">#1188</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
-<b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
+PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
+<b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">#1187</a></p>
 <p>Version 8.00.6246</p></td>
@@ -3310,7 +3317,7 @@ PQG(gen)</b>PARMS TESTED: [<br />
 <b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 KeyPairGen:    [(2048,256); (3072,256)]<br />
 <b>SIG(gen)</b>PARMS TESTED:   [(2048,256)<br />
-SHA(256); (3072,256) SHA(256); ]<br />
+SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
@@ -3320,7 +3327,7 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
 PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)] <b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
-KeyPairGen:    [(2048,256); (3072,256)] <b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ]<br />
+KeyPairGen:    [(2048,256); (3072,256)] <b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val# 955</a></p></td>
@@ -3332,7 +3339,7 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)]<br />
 <b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 KeyPairGen:    [(2048,256); (3072,256)]<br />
-<b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ] <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
+<b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)] <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val# 868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">#983</a></p>
@@ -3345,11 +3352,11 @@ PQG(gen)</b>PARMS TESTED:   [<br />
 <b>PQG(ver</b>)PARMS TESTED:   [(2048,256)<br />
 SHA(256); (3072,256) SHA(256)]<br />
 KeyPairGen:    [(2048,256); (3072,256)]<br />
-<b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ]<br />
+<b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val# 2373</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
-<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a></p>
+<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -3361,11 +3368,11 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 <p><b>FIPS186-4:<br />
 PQG(gen)PARMS TESTED</b>: [(2048,256)SHA(256); (3072,256) SHA(256)]<br />
 <b>PQG(ver)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
-<b>SIG(gen)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256); ]<br />
+<b>SIG(gen)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#687">Historical DSA List Val#687</a>.</p></td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#687">Historical DSA List Val#687</a>.</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a></td>
 </tr>
 <tr class="odd">
@@ -3374,7 +3381,7 @@ PQG(ver)</b> MOD(1024);<br />
 <b>SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#686">Historical DSA List Val#686</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#686">Historical DSA List Val#686</a>.</td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 DSS and Diffie-Hellman Enhanced Cryptographic Provider (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#686">#686</a></td>
 </tr>
 <tr class="even">
@@ -3382,7 +3389,7 @@ Some of the previously validated components for this validation have been remove
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val# 1773</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#645">Historical DSA List Val#645</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#645">Historical DSA List Val#645</a>.</td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#645">#645</a></td>
 </tr>
 <tr class="odd">
@@ -3390,7 +3397,7 @@ Some of the previously validated components for this validation have been remove
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val# 1081</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#391">Historical DSA List Val#391</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#386">Historical DSA List Val#386</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#391">Historical DSA List Val#391</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#386">Historical DSA List Val#386</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#391">#391</a></p>
 <p>Windows 7 Ultimate and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#386">#386</a></p></td>
 </tr>
@@ -3399,7 +3406,7 @@ Some of the previously validated components for this validation have been remove
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val# 1081</a><br />
 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#649">Val# 649</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#390">Historical DSA List Val#390</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#385">Historical DSA List Val#385</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#390">Historical DSA List Val#390</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#385">Historical DSA List Val#385</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#390">#390</a></p>
 <p>Windows 7 Ultimate and SP1 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#385">#385</a></p></td>
 </tr>
@@ -3407,7 +3414,7 @@ Some of the previously validated components for this validation have been remove
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val# 753</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#284">Historical DSA List Val#284</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#283">Historical DSA List Val#283</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#284">Historical DSA List Val#284</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#283">Historical DSA List Val#283</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#284">#284</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#283">#283</a></p></td>
 </tr>
@@ -3416,7 +3423,7 @@ Some of the previously validated components for this validation have been remove
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val# 753</a><br />
 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#435">Val# 435</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#282">Historical DSA List Val#282</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#281">Historical DSA List Val#281</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#282">Historical DSA List Val#282</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#281">Historical DSA List Val#281</a>.</td>
 <td><p>Windows Server 2008 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#282">#282</a></p>
 <p>Windows Vista Ultimate SP1 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#281">#281</a></p></td>
 </tr>
@@ -3425,7 +3432,7 @@ Some of the previously validated components for this validation have been remove
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val# 618</a><br />
 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#227">Historical DSA List Val#227</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#226">Historical DSA List Val#226</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#227">Historical DSA List Val#227</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#226">Historical DSA List Val#226</a>.</td>
 <td><p>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#227">#227</a></p>
 <p>Windows Vista Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#226">#226</a></p></td>
 </tr>
@@ -3434,7 +3441,7 @@ Some of the previously validated components for this validation have been remove
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#784">Val# 784</a><br />
 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#448">Val# 448</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#292">Historical DSA List Val#292</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#292">Historical DSA List Val#292</a>.</td>
 <td>Windows XP Professional SP3 Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#292">#292</a></td>
 </tr>
 <tr class="odd">
@@ -3442,7 +3449,7 @@ Some of the previously validated components for this validation have been remove
 SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val# 783</a><br />
 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#447">Val# 447</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#291">Historical DSA List Val#291</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#291">Historical DSA List Val#291</a>.</td>
 <td>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#291">#291</a></td>
 </tr>
 <tr class="even">
@@ -3548,7 +3555,7 @@ SHS: SHA-1 (BYTE)</p></td>
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">#2373</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a></p></td>
-<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1263">#1263</a></p>
+<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1263">#1263</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
@@ -3892,7 +3899,7 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
-<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a></p>
+<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
@@ -3900,7 +3907,7 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-<b>SIG(ver):CURVES</b>(P-256 P-384 P-521)<br />
+<b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p>
 <p><b>FIPS186-4:<br />
@@ -3909,7 +3916,7 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#341">Historical ECDSA List Val#341</a>.</p></td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#341">Historical ECDSA List Val#341</a>.</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a></td>
 </tr>
 <tr class="even">
@@ -3926,7 +3933,7 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#295">Historical ECDSA List Val#295</a>.</p></td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#295">Historical ECDSA List Val#295</a>.</p></td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#295">#295</a></td>
 </tr>
 <tr class="odd">
@@ -3937,7 +3944,7 @@ PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#142">Historical ECDSA List Val#142</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#141">Historical ECDSA List Val#141</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#142">Historical ECDSA List Val#142</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#141">Historical ECDSA List Val#141</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#142">#142</a></p>
 <p>Windows 7 Ultimate and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#141">#141</a></p></td>
 </tr>
@@ -3947,7 +3954,7 @@ PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
 <b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#83">Historical ECDSA List Val#83</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#82">Historical ECDSA List Val#82</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#83">Historical ECDSA List Val#83</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#82">Historical ECDSA List Val#82</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a></p></td>
 </tr>
@@ -3959,7 +3966,7 @@ PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
 <b>RNG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#60">Historical ECDSA List Val#60</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#60">Historical ECDSA List Val#60</a>.</td>
 <td>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#60">#60</a></td>
 </tr>
 </tbody>
@@ -4219,7 +4226,7 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p>
 <p><b>HMAC-SHA512</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
-<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a></p>
+<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -4500,7 +4507,7 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </ul></li>
 </ul></li>
 </ul></li>
-<li>One Pass DH:</li>
+<li>One-Pass DH:</li>
 <li><ul>
 <li>Key Agreement Roles: Initiator, Responder</li>
 <li>Parameter Sets:</li>
@@ -4651,7 +4658,7 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </ul></li>
 </ul></li>
 </ul></li>
-<li>One Pass DH:</li>
+<li>One-Pass DH:</li>
 <li><ul>
 <li>Key Agreement Roles: Initiator, Responder</li>
 <li>Parameter Sets:</li>
@@ -4802,7 +4809,7 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </ul></li>
 </ul></li>
 </ul></li>
-<li>One Pass DH:</li>
+<li>One-Pass DH:</li>
 <li><ul>
 <li>Key Agreement Roles: Initiator, Responder</li>
 <li>Parameter Sets:</li>
@@ -5029,7 +5036,7 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 [OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">Val#505</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a></p></td>
-<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a></p>
+<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -5048,7 +5055,7 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <tr class="odd">
 <td><p><b>KAS (SP 800–56A)</b></p>
 <p>key agreement</p>
-<p>key establishment methodology provides 80 to 256 bits of encryption strength</p></td>
+<p>key establishment methodology provides 80 bits to 256 bits of encryption strength</p></td>
 <td><p>Windows 7 and SP1, vendor-affirmed</p>
 <p>Windows Server 2008 R2 and SP1, vendor-affirmed</p></td>
 </tr>
@@ -5205,7 +5212,7 @@ MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <tr class="odd">
 <td><p><b>CTR_Mode:</b>  (Llength(Min0 Max0) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
 <p>DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">Val#1773</a></p></td>
-<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a></p>
+<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -6056,7 +6063,7 @@ Sig(Ver): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen
 186-4KEY(gen):</b> FIPS186-4_Fixed_e;<br />
 <b>PGM(ProbPrimeCondition):</b> 2048, 3072 PPTT:(C.3)</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
-<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a></p>
+<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
@@ -6071,7 +6078,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 25
 ALG[RSASSA-PKCS1_V1_5</b>] SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
 SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
-<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a></p>
+<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
@@ -6079,7 +6086,7 @@ SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1,
 [RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
  Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
-<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a></p>
+<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -6089,7 +6096,7 @@ SIG(Ver) (1024 SHA(1, 256, 384, 512-256)) (2048 SHA(1, 256, 384, 512-256)) (3072
 <b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
 Sig(Ver): (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a></p>
-<p>Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1134">Historical RSA List Val#1134</a>.</p></td>
+<p>Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1134">Historical RSA List Val#1134</a>.</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a></td>
 </tr>
 <tr class="odd">
@@ -6104,7 +6111,7 @@ SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1132">Historical RSA List Val#1132</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1132">Historical RSA List Val#1132</a>.</td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a></td>
 </tr>
 <tr class="odd">
@@ -6113,7 +6120,7 @@ ALG[ANSIX9.31]:</b><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1052">Historical RSA List Val#1052</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1052">Historical RSA List Val#1052</a>.</td>
 <td>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1052">#1052</a></td>
 </tr>
 <tr class="even">
@@ -6121,14 +6128,14 @@ Some of the previously validated components for this validation have been remove
 ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1051">Historical RSA List Val#1051</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1051">Historical RSA List Val#1051</a>.</td>
 <td>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1051">#1051</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#568">Historical RSA List Val#568</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#568">Historical RSA List Val#568</a>.</td>
 <td>Windows Server 2008 R2 and SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a></td>
 </tr>
 <tr class="even">
@@ -6137,21 +6144,21 @@ ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="http
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
 <b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#567">Historical RSA List Val#567</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#560">Historical RSA List Val#560</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#567">Historical RSA List Val#567</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#560">Historical RSA List Val#560</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#567">#567</a></p>
 <p>Windows 7 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#559">Historical RSA List Val#559</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#559">Historical RSA List Val#559</a>.</td>
 <td>Windows 7 and SP1 and Server 2008 R2 and SP1 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#557">Historical RSA List Val#557</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#557">Historical RSA List Val#557</a>.</td>
 <td>Windows 7 and SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a></td>
 </tr>
 <tr class="odd">
@@ -6159,7 +6166,7 @@ Some of the previously validated components for this validation have been remove
 ALG[ANSIX9.31]:<br />
 ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#395">Historical RSA List Val#395</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#395">Historical RSA List Val#395</a>.</td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#395">#395</a></td>
 </tr>
 <tr class="even">
@@ -6167,7 +6174,7 @@ Some of the previously validated components for this validation have been remove
 ALG[ANSIX9.31]:</b><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#371">Historical RSA List Val#371</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#371">Historical RSA List Val#371</a>.</td>
 <td>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#371">#371</a></td>
 </tr>
 <tr class="odd">
@@ -6176,7 +6183,7 @@ ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="http
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
 <b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#358">Historical RSA List Val#358</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#357">Historical RSA List Val#357</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#358">Historical RSA List Val#358</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#357">Historical RSA List Val#357</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a></p>
 <p>Windows Vista SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a></p></td>
 </tr>
@@ -6186,20 +6193,20 @@ ALG[ANSIX9.31]:</b><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#355">Historical RSA List Val#355</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#354">Historical RSA List Val#354</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#355">Historical RSA List Val#355</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#354">Historical RSA List Val#354</a>.</td>
 <td><p>Windows Server 2008 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a></p>
 <p>Windows Vista SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#353">Historical RSA List Val#353</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#353">Historical RSA List Val#353</a>.</td>
 <td>Windows Vista SP1 and Windows Server 2008 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#258">Historical RSA List Val#258</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#258">Historical RSA List Val#258</a>.</td>
 <td>Windows Vista RSA key generation implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#258">#258</a></td>
 </tr>
 <tr class="odd">
@@ -6208,14 +6215,14 @@ ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="http
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
 <b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#257">Historical RSA List Val#257</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#257">Historical RSA List Val#257</a>.</td>
 <td>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#257">#257</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#255">Historical RSA List Val#255</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#255">Historical RSA List Val#255</a>.</td>
 <td>Windows Vista Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#255">#255</a></td>
 </tr>
 <tr class="odd">
@@ -6224,7 +6231,7 @@ ALG[ANSIX9.31]:</b><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#245">Historical RSA List Val#245</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#245">Historical RSA List Val#245</a>.</td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#245">#245</a></td>
 </tr>
 <tr class="even">
@@ -6233,7 +6240,7 @@ ALG[ANSIX9.31]:</b><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#230">Historical RSA List Val#230</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#230">Historical RSA List Val#230</a>.</td>
 <td>Windows CE 6.0 and Windows CE 6.0 R2 and Windows Mobile Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#230">#230</a></td>
 </tr>
 <tr class="odd">
@@ -6242,14 +6249,14 @@ ALG[ANSIX9.31]:</b><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#578">Val#578</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#222">Historical RSA List Val#222</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#222">Historical RSA List Val#222</a>.</td>
 <td>Windows CE and Windows Mobile 6 and Windows Mobile 6.1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#222">#222</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[RSASSA-PKCS1_V1_5]:</b><br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">Val#364</a><br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#81">Historical RSA List Val#81</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#81">Historical RSA List Val#81</a>.</td>
 <td>Windows Server 2003 SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a></td>
 </tr>
 <tr class="odd">
@@ -6258,12 +6265,12 @@ ALG[ANSIX9.31]:</b><br />
 SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#305">Val#305</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
-Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#52">Historical RSA List Val#52</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#52">Historical RSA List Val#52</a>.</td>
 <td>Windows CE 5.00 and Windows CE 5.01 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#52">#52</a></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-2:</b></p>
-<p>– PKCS#1 v1.5, signature generation and verification</p>
+<p>– PKCS#1 v1.5, signature generation, and verification</p>
 <p>– Mod sizes: 1024, 1536, 2048, 3072, 4096</p>
 <p>– SHS: SHA–1/256/384/512</p></td>
 <td><p>Windows XP, vendor-affirmed</p>
@@ -6452,7 +6459,7 @@ Version 6.3.9600</td>
 <b>SHA-256</b> (BYTE-only)<br />
 <b>SHA-384</b> (BYTE-only)<br />
 <b>SHA-512</b> (BYTE-only)</td>
-<td>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">#2373</a><br />
+<td>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">#2373</a><br />
 Version 6.3.9600</td>
 </tr>
 <tr class="even">
@@ -6638,71 +6645,71 @@ Version 6.3.9600</td>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><b>TECB</b>(KO 1 e/d,); <b>TCBC</b>(KO 1 e/d,); <b>TCFB8</b>(KO 1 e/d,); <b>TCFB64</b>(KO 1 e/d,)</td>
+<td><b>TECB</b>(KO 1 e/d); <b>TCBC</b>(KO 1 e/d); <b>TCFB8</b>(KO 1 e/d); <b>TCFB64</b>(KO 1 e/d)</td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2459">#2459</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,)</p></td>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d)</p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2384">#2384</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,)</p></td>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d)</p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2383">#2383</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,);</p>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d);</p>
 <p><b>CTR</b> (int only)</p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2382">#2382</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,)</p></td>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d)</p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2381">#2381</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,);</p>
-<p><b>TCFB8</b>(KO 1 e/d,);</p>
-<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d);</p>
+<p><b>TCFB8</b>(KO 1 e/d);</p>
+<p><b>TCFB64</b>(KO 1 e/d)</p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a><br />
 <br />
 </p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,);</p>
-<p><b>TCFB8</b>(KO 1 e/d,);</p>
-<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d);</p>
+<p><b>TCFB8</b>(KO 1 e/d);</p>
+<p><b>TCFB64</b>(KO 1 e/d)</p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2024">#2024</a><br />
 <br />
 </p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,);</p>
-<p><b>TCFB8</b>(KO 1 e/d,);</p>
-<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d);</p>
+<p><b>TCFB8</b>(KO 1 e/d);</p>
+<p><b>TCFB64</b>(KO 1 e/d)</p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1969">#1969</a><br />
 <br />
 </p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>(KO 1 e/d,);</p>
-<p><b>TCBC</b>(KO 1 e/d,);</p>
-<p><b>TCFB8</b>(KO 1 e/d,);</p>
-<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
-<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a></p>
+<td><p><b>TECB</b>(KO 1 e/d);</p>
+<p><b>TCBC</b>(KO 1 e/d);</p>
+<p><b>TCFB8</b>(KO 1 e/d);</p>
+<p><b>TCFB64</b>(KO 1 e/d)</p></td>
+<td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
@@ -6770,7 +6777,7 @@ Version 6.3.9600</td>
 </table>
 
 
-#### SP 800-132 Password Based Key Derivation Function (PBKDF)
+#### SP 800-132 Password-Based Key Derivation Function (PBKDF)
 
 <table border="1" cellpadding="0" summary="table" xmlns="http://www.w3.org/1999/xhtml">
   <tr>
@@ -6824,7 +6831,7 @@ Version 6.3.9600</td>
 </ul></li>
 </ul>
 <p>Prerequisite: DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a></p></td>
-<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1540">#1540</a></p>
+<td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1540">#1540</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
@@ -6856,7 +6863,7 @@ Version 6.3.9600</td>
 <li>Modulus Size: 2048 (bits)</li>
 </ul></li>
 </ul></td>
-<td><p>Microsoft Surface Hub MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1517">#151</a>7</p>
+<td><p>Microsoft Surface Hub MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1517">#1517</a></p>
 <p>Version 10.0.15063.674</p></td>
 </tr>
 <tr class="even">
@@ -7265,7 +7272,7 @@ Version 10.0.14393</p>
 <p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#894">#894</a><br />
 Version 10.0.14393icrosoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#666">#666</a><br />
 Version 10.0.10586</p>
-<p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#288">#288</a><br />
+<p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#288">#288</a><br />
 Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
@@ -7282,7 +7289,7 @@ Version 10.0.15063</p>
 Version 10.0.14393</p>
 <p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#888">#888</a><br />
 Version 10.0.14393</p>
-<p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#665">#66</a>5<br />
+<p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#665">#665</a><br />
 Version 10.0.10586</p>
 <p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#572">#572</a><br />
 Version  10.0.10240</p>
@@ -7335,10 +7342,7 @@ fips@microsoft.com
 
 ## References
 
-\[[FIPS 140](http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf)\] - FIPS 140-2, Security Requirements for Cryptographic Modules
-
-\[[FIPS FAQ](http://csrc.nist.gov/groups/stm/cmvp/documents/cmvpfaq.pdf)\] - Cryptographic Module Validation Program (CMVP) FAQ
-
-\[[SP 800-57](http://csrc.nist.gov/publications/pubssps.html#800-57-part1)\] - Recommendation for Key Management – Part 1: General (Revised)
-
-\[[SP 800-131A](http://csrc.nist.gov/publications/nistpubs/800-131a/sp800-131a.pdf)\] - Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths
+* [FIPS 140-2, Security Requirements for Cryptographic Modules](http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf))
+* [Cryptographic Module Validation Program (CMVP) FAQ](http://csrc.nist.gov/groups/stm/cmvp/documents/cmvpfaq.pdf)
+* [SP 800-57 - Recommendation for Key Management – Part 1: General (Revised)]((http://csrc.nist.gov/publications/pubssps.html#800-57-part1))
+* [SP 800-131A - Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths](http://csrc.nist.gov/publications/nistpubs/800-131a/sp800-131a.pdf)

From 3ec766998affbb66f85344b39b733b7ea970944c Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 11 Nov 2020 14:25:26 -0800
Subject: [PATCH 093/209] Release notes for MDEP for macOS version 101.13.75

---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 7c00c8af5a..1250ec26b4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -43,6 +43,11 @@ ms.topic: conceptual
 > 2. Refer to this documentation for detailed configuration information and instructions: [New configuration profiles for macOS Catalina and newer versions of macOS](mac-sysext-policies.md).
 > 3. Monitor this page for an announcement of the actual release of MDATP for Mac agent update.
 
+## 101.13.75
+
+- Fixed a memory leak in the Endpoint Security system extension when running on mac 11 (Big Sur)
+- Bug fixes
+
 ## 101.10.72
 
 - Bug fixes

From e010ec40ecebb9e6742e23759bec59f32cb5f2ac Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 11 Nov 2020 14:27:18 -0800
Subject: [PATCH 094/209] Added missing period

---
 .../microsoft-defender-atp/microsoft-defender-atp-mac.md        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index de9fa4ec68..0121869dec 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -133,7 +133,7 @@ mdatp --connectivity-test
 
 ## How to update Microsoft Defender for Endpoint for Mac
 
-Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender for Endpoint for Mac, a program named Microsoft AutoUpdate (MAU) is used. To learn more, see [Deploy updates for Microsoft Defender for Endpoint for Mac](mac-updates.md)
+Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender for Endpoint for Mac, a program named Microsoft AutoUpdate (MAU) is used. To learn more, see [Deploy updates for Microsoft Defender for Endpoint for Mac](mac-updates.md).
 
 ## How to configure Microsoft Defender for Endpoint for Mac
 

From fc61950ea7aff2dbf86262fcff5f71e845054133 Mon Sep 17 00:00:00 2001
From: Marty Hernandez Avedon <v-maave@microsoft.com>
Date: Wed, 11 Nov 2020 17:39:30 -0500
Subject: [PATCH 095/209] fixed one dead link in refs section

---
 windows/security/threat-protection/fips-140-validation.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/fips-140-validation.md b/windows/security/threat-protection/fips-140-validation.md
index 755d20142f..0650fc3e25 100644
--- a/windows/security/threat-protection/fips-140-validation.md
+++ b/windows/security/threat-protection/fips-140-validation.md
@@ -7344,5 +7344,5 @@ fips@microsoft.com
 
 * [FIPS 140-2, Security Requirements for Cryptographic Modules](http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf))
 * [Cryptographic Module Validation Program (CMVP) FAQ](http://csrc.nist.gov/groups/stm/cmvp/documents/cmvpfaq.pdf)
-* [SP 800-57 - Recommendation for Key Management – Part 1: General (Revised)]((http://csrc.nist.gov/publications/pubssps.html#800-57-part1))
+* [SP 800-57 - Recommendation for Key Management – Part 1: General (Revised)](https://csrc.nist.gov/publications/detail/sp/800-57-part-1/rev-5/final)
 * [SP 800-131A - Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths](http://csrc.nist.gov/publications/nistpubs/800-131a/sp800-131a.pdf)

From e9d9746c26d0154f4ecb10ee63f82caf8831b8e5 Mon Sep 17 00:00:00 2001
From: Marty Hernandez Avedon <v-maave@microsoft.com>
Date: Wed, 11 Nov 2020 17:53:22 -0500
Subject: [PATCH 096/209] val # -> validation number

---
 .../threat-protection/fips-140-validation.md  | 744 +++++++++---------
 1 file changed, 372 insertions(+), 372 deletions(-)

diff --git a/windows/security/threat-protection/fips-140-validation.md b/windows/security/threat-protection/fips-140-validation.md
index 0650fc3e25..98392dd180 100644
--- a/windows/security/threat-protection/fips-140-validation.md
+++ b/windows/security/threat-protection/fips-140-validation.md
@@ -2641,7 +2641,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Key Lengths: 128, 192, 256 (bits)</li>
 <li>Plain Text Lengths: 128, 192, 256, 320, 2048 (bits)</li>
 </ul>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4902">Val#4902</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4902">validation number 4902</a></p></td>
 <td><p>Microsoft Surface Hub Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4900">#4900</a></p>
 <p>Version 10.0.15063.674</p></td>
 </tr>
@@ -2653,7 +2653,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Key Lengths: 128, 192, 256 (bits)</li>
 <li>Plain Text Lengths: 128, 192, 256, 320, 2048 (bits)</li>
 </ul>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4901">Val#4901</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4901">validation number 4901</a></p></td>
 <td><p>Windows 10 Mobile (version 1709) Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4899">#4899</a></p>
 <p>Version 10.0.15254</p></td>
 </tr>
@@ -2665,7 +2665,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Key Lengths: 128, 192, 256 (bits)</li>
 <li>Plain Text Lengths: 128, 192, 256, 320, 2048 (bits)</li>
 </ul>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">Val#4897</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">validation number 4897</a></p></td>
 <td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4898">#4898</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
@@ -2678,7 +2678,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Plain Text Length: 0-32</li>
 <li>Additional authenticated data length: 0-65536</li>
 </ul>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4902">Val#4902</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4902">validation number 4902</a></p></td>
 <td><p>Microsoft Surface Hub BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4896">#4896</a></p>
 <p>Version 10.0.15063.674</p></td>
 </tr>
@@ -2691,7 +2691,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Plain Text Length: 0-32</li>
 <li>Additional authenticated data length: 0-65536</li>
 </ul>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4901">Val#4901</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4901">validation number 4901</a></p></td>
 <td><p>Windows 10 Mobile (version 1709) BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4895">#4895</a></p>
 <p>Version 10.0.15254</p></td>
 </tr>
@@ -2704,7 +2704,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Plain Text Length: 0-32</li>
 <li>Additional authenticated data length: 0-65536</li>
 </ul>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">Val#4897</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">validation number 4897</a></p></td>
 <td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4894">#4894</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
@@ -2718,13 +2718,13 @@ The following tables are organized by cryptographic algorithms with their modes,
 </tr>
 <tr class="even">
 <td><p><b>KW</b> (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 256, 192, 320, 2048)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">validation number 4624</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a></p>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">validation number 4624</a></p>
 <p> </p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a></p>
 <p>Version 10.0.15063</p></td>
@@ -2801,25 +2801,25 @@ Version 10.0.14393</td>
 </tr>
 <tr class="even">
 <td><p><b>KW</b>  (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 192, 256, 320, 2048)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">validation number 4064</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">validation number 4064</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
 <td><p><b>KW</b>  (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 256, 192, 320, 2048)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">validation number 3629</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3652">#3652</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">validation number 3629</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
@@ -2847,13 +2847,13 @@ GMAC supported</p>
 </tr>
 <tr class="even">
 <td><p>KW  (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 256, 192, 320, 2048)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">validation number 3497</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3507">#3507</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">validation number 3497</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
@@ -2887,7 +2887,7 @@ Version 10.0.10240</td>
 </tr>
 <tr class="odd">
 <td><p><b>CCM (KS: 256)</b> (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">Val#2832</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">validation number 2832</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 BitLocker Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2848">#2848</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
@@ -2904,9 +2904,9 @@ GMAC supported</b></p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CCM (KS: 128, 192, 256</b>) <b>(Assoc. Data Len Range</b>: 0-0, 2^16) <b>(Payload Length Range</b>: 0 - 32 (<b>Nonce Length(s)</b>: 7 8 9 10 11 12 13 <b>(Tag Length(s)</b>: 4 6 8 10 12 14 16)<br />
-AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a></p>
+AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">validation number 2197</a></p>
 <p><b>CMAC</b> (Generation/Verification) <b>(KS: 128;</b> Block Size(s); <b>Msg Len(s)</b> Min: 0 Max: 2^16; <b>Tag Len(s)</b> Min: 16 Max: 16) <b>(KS: 192</b>; Block Size(s); <b>Msg Len(s)</b> Min: 0 Max: 2^16; <b>Tag Len(s)</b> Min: 16 Max: 16) <b>(KS: 256</b>; Block Size(s); <b>Msg Len(s)</b> Min: 0 Max: 2^16; <b>Tag Len(s)</b> Min: 16 Max: 16)<br />
-AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a></p>
+AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">validation number 2197</a></p>
 <p><b>GCM(KS: AES_128</b>(e/d) Tag Length(s): 128 120 112 104 96) <b>(KS: AES_192</b>(e/d) Tag Length(s): 128 120 112 104 96)<br />
 <b>(KS: AES_256</b>(e/d) Tag Length(s): 128 120 112 104 96)<br />
 <b>IV Generated:</b> (Externally); <b>PT Lengths Tested:</b> (0, 128, 1024, 8, 1016); <b>Additional authenticated data lengths tested:</b> (0, 128, 1024, 8, 1016); <b>IV Lengths Tested:</b> (8, 1024); <b>96 bit IV supported<br />
@@ -2915,7 +2915,7 @@ GMAC supported</b></p></td>
 </tr>
 <tr class="even">
 <td><p><b>CCM (KS: 256) (Assoc. Data Len Range: </b>0 - 0, 2^16<b>) (Payload Length Range:</b> 0 - 32 (<b>Nonce Length(s)</b>: 12 <b>(Tag Length(s)</b>: 16)</p>
-<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">Val#2196</a></p></td>
+<p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">validation number 2196</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a></td>
 </tr>
 <tr class="odd">
@@ -2935,13 +2935,13 @@ GMAC supported</b></p></td>
 </tr>
 <tr class="odd">
 <td><b>CCM (KS: 128, 192, 256) (Assoc. Data Len Range: </b>0 – 0, 2^16<b>) (Payload Length Range:</b> 0 - 32 <b>(Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s): </b>4 6 8 10 12 14 16<b>)</b><br />
-AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a></td>
+AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">validation number 1168</a></td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1187">#1187</a></p>
 <p>Windows 7 Ultimate and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a></p></td>
 </tr>
 <tr class="even">
 <td><b>CCM (KS: 128, 256) (Assoc. Data Len Range: </b>0 - 8<b>) (Payload Length Range:</b> 4 - 32 <b>(Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s): </b>4 6 8 14 16<b>)</b><br />
-AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a></td>
+AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">validation number 1168</a></td>
 <td>Windows 7 Ultimate and SP1 and Windows Server 2008 R2 and SP1 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a></td>
 </tr>
 <tr class="odd">
@@ -3080,70 +3080,70 @@ AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b> [Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4627">Val#4627</a>)]</td>
+<td><b>CTR_DRBG:</b> [Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4627">validation number 4627</a>)]</td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">#1556</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a>)]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">validation number 4624</a>)]</td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">#1555</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4434">Val#4434</a>)]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4434">validation number 4434</a>)]</td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1433">#1433</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4433">Val#4433</a>)]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4433">validation number 4433</a>)]</td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1432">#1432</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4431">Val#4431</a>)]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4431">validation number 4431</a>)]</td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">#1430</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4430">Val#4430</a>)]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4430">validation number 4430</a>)]</td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">#1429</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4074">Val#4074</a>)]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4074">validation number 4074</a>)]</td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">#1222</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a>)]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">validation number 4064</a>)]</td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a>)]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">validation number 3629</a>)]</td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">#955</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a>)]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">validation number 3497</a>)]</td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">#868</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">Val#2832</a>)]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">validation number 2832</a>)]</td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a>)]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">validation number 2197</a>)]</td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Next Generation Symmetric Cryptographic Algorithms Implementations (SYMCRYPT) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2023">Val#2023</a>)]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2023">validation number 2023</a>)]</td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">#193</a></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a>)]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">validation number 1168</a>)]</td>
 <td>Windows 7 Ultimate and SP1 and Windows Server 2008 R2 and SP1 RNG Library <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a></td>
 </tr>
 <tr class="odd">
@@ -3289,8 +3289,8 @@ AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <p><b>KeyPairGen</b>:   [(2048,256); (3072,256)]</p>
 <p><b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p><b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p>DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p>
+<p>DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number  1555</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">#1223</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -3298,7 +3298,7 @@ AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <td><b>FIPS186-4:<br />
 PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
 <b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">#1188</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
@@ -3306,7 +3306,7 @@ SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <td><b>FIPS186-4:<br />
 PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
 <b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1)]<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">#1187</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
@@ -3319,8 +3319,8 @@ KeyPairGen:    [(2048,256); (3072,256)]<br />
 <b>SIG(gen)</b>PARMS TESTED:   [(2048,256)<br />
 SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number  1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -3329,8 +3329,8 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)] <b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 KeyPairGen:    [(2048,256); (3072,256)] <b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val# 955</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">validation number  955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">#1024</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
@@ -3340,8 +3340,8 @@ PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)]<br />
 <b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 KeyPairGen:    [(2048,256); (3072,256)]<br />
 <b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)] <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val# 868</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">validation number  868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">#983</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
@@ -3354,8 +3354,8 @@ SHA(256); (3072,256) SHA(256)]<br />
 KeyPairGen:    [(2048,256); (3072,256)]<br />
 <b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val# 2373</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number  2373</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">validation number  489</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
@@ -3372,7 +3372,7 @@ PQG(gen)PARMS TESTED</b>: [(2048,256)SHA(256); (3072,256) SHA(256)]<br />
 <b>SIG(ver)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#687">Historical DSA List Val#687</a>.</p></td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#687">Historical DSA List validation number 687</a>.</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a></td>
 </tr>
 <tr class="odd">
@@ -3381,75 +3381,75 @@ PQG(ver)</b> MOD(1024);<br />
 <b>SIG(ver)</b> MOD(1024);<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#686">Historical DSA List Val#686</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#686">Historical DSA List validation number 686</a>.</td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 DSS and Diffie-Hellman Enhanced Cryptographic Provider (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#686">#686</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val# 1773</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#645">Historical DSA List Val#645</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number  1773</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">validation number  193</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#645">Historical DSA List validation number 645</a>.</td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#645">#645</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val# 1081</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#391">Historical DSA List Val#391</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#386">Historical DSA List Val#386</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number  1081</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">validation number  23</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#391">Historical DSA List validation number 391</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#386">Historical DSA List validation number 386</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#391">#391</a></p>
 <p>Windows 7 Ultimate and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#386">#386</a></p></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val# 1081</a><br />
-RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#649">Val# 649</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#390">Historical DSA List Val#390</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#385">Historical DSA List Val#385</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number  1081</a><br />
+RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#649">validation number  649</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#390">Historical DSA List validation number 390</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#385">Historical DSA List validation number 385</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#390">#390</a></p>
 <p>Windows 7 Ultimate and SP1 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#385">#385</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val# 753</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#284">Historical DSA List Val#284</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#283">Historical DSA List Val#283</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number  753</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#284">Historical DSA List validation number 284</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#283">Historical DSA List validation number 283</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#284">#284</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#283">#283</a></p></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val# 753</a><br />
-RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#435">Val# 435</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#282">Historical DSA List Val#282</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#281">Historical DSA List Val#281</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number  753</a><br />
+RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#435">validation number  435</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#282">Historical DSA List validation number 282</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#281">Historical DSA List validation number 281</a>.</td>
 <td><p>Windows Server 2008 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#282">#282</a></p>
 <p>Windows Vista Ultimate SP1 Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#281">#281</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val# 618</a><br />
-RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#227">Historical DSA List Val#227</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#226">Historical DSA List Val#226</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number  618</a><br />
+RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">validation number  321</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#227">Historical DSA List validation number 227</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#226">Historical DSA List validation number 226</a>.</td>
 <td><p>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#227">#227</a></p>
 <p>Windows Vista Enhanced DSS (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#226">#226</a></p></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#784">Val# 784</a><br />
-RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#448">Val# 448</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#292">Historical DSA List Val#292</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#784">validation number  784</a><br />
+RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#448">validation number  448</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#292">Historical DSA List validation number 292</a>.</td>
 <td>Windows XP Professional SP3 Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#292">#292</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val# 783</a><br />
-RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#447">Val# 447</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#291">Historical DSA List Val#291</a>.</td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number  783</a><br />
+RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#447">validation number  447</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#291">Historical DSA List validation number 291</a>.</td>
 <td>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#291">#291</a></td>
 </tr>
 <tr class="even">
@@ -3459,8 +3459,8 @@ PQG(gen)</b> MOD(1024);<br />
 <b>KEYGEN(Y)</b> MOD(1024);<br />
 <b>SIG(gen)</b> MOD(1024);<br />
 <b>SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#611">Val# 611</a><br />
-RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#314">Val# 314</a></td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#611">validation number  611</a><br />
+RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#314">validation number  314</a></td>
 <td>Windows 2003 SP2 Enhanced DSS and Diffie-Hellman Cryptographic Provider <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#221">#221</a></td>
 </tr>
 <tr class="odd">
@@ -3470,7 +3470,7 @@ PQG(gen)</b> MOD(1024);<br />
 <b>KEYGEN(Y)</b> MOD(1024);<br />
 <b>SIG(gen)</b> MOD(1024);<br />
 <b>SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#385">Val# 385</a></td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#385">validation number  385</a></td>
 <td>Windows Server 2003 SP1 Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#146">#146</a></td>
 </tr>
 <tr class="even">
@@ -3479,7 +3479,7 @@ PQG(ver)</b> MOD(1024);<br />
 <b>KEYGEN(Y)</b> MOD(1024);<br />
 <b>SIG(gen)</b> MOD(1024);<br />
 <b>SIG(ver)</b> MOD(1024);<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#181">Val# 181</a><br />
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#181">validation number  181</a><br />
 <br />
 </td>
 <td>Windows Server 2003 Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#95">#95</a></td>
@@ -3801,8 +3801,8 @@ SHS: SHA-1 (BYTE)</p></td>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
 PKG: CURVES</b>(P-256 P-384 TestingCandidates)<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number  1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1136">#1136</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -3812,8 +3812,8 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number  1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1135">#1135</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -3823,8 +3823,8 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
-SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
+SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number  1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">#1133</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -3834,8 +3834,8 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 <b>SigVer: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512))<br />
-<b>SHS:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
-<b>DRBG:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">Val# 1430</a></td>
+<b>SHS:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a><br />
+<b>DRBG:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">validation number  1430</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1073">#1073</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
@@ -3845,8 +3845,8 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 <b>SigVer: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512))<br />
-<b>SHS:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
-<b>DRBG:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">Val# 1429</a></td>
+<b>SHS:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a><br />
+<b>DRBG:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">validation number  1429</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1072">#1072</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
@@ -3856,8 +3856,8 @@ PKG: CURVES</b>(P-256 P-384 TestingCandidates)<br />
 <b>PKV: CURVES</b>(P-256 P-384)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 256, 384) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 256, 384))</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">Val# 1222</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">validation number  1222</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#920">#920</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -3867,8 +3867,8 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number  1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -3877,8 +3877,8 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val# 955</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">validation number  955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">#760</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
@@ -3887,8 +3887,8 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
 SigVer: CURVES(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val# 868</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">validation number  868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">#706</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
@@ -3897,8 +3897,8 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
-<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
+<p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">validation number  489</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
@@ -3916,57 +3916,57 @@ PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#341">Historical ECDSA List Val#341</a>.</p></td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#341">Historical ECDSA List validation number 341</a>.</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-2:<br />
 PKG: CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a><br />
-<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a><br />
+<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">validation number  193</a><br />
 <b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a><br />
-<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a></p>
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a><br />
+<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">validation number  193</a></p>
 <p><b>FIPS186-4:<br />
 PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
 <b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
 <b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a><br />
-<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#295">Historical ECDSA List Val#295</a>.</p></td>
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a><br />
+<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">validation number  193</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#295">Historical ECDSA List validation number 295</a>.</p></td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#295">#295</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 PKG: CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
-<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a><br />
+<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">validation number  23</a><br />
 <b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
-<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#142">Historical ECDSA List Val#142</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#141">Historical ECDSA List Val#141</a>.</td>
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a><br />
+<b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">validation number  23</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#142">Historical ECDSA List validation number 142</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#141">Historical ECDSA List validation number 141</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#142">#142</a></p>
 <p>Windows 7 Ultimate and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#141">#141</a></p></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 PKG: CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a><br />
 <b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#83">Historical ECDSA List Val#83</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#82">Historical ECDSA List Val#82</a>.</td>
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#83">Historical ECDSA List validation number 83</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#82">Historical ECDSA List validation number 82</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 PKG: CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
-<b>RNG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val# 321</a><br />
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a><br />
+<b>RNG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number  321</a><br />
 <b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
-<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
-<b>RNG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#60">Historical ECDSA List Val#60</a>.</td>
+<b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a><br />
+<b>RNG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">validation number  321</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#60">Historical ECDSA List validation number 60</a>.</td>
 <td>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#60">#60</a></td>
 </tr>
 </tbody>
@@ -4129,111 +4129,111 @@ Some of the previously validated components for this validation have been remove
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3062">#3062</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1(Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p></td>
+<td><p><b>HMAC-SHA1(Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2946">#2946</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2945">#2945</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2943">#2943</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2942">#2942</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p>
 <p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p>
 <p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p></td>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2661">#2661</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA256</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA384</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA512</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p></td>
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p>
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p>
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p>
+<p><b>HMAC-SHA512</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a></p>
 <p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a></p>
 <p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a></p>
 <p><b>HMAC-SHA512</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p></td>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
 <td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
-SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p>
+SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a></p>
 <p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p>
+SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a></p>
 <p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
-<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886"> SHSVal# 2886</a></p>
+<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886"> SHSvalidation number  2886</a></p>
 <p><b>HMAC-SHA512</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p></td>
+SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a></p>
 <p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a></p>
 <p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a></p>
 <p><b>HMAC-SHA512</b> (Key Size Ranges Tested:  KSBS)<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
-<p><b>HMAC-SHA256</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
-<p><b>HMAC-SHA384</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
-<p><b>HMAC-SHA512</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p></td>
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">validation number 2764</a></p>
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">validation number 2764</a></p>
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">validation number 2764</a></p>
+<p><b>HMAC-SHA512</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">validation number 2764</a></p></td>
 <td><p>Windows CE and Windows Mobile, and Windows Embedded Handheld Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2122">#2122</a></p>
 <p>Version 5.2.29344</p></td>
 </tr>
@@ -4261,133 +4261,133 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Next Generation Symmetric Cryptographic Algorithms Implementations (SYMCRYPT) #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">1345</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
-<p><b>Tinker HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a></p>
+<p><b>Tinker HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a></p></td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1364">#1364</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a></p></td>
 <td>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1227">#1227</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a></p></td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#686">#686</a></p>
 <p>Windows 7 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#677">#677</a></p>
 <p>Windows Server 2008 R2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#687">#687</a></p>
 <p>Windows 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#673">#673</a></p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1(Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p></td>
+<td><p><b>HMAC-SHA1(Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a></p></td>
 <td>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a></p></td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#452">#452</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p></td>
 <td>Windows Vista Ultimate SP1 and Windows Server 2008 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#415">#415</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS)</b>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS)</b>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p></td>
 <td><p>Windows Server 2008 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#408">#408</a></p>
 <p>Windows Vista Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#407">#407</a></p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS)SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS)SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a></p></td>
 <td>Windows Vista Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#297">#297</a></td>
 </tr>
 <tr class="even">
-<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#785">Val#785</a></td>
+<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#785">validation number 785</a></td>
 <td><p>Windows XP Professional SP3 Kernel Mode Cryptographic Module (fips.sys) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#429">#429</a></p>
 <p>Windows XP, vendor-affirmed</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a></p></td>
 <td>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#428">#428</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a></p></td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#289">#289</a></td>
 </tr>
 <tr class="odd">
-<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#610">Val#610</a></td>
+<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#610">validation number 610</a></td>
 <td>Windows Server 2003 SP2 Kernel Mode Cryptographic Module (fips.sys) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#287">#287</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a></p></td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#413">#413</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a></p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">Val#737</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">Val#737</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">validation number 737</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">validation number 737</a></p></td>
 <td>Windows Vista Ultimate BitLocker Drive Encryption <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#386">#386</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#618">Val#618</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#618">validation number 618</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a></p></td>
 <td>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#298">#298</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS)SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS)SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a></p></td>
 <td>Windows CE 6.0 and Windows CE 6.0 R2 and Windows Mobile Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#267">#267</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a></p></td>
 <td>Windows CE and Windows Mobile 6.0 and Windows Mobil 6.5 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#260">#260</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#495">Val#495</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#495">Val#495</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#495">validation number 495</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#495">validation number 495</a></p></td>
 <td>Windows Vista BitLocker Drive Encryption <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#199">#199</a></td>
 </tr>
 <tr class="even">
-<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">Val#364</a></td>
+<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">validation number 364</a></td>
 <td><p>Windows Server 2003 SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#99">#99</a></p>
 <p>Windows XP, vendor-affirmed</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
-<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
-<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
-<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a></p></td>
 <td>Windows CE 5.00 and Windows CE 5.01 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#31">#31</a></td>
 </tr>
 </tbody>
@@ -4929,9 +4929,9 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </tr>
 <tr class="odd">
 <td><p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Full Validation   Key Regeneration) <b>SCHEMES</b> [<b>FullUnified</b> (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC)]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
-DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1135">Val#1135</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">Val#1556</a></p></td>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a><br />
+DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1135">validation number 1135</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">validation number 1556</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#128">#128</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -4939,16 +4939,16 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) <b>SCHEMES</b> [<b>dhEphem</b> (KARole(s): Initiator / Responder)<br />
 (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
 [<b>dhOneFlow</b> (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)] [<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b> SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
-DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">Val#1223</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val#1555</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a><br />
+DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">validation number 1223</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number 1555</a></p>
 <p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [<b>OnePassDH</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 <br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
-ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">Val#1133</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val#1555</a></p></td>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a><br />
+ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">validation number 1133</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number 1555</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">#127</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -4956,9 +4956,9 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) <b>SCHEMES</b> [<b>dhEphem</b> (KARole(s): Initiator / Responder)<br />
 (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
 [<b>dhOneFlow</b> (KARole(s): Initiator / Responder) (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)] [<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b> SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
-DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">Val#1188</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">Val#1430</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a><br />
+DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">validation number 1188</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">validation number 1430</a></p>
 <p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [<b>OnePassDH</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]</p></td>
@@ -4970,23 +4970,23 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
 [<b>dhHybridOneFlow</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b>SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
 [<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b>SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
-DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">Val#1187</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">Val#1429</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a><br />
+DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">validation number 1187</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">validation number 1429</a></p>
 <p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b>) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [<b>OnePassDH</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 <br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
-ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1072">Val#1072</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">Val#1429</a></p></td>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a><br />
+ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1072">validation number 1072</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">validation number 1429</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#114">#114</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Full Validation   Key Regeneration)<br />
 <b>SCHEMES  [FullUnified  (No_KC</b>  &amp;lt; KARole(s): Initiator / Responder &amp;gt; &amp;lt; KDF: CONCAT &amp;gt;) (<b>EC:</b>  P-256   SHA256   HMAC) (<b>ED:</b>  P-384   SHA384   HMAC)]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#920">Val#920</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">Val#1222</a></p></td>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#920">validation number 920</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">validation number 1222</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#93">#93</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -4995,11 +4995,11 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <b>SCHEMES</b>  [dhEphem  (KARole(s): Initiator / Responder)<br />
 (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
 [dhOneFlow (KARole(s): Initiator / Responder) (<b>FB:</b>  SHA256) (<b>FC:</b>  SHA256)] [<b>dhStatic (No_KC</b>  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">Val#1098</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val#1217</a></p>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">validation number 1098</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number 1217</a></p>
 <p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) <b>SCHEMES</b>  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">Val#1098</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">Val#911</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val#1217</a> HMAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">Val#2651</a></p></td>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">validation number 1098</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">validation number 911</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number 1217</a> HMAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">validation number 2651</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -5007,11 +5007,11 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) SCHEMES  [dhEphem  (KARole(s): Initiator / Responder)<br />
 (FB: SHA256) (FC: SHA256)]<br />
 [dhOneFlow (KARole(s): Initiator / Responder) (FB:  SHA256) (FC:  SHA256)] [dhStatic (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">Val#1024</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val#955</a></p>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">validation number 1024</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">validation number 955</a></p>
 <p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) SCHEMES  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">Val#760</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val#955</a></p></td>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">validation number 760</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">validation number 955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#72">#72</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
@@ -5019,11 +5019,11 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) SCHEMES  [dhEphem  (KARole(s): Initiator / Responder)<br />
 (FB: SHA256) (FC: SHA256)]<br />
 [dhOneFlow (KARole(s): Initiator / Responder) (FB:  SHA256) (FC:  SHA256)] [dhStatic (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">Val#983</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val#868</a></p>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">validation number 983</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">validation number 868</a></p>
 <p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) SCHEMES  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">Val#706</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val#868</a></p></td>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">validation number 706</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">validation number 868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">#64</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
@@ -5031,11 +5031,11 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) SCHEMES  [dhEphem  (KARole(s): Initiator / Responder)<br />
 (FB: SHA256) (FC: SHA256)]<br />
 [dhOneFlow (KARole(s): Initiator / Responder) (FB:  SHA256) (FC:  SHA256)] [dhStatic (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">Val#855</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a></p>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">validation number 855</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">validation number 489</a></p>
 <p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) SCHEMES  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 [StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
-<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">Val#505</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a></p></td>
+<p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">validation number 505</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">validation number 489</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
@@ -5044,12 +5044,12 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 (<b>FA</b>: SHA256) (<b>FB</b>: SHA256) (<b>FC</b>: SHA256)]<br />
 [<b>dhOneFlow</b> (KARole(s): Initiator / Responder) (<b>FA</b>: SHA256) (<b>FB</b>: SHA256) (<b>FC</b>: SHA256)]<br />
 [<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FA</b>: SHA256 HMAC) (<b>FB</b>: SHA256 HMAC) (<b>FC</b>: SHA256 HMAC)]<br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">Val#687</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">validation number 687</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p>
 <p><b>ECC</b>: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Partial Validation Key Regeneration) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (EC: P-256 SHA256 HMAC) (<b>ED</b>: P-384 SHA384 HMAC) (<b>EE</b>: P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
 [<b>OnePassDH(No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC</b>: P-256 SHA256) (<b>ED</b>: P-384 SHA384) (<b>EE</b>: P-521 (SHA512, HMAC_SHA512)))]<br />
 [<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC</b>: P-256 SHA256 HMAC) (<b>ED</b>: P-384 SHA384 HMAC) (<b>EE</b>: P-521 HMAC (SHA512, HMAC_SHA512))]<br />
 <br />
-SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">Val#341</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p></td>
+SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">validation number 341</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a></td>
 </tr>
 <tr class="odd">
@@ -5169,55 +5169,55 @@ SP 800-108 Key-Based Key Derivation Functions (KBKDF)
 <tr class="odd">
 <td><b>CTR_Mode:</b> (Llength(Min0 Max0) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA384]) LocationCounter([BeforeFixedData]) rlength([32]))<br />
 <br />
-KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#128">Val#128</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">Val#1556</a><br />
-MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3062">Val#3062</a></td>
+KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#128">validation number 128</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">validation number 1556</a><br />
+MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3062">validation number 3062</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#141">#141</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
 <td><b>CTR_Mode:</b> (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))<br />
 <br />
-KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">Val#127</a><br />
-AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a><br />
-DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val#1555</a><br />
-MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">Val#3061</a></td>
+KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">validation number 127</a><br />
+AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">validation number 4624</a><br />
+DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number 1555</a><br />
+MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">validation number 3061</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#140">#140</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA384]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
-<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#93">Val#93</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">Val#1222</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2661">Val#2661</a></p></td>
+<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#93">validation number 93</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">validation number 1222</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2661">validation number 2661</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#102">#102</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
 <td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
-<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">Val#92</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val#1217</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">Val#2651</a></p></td>
+<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">validation number 92</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">validation number 4064</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number 1217</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">validation number 2651</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
-<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#72">Val#72</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val#955</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">Val#2381</a></p></td>
+<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#72">validation number 72</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">validation number 3629</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">validation number 955</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">validation number 2381</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#72">#72</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
 <td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
-<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">Val#64</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a> RBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val#868</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">Val#2233</a></p></td>
+<p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">validation number 64</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">validation number 3497</a> RBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">validation number 868</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">validation number 2233</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#66">#66</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>CTR_Mode:</b>  (Llength(Min0 Max0) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
-<p>DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">Val#1773</a></p></td>
+<p>DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">validation number 489</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">validation number 1773</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
 <td><p><b>CTR_Mode</b>: (Llength(Min0 Max4) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
-<p>DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> HMAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">Val#1345</a></p></td>
+<p>DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> HMAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">validation number 1345</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a></td>
 </tr>
 </tbody>
@@ -5862,14 +5862,14 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384)) <b><em>SIG(gen) with
 </b> SIG(Ver) (1024 SHA(1, 256, 384)) (2048 SHA(1, 256, 384))<br />
 <b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 </b> Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48)))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2524">#2524</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -5881,8 +5881,8 @@ SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
 <b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 </b> Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">validation number  1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
@@ -5894,65 +5894,65 @@ PGM(ProbRandom:</b> (2048, 3072) <b>PPTT:</b>(C.2)<br />
 </b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
 <b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 </b> Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">validation number 3790</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2521">#2521</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a><br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a></p>
 <p><b>FIPS186-4:<br />
 ALG[ANSIX9.31]</b> Sig(Gen): (2048 SHA(1)) (3072 SHA(1))<b><br />
 <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em></b> Sig(Ver): (1024 SHA(1)) (2048 SHA(1)) (3072 SHA(1))<br />
 <b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 </b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">validation number 3652</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2415">#2415</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a><br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a></p>
 <p><b>FIPS186-4:<br />
 ALG[ANSIX9.31]</b> Sig(Gen): (2048 SHA(1)) (3072 SHA(1))<b><br />
 <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em></b> Sig(Ver): (1024 SHA(1)) (2048 SHA(1)) (3072 SHA(1))<br />
 <b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 </b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">validation number 3651</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2414">#2414</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a></p>
 <p><b>FIPS186-4:<br />
 186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
 <b>PGM(ProbRandom:</b> (2048, 3072) <b>PPTT:</b>(C.2)<br />
 <b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 </b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">Val# 1430</a></p></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">validation number  3649</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">validation number  1430</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2412">#2412</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a></p>
 <p><b>FIPS186-4:<br />
 186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
 <b>PGM(ProbRandom:</b> (2048, 3072) <b>PPTT:</b>(C.2)<br />
 <b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
 </b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
-SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
-DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">Val# 1429</a></p></td>
+SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">validation number 3648</a><br />
+DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">validation number  1429</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2411">#2411</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
@@ -5962,7 +5962,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384)) SIG(gen) with SHA-1
 SIG(Ver) (1024 SHA(1, 256, 384)) (2048 SHA(1, 256, 384))<br />
 <b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
 Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48)))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2206">#2206</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -5970,14 +5970,14 @@ Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) (2048 SHA(
 <td><p><b>FIPS186-4:<br />
 186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
 <b>PGM(ProbPrimeCondition):</b> 2048, 3072 PPTT:(C.3)</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number  1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3346">Val#3346</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3346">validation number 3346</a></p></td>
 <td><p>soft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2194">#2194</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -5985,7 +5985,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 25
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
 <b>SIG(Ver)</b> (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number  1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -5993,7 +5993,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384
 <td><p><b>FIPS186-4:<br />
 [RSASSA-PSS]: Sig(Gen):</b> (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
 <p><b>Sig(Ver):</b> (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">validation number  3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">validation number  1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
@@ -6001,14 +6001,14 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384
 <td><p><b>FIPS186-4:<br />
 186-4KEY(gen)</b>:  FIPS186-4_Fixed_e (10001);<br />
 <b>PGM(ProbPrimeCondition</b>): 2048, 3072 PPTT:(C.3)</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val# 955</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">validation number  955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1889">#1889</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">Val#3048</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">validation number 3048</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
@@ -6016,7 +6016,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 25
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
 <b>SIG(Ver)</b> (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1888">#1888</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
@@ -6024,7 +6024,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384
 <td><p><b>FIPS186-4:<br />
 [RSASSA-PSS]: Sig(Gen)</b>: (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
 <b>Sig(Ver):</b> (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">validation number  3047</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1887">#1887</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
@@ -6032,21 +6032,21 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384
 <td><p><b>FIPS186-4:<br />
 186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
 PGM(ProbPrimeCondition): 2048, 3072 PPTT:(C.3)</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val# 868</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">validation number  868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1798">#1798</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">Val#2871</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">validation number 2871</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">Val#2871</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">validation number 2871</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1783">#1783</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
@@ -6054,7 +6054,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 25
 <td><p><b>FIPS186-4:<br />
 [RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
 Sig(Ver): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">validation number  2886</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1802">#1802</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
@@ -6062,14 +6062,14 @@ Sig(Ver): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen
 <td><p><b>FIPS186-4:<br />
 186-4KEY(gen):</b> FIPS186-4_Fixed_e;<br />
 <b>PGM(ProbPrimeCondition):</b> 2048, 3072 PPTT:(C.3)</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">validation number  489</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
@@ -6077,7 +6077,7 @@ ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 25
 <td><p><b>FIPS186-4:<br />
 ALG[RSASSA-PKCS1_V1_5</b>] SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
 SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
@@ -6085,7 +6085,7 @@ SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1,
 <td><p><b>FIPS186-4:<br />
 [RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
  Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
-<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
+<p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">validation number 2373</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
@@ -6096,7 +6096,7 @@ SIG(Ver) (1024 SHA(1, 256, 384, 512-256)) (2048 SHA(1, 256, 384, 512-256)) (3072
 <b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
 Sig(Ver): (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a></p>
-<p>Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1134">Historical RSA List Val#1134</a>.</p></td>
+<p>Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1134">Historical RSA List validation number 1134</a>.</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a></td>
 </tr>
 <tr class="odd">
@@ -6111,161 +6111,161 @@ SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
 <b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
 SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1132">Historical RSA List Val#1132</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1132">Historical RSA List validation number 1132</a>.</td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1052">Historical RSA List Val#1052</a>.</td>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">validation number 1774</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1052">Historical RSA List validation number 1052</a>.</td>
 <td>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1052">#1052</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1051">Historical RSA List Val#1051</a>.</td>
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">validation number  193</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">validation number 1773</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1051">Historical RSA List validation number 1051</a>.</td>
 <td>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1051">#1051</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#568">Historical RSA List Val#568</a>.</td>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#568">Historical RSA List validation number 568</a>.</td>
 <td>Windows Server 2008 R2 and SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#567">Historical RSA List Val#567</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#560">Historical RSA List Val#560</a>.</td>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>,<br />
+<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a><br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#567">Historical RSA List validation number 567</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#560">Historical RSA List validation number 560</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#567">#567</a></p>
 <p>Windows 7 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#559">Historical RSA List Val#559</a>.</td>
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">validation number  23</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#559">Historical RSA List validation number 559</a>.</td>
 <td>Windows 7 and SP1 and Server 2008 R2 and SP1 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#557">Historical RSA List Val#557</a>.</td>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">validation number 1081</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#557">Historical RSA List validation number 557</a>.</td>
 <td>Windows 7 and SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#395">Historical RSA List Val#395</a>.</td>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">validation number 816</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#395">Historical RSA List validation number 395</a>.</td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#395">#395</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#371">Historical RSA List Val#371</a>.</td>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">validation number 783</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#371">Historical RSA List validation number 371</a>.</td>
 <td>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#371">#371</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#358">Historical RSA List Val#358</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#357">Historical RSA List Val#357</a>.</td>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>,<br />
+<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a><br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#358">Historical RSA List validation number 358</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#357">Historical RSA List validation number 357</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a></p>
 <p>Windows Vista SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a></p></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#355">Historical RSA List Val#355</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#354">Historical RSA List Val#354</a>.</td>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">validation number 753</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#355">Historical RSA List validation number 355</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#354">Historical RSA List validation number 354</a>.</td>
 <td><p>Windows Server 2008 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a></p>
 <p>Windows Vista SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#353">Historical RSA List Val#353</a>.</td>
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#353">Historical RSA List validation number 353</a>.</td>
 <td>Windows Vista SP1 and Windows Server 2008 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#258">Historical RSA List Val#258</a>.</td>
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">validation number  321</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#258">Historical RSA List validation number 258</a>.</td>
 <td>Windows Vista RSA key generation implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#258">#258</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#257">Historical RSA List Val#257</a>.</td>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>,<br />
+<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a><br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#257">Historical RSA List validation number 257</a>.</td>
 <td>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#257">#257</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#255">Historical RSA List Val#255</a>.</td>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">validation number 618</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#255">Historical RSA List validation number 255</a>.</td>
 <td>Windows Vista Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#255">#255</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#245">Historical RSA List Val#245</a>.</td>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">validation number 613</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#245">Historical RSA List validation number 245</a>.</td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#245">#245</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#230">Historical RSA List Val#230</a>.</td>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">validation number 589</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#230">Historical RSA List validation number 230</a>.</td>
 <td>Windows CE 6.0 and Windows CE 6.0 R2 and Windows Mobile Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#230">#230</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#578">Val#578</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#222">Historical RSA List Val#222</a>.</td>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">validation number 578</a>, SHA-512<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#578">validation number 578</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#222">Historical RSA List validation number 222</a>.</td>
 <td>Windows CE and Windows Mobile 6 and Windows Mobile 6.1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#222">#222</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[RSASSA-PKCS1_V1_5]:</b><br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">Val#364</a><br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#81">Historical RSA List Val#81</a>.</td>
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">validation number 364</a><br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#81">Historical RSA List validation number 81</a>.</td>
 <td>Windows Server 2003 SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#305">Val#305</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
-SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
-Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#52">Historical RSA List Val#52</a>.</td>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#305">validation number 305</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">validation number 305</a>,<br />
+Some of the previously validated components for this validation have been removed because they're now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#52">Historical RSA List validation number 52</a>.</td>
 <td>Windows CE 5.00 and Windows CE 5.01 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#52">#52</a></td>
 </tr>
 <tr class="even">

From e624979559251339bcf0c679e4053ced51220e88 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Wed, 11 Nov 2020 15:07:01 -0800
Subject: [PATCH 097/209] value prop

---
 .../microsoft-defender-atp/tvm-prerequisites.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
index 8ccaa9eb8d..62b6d8fcfc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
@@ -41,7 +41,7 @@ Ensure that your devices:
 > Windows 10 Version 1809 | [KB 4516077](https://support.microsoft.com/help/4516077/windows-10-update-kb4516077)
 > Windows 10 Version 1903 | [KB 4512941](https://support.microsoft.com/help/4512941/windows-10-update-kb4512941)
 
-- Are onboarded to [Microsoft Intune](https://docs.microsoft.com/mem/intune/fundamentals/what-is-intune) and  [Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-protection-configure). If you're using Configuration Manager, update your console to the latest version.
+- Are onboarded to [Microsoft Intune](https://docs.microsoft.com/mem/intune/fundamentals/what-is-intune) and  [Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/endpoint-protection-configure) to help remediate threats found by threat and vulnerability management. If you're using Configuration Manager, update your console to the latest version.
 - Have at least one security recommendation that can be viewed in the device page
 - Are tagged or marked as co-managed
 

From e76065c56e01d3f949d7403154b2f0a51048dcb3 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Wed, 11 Nov 2020 15:45:29 -0800
Subject: [PATCH 098/209] attention required

---
 .../microsoft-defender-atp/tvm-remediation.md          | 10 +++++++---
 .../tvm-zero-day-vulnerabilities.md                    |  2 +-
 2 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
index 83f4fa34f0..a61efd6251 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
@@ -44,11 +44,13 @@ See [Use Intune to remediate vulnerabilities identified by Microsoft Defender AT
 
 2. Select a security recommendation you would like to request remediation for, and then select **Remediation options**.
 
-3. Fill out the form, including what you are requesting remediation for, priority, due date, and optional notes. Select **Submit request**. Submitting a remediation request creates a remediation activity item within threat and vulnerability management, which can be used for monitoring the remediation progress for this recommendation. This will not trigger a remediation or apply any changes to devices.
+3. Fill out the form, including what you are requesting remediation for, priority, due date, and optional notes. If you choose the "attention required" remediation option, selecting a due date will not be available since there is no specific action.
 
-4. Notify your IT Administrator about the new request and have them log into Intune to approve or reject the request and start a package deployment.
+4. Select **Submit request**. Submitting a remediation request creates a remediation activity item within threat and vulnerability management, which can be used for monitoring the remediation progress for this recommendation. This will not trigger a remediation or apply any changes to devices.
 
-5. Go to the [**Remediation**](tvm-remediation.md) page to view the status of your remediation request.
+5. Notify your IT Administrator about the new request and have them log into Intune to approve or reject the request and start a package deployment.
+
+6. Go to the [**Remediation**](tvm-remediation.md) page to view the status of your remediation request.
 
 If you want to check how the ticket shows up in Intune, see [Use Intune to remediate vulnerabilities identified by Microsoft Defender ATP](https://docs.microsoft.com/intune/atp-manage-vulnerabilities) for details.
 
@@ -63,6 +65,8 @@ Lower your organization's exposure from vulnerabilities and increase your securi
 
 When you submit a remediation request from the Security recommendations page, it kicks-off a remediation activity. A security task is created that can be tracked in the threat and vulnerability management **Remediation** page, and a remediation ticket is created in Microsoft Intune.
 
+If you chose the "attention required" remediation option, there will be no progress bar, ticket status, or due date since there is no actual action we can monitor.
+
 Once you are in the Remediation page, select the remediation activity that you want to view. You can follow the remediation steps, track progress, view the related recommendation, export to CSV, or mark as complete.
 ![Example of the Remediation page, with a selected remediation activity, and that activity's flyout listing the description, IT service and device management tools, and device remediation progress.](images/remediation_flyouteolsw.png)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
index f1747bc294..51fcf8acbc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
@@ -90,7 +90,7 @@ Open remediation options and choose the attention type. An "attention required"
 
 ## Track zero-day remediation activities
 
-Go to the threat and vulnerability management [Remediation](tvm-remediation.md) page to view the remediation activity item. If you chose the "attention required" remediation option, there will be no progress bar or ticket status since there is no actual action we can monitor.
+Go to the threat and vulnerability management [Remediation](tvm-remediation.md) page to view the remediation activity item. If you chose the "attention required" remediation option, there will be no progress bar, ticket status, or due date since there is no actual action we can monitor. You can filter by remediation type, such as "software update" or "attention required," to see all activity items in the same category.
 
 ## Patching zero-day vulnerabilities
 

From 4a3eeba84a1e285c81ce1f8f4e6cb306af1b5164 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 11 Nov 2020 15:57:21 -0800
Subject: [PATCH 099/209] Clarify note at the top

---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md    | 2 +-
 .../microsoft-defender-atp/microsoft-defender-atp-mac.md        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 719aa6fb32..b06981b16d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions are seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. If you encounter such kernel panic after upgrading to macOS Big Sur, please submit a feedback report to Apple through the [Feedback Assistant app](https://developer.apple.com/bug-reporting/) on your device.
 
 ## 101.13.75
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 0121869dec..e0d94c5f5b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -66,7 +66,7 @@ There are several methods and deployment tools that you can use to install and c
 The three most recent major releases of macOS are supported.
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions are seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. If you encounter such kernel panic after upgrading to macOS Big Sur, please submit a feedback report to Apple through the [Feedback Assistant app](https://developer.apple.com/bug-reporting/) on your device.
 
 - 10.15 (Catalina), 10.14 (Mojave), 10.13 (High Sierra)
 - Disk space: 1GB

From fcb3633407a1d6bb1ed7175239ebc6c6047aa087 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 11 Nov 2020 16:02:20 -0800
Subject: [PATCH 100/209] Revert "Clarify note at the top"

This reverts commit 4a3eeba84a1e285c81ce1f8f4e6cb306af1b5164.
---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md    | 2 +-
 .../microsoft-defender-atp/microsoft-defender-atp-mac.md        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index b06981b16d..719aa6fb32 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions are seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. If you encounter such kernel panic after upgrading to macOS Big Sur, please submit a feedback report to Apple through the [Feedback Assistant app](https://developer.apple.com/bug-reporting/) on your device.
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
 
 ## 101.13.75
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index e0d94c5f5b..0121869dec 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -66,7 +66,7 @@ There are several methods and deployment tools that you can use to install and c
 The three most recent major releases of macOS are supported.
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions are seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. If you encounter such kernel panic after upgrading to macOS Big Sur, please submit a feedback report to Apple through the [Feedback Assistant app](https://developer.apple.com/bug-reporting/) on your device.
+> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
 
 - 10.15 (Catalina), 10.14 (Mojave), 10.13 (High Sierra)
 - Disk space: 1GB

From 95398839f6374291a1f3fb9a746d24512c62eb7e Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Thu, 12 Nov 2020 16:31:16 +0500
Subject: [PATCH 101/209] Update
 windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/linux-support-install.md             | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
index 2444acd2f4..eaa9224b1c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-support-install.md
@@ -97,7 +97,7 @@ Then rerun step 2.
 4. If the above steps don’t work, check if SELinux is installed and in enforcing mode. If so, try setting it to permissive (preferably) or disabled mode. It can be done by setting the parameter `SELINUX` to "permissive" or "disabled" in `/etc/selinux/config` file, followed by reboot. Check the man-page of selinux for more details.
 Now try restarting the mdatp service using step 2. Revert the configuration change immediately though for security reasons after trying it and reboot.
 
-5. If ```/opt``` directory is a symbolic link, create a bind mount for ```/opt/microsoft```. 
+5. If `/opt` directory is a symbolic link, create a bind mount for `/opt/microsoft`. 
 
 6. Ensure that the daemon has executable permission.
     ```bash

From 8a026a85fe783b99daca944e4d63614298c6cccf Mon Sep 17 00:00:00 2001
From: Alekhya Jupudi <v-ajupudi@microsoft.com>
Date: Thu, 12 Nov 2020 17:09:17 +0530
Subject: [PATCH 102/209] Defender Rebrand- task 4626590- Branch-3

---
 windows/security/threat-protection/index.md   | 30 +++++++++----------
 ...iew-of-threat-mitigations-in-windows-10.md | 10 +++----
 .../whats-new-windows-10-version-1607.md      |  7 +++--
 .../whats-new-windows-10-version-1703.md      | 14 ++++-----
 .../whats-new-windows-10-version-1709.md      |  6 ++--
 .../whats-new-windows-10-version-1803.md      | 12 ++++----
 .../whats-new-windows-10-version-1809.md      | 18 +++++------
 .../whats-new-windows-10-version-1903.md      | 10 +++----
 .../whats-new-windows-10-version-20H2.md      |  4 +--
 9 files changed, 56 insertions(+), 55 deletions(-)

diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md
index 4ddfd7b193..1e268bf3fc 100644
--- a/windows/security/threat-protection/index.md
+++ b/windows/security/threat-protection/index.md
@@ -1,6 +1,6 @@
 ---
 title: Threat Protection (Windows 10)
-description: Microsoft Defender Advanced Threat Protection is a unified platform for preventative protection, post-breach detection, automated investigation, and response.
+description: Microsoft Defender for Endpoint is a unified platform for preventative protection, post-breach detection, automated investigation, and response.
 keywords: threat protection, Microsoft Defender Advanced Threat Protection, attack surface reduction, next-generation protection, endpoint detection and response, automated investigation and response, microsoft threat experts, Microsoft Secure Score for Devices, advanced hunting, cyber threat hunting, web threat protection
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -17,12 +17,12 @@ ms.topic: conceptual
 ---
 
 # Threat Protection
-[Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) is a unified platform for preventative protection, post-breach detection, automated investigation, and response. Microsoft Defender ATP protects endpoints from cyber threats, detects advanced attacks and data breaches, automates security incidents, and improves security posture.
+[Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) is a unified platform for preventative protection, post-breach detection, automated investigation, and response. Defender for Endpoint protects endpoints from cyber threats, detects advanced attacks and data breaches, automates security incidents, and improves security posture.
 
 > [!TIP]
 > Enable your users to access cloud services and on-premises applications with ease and enable modern management capabilities for all devices. For more information, see [Secure your remote workforce](https://docs.microsoft.com/enterprise-mobility-security/remote-work/). 
 
-<center><h2>Microsoft Defender ATP</center></h2>
+<center><h2>Microsoft Defender for Endpoint</center></h2>
 <table>
 <tr>
 <td><a href="#tvm"><center><img src="images/TVM_icon.png" alt="threat and vulnerability icon"> <br><b>Threat & vulnerability management</b></center></a></td>
@@ -37,7 +37,7 @@ ms.topic: conceptual
 <a href="#apis"><center><b>Centralized configuration and administration, APIs</a></b></center></td>
 </tr>
 <tr>
-<td colspan="7"><a href="#mtp"><center><b>Microsoft Threat Protection</a></center></b></td>
+<td colspan="7"><a href="#mtp"><center><b>Microsoft 365 Defender</a></center></b></td>
 </tr>
 </table>
 <br>
@@ -73,7 +73,7 @@ The attack surface reduction set of capabilities provide the first line of defen
 <a name="ngp"></a>
 
 **[Next-generation protection](microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md)**<br>
-To further reinforce the security perimeter of your network, Microsoft Defender ATP uses next-generation protection designed to catch all types of emerging threats.
+To further reinforce the security perimeter of your network,Microsoft Defender for Endpoint uses next-generation protection designed to catch all types of emerging threats.
 
 - [Behavior monitoring](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus)
 - [Cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-protection-features-microsoft-defender-antivirus)
@@ -98,7 +98,7 @@ Endpoint detection and response capabilities are put in place to detect, investi
 <a name="ai"></a>
 
 **[Automated investigation and remediation](microsoft-defender-atp/automated-investigations.md)**<br>
-In addition to quickly responding to advanced attacks, Microsoft Defender ATP offers automatic investigation and remediation capabilities that help reduce the volume of alerts in minutes at scale.
+In addition to quickly responding to advanced attacks, Microsoft Defender for Endpoint offers automatic investigation and remediation capabilities that help reduce the volume of alerts in minutes at scale.
 
 - [Automated investigation and remediation](microsoft-defender-atp/automated-investigations.md)
 - [View details and results of automated investigations](microsoft-defender-atp/auto-investigation-action-center.md)
@@ -107,16 +107,16 @@ In addition to quickly responding to advanced attacks, Microsoft Defender ATP of
 <a name="mte"></a>
 
 **[Microsoft Threat Experts](microsoft-defender-atp/microsoft-threat-experts.md)**<br>
-Microsoft Defender ATP's new managed threat hunting service provides proactive hunting, prioritization, and additional context and insights. Microsoft Threat Experts further empowers Security Operation Centers (SOCs) to identify and respond to threats quickly and accurately.
+Microsoft Defender for Endpoint's new managed threat hunting service provides proactive hunting, prioritization, and additional context and insights. Microsoft Threat Experts further empowers Security Operation Centers (SOCs) to identify and respond to threats quickly and accurately.
 
 - [Targeted attack notification](microsoft-defender-atp/microsoft-threat-experts.md)
 - [Experts-on-demand](microsoft-defender-atp/microsoft-threat-experts.md)
-- [Configure your Microsoft Threat Protection managed hunting service](microsoft-defender-atp/configure-microsoft-threat-experts.md)
+- [Configure your Microsoft 365 Defender managed hunting service](microsoft-defender-atp/configure-microsoft-threat-experts.md)
 
 <a name="apis"></a>
 
 **[Centralized configuration and administration, APIs](microsoft-defender-atp/management-apis.md)**<br>
-Integrate Microsoft Defender Advanced Threat Protection into your existing workflows.
+Integrate Microsoft Defender for Endpoint into your existing workflows.
 - [Onboarding](microsoft-defender-atp/onboard-configure.md)
 - [API and SIEM integration](microsoft-defender-atp/configure-siem.md)
 - [Exposed APIs](microsoft-defender-atp/apis-intro.md)
@@ -125,14 +125,14 @@ Integrate Microsoft Defender Advanced Threat Protection into your existing workf
 
 <a name="integration"></a>
 **[Integration with Microsoft solutions](microsoft-defender-atp/threat-protection-integration.md)** <br>
- Microsoft Defender ATP directly integrates with various Microsoft solutions, including:
+ Microsoft Defender for Endpoint directly integrates with various Microsoft solutions, including:
 - Intune
-- Office 365 ATP
-- Azure ATP
-- Azure Security Center
+- Microsoft Defender for Office 365
+- Microsoft Defender for Identity
+- Azure Defender
 - Skype for Business
 - Microsoft Cloud App Security
 
 <a name="mtp"></a>
-**[Microsoft Threat Protection](https://docs.microsoft.com/microsoft-365/security/mtp/microsoft-threat-protection)**<br>
- With Microsoft Threat Protection, Microsoft Defender ATP and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate, and automatically respond to sophisticated attacks.
+**[Microsoft 365 Defender](https://docs.microsoft.com/microsoft-365/security/mtp/microsoft-threat-protection)**<br>
+ With Microsoft 365 Defender, Microsoft Defender for Endpoint and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate, and automatically respond to sophisticated attacks.
diff --git a/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md b/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
index eaef387dbf..ca627315b9 100644
--- a/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
+++ b/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10.md
@@ -106,7 +106,7 @@ Microsoft Defender Antivirus in Windows 10 uses a multi-pronged approach to impr
 
 For more information, see [Windows Defender in Windows 10](microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md) and [Windows Defender Overview for Windows Server](https://docs.microsoft.com/windows-server/security/windows-defender/windows-defender-overview-windows-server).
 
-For information about Microsoft Defender Advanced Threat Protection, a service that helps enterprises to detect, investigate, and respond to advanced and targeted attacks on their networks, see [Microsoft Defender Advanced Threat Protection (ATP)](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp) (resources) and [Microsoft Defender Advanced Threat Protection (ATP)](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) (documentation).
+For information about Microsoft Defender for Endpoint, a service that helps enterprises to detect, investigate, and respond to advanced and targeted attacks on their networks, see [Microsoft Defender for Endpoint](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp) (resources) and [Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection) (documentation).
 
 ### Data Execution Prevention
 
@@ -445,14 +445,14 @@ Examples:
 
 #### EMET-related products
 
-Microsoft Consulting Services (MCS) and Microsoft Support/Premier Field Engineering (PFE) offer a range of options for EMET, support for EMET, and EMET-related reporting and auditing products such as the EMET Enterprise Reporting Service (ERS). For any enterprise customers who use such products today or who are interested in similar capabilities, we recommend evaluating [Microsoft Defender Advanced Threat Protection](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md) (ATP).
+Microsoft Consulting Services (MCS) and Microsoft Support/Premier Field Engineering (PFE) offer a range of options for EMET, support for EMET, and EMET-related reporting and auditing products such as the EMET Enterprise Reporting Service (ERS). For any enterprise customers who use such products today or who are interested in similar capabilities, we recommend evaluating [Microsoft Defender for Endpoint](microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md).
 
 ## Related topics
 
 - [Security and Assurance in Windows Server 2016](https://docs.microsoft.com/windows-server/security/security-and-assurance)
-- [Microsoft Defender Advanced Threat Protection (ATP) - resources](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp)
-- [Microsoft Defender Advanced Threat Protection (ATP) - documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection)
+- [Microsoft Defender for Endpoint - resources](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp)
+- [Microsoft Microsoft Defender for Endpoint - documentation](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection)
 - [Exchange Online Advanced Threat Protection Service Description](https://docs.microsoft.com/office365/servicedescriptions/office-365-advanced-threat-protection-service-description)
-- [Office 365 Advanced Threat Protection](https://products.office.com/en-us/exchange/online-email-threat-protection)
+- [Microsoft Defender for Office 365](https://products.office.com/en-us/exchange/online-email-threat-protection)
 - [Microsoft Malware Protection Center](https://www.microsoft.com/security/portal/mmpc/default.aspx)
 
diff --git a/windows/whats-new/whats-new-windows-10-version-1607.md b/windows/whats-new/whats-new-windows-10-version-1607.md
index f3e4867a56..c3ec4500b4 100644
--- a/windows/whats-new/whats-new-windows-10-version-1607.md
+++ b/windows/whats-new/whats-new-windows-10-version-1607.md
@@ -110,10 +110,11 @@ Several new features and management options have been added to Windows Defender
 - [Run a Windows Defender scan from the command line](/windows/threat-protection/microsoft-defender-antivirus/command-line-arguments-microsoft-defender-antivirus).
 - [Detect and block Potentially Unwanted Applications with Windows Defender](/windows/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus) during download and install times.
 
-### Windows Defender Advanced Threat Protection (ATP)
-With the growing threat from more sophisticated targeted attacks, a new security solution is imperative in securing an increasingly complex network ecosystem. Windows Defender Advanced Threat Protection (Windows Defender ATP) is a security service, built into Windows 10 that enables enterprise customers detect, investigate, and respond to advanced threats on their networks.
+### Microsoft Defender for Endpoint
 
-[Learn more about Windows Defender Advanced Threat Protection (ATP)](/windows/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
+With the growing threat from more sophisticated targeted attacks, a new security solution is imperative in securing an increasingly complex network ecosystem. Microsoft Defender for Endpoint is a security service, built into Windows 10 that enables enterprise customers detect, investigate, and respond to advanced threats on their networks.
+
+[Learn more about Microsoft Defender for Endpoint](/windows/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection).
 
 ## Management
 
diff --git a/windows/whats-new/whats-new-windows-10-version-1703.md b/windows/whats-new/whats-new-windows-10-version-1703.md
index 9d74b2f7b8..2346ec23c7 100644
--- a/windows/whats-new/whats-new-windows-10-version-1703.md
+++ b/windows/whats-new/whats-new-windows-10-version-1703.md
@@ -96,9 +96,9 @@ For details, see [MBR2GPT.EXE](/windows/deployment/mbr-to-gpt).
 
 ## Security
 
-### Windows Defender Advanced Threat Protection
+### Microsoft Defender for Endpoint
 
-New features in Windows Defender Advanced Threat Protection (ATP) for Windows 10, version 1703 include:
+New features in Microsoft Defender for Endpoint for Windows 10, version 1703 include:
 - **Detection**<br>
   Enhancements to the detection capabilities include:
   - [Use the threat intelligence API to create custom alerts](/windows/threat-protection/windows-defender-atp/use-custom-ti-windows-defender-advanced-threat-protection) - Understand threat intelligence concepts, enable the threat intel application, and create custom threat intelligence alerts for your organization.
@@ -107,12 +107,12 @@ New features in Windows Defender Advanced Threat Protection (ATP) for Windows 10
   - Historical detection capability ensures new detection rules apply to up to six months of stored data to detect previous attacks that might not have been noticed
 
 - **Investigation**<br>
-  Enterprise customers can now take advantage of the entire Windows security stack with Microsoft Defender Antivirus detections and Device Guard blocks being surfaced in the Windows Defender ATP portal. Other capabilities have been added to help you gain a holistic view on investigations.
+  Enterprise customers can now take advantage of the entire Windows security stack with Microsoft Defender Antivirus detections and Device Guard blocks being surfaced in the Microsoft Defender for Endpoint portal. Other capabilities have been added to help you gain a holistic view on investigations.
 
    Other investigation enhancements include:
    - [Investigate a user account](/windows/threat-protection/windows-defender-atp/investigate-user-windows-defender-advanced-threat-protection) - Identify user accounts with the most active alerts and investigate cases of potential compromised credentials.
    - [Alert process tree](/windows/threat-protection/windows-defender-atp/investigate-alerts-windows-defender-advanced-threat-protection#alert-process-tree) - Aggregates multiple detections and related events into a single view to reduce case resolution time.
-   - [Pull alerts using REST API](/windows/threat-protection/windows-defender-atp/pull-alerts-using-rest-api-windows-defender-advanced-threat-protection) - Use REST API to pull alerts from Windows Defender ATP.
+   - [Pull alerts using REST API](/windows/threat-protection/windows-defender-atp/pull-alerts-using-rest-api-windows-defender-advanced-threat-protection) - Use REST API to pull alerts from Microsoft Defender for Endpoint.
 
 - **Response**<br>
   When detecting an attack, security response teams can now take immediate action to contain a breach:
@@ -121,11 +121,11 @@ New features in Windows Defender Advanced Threat Protection (ATP) for Windows 10
 
 
 - **Other features**
-  - [Check sensor health state](/windows/threat-protection/windows-defender-atp/check-sensor-status-windows-defender-advanced-threat-protection) - Check an endpoint's ability to provide sensor data and communicate with the Windows Defender ATP service and fix known issues.
+  - [Check sensor health state](/windows/threat-protection/windows-defender-atp/check-sensor-status-windows-defender-advanced-threat-protection) - Check an endpoint's ability to provide sensor data and communicate with the Microsoft Defender for Endpoint service and fix known issues.
 
-You can read more about ransomware mitigations and detection capability in Windows Defender Advanced Threat Protection in the blog: [Averting ransomware epidemics in corporate networks with Windows Defender ATP](https://blogs.technet.microsoft.com/mmpc/2017/01/30/averting-ransomware-epidemics-in-corporate-networks-with-windows-defender-atp/).
+You can read more about ransomware mitigations and detection capability in Microsoft Defender for Endpoint in the blog: [Averting ransomware epidemics in corporate networks with Microsoft Defender for Endpoint](https://blogs.technet.microsoft.com/mmpc/2017/01/30/averting-ransomware-epidemics-in-corporate-networks-with-windows-defender-atp/).
 
-Get a quick, but in-depth overview of Windows Defender ATP for Windows 10 and the new capabilities in Windows 10, version 1703 see [Windows Defender ATP for Windows 10 Creators Update](https://technet.microsoft.com/windows/mt782787).
+Get a quick, but in-depth overview of Microsoft Defender for Endpoint for Windows 10 and the new capabilities in Windows 10, version 1703 see [Microsoft Defender for Endpoint for Windows 10 Creators Update](https://technet.microsoft.com/windows/mt782787).
 
 ### Microsoft Defender Antivirus
 Windows Defender is now called Microsoft Defender Antivirus, and we've [increased the breadth of the documentation library for enterprise security admins](/windows/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10).
diff --git a/windows/whats-new/whats-new-windows-10-version-1709.md b/windows/whats-new/whats-new-windows-10-version-1709.md
index 468c6ddce9..b33762e67f 100644
--- a/windows/whats-new/whats-new-windows-10-version-1709.md
+++ b/windows/whats-new/whats-new-windows-10-version-1709.md
@@ -85,9 +85,9 @@ The AssignedAccess CSP has been expanded to make it easy for administrators to c
 
 **Windows security baselines** have been updated for Windows 10. A [security baseline](https://docs.microsoft.com/windows/device-security/windows-security-baselines) is a group of Microsoft-recommended configuration settings and explains their security impact. For more information, and to download the Policy Analyzer tool, see [Microsoft Security Compliance Toolkit 1.0](https://docs.microsoft.com/windows/device-security/security-compliance-toolkit-10).
 
-### Windows Defender ATP 
+### Microsoft Defender for Endpoint
 
-Windows Defender ATP has been expanded with powerful analytics, security stack integration, and centralized management for better detection, prevention, investigation, response, and management. For more information, see [View the Windows Defender Advanced Threat Protection Security analytics dashboard](https://docs.microsoft.com/windows/threat-protection/windows-defender-atp/security-analytics-dashboard-windows-defender-advanced-threat-protection).
+Microsoft Defender for Endpoint has been expanded with powerful analytics, security stack integration, and centralized management for better detection, prevention, investigation, response, and management. For more information, see [View the Microsoft Defender for Endpoint Security analytics dashboard](https://docs.microsoft.com/windows/threat-protection/windows-defender-atp/security-analytics-dashboard-windows-defender-advanced-threat-protection).
 
 ### Windows Defender Application Guard
 
@@ -149,7 +149,7 @@ Several network stack enhancements are available in this release. Some of these
 [Windows 10 Features](https://www.microsoft.com/windows/features): Review general information about Windows 10 features.<br>
 [What's New in Windows 10](https://docs.microsoft.com/windows/whats-new/): See what’s new in other versions of Windows 10.<br>
 [What's new in Windows 10, version 1709](https://docs.microsoft.com/windows-hardware/get-started/what-s-new-in-windows): See what’s new in Windows 10 hardware.<br>
-[Windows 10 Fall Creators Update Next Generation Security](https://www.youtube.com/watch?v=JDGMNFwyUg8): YouTube video about Windows Defender ATP in Windows 10, version 1709.
+[Windows 10 Fall Creators Update Next Generation Security](https://www.youtube.com/watch?v=JDGMNFwyUg8): YouTube video about Microsoft Defender for Endpoint in Windows 10, version 1709.
 [Threat protection on Windows 10](https://docs.microsoft.com/windows/security/threat-protection/):Detects advanced attacks and data breaches, automates security incidents and improves security posture.<br>
 
 
diff --git a/windows/whats-new/whats-new-windows-10-version-1803.md b/windows/whats-new/whats-new-windows-10-version-1803.md
index 93bcfb411b..f18ad34787 100644
--- a/windows/whats-new/whats-new-windows-10-version-1803.md
+++ b/windows/whats-new/whats-new-windows-10-version-1803.md
@@ -173,7 +173,7 @@ The new [security baseline for Windows 10 version 1803](https://docs.microsoft.c
 
 ### Microsoft Defender Antivirus
 
-Microsoft Defender Antivirus now shares detection status between M365 services and interoperates with Windows Defender ATP.  Additional policies have also been implemented to enhance cloud based protection, and new channels are available for emergency protection. For more information, see [Virus and threat protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection) and [Use next-gen technologies in Microsoft Defender Antivirus through cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus).
+Microsoft Defender Antivirus now shares detection status between M365 services and interoperates with Microsoft Defender for Endpoint.  Additional policies have also been implemented to enhance cloud based protection, and new channels are available for emergency protection. For more information, see [Virus and threat protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-security-center/wdsc-virus-threat-protection) and [Use next-gen technologies in Microsoft Defender Antivirus through cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus).
 
 ### Windows Defender Exploit Guard
 
@@ -181,15 +181,15 @@ Windows Defender Exploit Guard enhanced attack surface area reduction, extended
 
 For more information, see [Reduce attack surfaces](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/attack-surface-reduction)
 
-### Windows Defender ATP
+### Microsoft Defender for Endpoint
 
-[Windows Defender ATP](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection) has been enhanced with many new capabilities. For more information, see the following topics:
+[Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection) has been enhanced with many new capabilities. For more information, see the following topics:
 
-- [Query data using Advanced hunting in Windows Defender ATP](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection)
+- [Query data using Advanced hunting in Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection)
 - [Use Automated investigations to investigate and remediate threats](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/automated-investigations-windows-defender-advanced-threat-protection)
 - [Enable conditional access to better protect users, devices, and data](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/conditional-access-windows-defender-advanced-threat-protection)
 
-Also see [New capabilities of Windows Defender ATP further maximizing the effectiveness and robustness of endpoint security](https://blogs.windows.com/business/2018/04/17/new-capabilities-of-windows-defender-atp-further-maximizing-the-effectiveness-and-robustness-of-endpoint-security/#62FUJ3LuMXLQidVE.97)
+Also see [New capabilities of Microsoft Defender for Endpoint further maximizing the effectiveness and robustness of endpoint security](https://blogs.windows.com/business/2018/04/17/new-capabilities-of-windows-defender-atp-further-maximizing-the-effectiveness-and-robustness-of-endpoint-security/#62FUJ3LuMXLQidVE.97)
 
 ### Windows Defender Application Guard
 
@@ -233,5 +233,5 @@ Support in [Windows Defender Application Guard](#windows-defender-application-gu
 - [Windows 10 Features](https://www.microsoft.com/windows/features): Review general information about Windows 10 features.  
 - [What's New in Windows 10](https://docs.microsoft.com/windows/whats-new/): See what’s new in other versions of Windows 10.
 - [What's new in Windows 10, version 1709](https://docs.microsoft.com/windows-hardware/get-started/what-s-new-in-windows): See what’s new in Windows 10 hardware.
-- [Windows 10 Fall Creators Update Next Generation Security](https://www.youtube.com/watch?v=JDGMNFwyUg8): YouTube video about Windows Defender ATP in Windows 10, version 1709.
+- [Windows 10 Fall Creators Update Next Generation Security](https://www.youtube.com/watch?v=JDGMNFwyUg8): YouTube video about Microsoft Defender for Endpoint in Windows 10, version 1709.
 
diff --git a/windows/whats-new/whats-new-windows-10-version-1809.md b/windows/whats-new/whats-new-windows-10-version-1809.md
index 309ce421df..f748bb87cf 100644
--- a/windows/whats-new/whats-new-windows-10-version-1809.md
+++ b/windows/whats-new/whats-new-windows-10-version-1809.md
@@ -133,32 +133,32 @@ Windows Defender Credential Guard has always been an optional feature, but Windo
 
 A network connection is now required to set up a new device. As a result, we removed the “skip for now” option in the network setup page in Out Of Box Experience (OOBE). 
 
-### Windows Defender ATP
+### Microsoft Defender for Endpoint
 
-[Windows Defender ATP](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection) has been enhanced with many new capabilities. For more information, see the following topics:
+[Microsoft Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/windows-defender-advanced-threat-protection) has been enhanced with many new capabilities. For more information, see the following topics:
 
 - [Threat analytics](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/threat-analytics)<br>
-Threat Analytics is a set of interactive reports published by the Windows Defender ATP research team as soon as emerging threats and outbreaks are identified. The reports help security operations teams assess impact on their environment and provides recommended actions to contain, increase organizational resilience, and prevent specific threats.
+Threat Analytics is a set of interactive reports published by the Microsoft Defender for Endpoint research team as soon as emerging threats and outbreaks are identified. The reports help security operations teams assess impact on their environment and provides recommended actions to contain, increase organizational resilience, and prevent specific threats.
 
 - [Custom detection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-custom-detections)<br>
  With custom detections, you can create custom queries to monitor events for any kind of behavior such as suspicious or emerging threats. This can be done by leveraging the power of Advanced hunting through the creation of custom detection rules. 
 
 - [Managed security service provider (MSSP) support](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/mssp-support-windows-defender-advanced-threat-protection)<br>
-Windows Defender ATP adds support for this scenario by providing MSSP integration. 
+Microsoft Defender for Endpoint adds support for this scenario by providing MSSP integration. 
 The integration will allow MSSPs to take the following actions:
 Get access to MSSP customer's Windows Defender Security Center portal, fetch email notifications, and fetch alerts through security information and event management (SIEM) tools.
 
-- [Integration with Azure Security Center](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#integration-with-azure-security-center)<br>
-Windows Defender ATP integrates with Azure Security Center to provide a comprehensive server protection solution. With this integration Azure Security Center can leverage the power of Windows Defender ATP to provide improved threat detection for Windows Servers.
+- [Integration with Azure Defender](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#integration-with-azure-security-center)<br>
+Microsoft Defender for Endpoint integrates with Azure Defender to provide a comprehensive server protection solution. With this integration Azure Defender can leverage the power of Microsoft Defender for Endpoint to provide improved threat detection for Windows Servers.
 
 - [Integration with Microsoft Cloud App Security](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/microsoft-cloud-app-security-integration)<br>
-Microsoft Cloud App Security leverages Windows Defender ATP endpoint signals to allow direct visibility into cloud application usage including the use of unsupported cloud services (shadow IT) from all Windows Defender ATP monitored machines.
+Microsoft Cloud App Security leverages Microsoft Defender for Endpoint signals to allow direct visibility into cloud application usage including the use of unsupported cloud services (shadow IT) from all Microsoft Defender for Endpoint monitored machines.
 
 - [Onboard Windows Server 2019](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#windows-server-version-1803-and-windows-server-2019) <br>
-Windows Defender ATP now adds support for Windows Server 2019. You'll be able to onboard Windows Server 2019 in the same method available for Windows 10 client machines. 
+Microsoft Defender for Endpoint now adds support for Windows Server 2019. You'll be able to onboard Windows Server 2019 in the same method available for Windows 10 client machines. 
 
 - [Onboard previous versions of Windows](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/onboard-downlevel-windows-defender-advanced-threat-protection)<br>
-Onboard supported versions of Windows machines so that they can send sensor data to the Windows Defender ATP sensor
+Onboard supported versions of Windows machines so that they can send sensor data to the Microsoft Defender for Endpoint sensor
 
 ## Cloud Clipboard
 
diff --git a/windows/whats-new/whats-new-windows-10-version-1903.md b/windows/whats-new/whats-new-windows-10-version-1903.md
index aed8001e95..fe276072a2 100644
--- a/windows/whats-new/whats-new-windows-10-version-1903.md
+++ b/windows/whats-new/whats-new-windows-10-version-1903.md
@@ -66,7 +66,7 @@ SetupDiag is a command-line tool that can help diagnose why a Windows 10 update
 
 ### Windows Information Protection
 
-With this release, Windows Defender ATP extends discovery and protection of sensitive information with [Auto Labeling](https://docs.microsoft.com/windows/security/information-protection/windows-information-protection/how-wip-works-with-labels#how-wip-protects-automatically-classified-files). 
+With this release, Microsoft Defender for Endpoint extends discovery and protection of sensitive information with [Auto Labeling](https://docs.microsoft.com/windows/security/information-protection/windows-information-protection/how-wip-works-with-labels#how-wip-protects-automatically-classified-files). 
 
 ### Security configuration framework
 
@@ -80,15 +80,15 @@ The draft release of the [security configuration baseline settings](https://blog
 
 [Intune Security Baselines](https://docs.microsoft.com/intune/security-baselines) (Preview): Now includes many settings supported by Intune that you can use to help secure and protect your users and devices. You can automatically set these settings to values recommended by security teams.
 
-### Microsoft Defender Advanced Threat Protection (ATP):
+### Microsoft Defender for Endpoint
 
 - [Attack surface area reduction](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-attack-surface-reduction) – IT admins can configure devices with advanced web protection that enables them to define allow and deny lists for specific URL’s and IP addresses.
 - [Next generation protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10) – Controls have been extended to protection from ransomware, credential misuse, and attacks that are transmitted through removable storage.
     - Integrity enforcement capabilities – Enable remote runtime attestation of Windows 10 platform.
-    - Tamper-proofing capabilities – Uses virtualization-based security to isolate critical ATP security capabilities away from the OS and attackers.
-- [Platform support](https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Protecting-Windows-Server-with-Windows-Defender-ATP/ba-p/267114) – In addition to Windows 10, Windows Defender ATP’s functionality has been extended to support Windows 7 and Windows 8.1 clients, as well as macOS, Linux, and Windows Server with both its Endpoint Detection (EDR) and Endpoint Protection Platform (EPP) capabilities.
+    - Tamper-proofing capabilities – Uses virtualization-based security to isolate critical Microsoft Defender for Endpoint security capabilities away from the OS and attackers.
+- [Platform support](https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Protecting-Windows-Server-with-Windows-Defender-ATP/ba-p/267114) – In addition to Windows 10, Microsoft Defender for Endpoint’s functionality has been extended to support Windows 7 and Windows 8.1 clients, as well as macOS, Linux, and Windows Server with both its Endpoint Detection (EDR) and Endpoint Protection Platform (EPP) capabilities.
 
-### Microsoft Defender ATP next-gen protection technologies:
+### Microsoft Defender for Endpoint next-gen protection technologies:
 
 - **Advanced machine learning**: Improved with advanced machine learning and AI models that enable it to protect against apex attackers using innovative vulnerability exploit techniques, tools and malware.
 - **Emergency outbreak protection**: Provides emergency outbreak protection which will automatically update devices with new intelligence when a new outbreak has been detected.
diff --git a/windows/whats-new/whats-new-windows-10-version-20H2.md b/windows/whats-new/whats-new-windows-10-version-20H2.md
index 8600af198f..b5bcef856d 100644
--- a/windows/whats-new/whats-new-windows-10-version-20H2.md
+++ b/windows/whats-new/whats-new-windows-10-version-20H2.md
@@ -86,9 +86,9 @@ For more information about what's new in MDM, see [What's new in mobile device e
 
 ## Security
 
-### Microsoft Defender Advanced Threat Protection (ATP) 
+### Microsoft Defender for Endpoint
 
-This release includes improved support for non-ASCII file paths has been added for Microsoft Defender ATP Auto Incident Response (IR).
+This release includes improved support for non-ASCII file paths has been added for Microsoft Defender for Endpoint Auto Incident Response (IR).
 
 The [DisableAntiSpyware](https://docs.microsoft.com/windows-hardware/customize/desktop/unattend/security-malware-windows-defender-disableantispyware) parameter is deprecated in this release.
 

From 0769e70bc9c5f5fad9d0e2f01c600337d3c74154 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Thu, 12 Nov 2020 18:34:54 +0530
Subject: [PATCH 103/209] lsaldanha-4567381-batch14

rebranding
---
 .../microsoft-defender-atp/score.md           |  4 +-
 .../security-operations-dashboard.md          | 20 +++----
 .../microsoft-defender-atp/service-status.md  | 10 ++--
 .../set-device-value.md                       |  6 +-
 .../microsoft-defender-atp/software.md        |  4 +-
 .../stop-and-quarantine-file.md               |  6 +-
 .../supported-response-apis.md                |  4 +-
 .../switch-to-microsoft-defender-prepare.md   |  6 +-
 ...antec-to-microsoft-defender-atp-onboard.md |  2 +-
 ...antec-to-microsoft-defender-atp-prepare.md |  6 +-
 .../threat-analytics.md                       |  2 +-
 .../threat-and-vuln-mgt-event-timeline.md     |  4 +-
 .../threat-indicator-concepts.md              | 20 +++----
 .../threat-protection-integration.md          | 18 +++---
 .../threat-protection-reports.md              |  6 +-
 .../microsoft-defender-atp/ti-indicator.md    |  4 +-
 .../microsoft-defender-atp/time-settings.md   | 22 ++++----
 .../troubleshoot-asr.md                       |  2 +-
 .../troubleshoot-collect-support-log.md       | 12 ++--
 ...bleshoot-exploit-protection-mitigations.md |  2 +-
 .../troubleshoot-mdatp.md                     | 16 +++---
 .../microsoft-defender-atp/troubleshoot-np.md |  2 +-
 .../troubleshoot-onboarding-error-messages.md | 14 ++---
 .../troubleshoot-onboarding.md                | 56 +++++++++----------
 .../troubleshoot-siem.md                      | 14 ++---
 25 files changed, 131 insertions(+), 131 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/score.md b/windows/security/threat-protection/microsoft-defender-atp/score.md
index e0d37c9adc..d911b24cb2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/score.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md b/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md
index c564eb22ec..e0b381b7f9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/security-operations-dashboard.md
@@ -23,9 +23,9 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-secopsdashboard-abovefoldlink) 
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-secopsdashboard-abovefoldlink) 
 
 The **Security operations dashboard** is where the endpoint detection and response capabilities are surfaced. It provides a high level overview of where detections were seen and highlights where response actions are needed. 
 
@@ -59,7 +59,7 @@ Each group is further sub-categorized into their corresponding alert severity le
 
 For more information see, [Alerts overview](alerts-queue.md).
 
-Each row includes an alert severity category and a short description of the alert. You can click an alert to see its detailed view. For more information see,  [Investigate Microsoft Defender Advanced Threat Protection alerts](investigate-alerts.md) and [Alerts overview](alerts-queue.md).
+Each row includes an alert severity category and a short description of the alert. You can click an alert to see its detailed view. For more information see,  [Investigate Microsoft Defender for Endpoint alerts](investigate-alerts.md) and [Alerts overview](alerts-queue.md).
 
 
 ## Devices at risk
@@ -69,16 +69,16 @@ This tile shows you a list of devices with the highest number of active alerts.
 
 Click the name of the device to see details about that device. For more information see, [Investigate devices in the Microsoft Defender Advanced Threat Protection Devices list](investigate-machines.md).
 
-You can also click **Devices list** at the top of the tile to go directly to the **Devices list**, sorted by the number of active alerts. For more information see, [Investigate devices in the Microsoft Defender Advanced Threat Protection Devices list](investigate-machines.md).
+You can also click **Devices list** at the top of the tile to go directly to the **Devices list**, sorted by the number of active alerts. For more information see, [Investigate devices in the Microsoft Defender for Endpoint Devices list](investigate-machines.md).
 
 ## Devices with sensor issues
-The **Devices with sensor issues** tile provides information on the individual device’s ability to provide sensor data to the Microsoft Defender ATP service. It reports how many devices require attention and helps you identify problematic devices.
+The **Devices with sensor issues** tile provides information on the individual device’s ability to provide sensor data to the Microsoft Defender for Endpoint service. It reports how many devices require attention and helps you identify problematic devices.
 
 ![Devices with sensor issues tile](images/atp-tile-sensor-health.png)
 
 There are two status indicators that provide information on the number of devices that are not reporting properly to the service:
-- **Misconfigured** – These devices might partially be reporting sensor data to the Microsoft Defender ATP service and might have configuration errors that need to be corrected.
-- **Inactive** - Devices that have stopped reporting to the Microsoft Defender ATP service for more than seven days in the past month.
+- **Misconfigured** – These devices might partially be reporting sensor data to the Microsoft Defender for Endpoint service and might have configuration errors that need to be corrected.
+- **Inactive** - Devices that have stopped reporting to the Microsoft Defender for Endpoint service for more than seven days in the past month.
 
 When you click any of the groups, you’ll be directed to devices list, filtered according to your choice. For more information, see [Check sensor state](check-sensor-status.md) and [Investigate devices](investigate-machines.md).
 
@@ -87,7 +87,7 @@ The **Service health** tile informs you if the service is active or if there are
 
 ![The Service health tile shows an overall indicator of the service](images/status-tile.png)
 
-For more information on the service health, see [Check the Microsoft Defender ATP service health](service-status.md).
+For more information on the service health, see [Check the Microsoft Defender for Endpoint service health](service-status.md).
 
 
 ## Daily devices reporting
@@ -116,10 +116,10 @@ The tile shows you a list of user accounts with the most active alerts and the n
 
 Click the user account to see details about the user account. For more information see [Investigate a user account](investigate-user.md).
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-secopsdashboard-belowfoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-secopsdashboard-belowfoldlink)
 
 ## Related topics
-- [Understand the Microsoft Defender Advanced Threat Protection portal](use.md)
+- [Understand the Microsoft Defender for Endpoint portal](use.md)
 - [Portal overview](portal-overview.md)
 - [View the Threat & Vulnerability Management dashboard](tvm-dashboard-insights.md)
 - [View the Threat analytics dashboard and take recommended mitigation actions](threat-analytics.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/service-status.md b/windows/security/threat-protection/microsoft-defender-atp/service-status.md
index 1373591e5d..fb69f1e1c3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/service-status.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/service-status.md
@@ -17,19 +17,19 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Check the Microsoft Defender Advanced Threat Protection service health
+# Check the Microsoft Defender for Endpoint service health
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-servicestatus-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-servicestatus-abovefoldlink)
 
-**Service health** provides information on the current status of the Microsoft Defender ATP service. You'll be able to verify that the service health is healthy or if there are current issues. If there are issues, you'll see information such as when the issue was detected, what the preliminary root cause is, and the expected resolution time.
+**Service health** provides information on the current status of the Defender for Endpoint service. You'll be able to verify that the service health is healthy or if there are current issues. If there are issues, you'll see information such as when the issue was detected, what the preliminary root cause is, and the expected resolution time.
 
 You'll also see information on historical issues that have been resolved and details such as the date and time when the issue was resolved. When there are no issues on the service, you'll see a healthy status.
 
@@ -41,7 +41,7 @@ The **Service health** details page has the following tabs:
 - **Status history**
 
 ## Current status
-The **Current status** tab shows the current state of the Microsoft Defender ATP service. When the service is running smoothly a healthy service health is shown. If there are issues seen, the following service details are shown to help you gain better insight about the issue:
+The **Current status** tab shows the current state of the Defender for Endpoint service. When the service is running smoothly a healthy service health is shown. If there are issues seen, the following service details are shown to help you gain better insight about the issue:
 
 - Date and time for when the issue was detected
 - A short description of the issue
diff --git a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
index eb081b2ce2..b2a76a6693 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/set-device-value.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 ## API description
 
@@ -39,7 +39,7 @@ See [assign device values](tvm-assign-device-value.md) for more information.
 
 ## Permissions
 
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |    Permission    |    Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/software.md b/windows/security/threat-protection/microsoft-defender-atp/software.md
index bdd977b76d..617a6c15ec 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/software.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
index 1d98b043e9..a91edcf37d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
@@ -37,7 +37,7 @@ Stop execution of a file on a device and delete it.
 [!include[Device actions note](../../includes/machineactionsnote.md)]
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md b/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
index 0ad991db3c..109a115811 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/supported-response-apis.md
@@ -23,10 +23,10 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 > [!TIP]
-> Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-supported-response-apis-abovefoldlink) 
+> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-supported-response-apis-abovefoldlink) 
 
 Learn about the supported response-related API calls you can run and details such as the required request headers, and expected response from the calls.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
index 5896bc9f4e..1ee41dc125 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/switch-to-microsoft-defender-prepare.md
@@ -102,10 +102,10 @@ To enable communication between your devices and Microsoft Defender for Endpoint
 |--|--|--|
 |[Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR) |- [Windows 10](https://docs.microsoft.com/windows/release-information) <br/>- [Windows Server 2019](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019)<br/>- [Windows Server 1803 or later](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1803)  |[Configure machine proxy and internet connectivity settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet) |
 |EDR |- [Windows Server 2016](https://docs.microsoft.com/windows/release-information/status-windows-10-1607-and-windows-server-2016) <br/>- [Windows Server 2012 R2](https://docs.microsoft.com/windows/release-information/status-windows-8.1-and-windows-server-2012-r2)<br/>- [Windows Server 2008 R2 SP1](https://docs.microsoft.com/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1)<br/>- [Windows 8.1](https://docs.microsoft.com/windows/release-information/status-windows-8.1-and-windows-server-2012-r2)<br/>- [Windows 7 SP1](https://docs.microsoft.com/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1) |[Configure proxy and internet connectivity settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel#configure-proxy-and-internet-connectivity-settings) |
-|EDR  |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra)  |[Microsoft Defender ATP for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
+|EDR  |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra)  |[Microsoft Defender for Endpoint for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
 |[Microsoft Defender Antivirus](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10) |- [Windows 10](https://docs.microsoft.com/windows/release-information) <br/>- [Windows Server 2019](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019)<br/>- [Windows Server 1803 or later](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1803) <br/>- [Windows Server 2016](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-2016) |[Configure and validate Microsoft Defender Antivirus network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus)<br/> |
-|Antivirus |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra) |[Microsoft Defender ATP for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
-|Antivirus |Linux: <br/>- RHEL 7.2+<br/>- CentOS Linux 7.2+<br/>- Ubuntu 16 LTS, or higher LTS<br/>- SLES 12+<br/>- Debian 9+<br/>- Oracle Linux 7.2 |[Microsoft Defender ATP for Linux: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux#network-connections) |
+|Antivirus |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra) |[Microsoft Defender for Endpoint for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
+|Antivirus |Linux: <br/>- RHEL 7.2+<br/>- CentOS Linux 7.2+<br/>- Ubuntu 16 LTS, or higher LTS<br/>- SLES 12+<br/>- Debian 9+<br/>- Oracle Linux 7.2 |[Microsoft Defender for Endpoint for Linux: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux#network-connections) |
 
 ## Next step
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
index 38143cfd5f..2ff2a9a7c7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-onboard.md
@@ -71,7 +71,7 @@ To verify that your onboarded devices are properly connected to Microsoft Defend
 |---------|---------|
 |- Windows 10 <br/>- Windows Server 2019 <br/>- Windows Server, version 1803 <br/>- Windows Server 2016 <br/>- Windows Server 2012 R2     |See [Run a detection test](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/run-detection-test). <br/><br/>Visit the Microsoft Defender ATP demo scenarios site ([https://demo.wd.microsoft.com](https://demo.wd.microsoft.com)) and try one or more of the scenarios. For example, try the **Cloud-delivered protection** demo scenario.         |
 |macOS<br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave)<br/>- 10.13 (High Sierra)     |Download and use the DIY app at [https://aka.ms/mdatpmacosdiy](https://aka.ms/mdatpmacosdiy). <br/><br/>For more information, see [Microsoft Defender Advanced Threat Protection for Mac](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac).        |
-|Linux:<br/>- RHEL 7.2+<br/>- CentOS Linux 7.2+<br/>- Ubuntu 16 LTS, or higher LTS<br/>- SLES 12+<br/>- Debian 9+<br/>- Oracle Linux 7.2 |1. Run the following command, and look for a result of **1**: <br/>`mdatp health --field real_time_protection_enabled`. <br/><br/>2. Open a Terminal window, and run the following command: <br/>`curl -o ~/Downloads/eicar.com.txt https://www.eicar.org/download/eicar.com.txt`. <br/><br/>3. Run the following command to list any detected threats: <br/>`mdatp threat list`. <br/><br/>For more information, see [Microsoft Defender ATP for Linux](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux). |
+|Linux:<br/>- RHEL 7.2+<br/>- CentOS Linux 7.2+<br/>- Ubuntu 16 LTS, or higher LTS<br/>- SLES 12+<br/>- Debian 9+<br/>- Oracle Linux 7.2 |1. Run the following command, and look for a result of **1**: <br/>`mdatp health --field real_time_protection_enabled`. <br/><br/>2. Open a Terminal window, and run the following command: <br/>`curl -o ~/Downloads/eicar.com.txt https://www.eicar.org/download/eicar.com.txt`. <br/><br/>3. Run the following command to list any detected threats: <br/>`mdatp threat list`. <br/><br/>For more information, see [Microsoft Defender for Endpoint for Linux](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux). |
 
 ## Uninstall Symantec
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
index cc678c90eb..f4f06cbc7b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/symantec-to-microsoft-defender-atp-prepare.md
@@ -82,10 +82,10 @@ To enable communication between your devices and Microsoft Defender for Endpoint
 |:----|:----|:---|
 |[Endpoint detection and response](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-endpoint-detection-response) (EDR) |- [Windows 10](https://docs.microsoft.com/windows/release-information) <br/>- [Windows Server 2019](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019)<br/>- [Windows Server 1803 or later](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1803)  |[Configure machine proxy and internet connectivity settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet) |
 |EDR |- [Windows Server 2016](https://docs.microsoft.com/windows/release-information/status-windows-10-1607-and-windows-server-2016) <br/>- [Windows Server 2012 R2](https://docs.microsoft.com/windows/release-information/status-windows-8.1-and-windows-server-2012-r2)<br/>- [Windows Server 2008 R2 SP1](https://docs.microsoft.com/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1)<br/>- [Windows 8.1](https://docs.microsoft.com/windows/release-information/status-windows-8.1-and-windows-server-2012-r2)<br/>- [Windows 7 SP1](https://docs.microsoft.com/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1) |[Configure proxy and internet connectivity settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel#configure-proxy-and-internet-connectivity-settings) |
-|EDR  |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra)  |[Microsoft Defender ATP for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
+|EDR  |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra)  |[Microsoft Defender for Endpoint for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
 |[Microsoft Defender Antivirus](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10) |- [Windows 10](https://docs.microsoft.com/windows/release-information) <br/>- [Windows Server 2019](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019)<br/>- [Windows Server 1803 or later](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-1803) <br/>- [Windows Server 2016](https://docs.microsoft.com/windows-server/get-started/whats-new-in-windows-server-2016) |[Configure and validate Microsoft Defender Antivirus network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus)<br/> |
-|Antivirus |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra) |[Microsoft Defender ATP for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
-|Antivirus |Linux: <br/>- RHEL 7.2+<br/>- CentOS Linux 7.2+<br/>- Ubuntu 16 LTS, or higher LTS<br/>- SLES 12+<br/>- Debian 9+<br/>- Oracle Linux 7.2 |[Microsoft Defender ATP for Linux: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux#network-connections)  |
+|Antivirus |macOS: <br/>- 10.15 (Catalina)<br/>- 10.14 (Mojave) <br/>- 10.13 (High Sierra) |[Microsoft -Defender for Endpoint for Mac: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac#network-connections) |
+|Antivirus |Linux: <br/>- RHEL 7.2+<br/>- CentOS Linux 7.2+<br/>- Ubuntu 16 LTS, or higher LTS<br/>- SLES 12+<br/>- Debian 9+<br/>- Oracle Linux 7.2 |[Microsoft Defender for Endpoint for Linux: Network connections](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux#network-connections)  |
 
 ## Next step
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md b/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md
index 7736f20b59..cb44743101 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-analytics.md
@@ -25,7 +25,7 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 With more sophisticated adversaries and new threats emerging frequently and prevalently, it's critical to be able to quickly:
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md b/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
index 0e1e460db8..32cb4825cb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-event-timeline.md
@@ -24,9 +24,9 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 Event timeline is a risk news feed that helps you interpret how risk is introduced into the organization through new vulnerabilities or exploits. You can view events that may impact your organization's risk. For example, you can find new vulnerabilities that were introduced, vulnerabilities that became exploitable, exploit that was added to an exploit kit, and more.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md b/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md
index a7fc785038..b59077b758 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-indicator-concepts.md
@@ -23,15 +23,15 @@ ms.topic: conceptual
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-threatindicator-abovefoldlink) 
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-threatindicator-abovefoldlink) 
 
 Advanced cybersecurity attacks comprise of multiple complex malicious events, attributes, and contextual information. Identifying and deciding which of these activities qualify as suspicious can be a challenging task. Your knowledge of known attributes and abnormal activities specific to your industry is fundamental in knowing when to call an observed behavior as suspicious.
 
-With Microsoft Defender ATP, you can create custom threat alerts that can help you keep track of possible attack activities in your organization. You can flag suspicious events to piece together clues and possibly stop an attack chain. These custom threat alerts will only appear in your organization and will flag events that you set it to track.
+With Microsoft Defender for Endpoint, you can create custom threat alerts that can help you keep track of possible attack activities in your organization. You can flag suspicious events to piece together clues and possibly stop an attack chain. These custom threat alerts will only appear in your organization and will flag events that you set it to track.
 
 Before creating custom threat alerts, it's important to know the concepts behind alert definitions and indicators of compromise (IOCs) and the relationship between them.
 
@@ -42,9 +42,9 @@ Alert definitions are contextual attributes that can be used collectively to ide
 IOCs are individually-known malicious events that indicate that a network or device has already been breached. Unlike alert definitions, these indicators are considered as evidence of a breach. They are often seen after an attack has already been carried out and the objective has been reached, such as exfiltration. Keeping track of IOCs is also important during forensic investigations. Although it might not provide the ability to intervene with an attack chain, gathering these indicators can be useful in creating better defenses for possible future attacks.
 
 ## Relationship between alert definitions and IOCs
-In the context of Microsoft Defender ATP, alert definitions are containers for IOCs and defines the alert, including the metadata that is raised in case of a specific IOC match. Various metadata is provided as part of the alert definitions. Metadata such as alert definition name of attack, severity, and description is provided along with other options.
+In the context of Microsoft Defender for Endpoint, alert definitions are containers for IOCs and defines the alert, including the metadata that is raised in case of a specific IOC match. Various metadata is provided as part of the alert definitions. Metadata such as alert definition name of attack, severity, and description is provided along with other options.
 
-Each IOC defines the concrete detection logic based on its type and value as well as its action, which determines how it is matched. It is bound to a specific alert definition that defines how a detection is displayed as an alert on the Microsoft Defender ATP console.
+Each IOC defines the concrete detection logic based on its type and value as well as its action, which determines how it is matched. It is bound to a specific alert definition that defines how a detection is displayed as an alert on the Microsoft Defender for Endpoint console.
 
 Here is an example of an IOC:
 - Type: Sha1
@@ -58,11 +58,11 @@ IOCs have a many-to-one relationship with alert definitions such that an alert d
 Topic | Description
 :---|:---
 [Pull detections to your SIEM tools](configure-siem.md)| Learn about different ways to pull detections.
-[Enable SIEM integration in Microsoft Defender ATP](enable-siem-integration.md)| Learn about enabling the SIEM integration feature in the **Settings** page in the portal so that you can use and generate the required information to configure supported SIEM tools.
-[Configure Splunk to pull Microsoft Defender ATP detections](configure-splunk.md)| Learn about installing the REST API Modular Input App and other configuration settings to enable Splunk to pull Microsoft Defender ATP detections.
-[Configure HP ArcSight to pull Microsoft Defender ATP detections](configure-arcsight.md)| Learn about installing the HP ArcSight REST FlexConnector package and the files you need to configure ArcSight to pull Microsoft Defender ATP detections.
-[Microsoft Defender ATP Detection fields](api-portal-mapping.md) | Understand what data fields are exposed as part of the alerts API and how they map to Microsoft Defender Security Center.
-[Pull Microsoft Defender ATP detections using REST API](pull-alerts-using-rest-api.md) | Use the Client credentials OAuth 2.0 flow to pull detections from Microsoft Defender ATP using REST API.
+[Enable SIEM integration in Microsoft Defender for Endpoint](enable-siem-integration.md)| Learn about enabling the SIEM integration feature in the **Settings** page in the portal so that you can use and generate the required information to configure supported SIEM tools.
+[Configure Splunk to pull Microsoft Defender for Endpoint detections](configure-splunk.md)| Learn about installing the REST API Modular Input App and other configuration settings to enable Splunk to pull Microsoft Defender for Endpoint detections.
+[Configure HP ArcSight to pull Microsoft Defender for Endpoint detections](configure-arcsight.md)| Learn about installing the HP ArcSight REST FlexConnector package and the files you need to configure ArcSight to pull Microsoft Defender for Endpoint detections.
+[Microsoft Defender for Endpoint Detection fields](api-portal-mapping.md) | Understand what data fields are exposed as part of the alerts API and how they map to Microsoft Defender Security Center.
+[Pull Microsoft Defender for Endpoint detections using REST API](pull-alerts-using-rest-api.md) | Use the Client credentials OAuth 2.0 flow to pull detections from Microsoft Defender for Endpoint using REST API.
 [Troubleshoot SIEM tool integration issues](troubleshoot-siem.md) | Address issues you might encounter when using the SIEM integration feature.
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md
index 937906e7a6..6d2a5bffc3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration.md
@@ -18,37 +18,37 @@ ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
-# Microsoft Defender ATP and other Microsoft solutions
+# Microsoft Defender for Endpoint and other Microsoft solutions
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 ## Integrate with other Microsoft solutions
 
- Microsoft Defender ATP directly integrates with various Microsoft solutions.
+ Microsoft Defender for Endpoint directly integrates with various Microsoft solutions.
 
 ### Azure Advanced Threat Protection (Azure ATP)
- Suspicious activities are processes running under a user context. The integration between Microsoft Defender ATP and Azure ATP provides the flexibility of conducting cyber security investigation across activities and identities. 
+ Suspicious activities are processes running under a user context. The integration between Microsoft Defender for Endpoint and Azure ATP provides the flexibility of conducting cyber security investigation across activities and identities. 
 
 ### Azure Security Center
-Microsoft Defender ATP provides a comprehensive server protection solution, including endpoint detection and response (EDR) capabilities on Windows Servers.
+Microsoft Defender for Endpoint provides a comprehensive server protection solution, including endpoint detection and response (EDR) capabilities on Windows Servers.
 
 ### Azure Information Protection
 Keep sensitive data secure while enabling productivity in the workplace through data discovery and data protection.
 
 ### Conditional Access
-Microsoft Defender ATP's dynamic device risk score is integrated into the Conditional Access evaluation, ensuring that only secure devices have access to resources. 
+Microsoft Defender for Endpoint's dynamic device risk score is integrated into the Conditional Access evaluation, ensuring that only secure devices have access to resources. 
 
 
 ### Microsoft Cloud App Security
-Microsoft Cloud App Security leverages Microsoft Defender ATP endpoint signals to allow direct visibility into cloud application usage including the use of unsupported cloud services (shadow IT) from all Microsoft Defender ATP monitored devices.
+Microsoft Cloud App Security leverages Microsoft Defender for Endpoint endpoint signals to allow direct visibility into cloud application usage including the use of unsupported cloud services (shadow IT) from all Microsoft Defender for Endpoint monitored devices.
 
 ### Office 365 Advanced Threat Protection (Office 365 ATP)
-[Office 365 ATP](https://docs.microsoft.com/office365/securitycompliance/office-365-atp) helps protect your organization from malware in email messages or files through ATP Safe Links, ATP Safe Attachments, advanced Anti-Phishing, and spoof intelligence capabilities. The integration between Office 365 ATP and Microsoft Defender ATP enables security analysts to go upstream to investigate the entry point of an attack. Through threat intelligence sharing, attacks can be contained and blocked. 
+[Office 365 ATP](https://docs.microsoft.com/office365/securitycompliance/office-365-atp) helps protect your organization from malware in email messages or files through ATP Safe Links, ATP Safe Attachments, advanced Anti-Phishing, and spoof intelligence capabilities. The integration between Office 365 ATP and Microsoft Defender for Endpoint enables security analysts to go upstream to investigate the entry point of an attack. Through threat intelligence sharing, attacks can be contained and blocked. 
 
 >[!NOTE]
 > Office 365 ATP data is displayed for events within the last 30 days. For alerts, Office 365 ATP data is displayed based on first activity time. After that, the data is no longer available in Office 365 ATP.
@@ -57,7 +57,7 @@ Microsoft Cloud App Security leverages Microsoft Defender ATP endpoint signals t
 The Skype for Business integration provides a way for analysts to communicate with a potentially compromised user or device owner through a simple button from the portal.
 
 ## Microsoft Threat Protection
- With Microsoft Threat Protection, Microsoft Defender ATP and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate and automatically respond to sophisticated attacks. 
+ With Microsoft Threat Protection, Microsoft Defender for Endpoint and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate and automatically respond to sophisticated attacks. 
  
  [Learn more about Microsoft Threat Protection](https://docs.microsoft.com/microsoft-365/security/mtp/microsoft-threat-protection)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md
index 6690a9a308..221de57589 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/threat-protection-reports.md
@@ -17,13 +17,13 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Threat protection report in Microsoft Defender ATP
+# Threat protection report in Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 The threat protection report provides high-level information about alerts generated in your organization. The report includes trending information showing the detection sources, categories, severities, statuses, classifications, and determinations of alerts across time.
@@ -61,7 +61,7 @@ While the alert trends shows trending alert information, the alert summary shows
 ## Alert attributes
 The report is made up of cards that display the following alert attributes:
 
-- **Detection sources**: shows information about the sensors and detection technologies that provide the data used by Microsoft Defender ATP to trigger alerts.
+- **Detection sources**: shows information about the sensors and detection technologies that provide the data used by Microsoft Defender for Endpoint to trigger alerts.
 
 - **Threat categories**: shows the types of threat or attack activity that triggered alerts, indicating possible focus areas for your security operations.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
index a527797436..2b37172304 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ti-indicator.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 - See the corresponding [Indicators page](https://securitycenter.windows.com/preferences2/custom_ti_indicators/files) in the portal. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/time-settings.md b/windows/security/threat-protection/microsoft-defender-atp/time-settings.md
index 173c407eda..f8fe1639aa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/time-settings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/time-settings.md
@@ -23,11 +23,11 @@ ms.topic: article
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-settings-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-settings-abovefoldlink)
 
 Use the **Time zone** menu ![Time zone settings icon](images/atp-time-zone.png) to configure the time zone and view license information.
 
@@ -36,27 +36,27 @@ The aspect of time is important in the assessment and analysis of perceived and
 
 Cyberforensic investigations often rely on time stamps to piece together the sequence of events. It’s important that your system reflects the correct time zone settings.
 
-Microsoft Defender ATP can display either Coordinated Universal Time (UTC) or local time.
+Microsoft Defender for Endpoint can display either Coordinated Universal Time (UTC) or local time.
 
-Your current time zone setting is shown in the Microsoft Defender ATP menu. You can change the displayed time zone in the **Time zone** menu.
+Your current time zone setting is shown in the Microsoft Defender for Endpoint menu. You can change the displayed time zone in the **Time zone** menu.
 
 ![Time zone settings icon](images/atp-time-zone-menu.png).
 
 ### UTC time zone
-Microsoft Defender ATP uses UTC time by default.
+Microsoft Defender for Endpoint uses UTC time by default.
 
-Setting the Microsoft Defender ATP time zone to UTC will display all system timestamps (alerts, events, and others) in UTC for all users. This can help security analysts working in different locations across the globe to use the same time stamps while investigating events.
+Setting the Microsoft Defender for Endpoint time zone to UTC will display all system timestamps (alerts, events, and others) in UTC for all users. This can help security analysts working in different locations across the globe to use the same time stamps while investigating events.
 
 ### Local time zone
-You can choose to have Microsoft Defender ATP use local time zone settings. All alerts and events will be displayed using your local time zone.
+You can choose to have Microsoft Defender for Endpoint use local time zone settings. All alerts and events will be displayed using your local time zone.
 
-The local time zone is taken from your device’s regional settings. If you change your regional settings, the Microsoft Defender ATP time zone will also change. Choosing this setting means that the timestamps displayed in Microsoft Defender ATP will be aligned to local time for all Microsoft Defender ATP users. Analysts located in different global locations will now see the Microsoft Defender ATP alerts according to their regional settings.
+The local time zone is taken from your device’s regional settings. If you change your regional settings, the Microsoft Defender for Endpoint time zone will also change. Choosing this setting means that the timestamps displayed in Microsoft Defender for Endpoint will be aligned to local time for all Microsoft Defender for Endpoint users. Analysts located in different global locations will now see the Microsoft Defender for Endpoint alerts according to their regional settings.
 
 Choosing to use local time can be useful if the analysts are located in a single location. In this case it might be easier to correlate events to local time, for example – when a local user clicked on a suspicious email link.
 
 ### Set the time zone
-The Microsoft Defender ATP time zone is set by default to UTC.
-Setting the time zone also changes the times for all Microsoft Defender ATP views.
+The Microsoft Defender for Endpoint time zone is set by default to UTC.
+Setting the time zone also changes the times for all Microsoft Defender for Endpoint views.
 To set the time zone:
 
 1. Click the **Time zone** menu ![Time zone settings icon](images/atp-time-zone.png).
@@ -64,7 +64,7 @@ To set the time zone:
 3. Select **Timezone UTC** or your local time zone, for example -7:00.
 
 ### Regional settings
-To apply different date formats for Microsoft Defender ATP, use regional settings for Internet Explorer (IE) and Microsoft Edge (Edge). If you're using another browser such as Google Chrome, follow the required steps to change the time and date settings for that browser. 
+To apply different date formats for Microsoft Defender for Endpoint, use regional settings for Internet Explorer (IE) and Microsoft Edge (Edge). If you're using another browser such as Google Chrome, follow the required steps to change the time and date settings for that browser. 
 
 
 **Internet Explorer (IE) and Microsoft Edge**
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
index 5869c9d23d..f860930a0a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-asr.md
@@ -24,7 +24,7 @@ ms.custom: asr
 
 **Applies to:**
 
-* [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+* [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 When you use [attack surface reduction rules](attack-surface-reduction.md) you may run into issues, such as:
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
index 30017b4ca8..d61d81721d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-collect-support-log.md
@@ -17,20 +17,20 @@ ms.collection: M365-security-compliance
 ms.topic: troubleshooting
 ---
 
-# Collect support logs in Microsoft Defender ATP using live response 
+# Collect support logs in Microsoft Defender for Endpoint using live response 
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-When contacting support, you may be asked to provide the output package of the Microsoft Defender ATP Client Analyzer tool.
+When contacting support, you may be asked to provide the output package of the Microsoft Defender for Endpoint Client Analyzer tool.
 
 This topic provides instructions on how to run the tool via Live Response.
 
 1. Download the appropriate script
-    * Microsoft Defender ATP client sensor logs only: [LiveAnalyzer.ps1 script](https://aka.ms/MDATPLiveAnalyzer).
+    * Microsoft Defender for Endpoint client sensor logs only: [LiveAnalyzer.ps1 script](https://aka.ms/MDATPLiveAnalyzer).
       - Result package approximate size: ~100Kb 
-    *  Microsoft Defender ATP client sensor and Antivirus logs: [LiveAnalyzer+MDAV.ps1 script](https://aka.ms/MDATPLiveAnalyzerAV).
+    *  Microsoft Defender for Endpoint client sensor and Antivirus logs: [LiveAnalyzer+MDAV.ps1 script](https://aka.ms/MDATPLiveAnalyzerAV).
        - Result package approximate size: ~10Mb 
  
 2.	Initiate a [Live Response session](live-response.md#initiate-a-live-response-session-on-a-device) on the machine you need to investigate.
@@ -72,4 +72,4 @@ This topic provides instructions on how to run the tool via Live Response.
 >   GetFile "C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\MDATPClientAnalyzerResult.zip" -auto
 >   ```
 > 
-> - For more information on gathering data locally on a machine in case the machine isn't communicating with Microsoft Defender ATP cloud services, or does not appear in MDATP portal as expected, see [Verify client connectivity to Microsoft Defender ATP service URLs](configure-proxy-internet.md#verify-client-connectivity-to-microsoft-defender-atp-service-urls).
+> - For more information on gathering data locally on a machine in case the machine isn't communicating with Microsoft Defender for Endpoint cloud services, or does not appear in MDATP portal as expected, see [Verify client connectivity to Microsoft Defender for Endpoint service URLs](configure-proxy-internet.md#verify-client-connectivity-to-microsoft-defender-atp-service-urls).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md
index aff164b095..3b515a9853 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-exploit-protection-mitigations.md
@@ -23,7 +23,7 @@ manager: dansimp
 
 **Applies to:**
 
-* [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+* [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 When you create a set of exploit protection mitigations (known as a configuration), you might find that the configuration export and import process does not remove all unwanted mitigations.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md
index e044d0457b..01836bb8c5 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-mdatp.md
@@ -37,13 +37,13 @@ Make sure that `*.securitycenter.windows.com` is included the proxy allow list.
 > [!NOTE]
 > You must use the HTTPS protocol when adding the following endpoints.
 
-## Microsoft Defender ATP service shows event or error logs in the Event Viewer
+## Microsoft Defender for Endpoint service shows event or error logs in the Event Viewer
 
-See the topic [Review events and errors using Event Viewer](event-error-codes.md) for a list of event IDs that are reported by the Microsoft Defender ATP service. The topic also contains troubleshooting steps for event errors.
+See the topic [Review events and errors using Event Viewer](event-error-codes.md) for a list of event IDs that are reported by the Microsoft Defender for Endpoint service. The topic also contains troubleshooting steps for event errors.
 
-## Microsoft Defender ATP service fails to start after a reboot and shows error 577
+## Microsoft Defender for Endpoint service fails to start after a reboot and shows error 577
 
-If onboarding devices successfully completes but Microsoft Defender ATP does not start after a reboot and shows error 577, check that Windows Defender is not disabled by a policy.
+If onboarding devices successfully completes but Microsoft Defender for Endpoint does not start after a reboot and shows error 577, check that Windows Defender is not disabled by a policy.
 
 For more information, see [Ensure that Microsoft Defender Antivirus is not disabled by policy](troubleshoot-onboarding.md#ensure-that-microsoft-defender-antivirus-is-not-disabled-by-a-policy).
 
@@ -65,15 +65,15 @@ The following date and time formats are currently not supported:
 **Use of comma to indicate thousand**<br>
 Support of use of comma as a separator in numbers are not supported. Regions where a number is separated with a comma to indicate a thousand, will only see the use of a dot as a separator. For example, 15,5K is displayed as 15.5K.
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-troubleshoot-belowfoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-troubleshoot-belowfoldlink)
 
-## Microsoft Defender ATP tenant was automatically created in Europe
-When you use Azure Security Center to monitor servers, a Microsoft Defender ATP tenant is automatically created. The Microsoft Defender ATP data is stored in Europe by default.
+## Microsoft Defender for Endpoint tenant was automatically created in Europe
+When you use Azure Security Center to monitor servers, a Microsoft Defender for Endpoint tenant is automatically created. The Microsoft Defender for Endpoint data is stored in Europe by default.
 
 
 
 
 
 ## Related topics
-- [Troubleshoot Microsoft Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding.md)
+- [Troubleshoot Microsoft Defender for Endpoint onboarding issues](troubleshoot-onboarding.md)
 - [Review events and errors using Event Viewer](event-error-codes.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
index bea92c57cf..522973a893 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-np.md
@@ -23,7 +23,7 @@ manager: dansimp
 
 **Applies to:**
 
-* [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+* [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 * IT administrators
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
index 73945ccbcd..ce25cadea3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
@@ -24,19 +24,19 @@ ms.topic: troubleshooting
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-troublshootonboarding-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-troublshootonboarding-abovefoldlink)
 
 
-This page provides detailed steps to troubleshoot issues that might occur when setting up your Microsoft Defender ATP service.
+This page provides detailed steps to troubleshoot issues that might occur when setting up your Microsoft Defender for Endpoint service.
 
 If you receive an error message, Microsoft Defender Security Center will provide a detailed explanation on what the issue is and relevant links will be supplied.
 
 ## No subscriptions found
 
-If while accessing Microsoft Defender Security Center you get a **No subscriptions found** message, it means the Azure Active Directory (Azure AD) used to log in the user to the portal, does not have a Microsoft Defender ATP license.
+If while accessing Microsoft Defender Security Center you get a **No subscriptions found** message, it means the Azure Active Directory (Azure AD) used to log in the user to the portal, does not have a Microsoft Defender for Endpoint license.
 
 Potential reasons:
 - The Windows E5 and Office E5 licenses are separate licenses.
@@ -44,14 +44,14 @@ Potential reasons:
     - It could be a license provisioning issue.
     - It could be you inadvertently provisioned the license to a different Microsoft Azure AD than the one used for authentication into the service.
 
-For both cases, you should contact Microsoft support at [General Microsoft Defender ATP Support](https://support.microsoft.com/getsupport?wf=0&tenant=ClassicCommercial&oaspworkflow=start_1.0.0.0&locale=en-us&supportregion=en-us&pesid=16055&ccsid=636419533611396913) or
+For both cases, you should contact Microsoft support at [General Microsoft Defender for Endpoint Support](https://support.microsoft.com/getsupport?wf=0&tenant=ClassicCommercial&oaspworkflow=start_1.0.0.0&locale=en-us&supportregion=en-us&pesid=16055&ccsid=636419533611396913) or
 [Volume license support](https://www.microsoft.com/licensing/servicecenter/Help/Contact.aspx).
 
 ![Image of no subscriptions found](images/atp-no-subscriptions-found.png)
 
 ## Your subscription has expired
 
-If while accessing Microsoft Defender Security Center you get a **Your subscription has expired** message, your online service subscription has expired. Microsoft Defender ATP subscription, like any other online service subscription, has an expiration date. 
+If while accessing Microsoft Defender Security Center you get a **Your subscription has expired** message, your online service subscription has expired. Microsoft Defender for Endpoint subscription, like any other online service subscription, has an expiration date. 
 
 You can choose to renew or extend the license at any point in time. When accessing the portal after the expiration date a **Your subscription has expired** message will be presented with an option to download the device offboarding package, should you choose to not renew the license.
 
@@ -62,7 +62,7 @@ You can choose to renew or extend the license at any point in time. When accessi
 
 ## You are not authorized to access the portal
 
-If you receive a **You are not authorized to access the portal**, be aware that Microsoft Defender ATP is a security monitoring, incident investigation and response product, and as such, access to it is restricted and controlled by the user.
+If you receive a **You are not authorized to access the portal**, be aware that Microsoft Defender for Endpoint is a security monitoring, incident investigation and response product, and as such, access to it is restricted and controlled by the user.
 For more information, see, [**Assign user access to the portal**](https://docs.microsoft.com/windows/threat-protection/windows-defender-atp/assign-portal-access-windows-defender-advanced-threat-protection).
 
 ![Image of not authorized to access portal](images/atp-not-authorized-to-access-portal.png)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
index 673f3f624c..f6e7c7fc29 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding.md
@@ -17,18 +17,18 @@ ms.collection: M365-security-compliance
 ms.topic: troubleshooting
 ---
 
-# Troubleshoot Microsoft Defender Advanced Threat Protection onboarding issues
+# Troubleshoot Microsoft Defender for Endpoint onboarding issues
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - Windows Server 2012 R2
 - Windows Server 2016
 
-You might need to troubleshoot the Microsoft Defender ATP onboarding process if you encounter issues.
+You might need to troubleshoot the Microsoft Defender for Endpoint onboarding process if you encounter issues.
 This page provides detailed steps to troubleshoot onboarding issues that might occur when deploying with one of the deployment tools and common errors that might occur on the devices.
 
 ## Troubleshoot issues with onboarding tools
@@ -102,10 +102,10 @@ If none of the event logs and troubleshooting steps work, download the Local scr
 Error Code Hex | Error Code Dec | Error Description | OMA-URI | Possible cause and troubleshooting steps
 :---:|:---|:---|:---|:---
 0x87D1FDE8 | -2016281112 | Remediation failed | Onboarding <br> Offboarding | **Possible cause:** Onboarding or offboarding failed on a wrong blob: wrong signature or missing PreviousOrgIds fields. <br><br> **Troubleshooting steps:** <br> Check the event IDs in the [View agent onboarding errors in the device event log](#view-agent-onboarding-errors-in-the-device-event-log) section. <br><br> Check the MDM event logs in the following table or follow the instructions in [Diagnose MDM failures in Windows 10](https://docs.microsoft.com/windows/client-management/mdm/diagnose-mdm-failures-in-windows-10).
- | | | | Onboarding <br> Offboarding <br> SampleSharing | **Possible cause:** Microsoft Defender ATP Policy registry key does not exist or the OMA DM client doesn't have permissions to write to it. <br><br> **Troubleshooting steps:** Ensure that the following registry key exists: `HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection` <br> <br> If it doesn't exist, open an elevated command and add the key.
+ | | | | Onboarding <br> Offboarding <br> SampleSharing | **Possible cause:** Microsoft Defender for Endpoint Policy registry key does not exist or the OMA DM client doesn't have permissions to write to it. <br><br> **Troubleshooting steps:** Ensure that the following registry key exists: `HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection` <br> <br> If it doesn't exist, open an elevated command and add the key.
  | | | | SenseIsRunning <br> OnboardingState <br> OrgId |  **Possible cause:** An attempt to remediate by read-only property. Onboarding has failed. <br><br> **Troubleshooting steps:** Check the troubleshooting steps in [Troubleshoot onboarding issues on the device](#troubleshoot-onboarding-issues-on-the-device). <br><br> Check the MDM event logs in the following table or follow the instructions in [Diagnose MDM failures in Windows 10](https://docs.microsoft.com/windows/client-management/mdm/diagnose-mdm-failures-in-windows-10).
- | | | | All | **Possible cause:** Attempt to deploy Microsoft Defender ATP on non-supported SKU/Platform, particularly Holographic SKU. <br><br> Currently supported platforms:<br> Enterprise, Education, and Professional.<br> Server is not supported.
- 0x87D101A9 | -2016345687 |SyncML(425): The requested command failed because the sender does not have adequate access control permissions (ACL) on the recipient. | All |  **Possible cause:** Attempt to deploy Microsoft Defender ATP on non-supported SKU/Platform, particularly Holographic SKU.<br><br> Currently supported platforms:<br>  Enterprise, Education, and Professional.
+ | | | | All | **Possible cause:** Attempt to deploy Microsoft Defender for Endpoint on non-supported SKU/Platform, particularly Holographic SKU. <br><br> Currently supported platforms:<br> Enterprise, Education, and Professional.<br> Server is not supported.
+ 0x87D101A9 | -2016345687 |SyncML(425): The requested command failed because the sender does not have adequate access control permissions (ACL) on the recipient. | All |  **Possible cause:** Attempt to deploy Microsoft Defender for Endpoint on non-supported SKU/Platform, particularly Holographic SKU.<br><br> Currently supported platforms:<br>  Enterprise, Education, and Professional.
 
 #### Known issues with non-compliance
 
@@ -127,11 +127,11 @@ Channel name: Admin
 
 ID | Severity | Event description | Troubleshooting steps
 :---|:---|:---|:---
-1819 | Error | Microsoft Defender Advanced Threat Protection CSP: Failed to Set Node's Value. NodeId: (%1), TokenName: (%2), Result: (%3). | Download the [Cumulative Update for Windows 10, 1607](https://go.microsoft.com/fwlink/?linkid=829760).
+1819 | Error | Microsoft Defender for Endpoint CSP: Failed to Set Node's Value. NodeId: (%1), TokenName: (%2), Result: (%3). | Download the [Cumulative Update for Windows 10, 1607](https://go.microsoft.com/fwlink/?linkid=829760).
 
 ## Troubleshoot onboarding issues on the device
 
-If the deployment tools used does not indicate an error in the onboarding process, but devices are still not appearing in the devices list in an hour, go through the following verification topics to check if an error occurred with the Microsoft Defender ATP agent.
+If the deployment tools used does not indicate an error in the onboarding process, but devices are still not appearing in the devices list in an hour, go through the following verification topics to check if an error occurred with the Microsoft Defender for Endpoint agent.
 
 - [View agent onboarding errors in the device event log](#view-agent-onboarding-errors-in-the-device-event-log)
 - [Ensure the diagnostic data service is enabled](#ensure-the-diagnostics-service-is-enabled)
@@ -146,7 +146,7 @@ If the deployment tools used does not indicate an error in the onboarding proces
 2. In the **Event Viewer (Local)** pane, expand **Applications and Services Logs** > **Microsoft** > **Windows** > **SENSE**.
 
    > [!NOTE]
-   > SENSE is the internal name used to refer to the behavioral sensor that powers Microsoft Defender ATP.
+   > SENSE is the internal name used to refer to the behavioral sensor that powers Microsoft Defender for Endpoint.
 
 3. Select **Operational** to load the log.
 
@@ -160,17 +160,17 @@ If the deployment tools used does not indicate an error in the onboarding proces
 
 Event ID | Message | Resolution steps
 :---:|:---|:---
- `5` | Microsoft Defender Advanced Threat Protection service failed to connect to the server at _variable_ | [Ensure the device has Internet access](#ensure-the-device-has-an-internet-connection).
- `6` | Microsoft Defender Advanced Threat Protection service is not onboarded and no onboarding parameters were found. Failure code: _variable_ | [Run the onboarding script again](configure-endpoints-script.md).
- `7` | Microsoft Defender Advanced Threat Protection service failed to read the onboarding parameters. Failure code: _variable_ | [Ensure the device has Internet access](#ensure-the-device-has-an-internet-connection), then run the entire onboarding process again.
- `9` | Microsoft Defender Advanced Threat Protection service failed to change its start type. Failure code: variable | If the event happened during onboarding, reboot and re-attempt running the onboarding script. For more information, see [Run the onboarding script again](configure-endpoints-script.md). <br><br>If the event happened during offboarding, contact support.
-`10` | Microsoft Defender Advanced Threat Protection service failed to persist the onboarding information. Failure code: variable | If the event happened during onboarding, re-attempt running the onboarding script. For more information, see [Run the onboarding script again](configure-endpoints-script.md). <br><br>If the problem persists, contact support.
-`15` | Microsoft Defender Advanced Threat Protection cannot start command channel with URL: _variable_ | [Ensure the device has Internet access](#ensure-the-device-has-an-internet-connection).
-`17` | Microsoft Defender Advanced Threat Protection service failed to change the Connected User Experiences and Telemetry service location. Failure code: variable | [Run the onboarding script again](configure-endpoints-script.md). If the problem persists, contact support.
-`25` | Microsoft Defender Advanced Threat Protection service failed to reset health status in the registry. Failure code: _variable_ | Contact support.
-`27` | Failed to enable Microsoft Defender Advanced Threat Protection mode in Windows Defender. Onboarding process failed. Failure code: variable | Contact support.
+ `5` | Microsoft Defender for Endpoint service failed to connect to the server at _variable_ | [Ensure the device has Internet access](#ensure-the-device-has-an-internet-connection).
+ `6` | Microsoft Defender for Endpoint service is not onboarded and no onboarding parameters were found. Failure code: _variable_ | [Run the onboarding script again](configure-endpoints-script.md).
+ `7` | Microsoft Defender for Endpoint service failed to read the onboarding parameters. Failure code: _variable_ | [Ensure the device has Internet access](#ensure-the-device-has-an-internet-connection), then run the entire onboarding process again.
+ `9` | Microsoft Defender for Endpoint service failed to change its start type. Failure code: variable | If the event happened during onboarding, reboot and re-attempt running the onboarding script. For more information, see [Run the onboarding script again](configure-endpoints-script.md). <br><br>If the event happened during offboarding, contact support.
+`10` | Microsoft Defender for Endpoint service failed to persist the onboarding information. Failure code: variable | If the event happened during onboarding, re-attempt running the onboarding script. For more information, see [Run the onboarding script again](configure-endpoints-script.md). <br><br>If the problem persists, contact support.
+`15` | Microsoft Defender for Endpoint cannot start command channel with URL: _variable_ | [Ensure the device has Internet access](#ensure-the-device-has-an-internet-connection).
+`17` | Microsoft Defender for Endpoint service failed to change the Connected User Experiences and Telemetry service location. Failure code: variable | [Run the onboarding script again](configure-endpoints-script.md). If the problem persists, contact support.
+`25` | Microsoft Defender for Endpoint service failed to reset health status in the registry. Failure code: _variable_ | Contact support.
+`27` | Failed to enable Microsoft Defender for Endpoint mode in Windows Defender. Onboarding process failed. Failure code: variable | Contact support.
 `29` | Failed to read the offboarding parameters. Error type: %1, Error code: %2, Description: %3 | Ensure the device has Internet access, then run the entire offboarding process again.
-`30` | Failed to disable $(build.sense.productDisplayName) mode in Microsoft Defender Advanced Threat Protection. Failure code: %1 | Contact support.
+`30` | Failed to disable $(build.sense.productDisplayName) mode in Microsoft Defender for Endpoint. Failure code: %1 | Contact support.
 `32` | $(build.sense.productDisplayName) service failed to request to stop itself after offboarding process. Failure code: %1 | Verify that the service start type is manual and reboot the device.
 `55` | Failed to create the Secure ETW autologger. Failure code: %1 | Reboot the device.
 `63` | Updating the start type of external service. Name: %1, actual start type: %2, expected start type: %3, exit code: %4 | Identify what is causing changes in start type of mentioned service. If the exit code is not 0, fix the start type manually to expected start type.
@@ -180,7 +180,7 @@ Event ID | Message | Resolution steps
 
 <br />
 
-There are additional components on the device that the Microsoft Defender ATP agent depends on to function properly. If there are no onboarding related errors in the Microsoft Defender ATP agent event log, proceed with the following steps to ensure that the additional components are configured correctly.
+There are additional components on the device that the Microsoft Defender for Endpoint agent depends on to function properly. If there are no onboarding related errors in the Microsoft Defender for Endpoint agent event log, proceed with the following steps to ensure that the additional components are configured correctly.
 
 <span id="ensure-the-diagnostics-service-is-enabled" />
 
@@ -242,11 +242,11 @@ First, you should check that the service is set to start automatically when Wind
 
 ### Ensure the device has an Internet connection
 
-The Window Defender ATP sensor requires Microsoft Windows HTTP (WinHTTP) to report sensor data and communicate with the Microsoft Defender ATP service.
+The Window Defender ATP sensor requires Microsoft Windows HTTP (WinHTTP) to report sensor data and communicate with the Microsoft Defender for Endpoint service.
 
 WinHTTP is independent of the Internet browsing proxy settings and other user context applications and must be able to detect the proxy servers that are available in your particular environment.
 
-To ensure that sensor has service connectivity, follow the steps described in the [Verify client connectivity to Microsoft Defender ATP service URLs](configure-proxy-internet.md#verify-client-connectivity-to-microsoft-defender-atp-service-urls) topic.
+To ensure that sensor has service connectivity, follow the steps described in the [Verify client connectivity to Microsoft Defender for Endpoint service URLs](configure-proxy-internet.md#verify-client-connectivity-to-microsoft-defender-atp-service-urls) topic.
 
 If the verification fails and your environment is using a proxy to connect to the Internet, then follow the steps described in [Configure proxy and Internet connectivity settings](configure-proxy-internet.md) topic.
 
@@ -257,11 +257,11 @@ If the verification fails and your environment is using a proxy to connect to th
 >
 > The update ensures that Microsoft Defender Antivirus cannot be turned off on client devices via system policy.
 
-**Problem**: The Microsoft Defender ATP service does not start after onboarding.
+**Problem**: The Microsoft Defender for Endpoint service does not start after onboarding.
 
 **Symptom**: Onboarding successfully completes, but you see error 577 or error 1058 when trying to start the service.
 
-**Solution**: If your devices are running a third-party antimalware client, the Microsoft Defender ATP agent needs the Early Launch Antimalware (ELAM) driver to be enabled. You must ensure that it's not turned off by a system policy.
+**Solution**: If your devices are running a third-party antimalware client, the Microsoft Defender for Endpoint agent needs the Early Launch Antimalware (ELAM) driver to be enabled. You must ensure that it's not turned off by a system policy.
 
 - Depending on the tool that you use to implement policies, you'll need to verify that the following Windows Defender policies are cleared:
 
@@ -297,9 +297,9 @@ If you encounter issues while onboarding a server, go through the following veri
 
 You might also need to check the following:
 
-- Check that there is a Microsoft Defender Advanced Threat Protection Service running in the **Processes** tab in **Task Manager**. For example:
+- Check that there is a Microsoft Defender for Endpoint Service running in the **Processes** tab in **Task Manager**. For example:
 
-    ![Image of process view with Microsoft Defender Advanced Threat Protection Service running](images/atp-task-manager.png)
+    ![Image of process view with Microsoft Defender for Endpoint Service running](images/atp-task-manager.png)
 
 - Check **Event Viewer** > **Applications and Services Logs** > **Operation Manager** to see if there are any errors.
 
@@ -325,7 +325,7 @@ The steps below provide guidance for the following scenario:
 - In this scenario, the SENSE service will not start automatically even though onboarding package was deployed
 
 > [!NOTE]
-> The following steps are only relevant when using Microsoft Endpoint Configuration Manager. For more details about onboarding using Microsoft Endpoint Configuration Manager, see [Microsoft Defender Advanced Threat Protection](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/windows-defender-advanced-threat-protection).
+> The following steps are only relevant when using Microsoft Endpoint Configuration Manager. For more details about onboarding using Microsoft Endpoint Configuration Manager, see [Microsoft Defender for Endpoint](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/windows-defender-advanced-threat-protection).
 
 1. Create an application in Microsoft Endpoint Configuration Manager.
 
@@ -447,6 +447,6 @@ The steps below provide guidance for the following scenario:
 
 ## Related topics
 
-- [Troubleshoot Microsoft Defender ATP](troubleshoot-mdatp.md)
+- [Troubleshoot Microsoft Defender for Endpoint](troubleshoot-mdatp.md)
 - [Onboard devices](onboard-configure.md)
 - [Configure device proxy and Internet connectivity settings](configure-proxy-internet.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md
index 765a21fe20..e98e9a3f71 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-siem.md
@@ -23,7 +23,7 @@ ms.topic: troubleshooting
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 
@@ -75,11 +75,11 @@ If you encounter an error when trying to enable the SIEM connector application,
 
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-troubleshootsiem-belowfoldlink) 
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-troubleshootsiem-belowfoldlink) 
 
 ## Related topics
-- [Enable SIEM integration in Microsoft Defender ATP](enable-siem-integration.md)
-- [Configure ArcSight to pull Microsoft Defender ATP detections](configure-arcsight.md)
-- [Configure Splunk to pull Microsoft Defender ATP detections](configure-splunk.md)
-- [Microsoft Defender ATP Detection fields](api-portal-mapping.md)
-- [Pull Microsoft Defender ATP detections using REST API](pull-alerts-using-rest-api.md)
+- [Enable SIEM integration in Microsoft Defender for Endpoint](enable-siem-integration.md)
+- [Configure ArcSight to pull Microsoft Defender for Endpoint detections](configure-arcsight.md)
+- [Configure Splunk to pull Microsoft Defender for Endpoint detections](configure-splunk.md)
+- [Microsoft Defender for Endpoint Detection fields](api-portal-mapping.md)
+- [Pull Microsoft Defender for Endpoint detections using REST API](pull-alerts-using-rest-api.md)

From 5d7a5a9450585db474a01585a10974bd162fc5b9 Mon Sep 17 00:00:00 2001
From: DanPandre <54847950+DanPandre@users.noreply.github.com>
Date: Thu, 12 Nov 2020 09:18:42 -0500
Subject: [PATCH 104/209] Update surfacehub-csp.md

Added SleepMode documentation
---
 windows/client-management/mdm/surfacehub-csp.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/windows/client-management/mdm/surfacehub-csp.md b/windows/client-management/mdm/surfacehub-csp.md
index 330dddba01..f359333477 100644
--- a/windows/client-management/mdm/surfacehub-csp.md
+++ b/windows/client-management/mdm/surfacehub-csp.md
@@ -474,6 +474,16 @@ The following diagram shows the SurfaceHub CSP management objects in tree format
 
 <p style="margin-left: 20px">The data type is integer. Supported operation is Get and Replace.
 
+<a href="" id="properties-sleepmode"></a>**Properties/SleepMode**
+<p style="margin-left: 20px">Added in Windows 10, version 20H2. Specifies the type of sleep mode for the Surface Hub.
+
+<p style="margin-left: 20px">Valid values:
+
+-   0 - Connected Standby (default)
+-   1 - Hibernate
+
+<p style="margin-left: 20px">The data type is integer. Supported operation is Get and Replace.
+
 <a href="" id="properties-allowsessionresume"></a>**Properties/AllowSessionResume**  
 <p style="margin-left: 20px">Added in Windows 10, version 1703. Specifies whether to allow the ability to resume a session when the session times out. 
 

From 240e29b0064234b17d5b3918ff3eea5985c81004 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Thu, 12 Nov 2020 21:24:36 +0530
Subject: [PATCH 105/209] updated-45673810-batch15

rebranding
---
 .../tvm-assign-device-value.md                |  4 +-
 .../tvm-dashboard-insights.md                 | 10 ++--
 .../tvm-end-of-support-software.md            |  4 +-
 .../microsoft-defender-atp/tvm-exception.md   |  4 +-
 .../tvm-exposure-score.md                     |  4 +-
 .../tvm-hunt-exposed-devices.md               |  4 +-
 .../tvm-microsoft-secure-score-devices.md     |  4 +-
 .../tvm-prerequisites.md                      |  6 +--
 .../microsoft-defender-atp/tvm-remediation.md | 10 ++--
 .../tvm-security-recommendation.md            |  4 +-
 .../tvm-software-inventory.md                 | 10 ++--
 .../tvm-supported-os.md                       |  6 +--
 .../tvm-vulnerable-devices-report.md          |  6 +--
 .../microsoft-defender-atp/tvm-weaknesses.md  |  8 ++--
 .../tvm-zero-day-vulnerabilities.md           |  4 +-
 .../unisolate-machine.md                      |  6 +--
 .../unrestrict-code-execution.md              |  6 +--
 .../microsoft-defender-atp/update-alert.md    |  6 +--
 .../microsoft-defender-atp/use.md             |  8 ++--
 .../microsoft-defender-atp/user-roles.md      |  6 +--
 .../microsoft-defender-atp/user.md            |  4 +-
 .../view-incidents-queue.md                   |  4 +-
 .../microsoft-defender-atp/vulnerability.md   |  4 +-
 .../web-content-filtering.md                  | 10 ++--
 .../web-protection-monitoring.md              |  2 +-
 .../web-protection-overview.md                |  6 +--
 .../web-protection-response.md                | 10 ++--
 .../whats-new-in-microsoft-defender-atp.md    | 48 +++++++++----------
 28 files changed, 104 insertions(+), 104 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
index 7e59c7cb67..3e49cdb1c3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-assign-device-value.md
@@ -25,10 +25,10 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
index 004ad94602..9209d6a0bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-dashboard-insights.md
@@ -24,12 +24,12 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
-Threat and vulnerability management is a component of Microsoft Defender ATP, and provides both security administrators and security operations teams with unique value, including:
+Threat and vulnerability management is a component of Microsoft Defender for Endpoint, and provides both security administrators and security operations teams with unique value, including:
 
 - Real-time endpoint detection and response (EDR) insights correlated with endpoint vulnerabilities
 - Invaluable device vulnerability context during incident investigations
@@ -51,7 +51,7 @@ Watch this video for a quick overview of what is in the threat and vulnerability
 
 ## Threat and vulnerability management dashboard
 
- ![Microsoft Defender Advanced Threat Protection portal](images/tvm-dashboard-devices.png)
+ ![Microsoft Defender for Endpoint portal](images/tvm-dashboard-devices.png)
 
 Area | Description
 :---|:---
@@ -64,7 +64,7 @@ Area | Description
 **Top remediation activities** | Track the remediation activities generated from the security recommendations. You can select each item on the list to see the details in the **Remediation** page or select **Show more** to view the rest of the remediation activities, and active exceptions.
 **Top exposed devices** | View exposed device names and their exposure level. Select a device name from the list to go to the device page where you can view the alerts, risks, incidents, security recommendations, installed software, and discovered vulnerabilities associated with the exposed devices. Select **Show more** to see the rest of the exposed devices list. From the devices list, you can manage tags, initiate automated investigations, initiate a live response session, collect an investigation package, run antivirus scan, restrict app execution, and isolate device.
 
-For more information on the icons used throughout the portal, see [Microsoft Defender ATP icons](portal-overview.md#microsoft-defender-atp-icons).
+For more information on the icons used throughout the portal, see [Microsoft Defender for Endpoint icons](portal-overview.md#microsoft-defender-atp-icons).
 
 ## Related topics
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
index aaab188cac..1b100207a8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-end-of-support-software.md
@@ -24,10 +24,10 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 End-of-support (EOS), otherwise known as end-of-life (EOL), for software or software versions means that they will no longer be supported or serviced, and will not receive security updates. When you use software or software versions with ended support, you're exposing your organization to security vulnerabilities, legal, and financial risks.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
index dcd537fb96..fe74fafa7c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
@@ -24,10 +24,10 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 Sometimes, you may not be able to take the remediation steps suggested by a security recommendation. If that is the case, threat and vulnerability management gives you an avenue to create an exception.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
index d23e973e81..5cd211d354 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
@@ -24,10 +24,10 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 Your exposure score is visible in the [Threat and vulnerability management dashboard](tvm-dashboard-insights.md) of the Microsoft Defender Security Center. It reflects how vulnerable your organization is to cybersecurity threats. Low exposure score means your devices are less vulnerable from exploitation.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md
index d530052017..2ce01e4071 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-hunt-exposed-devices.md
@@ -25,10 +25,10 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 ## Use advanced hunting to find devices with vulnerabilities
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md
index ea67db383d..36959192bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-microsoft-secure-score-devices.md
@@ -24,7 +24,7 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
 >[!NOTE]
@@ -42,7 +42,7 @@ Select a category to go to the [**Security recommendations**](tvm-security-recom
 
 ## Turn on the Microsoft Secure Score connector
 
-Forward Microsoft Defender ATP signals, giving Microsoft Secure Score visibility into the device security posture. Forwarded data is stored and processed in the same location as your Microsoft Secure Score data.
+Forward Microsoft Defender for Endpoint signals, giving Microsoft Secure Score visibility into the device security posture. Forwarded data is stored and processed in the same location as your Microsoft Secure Score data.
 
 Changes might take up to a few hours to reflect in the dashboard.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
index 62b6d8fcfc..6f64c59f54 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-prerequisites.md
@@ -23,14 +23,14 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 Ensure that your devices:
 
-- Are onboarded to Microsoft Defender Advanced Threat Protection
+- Are onboarded to Microsoft Defender for Endpoint
 - Run [supported operating systems and platforms](tvm-supported-os.md)
 - Have the following mandatory updates installed and deployed in your network to boost your vulnerability assessment detection rates:
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
index 41b47476e8..6d0138ffe6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-remediation.md
@@ -23,20 +23,20 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 ## Request remediation
 
-The threat and vulnerability management capability in Microsoft Defender ATP bridges the gap between Security and IT administrators through the remediation request workflow. Security admins like you can request for the IT Administrator to remediate a vulnerability from the **Security recommendation** pages to Intune.
+The threat and vulnerability management capability in Microsoft Defender for Endpoint bridges the gap between Security and IT administrators through the remediation request workflow. Security admins like you can request for the IT Administrator to remediate a vulnerability from the **Security recommendation** pages to Intune.
 
 ### Enable Microsoft Intune connection
 
 To use this capability, enable your Microsoft Intune connections. In the Microsoft Defender Security Center, navigate to **Settings** > **General** > **Advanced features**. Scroll down and look for **Microsoft Intune connection**. By default, the toggle is turned off. Turn your **Microsoft Intune connection** toggle **On**.
 
-See [Use Intune to remediate vulnerabilities identified by Microsoft Defender ATP](https://docs.microsoft.com/intune/atp-manage-vulnerabilities) for details.
+See [Use Intune to remediate vulnerabilities identified by Microsoft Defender for Endpoint](https://docs.microsoft.com/intune/atp-manage-vulnerabilities) for details.
 
 ### Remediation request steps
 
@@ -50,7 +50,7 @@ See [Use Intune to remediate vulnerabilities identified by Microsoft Defender AT
 
 5. Go to the [**Remediation**](tvm-remediation.md) page to view the status of your remediation request.
 
-If you want to check how the ticket shows up in Intune, see [Use Intune to remediate vulnerabilities identified by Microsoft Defender ATP](https://docs.microsoft.com/intune/atp-manage-vulnerabilities) for details.
+If you want to check how the ticket shows up in Intune, see [Use Intune to remediate vulnerabilities identified by Microsoft Defender for Endpoint](https://docs.microsoft.com/intune/atp-manage-vulnerabilities) for details.
 
 >[!NOTE]
 >If your request involves remediating more than 10,000 devices, we can only send 10,000 devices for remediation to Intune.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
index b4ffcd5ce4..43e52983d3 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
@@ -24,10 +24,10 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 Cybersecurity weaknesses identified in your organization are mapped to actionable security recommendations and prioritized by their impact. Prioritized recommendations help shorten the time to mitigate or remediate vulnerabilities and drive compliance.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
index bff224c503..c8bd26da4e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
@@ -23,16 +23,16 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 The software inventory in threat and vulnerability management is a list of known software in your organization with official [Common Platform Enumerations (CPE)](https://nvd.nist.gov/products/cpe). Software products without an official CPE don’t have vulnerabilities published. It also includes details such as the name of the vendor, number of weaknesses, threats, and number of exposed devices.
 
 ## How it works
 
-In the field of discovery, we're leveraging the same set of signals that is responsible for detection and vulnerability assessment in [Microsoft Defender ATP endpoint detection and response capabilities](overview-endpoint-detection-response.md).
+In the field of discovery, we're leveraging the same set of signals that is responsible for detection and vulnerability assessment in [Microsoft Defender for Endpoint detection and response capabilities](overview-endpoint-detection-response.md).
 
 Since it's real time, in a matter of minutes, you'll see vulnerability information as they get discovered. The engine automatically grabs information from multiple security feeds. In fact, you'll see if a particular software is connected to a live threat campaign. It also provides a link to a Threat Analytics report soon as it's available.
 
@@ -43,7 +43,7 @@ Access the Software inventory page by selecting **Software inventory** from the
 View software on specific devices in the individual devices pages from the [devices list](machines-view-overview.md).
 
 >[!NOTE]
->If you search for software using the Microsoft Defender ATP global search, make sure to put an underscore instead of a space. For example, for the best search results you'd write "windows_10" instead of "Windows 10".
+>If you search for software using the Microsoft Defender for Endpoint global search, make sure to put an underscore instead of a space. For example, for the best search results you'd write "windows_10" instead of "Windows 10".
 
 ## Software inventory overview
 
@@ -115,4 +115,4 @@ Report a false positive when you see any vague, inaccurate, or incomplete inform
 - [Threat and vulnerability management overview](next-gen-threat-and-vuln-mgt.md)
 - [Security recommendations](tvm-security-recommendation.md)
 - [Event timeline](threat-and-vuln-mgt-event-timeline.md)
-- [View and organize the Microsoft Defender ATP Devices list](machines-view-overview.md)
+- [View and organize the Microsoft Defender for Endpoint Devices list](machines-view-overview.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
index 6e3367187d..d466083c34 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
@@ -24,15 +24,15 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 Before you begin, ensure that you meet the following operating system or platform requisites for threat and vulnerability management so the activities in your devices are properly accounted for.
 
 >[!NOTE]
->The supported systems and platforms for threat and vulnerability management may be different from the [Minimum requirements for Microsoft Defender ATP](minimum-requirements.md) list.
+>The supported systems and platforms for threat and vulnerability management may be different from the [Minimum requirements for Microsoft Defender for Endpoint](minimum-requirements.md) list.
 
 Operating system | Security assessment support
 :---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md
index 21ba19666d..fa51efb6f6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-vulnerable-devices-report.md
@@ -26,14 +26,14 @@ ms.topic: article
 > [!IMPORTANT]
 > **Vulnerable devices report is currently in public preview**<br>
 > This preview version is provided without a service level agreement, and it's not recommended for production workloads. Certain features might not be supported or might have constrained capabilities.
-> For more information, see [Microsoft Defender ATP preview features](preview.md).
+> For more information, see [Microsoft Defender for Endpoint preview features](preview.md).
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 The report shows graphs and bar charts with vulnerable device trends and current statistics. The goal is for you to understand the breath and scope of your device exposure. 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
index 7d007181d1..e9ead66986 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
@@ -23,12 +23,12 @@ ms.topic: conceptual
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
-Threat and vulnerability management uses the same signals in Microsoft Defender ATP's endpoint protection to scan and detect vulnerabilities.
+Threat and vulnerability management uses the same signals in Defender for Endpoint's endpoint protection to scan and detect vulnerabilities.
 
 The **Weaknesses** page lists the software vulnerabilities your devices are exposed to by listing the Common Vulnerabilities and Exposures (CVE) ID. You can also view the severity, Common Vulnerability Scoring System (CVSS) rating, prevalence in your organization, corresponding breach, threat insights, and more.
 
@@ -152,4 +152,4 @@ Report a false positive when you see any vague, inaccurate, or incomplete inform
 - [Security recommendations](tvm-security-recommendation.md)
 - [Software inventory](tvm-software-inventory.md)
 - [Dashboard insights](tvm-dashboard-insights.md)
-- [View and organize the Microsoft Defender ATP Devices list](machines-view-overview.md)
+- [View and organize the Microsoft Defender for Endpoint Devices list](machines-view-overview.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
index 62b6465eab..be9573342b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-zero-day-vulnerabilities.md
@@ -25,10 +25,10 @@ ms.topic: article
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 - [Threat and vulnerability management](next-gen-threat-and-vuln-mgt.md)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
 A zero-day vulnerability is a publicly disclosed vulnerability for which no official patches or security updates have been released. Zero-day vulnerabilities often have high severity levels and are actively exploited.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
index 1833077b2c..211e184891 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
@@ -22,9 +22,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
@@ -38,7 +38,7 @@ Undo isolation of a device.
 [!include[Device actions note](../../includes/machineactionsnote.md)]
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
index f05f9a4644..49037547d6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
@@ -37,7 +37,7 @@ Enable execution of any application on the device.
 [!include[Device actions note](../../includes/machineactionsnote.md)]
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
index 8d2e4f9a6a..a62ac7611a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/update-alert.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 
 ## API description
@@ -38,7 +38,7 @@ Updates properties of existing [Alert](alerts.md).
 
 
 ## Permissions
-One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender for Endpoint APIs](apis-intro.md)
 
 Permission type |	Permission	|	Permission display name
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/use.md b/windows/security/threat-protection/microsoft-defender-atp/use.md
index a2838a56d7..3b37769671 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/use.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/use.md
@@ -24,11 +24,11 @@ ms.topic: conceptual
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-usewdatp-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-usewdatp-abovefoldlink)
 
-Microsoft Defender Security Center is the portal where you can access Microsoft Defender Advanced Threat Protection capabilities.
+Microsoft Defender Security Center is the portal where you can access Microsoft Defender for Endpoint capabilities.
 
 Use the **Security operations** dashboard to gain insight on the various alerts on devices and users in your network.
 
@@ -41,6 +41,6 @@ Use the **Threat analytics** dashboard to continually assess and control risk ex
 Topic | Description
 :---|:---
 [Portal overview](portal-overview.md) | Understand the portal layout and area descriptions.
-[View the Security operations dashboard](security-operations-dashboard.md) | The Microsoft Defender ATP  **Security operations dashboard** provides a snapshot of your network. You can view aggregates of alerts, the overall status of the service of the devices on your network, investigate devices, files, and URLs, and see snapshots of threats seen on devices.
+[View the Security operations dashboard](security-operations-dashboard.md) | The Microsoft Defender for Endpoint  **Security operations dashboard** provides a snapshot of your network. You can view aggregates of alerts, the overall status of the service of the devices on your network, investigate devices, files, and URLs, and see snapshots of threats seen on devices.
 [View the Threat & Vulnerability Management dashboard](tvm-dashboard-insights.md) | The **Threat & Vulnerability Management dashboard** lets you view exposure and Microsoft Secure Score for Devices side-by-side with top security recommendations, software vulnerability, remediation activities, and exposed devices.
 [View the Threat analytics dashboard and take recommended mitigation actions](threat-analytics.md) | The **Threat analytics** dashboard helps you continually assess and control risk exposure to threats. Use the charts to quickly identify devices for the presence or absence of mitigations.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/user-roles.md b/windows/security/threat-protection/microsoft-defender-atp/user-roles.md
index 4c08836f95..fa2af61c92 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/user-roles.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/user-roles.md
@@ -23,9 +23,9 @@ ms.topic: article
 
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-roles-abovefoldlink)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-roles-abovefoldlink)
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
@@ -68,7 +68,7 @@ The following steps guide you on how to create roles in Microsoft Defender Secur
 - **Manage portal system settings** - Configure storage settings, SIEM and threat intel API settings (applies globally), advanced settings, automated file uploads, roles and device groups
 
     > [!NOTE]
-    > This setting is only available in the Microsoft Defender ATP administrator (default) role.
+    > This setting is only available in the Microsoft Defender for Endpoint administrator (default) role.
 
 - **Manage security settings in Security Center** - Configure alert suppression settings, manage folder exclusions for automation, onboard and offboard devices, and manage email notifications, manage evaluation lab
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/user.md b/windows/security/threat-protection/microsoft-defender-atp/user.md
index 3a38c1edfc..948460d6a9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/user.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/user.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 Method|Return Type |Description
 :---|:---|:---
diff --git a/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md b/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md
index 9742f5aa9e..df9ae6390d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/view-incidents-queue.md
@@ -18,12 +18,12 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# View and organize the Microsoft Defender Advanced Threat Protection Incidents queue
+# View and organize the Microsoft Defender for Endpoint Incidents queue
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 **Applies to:**
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
 The **Incidents queue** shows a collection of incidents that were flagged from devices in your network. It helps you sort through incidents to prioritize and create an informed cybersecurity response decision.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md b/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
index d91dfe2c07..eaaa313b18 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/vulnerability.md
@@ -21,9 +21,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
-**Applies to:** [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-- Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
+- Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
 [!include[Prerelease information](../../includes/prerelease.md)]
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
index 4dd4166246..d8daf9644c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering.md
@@ -24,11 +24,11 @@ ms.topic: article
 > [!IMPORTANT]
 > **Web content filtering is currently in public preview**<br>
 > This preview version is provided without a service level agreement, and it's not recommended for production workloads. Certain features might not be supported or might have constrained capabilities.
-> For more information, see [Microsoft Defender ATP preview features](preview.md).
+> For more information, see [Microsoft Defender for Endpoint preview features](preview.md).
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
 
-Web content filtering is part of [Web protection](web-protection-overview.md) capabilities in Microsoft Defender ATP. It enables your organization to track and regulate access to websites based on their content categories. Many of these websites, while not malicious, might be problematic because of compliance regulations, bandwidth usage, or other concerns.
+Web content filtering is part of [Web protection](web-protection-overview.md) capabilities in Microsoft Defender for Endpoint. It enables your organization to track and regulate access to websites based on their content categories. Many of these websites, while not malicious, might be problematic because of compliance regulations, bandwidth usage, or other concerns.
 
 Configure policies across your device groups to block certain categories. Blocking a category prevents users within specified device groups from accessing URLs associated with the category. For any category that's not blocked, the URLs are automatically audited. Your users can access the URLs without disruption, and you'll gather access statistics to help create a more custom policy decision. Your users will see a block notification if an element on the page they're viewing is making calls to a blocked resource.
 
@@ -37,7 +37,7 @@ Web content filtering is available on the major web browsers, with blocks perfor
 Summarizing the benefits:
 
 - Users are prevented from accessing websites in blocked categories, whether they're browsing on-premises or away
-- Conveniently deploy policies to groups of users using device groups defined in [Microsoft Defender ATP role-based access control settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/rbac)
+- Conveniently deploy policies to groups of users using device groups defined in [Microsoft Defender for Endpoint role-based access control settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/rbac)
 - Access web reports in the same central location, with visibility over actual blocks and web usage
 
 ## User experience
@@ -58,7 +58,7 @@ If Windows Defender SmartScreen isn't turned on, Network Protection will take ov
 
 ## Data handling
 
-We will follow whichever region you have elected to use as part of your [Microsoft Defender ATP data handling settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy). Your data will not leave the data center in that region. In addition, your data will not be shared with any third-parties, including our data providers. However, we may send them aggregate data (across users and organizations) to help them improve their feeds.
+We will follow whichever region you have elected to use as part of your [Microsoft Defender for Endpoint data handling settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy). Your data will not leave the data center in that region. In addition, your data will not be shared with any third-parties, including our data providers. However, we may send them aggregate data (across users and organizations) to help them improve their feeds.
 
 ## Turn on web content filtering
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md b/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
index 071d86602f..8bc1e5811a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
@@ -21,7 +21,7 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
 
 Web protection lets you monitor your organization’s web browsing security through reports under **Reports > Web protection** in the Microsoft Defender Security Center. The report contains cards that provide web threat detection statistics.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md b/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md
index 717f128f7c..998d416c2a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-protection-overview.md
@@ -22,9 +22,9 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
 
-Web protection in Microsoft Defender ATP is a capability made up of [Web threat protection](web-threat-protection.md) and [Web content filtering](web-content-filtering.md). Web protection lets you secure your devices against web threats and helps you regulate unwanted content. You can find Web protection reports in the Microsoft Defender Security Center by going to **Reports > Web protection**.
+Web protection in Microsoft Defender for Endpoint is a capability made up of [Web threat protection](web-threat-protection.md) and [Web content filtering](web-content-filtering.md). Web protection lets you secure your devices against web threats and helps you regulate unwanted content. You can find Web protection reports in the Microsoft Defender Security Center by going to **Reports > Web protection**.
 
 ![Image of all web protection cards](images/web-protection.png)
 
@@ -43,7 +43,7 @@ The cards that comprise web content filtering are **Web activity by category**,
 
 Web content filtering includes:
 - Users are prevented from accessing websites in blocked categories, whether they are browsing on-premises or away
-- You can conveniently deploy varied policies to various sets of users using the device groups defined in the [Microsoft Defender ATP role-based access control settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/rbac)
+- You can conveniently deploy varied policies to various sets of users using the device groups defined in the [Microsoft Defender for Endpoint role-based access control settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/rbac)
 - You can access web reports in the same central location, with visibility over actual blocks and web usage
 
 ## In this section
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md b/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md
index 41fb1e22a8..4d52993b4d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-protection-response.md
@@ -22,12 +22,12 @@ ms.topic: article
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
+>Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
 
-Web protection in Microsoft Defender ATP lets you efficiently investigate and respond to alerts related to malicious websites and websites in your custom indicator list.
+Web protection in Microsoft Defender for Endpoint lets you efficiently investigate and respond to alerts related to malicious websites and websites in your custom indicator list.
 
 ## View web threat alerts
-Microsoft Defender ATP generates the following [alerts](manage-alerts.md) for malicious or suspicious web activity:
+Microsoft Defender for Endpoint generates the following [alerts](manage-alerts.md) for malicious or suspicious web activity:
 - **Suspicious connection blocked by network protection** — this alert is generated when an attempt to access a malicious website or a website in your custom indicator list is *stopped* by network protection in *block* mode
 - **Suspicious connection detected by network protection** — this alert is generated when an attempt to access a malicious website or a website in your custom indicator list is detected by network protection in *audit only* mode
 
@@ -40,7 +40,7 @@ Each alert provides the following information:
 ![Image of an alert related to web threat protection](images/wtp-alert.png)
 
 >[!Note]
->To reduce the volume of alerts, Microsoft Defender ATP consolidates web threat detections for the same domain on the same device each day to a single alert. Only one alert is generated and counted into the [web protection report](web-protection-monitoring.md).
+>To reduce the volume of alerts, Microsoft Defender for Endpoint consolidates web threat detections for the same domain on the same device each day to a single alert. Only one alert is generated and counted into the [web protection report](web-protection-monitoring.md).
 
 ## Inspect website details
 You can dive deeper by selecting the URL or domain of the website in the alert. This opens a page about that particular URL or domain with various information, including:
@@ -59,7 +59,7 @@ You can also check the device that attempted to access a blocked URL. Selecting
 
 ## Web browser and Windows notifications for end users
 
-With web protection in Microsoft Defender ATP, your end users will be prevented from visiting malicious or unwanted websites using Microsoft Edge or other browsers. Because blocking is performed by [network protection](network-protection.md), they will see a generic error from the web browser. They will also see a notification from Windows.
+With web protection in Microsoft Defender for Endpoint, your end users will be prevented from visiting malicious or unwanted websites using Microsoft Edge or other browsers. Because blocking is performed by [network protection](network-protection.md), they will see a generic error from the web browser. They will also see a notification from Windows.
 
 ![Image of Microsoft Edge showing a 403 error and the Windows notification](images/wtp-browser-blocking-page.png)
 *Web threat blocked on Microsoft Edge*
diff --git a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
index 7e173b6a93..48024183fa 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md
@@ -19,16 +19,16 @@ ms.collection:
 ms.topic: conceptual
 ---
 
-# What's new in Microsoft Defender ATP
+# What's new in Microsoft Defender for Endpoint
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
-The following features are generally available (GA) in the latest release of Microsoft Defender ATP as well as security features in Windows 10 and Windows Server.
+The following features are generally available (GA) in the latest release of Microsoft Defender for Endpoint as well as security features in Windows 10 and Windows Server.
 
 For more information preview features, see [Preview features](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/preview-windows-defender-advanced-threat-protection).
 
@@ -41,16 +41,16 @@ For more information preview features, see [Preview features](https://docs.micro
 > ```
 
 ## September 2020
-- [Microsoft Defender ATP for Android](microsoft-defender-atp-android.md) <br> Microsoft Defender ATP now adds support for Android. Learn how to install, configure, update, and use Microsoft Defender ATP for Android.
+- [Microsoft Defender for Endpoint for Android](microsoft-defender-atp-android.md) <br> Microsoft Defender for Endpoint now adds support for Android. Learn how to install, configure, update, and use Microsoft Defender for Endpoint for Android.
 - [Threat and vulnerability management macOS support](tvm-supported-os.md)<br> Threat and vulnerability management for macOS is now in public preview, and will continuously detect vulnerabilities on your macOS devices to help you prioritize remediation by focusing on risk. Learn more from this [Microsoft Tech Community blog post](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/microsoft-defender-for-endpoint-adds-depth-and-breadth-to-threat/ba-p/1695824).
 
 ## July 2020
 - [Create indicators for certificates](manage-indicators.md) <br> Create indicators to allow or block certificates. 
 
 ## June 2020
-- [Microsoft Defender ATP for Linux](microsoft-defender-atp-linux.md) <br> Microsoft Defender ATP now adds support for Linux. Learn how to install, configure, update, and use Microsoft Defender ATP for Linux.
+- [Microsoft Defender for Endpoint for Linux](microsoft-defender-atp-linux.md) <br> Microsoft Defender for Endpoint now adds support for Linux. Learn how to install, configure, update, and use Microsoft Defender for Endpoint for Linux.
 
-- [Attack simulators in the evaluation lab](evaluation-lab.md#threat-simulator-scenarios) <br> Microsoft Defender ATP has partnered with various threat simulation platforms to give you convenient access to test the capabilities of the platform right from the within the portal.
+- [Attack simulators in the evaluation lab](evaluation-lab.md#threat-simulator-scenarios) <br> Microsoft Defender for Endpoint has partnered with various threat simulation platforms to give you convenient access to test the capabilities of the platform right from the within the portal.
 
 
 ## April 2020
@@ -59,7 +59,7 @@ For more information preview features, see [Preview features](https://docs.micro
 
 ## November-December 2019
 
-- [Microsoft Defender ATP for Mac](microsoft-defender-atp-mac.md) <BR> Microsoft Defender ATP for Mac brings the next-generation protection to Mac devices. Core components of the unified endpoint security platform will now be available for Mac devices, including [endpoint detection and response](endpoint-detection-response-mac-preview.md).
+- [Microsoft Defender for Endpoint for Mac](microsoft-defender-atp-mac.md) <BR> Microsoft Defender for Endpoint for Mac brings the next-generation protection to Mac devices. Core components of the unified endpoint security platform will now be available for Mac devices, including [endpoint detection and response](endpoint-detection-response-mac-preview.md).
  
 - [Threat & Vulnerability Management application and application version end-of-life information](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation) <BR>Applications and application versions which have reached their end-of-life are tagged or labeled as such so you are aware that they will no longer be supported, and can take action to either uninstall or replace. Doing so will help lessen the risks related to various vulnerability exposures due to unpatched applications.
 
@@ -74,9 +74,9 @@ For more information preview features, see [Preview features](https://docs.micro
 
 - [Microsoft Threat Experts - Experts on Demand](microsoft-threat-experts.md) <BR> You now have the option to consult with Microsoft Threat Experts from several places in the portal to help you in the context of your investigation.   
  
-- [Connected Azure AD applications](connected-applications.md)<br> The Connected applications page provides information about the Azure AD applications connected to Microsoft Defender ATP in your organization. 
+- [Connected Azure AD applications](connected-applications.md)<br> The Connected applications page provides information about the Azure AD applications connected to Microsoft Defender for Endpoint in your organization. 
 
-- [API Explorer](api-explorer.md)<br> The API explorer makes it easy to construct and perform API queries, test and send requests for any available Microsoft Defender ATP API endpoint.
+- [API Explorer](api-explorer.md)<br> The API explorer makes it easy to construct and perform API queries, test and send requests for any available Microsoft Defender for Endpoint API endpoint.
 
 
 ## September 2019
@@ -85,7 +85,7 @@ For more information preview features, see [Preview features](https://docs.micro
 
 - [Live response](live-response.md)<BR> Get instantaneous access to a device using a remote shell connection. Do in-depth investigative work and take immediate response actions to promptly contain identified threats - real-time.
 
-- [Evaluation lab](evaluation-lab.md) <BR> The Microsoft Defender ATP evaluation lab is designed to eliminate the complexities of device and environment configuration so that you can
+- [Evaluation lab](evaluation-lab.md) <BR> The Microsoft Defender for Endpoint evaluation lab is designed to eliminate the complexities of device and environment configuration so that you can
  focus on evaluating the capabilities of the platform, running simulations, and seeing the prevention, detection, and remediation features in action.
 
 - [Windows Server 2008 R2 SP1](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016) <BR> You can now onboard Windows Server 2008 R2 SP1.
@@ -102,25 +102,25 @@ For more information preview features, see [Preview features](https://docs.micro
 - [Threat protection reports](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/threat-protection-reports-windows-defender-advanced-threat-protection)<BR>The threat protection report provides high-level information about alerts generated in your organization. 
 
 
-- [Microsoft Threat Experts](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/microsoft-threat-experts)<BR> Microsoft Threat Experts is the new managed threat hunting service in Microsoft Defender ATP that provides proactive hunting, prioritization, and additional context and insights that further empower security operations centers (SOCs) to identify and respond to threats quickly and accurately. It provides additional layer of expertise and optics that Microsoft customers can utilize to augment security operation capabilities as part of Microsoft 365.  
+- [Microsoft Threat Experts](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/microsoft-threat-experts)<BR> Microsoft Threat Experts is the new managed threat hunting service in Microsoft Defender for Endpoint that provides proactive hunting, prioritization, and additional context and insights that further empower security operations centers (SOCs) to identify and respond to threats quickly and accurately. It provides additional layer of expertise and optics that Microsoft customers can utilize to augment security operation capabilities as part of Microsoft 365.  
 
 - [Indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ti-indicator) <BR> APIs for indicators are now generally available. 
 
 
-- [Interoperability](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/partner-applications) <BR> Microsoft Defender ATP supports third-party applications to help enhance the detection, investigation, and threat intelligence capabilities of the platform.
+- [Interoperability](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/partner-applications) <BR> Microsoft Defender for Endpoint supports third-party applications to help enhance the detection, investigation, and threat intelligence capabilities of the platform.
 
 
 ## April 2019
 - [Microsoft Threat Experts Targeted Attack Notification capability](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-threat-experts#targeted-attack-notification) <BR> Microsoft Threat Experts' Targeted Attack Notification alerts are tailored to organizations to provide as much information as can be quickly delivered thus bringing attention to critical threats in their network, including the timeline, scope of breach, and the methods of intrusion.
 
-- [Microsoft Defender ATP API](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/apis-intro) <BR> Microsoft Defender ATP exposes much of its data and actions through a set of programmatic APIs. Those APIs will enable you to automate workflows and innovate based on Microsoft Defender ATP capabilities. 
+- [Microsoft Defender for Endpoint API](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/apis-intro) <BR> Microsoft Defender for Endpoint exposes much of its data and actions through a set of programmatic APIs. Those APIs will enable you to automate workflows and innovate based on Microsoft Defender for Endpoint capabilities. 
 
 
 
 ## February 2019
-- [Incidents](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/incidents-queue) <BR> Incident is a new entity in Microsoft Defender ATP that brings together all relevant alerts and related entities to narrate the broader attack story, giving analysts better perspective on the purview of complex threats. 
+- [Incidents](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/incidents-queue) <BR> Incident is a new entity in Microsoft Defender for Endpoint that brings together all relevant alerts and related entities to narrate the broader attack story, giving analysts better perspective on the purview of complex threats. 
 
-- [Onboard previous versions of Windows](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/onboard-downlevel-windows-defender-advanced-threat-protection)<BR> Onboard supported versions of Windows devices so that they can send sensor data to the Microsoft Defender ATP sensor.
+- [Onboard previous versions of Windows](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/onboard-downlevel-windows-defender-advanced-threat-protection)<BR> Onboard supported versions of Windows devices so that they can send sensor data to the Microsoft Defender for Endpoint sensor.
 
 
 ## October 2018
@@ -130,16 +130,16 @@ For more information preview features, see [Preview features](https://docs.micro
 
 - [Custom detection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-custom-detections)<BR>With custom detections, you can create custom queries to monitor events for any kind of behavior such as suspicious or emerging threats. This can be done by leveraging the power of advanced hunting through the creation of custom detection rules. 
 
-- [Integration with Azure Security Center](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#integration-with-azure-security-center)<BR> Microsoft Defender ATP integrates with Azure Security Center to provide a comprehensive server protection solution. With this integration Azure Security Center can leverage the power of Microsoft Defender ATP to provide improved threat detection for Windows Servers.
+- [Integration with Azure Security Center](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-server-endpoints-windows-defender-advanced-threat-protection#integration-with-azure-security-center)<BR> Microsoft Defender for Endpoint integrates with Azure Security Center to provide a comprehensive server protection solution. With this integration Azure Security Center can leverage the power of Microsoft Defender for Endpoint to provide improved threat detection for Windows Servers.
 
-- [Managed security service provider (MSSP) support](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/mssp-support-windows-defender-advanced-threat-protection)<BR> Microsoft Defender ATP adds support for this scenario by providing MSSP integration. The integration will allow MSSPs to take the following actions: Get access to MSSP customer's Microsoft Defender Security Center portal, fetch email notifications, and fetch alerts through security information and event management (SIEM) tools.
+- [Managed security service provider (MSSP) support](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/mssp-support-windows-defender-advanced-threat-protection)<BR> Microsoft Defender for Endpoint adds support for this scenario by providing MSSP integration. The integration will allow MSSPs to take the following actions: Get access to MSSP customer's Microsoft Defender Security Center portal, fetch email notifications, and fetch alerts through security information and event management (SIEM) tools.
 
-- [Removable device control](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/19/windows-defender-atp-has-protections-for-usb-and-removable-devices/)<BR>Microsoft Defender ATP provides multiple monitoring and control features to help prevent threats from removable devices, including new settings to allow or block specific hardware IDs.
+- [Removable device control](https://cloudblogs.microsoft.com/microsoftsecure/2018/12/19/windows-defender-atp-has-protections-for-usb-and-removable-devices/)<BR>Microsoft Defender for Endpoint provides multiple monitoring and control features to help prevent threats from removable devices, including new settings to allow or block specific hardware IDs.
 
 - [Support for iOS and Android devices](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-endpoints-non-windows-windows-defender-advanced-threat-protection#turn-on-third-party-integration)<BR> iOS and Android devices are now supported and can be onboarded to the service.
 
 - [Threat analytics](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/threat-analytics)<BR>
-Threat Analytics is a set of interactive reports published by the Microsoft Defender ATP research team as soon as emerging threats and outbreaks are identified. The reports help security operations teams assess impact on their environment and provides recommended actions to contain, increase organizational resilience, and prevent specific threats.
+Threat Analytics is a set of interactive reports published by the Microsoft Defender for Endpoint research team as soon as emerging threats and outbreaks are identified. The reports help security operations teams assess impact on their environment and provides recommended actions to contain, increase organizational resilience, and prevent specific threats.
 
 - New in Windows 10 version 1809, there are two new attack surface reduction rules: 
   - Block Adobe Reader from creating child processes
@@ -154,7 +154,7 @@ Threat Analytics is a set of interactive reports published by the Microsoft Defe
   
 ## March 2018
 - [Advanced Hunting](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/advanced-hunting-windows-defender-advanced-threat-protection) <BR>
-Query data using advanced hunting in Microsoft Defender ATP.
+Query data using advanced hunting in Microsoft Defender for Endpoint.
 
 - [Attack surface reduction rules](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/attack-surface-reduction-exploit-guard)<BR>
     New attack surface reduction rules: 
@@ -171,21 +171,21 @@ Query data using advanced hunting in Microsoft Defender ATP.
 
 - [Conditional Access](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/conditional-access-windows-defender-advanced-threat-protection) <br> Enable conditional access to better protect users, devices, and data.
 
-- [Microsoft Defender ATP Community center](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/community-windows-defender-advanced-threat-protection)<BR> 
-    The Microsoft Defender ATP Community Center is a place where community members can learn, collaborate, and share experiences about the product. 
+- [Microsoft Defender for Endpoint Community center](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/community-windows-defender-advanced-threat-protection)<BR> 
+    The Microsoft Defender for Endpoint Community Center is a place where community members can learn, collaborate, and share experiences about the product. 
 
 - [Controlled folder access](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/enable-controlled-folders-exploit-guard)<BR>
 You can now block untrusted processes from writing to disk sectors using Controlled Folder Access.
 
 - [Onboard non-Windows devices](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/configure-endpoints-non-windows-windows-defender-advanced-threat-protection)<BR>
-    Microsoft Defender ATP provides a centralized security operations experience for Windows as well as non-Windows platforms. You'll be able to see alerts from various supported operating systems (OS) in Microsoft Defender Security Center and better protect your organization's network.
+    Microsoft Defender for Endpoint provides a centralized security operations experience for Windows as well as non-Windows platforms. You'll be able to see alerts from various supported operating systems (OS) in Microsoft Defender Security Center and better protect your organization's network.
 
 - [Role-based access control (RBAC)](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/rbac-windows-defender-advanced-threat-protection)<BR>
     Using role-based access control (RBAC), you can create roles and groups within your security operations team to grant appropriate access to the portal.
 
 
 - [Microsoft Defender Antivirus](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10)<BR>
-Microsoft Defender Antivirus now shares detection status between M365 services and interoperates with Microsoft Defender ATP. For more information, see [Use next-gen technologies in Microsoft Defender Antivirus through cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus).
+Microsoft Defender Antivirus now shares detection status between M365 services and interoperates with Microsoft Defender for Endpoint. For more information, see [Use next-gen technologies in Microsoft Defender Antivirus through cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/utilize-microsoft-cloud-protection-microsoft-defender-antivirus).
 
     Block at first sight can now block non-portable executable files (such as JS, VBS, or macros) as well as executable files. For more information, see [Enable block at first sight](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-block-at-first-sight-microsoft-defender-antivirus).
 

From f98eda8a43e56ebb3221d08eb13f80dbcd382f6b Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 12 Nov 2020 09:59:22 -0800
Subject: [PATCH 106/209] Update index.md

---
 windows/security/threat-protection/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md
index 1e268bf3fc..88ac6667fb 100644
--- a/windows/security/threat-protection/index.md
+++ b/windows/security/threat-protection/index.md
@@ -73,7 +73,7 @@ The attack surface reduction set of capabilities provide the first line of defen
 <a name="ngp"></a>
 
 **[Next-generation protection](microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md)**<br>
-To further reinforce the security perimeter of your network,Microsoft Defender for Endpoint uses next-generation protection designed to catch all types of emerging threats.
+To further reinforce the security perimeter of your network, Microsoft Defender for Endpoint uses next-generation protection designed to catch all types of emerging threats.
 
 - [Behavior monitoring](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus)
 - [Cloud-based protection](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/configure-protection-features-microsoft-defender-antivirus)

From 0361ec4031b0b08e7e20bce057194c4a2f06e2d9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 12 Nov 2020 10:10:14 -0800
Subject: [PATCH 107/209] Update microsoft-defender-antivirus-in-windows-10.md

---
 .../microsoft-defender-antivirus-in-windows-10.md             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index 9d66168e9a..4f975a9be5 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -1,6 +1,6 @@
 ---
 title: Next-generation protection in Windows 10, Windows Server 2016, and Windows Server 2019
-description: Learn how to manage, configure, and use Microsoft Defender AV, the built-in antimalware and antivirus product available in Windows 10 and Windows Server 2016
+description: Learn how to manage, configure, and use Microsoft Defender Antivirus, built-in antimalware and antivirus protection.
 keywords: Microsoft Defender Antivirus, windows defender, antimalware, scep, system center endpoint protection, system center configuration manager, virus, malware, threat, detection, protection, security
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -10,7 +10,7 @@ ms.pagetype: security
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
-ms.date: 02/25/2020
+ms.date: 11/12/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: nextgen

From 19f062ae320eaa302c1f94f529e71cd6b5d43e63 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 12 Nov 2020 10:11:15 -0800
Subject: [PATCH 108/209] Update microsoft-defender-antivirus-in-windows-10.md

---
 .../microsoft-defender-antivirus-in-windows-10.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index 4f975a9be5..4dfade690a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -28,7 +28,7 @@ ms.custom: nextgen
 
 ## Microsoft Defender Antivirus: Your next-generation protection
 
-Microsoft Defender Antivirus is the next-generation protection component of Microsoft Defender for Endpoint. Next-generation protection brings together machine learning, big-data analysis, in-depth threat resistance research, and the Microsoft cloud infrastructure to protect devices in your enterprise organization. Next-generation protection services include the following:
+Microsoft Defender Antivirus is the next-generation protection component of Microsoft Defender for Endpoint. This protection brings together machine learning, big-data analysis, in-depth threat resistance research, and the Microsoft cloud infrastructure to protect devices in your enterprise organization. Your next-generation protection services include the following:
 
 - [Behavior-based, heuristic, and real-time antivirus protection](configure-protection-features-microsoft-defender-antivirus.md). This includes always-on scanning using file and process behavior monitoring and other heuristics (also known as "real-time protection"). It also includes detecting and blocking apps that are deemed unsafe, but may not be detected as malware.
 - [Cloud-delivered protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md). This includes near-instant detection and blocking of new and emerging threats.

From ca143e4dcca73cd082691230927bb4bb04bab296 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 12 Nov 2020 10:12:22 -0800
Subject: [PATCH 109/209] Update microsoft-defender-antivirus-in-windows-10.md

---
 .../microsoft-defender-antivirus-in-windows-10.md             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index 4dfade690a..86b053565a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -28,7 +28,7 @@ ms.custom: nextgen
 
 ## Microsoft Defender Antivirus: Your next-generation protection
 
-Microsoft Defender Antivirus is the next-generation protection component of Microsoft Defender for Endpoint. This protection brings together machine learning, big-data analysis, in-depth threat resistance research, and the Microsoft cloud infrastructure to protect devices in your enterprise organization. Your next-generation protection services include the following:
+Microsoft Defender Antivirus is the next-generation protection component of Microsoft Defender for Endpoint. This protection brings together machine learning, big-data analysis, in-depth threat resistance research, and the Microsoft cloud infrastructure to protect devices in your enterprise organization. Your next-generation protection services include the following capabilities:
 
 - [Behavior-based, heuristic, and real-time antivirus protection](configure-protection-features-microsoft-defender-antivirus.md). This includes always-on scanning using file and process behavior monitoring and other heuristics (also known as "real-time protection"). It also includes detecting and blocking apps that are deemed unsafe, but may not be detected as malware.
 - [Cloud-delivered protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md). This includes near-instant detection and blocking of new and emerging threats.
@@ -43,7 +43,7 @@ Visit the [Microsoft Defender for Endpoint demo website](https://demo.wd.microso
 
 ## Minimum system requirements
 
-Microsoft Defender Antivirus has the same hardware requirements as of Windows 10. For more information, see:
+Microsoft Defender Antivirus has the same hardware requirements as of Windows 10. For more information, see the following resources:
 
 - [Minimum hardware requirements](https://docs.microsoft.com/windows-hardware/design/minimum/minimum-hardware-requirements-overview)
 - [Hardware component guidelines](https://docs.microsoft.com/windows-hardware/design/component-guidelines/components)

From 7aa5ab4ec513da447b96b60eced105e4acd9288c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 12 Nov 2020 10:14:09 -0800
Subject: [PATCH 110/209] Update microsoft-defender-antivirus-in-windows-10.md

---
 .../microsoft-defender-antivirus-in-windows-10.md               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index 86b053565a..90c18b39ee 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -30,7 +30,7 @@ ms.custom: nextgen
 
 Microsoft Defender Antivirus is the next-generation protection component of Microsoft Defender for Endpoint. This protection brings together machine learning, big-data analysis, in-depth threat resistance research, and the Microsoft cloud infrastructure to protect devices in your enterprise organization. Your next-generation protection services include the following capabilities:
 
-- [Behavior-based, heuristic, and real-time antivirus protection](configure-protection-features-microsoft-defender-antivirus.md). This includes always-on scanning using file and process behavior monitoring and other heuristics (also known as "real-time protection"). It also includes detecting and blocking apps that are deemed unsafe, but may not be detected as malware.
+- [Behavior-based, heuristic, and real-time antivirus protection](configure-protection-features-microsoft-defender-antivirus.md), which includes always-on scanning using file and process behavior monitoring and other heuristics (also known as *real-time protection*). It also includes detecting and blocking apps that are deemed unsafe, but might not be detected as malware.
 - [Cloud-delivered protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md). This includes near-instant detection and blocking of new and emerging threats.
 - [Dedicated protection and product updates](manage-updates-baselines-microsoft-defender-antivirus.md). This includes updates related to keeping Microsoft Defender Antivirus up to date.
 

From 1965abddd254358829aa9284b7790d5a7e7e26d5 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 12 Nov 2020 10:15:55 -0800
Subject: [PATCH 111/209] Update microsoft-defender-antivirus-in-windows-10.md

---
 .../microsoft-defender-antivirus-in-windows-10.md        | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index 90c18b39ee..054b8b07e3 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -16,13 +16,16 @@ manager: dansimp
 ms.custom: nextgen
 ---
 
-# Next-generation protection in Windows 10, Windows Server 2016, and Windows Server 2019
+# Next-generation protection in Windows
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
 
 **Applies to:**
 
+- Windows 10
+- Windows Server 2016
+- Windows Server 2019
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 
@@ -31,8 +34,8 @@ ms.custom: nextgen
 Microsoft Defender Antivirus is the next-generation protection component of Microsoft Defender for Endpoint. This protection brings together machine learning, big-data analysis, in-depth threat resistance research, and the Microsoft cloud infrastructure to protect devices in your enterprise organization. Your next-generation protection services include the following capabilities:
 
 - [Behavior-based, heuristic, and real-time antivirus protection](configure-protection-features-microsoft-defender-antivirus.md), which includes always-on scanning using file and process behavior monitoring and other heuristics (also known as *real-time protection*). It also includes detecting and blocking apps that are deemed unsafe, but might not be detected as malware.
-- [Cloud-delivered protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md). This includes near-instant detection and blocking of new and emerging threats.
-- [Dedicated protection and product updates](manage-updates-baselines-microsoft-defender-antivirus.md). This includes updates related to keeping Microsoft Defender Antivirus up to date.
+- [Cloud-delivered protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md), which includes near-instant detection and blocking of new and emerging threats.
+- [Dedicated protection and product updates](manage-updates-baselines-microsoft-defender-antivirus.md), which includes updates related to keeping Microsoft Defender Antivirus up to date.
 
 ## Try a demo!
 

From 3e31bf17f67a2a51e6a62fc4b57dcddad29079d6 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 12 Nov 2020 10:21:18 -0800
Subject: [PATCH 112/209] acrolinx fixes

---
 ...microsoft-defender-antivirus-in-windows-10.md |  2 --
 ...o-security-settings-with-tamper-protection.md | 16 ++++++++--------
 2 files changed, 8 insertions(+), 10 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
index 054b8b07e3..3b56a59a48 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10.md
@@ -26,8 +26,6 @@ ms.custom: nextgen
 - Windows 10
 - Windows Server 2016
 - Windows Server 2019
-- [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
-
 
 ## Microsoft Defender Antivirus: Your next-generation protection
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index 6cc3ece08f..964923be28 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -14,7 +14,7 @@ audience: ITPro
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 10/14/2020
+ms.date: 11/12/2020
 ---
 
 # Protect security settings with tamper protection
@@ -29,7 +29,7 @@ ms.date: 10/14/2020
 
 ## Overview
 
-During some kinds of cyber attacks, bad actors try to disable security features, such as anti-virus protection, on your machines. They do this to get easier access to your data, to install malware, or to otherwise exploit your data, identity, and devices. Tamper protection helps prevent this from occurring.
+During some kinds of cyber attacks, bad actors try to disable security features, such as anti-virus protection, on your machines. Bad actors like to disable your security features to get easier access to your data, to install malware, or to otherwise exploit your data, identity, and devices. Tamper protection helps prevent these kinds of things from occurring.
 
 With tamper protection, malicious apps are prevented from taking actions such as:
 
@@ -92,7 +92,7 @@ You must have appropriate [permissions](../microsoft-defender-atp/assign-portal-
 
 1. Make sure your organization meets all of the following requirements to manage tamper protection using Intune:
 
-    - Your organization uses [Intune to manage devices](https://docs.microsoft.com/intune/fundamentals/what-is-device-management). ([Intune licenses](https://docs.microsoft.com/intune/fundamentals/licenses) are required; this is included in Microsoft 365 E5.)
+    - Your organization uses [Intune to manage devices](https://docs.microsoft.com/intune/fundamentals/what-is-device-management). ([Intune licenses](https://docs.microsoft.com/intune/fundamentals/licenses) are required; Intune is included in Microsoft 365 E5.)
     - Your Windows machines must be running Windows 10 OS [1709](https://docs.microsoft.com/windows/release-information/status-windows-10-1709), [1803](https://docs.microsoft.com/windows/release-information/status-windows-10-1803), [1809](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019) or later. (See [Windows 10 release information](https://docs.microsoft.com/windows/release-information/) for more details about releases.)
     - You must be using Windows security with [security intelligence](https://www.microsoft.com/wdsi/definitions) updated to version 1.287.60.0 (or above).
     - Your machines must be using anti-malware platform version 4.18.1906.3 (or above) and anti-malware engine version 1.1.15500.X (or above). ([Manage Microsoft Defender Antivirus updates and apply baselines](manage-updates-baselines-microsoft-defender-antivirus.md).)
@@ -132,7 +132,7 @@ If you are using Windows 10 OS [1709](https://docs.microsoft.com/windows/release
 > [!IMPORTANT]
 > The procedure can be used to extend tamper protection to devices running Windows 10 and Windows Server 2019. Make sure to review the prerequisites and other information in the resources mentioned in this procedure.
 
-If you're using [version 2006 of Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006), you can manage tamper protection settings on Windows 10 and Windows Server 2019 using tenant attach. Tenant attach enables you to sync your on-premises-only Configuration Manager devices into the Microsoft Endpoint Manager admin center, and then deliver your endpoint security configuration policies to your on-premises collections & devices.
+If you're using [version 2006 of Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006), you can manage tamper protection settings on Windows 10 and Windows Server 2019 by using tenant attach. Tenant attach enables you to sync your on-premises-only Configuration Manager devices into the Microsoft Endpoint Manager admin center, and then deliver your endpoint security configuration policies to your on-premises collections & devices.
 
 1. Set up tenant attach. See [Microsoft Endpoint Manager tenant attach: Device sync and device actions](https://docs.microsoft.com/mem/configmgr/tenant-attach/device-sync-actions).
 
@@ -183,9 +183,9 @@ To learn more about Threat & Vulnerability Management, see [Threat & Vulnerabili
 
 Windows 10 OS [1709](https://docs.microsoft.com/windows/release-information/status-windows-10-1709), [1803](https://docs.microsoft.com/windows/release-information/status-windows-10-1803), [1809](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019), or later together with [Microsoft Defender for Endpoint](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp).
 
-If you are using Configuration Manager, version 2006 with tenant attach, tamper protection can be extended to Windows Server 2019. See [Tenant attach: Create and deploy endpoint security Antivirus policy from the admin center (preview)](https://docs.microsoft.com/mem/configmgr/tenant-attach/deploy-antivirus-policy).
+If you are using Configuration Manager, version 2006, with tenant attach, tamper protection can be extended to Windows Server 2019. See [Tenant attach: Create and deploy endpoint security Antivirus policy from the admin center (preview)](https://docs.microsoft.com/mem/configmgr/tenant-attach/deploy-antivirus-policy).
 
-### Will tamper protection have any impact on third party antivirus registration?
+### Will tamper protection have any impact on third-party antivirus registration?
 
 No. Third-party antivirus offerings will continue to register with the Windows Security application.
 
@@ -210,7 +210,7 @@ Your regular group policy doesn’t apply to tamper protection, and changes to M
 > [!NOTE]
 > A small delay in Group Policy (GPO) processing may occur if Group Policy settings include values that control Microsoft Defender Antivirus features protected by tamper protection.
 
-To avoid any potential delays, we recommend that you remove settings that control Microsoft Defender Antivirus related behavior from GPO and simply allow tamper protection to protect Microsoft Defender Antivirus settings.
+To avoid any potential delays, we recommend that you remove settings that control Microsoft Defender Antivirus related behavior using GPO and allow tamper protection to protect your Microsoft Defender Antivirus settings.
 
 Some sample Microsoft Defender Antivirus settings:
 
@@ -246,7 +246,7 @@ If a device is off-boarded from Microsoft Defender for Endpoint, tamper protecti
 
 Yes. The alert is shown in [https://securitycenter.microsoft.com](https://securitycenter.microsoft.com) under **Alerts**.
 
-In addition, your security operations team can use hunting queries, such as the following:
+In addition, your security operations team can use hunting queries, such as the following example:
 
 `DeviceAlertEvents | where Title == "Tamper Protection bypass"`
 

From da38b56a098794cbcae51f0ea93ad22a3bf06009 Mon Sep 17 00:00:00 2001
From: Thomas Raya <v-thraya@microsoft.com>
Date: Thu, 12 Nov 2020 11:22:11 -0800
Subject: [PATCH 113/209] Update docfx.json

---
 education/docfx.json | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/education/docfx.json b/education/docfx.json
index 809a2da28f..8ba1394c6d 100644
--- a/education/docfx.json
+++ b/education/docfx.json
@@ -7,7 +7,8 @@
           "**/**.yml"
         ],
         "exclude": [
-          "**/obj/**"
+          "**/obj/**",
+          "**/includes/**"
         ]
       }
     ],
@@ -19,7 +20,8 @@
           "**/*.svg"
         ],
         "exclude": [
-          "**/obj/**"
+          "**/obj/**",
+          "**/includes/**"
         ]
       }
     ],

From be0b92ab943ab6c1e421a12921a7d5363dc1672a Mon Sep 17 00:00:00 2001
From: Marty Hernandez Avedon <v-maave@microsoft.com>
Date: Thu, 12 Nov 2020 17:30:57 -0500
Subject: [PATCH 114/209] linting, improving acrolinx for run-scan &
 enable-cloud-protection

---
 ...protection-microsoft-defender-antivirus.md | 43 +++++++++++--------
 .../run-scan-microsoft-defender-antivirus.md  | 33 +++++++-------
 2 files changed, 39 insertions(+), 37 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
index 7e6ac508a9..5aec7104ad 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
@@ -9,6 +9,7 @@ ms.sitesec: library
 ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
+ms.date: 11/13/2020
 ms.reviewer: 
 manager: dansimp
 ms.custom: nextgen
@@ -18,7 +19,6 @@ ms.custom: nextgen
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 **Applies to:**
 
 - Microsoft Defender Antivirus
@@ -29,24 +29,31 @@ ms.custom: nextgen
 Microsoft Defender Antivirus uses multiple detection and prevention technologies to deliver accurate, real-time, and intelligent protection. [Get to know the advanced technologies at the core of Microsoft Defender for Endpoint next-generation protection](https://www.microsoft.com/security/blog/2019/06/24/inside-out-get-to-know-the-advanced-technologies-at-the-core-of-microsoft-defender-atp-next-generation-protection/).
 ![List of Microsoft Defender AV engines](images/microsoft-defender-atp-next-generation-protection-engines.png)  
 
-You can enable or disable Microsoft Defender Antivirus cloud-delivered protection with Microsoft Intune, Microsoft Endpoint Configuration Manager, Group Policy, PowerShell cmdlets, or on individual clients in the Windows Security app.
+You can turn Microsoft Defender Antivirus cloud-delivered protection on or off in several ways:
+
+- Microsoft Intune
+- Microsoft Endpoint Configuration Manager
+- Group Policy
+- PowerShell cmdlets.
+
+ You can also turn it on or off in individual clients with the Windows Security app.
 
 See [Use Microsoft cloud-delivered protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md) for an overview of Microsoft Defender Antivirus cloud-delivered protection.
 
-There are specific network-connectivity requirements to ensure your endpoints can connect to the cloud-delivered protection service. See [Configure and validate network connections](configure-network-connections-microsoft-defender-antivirus.md) for more details.
+For more information about the specific network-connectivity requirements to ensure your endpoints can connect to the cloud-delivered protection service, see [Configure and validate network connections](configure-network-connections-microsoft-defender-antivirus.md).
 
 > [!NOTE]
-> In Windows 10, there is no difference between the **Basic** and **Advanced** reporting options described in this topic. This is a legacy distinction and choosing either setting will result in the same level of cloud-delivered protection. There is no difference in the type or amount of information that is shared. See the [Microsoft Privacy Statement](https://go.microsoft.com/fwlink/?linkid=521839) for more information on what we collect.
+> In Windows 10, there is no difference between the **Basic** and **Advanced** reporting options described in this topic. This is a legacy distinction and choosing either setting will result in the same level of cloud-delivered protection. There is no difference in the type or amount of information that is shared. For more information on what we collect, see the [Microsoft Privacy Statement](https://go.microsoft.com/fwlink/?linkid=521839).
 
 ## Use Intune to enable cloud-delivered protection
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
 2. Select **All services > Intune**.
-3. In the **Intune** pane, select **Device configuration > Profiles**, and then select the **Device restrictions** profile type you want to configure. If you haven't yet created a **Device restrictions** profile type, or if you want to create a new one, see [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure).
+3. In the **Intune** pane, select **Device configuration > Profiles**. Then select the **Device restrictions** profile type you want to configure. If you need to create a new **Device restrictions** profile type, see [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure).
 4. Select **Properties**, select **Settings: Configure**, and then select **Microsoft Defender Antivirus**.
 5. On the **Cloud-delivered protection** switch, select **Enable**.
 6. In the **Prompt users before sample submission** dropdown, select **Send all data without prompting**.
-7. In the **Submit samples consent** dropdown, select one of the following:
+7. In the **Submit samples consent** dropdown, select one of the following options:
 
     - **Send safe samples automatically**
     - **Send all samples automatically**
@@ -57,7 +64,7 @@ There are specific network-connectivity requirements to ensure your endpoints ca
         > [!WARNING]
         > Setting to **Always Prompt** will lower the protection state of the device. Setting to **Never send** means the [Block at First Sight](configure-block-at-first-sight-microsoft-defender-antivirus.md) feature of Microsoft Defender for Endpoint won't work.
 
-8. Click **OK** to exit the **Microsoft Defender Antivirus** settings pane, click **OK** to exit the **Device restrictions** pane, and then click **Save** to save the changes to your **Device restrictions** profile.
+8. Select **OK** to exit the **Microsoft Defender Antivirus** settings pane, select **OK** to exit the **Device restrictions** pane, and then select **Save** to save the changes to your **Device restrictions** profile.
 
 For more information about Intune device profiles, including how to create and configure their settings, see [What are Microsoft Intune device profiles?](https://docs.microsoft.com/intune/device-profiles)
 
@@ -67,9 +74,9 @@ See [How to create and deploy antimalware policies: Cloud-protection service](ht
 
 ## Use Group Policy to enable cloud-delivered protection
 
-1. On your Group Policy management computer, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**.
+1. On your Group Policy management computer, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and select **Edit**.
 
-2. In the **Group Policy Management Editor** go to **Computer configuration**.
+2. In the **Group Policy Management Editor**, go to **Computer configuration**.
 
 3. Select **Administrative templates**.
 
@@ -77,7 +84,7 @@ See [How to create and deploy antimalware policies: Cloud-protection service](ht
 
 5. Double-click **Join Microsoft MAPS**. Ensure the option is enabled and set to **Basic MAPS** or **Advanced MAPS**. Select **OK**.
 
-6. Double-click **Send file samples when further analysis is required**. Ensure that the option is set to **Enabled** and that the other options are either of the following:
+6. Double-click **Send file samples when further analysis is required**. Ensure that the first option is set to **Enabled** and that the other options are set to either:
 
     1. **Send safe samples** (1)
     2. **Send all samples** (3)
@@ -88,7 +95,7 @@ See [How to create and deploy antimalware policies: Cloud-protection service](ht
         > [!WARNING]
         > Setting the option to **Always Prompt** (0) will lower the protection state of the device. Setting it to **Never send** (2) means that the [Block at First Sight](configure-block-at-first-sight-microsoft-defender-antivirus.md) feature of Microsoft Defender for Endpoint won't work.
 
-7. Click **OK**.
+7. Select **OK**.
 
 ## Use PowerShell cmdlets to enable cloud-delivered protection
 
@@ -99,7 +106,7 @@ Set-MpPreference -MAPSReporting Advanced
 Set-MpPreference -SubmitSamplesConsent SendAllSamples
 ```
 
-See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/library/dn433280.aspx) for more information on how to use PowerShell with Microsoft Defender Antivirus. [Policy CSP - Defender](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender) also has more information specifically on [-SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent).
+For more information on how to use PowerShell with Microsoft Defender Antivirus, see [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/library/dn433280.aspx). [Policy CSP - Defender](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender) also has more information specifically on [-SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent).
 
 >[!NOTE]
 > You can also set **-SubmitSamplesConsent** to `SendSafeSamples` (the default setting), `NeverSend`, or `AlwaysPrompt`. The `SendSafeSamples` setting means that most samples will be sent automatically. Files that are likely to contain personal information will still prompt and require additional confirmation.
@@ -116,18 +123,16 @@ MAPSReporting
 SubmitSamplesConsent
 ```
 
-See the following for more information and allowed parameters:
-
-- [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx)
+For more information about allowed parameters, see [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx)
 
 ## Enable cloud-delivered protection on individual clients with the Windows Security app
 
 > [!NOTE]
 > If the **Configure local setting override for reporting Microsoft MAPS** Group Policy setting is set to **Disabled**, then the **Cloud-based protection** setting in Windows Settings will be greyed-out and unavailable. Changes made through a Group Policy Object must first be deployed to individual endpoints before the setting will be updated in Windows Settings.
 
-1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Defender**.
+1. Open the Windows Security app by selecting the shield icon in the task bar, or by searching the start menu for **Defender**.
 
-2. Click the **Virus & threat protection** tile (or the shield icon on the left menu bar) and then the **Virus & threat protection settings** label:
+2. Select the **Virus & threat protection** tile (or the shield icon on the left menu bar) and then the **Virus & threat protection settings** label:
 
     ![Screenshot of the Virus & threat protection settings label in the Windows Security app](images/defender/wdav-protection-settings-wdsc.png)
 
@@ -136,13 +141,13 @@ See the following for more information and allowed parameters:
 >[!NOTE]
 >If automatic sample submission has been configured with Group Policy then the setting will be greyed-out and unavailable.
 
-## Related topics
+## Related articles
 
 - [Configure the cloud block timeout period](configure-cloud-block-timeout-period-microsoft-defender-antivirus.md)
 - [Configure block at first sight](configure-block-at-first-sight-microsoft-defender-antivirus.md)
 - [Use PowerShell cmdlets to manage Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md)
 - [Help secure Windows PCs with Endpoint Protection for Microsoft Intune](https://docs.microsoft.com/intune/deploy-use/help-secure-windows-pcs-with-endpoint-protection-for-microsoft-intune)]
 - [Defender cmdlets](https://technet.microsoft.com/library/dn433280.aspx)
-- [Utilize Microsoft cloud-delivered protection in Microsoft Defender Antivirus](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md)
+- [Use Microsoft cloud-delivered protection in Microsoft Defender Antivirus](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md)
 - [How to create and deploy antimalware policies: Cloud-protection service](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#cloud-protection-service)
 - [Microsoft Defender Antivirus in Windows 10](microsoft-defender-antivirus-in-windows-10.md)
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
index 04914ca837..5f2a5b9455 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 09/03/2018
+ms.date: 11/13/2020
 ms.reviewer: 
 manager: dansimp
 ---
@@ -20,33 +20,31 @@ manager: dansimp
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 **Applies to:**
 
 - [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 You can run an on-demand scan on individual endpoints. These scans will start immediately, and you can define parameters for the scan, such as the location or type.
 
-
 ## Quick scan versus full scan
 
-Quick scan looks at all the locations where there could be malware registered to start with the system, such as registry keys and known Windows startup folders. 
+Quick scan looks at all the locations where there could be malware registered to start with the system, such as registry keys and known Windows startup folders.
 
-> [!IMPORTANT] 
-> Microsoft Defender Antivirus runs in the context of the [LocalSystem](https://docs.microsoft.com/windows/win32/services/localsystem-account) account when performing a local scan. For network scans, it uses the context of the device account. If the domain device account doesn't have appropriate permissions to access the share, the scan won't work. Ensure that the device has permissions to the access network share. 
+> [!IMPORTANT]
+> Microsoft Defender Antivirus runs in the context of the [LocalSystem](https://docs.microsoft.com/windows/win32/services/localsystem-account) account when performing a local scan. For network scans, it uses the context of the device account. If the domain device account doesn't have appropriate permissions to access the share, the scan won't work. Ensure that the device has permissions to the access network share.
 
-Combined with [always-on real-time protection capability](configure-real-time-protection-microsoft-defender-antivirus.md)--which reviews files when they are opened and closed, and whenever a user navigates to a folder--a quick scan helps provide strong coverage both for malware that starts with the system and kernel-level malware.  
+Combined with [always-on real-time protection capability](configure-real-time-protection-microsoft-defender-antivirus.md)--which reviews files when they're opened and closed, and whenever a user navigates to a folder--a quick scan helps provide strong coverage both for malware that starts with the system and kernel-level malware.  
 
-In most instances, this means a quick scan is adequate to find malware that wasn't picked up by real-time protection.
+In most instances, a quick scan is adequate to find malware that wasn't picked up by real-time protection.
 
-A full scan can be useful on endpoints that have encountered a malware threat to identify if there are any inactive components that require a more thorough clean-up, and can be ideal when running on-demand scans.
+A full scan can be useful on endpoints that have reported a malware threat. The scan can identify if there are any inactive components that require a more thorough clean-up. This is  ideal if your organization is running on-demand scans.
 
->[!NOTE]
->By default, quick scans run on mounted removable devices, such as USB drives.
+> [!NOTE]
+> By default, quick scans run on mounted removable devices, such as USB drives.
 
 ## Use Configuration Manager to run a scan
 
-See [Antimalware and firewall tasks: How to perform an on-demand scan](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-firewall#how-to-perform-an-on-demand-scan-of-computers) for details on using Microsoft Endpoint Configuration Manager (current branch) to run a scan.
+For more information about using Microsoft Endpoint Configuration Manager (current branch) to run a scan, see [Antimalware and firewall tasks: How to perform an on-demand scan](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-firewall#how-to-perform-an-on-demand-scan-of-computers).
 
 ## Use the mpcmdrun.exe command-line utility to run a scan
 
@@ -55,7 +53,8 @@ Use the following `-scan` parameter:
 ```DOS
 mpcmdrun.exe -scan -scantype 1
 ```
-See [Use the mpcmdrun.exe commandline tool to configure and manage Microsoft Defender Antivirus](command-line-arguments-microsoft-defender-antivirus.md) for more information on how to use the tool and additional parameters, including starting a full scan or defining paths.
+
+For more information about how to use the tool and additional parameters, including starting a full scan, or defining paths, see [Use the mpcmdrun.exe commandline tool to configure and manage Microsoft Defender Antivirus](command-line-arguments-microsoft-defender-antivirus.md).
 
 ## Use Microsoft Intune to run a scan
 
@@ -63,7 +62,6 @@ See [Use the mpcmdrun.exe commandline tool to configure and manage Microsoft Def
 
 2. Select **...More** and then select **Quick Scan** or **Full Scan**.
 
-
 ## Use the Windows Security app to run a scan
 
 See [Run a scan in the Windows Security app](microsoft-defender-security-center-antivirus.md#scan) for instructions on running a scan on individual endpoints.
@@ -75,15 +73,14 @@ Use the following cmdlet:
 ```PowerShell
 Start-MpScan
 ```
-See [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/itpro/powershell/windows/defender/index) for more information on how to use PowerShell with Microsoft Defender Antivirus.
+
+For more information on how to use PowerShell with Microsoft Defender Antivirus, see [Use PowerShell cmdlets to configure and run Microsoft Defender Antivirus](use-powershell-cmdlets-microsoft-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/itpro/powershell/windows/defender/index).
 
 ## Use Windows Management Instruction (WMI) to run a scan
 
 Use the [**Start** method of the **MSFT_MpScan**](https://msdn.microsoft.com/library/dn455324(v=vs.85).aspx#methods) class.
 
-See the following for more information and allowed parameters:
-- [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx)
-
+For more information about which parameters are allowed, see [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx)
 
 ## Related articles
 

From 2a402a23269a0cc9f85cdc19a8a0c9100caed446 Mon Sep 17 00:00:00 2001
From: Marty Hernandez Avedon <v-maave@microsoft.com>
Date: Thu, 12 Nov 2020 17:43:49 -0500
Subject: [PATCH 115/209] updated steps to configure cloud protection in
 enable-clud-protection

also updated some language -- enable -> turn on, computer -> device
---
 ...protection-microsoft-defender-antivirus.md | 46 +++++++++++++------
 1 file changed, 31 insertions(+), 15 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
index 5aec7104ad..fc663aeb07 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
@@ -1,6 +1,6 @@
 ---
-title: Enable cloud-delivered protection in Microsoft Defender Antivirus
-description: Enable cloud-delivered protection to benefit from fast and advanced protection features.
+title: Turn on cloud-delivered protection in Microsoft Defender Antivirus
+description: Turn on cloud-delivered protection to benefit from fast and advanced protection features.
 keywords: Microsoft Defender Antivirus, antimalware, security, cloud, block at first sight
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -15,7 +15,7 @@ manager: dansimp
 ms.custom: nextgen
 ---
 
-# Enable cloud-delivered protection
+# Turn on cloud-delivered protection
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -45,7 +45,7 @@ For more information about the specific network-connectivity requirements to ens
 > [!NOTE]
 > In Windows 10, there is no difference between the **Basic** and **Advanced** reporting options described in this topic. This is a legacy distinction and choosing either setting will result in the same level of cloud-delivered protection. There is no difference in the type or amount of information that is shared. For more information on what we collect, see the [Microsoft Privacy Statement](https://go.microsoft.com/fwlink/?linkid=521839).
 
-## Use Intune to enable cloud-delivered protection
+## Use Intune to turn on cloud-delivered protection
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
 2. Select **All services > Intune**.
@@ -68,13 +68,29 @@ For more information about the specific network-connectivity requirements to ens
 
 For more information about Intune device profiles, including how to create and configure their settings, see [What are Microsoft Intune device profiles?](https://docs.microsoft.com/intune/device-profiles)
 
-## Use Configuration Manager to enable cloud-delivered protection
+## Use Configuration Manager to turn on cloud-delivered protection
 
-See [How to create and deploy antimalware policies: Cloud-protection service](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#cloud-protection-service) for details on configuring Microsoft Endpoint Configuration Manager (current branch).
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
 
-## Use Group Policy to enable cloud-delivered protection
+2. Choose **Endpoint security** > **Antivirus**.
 
-1. On your Group Policy management computer, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and select **Edit**.
+3. Select an antivirus profile. (If you don't have one yet, or if you want to create a new profile, see [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure).
+
+4. Select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
+
+5. Expand **Cloud protection**, and then in the **Cloud-delivered protection level** list, select one of the following:
+
+    1. **High**: Applies a strong level of detection.
+    2. **High plus**: Uses the **High** level and applies additional protection measures (may impact client performance).
+    3. **Zero tolerance**: Blocks all unknown executables.
+
+6. Choose **Review + save**, and then choose **Save**.
+
+For more information about configuring Microsoft Endpoint Configuration Manager, see [How to create and deploy antimalware policies: Cloud-protection service](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#cloud-protection-service).
+
+## Use Group Policy to turn on cloud-delivered protection
+
+1. On your Group Policy management device, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and select **Edit**.
 
 2. In the **Group Policy Management Editor**, go to **Computer configuration**.
 
@@ -82,7 +98,7 @@ See [How to create and deploy antimalware policies: Cloud-protection service](ht
 
 4. Expand the tree to **Windows components > Microsoft Defender Antivirus > MAPS**
 
-5. Double-click **Join Microsoft MAPS**. Ensure the option is enabled and set to **Basic MAPS** or **Advanced MAPS**. Select **OK**.
+5. Double-click **Join Microsoft MAPS**. Ensure the option is turned on and set to **Basic MAPS** or **Advanced MAPS**. Select **OK**.
 
 6. Double-click **Send file samples when further analysis is required**. Ensure that the first option is set to **Enabled** and that the other options are set to either:
 
@@ -97,9 +113,9 @@ See [How to create and deploy antimalware policies: Cloud-protection service](ht
 
 7. Select **OK**.
 
-## Use PowerShell cmdlets to enable cloud-delivered protection
+## Use PowerShell cmdlets to turn on cloud-delivered protection
 
-Use the following cmdlets to enable cloud-delivered protection:
+The following cmdlets can turn on cloud-delivered protection:
 
 ```PowerShell
 Set-MpPreference -MAPSReporting Advanced
@@ -114,7 +130,7 @@ For more information on how to use PowerShell with Microsoft Defender Antivirus,
 >[!WARNING]
 > Setting **-SubmitSamplesConsent** to `NeverSend` or `AlwaysPrompt` will lower the protection level of the device. In addition, setting it to `NeverSend` means that the [Block at First Sight](configure-block-at-first-sight-microsoft-defender-antivirus.md) feature of Microsoft Defender for Endpoint won't work.
 
-## Use Windows Management Instruction (WMI) to enable cloud-delivered protection
+## Use Windows Management Instruction (WMI) to turn on cloud-delivered protection
 
 Use the [**Set** method of the **MSFT_MpPreference**](https://msdn.microsoft.com/library/dn439474(v=vs.85).aspx) class for the following properties:
 
@@ -125,7 +141,7 @@ SubmitSamplesConsent
 
 For more information about allowed parameters, see [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx)
 
-## Enable cloud-delivered protection on individual clients with the Windows Security app
+## Turn on cloud-delivered protection on individual clients with the Windows Security app
 
 > [!NOTE]
 > If the **Configure local setting override for reporting Microsoft MAPS** Group Policy setting is set to **Disabled**, then the **Cloud-based protection** setting in Windows Settings will be greyed-out and unavailable. Changes made through a Group Policy Object must first be deployed to individual endpoints before the setting will be updated in Windows Settings.
@@ -138,8 +154,8 @@ For more information about allowed parameters, see [Windows Defender WMIv2 APIs]
 
 3. Confirm that **Cloud-based Protection** and **Automatic sample submission** are switched to **On**.
 
->[!NOTE]
->If automatic sample submission has been configured with Group Policy then the setting will be greyed-out and unavailable.
+> [!NOTE]
+> If automatic sample submission has been configured with Group Policy then the setting will be greyed-out and unavailable.
 
 ## Related articles
 

From 2d66a97d666ec5b060452f002f1cde7926487427 Mon Sep 17 00:00:00 2001
From: Manika Dhiman <v-madhi@microsoft.com>
Date: Thu, 12 Nov 2020 14:50:06 -0800
Subject: [PATCH 116/209] Update vpnv2-csp.md

Minor updates.
---
 windows/client-management/mdm/vpnv2-csp.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index 75becc7f08..985372c075 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -347,8 +347,8 @@ Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-proxy"></a>**VPNv2/**<em>ProfileName</em>**/Proxy**  
 A collection of configuration objects to enable a post-connect proxy support for VPN Force Tunnel connections. The proxy defined for this profile is applied when this profile is active and connected.
 
-> [Note]
-> VPN proxy settings are only used on Force Tunnel connections. On Split Tunnel connections the general proxy settings are used.
+> [!NOTE]
+> VPN proxy settings are used only on Force Tunnel connections. On Split Tunnel connections, the general proxy settings are used.
 
 <a href="" id="vpnv2-profilename-proxy-manual"></a>**VPNv2/**<em>ProfileName</em>**/Proxy/Manual**  
 Optional node containing the manual server settings.

From 41c84bbf2bb0facf5bd74cc221583607da8e8788 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 12 Nov 2020 15:28:05 -0800
Subject: [PATCH 117/209] Acrolinx spelling and grammar fixes

---
 .../client-management/mdm/surfacehub-csp.md    |  8 ++++----
 windows/client-management/mdm/vpnv2-csp.md     | 18 +++++++++---------
 2 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/windows/client-management/mdm/surfacehub-csp.md b/windows/client-management/mdm/surfacehub-csp.md
index 330dddba01..c2b765578f 100644
--- a/windows/client-management/mdm/surfacehub-csp.md
+++ b/windows/client-management/mdm/surfacehub-csp.md
@@ -239,7 +239,7 @@ The following diagram shows the SurfaceHub CSP management objects in tree format
 <p style="margin-left: 20px">The data type is boolean. Supported operation is Get and Replace.
 
 <a href="" id="inboxapps-welcome-currentbackgroundpath"></a>**InBoxApps/Welcome/CurrentBackgroundPath**  
-<p style="margin-left: 20px">Background image for the welcome screen. To set this, specify a https URL to a PNG file (only PNGs are supported for security reasons). If any certificate authorities need to be trusted in order to access the URL, please ensure they are valid and installed on the Hub, otherwise it may not be able to load the image.
+<p style="margin-left: 20px">Background image for the welcome screen. To set this, specify an https URL to a PNG file (only PNGs are supported for security reasons). If any certificate authorities need to be trusted in order to access the URL, please ensure they are valid and installed on the Hub, otherwise it may not be able to load the image.
 
 <p style="margin-left: 20px">The data type is string. Supported operation is Get and Replace.
 
@@ -333,7 +333,7 @@ The following diagram shows the SurfaceHub CSP management objects in tree format
 <tbody>
 <tr>
 <td>0</td>
-<td>Never timeout</td></tr>
+<td>Never time out</td></tr>
 <tr>
 <td>1</td>
 <td>1 minute</td>
@@ -385,7 +385,7 @@ The following diagram shows the SurfaceHub CSP management objects in tree format
 <tbody>
 <tr>
 <td>0</td>
-<td>Never timeout</td></tr>
+<td>Never time out</td></tr>
 <tr>
 <td>1</td>
 <td>1 minute (default)</td>
@@ -437,7 +437,7 @@ The following diagram shows the SurfaceHub CSP management objects in tree format
 <tbody>
 <tr>
 <td>0</td>
-<td>Never timeout</td></tr>
+<td>Never time out</td></tr>
 <tr>
 <td>1</td>
 <td>1 minute</td>
diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index 125734b5c8..6517390e32 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -52,7 +52,7 @@ Supported operations include Get, Add, and Delete.
 Optional node. List of applications set to trigger the VPN. If any of these apps are launched and the VPN profile is currently the active profile, this VPN profile will be triggered to connect.
 
 <a href="" id="vpnv2-profilename-apptriggerlist-apptriggerrowid"></a>**VPNv2/**<em>ProfileName</em>**/AppTriggerList/**<em>appTriggerRowId</em>  
-A sequential integer identifier which allows the ability to specify multiple apps for App Trigger. Sequencing must start at 0 and you should not skip numbers.
+A sequential integer identifier that allows the ability to specify multiple apps for App Trigger. Sequencing must start at 0 and you should not skip numbers.
 
 Supported operations include Get, Add, Replace, and Delete.
 
@@ -132,7 +132,7 @@ Returns the namespace type. This value can be one of the following:
 Value type is chr. Supported operation is Get.
 
 <a href="" id="vpnv2-profilename-domainnameinformationlist-dnirowid-dnsservers"></a>**VPNv2/**<em>ProfileName</em>**/DomainNameInformationList/**<em>dniRowId</em>**/DnsServers**  
-List of comma separated DNS Server IP addresses to use for the namespace.
+List of comma-separated DNS Server IP addresses to use for the namespace.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -202,7 +202,7 @@ Numeric value from 0-255 representing the IP protocol to allow. For example, TCP
 Value type is int. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-localportranges"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/LocalPortRanges**  
-A list of comma separated values specifying local port ranges to allow. For example, `100-120, 200, 300-320`.
+A list of comma-separated values specifying local port ranges to allow. For example, `100-120, 200, 300-320`.
 
 > [!NOTE]
 > Ports are only valid when the protocol is set to TCP=6 or UDP=17.
@@ -210,7 +210,7 @@ A list of comma separated values specifying local port ranges to allow. For exam
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-remoteportranges"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/RemotePortRanges**  
-A list of comma separated values specifying remote port ranges to allow. For example, `100-120, 200, 300-320`.
+A list of comma-separated values specifying remote port ranges to allow. For example, `100-120, 200, 300-320`.
 
 > [!NOTE]
 > Ports are only valid when the protocol is set to TCP=6 or UDP=17.
@@ -218,12 +218,12 @@ A list of comma separated values specifying remote port ranges to allow. For exa
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-localaddressranges"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/LocalAddressRanges**  
-A list of comma separated values specifying local IP address ranges to allow.
+A list of comma-separated values specifying local IP address ranges to allow.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-remoteaddressranges"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/RemoteAddressRanges**  
-A list of comma separated values specifying remote IP address ranges to allow.
+A list of comma-separated values specifying remote IP address ranges to allow.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -243,7 +243,7 @@ Added in Windows 10, version 2004. Specifies the traffic direction to apply this
 - Outbound - The rule applies to all outbound traffic
 - Inbound - The rule applies to all inbound traffic
 
-If no inbound filter is provided, then by default all unsolicated inbound traffic will be blocked.
+If no inbound filter is provided, then by default all unsolicited inbound traffic will be blocked.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -327,7 +327,7 @@ Valid values:
 - True = Register the connection's addresses in DNS.
 
 <a href="" id="vpnv2-profilename-dnssuffix"></a>**VPNv2/**<em>ProfileName</em>**/DnsSuffix**  
-Optional. Specifies one or more comma separated DNS suffixes. The first in the list is also used as the primary connection specific DNS suffix for the VPN Interface. The entire list will also be added into the SuffixSearchList.
+Optional. Specifies one or more comma-separated DNS suffixes. The first in the list is also used as the primary connection specific DNS suffix for the VPN Interface. The entire list will also be added into the SuffixSearchList.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -436,7 +436,7 @@ Required for native profiles. Public or routable IP address or DNS name for the
 
 The name can be a server name plus a friendly name separated with a semi-colon. For example, server2.example.com;server2FriendlyName. When you get the value, the return will include both the server name and the friendly name; if no friendly name had been supplied it will default to the server name. 
 
-You can make a list of server by making a list of server names (with optional friendly names) seperated by commas. For example, server1.example.com,server2.example.com.
+You can make a list of server by making a list of server names (with optional friendly names) separated by commas. For example, server1.example.com,server2.example.com.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 

From 78eaf0bfa833e9f160ebc18a366886df93882aac Mon Sep 17 00:00:00 2001
From: Anna-Li <70676128+xl989@users.noreply.github.com>
Date: Fri, 13 Nov 2020 14:27:49 +0800
Subject: [PATCH 118/209] CI_125045_Update_credential-guard-manage.md

---
 .../credential-guard/credential-guard-manage.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/credential-guard/credential-guard-manage.md b/windows/security/identity-protection/credential-guard/credential-guard-manage.md
index 742dd80951..1d0b90717a 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-manage.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-manage.md
@@ -160,7 +160,7 @@ You can view System Information to check that Windows Defender Credential Guard
 
 2.  Click **System Summary**.
 
-3.  Confirm that **Credential Guard** is shown next to **Virtualization-based security Services Configured**.
+3.  Confirm that **Credential Guard** is shown next to **Virtualization-based security Services Running**.
 
     Here's an example:
 

From 02c827d6519422a73e2deff16618d5425aeaac76 Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Fri, 13 Nov 2020 08:41:35 +0100
Subject: [PATCH 119/209] Update
 windows/security/identity-protection/vpn/vpn-conditional-access.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../security/identity-protection/vpn/vpn-conditional-access.md  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/vpn/vpn-conditional-access.md b/windows/security/identity-protection/vpn/vpn-conditional-access.md
index fa1a76285a..7368d59e07 100644
--- a/windows/security/identity-protection/vpn/vpn-conditional-access.md
+++ b/windows/security/identity-protection/vpn/vpn-conditional-access.md
@@ -79,7 +79,7 @@ Two client-side configuration service providers are leveraged for VPN device com
 > [!NOTE]
 > Currently, it is required that certificates used for obtaining Kerberos tickets must be issued from an on-premises CA, and that SSO must be enabled in the user’s VPN profile. This will enable the user to access on-premises resources.
 > 
-> In the case of AzureAD-only joined devices (not hybrid joined devices), if the user certificate issued by the on-premises CA has the user UPN from AzureAD in Subject and SAN (Subject Alternative Name) , the VPN profile must be modified to ensure the client does not cache the credentials used for VPN authentication. To do this, after deploying the VPN profile to the client, modify the *Rasphone.pbk* on the client by changing entry **UseRasCredentials** from 1 (default) to 0 (zero).
+> In the case of AzureAD-only joined devices (not hybrid joined devices), if the user certificate issued by the on-premises CA has the user UPN from AzureAD in Subject and SAN (Subject Alternative Name), the VPN profile must be modified to ensure that the client does not cache the credentials used for VPN authentication. To do this, after deploying the VPN profile to the client, modify the *Rasphone.pbk* on the client by changing the entry **UseRasCredentials** from 1 (default) to 0 (zero).
 
 ## Client connection flow
 

From 776ea6eefc2364f08d6d3c2cc8f325e0914b032e Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Fri, 13 Nov 2020 08:45:06 +0100
Subject: [PATCH 120/209] Update
 windows/security/identity-protection/vpn/vpn-conditional-access.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../security/identity-protection/vpn/vpn-conditional-access.md  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/vpn/vpn-conditional-access.md b/windows/security/identity-protection/vpn/vpn-conditional-access.md
index 7368d59e07..9aee353de2 100644
--- a/windows/security/identity-protection/vpn/vpn-conditional-access.md
+++ b/windows/security/identity-protection/vpn/vpn-conditional-access.md
@@ -74,7 +74,7 @@ Two client-side configuration service providers are leveraged for VPN device com
    - Collects TPM data used to verify health states
    - Forwards the data to the Health Attestation Service (HAS)
    - Provisions the Health Attestation Certificate received from the HAS
-   - Upon request, forwards the Health Attestation Certificate (received from HAS) and related runtime information to the MDM server for verification
+   - Upon request, forward the Health Attestation Certificate (received from HAS) and related runtime information to the MDM server for verification
    
 > [!NOTE]
 > Currently, it is required that certificates used for obtaining Kerberos tickets must be issued from an on-premises CA, and that SSO must be enabled in the user’s VPN profile. This will enable the user to access on-premises resources.

From 3daba7dd0096a341b433d3e002bd78ff5a259ede Mon Sep 17 00:00:00 2001
From: msarcletti <56821677+msarcletti@users.noreply.github.com>
Date: Fri, 13 Nov 2020 08:57:59 +0100
Subject: [PATCH 121/209] Update
 windows/security/identity-protection/vpn/vpn-profile-options.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/security/identity-protection/vpn/vpn-profile-options.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/vpn/vpn-profile-options.md b/windows/security/identity-protection/vpn/vpn-profile-options.md
index 4c4e67842d..077c2d4c8f 100644
--- a/windows/security/identity-protection/vpn/vpn-profile-options.md
+++ b/windows/security/identity-protection/vpn/vpn-profile-options.md
@@ -47,7 +47,7 @@ The following table lists the VPN settings and whether the setting can be config
 | Proxy settings | yes, by PAC/WPAD file or server and port |
 
 > [!NOTE] 
-> VPN proxy settings are only used on Force Tunnel Connections. On Split Tunnel Connections the general proxy settings are used.
+> VPN proxy settings are only used on Force Tunnel Connections. On Split Tunnel Connections, the general proxy settings are used.
 
 The ProfileXML node was added to the VPNv2 CSP to allow users to deploy VPN profile as a single blob. This is particularly useful for deploying profiles with features that are not yet supported by MDMs. You can get additional examples in the [ProfileXML XSD](https://msdn.microsoft.com/library/windows/hardware/mt755930.aspx) topic.
 

From 57d4a81f864e20be0868457bc01c3c9220fed7e3 Mon Sep 17 00:00:00 2001
From: Kurt Sarens <56369685+kurtsarens@users.noreply.github.com>
Date: Fri, 13 Nov 2020 17:28:00 +0100
Subject: [PATCH 122/209] Update configure-server-endpoints.md

Use the Workspace ID you obtained and replacing `WorkspaceID`
updated script as it did not work :)
---
 .../microsoft-defender-atp/configure-server-endpoints.md      | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index ad4b3d8853..0af0c2d391 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -249,12 +249,14 @@ To offboard the Windows server, you can use either of the following methods:
 2. Open an elevated PowerShell and run the following command. Use the Workspace ID you obtained and replacing `WorkspaceID`:
 
     ```powershell
+    $ErrorActionPreference = "SilentlyContinue"
     # Load agent scripting object
     $AgentCfg = New-Object -ComObject AgentConfigManager.MgmtSvcCfg
     # Remove OMS Workspace
-    $AgentCfg.RemoveCloudWorkspace($WorkspaceID)
+    $AgentCfg.RemoveCloudWorkspace("WorkspaceID")
     # Reload the configuration and apply changes
     $AgentCfg.ReloadConfiguration()
+
     ```
 ## Related topics
 - [Onboard Windows 10 devices](configure-endpoints.md)

From a8bfdbb3d3ad86781d5ed8b0c041c354b0bd8652 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 13 Nov 2020 09:29:31 -0800
Subject: [PATCH 123/209] Update enable-exploit-protection.md

---
 .../enable-exploit-protection.md              | 70 +++++++++----------
 1 file changed, 35 insertions(+), 35 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
index d32e84b405..60e02d7bb1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection.md
@@ -10,7 +10,7 @@ ms.localizationpriority: medium
 audience: ITPro
 author: denisebmsft
 ms.author: deniseb
-ms.reviewer: 
+ms.reviewer: ksarens
 manager: dansimp
 ---
 
@@ -54,8 +54,8 @@ You can also set mitigations to [audit mode](evaluate-exploit-protection.md). Au
 3. Go to **Program settings** and choose the app you want to apply mitigations to. <br/>
     - If the app you want to configure is already listed, click it and then click **Edit**.
     - If the app is not listed, at the top of the list click **Add program to customize** and then choose how you want to add the app. <br/>
-        - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
-        - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
+     - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
+     - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
 4. After selecting the app, you'll see a list of all the mitigations that can be applied. Choosing **Audit** will apply the mitigation in audit mode only. You are notified if you need to restart the process or app, or if you need to restart Windows.
 
@@ -70,12 +70,12 @@ You can also set mitigations to [audit mode](evaluate-exploit-protection.md). Au
 
 If you add an app to the **Program settings** section and configure individual mitigation settings there, they will be honored above the configuration for the same mitigations specified in the **System settings** section. The following matrix and examples help to illustrate how defaults work:
 
-Enabled in **Program settings** | Enabled in **System settings** | Behavior
--|-|-
-[!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark no](../images/svg/check-no.svg)] | As defined in **Program settings**
-[!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **Program settings**
-[!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **System settings**
-[!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | Default as defined in **Use default** option
+|Enabled in **Program settings** | Enabled in **System settings** | Behavior |
+|:---|:---|:---|
+|[!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark no](../images/svg/check-no.svg)] | As defined in **Program settings** |
+|[!include[Check mark yes](../images/svg/check-yes.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **Program settings** |
+|[!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | As defined in **System settings** |
+|[!include[Check mark no](../images/svg/check-no.svg)] | [!include[Check mark yes](../images/svg/check-yes.svg)] | Default as defined in **Use default** option |
 
 ### Example 1: Mikael configures Data Execution Prevention in system settings section to be off by default
 
@@ -98,8 +98,8 @@ The result will be that DEP will be enabled for *test.exe*. DEP will not be enab
 3. Go to **Program settings** and choose the app you want to apply mitigations to.<br/>
     - If the app you want to configure is already listed, click it and then click **Edit**.
     - If the app is not listed, at the top of the list click **Add program to customize** and then choose how you want to add the app.<br/>
-        - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
-        - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
+     - Use **Add by program name** to have the mitigation applied to any running process with that name. You must specify a file with an extension. You can enter a full path to limit the mitigation to only the app with that name in that location.
+     - Use **Choose exact file path** to use a standard Windows Explorer file picker window to find and select the file you want.
 
 4. After selecting the app, you'll see a list of all the mitigations that can be applied. Choosing **Audit** will apply the mitigation in audit mode only. You will be notified if you need to restart the process or app, or if you need to restart Windows.
 
@@ -209,29 +209,29 @@ Set-Processmitigation -Name test.exe -Remove -Disable DEP
 
 This table lists the PowerShell cmdlets (and associated audit mode cmdlet) that can be used to configure each mitigation.
 
-Mitigation | Applies to | PowerShell cmdlets | Audit mode cmdlet
--|-|-|-
-Control flow guard (CFG) | System and app-level |   CFG,   StrictCFG,   SuppressExports  | Audit not available
-Data Execution Prevention (DEP) | System and app-level |   DEP,   EmulateAtlThunks  | Audit not available
-Force randomization for images (Mandatory ASLR) | System and app-level |   ForceRelocateImages  | Audit not available
-Randomize memory allocations (Bottom-Up ASLR) | System and app-level |   BottomUp,   HighEntropy  | Audit not available
-Validate exception chains (SEHOP) | System and app-level |   SEHOP,   SEHOPTelemetry  | Audit not available
-Validate heap integrity | System and app-level |   TerminateOnHeapError  | Audit not available
-Arbitrary code guard (ACG) | App-level only |   DynamicCode  |   AuditDynamicCode
-Block low integrity images | App-level only |   BlockLowLabel  |   AuditImageLoad
-Block remote images | App-level only |   BlockRemoteImages  | Audit not available
-Block untrusted fonts | App-level only |   DisableNonSystemFonts  |   AuditFont,   FontAuditOnly
-Code integrity guard | App-level only |   BlockNonMicrosoftSigned,   AllowStoreSigned  |   AuditMicrosoftSigned,   AuditStoreSigned
-Disable extension points | App-level only |   ExtensionPoint  | Audit not available
-Disable Win32k system calls | App-level only |   DisableWin32kSystemCalls  |   AuditSystemCall
-Do not allow child processes | App-level only |   DisallowChildProcessCreation  |   AuditChildProcess
-Export address filtering (EAF) | App-level only |   EnableExportAddressFilterPlus,   EnableExportAddressFilter  <a href="#r1" id="t1">\[1\]</a> | Audit not available<a href="#r2" id="t2">\[2\]</a>
-Import address filtering (IAF) | App-level only |   EnableImportAddressFilter  | Audit not available<a href="#r2" id="t2">\[2\]</a>
-Simulate execution (SimExec) | App-level only |   EnableRopSimExec  | Audit not available<a href="#r2" id="t2">\[2\]</a>
-Validate API invocation (CallerCheck) | App-level only |   EnableRopCallerCheck  | Audit not available<a href="#r2" id="t2">\[2\]</a>
-Validate handle usage | App-level only |   StrictHandle  | Audit not available
-Validate image dependency integrity | App-level only |   EnforceModuleDepencySigning  | Audit not available
-Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot  | Audit not available<a href="#r2" id="t2">\[2\]</a>
+|Mitigation | Applies to | PowerShell cmdlets | Audit mode cmdlet |
+|:---|:---|:---|:---|
+|Control flow guard (CFG) | System and app-level |   CFG,   StrictCFG,   SuppressExports  | Audit not available |
+|Data Execution Prevention (DEP) | System and app-level |   DEP,   EmulateAtlThunks  | Audit not available |
+|Force randomization for images (Mandatory ASLR) | System and app-level |   ForceRelocateImages  | Audit not available |
+|Randomize memory allocations (Bottom-Up ASLR) | System and app-level |   BottomUp,   HighEntropy  | Audit not available
+|Validate exception chains (SEHOP) | System and app-level |   SEHOP,   SEHOPTelemetry  | Audit not available
+|Validate heap integrity | System and app-level |   TerminateOnHeapError  | Audit not available
+|Arbitrary code guard (ACG) | App-level only |   DynamicCode  |   AuditDynamicCode
+|Block low integrity images | App-level only |   BlockLowLabel  |   AuditImageLoad
+|Block remote images | App-level only |   BlockRemoteImages  | Audit not available
+|Block untrusted fonts | App-level only |   DisableNonSystemFonts  |   AuditFont,   FontAuditOnly
+|Code integrity guard | App-level only |   BlockNonMicrosoftSigned,   AllowStoreSigned  |   AuditMicrosoftSigned,   AuditStoreSigned
+|Disable extension points | App-level only |   ExtensionPoint  | Audit not available
+|Disable Win32k system calls | App-level only |   DisableWin32kSystemCalls  |   AuditSystemCall
+|Do not allow child processes | App-level only |   DisallowChildProcessCreation  |   AuditChildProcess
+|Export address filtering (EAF) | App-level only |   EnableExportAddressFilterPlus,   EnableExportAddressFilter  <a href="#r1" id="t1">\[1\]</a> | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+||Import address filtering (IAF) | App-level only |   EnableImportAddressFilter  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+|Simulate execution (SimExec) | App-level only |   EnableRopSimExec  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+|Validate API invocation (CallerCheck) | App-level only |   EnableRopCallerCheck  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
+|Validate handle usage | App-level only |   StrictHandle  | Audit not available |
+|Validate image dependency integrity | App-level only |   EnforceModuleDepencySigning  | Audit not available |
+|Validate stack integrity (StackPivot) | App-level only |   EnableRopStackPivot  | Audit not available<a href="#r2" id="t2">\[2\]</a> |
 
 <a href="#t1" id="r1">\[1\]</a>: Use the following format to enable EAF modules for DLLs for a process:
 
@@ -243,7 +243,7 @@ Set-ProcessMitigation -Name processName.exe -Enable EnableExportAddressFilterPlu
 
 See the [Windows Security](../windows-defender-security-center/windows-defender-security-center.md#customize-notifications-from-the-windows-defender-security-center) topic for more information about customizing the notification when a rule is triggered and blocks an app or file.
 
-## Related topics
+## See also
 
 * [Evaluate exploit protection](evaluate-exploit-protection.md)
 * [Configure and audit exploit protection mitigations](customize-exploit-protection.md)

From f537f713a3ae332b1944c41305e4149343b44399 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 13 Nov 2020 09:42:13 -0800
Subject: [PATCH 124/209] Update
 deploy-multiple-windows-defender-application-control-policies.md

---
 ...-windows-defender-application-control-policies.md | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
index c3b796cf52..fc4dacb214 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
@@ -14,7 +14,7 @@ author: jsuther1974
 ms.reviewer: isbrahm
 ms.author: dansimp
 manager: dansimp
-ms.date: 09/16/2020
+ms.date: 11/13/2020
 ---
 
 # Use multiple Windows Defender Application Control Policies
@@ -91,15 +91,15 @@ In order to deploy multiple WDAC policies, you must either deploy them locally b
 
 In order to deploy policies locally using the new multiple policy format you will need to:
 
-1. Ensure binary policy files have the correct naming format of {PolicyGUID}.cip
+1. Ensure binary policy files have the correct naming format of `{PolicyGUID}.cip`.
    - Ensure that the name of the binary policy file is exactly the same as the PolicyID GUID in the policy
-   - For example, if the policy XML had the ID as `<PolicyID>{A6D7FBBF-9F6B-4072-BF37-693741E1D745}</PolicyID>` then the correct name for the binary policy file would be {A6D7FBBF-9F6B-4072-BF37-693741E1D745}.cip
-2. Copy binary policies to C:\Windows\System32\CodeIntegrity\CiPolicies\Active
-3. Reboot the system
+   - For example, if the policy XML had the ID as `<PolicyID>{A6D7FBBF-9F6B-4072-BF37-693741E1D745}</PolicyID>`, then the correct name for the binary policy file would be {A6D7FBBF-9F6B-4072-BF37-693741E1D745}.cip
+2. Copy binary policies to `C:\Windows\System32\CodeIntegrity\CiPolicies\Active`.
+3. Reboot the system.
 
 ### Deploying multiple policies via ApplicationControl CSP
 
 Multiple WDAC policies can be managed from an MDM server through ApplicationControl configuration service provider (CSP). The CSP also provides support for rebootless policy deployment. Refer to [ApplicationControl CSP](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp) for more information on deploying multiple policies, optionally using MEM Intune's Custom OMA-URI capability.
 
 > [!NOTE]
-> WMI and GP do not currently support multiple policies. Instead, customers who cannot directly access the MDM stack should use the [ApplicationControl CSP via the MDM Bridge WMI Provider](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp#powershell-and-wmi-bridge-usage-guidance) to manage Multiple Policy Format WDAC policies.
\ No newline at end of file
+> WMI and GP do not currently support multiple policies. Instead, customers who cannot directly access the MDM stack should use the [ApplicationControl CSP via the MDM Bridge WMI Provider](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp#powershell-and-wmi-bridge-usage-guidance) to manage Multiple Policy Format WDAC policies.

From c14c7f2a3616ed0435e8e3254899b97ce67568f5 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 13 Nov 2020 09:48:16 -0800
Subject: [PATCH 125/209] Update
 deploy-multiple-windows-defender-application-control-policies.md

---
 ...ndows-defender-application-control-policies.md | 15 ++++++++-------
 1 file changed, 8 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
index fc4dacb214..141e2ddbf0 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
@@ -27,7 +27,7 @@ ms.date: 11/13/2020
 The restriction of only having a single code integrity policy active on a system at any given time has felt limiting for customers in situations where multiple policies with different intents would be useful. Beginning with Windows 10 version 1903, WDAC supports up to 32 active policies on a device at once in order to enable the following scenarios:
 
 1. Enforce and Audit Side-by-Side
-    - To validate policy changes before deploying in enforcement mode, users can now deploy an audit-mode base policy side-by-side with an existing enforcement-mode base policy
+    - To validate policy changes before deploying in enforcement mode, users can now deploy an audit-mode base policy side by side with an existing enforcement-mode base policy
 2. Multiple Base Policies
     - Users can enforce two or more base policies simultaneously in order to allow simpler policy targeting for policies with different scope/intent
     - If two base policies exist on a device, an application has to be allowed by both to run
@@ -54,13 +54,13 @@ In order to allow multiple policies to exist and take effect on a single system,
 New-CIPolicy -MultiplePolicyFormat -ScanPath "<path>" -UserPEs -FilePath ".\policy.xml" -Level Publisher -Fallback Hash
 ```
 
-Optionally, you can choose to make the new base policy supplementable (allow supplemental policies).
+Optionally, you can choose to make the new base policy allow for supplemental policies.
 
 ```powershell
 Set-RuleOption -FilePath <string> -Option 17
 ```
 
-For signed base policies that are being made supplementable, you need to ensure that supplemental signers are defined. Use the "Supplemental" switch in Add-SignerRule to provide supplemental signers.
+For signed base policies to allow for supplemental policies, make sure that supplemental signers are defined. Use the **Supplemental** switch in **Add-SignerRule** to provide supplemental signers.
 
 ```powershell
 Add-SignerRule -FilePath <string> -CertificatePath <string> [-Kernel] [-User] [-Update] [-Supplemental] [-Deny]  [<CommonParameters>]
@@ -77,7 +77,8 @@ In order to create a supplemental policy, begin by creating a new policy in the
 Set-CIPolicyIdInfo [-FilePath] <string> [-PolicyName <string>] [-SupplementsBasePolicyID <guid>] [-BasePolicyToSupplementPath <string>] [-ResetPolicyID] [-PolicyId <string>]  [<CommonParameters>]
 ```
 
-Note that "ResetPolicyId" reverts a supplemental policy to a base policy, and resets the policy GUIDs back to a random GUID.
+> [!NOTE]
+> **ResetPolicyId** reverts a supplemental policy to a base policy, and resets the policy GUIDs back to a random GUID.
 
 ### Merging policies
 
@@ -89,17 +90,17 @@ In order to deploy multiple WDAC policies, you must either deploy them locally b
 
 ### Deploying multiple policies locally
 
-In order to deploy policies locally using the new multiple policy format you will need to:
+To deploy policies locally using the new multiple policy format, follow these steps:
 
 1. Ensure binary policy files have the correct naming format of `{PolicyGUID}.cip`.
    - Ensure that the name of the binary policy file is exactly the same as the PolicyID GUID in the policy
-   - For example, if the policy XML had the ID as `<PolicyID>{A6D7FBBF-9F6B-4072-BF37-693741E1D745}</PolicyID>`, then the correct name for the binary policy file would be {A6D7FBBF-9F6B-4072-BF37-693741E1D745}.cip
+   - For example, if the policy XML had the ID as `<PolicyID>{A6D7FBBF-9F6B-4072-BF37-693741E1D745}</PolicyID>`, then the correct name for the binary policy file would be `{A6D7FBBF-9F6B-4072-BF37-693741E1D745}.cip`.
 2. Copy binary policies to `C:\Windows\System32\CodeIntegrity\CiPolicies\Active`.
 3. Reboot the system.
 
 ### Deploying multiple policies via ApplicationControl CSP
 
-Multiple WDAC policies can be managed from an MDM server through ApplicationControl configuration service provider (CSP). The CSP also provides support for rebootless policy deployment. Refer to [ApplicationControl CSP](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp) for more information on deploying multiple policies, optionally using MEM Intune's Custom OMA-URI capability.
+Multiple WDAC policies can be managed from an MDM server through ApplicationControl configuration service provider (CSP). The CSP also provides support for rebootless policy deployment. See [ApplicationControl CSP](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp) for more information on deploying multiple policies, optionally using MEM Intune's Custom OMA-URI capability.
 
 > [!NOTE]
 > WMI and GP do not currently support multiple policies. Instead, customers who cannot directly access the MDM stack should use the [ApplicationControl CSP via the MDM Bridge WMI Provider](https://docs.microsoft.com/windows/client-management/mdm/applicationcontrol-csp#powershell-and-wmi-bridge-usage-guidance) to manage Multiple Policy Format WDAC policies.

From 8cb392bcc58a1f47baed766e2f2a23998b677bff Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 13 Nov 2020 09:49:01 -0800
Subject: [PATCH 126/209] Update
 deploy-multiple-windows-defender-application-control-policies.md

---
 ...oy-multiple-windows-defender-application-control-policies.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
index 141e2ddbf0..31c3deaf6b 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-multiple-windows-defender-application-control-policies.md
@@ -48,7 +48,7 @@ The restriction of only having a single code integrity policy active on a system
 
 ## Creating WDAC policies in Multiple Policy Format
 
-In order to allow multiple policies to exist and take effect on a single system, policies must be created using the new Multiple Policy Format. The "MultiplePolicyFormat" switch in [New-CIPolicy](https://docs.microsoft.com/powershell/module/configci/new-cipolicy?view=win10-ps) results in 1) random GUIDs being generated for the policy ID and 2) the policy type being specified as base. The below is an example of creating a new policy in the multiple policy format.
+In order to allow multiple policies to exist and take effect on a single system, policies must be created using the new Multiple Policy Format. The "MultiplePolicyFormat" switch in [New-CIPolicy](https://docs.microsoft.com/powershell/module/configci/new-cipolicy?view=win10-ps&preserve-view=true) results in 1) random GUIDs being generated for the policy ID and 2) the policy type being specified as base. The below is an example of creating a new policy in the multiple policy format.
 
 ```powershell
 New-CIPolicy -MultiplePolicyFormat -ScanPath "<path>" -UserPEs -FilePath ".\policy.xml" -Level Publisher -Fallback Hash

From 05f1ccbd0a84e802f19bab5bc5081568ac0d66c7 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Fri, 13 Nov 2020 10:37:22 -0800
Subject: [PATCH 127/209] Updated what's new for the new SurfaceHub CSP node

---
 .../mdm/change-history-for-mdm-documentation.md                  | 1 +
 .../mdm/new-in-windows-mdm-enrollment-management.md              | 1 +
 2 files changed, 2 insertions(+)

diff --git a/windows/client-management/mdm/change-history-for-mdm-documentation.md b/windows/client-management/mdm/change-history-for-mdm-documentation.md
index b1d4002955..556ff58e7a 100644
--- a/windows/client-management/mdm/change-history-for-mdm-documentation.md
+++ b/windows/client-management/mdm/change-history-for-mdm-documentation.md
@@ -21,6 +21,7 @@ This article lists new and updated articles for the Mobile Device Management (MD
 |New or updated article | Description|
 |--- | ---|
 | [Policy CSP](policy-configuration-service-provider.md) | Added the following new policy:<br>- [Multitasking/BrowserAltTabBlowout](policy-csp-multitasking.md#multitasking-browseralttabblowout) |
+| [SurfaceHub CSP](surfacehub-csp.md) | Added the following new node:<br>-Properties/SleepMode |
 
 ## October 2020
 
diff --git a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
index ee9ee3c5f7..15c29f831f 100644
--- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
+++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
@@ -27,6 +27,7 @@ For details about Microsoft mobile device management protocols for Windows 10 s
 |New or updated article|Description|
 |-----|-----|
 | [Policy CSP](policy-configuration-service-provider.md) | Added the following new policies in Windows 10, version 20H2:<br>- [Experience/DisableCloudOptimizedContent](policy-csp-experience.md#experience-disablecloudoptimizedcontent)<br>- [LocalUsersAndGroups/Configure](policy-csp-localusersandgroups.md#localusersandgroups-configure)<br>- [MixedReality/AADGroupMembershipCacheValidityInDays](policy-csp-mixedreality.md#mixedreality-aadgroupmembershipcachevalidityindays)<br>- [MixedReality/BrightnessButtonDisabled](policy-csp-mixedreality.md#mixedreality-brightnessbuttondisabled)<br>- [MixedReality/FallbackDiagnostics](policy-csp-mixedreality.md#mixedreality-fallbackdiagnostics)<br>- [MixedReality/MicrophoneDisabled](policy-csp-mixedreality.md#mixedreality-microphonedisabled)<br>- [MixedReality/VolumeButtonDisabled](policy-csp-mixedreality.md#mixedreality-volumebuttondisabled)<br>- [Multitasking/BrowserAltTabBlowout](policy-csp-multitasking.md#multitasking-browseralttabblowout) |
+| [SurfaceHub CSP](surfacehub-csp.md) | Added the following new node:<br>-Properties/SleepMode |
 | [WindowsDefenderApplicationGuard CSP](windowsdefenderapplicationguard-csp.md) | Updated the description of the following node:<br>- Settings/AllowWindowsDefenderApplicationGuard |
 
 ## What’s new in MDM for Windows 10, version 2004

From 91b3e607050566f388d91047328a959114925e75 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Fri, 13 Nov 2020 11:00:24 -0800
Subject: [PATCH 128/209] Additional notes on Big Sur

---
 .../threat-protection/microsoft-defender-atp/mac-exclusions.md | 3 +++
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md   | 3 +++
 .../microsoft-defender-atp/microsoft-defender-atp-mac.md       | 3 +++
 3 files changed, 9 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md b/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md
index 04b95ce93b..2e17fbc6fd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-exclusions.md
@@ -58,6 +58,9 @@ Wildcard | Description | Example | Matches | Does not match
 \* |	Matches any number of any characters including none (note that when this wildcard is used inside a path it will substitute only one folder) | `/var/*/*.log` | `/var/log/system.log` | `/var/log/nested/system.log`
 ? | Matches any single character | `file?.log` | `file1.log`<br/>`file2.log` | `file123.log`
 
+>[!NOTE]
+>The product attempts to resolve firmlinks when evaluating exclusions. Firmlink resolution does not work when the exclusion contains wildcards or the target file (on the `Data` volume) does not exist.
+
 ## How to configure the list of exclusions
 
 ### From the management console
diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index 719aa6fb32..b40f3ea88c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -23,6 +23,9 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
+> [!IMPORTANT]
+> On macOS 11 (Big Sur), Microsoft Defender for Endpoint requires additional configuration profiles. If you are an existing customer upgrading from earlier versions of macOS, make sure to deploy the additional configuration profiles listed on [this page](mac-sysext-policies.md).
+
 > [!IMPORTANT]
 > Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 0121869dec..44dd5225e9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -65,6 +65,9 @@ There are several methods and deployment tools that you can use to install and c
 
 The three most recent major releases of macOS are supported.
 
+> [!IMPORTANT]
+> On macOS 11 (Big Sur), Microsoft Defender for Endpoint requires additional configuration profiles. If you are an existing customer upgrading from earlier versions of macOS, make sure to deploy the additional configuration profiles listed on [this page](mac-sysext-policies.md).
+
 > [!IMPORTANT]
 > Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
 

From 03cb3db29569f61c3f44d14ceedd7bc0f20feb07 Mon Sep 17 00:00:00 2001
From: Tina Burden <v-tibur@microsoft.com>
Date: Fri, 13 Nov 2020 11:26:13 -0800
Subject: [PATCH 129/209] pencil edit

---
 .../microsoft-defender-atp/exposed-apis-create-app-nativeapp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
index f038690f96..fb00021426 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-nativeapp.md
@@ -73,7 +73,7 @@ This page explains how to create an AAD application, get an access token to Micr
 
      To see specific examples for web applications or native applications, check out our [quickstarts](/azure/active-directory/develop/#quickstarts).
 
- When finished, select **Register**.
+     When finished, select **Register**.
 
 4. Allow your Application to access Microsoft Defender for Endpoint and assign it 'Read alerts' permission:
 

From 96acfc092935e1cfcbe87c5456dae2cba0a2285d Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 13 Nov 2020 12:24:00 -0800
Subject: [PATCH 130/209] software page update

---
 .../microsoft-defender-atp/tvm-software-inventory.md           | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
index c8bd26da4e..5193e38674 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
@@ -57,7 +57,7 @@ Select the software that you want to investigate. A flyout panel will open with
 
 ### Software that isn't supported
 
-Software that isn't currently supported by threat & vulnerability management is still present in the Software inventory page. Because it is not supported, only limited data will be available. Filter by unsupported software with the "Not available" option in the "Weakness" section.
+Software that isn't currently supported by threat & vulnerability management may still be present in the Software inventory page. Because it is not supported, only limited data will be available. Filter by unsupported software with the "Not available" option in the "Weakness" section.
 
 ![Unsupported software filter.](images/tvm-unsupported-software-filter.png)
 
@@ -66,6 +66,7 @@ The following indicates that a software is not supported:
 - Weaknesses field shows "Not available"
 - Exposed devices field shows a dash
 - Informational text added in side panel and in software page
+- The software page won't have the security recommendations, discovered vulnerabilities, or event timeline sections
 
 Currently, products without a CPE are not shown in the software inventory page, only in the device level software inventory.
 

From 7bbcd7f6ffe532e13b72a76c8e7c8b5e7b748882 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Fri, 13 Nov 2020 12:25:29 -0800
Subject: [PATCH 131/209] remove still

---
 .../microsoft-defender-atp/tvm-software-inventory.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
index 5193e38674..d18b376b49 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
@@ -57,7 +57,7 @@ Select the software that you want to investigate. A flyout panel will open with
 
 ### Software that isn't supported
 
-Software that isn't currently supported by threat & vulnerability management may still be present in the Software inventory page. Because it is not supported, only limited data will be available. Filter by unsupported software with the "Not available" option in the "Weakness" section.
+Software that isn't currently supported by threat & vulnerability management may be present in the Software inventory page. Because it is not supported, only limited data will be available. Filter by unsupported software with the "Not available" option in the "Weakness" section.
 
 ![Unsupported software filter.](images/tvm-unsupported-software-filter.png)
 

From 30332549290762473032b5de220be2f5992883f5 Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Sat, 14 Nov 2020 04:12:27 +0530
Subject: [PATCH 132/209] Update
 windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md

accepted

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 ...windows-operating-system-components-to-microsoft-services.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
index 13846802f8..c72bdf03e9 100644
--- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
+++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
@@ -1659,7 +1659,7 @@ You can turn off **Enhanced Notifications** as follows:
 
   -or-
 
-- Create a new REG_DWORD registry setting named **DisableEnhancedNotifications** in **HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows Defender\Reporting** to a value of **1**.
+- Create a new REG_DWORD registry setting named **DisableEnhancedNotifications** in **HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows Defender\Reporting** and enter the decimal value **1**.
 
 
 ### <a href="" id="bkmk-defender-smartscreen"></a>24.1 Windows Defender SmartScreen

From a8bf6f2ee3eccd388d46f83d06e373d234951a6b Mon Sep 17 00:00:00 2001
From: Max Stein <mastein@microsoft.com>
Date: Fri, 13 Nov 2020 17:15:40 -0800
Subject: [PATCH 133/209] Updated Intune links

Added a couple of VPN references to Intune and date refresh.
---
 windows/security/identity-protection/vpn/vpn-guide.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/vpn/vpn-guide.md b/windows/security/identity-protection/vpn/vpn-guide.md
index cb543ad1cd..b8f40081c7 100644
--- a/windows/security/identity-protection/vpn/vpn-guide.md
+++ b/windows/security/identity-protection/vpn/vpn-guide.md
@@ -6,7 +6,7 @@ ms.mktglfcycl: deploy
 ms.sitesec: library
 author: dulcemontemayor
 ms.localizationpriority: medium
-ms.date: 07/27/2017
+ms.date: 11/13/2020
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
@@ -22,7 +22,7 @@ ms.author: dansimp
 
 This guide will walk you through the decisions you will make for Windows 10 clients in your enterprise VPN solution and how to configure your deployment. This guide references the [VPNv2 Configuration Service Provider (CSP)](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx) and provides mobile device management (MDM) configuration instructions using Microsoft Intune and the VPN Profile template for Windows 10.
 
-![Intune VPN policy template](images/vpn-intune-policy.png)
+To create a Windows 10 VPN device configuration profile see: [Windows 10 and Windows Holographic device settings to add VPN connections using Intune](https://docs.microsoft.com/mem/intune/configuration/vpn-settings-windows-10).
 
 >[!NOTE]
 >This guide does not explain server deployment.  
@@ -43,7 +43,7 @@ This guide will walk you through the decisions you will make for Windows 10 clie
 
 ## Learn more
 
-- [VPN connections in Microsoft Intune](https://docs.microsoft.com/intune/deploy-use/vpn-connections-in-microsoft-intune)
+- [Create VPN profiles to connect to VPN servers in Intune](https://docs.microsoft.com/mem/intune/configuration/vpn-settings-configure)
 
 
 

From 8e927d1b64c04bd1e46efd67f158ba9669fca1e4 Mon Sep 17 00:00:00 2001
From: Max Stein <mastein@microsoft.com>
Date: Fri, 13 Nov 2020 17:43:08 -0800
Subject: [PATCH 134/209] Updating Intune screenshots

Uploaded new VPN policy settings that are available today within the Microsoft Endpoint Manager admin center: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8637.
---
 .../security/identity-protection/vpn/vpn-connection-type.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/vpn/vpn-connection-type.md b/windows/security/identity-protection/vpn/vpn-connection-type.md
index 92c4d2b8c5..d825487b05 100644
--- a/windows/security/identity-protection/vpn/vpn-connection-type.md
+++ b/windows/security/identity-protection/vpn/vpn-connection-type.md
@@ -7,7 +7,7 @@ ms.sitesec: library
 ms.pagetype: security, networking
 author: dulcemontemayor
 ms.localizationpriority: medium
-ms.date: 07/27/2017
+ms.date: 11/13/2020
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
@@ -61,11 +61,11 @@ There are a number of Universal Windows Platform VPN applications, such as Pulse
 
 See [VPN profile options](vpn-profile-options.md) and [VPNv2 CSP](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx) for XML configuration. 
 
-The following image shows connection options in a VPN Profile configuration policy using Microsoft Intune.
+The following image shows connection options in a VPN Profile configuration policy using Microsoft Intune:
 
 ![Available connection types](images/vpn-connection-intune.png)
      
-In Intune, you can also include custom XML for third-party plug-in profiles.
+In Intune, you can also include custom XML for third-party plug-in profiles:
 
 ![Custom XML](images/vpn-custom-xml-intune.png)
 

From d6f042859bbb09b65dce51f76867c4477970c4d6 Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Sun, 15 Nov 2020 14:16:41 +0530
Subject: [PATCH 135/209] removed invalid link and added correct link

as per user report #8634 , so i removed invalid link and added the correct link.
---
 windows/client-management/troubleshoot-windows-freeze.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/troubleshoot-windows-freeze.md b/windows/client-management/troubleshoot-windows-freeze.md
index b50e43abae..50e3f04514 100644
--- a/windows/client-management/troubleshoot-windows-freeze.md
+++ b/windows/client-management/troubleshoot-windows-freeze.md
@@ -251,7 +251,7 @@ If the physical computer is still running in a frozen state, follow these steps
 
 Pool Monitor shows you the number of allocations and outstanding bytes of allocation by type of pool and the tag that is passed into calls of ExAllocatePoolWithTag.   
 
-Learn [how to use Pool Monitor](https://support.microsoft.com/help/177415) and how to [use the data to troubleshoot pool leaks](https://blogs.technet.com/b/markrussinovich/archive/2009/03/26/3211216.aspx). 
+Learn [How to use Memory Pool Monitor to troubleshoot kernel mode memory leaks](https://support.microsoft.com/office/how-to-use-memory-pool-monitor-poolmon-exe-to-troubleshoot-kernel-mode-memory-leaks-4f4a05c2-ef8a-fca4-3ae0-670b940af398). 
 
 ### Use memory dump to collect data for the virtual machine that's running in a frozen state 
 

From 80a57c6ffa7335092075715800c917dc2cecdb68 Mon Sep 17 00:00:00 2001
From: skycommand <jadangerbrooks@hotmail.com>
Date: Sun, 15 Nov 2020 17:04:56 +0330
Subject: [PATCH 136/209] Windows Sandbox configuration: Organization

- Use Markdown heading syntax instead of the bold and italic syntax
- Add "Creating a configuration file" section
- Add "Using a configuration file" section
- Fix language code for code snippets; "shell" is for Bash sessions only
---
 ...indows-sandbox-configure-using-wsb-file.md | 85 ++++++++++++++-----
 1 file changed, 63 insertions(+), 22 deletions(-)

diff --git a/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md b/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md
index 16214a5f59..637aa964d9 100644
--- a/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md
+++ b/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file.md
@@ -15,13 +15,10 @@ ms.reviewer:
 
 # Windows Sandbox configuration
 
-Windows Sandbox supports simple configuration files, which provide a minimal set of customization parameters for Sandbox. This feature can be used with Windows 10 build 18342 or later.
+Windows Sandbox supports simple configuration files, which provide a minimal set of customization parameters for Sandbox. This feature can be used with Windows 10 build 18342 or later. Windows Sandbox configuration files are formatted as XML and are associated with Sandbox via the `.wsb` file extension.
 
-Windows Sandbox configuration files are formatted as XML and are associated with Sandbox via the .wsb file extension. To use a configuration file, double-click it to open it in the sandbox. You can also invoke it via the command line as shown here:
+A configuration file enables the user to control the following aspects of Windows Sandbox:
 
-**C:\Temp> MyConfigFile.wsb** 
-
- A configuration file enables the user to control the following aspects of Windows Sandbox:
 - **vGPU (virtualized GPU)**: Enable or disable the virtualized GPU. If vGPU is disabled, the sandbox will use Windows Advanced Rasterization Platform (WARP).
 - **Networking**: Enable or disable network access within the sandbox.
 - **Mapped folders**: Share folders from the host with *read* or *write* permissions. Note that exposing host directories may allow malicious software to affect the system or steal data.
@@ -33,13 +30,39 @@ Windows Sandbox configuration files are formatted as XML and are associated with
 - **Clipboard redirection**: Shares the host clipboard with the sandbox so that text and files can be pasted back and forth.
 - **Memory in MB**: The amount of memory, in megabytes, to assign to the sandbox.
 
-**Keywords, values, and limits**
+## Creating a configuration file
 
-**vGPU**: Enables or disables GPU sharing.
+To create a simple configuration file:
+
+1. Open a plain text editor or source code editor (e.g. Notepad, Visual Studio Code, etc.)
+2. Insert the following lines:
+
+    ```XML
+    <Configuration>
+    </Configuration>
+    ```
+
+3. Add appropriate configuration text between the two lines. For details, see the correct syntax and the examples below.
+4. Save the file with the desired name, but make sure its filename extension is `.wsb`. In Notepad, you should enclose the filename and the extension inside double quotation marks, e.g. `"My config file.wsb"`.
+
+## Using a configuration file
+
+To use a configuration file, double-click it to start Windows Sandbox according to its settings. You can also invoke it via the command line as shown here:
+
+```batch
+C:\Temp> MyConfigFile.wsb 
+```
+
+## Keywords, values, and limits
+
+### vGPU
+
+Enables or disables GPU sharing.
 
 `<vGPU>value</vGPU>`
 
 Supported values:
+
 - *Enable*: Enables vGPU support in the sandbox.
 - *Disable*: Disables vGPU support in the sandbox. If this value is set, the sandbox will use software rendering, which may be slower than virtualized GPU.
 - *Default* This is the default value for vGPU support. Currently this means vGPU is disabled.
@@ -47,7 +70,9 @@ Supported values:
 > [!NOTE]
 > Enabling virtualized GPU can potentially increase the attack surface of the sandbox.
 
-**Networking**: Enables or disables networking in the sandbox. You can disable network access to decrease the attack surface exposed by the sandbox.
+### Networking
+
+Enables or disables networking in the sandbox. You can disable network access to decrease the attack surface exposed by the sandbox.
 
 `<Networking>value</Networking>`
 
@@ -58,7 +83,9 @@ Supported values:
 > [!NOTE]
 > Enabling networking can expose untrusted applications to the internal network.
 
-**Mapped folders**: An array of folders, each representing a location on the host machine that will be shared into the sandbox at the specified path. At this time, relative paths are not supported. If no path is specified, the folder will be mapped to the container user's desktop.
+### Mapped folders
+
+An array of folders, each representing a location on the host machine that will be shared into the sandbox at the specified path. At this time, relative paths are not supported. If no path is specified, the folder will be mapped to the container user's desktop.
 
 ```xml
 <MappedFolders>
@@ -83,7 +110,9 @@ Supported values:
 > [!NOTE] 
 > Files and folders mapped in from the host can be compromised by apps in the sandbox or potentially affect the host.
 
-**Logon command**: Specifies a single command that will be invoked automatically after the sandbox logs on. Apps in the sandbox are run under the container user account.
+### Logon command
+
+Specifies a single command that will be invoked automatically after the sandbox logs on. Apps in the sandbox are run under the container user account.
 
 ```xml
 <LogonCommand>
@@ -96,7 +125,9 @@ Supported values:
 > [!NOTE]
 > Although very simple commands will work (such as launching an executable or script), more complicated scenarios involving multiple steps should be placed into a script file. This script file may be mapped into the container via a shared folder, and then executed via the *LogonCommand* directive.
 
-**Audio input**: Enables or disables audio input to the sandbox.
+### Audio input
+
+Enables or disables audio input to the sandbox.
 
 `<AudioInput>value</AudioInput>`
 
@@ -108,7 +139,9 @@ Supported values:
 > [!NOTE]
 > There may be security implications of exposing host audio input to the container.
  
-**Video input**: Enables or disables video input to the sandbox.
+### Video input
+
+Enables or disables video input to the sandbox.
 
 `<VideoInput>value</VideoInput>`
 
@@ -120,7 +153,9 @@ Supported values:
 > [!NOTE]
 > There may be security implications of exposing host video input to the container.
 
-**Protected client**: Applies additional security settings to the sandbox Remote Desktop client, decreasing its attack surface.
+### Protected client
+
+Applies additional security settings to the sandbox Remote Desktop client, decreasing its attack surface.
 
 `<ProtectedClient>value</ProtectedClient>`
 
@@ -132,7 +167,9 @@ Supported values:
 > [!NOTE]
 > This setting may restrict the user's ability to copy/paste files in and out of the sandbox.
 
-**Printer redirection**: Enables or disables printer sharing from the host into the sandbox.
+### Printer redirection
+
+Enables or disables printer sharing from the host into the sandbox.
 
 `<PrinterRedirection>value</PrinterRedirection>`
 
@@ -141,7 +178,9 @@ Supported values:
 - *Disable*: Disables printer redirection in the sandbox. If this value is set, the sandbox can't view printers from the host.
 - *Default*: This is the default value for printer redirection support. Currently this means printer redirection is disabled.
 
-**Clipboard redirection**: Enables or disables sharing of the host clipboard with the sandbox.
+### Clipboard redirection
+
+Enables or disables sharing of the host clipboard with the sandbox.
 
 `<ClipboardRedirection>value</ClipboardRedirection>`
 
@@ -149,16 +188,18 @@ Supported values:
 - *Disable*: Disables clipboard redirection in the sandbox. If this value is set, copy/paste in and out of the sandbox will be restricted. 
 - *Default*: This is the default value for clipboard redirection. Currently copy/paste between the host and sandbox are permitted under *Default*.
 
-**Memory in MB**: Specifies the amount of memory that the sandbox can use in megabytes (MB).
+### Memory in MB
+
+Specifies the amount of memory that the sandbox can use in megabytes (MB).
 
 `<MemoryInMB>value</MemoryInMB>`
 
 If the memory value specified is insufficient to boot a sandbox, it will be automatically increased to the required minimum amount.
 
-***Example 1***   
+## Example 1
 The following config file can be used to easily test downloaded files inside the sandbox. To achieve this, networking and vGPU are disabled, and the sandbox is allowed read-only access to the shared downloads folder. For convenience, the logon command opens the downloads folder inside the sandbox when it's started.
 
-*Downloads.wsb*
+### Downloads.wsb
 
 ```xml
 <Configuration>
@@ -177,7 +218,7 @@ The following config file can be used to easily test downloaded files inside the
 </Configuration>
 ```
 
-***Example 2***
+## Example 2
 
 The following config file installs Visual Studio Code in the sandbox, which requires a slightly more complicated LogonCommand setup.
 
@@ -185,9 +226,9 @@ Two folders are mapped into the sandbox; the first (SandboxScripts) contains VSC
 
 With the Visual Studio Code installer script already mapped into the sandbox, the LogonCommand can reference it.
 
-*VSCodeInstall.cmd*
+### VSCodeInstall.cmd
 
-```console
+```batch
 REM Download Visual Studio Code
 curl -L "https://update.code.visualstudio.com/latest/win32-x64-user/stable" --output C:\users\WDAGUtilityAccount\Desktop\vscode.exe
 
@@ -195,7 +236,7 @@ REM Install and run Visual Studio Code
 C:\users\WDAGUtilityAccount\Desktop\vscode.exe /verysilent /suppressmsgboxes
 ```
 
-*VSCode.wsb*
+### VSCode.wsb
 
 ```xml
 <Configuration>

From 6c829c9cebf6dd5a064223393499b9387a1b7a83 Mon Sep 17 00:00:00 2001
From: Mark Aldridge <markraldridge@gmail.com>
Date: Mon, 16 Nov 2020 08:32:28 +1100
Subject: [PATCH 137/209] Remove duplicate of name

---
 .../microsoft-defender-atp/attack-surface-reduction-faq.md      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
index b3a31baf6d..c8cd1c6d70 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
@@ -77,7 +77,7 @@ Keep the rule in audit mode for about 30 days to get a good baseline for how the
 
 ## I'm making the switch from a third-party security solution to Defender for Endpoint. Is there an "easy" way to export rules from another security solution to ASR?
 
-In most cases, it's easier and better to start with the baseline recommendations suggested by [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/) (Defender for Endpoint) than to attempt to import rules from another security solution. Then, use tools such as audit mode, monitoring, and analytics to configure your new solution to suit your unique needs. 
+In most cases, it's easier and better to start with the baseline recommendations suggested by [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/) than to attempt to import rules from another security solution. Then, use tools such as audit mode, monitoring, and analytics to configure your new solution to suit your unique needs. 
 
 The default configuration for most ASR rules, combined with Defender for Endpoint's real-time protection, will protect against a large number of exploits and vulnerabilities.
 

From 22a89efb7c5c1b4c0fd9bc23dc0be1b82ba29ce7 Mon Sep 17 00:00:00 2001
From: Sunayana Singh <sunasing@microsoft.com>
Date: Mon, 16 Nov 2020 12:30:31 +0530
Subject: [PATCH 138/209] Changes for GA

---
 .../microsoft-defender-atp-ios.md             | 43 ++++++++++---------
 1 file changed, 23 insertions(+), 20 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
index 46b7669ddf..63eee7a042 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios.md
@@ -24,38 +24,33 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
-> [!IMPORTANT]
-> **PUBLIC PREVIEW EDITION**
-> 
-> This documentation is for a pre-release solution. The guidelines and the solution are subject to change between now and its general availability.
-> 
-> As with any pre-release solution, remember to exercise caution when determining the target population for your deployments.
-
-
-The public preview of Defender for Endpoint for iOS will offer protection
-against phishing and unsafe network connections from websites, emails, and apps.
-All alerts will be available through a single pane of glass in the Microsoft
-Defender Security Center. The portal gives security teams a centralized view of threats on
+**Microsoft Defender for Endpoint for iOS** will offer protection against phishing and unsafe network connections from websites, emails, and apps. All alerts will be available through a single pane of glass in the Microsoft Defender Security Center. The portal gives security teams a centralized view of threats on
 iOS devices along with other platforms.
 
+> [!CAUTION]
+> Running other third-party endpoint protection products alongside Defender for Endpoint for iOS is likely to cause performance problems and unpredictable system errors.
+
 ## Pre-requisites
 
-
 **For End Users**
 
--   Defender for Endpoint license assigned to the end user(s) of the app. Refer
-    [Assign licenses to
-    users](https://docs.microsoft.com/azure/active-directory/users-groups-roles/licensing-groups-assign)
-    for instructions on how to assign licenses.
+- Microsoft Defender for Endpoint license assigned to the end user(s) of the app. See [Microsoft Defender for Endpoint licensing requirements](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/minimum-requirements#licensing-requirements)
+
+- Device(s) are [enrolled](https://docs.microsoft.com/mem/intune/user-help/enroll-your-device-in-intune-ios) via the Intune Company Portal app to enforce Intune device compliance policies. This requires the end user to be assigned a Microsoft Intune license.
+    - Intune Company Portal app can be downloaded from [Apple App Store](https://apps.apple.com/us/app/intune-company-portal/id719171358).
+
+- For more information on how to assign licenses, see [Assign licenses to users](https://docs.microsoft.com/azure/active-directory/users-groups-roles/licensing-groups-assign).
+
 
 **For Administrators**
 
 -   Access to the Microsoft Defender Security Center portal
+ 
+    > [!NOTE]
+    > Microsoft Intune is the only supported Mobile Device Management (MDM) solution for deploying Microsoft Defender for Endpoint for iOS. Currently only enrolled devices are supported for enforcing Defender for Endpoint for iOS related device compliance policies in Intune. 
 
 -   Access to [Microsoft Endpoint Manager admin
-    center](https://go.microsoft.com/fwlink/?linkid=2109431), to deploy the app
-    to enrolled user groups in your organization
+    center](https://go.microsoft.com/fwlink/?linkid=2109431), to deploy the app to enrolled user groups in your organization
 
 **System Requirements**
 
@@ -64,6 +59,14 @@ iOS devices along with other platforms.
 -   Device is enrolled with Intune Company Portal
     [app](https://apps.apple.com/us/app/intune-company-portal/id719171358)
 
+> [!NOTE]
+> **Microsoft Defender ATP (Microsoft Defender for Endpoint) for iOS is now available on [Apple App Store](https://aka.ms/mdatpiosappstore).**
+
+## Installation instructions
+
+Deployment of Microsoft Defender for Endpoint for iOS is via Microsoft Intune (MDM) and both supervised and unsupervised devices are supported.
+For more information, see [Deploy Microsoft Defender for Endpoint for iOS](ios-install.md).
+
 ## Resources
 
 -   Stay informed about upcoming releases by visiting our [blog](https://techcommunity.microsoft.com/t5/microsoft-defender-atp/bg-p/MicrosoftDefenderATPBlog/label-name/iOS)

From 48b13ff0dc08e484570f871063984b5530467706 Mon Sep 17 00:00:00 2001
From: Sunayana Singh <sunasing@microsoft.com>
Date: Mon, 16 Nov 2020 13:40:41 +0530
Subject: [PATCH 139/209] Changes for GA

---
 .../ios-configure-features.md                 | 29 +++++++------------
 1 file changed, 11 insertions(+), 18 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
index e44fe3a67f..7023a11ad2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
@@ -24,26 +24,19 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-> [!IMPORTANT]
-> **PUBLIC PREVIEW EDITION**
-> 
-> This documentation is for a pre-release solution. The guidelines and the solution are subject to change between now and its general availability.
-> 
-> As with any pre-release solution, remember to exercise caution when determining the target population for your deployments.
+>[!NOTE]
+>Defender for Endpoint for iOS would use a VPN in order to provide the Web Protection feature. This is not a regular VPN and is a local/self-looping VPN that does not take traffic outside the device.
 
+## Configure custom indicators
 
-## Configure custom indicators 
-Defender for Endpoint for iOS enables admins to configure custom indicators on
-iOS devices as well. Refer to [Manage
-indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators)
-on how to configure custom indicators
-
-## Web Protection
-By default, Defender for Endpoint for iOS includes and enables the web
-protection feature. [Web
-protection](web-protection-overview.md) helps
-to secure devices against web threats and protect users from phishing attacks.
+Defender for Endpoint for iOS enables admins to configure custom indicators on iOS devices as well. Refer to [Manage indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) on how to configure custom indicators.
 
 >[!NOTE]
->Defender for Endpoint for iOS would use a VPN in order to provide the Web Protection feature. This is not a regular VPN and is a local/self-looping VPN that does not take traffic outside the device. 
+> Defender for Endpoint for iOS supports creating custom indicators only for IP addresses and URLs/domains.
+
+## Web Protection
+
+By default, Defender for Endpoint for iOS includes and enables the web protection feature. [Web protection](web-protection-overview.md) helps to secure devices against web threats and protect users from phishing attacks.
+
+
 

From 56dd97958c4f407d2c2ec9ef5d54b07bc11ba2af Mon Sep 17 00:00:00 2001
From: Ben <bealfasi@microsoft.com>
Date: Mon, 16 Nov 2020 10:51:06 +0200
Subject: [PATCH 140/209] Update get-machine-log-on-users.md

---
 .../microsoft-defender-atp/get-machine-log-on-users.md          | 2 --
 1 file changed, 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
index 137fc569cc..55bdffa21c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
@@ -97,8 +97,6 @@ Content-type: application/json
             "accountSid": "S-1-5-21-72051607-1745760036-109187956-93922",
             "firstSeen": "2019-12-18T08:02:54Z",
             "lastSeen": "2020-01-06T08:01:48Z",
-            "mostPrevalentMachineId": "111153d0c675eaa415b8e5f383c6388bff446c62",
-            "leastPrevalentMachineId": "111153d0c675eaa415b8e5f383c6388bff446c62",
             "logonTypes": "Interactive",
             "logOnMachinesCount": 8,
             "isDomainAdmin": true,

From 136d6de96b8401f511fb4c585d3b087cb8ff926b Mon Sep 17 00:00:00 2001
From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com>
Date: Mon, 16 Nov 2020 21:12:46 +0530
Subject: [PATCH 141/209] Update
 windows/client-management/troubleshoot-windows-freeze.md

accepted

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 windows/client-management/troubleshoot-windows-freeze.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/troubleshoot-windows-freeze.md b/windows/client-management/troubleshoot-windows-freeze.md
index 50e3f04514..ee292cb2a6 100644
--- a/windows/client-management/troubleshoot-windows-freeze.md
+++ b/windows/client-management/troubleshoot-windows-freeze.md
@@ -251,7 +251,7 @@ If the physical computer is still running in a frozen state, follow these steps
 
 Pool Monitor shows you the number of allocations and outstanding bytes of allocation by type of pool and the tag that is passed into calls of ExAllocatePoolWithTag.   
 
-Learn [How to use Memory Pool Monitor to troubleshoot kernel mode memory leaks](https://support.microsoft.com/office/how-to-use-memory-pool-monitor-poolmon-exe-to-troubleshoot-kernel-mode-memory-leaks-4f4a05c2-ef8a-fca4-3ae0-670b940af398). 
+Learn [how to use Memory Pool Monitor to troubleshoot kernel mode memory leaks](https://support.microsoft.com/office/how-to-use-memory-pool-monitor-poolmon-exe-to-troubleshoot-kernel-mode-memory-leaks-4f4a05c2-ef8a-fca4-3ae0-670b940af398). 
 
 ### Use memory dump to collect data for the virtual machine that's running in a frozen state 
 

From 99afac4f731a3a2bc30982e97af7d7026008dca2 Mon Sep 17 00:00:00 2001
From: kasiak-msft <66700245+kasiak-msft@users.noreply.github.com>
Date: Mon, 16 Nov 2020 08:57:18 -0800
Subject: [PATCH 142/209] Typos and corrections

Made minor updates to licensing requirements section to correct for typos and update reference to "soon to be available" to iOS as it is now available.
---
 .../microsoft-defender-atp/non-windows.md              | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
index 928c6f6e42..98e6d638a7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
@@ -96,15 +96,15 @@ devices. Microsoft Defender for Endpoint is also available for purchase from a C
 Solution Provider (CSP).
 
 Customers can obtain Microsoft Defender for Endpoint for Mac through a standalone
-MDefender for Endpoint license, as part of Microsoft 365 A5/E5, or Microsoft 365
+Microsft Defender for Endpoint license, as part of Microsoft 365 A5/E5, or Microsoft 365
 Security.
 
-Recently announced capabilities of Microsoft Defender for Endpoint for Android and soon
-iOS are included in the above mentioned offers as part of the five qualified
+Recently announced capabilities of Microsoft Defender for Endpoint for Android and iOS 
+are included in the above mentioned offers as part of the five qualified
 devices for eligible licensed users.
 
- Defender for Endpoint for Linux is available through the Defender for Endpoint
-for Server SKU that is available for both commercial and education customers.
+Defender for Endpoint on Linux is available through the Defender for Endpoint
+Server SKU that is available for both commercial and education customers.
 
 Please contact your account team or CSP for pricing and additional eligibility
 requirements.

From dc58f94421b588df90f1dc7a4cc17511e347fb45 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 16 Nov 2020 09:34:52 -0800
Subject: [PATCH 143/209] updated pages

---
 .../images/tvm-exception-permissions.png      | Bin 0 -> 42899 bytes
 .../images/tvm-exception-view.png             | Bin 0 -> 30511 bytes
 .../microsoft-defender-atp/tvm-exception.md   |  30 ++++++++----------
 3 files changed, 14 insertions(+), 16 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-permissions.png
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-view.png

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-permissions.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-permissions.png
new file mode 100644
index 0000000000000000000000000000000000000000..748b97d6bbe42543c0d9ffa762d3c9d2ee533bfd
GIT binary patch
literal 42899
zcmYg%1yodB)HdB6Lw7io(k0!^kkUPLgCHW^T|-L4&`2X7(%lS5OQ({8fRx|h`+e*G
z&$?4<-FxSreRiGa**gZLp@@q`iG_fGfUB$|r;UJsqyYcEf`J5op9rU9hkqb?X)DSg
ze43&@g8x9VlUA2TKxjz9ey~J^|HgDzGW0?~!0Ug0Ar8A$*dQR31C`~Zb>Eqtd`162
zGyL`pe>jomemRkN)r08ZkI3F5@jZ)2OwCKJuVmG4R3Md8>v2o|XQfJ7%-{T>N}*rV
ztcd;3P*E_5=rJ~tK5zU9vI`>XXF<?T#au4s@1FJ)@!y}w=4)y?_-xm3v!2UA)vevF
zcuI;JC2)AYEuMhBe&by?yowi4?@)06@#ahUV4;5wetY?!8UK&CeuYPcQ90Mv)f?Uj
z;O;+@Zh@B{H=g3DK3t6u=dJou{NA(<IQ`(fw38><vAuO6qKRwRyj`)J#;X`FVymV+
zBp1)7vFzE<Ak$hh1fk@x<G>z!zQe=5Q1>H+kgBpW@pM*fJWGu!;hfb-WA4v<$|k=2
zy{5+I7>Y0Q4#_+$h}nh`s;gD8knfCa#@GK{`R8Q1O&(UpZ^fRvZ$I&C@l?f2b6m)a
z)=^0LgFeWX-HJ7h=OSFW5kI<?af!aYv_a3gGM?-HzlVRgKKQQPo9~T_HLjZDZ`_^X
z<y(TdYdM@+)=9L`XzZt~#jB;Pwc-rX1H*dD8vi{ieBMEyxR!cB*A0w@hLM~ngSq!q
zzh7ei;^wU{>|)f?SkZUjy@*#XRgau3T_$2B6&h_*W^rErC#{G5&yqg@af;hVI1hS|
z<{$~DrM<~qw8{Il7KYdtYMk0w1<*14kMTB`4cRPxI49PuxZei<ziW4FmDw|Rl%K}y
znhjS>)rWWI-4<@_S6E%yJ`SbyOB<!wGy_5ErD{1`$<|1`*uaGU_smncD(ux2VwCt#
zx%$o%-zOFK#g;sK8aCS)p;2j=X^n2-)EqC;RDZG%E=_fjq;6qw%ovNNNta31EOP;>
zap>}=GSpykT+Br7cA`XV)&(lFXPAzzal;<m#zP!}xyt3WY5%R}=T~QFujI5VdHWt4
zAORwO*Y}w`Pu)aNJi~;>=9cBS(i2k)Vx|-2O5`)@cnNZ#4Qks4h7LXMWsLb2nj+ba
z4`rTt$M~eAbR1ksRzjQ8MsNH4#n_T`Y2$QD`3j1UZUWDq5A(!;9>?@-8;Yn0CZR9*
zDqrgM>Y46#jYP-kMw<iH-*M80O|PjwkdE3|^sO}hF&ksoS$Hx)4JBqS@BZvoZllJW
zUu=@1v{=<ILECo1JPWB*E9FSb09QNQeciZ+ACH-~ZftDCd@&dizrvx-=s5|Yu*f$h
z&AMaSlx#+ZtX{$yoXQ_l-|?c+^wC|sGxQ^w>Y+9!;Yb1c(=2?`*Qby)GQw2Wj{H`S
z?-oH?<uYqiw&{+U-_!A}>RILCdSpH}$(S}Wz_G~%#0B^l9%bd;8{@pDeBk0reKgKd
zE*}|71*enNQ?h(Pb+)VCiiZTON~X8g$)F)2k5+<SP-U35!&2uj`i(x@Y__fz^V|#1
z|EFcwd+W#D-l>IdFjk_^K@$G;qf5DWlTlKxq=JhnRxsug8^t}+YebgDvC_SI8{X_h
z1@#r8sgQvC64G=MJUVtYmQ)g6OGeSJT>2D)M&MFL3Qf7Ou@r-yL`f&-iiTHg5>@>r
z@`J!Rlc@h&^OFpf9D`H{7ZD$r0_b9*5w?%qSRk#6LU|Of+=HIpTQHFdPWh!f#5)#l
zSMazPbUXUl)3Yl(?eeQzfYU_1<&1G-abK#5sHwI=g-o8aTi1hU-AhxIB<k6%UU7dD
zz1r1$msJHkTCtNb{6rcFPUWgb*tfg?%(yF@YFUH#7Q+apt8ns0LSp{ihYZ;9&p+=q
zB~YO$RC@XlQgmgbU~k(YMY@3V6^>rGuExYRhJ5wEIb55ioMgs7UIBZ3DKvTGubPo<
z)7(6-lFA(VVsZFP4d&@c&&Gjgz(raoKX>-H{(N-v`vViWZgUOwG6W?Kw)VqR5=e*S
z92|fsq76YBOm<Cf_^hy5`-jOl=Eh?FWsge+^MNR}#bU5>-)UH?HN^UyX+MqaIu)cb
zP_p}>(q>H}d*EejXh11-##lyLOxD<J>{x1vJftL@@C}C_T9C%PVsY1)>WSh)@{H>G
z6EcLa(p$cC;)k8~g*_*rC5dh>**hK8aQxazGR?xtA;KhZMKLeLR!rZ}Cq8EM{r3MF
zjNQU|plJ#2_j75(^P!yp_2IlLHwP$`<<LR)VgIMw#7Ca~1tTwj^-#Qs`)2SXm9c2R
zq`>0t?(T;({|%>aRo@z{hk38-+-z^pw>}EGI4;$1nLmCrpUf5UTJQ9$>wdZmMa6#l
z_3H1hpXPt>zTT|It>g$e1>VgSz|ObhUai+#BG+0qES-M;^4j;5+S}^-Y~$|;Q<4Ss
zL=R%_sEyf&3wgZm#}hZnr`sLHL~3bapW~&;k3uh;%N&0F`gM186xMgs{rB-K@aD_q
z!E`3|<Uzi_>v#s&eBg<b`Tdk{*Ib1b(?fYxaWPVpxc~LT!sjme{zRJBj92IIAsl8Y
z>5`{5gt<MF{#fz0DXp6}RM19W+su!XC}D8!tn>HvLpI+@rUMuU2l1ju6AFb64i26#
ze=_~T9dva#i-?T&;dU!(2KjKM<)`?~8nR@i7ewTEzLHoEG*YUZHk3s7cV0)66adi1
z{@mjFy`!Qcns;rXL=hj$UWN}HpSJk~c{^k)gUeXK81M4(l7oYTVZJ{KUo%&jP$X)k
zz;8c0)9if=l4-vIzU0IC_^WOcZSBxf-?Q~h^T0p9_QpM^B4zPjZwu<Vef_<#JDN5=
zHu7*R1u6^%U(-GhJ6Z{RsGhz;pW(`?TUU$y6t!asX@>k}jC>qGD+?}=j<-MSxqL#x
z(eP<;{23?&owM2$ug))q={9^;T~d_7d4qE)`R%1HfBo{rOGzT<u{vA-dhw2$F~lEO
zc=>QSJx5I>?tMrwG|T)m^e+<CwYVB78Xh&!HndoY&eG&9mb{iLtQ6BGChGD2Cg>o~
z7t)N_!DL;+kl$Z-6-^MEpinYX?k)B_rj!g+nELN(42>AA@kp14lcN2-e?D~w{YrC#
zYa7>#gW|ZCE1iCP*M-#DjEyW>*aJO*$4d?8#8)#=)lB%oNFtu>oZ_iPuoZHD)@`1I
z8{xYVkogePm&&3FjQb(#eOT|Z+FH1t>@Yj~<6HG=vqPE+G?!)uZt&_K1$o+}!_eA0
z2_)upKv{1uwg=r;o2DgHYrQZxYuEC5tkG%!wv7Sz*I?EE1WOGUEb0b>mAM}Y^y~fg
z>$rodmKF+CF2k^)<WG->ijs{%M^$}$ndW#uLBC<DuWC)&wZo-9|6Hu26MxSS&O+O#
zr+9zbey|oML9!n7_fb>g56Y*NCOge?jl5*+U4yKM17O^1%i)5jtMZeTmN2L=^CM%w
zaf21A!U$|_PR4_F=mJH(&7~(8kx}V4wu7`avpavO&yV@apbN5~5W`jB;M|*kI(})v
zcG4vAE`E^x_xvo8G5h6@@w$l|(Ql>O*CmtEeJEVL;%=Q6kxvMK#HYJU^5$mWGqcA4
z?BtN&KfaAuvL(ER8$MA<XlUr7c~HP?vHYyP_s&p)JHAYG)c$tu{^ZBG%zW`;<j=i9
zH{X2=o?r_N){2B&hD_N7<6F%I+?GhYDn)J^UGLS{lg(k3{(xA+YizQYAAXI#Fzx<N
zmdtQj7U5>gr%@YU+@E!ocSH3c#z>$mboWuXY3N4UuJ!j=4<~-TUU6b1f~wD~j-)Vc
zVQOJ`e{1)$6E~e-Wg&i{5v~C|-stW&{_IL3XMr%zZT@qiHU;Fv%x^nE&MR|>J`Q&<
z;j9HgPk-R1lpOj?Bsnv4vCYFe3m>~QW~Tn>2kQ`}kSp~k?HM}Q?%&Pcu*FZNs)&v@
zXIt>$vA^Y|y)wJ$YqP{iI-6<s&g1mz=>0iHA;0`z5wCqIa%N+FN`h|?HXTTI0y&RN
zkSB4g%j!Z`!2Pjwk9Mt5OQ>7p@KEP@AGSf*r@~wY*+}{jY%PKi8c}bI{1Tm!m{yf3
z3*NWVedUq?DeqcbR(;^Etr&QXOC@O1>TJmPj-}LYI{&ab_5)!kHQY$?ez#(y@{h8@
zeHoefKkMQCprOK19p7gc6JJ>oKUwhFZRf|gV*W=4tiwG#gWam?Pj^E?T`6g4mvaSA
z-luEr+=ybcaMeFq{VYqh9pBd{^VPUc(!?@67ju8JzO9Ws@!_x}X_J;DgVV6M8=4M*
zNcnI4eY$CQfV*e<-d}JZ`t;lU?{B)NEjoh0^Imie9$xQ5P@783;zF%4Iv({cJPZ>@
z6g(c=)ph>DlBu`skG$9!PD4_`t#e1l77kwC8_x_nc)d|HDsqsEeE%at`5nLgkAK20
z+q#r|XH%_KN=QZ{p{=FOsKOMdO{;HacB&1$eovXL0<B^ZI!)5{zdp9CYn93d5FA(n
z)G4%x7YPnEU3+HZi7L5Awk+7NK$ZCvKh8c_+IkA6r?GXHk`9!;NKTD|{pWCWAG9EV
z#haw_B!dEFH1i;^114VK=F&J^`Co>RUKwZywNzb`RdQ<~-g2sifQ$qb<QOHeyB*jt
zP4p()#_6j^8MtzEe~RJ|*5){Ia_8QD>xYk>i7;sM^c_)mS91ene(F*w-yORp-T=To
zxRFC`|KPy*{zYI$wNV*VNE+eJJ%6Q-;v78+BV~klEzCpFxse`Co`R-@6r#HotomdU
z8sU*8P=hm*3BI=C#2Pz6pgwK`iNAjbAGs;FVvvl{r5V~7L#rkVBVIkf<1FB$_(hn%
z1%^lP{Y>+?b0Op503kAF@*#R#Xmx}xvo{?i(!peG&oP7+pZzbg240_Xx`Yyf{m*r?
zUe@(7OUf!=!x<)(!Us)v{-b|O5g9V`m`x`Z3$tRoKb|e)rbvsHt4L66GR&mq3QbKV
zx;fD~{vE{;pd3|;SIDnq!bl&Ym5T>v(F}cuiU~3%0Y+O_kW$4g5yVcIFh*04dmktf
zRwxUEzeZI#8bM_XZ=d`pGaOkL$hCWuWpOjs*MjM8=F;@&K_-f{L>A}h&-@v!-J}Ui
zPZFw!uk2pJ{Q`DvNrN0O*btbnL`v5}K}sMV{n>)D0pib$!64!&jX@RB4dhTun6b;E
zq1h6dS%d29Rw`my3gC1^o}PI%!wPfX^mvp;!N)K~<O;A>dTt9u+0ZHG5VV@pQ5x_n
z{O_nkF{_@Xb~-D?XGvU@nxx@l&3OaaqS{!_TXU}ELe$o!3l;q5ktB+OqDuu$M}_F;
zU<G18xYCpj^^27{bR2louZL?!i&J|wqZd>hvNxwqDef6s$$gf1Ghp@GZ2wIg8v#W(
z3`Xl9T7w3KYG3zSJBXUnVh~+x*)XO<>xqS{V!t&S14eClQ<@8GFF))*FUiFq0<2Qm
zVG<3@#^rJ}F2OY+WiI%A>{oW%*uG^ifIv^ZLxp9hw_y3$ZgH(lveWNbS>DYHa6<Kh
zV*aMsJ~~19T`uASBnPl&N3*Okby9fJk1WEjVAo+w&ZCe=!7VwloLIdq-HB3SR^leA
zJ<#>P|J~A3tVoCD+(b;X$FoJ{UfC+LqGju`GNss*a?+HK5#{p?hbDvqLA6&k+PGnz
zTqCf;X8r+v2iUy7%H?w)s_-&UslM23@H?Y~03u+itcYw3Q9X&|Ui8+#;zxyig1CY8
zG`wZp*0H>0!Y){hM~$T}t|`i^51bSYF*)V@|K#1Fcmi3_fdG_^WmK}8fn4t_Hy~6^
z?QIYJ-(D+fnhSW3{UGEMOv-PMaG8i#cb=YF5_TP0IVi8o&-(JK{pMiWs9oU9p2UpV
zRJELlmDoA|KVR^JwnfV*4DfxlpBf5Q<4sSr4dvvbEVYjq>TGlGPj+xZ+jXVp_4h4s
zSiM)@5O-hbvh=#a&u(|>ndg!%ccFOgG`@87)2yKT0tADg1f{9k9HUp@lL3}oWz7ja
zcSll66q9Uuv*AHZ4`rhq%6>D*_-Rvu`oz1BE_1=If^9}s8iDg*Z%?bIrV3%fM8sK<
z?#7m`?ha<-*l_gzzc}7>;Q#@IU)qSGW=bnxtIAb`Lh{Y)J$jno26%qH&i>kc2{8==
z(9*OOw$1H+H<efsu-V$`^}-Xoyo=qM``p>=u4uMGJ!;^Tz7$`Mg-<3;ni$K@!LilU
z*vQMAqJ)B#LLGjD<$hQJoKQ~m1XjcgjHqpBAbs_S2H$F<9m#B@qvq0tHyBLttc?ag
zYJR(TUesH@B0&}ZHt_T@nHBUZP!Yx~5<0~RrNMr(74+Cz=;ix-mEB%`(-|6wo%A-}
zaEV8#`{yx}b6z>kp*Wx0eCl>DpO1!7r<>c5?OTE(Xmhy8hvw#*wbX=`k7^ki88RYw
zV;q>Mhv+%dr%HISFtYPG6>n(c{SVHZ5e&5735g-GP>!p9Nob@Yn<{z}3k!?9y!_tY
zURLO5d&a{rjDr#XWf+2v&}P6_%|ibBmO;{9Cz{cB-@=A7CD-|!PxHIH@UC+GD{lHy
z?aIi!N5tm?)*D>CVml_qu8v<^R7Tit#+woY=$5Ds<6y;CTKZ<XHgtSe25gl6ggBit
zqJs=#=)F=h5fKrnsMpdgHB9Pn0ACxTqI7*g8fXk!0LdbdiAj9Gk&Z&hOQrq#m}Jku
zKnYL0EpF;U9D&C2SDD}bS!ix=Jw$(J7;JR?76Ry8OcA`WKksd{VRzY+hwGrtbYb@E
zFPf|0{qCLw&rZmjOPzbR8wJnKeux~5yhfj#@3-yyF(y6dn+!d{H%p2~F*FmkPUDIm
z6K4qL9uO~89I>PXMv0dq&4Ez!5W?#dyX45Rqwr{oi^gE3$Mj9f#QZU+cSz?HGQapB
z^0`VD>YQ`T&U7<Owt7-PeCgyxaGK;l`{ToD(Kd>E8b%@#4S{K65`VZr$HXQPuv|~<
zqH{SF1>4<Zqx<ik{^a{<ahC0eyifMEqkn>vr_Ncxblq6eW~G&k>}*n~OxPYw_0gMM
zU(34`<jwMfNZB2uPRbbpfLP4fhE8*m?jJ*9$rRsXhEUwtS}o;>+9%T?MaLvM!0AuI
z9W5~CT~7V7;`80FnTC>}>qEFx^cX5>MNh(SrA~(O4*&`N$~&;#Tl2|1_7BAuG$k-Q
zFQul&eB_;e`Fi28pX<@?_>V<Fww_J?-_qhm$VouCGo{4aIgU8rqIiLOTFIJZ<t!U{
zLkG-bRO4u^0RRY|ZYna1y*sxsGs~yNIbHpX&nr932J8)Omh)tk<Sb;;nMcAH#p6c6
z`t#=xa4tjK#R2urEH)+`b1a*p>9&>_3W24xG-8W{$g?99-qE6heskkF6oy7LHOuj)
zwf+Hc3OMwBYKX&LUvk)&o9J2gD*@02T7S&ew=nyjdzAJCJ(5b`Z_l{{m6>TX@?K*V
z3D>Pm&Da>$y*;6sW!(TqU$jC=a%{i|x!9G?FBE$63VG4@ujo*<@BoD`$24>XO3G74
zc&2C>uF#+{=gB>BGvqD&ip1?WjJ+7wd-)JHrUn|6nxlWgct=hCIToK+FMy18Z+|jq
zU0>L<r#Cz_OFHHke6~A}&+7+}b#;t$YUId!Tv~=ueC1uSyDsYT!n&UlojD1c3@dZZ
zX|^~>jCM&4C?@+bY26I7Rf3xbH`aV8Ib%qaQkGKw_Jy#278+xSWH8o9`ezRe`Jyn1
z0a@9c@y=jMvG8101f#wjpvp8+CAiKkdCo*MSbr&M{XDr<o1h$PYj^rz&Y&h!3jsV-
zwLqJX4`4*sc9JJIhpRT&e$r!Nl6H2}H~PNsgWh(x`)@2+udi9Ny7I%d@prCA{l;29
z@&W19<oDml4`1CrO>AUhnEC3urX|Wc#Iyw*$UGpvVPL%vk+cy0#jK<e&$x|fMaYi~
zW0RK_QzQjc=-urFQwwm8MB8iASQZ$Cdxzxmijw2#<nRjS7R9q-Rm8mK35_Tu{?A-+
z;c?}0zyJ5<1&Rt^OzO7v9%&h~<FAtamO+2T$t5v*-<^@c`>3hc+*Vsfy<V68ADT<<
zcTbRQPiaK$HVW5Vm^_8Lx@;ChvI3NOZ81^3(m_V7xYEo;#qK_+T<x+@b%b@Rvt7Z1
zs`p38*!-0Wwo)<;B&CC9&b#zXOW_4e<Mit1==7!W)IYY9jYtWq+ByE^1G$#B@eo_d
z%nXdDPquUn88#E><JS^GUb5ZzlC=CTlZBN(BPW-5z3&#D(iWR=N5AuO`d-#2EnEe8
zZN>4uIpdIg>ahNHu*%sT-~;SMnu)O{dGQeMj@z%G5i(uzFJbT)>d`j(oq0=F!=lRZ
zSr@`w$)lJA#ZJt|2e?LliqtgYxBAg&S6=(U^=`$Z{ilMa>EyNZsnM5!=7(B&W80b)
z4`Ew#Up3~if-KC&W^Sl7l}bD?O@qzP^OqFV=Nb!}>krCIQ7U&jq9=2y6Tg<vNPc6^
z2%dkAF#6I@P)o&8a)1Twzw8o)@Qa{IiLQ@KhQ4di56<-FyWUq*B*Q1we+GN)=CQ(j
z>DlVvgw&2?J!CBhaaNMxDl|Yc65)9p{U+Ic4?#t|c`$o)c)xQPyApca{&MVQJIn2{
z=jJg6HP-Tvs?$dF|Dp`zbB=X>2(0a-gbtQu#~L(qYB;}2v{BlL<;z%N57pFe`W$0w
z-;^4^CmBCb+*>kE0F6)%MUo?WiGanOOf1?S<`SfmBl5QPUvip>T@d%|V-uiE9!B!S
z8PyiNES4V3Z1+Y?#(ragCrbSEP1}uQJxEunL{RXto0YL=XmKBeX-M0aRawfwFd}%i
zN@v9mMWIk(FK7xwW?8rQnuH`&?)05@bhy5fH%79}|AHBS=;;@J;&KoL`DmCGE5(D_
zTY_(xmn2Qoj7=W{!cau~KciwiCEE)9B`*9oQ*#3P%xM{i$|_EE2<rmx5k%Rx0^DRm
znw-&A8#{)i#HivW`tL;Aw{a`L$$<HeSXgSWVy$)Wq8J*Z5h^5OuZa^XqHj$%v!pEa
zY$@<e8vWsy1H`tQkD0V3KD~_K!7oAo8*sAG2#7!DliT0-@mVHO!(@m+R;@>tC$!1P
zC866S9V5}aSi@MA^4cd4l_qDh56b%WdHj6;63+8mVuYbT#}Kpxk^Hfx63C-hP9o|X
zn)OC0^Z&aU0(tpR*sx*_t|tWWp^7t41)YwSm}!=I+-_{jqQ!ZVjXpwC?|*M*4R_lD
z7{JLukZAfO3`qsMvDso=SIek{YrtS^x_OzsLaSi#Wo^T3COJujeW7xB<9~VcMK=7x
zqZ=4~*0E-=E$sR?!9CuH2P?KtCNXX1YB>b+J|Xc4CAG2C&+B^3qunV|b3@R6Xq^EY
z|0XMck;!+X=T8*+q~!byU(LU3G}BWXuf2c$cmr^i4CUxOs~+UGvsC863E<4>tCaj*
zGp*i~>Dj`1hZMNU{3*E1C_>WfWK#k&kXP4fdje^NwK@>cQ>ld^gqc|#!oEn|)JXkA
z{!SoVy~yOJJGF+^-g7L?2(B;)gZ+4;WyG)Q(5o42q|!7^o}@$eH@XU|#<IOu1?AP_
zn;bRj(OHO}-_+0+-{+e=zxvhVlG-wwBjLKn@!|nKukqDsu@wg&tsBD#@$$1XA(#8o
z!F#-7IuPXo=f^VQN@f(2B!!Y=(&6e5_xLqbaD-ctQK=7rn(v5vZ4FVGoJhso-SdsR
zY1B7r{D=@_era`(7sGLDO}ngGrJkW-_T$O~I|EUAe_@=vF*>u%_0sd!TNR0Mi%iC0
z3}$sq2!KwidI{m@wKv_=gnsf$^!fN^!C_(6XAW!ifc8}IbLm-Vsu>@iPoQuAro%^b
zgEo$hrLzParJi4gtVTwJ4U#K{CMFZKR@D?;)u@M#QI>6V=iUl4^JghCL<F=~g>*_f
zTvCW&(44J$JA{Gg+K_Ng+n6z;tfHc9xn80rF=J`x<MGc$6{t=Eua?(c=x%VMjy~y3
z(X$dSCy5p{Z)!R@8@AVm!goTXFRX?VL{bIQ_FZUrz1~bOM}Um}LP_)N06tkh^~1;g
zUk_-Hc*N`ePCQP(9HSEnnB&0yOsBFcS-V`A81c>!>=D@6XUm*SfoNJIYk>aahYlg$
z8vh%_7*2aSR)+V8>``0sg-2tSy2K0fMMXO=2+BTbqSn%XhoibQG9BBd2R`J$FJ{3U
zB_?Tq8(E&Mv59s-R%R#W)kTnmO38u|CW&c!dMV$Lji@yp1FgnK%*$5%+!lPiFqr6v
zX1AV);w`$&n>?MRy%N*&WmPApcK^x4BPw(AwmtW;z>5Zf)QSnYL<r4FTB2P+y<S+G
zVu~rflvjl!gaB>pqii}<DjjQN)U$%f-=o4{x{Db>4<iKoPARy<U4}*_`zsSU7Ioi1
z4;%9F9Fty~9P!b3^sZ-^k%>Gxe`D?W_4!u6ViIk-!0!s9V4ABV)ya_g`Y^-qxF8k=
zTvX;M%YXBsL*chtb<j4tmR-;<GzxK7rZP%>CobtW9K3wrG07GR6Af(kJ?|?H^uiMD
z{NivP+P8+pS3c9(S!M5idM5;MVS#dBOT0=>lrL-^N$DJEuws0-V2@zML(~Xhc{$)@
z_1PW))1$k&nV%>IG{|66C^apWMDse57hIJ{Eh59^cx)M0T+GO?H8MUvK0WO_2~F}C
z%YvFKB6Fi~$`AvS#ao1fS-&$JfIP1aWHpFatN{2aOeD)nhD09tsNVL`s)sYBa99o>
z5ep|=HfIFa8~8dPC$3|c2o%Epr>95DR`{1-{Xc+!B^cT~=YMX`hWnKmI4M}1+{#Aj
zgT-t6@L-B;OLHiAZ=WeLjK(Fl;y=`-LFarTd9b<aKM~4%Id!e}cl2kJrs4fcUu{$Z
z+oS>0sN4iI2d|b4FX56W0t2}UJr?l==Bb>IyjL+_jTD#X1v;1ph9yA&Whf$zGLXVc
z(26V`NX(LnVvq12;~y5zu*C4*mCZsXDBe5_F?yT8Huf$w059*dIU*T2r-Di{k1cvQ
zm-!VRgI5q&eXK%@g~k!FdBDIO;Uf-;00}})@c!+G!x@HU2wO1z(wkPr?j^!M&-<kh
zZ0>iE3;@({s-7PJDNV-67ggwk0BjtP$w+*k+*gw$qP&u_C<bkpwu@cqoN0ONrZ-2O
z%*>jJRpwM5Mj<B%J4d=mQ}ofq5YkZ0VP@@xM{grYk6DAUGc!S>2ugS$9_ArA!?ty}
zcueAMqN$u|?Cl7H3=RxSL=<DT!3UYXRK;`$jYw3+yb~!C6oEX_5QEn;aum&eQCz}b
zMWCHQlR#J)N$|SZMi@t3Z#I_IF|MByqX%(*UI0}LLS46;x+Y7zZ+oXl_8chf_<lsf
zuJQ);rP6`ws7PEsSP9u}7K_Qt{skL00IE57f=x)5sqvC~E-_1MeB6IhnA_dQ>@2Aj
zC%5qe%5s0rTuV2oeE+(b)MH|4<mC@`PEOq{R(GAL@o^3ykiHNblz2GILbuIK*4rC`
zj83xWfCof4jCIEsn!#Q}IFS~tk}<Riqqz+hmm$P2#Owqz^vH_i%Ow^xr&5E;utbYq
zRk<S{z`^43W31_rTl{DV#2h$%Rmz~}iL(PMVraRF24mr<d**HtpeH9oMK*R3?j~?t
zc;vZ=CL^CcUMA98B?rBNb{_};zl$-oxtJboX4Gaq5>L~gN$Y=5Xh<%=mz0B#pM&|6
zSlsjGZGI=Q3YDOw+u=lB9q05$9`B$uM+by$^^FuWink13uh9TObQAp{aTn$uJqK1>
zh^)XC0S&o~bgn%fQtk1jtbC9G!AnA~Xhji{t)fERAuUShaMrJf1mLAmSsd+60tS*|
z+4w@uv)i!ns(Kod3K<!)s|Z6Z*AWtOB)oB+V2~(6I}TENDNmnqVuL#^I(5HgGCRZ}
zF^b$5@DFb{nrDF;BI<239DzQKWXWP)!qyTV*G*@i626I-o#dO@m+fZ9I2DH-?BnMK
z)Sq2_4e-3d`S>Mhq}e46aJsJRikBuoIN1=+CQK=!tqssz;!Ma=t%-UO-4|{R#EmUh
z6V@M4taw0HuM(D%9PvqvO(;Z!F@>Xe%u}<muf>VjSF>YbT^;sQ7z~wNr8EskS74xe
zkSZWJA}}F{^fY?cqirP9ct)dA4B$lx$Dlfizv~$(iUhQ|5etuz4-k*tDtBkeC}rcM
zH{SI@#&l;1O?3(}WhS)a@Piq2$})HX2#!C#KgZM>`8@5MDmjOY_0SFdINM_~5e?Ip
z`-nfQ3KJ_lJ|4ZnmBtE_tBXNn8S8Ye)L-d?4s!#<H_Ro0zN^t|33Y*;zHYF<`HtLh
z<bttcC|FRF@fN9=yEo^SBaj^k6o!+BA!aF*3@rn$U_NdX%rxE?ob=3z#E;9?hzy1F
zwyEGT@{o)fUle3IcOV$Ah3pU#2}5VZB(V>*ZX0H>br?5O2Uf5bN`4enMvQV`p)t~m
zI3NKHHHylkw=1X+J9=cX3zYkc1goPZ;^FeVRFO@j6cnJgm2C=VRhX}P)=fh^RfqB$
zqQ7iFuC|LLR=&aXqnrJ@K-V9!A!oJZ5-$BC4nJRTF7d$AuCB8WV(<4eQs#tk^E++(
z9`caajjn#J;reOaD=3R`6N!zh5tqd57+}v~hLB@=M!3DO;Xi!+9$~(iN!z0xqs)YZ
zpp~<Ugn58OPUh;(A^vBi!$Qux-I-ZrHp1MZ(?cUP)IVW{;jrOoFEt_xIcby{_RaU@
z3j&CTAk@A-cZw!z(Hr0lv-9%v${eHfoM0C=J8w2G%<VdYXLp+ioz}CO-kY4}Tr>$L
ze(d-aVdzxwvDI;67i?W#OUnoTRx!%KI%RSXs}azVST`YWse7%jumi6~YT&&$O<9<-
zlNVMaZZjpQi_w`^`9z}fC!qvT1=M9qa`X{qCN9>y77nJg#YdVS1M;F~>s6B~e@S$g
z+N;m0{{0LEs)W9~MHPFeYok8M9{*V1;-Y7e&)7podGFgO>)-`^SDRAX<~XjoBH2#E
zshT>4GL*(@>Y%;HN|WM&9xCkJmk+E%x~G>H+4{mwP)q>O)|Yl>#x4#ieA^0W&q-$Q
zwFCF+sAJ~w>MGVUky;p|>4qoEHg+hTzb~pTR`UhUd}(6Be@h<e*~NWDKQE#toiQti
zBs{=dNFU<@xT5-m)C@f)dA8jyPI~qQ8YqK%i#|gh4@ESKa=TbYuN=j3dTYk`-1QNo
zu}5Q7a($g}M#{%!13FE4h9;G?m-q%J;hHF48krbEENa;YPaV}kks997p;#5|GPPQ?
zeeTCHwN6UyM#kxu*l&^v)H#LsrZEmM*N&V+9c9s!xXtD+xhvjcZ8d^)wx6?XpW>Hn
zT+u6cSUa0PC70~J9S1G{&5OwSND_*xL+-tLu!H<>TU5vVBLh}Nek2UlQx2_FxkR!2
zW@|d?3d(t8JE=N#hQbvXuEOPou0XCO8OV_BD9+9>%bnl|0W=RZ&MMKb!Rz&*X^mC$
zA4@2vfqA>l&sIxWpzK;*B}hYC&fiKrQdb4g8@F=}gM}h_KL00vk|yeh6yX!P%u&xb
z!JP7Xqs@jf{5+``o?oiCRBg9#TO6rm{yR|zx$(A`ZIZT%Igs&9wH0sqM25Tp-=?Io
z)bkwSvviaKl>go2xlK*ttO-mGT(0Y{8tX?YZWM6L($irx#=(?<WDr*S{l^g8>dqrV
z4L^;kaNBv+l?K=`fAO&A0QDGf-j;D-P2qtBF<I&wOC&o7k@PPi|B)e;71%1oe0fsx
zl@?(zZFt#C;BH$fZ-n#&Y<RZxQCEP9=sg!cR!Z<WV{^UFVSQsPZ0R_va8A$Mx*`ef
zXaBfHh3xLB&a^;CVpu%J@(;>nqw7K}rCnrjwx`TNq!fi+ZlmnXA&LNl|HM+*v`*9F
zjW!aeE+3M8XuwH`PK6IfRSUd^;Rg~Zz2c6M=%?HWZoIwR#b#V8%Pv6xh4<Hb--sOe
z9wwAFahe_cb}RfCF{(K=v<iU;e*Ys?TK!L~<(wc62GrdbVSGerMEjEh54ue7gdhmd
zU2lO9y1Z%m7ylj5<+B<%9AKXkPQ$55O64_@#niiKPJ`V_#ABk@{>+s)KzPzM%AC7r
z8`Vh6CCrcMQIHv5(OV&*Hah=SCP4YR6T)fo)LCKsV_r&!XI`N9#1WOPo-B92vNu`a
z!GbkWQ@*tWt6+A80{gW`3+|SUXOxB3e5mtVT<*(dZI_CL@0DM!;TCQMI)IeTvlsHO
za#ygcWZeMj3i$nhk2rAT=e4*#)U=e8b5imA*|GC_BQELRf62EfDdh5PDJkPCkKG9b
zN_9D|(`x+NDPchAN{aJ#C;-)a8*k5%kokiFM=7y_6oH_I)==44s3UT%CXX?0GZxa$
zL08-xbNUGz2u}nkN}HgRcxZID1*yq$$8~xD?K8@7cN|gSQP&(1Xy#DY-5m=efSf8E
z(Ay%T=!jq`VAG;`j2bZ8L>c)_gY|DG=rRXTm0hc^-@Uv;>;$)mC*4iT8a|bNeJO{G
zY4+vvo%9M_$}}<o;)5D0em}p@HyOXPJ6v}=Pr}M;>9}3`&qY=hr@o6j4`o>DEGFf&
zx?V+%Z{&0zSwsXNW%pPy624;7fB@2IxbOl&mr4%jt8;gb4{+j#NX}#vq&CYCVI)1^
zF%pYZ(T-$g!5LTMNZKc@lIjRf`4o;|2|hQrKjn7bvXN3;KtO%O2*#r+EfIHpU4+!}
zx>VoslNy&Ob)SJ+N#HB>yI^)HJ!S;zGCIaWhA0vn6NPy>LFCnCB$;EKg%6BcXVg_S
zvQ@cAW0v9H=CK`ND9wGc%D|FWG*ud`Z+a0iMYoTQEWcnPYBq9(wMu~<s^SwPOJw0@
zFG<|S+z!zE$@0VrMK!-HBEglYE=|@jv|{Jmmm2Eq@cf&_f{yl5nA^tCW18a2d$o;a
zuc7?)rt9Am-@ga^x|Yys#mjE6zJ>gD<N6*Td~3E-Dv+<7nVDlR56*s+x0MQKag2VU
zqN2hdI){Ft<Uu_?z=mnsd{+`;=nNnu`^k+FS@5llpTb#MTDpa<5^-KsQpBG<*!>(g
zlg30Ai<<>9)T2j=CW=7A8t$M-#EKbyXBa$(c>3*!CAkJe%`q0e3EmfPUO#fnyg8Jz
zuIS%8aJux5rNg1OWaf}1tg9r+Cky6W!GhXzm>5p+<(+w5_G@F!_1X77^6}>Iy+8W4
z4To-PG+~ME@Bhxy5w_QwJ!DaQ-~GjB`+?>@v;bi+<2P42f2ABdfTadG0`q~3gJUQ8
zTzUrm<p+Aqa++^ahloJrmO&DF+LX{9@fl{qWcE!farIIhV8tt=*%Wx*2^tHI3>QR{
z9A#}HmCnKzo#;wrh>33+hJ=&Yt0MZr`GpZG^-xwKEa9WIH1!-%5Am@Qp0!9AQq+8L
zjciAckQfAiB6v;_sT8?fJ2{Hv@CLs5wVCilaMIO6Aj$PW|BV5h3IEzrf-}z)<%rEM
z)dKY;LD-Qolp*0)gJ`*b^?HXTLc}_WiI}qtQ<m!X!~rG0G3dtwI|`tLA8R%Q!o%ZJ
z_@*dJeC|TnFgJ8ijdimr7-r?MdK}HO3bQ@_)fX6tU6B1|9_#=fKZ?jBlV1Wh7nq7U
z*HUzU6YG8{;@R6P^oDM9d}-h%5g&m|=PoeDh?S5GN~n04VIj@Q>QC>;q-&x-Un14a
z(ukppXoV|P;4W*A%s-#Tf0bSdf<r2(oKojjn!>W7yjV!JGsD7yDacsV?BQEzFBvS8
zz`I$4iFrSQ*$<5X!n)1re8+^2!B^3!>6RqNph8kv*#skIerXKu(A5wo!VYUqF>pLT
z#QK+<S+Bw~-^DZ(Q3<bgSw<moS3oX*#c6@=<j($;+dUq{G7cwilyYCRVFBHvK|c2K
zud@2Yclk@DIOYkq@xlCBX>z9Z!xZtG%rCX%Wfi2;D<X{66hZ~qmJBgiPi#EzWH9EL
zGI$s#jXWAJ6RCA_L1T>w?)YKAc@s&`9(cN@8QoFDe~;L_1Ie&rdb8uR+Etk}n>Q41
zl)CYD|4F~yj|Ko~%`;r`QkKt*fO3`XzcmHj^_g926#0Rpjtai)M6lfZ4s${+$5%en
zp+%=u6RJpUHbD7{o2+<vB9Qd3=Hvho&Qj+{;p9?lh@aGC$!eq1QRtZmn8scb#b`wr
zkxOT@zt@@=6duEJk!n!Ovr@cB<i*t*5~og67nKR+m2i*dGZ^9|x^6Chy$jjGfv|l!
z#GyhQtB9#~*OSe7q03OJ-yaftj!5H-#D9U_zNRx$#!yx|G;@w6;{VXgSvwQ*A`5Gl
zA%_x)#u8WEB;8-iS~@z1nIGam!V^LGUK$q;ljXQDzk^aJj4%vU7CZUHNzQNMqcz}H
zfRm)JQc9A3jqZAL-5*yD(qm0<N3|ej&I2@eN&RtnebA=FMwH_bY8?9ZN)=F=|0!xS
zJowMy_oDEVh`kMmrDjAW6RvU(20XPvQN`^}oj!i4o1702w>_r2@K8Qr`y#6T{a(5#
zn~cwTaiAlh&1L3_2EG-OAh&U7jgy-%Wn`sM9%RRelUkD+U~VLk#$Z9gE5_79i|ONs
z0B|N0SVB`6Nu+RTP$?HdMHK3cBw(5Jj$}N~bksp%Z{XZ(8z$6nh=T_4dtJo#%Q?YM
zNDTNiIiMjDJY*S$oZB#I>V7)~2BuQEAA~eW6%UHUOiRNoWvJK~h&kShTvE#si{}Q>
zM^_OvSQAtL0?%mGE2xNEB7U=s5=8|4`_=V^ev9vg=drxC$vS1`qkAu;Ft{Va14B9o
zg($UI1df<W$<*<P8VJG1d<;40b`;<oCtgI<HxaCbItu7-k8-!EzBbv}1AlhvL=b3#
z(8zZQ!21A!32mu_u7ON@Bnmkh3LRjfvaF~cX-^K;a|R+aFAkNqMTB~|lph<@4itT`
z9(pxJCH%_md~BqRtL$FU_)FIp*DF}b9Nx!KRNINM*si8a^r<N-v4Hyl)GwQoFrHOD
zNJcB1Nm&IRTLH9W8#u{>!IX?~GUSNS!K#Srp^Lp?==jvaQjk&+o)iLQS-e>W3$4P8
z<QGi349sGqHNn#J^ZGsro{%HmCjy^61k@uGbr(=SeGbI5c~C+|>O*(}Muhid{{9sl
zH)0_2lj+vgvPc4j5CyzvE=793_SvmKm=uhgpg}?QH1o<Qi-WB`lh-SnP|*PaysQ{%
zJwXfh29*J@T|1XBH6^~!>c2eVq+g^hjNzk(WgtcU&@z!R9wR}pmJZQTNV<Ai&=8L#
z+aolIj4PnVoJ)o^(h!C^i+Rmr7m0Y;uUlVE>N%lZ7A!F~#W9BP8gc{?zjN=rlPRcq
zGsZt(*(+?yRHRl;V*iQ#U#RU;QW+o6j%kMS8~j*q|AIEX`uAafB1+!&A!kgY-G6<>
zCBtqa9JlPzf7M?t>KqGgYDpk)t1F<lNoCcXXa}?P-Gs!Zwj8n??iiMGu)Pe|Y<RQ+
zHzR^F9;hUCCQTeqsttvmIGQxIkQgE@0FHQDTw5%1jTucsvO>~Eis&JQvLiz)m_mHW
zHfI7@DoKK~i<!rJf~IpOXgnI7Wg<Q^DN$L)H5Cbe>+#fq^uDJe7Q;LQ7O^u$TqPw=
zRUoNQ!i$Q|KEGXHoYQPM_T&o*P#lVS0*wv?niS5OHAv@I5mK+1X2k!EV1^KU2gSOF
z2vCvCl*dc26iY3N>P#Sm6=FS@-)V65kc?sMA?F|ryQ9&|g=9li@eE|MY1!u3Y(uK}
zMM!3f$UwDRcqLMckUg%F!uW7@kjo<+0(@}L5`sj^!HFB7dXTCri+bMzp-5pfPm|!y
z^mjo|ztQT~lc89A0vnw{J!)&or}_ScKd-{z_~6aR_r;*0`~v{Z5>=;`mH+2XgjCYK
z<#N$ttYS0<WrmOSGE3W_qGVzD<C0)%a1L-vTY&=911aY7ser~)Ghw;N@s!7ha#~1Y
z6kTiDGy4GPd-34B?;Db-B_>72I*9Tn-&3%Ku%O9y`C1Pv(KU4ylOAD80|Ggo3@1~m
znlaqdshN}XG0;|!G24*O^Qwj0TZPN26N2Ywdd2ae!F=8!)B^7_b3JC+&>TWR47A|I
zFSaqQ#ddgFXus0L1!p1DObAT;mUYVg^sWd~^o6g(fuJ(QF@Cuy-ZJ|^v$<*q^rZnr
zF!XAKJP*ulV4Fl38EGgs+vC8<fJT7_mXa0i!%*K%T1a(tP&Eh62t-wkD(@bmcjeXx
z&W}BZDhxOxa!=H)=K(3J!<!`&D?15O1lG=EJ>&ja9hGPCdB_KQ>aT48knEVB#4a1_
z^Wd@d-Z+)JDYjz?mpY(}Z=oi0T&as<Ft_wEeIfy;FtaY(OJV_%J`;oT!ZzyWaaMPf
zS0VZpgkgmgIVH*=viuIJTwe)3)+eD-Y$Zp|Am^Y+kdQQi^k)XpBP4fW!@PwVpN^2|
z6>-B}PHd5T8Yzdu0|tuLEb9lj8=X(K)?t9NzjLpmJV^-(ElI?}@$G?q?v_SljcR1^
znMgAH4$;*l<V-FCC^<}}zCvo@+xWjnXc<J?6iFSg<h^p1o{;Emrjut$5D|`@IOl)Z
zcqnDBU&x&v&5ww0u2@BB&BPkr6=Nb7NfF0yVvb=5NZBGgiH7O+`lKS`SfNMd?VS%e
zn&gs*%4l#nixx_8gy#U~f$mBa0n~*tWh0;RtK{KzDi<$M7QY{9=X~`J1GyYcmLlti
z!GLyZVz>HMN;|(<z9>wu&Aa^=TBmdQA^G+vcC||6#QN&q*MxpD+Ed8`i{TqV{QQrS
z_IHUF*f(sdUXVy|F|DPHmNrODH+!j<!CwZ)F}BGP1dbw49VhX$lXD?;VW~vh-D2nO
z$7_ouXP96!V1m4n%J~$Wi$U&#36}Dj&`u`!Xs=yZRK=Wm@Iy<GEs821>2QY%HGZ=y
z$2vFk4rz*KHyG)f=M-MtK)48aLV!UMKOlQEd<L7VBY?g8qS(U^!i|<ua;UKkN(%P{
zhT{l~Lg_6j55nf{_gH6sWA}N!_Z3H)=MI&V>MNp7MvBT&YgbYHr1R_q(W9Bm?>Bic
zyc)p{6HmW6=v&!URE<^qt!MWe_=Ms|OeHyet?Ps`@g6qQdUXWjbH93BJv@e$yPe(4
zmJv4j#E*Qx-3~qR>)n7Ier0578YWDXV{gL8MvRgJY~%Tp0TDfY53ybfe#6SD%t19Q
zi|;f_=g_T2I-RLR?C{xo#fh##tB>(>{<sfOz-Ux>HiO*Mg;oOFzBp7A*Y||};{;kI
zW;X6Ti}E}C^U@r-3fs9n3`Ga_Hi|+&b-M~wC3kWm=F*}@78?CIyCk-Y2Cva0B}6A)
zj;+cf)@M{7t*t^c4Hnu4dixu_#+FVJ4WhtiJ*HE}?P`|Y;&}|&o8JGF&uw?f5!agd
zbiQ*?Ru|y9-ywa*Ng-+X^XK>_TK5<4wfXeA$yImZcO@w6(O~Pri#FL!uLgXARAHQ9
zh&y=|KsJPb`85;!4Eq|vOlyuIvt?er%*<W*KHdl^-FHiMb>^+E`eX7zF#eY1!c~IN
zCg<XDpLB^uove{E2ClHk5Di@g(}5=W;STL+az4cvB<yFONSK@qGw}6FGU(ntgfm0j
zR7r+-aZSGf<6$_hv$HdF6M6r%h_R4KoeB4Q=cuvJ*T$Gf#}aobY4@lsnS#)3DLo{a
z#Y{LZRX`vY(*fnbClmP9WI<<7B*+~hT|<Z2Y7JLbX6M0P1w>4nNM3cMFan#NM7^5-
z2y+k5c^+s8yMEKgi&Q8-r8RCxAE!Sa;ZW7?T0)bSg=~d{OZhco+2h?#PuYL)SEbeq
zi0xY&Jd0V^Y<87?g{&SRJ<2D+&dMLc1<OfB{f_hhieBF3Qo>mXeH+5$?C-gahbmN2
zA-tt5zh19*j0KzVVRji~tBgxI=>MzD?cagaLww%9x`5N*^-acw!DX#AjjN%5o$I7e
zNt<!Mp(#q$L~2a@<@&FZx2fn8Tdhj3R!+b}Rs{bs>kzy=t}g?bqDRC9t_bi^fTim2
z_HvVF3G9^C>l+2H8zAK~e6$#s@U+1e60uB6#zp-PQkzDwhoV8n*PP#FzzRtakXft|
zp$$b8=kd47N$AxE>JP*Z1uRVj1*pauNGucVudh8n4DE+Ihv@wuB4=AE?SPvjRy`dB
zuQlDUXJg66$|uhFcuSa;X!{2}XIwYSJ4QKkl}=DqZ^g}b{wC5Udm@mIXp#xMH)?;L
zp-5VA#8-Pa6cvo5&YyvCH!2lY*&H+Y`&-I8U%^Ky?j03W^VgNU_x9&}!_s>mhnMZk
zVHULWC^NYi+Ho51Hc$OAH0e%}2OH}?on&LZ|4cgZA>Cgf@41FmSVy|EO4=cbKTv~?
zB(BY^|HakvjJ}ncM^)#D9C5m0Y6c7j%*e8dQHJEmWh={t(*2E>Rmm;{bJ~X4vP<(S
zW~sg4U{{HYgAv$}77)tfqf7D{a$wZF-0Y}p#>kuo>fU2v4pZN~#JojTHYjJ+E75nc
z$B`t8ndhn-2zw=$AxSMN_)X{>Yf!J7X!9AKyxwfmGRk>h?AW+OlojxGy|j`wQw7B+
z@<Gk~YtREG^Xrc*TBa#V%loVpFG89OjcQ;DE>P4@QtxUjD(I((EKNVr3#(U|<i6cF
z^4&++CR7Fv7ZcD%8*r&Pu*WR{zgPm$Bwrt4BrycdlAIcx9L|<peezTfe1^+~n>;*K
zn6gkIa4G`Y9IrfF)ck8R$u5$aGn)rIDwmt(+|AFEr)Duaka`UzYK?`kX`&>(2*XJT
zy0B-|hBrgl1}&LQl%8D>_knp38P>&J!g|)~pddVs0xb(h_tz7~!CE~FTczlz<f{GN
z=1Pa}pp;$Fib095274#Crl>`|l_WN4iOS&^3B2UvzfvtKLCO~@)$R}l_a-e$4?lJn
zMjm3-kNt%AsBd8N3eKNe8N>iW!;HPv4-a#IE9JsBL?Av=`qI#2X@WVY$ltFRXBIK#
zbaBq%-80`JhYIPrGZQfDqhUHUeLRVsY_Az>`Y){bChA@wi*KKgMlU>*7!&=<z*<JH
zT-YW+%Sg<xrn8Y;uWF31jN6hbxeZSAx6piIr+*cl-3bd`<=r>%E3Rncr_~%P5tMUX
zYiocvZW*^ahamJh#0m#1{g8P`*|bY!OO}m?cdEfV5=n$fymGZLB(W!_r-QDS?QV{j
zW!vE$LeKq9V@M?&TwGxKVj;yh%{h`mPXjT;LT>AvG1XNH;pJhD$8GRFDAJLD3%{8{
z={5#s8lUIpl#9WBcu^aA(u<Pj_<-oFLPxh0zm7RouKTa6g+I@!C_mS2_)Q?^4LekC
zIB*(=*$s*Pnuul<AC{OeR&=n4#bf7zbJWaq@IvqacmvdMJjKp!jZtpI5IvW@1-z9j
zJP=IEAAVVCsQy<i*sP8Kw+Aap;_mSJWYzN3a2KSqHsgk#LNf3H`xU%U64}P&w9XLp
zn*Wa>Z`CyFS`RM`&mVYyqWjWR-s`s;^ys=$Q8JU%E6-w98!QJIfp2@QFB<yVl!^YR
zB=~i#esoIALSEaUY8ubV)1v~XraTUKTRR!!XUXwqnrASu4--dnauGI3I&8E!Eh3}i
z@w=_(GUMEzx><{&VAT-Frm?CkF*%|w@Fl}g2#Fx)@XjFaTpgP<_w*qal{AnXlKtV>
zW?UiQxZg%o>;eTcWcg0zXRhKi718zX10@u-Abm>Ph|!cn=!nTfCreQMeNY>l)gR|3
zo{#Z=2C@>QEz@~c;|(cV^y*i_T+mm|rN?c8kl^jd>MwLS^lP&C9f;cdk{M)KHS^Uh
z#C>qM;@~Zo-{1eNg?Fkw2HbrA?7ZA~_xq>0|4EC`n!D`%^~r3ufD=HON^JJCn|XZO
zK(YVLDZEXLiLv`;-9OXRXZh`->CJgRep+ZWo0f$pZ!^4U>7{AM)$#IWhOw(**9Vb1
zKD#Noze7}R&hr(sPmcr*46m36H1kABWjcP1aY){7hQR?}iN~wCMH8<{Q{V4UTEtOe
z$6LcXGjWJ=CxXmF_jW9YYxkoMwCIbE^o4D2DC#>UM9p>h(>`}s84QgkNj{M?$o7YP
zbnS@gh0o`Anx;gra_WoK1fB#cp{~DA_p{w6t*hteeQY{q7Txg5mp1Qpzk|sv9$B2-
z!?gC5M)3Hg(8dRNZy~SL)pzFPG@gtvXI=OBLAU*#ewVZ#&ZXz;r`6Gj<0^|}qsBC}
zv<P3C{tr!O8J1Pob#1!4yQI5Qx}`xH1f)T_K^o~UY3c3`>5%U34naadl>8R=^M3yH
zI0P=-d(An|ImTFS3z|B{%&Z>Z7j}^8&=sNm-btgcD&pqqC|2lPEIo*J^k2dFtG#It
zd8kAq1NBSltQ-#3fvTST>dz(uZd2LS%2Mt)5x!qT&vU1@X--O8UfQ==e)eP9_NPKs
zJEdM@RJ__9HMi4!(F{s!9u&V?tYO)%?oQ`Ct`8@q#y2`Vu;tOo-iABnvzu|5^uctJ
z)OlWg%)bOKGrcC8FBw$78?EPLVoBs7iwXH1bM;ts>-T|4HLP>f@4+sJL1H+Ovo5nf
zH$GBn*mS4wOMW}B0av>mO@<hjhO5SQrKK1v>4fb#MyG8yT5Ej&Qs;g9^A^~T^C7Op
zJS()S@>#4FD+$S{!XhaU|A~HDt_?*cmat}Ls$vhvm<&is!RmbcJ$BrKeIsHsPfsEf
z{u`M4^ct<i3AIj_>)!OwH|WwMeZX7*|37FS%$%*Fo`KQ1LUi6K{2ODB;5)B85(Gu^
zXJGx@dbO1H!Bgnj(_W_5u~TMX)26P$BEiDKHh$#KNIID-Nn+)yQ$)Vz`Z$1~Odgg+
zI!f>O0-4=!hM-;ZVd7uD7~47@#Q&C<p7S!+=QPitVLqktvtqSQEE?!2^lCg6Vqa{J
zZY#YFM{ZYouxt5ubf@F!wIz-3p5v?*=3#&FRiRoYxeA<4GKeFK@362(z6%R=xS#BQ
zkoP>!3kz?<*+vYqu(oEvj8|1qEEH1>RSRFG$I##MK4o!&uAFYR)9>Ss{(XO1gYAge
zivi(GgFT={#jK`@NysC?o0p0)PPyFTK>oSe^+cU?7uqaB{BMC|7#fpywUiuTW=+?9
zxvOzDhv|@NF7m26vWp{v>A~TlgaCWR-{`D}X_cTR_g{KwN8{<xK0DCnB-p275_jt^
zajk#;9evYgbA(W2cxM`U{DqPo7kE9E&4%aIc|6Y7f#dMBj#{|cb_p%akd_)r+$g#D
zdlF>gi}=3`48f0aSC5aMhvaa>ATlmCI{0Aiaa#LTf6HEE;Ui?qTMWClSk2^%ZN!r#
znX3m-jJWbp1`S2QZp2!>T0gI(^R?dD-hAc(^6l-0x#HO_G6_YMOrcC+^r8g&N5Ad0
zqd#d+nVU>671w>p_pIIC$Ba5L26jyxr*ntTXa(p4EJcGFw4^HW=bg8|Ln^AjKPD=$
zww=|Fv3C94b(s_hvr^uEQ=SNiDR_Xd`k9)Ck~9zEOZ+Z|3*yTA7&76E{fNpha*XQK
zYo*#XWN)3G{~aZnfU|{XSHfJt_zx&(p(ufj)c^X)pB;ZSEj^!mboZz0+qWH5cbu;R
zcYU!jjxhTGlR96JkU9T0crM?(q2%sYY1wcmMm<Rg#W!&5U9L0TQGoSLo(Xg?CcUSs
z?*=|wz~yAnUeDEvt>-^2z=Y0lLW(sc@%v_!sYWjFoWc}|;PZAMJT;DwQWk&0den{8
zXfnek(|JT^uHc=bI@TXKGM}@$it6^rnFKaYT-(LUUYhnfS42f)@WKN(IsIJZrxe1W
z-@qhK;@?n$8!|x(5j~t8hNaX>=sc)zk8k`Voy*c$qD^+C)v179BVK{(bvGTyh6T3a
z-2+>>R|EAFP37z}dq6V0aH2!)6s-fuFLV{{uhHeN;??KRzhR+Mjo7^}*xK1%q>rS(
zq8oacztDX3$ZThz`2OR*>odDaY>^_fJqz%9yx5a2)-(&miv{@oEGrqtm7`s4v@XEE
zk^VH`6yyNn1Q0tgpu+~PcKXBMf1&&v<(hgc$-MZj4C1E2dX5%fv91z|GUYI!Rv8;H
zPhRoFD?1kk8RKpT+Tsf*?=3;hZ*cxr(5pzC<k&D`LxIW_;L9*gDzX0NAy6tIUh3z`
zdKkIi@nhI8V`c$}sPEv2$2m@}c1j!wuR|f>$B=P~KpU4`!ujC2^X1h-o65m8jcAR%
zg5_KszGDi*Q~U)}oVpe>r^j-f1tvNJn&HhET2oXXhxEO42})q|zPmcMv3YxNb?vy<
z4#^HK?5veq>wFqKwPMX73F0Dm`s;XN#BNj27?!CRq8_WE7rGuzjhy{kuCbKaddu^3
z;giAx)NK3r>q7ri_Uo4ZyQgly%x8xqnwL436|apWqg5UcQ`Lw4fF*Vt`OxsM%4Eym
z+poyag|yzweH-wVV7#gZRjSaa6xfb+RXW4t+S=MaMuF6gWX~#}&%4h7kkD39P>}7w
zT`%Py{tkU^*cdpm6$7WEgZfH8RN{m1pAIb~s1-^xF-WB!mJfFqbjX;beT3}s&&o2c
zL(i>Fd-S=AHgbZnD=;zjBq&7!Lqr13`=AI`QYvN(YNEe&f)EKXtyP>1i-(#_8Uj%X
z`WSG6$au`h(|ORa%TRZ6Obo&Qu8+8I%>ttjioSkGG?0>TZ*|;}_`1DIN$SLut0q}Z
zJ>dNhHdry&^)m9GCG)y`IA#ib|KjjSz(@-Lr}HExBGm{<(uhIAp#4g{v<wA%_^U1z
zJnVBCT8AM%I2#$ql{=w6^#3)H(tZDHBGvUSC+`2W<rQ)7e)j6ap_!1hqdkQ6XL)$a
zy?gE)3wj}Gzgv>L%i{X<<BKG3&YJDjpkYZBuZ3IR`l1cJOoXMGZbE(^Zi6V%;x!=(
z<0=%?6{wTIIxd+n!+i!aDXLmFy+LzuB8@KAD$5B98?bwKgGL2(ZdBXlHXy>n>^&7b
zn!KuU+1As!2WVPQm2RjIDUhPB!yg8WpjsaC&Bi~t&Pbz+{H3V6`S}9?`-lfn$(H)%
z+f|EUDTuwpehp_KEP8<N0@@un&~<Er<OtAe72vo2JSq7WIsy)&c0_F29`0!@caSp$
zjXxXG54ti*_I=Cfo1HN7)C1rI7yYwr>ap$wZyMs0YZH?o+~{$TqMc|c-slZCtV4j1
zV~iouCnBHbb6FZOi0%FI?d2c&+fR#?ps(t*f+Zl8>;l$$w$7VbwE`KAom!km*9A>&
zV53hBz4(5Oh7?E>wdT<M1S)<PINJ=hMlYQrm@!2598YG8YK7eSeHDe0M*M&&UOg0f
zrJxLZ|MlR9E#Q4;JH6j_7W_jIn7`6$w`#u04=_gZ?++38RcxJm)pP&;n(5Q+elUIT
zQuE`tza8IE)+V_Tua$J?=5@_UN(aN==+(|&GA1}0yoKh8Wr<Kpv1VAjcEN#C#1MMw
z;&->BehA^aWL7F1GnkZixavg_q{0raBX}?cw44YADH#w;9b*p3iu|zKv&iN?tI*-H
zso6)f15Eq%XNjUK9y#o+%hKkpvas3;OsI3Wu<^r8B`Ww-D1n>ikV-tsm~I2_`SD~m
zG>$Uj)vT+j@d@yS%Y|&}iV5L}3PzzOw|QYthKbDIzSj+7e8nT5O-f^4y~qa1cq3`a
zMU6VEepg*jK6*~n;s|WKhY8he=j;|jx_TGdHNSq}lLlKZoL=4^Onvvdix>FXnDO5K
zFABXKTgyKd_(a|5ko8F_LR1k9$G3Ps|FM^OOq-HMN}vsG<W5eVOw(c1$l*Yo4atvG
zG#Mw6%h=*0hB586VcPvOx9AhSg2lc*x!u1sHd?hGz!7&#VieDTVP<~Wz*VLr9e?<L
za-mWe&;p@mppIBrQ@(qntw8udLs3iW9p^^e&AZLg`~>M!rxtp&yxm+S-%vg8>U;i#
z70zx#)!YBwjQgX1=8#6lD?O6k*yB>oP^z0P0s~SdRSw6XT0{5x+gW?LOf`qi4U^-i
zY}w5<`)Ntiu)2-S?^_c}_v>p;uKhVvqVv}8gDpdOtd?HHzWDAXpotCEQ6+`0zb*RD
z(K#=`T(t1lK(E0Bc)(}|lHaXK#gt1rJ>WO_GCbIFa+?a_oe7u;VLbxA8?^1R_+$6b
zN>`eSOzC~{J@fylQdI9zZX-f@N<t(~c}g=Lsb>ZCG;=w(v{MCS9j^IVDmm8|Czsms
z=aWjRyt~a=TEZAv)vNz0qtuRopY*!7poshLh+2kxzvKZeW`wj{gCe)ZH!_*vmVaZx
zOOHEkI;&zH7zD(ctMnR~a>Yut=Av6Nk*O4G|EI4~JL0D)f_25sZ}hxejt^lnjZM*-
zE`Dn+`t)AQeS9|MsYg>VM{ZD^HiP{tnjvC<{?tW2!t*`3{WUt-e~Pm%g3p3Qz4CS7
zB|=$G4QLy%q4>+wL~%D7Ud>!5FjPJZ#f{jdbJ`mFAIOv4*xgUoQbR5pWG*V2g{*)z
zvyf|};A$Ra)IydUTg+(%p7-U-0WgR3_ZQehw$0}@%4U%HM~K?LD5oNbe8p2GiiZ70
zTGF`fV5vn`n@z7|gzS~oX=DFd;>gI{(Eb+D7J)5P*_T<y1_NpA2f2ioa{7r;Np3AW
zp-D6Q|2ch1U3%DfKI}RyyNdC=Q?THlU5hHTI<GNncB)+%)nDNKA82F4aa6KPh6|Ri
zpl7j8yi&Ym;`&H?wc_+nK`=1IoRSFH;eX%Mh<-bR2%U`FZnc~D-IzN5i<Dt6WuGgf
z+}v`5xtmRJxw6(NIBo!h@doeT%{IuSaMa`^%x}CbMo~1Q6~T6;rwE}y4!+=-L~efE
zRyE3&)=dmD_NP`w!!#58n-%as1X_~+>cjp=(RpRn{WwZxt&Wl9dx;>bnV=M)c<KJ^
zw7A0_8nVusDy%3Tx~6`(E~4PK?6-oh$M&eU<|X<`;NL|?=kxVp&2!~HAyF%lBZsx>
z$1vWpu9x{U@)n)X{{j|>3;w)uy7^$O=+&P8RxPLAaQUd<>~<{m{Hws+NuytDq8{$@
zo8)?o7@4ArkezP@1G%4|i0YRv^xL<pqkrtl8N`7+A=dW_xUlJNq9l4+T8FQqp9VHY
zMkJg1KY=#4*Lfz|8!Ex0BBW(Ph>)H9PmYq}7X7d{3&=7z3M<jsq4XjCL)a#*_^*v%
z1NMK;O38Q7>Je15jeYbZ%te@g8dt){L?3wl>wjuk1zNPvnqk2xC=mULFLhWfndrXV
zN}aRzSANJAAZ<Bl)Vtm2(tmCq`(b1&C|Yv6n1$xGbzJ-M!#A>P!|4Kq+0^r5QHK*^
z^MOzVY2xT2WaN?4dU_TX8v1_h*!1-ajj#obP(lgJtk7iKt}<M;2nf|&L=p(s@ZyH;
zjM8X}H0S{_3TBiSW}fOuJv4F=X3{6)#?w^>d>ou@vt=}~po+7Nyf-XoJ(|i!VL04K
z;#iQ{8?Je0aL0bDYp<hr<=}~iUc8qMOFFVh2b|AxKt>sNS-qlQ8;kX`(KnT@O}{y#
z#%Jo1U-wyP`rR`=TP>?>4;Gn4Tff{WN+u4oWGx=u8l+#AO%A>oTKuA!xBOTZ`KDJ}
zE|p|-ZS}iu!4J@)zs@3Hw&k;5w|XcGl4wIdeisZfxN0QDaK+aXAdv>_f57*FqEGI9
zoCngA)QFY01HyZGYKBl}!wg6%doh;rRZ4LmAzk=08s9;d7QHh#Ccq3guZza4GbUi&
zA?C4p|ML9Qk5rD7>HLR>9xYpBXhW_7^*{acf1htiBu0v3jIlRZma2s&#<fizC-eP5
zPTD`aslhG#j^9EP_<jYqky+JV0(Ksc(rYQA$L;5ALUt3@bw6wLS^mDXGe4DRaj~8L
ze#Xp9NhzlKLW@1J)ophfkW-<>s%=F}@38s3jXwZEvJK4<2E$JR;Y)1^%Rp$?9&`Y#
z6`Vab@d#0vl?X@|BlmxF$~6xRnU4(mygf}LW^*8>*^Co(Hn&*!>i_<IeI5J`84i|y
z8d(#k&#%ueZIEO61~fRulrn|rr9t9%=Nk$uO0e<$5a<<GEj<|ApS8zAO8=wGi?8k8
z*T14{MNV?jU#mr2vWptumqn2CM$A5@33MN2bz3(aJ7i8hDpwQ<WTPE6u3m3cuXQh2
zNKd|T@e}0k?v>E+*E=KEQ|ijU+wV`s|2X4`l3Brf(RRBTh8(+{h6=O^s(<mqBHHQs
zi+AF6YThG;N5UlI4pc}x-dMYVHV=&8s6^bu!ac6*6uG%jg}eOfaWK+`&ho!6HB>38
zg+ay>+Ms{y&L^Z;QwT|VdU{o_sT^Sy;ai-E6FtG5<QegTRIZ&u)u-KH1$tQ85+aV*
zvYyoh6gYeSI7L2CMMcuqG_X!CPBm?!_8rF;dXx8=iwe%G7o*lqPc>^*_wI9TTfgeB
z@_33*{al`pZ$+*74k82R?x-n-U8zm|<Lnen+I3q@uJLMA3u&pMe2i;uPnTX($X=ed
zUN-Wjqd@B#MG*cQL?(erc=PFQYYU`5xqk5bcW}4mZ$u)=%jLM;19HuJkrckN`W~iR
zt~S|v^rP~ft+mwnJ>8qhnZ4CE^1ZF`yRFc7=)`RR+($y30rLS+7jy!4h}b~2b)y{6
zQqGlYGPQSH4H1)j?PEHzj80F1kTgNJpRT>I_^*R^a>5>*?ovffm-o}{l9Bt0IlAyo
z{Q8Hk&t44{6RRx_{)4#Msur$K_qUQeAa)5vjcI@QunB^!E-(MAIape;v;KMIgqGiY
zwRm?1eL%+ya?~uDZ#qnWpzQ-w&A|42nMQh16l;4a2zo2EX7;_mX*)>OpA@?Io+IoN
zxtgy2b>lSxD65J82|lj(TaAQ7MQF1U#%#iNujycKNL%SeKDmd%m4_Yvv+o0qs8#1r
zhYYr7>jL!2la9wg*y0slmxEJy7b4|Hld$zDxTzHko@uDha1pqL<3XrjP`}x)<cbFy
zcDS1)QU`A<P|(u%yRgGVFM!y(HGRPikofnSpv4*Jw^DCTA4kY_SP&;70R>)=4%ZW?
zKs7%wbr|EUz({$?1wl2+=594wW1GvN1%ZGr$s*NZrkd~hXGqf<Ao8!n;{wgLPf%{t
zb1#P1ZdH|Hp`Ye6UQ#bdE$L{o<zyD3E@NI6p95L+ApN$qjwOgeLx6mbbRoetO-KE%
z1clI&ohmp$InR<t2c)M_b2Iz{`CGX*aLTcsTfTRwgq#B>+l;WlGJYH4ves<3pf3Mk
z;UILoY~fC3uF#EmnkrvuW~3WizEH??d8m2JWF__kr=_U7&T~>p$&1gJb+_&9r0K=}
z?IhRj2hoh{V+DVp)w>fM=eL|bYr+*@;>Y1SkXMM=kB9j<n+wvu%9Ea-9wZID^AVb&
z0lTTR1p{D}eoL%O!LWQ`azgwZ{ko*|zN1nGH)WBe2^cu0Gn;U~pUFx<r_UhOQ_iTR
zGp3n>RJ&SaYH?mTw_c2QgSk}8XnyL&U$R(pN5Gfbm29!!z+=`4Afena0fBm(fe|~C
zUy$*s;NzKY2qUC;KP`)igux1GcJInT(5R%bLk7DtRxgxp`91ssP!z2^7>y7C_ApQw
z^(qMm^$CE?kA(1PNLDG;cNbeKhX5H#t}Ka(RZX$K_HUEC^Wv$g<9_hn;K#hOYT(MW
zz%+}ISFfWne=e9>y>Q)fndz`F7&Tb7JzyjIb~FCq^I_A0m8fISHiquSaOt1_g7+wT
zJKH~{7hPgT_AHcRc9VQu$1lHVD994o>oG>DCC#k04V<Jqy>HK3_t5@;5J#gn=OTr7
zH@R5x2j8FXPZ^Ukdb~z^YUjYy(jz%02+|+Ji0ONfsJU;XTTA}*1VXcu6iTla!uz5j
z(5d9S1%!4qUxfe}UB2143@k$Cq%`BFZEHIJZ2DZ7Bq^S@pH>IwyarQ(G{whPDE@=o
z|GU`;mO4|B{h3p6psLTqua+&xe$?cIe)WkAp0x%`^d^#zcI&N9^pd|&U=Rb)PBO-^
zXiaNb^qUPjy_?E;?bpK%=3(!WaKI3p&EE3hlNtVBf%_yws!EhxK&~*SeX)iizdaB%
z&%gO`y!&n~dCsQa!{@x?-k0lBH(}SxjgiUuXOknojENEJ=1U>rMZbc%`Yd+^Kdw(-
zo+RVt&EBD}gr&~(7gN{NAJ?iU0U(EHzuas`EI$Qsf8|FpIY#CW-_t0nIVskILA8pU
zRTcXDmt8)EjQ2I04V?Z(V###y;4H%TLir5mk_(*_L4<e%xcd*zvdwbMisZ%CeK?hE
zYCU;5{OR#XTqgbyQL6)l;4WI_EV)3%sOY31y%R`^2-42&96@teumyRKTLmb2sJX@V
zj4b(ri^Mo5I!LZ8(U3!a7n~Iz42Ub1#veeoFS%C;2BJj<M)r;2C$YD<(810QL`KHb
zalPU^WaV!l;vlJfo~|-@0?sJ|o2Otz(b`Lw+OC=SdM&}nMex(ZSggL^tiS)$LGcEe
z%h*GDw^cKH$zW<0nXF4Y+4zYUd&yXiKY5#r5~HUTAsg4oM~z0`6aA@@QM+*#1_nw2
zpQ}N9h8m;p9BR|8F5dwwPh`XZV+y#B!sb{&e~AY|Bjqr6Z+CYA2bGVz8Q~qJc5K#-
zmrLlJ$Pw0`={D;2D^wbmmUBGX@Yq7N6Js15g2-Tp6u@Q`7u}_6Z2<ek_u_P*IU)tY
zj%J8u-$Ch^re2qKc??`ob+?E9-3H=9Bc~{;w5s%24BL}ACwBS(0FU>ZA^olp$32i_
zJy$G#Icq(g+Y30MEh-_G+s}Eh@sqSZ=C+;<@e&I>+%JxfI_azTOjz;Rji5^-be;ci
zcgielXl@O7sHHVt8UN_o++mhDv2zCVlg!)~BZoTXl9itqcLIN7v?`o)^b+T4s7h3r
zOa4`7P5uMD)YDk4Fq5>kCm!2M(?|C^3sisqy{4lqm&ptN7oX01$ndj^?w4oqCZMfQ
zILwzOaK?cbPxRk@5;$|neq+9op$L>VMn*ebsF3|LSEPW?5BJ*>Ae$WDKf1?|t4xfH
zL|{)N5(S5ialfM=hn62iTNkZlg{VYmb^*cBLl2g1gn!nWY~e4cq_E!<$ixJRlY4Fl
z4#f~(thZqcob~w)$5VDc-`2eT6rf}{_k|!9D($<(*FAT^@_z=K3Q)$4ObBgW_grS~
zvxV}2WQ&9BO!_4AKgToBk@+Zr!ngApui3F>U!ZQgL>7&i6O~6HGLJQGN9exg{uwiR
zt_SNqE{kzh7S;bV;W8IxZz?>VY+rmh*3m!Nj<Z=|vu-?yq>{6@bvpbluF$>ZdN{Q@
z`L9G-;U)hmBa649d*$QIU5@TU(`J~9;K5Pj=6y`HkMpX7u*djwN=oy;I?v*__9wNR
z?r%AuFrt0VWxXMx)i5;a%die|%Q(fq)k}0!GeR85*F)6QE>#dNh_PY7ty5%v6xU>^
zQSV0cj)i{%c7V7!@k${-SKac+Hhc&tz1oqxD|_?Q#c<|H(ZYO^#ZlwaXY$}^wrgb=
z`G11ARS`8X$o^H|zF`1%t-$=JDYAUKV5{<VYV=IAt3zQg^ym*a*M}D`V;XGF-)ER!
z*4-vWo4?&hH9I`%NAbNZC0#t_j#T>Fa~=8frT^|PDPHIQyQhLSP^)siYZf}~$Db1k
zXRy25+S>cY;%P!&Le>yzH`a#&G5_rjnOLL^6n{wR@T?ihZw!Bm0g8+P@5CyQtr{`a
z7m<+>&lX91^GRdEdZ9|659`gS34O}^hj?9zDbfis<;j2Sat)X1P$I*SlVs+%r>)aU
zvEkUc0bQk&MZrV}@k;;IZ<5qm<%?d^1=*?{4B`~%cW)L~oxO4*E*kV{o5#`)hAO!%
zGC7EY$TKMKXUFok!z>Vbq<iDWmSO0~IKrAU6us0MvzDju<X1Kg%6B}+25ocow2K_s
z`ov1ZjZovo`8Ax<QBg|zMpKvoJDdbh<f*Du>H87fKEjj&!s$YJ>`uLtG<n#fv{b$H
z+aAj-S9vT617{ib^Nb1)9M|K`69l1L7_<g^i(0(N<$%!2^aN;i$GzXLk`G%o{Ny3Z
zJhgUjd20IU^5KDN#ee6cyPrLgwM>NwFw&m<o(3qBSdpG_zQ*E_amrKq%->^+ej0U8
zceVDaL{XwwQp@^VQLDg@M$j9XVrdl@R62&4l8D<xHHzJl$2XG`wT*x~XUGKW?aY7)
z4OG&CgL$j@hrd~5*@KAMNf2tx3_jyc&O)RfKz!P7jj8vBjDC-rUEFYn5XYJ&A~tt2
zOo%cH|Hr<aTRlKmDGHE<A1l%Ax!lh!JJU9_XZ=I(%bv_Kd@VzKLvUh<`pQ39VDmp~
zvk;Q%m(Lc`!;m{Q;Ee_^DKguR{GXUfMUqra&ynC!CxfOik-1_;Tly0=hemkTG0)#O
zSsOvxFSjPY&O-B*B2+~-fnMzO8<v2_w(4huL63^~Ic&ws4U=b;=(J#-yxcA?T^^+V
zTe-vI#45&$|DhUwo}VGJXX3dQE|oe97Pm!3EET4){x1HW!9xRPvEz<C_uKy$waC@0
zzG~e)@U1tp*>Qzx%nWZ9g^UHRY0)u-r<uL(3t!voqz0(3b%23#(ya2|Qny^P**Y6t
z)u`g;%dPQGOcV#$nE`vR%6Ran1m?3-J385I?aU%o?w7IZdK=B!)Uy|E#7(M^=S~)@
z%p$=$L*|F(Lf<*5nsnpw|A^Jzd@1%j1$h6r$TpN*Pr}hb^NkTdYb8>C-Fl|F8_<cV
z9&BbQ;^}HNeEu(c6PPFGQHx+lv{c9ZcUfeuXLRzZ5_*Yvk%KOf7?7LgYDE*9$%`!t
zQe&FcGIaMiH2nDgz7=b$=f1nzxx6!Pt%1!O_0=Jm*v4Kcv*P|KqI4!A&qA^EBNZEx
zdS15ScEyax)hPQwaN#K1&<Jh#_Qc_?&i1ngezk3ry2qI{R(PDGh$VV?&$L;XaMgP_
z?jQ0Q1La*O<+N5z!3*PpFHw<^>m*Rx7Tak>6b?Ms0iio(?$eL0=`i;M{IPA#Q1)|W
zhm6s?yC3h$94Dgxm?-ffmG@cDSn_6Z!tyN9uk(epp_d>N)#%A<AQ61UfL)pK&Sln^
z#4hfOX+OL#!>wmV7Ia!Tob&aM=`vR$Z-iGLf=8-XNjV*^f<%>ad=C3@e5M_&{834$
zo?^Rs9*tD6u&odBh%)z$Zf>qJ<hAZEDXZD6AR)G8kG>!%sL)%Gpeu|M-x1-g{4)x9
z{UpA^Buu#L<M#YFk)opd<WRwvywMzIMsrC~JrZZ@bH#MhA$#VjU%hdqza$7gOE2C>
z3$K%Zrqkl6F0{Kgr5Q}OvL2j~oEeql*Q)>A&$MO;fuOs!07btIrIl<FCo*9hO6;NZ
zb9K4Xrv+^z1-ezaHX!KX9=%!}ZKiCo%&${=TdyduTE@^?iZG+}3@%8an%Q`c2h)HM
z9)W4$2G+IIc^qfaBzl;~9f{(tAO{E5-N93j5^{l~n!H$_Jfc1Xz46u;7IAyq8f;36
zUMM94er#7H96r*^@?xTf^7N8i_84EHk9aV8y2spQirvvsoe!+mkPjJIHikms#w5pm
zZLamVE}YXoo}7?aARem9(o&UmhpvGr$L^+~2*NWz)R}C;X6{SZ=OmJY$IsQgK5ngD
z+;lirthPVDNaA662sqQeZHbThp8rk>LZmffVKBe5(ga?KPknnxT3qm+i1brCBf<OU
zsH6SsKfhqGI))E;1<!cIXp=gBXrott6D;5!lYIO!)Q2v?aH0;i)9x!vjP8B=NEh~K
zSrGB^coX%qdc5$m_E_a_|NC%?sQdQ1_~Nl2yXN`qWXW&Ider~z)p}?DQFZtVc>$#W
z)!z}cr(-0O2wR5J*;ynw1Be~mN?SNNR7VqjGUx4g@w%(|<6j~}I*~gVTc;&)Z5Rs(
zV<*LyGV28mQ_uR>@j`>3WNswce@cAi@cDWKIRpJXrpc-;h~zQR%B}dh;7kHSg75RX
zqY1K*ef2(>p_Ks<)N*so8Vd5`fJM`>SdY36rd5>E>LLo2Yk7jrMJZHfH5=p`b$5|B
zy%a9tsuQGrW&xyp`|N4@sEh_<>r_)@A!0g95zzMe$FP)W?}e7+sOKrWvOhg#K?!CC
zjG(h|5u)3iDTOlGGWTGnkn|`|oKKs~bDMAu>i6j8B3e{zxErIwukS;rTm@okW}0No
zeaVE({m|C})#zNJV>lP-<qi#BErg_lO)Wm*R-TCq&upmxIgdQFQQp&HBS>aMGmltg
zPX5+{A;vAkFfComT$-V8<KQqSr{>9DMdZa_X!75~pQ!F9*K?H)zu$YYOkFFU=Xd&S
zPx2+2qSoE}-&WcF>PE$}o(r7rQ6%kQjYMTCKgk;CT#UL*b>x2N^ahyV5^Phwr-bh?
zRE{RI*FZA3_x48wBe{V}b~mRlwXJH7GpP#6xa3`~u!e4|f{p?LA9i-NT@0NKKGAoa
zhH=7eEJOt%*@#%r7M5w0sH?gb=SH!Rgqj%?I8H#Owjly0RP(@NM=`a~ag7l|+;_9f
zcvL7>aucNc+VFRQxre_-uaEB@#SF;2So9h}iw~a&LbZ=uy6F_t*n#BEF(WA9ay<Bw
z<fH5!E{>Q}&W<e{1Rjo;8$ElcGv}u)S~;m|=bTViaotW;Rcy=kY^QPvSiYn2%ssyw
z&C>vJoAgK<=WPS$nbaU!_P6c<Z$G=+K=~#Mz_zSAk3plqb^Jl<@k))rusH9S2IJ8Y
zN=)COQ3hGB-Rl*^BhjrNR*u_OVfevrwJ}2DyZ5b445oRBWO`YJd!R8Pyz7{>c+<EH
zpch9InfRq<fzZQFaAwkU)pn!Y9-@6{eP@F~Ad&w8G%F0<V66>MQQl7=@;C)D7gUB0
z+;B`5#y{<XjlAoP9c7n)BVUVP*FepZ<QYwfV3aU%eo)I>^(%zLP6ikA5<dUOzo%Pv
z9aJU%=!|STC`%^1kp%4c{92B>F5K1<=B!L6I~|^UE7Ff{KQs#dEr0&S@le83ZOY=l
zYi)0DuiEGdCTHC%9D_<rap)9Wd<2*sWPS6NX~cU26fEbIbCAyNb$tlN_)xaCp~AgB
z;oLX)S|kG`28OJUd9+{62qnCCzTg|MEK#cxw)RlMqTwnMhKB}(FntDB9l#*CI*to`
z%7o>=EmB|ttI@Aw6##oQJ8Y3@NU89-1z0=%+4_7v0fyi5Gj+k^UqCSQBR7-&hOnv6
zo8U$n7hw%QJkEx-A#!yg3r30_btO=e&urAbnmddH>w!M(NC1TanUxE>f99Q<5K1|Y
zpr(aNNvwkz>XfaaC>`|u*$Jk0ULBAqaQFzy5`DqwVl$a~->R1o0$p6Ll#ON%NvA8C
zM5jW=?`XW-m1W7vqy2MO4eB|!a`iGizQHoTRS-x@`gfB_y(`-w0*Y~vmuoEG9}vt{
znL;+ddF~=+P&{r2qYp(BYS{e_%=}D|_ZEKPw?JGCwN4E4H^F@F{l;2+R3*8Md|9Sg
z+`9K3g%bzDE+bRV<=TGAcl|~ee(WV9bOLs~PnuKEXD%7l_iN{CFD_D>-L3|X%1eZ1
z)*T3Z2GnW0jQrlE$8shh+#a#FIf_E2-!h&gj8&^$NY{|kz~P)qRu-QH%VQ9UTde{p
z{Q+;pN~4Bve>*>I7-_K6KD3_1hvp`KvC<G0>#7+QNdNt2R$;DK$>pnH1_8?5Za!E1
zQP49%FnW7tu>p(448C^Pu|}?dpWvI{D;vxm3A+J;2U^*>sEjPrg;9=dIuv6evpDyL
z^gGpFfO;_&kjEw>HO0=CIX5jYbqbWod@wQM>KA#75dc-}ij>A}p`US1n{E9g7A`7C
zY^4f50Jc3I+UDHGy22_v)<SX)mRn)Iy$rk2IZF?O><R+&@}=475soo)CZB`feu6AP
zls@I}c(7#UG>)Fc9_{%DLEk|$AXgMERp351xc{oW0aqLJiwu#fv?9)oXfi!<G!fZ;
zg#5~_b7TjG%i)S+HD|FDp_Jr<@*B6HdDtZE57uH;>|oGTspGWnvpWT9)b|x-V#mdO
zw**~5B>b37qrzQKz)7%*PR8|vVS-ghA9u{JoEf{|z}=MfjN?J5>gz${diGo~#ZkJj
zfC|eKpdHK3Wa&@+WJ31Y_GH66qP{<Gnc963zSa3f#ism-CF8z=dU%r`F$`2lTps5J
zD;9N=;PU~w^ST>gT%Fp6Zn)_f&ef@Wo1UgXy9^lC>qRYq>0oqSPYQv*-2*b$B>?&i
zcck)VVu)sb7H8Uf-=CDU{amauipvH9(0|=858WMZr!oczKZ?Q8h2c^C{r4!4mBEf-
zbpic|!4x>t*I#d40atCj0REepb(*@iqW~lrLCCBWLp!{DnNsl8V&$!z5tH#SJ~HC6
z)41s*uR^E?K<wIGwX5`CP4)<OngFW@`YKZ^jFG=rdm|OBZTpEp3`GDx|3)x6<B(sa
zsx`Il4(R5AVj9RRb3}XvJx*V7)(+2-L2wH_h6Z4vVoRPrw+q^1`uqIywSG4<vJp;y
z$Aw$T-cDxlL?Qk_bD4Y(p$ATX1fVwY3y0d=72U)V6o84;1sKZ=3usY1fO3xWmm(~Q
z|BCrnCv|RX7zP<s7Z;i8*4;=zNEtu9inX(aJp2Ih$9$E;yu))MHV>6|`E2ak;a>Nl
za*hALJIi|E$wNv`Vl&BL?f<5Yh^Mc;fQ<t#qNM3I_?Vqff7SqZ^j4<I;1&R*C7J)@
z75GSu-#I`3R#U!jJIaZo%kNoVUl;Mc{|<I?o<0Dz#1io!Y4P8Jb~y54oZzXR*|0E_
zGOY;ErU*>kq1Jbh-+&xy>X<)*St2XXXi+j44prxq+|7~7a(Gg#sGQ%!+7=+|uKl5?
z?7aYj4$)7FzB~$@w+1JLJEd}SDPntD)^YR$mCz|rARm4BWU}GB*XPJT6CIoIj`atG
zDal(;_G?A&Nb`&uAi~mQ7GQ08d7OHY3MZvTsRio^HXvdof4+nd87GsRHrgiOtO!5o
zjj-TN`ykWHkS6HHh~}7X95XoLwJ&2f5RO^tE)yoAA-<L?DdhM!4m*<WMk0M(Ta(O)
z10=sB#IMwNNy(ug>pALJ&lVNePao<sG_aWbyv?|4`K7(zxRNk;JG|6!{!j1vK=iEf
zu%il(>hq_j6VK^K{TCKd2fpj?Xb%1cW*yCiY0UNAWm@SDy9brGgHiaWXc@=y-1|_f
zn?sTQXLUbvAx8(mTIu=j{1=>-sJIqB<xcczpjb~{j)`+RrWkHQ0yZ0hU3{25%L;b#
zNkWA*sS_*~0>YPp0&v?0##coD;jhfP5+Ry61+q}AumQ9<P?pCSj=ospt>~Iv5*`LV
z;5ldY#pGV9(hrMQz(=#)Xm2{VOu(*W5W_X728W}f)wZ_`p}VZ?UEw9)64yVNWSQC_
zVPWspHWxZ6s$fL~%yg*0ICfbwne;;`_hkjXZVVI`Ir;&Ly6A|YB`5h#u73j*NC8^l
z;*&xMZ4U0YPI*#yhx1r{$5EWuQ-zq}3@+$sKj>cy+(Ajf8FowS1o}3OP$h@f9k_X8
zgg$bv@waa*a|k(y5FIa1!5crqE%6D)gGQY@Bz*uT>oknaTP`nE-fE@3$nPueswa5<
zuhOr_ygW+KS1~+h8Mpv9BcP3G>aFBd-&aK5(V1^`JJtGF8lJa!+ux;C>(`hlFr$c8
ziO8}OoG)4kMPB<S4IZvk2%5GEXzp?NH7eoTO;It9(_uo`@y^u-5kI<dnALGsGy*!j
z4&w-Cf^hiFtDnLKL-Z7^MBs8!z>3zieTcSLCpDhXv~c`BtOcy<3TUJ*&gu|-XYmUT
z<7sB{B;jS0TvlzqxQwP*re(TG#~GC9#nbN*z$WiV<58yykYZ3945sHt(&Vi%E0fz@
zWhM2EegeR(B!yEZjeLVtBBWAtLcqgEu~@kg%qVVR){6)U@wW54bpxRm1L}G!n9-76
z9Zcg@zLw8xT-PpotRvP<KiN7yJ*-uqzT986yzG=M5l!*=B2S2-u}xaH9Gu!|ePB1c
z%}C=h&n(HMVkPr=!VYiSgo<Nn%`torYoM@Cf+I%@<mfb%QC(o=W{@Pf|MP%xS5Rs)
z&l64L%^#C*V~J)GJBW@6^sT2zFp=UgR%#SWQ{Y5YD~P5=!;p`71EUo5=4)#Cbl^Tc
zKZa`SUC7b&j@|)pmTe+3F*21LPPnTS#-miM_!Xo(AojH2LOm>*TuOed6AJbbLReF3
z<6b5mJdo2^f{Do^XJ#$u@;BH?9*s#%E*>dcaF#~i8)%Lhwi!#rc5snV#D$@PD4u4K
z%KJI7zPzQOQpA^-fRoAP5MIhRauy#Xov1<zF+A`B1!;)<iv<c+L$PAIgsw$O^z54w
zbQP<?4HQk!VMl~An0Gj>6+PjTJlmC!Su=%{YWnpY?YSO{1oz{_&h?JYRx{L1<8%rL
z!Rv4w%RM<oV&98Qs!nCEdlFqF{(OYZ*k-9R{y4O20r4WB!F~)Rp!~P-kU1E;i07)=
zlgaZs5S|sRt?3lmAJdjiLUkKktImx{H(1%}D#_RQ3D8Q?^r@5uZF^XpGuV+fdh(`@
zsb#+@$m3HOo+5pmdhb{uPe{ixh{HjZO(76!&dI2Tb1K^soGfr*79Z^jFhb#KYgN(U
zfOF}3R7ye8aAke@RZO#I#nEMe0<l1WMU&`d5A@#vjBHXNcdMU;hgZ1J$d#=0ESl2R
z23;I#84P?Q@9KH!?Zz-QYHo>NruR3x&)Xl3hVT!#(_gwX6d%6DlHWYEe%=+ijygx~
z+VU|{zK#+2wfHhstE8G?xN(BTdtb5_=^4qClqoe32@6A8?S*!$7>59h>Zs{Rij@=Z
z(&^;3;W8!6x8XYX1^>gaAv@nZkZ0mI_L^UxHB32^-vR!e*!j#XwZ5~u26W=)P$8`B
zhJI3-`NSjSUOR*MMkq}bbZO2;(Oj+rWU#Dn-{y&JFD}5!_2Go$!q9}}yFSQUlp&1K
zw;~uiBW7dtawy<_?%|2{sio-sdX9m`(CT0=;duMnkes)l5^R9o`RgbY&xC;)E)qhl
zt5LE(rS1bZ2Aq`MsdDPWzXaY$Lrz63?VJ3@meAA*>~jjBAOFSML=SylmM*4ysQfMS
zqfGCoq^TVOfJO%W|0v?L#RgH-g?`ePQjqkfTh3F&3RUQS*toFo`e(t(MUOpZHXEV_
z7sa`)EPX;Ti9*00K#h9<8X%Ps><q<@sK3+E!zuD_)DD?lF3{y_b$F%JJr(Z60+Nwm
zPB6!SUm=7M!+ChO4g3p%3w%S@89Shve|fsYrb*{MkRifk$VO;gyoE+s$wDA8UTw2=
za>9dUcD(L=A662Tk}Hges!@VFyq}bz3gP`6p?gj(H{cX~tsIy(d2gbHct6f%YJy<J
zIkHZoO0l)DK}JUeyBxHJ|Jx8pXUD#b>zj9I?|cH$$B;a=F`D8MSWaZe#I{*q0>SkW
z@hO5Mj4;A8(U)t{hRxyG##-IF^*=iVi<ji*15lQboT*BoL+^W{_=g07X8HGY4oCa+
zldUU$l#k;cWzdWopI{=MRS;vILCm^-EArKJx=$|N+wPx9^*igJiin=5W>hkV)l9K&
zcw<q0%5~8VS6Rh3(I{f$w`uvSrenh9`F?eYSL?&puiKYTcbiL@lP}&sV*FPu{#`M%
zn0CV?Lah@-l!X7?X`vn_a~&Izp!@0MC1zdeys^o+4sjetESb_~x1X4MxoTS@&eiU6
z)c$2Qyw3ooHo=~5;Y+pIA6KcR$SQ+n@5ds8FenNP4D~jHwhdYva6hfAa}P~P_jQ>N
zzEwDEh^U-IFjXTaM%yIA9A?W%$fu1XER0)<bD;WmMWlDP8jFvBYOOOL!wW$nci?fS
zj~O1@cN}&M|1QOi8W=>68WtfmDxq3%2m0R~#A+-|oY3&{b~j@p0a%<K@XaXYVi2}}
z&8dhgNfpRuC>)D<6qZM(NvSU*)X=+VOz9Tjhi-F1^e6?$1-XdB!FlEO6mrBUGP?u?
zePnft(U5cwtp!pPS86Tesm2DZG}NJC-vDoTs!tXwIP{cwI&k@t>U`w{u*z8LDO=N7
z6bg{wXcX+N$3sM$z8G1Io1`eNg@|`N?qhXPUN--kOudt`4$Y6A-BVV+i}&LoLm56|
z)+0cb?(1jRms<=nc3gJ6Fq|}Q<&aSMn-U|qBFmFqN?i-Pp3~vmKFUo_B)tSvacd$X
zvA%lQVGImT!DXV^{BeOVsoT`^Y4Y_l)Wc5W=0lZutywd@;mi`DGK86b(KWd~M03?u
z3VZ(`KfiR0BQ(YAb8L@4A$r3<bx;{(k;W874E6d1slg|wn)Af!T&O8nk0fg<Qz;fJ
z$q#)}%JddKda0dwBu5k0amYEr=BUz2A2B~n?MiyNO)z<x|2xrr(aBRXgQd1g=cEwx
zr^YG$othrAokRbI25FBSkD8`=HHJ;ZMe+`Nr;d1fR2H!#tD4#uR_Gu!{G4<BHaRd*
zOKys#BSR#r;<tw~KvZKx3D*Tzd|`^5E^7>!AHYPpAHat_0HzJ>!*Jh_wl<d|=eUbq
zhg{olsP$oRWWG0Q5}|@Y$WEr<D|yrZsG?t&$Duf;z;^?SU*f&vJzkqj$O6?;30YJg
z$6DY=!=c9@a*WF~;Na*tNmIl$|4ea`CF0vYp9`75u~P}wxZcJJI)R+&Car;g2a{(p
zlZ#6dh>$0lo+G^nb<lw3eiw(`E&2A7hGa2IZ`52bWy`XluN3z>EwUK}HO2tj$D$^z
zw|z9QAY~4sAPEyLRvV|a;0IBTDy;!$i(nOutOR2T&m&4I<#wnR?4KR3kNGHA!Y9dB
zoJggyUUSJdR}ev*S9<0U-LqMJBa7(M%Yj@$K}f(_rpP1gTq-<=EF=Lp-X;?$GM9gY
z8P+zn{nmLC@n)PrLYdsBXPSUbQOu}PXHm4ck+)TC`#YCFvh^ejj)z1gQ}r9+tpX2f
zYRz3<`_*-tA&fK*5A58)S^@&jJHZU9bL})j+AQ;tTe*^Tmfm7j+A#u4orU_IeRfBk
zFrJ>b00Z`ecdK`A2cW46eeP<f4W8M^)7YZeu$yB9;-C4l--{xtQ?84eekh@w@aM=)
z>@mTC1d^vc&W}6~p>l%u45&>YOoX0~md$#xczjS8|7mb9$%X7&=A7Myo9#rw!?-`n
zs`vRN%a->|RkwY|zP>Q}e&c%Lock|<e%{JxeIn$|{OD;>yx8PrgAmVN++ie(6YM@(
z#kAao==ikK_=)<(HFzk6EYDGC=YQbVMz4dEeM<vB11yqP*A2MXki4<*?hV8jVu$Yu
zQBrr_ky26^dK*qZNM8#qOUrtnFdO6-Wkd`ZG$aD*L@dX)W~XS|6o|k>Ty2BEuzP(4
zV-aG6W$Zjhl;Q!)TUfAZB;sxbUIfI60as44N=$I}oWk8<zz)yK(c>~*MLIbxMMINd
ztq%Vrz!VGf+5FWjtK}Aleq0K$D$35HzQdP9N@^-vzBYr$WlM`{Fjhv(k?&I0J3d5{
ze#|EuPgKg!ogN|h=KZq_H21nHPKb(*C`o5SK}i|HNSEC22TB=Ez3`8s;*ow}&?K<q
zf;j>#JB1J>$02kXdNU4D#N+<fN_IzUzkO!}<aNL}WuV^e=S!7M7KkN$g{^lmzDqnN
zMu;dLFODfJ(7+v7euBBD2t`R8hE6VmQU)BcDM`a+`&}U#v`3Iq&R{zK2E1-J^dE~o
z7Ezw3Q<Zh0fm$xndE&O8a9`1>eFd6dj1>}%qfg!+=v4$5*7Xg*nBDqAfJQK?G>vL9
z_FOd0Y&5Ibwz@5}5e^ZrbujNAAbc+sMo*Da22p|5CL$a`N8{}Mve*KaS;Vbt_8q8U
zP5}pbD%@O-%1BB5NaB!wxO?@J>FQZ#ILBg}fCulHsZ~VBLxK@IQnT=?{!^M43+3Uj
zP-6R5FsWbZIuv~jR7lg5VtTvM>BDzNg`hS>(L#X|h&w3Z3-kxa;jsOkP;{72JhqFD
z#G^L*W;<|8Y#(Njc+hlX2m&{cv!h}eJ_b}$3BO$a{h0^yS^q|*KRFRTH&nv4$p6wA
zJ&Q?qV{qB4O%c6l+-F;>dGziM%K8KE(oP!M<9zOWTH@P$$o;@y;^U{>5-eb+{Y}V~
zG#PLGs6QIhJ07{xf~f-PE8Yi7bcv=>VhDVQ(;O&#YW&)e$T%@gF?>459UY3pdJmf*
z{)q5O$v$i!#4EaZUHW<i=gJIdl8;h%V?ogvRCNUq`zV4xj+M=0W{OA~%^7h*VJ1)v
zOO5^&=vylx`;0=6W)$So{v_gOMN#2g(Qn4da7;f4C9*N$%<gJn_>)he<Pjw1ImxpV
zG(;tmo9i;5V+I+PfQ@HplmUq}$$tX-wp?u*X)nXXdjM^sf`#sWG_`y(0jIA-UBybA
zf5%05vE5G@js#*Q7-QYb1ddzh*M{6eWJ*s&68l;7xP<9+;$j?se-(|z>;$7vabLF8
zKcipKAti(V@ZbyvHz!zpGOT8gqX;!pdKku1q1fH*y$>us?I7TeAD!?G|4Klg6IsS#
z9>$F9Y<_(hyllJv%NTgzd(U>2RCMwYnIIhXUBfSCw)DPeU2T)<U(Y*JnO)b~D!!LZ
zyiCsRc>6bu&oe#2Mh;!<B|FLA&;{bJhu6D*w(kj5;Tdsyu4L%M7tL_@dn?U;t^R<=
z1j{OoSB+N}<)kHy0K*uj&81X0KA4LvwiFQ*Ys=(^bxcJ9>$)-)zM5YddLswpx^Yrp
zQuUaO(aL$xNN@iW!*-{qP~6FvF<D5D24VyrUYb6oj3#KBZKB_B4<#NGzZ=4iry`)P
zbbNCH8ji;4AY+;Yc+I|0%S6ED{g{whMh#e3B7%(}ed#yhKBE*F<FLe#*D=zR>#P3g
z4veB^BlNaVq_v>~UW0N1u95`-47rlGRHA{!gP6F^N1^5G-yz$LCpA^^=b@0&oY8WF
zF-KP3ER`L-b(Vuf3`XJ#tN;zzC-vMn7H`<tE+Xi1jNN8bv8lFei5YU=XrDf+1+u1v
zuxp+&t7_q!G%V!qs3Hh?U2cmr3nAjI&zq$C{{0j5@YXwTyLdGrom6F-2RebSKB7gg
zv5$uGgxWu4V6Or`^~zeEsEP2QjXPGNX}QTCy=44;BZ<Am!*7Q#X6WfUiS6-%SHpkW
zV#Y&%^564b%~SqUShv;nbIS$!UH975QwLs~sO|k9rKb|R>P9I7RU##pB5B57MduO?
zJ%WqUrM5kRwu!<`1`zEQt`o@Wi%oe5R7(2za{TWJkFwX*VmqGuqlXs;H#G&2+le%h
zrA(dC<&@*v(cB`+BS@epA@OY>Gi($t0{qN%<B1h<G))BJO@H=jwk_we8pI)uiorE$
zcSC3#?^%MdNpLFPd-dW!wFL?}98g}zh0F--&F&i<yXF=!W;1-&xENl6M&nTkqGfrz
z0}QfloPTfbz?rrMw9bGvw&yaBEx#|R&b#i_EzX5(4-6r7H>cp?ah(jdISuO+!YMo{
zRtwu9bU%e`bz}OrvAdLwomi`oAusbZ&NT(Bet~)cQi$<dr0)Bg>{nV_ZFJ@#)gEHH
zhF0P~8>x~_QL+xRhzJvk|IE6&B9~*L*!;wN!`SME!2Ka58`e9)sl~NP4g`(YA1Lu{
zyazTr;N>m%U$8`f+m&d1ki}ZG5;8v0pt;=i-qQaF8?jiY){7RnntWoOv_1+J;Qv`q
zzd-CNPt$YNDd9$JZ`j(M8pI^{@6zo{Ale9;m3sS0YvU)p^TS450>#{}2$MVu4HgUm
zla)T<<9Evld6$RO9zkcpCa-k2DAJ9UHBlAo|CATsP)k&-|M+6~TFZsco*6BDOs(dm
z(Lq~g4E<iNIZzn+>nmTq8iLLQFH$q3NJFywcQzmz0!l*_aiBzD&gI?@RDBn*{e<?n
zl7Cs!p>Eslg(9%Q2#OGKmj7ungQj*mwTSzZm&kwelE0t+7Xf6M_@4ZT>$w2eXUyFZ
zw=$IDkLuT_OCI5m|8#2A)bLzGa)?$o&n!gIRizz1CI9DpdaE2WSHk@;&W`ulP|kQ_
zCf;{EO_5M>Ev6oalkfqa%bN-WTg4hn*-kf$?wDi${|`r)ny7qzi?QD;L{S<si&4nz
zCjOov@7$9SZb~<}c`2ZCo&wxx-#%}j{%$|;IAs3+qKf8J;X$t%#jY(lruwOu&+NqE
z6Gu{XdSerwYQ{pHL#&wbpQwmmaYk#RC9oGVWG@{VzvLz=u=xM?tI^oIVNi15&3Nae
zOHqf8&hUdB*|aE1v7SF?GC3j}3N~|X<y&WU5C5W-%2q8EW7?<`S~?2ra-2@X%%U&U
zdveSw{o&RJ3~tA7H;>;PzhSw--g)gzq4|2h|E8@e@aVNU2VcCeIS~uNRaxfv4IvdO
z9L9*gsJ`O%@0&&Rxl(jYZK0|K5lF*d{l81lJs25=O_sEkS~r=XRR8Yb<((!|cEl;a
zU@i@gs9w9Q+>1bdUoa<dU-JzM`0*8oITZYwhZ*d;dA8sL9<F{8AXV;)(OF>0Dwc;Z
zreZxrCeyG-n`WYR++<je`<bG__!}1#xSl{J@slu(mEb8=I=QtWM;rg_qAgL*tpF>p
zb;C{n^&)-L_Sxs~X>zo1&%QilBsW+Tt&Vwtd2Iy*dU|!_*(oy5tnfKqQ7Le*AXb`U
ziH=Kbc7A^T<>L~r4Qrta>eXe4?I3}Q3n4pw<-)(Gcw_{eeUqky**9ZrH9IvB{DXij
z7O4_3(YMmeuQIA(_(+=~Ce?0<e5bSS=7X7CwH<HX7LuZG_{D3H#Bmy}Oa3`<ScEXb
z@}=4Wk<EUz(#|IvxQJSt9;7RkJ&rsDXQb>9ZE&9X>C6M0BcnZ~hbutP4pJ~tC4Ewm
zpmcRjqO(y;sSu+5Y*8Gic)aAdqJ;rV15qh`+W1>$o)SfI=h4`G5g{QzJY$lERZHoT
z5Wgc>$CEanQBf#+3kb<M0zk#gEv9A~@aSy+0ym636d|W!#o5(?^oANyyL<L3T}*1f
zjz*(N-0#rf19a5P`%??Hr{5z^FEt~DMvZ<CTl$^PV?$FfzfU+`u5Mgj{$ELF85MQc
zMRB^jLFtxoq(Kn`1Vl>88FJ`QMurCI?(UYBl8{EaOHz=KE<r$IQ1ZP#FKa&WVb-jf
z`@i>|v-kd;A7@2(i<dVh4e#$v7>FuYj-s>sCZR;^$y~4SdCk_Kn?b>Y=bcj(J!D_?
zQ$-QV%@Eo8PlZ>8of*nuC(Pb^j%w>s1;mDzQIB@((6s4vB$vp89rF8m;+kp+NL(cD
ztRI7f$wt1w=}~@VYr4c3r!#?r*qXW*N$#O`=f@kQhLQ+Y3!z4&!D0!i5yM&csBlrn
zY(`1vr}<Af5+nTn)0fEfgFq$cU&HmjtaWZq{PXOOuBzkhjhdU=R<1kjPbOnC)UIHu
zmMb8+V^F#6)A(J<cX7R-<DK~a(PP0srlEZ@cG4Fn`t817t6?4$uiiWf{~ZxjU$8q8
z!T;ca<7*#A!HJAw!-u|DO;z(F+dsa%zms^twhQ+k$zk>FZ#wnxheb_eGwPc2-`L<y
zJki{z!m|TMilfdB`qQIJQxu$vK*5xgh6=*gou@J#886iqi+)({zw9QJyP#p{s0J0_
ziLB%Nd*E<dpj&7nQ7&JW;@zG0C9~8qR{mm6?b1;gc530_)!g}4T2198r|JVUp+_mI
z)J4e?LGo;mTp=y_Q`Z_D$-oV;zAupSJ@>_atw70s$~za>)lJo#+m`*7j-Q{oO3ur&
z`kgwiX0AHyPq)hoE_L5%dltG69`7KUwsH&*UpD4|hc{aM2NWD20MhXe6xu+K0CwNn
z+d0NFzN?bJW8LB8o;46{DOmBmHFUUsrLPZ0zJB62Xiyc;als=pquDsLrO2ir34;L*
z&3>+G8BClH#{dWccBL4Fzk#GrCt_t){%YT$ol^HQ*Z2TA&;e+ZPe94}55WV<uP!3K
zMhEdn2+kR5$l%Rz7&*Hh_%uMt2hNmm$A&`=IQ={xd89Yc4S|83^p0%GI`keM=6zwS
zs4M>iDfIFhP}$!TM-(oBap?d`p_TT;;{?E>&acipAEkHPyQ=L0u8ODbpN|4H<$8YL
z#piQIo`>LR9o!F?qS)@Zto&=-$SBF!u=RN{Wg2O%zQZW_wc@L7t5C^SZPvGPC#j=r
z#8)Gkqk2>Z>j<h=QMg!$VnCd&`G(4E3M97zBPS|HKyqXJCgOT8kS~SM1yBos=r@;}
z+U)1TeADd52z}PupVO-UwjHR3Wj6<Lj0DF(MzOaV%LrD`1$!6x4)aA?<k#6gzDJz{
zc9HY1g=CB#q=uuh?~O}9@Gz6#$1B7AP!4=-0+2tl@C3S^no!WKwuba`mXw$cKPj1W
zAlhuTYj(UFuubOX#=MULNv86s6K1s<gjhsG#IE;vmZVe#B_tPU#TE=7%0U$7XGx3%
zJA%Hh4fe$)^TadjqlC9gftdMLko<cjRE4jWSt4*Vfj)y#*vh;ATB$L%<GZQ3`eLOd
zBTGZ2q*3FxvvKM)0;Ya7D??{^ycjzw{buX}1pbV6_6+d1Y$?l$+NJr-DQqb}hB?u{
zU2KSU`ADYf`5Q$1_3!radXqq34~hByQhacYPQ>+K9$1ke?~f%}ah1~sRd};5=_hvr
zR846%sJhv=LSBcmS@A@-;x5mt$h9dBHhKBsZJbsy2k;9IB_O5>!!z>k4qK06?un~^
zz0As%3L0lg$@RIk)e;$Qagw5+I09fF(B@W3*A=j&|J&wJ*Twk+-ic<Z;}U#*ef`hL
zKSk9v9X!?jL~RZ*7}s1jk&5{wV2~hz8h*MF|HqTntMgx}R3!;W5%Q|oj1`pOb;pA5
z3GFX2pOT%!EUU<l+tHIFXXx=4^~jD{*P$`OQ8M%PIr~LY{qbhI&V=*ihBy0ZHv#5V
zQk0RLEzWzjpjY+gX|j~(*)AylC4H{{ya1zC9EUi;ir)h&up+fPXk<6THQPaJ-kF)8
z0NDN||M>zoVr8lZEI|nmygGNl`|kskADPSDf+amC--~(k*nga;&z>M!7q)sxu!+Hf
zRf@Xkxbp_ih%>h^@aDE)()ChL4#>3W{Ck}6&Kt>wq3wUSGn>&%*mWgyG9SAMnqt)X
z@!5mu*jZX?YACm1oQgc)bjf+?9IWa;55@S60BinV;tjZ&04>Olq_TPS>p|3I1E}Z$
zI_u}$r%y39Q@}(7qCG1hZu2j;`Rp0GWG`si_y8GS%x1#RLpHi1wd$YtdiO79kXX!w
z3^|C73spxT4neZ**a=u7h(c`$drUXofMNhrd;tIEg%E8(Y;pDCC}m8?{eF;Z?l-|C
zwIo4lg8-6gE!jx|*ag<`C&-$Vx^jVxwvJ<62Mnc4lfpv~!Al8Qx7WrVMOQ{jT<Q1<
zr(m`G2kM$BtTb$<sQ=fr@Q=c0@t(r4`EN%AzOcMS7OSY|awq=R`H_MQVsGha(j2(r
zGH*bV4U16?o2j<t-<v2gc?8u31_25>)aTFFFcHZTs7!4jNnTzZd+2xbM4uO2&b|=v
zZ2^;l7Ca}NQ{dIN%5SrP>jjA+iTn%17tU8!Ho*A+x5?5z;ENG{FVXWP3$Qv4T?q)Y
zp7wXIvkqA`yx>8G2=UQl-?y?Mig;CB2&2w=dgz{JaR6~KRO9E+EAU*)-vykjk&s|F
zAmLP-iCP?rDn&E&xpWb%IrHr4Q1+Jw`*W+VQffTuqF5JVeWNhQ01}R*yNq99KSoj?
z&Ru?>l}JVxT8z?v2N!Z7N_=p0umkpCsQY8L!`^ZbaHxdVU@-Dm|4cKm3L*5Lyjdgl
zg{vT;C3KJ?)rSa(0ARJ`jXJI;O)BgRZt!DqA3B4fGx@6KFQ3Cy>W*Y_Rwi>}ibuzT
zn!P5bI&51-b|&d1iA(OhCQ^<*58spsp0=OQ7>N5OaiF{^mwz&&mQdmXRz}kBu8?6r
z1|&bVSC3wQQc_YkXN68Gy~7sS9*uy0P|ySsv!>!LXtp8a9sb%rcZ}~ur)v6P?0v4A
z@^mfaWf))dtcHQ0%q9<6S9qHt<PabKm0x58hPXGD^ROmwDwcR!ZvefpmBTM&d_lGA
zuLVHu)BL2f8(vBbPan;abOMwnn*0#a*XLv=YX%~IxeCU+xFZU{bQChe)EJ&@sNc)j
zE&hdB(lLl>Z3eg&S0&dnZK`CHRnvuvbj$Vdcqs$GgP`uug|!Q^vKtSw(9iya(Jhp}
zeu%_3jr1GOMvss00Xb8eg&xX$wD@eS0Lk7zfX(>Pl3zi?jPkTI$`&KO08LsG9<oQJ
zkz}FVeG8r<E{Z+Uh<Wb&<pRA!WMJ#`&su{d(uE$clJ+TOm8e<_Fk6K*NxnzDO#(Q@
zg2!|rA-NRlfPi;#mWR(?fj-4J95*IUD&0G5%AdtDAA_%;o-qZeYo5TE`Fa=P;GFhl
zC)bw=JAm=+us!++S|A~<;HK&tYbe&6(s&QJUU&$<%o*_9MFm*;<x=_WMjKOoN4Ib0
z)}$xkF8pcn=sCYTaj4%@3%o`zlpf}5822cIaZQ-=<wKn{F(M_}r7G!v-R8fTyBkl;
zS=XJ4IW{Byxfl9~4MpiJ)P&08ifG!>be|N?cJoLC;WtGWu!aH`j@6c?Z0KPVnq&!)
z1Ax@bRuNX(aR&QQ&$oFv&4*zK_x$V@U(m9m-}Q;FA3o-VV2(Z@hzgKT;c<KNz}%lt
zPI$<(X}_u!T9X9BSrXM+t+fL{xs>Kn$)hDEWb=nuazVkMv%&k_UOXF;r=7pB2~^p4
z!lWHz>&RT5+1i9py^VXR1V|L^!e&$9C(2t5LQWpJk}~_B&+g6^+}8+|eC8b&E^^%e
z4n!M!*cqESr~kbY9PycX^G1E6S?2Adji3IfWjq4zzk5-L$O?F{OrMFM@HfuL1flX2
zK241s=fu*|;q(5!9+&RmvfT0=k{Ib#20efHheeMn+(X%Lh6)!u%V#LqlCx=jv_I9k
zHCh0P+XdA`A%0Elv4YncNfJ+#p?$Lv=Nt0$wU7fcku^zuMhOSMun=qpIh>XjKS%z)
zr}@-6{&7ru%O2y5BCLVO1AQ8+#gC&Vf^#S-cGDmAJ<fxdmFu|jknJ|l)X37S^~b0!
zXmKq$g=H;z$)RBznsxJ{Wh6c{OQct%_tX?&g>if<r_Fk;%JC%r8_$H3V3Rgix0a$K
zxZFu##F5FaWtgHs7JOn6>F0#|sgxh$ugd<6MnhsRqU~%%=U+2BOK+V$1{oo$$d%iq
zVYnSf_3YvVEgw5#Tftg7>UrqyQ1<&gvt{;ke@Kd;kqUyF)sHC&f40R(gj!G{0u5`+
zYgEhw$Cm8=DEv3sPEDt0zeb71oGO>RxpZX09)=97qaL2_vA74RJha}9nm(K%U)~Ob
zy?d)V0B0}=GvuMlMu<5`t$`(sE_#@&>9>K5)sJE+q2=64g1J{Xy^8!MX00UB{}z%C
zW&-TXmA{7LEos)?HXBW3SmgXx3&QnZlbjAFA#u1&Q?#P9v~?VIc2&5`us~z3t8&&D
zI)2qd(wM{l#Iu)}hPp9a%WC!bQCAQ)PV^A*S^O?5gk(Zx#6a!I_ygdq`i>i`L;2L+
zt2Rk5X>961oS|eRd}f@$=|$s58DFb4-A^elGVpQwwr!c#uWeW7((g*fKH*edE>JT2
zwDxeX?0;U+${3m2ozbsO!iUzjSSe6r4TBiC*6PWI+5Th!ZoOe*uV}u2BMoPH;*(Vn
zdS7o(mKL8W#9I<}{FpeJ4K4(mk2a+h<OLlCNvoznl2E%?aw4E#0=sG+g!{BK;7RqW
z86tbYEN*sAIo&+pl*+L>#ZDW}<c?9r$rBwW`;3BWH%wZgkIA*mz_5sbhSf|Z`envy
z(PO>*ObX3>(r*EtSB{J{VJ6OF*?)joAx9w(ZCeFi#Exsn0KDrmBKb?A2pjb?g*6bi
ze{CGxb6iT5Cbh(}XWF(T;?Sz%%+>O!pVrtN9eX$B%0!yoEWw4jlWbmlTRq@Zj^F&?
ztO$b3(-SuQzFKj@6mL|<oBSk<f7eMlR+Yt89L8=P1c|_qXBnO*OHCtq!WuA5fKQ&a
z=-c02NZz0+n+VH)%zzQ_>9E)Kg!%3_^C)S*sU`)U97j&4lZAg4j4Q6bP=|Db41Yv+
zk34dx<95FT>VEep_RbyP3*x?aeu7$|b_3|m2Z@L;3s({=nL|b`YTcp!?k^WA^=CBU
zQN1=+Xv4kyBMI954q<bf7o#})zfwD{ImL;W>LH8ZY#1=rV^o9Q@uR^u?(dBUQoAez
z3#jK_QH8G5mp|)~>3qwqNIB~Ebkzf4=zSJebBr1yK8Ho6o)N*;D3KWfnOc#-1Pqc5
z%<>q%7@xIwK^SArBVANDFsr3+6Xckt5s+~sjA>3$V9KzsFMPGC=Vz$m-PLYb_Rm-d
zGU_kB_0f^DkzZlVK=c3L-$T-`Cpb$?&MQRQS`?Boxe);|rbj4oXs<Z$o*A0=&pkm~
zKqw<rCE?E29zBZ~-K<m3AAn*1n@RBA_If}jC8UTAVB_7TIT9_#`leB$%7{M?_a7fA
z30U8)+!`F_*tQ&rFn&v?W!uhORKG%&!+ck~z17QgSKfA@a0PY@C2b}bY~p@RW_u6x
zx)S6O+`NFDbry}x%K3AS<me-Ec^!;+J6`Gc6SJh!Ajq(LgB3X09$uG}hm9mZmJl$3
zKKqD2lJTWe&MlmFmEbjrf6&PM7R}Pi8rp}fH#w!;j_YK&;5JP>9MR{;Whgw~McG~c
zC)Q8yGn<9xHo>MD`}4d`IDJg5I6~OgQVk1<P7|6q;g1L>Y!RZaLu19nPX5T&z8`xH
z2Y>)9#%tDFA(5pCQPov;XQ9`Aon1N*TP#=r)hQ-=9EsgYGv$D^TRr6}-T=|c7Ot!q
z?`i|$DcbLBR?0yhr**vF4#Hn#m5Ka?`y>P2;+^q0w4|#>@lcs<*3TJl#2JuHJ=16H
z6(8p+rW=f+7mh=Vg4jZck;Lqt7(;vgoH*Stx>$^a%WGBTZ=#7agPu#xYONvU<70&K
zSZO4bR3bSoR{5L3iu^w3j?Nt^-9MRnmxV1|_8jk1UBq#^2Mc`yubPA_q?_%-8zXE#
z=Pc(SB+>`gKb$E^=;@xv3K52yC%{50UQ~LRNx6P5mFSrNAS>@&Eo;L6DopQ9S|&9O
z#1%5=;h)31itiQ6@DiJ`GpLojbE&>*KfvQ#b}3U8T5)_|fpwr?Fu}b?_Y6g|%!FjD
z-hl-LtXCG>NSu*Tv7Q}-UmfPXHM;4O33<|wv|ftL35sf7L##1KH#sHu5stc_hTUV-
z17D~Z$>o;>7)c;fha|tXwYeRNogJmenX*7WY>mkvI0V?GioU1*`M62OuB2`CvfFU!
z-R}$i(X0OHy1T0BpO;Rf6Kto<%c<AZe?K2J>K_*vFFGx}9kl&&2%M_MQtscmyKq0-
zyP=e7Oe-vGZSf-=w}z9In_HTMnnUn)BM7T$Ul-g;J%7924No?}?85FhYWN0%3QqA3
zV|>@hF|z&SONXOya_LstTu7Iel{cmQ<l2esAhtZohdJpy5hUxl!;J&>Pho@O`@QTK
z8)n;wOw2sft*v4Zb<J(Xv>65ez{o^?g;#W<bQwGvbB03-;zrR}&LL5`42(Y>K*3C?
zm;zPgJtR$8PsV1FDL)4K4~iRHlKWwnrD1Cj5h{mIpao;NnS}fZg43RHnVFf9!c<{?
z$M@H8$l6w^gXrQDRk5wk@zlA4+wqL4jx9hr=pMYNKq=iU7h0{1)g?WXCjA_0bpnV1
zoad$#4y2ZoXsi5WzPw}?=lq13y$_ea$4LOB@2@OF{yK_(sNytya0Wh$CU?Nmh4-JW
zlC!I_2y0M(nNBGkqmw+(l2{%O?GmxW!vO!01NK1eu50Kl-1)&Sk&w$VB@7Qypepb;
zKgX`NAI?~eM`$M6*-Sah+J&)n)Gg98NB;qz=8WdCwI<MyL;VY*g!x}hv83?1Lglg~
zQkau)&{y%LqITP_4&?{)B-}2|h2aMk_St%Ais@1aCjp1j_B0VUqr9Q@Nf%Z)^Vhww
zMc(-P*96{<_`+Cvc{5ODpz-Iqg?x=$&cy-Rv3a3DDybS-tsIwHh5|)Yme0S~M<u6z
z4GtZ9wxgX*WN6X{MG{`wI8P6ii<qTsGCnAd)ME^sXQ<AN1Hb=|^zM-Ez5PyP^d4K@
zR+qWHAH$V|YqZw!bnyqXZ^up9CsBjTO0jaEg*PL2c2Do#8H`!qX<(wZL}2mLR#$T^
zJKlBYCxoFD`t*%oA<f6lXwBsXEApWy&3^bz3g`y$s<pe#0<*eZDx8XZFW6`&Dd})i
zuE0KVwQq8F3Ah>TaW%5xga7t)&{lg^&F;WMQ(bKP9^A-8-h3lsbioQcqH6<e>abfZ
z&nl_>C&PyQy%>9|I5oP=KQ{@uM@@0BoRwI(w&Zdjpz?KP4+`9>ToL)4tlboDP5oh9
z8w0V{ZBdc)!^y=ZBGoMNda@s=CsRhlh1UH1<Q7e?*J**9Ui1+jYhxA`iBZ;BE1-6i
zAzJph4xF+(K<jJ%gWJi2<II)oZ2;E|RPMdOQVV(EP$G#W8y+C;kK`6oRy^NK)G!8V
zEJ6K8&)J>~W2uR&S_QU?^!V9yXYruOwU5aNj|IiqMj_n6e@MRUg~;3H7Lx=v;T9q7
z@>&3qXZK{};f}Mzj~DECUPL><SSbOF{35?>giae?nuA&idGzH1^jL}jNP%QB@z3}~
zQ~CrkI)W_NKZzBy(I;;aptPnZfw^)N-|~luZDEHX;To4bn6q79#Vnhgw}+j<JfqA%
zC=|aDVh4-6bRw@CQ-MpUMyjI|jDG#GdSxR)PRXUp;yO(p8b`LFD>uaPFY}aT6EezR
z?rBPUcGR*jD2P5TT9fmFrq#(c=|g^xmof0Nh;YC{l|Ku?W|x@B_CfY%WE0YurR^Dn
z11Q%1W59m=;cL=5K9i%1!<~YB-adxatarGl#Z0U;ijF&8h+93@7}m2JH&vqmi-4}K
zcRNu*BbMSdW&O2>Hut-5cGf|!qTlq8p?T3<fuo>8dYke!GC|M6yd@XjEF>w#tJ3Ro
zivB{l#pLGaYY5LAtsAC@0!iWhr?E`d`2TTdiP?WTAo$3f)P-#mhqV}#26&0*J6y0e
z@B+W;8JHe3#$IdiNa@%Pg$JuvcT}u&``U?LyvrE-^CHt@#pfXKZW=k+;hc7tXw~dH
z?Tm_jTy?2<YAN%x_I6;*=@U~mTy3<W_P_=<h8m>NSRl;7c$qFutN45d=c14kMp<uR
zdMc+$UpJ@0Z|eIP6CZu1zP={Jl!M|D(}>LyQ{>Xm{0*BaW@)AQf&Wcy*cXo7V7)DB
zSHpx6jJq)GsS>^R@2k|%Z^o5zlzQ_ce6}iwsHxa_lNrfp<2gURo2N?`#O2yh5EN-U
z&-4=x|4FRvsJ7ctxKyA)*{F;|n-K9j_dab$>m3jh*biDoozPTsS5$LPNqUR#fG!eK
zS9U`gCs{Rj&__L|G~ZHLVKfz$z((}I+QlBq1Iy|2ZsUULN78A`Zeq=m*0E}C{n@v>
z)&re(86MfZ(S(F+KG`yToJzXI0(Cm42Te6ibwi_r%$L%Am&hM>53iDzVIltW!cu#K
z8lLgF?pypeRw9jl?S|=JzKOy450+il`XhUzFO+M(&=!uibTe;GDY0cT#MeE{)wMFz
zk6v|%zu}6{kUCf%<`rmkgVcT!a{P|Vz*x_aeJ^-B^pRa91`2@^QRIjkHwyo}6*VaI
z`b#p7V{`z$p2-1y)i%r#H4keU^-<`G?pA-1Y}p|bi9$t)*XT_7xZFN^rGNTJk~ouS
zr<+q<K`TX9Q!PFM+r;hpcP2e*p%lkB>p64-&4zsnUi)fH8G(7-A8!xNPIK;~R)}#;
z=6?pSh-4gRmT+gE&isLA9xs;savh)E827M%pT3&5e%BCty_XHlzX4dwAC)>}rcqmy
z^W5cgu1Cw(%a_qf@x5B8gWQ%`+e6A{eid8~%cB&{@rO@o`8{iqiNTR6$~i`zK1Ub2
zSJ0(fMfR<HbM##LI@je8lI+%MM-uAq?`b&@(Yjm*-hRVAzS~E?sB^>9g1q}Rb3Pw9
znbf_Kj1_01Q8SQYeaX&Ns4Df+_H*fi1;(&>B0te=iXK-}A4NH%YPvN3)#4+Mu6M(`
zbCWzfiIjBOgW2p-UF=GTO`C2t{THK2oV7{Cg4eE!_DjxghYMTZ7Jcse4c<8p8VL-U
zLDwP|o0z$iIWj+}b{u&h-(sFKw_Ps0scO3{yCjwQY&NU1iB+U#AlAy|b86te*zTk>
zcepIrvbj$9uzi;_R_tK1oO>v@4El;6QnJ@rXG7=?7$Pqv!Z;30+L>&`*mlAd<=1W5
zFv5M46TFY<>U?$T0Ng<6kwKSlxazU&l-&!tZA79Q-!rs(U3SNm3fM;RIC4gzm?Y+3
z`%RH7CGVtv6>=|fSgt?App!ten0{xyL=)*aH8q4KF1@GlB%{{%d1aM$<Gn9BiPdYe
z{q63VPxZP3%*bocrhGB1uU)^{S43z()Um72`Tn`|+7<Qom^{hVECqEo9jM%{)zyfD
zo0I?<BJf5msMuG;WhL6@lHdeC5DG-q8b}2?cG}e>@kVE|zjES0kl>E)iKQlz7pYK6
z#E0W(JWfu>F17mh&U)DOGem|y+G0I9iSQH^T;4uE=A-S}kX6bP`8uh{oO;il^F4R!
zYcA@q9Qo?I;vJTa7W^>S_yRmzCndR;y+~h2S!)t+r2i+&3kBHg0fWE4_~#{JllK%P
ziL_EGE)DbxN^lFcP-1gG27-9UZexH12h*eEG{YEvCWkT5uQiDHIIMC7Pbgb`S;z9=
z;F(`_>Y_q;EyYCItwgG7kvZ>GGukXX+6VK>$5-(eWw`3|B7p(eJ=D{|oHOm+xuJHU
zj2K0=r1up+>%)}+iA6O7+SZiUDcHdv<#R{9G7y_=SILyh-E>tW^EW=c?`?B~o{z8V
z0W0Cvf;P&@wy%F_+KV5y5Jy?}SwvhEX6)Yw_~6lMa<h8&=}nvxo9R*EC91ICn|nU>
z0&t;jo##_e*Ho=k+44l<8G8+ui&w^jDl2xOT!>T!OWWsVLh;E?Rq|3MyEL)ADzQmP
zG>k9x=5yI1Qk7t$R0-qhpTm=qT5G`x-Y_^>TM*obSguVmOkNIC!8g-VUT>^33*-;j
z35Zid4&R#YS8Z=NF})K3ME(RZ>ZPLymoqMhF#T0-C1qDa67mIFD~%-zg?n1{c@e}J
z6(1a@qVE+C+f1dOUkTfPRkOEzzTh(+fgLAA9k0V-c6y@SD0L%k3ym<yj_dXD6FBCk
zsef<x^5q8du-ESM`PHXCIn?)3s#B=)vV!RPhHIF+D<;1keZ7`e)p^D*w5>ecUWK%d
z#Fr#ykTJ=?H{Qj2FqrwE`INYpyA`QK*+%-2J9OdfTJv5_FtM6r$6HFh7Zbx297cM-
zbDJjgs}|sMCr!(%I^QR`>i+$Zu}M}V@rBEEQN!@0#QnM1rwNeB)oI2gKJ9JjOnb)5
zzc!mq>b$))Hd5g$VDwBXcg!c<d$$4S=0_WEY*PBmUS8i4t<)tK|B7S?okF=>E*iAO
zohmQ7HBv7o+4~;DY=55c9lX4c2>dl4r_C39T&!P0#2Z0dw~0H8ZO~S>T2{EnP&<@#
zdGfyF;=h+npYh_Y<CPg6??MR0>6xFTB<-@~pP|EM(#H4a3!(32ChTki8v>7fY8N+t
zh0eZP>hRg<A{Apo!3)SQ#F<=85?L=q8ND>>{4c~mwoB8!_4m08Ww@|>Gtor4$R6!k
zBkI+nQGIUto@1Ut<mXqEW`X}(XVXSS`FW<dqhfz<x!%sU{&%$#@A&&GsM2;Nq!MT8
q_q;G^J%g)BdCmFbHjl}ho?G9tSYF9qoe3x!_<QkOU7<=29`HY^2<n&s

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-view.png b/windows/security/threat-protection/microsoft-defender-atp/images/tvm-exception-view.png
new file mode 100644
index 0000000000000000000000000000000000000000..539ed966bb40f7208478d5e9316ef9f1526d43c0
GIT binary patch
literal 30511
zcmeFZXH-+&*Ds2dN2-eS_Na8ENbe{J2uKkKq4y%a69|N;2#7T4(nWd=y;qUmYbb$$
z^cq?cAe0;RdER?J+%wJ{_q=DEFaI@0Mt1gId(E}yoNKOGemkL>>Pn<UbVLLM1f<F@
zUuY2!+(Z!&T+9FKHvSA#V7npy>yGP7eGdWxvLC-b*W$U!=<z2BJ(blI2v>;j-Xp!$
zvN0t~K=3z#@{8v>KB+tN5YGv8CJGlth+52Lmp)eav*>ju??5B6cUHfIQ2Y?QCVY+e
zjf;de@L9^2!>=XJ+P;>2a=-uS(T>XXYzuA;#@Gb*C=&fnt81Z@f<RV!xh_CTu>o72
zNL*@1s(X)J%>b9*9`n(0O0VF`Qb?1jgLM*e9E-cSunCA=TE^mV3-?KG2VTcd65q@u
zu55~bP54*)3i<&0bM#jE-omv%hinQygny2{JXm7<b7ZFVzt~YUxM@xxE}r(3Gof+3
zth^C0sWCJrokZIJdlO4H6lKyV5$Q7a6G39VIxxlsEV`Zr6#he*#F;Tvu6a(NYI+ij
z$?mo58}jZu-M``fN}Vp04YBVpybW+0<5MQ`_k1RMZdVgf`BdX^K=t*A!hp56O))I3
zQgi9LlgFkGc3UrjB)^Az`@(YUsI;gVKpG-qH+i0Prmo*CQ5vbhJuoORB;Xzd0_B(N
zy%muaHf<cn<m)H%y8~|gzR_&I%YV8Uwr1xfv&Fn^^F_Tc&>C!03ZPO}2Jud4=#pu`
zBvC_2eSN37O!|$=gvf(U_n%}5b_O-|nwZcSHoaB7i%&$GUVpgD&!%WK?fC7z^dOfq
z`2~|0RHe~GFK6Bs_M+C0Ed4VdG}AF_^b39G%@is}smxpSA@zv8(rch{iK#a(9m(dU
zG=KObFT5p<dJ>y!cRJo5XJK^e7IHf>?$4#SDgF7!P225f)@lh8qevNG<H}K8wZoOU
zugrddY7DEmnz#pbp=-1@X60o5Lbx+ody2-GcY3@yM)Jab_NYPxRg{Q|i4zjn2$BV>
ztL7Q9DjPdh&!W%N8GXC+cq0;p=L=RH;61)d%)=>-TZ!0wRRC^5*D}TQnzC|iUhhGP
z98XHdV?&o^1DJQg?uq)YyF#RL%<iQUdLSyn&L6rCtufM9E&LW1SwS(I?h?@|qlPY&
zHYn;sUaC9oW}XPzxhGekAUgdC1KNd|(h#*rTFor-lQG#0B}FB1f-`)egC|b=FEAVv
z3xW<-D0I`p2)%HG{b5ZXl1Ev&LM@H0`@Ir+BhXvFoAhTYQ(SUk?VIk)+rE;pmlRHY
z7gKc7^#V$qq1}JPi?HfqX(Fzw?y)p_iY+~PSUF!Z+kEIZYffXpt^96CSGaDfs2v?l
z6tJhI>@BPDu5ky@DX&oI996Pq4}(XpM%d5no1(+Hj_1A5!Awx#imcx=da85vceO?a
z{NkBSN9ftIL%aI9Wgw_JLu<Z9yKpWk%L~V~dY){)JV{ocai-)XW+xTJd%EBYkUiN?
zU6VL-zI@gsn>OP>1D{+d48~O3iyhZYF&4*pj8(%&^EBqq%tyh(Mq95N{h8tYKwa2Y
ziLb#rnDr9OayG}j5?~KFN7t`t2Nvl?v}iTgcPhXAqkGQwS(1(z`)7>IO@%0!7rpLm
zRZ|Z?Z3iHOOy<BfYLPcxW0KVY0H47!5yEAds1cn;(d*R~B?0v<QJD=U00ya?w{8GX
zmI&VlErQcLgS5yrUKDKhY$1b+{U)gE!T|tk$~Y_q;(IjhOqFTe8q+TVkYlM3taUmt
zQgYZXs5SQx05QpE>s2dsCOU2){jIT!Hcz>hjL|V9*48#0+&Je|J|wFP$SO>2XfWQu
z{>$J5w8|(&_S2Jy#EbHbZ9VNu^$fcymqIwltbR%3YsttOjK1x&83XK8Nak{Y2@SFm
z)uhn^ZPlD}kYAl@`uuqL*~~MwSOZd4Uy$?IbIX)|%%-T?pv3%frhUzmaOqYUB$2F%
zKJuolbTLsPpYF!Z#srjj!MJU*SHosDrnIUks=YoiHZJRZMaK5vY%EyTAEFN3cW^Sb
z64TabULYn+#Y|>GFjSq?+GXtiJ4q_y6v2<M4>V&Pnx*E;g=@~WE(#wSDO$>1%vaBX
z^E2T2ele-^NTTYic?j4h*X{2EN?#cnQO&?V>sJP@2>Jf$^Fal)R>#i)Io2@KRlt1?
zM)~a2do@(P;FEdEbGB2JT|ivDpE<oo27?W!TNiM{d&I>bM6p`S=B|1y*RIR7$VIy9
z#S1`#5@<sbz3IV$#!i5X%<1vdCt>N6f~R&WbnJGi3Y=Izo%V_8J<^O1*Bc{qZ~Kxe
zNCfDV=4>uq1}(=}nO3}J1z|={o|o|z=qO(b&BVl7y?$n#czy^$JXGy_&|wmBcyT(r
zz46dhg%n2$w;3a9t{N(s2whse!|5(n{koqNUeSTBX#(On_@EK#Ne;2rsoB{=JU&tZ
zk76Tv!GAWNw<&Yeuk<px?Jw3nw$4nxZxum551;TiMTv0AdT1j%jduOsIC&?R!;E8E
z7~n;Y$qe4hM~5wsiqytVdnz>6FJk7o3XW1|Nu&p_<62>U80>uZGcgwllq4n4bPrm=
zwv+U&>XkC{=B(%GimyYSw*niOhICzW!osKpSvv8<b}S<0n@~u${L-p(#*nd2)Ez~Z
z-ssbalZB8_ilh^Xl|<uEAlZNEsx*oS^C9?4iycim-J7DZ!tOp&`8TY_QhcT^w@4(z
zgxX&Gm2tsy-Vc?{%YB%L0xID~w&-Jqz)l>=Fu<I>eEa;(BCS02aRiEYe2ma<fLPL>
z*DHUp&VSpfdB^JY*a!1MScWUrKlJ#)(x@(dtCUuSImi(@&@>pQTMgXoF4aGqq*z*S
zRePz0I4_UXVl48EbQ&&d#eLJV+91_k8QYw^amy-TUc{m@`}V{NSVqLRD~<cO2%f+x
zeE&;Y^S61WW(b2{8e1+0;1l^i*v=FPI!~VK%7?Q5CfpX`9GBs1`x-NLe^B^%;Bfbe
zHh_gxMP>BCa^<>IggxCG-SKFV-rPE+aYosknwIn>D(lH?o#hqch_ig2rBf%M;iRWp
z<zRX&Tuk0!txC_8y<q$MX?h4rqB3Vge;s13`ma>L^6TZNpx&-J;BT659R$uObYBgO
zCo`|o=$=$rE?+w>RnbazZ?R6T_-eA9!2vXGG=2B-<%12aZv9%Wnn{eferK6VaxQHp
zY5%(EBo?mQiz|2-zK!VzRj3SK2}~{X4DN+<cQs=;8PCO}D4g2z8b}?gmy_LV-ty8%
z`C(rOE$*D1yiJFew;;1(W5$0bAPZ!3O0RYF@b?R?@(O&2!4G?6NH=+J(+*Ss*o){&
z@@1Wq_f?_%J!68>&Mzcys$}Zq`k|xwjJr#e%uZUJ(F{%*8Q&((Dc$R)`Y6cWUUve3
z0|EfUatt|OPaT7lY{Yx(3PvO)gvk_s;Lamsvfu%KlxRY9WuLS+ao9^}u|7SYKX^;9
z`m|xra@^P>XRBe~!Y@AHGkv2>!kuMS^hI%9Tra5io36sQ?nu)BQ|yISjC)mSjn<F}
zTf)b3j>biOar-GHQ)c9)#VS_#UH6LIMPi5}#PQ}I**;TjT~A|)P}N@Y2ok`QAH}(7
z8RuoM_<~o_lojOgY{HH<_jMwtxt)p67Wr;=24~}1;%8#y{R3JhxV`EsHf3>gzU^in
ziZt+M(5(w5r(SRSnH7fuQO6i<SW}DQ3<VB37-NvXD+&Ly<@JYV-DtR)4|{LS#h3I{
z2b%XY^Z95$I?B&hNe!=l89B^46_@BFU0SBDN{o|zI+YZ#KvXn*?*$cSr7GH{M0J}f
zC2yxU*iM*DFJ1zYo{&(lbM)f-3#!=E*?=E8woJ)vhGIJvEOWvj^e}pxM_sMHD<CRC
z68HwyqQ&!)+%)Bm?hLb0Rt6&%U~l&ZgA}itY7ufwRl#>ugtY#$An0u7fMV8AHy=?@
zGtKgN$>DVcnuoE-<T2rJ!yh-Hj<@z^VEdw;=syniGY!kBqdzu*;Mvt*_-NsGi+$Ae
zr$51~Py7E|=I8t_`R8g|_J2D5zq99}{_joEnAz?c+TWZ)q~aNMoC_F}j%nfA3{bAw
zM|oM!aQwdJEb^};-WH_B$BhnSw3My0#vlB-=!}n8?pt#_SR`HXR<>KZ$_>8qOF3h*
zkkr=#pZsxyNUr1Kn=D;rB+Zfpn~DL;Chk$s?^%5{l{zAOJ8A|-7{gR!0&+FUTU}nx
z7LNS*<8=RhO&Uc&1Nl1gg3_{`(=Jo4`S3T*xA?jKz`e@Ux8{p5r+1DOG9GJgc1&To
zjF#(gq4g&I)#=3Oanp^@8`LpWQC^ROIqsh*&;+)62EA{2vAgBxPWs^$*%d-Gx8zsX
zw<$DBY3J_LiOPIBeVnzrgGE4Rr<~MYd5+9nJ&(xsO}!lLse2CVn!bQ&eU@E2U1eEF
zEI!Pt(&J4taYB_3rmlNg-l>9bFE%cFL7zuzbwzkN1Y4EMJzTi!1BkBIu6ej1>&EKX
zKf*hA$7#3~14?bp)!PPm8(Wj4AEXk3hDj58_gd#z0UsX@{+bZ~mNR3R%AZK#jb3b)
z7yN+y(mZx&0wXx|4l8L`T0F1)?JB=!4Y=ib`LWiSAfP_XwzpR3KEpJ?J=eD_Yo{p1
zOQOQ8?})B=<kV%K22N>@N)q0pRgFxIY^Vk=t&lWVxTP1zl%CL`3soxyhhM9Vafqy(
z?UG($sSk?euK}vf)!O-k0HQ7J^BxcZ>;>rgSjQ6b&i=3InLUV5_F-3!6p%+HSFZMf
zM@wkeHq77C&wNw4SUYI^PP{BU>zmYCqPtLPH@cdQQ$=51WFbB-RRS|da(M%)A3oUi
zbeL>%_f-;S>HOj=m-(=&Hp=byie1b-aOrBe7L$Ff&$XYbt>iP>$Rn?xl$ik#zU(mo
zSW)#GYctL3y6I*v4%ab^ZcY^rycAzOq!T%H_(Zx2Vqu_|gHJ~mThyLMTPEr#r=yc8
zO2<vLi;JBWO!|lWo+LC1R<Qb$*^)ZV**GRe11Xc5jR`p?`UmQEr2$sK;4}bVXqB)L
z&~`)WXB4*Zk$-x$le`S<c`-A^a%+BesPYnX*n@rh?sJm)BaOTVpR<cfW-kUwAhsF~
zZ=hG4y8-qsd;J5Nx<gN#WM(K0uIx%gs0Vd)ZG!i>XIZf9*OZsAFWlm#gtyTz)q^YC
z!>UewlsxAw62HOu!Nw7&Rt<W<!OD~Q*rd#2#Oc}6koKV|z-Y#+)MBu=S5tQn3%GF0
zH!<G*Y-{KPS$hRp&!C$Wt^gk1P)2IvqlxE-4`x=z>xULZx>`g0nnX#k&OfE?5lr<k
zzbhln^JbGBT_p?gE-JLU1{Q3pSlhXGW4YWdL)dNIp$SQW(uQU@(ew_-o43gF*?q<S
z-bT!PZgsbHKIRVWRO0R8v2}LZJn-Z9dFtb14K8aEry;p*_<ogkv)pOW@O_eWLhVg?
zRi5_4@c8x)>i6YN+~kCOY?n+0d=;pmj&=)6+B>@+YwBwSz)nhh);8Jnk)%8!LwwJV
z5~k0HLjpTTkCfl2ma+Pr^mKl3h<7EuKTGepaNo(Lf9hdsqPgL5-H(dyR~zS+sI)KK
z5qyMswo-Ib``!EE(siuU?yNK<m({F#m%GP{$CHwQJkTbFrt@y>dqO(i+ksH=dq&%J
zl6p-jP<ua+m(Z{Xcw3N>k5I$-P8ulJQgMG1(n@S{-rs4q-4Z`q5eRK&a73gs4fy**
z%g}s@fr+pe3#Lo(D?ax34vd@aP{g^(z6P|Oq3LAqqTNCXyw41};-w)8?jJhwb{%ho
z5}CB@H=0fM9h<Fzu!O_6I#$KfiKi|PRQCH!hi^GR-7HvOr?_@A&E~7Bd@0K?gGc>?
zhH>@Pon=lrWTt;{(KO|EaE}B0S1gXF6H0<t*LeDb;yey|%&Tdz^{#rIqZRKPe5`UZ
z(=}&S2SdGXcXW5c>EW0U0&=+Oe5uFAN!;Yy-!e<0&v=>i3kJepLfSvn&~Bqp=Z2nQ
zT0of7U#1lD^goBhm%u@@clFgBp>OJ&>TQ!cj<qFrP-4H<__K_z;`OvVN8KvX9&mgR
z`>Xw}2m!nKZ#@K3MK%LN(Wt0s8Gi9{r_D;85liuj8$G6#+LH=Vo#~m>yEE&FexP`w
zgs$LqgQNbcp;1HPT`qk_WaPV`exxOh+?Sn+if>$#N`6}_Z{~@k&vyH`W0uZI#^68F
zA16r3*GG$Zx8&W9FBCfC4`@uiA^k<R+;+JUz*Pt02xRax5ydqJ9iB*J!_=cYG%;U1
zDA5~}R&K>3svdJX2WM=%;AUmwbVJTYg{{LKpjV?d%+ZJq2akz6u4dq=Lvpotmq_r8
zRD_JhSt)C66-$XX%-h=&<1MVi@ya(LeRhNRGtEq@o}w<BR-uQ=%FC?!UEBQ>v2j+R
zF3HGcU1O|Vyi`(FT&Qw|x^X_Gs@95M(d+1M@fZ0-Hn|*};%Y}W>o1u>8$SV?mE4J}
zUYqW4N`1Czp;``??BFlZ-08}}GtHdNXosdBwsoeYLk(3A_aIy|)bT3a$XL@Q?AIlk
z@-<1)4rioxXA`<&H&lwS5;Yvegaub<=U7ALi!SEJyKn*%x*^*yibc($`(0%vs*Ceq
zlQLu6k&4H@8IgzUeLaYbT2dFcUxIvl8Ga#%8cN`H2vuD;?~#2)Uu|v@EJ6d~Z3u>f
z8$QLY3Y7Llmk6FCVPvHre}oD%SO<z1+MaUOxDw3t%U@_aLN1o2-L3~Sl*DGsX2h;X
z>dTWj@APqVX<f_+S3oCAj5Fd2J<*?uK0ly~aY)U77Rh<YE?EuHc;mCI_v-Fw;6V~-
z`O$Ebs@7gdkP6pqPT=NnVb?vCN&gI?movlmhaXNJNyym6HPBa!HF7yO^GG!TsN}&<
zo%h8RyV)bOybIXq<(m1RGi+(C#oW=92|uiU<VA*QVa_AYdf6S&%kPs4Uk;6a;xW|W
z7k<ddz+}r>jcpA(@FF86Ezz6p&!z;u3Wa8{X+#ft$T1#nBiO|&&`)>Y<vBJ>De$I6
za>JsAZ>6l1<&gO6ng_Pz#pd<odO#A!u@L&HVTeRw2KQqR=uq?JqhH)42o%QPAH_7Q
zSphIh2?+*dV$$uV?3RbOGOs+wUwc1l2^Wkuk-`V*Gj+Bh{^{x6IEPQd-B`Wj6H5qY
zO*u}lWn#%8Zg*Qgbk0JsJ9ta>9#V2Y)?+JgSOd0$r7Ao#hMhA{saDz=$-_$U={GeW
z<3|+X*|0l2sAwwsbV?Dn@ZqK~Z^*V*M+?`y2q>Mww#akeaYNjllXFH(yJ+^tfkO7Q
zd$uw@^2|LsiU`(zr-`i^K_$u$kI{>|j%)4pY`#WzhRN93_q9<tgsZ;Z^WeQ$3pCx%
zNs<9bwN$PP{tQ-vX?ScKTA=g-e_-v_#ZMWuAAFhxFR<T>6iA$cXvOWPcD2Y-OSPQ1
zwsyet7f3eKBOM$x0vq!D>NUDoJgj|C!>9sy-Q8ad<JanvX^OQn-Hj<Jezm9Gc=)NX
z>O_LM(79PsgNs{GYDBt0LC|JBA6$E2ek{4{7aQbtLPshM{*`}0y?X{*<$EgS-#T7m
zTq?Ipx|z|)c<4(a?IeNJmS-`0m63CO7+fOyYGtXE_J?fuxNSk3mz>K<Hli_vZeCy5
zvZiXO^V;Q-OYp-gAaBvO7Vwze6+q-;GI_-AfnJFcvF}s~D}<g0&z7o8H8Ov;{C*AK
z=vh=!sd|YqVD#_i+n)DzPetaa!7{YEb9lYH&UCQ4mOF@)1x<7>nV0d_XIqDQGW9R)
zd5=BSy4iDH4wl$&l1w^Td5H;wevRd%gTL)mR^}@ZYZSM<q+dbmYOr9M(0^q2?Am;8
zcIab?kiC`6U8V+6@Q0Vu3wbf1t20+u#F5MaypGh|>Qibw?@XUf(2XWMyNf~Vy-TyS
zjd02N+10J`l<aqVn~F};%uW#qzS1c2`UtO79{5lENtwOzrx!-`mpG5oY<TH~>n|y^
zRnt_OS03zut6n7w!i@ZeQ%4$p>i6}9JNAz@%=S$SmfU_kQ?Tnd#Mv)4P}-9-UbI`W
z2DFFq$$JRERf({NZaX_O-zIry1Z+8ro=gP4e<V+ybo{7f{K;Ui5e%PO2T!=B3b$%?
z>lBM8(Jl$Y1#|{WW29^JaEw7*t~51iZUv8KMGDL`Dp`8#t2Fgh1$1^fCd>OcrTYfB
zxyF8KsCX5_9K_pvX<>%h3-{wgY<lA!_?C2ePVZb=%-71+=<OTeWzC@37X#@_<FLCV
z8k|3>5@GBcUr;zY?&B-Xw~()AN~$$USYhDt6IW94-eLtN1{j@H9fG`-@kwaohS&Ac
za*Rk_`#FP)Rt>NhtGE&?EHS7rAx;7mw8mrrV;++HyE~YIOSs0#B3%Xgy6{tk^_hC9
z>AO&Go|93TcquX0FZOB@FlOp`9waO0=8!LV4c)D{C7}U)v$AIkL22c5CY3+z{FP&0
zc>H4PR3?Hf9>|9c&C=;UwEin$hpT{Rve36OZq;M+c&kN*`u?7mQUNAm^$n1(WDlFJ
z8#y(j&cR*DQKh#sX183)5_XtPEf}{NIyrxZMqS8wtwrH2`;2*`Y-^sTYxmLKFS(k<
z&Ht)7S<e5psJJwraF6I2ciLlN^AEJ=uf`}W=Rb}v0~FTOXU<MCZjNS_!ukELZhL0P
zby!>(`<#jdfe}x2erLV9J}ToggZ$CVFB@3wn$LFMh0r5*V^U-GbU9KVfBhY*QQ+h3
zkrZ22o|qL~jvm3RVHT(8<JxlPm$JGq&kprOzfog@pueU>z}8)+ParBFNPckf?#tru
zVwY>$tEY2M2#m6rUxM}5QeH0k#c*{s-22u0Ej=?n$n$5a>SvJmPx{lHzxe--+AXG^
z{OX2()c;9oY@)<+o?sFD#PtF{tM6YV^^Tdl8t(kL^~2qTrC`iK(D1)!2p+E`nDNsv
zY%BimKtQk&YWu&nF83!8Cirix^!;bVKeGLwsKx)Fv`QL+FB2IFY3nDA3$OQbReMEw
z1@ik}xA&lQQ2#eF>(&$f>o*O=3+Fqx1KZ8{(56>h$jz%vpoZ7>RpZ?W9F(}EWgXS+
zunE2Vlwfn-xLx{aznyKq@%-)eV6TKni3_Gqt$P(A)AxN%S`3TGI;XOW5qZh1c3B9r
z@Q;`qV5>{EY6alHxW>YKJ|g?6BgJoeb#~z|hZ~7oPj$2x&WdWzIjIoJV>oETH*3PH
z?505K;~B5XyPEyVAR||H<#+PzE6rfzTiDlWrY+=%+49nt!^~*xv?Hx(z)h~sH+TGJ
z3mfE9jyp~pSJV(<>OUuM{U%~*{UdmA!MPp)lRANJ4HWjC9Z~3Bz&C5TM2!sPD^2-C
zOzSb<Z{$sswI(h%k{8x+J{@b6xopVu8a~!P8#+YKLMDnznU=mP%&3~aZckH=>FSs8
zhzO|oXaW+w4f9^N*+_ShE?zg4`5KJrmj<2A)}l?*Q`om}DpTwll=<Fj{%yes+VbnY
zScsZ;BVijLtiJG5I?{mWN38*kOeZ*GKgQ-6HB0mH+*JX!U<+7n71WHYAyZ7u<&?z5
zB`33NenPMh7h0VO>6bz`=T`p30vs`XyAA{&?{Bv!XWfS@$CCilXoM5_NUK5=YC=S|
zrse6Cvc!Kgfxt~Mdwu=~j6SgO%iP}i`xbirlMLv1kONn<sv2sdi)wvn9MN0e`AjX)
zAh`DEpDI1Rq>R7I3=x34%AA9(wy8!GmW1)F4GoOnP%fEu-FWs!0eekYsN{7`Rz?d5
zcw_60MDdoqv#@Y&AN3w2UPxSR23tB(S>%zOY%$2`u;Z4W=a^8@C)Y~7gHJ9stY}P&
zR<)>-I@oT7jMhW~+tbN)Vwg<RL35rw-o~MOm1f<_(t^@cm{N=)<BTzD?Yd5W8bz^6
zGwvD>$CDVrd5Mw9tyRSTxC-49889h*`ZZmamOef8@Q2K#lnu>&M8LDKb(c@l?9PWo
z7h59&Igw$zV`#UMLQMVS$uN)oHc7m-vii93Rc}Fz7jb;@z5wZ}zhCp-6|iUvvoluu
z7=36Q^Q6~%mDeCs_|~{pL`{Fur-4TRY@HauAXT68Z1Q!XWxTpR1va8IiW*;rcZNT&
zPf;%@Y3_GTC(m~+(2net?w-ZWUS7@RHKf71YN5T_VDA=V<>mWC8;8Bxpl5rv>iOk^
z%v%p7Msp{^?cAwKN8WpOVSguxU9;%RZ5PmMl~I?4rom9tGv-!LHEU0ZCM<YEE0Td$
zxnjCf7+yBq9-DW@w6*1;qtN~eU-!%oME!U#sk~+H0tnoWlPE2)4vmR}TuF5tQZ{?!
z3Y%x>3NwmIHM+dlu1|^<;{IAAt&l9(sz<4$(K$P_3!IY#%$8Xtv{dfu@C`3+D}jo<
zWkn2;z7<AZON;6;*V9VuT}$9UeUAX65A+=-5$vi~sg1SE)y9QkCa||sI4%+jsp+b7
zYk61r?s&Vc%~s3%>RHIKj!<3L1l+Ugbt^8c+^xg4C9%1X1FSdPxRupSDA8Ovhk-yU
z7XiMFgwTT9yY`96CVqO@fFs<jf4&SIB52DQFh1&Dk}PW&)g<x}zEuIFymjPPbG7=2
z=dwWbQW~;Q0ytW8nCvH<xO-=hWiv*@3B@q727+{eB7ZLnvw?7RAMA|jalkGLy=a)Z
zK0oh~2jH_Z>Sss~m}D-A;*mHMdaSQCCbUXB-Y6fj<+bq18OFuLt?M=C^(x`%P37^U
zpK_g%!Bm|JT)RAlvdo56QpayAI%d*bt}MYUPs@}SJxa!oyrgYgcPD>W!^^x=cTosP
zA+LT>!_fZEl_0Qp&R|)yi6mLjjh-4&9XAf$1gBL+9<_*x$%ok4km^&P#M=&HL)gXH
zZovEkuIAYs?}ZQ4!Ux=Z{jkL(n|a5Pak2g*aH8f2XRx!?dU-jE@^FgAjrVAUkjd1V
zq(}et__uHJwjkWd2RkRbk+2>>f2I#LxjMCa#*73PnfUJ`w|5n4w`&|YkH#q^eunbo
zO6(Dlo4y(|9`_)TWEz=6VMropF^Qcak7LsefDk#9sPOi2l1($zKVxd}>Jv+Evgz-#
zcJUMTQWB+^J83c$v$Ae~Ig%?29=FK{uSU^Nj?o$(`_WHQ8LNy|%q#^sr#S=8wTm@U
zSRqLPy7Yxdo*gprVvh_<dyZz!<!K>D%slY5s7I>H*3g}G2`U*BQU~_Bs%KAeSB#E0
zNsG8oho4hdJs)eFxP@t=BYwmV8&Op#U#c=Dh1nk|TSmz>ChVPf9ZO_5pH~N9KJZ|e
zXmXE8JvGMOmn?ykWhPSS(*zWwTBP?}^BsV_Nj7OR%UaKk?gY)!2RLb91%zrsG{}oA
z@*YMCr`wK)Na$V^Gf<GAuO_BF$`di%fPQQ$$)u@a!L8T`!)ALs($+l5l!=pQbL~rR
z3C#1ldFIrS6v_1Xqy8JhOusb^@t304^iEJ4(z9w6T9A1GgM0dS6S~j`+vWC(OH&Q%
zp@zb4X~t|Vi09Ou>=goCP)~33h=Vt)wZ!ubtnZMctMtZK{4@ET^Ec4t9DZwZ9qw7l
zP0_ku1*<nY1kr5b@f3UYYgc6^<>6zcF=*~MMqjG=A3{8ORvbtEVg5I~TaLDymxCMj
zo{WZR{7Ao+DCCt%MJLxq2GbaQ#N%D!<D6-ZSpYL~7#1;hKkmQNVZ923sFh^0C#$KN
z&K0bVYk!05Q)tCqOw$djF)bXa`C4S9C()MLrYh9b4;Qc?%j7{>O&wy%6YFmD3sG8o
z#Ig}->tbQW+SFS))Q2Q~6WhD7kXF3{jW|2I6>+a#af3@A69fjopJhRjcWM#LA^p{Q
z)+sHT+bxp*D2v}r<M&o{{{Cs=!G-lMfO9`70Gr2sSbYI#J?HpZd*!KcRaa@OdX=F(
z>xI-z_gjx$|M-wADK4*(jb4P^mU~^jmtr$o2gp4fbtnX~@Ttew@xwbvn2qugRuN*V
z-jP%rZ^;ys(Zf7kX=#sDzbdE&hl*;gt-rWY=Fuvu9=9~P=3@QEL)Ob5Q+tih4NZPX
z3x2YdrPeo$m>9l1kaysTqy*cQ8p;+EmtfPwtA{aqNkrNa-E0%WUYTq2Gs7zn=~|AO
zWhHscBNXhC#I@A2&&iB069ZBNZeB~n(uTCF$961uy#JV8<(N|_Gix}qy#4uXV?6PK
zyryn7dyc)6N7U;>l$t*bBx>Isqd)s}G#B9_oolUd6esceH-8pA%vQh)^WYRVHpp{|
z65V+ZIE!?}qU_ejk#6%z(8$_+_l5n&)pPTMS&iO{a`V&kA~1`fy#8p03te!KidOTM
zEdOyc4z)gEg^*eb+mh9yV@t5>Gq&<+F<tTXXU>R`Y!FbpRUf_B3yZ{<J9l&*HMEe~
zD)&L^$`X4x)rMv;C);22;E7$^VHXL~*ViSv8jfX$=o5Lgema)L9D|mHjUMaW7{#$F
z5Ss)j4E5fTG&(G3uhxz7KQagS+&+Es;*S}&e+)k=6|J2wRoZLGrlu=ZxdJPouAcW@
zbS;uOIpot#RL+OfE!gS65xy!h*}tF&+0(Bopg6~mImX;!d&!$|)>rTLHMMHhA?L*{
z{<#lDs*ct37-B7P(5Iz0fRR&^x_!RV%{SRuI7?qD6-1J*B{{zinA|PZ8Wzh3P|hKe
zZJ%(Lm%g32if4LvBwXj?mThCKHU?xPZA!dc{lrU0#nTZ_qtQ3sAkPk1baR078QF_D
zd~vJ6;|_-%M~zz-@{Pd%gn;t&llc949~Ou}*%#3vw`hD?UvwjNAy)4{DvQk9A-wC%
zCv3K>tk(Ky)9MyKB^x+Qj@^}H#)*2w-8WXz>SN>#&Z1wnV>&M`Y5s+ZupC*j)6tft
zU}xEqXi?bCqR<Qn+83Jp<k`mdMO5~&O-*|0rDFo<MIG0-FCgFjRthzEP;~Is4SLhY
z+;4v7qbw<IUz}09dvCy!yq-hN9aEMW4kEnDHAz8WyWu;{$TE%XLsDxHyf6oHQuwC`
zZE1PZ(b#6{RRFUsgLpr0J=?eUY5x`uBd-{!QDl5d_Byrsb!+GVQSyFeZ4dtoK!p7X
zKf?5hUGm`}>0AT(#%9iHp#zrtuCvynHjJ!Ak5cr`^O#ARC(7x|>=SMPc}rzrY35$d
z>_uS&*|nk3TAMC-w8T8;a&j;=Gf*K-<MJiEu;`i>WGmj!uzpKI_%FM@(}eOL;1cMg
zO9bV=7>zD$S)&e2ZJU%r^OZ^NSVrlHkvxrl?Il3|ZgMUnB>Y-DFeOo{WUG>~e0vAm
zTPZk&S&}eC)!;o35r(g~Bvxh)b<Q=nX2^T)!RPsvIkhADNe|>p2+cgimf1w@eB4UN
z0vK9y@qX>eBA~f!aNjw3QD@;eeYlgpV#vVB1jrh7fL2ZZwzI<tHx>C~vErAQMR2XW
z_M1~zxqS2JTZ64fNUkH4OYG%Xj$p>Q%WlB>rv)NHKdhC;#Erm#r%m0U-f3vx(wE#8
zGPTAz&amxgLXL+FP>oCfykZrtz2)IPHw%c+8=@+}=IJTm4(kJZ6mdCgKisK8wfxy|
zrSj=aW-k*FMyQAd!f*ST-xKrLrMPK^oP*Ep<Hm%G!|8xASY~Xl1h1$L>qQMp_2LG#
zZ}`!w1*hCAt|g3%2v%_w^c&BIe-Aqh7xB^!M8MzYF#!rEzgctd7UJ^u^*xz2gSM|(
z%iaTDrtM}5P%?08dHJ1`siF(@v|yip)F|1!XDmJ1#o$d;((LHAVoCzl3Tu;#mQ`g`
zqD<s5*N!IoFewvEC|GskfYenUy~g7m6td<mYVXlrEW<WO!`B^^zzL$Mklg$v5t-mH
zIeORvN-EP7*TyaUf!8{dJQj4sm<G<ypSPkH>8Xz=BX-ZW90H_$q^J<9mmP`6HAmcm
z+}njfbVzt*#u^89ujMhNs!e2S7iD@!;g!%ijwR3Jw6jv)k8B#wq`8DRxPcNSP{rIZ
z;Llt?L*P8XcOI1_Hy%(Mqz7D}6<LSJxnZ!+&50t%tc#rR@h%6bZ72~#W=PG<A#<1{
zGjd1(pwJbfURGpfn?s~UICr@uZfg5F6U-bZVG>!P!h?FcU7|39G??ms8fYF3vCat)
zkac?7s}U22L&!A8WQ?IqI&9>U6D~a?DwM1h|G=^MV}fOyDg*Rk16S|U&v1sGQJJP0
zyTr9`?6#;qJv*%?sb7u#cs|AO25d+eF`S!{oYi=iGSDWVCQeQZ^a0?W7bDYGBZJO*
z4=B!NJc#2{>?4AB@v%~xj0USAb>9h#Ag6LYedLyH(Ry#XKjYGvSmPm+ic~=Qn)unq
zC*g-`svstKiebj&d)&B{@J(yw*zq{rNagJ1RM$hb9kYMIG(S9mF^<|tRg3j1&Giov
zbH$CXDTjZ6`BgZ%I8MDCeYQU^@ZerYW_o6LJ4*d+YDJSLti(FmjV_Al7Xmd5-qj4=
z;^OdoB^W+lM%Hn9Ip+u8SeG@;s^47lNHGI!UEoa;(#;9QEv9OmYs!eoe~)v*mlJm2
zbq`is$~3wc3Uzt|$K&jMqFB__wVhuVV5ZV1G?*$#kvm<ceN*4@SRYW~fds8d$1KDk
zUETe6?x=0Oou}Q5Uu-IZpfm^%Nbu;R%jyqg?)sx%u9h@&GdBM~)sI8}KSOK&>z>$e
z>;GM#_Wz{1{<s7Ge^OoZ5~)FulNMXCuzzqs&i4PJd43N{@Jxdw<xfWFKM1P-;Ku#~
ztNXJm{<nY$OUW;jE%2E87f{{F6Qwc{7}uxyPZNvtB4cR0p$&hlUaL#nB5O_Cf+Ue`
zMRcwnDpCz6M7cuhyiEXBbS6dZ5{Awv>N|;zV)B%>9jZ&Hts?sX=GuU=bK%Z%ONn^{
zFP_~S&Ss%k3yi13j{c=A=gs7h^saTfX8Hk{jlo|95<%`?@0}cv!r(0p`g2OH2KWlh
zHt-jC88ZqKg+!<WBLk{wcyz_NQ#xAx&|L>ojFQ@%MJ%hLSP#VCERxk1170HJb?tgb
z++Gr<nRjij9yl?F4Lc#ep1Zf|!4R`HP8v+xH3+E<U(uUx(m#Iz4^l)iek@*l*2XI|
zs2Yp<VY>TUP9{N@8dlMT(%Zu9m3n*Xy{6i{AloWk!12qf4(rJ{tR6YO;=_d>fJD0N
z_UQ%Z1g?)8<hFv-tZzE(H<nVRmjW0toH9*p>MB$v>Y|Vta@O^hb2aEGc%Q4IQDX!e
zYpjGqVoBf@I*MLjre_Z8P$dgaolB_Z%M<vCV|_(}POr8I_nCxGt%3=z2edxoMP5Sw
z6vJi!Sk~BJygxgPM~#VFM--Y^oX9Xi(!zIN`ZJRqFI;nWyiERCH=Nt!4$W}r@{5GV
zE<BM~Ibtc@=7DplpGYD-n3vZ<{;;NnODg2b`;Ez8;Hf0q&C!g*HGIX%@lJxR<DHtD
ze7DJAi2IJe$_l@rPqa(O$Gi+=R4x%Eb~6nEJ|}Yg(-p$fU+NEC_bu{+7nkCL-Ltj>
z+ryM<Zjzh6M6kD%CX{Tp54>cgCL;_Z{q<%|c<8Tzf>9dLC@vmDd892K`$KzXBKQHN
z(Z0shJ`lc-YTpM{mGHEGJ;3RmoE$!;4!nRsiQ*~6*DUt;`}FF|!KB@aSb8(#pP;IR
z78KemKs2Zav|+|S-Nd?Qpjg`R2M2b)Wl+Q=)DT`Fd^p<)1x1#+ELhZGn)&0XA$*E`
zf=xh6ubP|vg5ju+OQd8QDd%2gua8Toj3w^eD6CP5LMHa$bgGH<OHy?Dem&#WjN=1b
z3cPzA^!-5kiYhQ2biskw&~aNi+03O%@A#c)D%+tLmrc4E)>GNy#J*2fJ61dRbPf~n
zwUD*Rj(r?zI3_O3i%(2`9%nrnJ|ljJe`STF{zzIlUnfd2c#lo8y0|CLBW<aID#$@C
zJrf}rj78uVTd8t1_t^!ffd5p>EGtj%2m{iROPP5K%ijB1m(AAaO(c3xN?b-9j=c&(
zVR5l5AEzAfqt`Hn%%OO6&@n%!IX?b4yj`4yMfqK%G0VY<`fQAW!;C0AOi7Qf9uth7
z``#>y*Rkd84cN`eMxyE`vRdzrqY`@eWp=KbZy-)~`WmxLP+nZe;-K#0eZLm$urR7|
zX`wucwy!TWhctcKmPclN48DO+C-NK(3LL-Gc(5%kI??JYeMuE)yAbgJpH6fdj=I`f
zgn+{7@bY)Pv9XJbRrI6LJ)^_t8JQ#sv>5%&Pd@FT&+o?khK_2E)MRV=4Hu8PO1<mH
ztG96tg#@IFE}#a^|A5Fpat2jx2M-At)NFRdN)RHT#px8}9%V4+sZBrms0WhGvvr;L
z7s1qL?D5!A@nik-E=?l!b3>z<Bj^Ca5x?A7OaM=!G3jo~s&bp|8&~%me#Y2r!<`OU
ziiz!XIzq~A%bQ-atuD+D8}j=GyH}gI(Aa#RU9GSqA`ikt4Mp#wY985XRALHWQrd=`
zT`1#&J-*rTp+;!4ke?#b^k>K_E*3D<M`4iXvGwwaOPd7vss)Zbh3t8y#|}SL;9Tn5
z0(Ag0e<4LqjCYGts%tl9!Kmq9;@Ug0eT+wySmVGO^FQ&*Bh57a!1VnuBuWw6CAt#g
zwc&KlS#Pt_N^)<EzT2rUEZDsnTADNM4n}x9dx?kf^dJ>l7bF*^y8{4)QA3Yfv?tx>
zNT6X#6$PSyffvwOU}eRfLG6_>6Uttox16_ryjG32M~$x+xEhby>P(JJx;KwH-V&Cu
zG0Gdcl8$q?I*RAy7Ci3anI30gx^4knU{pws)rWai$0y%&dIuPyR;ji(39evK7B>Lm
zk!+qG0S9;qudQ=w=?Z=3oLG?ljhJw(wz{w{@E+t&#114she9h<-4Sl;+k%2}?W)nL
zc^%Dgn*ofSx{YG~x{{FDCJr}l=2L6^#;xuGk5O>%<MK1|&GbfJFqTB2{CXi7$n_-r
z#zHTZxosJrjmLJ(NvrB7#W3U;03Xcq350&g9&t#0!s(mfsA|Kx?UN7hd^-kzgJPsj
zj;%M*s>@scrnO7dsvh}GPW*eL0ct4L1^)z}jNF<Pc8ZKEtcSF8_1}n}ojv_QD;hD<
zss@@-r;*7xJ2C2qO_-SOq{jv_X^DpH|DYIMmD`o30N2uZL@4!p2VbqN=6~g2Z*uX+
zEC~fDCdL>3ttB7T+F6GOeBSPExF<@C-&4{Ib!Z_rzi{8TU2BYrF7-S+NJLk0OmFE^
zO!s~YYz9rQ(_}cbO<Vp0CJ+^es+Cs=*cO<3(>`Z36F6?V@%E~<85b40Ep~kCa!}3L
zbbKMPX2D1s9${Yp@`A90fZP4Ay9|Lm`p?NK&O#Vxa^3DLxU~h8f7Z@6xGfG8N+9i$
z&40wM-j+~){LLq#>`~|9mo_RTO4+8Lo0}>vPqMun^Al4R3VWSQJ+K#U0fVW6>pSMn
zZ5A!ey(-hp9%};wNl9r*f*~J&Hx7BXRmOY&wAaBu7yl3Z0JEgM8(c_Hwsn2+Z|gTO
zAVjs`nxQKH&y#d6DXfqFX?>auO^^Q@e?&d;zDcl%GM(>YzC599xm<HO5y@;l8R<9~
z%0hNqUNzk=3OI=hqm%uY=C{s$%}3EMS+2gwnnEwoh?f0b;EDTB;vcQ2gi>dL-S>RX
zLwt5{$j*)vD(FQ&@MOGM_R(dY%V(eCjDvAR#?SJQaZ2s~8f~D~ClG|}dWv>2T^uGS
zEMs$tz_lT2O_#`PbN88%GQk;_Pd+lc5k&ow+sBUyp$fA{dxitA&aXiOtXSQlYfoJX
z3COSR%3kO*F+o>k-TZ!vTsD}wvHVNJz$i@6hdOF$K{U!@wY9hl>knDN>7n`beU4Ma
zTEd4t5No45@nD9!m^<wJk>fe6VvK{~K5;qHyvt(7V4~$s5`oQwtx>^BGs2r+<MS%c
zm<D)%xXn`Y3iA-BMg1eXB-_`wQ8qSL??VFiEsIn8dCJJIXt<&K<R|?*^S)t;Jx*;F
zO^|fLW*e~U-#OQaA%71zeYVaeBpi5N;ol@f)4rXF`?Lv3X+FHh+p<q~JG}0NhA)Yt
z{td`l>n&!@if(f^!USC@(1ROFMP(NEmY=<N!9p>oBD=dHrk=-tPk6y3<{`zm6}V4h
zB}&9^HBS6g+%G2}ojpOD+hO77MuF%V-2J2=aa0VvRpP*&W({#BzC&f}Ztyto+9365
zt=eHlW<0iH417HBq*Lnf-ueb-4UbGVtVN`6kuzL%)q(6eOK)X;IP%HDH_A8U?Zdc#
zu>i}$%8|`~X{1CfZ?{T+P`VK{c$#u`1eN&&tvjMVCw$ACBWpqa*5ZMN|J(GWtb7B`
zR>4bi!C(R_K9wc}r7bMEBd>N@G_blSqjuWoW4hc-I<KQclvx|iaq4FKCb!#)Y%R?_
zyeRvG+>R$&i8h>8@v@Ra%0#}C-gK!y!oF~2+07g~r&YQNvUnhyvzNzfd`*Wjf&-}x
zq*XK3XI6seZ6EY!z01x>ZPtofPw^<*4XR=gyM^!6)BX<Q#*h?p7AUm5s|(pxts>5l
zo{M;wb&bI7c))h$jsBPB!*_t&S$QLN2{56g&FAb3?a|rR{tS7lrkxYSbFWidvW5ry
zxXuL{newufjH&f`zV|g=eMeqhGM-22BoLRJ@U|RbuR^X={8F{D20uh>KmPIQwFRWw
zP~YxO-<IEg&i)ksan^}SH#p;*oVxBd>?e!i9tJOqhouGDrr(mmr8%wm<`Sk+kot@}
zzTFkHb6a9KUf$v+@H_TN7W`Dojr@WAP?l3?xGuC{@_s!fgny#xmUT|v{v0=&V{ZHw
z;!W2PCqhwj!I`n+z}QeGT(vTi_aH&Ods8~r=jidAeP=wt=R!Qwy`G!dR`=C5cOJt!
z%&6T~74%rWvZnQ#uT9(2Sc&n#8;T5TcWt=ro}`6|W$kJ?=Tx|)81D}#;pO5A;`g$Y
z>_gYMcY3t8)r2aqtFV_t-n8;Iv)0_p%NoKAe%Yl4I&uPW3L31&Y8KVvXtDWH*rP9-
zc=j`um}b}7X*IG|mE=(#2-pmDmJRxxeH_2R4QA9PB|XV0%pkHXd-E4HHtr>azFy;N
zN%H8KAbR7pRnBDQ>~9OGoT|fa$V?~wpwGepMJ6I&cSS*CsV$!ALU0x|;2Lz<?}OtE
z=l)&`;}ROqnKxklxkJ%8s@;0a1vwHx?33tK1QS|tMhhF`G)K4Fc-I-}4bH8((<MK>
zYd47Fet+$6Q}*xGTd(?84!q90_*+^lh#FlXp(Q&8DnGxZy83BEy9i2)mF1~k?Rq~z
zy<DBJtj=%YQkl5|P1OE$(VBEw5ChLTwF(bxuRZ9B_bS$_Y2eS1QfgKop>`k<b}8>$
zaxblg90IQL4@JOzg;?w*_hq7fOVjK@ofKva)+5-ygJL@v7~Z8ISQgvWTgshJ@>y9I
zzZ|M;A*|#ze9MU=!C)K|C%fz}*hm`S;IOj8y>@|#^K0p+9Pi)7j}Ri&AKI2toziq~
zmcS1Nl<qO;-zjmQk+>;D@Qk4~%^<2jP^tX7!7Z!-4otFB(AlOWE>`Aszj1)lrpEQy
zP?fI{!JBl1;Nu6(1|6&yQ`#>xi`*FYer!u57i2vmacAmDpBT852IaLR=xJ%DnPFT2
zrPL;!rx_tEuKH9@uaq7rH114`CqCHY9JP@(KU=OYd#`=l?@?W<ag=G+HKpVI+v#FK
z6+;Yg4-Y}V946QjBMHe`$^n>k4owyUl6iTMzS(|F@apF1cHPMY*a(x#%Jh9MZQIS4
z|2-v`u$0>%ha5w?v|C_mW>z-!3H9OzFZtH`W{);E{tqZ7mQPDqIh^la%8Ui(Md=Pc
z3_1_lOx~k5QGoj0yx|w_S*SFur1ZMlo#Db}*5MSl&D|+>h+q_-AFPrJT9=LQZ_y3D
zu6!8%@uL8e%Sv`K=<*HEq5R0~F#R*}zpMD%jv4Nq-5%BENFk_^$6c9bJ>LMOeorKv
zx}g-zk29jw{W}sFkQ{iJMG(OE!4?%baJ<;I2(FxGbb*0NF`v@!&svmRBy&w78(kUi
z;=F6Tx8cA~ZY#=BR(IzH@b&=zBFwmw$4E8d$)K5)+uq-LR?C60K5OgOirc^sWqE#S
zX@9;FoI+`^L}$m^{CvavC1gB_$=`daAqlv=%W8w<hDN1de$2`<*`{ulIU&=O4c%3W
zkZO%QZ2!xIaNt_-<KbRznc!shatHqRa9gmenZupj*~c`~6iOP9%92;BbKgUR+V;2C
z7|w0>ISw;BE48@~X8%qKAPmu0kMh2OHtrEGL@U|O_cbiIFftbhO~COs``u&dFV*Pn
zE<*O`iz8gGLJBb)T?G$lyEH%n4NeyYTbO(gVt1516*4E;<81I|_)Xh8yqNr!7|nyK
z{8||8GJd>6y1-$v)a3>odCT>R^Rkhb#BC$QAcC944$z!$#W%Ddk_#r}3?thn5VN7H
zzJA^&k&{T1+%C6<Dq3j`CWWDp?<jZ@6T`Gb0n`MkNOV>%!=N;oZa`AiA)zGebf+D7
zF}_gTGiPAr{N=&c1v85pE|t8~jaV)Ii*1Zp0FLu>Y)#`z@zL)cL)BxSJ`2J>q<>%t
z#5s|?+yx##AQPLdGgz^ttYB~8kMy@THNU630HKbOIutz@jwfZexgv)8tuP<VS9NoG
zb&`@!-C~%H6wTO@gHB8j?@~|saTo3P-?qGGLjdqAzMf{<FfZ({B$kPu_O{eA=w$C#
zIwdyVcwj?+#^>10t7JYkNU|g-w3xVtJIxokGCeV=B6d;DxN!(wAn=#?pnvmoEb*%g
zlk^CFOjV_B(Jjqt2T5LVIGf+N4QS=wmYb*W4Hu%vTc>^t?IN6Hyr*9?#=Rd0aEBcX
zXvcohDUs_RR2KNE7cNRp<C`3HNd4oOgX(8qH}<V&W>C$tno+mQ;IhGH%g<gkN6po4
z(v|ahP(eB;!QX4keOx<W^OqUo!`<69S#)jV!*tgEloc6t-{YzjtQn-!jHhc<d2#aE
zpwCa3LqERZ90?#%-yNNcer`6WEq)Sua<3U_Uelb3wlS8Kc{9+E__f%Rc%kKKsIrbZ
zuyjFjh-9e}fp!m>Vq$tbgEa0Q2?7pccB+Xnn3s|XlT4wz)C8HxzoF_V+^hKm_1oox
zLO3UbtDWjwJ|jA7cz@srSgQHHfvM`&QJud$fXarTz=i0gFDp84a5C*D=$4@T$xiSH
z3^AUARkG?NovS{q5g?q=pk00PHZNoF0D`G(Z6u>vnqKBCMrg)sE2ZWHI8b^wo290V
zz>W07ZQTLaR{rj0@Vp!4kln$6O%fOnz(0J&VW*UA>jAnaj8bD|;Gvw5Eq9Tt761GG
z8D_mxRFccyp=zx|E5wHFT`*{W?T1(R<H+7SS%~^LuS$l9tgG*L7ZwT=14{;Jv`P@(
z)r_rAp|LAj=Rpr&%~xNLnc&H$SG1U4?zxF4WYm0kyMi7@9O<TEl)Hp=+=FC3*2ka#
zMnd1ywNo6^)<3bkf55a$*rH?tDM45fb$Xy%<zL*W>n97K%eN;PR}^|rYayu1^L3Yf
zB+^$Z5ZgFTSbp3ph4mOuTunC7LtV}g!@ljjKaqP{Vf)rU@%7bthUk~d<hsLaxpZ_@
zwD%@MQ0f*Opyt+iXUw(Yc=4VVH%8OzJ;?D0+pXHK#k3sG8zM^h1--w_@Id30g-DLC
zZLKuw$I!=ETbW;uNzUMy>fGM-vXH#)8Pun?3@g8R9+xN=0`YqJjaK5tZW(fZjUTjT
zfrWAu!^3rxotg-OH-2qRS;AukHPwc-45kR}_hA-h8mneh;x7~Mo_N*G;^Obo&mmqX
zugJ;#zc?PMvei)Mjxl&%@<!%84Ydu}b6KsQrtW=k>h}o0N5y}BcaXwY36yE;q?fPb
zIIjH!rKV;Jn@qKCM==>Li!}obpMq}Aeu_|@>`u4;ax~AhiN_^g5cW&~83#=Ylz@kP
zIib~CZ<;P1l-WjO;zXW+O`f>?_8!=)C*?JmUq1aj0=5E?nKQ)p1XK`dEK3B?PqG;m
z`X{1qA&^pFqG64T>o)?GGNm1Dv`))kIjSbGc`blRQ^m&v81hi;M41K-);5wKZgGUk
z&mfg8UZ;yR9v(pDerkZ89_=!;9Pb(roNu-sTu>4VHkAJiWq`CPKImR~@wCD?>+e>V
zjCP#63iIN}t=bSWMSgyo_GgW_K1qVJ-H3ZjrZKAx+(l*FwY0{gcnh)4!kmVYEHb}B
z46x)5(0Vy_EWB%XmO9#`I%;w1ezG>NOu}m1DFUpS`I@A>i7|uw6A)b3)&7+2R(N0#
z^?wz2o?%UV+rI}9L_msEsRB|2>C&rIr3orEbVO=^fT4vhNC%OsH0dB6A@p7a=_NoY
zQX_<3LJi#Uobx-+bKl%o|9kJt$;^}4vu5qJzU#Bs%z(u|kK8Y0T*_PLIr5bh4cX>8
z200h{TNW&=6F^2^q3K9TTJg4p-nmB|Y^b^UfL{JO83v@IvHCI6S_7P6?YA=G^g0(Y
zbT=dGE$ymRp%slx4fAZ4N46u68mNUM)F9e+G@9SC?F%rcEQ%Ti-789g1BpFvbsr#K
zh9zbV3M}yV*k5(MQ^=x9zj)t2zXaDv?e4^P%;Mi6#j&jYJ;1|w-ru*?a_6H5^7A~V
z?Sqs2c`gsJ|8wl?9U8f?zpl%gl6GDVn2_X)jS2{o-SDB9p|?99_TcI4;Dsicl)x{W
z6_N9;;+jJS^SI_zEOt#s?K9&me%q2yG3Y;6RQ*PGOTBKLl^!)N5}Z9o&%uc^eqxf+
zD(A>ngQDqocEx#zk-E&na5q6SmQGvonwtzPHm|l_$u3OUfA0Qam+d0aq`ga9*JxP8
zn_WYV41=s^Ym2?!J1Py&KX{($k}?MzGyJ-`1pDrwi32(^0<wC=<I20ghSHyrmi38&
zl!RgV4_vHUCLvVBNoUuQT!`GW&O75D7^F^yySDeZ^7Wkb*>`JzAg<tkl+H4dY2L_0
zd)mz7NvC&wbXDt`29DbbcJ&>e(WsaaBez{pEXnUE=_H7~04HE#ul&Z6RobxGm5@rE
zc-T6gBDzW|GV4+ZE{@~k0+su;cAPHGKeY-|t~bmzjdc?>aO=~#>`2TbmJqk1SADr$
zOFZ{+&0PE5U0#M3`c)v5-TS?1%bL~nQ~GaOu&;!hk7Dv6!#t?f6AU97^W|A;-B7vL
zF1LR|iEO=kYX%3)dV^`|0Q^)Er?0Frzfh2Q95Yr0pVI;NF9nKoMT6YF3MHYdt>oVD
z_H2qa=a$_b<x;OjRIr26n|*NqAmneZ3IW9!=W+9)LGof69eJ;YMF$A~zsCB;`~y#r
z7v{W~CKc<}m-T8!`yI*Rf-E!1afc?WLHEzSu<TXyd8^Nitj;<I;lh(~I~%CFwDmVn
zKH$n=xAV^1iK5C%U0Pyo<qq4_AGbYK^By$6ZZ2y)VlY2#K6B&g^Ti>}PrGXGtp2ON
zgLq2!Gh8rk-%pOh+)kD<vrqb4as42{AfuG75~&N)>LJiwJ+g4ZZw@I_{>QfBgf9se
zNJ-{aoupIP6Z)rtlIvhzpw#;A4!I(_7J-HdqI3CJ<*(MtVl?JZdlX$`Xk(!fr#`<6
zBW_N<LzK%@1}Lkew<V_OL$S%}L0Z`T2xT@?2=>A;Kna2q=(3u6Q75pE3d1u@s3VAz
z-NrOj?1zC~pT)VbbiE9q>5iM16K4T<g++-(;6s5^Mi+r+wjOxZX=x{8K1es6gXx(<
z`u#N9id@Qj7kJF@-(bJB03<OILV+HNQS3u%?9bs_78kA3fFQ4RyCk$z%+wmZeZeB8
zjFtMEF?A{5+MWg@lmNzZfm<yv<*+N{+IXzz-fIbh-LAN)@5B5iL7__XOCg)Sd1tfZ
zIws6gFcp7`P`X(62gSZl>{<dWwPIhzCVpU<EaE=Vl%JEkZd4(v{a|vbS+#|QUe2D3
zdk?%1=I~(>sy=r&cMncqM(er2O2bs_>~*5Wk%-kF+P_o&(iBq5?>t0c=z>qP<d{=v
z#S`hC8O$xgByf7&_tKeRCMz?ppFp(A@m}5*$=7Vto4Mgc*UTGY5AfyPROfj%7%Dgp
zwP1oV2m2&!6Pje&H|2B{0`Z_M+X_N5=U0Z!9nv^wn32@j9>Jp%`QKwKGO_Ke^4-=;
zH~h@Kb!TYv*3PV5EX9GmAMiA&f3#?a-dSNNWBt)HhUQhjeT|_N=vRP!akI~GuDzOt
zsYc+DzO_x`Hv1)8lTL~H!V`nHRYT&sA3M+YW$79yMqQQ7eOC|TdzhLhu-FphSr<!N
zCt~U9-V%M4_a94N)Y#r?Re;$CJ^8D?_bNhV5?*z;RbFO0k<mDdy!j6?%ekxsfDY7W
zEvzK|sB0>U>7Ea{q_f|&^Z8o)Kb({g|3TGZ>_1R0Je>w*|KlHushmi4XYaqeg#RyY
zOez5$T{RQ`@E_L4##R15ibwxvVJl<vpqFk94RsFGscN-~JjagD;o1ADTvmF=jyd>c
zoNjXyKi_hmQcW2-tZ9|ly>e3!<FjU8Q#PteD`d8U-V#KUXSOc&^L5uIJw{Z}#MK^A
zq+I@tdunR_Z_|?rlP+@PWB))&JR}G>RtORKt6^2L>Ew%a4|*8zPZ`RAhf&d$`Zu})
z*b-uEK!GxATJvctu_#`u3N;I?VH>f=gWr22;uDI78~1Vxy}+AzmYE--dPQa05EbSJ
zyCM?i6G4{j{LJgGMe7;%%H91J3E9EtRf0KSE7O$NXTP704GtNvKP(YF`yTz{+7$Jz
zc{-EMl7Hr#ET6lT_lXEAt%@Vj&U&!6vhG%|F%|X~jWUH=y|$j*6{c{ZHQ?sJ^vo@3
zPLzDl`DeOVbTW5UE9P|}JvLG*q!6`9pKc(x(##EQAE(?a*O&;#$t9uRQ6$11*(BQj
z#n{58&6gxrqS8Snc;PO^suor3iSL5=xP+Qjd^sYgb3_QQw>qQ^a*iLX{45h8d?|gW
zEQdCY9GBcA(W`;?ZaL<pLFZgsc`*Uqgsgh@@D_=tK^ltThVA3$7*UPync;Bi6_xiE
zUfuL`q)WJ;aPi{CqA0z*-%@emfCZi1nL1grl%e{J%Z>EEx4A#Y1R;j_`k7|q$dBC{
zp@erF107$5LqgCz6fk?LE-u>T5W6p*2OXQ6NYmzW23~x<q@F7@7f75X!dQE~m9N45
zes^2SzJ?E?$=yb-aPo5uKl<U=AvKutg4RD8`g^X|j3kQ$C!Ad-D?ZnTb<t0CYqixe
zS>V<3fb>fUi3z@#Q%MKGv1L0QE;Ha-Lt5d#8O@&XbT97W*3js!xZaj%1DVtonDJT8
zE83Ug2rWkObVlUp(fcLaKJT8A-(9}Q%8rFkJ)EB5CVB3ap=8Lygs>HK;#Iq18W~Zi
zJoiwSG=W`s1uR`%rIH)i<4>9BlN24XEt-baHjUuMb2?RLq@d5$?QNM1q?al^7?Gu=
zQhYUgsz|5hruodGPzq{&R6puT*{`Q<6@`|bQJ>&1-tBgO@nmIoULW^efRy!Q@E(|q
z51&9Ew`?QAVaENzGnEwem<D&1-KGnL$Su09B%SZaH5KHPt1ECK4O8Y^aOljWMEG-S
zj%k`&i}qaKTR22KRqVn+$j*ZcDGw{Pp@&wUrAKu2QsKY92Bx$0-VmSfJjvbNERjP=
zbV7%ZYF7ACF5jMv#JX9MvzE|LDTe8t`(e{NFKS1n3Jj@*nR?AuFEp2p2?9suz=GOQ
z1`os%|7^<220BWFn5xPUJGfS^F<$gW@5NZ1y%lxa;ri}bNei3e;uEi<h}u>THQT)f
zGV6#1Q4Uk9tU$-7c>y{qU1mMEv~uF~3o}>}O9hQ`lzmHasZj>L;0Xq1K0THJYn(Kv
zxNPjA*R65c+9<HWr9C(l@&#@Mds6fGl^Nl=2_h(!r@e|M1#Yt7p^7ZU)SU#>S?uh(
z8^erfd-+smkIa^xLeSM)-laVbcYb+D0n>m!J?^Px!nNOHZEH-uZKpotu|>G`N-`1_
zDJ=f4i{!pANdI2ay&OI*kGN39$i*4%u5K++#X8Dl=CLrV)ocAx+B_+1$k8_HYn)<;
zl(N(;$6N8aGID`YqMw{fsmIq@^8xpwC<fN-Ls;=;eXxY7ZmI!6<&Al$@u{gP<vz4F
z<^JjYi0+ob+K8N0@%2-pIF3?-T@L;!nn%W}rq?ub0ef!XoT5>my~Xu8<#>NaTM2PW
zzR=nT4bQUEE&e5uIG>~XlRAU?6_iN~Gv&%MiZR;j!NIXa06y&NqKw%mZsGCw$EiE@
z7ggI3Mp;f&)PCdPrH@RRV7FJvc&h@F|L5k)z6t4(9+~7e-u#Fa#)a{f4G3rsxhS$y
z9O}Y!xdB=B1uuh^Ugt%De3n`gixT8`3)5uzzu$P8IF2tl+uOoSUtCAq8cVc#K7mYJ
zRqV$yyYOOL%9qk2H260kr;r^q&zG01K|j35N|!@z4L5|MtJ%#Qt(YaQ+uAXb=T{5m
z0;lfqo}1l#WesqdZy8hDW@)aTYTWD=-*RdG9x-HU<b|gEWmV}}z89Y~p^b)aU-6dv
zrK5Np?IUA;^trA?iZ$f|nF@B98x}c2hq(SDl+C!LVe(xzx&HBS&o9Kk4BTh3l^o)+
zppGT(feK80z&M)uF*#apBIXt}B4|J@52qgtAGyOH3=R${N9DxXR}4}{C<B(L(uzmg
zAX<Yu^hbD+1lhh4b3Vl+kr4Pm=6n4YXzOg#Pvv2-2#s3BrAhtX#GUw^<}$}XZk1Sn
zAGT$^jYMe8b;|rHA9=a0E!MGhqrNwEWNr&`l-d{S(|r|9V~dt4MGqUaurh1N05tBW
zunpY%E+~Vec9y2DnY!yB0W%<Uuh>Lxrv7kP>DY?0vWf&3CkRT-z4_-P!2HJW4rx>g
zNA*Bu_M?w?tueI)T_zM1h6X|R?en8NQ^Vkf8ZVTPr1o{k^aAxE40Ga<l%VG1Z>nRB
z3|=>Ru1!wk?p{5Oq1sEY2aVS$6izgxA+1ZPdNm_-s$;W+jPvixg75C2+eugBg0cFB
zMm94#R?YksM3I=R1cUKMmvT7YsO}6QgO!SkaIMU{Gf+|FixN$*GfeysJBK-3YHEIr
zkNd}R#E9xFx~_@yedeanH~u)_d8>}I=1axtuw|cyzBgggp7Nu2jAd^Ir1y>&BTk1v
z1vPFI2kM2At}mOW2$REkd#-c~L(|B49EO)oE#FmCSaX?qGz}k9ztR74H+$|XKuGq)
zQK=c)@{QomSXj^|j@!}kA&+{#Oe4`ZC+lMW9invyy>h)fi(eG-3SOD=_gv8!eDXFk
zH$#!!p1wUKOnK8xHe+a+3A&1+^GFOMH>A}3Y(DC|bWwi`Atr6WH*gZ4OrS3{cuxP<
zu1AI!L_5%+$qJhY52U5$jnfq|YVPw?$9SHl=KQT;b9~a6Xe+O`R9R1Z_t{uT6_5A>
zx6GLoo$3}hPVuDG-B=fD_6)U*?cvxlf9vTMa>pnhh{XM_+usk|GW}1xj&aJ@XSbMP
zUZYzP&(&gP_q?jQW|@^Qd&IPxHncjSPXe?nK-MpOoU8)+OYhW(t@f-}3b%`AJ5vt?
zb^js;F`)lA8g|1?N-Ktv<kQl~h0v~`0M+}7p$4<B;g=YM;>;A`k1L}c1sofO1+f|O
zmA3**MpIr5s(+#=7vf4C(gAVA)ghwa#@!=K%d=E`l2*VK*h|XTJQc;gl3Gu#T<(9b
z?)%o;O?sB@<)P3>^d#BAsVX70=!fuygL3gnXz+e(96SW4czA%P>!Zx&rTYj7I>&Wh
zR!ibKB5k013{AA^>g(+>i%D@L8WV@Ju(s8)s(h_1E_&f(-^cXr*L6dw$!$}QYuEn4
zq|?-a0TsdVC?pP}wDCD9VlKCL%<lk3s<T~O%VV%7sOOl5k#4nov*8RGcV?YVTzQC7
zCR{#t^sFh67c;besXb0+3A^w)=#R>?oH;7UC2*APCQD?KxQ8lpz0b<0Z(rxg{Hmab
zv2-AGhE}evi5%5)s^Laq&^r*|gN%bLCEC*ha)Y!i0mq_mmWr8vnLRTb92QttgIyl=
zBdF?C1+xeP*iZA}XM@cjzOxlEfa?*AdEO~nL`2<#CK)0L6Q5#?KODLjGkhj2Em8P6
zb+@~Up0ZAzVxFL-YoZXkcrlXw$S~mvo$O+zv+jO#>->n(<pDAZ2_zv0a%!$YK}fCA
z4Flmdk;1gUZ*`S+NrgJ;azX<CrN=wH)$ZrDtraG$R_|s<rKrPtMyBTpri(kdy9k~-
zz;G5f+n1XS1k>@$C_j(amZp(f?`_CAoq17lMYCi&23IaIcu0%=aeNK*m9SQp-{OdA
z3Ew3?r&D;;NY*P#U}tl&!Z@c_KZ#g>)_m#BXp`Fh5j@q}8Nby>LIFe(OKh^`TZ=1Z
zJ0QDJ!SK7-xh%KaP-^{8V19(jm%K1#4K0ho7bF$L)_Wk!L@ZB_0uc{|uM3W@=EM4O
zdYeBz?WtmaOk)7CVM~7H^#&~fMP$Ez(68MrUmak1@mLNW@?ZS-TXI4!a@sq5_El$+
zr*p3lgt?OtqRVQwjWgUP9`@ihb~ARR?Q$`oUrt?CHYn9k9~Qf^5F?R}$c{xa4zpTi
zMYM_pg`?u2$S1?cA=eCgGj@J&sk+!(B)Fq<Lf}k_rSjj`<K0f;PETcL#|>(?dUk%C
zCeQ)~fxpL`9uMm@z#DZzF>jJL!tNxl{O)sGB;&oKypg*2Vz6hvzAyumhggm$wK$cL
z)q7gfi@E2FgG2NE?>7SI1yG{d?oT3zdo2#XJX{h9$2=IW7Ym0I35p#tGjH~MEJ>Pf
zy}wz?P(4uNC)Y>ddXJiWa6A?S2eh3x72qXRmZn6Kf4u#?Gk(CW@?EyYth|#5Sp(-~
zur4D0J}7q}$T)3x6}&C^Rs9{ZvaRhNnmt`yndFJk!o<{sOY1im`0!avMYp)%hP}y3
z8P@{o(VDC#UC(`cJhl?aex*+tjG<mOY9LhY_6vaxy~vsBcm<U&`F6jfgy~Q8`d35~
zwb=u)Z+9~~nWck7pDEKz%j_i^GCiR#4*;{gOajV-$J%32T7hy#4@3;a)y8JIea-7%
zD}my9kM;fz$eN|(wEvxGaHoG(Dsy{n_(j6Xmj5b0y)VTN&M%?DDT%t6a)O~2Mm`Mn
z*>^-u(t<H4`4;RvlXP`~wBn~r&Sj$87f{T@i~U`_hvLM9rMTrSh{8HtKta-3)=$;V
ziC#Nb`>i`0?SvhCl87;s4>@q|(|$u$k6?hXK!bq=fvf#5b+@2%C0q0Bp&vZeFZe##
zg5}p#r7D%SU40%Gb;rhjJ$B{+=|nKab3VO`uispYh(hD>7IfJ;kPr<<gZqxWN$0>l
zE4C+3-?zlP1`Ye3<y78lGs0a`ee%iy`hJ_Krc~IeekyAEI(4v&^hN8Q>PvI<oxn1Y
z@-rtMZ%bN31Kg)#1!DDYfKxEF{E2=>uNfbZs65tqId5VeS{>8ATz5sH&!yqgK#6RW
zu0_I<s*aO9iWd~o21UMH!+YhB2hV9F1~jQGZB}#58LZ~wpuZ~xpXXCJXKPt|*K{&>
zFE6;!8T%l(S5`itPLi(D4en@A!1hS2eAIZ~w7$LsL1MQ+cHlHdr6#6fsp|&G1$`ii
z;hO9yEb&>oUnf?qOLV%NSbo@gyo4_*!R?X5RL4?czy4}Q=E5qWuWVR((;BR9ws|<3
z2;_B!8cwxK%SHYNGj8|yQ1)aK@yw(_<UEJNtTb<??BO72lrcHqOvM7v?m=LBd$KBH
zv(5bHiEzWr!JR+&m-!Mc;iO=WKsoQ+mc=NGTrVWwXkmc=#1xTl^-E9!*qODufsDb#
zW$KYANUlvZ=o=FJ!<*8sdfmWcke86Y?k%y+aQ3%Xm+39r;5RNX@;QWMXvvZXcbh(5
zx|Uc3rJ_paNjuTV(c*mAJr;q{fk!^=Kgslsnr8omo$<NjCW50k$w~#U3D|mf*71`F
zRV}nTcZJb!>n`-09D5r*-n5zG75V>kkiQ5H3u$`maSMx)XhJZQLxT<PoY`sglgWEK
zu71XRmqHl1$hXtLCR(D`;9qPM7eDDD1Lxth<!6E+O)Kw~@y9pNhrQq6TG9Eg+YEc?
zv_P7<*o;ReCwRQaL$buwHyggB!y`VjrHat2WL+fZ&W2DNhq1%@Jw>K8B(lMO>HHzy
z<-4<Sf<0%lZovtI4BC~3+UQ}{k(hwUFpc^K?`DN~8msxWBUeAc5Xdz~D}l-TyBA#u
z$OnxW=fDOrVcs8}v`2>Q82>QO8mKuMU=WHi5$n{?3%!!P>~dH;){(F5%oJeWw0{Xh
z7HnbMa)^*-;$BHFIo7+FYOE#3U!3d{sTn`|Y-YaYPSb|I{*(?=d~oF3AGIR&qc8&V
zlD}(se>;sG#?p0ZoP0D)ArEUTR@4a*$bV5C=1tD$IP4>1GoUqX-;w9HdI&TsvVG;+
zx-&p7Ysakq=zc^Gv%;gVC0?FPUq}082>~i*x7%x6sc)E+IlfrLb0HVNW#ZCQ=q)-O
z++seNmmfg4SKd|7`)t=+CGh|tIM9cuj|}q1Kg4|Sthuc+W;_`c89Fzb_#e7v7Y|4b
z<5xN0-fLFI`v3F==G<X1Sp28Ak-~=i{}mC7%M+=rXuFom==kr+`5ehOfI`GdE%?7U
zFx?CJ<e&ZjpBgX!Pu-rTJOy1dpvhpn0bJ!V<2PaZ@99?)H-S3_=R2X&;E$ZX9H7hs
z4rv<o7T>e4>z+S7sT&1A9#8jNj$%zLpNGl6uhg!1`FBQI6;0_>fUDz8^0);qIhYp!
zFkU`*OaPK;6dY&V8vm>pL&?sin^8MMVWc{)w@Xue)!Q`k+gIz(M>W+0)s9<Cli<J!
zF>*#QC0fE!M{3cO3lT7gZRE<4tmJ%hb&`=|r<EQ1CB>g~sKgGGZ7nRkxWHB`dnElc
z$=K+KMy-B0H9ev0WlMA~Mfs0%rex?>bE^!$06)3hoBGqM^Ybh_7RRdcsPpuhEK+L$
zT3v~MHT;<q=lJ+FdXy8}bXV^O!roS~e;RX;5^NT@t-$*Yz*QSd%F6ypw+#e5s2Fp=
zp<WbBbj)MunoYq@Pn<t^6M&46sN%5jhZi^fx=IUw&KK)yde7B^stf-J=}EN1&=XM;
zrhdc~*&6#QF){s_*Tu81x9@$sSSvcrc%P&Tj8S~Ta(m%#OpCKRYpwXnEmfiaJ0U)S
z5T`x%GA`4_Xi7q;I<POdCc-mI=#qrav7?CrCgl6MO?=*UJ>w;iw|`HE_;6YQGN3a$
z)NjqexF;udXcW-*?}&jL$Ll8->zW~Szii1znv=1KkI0%}zlZeUxS{>WlA*cK+W4JD
z!IezQL0&hEM_;Y`j2~$@z)M^&v#{=+M(3H{Df%}O@1Epd5H^c29>C1lZ^p!smz`Ve
zd)DEoZ-p^_@6>)>HVWn}K;KC{ifVhqpZ9<%%igwI#e~BFq{p$|fK81xim4|@C?cJb
z+2r^uN(MvN_+-s#$Dix&{_=e<=>qdUB<YJ*W9nSsd)M4Dpan2OM`TWC)uf2>7+lfG
zfsv|Q1qES*(2T#5)}9$i0fuWOw}2uFW?Jtg+bVT<(^N`g!t_Mtk;kQ6tg`Z87r2{E
zS~nZP5yV$v5%zuW5u63wG7hqmo{}oS@?iv`XZ;~P$<+%~bA)vdysJoEz!L@(nqgIl
zB2PVVq3)h`*x2{*lqz+lS-CTyG0(A-7AON4=Lk(M=e>6icBOz3b)PSUx`B94j%ujw
zmv^Q3OmE^o8AQtErB4I2d+N7u-rcmw?$#PLnAEh@N$&Ap>asePG}kYs>)&m8Lx0=y
zhyfo3s8hdWvz-~9vyJI?9LSH@dE%MBihvla*ECqrkKaZstzOav^CQ<z52$q-^^L;j
zDvs=XTtb0qw&16YHb;a~g!#(UNg>NxKXC_`YjU?1Uf)}V^6^Y`c>Kzr5j!ghSQ%dG
zw&v4sx!GcEez#U^E6xA$b=bZr%*d;q<2m@)Fz3&i*3n2>AMt&@+zS>@0gf$zPStq2
za2gYZo&wk^#i6Wi&$L{NYRXJ~UZk_Z_c25OA~N>MFs=SQ;=FYY;5iw`i!I&x#yhZH
zNZH=NLA`hLLtW3=i;baG{0KIY;YG`(CKKL_rbNz8&$W>V6klP`0|UL(h%|u6(5W`p
zN-&^GZps3tnbrEvBh<)`h9$_bO}l-SSsy+*zgh$>O)VbL2EdGs&qc#(CgN;I@XpT^
zzeY2=C*vNuoHs>u4|V4QZ;3(K^&&Bi6nHkXRT&B1CMi$hKk}1SoA=DrC#i`Lp&C9C
zo$(SAvnBKMO(tpFJn!3vckI~;O0W{KdqfA5vDWEn9&(tr9`yX9^|A}bn#13}lx)*`
ze8R%}qsq+c>ZF~sgtpqptl^C)!<B+b^D%RcNB2+pSrWDsi(6Y^k9E1GP?1ua4wNB+
zd15`+lG!c5k7I0;ZKwPQq9ucjB>*^S$lFK?9<@*3)Ew$Q?^0GYrP<!e<f~xZfgdj@
zv&GkcvC~cDKpm7KejW0zm(24o%9InCONfKgoc401$NOo-5!L)5yeC3Te!gtf6;h9r
zsyUMbvgLPm5j^P8w^$IXNpV2Nws>;Zh2m5I=2G^cE}zG*c`p6!jvm2%w4?k<+<UW5
z$)@Q`{>_|HdA*ZUyhz@?=J%7Sxh(>VQX!_1dXIbk^{37Bao@DnP@*ntXMY5hw0D^6
zbs1hgn6tvl%eizE^gdjaf7~p_m9IF%`eqWRN?^V(O@rR?H>#I<MDJq(w-iIr2V^uk
z9yikPJ5xX@UKneE0ijF!!sdN#LYM7?u1~A;cEbdr1D;z4)hrBzJLu=$Q1}HM?%IZT
zVPW!Vh2al9AmB~@;kt%|EJ=qk3EW-J@hyZ`+iTn3!I3^_{p3F-u%o=T75K$dKNH<2
z)3n5c_m^&L05BRylk7J=>GCIU&|AVO(5+$jCqM<zf7{twG?)W`7xC7)Poy#Kf2qZ1
zI?jTG!m5g+VV*7m5&p&XpP=G51)uMiU$!?AB`S0Nb^(9&Vr+Rr482X{;7aaCC-`o5
z=om55hw&WXT>%y?&Q^&`kfmmlMMJ*SR$yHYQWWqhfrS-i<s+{Dz#uu^MY3(~pP@C7
zz{SN>u;R1)S%0<5k)P0)0LFW>x-QeAoetDY&FT#T)?{P~S4VQn-Et;jKUyL&Q9G4o
zE#z~u=k5x2NY;l&ExZ`wArFy|$gl2R5Xn*!*YKP@ef)vyZ?&^l3@FS!J)=~Dzzi>=
z`OatkB{~hG=E4S^kxSHoHNLhsg2B4ka5ts+ig)rnytEznbJOv4;6i^cw^y@HaTQri
zA`2^h)bzBOAjuc60Xz0eh-bUR>wUcE-I}Ymme^apVT5S>T;cA{v9Q6Z{P{}tr1Zza
z7V)YC+;M8{P!`%exw)E5>OWWVE2UIZc?=;G-jzn|hsu>Q&H00_ti>H9Ic+{-+xE7d
z&pA8n_wU2snHh1=<5xev^&slDZuZrfba+?HhZ%^+BqH!DOUVcK2Sxijl`L6KrCkL%
zoZr^S<seKZll+}sD;lD8L83T^ZhmCX>Fd<#)agy->Un56Hdvmm4fk0DyGD<;nmHAf
zbkC`J-w2GQV}uh{$kLZg!;fBBG=!&EYul%6(^bE^ZSb?AlynQPJXPUQ#Vf!0So+eP
z%1{xee^H>WyB2*$SW6OT8?N!Z7S0*Sogz$p@6XK-ffwejgRiA**4e@%sM?$a1_6J)
zm$OHzll-yBd*JU9qJ!T^f@1fuG1=6oL+es}M>MC*)-5)+4BZMG;{`W}Gk7lcM`YM#
z;+=zC6eQ8|76V-Gl8Ea>%;q`-6Juq_@<x%M*QK@luNrzwjtccx_=$qN;gSrnH410n
zMu+RxIA^vGvd@`8#^6#=;+@$(Q$k>QZTMl)o;b~3xe_X;Cp0+=V5xR^ZrPfd-vG^3
zFvCm7EO~b)Td){YH}NFqV4xergY{VP>yd~=;AD!J=GbL~rSfr@c%xDpjQh`%tqXRC
zZ?kRSL|;fNJSNSQ4Vl@Ml+&^ax(!e7-tXs@o1F>MDt|dM8*!?pD)i)9gg_dcyLljB
zH9)?y0QKo9^t(w=ZNvKnf1i;VctLoogbeZW%A;i{*XP+=szYISX1*OMspm_aRq^da
zlje=oy#73pnc>cf@^B*W5WOfgeW##K4_o*8`Vx6>IVN70B<?+qqNIK@6V|?DrA_>J
z7X8*<hPF7Ru;*<BI{+%z8SOF>0Fp=zeR&m?>eDV+LeDi!&-;=3R}woQ*m@}ZOYU~K
zfed5;uMe+0bSOon_Zu@k={Y~8;++6kRr6fXuwgmeM}w$>gkdy9I~z+_dY5f{X1QT$
zcgvz!2h}6ws<+@DHsGlai8OP%b?o!>UHSXCoY$#O71b&#JvSeuR}?4ew`85o{HxQ-
zpEhz5wW%=r^15gsm}P=8{0pyK?jN*{FX!I@m^g1}SZL`q^0LhZXy3FU!&Rd1%A5+@
zRi~V63NG%X7XEZHCb(7P{}`A*J=oe+!n#n3m)1r{-yKcSIzf}3)N{n*W>61dU|m4r
zbK_%RrsjXh!Z>V#Vk~}2HcN+LuO>Hh$}F-pB*^GV7tck3g*pn`d}@Gae~zWM9DUX%
zTP1V5Eb!jSK1dONobSD|K0p^|ACkIwJZS#`bzKE`8sm$J^D`18mc|&1A)9J9d&c4M
zoQds}2zcL!4xQ%y7(^&eHoS{AG)6~2tb@;fZ9q73dI4o3x2fs}146fLX>%Iss;S-`
zT?(^V)#vM-Pl0?LPMzxEEWItC_{%zZ<;wXyh;q;44?`5X4}8Cq$g}T6wN&UQj{9ej
z9WhUpQlsjdT@;P6hQs=co$J9EmSHKyrlI=Ib3D-`*HFjX6P8a!Z!t{cTX+nIxERWF
zQURoJ(I3q~5g%Nu>%~zH-iDUvC;`dlo^jpCF^G(V#7Q#Z^r+_E$a+kNQc=Hjm|>-+
zkfcqMUR@FXSTOc1Pw3sk{bH}P*A^P=q>IANKkb#DjM!8cTC`CW(vD@9-R}S1JGg;v
zA&g8=5mm^#KG!nf-T&E2o;Nfkernle0=G9DD7fP~G*)2m*DnWZdstbnIM@d-`gd1V
z5k+j8t&9#^h`1chpq3Q#;lqyt%}%^Zelzy|{wYS<J;HPfv%RVRX{p-n`WTnNYZUIw
zI}^A3gM4d1)dD1X%l?UDIke1xiO27T`gRQHPblUVe$pHo)7ViqjA1XK59@|^L2;wh
znm4|Z%FUJJzihG|)D(~>+i-o6GAbv;*isJVB__-1S$r>G9mA|aMNLC^vrWcX>2l@b
zH{BYMkNJ&*T{=j+d#Qx8owgJeeHuwbd>@+PGRJJl>SFg8EbP+zbIxS4H9i+Kvw}WU
zo#_2|e)!?>{KRv@E({JiE41d`)yZBRV?`2k{llKwD*M{h4YRcJ$i7djEB++Nh8JXN
zmGZY0Z!~xEyN3q-S6z5%Lor&Get8+pDH^Zj2FM;C47j5>SFEIF#TgBfmT&bzOuOn#
z*;UN!w=H-*BZuCW4OuS?Cj7XX8(C<5Rtjr?$fb6*TuHJRF3*SS^AMMlg}%7112sNI
zbK0~LEvug_9WK1h2v7d-R4%m-{!=VI<D!FJc@UQ+xWH0M$Kk((!be9LNi=3qK2u>U
z2WWrKqYyV1RiLTnP;ff9wlmUU-3(SddU`Hh6~`yC`M3O?ZB%;ez3rlsmsZi}Q4IVS
zJ<x;1Z3-019^#2<kYQrde-MQ1{#lJt&YRhHuWG||($^H||5N?v-}~Pvg&a8fA4UK?
koVows)}sIE4QxP&0MWbR``gd{zKG(5inemOqDAok0u6H-SO5S3

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
index ed74b1b716..3af172dba7 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exception.md
@@ -29,13 +29,15 @@ ms.topic: conceptual
 
 >Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
 
-As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. If your organization has device groups, you will now be able to scope the exception to specific device groups. Exceptions can either be created for selected device groups, or for all device groups past and present.  
+As an alternative to a remediation request when a recommendation is not relevant at the moment, you can create exceptions for recommendations. If your organization has device groups, you will be able to scope the exception to specific device groups. Exceptions can either be created for selected device groups, or for all device groups past and present.  
 
-When an exception is created for a recommendation, the recommendation is no longer active. The recommendation state will change to **Full exception** or **Partial exception** (by device group).
+When an exception is created for a recommendation, the recommendation will not be active until the end of the exception duration. The recommendation state will change to **Full exception** or **Partial exception** (by device group).
 
 ## Permissions
 
-Only users with “exceptions handling” permissions can add exception. [Learn more about RBAC roles](user-roles.md).
+Only users with “exceptions handling” permissions can manage exceptions (including creating or canceling). [Learn more about RBAC roles](user-roles.md).
+
+![View of exception handling permission.](images/tvm-exception-permissions.png)
 
 ## Create an exception
 
@@ -45,7 +47,7 @@ Select a security recommendation you would like create an exception for, and the
 
 ### Exception by device group
 
-Apply the exception to all device groups or choose specific device groups. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.” The state will change to “full exception” if you select all the device groups.
+Apply the exception to all current device groups or choose specific device groups. Future device groups won't be included in the exception. Device groups that already have an exception will not be displayed in the list. If you only select certain device groups, the recommendation state will change from “active” to “partial exception.” The state will change to “full exception” if you select all the device groups.
 
 ![Showing device group dropdown.](images/tvm-exception-device-group-500.png)
 
@@ -53,7 +55,7 @@ Apply the exception to all device groups or choose specific device groups. Devic
 
 If you have filtered by device group on any of the threat and vulnerability management pages, only your filtered device groups will appear as options.
 
-Button to filter by device group on any of the threat and vulnerability management pages: 
+This is the button to filter by device group on any of the threat and vulnerability management pages: 
 
 ![Showing selected device groups filter.](images/tvm-selected-device-groups.png)
 
@@ -97,23 +99,24 @@ The following list details the justifications behind the exception options:
 
 ## View all exceptions
 
-Navigate to the **Exceptions** tab in the **Remediation** page.
+Navigate to the **Exceptions** tab in the **Remediation** page. You can filter by justification, type, and status.
 
-![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-tab400.png)
+ Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can export. You can also view the related recommendation or cancel the exception.
+
+
+![Showing the "Exceptions" tab in the Remediation page.](images/tvm-exception-view.png)
 
-Select an exception to open a flyout with more details. Exceptions per devices group will have a list of every device group the exception covers, which you can Export. You can also view the related recommendation or cancel the exception.
 
 ## How to cancel an exception
 
-To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception.
+To cancel an exception, navigate to the **Exceptions** tab in the **Remediation** page. Select the exception. To cancel the exception for all device groups, select the **Cancel exception** button. You can also cancel the exception for a specific device group.
 
 ### Cancel the exception for a specific device group
 
-If the exception is per device group, then you will need to select the specific device group to cancel the exception for it. 
+Select the specific device group to cancel the exception for it. A flyout will appear for the device group, and you can select **Cancel exception**.
 
 ![Showing how to select a specific device group.](images/tvm-exception-device-group-hover.png)
 
-A flyout will appear for the device group, and you can select **Cancel exception**.
 
 ### Cancel a global exception
 
@@ -132,11 +135,6 @@ The exposed devices (after exceptions) column shows the remaining devices that a
 The impact (after exceptions) shows remaining impact to exposure score or secure score after exceptions are applied. Exception justifications that affect the scores include ‘third party control’ and ‘alternate mitigation.’ Other justifications do not reduce the exposure of a device, and so the exposure score and secure score do not change.
 
 ![Showing the columns in the table.](images/tvm-after-exceptions-table.png)
-If there is a large jump in the number of exposed devices, or a sharp increase in the impact on your organization exposure score and Microsoft Secure Score for Devices, then that security recommendation is worth investigating.
-
-1. Select the recommendation and **Open software page**
-2. Select the **Event timeline** tab to view all the impactful events related to that software, such as new vulnerabilities or new public exploits. [Learn more about event timeline](threat-and-vuln-mgt-event-timeline.md)
-3. Decide how to address the increase or your organization's exposure, such as submitting a remediation request.
 
 ## Related topics
 

From 044dd98a2779c6eb6fc0d8329cc6ff4267f62502 Mon Sep 17 00:00:00 2001
From: Rafal Sosnowski <51166236+rafals2@users.noreply.github.com>
Date: Mon, 16 Nov 2020 09:54:28 -0800
Subject: [PATCH 144/209] Update bitlocker-overview.md

added requirement for non-active partition
---
 .../information-protection/bitlocker/bitlocker-overview.md      | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-overview.md b/windows/security/information-protection/bitlocker/bitlocker-overview.md
index 2b79e081bc..fe5a483d05 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-overview.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-overview.md
@@ -74,6 +74,8 @@ The hard disk must be partitioned with at least two drives:
 -   The operating system drive (or boot drive) contains the operating system and its support files. It must be formatted with the NTFS file system.
 -   The system drive contains the files that are needed to load Windows after the firmware has prepared the system hardware. BitLocker is not enabled on this drive. For BitLocker to work, the system drive must not be encrypted, must differ from the operating system drive, and must be formatted with the FAT32 file system on computers that use UEFI-based firmware or with the NTFS file system on computers that use BIOS firmware. We recommend that system drive be approximately 350 MB in size. After BitLocker is turned on it should have approximately 250 MB of free space.
 
+Fixed data volume or removable data volume cannot be marked as an active.
+
 When installed on a new computer, Windows will automatically create the partitions that are required for BitLocker.
 
 When installing the BitLocker optional component on a server you will also need to install the Enhanced Storage feature, which is used to support hardware encrypted drives.

From aaad5dd4c010c3772aa3c838a26bb41d267d8691 Mon Sep 17 00:00:00 2001
From: Marty Hernandez Avedon <v-maave@microsoft.com>
Date: Mon, 16 Nov 2020 13:12:38 -0500
Subject: [PATCH 145/209] added instructions for mem scan

---
 ...d-protection-microsoft-defender-antivirus.md |  10 ++--------
 .../images/mem-antivirus-scan-on-demand.png     | Bin 0 -> 65327 bytes
 .../run-scan-microsoft-defender-antivirus.md    |  14 +++++++++++---
 3 files changed, 13 insertions(+), 11 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-antivirus/images/mem-antivirus-scan-on-demand.png

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
index fc663aeb07..ceb9f87d5c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
@@ -70,21 +70,15 @@ For more information about Intune device profiles, including how to create and c
 
 ## Use Configuration Manager to turn on cloud-delivered protection
 
-1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and sign in.
-
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and log in.
 2. Choose **Endpoint security** > **Antivirus**.
-
 3. Select an antivirus profile. (If you don't have one yet, or if you want to create a new profile, see [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure).
-
 4. Select **Properties**. Then, next to **Configuration settings**, choose **Edit**.
-
 5. Expand **Cloud protection**, and then in the **Cloud-delivered protection level** list, select one of the following:
-
     1. **High**: Applies a strong level of detection.
     2. **High plus**: Uses the **High** level and applies additional protection measures (may impact client performance).
     3. **Zero tolerance**: Blocks all unknown executables.
-
-6. Choose **Review + save**, and then choose **Save**.
+6. Select **Review + save**, then choose **Save**.
 
 For more information about configuring Microsoft Endpoint Configuration Manager, see [How to create and deploy antimalware policies: Cloud-protection service](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-policies#cloud-protection-service).
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/images/mem-antivirus-scan-on-demand.png b/windows/security/threat-protection/microsoft-defender-antivirus/images/mem-antivirus-scan-on-demand.png
new file mode 100644
index 0000000000000000000000000000000000000000..5a8def8136bdffb49cb30f44c1498f3625b57f1d
GIT binary patch
literal 65327
zcmeFYS5%W<w?2vpq9DZrs8mIygG%p3njjrQ2~CmSrI!#v1woofKtY-`DWL{J3spqv
zEtF6~Zy|&hS_nD(zO(l@d+)z~7w6(!oUt#+7`!7{Yrb<mvp*|ZUsr>c`VKW285!+U
zO;tlOvP*JgWEWB{Upjx%ThC8>{*R~glPCJlc6MZBydV8O%4%O!zWJ`@zSa+3ev9{J
zdGB9byUTk?JK8qQ>7(j4@};E6-2{6{<sX2GN(Mny7Mph@C14vsnc=4Lk9M26l8+U$
zk5nS=SNF~)i24YNI=0^ay&hD;O?IsEJ2vvk?7L3xasng$%s#`*dpW?LZf*~BM|S)Y
zo*)|ykR`{>ksY6&nafC_-o9ygp7OTvEtf0zlbu?xtW2Hz?-Je;3t07!EY>X`Ha8uM
zPje<>H458`f`di<N|BYB;(P5}?aiTOrKAjvnLI9&&k0Z25~bg(B|p5|<dkgAtr2Zd
zMESe4Qe+#Gp3BQ_b#@8!dEr+gW4X;}m9NfIoe!BwB3%vLL~te`IJ6Xn;G%#I)Djga
zwyeHyP8=Lox|`~@;we(!rM2)%>x9KL8;yiU4c1&)H5J#Hdh<bO4J>xuVZrp(Z{LEE
zZU0Ld9|l8cusz7qvoUGV>!V1yA=*uj){0G>#qkB#X(zcSTqOtRCve3})7*!QjQ;sQ
ze;2+h7CMuWagse%RW=T^-khNcG)C5wcCwJ_`Lx3~wpCoTM}3moA90G^)HQUuQDG_f
z`3>W!iV;K8>ugSdn$S~3HZ($V`;yDsV%vPa!aMx;p`VSl;u%%cb`@PJBzU!ShhV&w
zzerXg!e72TOZp9Y8w%IUO#Ffvx5iW-_8yf6j1kx&>FFVwZkIV<lac@BLy4J5>L(sF
z-~P@j@Uk!41qucwvOj+`R4Z9qXEqOJT(~9sx7E(KVZBXGAr~Ku`NjL!l^E8>&cD-u
zUv}L7i&X#rUZ)Ede2b$wcaNE5<;uk(BdQ!FtWb~aBisqJfzRj*>9A+BP^o(E5*IRL
z>@hpRp0ndffTO$Bs^YNG2U2l2PJDWG@IYHz8=*KdG6D=mnPvuCkt*dEwiRqVGNJ=O
zq@v>wy5rkShoxuXvv?FI@r8Aa@YYBqZ9r8)==hQpF(-~FGx>0x?k~saH9={?vArG1
zAf1Cr-&EX)1V0>NS>*N)kMCj+>78m6S5CN++g!Z*SnvH#X_P1Ylc<p|Z}pc|Fj0sN
zKV@gZ-0Hl-2W%v4f1p~^cjB`0x(XGa3;YYRvbiWweEG;L4S};{#Q9!5Jck|veQi<d
zUjHL^l$eRJF>eKG@%^ovZ~lf$2Bqwa6ey>68vB`a9C&*jvr~G+3q8W{-D5!5>0C$a
z*)@SD({QvY=#JawSTJ8{dqO#>iS5pqI?Pz5dEZQua=;LrwLPk@5tVO6o!5WTk*&AS
z!9rK;p{5pyeh{lQcq~-+T6k@UNkD!hOD2(NvqbB}eMbDd<E@l$y+0L>kG2csY}V=b
z;)kr-j2-6Hn=ht$(ZLq=@Hd}5JwSjrl3V2&lHvvS)4smyz!<*a8@abt`99fte!TXq
z<}e>6bIY4vUAu_sOO;@SUIeUr#-_RUlZqkKBr=bcCjR-HVrb@bzVftGIw&RlcGTZ2
zS>vlx<0ZM#RWsT#o?;kTmzQbbd<UqQb>BqWeo4E2Nk?IdnxT9wD&5Hj|AmtI(vgeI
z1X>Toumu_^K5Sa0pWK`Mv0n^NzAa;LI*<12mMCF+kq~6G<&niQTb%yvKyQV<R;l|g
zSST@=Frf;nv}9@4;+)+RKpQwXxiiQPSXFroQs>3*>Q!aAb@kCm_x}XB(s+D1pb6HD
zyAydNw|ac^vu5l8ZZ#^d1F%&JLven%v?hI6M`JBG%SXB4{bPxh^1<fGG5O`{7{y&f
z-=LzL7n)S~ZX>4NEA@2cH(PGVeGF((v!3e2Q5d~Ej$pHa5x6^<vp>9|m++JJv{)Xl
zL*`dfTcK})uHvTT4WTbS%wMG+Evy{>?Zc54bP?~8wsCQQ>o0zA#vnVx(BhpTyRki|
z*U&1a;Za`mkL~a-bJh9R?{1M#F+*<h+PV`^tN{}e&qw*%$j5mc52~UU^bpYt4Smff
z9EQB|ud+-f%)I@8w;3#sPM3O(_CF}(V852KJeiW(3)DH<&MLl&iPlk%8v7jxDu-G`
z%fVgY%kX5H;L~|}@V23)xFfK!4XGO>f8^6lc~u2|5}6frfe(&6tQ>u5<Ob12&`rd|
z^WE*7r`oTrWFPgJ0<FgMNu$22(CUqG=f;nr4i%mIw-F$oua<Cr`@n*hET*Qq9!C0v
zCPjr))y~-?^f-0-`(RD)1KvYhql_;PivvVIG-j3diV88*K(|b`&kpo96^MqSQ_jVX
zatVJ47_5`z*v9sbYFUe?JdvF0dC;VM*4<hKgl||@%Z8#`RdY`J)EhmQZ?^)n?2>Q#
zBjOLqd7EuJHHu-<%U9mqGZb5=;LbQTm4|mdz)&4c(Q9Lt;^WNb8N4$O4?`V@aG#oa
zM3u*k4EO!}ywcM3=1>U}SW|P3A}6x&ZkAIa{gr1ydW5SWpy*ew^s)e=8x>fo7w%E8
z-bXn!R#ufg5Q&&~{-$tL2sJ)7cD0fzeUAk&Clcm3QX;zn0kC_T%W3Yr>~W7NM7A9T
zo`e>m$-`64G^Sx!LjGo0Gs@YZi|pl5diMw$Jawo`7emq3hlV#PKU?Ma5O!P?>#n$_
zHuH1WeanRks~g=IZicCErJtpg{m!z$oOY7jPWE{?N@~--(T#3<mB`5iyLR)8oxx0G
zD>Fsv(62{?kY=12<}aZMPU2Rl8VypKu-DqvvV##9n;0MCjtyJtTR%_^%(~jo<x?W&
z82;u$wP|2>S^_1c?I}I?8g<Uj1mw?&tr%cb-qjc_N4|VP&fQtwbt)DW0Z!PDNhJN1
z(udw94DCi##}@lg&261QaNYux$`7-&LTRC^u>N7#A1%3$k+8ugt$0L<OboqFfIt3L
zBsBVvX|(|5O5EddEHInnQigk=3k#?Hq;_s;_nD+Nm(1Rt-fP<jd>l9dP`~pOYHS|T
z@Q-**^;`SOLAOLm-_;GILtFKj_AvQh!p@-hc_f&d2j<VmXf#HQH23M;8Ak?riQn)5
z;+->+pa*qA_owui2~_DKPHN>=A2F>5-A2fU^<L{XlY1Q+=JGLE<nz^_mLqwhlFb;m
zH6roX?_e5KDXf7*2mi7)wJG>sfLdl_(c-;K#n3i78;zz>t#GpNL(L!J)Cc1+DZt9(
zRwfT8tl0YWv(JMw7^Kk^&~Vwf5pERu_IUgC+08)IhIg;xUUrx*<r*fKy$TFlwHkVb
z%iKpZw?Jjb8sQc)vAlLtlP;Z3m=J*Dl2ZoQ;YQJvMX+`JlfNWY@wVX-TF&-2=APGF
zo7RfIAanBo8fZ!ul9dVE95$&BrcbeUs?w>TGPIbK+$6y!V%(`Jpmj$%iR2@XtS**N
zJ+{G_w|Ri&uMh}`pu5opZia;VAl%yN;9ekMlyQzdtP)CHmxDrmuQftRJpd-YG%@0X
zP8Z)iHu6612Vs`VH<)oG@oy7B9l5+hLdc@R%wmIFH)m}DiE^j<RhEf6PZw_nv8U3x
zROR0m&Eg0gn5^7$JH;CYPcB|0%`>VWx^J=GRqM6$@)%-3jOsPZh{Obg&1_Y`NWQkP
zdP0RqP5<@>Y}y3T^suQ>_hLi|U!;wk61d{B#?el5=B2F<tv-E-=C&OPu}h{M>fmvD
zH%n`Naf!bGoh;np3hO^Pt<!nF+9&fqqp|X}sju}sWn1GTjVan0K)Tt(g58jdzPWJJ
zd)hyzu?$L_fbga!xtbyB1T($gVV5}>bXv7(4sxK$cPH9tBmUy}V4AOAYkZiHx*RTX
zeH+kQXCcw2DL<xOSaAC<vd(E<=bZDtZ`Bun>qE)jbG+6BN|S6rA|mfEKUmu$w^`dF
zi{<#6*yjjpXePUmPzI*Gec>-AbROSktj`67w@{M(n|ujF!?3+}GM;$tZ(i>*=OC8y
za-c5(NJjRT_xoRQ{=d~u1xQ2RsAv}oDVCmSF3iC@Q2VxH3=tl+kyjP8wQD7O1UKXV
zhTZUU*hnb3S=~VLe+H#U8pyrec4ORhwsLh3-p^F&yDh40RH!pJ$t-9}shl9O?Cx!6
znaVU$v(%b4+}R*y_gOd$W?3WT%(?#=#BK3v=pk*3Q++pZ#>`c=W9N?*9IH8b7pr-P
zbEw!B%i8KvikS4$?*v3a{hPFD>@V~@LejVat=MZdwg1za?>LVOJdqLhR^!C4Xy%)&
zsL05j#zRBTqd4{!&Yg$WNfr=Kiz4bnnLw{x|9(vq7lB|SLU1&|gtdYxrP!&<H-A@Q
zgj$DA?N1(-)ABVV`}8$hny=DN;c>e9Ul$<3omb=B7i~4Ljj}aold`^83PP>y_+9_-
zg0h}A3ll8wXqws{9t4C8B5TtY#H}kj+?S8v6+7WBY)%zLP%%4g*bS8~B+I;rNeW>t
zSrSm^&xe4bSrT)8|L)=!4oayyfmc1E)A*A#WZ@6PJ!;yye3zoR9yt5H3LTxg%N^eM
z<A#)sL9Qp-NfA45P?o>C>;xI#zez|Ca`;E411hmFl$MQ;v|?=iWPha{ggQ&Os_dme
zNN70q7~}UJ0G0c2M=#rPnug^emFk9v{K}yxa`GmR%iRNm?VYwp(#7HK7P*Xnw&Kgz
z)@m;#gnbbe^O5^VYfXFEmp?o}+qiBfSWM>0$S}QGYp#9|xLVEVguVu%{<lVgQU^I(
z+Hmm+#1!T}E5}IBQHBo1m&_&*;32*8U6JQL37GwYs3n4!{NarTECf`ES4J5VVxha=
z*Jp)e+5hD5!uua2W@JF2K={v5A$ZnQ3j$7eB{1}0r|TqZeWb>IK@|($lFq1dOgIw~
z?k7ku6AuwxwU%Dt@PsM2kNdL4<0C;@Z^ddFWA}`b8qb{aI){k<19pxAAK|oe#`GCc
zT2Ca926jKN*IXu~JygiN#Ymirg~R<Aappsx35}4i#kILWmVt=yM;)P{?psAglI6x<
zLdq(k1%~<l)62|pquZ^4k9pP>T$xI2U7vu;6%Xe44sJT>W@m(eYUqpM<zpEm<k*D4
zL&w>ih?w_ZHs-v;eF0m)AZd4;1RnOAc|^PsFNQ@7OZGQuuD(3V=v`d+LIW#>g+HQX
zeGt2Sd|YnxY5X3l{?gPfo`La<0h}?kr3Hy`AWX??`;4h!p43n~XjqOUR*p5!iZ5IE
z)eQI^`MsMZIzogtW<F(t=cfPJuI==zEx3trID_;XyZymrwv}jF9Tv7-=Q<vs51Y5G
zxBgY06#UH4Aq~3vo+Yn$rwheNZDNKp;~;03V3%CEQ}VlV?J-DkWK}NoS-eLt`rF3)
z%1h9T);WMTMEClGTHyopBb?8nerN9L35qVLbXEum{3eSCacdsK(a5n3jn65E6WU2K
z<+I-y&oB!2MfDdSyvTAY|2T&c$Rp(tu#*c&|9YwIv-z$0pVlIkO>~n~f51aFka}rl
zC0IGOAc8&IHtHWZ_|pc~&2^H1O=g`Pk?WtBZAQsxyh5=bY>Wp)LX~ZHN&9jqPPocs
zy9E4!H=)5!#%8V~fKQ?J_rQmNbf|qxNwO#P!Rumy7?|6NRQg=)Z&WZ4+Rbr(7`i<p
z#dD7&cp6JIOPDP4is+k4Te^ZF?z<tAOWqBqvnmjr^qi~<xTZVHrnG0EMYE^&Qo&3I
zODQVR@y6F1VqNh9CEw|E`(17F`NQCbaI?e(LcLnC%e|vvFG)och)!)*x=+-Y+4hfd
z8X9#sYba2-dnoDB2_vQ=cMA?K1oYm@$JrpvFp@aqnwDQRd*3H4zcZ4INEV}8W**`9
zS~|*FDH?Dm^{(FivCGAmVK;(@XVe<(UnTq0Kic9QzQbJSg0#IOb(9_VsOwbX_?hb=
zp*+a7-_IrT=ht;lThblI`h5d@?H$NjKXS+mm{Jv~R_-^F=AkNETf0eFZWc66X}7$<
zb|8|UA!`+VP`*%TqYpDReJM-j59IXdJ>RM$Dh8AOZ7FQ0c*dv<e`sCcQ+|aa_EZC3
zwMrly?9^I6ZEitiDa6r<1SK;*4j5mWjH9KBv##2yGq990_<~5wu`l1_78M?OO!6CV
zuDwETDz9kcm{9*LKmqs-5ng%l389<YVx2Z*=l>_az7|RT<`S);va)ina)MGt2X^(q
z69?^c39KXQw8;VivOxPE6=o}+5YQk~j+V2Ac*PA~Zg!to-HPnUO>`EA%n}js!*l#&
z7!$+s+9$pJtt4*i!Q9o?7dE^%iZ&)&TABmfubdP^$&X(QWMbWiy$BG!4U|BDfXBYv
zjD&*ul>-oAmxtMT(m`?tq?E5%4PnYHKhzsLNh=CFyJL0WWJ{^kH2iACxf_0hGA`5U
zEe|o&-rIxSFSv#^*+I}4H#lZLSk*Q787;xpRIWmKtX<RG{-E88Y_5PRxzaz=@JS5Y
zsKx7*VhpwMdIs12=@>kQT;91eZRS3Bx#75BBQI3mPt9e|mAlC|s;nDb5-v>xvMYg(
zo=~MuY|u$6+Z35-hvi2fe`<<$1##<)q{_Rgbql~83Mf08!t9;5s-kBps(inmgylOY
z#@O`2$r41!62;DftqyZPYOUK}EH5&2-uV>#__5dX8}oZ2R>iLl1Iu&LzJwsEj6wwZ
z0iicnM23@U{Nrkcku?c)NRe{tM-!%bEIcU5eIm9qBRMD9^x5ulBZlBnX&u-HRdFIf
zPmY%@Y6TAb7h9yC&<j=X;yj^4%K?OoOt~xTIi%g+8`{zSRQFwa)yx}w8bi)rhndzI
z`B3G*&3b7Q9V2nX?sD)Fv^f(uQLWzDV&NX1q1wj^u{gAR71@tzH14S_hY>=Pgm>t<
zPn_M<Iw6!=Cp#91$HGs&H3$dAe8AG8R45Foq-|1R7c0EOtfbc$WTCe_LFYjk1zh&F
zF3YTP<ro<gc{0f))!;+8!<b@KH2VA_qq?9IY=}B%DzG4Hs_BG_(G>?U-%ydqo7E<z
z-{5sFT@+Ufb~E_s68v&)r4VO&P;^%oI5+ab|IeXP49F?AcJ21)+L~<?CN!N=&eF?n
zwf&t|#av{%<EFcETsf+kmh?4OA;8f`IsQRd*Hm{xAWdjp=cTN(7E+-eKR?W~<C3<9
z&mc|ceY3uV+6gTm4Hr$1<dk9NjZQ+f(C2IRQ|`~-d<~Vq_V{jQO3Jq*=NoPdBM0af
z3vOA#xoek=ksd?4YTRdx^iR`HCqyOcEhQhNNw~!}%evJ<%Pwz@O#JdMhP{emKf%l8
zQ?__18awAchWO*_8}divXAp)ZHfcGd24`$;?^?Ul-M)>x)}9@UyM0$rxKk{BW6yXa
zf<0jt8sW1i{>b;S7}KUzBU18EdPZ`V#(Bblc;fJFq5lgOWM?y_Ex4RQDW_Wn?&3x*
zRZQWeAQV$ut_idzu||FV#x=9N^r2`)pbuE?sWSl6Hnj;P<obAwuT>!V#Sdt~=v&JV
zLQN;%dZJs;iqZl{xHim1RU}dO!6s*)`1|X%a}m)i77+PYb`K{$`py%BkJ7GkQ+T+*
zKZrJQGUcso85JxaQ!Vue;gGkrVsl;uSfY*d>%G}bc}kiuLL>w&C4_yxA%9jt_*M+?
znCm9bsu^kT+7(Y)F43!sgR7eBbFXf-6l#jpacZO8?B8Azk3To%x2i%R*;*~Lun}_h
zYi(aDZlE&4wnk2lkMb%s7Doh?g48O7!z#3TZ1~}?H8uk*Iu?s)SQ*_=#r6IiZ>_!!
z?i^hdtei}C>cfm<Qkgb2sSyJ&Wb5V;v#0{{08*jj`qamAPayVDu$ik~>mRf3852&6
z!9_0$*{|UA0+>vH1S3dL%_M?Y2VpDoW?u7pP6w~*Af81q^3xNi<iRj`ra*-Xl0hw)
z-W6w43cVrpegUO$I(5G<&hmn{Z_@D3QJr?c8F!vXNBnj4{akl%X6thEyKV8UX4kv=
zhWA^SLT+5_ZF;4yS<%t5Hx%97{8G!S$`5qR;s<pDEB6FQhJ{JC$sKkpk$OxFX9I<j
zzFTc7n)<wHqa(4)NAlZQ+TyO8G>@m4is;I}QO;6<T61tu8mztaw%wg<Nc=2XB0O<z
zGYJ~{bYPogk|%jKP8vu{HQA0;j59{_okUZzw@0wKOXmf<v*}~aY4F<#b~OHCB?8`0
zAQ_AFx|7|hNil=DB_{h#U_Z^5+d1Yu&a?d{>0#W=)!La~8JR-8p>_KP!m0)ko9wDJ
z^QluF?V%sNYZpG|oi$^Cgsmv|lrX_Cvy{hH>6n-rp>H<fJ9#UyJLQ%!GhD>ekM1m+
zUWE$FV)>2ea>n)L06QE_$h|-Hml-}NISq0tDx$T0kOt1BDunR@0}AF}UW!{i_$*-S
zVz%P1YbOC&S;S{u6IyYtd-8?4$kcwtmNw!=?D2Tyj~6T>3ejAG^8K;vc(D4{F)uA1
zVBe5Pw<I>?V2us`6$vi7I@a?`4#P4uCEt*6y}c!IR*4kFFJBXGK`rs+3zJkg07#+2
z^e6)zudQ{39Xc#&SCq^!)LEV6M$}wlDm-c}{_wd>)5kx?^yd%0Gan27O5gyVxuCXH
zt3t|GGX#gg>J&6WyElrCVjxkZuXZJF<iO>SFl7SZG??@z`o_=5d}>!+PhbP?2Thl{
zjq~X6r6=(;quCFy5gWwrXANbhnrwFMKEO=9f+#;B)<QHfdsg*3#`c98L60al;wPw!
zBU0~_q$Cw2hYjgnKjbFSzzYh>B6VEZLhPLv-lg>So|v#QMOVUHTD%v359b+#o9I<$
z3L0Gelv^h9p(cEdkRb*b@#*ykM|((nzAcz-GR$w2k$}3U<zD+!7sQKPcx|5g6KPFD
zaW^bLwJ%=tSVG&G(P@HGI=;%b>n_O?{)%fKSKK2!QZyi6h)^We+e>PV?yRq)<Uzr2
z2vqU(1syKAA%!+8SNmAez0qpvqVi?8SIdj}X|`q>^;~Hbr+%kPA6uH3OGcyDj)~|q
zItt3PN2=(uE-{V#NvMWAr^le2d?s2$@+`0jDPD<WuztQVdEir;#A8`LwPLQt32yDA
z46~>*F-5YCmj^7Wl>&#u7Q6Cz`BLNnLh{}fm(&6+N?N<$rs#~pD@5BMn#&D)P1U}R
zTz#czvu_xUxJrxr8P7kAv|gKx32~?yb3=WruhsfRQ?gkFu}WDev&ZWtB@Y7pWZT~_
zBnKlc5J%AE?jB&-@G7%wJn;v2!cb{R+0fGSzEF|PtEc-H{*;s(U8xfT2%med#RRI0
z>}+iNPE(BRXN+uZ`^MM6998Yhh1L=pHnFnSg@RVaZz*YfPnqM5+POvBM=aG`yBK9~
zFMy|}D$UR{b6Nk{ltBv7jUQc9rb+j|%7_IHqrhTGG`ue<Rb>yV`qJYSePXr*rc2S~
z2pgZSeEv2XFIN3dl$=#lwvx%24EvSBQL89edRVS0Y2PAO@$mTK^Bu%Sb4E)5smpzq
z^pgb^vC#!z<pYWHHVJ(m<F9z!#?AuC-}nC#n85l8`83E|XR}0DLN2#mH#vz<SZFFW
zX={?%c)=#r(4fhXQHU2Xn`tUL=-*zk?pOY0DCMl=o4&R~{K%*ykm=^;dj%i5KNQ&E
z{UQt&)g91nFYTIptpCXcSTD7-5I79f@NmDg?Zp<*MrRt;0p0g%c|y`X{jG=Z9B{{X
zU9lNkC7l-1ncv-g!h;_(jmPGTB*?;N&vLrpc<O|BrLEgGsT&&sz$e3(-erc8SWxUE
z!!cEtFt($~Km#vu`tPDb$`<16YF<P1S;R1uR+rzDh^w_tP(MuIYXN9%cZS9X0-+C&
zQ$i7DM->ka_t*f9>vY86sFrAj=r$Q@d$3?aedH6%7lzw)G3`RdR|VeADjli-=2dBv
zMw@eDK9>dbc6jc@?^y4=3aHDkLAf2SHgfaBAXkPf(~fM+*{Wk+WHIU;ZsfgOuU+^_
zZU7#AA`D9Iu5o#Cu{@ti8@8YXHt;LbS4$UKc)nh*HD+N^=MM!BYwCQ}qjU1S+OcCT
z3Ri?ObNCm{(|r#e%H{VE1e#rSucG-w=TqtM=6gW49IQY?<B~i|Y;K;B3l6!JBOo`8
zmWQf$nQ{cFc7=*)Qx)nCuL9mqQ_9kX9ehzBS$sPS>ZC_vs<i#8^6O>7j<$ol8V?#4
zQWDeV8G-&llQTocBbxW)aruDd1Yv;kvp2HYCITA(Aqx7*7PTIZZRRiW-@_SFQ`WNv
zYsp$g1Dw{!cuV9qr-%Wwm<`&AF}v8RVHtjN{if>#D)mZWV=i*msh8Vg`|fOvcNWLx
z3D&{zRt4fEegXYkVI8>^)=Z1NWs2BO<8fGR*pFsPv{Rqkl+e5@UmK$Yqic-uwV{Dx
zwAo4Sx$Xu0s~~*8l~Ki!7v=7D_LPjJI1yKv1;5$?(d*s19}G(i7_D5^1~+s>zE8+Y
z2S2+Zpmn;QJMH@W<jy+kfz{MVRm4j8w+##!t|orAZ;3S`-B&Ke2PktCZQ|Di9`j4o
zA-O9(cbq?oO$y8#<t7|<g|YrQy3J91qm(6o9L2RZRB(Y_GO;y=4lc8pNGaQVvfUxG
zQeuO&Ssj2|(02t2$dW5oWoyi#32^rjs>9ima<glD<<HVrpa))ER47+WVprLMM$Kkh
z{t!4b4#cRG3&$7PiQB_GBZdW-<aX}Oe75;s)dw`LEowFV9Sbvl3=orhcpL3x*Tuh8
zBL@P%%0$xens&y&f<SG`dIk{BN>0O*>u4N!38RVXZYm)sv}X<E#iPZ}Tz<z0N`Ajp
zcozPc#&_q393=QgMi)P^t2%k|u5;}4ad5Gt*M(;vQ_$5YjOlu{fJswfk>m##M!{b@
zf;|ByB@Q-mMB}0tL_^|!TdS&9O7oD&pl-|qYw@2P?;l3>{5)o@1r(#$2wS>)|7s`t
zEuJX-4hV4jR<#;=Q-d@~k@2Zosbq|B+ARTuMxM%wIVwM|&~G{c%iel9T$bP9R!a#h
zZGHpC%}Ae|K_ObP>%o%tgTMB6<Qem7$OhyGP}H2Vq_op-4Phtrdb$I(1}KN{a(nA}
zFBW{zZ8oFQX+X+N`PC9pQSWJZx~0MOXB;&l_0;V#Z{h9TY<Dg*xbqtYX+I$9u@&tN
zLo@L97H5W)l${oarE;~8^1j-OKXDt6p<;H`Q45?aa{*-{9vob{=<!?#wUL3BEjD4f
z%?s=LFtc019<6n%<p#19`GfPjK=D<{t}Xtxz6O;%s>!LI#+X8q)E#?>tM3Z=MJd@t
zzH;Dc`mqCx2@4T;qCm3DY9^E&Of<_6NOy&l$&Z+sxLZIO)9=(h8o4399?^=59h+|2
z>26xTW@Q*u1TZ#3WfEnf-w(*4^b%k4ekaU8^B8aVY9o*wA6Ioo{Isi#<s|h2tgXO0
zn$y|l!3)JoUb$NnZ@mLBMMN4gKZB2;s77`B<Di2ZlePH0$j}*y<}wF0S9P|j$}3tN
zj>_+K-pv+Acl$9(nXSh64)$>sh|T;6GtHYOs!oYNoebzlt|iXtoPM{I-|>Ki?JL!1
zl;5S|1GUmVr)^kRqeqMMHTO45dw!Z1pMtK06W_Y818DA6uw@i;SR^|4^>NSExk!|c
z3LPv?34Tuw$$Bhl$<%@ONXu@Mzy3JcJ-l`pFKl9*PtDYK0KKPW^S$)z``nX+p(WAO
zjee|2@$Ocev5tQYo6L(TgYPE7?*Iu;yJPLuq7^}-RaC_=hnb!<>C(7i4@#Q4^0BWz
zaNhcIO1?wK^^=;BHv+IbtD5>_b%Ha77TMwh>=iGT6`kR&&!;PHTS$FVlJwvo%3zKg
ztP11Xzzipum==F~VD7`*k4(XA=_5*=kwD)?*rY>7_EH!qv_twRhhISO@{6a?2eabZ
zm6j3lbwW~9fAZ1e3|^GoR?zqY>Q7YXO+4b1kFR?}dk2lB>P=Q~$j_^6_<WJ|o-bdl
z@02KE<A0&M@VN58sa1~h7GY-2XtzSBX&{Wp#q6BhA?}0R3;qSTm6y3>gMI!fzG(5h
zfzV!)Ci~rS)9Towb}MA-dEco=5@~9?i~p{4PwEHK(7M*a#v@e^Z>@$oVPf+`8_Cs|
zlP?{ux{CwT1^ar<zjx6{uCFrRS0gzDZX#R{GKDYijAD(FZ*LkkB}L}*KH88{NlzGW
z-5C)_9pD-H1JbK+6%UC{2aav57<_C?m*Uo|mf^4t-^<aWv!s!Iyp?y88yt{SCffCG
z@%ly_*IiI%CV!{}yzf>nj6pHL5>>a}fbAB1#}0Y86-Hc{4;pJp#E3b?t|*)~ZLxrZ
zt25HTuW4ZBU~DiCWrPAEDLG|YvRj;v&w5K&Y(pjPiWT?h>8Gwx)pwMaOHuC@emc6?
z#@>dJujj&=_4E65-i+A}To?DQB%QZ~$*E-dYv87#p9FN<w|@1y>A);*)esU)4&Ezc
zk1VtX*BU`Mo-OOr$r>ZZMupKz^w<2T%%1TjV^YYoB{M=C9&x5uTC+3x=)kDHJmIl$
z-E0U)gNK<$e$|KL16z$hn0~mfFoSjl*Tc6;gSm((-()otIw8xt3gl{0*fJy0c|jGg
z&`{=5O=Ec46STViwp5Ua9d8+Xsz@w~KWS%fVq^;!s%X!3=(vR3nl3te-m%}7o8Uq^
zz_vj+J<tdy!P`v^ao0<KY6PIVaq`+m2*%sByE)ro_F1DD>H}u7D%lRi&<sSYDb<5L
zf10p3kIAI~e8Z#+5Bvu}2;mUk6u&0D`lq_!pJ$=uK|w(-)r{=I4BoAPfV!JI!fX%%
zmYl_=itOi<&&nDpCMNV<w-6LU0R1A#ZXdQ?q}rc1(p#6O@n;QK`O>y{5nEr|2&{O+
z!We$Q{M~SV<m}sFiiOJyhn@&FELyMsPc`B{&%}fW3&iE(qZ7tgvqBe;%U<c{j8P%;
zg_5r4Q>#pC75CVm3&@cZKyAa;^~AI10<tcLn>z<rN-3nB+UUk5SjaEKph|rO5WuG&
z;|{|xw+$(nkO=hdAGcGYqJ}xQE-nq_;)i?&)}^$8%Z#k>xu1?4pgi_BR03hY7}!n;
zXur{&E-D%b)v$Tcg(SOpgDgIy{RBmlIT(zsncFGL(A(^)={ukAKpDRS)<q<=3VAj<
z6w5~CkAY1K8yk{piuDz5Vjyt;%dCIn6RBQvs!j%!VMhw|#uXJv(*jak0M|M+&)IfV
zGlV@s?puO{d$E9}2Om_0CKXqs^qak8Xs5Fogh=BEU!1`a#|m82&j<Y$BHQyT=V5fk
zZRSN={GD-2`V#uRR=Io$bHQf(Y60aRK>ANXlZ~J_PZx)LTFF42F8-qpucL@{N*Y)a
zF-su~Z-T?ovxht*1Z;k%2{wx<8BioVBOR95tlJ3$hi#AO;o(WwK?moP_Jn{MS<Cb?
z_jA^Q6Qb2yJ{~VVEb#P;G#pdZPJqn7@z}poUc96z<GcI%<Y8X(?Gl)duJV?$BpgU@
zM}q^KpD)vm+<bpD!zFIw&6Blxp0zd+YZYc{1UABiHFpDmGaq-R(AT$}ss&V^{Ba2T
zui^grB=#RbkKAF8?}Gj~I^j-TE3Zvk3@llmk6;pByLLjrEicQ!+<|6^T&S=tRHb8Y
zx<<v~uLj&L+CRAQ|ClhlpJSB|N{%4FUCV}c&_|JU6B}1k$M_RxH?kG`Oa#G=Ftf6_
z`z`^nW3@u%zi9v5+Tz8+{m;jGm5zF}q-7EOyC14H@(J&=HH^TGcGHz*wBt<Yu>LnB
zh0jWj6mrv7tg`R9cT$7SmPIh4%=_DgHPod?PHQ-D!`yqe#dz+Cw!RO48IAw5cI9Ol
zu(cy&8o75w56t)eMShC}+Xu{c(-EYX=)+Xcun}w?HUY7+DSu^@{4?x*ua<3fkv%-S
z>pioLal#o9uLq{3H|^oNwONrdjozwf2UK%m62SK-uJu6dIR35@hRf8jkaKa0x{3;e
z@lv{{vxlMU(9O!h_GRI@`OI7gs(=UoMkg@U>?h>xWp-ukU6N4YuGiC+A`|oH@fN~P
z#6CJ?6_>Smbw&EpAFBEP99YM%J4NKJk3b%V*46fBU^0RSleqILHr7709{-)tE!9pT
zBR4mHYN`Cnbo|Y~)squVIGwgLk|`sf_TMN$i8GDt0{s@vzxm4A?mr~*Q|^~!{{|sS
zt#3m9^UeMwenZnaH9{DC<@Ue9$7P1?IrhKBi}OXpg+-KFb9-!5F8$Hh{>RD`a&=UH
zlHfm{W%vBU$=OX!yzqCpzy3!h|K{iz{#Pac2VVYHCI9bK;`Pk+%4{%3htYHTJBV;L
zhANOcCu*RSvQ5j&d3}~NGr~@8yAR&c`5RiTo@660&@*rTx+AVtnBgBhe(MoJb?!2A
zAOQ<EhCRP{A%W{uMpW+q5bj@gcA449PfGw^^~RP8&Pbl2(TZR<_eKVlQOPU+(U`;I
zuQ~a(=Gry<Hvcy!Miw4PX^}BZZTWw1`n5GDL4ln7oK;uXYQXb#uv0_n@PD+68>-K}
z!&WH%_CFV12Gz+q>>W#LD=OkFa?eS8QkLZ2c0bqNMnrV@1^55Y0Haj$k4OC2xN~ut
z<eb$!E1*kIkpE7)GiXFpeFAe~V2%C9FL)hMOn1{outg1IiE<65kZ;v&T91_OJ87Gs
zRQ~&$uJMM`LFXT>HN!_SN4a>^*AYBHo8VkRRG6<5S=-d`4{A%8sHMlF6*ImSNrz|2
z5f5i4;@uh%p`gIIfj+mLf#We;DB@1==R>o#z<ZgVyElb4wO?}VlIG&pf6{VD1gZP~
z-N$8DU-6xwriWK?HG-SUboDNaUOolsJ*|1AkvZ{pfKEQKTC>4FpPdvyDhrX^XhFll
zhg)v2kHpGmQfTUfX@vfhQ$0kQr}C$Tj}4E(_S=ul$$n58Mot|0d;S`UYZMt=lqODj
zdoevUZ!~!FU};U!CwM*MtNjVCnrTB(7U3wHG$?kS-)dzaQgOgG0_oJr!sD4ILS7h=
z=*M<I3$gz*0*IMrcaXDF%DOa}unpC6(5^2-cby*3RR+LkM>KUVQ^;D{AvFA>e;?1V
zWFkwxFt2HWIol{j*#mhr;L8cdX#HgHz!0Pl5krf`0TP<h#sXVk;w0Pw@eV-+L~*%2
z9ViI<gt*E(99x65m%5IcgnMRD3l<U*!uGj5rGRh`Bo0gpu>#?d8tvP+p2%KKq$_08
zcfKC(f8C3(bmD)4RO&i~jNn`)7NLj4)aB-;)pxN33va%j1^LD7;=8kaniv@jBqe{7
z_TtV8`?mqc6s7`i<$3TKO=j?8o&!(`->~?6Mko{{uvGWnE^=ZcN#M=u0aR)y|9gy-
zsoAQ+Xi0gKa|tiGfH*l=<SM=YTh>J&ah}~QujpVZz&f?rC3E(6X6_+i+4XRp>EZG3
zR=`YDqm2M0a^UKL-LJ%t!M0clEIZ@1_s&RjsX76gI@>53w`rdN`Pqk-6&*w@Ip?3}
z-JGwL9IvfayzXi>ir?GtRi$yO>k1%3B`$qBYuMdloe7LXHdR2_O;><(T>HEtQaKGb
z4YqLhDP`+C&A$nzLXWRK<5<QLBCOdMht(@}&d~1bRpjem?@iI<4eVy^A+u70u=R|$
ztzX|;vYdZ&tdBEeSjO;BvB#Y@o()DVm5#cDatmR>c*e=@M93NEJ4(G5i65GK=%7~I
zw2iVa#k+n-Zx8?wXkO)O{SQ;itz2rHViQ9prsWm3QG|c$ivM{~|FV!ZL2@<#Y#NF4
z@{{@IuGiF{Ck!=tmY!en>Ju@+MgVB_JUro)t*yfv<d+LY-2yUG93NJuWg8+kL|hc^
z^W3l7!8zBWg|T!(fgXH?8!o0tu0TtcSFzezj8#=HHGla$`MFGSk#eYONDnmiUHE6>
zl{jd#SBdVa+Te^<>I>lA1yZB+N4#QckaKPOhF@Tb(>==<4G%Yc^R6&#N)4CsF8<L=
z&iy(sA{p5yF9vUv5@v@DG}!V>hDn{k^?88*H1Gs`g2ZsRV!n=~^SIXtvk!1!@&g;Z
z-)QUDt2Lu5vlfEVTuPW!;CI8nt<<V4{&W>&G~Rv+^c$KpPq%(I)I=AxHKSppNYp`$
z2zQRTGsaTBZGuMMVHZ{sd#S106V>)n<NRvFb8)9ZPD;Qlxt$+3&g&l9Gmt8MX4_wC
z)YKbmiLbi=CFqaDC7b;;N^xqzx_Rp4#x!>H)03or1*pc}8#d(?g*%T=uR>>tIr76c
zAfez#FIAl4;u10Ql(NNQZ4nom#mqdoe^kd=R@BmI9RYN%?f`<02*hHj?(w0LRRUde
zK(C#9CFARaJ2<CCBrlsBzwUS>xp3WlOmd@A)OqF4S>_)_^SVyy^5064!7mgj`Fs=3
z34`s9a_2<k&M&s0Z_IO2FsIjHU}r@f?z3ci9@zE`jR%E<%?_>^bUuW#Y{Qy@GdU0i
zodgrWlI+m1__1Vaf6>qlLd5mw*!nx{;P`s@UD-$qz0-sPHox%5I$tBjnOjv0KQdt^
zxABI0HA~4ltc#2S^g1NQjq4kubgKow%edwu*jh+L93nev%5t!SIK?RJ__vz}GM|(h
z%eLQN^@jz|0c=!C+KmACjLl*5;}0Idw34X@z#PvK^J~+(@Gi@tSEd7Y(EOI}--q%L
z>BmiTLCO7iwi<mn9}FQXHox^z=$1N+k*#^usB9vrLa)reyrtPFQ28S(P0UT;!&THJ
zK$+MWOX`6@-iqc-nXvxL&ThxZn*xW5^#p{~hHR)HWe?B`k}&#&{Cs3{q+%Le2d*Ao
z)I@B=()`H;!^?QQlJlX`{}jzkho`Fn!oxM=Gy1qA33`86T~x-hk_|Pq9F2I`q<J*I
zmRW+Wlo(>ZOf3uM*;t(Sl8)$~9K=+KKk*fi?^hsf+TQpGh8MWUV^QQ$3MZN&dZj?<
zIN=Sw@8}gCU##*_2t~t3vhsNk-^$zk|E=!wqM%t?UM@QCqSmLeg^K|+DxQl*Ita*=
zVGC;jVu&4Mi$15Sca6cF-8`z7WEEiK+aLC4m%c<Pa*nindz%rc-(HfP{&J7xfvz5r
z`EM)#KV`&Vol+yEoWIqfr*$7)EyIP>7yOEazl|-h?h^NTEP_iFP6o0{OSS38W;3!u
z6m;oI=cLfA{JU>3VJoF23T_DLVLi(*+{5Z-O;`VS39yAqAB5|})nhM0x1%uiWQzr+
zoF%8aT)^11T>luc6)XY>awJDrs|h&7>mLzKOS=66oLmYpxQ7`&_*ak`|LsR{^_JSx
zt_!mVH+NeO9GJzt<z>H#Jj(e|VN_}tlT-BG$^|Ym-uZ>ux$^+E!ZAG=KhYp{f*A-2
zt))It^_6-_+VHE+#f|hnYB+q|e`t+s1gEG9d|19sp-}kkmbmnpI?7{rLbtXfle}+z
z`_MDXX0_2#X0j$n_P<1UUzKownn2(7%3*E_hP4B7k9&T3F&gfpCE(yb(x>vg?qUy-
z5o<C&bZ>1zK=BfO(463c*hw2`f}PSLbyml|SA`aia_R6DHaIGd&9;ngw1yvS%sh7q
z(2Gv7lsD|?vMjJqcWsw3AfAdhNF7q*`|EA!XGBfWXFY~i3U>AUbnFGqwR_I4wPmAm
zBkC^Zuq$Z)bIO+ISu4627J|MYjyotf-1&BVa^|N)36Tlhf1~bF1t{iSkTE6Y56c*S
zTTqPDz&CaIsPiK;b#8%M5T@wz%}+9Q1K3a*8&1bO55Blp_axgCp@x#oCyIsa+QUM2
zGMu)U2tl1o_tP&fD)<1empb=LPcZ*C`?$=^IoHM(e$Kbnu*IlDhi~d|WHCHmG44Zj
z>y%X1L@7<*=F@^lY6mo%jED9CAQ1MFBkQgPo}~gg1a^)ERXZD&z*3x?J9F`z9JcR(
zcr|eAopt5GnqyS$@vJVSYjv&6eoroa&flw$nqBataFaHC`6aLWkNZ}Ki%(;wYK$q<
z6JC2BYbciydzheTi<#c1L^^~;6!zr~7t_We*rMc%<4^HidL-(=?IZu8<YFS-q`1LT
z|7z1SZn^E_-N@_tg^u6F1lKHua65TF=+-BnOGi^O_5aoxUIe4Qr+3U!gd+IB5A?eG
zpftNzyDNzR7wM8~^gYW9dH)3;oP#wK=XY127&XspO4;J%g<l<R^g@DVAA__ibZq!D
zw)gLSbXF!O9F1%R@@a&koA4mJ@vMmZg5vs|;_5+~GD0M{^^=j5QG$c}%M<9J=aG7?
zGZwKm95zalz&_Vmel@IQzc2X}4Jm2ISpuyK@ZF=m0*~`&)KIlOq#unC{%Uai*^1I}
zK_J%%C6Z`mU2Ey{v(DF?>z}z(@jafD#sB02sF*6TmKv@js{M2$tv<wlO#9SgG>_p8
zT`ei%9n7e0u&rx!s6~&ao0iB`ES4b~Ci17Lzu4~Q&&!w!kYAK`I((gBcWPJ5-&q3(
z)xa&<Tt$2$%B;p)yK|IB@JB*MZYq)rrygO|sx7lZ_L+EE(oufh1?LC$-Z?RFmb$&%
zd~i&tpt>aPYF4oeh%-NBau)b)<KdJGM1BJ<PQcmR$b8iUtbF8i&YicW+CtqFlRDno
z>hXCc)M__X>^x)`FFu$WvwX)BOEpb2HR_}(jq_nKr}e3*Y^Lhf+Axec#${CKkDO&#
z`1r(ohJKN5@Oh%iDYB3Wovs`PCrBiw_2!E;7W8ir#svZEjdxQgNwW;0iqxlwB16g#
zp`cp|4z&R6_Tiv5;gg-RRY1qm`qx1MykHswKTO*$1BT1^TLB}Q<-5sQSggym9cx$Z
z8B;CDPLl5Pf$cOK>iJDl9C-JDXAd1!Wdw1cF@&ka$*i;TMUglw*x{ngV#VR+`|%LO
zq0WHh>E7MYtige|4~9Ev(;Q0xD?tKg8=lBuf)34Ln2=a6=Frtw{Ke5~=hsWK;C4%u
zVb!1nJ>c!8fcD|3clqNnNfAAsH&(E0i(6gSff?6#PU0t8tWn=9R<WX3#HHD@2zq#z
zquZKvZXQ)hYP`^ktjpEgkJQh=sxyuuPsR)RE@b}KD<k1D7s%PCY0ryJ5QT2{*gh+I
zNqh9`dS9ZMxO;9@6U=Ojr9nU(`JlbO=<B@pCzCq;bwD}KE^B^$f|lg5VY1v7t}BtT
za9yoDBUGpMX?N40=QirCt-a<6v<rIHKl=U-ji0+kcj^T+z#;f$@aI>I%TdqRCG29|
zt6h^WIiMtK0z5}p&Xh*_NqmXJQT(ny^l6l^qqQWw+U;T+k;-h%m`i7_s+^ovT#%lc
zrQ<*yi@+?8^pANN1O4MVt`|q(HT;dMk7-`HjX0n8!E+j4K@7eW9uGuH8a9H83apb0
z+ZTmL+wJKwIq7FT5sxK?vKF%*;w1IWLGD{Pyi&JNYNTuVLa?zj@Er-bfosmGB6e*w
zzA?%RFm=`KXDimMH`F@~&JFt_3lI-UGY?(-lz@1;HVabu$${2DU@ME$B+TZAzNe!d
zJM{cUR_^Px5X1Ud4N7)TkI#7)QgEbky~9^wkxl42{i(W08N%ud7|5RTs-&t^6`^5M
z-bK?l=Pw#4p=U~LXJ&|*PWmZdIu&N?Uu$n|H*Px#o=nS3gyuBg|7RlGmlp_}*~mt@
z^H(F4e}Ae@-h|S{Os8!%2K<QZv;c_fi@KkV$89=?S93T&we^dm9HuU7)C@Q)1DH#i
zbyrS_7@v;p`K`Jd=$anqd4$f{#npuDH?#cwen>KNsR}B=L|hG_7GFK>frY{|FzhS@
z`D(F>Ve<RTLi#(+KW&0q8Xb%Lv&6L(TULYP<Y$L-ts2Z`xlgpx3Z{zhGIJV{_!|1Q
zFzaaFLqo`zrE}Yt@s^w~2}fm9pY;xE8-#Ti5v3%zc6e2?^@)E*TZm_g7*UKnc)d)8
zd}vmy>3+tT8MOfOV3706heFSnLJHHxGEY`iNFgPNmN3WMf|aPl-!ygZzlx{2X5V~z
zC8V?grq?C*CvTI*Vamk~;9A^b59c2=`WSy<(M)y9qIoXq;{yx5kd<eY<`XO1lHVo6
zrTDqbJBJ;bD%|5^Fry%{0&po-9Lx-cNXtuf&ZZMR!XXJB3t?$);xUSd6i~B?F3pwF
z#<?G#<+$aUG;gePG%}A?4v5<y8TlMvl$$+M>%N+Y*=?j!6v5P_3P6ADZKk78i=txz
zx;CxONNqpyc=GiL{x@x(w=sY-!@4iP${Xe-1zRMpP>DFJtb(8Yd;c|-=<^J2yw)hU
zwi%l8)ClXi_TpcSpDp~Fb*kGCCHW_rX3u1}9Q<ghiyYmrqkq6H@$_X;6+8VihM;iB
zuYDnjgqum<?&DQxV(Ox^)2oQ<X@>ZY>Gz|;WBt>K`#=wJUC(AV1%of5T=(IiWKV;}
z-yQpcAi~3y7CrW_&H_w=pLYt<Au~l)v{cDo74)y1AvrM6_^7GbS!eVCE<Hb-m{u2Z
zXz#QV@l=aL!Z=q1p?)J|LUqXX%!D<>da&EZm~SUWV}CIAkrqozPP8Pt%>23g*!Mu>
zE0cqa{3u*j+0d9S%8788k+Ys_m@Lt4=po<I7wndv8Yy68r@_v0HDdG>CqXm#()ByA
z&CqHY^aM0lQK_XMuKbj%0F&d~rwv(2S90xwK7zM8-zZq)k(8afYPGwFfjImwpza-;
z@;}w;k-(4j0-0SFvQ@eFt1(`ks?Mh2TAM8E9@-f@6*JXOAihbrV>7?~c9xj&@H7AR
zE^J}o;UU;>p0#oF;wHKy=_b>LONB^uw~S)P$zDYFslYuKp~0%31y`#_SU%gw=isb0
zu0L4c5I8;TV^oBVuU&v_ZI_o-GRg&@N?liU64q8|1eYf&9;F?(V(+jBfzByxX@28^
zxLK_h+nlhiS(aMn@4l%6MK5LyAzK5(?Noik<X~aYWZ#E!(~UC~Ash4&DA8-kvX2!j
z>#&m0`y3qIJ#*JPT8m9WpQ*5VuFH9>B}WU38PhT;acOLnx_xH~9WWzYNoWoVaAcWI
z<;ie(9@`+pzAOSYKKbrBMX)KZ5+q~&zIe@|C3n6$vI&jad5+7Fc-}l6(d37Nj>YIS
zD|+C5w+W#X#`-POx9Q7NyamX$KkQd2>SIo1rFoWuNYs#0Wxu{LXm`cHyB#bi>+u<f
z6n-p}#^Y^T9g3%Ze!Z&ck;ay22RYWyt`z4Up3Eq*HMg39ohL0Q%>^G1d%BNKXFplA
zD^D%!0TapFC=NrNb;ANfB<lxy3gG_7vG^>BdDk3)kCrI$Ng~5_is++K9R&YN%7LfN
zB3z@C8liCot1F`jI-oBoP2xHIf9aMq<hDM7viYw3`pA!}P#(YnNB*;a+)61sjY)!D
zy8xECmfF9>3d9<?eG)%>hr~ODXA%ltRnxmJ0DH^iaZ@!Z4)-h08*5MCzvK>Q;op5`
zC;+vTDyN@JQk(n(U2XR{T%LzR_$#7un50?2<dz*IWg-2u?$he*_Dk9UemZ&(QvZsZ
z2Cc~}qj<;sHJFn5n_Q?wtGU0DPF(p>JqbARiRu_Y7dSQaRI4UB0DD<Zzev)pN=w?m
zED=doHv4`GT8x59Jxw(Al5bI!4d^q}g5=Lvneer+B1f8+J(Uw#9{XlD4eol*<QtEt
zo^km-ZGl*L<1ZuRUVPJ0UF8kY-{VjC!6QbZbBW>KJpMUNE=zY7nMD2oq_<b5W*e@7
zPoLVHIySM8I2IK8Ahpw#b;L1Y=R7smV*BZ5t*2i;|MW|5K~c!irD08*>*}#JkgGJt
zyB0MMGVheT=X)Rr@!h*IGvnwN8;!EP{kNN_XDJZS-JS9>?;ATcRb=Wenq~!ElD-9T
z1O4pHU;JVy7s!DNEp#w&nK1+&+yS70Oj%^^uWMl#UzxRd27byaIZ)MZ1;A}KTE=F0
zX786$-gt9nppo@W5O}4g+wdc3HGzq&=|yCilra8b6Hi@hq!_Z98~30K0daiSJg)h|
z(5hk_iTfP-n>Zx$a&E{82e*FM`g0jUHNl_%GopzWyGSV=TB3iw>FI_X`ab@tNB;Cp
zAkr}l`bP33Gr-;KIiAp@a2(MGH{%3BfOoyYoQX3>57UU7w+qz}9@dG!$fx3(-vruO
z7Y(=F&Eh$udv@^i7F5y$88P!IU!v?+q0d(pNWIy4j`IRkz6Xur>*FZ8TYrt#f>h#8
zv30y};EuPRI2o9*6+u8W6N3338QHH-yu8pugZ)4YKl#6?d&{smlcsGrcu0@{0RjXM
z5In(M0tAQPFld77po0t=5(tps65QP#1`i>)%is<J4DQZ5*=KjN_wL@$_x*g|KOEN#
z(0z4xb#--}XI1SAPI1dn#t=AqT^HKDip^1Ie&*Tt*0L9XkZvywhra@ZbFUEKM%bvb
zsKjpIPcPwy6*A_^9<<QV3F)I}Oc?Na>g5tyOx*l8FIuQ-klO+ws4a|8@woHq)HWr!
zk&Ep1>4jn+dCk@RmF9Fm+AQvDVBR&Bys*hq7^9uW2ixYfSMl@D;l;L^Ei_k&)PBJe
z&f6hN7?kJcM`R(D&$}&(PgU)*8+D8dRZ}!0y=D>7g0|w}EaTd~^fx2o%^H{v`3V=>
z^rp6Ms><u7RY8N?0OLZ1l&=w_MV-UyxXT_tz*iHu?H}!~@sg**n#7b2Wfik7tO^cz
zz}|T!;7hhIL0_K=Pq+XLBkY8HnuG6bAw&lCZ_KB&SzH*?rnhIQu}^x2z7CI6XX~nS
zvZ>I)aVC30is<PN$Tq=!UR7}XSPr;agON*IVVjvq$OY<7nQ@Y8sdnLlPwpFLE#dr_
z)8a#J<(c3dPu;cQB##Z-Ax>b-^n*mI8rc=OhjJztd$fjW6I*V2+#_)Vn>m^(EV1{T
zqpr^VpRkG1>N1+QeW|y5HLv=F$Tpdwo{&k_rT2B?VAMf#l_U&n;ONI_g&2f+f7cLu
zC@IDr8&%>P-5gBzNEA-53n_pQK22wZxY+h9wybILaG9*=J|r?|$%;99MH|Sw$2n1p
zZ+Sskcw$Q^o9T#PeP?HlNbfvEU#MyI3PMDeVR&C#*3b6DY3;d&UA(7MEM2mmI<XX`
z2E6`-)}&cKs1nH5fIj7E`uXiOvH|r`>pFb`jj88?{myy67I<a-+q$w+y{uFmMb>4Q
z)I4wa40X92CqI6)P@h?g>!iuBKrIsuE8p<eLna%QgQy9uL_T?u%oxtHCVa0#d;{Eg
zfI!`-uCQwDMd?uhYr%cSF8!;V?3s~rIiX=ny-$=`Tn&^Ham0CzRkalZ6~IxjWnIy3
zm%J%anykv}0-yK2)lSZhk*wSkw#vYYpaGNuL~K1fxn_~BV?u?khM4%K=7JUBjMbg`
zyFv_>k7`x~Xh^45$h7lj%rEs0&T8got={uBXqvtzTVNL1W*B&XkK0rV0NhNbA8^P|
zQjNCw%)O&YB4|Le!ipA8*v7^>pT~XGX`$fJE}ouqNf8nQL{kc?(fTl^Hl<ZEVlf#5
zuI62xFPH?_bfVJ-5I9eh)KuhGNt&jg2!M3NhEC;n$l$eW#+%hXlyG@ZANe+yt5J{5
z6q|8P77Z2q4mHkc%bk*2E)``Ff`j?TGOjK_vaH1r8L2gR1<+L7J_HgbOqR#IyfCaQ
zZp<v*vomuQ)v_`#>m?rE(-N%<9=4`+w<IVY_~^(QK2O8$>LZyW>C6~yvlapkywr7r
zWVasSrRvX{>&p~Jf4y7>mlhT3;=6~l^AX4Z$DN~^%VT)7J?G9mEsC*974LeQa%O-7
z6#aLfv5O=ND$ZK_fc4OP_WP<ADU~&ZVz*TW&4csT>u8NX^$MrK>0jbo)2<LygAEaA
zLIjPkZ*lnj$644$=Z7CL-Xq_3#}cBoC7`UGt&b_M4O2%(5Xi0p@DrvB%0=qN$S%T|
zN+U2Ua7bQt$wm%1ZfeS@TeW4bj*V_vaevn(W$dNZu!?HgN=^6czj*CbC4NknAH*ZB
z<#5IgS<^{;Gmi)_t}GopEPFMCNowt)6$xS=H?54bzA;PuZV0?<wyWk^_9zs@yAOG0
zVFW?5@~#C~gG`zFb^E?%MIRe$T<47&-7n^?m<x6l1>^<0TC1B@)5*;$m`5#8g*_2V
z%DzpA&6+mf9ZD|QODr<`KB$*!#yHbLlXDwh{QTN2QOF16u>Vz;=uXZD81~R}U0ZRF
zfpEbi-(0u69a%E*LDlN~tGyHah1}X&w(Mi6hmUNl$247GQgzV1X!b`-f;l#Gu}_+j
z^r5el#sj){Rq{;Fhzd{Nm-krM;3*Jzg?(gZvn`_6_51uDjkC(8X^s=*Wmj(%F*mMK
z<JBAE+G`av-K1glaR%sFCg(t`Frs~TlkCxUBDbfK)yRBUWfs*^?CzS^xbV2Ynvj`w
z;kvC68mwN{O`lQQz^rChiqtUZs-C|-m+bNOhzDGBvCso_Pkj}74CT-^&0qdDdT=qK
zUtBS+(hQ*}p1g+Dt;Hj<_rM+7AG%$^-^@B%&w-nq9QVqj*fC|L*XHGm#V*J6z-w0_
zpAc|Fg$75hwp=D;S_ZV;M7{JyQ)vi{HYyRK*FZ`R$fFDxdx%MJIKo<7<?E<lo#c_K
zuhMD5jJu1?ZO{HA{M#XjPVY-WS@R^@IGpI}p}jPCep-*1bPKaoe`&n5XHca~rk?DR
z7Z1kmsV34COiSNy&&>0b8(w31YhF}~-+d{<-NL33dxqw3d3uLQZOHZsOH4z0-e>rd
z1b$*U@nnkRm;cdkml45&0UNl!{(^|dC<DG>f;tA`g3x-sMAc$SwNN^KDAJu2cmm(U
zpWYowElfQzIInJBwV~;LP(5+tnpshlW@nSQr<<GoMKQc%;?2yCDOy1be4MLn{DEDz
zq`mwYZ}VE>qGI3Ejd2BwIWxOj-L@G#O87^qN^XWdG-lE=ZD_p!CADtSxP$xolDphp
zXB5O?-4t?dF16*=c5}HlHzkK9tFww`1=3v$Mg$2i`v}pEH&eIViMcgJe3%br*UJhS
zBuhVt6G=-(DS@uk@`{G}I1XfbYy?X-dG6Whd!MK_CD*)Bo)gK5z+7}Q9cY$ESdc%!
zJHc|v{J@mv8G-K`(v-;=@`pz*bFM3mxB5aCH2PrWbgSaiAY$t$&e<t-OcIo(m6*%!
zu7%4*^(V7%ZqM~+b0G18Q^2Cbfd86RqleV@VK%YosJwzXF!w=&1er4Vg!+Q<K}D6R
z6J?`5fpY0sFk0M25wNBulN>y8l8|VSzgDx51UA&XMyrL#i4Nq!jTda@PCk%>M|uH{
z)pI@%i+Fq+%nxm)v}AU|v>}AeVQ5DsWmf{t3cV!;X&Gm8m6&pTw`g-OFZ7bV=EJIN
z%!5mMTjs2;xmr#pD3^4pmyp?-fn8ABdC6MaVr6raJ*2altJ6gOwzCVNwE$w)+M~Ld
zCt;~7X9l7sWm0-u*>;C$@ASMr8`-xT&d>?HFph#z!^k)kS>?zH$Lw8le)_XDjeD+&
z9Cx?@#NT)OMc0@aSC3ey&9$~P)-#4)>Lz6GeL#0}+&;3)&Ve|gBl96nGbarwF?ctr
zC&J}S*~Abdtm=};FD<z=?V733mcwNK-9j*N;$+L9NUvwug^y;ECUIXrG{x(5DmXqi
z7TM}N#kS47h*+VLNJ2~LQY$E+xVikLP|AvH)ys9u*9v!(!>cEjHxI*!{sQ@K5Ftyi
zt*=u6>RvS7x2t`^?=Ois&_j)o;u1aGRpp(!cyZT<q$w@;f*8<ow{F@n1hzg9BtY+j
zX@_k505NQ&>HLGrV=L@BX;eiuuPe!{Gf}QT2D461+I=jX$;(ae-zT-hP*3>T=wExa
z|1CWg#KJxBEP>#+kWwx-qfPM~j}uWq%oB7|RDs;q6q@1-<3<lnR*m_}l6!|)O8DCw
zNqWZ*{-Y%XHEs79Vp9t0+x`f?hb&#wihxx}jJai5^!xfho>AsRb4&BQ%!H#Nca9Z2
zJL8Bsl^g#)o6GI$X>DcT{Qh9*pS)QMPK0C9_O<L!#%b$YBK!K`yJ)Ykf^D047Uq5*
zUV>7?EMZYqRqk4%%iIS{Hu;pDe+PGm1dxJbYX`#qJv8%wC@5(JKMz7wVn4S3MlV8i
zF9t_=`K$gfYbexmZt3Zl-|h;CtT>jqjo7%z_nlS!DwvhwS;CpRe|0VWg!!rz5ZStV
zXZe0xI4X3%yZp;%0Zo%=e_O}jKKe~O3?C^t38?yo5B~EhPzRCmDDVQ=-UA_1i!wwA
z6uLD+NazQGrTzE5sfL135l+$|Hgx@eB@FzJSo+0cKH9g4CzJmBLjI+1F$P4gv;Q9r
zRViYJA+p{~?&rmds-`XLbE}4-()qw&_1_#gXD5$UgjRQ`XbiFsRd=Ac%nZ^qZf?|A
zMDYB!H{Rj#9S=*FZ~qYa$1r}I$9OR^R3R(%%gU$y?x5O8>A?|OQ6<f53{#J#%{9pN
zb)3swfv4g&)a=IgwM2EnZLgAsI(@-<8u{ziOcKyGVtd@LLIk7-G1Oceh5l_v{w|as
zk&AKM#_S9VE)e1QgI-E!UzCqsjq^sNy>*)yU>gG;3u975W&O+nlY>N0iE_u7C$`3!
z0rt=TYtq)ALL7&0VTv6_8iPQcr<+H)nV)R$hqXu-<QOK<*|NXcWXm^eN5&@cEYVaS
zyEv!l9Zqod3e$*Vg;o>1o-{V!+{QerwvsOPfjP34cLvPbGFI9($+Tk(YPO}260(<d
z4(OLa=x@T-iZo-$b-YW3McvAKP;zGt^WRJH3ox`(3?eccg#@dwY5HsfibINT5c$Gk
zGx>zDX%R%~B=U_m|MqXUyQ*6813&f9&U1SNDE{28?<+_MMUmE5Od7KeS^-w9{JUrj
z5uyR=zZsXF-gX4s%&F5!lXzWsd+n$^WZI5eZiy-m5`J(3A4!Hh<L{s-Rhim*kgZZ{
z-IuSrGtmLruHfFfT46X|-f-LTG^ttFODJq^sn?Hhy8d#vENctqGc28byeIrd&^vN@
zf;cbh9VAj8!>T6FqAA+_N*gF8OQpTEgD~XK9<q(F`gBitDT}5>ClE)wZhGpwjEr8c
zRr&Q)l(5~UCPUbS$C0UK)T?Gfr<$Z@tSVwi4D*w-F`_+p#ps+n3KdcjbU;545np<m
z*w~JRxk-XFBGd4Fkn=r`+`m!fEO`Ai(S>mGe!M4nY3tx0&3~(1%s8LZW63D@0G)y3
zF)%&oM7c;k8%>m=<weJB>`3X??BT&aE%8n6o~JNT|MC0rDeDhGb*y&wIThd{&0*^p
zB1u`*{&kvStynuU&01x97&#imNe$Sq=h8I7+DfB1Qe?^Oa$qdQl*%Jd0;98<k_YCg
z=5Og3WV9H*ROa+)QlFWxxYv^}s8K<yqQlG3!KDuR$ti?n-XqAKJ1F2Z`|F|eyNDm%
zui{vY$a|*yi25O)x>X)cI|9sZFvUNu(`w;SvV<vVEpwtVAp+o<?x61pgy}ca6^N6b
zL&*|nMIJiWWY<5K8`1B{Zw0ARvOmF}T@GLpWKgm8u9S))KGn=FeiGEMzXTzqrf$&G
z+Ep*6gZ$?CdMMbAv{$-XrO+X)onZ_9Q2<-#@N!+gk-Kp#x4Rfs>c8ydi8<|`D6;6)
z78tC~V)#P=h~*L+ack$cNII82yuVN9&t@O7LG!1UYkiAnVcJS-V7Wk^SqG1`=!Sd_
z&sgJ$y;%d?%0xJ?pU64I7dPg;`YnCTN7J>f8$dd~Q;H@a2~4B1@Z@dFG7t)}<{0CQ
z&Io+yP#64kxOVl}hEC-CeNWBVM9oQ1LbFxgN6jrDrYz&BTTG5<Y-!NVt5nemV#!Tl
z8$q%96lKVmlUEIgV|FxdXP#AZ@ow4OvdszRL1?>Un4{|Nv(NVmRitM?(>6Vu%T(f?
zpC)FVhag+>v;W{4eRx<^VNu`loWp!m;Gt&px<OViaq+|@A`}*4SI#END_tnkHPjzM
z?|#D7xU=!tR7pwYB1c-os4eJdM4uJ6mhQQ&dcbmuk9wGG-q@Y_p21=!)8O|o(ddxp
z?=4VKnZm`2Gk%CwSrL4HRi?_WSlrOW@<e>jZcggq%v?#aO{D1V^sYA(8em2rFEMfl
zq${rm=y=si^W7Td<@_6Je=1(;U_I3OwL1~>_2i`ZK81nV$oN&)^Hr31ewgsyMT-2l
ztG=T~jN@#75uKZjsO6ByP4<-SlieJ)Hkn0td!+6?CT|~0hsb$)yhrf;qB<V>P=C2{
zaXd7xC@p^-YbUe;>^BK{d>7M|Kq>r;8)`^>Vb*eUBuXpga>oz?-HsYzwl%E(@XLf+
zCLHQRkZKPQmt*7zv||Gr-QYr$Uni<x4YDkTP!`Od@n(tX!nA`}(%>@4b8i>eC46^~
z<*COd?R|PBrD|0vh<r7`O+s?v0?*zZ*>t>_oWNO|-Io~sVV-5#z0lJiRT5#{%am0D
z-JdX$9jlCEmNM*%6Bsq~o>ISX9(>Mx+8x(GdBI+Pv^{><q${@y;C$J|>wO!LB-lsP
zy+wNwryMhfY4HaaAjbF#SMGp2^}yT<t6m|v(=L+Nkk>EzU`NWJuJPC4{_&JniRz)Q
zu3i-#7w0;0JH`Iz4iMvgG^CulN4Bl7z0Lw_J~QCuv%<mi8+-6!L85Oh0$>RE#SQDS
z^Xuu6lXb)i+eS}2`(uaQLr!LBHL`_GRl>Fj(mo&%BTkRsc+0<?{X+-H-Emc0=OUH=
z76ka`d{asK`eG2H{`p$}G(=3A5H#x|(T`96`Kw>{A0h~Y^lw`CuOI!25agGLliYBW
zzkd7YOZ;wPBU9+1{2JUpp2ANMAte>Jj~)L%LQ1Uv(_;V69xDvev?eH#Fn-R_cSidi
zA7D&%b9-BH4+CywaAaHCUahzNtovPv@l|hYv+#;d@;F`>n;*ql6Fn=gL6Uy*z~Vd)
z7Z+a>^YiCjiw0&|&=j|2%;8eonVRlEO7G|9$u6;a9-G;Y?by6B4h|0cMh5O{gzo!o
z7;AAY*QOwHBi@bTlm>=WPu1J=PEi5a8)D%wkK5+klhWQ#c(m^yc-%S*4;Wjqf6h(u
zkOS?_liR4Ls$6Cd7C{Yt^alj@gkaWvUtf;oDyNR^3WWgFGKmd6RYZ>B2l)&FamXES
z=aLmGHjali{y08b@u=GUA0iTjK$2U->;#m#y6|kLF56x*8lI$l)~%Bw1(EN7M4rAt
z2tYU{GHGkw!4I-E!`n4OlU84(!+xOmD5k~6J$HHekfSqYpG&peLXf_GDxDK5SDnMz
zoU6RIceBt@AE#2d++e!5Wm#r<`LMh4U@9Bw>d*;)SiWeWfCVMvqe7%m*(iE`aRzKp
z7Q^OQOg2!i6be})FEI854h=yMnD@E6SzLm{!$fcE2vAjs&%krtpN#)>zE#LlZDNI8
zUS8S=7+fNZK?<}74<8Db#CsKTZwoPr7Jv=c7u-_D8bM|KNP3A-<r;4oa-~uw!Li%+
z#F8U;sdZcM&CjhtPM_v)1WR&K>bj+Ans`gzb4WgQF94nY7Upx?*^O?`PP$#U*L;-}
zw+-QW61f&QZwe`etpRV>fvb`7Y!1j|yDT`uGKtB?l^~n4m8C#R(0d)0e8M4Egqf4Y
zVmtW|A7Uz`TAYU$1JQ*iigZ?zC~uktSx8quRX-I3^*NNszd$Ubm#fjzlRsh^{E7%=
z1Qv&5Fr+F^i$)v}k!no)u$=b8V$t1L(Yu}Jj8CR{-?g^eT^DCO{jJ#t0VggK=0C3l
zv&aJWd8yaqNbURLFTCbrB`_(srCvgO6Sf$x=a8^;@h$IeZ#W!RWiGxEH!q@!-v^nj
z$Cz*m1_uYf*WsI1V^uV(<makvPmz94z9}45qY%}<`YEREC1_ha*E7mYaKlNlSFiln
z9;XUd{HdBNHjOr!5#nNh1q6M)5I{%sCr+q;xwSp7@|LSBJ)VlQ4@9;{vO`|BM9r8~
z&t-Cx5e(3Aa|-R`Nys+S4C*T+2m&^oCIF)^RwyH82}80FNsQq1r_BSHc-G}dQXdAh
z@tYMJkL0-6o-lA0=oLq6$lf$vP~dz6?lc%@_L)ti;TpWu46>gKfgOd<mIxYKv$|x6
zW3v)u`hQpoK^HqFX!|)Y1)*o7BZ98G&LWmx%in{HM%x2%;~3R)oPR8VCPlalSF8=M
z0Q+jU3wO6?QY~C+VkpuHtZ67~0(m7QsJku%o2vyHg(jV$<ZX)FYOtf!yT&BYv}H<y
zpxb^Lr)Wo=!^-OWhiso9{hgFPEIyZ`sjJ@}vVX2mv285@%5NNRjrTGNbJ<M3P`=sf
zi>bnzx`3rpsyZqR#-JBD-x6YLPEi?gw1wK!3Y(QGdCY5;=rL*;dQ}@2oK+a84eyrL
z&U?uJ^p6xZ5}%M{4KiAn4ALZy<82BIpK)s!&dhnhiyidkw(<sr8#XFcQhiux%2SXo
zpN?G7kQAy{MQpo|h-{3E`zX=Dzn}iDNy7~g-hs`NY!}o=T~vMv(3`bFE~j=j138V&
zOHsfAi)iTrrJ-eEhNDh>o_bQ#PJRS9C${SvZytR-F;1(i@ugX-cSIc071k>r{R7gx
zA(q537SivGQC8&I3qxDub&J$5$CvskV{r)W4bR9SD>Z_nRFliIZpdHe1#SGvNyqN9
zo37bOVO$*(i~u;KM7ha<Ih~uisccYv*W}~91;g!DNb(yf7$^Z96YD|5FA&@CMu1d@
zUuWHH<=&n2Drpz{;jmg}M`<@OJcs&O_9G8tA?q_lbl`|=)sS+PBjKFfAQaXLe_a}E
zo!Rh0jz<3zL@|phIKkR7S;3GCyy$ax=9AnS&E_G(pzw9EuOq{7moDBYupxQS`?NCU
zy-d*bCU?3H{w~~P<;RzSdo|Ej?TjlWkYHl}5>Af?X0w&AWUABUnyJ@LF8Oxz&FM_C
zU16BudBk?P^Xcg&OYI<7xWp!9QCPn%A{5K{0|u+$)uqwhAJfl|IKDVwdP4-Lk7O#v
z`mHfmbvq0=SzZZd&WtyDQ#JbrHUv>;JDTfcv&>Jhs1A8kg3c%8RqUh^q#&=35|UNu
zMWTe&C}V}AeD;z`?0ug~pg-71tHkl$y60JB6u1K^$%IcU%UdtfMo3{yI5{~bE2q1T
zOZk%tlvjI?=wMiJe=SE8Z(v{+LrkAB6zdT-$l^y}a+MHXSe&8v)D(+QV!QXZ%W6c4
zqAHsQ<Xxi*AJZiQ(Q#SHI0UOI0X1@*_BQs)u$8hl9J0O<=<$MpxI0hZR5~;n2h`wC
zmM|QJ9WpN+!7<c$tdDWbJ+wl%nBMk<RyvfAL;<8yYGWVF#Skb`J4e@a4E6#Q1}3lS
z!6buXmtY-nF2C%i5n8cUTH%r^gqkOLUUuTYf{DRWRW**x8RX6sx4u@n3JE^(qtER%
zCR_h%^I<|&lZH-JTZP3*@gg6S{i};tl<DreoZ5QN9Rk$|o(*W}4#!tsN`)+BlQ6`*
zV={~H*cFVChKk$n=rCAs<@6?pOh2SSs}OrX7wp{^n!m@U#b2}^spVH;Bv0R)5brJF
zGgVH0s}RML0|Ki7t#iCuPM&UUl@AzW$mY26Dg}&M#Xn}rUKgb#%>%eqqRIu2%k5^~
za@au>bnz3g39TL*Y_ZxaF*%wVd}O54su`MPK0}?hY6?@;_@RjL$c2g}#Rgknt9ID7
z35&u*n3{(`41?6gAubG)Jt#Z%J+vcs?P3S$!(1b&=~hqSDo8r}Gnh#Y0B`j}8DQAl
z$*q~Qb=z?&I@zYGE6Gf~g({C(mq}psaT{gDqvYQQZ7dey0JauwvXnP`4x>_|cV=n@
zb+{pQ@|2rrTh*4M^bFb=@^1MB_TZDo?TX%4ICCYLDNCj{Ty@#=4WJ#z3NQ`p(pr)Y
zBO7*?We_V^u}<E3${V)2+BE}g+2Kmu;;>Bkk_nR`#`d--6B|tJKOVX#EsZKjV@h4E
zRl_u0osY!VWbn?^8DZ7(z@IgKkMf#J5oNu}p4qxM1cWlDfcvdmX;c$QSBI|#dNa-<
z%(9w}1_W&@Y-i6xnih_^`y+=JC&_?~cv!2`hmK3xWf>P9o4R25hSOARXeE40*wUZE
zL)p?@yc)~!_<E~m7pv;@6gq#!<0PKyW%YPx+TKuiTC2%>8~@gG$SHGzv}za@bE;E3
zJ|5c>a&q)+#9<~CrN-7v^W%c?E>E=&!kjAS;^yWj38-N&-}T!UnS$vcwo=(@rby}z
zd{F2}LB_I7CL2C0I=Eflz&h8N*}208egf=nKONxS`@MvXm<Pi7nbjGii6=&df;Mr9
zlPKFIO*h7wT&0IXkI8Ok=TD*`(6vkX)fFA6r5GDSM#N87nzTpECE&lE9l|4Lpv_3Z
zFs51!FzI-mkK5OTSBO1)W6MKV&2uhq#m##zA95ad!m+0^clP=y#pi|hkN5atNBULl
zZ&a>QjyHyBw}RKAF!=W@gUVb_rFpC29kVMX^!dy^QHNidt8q$ZSRQrSX)0QGm!IM?
z+hE7NP1DnP`!U6kQ-<<|eq$qx$w2H@e6`;hN?RU=mC5^9A<h}C1i#D9zUsy31rAt`
zSIzP+;4}6qrSPU+CuwU)4cE57R-ZLz8F27BNMDN)`lS@h4vwoA-Sdr3QS}L*na=H}
z7S#Btm=)Y-nuA3z{2E(NcD@coCWN=9^mg6vr=&EX8Au|)R*!E@_pt<1(t*TmYvs5s
z(#69hYsU>X?v>y?)_3aXR?7X>OEKj~PF@5>+G)97V;>NM;N-!<m)SbVq;8n(mesC%
z1{a5ME!$WnGk#qmY>?-ClO_JfyBD<1l-;o%!OkMi_Iem`F2j*B2%X3#dNnnew8wof
zBedHDWC0fNb-zA8$UAy6N#&m)^^i}pA>~+TGc6JP=%r_*1=)5PjG>WrE;rV1L|jww
z`SxxgdEXe)W+ISBMWSiBzcr7I^jY~)(4_Tu;rqof)!NYti5g0e0posA{K2M7*c%Kh
zm*Licn_9EI>$!!SWG8PIkuaOC?Xu2dm@I}c_ac#{(gX0|B)BV<a`Y$*8qfMM+rNPH
zIT^pBNw|9LxSxe^3k0_bxDqds)8v%t<nT=3pblqu>(qeQi)Yj5a?t12$svwpRDrIE
z$T@u4jA@fQpTznUGSTKb_gbDNKM1ht^cotr4zD)cDb5}IzCWT{<C!$iUh^#7%xMF1
zX^KLAnc$u6G3=XrHLr!z52}R9xy5snJrX#ZbxJPDt47B^zA#E9Ce<FX)-im@Zb=A-
z$-05!4HifrfeiN|LPZ-DXK>FN)gk&tV5*6u?GVH3cZo(-aYv7Ck630^TYPRWVE)hy
z^rUU!Mi;mydxH`A@0XMf6F+6=!`mt0pO+9qWK8T^0hE@NtT!za3BK>6+Lo?))hCJp
z?4!H)`}W=%bk|?7#cOJifzukc*`Sgu6w`Uu_=4C#CGln-Hazo}Q)p+1>Ps@4<fBqN
zyl4T*YEA+G0N~kl92nOCDqo<5U9D=%q1U5NSNe1hGG1Y)oWa_F6{rv{E0y5zhKR3)
zpX04u`Pc=3L42Y~LH8XZgZQmhZ+4f9x1{HY$<@074ahqAaJ_}d*@A8+`X1Mlj6Jvq
zCVPUS39{&kU+JRcKAI_q7SkGWFA7ph8Rl9p>w!5de~22gT~m>}_!VB=gueIdH+Gy;
z%H!5^>C{e2%?WJvZ?MVlhiLXNO)SRY2>cMl@W-jLAo_?ywI#L@*L<A4=$np%y2+rj
zvzU+bbn70pVXqk>j!O8&A<e{v&msptzQv$$u~!uhvaTdcQsXd@$&GP!gj=tRRkVeE
zD76hEvtlf2Y-~)6gKXs{>^Pq9zcpXv0F<?t<if0{t1OlFUzH*WioS0y_3wbxRlar>
zzBz70XS3OVbyf^5Xu@$OyP3Dky&7_YdoQfKrEg3?7vefkH!W7JwwQ>Vr@gH9yl^!4
z<sA>f`3_IZ_3mkbK&CN?HZ!h9r~)o$z%u&MUr5)IaGPpvH2rZFt?zxmd1?>Lh02~^
z<%@(m*W`BQ`)>+7D)B!-m}hq|A?fW(**$E1gzhI&!)>t0iD<GriRUqDy~i+#-^;7f
ziEqt@Lw-F0ejO&Cx(6u{>E+(HGL+X4o!!~s)b>v~O;9E9nuj}yss<!X=civ?yzLFz
zbRQP!WD49^g9SDCcqC7!;(0VlKfnsC&A+L;KJ1m?P^s$IJ`)2ER!VNqi4M}}Sd|(2
zoKCNd`pkeQ=Al8`akjr(C}}IGUHcn+)~6p3?iZF9FKbh;>t!p2E<5H3=ImBm=MQX&
zS!mY=UwjoEj@_7|7E!Coh1lt(Au`g|Xgl_&xi*s@f2pqpO+Wuidm>Na_?}hCmsVTu
zd9#F!$qvH*kiv7s@z%2e8@vA@I!*>*wblGO0g2l3gL8|*cDh=NrgKodkH=x?c+}Hw
zGUHc7wA0LmgxT1fbuIQEzkUvI;212zH|WXN_vh0@9CqSg*jeZ3l@n!G=KO^EZ-<~Q
zd^Ig@!hsIk(?wSAt<T~Fv&S42C#1pYK}+==e(NUy-m@P!>EK?H2<t5ci?jjqzK~Ms
zpb~Q65Y6z-1_(6bsCy{^OD<ara}EcH<`<+2xUvguWTVJmGCEvY!cTjMKE@e2#=Vx!
zxjV2c^j`wKQK}T&Zf!P0x6t$**h`<n=dq@mKi#?9nrd*}%S$z=MbSSnbDea@noV8A
z-OEgo=*QnrP)Ubdf<4%FKAd>$o=ksI4`ptQ{<6DZ*8gmaa1aE#C7k;)(3EjEag>Wv
zmw@!7mm$S#%4Jm8vVJa%e8|;j+F&6hhV`*Qu<W3&G+V-#H1Pz<3ZdhRjG4}c4X>k^
zQqPWhgH-QJOPJ0o8$mA066w%B2fHG8O8elHb>#9=Xb7wdTeW8gHRE90d>Cws4lN4x
zL&110{8X1iL2KV?nXMyhrXGc6NiY~;KX~d30~7i)Nh}hI@pf)QPLd8i=0|RX)a0=(
zEQZEn!DG!+X)Rt#)<gW{bg)K&GK$|lZQmIXX08bP1R_?Rg=mOF7*N6x;VYdnb5Vb2
zdK$T@%6CK^zir~aVboxDzfNSBqP8%QhifB!%?o+WFAK$=!hupLgN$#AFs1_1R`)vp
zIi8o%ELKMC07jApu4-j6y0F5<OSSKvsGUE$ugfl&RVxX6m__djmmCqdcE0$hq{l;2
z{^XZ8ra5CV&8a2X2U_%#Dm?lHl*JJ<RY_W($#?eSAqVt1c$|FP^z3G2n*uoG=fSys
zAv@A;U(Vew%|%HHvm<TdiOHXa5O$UMS3)Ss&qvsAqCL*v!32g5sRZ6w${Tl#wx|~u
zqO2y|r1@d@-y2E`RI(|KinBHg9KcOaEmGoHd@Fij)BErv1`e0}YYda(K<G-Pe`Gla
zJy*jkj5Zg{)CNS_qi>?=#W0bPBz%zl8yI~#ipy@_qtecZJ`d8dp`$FA@?fUG*2Sp1
z(DAGlBlF2{tA^0g;<M3Qb)dC8*Je}3+DZo6;PxzG&C}2(sOns*_Ksy*d+f^)*OnkV
z^D|@rrviC4$y}4^ehQ`HrKj(s4k*;BPPl#FqC5qW3z|z;eHPIlv|FLOhre@Sgpyqz
z+R>!+jNqyn+ip5i<1`)!oA^`{cIut-0cg%SWHZI&C93*J%O7*M9(ZhS?j~Dk;kES%
z77v)le?N?D&(r%omU+x5EY3*3phR){cVO4=9Bo8(WNZI`$lYrJ)7`Q6rMo56VR-Ln
zx(vSoqUTL+V&4eDtb-`$M3y>GDJhtBt=4;n@Pz<}GA1eUgH#9K#LH(a3~s~6Ch=t@
z4zE{!=sO<7trn#4EA8q~6igv*<~~7X@A1`|3sjl(_juV$UrarYGJW-78;3z`nTdV9
zi0rG3AnOOS=9r5%+!!k=W>zq!<*_txGQ(w*j{j50#=@nSfIqnaum>wYa_TGr{8nM(
zVo1c|(K9!66sP&w&1mYQxch}XNbM8In)ENYobnYCCk;|$JXl=9K}YNT4!k8OjpgVA
z)7Eb=w5!x3V{1nIsK}kikz@tkcIOQ+(zmt%?6cab`%t9k<Ym>VMiYqNEV+Qa<W8;<
z(9)t}tYZTO;8gX^IRp$oM~Ms0^lcM<&Nl`yR2j2!(_}8EZ~6$&6uOs4s-DZZhSCwp
zemM4lny#QB!gT-_D@h^HJ(PjgW_vo{c;8&|yPUgFLP}*q?BMf(tPSr5GgH9A2;a{;
zVtvE2wE>=?y(r8oy5&NcG=pO8QLIIp916vyDW}LWw{VMx$Y^yPgE!PG&oT?#(R+Jh
z;27sN3YNsMb)n>WVtTXFTs7fy&M<pIdMGdn&o(re81|JuzkX~`GwR|jSSrrg^m@G8
zi+%H8+B`(SlFF_<0DFLYi+d5T7YcW9(^rPgIf!O9nH*WR(h6}to4Ea!iVG=e3Y(+%
zNUlpI+jX&7ltihS(Dj!&HK=XFO?>$-m9iXBnFJ<#4)UO!0?Vd`4Ohf+EoNu;+T^6L
zDzBe-elV|ab5Ggi96|SY5fvboE=o1G%0Eh(Of6jU8oinp={@m=!sGv7G;kPFWs^{V
zMFr?urjE;nZU)MEq`h~#L>${UL^!sJP#MJgJ>@+<A+F|ZZwj(K`aVn##C2B4d&od;
zTSvjccBy@l2#2}?XLj*!cQJRA4tr#$=gKR3SEA(a{5A&u+E=|n!><SK6THEUmKoux
zQc$(`{$PUht-VHg_XxTXT2m#oQEKW_Okx5JTAk4?ozoYHXE8&z<_vOqD+QmHBK$FR
zF<~-kllQ<&RNIc_6<o>QDyi>D%b0s*UWVMd)kPslFmmxh4olo%QsKAOb)^<H(K|~S
zSXK0Rsv;;b1w|jR&lhq{FcYiv#x6tY>j#n&>zS{S9yAd<_Fq7xj}7+sToN#mH50ap
z?jAL@U?pOkZ&Wv{_DLQgD6y@V6ct9!C6D6^pi)-7kj;B(IQE;1k<fbqC546^9X0A&
z@1_N0O8xm0Hq%pQs|j>xRG-$Y26!g`7>dXFv7Lv#t#nBAx$HAiAy9ns1nP`b&2c|Y
zT~c|dZRxg>8(9R0G(P_;@<-583`)-zUkTH8HfG5$A=B0`BvB|JN*wVNJSabuUhnLd
zl1|<W?=KlXWEHqq#B&*Bm|Vp>@=kQE(Q&P3aRzYM(NxDk2R$MYk*#hnoqDwE8vw4b
z@iO$MC)F<VpYmX<CTbp7d3RRqWxJ<G@0jw=7IA^+B;9S;6EQErX<FxAkwDQT-57Gp
z@sA`e8*xwCc2{%}9g`8Z$tM-g6_7oZru2GzR^lA4wnyBMm!B*IFszIh0Fi?!xAg9L
zgl>EBx$Q6V91(w?i|6AV;%7K^&o(Ttc*M1z56vhk4I%%2M!G+AC22cHce?G=Y4&C_
z4HC;WinK1XHkm;V;9B5goYvRhyMULr%)2*lEN3TaHR`;GNWooFf&iNW2KZJ!FIF3u
z^22im_0B5g_k46KdeGyxt4nP^-W82pygQE1@q37Uyum3vJs7obgYGhHyEB+<L3ima
zDD1lHz2TjhkT5Mw40)e?MK^uachk&WB}%*FlDA+zL^qM)g>}boRLQ_CMt;k}(9k}*
zX^aSC{|O-pXrxI?NlD4O*ONSwadfxc!@LM17KxPTRFcI#>QvAoJJ@Ss7t$9oe^1GR
z@c4<D-`~)CnhG{46ap18!quKMX;$pa48qTPKX<xzjk?CSEupU8ZhSU2NxknzIHan%
zaM^A*{2BMmlfs}@x!<E-m9tRN({+;HPIc4@qC4Csc7xi06Z#Pf!d<BKmODYzf^<ZO
zH$@A}x-JM7-VhPwO`4;7?l|s(_hfN7_sN^{3UMN>U;8Fc0t`oO?qP#AjOt_M4h0^O
z?Hxd@e+1&%bk1nH>KhJ5rAUyAjpJ*AhMg=pow$b5VG$h-zEJS<Mk#EQ4NjTCAZ!as
zfOM+$rNSr{5BV{)p1Bd-rRnKM);QObaV>LCSt>6(>qizBhigh=R3k^Pq3+iQoyljB
z*k%nk72Vyv?yjZAy^S9++*fP^PyU2GERbVjVj?54!g6jH*8Ct6InLvZm8BHxy?1BX
z{vJKd^pD=PKwDrfZrV!m%1(+DE~Mr^^WtsTBVhw9$|U@sP$sm^gF`X~Y4$TAX7M+j
za|4&Cf&$m-<?T3+hNz?kdbM3zshy|Uxa`yY-wJ%n^M5-mf>{LLV0h~?R3?ZaxXiCo
zGZvAYrpJkL%zZP{w2=le!?K{4WRj<?hlvE`E)>l$rHM1LD&`<Dv&!a7@p<5!Bn4pb
zbA8R8q9VOFjBm!0PdrqiDL_>!jzyjYRbG|W<uaC$FW$V&#{zBKRyBr0yL;419~p*_
zc1^56??rfQaEdg}#<0r5T-Z|1J%&yuYS!*?k20lTrIs+X;r&k25rd$q;_sg?9bv5b
z(=sGIUW+A)T6%lS*0jiV@#EaPqUWq!==fXuBK-1pa0{1#WPeCjzc*_-dnNjwgO!)-
z@$z1X+w<b#VPRt*MDa`=F-}2eWT)gh9e+{)BA$-7T>I!69{~V5<bICvRyM=X!b83<
zNic*Yej{1s{Y?v_!&wY!2Hr@^z**g5$mSjrFQaXS%V4x{e@aJL6tFMxUj<C`umNaf
z7odlV37Fp^-H|<TTzvHh)0ISkgXuR}jq{YGMI%RrbY<UA0P(JpQ**RluQ!imF*dpL
z(g&ZBf3G$4a8AI?piAKDmGFO-4>(r40Zer11K2fea~sI9%`AohoWf(0*e4fuu-+kG
zSFn!v=B{y04UmD$bufL2tv@dRCdcp(r}_=DY+RLx`=CR7<(7Zi2Uc_L^=$*kv$Y#j
z(@_<7tKJBny}P4vl+~lms~_xjxvzKQ0r^rV`baoF{GZ+5ZGB*8;vP+`_z7~&qgI({
z^usY$2Nfy#Nhr<Zl^YEcT?67vjeT<?wE&@Nmw#{p=1;!??wbVovTjZo0Pi1HGd#X*
zHglNd7v84&inBdcgv0K#xH4l5DoM8Br@*$c@Rh*mI+4fdJCWzaP}O-&FQ`$O3H6xg
zDoaPg>F*nssuZhQjWP4fDiqQIZMf~3W}JnCaRszX{j{;|HsWx^toPevn;c8Qh~#YG
zJw0MWwbX-&K9L3PC$GvfLsH#vaDNBVE0o0K0d(a1+ULti?$_7^LuHg-KsUm68<vNl
zBL{xxSx*Il?VF=ZuUFn)@HD>RYriktYBZ)!Cg#}td`Q~lf8g<5a(?Pq6J~3Eqn4<u
z&sv3}X=D<9aS%5ukV*H?B`c)Qjwdo5ufNOkdl%5{pE1Jr<O7dm(NaZqn>~j&@fH@m
z#bBqOoTe(3CdL%w1ZiVSdLl5@g0nqrGcDEqDOXIq{Tpufp;eE^`53W0=PDcd%N&iG
z*65=o7ZNpS;Y6RKCeCgOxzP<n%1Q$Q-|rBGrqXePokMEimSi6vR<+z_yI&NA@2!lz
zMF3j=3G)B?2q_jDK?-X#KMp5ARHnPzQyVyAP}=&wM#FHjfHx0KlbP-PAJ6EL3Qr$N
z1an1w_Xnccwy@S7Yz?LE!kGuhR}=2MTf8>Wm)IJSx+-}070#ih26U<=d-3=>1oTRA
z5DmCOgI`DVI6#k(Za<?fG@d4me<z`ouAXDhFX6tIRrI(<PE!G3l<cmez1AQ{u`ev~
zBlfR1{QJ|!?oW_4$u|JgZeyVn#Rq<t+jj=BpevNwgI{jyIhG``NR=49TA9vP<uZNm
z;~f?N$Y-l)!}X#zv@3k1bM)#(7WL?^eLtG&8=BEA&0YZpwRV$tjb(tX9=SeETViuj
zLet_s!su?j10ejk8?)=HsdChLPmifxgmOX>i2ELgKD{6k3DJL_(?_4A)3k(`r2%K(
zWqr`4LxOC6`kc>en{#?)k36!@*t<5#?@9vKWmWW}wqNMJPWamBo~Uf15Omk{6W*HQ
z)0ulAefaRY?Smlid9C9_p)M2j3vX0vLmY=Kzv}HLQ7TnSWSVT=kRr}0N~gWB$GaA>
zIsG}C1^A3y@P;_chCWv`_ekBdPnh0ci|`1zx|8c<=vPZlYX!fdzEyZ+3c6;pL8Mvv
zT|@jvhWX16v07pT;C|5Y@T&W0ChV(GAOgA{YQJ-}4hU@N(>T9MC3Eq(K9`{H%F5^w
zdqnGbWJd7m1zq~C_G3@lh3Jfgx9i7WS<~B4bB{Hq^i_R;t7%eMp_ZTkA)_9Ez9oma
zNkuenP+jcm7rfEHFC2pJa$Ywpu<5dg7`~7y(p>8?868hbzXg%yo@YJh1(cVZ=T9P%
z9R6Jheivs1K|I`9wvb)lIVZ{0Oqn6i;V@cBdzT%U9Zw0_Xi0X|db_7QAV`Y@d&=0<
zqUXs;t0-eYbM!;~BRXl-;}}M3?uF?12k~U>?oBK<sz)G5W*d=O!WMB0fc2fcvDBob
zKg&2L<%5A<yyoC$!`dx89b*oaBzyU^xej`3laZK+Lrr|6cL==lzizL1#P-5Hx!mQ3
zoy%**Q~lgw6+7+56^r$_tI9yi)4`=BkGnQTSdWzd<+IneavH2$QJ+IFJsyYF8q!sm
z$=QDRjNPB7%`~1kcjU5RcVv3{z-KY5`il;ARBY`|lF|n|dd||G7(rkt-dBXnjG5V!
zgLaa)GE7In(%r~m9YqJ&qcgP~`80~K!eC2bqU*ya9onFm<%Iuj^%2>3WPi8g+}%ey
zuM@R!yK3)_Q}WH%ta_qrAKcwel;5lcs*y}7lO~}*5)(7<I?;Ii+xROa(>l{7INX-M
z8vz$|8#Dm}LY(p*%Di|Ro=Cgt1ELtmzj#M!N2qM|tC1jA105Yk*}<i^XNOvGSmDYk
z<GM_mdoj>cZx&KG0!RJg=jkX0j8}6Gy{^^?`*{nK`RE&mq0e+GLH3*cc0a80JWt<t
z;^sWf2+8WyF{fL2!Adoxh*}p2=?+?d@rONygc^x2qthw@b~w4n?M=0#q@EEKVpDGN
zlELxx?7{TV6JExuH|etESgeXxAClYhoqF<Lr4GRrN)ba`dShXpQJW6XHFH;C*3kQZ
z{yCK?@@0_AKlFntU3jdobb)~MUy?!Ts~IgUw&@?W@-h9V4EZS$r2SCO9j-L~&+q^2
z<mXh%#2|=g>ars^e=eq&I#P04<KS5SeQIB^2dKveBjDgauCBkW(JQp)mK}t@HvbSc
zvibPf{Uea`eQv?cWn@%A$T{Zv{x5mPCqnSjUXYXhstxv?xmC=z@m<m1a-uJ4_(p0P
zWNZI%*8XbZ*As^(B3$4{3aP-q(fR*SK?aD*-EJ}Og#VX;cWEPt8YEz=jVFJO{GaN~
zjgV?_NhA2=SNH#TqB2JGWwM>0Zv0<#;m=kP1M>~kVx0KJHvGqC_xp_KE22C%AoTB4
z@;?TJXx~>0@zVeAO^^rOOeN6gYNi5ww)?gJDZiuS>COys#lUA0&ehWypfc#p=5Lbl
zmoX#ePX=LL%w5gLsnH%9t5TdVO7L^<Yj+8hHl31Q|1Y!dD<+2;iQ{I$uB6XHXJsxT
zGDQ=J>-F@|JM63`*t3qB4nvIgfBpAq*gl{0wxmb&*;tqGN@w?VKutd{dn(<>homS#
zuAb|I$}F=msNMGl?`Tl+ZAYbH>5cLKCUf_RWn=@Sxh4p5B}1PIGMWRuf9PauDf@WR
z<+|cdRa?i6jg84zT3Ws`NBD|kB6ShIVkl3~_WMb?YW!*O3NmcQn2%)mf;A?t{ipYx
zrTtiSd3qD30aGn^{=07HPdWcplJ#F1Ew)ygs>%j^rVyszU6HkJm8cX{0-q6*cy9TQ
zmiHoJy6KgY_!tX4fj!FJN1doB6kjSJRuF~xH#8i#c=;DwG>qi<XXTYhh&Uc<By5mE
z3WwC;;cM6Q%;h)#*bhII%7y{5qN1+JNr46?n$U>mNI^%EzXW}QM4UGo!CDg8UgQpK
ziF0$pYdt!C!yAT8ZYqXy&ha<Q<EC_xz}ue(xwV0XQW3d%p;>-Bx6%Veca|H7xx3m-
z4JpNgX2T68wedPJDDIpq+!{~L_+!-yTPNXk;Dn=I4zu5gevMCroEx3PzD=-L9Nup%
zX#I6(N2-5Y=s9(<&U5_Y<;WV}Ky*Q+YKzIt9mnIWe3zK-BXuBze|2M!s5_NUe@nBN
z^KFPE5jIzJR{~?TYRlWqBbVG#)q*)i%kXzOUB-TA@VM2UMhvT@o9d}rOeGeccm~(`
zr_|vD^8>+--7cpD^MQc)hI*D4yg}}JNNN!4pcdc>S%HZoO<*_AzrEW3eCO=o$AvCL
zqpayYf+`-mwMr4h=9l(u^}QGh8XZTmU3Jls5M#Y{CwQVe0Wx$?>b6OPqrW;BT`QQW
zM}aM9&M>|&ruFvQ>D=`<t9&O8<!{6Ub#7y*ma%=7UW0uHDg~WGIk^0)9)Uh~_zmYZ
zQ}&_VmgSwvd6YB%T?Y-Jp{a5Pc9zppb5W9uGIokyPToxiwJ!K^M?L_3<w;6=Ula#9
zke5*IEG5l8p66p=Ul@PpBIT}1aq^u<e$*@if-o_Q?(17lvmM=pd)D_i8d%C%#muu*
z*u`|sUeTVs4LsipraQa6FE}F7HB!@Qd^v9OjW#>PN=kt!xbm)oDL?G&NyDO4FZF+a
z$wzGA&aIi9-76z-W!%83tAqKbk*f_ASanKnGCjxXXxkYsr7}%J`-gi7%p1r-$J1lu
zn&Us<^s-u$RPhB>NqFaw5MzOLBzcZ&8;v?R;k$YBSzKaIgb*j*b(P?^Q<%VX60>4N
zK8Av9F|*Xf*Y|2`cnr#vZ1qy`4j8KJHzmK*^gO*D;+UFKY7@e!gK~?^=me;<clb9n
zRN=ZWcrr0!QafPP>bEVQpH506I3A3K5I5gwWs2y6b<2ON{{7Q8_J(THx0AQ|0DB7J
zVl5LFhW?)Xav6bAGhZR^QHYMy07jUWI%0hQk0-u`V{+u@scQ0mjZ`^^_9TroM<$Cw
zxTxb<u=*N?&kN<E98_4MkQ;{F1<d+9W$1zSF`15g24}2<haraX#JTE{*Z_sEsw_vd
zJ71|3``K8nvuEOD)($b-M5=gz^dg2-9D?EFFNJEglPs_h<>;QVzA3X0nKj^h!!yqb
zKtJ8ttU5zDjOtHYYUTQEVHk!X^_g0QCO>=<SXdeqAj%ZXWQooT%T{7nWj1x!GcB=Q
zFWAX;3uE?fjAOR3bZhrhV|zsPmb3jp6Asg*QH9>xY`n>d?@ulM-HH$Ud6^3i36W~a
zV6~noiZB(tIdXr>lU)+2lVtRP5nffMNXx&B`j`TNyD8*+IHNN(OAKm-g#lT0xNU>t
z+cUQ!Cg>lmcl8A8IL@6r6qm+-{v6Zx8EdY#t1(!Qv)uhdcMpp0+H9kYW^hCDyZDAz
zR|O<bHI|)D#CZ?Q%fI%8_vZjtP`>b8ePIsl5Ja=48Tx|CRhj8*<8z^@vLS5UayNWw
zmj9gOshSC_K<;ARN$L=&A@A=OaH&yEAO2!OcQIY9Nq&{GpeJkSv<*}B>!KYKG7l{F
zNmQhgumC9ZpN0w5kT4qJX#3uNdeCjsqZ72c(4exFx%~#^!HF3Kw)wCR26Qy-wVT|h
z20X6?RN`6okHwTDpbt0F-Yq-cnY9GzxC7pRUY(AWJ_y2rrJJ^X;(rKhAt!X8>%Sag
z2|GomXaL#8zSUYF$De(k6q${3qZIz`>vi2W?_nTWSKs38FIUAcOQuW74+l}or11p%
z!f5pM#bRsvwt5B>k-;w;)nML*%c`4+6=*82*CDWx-u|O&0A>)IOy7l9A3bJp(SDam
z+gpPQ!0b-B4<3xJw(hTUo5K|PoWvs+tC8ra)3)=ihD4u8^@mlQS&};NbdM!n;Y+#W
zNmhS_&5A+2rJNB(RCuJm@oKDCe8FYGW`)h9#32wQT-iGTJw+6FVY4LEyezEtjHQ74
zx7|A_vrM-I<%fj&|JyKR8pNhiC{WO`!f6u?BG<jHR=Xl-sWGCX2%1pUr^AxS5sv3t
z!a5rZL-WW(89!_<FE~c$bTtW2w%+YqnDa#nV<i-nHcy%4cDoh0TJAHx=y!KT*+Tl2
z!FZwfP-zm}tLY{Fz#j>fz-{tE>+mb1;F{sL8BQd0H4)}IoBT-AX@i)lIJJ~5@e7By
z*G`Un;z`Mf2*Vt51{rGlN0noSmvSvWb(#<Q^{797q&r+OEinq4f>m(SIfm>a$b2T4
zz|Nwpz&S{O=p?n-Zg^)>y~OcV;2Q2q*9*(DW#fNFG$R1ePsph<wY_U`hHT^G<A-Bv
z%H7k|))LLJth%wgbE6^%!(!;Q7;F!rFlbm26y`kzvt3h07Eb>Y4cu;x!Ttym)0o3R
zFTY|1v6Tx}`g@PCjIbgT?HD62FQGTgU-4D%7ClP$t;j6Oz}!=hdF$v!eNJR`=uHpL
zN<KeeO(pDOc{xSVcBU{>tAIaM&CIgDxaO+|AA>>@#6mH@O+wi&-p|swsFrrRbrY)A
z(d`3|b_Tw<R5(St7x#-Oq?yHIMqWo*H$NI}N#trh*pgQTUV6#fXB?M1_HrSL;RRs+
zTg}XS$U*nBgxhH&l*)hB`3YC@8wtVas{5#$B^^fL2pr~D$_X?BvE+dbz0anREbGjj
zpEmHeefH63;<co27frCiO~&#(!{KyyFYea1H+^dnk{O7>zzxNJBWkcR{RLB1QWvy4
z&BSpST%{ba+b7S_mzrIEL{8A9ZH&x6p5DYXw*A@ZrY$IyZ>?0JrrU|8c6R5%5GwB!
z^PUX}E$yH+*ks_P?aQg>^b+(Y@sGP+1g&6|{bvH^Kg?t%M3EOb;*5aAi2292WF8aG
zm}FvFjeT7VP<m71<e|{F!vI}R#xpN#m&(<_JtUj5<e+*mNXFLA1^*W96U@~Tn7sFm
zQQR~(S>W!+z((%d$srY*!5u7g`4Pu&uX<F2u*m)oYi}74<+^?kZ&5)&KtVtnl<w|Q
zq)WO(8i}DhL=+UHyQO>R98#n^ha9>Y1{h%I`Hy>_^PYWv$8$ct-=^n&?s~3!t#z%-
zHgY|2$FeFUf(74uHolJ3x|%yr?(S|;u9cMbr7R%PGo4y~=X!)oncEUH@ZzDugv%%1
zUn#|ZOKteGwPW26CyXab!mpjZP<<|q#y_j(y6}jJ6YixM|JVbK9F+mY8hE#$hO$OZ
zx+*DIu~-=4*Uyoc>F1=Fl|XPeDU@t5l)gx?KCxDPOhKCbe9=N<N`g4qUUYsW17AHG
zx=T*UWkzd^*VS%JEn-<zdKy16sfNsY*Sq65Ez~2dcm5`$Z#qf3Uz~(iAIOqNk<qoT
zH5pAgNy-EMa+mgR2i<?hwn5JxMX$!7y-7talp*3rcpkJ1>)BoPsV+*BM#IV8Lbd4$
z@UX<DW>p9iHXEjv4gJntsNxOWd+1_xm%B^P^V>5O(n%H1p45664_&n(R2g*#RJ@@6
zG2oD5A0NmQ7Z+-gYiMSiX2q?#*ju#!utu9VnWnnTCw?~#2T}`-Ryn)_tU2}$sh)J<
z*W?HlP$i~d&Xfl)uO(7(+j{>fOu+dULh=8#*^zxLHzy}2A0<gk<8it`^)(a?c^Qnc
znbqcM^0Q0Mz4GNk`HsYY4iIXTQdpnZm2v2|v#_vyj@3@_)80iTW9Ge)+&-wZEK{GL
zj`+WW`qw;^?7@6H!Mv`5N%8uRAWdxh+mVOGj<M(eY|_8s4wBSeD2-QNCBbXY-@pIs
z93e>^fI9CUr&T@tZ8QIxTNcSE1mm#?joW{ToBsUyHB@Tc({>Vr-#7fvX(}0l%JTn5
zgQ&TJg6@wd78J03br{nAk2(D3<wie66YeQA_y5Y;ia+<|mvk*ii6B{1{Y9xxdF=8b
z(!Ibv;_mnV_dynQirUdNd4YW|>dn+FigV*uF+JVk$}#!HYW{A~h@mi-X|Yie*}sex
ze)ExEdGsg;f_xPQjNsqB{ns@jo}oVT|I6>ly`MNqOeE5)G!61Yagmv)kyH}wsEyNo
z1|@8q+ypJ(0#S%{*JOPeO2qg3tNL}NZwTa=yQG2%jXzQ>UygXD-!7xF)JB%^M2|k8
zaDq>!7+|{p@$I}f)Wsh{!IU>E7!ps04=eBCT{nQCdjAVQdh&%XT2r3I!RxjX|FY}!
zM`J?8UB&iBP-BDH{r>?MNq#Sv9N-q^{g7?4Yl6zLnh|6o2eezs4`-gj>V_%Le*pv<
zbpRySFkq)|{n3&&{6tS(uv8{hq#FC+w;uj~E{C9Jn6w$IPm8I>(WpG11*jjk+}zMM
zLm1(`Nncs#7|+7dhLby_hS}jT8hPHdz5*!)%hiyH88#GyP$z%5h=TYDY%Ag#`kTCC
zrj{4`Gfe-MxcYxPot81W`a`ela-;C<Lqz-1t$tPU>&*EnDPVi0Xw~7NEq<0#k_fh8
zT3Uyctt^HJ{=S&O?@m}2A3DAgFl?;n%I4+g)7|%xBE~1&8P5$(pFz0oPP14_rGNFH
z+l4k?^Q9<nSA()j^Ef>4aA;k{@>=tzVa6$J;WNt77}}B1+YNVbG8eAQx0ka>FGf$i
z%=1ILTrmVrXmt_?_H^^JNGZeg4ojSaK;$!06Gg)!o5g5I+=CIO<Jt~yFl(xw*?<lk
zUM;kR(o1>Jc2~SmTOnh2;W1mCB?NrCSR-018D9f4O^d-5t2NZI`O31CRSKioEPTC;
zy#y#j82XQyKdQGKG-_&aFlZa(!aDDVZaZfkXZWMkg8#l#p`NP0kgR-3_bmhR1-<Ol
z(BpGH$RuvgjU9B|wD;wjEoGmEZB^A%zI0zkyMYUZ7=2F{RI^5-+~1tJ@v0U>X$`|%
zG=v8p-=rx;_5K)?-Ti*6#8m+}O-h)6Q5D5thAYs?N<E`r;gl-L3kYuC(S)Cn&aGZP
zE>H4q0}a)?q8ZGZez~kSjhw3J!)CLc<}}))G-4PQxJH!Ui=Ec$=Ju36{irj|!!mST
zV3=f8CP-JU6#cIIMIgGORC#-RQryxS2lOmFL_Ni!4Pf||zAa2&BUS-1#TwE1A-eQ|
zt`i8WxQTnrN~G6VtY)Sv-2rNth)U9QoVL(wdKcsBH-ex~)(8Xye7p1Nv6BAJMMCX>
zX5o<+QQt*&$h=)$N-oPyELs2DLQx`4h&ZLvA!meX@Mw%%yFNbQ)-!KHn<_27(*c#n
zTZper;<h!yc^|1ro2>j!Rq_|zrl~d~94hk)1zb#5tJH8R{qfE@0W&uFo;PSC+4K|Q
zl3%HEtrP+#vR+Q0XM8%FhN-Jbtel9+H2_dHSi^dgyxvk{kJ5nCMAMmlWF}oa;<)6V
zQ?guJm`Q!5zFm`@M&8eH6spTBr*5Rl-hir7TK-yp!G3!nqdw1FJocs{QBloEgIaQm
zbzi$Y$<}k$G*WJ4*t5U3L_e_So8F6a27<$9SHIh#|9owX?xA|(>bn}@oZ;ncAJUCk
z_no(Eowx|5v9d56OO)8;XMAKy!e^@=(1KyB@2w?ouvlJ?PV;6=8K&j|8CBQ%8RQSY
zZTEd*>gEPG<YH<jmthcmOY!LKk*p7GNDSR30%=ciYtV650MGJsI-IvqhdxSI1@{z$
z(g$-(>fC(qw9yZ&3Hv>v3AikiD}7FYj4zEdxW_30n&61Iv6~FDe!kB93C3G_vrzlr
z#b$q9n50rr{6o=2UraXJ%|O{;iqyGm63Su&v{w%qKr|*NJzoekZH7NNL2XryIi+Z#
zk<rbLZ){QQQ$PLsPYba{mV)$Yw-o!kNb9*(0}iVR{F;kk3UOEav+x@>8*gAYu!na?
z4KVMipg4>lIA;E7u5l=S)y1-|))8O0T~73N!c^Wdrr!&X_QvR+T7V`AAKS7ow_gDa
zWf78SXsbc5*j`!>{z$?1jM{p5|05>vp?92Ve}m-FI6TC;Z08{Nhv-W;=ZC`UHZMlB
zq#VxX>c^OJlP=ccNy@kvl2X)zV=^^VQhwwIQM_R^Prd+(SSW6j+cN$9GP;7hizf1$
zLm?`#o>$aAyLw}S;Rfyu?#B>O(kr>7AqcuwWFg$Vsv$gKP)XWL$&QP{7~T4XzVs<E
zAExpeZXY=*aN=O5JzhE}oWP}}cNG$}EKVF)(~C+L;y28%&#BeBwTZxVctFH6CeZaj
z{?HBm8DH)X3)RPUfIUCz^JS|iF0b}IRHD1sAJP>JX{LNq3CJ9}H|M}NM$0`qv^&mk
zkDn`1Jj>@m{X|Q0yA1OIdfh=rKzXt~r8tFZqAUCbLApKLW#S2C@^+UyVbch?h);S{
zM6uh}*w^}<4&Qg*5Ur;b&O!a0WVx=?yW*v^4LP(;*5Tso{Au5K9XQk_CAYa!cj2RU
z7BhN!t8pYXFT`A1PBZ_OOZczwtvOgyorE&A&RHfa(`9nv>Pab{ggASzYQ12Ek>7~d
zE)&b<Se3bhXhl2cNIV8X@)MrEEp|P^6DD(wt@oCnFW*2>;L9~uz=@Eo0&&XMcIARk
z8dvhf{-g0fCJv(K6bsT+@i7#5Q@~WEjQsGoKb<iJJ8|H)o5x#|eLz(fyC(&}fyeVp
z%XbXfg(=jp^LIh*?-P)5yLWn0C(_%H#u23%@zKkGW+fh1uZtw|ejeA)wTa~us;?G;
zv=Ov04}UNNWL>c3NXuOk!L{5t=Asw09tp{!_2?^jRLf9VDDSrgY2*>Kj+pCMOv>ll
z8n&(ISMpz$Fi~@G!hK;KnNggooJiH%^5&R416}WI?%g)mgtdB=Au;0|v8tknQQ-z8
zIkw31F4aVr&7EG#;oZuO5d49bsM(gqUg|dQQ>psD&%7XZ#uZ<gL<g^mvksrr_<&&c
zXjK#Es&6NO1%h>hYFT9l@YM91DLxlyA$nfD1Io!F=+lF9{<3Iy1KjY(D7Id?Nf*6Y
zf3Eh>+52|PCdIVpD+b+^4|uugFNvMEk9B>~)nJ1~cfmuNR1M|I+=CM;cmH>6{S&V&
z-I~SeWxq(W-WxvRjOn0L8<>B1*xg%DmPo=MT&m1O7f4p_I$4{j<}%Q?S)b_qUZZ}%
zzan%IF~9XP7GzOfmZC@U$R;Go8jFn>1+mGmrrOq5Z8pBf6&W+`^DVc8{ZPDmI4JXQ
zKAGtBYe1Pp{7bQ3-uve7;})CVsl-z&+A9{uYo&?L>Aav)y%4f-psBozcZpNB{uUf`
zScz}Fy1gKT?yI8ocu}i>CC?&xPEF29Y=sMKF*C%|`;-@lrIQbAkw4^`P>bcjbFJWZ
zeDk-C{mz0(F6>3kgU5g}SQ9WyPY;aj>&Nr2cHa*Wg0w?BtQBxqf@Qo<b{pP^YrQaO
zoDwTbjhzuGi{ZKMB`C8MQFZK%4~rary3E&PVyv&mvLJENFy~n-6!>t?_imB<IAgHB
z0GcqWBK`H~Vnpkv;T7k~JAP>3ZUpz{#~B-I=KGW)CglksZ2okx@NSoPH%kZ6Y-_EQ
z%q%Q)mUQK26xrzfckTm|+#Y>zwiS^}Y#%8KOlSNw0t4nLY*`&9X_AOUUQv@hxFJy%
zk1N&^6j!hXH7oESl%>BfCiI6rV!GU-`i@9>1qhrg7~@t@sh=rv58`&bbMaAcn71Im
zaNsr1wi)=uNP@j@3CVr2sRF9w7RYPKL=u<tY3L(Fyvs#)V$)kk3Tq}T%mq`dt&n#g
z<POZ09iyNPR86Y=usR>Dj#(xKqQm!#0w9GOq0Y!@Zl<@~ii2*-SZ<xjK~=l{$}e;+
zLv<TzJMAju8Vs{Eo!sVUEGHHbAl@7e=JDyR*w_uc<iFbtN>YO!sE{WXgy`#?4cvKL
z`_DJ!S|03-yA(4m8FE%P^aW8=^KmvV9rhfTIeE1CttJ}O2+uwpU2O(W<5kQdks|py
zHAUY}3f$>uovpGLPc{vPb+Xf|^0n{CRr6Edj1PIBTnggXd!u|EUxB9`ge`0<{5;a>
zeu(6as(DTrTxE`H;I<v-*bAp-W|Ci+wv&rFGkdI4wa^C|BlLYTC3c0%A~C&emV0rV
zW*!LN9r*3GgRXMMfBxuLvHdAO1rq+FHx#8tO~%*8<}0dvqvS2*iWf3!@J{^F#F1g%
zV_@v-Mg2po9IkdZZP2p7t>*ya-1m@?uNq(rtEutsq0*O|+zs}v7wJN;dH;C9y*pr&
zzpo@zbnUP*84m`TH}`GP2Oe3B3hQZDZ|@)HZY~?pO-}5BAyxDsm|Fu?ejrWfCO<F$
z@m?cDF{#HyD;57MAu!hZQhm>m?9OzimhNzfFc6aiR6hBkN!!siK^2}v;yOHS0jzMr
z;r+}iZj1GxFOS-2vo}`E``@WpCSn^QR*_{x4pnv&8XVA7-*=kZwRvfn>Z!dEGC1O7
z13;C;VB)8oX>{DkdJW~NmR}ZYHZaz|mc6{?hR;_o_fyTZ(Sz#dZ$P8{u;HsfpQZTT
zD#evLK0w+ly9Hw@yC++>1;m!q1noR1e;57%ZIKnycmB7$SJlhF=p^wY*vf|N!p2-e
z5LB70J#dT7R^lfCvHXCJ#~l^rjYQx;nyPcK_}s0rgb)&6BnkjD6m8CGK|1!n5%qvB
z(wqf)_rtkvyUR)!+<vZcWMvT7`FUI*moo5IwF=&N$-1#0`X^gUcXm%8H+)aFLLBh<
zww^*E0@rpvtB5VgO|EFWfD-`y@Ky@|<sx}qz?-Nc1{3o(f}Odm0ke28`afuh&mB#{
zHu|j_`XB_(RC1w!F&Yv|iU3WLN~zliH8Nj`=R2n#?+_SCeqVT$eCe02ga!Y4=bMOu
zMhYeO+n@?VrJVJl^PMg$TDk|@_C4OYR^pc}?!R(E?{s%Eq96S9W(#|6+CqVIv;Qbh
zRi$bJ_iRS)x_7Uf;_Cz~zK$xJtm)-^7GD3Hl96Sx#F1sYQcs4&*c7XBn)HhX%a3~Q
z4s5P6$tJW8(Iv|5W_856dcn>tN_spR<{H;LCKWILO=GgNhQ?qCOC;V@RV|C&PE+ak
z)=^I2P-&IHLQngK6E!%FSdIoaq-BrXby-f4l#@~Td#0VX-6(EN-h%r+vklYFRvFg^
z&Z?dOQ<w?Fd0zYQx6^R6G)k!ixYR!8ns&m4&5}MA=7r9(G5DsO_tZjr-)X4ZEy?gS
z`kX&h=d5}IY@8j!A8V23Pexv&_b4swUcU3rKa`&HxA?xHoX#9a9~oCO^tK$~_eT_G
zvGH&U@f5p0Vdq(3|IrZM@KFOS4MD1$@L>$k@O}3^@cAlLk5WCX4SI4%vfW=)V?ajA
zdm_4f4e<y(Vi{Ik-PDnTL0Xl^);XYu^7mi*4>dO{D-bpK&te#zb!~%f^B-yqzdS*L
zZsBnue!A{`4^k|8ebgs9p9xGL(3;kM+;edO%XsfDJ#y%6Mhx$H_w1xYWG%N#0sZgb
z4`z?Tyy?^9II>zzzZm*JH7}={=B*<A-j_7#R6Kv$1aHL{y!a|Gpd5#_k-iS-Yu;>6
z(!vq32t>yaN2Rr22<Hi*97LW4k*9Fx>+bnM#HFA3OD^CBTrW)iA-k@hg~Z6S^50>&
z=jJ5V!|-UH5EJ=KzK=tH)c_RC8H7l;4>9bAKX<Z4>UNzA@v4UXxY|)-rrb<kcWlRb
z8@UnTY`H85yAI?!CY^c;tr^*T%BX5J8NZJbyT!~mWPDk%TMqMyeA&>@WgRf?!oh#P
zKYkQn!zbdqEXWg`<!=yG^fa3C=$*<8-$Cr8xPQi?1scVA=ox_yP-e*7H!#==kgOD0
zXcBju^_(@Unb~b^Ewc;08TKk@roNqK0q-pS)w(!CQs#mxx_|Xsc5;Y@$|0xT7Pqd<
zW4@<R_hJ1W411MQ9tYw~Vi<TyF=9VJPLdG6eKDaq0Uay}->Quak+&mAw<@K^j-e>$
zJ_Z9r*J580E~_8z8mas9n3rY+FZ*|-OaGWkNVwQ8;-zw#x_otujG7vXQn>tlJErd?
zw0<p31R5l1&@mRuC2a9jx&OR3k}90!bj-B(?)F-P>>znJuBmfkDx1npS?AIo#=NWN
zx-wfz3+Qm3yLM@{2bZxS@Zk^vmUBuP9l~@5G3Axhd~1P$^OyH&VJFycT!*eQA*wzi
zF+rIV*WUuTD**?E8nB=ymjrZiAlH5Vh0Hj<L2%l(q7^&Jw*=lY#)2{@(&-qA;gq0F
z>oQ3#LYashe$uG^l~d-x%TW>S4IGL{XJJqr-;%XBwn`h0;fNdbtG-a<(HVWS4bHhB
zUaIJSqkAx40T0)nN<_;~v8o@@z&{C3Nuu-;oQbwdKQW;<cyUo2FLU|%@-zD$SMNf=
zCviLd;>7flD%U*Lz@PEt;V;8wB=Tvpw<lZ4tW}6~u1Vh(JCD4guG~Cv-x3|aOg2kj
zUu~jq)K;5LMYjX?b_2i8xkpCL{1J+-)soIQ^S5B@k05)Z=ic4h8$YuBH@bAR2Q=*V
zH=(x-VpNeT`T_4=WgBwMJ?4aXMHrIuGkC%#^#{$M{>bmPV2ikx9lY2boi31-30vV%
z>5DG$1Uq!WG|Pt3H=;^beb)?E1JPXc*m=r;^TB)NetawBBwIcJQ;7`D%SLi{t?sY@
z>f4P8mfrsFZP)qz@v~P_!&u%Pph6t6g}nFO@2zp)BEgTj;KmTLi@?@m(sBJvW90Jk
zRZxouYC32b3u*a}e)3=!colVfE%D{~X=P`m9ldc{HSh|$lwW+i{<0iiUSO|7GBfrE
z6X&b2Hmd85gpe_2dg#)%54Hbrjm1XC`pF&8YFDg866=b=!;2wGU~r#fW<X=Kg+^AD
ziiTLFS^oszju~ojrf^L;i_+Fmk3B_`8ZxiXLBRt0p4t}l)Cgnk5hWi-@g}ZirANf}
zQalgRzkTSyfBwdVC;!F8ypzUm5pZCrvx;#%_!Q;GH99qOt72d#{!0B!?i78P!-R!p
z=;!=a61Vj@W<Qj}>S?{p)(b9IEW*@#UK#NY^(hiLOXfIs3`k>mKPFF;&#D)a?9L;{
zo$Ky=p*C;siDGKrSp0|7LO@7XxJT14hj@6&&u#In!vMRv8ajHMxq2!u)wE$0^jP*R
z2>|LPdq+08+&e^0>CVqEZ;^gco38bJd8CeHx?(B#-&w~#w4lsZSBnGd!hynJ$<;Kn
zeap$z<^KKKk+>EXV7%h!SEHGMl-fm=@v)IAT;bktrjA1N!B~nL6P<?%$|0Wv7La}<
zQ%IB$Vvr&2D%C~%mLnQlIlrWSP?E%y-wWAsU9I5~j2gO7_wx?{6M*lRrG*koE+-pR
zD_aZ(yk!%l;=4kowMrK^HbMb?LuYRh=?6E1;U`;Tqy4(DgcjkA0~ussd14-Oj5kpA
z1(B9b658fBh91T`a>fcn0Z6>22S)*|TTMUJv2LDF)w)D(pw9x{enMj1#D^XpJLJIw
zF)WVuMZNV5Po+!VxVdcDu5htl&Mb&ooz{^|mhbBnxzbH}dIrb3t7l(L8*%>b>CEs#
zD`L1rw!tCZ^Bj?ISMXrI6Pji*Ios)y-NV_+-n$$Zvb~?b+uAj8y=X|VbCK@%{yW%^
zuR=r~>hnNUeP7-VHGyo=g!>%PS975z7>!*Y@ly{QIW2BI<~iGi<JspK^MMX-PAzv^
zl^G!iiVKeyoV`ra)n$R&${rnJTS<fcTnd`fivZ1Qx!!3=RfxdM`K)=?-Yit)768+C
z-ZD#>gy?Vi2QJUEQv$y-LVHgmoY;2T792I^eZH-3&vvO*Vf`Jdcf+~IaCDrqZ*g#O
zdvX;*Y}p&xMZc0g9{h|=N;X;e7Gw$AFR)NvR^0H5!*OxCHmKHOkH*ZJi5b4f?V%ZI
z@9!SYdnU$oE0fL<gK!*JN{(n~TaCN2z8)CI4pD^REl2A>giTW$<-|8pNd+%&hi%p%
z6cHyA(Sw$#8*5(YHr|&DVjk6w8h|_!n?3QB^=U$z|4@gG6}{J+P6URCpJ%d*b`Wx4
zfALAUk==EDis~G3EpEm2Aj$Hk$;-FKO^dgy{m(MCOnL5KD=tUjrv4H3CBgveZ{0vH
z2LG{wD27<po-e+_!*Sc0xHuVfxt-$3<D6Y>Kde1HOXc*n4$a(_c2B6RUuO%#U-k51
zeF{+n#+<um_Fs_J!%5~YW4ys5+mn#iz$u1Nfde8ELq-B1zV}_fk2k!V&E<|SH$!BG
zs$G=Tx8X2Rqrh-xb`d^*cr|A1jhymUKf3hm7vZV7Pf-t#uiYDBN$~&WisSHLh(iaj
z@qOrv|HHYA@jdXtaYLihU{`)uDP^gYafb;`<yLP!A6Rg&tG1FZx1aTs^g-CM`A&o5
zeJO3w`J*U@x!^9Jrh8p>amnozFw;_z{^zNZJ@fkByPHcB@D^w8RaXz(m{sn8n@798
z@7wJIJ6n(*R6@wO@@uY)m^L<8|31ow=GIFea@jX@-{owYBx&jC?Z<hVHem$Aox8X^
z$ioykrn~uVfvF-r7W?wRIaXlyc|{G~L%);x#4eW+2C;$%`FRB85wqVz(S=X<Q|;&r
z1ZP*5brvS3?v4pkxI4|Q6tNUO70$8)w|pKavH<(|Jd^EE0z0Y%We&bnd=GkEi~9Wq
z5gjaXOM1!W1x5~D+vo|U_W`TY6G&cyqaqUyKsz|Kj&P!)h9gm)V3;q7t`isP8-+6O
zOFVJWV9EHC4*pK?V7_3WUMHu7K)9d%->B9gb~>k>@BR9wyWD8j=TVeDZGEH5^~hrs
z_yjlv=pus&VpNlCtyC0E9PRq;hcA-f1yk#fcn!QySp^Mhy`LYtZ#$r%1M(mTvDOB5
zUjX}WPhv6c9l)yBX`AWC4Fh!<1h7Yxo1q2Y64<SAl-R!$!wrSwdKwb3u{kUc(?QX$
zPgf5>qW}@QAGu4^#~G#Uu4(QAK|ehK;hNgo_(wbOJl!h)*5H3I8^X#T?hUHsst!i3
zQ#@0)WJr(I0e+Cnad1_>+7yNx`iOa^vs9?}R}jO_zTd-B(5Hi`VE<n_>8~hoZ0Uhg
zPv^H1vlKVWH4Q6I0q#iRAUAAITkq!2wp9N?r2GjMR+~_l<;BWX4H;F*Db$!w>>u=Q
zqulQ4B|Ey(2<(2xIiVCco<zUgJjk}(tnWoq1brj^o~PB5^+FhxCjI+{p_T*mmu<W1
z7sT&+;2)?Z_4+UM_6<``@b7-5_!)}Wl4VZIEmwKA^ABnx>Gi)+8>pyl^<W(1KS_~4
zf^Z20%VE2*JEr=f?y(egEZ?`^j#}#I{)-rkY+R0QqD-!Bc{%dr`d>1te?97Z9%S6=
zBVWODZLJiz^9ao_Zq60Q3CMkI7_%BPw;c-keP8|AB_A+Q)H!9e?r#+h{}>l;1M2d7
zQAwT@@l+D+d^HbuDE@nAKC)<)9N0dZy}5gb%4}5g_E@;yg1y8YJ0Jw~)irJR6$M%M
zS#GOQaqU--;{GRt_D_^J=rI8*g(4S)u5D&Wet3EFTtd{vFaUW)Ddck!Z@&<zsZv+l
zR}<*#9-=n(PwS$8b;!RS^=SvyCf2&-rrSTAbMBxzF#UVb`5)6xohiEhgY0-;jnq|f
zXXHBRnVgSpVyfPHo>R+hDk|YE){*xP{Z9^8#CBQDcfTQJ`3Z8h@_)z<=2)YvW3`D^
z!-;WXRI?UT-!~k%8efg@<!&Z3S-P)jhPN#F=?0u0%+R)wTHal7$Iy}G2dI4~A@C}i
zv%C|d{c1%p=O$Ooy7+d!IUilJfWJS3Y)dWx4a$eomxC`4W3PM(=7dqO7v_H-5+gb4
z&3jSH?Nzce>F&+;*JBdzE<JTxnLxM!>7><S%4>1EF4jS%LIhrn&>d6R_mLsm{~U(@
z=pmHWLK=;U!`58}mZ?&?Zg<(0E<b=E7f#Fprdow;$OBmurmGbA`9z=9ENZQzc?y+<
z=BfE^#}{JVh>RHwH!>QowAc|1vvO^gCSuHc7~{1RY}UGEX|UvvoH~Rg&U3@|0}k~d
z<SqvzZNU!pZTS@@I#tGbB}2O)Hu=p{8r^1=T1~AT-)w)p`UCQ$QmP=BLt1>B!cxAx
z;_sH`pRZ-GM4vp4a_&NxJMMGMyV}ecq1_C3BqtO7v7xBHIe0+0S>P6rNuK-{?P|O7
zt{@pKa5bo~i@=-e`y`zon@fX5pqosirQY6Y!e8R;9dU4U&~ChC+s{;^iZlzR*~)t8
znin8#Y$IP9va62R5w>lcYX=wwx@(~}ukm^dt-Dq-OG`(T1BsR1b{Z>-0IN&Ar-HGV
z{>z5ls^ku7OKG6ch;-08@4dvMbteUTEd?MGl5e5^3m4p1bOjlZ4R4(bX%ZLB^4I=t
z!G&MzsLwtq9z%2waw!Q}^wlNxpmL*ULS9R>B<kN2@sy#ClNwO^<0U6d`Y-l$;UDZN
zmR>_|d}}PJo?-s0*qIMfDxA+(^TX+NkEaE<z)t5zFWPMw&oIbI-{&{?J>V2gS{{g*
z@HN<e)ZgS%EmTj>Ai0kB{UWd5B5A|U_u=I`cu4X=T(qg|{_$mfN?9D5L#O>ZJI>bU
z55FaX{+eZdZ-e5KYK0Ns#H*JqJp48%vUkNShD&DOvbYK)Jyek8`%?`bhOa|XgrB0*
zVC*MceEE+&(Oqal>DiyqM+x}Km4o*=4-_{Ix>`kWcw(s1U)GWHDvL1AGQz64QNeVs
zq0~C@>*#}kn-mHUu6yy)b=<aE9SpB+*`iv__<pl7|8w(Gp|&KUe7KDh?I|w!;^nBg
z(blu=0nfYB0@q5<XPH!@J4+Z*0|WqQ0%q=r{L@boMVzCB-guX>0y0W(I}@F-7P>Q0
zB5_x1xx6B5uGC{|%PEERR<i*;<)r>Cz-TzS2<0#jT{-_1k8nD^mU4O8f)cSc`%|8F
z*-EzrE?spx?wU7;F(}vG8VRbO?KWfPx&0o;NeE`cu~drnCX=%NerJ<J$I4^vTK~26
z1QjA;kPeG<4L2^qJAM?+qWbM(7x|r$JlCi303$JGE-aoM2?>iAPCTRCC1>jK`=bke
zsDy?RYnhY|UlgFFX+cluY01AsPN{MyePOXPLQZ0Ze{4Za5Z_p1U(A|$_NBj(5t~JX
z5OlodARfcz9dx2)g&s+)-C*UFY$~_^X&nV$GPbbsfcrz3`}yYB%Lxk8I=<}BqR46n
zU$=k9lK*WTOZGfMU4&HB4pNzN-NM6u(Vcqj-uudR1_2{hsq3u7=N~YYz9g2F*en_H
zFn-i~Tre~}fW_0)(C_t#U3#;60(CqznUJ@#l`rf7T|tJg00h*!+)GMc;wmL)2JkC$
z!fthIGu%vKhQ@dF(p2r5i|{a;Uj!k8E6meczt(|odkbVSf5FYf+fOpdYtVJpI+<U+
zi~r5;@i0Lak25IH`SJWv?>h!BfnJaT4!zvrR;9Vgv)**tOd8#%zu7+jy5$8$67Q&~
zsg0`}8)r_4UDpUhaBN){$L^g3j|R?Lc;)f-#7+bh=A+6x4PZ7`{tZa`i+cZ8Fe6#=
z@E0S*Hja_eu#Qdq*h4|jVb)u+?QBlXMR{NgD#s@!yuf3bXO-GNpxlGr8R;fG$^YMO
z6_TFBa*7>NYIXM0x8PL0pP=2GxR0Zpo5e4Z()J1%$^YvY|3I_Fmow;iseC(}Y6XWa
zF`gl;ls$JD|Jxt^fu_fH^tJ3zEaUH`-2bDuzWs3zkNtnCt@?aW!HZrXme3!6u3zg|
z8ohsN0e-)rsaHDres!TmN(X_eD2)KbE7$L0HB@iLwK-gJ8~X<3R~e5=l>os-UgJIK
z!@qZ!!YZU@)RJ~{NO1XJeWIJg4;L@!Iocx9kTT^(2P`bbg?=a00Oi^bzK=?J;s_Gs
z7|2Cl@HGLw(w{|AG3cnW#hC!kWyTsM8@%O6Tgx*O>rRut0s`P^6SK370*g-fUq#h2
zdP?Tv;0b|E_Q8BE`%B9Sd)9s~M;2k{NVQy1AB2EKz*6TkzU15Com==(7v3Nh@<R3_
zWzghYi=Xz2@J+pFox~3ze(>J(NS(0a`*W`*bW+PUVEcETEL5TL6w7_LiQC0&#87|m
z$<_&MaCyl^c_o#1v>U0*F+y;#f$RPL5WJBUus&E#ki@j)fQomv+S0XN4yR1y3to+{
zwqKJk((>U2NI7OayATrFCA#e7NkP=qb{VY+T9>6_1$B&SfMMZa$ccmZY5vq=Hzu+@
zWZRip#c{&HZRZw%Ty_~W^X54~GTkk|6hR<+p=O6DH|rsPx6zZSMG=&P4uQ_>@lVgq
zedI;pn&LE)L5y5c_6|6Eg-q-i-Co0YZNZaQmf9O}uzoIMwT0BAWN%L{eR3qH9SucU
zy81piuSkUXUy@aOZGU#zZbv5F9IPT^PbzSe%w>fyp5Uei*$}v0LI{p;P3zm0ZcYm&
z5)?UFr${R4cE&rm*}Fk$r%`wNN7fRlFXPa!HW-$hr5&#hvF2jJOw{oXqm#%?h?ein
znGW4O_zMxE&F=df*UQK@S6FRr?UU0-LJ6gt{nkIS<a;;r6WWP@-_I*9gK@%9>e+K6
z?*WasMXl#<PRoz$#n-S%-GAIJjw6QBv@B1~!Wg6rAjE#`L>V4qfwvj<i3MQ(uK<&k
z>+?q%M*;6gZLx%>Vw7nwd=-S7QDDJ!`XX&qqQCN1Id{^U#C4zy$BlN?=_TV4tx^X)
z1z0^4l()VyQ6Lb+<a#suGZblb=d<GDeL?0aU)PIg=e_Xipw2_|%!uHN@#0lbg^Cwt
z;hNx!`k0Pe@>Y(g0Um|L>lq$M!0lH*iGDoFymjwn`Ym4Gw0XO{@=Y#VNWDDd6sov{
zu`{o>v$ITiyVUfy;9-wTfCtjZWiEy^MF5U|d8JCGaTJ&sDWKH#naDHFArtQ05S>DX
zlFAOjUss^QMhY|olf**t=C@W7y6l1e!`2&NrQ$EaNw**+5HE#DI0~s&J~^38Tf36}
zd1qEyJou}8!{i0H{my-SMb_E5s^w&W#lfSfGa6N<!1JiH3gq=5#OR<Mx1zB?^Y9LV
zOz33^+g#U5I5|pv<`?VMr>WO?=dI@@r6Ovy7rVdbpVNtZyTE=0vw0PTVi4VH4vI(R
z)W&Vq5excrt8HjX(Ww6t)&aJ+H7Xht7mF5|FBm8C0Vv~hnQUwIAYN<I$Nn4d%YtFs
zUN90IT6zS$ha4^w*LtjjWXFc3lKQcaw0V{Ys#c0$x*)0}PA&xC`Kk)v767z$+qJj1
zmQ$pdH<_`Kcb)?<@oWD6K?CVKAIOWQbsyyDPEOi(-@*QU2}OcR`LntyCiY#y&e~mN
z(^<<q>oqNn%|nbkY2cHrmJ1(0s??ME+&(+L_NLdy^FH6thEapbFo{fFpm&mx1#tWr
zJ>+$3;ejD@a?EUR@Zh#r8DFV%OR_@0BJz0Zm7shRGu2TWfvzc29M``6un#7Q!grq1
zz9S<Ei_SqvDH9~&<w#fEiS8VyH#`PQ@5-uryUrXZ4(d=+4}hnuYIS8S;@*o=5x;jp
z`770I<@6r6A%A~GAaV@}fEjm`79F-mAz68=P9K!Nvh9zNvcLXFj#KpTSbk-iTCU@M
z@xXA-(+6sj&&EoqL-YEEUs5ycvVVN~<X(6DeOkKLEcAecDds9P?~+dg1U{N;Y=zop
z<B0Zix;c4|YR?}kaw{U@T<>5he0JhBR#wAhdPprhb1B=P*8F|!!qw)8iUpHi(69-S
zL0>R0z>9TXMaTyNWCm;{5n9@ICfl{HnjZM73O)eS3DQYj*3Vt;f_;Ac{KVsaFgp(C
z>|dT;HR(A!bs{t=n3SS+JbDuWbuttRT-3P?Q7Fdl@(2ccZ1(+lznJAcc5O7yj8i{q
zwSmqX=_S6O|FB|#{8cjmgDsA-*@e)6F=d>owM^+;9mxf+1J$RI1U4IBCA8BH$5oW7
zAL0sXvz9MP6ZXciT*uvd*YkOUUKn`geKgXK-g*r_ofwX4G%tJuf_jyt7>mJ)^B5b~
zX)CL`B*NP}k4_oI7-|UB6exMMond8KDjgB8cQYyG{dd_EpjvFuQLH-00@$MUHFB?Z
zen7E`Kcd=2grg!yl(@XD?Y&o-XX3oj1TlN*h@1aXGqIH|;^j-0B-^)hVnsiOK&{({
z8@z0@`i3zQfnTCn?Yvs%+7O`<jBL84B=@%A<M3)`QrboC+exE!mrSd|2O&6E&W7GU
zwk{~3jXZ_iqsIva?vaZ=qK%cF;mh^yX@cZZlT<uv@5#&;n*4J;$T77O?L7850!M*W
znXX?@w$#TVSf^fd8_P+TFo&tfqfO<i)BA1|n`{^2IQT>*^8v?M%QKs0(;4jKu@bcg
z4%^41X{2|;)nNyMEntIQr(V+;-+O0-zV|_<`4!)MM>>7a+O=l1ta>}#mW7r*$v3W2
zMS`a^ZdMQWv}A=-G-3gB8tMpJf|okaYWQJAa|_k{X+BAG2Cu#dTNwEj{-i^@j-!1+
z{Wic5xJ$F;dsmp^Ze+bDIMOu`hVbJRo*Zt`&Sm+br7c3GGlh-No>`Z%^4g1`Ytn9T
z+y3$1y)$H5#ID@~?0#5YR^heZK)5}iKkELp#Upgnusua(^O!1dUsKG<Hj_v+)yUfG
z=RA<G6IdQNm<0fD$IQFUZojp9O0w80Ep0QUzPU(t1Q7AuVr{B;v0-|~38+i_{KuBd
z0zzQ!ws)gk%NSmq++`BTC>U$xTrq)!Xq9}S-{yet*VH+FEDgPQ?K7RwFu&*NSWdI|
zD8E8SJj>}!n>Z3w-)tQ$H9cMN+-J-2s@cpTrB)`4i-50#G}yB#$=Xlj$VIncX%d?5
z*817HG<g!CH!m|9Zo>Ci%)R6Tw>4a=jPBsd$g-Ia#`Rh(@JfMB=-&23g0B|obDSS1
zZ}+`NY9c&T1~D52JVyzbCyJn=CQHqU*OhTagS_ASrhT81itZ`*pkl%?vxmaVCCKK&
z!br<V@bs;{eQ<h7E34tA_05Hru(<tak3&d-P%EzOF~#mY1uL*sEPXiDkp>ToeWnb@
zx7M{=u-m>}6)_uZG-}yRxfW4B5b&zk*~e^<W&UbP(9XUp^l6gH1Wcf@p(c;AeewG;
zER&3=aKBq^VS}0MFm%`LiJ(c<aXp1>IZO2ddH6!RSNi97B3y=pH3%C!A5}t*CS?*}
zOs;EKp{M!?tnA)s!>;tD9`i1zcCpy|wiyk(lv+#0dX<{D+`iMB*-59@2iAP`4vB|Z
znmj6i?@pZ>igmDoCLh~D!~6ga)$qW}^olhb=L<xG)?Q9hxgTJXAb3H)tIt7y&-c-;
za;{`lyKY&$EWgb#t*?%AIE9E*VE)I!iMoI#R=S4jQ=%5b@rCa+m)JvgM!iw{Ox+e}
zNlho3Im-vfnO$X?Hef|>1xlf}#9A1_X4w<?1-8TdB8YO|x0o=%)a}e4Z{hxvUhayK
zHKDV<?qeEU95Zc8huSYxAAW|Y8{7c-Lfn+q8_v(8oF<Hr>E}ibuLCb8;}q&FN!9sr
zD>4fYsFbEsamaXGB~$qGmmM~FDxH1H`Bw66E=vJ=mk|kw`ASV$U!}>Kc5i8pk=rJR
zIKD5s7eWognCs^|mnP@6?LK?=K$JHDhmxulpM>Gs#zmIw_9~syq}Q`V(3@eb2&fG>
z(&Ij#H6o65%SlGmws(wDS@dBcqCmpREM9b%E8kf6`<ztSQ@1O9!YM+^As;Hs#l-9~
z?JhC!?3u<|Lc60ww3K&TV%w8)gDn645xyliC%Aut*v=j!pbk2DG(zaDpGuIM(gfHY
z_Ql^5j|xpPjcy97^FhS}gA^$~<0C0dmSlX_kV4HJmLBPpb+_$Fx;=l@g8H^v^{#fm
zSBgt%M1&euSW#}1@q|qtBg@}0@WX0%@A*F28A9zZ==C+#dRfBi!40K*9}Dvi2_|(2
zi1L{4qDV+@0@-eg_=vPbb&I+SfUY`Y)z5NpNy1?9jh_adEem9JjQcZt`B&Up*v(ZC
zl{UgPmr@T>H(wjw-~YAiIFzA}EafuDG^Rie?ZCOqQ8ljmY#N;!X`1QWI{P}Rno%!-
zl-|Ks?bFK06kG7TxV3?iQ)aav&U}O`6gS||NPj{@L&tt{gv}!&=5t$<L#n`y1zWGH
zYr99*#5xjmOv>+{vvzJ_qqc&rbI&pdXeV6>UyZ`|nGN0x9$-10c`=BM9lsv1eRu}Z
ziKiNC6I0(CZT9McyC9Z%j3dS?n}CP$#h93(qVFJytpvJJrP@Sjg9qcRO9K6S*tRUE
zv!<oFGs4iBkJbwD>F>mjk|MN{B-p1jcD44KFI5-ZFS5ma;Hnx4PnZF9)3Ci}a7{~s
zW4i%ZRX5-KmU03P#7%`5s1Ze8Z|pI>%lPB<$keHOw{Z0{*S4~foE*GX1aVzb*K;}?
zN+2T(hW8y&RCVjT<>!$l_!R5YnH7GA=)<8K-Tw0fE4y=|Vfipz|14uW?cgQzPhNMY
zduD7bDieW@vju$S?Ao1^>j|rP5r-@ib(z~YV3bGsdyx~a)?^3U#cAd4#GVU6_6NGR
zBXF!1JUbl(yfXS>5vJAm&RooBJrwxMOB}@Lu3`X0LQe9uA|YV<QqD6fYdm+ccTx&<
z*K>8uhXRVOGHz-IP0k7}gOFzz+y;7=ubLxZ4FZaYTDTjVY73`Kl~JhOTCyNv1;moe
zaWKB&T|yX0Wjb(}97vgAMhNzAlsT)CH7(D1=IU6>Kr5@628RM*IM@VeoevZO8`Sr4
z5z}R-t9y&$GS2?=?|=NUf3I3>RG}<kd>`7wQ`mus9&{wCk7sn0ixqAt$<(K?oKQFb
z*qg4vVX37US3j8w{E2ZugOGEH76s5bxXomQN=TZ(r<<uhPK=St63-VJa`R#Po@E*O
zB9Hc0?L+fL=Xj4&e0Rfcst1&^P&dVST{^?(g`d>Apy*SSeu&2I*C9VyfOaJzcwvbU
zreiTlfbJcm+8N;&je)*4=Kdk|AdvMU08rjKspIeaP)Js<A}U3S;F<L{hvy-g$kf)T
zgeD((BH%2;H=p@%5RJkOPe^>Ruw|6~{eY44eCu*6nN~>-7>}8~Da}wM>xaDOhqI4+
ztD_qC2YaGJPdirF!$6hc>adLW5!iI|rx<}!QG;JT<B&{haAmIdc{((@g;6%KNM~?-
z(`umzRTW*-+4Rkv1a|R<w?2gcBeu(cj67ezItPL?8me_n#&|;6ey-&bnN{hum~kkL
zRhrN;&A3L`?BgsvTS7hfQsOKM_FS%yz7#o~9&%r(+sf9IZf}$GEST-$4y*`%pZ4~B
z1W3q)-bSJ4&1h4PkvUZ|zi3|w{qBr>vBzDltMWWsW=I~n>KwKj<m2I_6U933IXerY
z?N%G%ExO2SHzKgnhLJGOH{v>yzE*#`L%%%io9$7~u08by<LrZo%0jP!KfRGgGkQVH
zcQrh`2G`029nX>W;r@-{3&1&xoETk+me{@=&T^Sml|}mW!>m9i4ZO!;)uFZP(}6_@
zhqD!a97aX=85&e-Yl@8u+Kk=#2<AG}x)}?opY5>kcsvdN$F{WCR`gs%RySeDXnFCB
zu|OG$ohji`<_L4#&O2<-7aQ3US=4A)Ov~}|ET>2@V|rHdQ-knv0!)AA>B&6B!Qy_a
z%Hv8`OZ!4vWnBx7X}^@h?Eq_V(D!X&;1W%^%yv~OPjRpdcOtU{=V^g;=M!+4DR?G1
zb8l(1BnC!#bXqTV(aTDwnpSe}?m8^Te@4kNo89Oe{b<wVYuvk&?1ARVp{CTaY~4}&
z1v1V6sp;ysRmw=eWuKXO?5`4O`E+rwKljygNx&%V5Xa78Fg|S!dc9!9JK%sZWui^`
z8M9pLSdvds%d~oXDJarZEGVm<I2c``V3W}Ot#8$E>myh7v-oJ=rq82qJ%zqCi|Q3S
z9CWjr0HUkGo_a40*bt)99CmY=>k1j5iNj7Pq;tBsCx3wNmcJ~3c!Tog6udACQi1_f
zP;V(6jI4T+rkypo?7(5Jxse?SPlx%jsAg0a3Pfa|w+tS3hv^(1EyAa_MJqb4D~aAF
z*)IK1<evM5nC-DWF(-s9Pz6eNg|WWrm)nORUdPr)GJ)@vO3F{VyC0r1+tQ<xNH*8b
zekNod=f(zCmkliTLQPPf3KOL7@s3e>6<TKyY}O~59S~gRfI((TDUOpC8sm#h&&P=*
zM7X9hD`;PV>3Y(j<wta*X~33`#R~RGh0El1X$Ga=rqlNr<ESVnUV+{*dHdu6i^$i0
z#Qi)LMpuPR-Q9#ur!O_XkBXfD3+y#PL0WHbsv_sRq!B=6vjnBN`^Lzz7iw*xAP2wp
zC6DeV@waWoL6^CorcI~|bWD7onBtuuDA(->Xz#8+Rb{+1)H<auksE)_wQ1i!0bKMy
zKgyYf6qJ}7W%%x;@+*n~4)gs+A#dxruiqdzY6ZI>i=fi*);i)sn)3yo&vC#6P#AqO
zdSXOJHL3_1O9g&wWyZW#S>Bt_I~#8@ALoRIHnV_PlwHYN`%a%fnjJ7>8rBdV3rbz_
zM{!rM!bzX6+EpGe&%e(sa;ku+lqYZTShdV5noe4W46AnOsGfP<G+$8h&bH^YQL&o3
zW4KpxAEfAK7$vZ$pUhC(i?m;YZ3mM+2}TLn5YD{Ob;d29Jzs~odf0y5PKV?UM&0ib
zse<q0q0PAc@LAimVq)<OJ*T+U?Uv5&xzAXvLs9&0VQMJxJs=_)&+`53bL@7nYyW0s
zG3|cqbi>IFLGqGMVt(^}^zcy7LAp;+t&%FBDwfT2zd&~4%rJ_WHy@M%`?YG_(?L#j
zZBAj1;RM#GqVvTNuJ|A6%oXJ`f@`+VtCsI3PaZmFLZF#Unr*0ZGCOvjb*_Nu{Z9wd
z<ep~`s4sR)Pf4RkXkCLylmZyKz)HI_*{^>x*&$8pQvO8^kBsb1ls;g^q+a8dBOaZ2
z94l0BV;5(!e2Ve{uQCLqG^y!c(_lHRdn8^Xq@iR+1QM4~V%eG1m77Lv_e!mW-m%D!
zDf=7;w@6}E$zh@K?*4=hvdl0?12o{9?Q}wP;8ju+Y3hF9KQo)@b=j@VAE2lE@Vn56
zMK91dgN_SwHvUKrH`j-mk4+`5ET+usjR+x<eZd%C@33jRSUjQ48X>GOkvzh;pNvzw
ztkv54X#Y|J!<VM&g?Zc6A||ZngX!5S^LEpB_t(W4e2apGQ4)0~z$E`hjShcZ#iGHn
zm8XZ1mf{bd2tps2q3X3Y^}ZNpXRRkX$!u<naxfb*bjV1|s}C};1H9GDGFu1fcIUn^
z*I5{LD(nE{LO*I2<Vw_x-nn&bRW`7s$&E-jc{{9@FFvPscNcTWv9C@QexOjV8-?p@
zcNs(jiN5D7;ha5W#%sMGrSRCV6qvwb&7YB$*LJS0DRZ}=U~9cvcBQPT&~d+GK&yK<
zXMVuqI(({oLR^@Bl9Jm8Qd5zfLpFA=_~z_#=1h1L^2u9WRmHCGd3d+)a`d+l7~;`(
zMg2EFRC)O3m5<mT18z};5W&wS3RlUdz9oq^RD?wIjb-c?7XKuLgosV^^x-6)g(UN;
zW6$f$6?wBf1BlJw0^25<eZbX5<;_Kft-DQ!XW&{EdV^yBiF|gdg*0D1;iHn)>?wM^
zC@;z@Fpp7#9O`~t#bNZoZP{Vln$Cs8u~$npp}38rGb*DR>8v=npe<2i36k0<FZ(HW
zHMhNc8T;fk*`a6iXA+-4fTjb@s>+p*ISy4nc>aFWaGKju<!6#2q8XNYe}O^iDqKBt
zgO4zoVUX&N4AQp{*4>&V#mBuZT&H4meWcF~4fKr6gF{54bOv3#_5}-Eux(efS{5h^
z>z8Xxw)Ht^uj`6uKS#k6-~?2InQ4vIl9|O8gS1Pc73K70^$jv2by}w;+IuC(ov%M$
zf}iMA2&*^x(%{4Se3lAZ`5u^<XL3;0;)B6(ZR_dcJImrjVGCN#vbYTqm=}JI%5xG_
zhM&SB4)&R@8kKTpt(=&rJ|6rDIOU3B8#C30rnKiuV9I3F{u>S;)~+GrsR(-0$QAGs
z5}Na>U~*%AX{Wax$57%t+aR7Npp6LOZ1mv<frkUq{z<P3JLO=D-#izDR{N$2ofG+7
zCOGR?23Gh4dW{+T?Hsnkc6Scj!6ikrz!s>#j`8vtTS*qevZ^^1Ch|BVN6nYs?p%sw
z?<oH4+_~JOPGyrByRn1ndd%nzLD_0o!1T_Xna%>|36Z^)`^-}_T%W`78A{Y0)ca?B
zpG=fYIm^|na_0uqC1y}z<(MznXJ0HkbKgy+R)zyxUi(Nz1Ugtn`D*_oDhjVQ@!u~8
z+yb}m@Z4K2dXlTI6T@<LDn{va@thPnH@rs#KPJ$qde{3_hPObya8grq*eAb#d&v4m
zt~8F&!u!D!8!ohb{@KZIg*EZ8ufZT4AyrlI$B#C2=liyVdAesiNqI$3mO9~vSvaSZ
zCI8VhkBBDufxOH%q&Z)sN?YtW9ZSMB>AMRB%h1Gp!y@RQN`c(Ms9{;J?3!w>=wnwt
zv$t>V4D?v5Q{VS0Wd8_st{tSc@j|F6RP{~)C}D)CtoMXLu2zEaUNkXJgnj5xW4WK%
zIOJPhJB!{*CJM-kwH__Ec@us+Cuz6SH&a5WjVneY-~RSEGhsmdfFqs=0a=Sq1Q?ZS
z0d&*n>|#H*`|De$9OUGg{4@}(|EzCdgEwwyduN{&P}A9iZYznG&+Qxc6JG6C`xzk=
zpac>SEo9DK--i;--Avc}c&4MOtOXVy*Igf6IKvEh3z5(ADZvJUH8-N0St8o^gCi-_
zO3Y!t9+eB-S8KQ1wH~fU+=*6H*bU}@J+ZbW;#leeQ0s6~p>hi7^mv8V{rGcaiAl3#
z1`Z2ZH_MjY+&&$%h<cH7RK=7dD2QU3LwA(1A#wnI*`;b-x+7N{=5W+U5_O<H^+EIO
ztetRk4t*bLwzM9Og#`@(9kz7ON6dWSKbL`W@YL?Q+qrpq>%m@6dl%YxO5H+?2`THT
z$kMB?G_8(nDpW{e;i1OBABBK1LIKvZ&ke5k{mv(}COxMQG6*_f-^|-p*#7v0$*113
z4+N1qwK7fdAV$Ci<Vd0Mp1fphycLn9oV*b}9t!Zwx${(<bm39-r(*V~0?}DF1Fzwq
zB|fV~+8t=v$;nlQT3kbY+RnaPXNkdg{K#U84w+89MV&64z-ncdQS4fsG2E)RYsZ8j
zQJPhB!BXv|1l||=n<=~crkAWjW;9$xBa;9$Z4I9xvPNOy0iRY~BWviDvX(%OzF2-G
zuO>yY?!L_V#5A@)jkNgC%myvllNn<3`3M^K$xVTsl!2$OyOy=y4UvpDkBXG?dP8J3
zQJ!^|X*{*2tzskB(g2YXhmv=bAF4I2DY(Dk;JPM$Y5vrtVr8ck#7GyJVku@NFrRjI
zs9Sn1OmHGtk*K9ACxcX7QT#*guq|KrA;33KCE$ISU4v2UEqG2(ku5&^vwYqDF3;{v
zc%5=stKX{KW1zFB?8UrMV&PnWt6SmcboV%<;SLqxN5rU;*2L+`x^yP3oB97M?>eKJ
zT)H(yQI1AL+94c3K~SVw2uKI9P($xcdN6d59_dAqCQVTidce>j1gR=Yl^#OxA`*HD
zz1-KYtaI);z`Fl$e$C2y^Uj{xd(S+x^XxtBhw75t`r+>~S_*&PZL_+I$9^`>81@Yy
zaqZe%^O>rJKPO1lY8}p<a~&M`d?EL70<u*>t=p=0zZYBB;4W6665YPmn=(wYuS{f(
z?CU4TMhj}n4(v2;+#~!JS#nu_)3DymEG9HUaf6Q^A=K)9%dp0=L!+&Ouh@hvSMmLV
zRng5gotkI59;{bn5shCkdm+0*URi|~Ds2)<suu=6@nhoOYWmo_>p!<M?y7Tc<l_h|
ztbJ`kEB=twlOovoa|6vc88CDD)6JH&g+g`Xa|yW5_cGm!_Q9D2v-)rS>Y#Oo9sOH{
zTm-e4y4$T34+aeGjiSTE!t0yRO6I#7{QY)U$n8f&qitZlT`&;K@Q`Z<`;Nqnpxhci
z$Y*2S?D-2IaB9x=g8hyf^?}cR=(`!YUMuLtc88#9(4(B&O+YaXr@^!L_lr_m)=)j?
zRsR@XNk;k9f;`J*qd}`W>E>tn@oU1@*VB4EU`{UV#wm#fdj!S^;n)5(1GmklT_X2C
z3A9yA7#OEW$WNgpQ{7psv8k`0xsoQQ>ghMHv5bGKt(#3_-Qj52j1em@<Q^QKHMK()
zyydp)9qJ=>_tzqPBBzH9eHZfwf!j*d7VUo%`4CnC+-_YnOnIHkra<IrhG3CT8jf%D
zjRWPg#;Be``^T$?V0yL5LG;gJ8=Kt5GrW*z;R(&(V|Nm27}%LQX|J@f?SV?q_-!v;
z=qn;Rn^KggZro<h3KrKP_Sw$BJ$67uN2|k~DjlLs)yKus3C%Ai78XM5+lu-<1-ger
zI>ZPQ=|aZ#8+&Edt`CL%7Pp)m<w>(>Y0^eBjorGFAIh~|6uYsPvy@mCzHLvoa%H2z
z@LqDHE^XN-URgP7{rN)=rr96yvff+00$`YhXCLIj2XdY|K23ddM^$+W56*7>;s}s~
zpIYwo5rku2uk=W0Vk8@GEZyC(2k$4J%$TU!L`6o%dP(8FtX3T@n&*wGtsZL)-*9nh
z8&#fNlDMh}P4U|HI_rz_mDKXKg7c13JexJOMa5|jom)xL7mOY9McUqhgztKVAq<2+
zMODRWChX@zE_q*035gV6A!tOhS=}0<9Q|IX%IpHth<*J;+!_hoV}=0k1<(dd4r3c2
zMSX|f7E?}N=y~DImP?|}JBqA3o4Grrmgg>JRd8jd3w;)?_K%0twcR7JYm-ZM%K2_0
z7eXLkLVDF$Dyw^k(Hb+f(F5BH=N9DIbLW;kWp4qzXO6U(`n%C*xM@elykU7EW=)kD
zD5_}vygo5#Z!$V`m&i+Ky4y@e%?8e}Yn@T?;M1Ok^jLN%-^dQW;wm)XjWCcP8tgaL
z7v{8**)ZMI#-RUjePoXy%70QG?60M^(r(;T(b+7H5xFHizM8&U-8ZwV!>%#olL+5t
zt@T`j*n!m&@8Pe^)#EJ%NX_(X!btxV)$IO$O0KyXc!K159_D~?^)AhwB!Lus`)LE=
z2C9gII1icexVK=PLd+7@a8Ydc)uxI4!F5dBs1vHhFtWGMwB+XVgH8w}YUZLB{3RSW
zBWqEgt?9F8NI5JSZL5cMHoj-f8)$53OcU$S?0jQ4FF$mBwZ^}@7c85H)Wbhb_1>C;
z5#U=J%2l<byP4XX`XjbLaNWHKZSBy6U%*Nh6+nj?8pMl6S)a4#_ioJ+#A^x5HT7<D
zkT4;?%--F_k?WumpIzHeKIEP{v^t}K_@#SzS}{ZUDhLhN>{jA=RaUq4Dd8XQ3iqgR
zc{ciD&G1q`dlgOH^}>Zzg36{z#x=o#v{e(~MV$>Q6{oZVU(FnspDjk|544(aN!3s4
zW>%JTS$cR^c<p^HGpW%1H9-p$9X%P|gr&fRH=WyMS)ovTOa~*8Nw|FE<$}7R%Gl%0
zKWgnkQxY>RF`LYNmLu^lH4Z*I{@!|Ec=rv{jVGO6QkR~-iMx9kqS@V{sH%GC4qS0R
z@vT+jU*su%nU4^c^I#$QM^P2(fmvQ_^H)+xdyj!~Tb&dIu~TuXQtEDQWnykWovb15
z!9Q#VTzy|>HS;i<@b5E7nx&Dy=HMI$i@MMEr$w=fBfA?&lcWtNKQr;RW`qVMbZW$~
zlH@>AO|rI@&c*M1F^>AS=un=kwn<$Jcd{*ikoYo$_aj!^C>OluyeIOqz^T~^oZ=Nh
z=zr~Qw$5VPuh?Fcm8@jEa^6BZLqvp=Q*M3vZbk$d3sBn`o#F4pIYJ@>>a{DC*$vzV
zi$fbzz6nE;{pV(#N4;jc`nzDCuliO}S0LFa&s?yZY>2v-Um6p;&6u6}t#XS=uRm><
ziA@XNIiV;O$s!KLmC!XWq%G1J(Iv?z-tNAaYDMj|hs)c4DmJr$$1|wfsF(BqK~BX_
z^XR!3z(x#U<Q^{^FE6r-Gd`6Z;xApTUD|a1jZEt4vlT1@*(v5EL6kMmRMhqj?C-<s
z3;c^a#*FSTW!4GqWZ|H^1^TmUo4Hk8Q}pwfbe;oa(eq!M<QXN;tG$;xJNIH7HA@j(
zCf1`wHgtRuYngLQmov4`jRja9!-@YFWwM&$<%F!lpCsphv;r6fWr7|>jD^_!$rSr%
zt8-kI`5!<1lZ5sE@+D=VzX*DFSx-rcZgkBSG1~#WuA}I8uRnS%2;|`En?*dUYvgrb
z>ce@XdV-%0x%u=x@!Gnn6sLJR-jO}pU_UY2t<Zx_|JPg3@^r?~J#M=HhWyV-{%gzN
zrOYWgg9MnigIOd<aA2(jT^vOH*9ZR2%7*a;ghM>9a&zbUu3cb=KVwPyB0Fu#_~fI1
zd_#-$?4Nb?j~KxVy`V>XsR4=yE*T{z{1{7wO_&Zs*eEw>P&-3F)9i;^By={5SD;Q=
z_bS>})<NN`M2OOSX)6=YVNGQ6#2a+<!;Yb>S9G=dQoQ)eH?~C7_a9Zty6CpP#SC)H
z^%0ECVvUaOfQN3@aQ;(KIAq`eS&c0-&+ZP?t~?Bt8l85mP@UU2Q;t`={r6G*#UxX?
zsPE@}l9Qgtm~o~jtSKU^RoJF)^nXy8L1(>h+{DDuW0vJbRP<vpV>XVRl++If*FXAN
zA%4F*#?6noVt|v{eML|vW(U1p>M0qiZHVXG)p~bR1zx_;)&7*`#>9SPrJqTnL>n^!
z^ZkwU6m~vnG`Yn4ZMmeRk*S@50au>Rhe&ZCap?vtd-*+a567N&CShe;QEm$dd0Y!(
ztH+l{BBOW~&;;?kt|(c+j;R=Cibs5Tb!e9)T+<1ayHs_m3)-0z7REdA`S-77OX+4f
zP^s6d)*kMoew^D}rq)vjc64x=;rAa+1E%vS6WxYFuCTz#_DFTRz6r26UaD34sw#Wz
zepMOKsVsDV^$KW?4c!k_NM1&1;y-ZAYAif+&wsJo*8PswnBK?X-KC}E9CA}@Uf#Nr
zGiM*1I>DX{qGaa6t+B4JLf!P<&-W?eMZCk@4eP(u7~6v!bq!me-)8u0jPes0ES6LM
zp>`SwctQehv#?kyCAv>9YAV<kzo76Ajeq9Uxs$lAHnWw}VpYqO-;!#;C05jkfEeq}
zKnq_vq)S`s+*g-Be}X_@!^<Tgw){$%j6q<cRlDv(JLDxtWnH5f{_6v`6+}AV7-|fA
z&nncOVLvIM^2y%dO&s?ATkc4FU^yMudi1xiD3<&nOd&qy&FEJP!EoH6<LU;Z?UGW-
z`s)irs1%9Ampxw*^Sb|y;lb_c=&adZgHDhrIqsK>dWrBB0C92lHq8TZ1f)pSuG5}h
zQs?`&1aL%jh-ZKUM?}(1p5Ee3Nu{CHZl)z^H1;he<5FU#nSB&|q|i<|W}oZE04nQr
zsqXC53w`t64AWQX<%M|SusLEv3MVn|Z5{T4QY-||DfjIpBSY(5o&>Rpi74<;X6De=
z$IsI!Xxnqrg?{TQQrfg#$$^vDY3kAiD2LCoPC%)_w_6(yJw0L_pv;+JrVHr-(lmO)
z@6p*3;!5@A?y!v<7Kr!PTU@Gsoq<LJ_!e=~`P2|^sT%Z!{93u7xZR(`GPh}5)VV<x
zu3@8F>=b9qP6cRKjUe6>RQSgJhOybK=To_`;pIA<hhv(3QC0dSN3P9zCg$1^MBD&P
zE+-vt?;TvJb(@&>oZ~A};!<;`_NMjR#<xDmL^roS7q2W?fHluJSfU$i=%rDoyZ&X|
z-vn0hiE}!p;lTF&rDUs7%G=Xm3FHTPag=hxP~c~-BwKA??1Js$kj%l6OG<dE%)^JF
z9AovIfy{P#8d)v+C5obsOqli3OAOO|04&t+&eDvZq*Aj1aMB&4%c?8;d9fmr#`^5Y
z33|I<wT=Hyz6SRA*pIgT<Fr}*I;RaFBr1|>t%-<qrBYXr_3Sn}ly{V=n<zBsX9py_
z3f)h&cyFDhRLV|G%h*E7tQZdYxVq1mOM900@j{4!@AgQ`Aki?}++@?s3LJ-{I+eZ}
z-1UCXVP$CayHRxHjWvBT0o6eW7*>6y@}Z3)KwUGC;+=7})%yN+Sr^2^#dlOS&(6=M
z3~)tzp|K;slU|n@2||Cf(6I()_KwbFcc)70A10WW`8Al(^3{lnhNxR#li%zoY7AA;
z7*Bo15-zIi{>+hR6JSG&@be{lxPTaJyNS4UYmdXae4FM3RfFWjQBLL;xFzH=LiZ<p
z`K%xM%MDU9&P|;Zqm#JVwba(#F6|{}l2B``E2pvrw}2jD3FN1eOMw}z&k%Ku69M9V
zQWONe<)U-;3Hq*Nu6<f7L<25^eqKk5u(x&xLyqdt7U56NGa@tJa8f)Z^V(&|S9+Ia
zC<y{PD0b%0b}x$D@bRMe8$T46rDj-rAj5MQ1JoT_LXO*R0nqmduO4?}O#L+FHd<u|
z)UCzycS>nn^bnr7MXG6MiLE2)$BGT^e2Ny(Fqe_LcYU;*<^?}ND|F{fa6S=*MDLmR
z(NB2WRHs|cSxr()YTH!gslnfGAU1QoU9m!grK6A2iimI6N`K|s{=;%QDNaG_V|4gs
zQusLhWlCw~E3Ro~@Xg~VJ?9qGZ+#`Eqx4kI_wA<pU>`<*iJ)h)UbGNzP_kv5BqIGy
z*tLPEe5N9{L&Cy=uQ|_R^rkKm)dumd=rnM67ZYEVWykaogS5RV{?C2^S@`As+1U7D
zHnG~kbe|76rJ|3BAY|EGm%h9md<dVw@MUUG%S?>k62TXGY)zz9nqt)75MEz$v%A1D
z#+j=7$jDdYD^NQvAg%Pbq)c05N#Pni6|}I)V>iOGO<=V7&e`4c)GO7*Sc%dj;YTOm
zX@f_s(glvvht>MlQOZ~RKhAPG5kzN%#v+SHFT#yrm~Z}k-k<O3Q_8kjB`@sWy;V~{
z-Wp_&gk)QGl&~=pd@?5CEHm{zLmbeRr4LRz2Vd-CR<6}Z%I;CV->e%3>)C;^gWhSD
z1$n)KX2B$=LUCC)!qy|+`pkEqc+ktm*^w38kE(M`%tuboHC`veBX#vLq#Xy}FPI*D
zDO^#ZOH^M!&3ek`NCUnolR8Sl%*@P@sa-Rm2bdX{Lk*dt;#d;;vH1LveVh&E0?@gh
z^0&WbU;i&lY12=|O1myd?c~UA`|d8JW~>Nb=Vt^~rXQT0H9ni+mOuJWGu^++dg-`?
zM&hL$*z(qToP~z6at-!iVN9@K^EMyQN1N$*Phm95m%Fv)eda{_of*i?r&iTx5emn^
zQfMsMm3%0z1m?j}KJ@SJ0-C6SKgvXvG>-JM|2(64RVJvBC(s7_4}bV`<QGNB!4e!c
z3W_H@<MiSbZ29hk<vhkCeEPpKa$E!E_&cA%NdOuc8Hf#i7TJ5Gss39ineRYn;qSP3
zPRODC$a4uc^84Jrk9w>k(ja?kdmH&ZgN}|t#5S;Y?1QUCUX;)Yxy9q>nZjW~Vep?@
zusOdul%Snf7$KjOvh+;%7X$v_gGXW1=-#2*Mn$n0K-IC`x?6va_3a5q$js9m-Q&*R
z`&voS2^e~-NEZ9LHP#1)a*epLXBfx%u|*tweJc&(?_2XjA5lhRM%bee9bjpJYFFP(
zT-f@Nd*{C~`S^MI@c!S~nDl}gKI9wZCd_r2fxzmzCb^F0=5B<#15B;!%2zS73I{9c
zBCp|U<r8%1FOzwSgD^e;7KQdl&)}vP^ZaZv?2?=B1YY0K9ow7YU78^uL#<Q&(c1O$
zpwD(2r7FgyO0lbJf_}zJ6RbQRH`cCI$1J*Y_4~VTe_GE!TPj=^i>YY(nkK-I+Tt-A
zW6!kq!>{>I_Ipsosw9*5?2<y7W5r0egQbzBxRi~$YCYDl(Hy43i<PnI4V4m+T)bt{
z;}Hc@&oINzOkv*$UVUvki|@$A1pg1+_G=VuhO%I$hFKi(BBqEex+LTD(%J)qF(enF
zXS#6*8B+0rIH+y9w}C5(hPsHQ_6d*WjEegx?W1%zI&65eMijW4Cjqu>`sq>MwKm2S
zzuU)XJ%K{k$oWByC`aG;gpPeAn`!kyWxC%g9YWJYpf9=};^1q6I;_c&pZ43wTpLb!
zyOfzNU6;)iwn6aJkA9ivgFR?dO>h~Zx$(-)3?1s{RGRqHWTbRp*SW)15Ek`zrh^yn
zNK`_0Y;54h<k&aY=a&WJ#23R_khku!zue1jFr8Fg?P=+-Y<2vZ6NxlotL@lT?mBah
z3GNupv$0)gTMGH?<|~y-+mK&s&g|8Pbt)8GVZmC?uoAsBF7v%4qX3DLryp}q8#-F%
z%RPhb#-FgBDqO8IWfD8EdCWKNORa3y`7|trmw##<@jaAKsN47RR1h(q21)ml-m_pm
zI#?i$_<r9)ld6`_S_@^U2f`hnAGAnWpEGg^b3vifkuD(6r_Xx(GP)bH`VcJwN(3I8
z4TC+Pl<x(3I!6n&Widc=c+a7+P7@)cPkmOcYqVaU<QjlEcaN{^w;w(--KM&FxSpW9
zPLe*Dn4NI`3~bF~*PuV)fZL@Pb>3+Rd)vp~liCbEPpAU6uZA!s@44(i-<k>V9g1sn
zAJn_#re38b4_XvTZK0M4o}&!Ui66GHFK$U0Q7Uyv=@P^o8dW&w#IqY|_j^%eN&?v)
zk36eFJ{&Jxj`n4aEBWnJKfwEt8;WDax5V4aWn1dR+~gY%H$)I3!i02P{ks_4*hVmR
z#{mu9*{xb4^8OMsW;RY_4coUr^I82gRFGXw@%NypFl@U!<$6R~-z-+zFeg{3dMaek
z+{UUYuc$l6o?FSMeXaZD+rm;4&Tf?m3OSn;t(IRJK4vNS$jo~&mWl?=B<>Pi>nW^>
z8v6Lj)Nl3qftYLdAU8LW1%7JVZr6Q(ZLNcpQrfW*T;{SSY`3H3I6q)m8vD^3@vUOO
z+Y$(6WHx+uN-J61t|w=?_C?x6zTV{zH=e$q#jgH{r!uX(rs!!Q@B0^%GLN05_WJ?h
zz}uZzAC6_yIXmx!LEPUJ-I6%i6!hyFLn3qzOP|$58Cn3#v{PCE)W|bU3|d=dMra&W
zGm(|K%j<Vzp+HL`Iw|kb!}?dC%J_2$R%ZE$XI?U0G9gN9JvxU<u%XQLxdz8CgI+Ce
zqd|{rt2s~(qstmr0>_|=UmIDD@nv)10Bm8t9@og$>wHdkn)%}}L4O~2&WaTGXhy`-
zZ{E+Vc;mtXYbH~eW9kY>6mmw8rd(LH>3x!0G^yYxZdHbV`-5JMJ(7v0PfE{g`LthZ
zJdb8(2q(THYwQq0Dwply&1QGUpV1tdS+ogW-Kka+CCCR^>0LZ_Zw<I(IGz`so?iR(
zRQ`p<q`a<4OLQF*!|X^|*G?2jkL@mkjy2z}!^k2i!9!|5yGQ~!D$)m(+)nwa!3=9p
zv1yM0cpuG@+ec@z2QYHP#KxwDla`kqOW~bPAeL*sQ%`|#@1i4E+(16}^4nuf39zv;
znSgK+&%2a;Kb^m}|ADCU@xaa!+IB@G#SI>>Ty8z#hvx$bkqIgy*^OBp1rB-N6_}14
z{V%OtgvGP5ZJhub$S72J0QjN#r1T{1!sr340}e^Je*!p2<v9&ohAG+;LXPzzGKxqJ
zptFpkS107#o)yZHnFBI~dEqTjPZUb#G6w|%i0xXXTcmv8)xZ;aJu8F-fMK%1JJJcz
zNaoAw_n~DkJXf#&%2W3|ovxwb2HlIE_)C!QzliN$t_gmSN_ubGvp!BqBcwQa^;h&`
z>vX%=%pW(8@!WuibTDH!R(`ho!pVZvN1nF+1LWw=-VA+2ce(Vp6C4g^^h+guN%)gg
zLJc577=@+IpI4jy6L&=N0xFr>c_nt-$_ETgC;)(;D*oSY95b|EHkj)COaDfu8Yd)5
w2XJ46Ef8X3W4lga%o&cia-cfS)Y(11i%IM>s=#%)WWYz^0rY;sy~lz71LsMu<^TWy

literal 0
HcmV?d00001

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
index 5f2a5b9455..9974780ab7 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
@@ -42,9 +42,17 @@ A full scan can be useful on endpoints that have reported a malware threat. The
 > [!NOTE]
 > By default, quick scans run on mounted removable devices, such as USB drives.
 
-## Use Configuration Manager to run a scan
+## Use Microsoft Endpoint Manager to run a scan
 
-For more information about using Microsoft Endpoint Configuration Manager (current branch) to run a scan, see [Antimalware and firewall tasks: How to perform an on-demand scan](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-firewall#how-to-perform-an-on-demand-scan-of-computers).
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and log in.
+2. Choose **Endpoint security** > **Antivirus**.
+3. In the list of tabs, select **Windows 10 unhealthy endpoints**.
+4. From the list of actions provided, select **Quick Scan** or **Full Scan**.
+
+![IMAGE](images/mem-antivirus-scan-on-demand.png)
+
+> [!TIP]
+> For more information about using Microsoft Endpoint Manager to run a scan, see [Antimalware and firewall tasks: How to perform an on-demand scan](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-firewall#how-to-perform-an-on-demand-scan-of-computers).
 
 ## Use the mpcmdrun.exe command-line utility to run a scan
 
@@ -78,7 +86,7 @@ For more information on how to use PowerShell with Microsoft Defender Antivirus,
 
 ## Use Windows Management Instruction (WMI) to run a scan
 
-Use the [**Start** method of the **MSFT_MpScan**](https://msdn.microsoft.com/library/dn455324(v=vs.85).aspx#methods) class.
+Use the [**Start** method](https://docs.microsoft.com/previous-versions/windows/desktop/defender/start-msft-mpscan) of the **MSFT_MpScan** class.
 
 For more information about which parameters are allowed, see [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx)
 

From fd22532ae7b0ab2c3ff101f0e3b9a69aa8fa3d7f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 10:50:30 -0800
Subject: [PATCH 146/209] Update
 windows/security/threat-protection/microsoft-defender-atp/non-windows.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../threat-protection/microsoft-defender-atp/non-windows.md     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
index 98e6d638a7..cb576fa3e6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
@@ -96,7 +96,7 @@ devices. Microsoft Defender for Endpoint is also available for purchase from a C
 Solution Provider (CSP).
 
 Customers can obtain Microsoft Defender for Endpoint for Mac through a standalone
-Microsft Defender for Endpoint license, as part of Microsoft 365 A5/E5, or Microsoft 365
+Microsoft Defender for Endpoint license, as part of Microsoft 365 A5/E5, or Microsoft 365
 Security.
 
 Recently announced capabilities of Microsoft Defender for Endpoint for Android and iOS 

From 67abd2a761098e31ee28def99b8db223b1f9b13b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 10:52:21 -0800
Subject: [PATCH 147/209] Update non-windows.md

---
 .../threat-protection/microsoft-defender-atp/non-windows.md   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
index cb576fa3e6..23dd0567e1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/non-windows.md
@@ -36,7 +36,7 @@ have committed to building security solutions not just *for* Microsoft, but also
 heterogenous environments. We're listening to customer feedback and partnering
 closely with our customers to build solutions that meet their needs.
 
-With Defender for Endpoint, customers benefit from a unified view of all
+With Microsoft Defender for Endpoint, customers benefit from a unified view of all
 threats and alerts in the Microsoft Defender Security Center, across Windows and
 non-Windows platforms, enabling them to get a full picture of what's happening
 in their environment, which empowers them to more quickly assess and respond to
@@ -44,7 +44,7 @@ threats.
 
 ## Microsoft Defender for Endpoint for Mac 
 
-Microsoft Defender for Endpoint for Mac offers AV and EDR capabilities for the three
+Microsoft Defender for Endpoint for Mac offers antivirus and endpoint detection and response (EDR) capabilities for the three
 latest released versions of macOS. Customers can deploy and manage the solution
 through Microsoft Endpoint Manager and Jamf. Just like with Microsoft Office
 applications on macOS, Microsoft Auto Update is used to manage Microsoft

From 3fa4b2169f0eef3a7340098571f2f576ccc855f7 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 10:55:53 -0800
Subject: [PATCH 148/209] Update
 windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/ios-configure-features.md         | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
index 7023a11ad2..cdec2bc6f6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
@@ -24,8 +24,8 @@ ms.topic: conceptual
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
->[!NOTE]
->Defender for Endpoint for iOS would use a VPN in order to provide the Web Protection feature. This is not a regular VPN and is a local/self-looping VPN that does not take traffic outside the device.
+> [!NOTE]
+> Defender for Endpoint for iOS would use a VPN in order to provide the Web Protection feature. This is not a regular VPN and is a local/self-looping VPN that does not take traffic outside the device.
 
 ## Configure custom indicators
 
@@ -39,4 +39,3 @@ Defender for Endpoint for iOS enables admins to configure custom indicators on i
 By default, Defender for Endpoint for iOS includes and enables the web protection feature. [Web protection](web-protection-overview.md) helps to secure devices against web threats and protect users from phishing attacks.
 
 
-

From 9fc3dd7d7d46dfc83a12b87e7c3ae0a4fe748960 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 10:58:24 -0800
Subject: [PATCH 149/209] Update attack-surface-reduction-faq.md

---
 .../microsoft-defender-atp/attack-surface-reduction-faq.md    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
index c8cd1c6d70..3a308056c2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
@@ -27,7 +27,7 @@ ms.custom: asr
 
 ## Is attack surface reduction (ASR) part of Windows?
 
-ASR was originally a feature of the suite of exploit guard features introduced as a major update to Microsoft Defender Antivirus, in Windows 10 version 1709. Microsoft Defender Antivirus is the native antimalware component of Windows. However, the full ASR feature-set is only available with a Windows enterprise license. Also note that ASR rule exclusions are managed separately from Microsoft Defender Antivirus exclusions.
+ASR was originally a feature of the suite of exploit guard features introduced as a major update to Microsoft Defender Antivirus, in Windows 10, version 1709. Microsoft Defender Antivirus is the native antimalware component of Windows. However, the full ASR feature-set is only available with a Windows enterprise license. Also note that ASR rule exclusions are managed separately from Microsoft Defender Antivirus exclusions.
 
 ## Do I need to have an enterprise license to run ASR rules?
 
@@ -127,7 +127,7 @@ Because many legitimate processes throughout a typical day will be calling on ls
 
 Enabling this rule will not provide additional protection if you have [LSA protection](https://docs.microsoft.com/windows-server/security/credentials-protection-and-management/configuring-additional-lsa-protection#BKMK_HowToConfigure) enabled as well. Both the rule and LSA protection work in much the same way, so having both running at the same time would be redundant. However, sometimes you may not be able to enable LSA protection. In those cases, you can enable this rule to provide equivalent protection against malware that target lsass.exe.
 
-## Related topics
+## See also
 
 * [Attack surface reduction overview](attack-surface-reduction.md)
 * [Evaluate attack surface reduction rules](evaluate-attack-surface-reduction.md)

From 526de4598f33770efc3629b235c1ad92faaa055c Mon Sep 17 00:00:00 2001
From: jcaparas <macapara@microsoft.com>
Date: Mon, 16 Nov 2020 10:58:29 -0800
Subject: [PATCH 150/209] Update
 windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../microsoft-defender-atp/ios-configure-features.md           | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
index cdec2bc6f6..ad2a51ab8f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-configure-features.md
@@ -31,11 +31,10 @@ ms.topic: conceptual
 
 Defender for Endpoint for iOS enables admins to configure custom indicators on iOS devices as well. Refer to [Manage indicators](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/manage-indicators) on how to configure custom indicators.
 
->[!NOTE]
+> [!NOTE]
 > Defender for Endpoint for iOS supports creating custom indicators only for IP addresses and URLs/domains.
 
 ## Web Protection
 
 By default, Defender for Endpoint for iOS includes and enables the web protection feature. [Web protection](web-protection-overview.md) helps to secure devices against web threats and protect users from phishing attacks.
 
-

From d296db73e0de1456c672002e57ee7f8865b145fc Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 10:58:50 -0800
Subject: [PATCH 151/209] Update attack-surface-reduction-faq.md

---
 .../microsoft-defender-atp/attack-surface-reduction-faq.md      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
index 3a308056c2..27c2c2db47 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/attack-surface-reduction-faq.md
@@ -77,7 +77,7 @@ Keep the rule in audit mode for about 30 days to get a good baseline for how the
 
 ## I'm making the switch from a third-party security solution to Defender for Endpoint. Is there an "easy" way to export rules from another security solution to ASR?
 
-In most cases, it's easier and better to start with the baseline recommendations suggested by [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection/) than to attempt to import rules from another security solution. Then, use tools such as audit mode, monitoring, and analytics to configure your new solution to suit your unique needs. 
+In most cases, it's easier and better to start with the baseline recommendations suggested by [Defender for Endpoint](https://docs.microsoft.com/windows/security/threat-protection) than to attempt to import rules from another security solution. Then, use tools such as audit mode, monitoring, and analytics to configure your new solution to suit your unique needs. 
 
 The default configuration for most ASR rules, combined with Defender for Endpoint's real-time protection, will protect against a large number of exploits and vulnerabilities.
 

From 1003e6d7a2b984bb995132b9d9b5d80ade083dac Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 11:30:25 -0800
Subject: [PATCH 152/209] Update
 windows/security/identity-protection/vpn/vpn-guide.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/security/identity-protection/vpn/vpn-guide.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/vpn/vpn-guide.md b/windows/security/identity-protection/vpn/vpn-guide.md
index b8f40081c7..3127208215 100644
--- a/windows/security/identity-protection/vpn/vpn-guide.md
+++ b/windows/security/identity-protection/vpn/vpn-guide.md
@@ -20,7 +20,7 @@ ms.author: dansimp
 - Windows 10
 - Windows 10 Mobile
 
-This guide will walk you through the decisions you will make for Windows 10 clients in your enterprise VPN solution and how to configure your deployment. This guide references the [VPNv2 Configuration Service Provider (CSP)](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx) and provides mobile device management (MDM) configuration instructions using Microsoft Intune and the VPN Profile template for Windows 10.
+This guide will walk you through the decisions you will make for Windows 10 clients in your enterprise VPN solution and how to configure your deployment. This guide references the [VPNv2 Configuration Service Provider (CSP)](https://docs.microsoft.com/windows/client-management/mdm/vpnv2-csp) and provides mobile device management (MDM) configuration instructions using Microsoft Intune and the VPN Profile template for Windows 10.
 
 To create a Windows 10 VPN device configuration profile see: [Windows 10 and Windows Holographic device settings to add VPN connections using Intune](https://docs.microsoft.com/mem/intune/configuration/vpn-settings-windows-10).
 
@@ -46,4 +46,3 @@ To create a Windows 10 VPN device configuration profile see: [Windows 10 and Win
 - [Create VPN profiles to connect to VPN servers in Intune](https://docs.microsoft.com/mem/intune/configuration/vpn-settings-configure)
 
 
-

From 2938aaa9a1ea8c6a3a60573c5538df14d3b29512 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 11:30:34 -0800
Subject: [PATCH 153/209] Update
 windows/security/identity-protection/vpn/vpn-guide.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 windows/security/identity-protection/vpn/vpn-guide.md | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/windows/security/identity-protection/vpn/vpn-guide.md b/windows/security/identity-protection/vpn/vpn-guide.md
index 3127208215..ae26cfc95a 100644
--- a/windows/security/identity-protection/vpn/vpn-guide.md
+++ b/windows/security/identity-protection/vpn/vpn-guide.md
@@ -24,8 +24,8 @@ This guide will walk you through the decisions you will make for Windows 10 clie
 
 To create a Windows 10 VPN device configuration profile see: [Windows 10 and Windows Holographic device settings to add VPN connections using Intune](https://docs.microsoft.com/mem/intune/configuration/vpn-settings-windows-10).
 
->[!NOTE]
->This guide does not explain server deployment.  
+> [!NOTE]
+> This guide does not explain server deployment.
 
 ## In this guide
 
@@ -45,4 +45,3 @@ To create a Windows 10 VPN device configuration profile see: [Windows 10 and Win
 
 - [Create VPN profiles to connect to VPN servers in Intune](https://docs.microsoft.com/mem/intune/configuration/vpn-settings-configure)
 
-

From 6eaf46c5bdf82b3628677d14d70f36b82f8b3012 Mon Sep 17 00:00:00 2001
From: Marty Hernandez Avedon <v-maave@microsoft.com>
Date: Mon, 16 Nov 2020 14:34:34 -0500
Subject: [PATCH 154/209] doublechecked steps for intune & updated accordingly

---
 ...protection-microsoft-defender-antivirus.md | 24 +++++--------------
 .../run-scan-microsoft-defender-antivirus.md  |  8 +++----
 2 files changed, 10 insertions(+), 22 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
index ceb9f87d5c..0d113ddeb4 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/enable-cloud-protection-microsoft-defender-antivirus.md
@@ -47,28 +47,16 @@ For more information about the specific network-connectivity requirements to ens
 
 ## Use Intune to turn on cloud-delivered protection
 
-1. Sign in to the [Azure portal](https://portal.azure.com).
-2. Select **All services > Intune**.
-3. In the **Intune** pane, select **Device configuration > Profiles**. Then select the **Device restrictions** profile type you want to configure. If you need to create a new **Device restrictions** profile type, see [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure).
-4. Select **Properties**, select **Settings: Configure**, and then select **Microsoft Defender Antivirus**.
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and log in.
+2. On the **Home** pane, select **Device configuration > Profiles**.
+3. Select the **Device restrictions** profile type you want to configure. If you need to create a new **Device restrictions** profile type, see [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure).
+4. Select **Properties** > **Configuration settings: Edit** > **Microsoft Defender Antivirus**.
 5. On the **Cloud-delivered protection** switch, select **Enable**.
-6. In the **Prompt users before sample submission** dropdown, select **Send all data without prompting**.
-7. In the **Submit samples consent** dropdown, select one of the following options:
-
-    - **Send safe samples automatically**
-    - **Send all samples automatically**
-
-        >[!NOTE]
-        > The **Send safe samples automatically** option means that most samples will be sent automatically. Files that are likely to contain personal information will still prompt and require additional confirmation.
-
-        > [!WARNING]
-        > Setting to **Always Prompt** will lower the protection state of the device. Setting to **Never send** means the [Block at First Sight](configure-block-at-first-sight-microsoft-defender-antivirus.md) feature of Microsoft Defender for Endpoint won't work.
-
-8. Select **OK** to exit the **Microsoft Defender Antivirus** settings pane, select **OK** to exit the **Device restrictions** pane, and then select **Save** to save the changes to your **Device restrictions** profile.
+6. In the **Prompt users before sample submission** dropdown, select **Send all data automatically**.
 
 For more information about Intune device profiles, including how to create and configure their settings, see [What are Microsoft Intune device profiles?](https://docs.microsoft.com/intune/device-profiles)
 
-## Use Configuration Manager to turn on cloud-delivered protection
+## Use Microsoft Endpoint Configuration  Manager to turn on cloud-delivered protection
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and log in.
 2. Choose **Endpoint security** > **Antivirus**.
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
index 9974780ab7..73e99ff502 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
@@ -42,7 +42,7 @@ A full scan can be useful on endpoints that have reported a malware threat. The
 > [!NOTE]
 > By default, quick scans run on mounted removable devices, such as USB drives.
 
-## Use Microsoft Endpoint Manager to run a scan
+## Use Microsoft Endpoint Configuration Manager to run a scan
 
 1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and log in.
 2. Choose **Endpoint security** > **Antivirus**.
@@ -66,9 +66,9 @@ For more information about how to use the tool and additional parameters, includ
 
 ## Use Microsoft Intune to run a scan
 
-1. In Intune, go to **Devices > All Devices** and select the device you want to scan.
-
-2. Select **...More** and then select **Quick Scan** or **Full Scan**.
+1. Go to the Microsoft Endpoint Manager admin center ([https://endpoint.microsoft.com](https://endpoint.microsoft.com)) and log in.
+2. From the sidebar, select **Devices > All Devices** and choose the device you want to scan.
+3. Select **...More**. From the options, select **Quick Scan** or **Full Scan**.
 
 ## Use the Windows Security app to run a scan
 

From 5336b80da809f5eb75acd5fc0c8352cd3fb99d8e Mon Sep 17 00:00:00 2001
From: Mati Goldberg <matig@vivlim-pc.redmond.corp.microsoft.com>
Date: Mon, 16 Nov 2020 21:37:39 +0200
Subject: [PATCH 155/209] auditd notice

---
 .../microsoft-defender-atp/microsoft-defender-atp-linux.md    | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
index 873df4353b..87dd24a90d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md
@@ -92,6 +92,10 @@ If you experience any installation failures, refer to [Troubleshooting installat
 
 After you've enabled the service, you may need to configure your network or firewall to allow outbound connections between it and your endpoints.
 
+- Audit framework (`auditd`) must be enabled.
+  >[!NOTE]
+  > System events captured by rules added to `audit.logs` will add to audit logs and might affect host auditing and upstream collection. Events added by Microsoft Defender for Endopoint for Linux will be tagged with `mdatp` key.
+
 ### Network connections
 
 The following downloadable spreadsheet lists the services and their associated URLs that your network must be able to connect to. You should ensure that there are no firewall or network filtering rules that would deny access to these URLs. If there are, you may need to create an *allow* rule specifically for them.

From e5cf6d6e8b5f4dd8c47d179eba5f37e18dc094f6 Mon Sep 17 00:00:00 2001
From: Mati Goldberg <matig@vivlim-pc.redmond.corp.microsoft.com>
Date: Mon, 16 Nov 2020 21:47:40 +0200
Subject: [PATCH 156/209] remove reference to obsolete page

---
 ...endpoint-detection-response-mac-preview.md | 165 ------------------
 .../microsoft-defender-atp-mac.md             |   2 +-
 2 files changed, 1 insertion(+), 166 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md b/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
deleted file mode 100644
index b86fec795a..0000000000
--- a/windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md
+++ /dev/null
@@ -1,165 +0,0 @@
----
-title: Enable Microsoft Defender for Endpoint Insider Device
-description: Install and use Microsoft Defender for Endpoint (Mac).
-keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamf, macos, catalina, mojave, high sierra
-search.product: eADQiWindows 10XVcnh
-search.appverid: met150
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-ms.author: dansimp
-author: dansimp
-ms.localizationpriority: medium
-manager: dansimp
-audience: ITPro
-ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
-ms.topic: conceptual
----
-
-# Enable Microsoft Defender for Endpoint Insider Device
-
-[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
-
-To get preview features for Mac, you must set up your device to be an "Insider" device as described in this article. For scale deployment, we recommend using [Jamf](#enable-the-insider-program-with-jamf) or [Intune](#enable-the-insider-program-with-intune).
-
-> [!IMPORTANT]
-> Make sure you have enabled [Microsoft Defender for Endpoint (Mac)](microsoft-defender-atp-mac.md#how-to-install-microsoft-defender-for-endpoint-for-mac), and pay attention to the “earlyPreview” flag. See documentation for [Jamf](mac-install-with-jamf.md), [Intune](mac-install-with-intune.md), and [manual deployment](mac-install-manually.md) instructions.
-
-## Enable the Insider program with Jamf
-
-1. Create configuration profile `com.microsoft.wdav.plist` with the following content:
-
-   ```XML
-       <?xml version="1.0" encoding="UTF-8"?>
-       <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-       <plist version="1.0">
-       <dict>
-           <key>edr</key>
-           <dict>
-               <key>earlyPreview</key>
-               <true/>
-           </dict>
-       </dict>
-       </plist>
-   ```
-
-1. From the JAMF console, navigate to  **Computers > Configuration Profiles**, navigate to the configuration profile you'd like to use, then select  **Custom Settings**.
-
-1. Create an entry with `com.microsoft.wdav` as the preference domain and upload the `.plist` created earlier.
-
-   > [!WARNING]
-   > You must enter the correct preference domain (com.microsoft.wdav), otherwise the preferences will not be recognized by the product
-
-## Enable the Insider program with Intune
-
-1. Create configuration profile `com.microsoft.wdav.plist` with the following content:
-
-    ```XML
-       <?xml version="1.0" encoding="utf-8"?>
-       <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-       <plist version="1">
-           <dict>
-               <key>PayloadUUID</key>
-               <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
-               <key>PayloadType</key>
-               <string>Configuration</string>
-               <key>PayloadOrganization</key>
-               <string>Microsoft</string>
-               <key>PayloadIdentifier</key>
-               <string>com.microsoft.wdav</string>
-               <key>PayloadDisplayName</key>
-               <string>Microsoft Defender ATP settings</string>
-               <key>PayloadDescription</key>
-               <string>Microsoft Defender ATP configuration settings</string>
-               <key>PayloadVersion</key>
-               <integer>1</integer>
-               <key>PayloadEnabled</key>
-               <true/>
-               <key>PayloadRemovalDisallowed</key>
-               <true/>
-               <key>PayloadScope</key>
-               <string>System</string>
-               <key>PayloadContent</key>
-               <array>
-                   <dict>
-                       <key>PayloadUUID</key>
-                       <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
-                       <key>PayloadType</key>
-                       <string>com.microsoft.wdav</string>
-                       <key>PayloadOrganization</key>
-                       <string>Microsoft</string>
-                       <key>PayloadIdentifier</key>
-                       <string>com.microsoft.wdav</string>
-                       <key>PayloadDisplayName</key>
-                       <string>Microsoft Defender ATP configuration settings</string>
-                       <key>PayloadDescription</key>
-                       <string/>
-                       <key>PayloadVersion</key>
-                       <integer>1</integer>
-                       <key>PayloadEnabled</key>
-                       <true/>
-                       <key>edr</key>
-                       <dict>
-                           <key>earlyPreview</key>
-                           <true/>
-                       </dict>
-                   </dict>
-               </array>
-           </dict>
-       </plist>
-   ```
-
-1. Open  **Manage > Device configuration**. Select  **Manage > Profiles > Create Profile**.
-
-1. Choose a name for the profile. Change  **Platform=macOS**  to  **Profile type=Custom**. Select  **Configure**.
-
-1. Save the `.plist` created earlier as com.microsoft.wdav.xml.
-
-1. Enter `com.microsoft.wdav` as the custom configuration profile name.
-
-1. Open the configuration profile and upload `com.microsoft.wdav.xml`. This file was created in step 1.
-
-1. Select  **OK**.
-
-1. Select  **Manage > Assignments**. In the  **Include**  tab, select  **Assign to All Users & All devices**.
-
-   > [!WARNING]
-   > You must enter the correct custom configuration profile name, otherwise these preferences will not be recognized by the product.
-
-## Enable the Insider program manually on a single device
-
-In terminal, run:
-
-```bash
-    mdatp --edr --early-preview true
-```
-
-For versions earlier than 100.78.0, run:
-
-```bash
-    mdatp --edr --earlyPreview true
-```
-
-## Troubleshooting
-
-### Verify you are running the correct version
-
-To get the latest version of the Microsoft Defender for Endpoint (Mac), set the Microsoft AutoUpdate to “Fast Ring”. To get “Microsoft AutoUpdate”, download it from [Release history for Microsoft AutoUpdate (MAU)](https://docs.microsoft.com/officeupdates/release-history-microsoft-autoupdate).
-
-To verify you are running the correct version, run `mdatp --health` on the device.
-
-* The required version is 100.72.15 or later.
-* If the version is not as expected, verify that Microsoft Auto Update is set to automatically download and install updates by running `defaults read com.microsoft.autoupdate2` from the terminal.
-* To change update settings, see [Update Office for Mac automatically](https://support.office.com/article/update-office-for-mac-automatically-bfd1e497-c24d-4754-92ab-910a4074d7c1).
-* If you are not using Office for Mac, download and run the AutoUpdate tool.
-
-### A device still does not appear on Microsoft Defender Security Center
-
-After a successful deployment and onboarding of the correct version, check that the device has connectivity to the cloud service by running `mdatp --connectivity-test`.
-
-* Check that you enabled the early preview flag. In the terminal, run `mdatp –health` and look for the value of “edrEarlyPreviewEnabled”. It should be “Enabled”.
-
-If you followed the manual deployment instructions, you were prompted to enable Kernel Extensions. Pay attention to the “System Extension note” in the [manual deployment documentation](mac-install-manually.md#application-installation-macos-1015-and-older-versions) and use the “Manual Deployment” section in the [troubleshoot kernel extension documentation](mac-support-kext.md#manual-deployment).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 44dd5225e9..1e18c177a2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -39,7 +39,7 @@ This topic describes how to install, configure, update, and use Defender for End
 > [!TIP]
 > If you have any feedback that you would like to share, submit it by opening Microsoft Defender for Endpoint for Mac on your device and navigating to **Help** > **Send feedback**.
 
-To get the latest features, including preview capabilities (such as endpoint detection and response for your Mac devices), configure your macOS device running Microsoft Defender for Endpoint to be an "Insider" device. See [Enable Microsoft Defender for Endpoint Insider Device](endpoint-detection-response-mac-preview.md). 
+To get the latest features, including preview capabilities (such as endpoint detection and response for your Mac devices), configure your macOS device running Microsoft Defender for Endpoint to be an "Insider" device.
 
 ## How to install Microsoft Defender for Endpoint for Mac
 

From 296fce1fc126c84269aaddb4cd72b1b3521d6514 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 16 Nov 2020 11:58:24 -0800
Subject: [PATCH 157/209] add mma line

---
 .../downloads/mdatp-urls.xlsx                 | Bin 19446 -> 19968 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx b/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-urls.xlsx
index ded3b766260b1d25e464b50e2d08b0fbb092dcca..37a6dacbe81bb80d18c3655023c7cab490bd7abf 100644
GIT binary patch
delta 9945
zcmaKSWmp_rv-RMvgF6IwNeCWX2X~i1fCMK5rvt$~3~s^QNr2!k!4llv-3b=HNzOU%
z`R@DN=k}l3JyW}O_o}t3dV1GY65RWAIAS#=1VjQ5G6)p}0?~q|<Z_#;;Xt6fYGQhL
zU_N}F8`qcXf;!Sfsq8>3USsV*stF^=gy`KJ9N3m3qCf6Cq;6o@z06XHW!6#|-nY6c
zUvPU!rmr?l`M8v6Xv4y0LR(au5E)#KF(~`s)12m`M#zJRA%<)>L8P!awA`8^>HyYY
z_~B1B$x|3(0Nt%ZDS6pRBWyn;TGhM-<g1wJR7v}aX0%Q-BKNj~skkS6u1F2_yek}@
zpLrHqt_GBd9gbjWMFqq+^R?4yy+FFd8KAE#=d;PxzlJx~{Dzt+Bz@$YQ3LM1e?JsQ
z!r~jtms{wZcUSg0jJ>nSHEc;?kBb{qn9KT0%pL7v|A>VfPD+~;*Vp~1={5@!fWyLQ
zvQMHnu^_(as3XXFQSRrU`Iyz$#;RD_Hh2+@zDr=NgLl7Z@cdqbAQ>D6b`%}UpEng(
z<#CVwAy&1Jv)O}mALT2F(k027HR!T?%9hplv&W#7_5%{~10m5)TOfaH4!P)IOEEuH
zX!?xSDf$bud!7iXBo&flR|vhIVv4iR@~2_j&`f%`&LM2mKIT{6S6QnoTSSL?4z-NY
z53?7-$p{;b_l;X^u$VnQB7pv9G&?CqEqGwRI3v_9B9OrY<HL#wJh-5hrWN79g{Ikx
z7ol(GBT$i$KHh@HE#EzVIuJ-dd3C5<Dnq=-I`cAaU?Yu`H^sipypkk`QTN<g-6dEh
zZmgpGW^m2#ZI?b|g@D9G@0>$cEG_esa^?^5Z%Gz~zLtU!5zme_&gvzlXS0L!V&#%l
z$<T>3OoDYhfLJygbuBATj?QZepSi(-t&%PC3Qhq-J72$>7hi*V5Yh2b72xE=EcNAu
zraOsn4Is~S=|7#lTaY8rAMSBhyF}=JP0FkRMOV;K8@Kt&R?8}*f5}ETCLSq-av*GD
z7FNLJDdI%^&f0bQd#ug<HIZ-Ck$eS5<6BGgPbX5{x@-WyY_qx^N0^ROVyULVh7e;-
zTjU#RKIujg2DImB8IsQ;;g50Xe%vvSyF*Wr36Un%>yG)M7${7DJ5(TSoIWQqmGK8%
z2dV@L)kg)2*B{d;LWr_&j=j_QkrICtSr8F6T?uZVyH|)l)RnVcuxoM6zlz=si~4AD
zRu?<GPVuN`Mc-aD-OS=K$!`&DDjn07@$fLcTcE9qV}BP2%G%xbD0d^)*ZEW_GkgcF
z17pd5)0s5tQWrG<d<zk|Zol9*R<QTg`Ic_gbO;B^Q-1i7m_H;lwk5?u)`Fm(vqrXa
z{bu$OY>+{XpzC`1^ew&PJ~j=NCBx+)YPfoa+;)s|=}##n2S*kuLnLbIU&UAvd@YDM
zs;ZN`y7tS7w}@Hgl)I|GH0N_Jq)_WVy>z08vt~JESH{LE1L7ZLbbi4N0tmTR)Vb=+
z<<&ZLs7u5@X8hAWjH)Q<hs_)B(k;0yd)o7An`@n#6b4P?B(IZF%t!rn$`0nFvP9D8
zvzq9cn$1qHB!JiBm`I2l6#@J++lz1+s99SA#xkh_y_az)U)j~Orgj4PgaOCf14wEO
ztE1wm3!GP%fEPBG#&zp}w)C-SQnb<o>C5iZIHc1~c3O$VAbKY~UJR*e<(8jJ-H;pg
zr89}j>sGQI!K)cA=_DUvg(6C<8jsx5*T;{cvyZiqnoqry<CFCocDMCK$xr5%1`2GR
zyF!WvHV6CGUlA+~NLJF8jj)3f78hSgidFdYT>30e0PkHeYX$v`8EFmKHInG7sc~aG
zdC+X@=to@eMvI;gt__is>K`*log)-Q3BT@5H&r<d##aw7z(s#(Xnn8G%^IcNCoi+5
z?q;I4zTtgN{t*XVh?>K^z^5)q<;9Fp?^LS5M)S99vmt&le2sausNk8s2$L9Lc$<?1
zuPcjJApljiW)dD3DkZ*0g;b)+TAp1ZqwNr+W|%wbSIkFvD+T?h%C=oD!wDuVnJ+r*
z+K8-%yo*M7NQh2+Rry~@*foj&7_^ZUA)BL*_Km5ccb$!79E`Vew2ZpjBqkTCl6}*0
znYEIHBp<WgUpD*e%1Qr-^Ge~7n>2Ud@}N88@|c;xvHebwqBwn#s<`3a?`xxo#x<Ss
z;<D9C+J~`uWBwtbsn}<mCkLj#Wm9W|E(DMMWuF}=A^?F(pwKc*Dj+Yz)Nx)uv1gfh
z=9p$jw66FOdkqucFj{&F6M4M0X*9g7TheZjjYZ)a^QwufSSYXL=qtNU<NK64*S8*}
zdDIabqB;5Qz|F%=@%78v7k2Jk&mRufN|xuF%iMA1lPaG-Jl<|Ur0KW03sjg;>8Lg(
z4J$v!3}-(kT|eGX9|L|zSIgKjX~WgJIv#=x7t}F*)AdP7A(!i0o^A~@Ee<B%<XR7|
zMoVAbj6O^ccJ2GsdI{KH+`koUXiPN{tE}VlHC#OuE9gBMOgi*(tv3XKrDh8Ij}Ke6
zZtUBD$3iRB-s{o*WS7y>hx+46$El|6>6-5C!||)1eZ@9y*Fdvh)BSDDe5KfngweZe
zyUzyKe#=RZ<nfQxQ(ftA$#y-PmX5KTxcVY$&hj((UOem%?hj5j7I%-nD1q=dE;#zx
zvAy5c`0(O+zTLtES$YK4qh+;%W|`O5E5|lRYKPm$)->RroAlL(=Uq3Jzg|7fz*!!u
z5L;*=Rd$er9;^c)KYse%0uR^6RCNrid-|7GX)pkBW)1n$F1VK4gb&3ZTNdv{1lq2n
zOGn%6Gx_(|3n=LKucMoEYj0ed7ez!DFSfgE+pa4Yk8bKOOL7Fsg&*$?zeFS!D3)FA
zjW#XTm)zH|ztvXRaAGx7w)`UI0NB|LSQwQ@K8g;P-vTY^Ggf?j*VkT&*M$iu*S^Q*
z=T?^wyFX(VM|)n~U7qTxxW848_MJ;u61#V<7c3j}ZKAlh5UALza96eZc-GdkZU04n
z(AV|yZg+e1u<P`+;01+=k*PAWRn+Bmm-F@g3!Raw>cuidueq{&eaA%Op_+jr*Fn5G
zcEDor2Mypb=ptLlQ>shkN)~_Dxjnq<(N>=6;nWMZGyY{)*GdAZ=-XTZ`&BR;jyG(o
z+6j^vLxMl(PX{xMj|Xp#diC2bXtwkw{vLJoOdfdglc{t;hhOtfa$Od6trR7_OA<JA
zbT3`sduVz%vaS?)AJ4V3>ZVN@U0bjH_4P3s@VwHcwk=_B-MQ)4m9sS|v-eWb!s)bj
z503Ugn%|9L;*wPHFAw1I=uGZwNagBJ8_G?kDFNPP=fP<I<A&Pkvz|AvF@5{e-$eTK
zwYXVsvXrs#UU7UP80@ZRCm5WlXD1vSs^19ToU11YX8?1R`xo9j``Oo?mwM}4IL;(B
z0AUX&w-#duz5qI){Y9j+0ZbBVefGoaULjmGt4`}~6e2Pxd}nsEd=4eJ>oZCTo{>08
zV70)xvE<lvJ`jnWks|t%FLb1H_o#vXl>nWEge_e~hbsF_n_lw6{@x6A8$~IZu}B$H
ze{Nlo$iW9HoNC3bZ%?~fzv`CAQ%&J-0P2QhR2u#HYVsX={+{s&;FyCX8!f^{8$H!n
zS$lQc85B{nH5)$N0@|sa77dxPszjQoxv}rDlAJ-3=)LHWT%T32?SJfxZ6amYxLvKO
z-JCJIPwhs|NkaM7M0E$~vEQJr6>(r;vurHNggZo36UpkBq%hExvI1{uYcpwT=5n6Y
z#(4E_+yrg&#BLK;NcNX8gqGDk?azx<%8m`FhF@pq8pC&nE##!9iYsUT!+Azdl)_^9
z)42%pnzZkzHfqQhMCXY_<PZWE76J`!9Wx5;56oP>z~P04_D-j{C}*_4fd29n5oL()
zL>H~frfX)OczVFmR{(vrD)C1#TRCSrk%pckZDr6EMqSRlMOhGB!l5i(R*57r%|04@
z35O8PT@i|W`r@`oOtt{aqAMZ1B?mSQ3wwU-v?NHazDExOp~UN}v}7T^aj2OKDOPbv
z`Id&;j1Yai6ARX+f@}(gxyBwYlLv)b9=pN-IYT>Z=gSp!8$f&U^&A{mEtX@$Vjv3y
zBg2)P<E~0B0v;t3V|+~rGU#PwprOCUk|FAu8)!4>HYbYgMqr?wlqx^S-$?nnj0IA9
z^||c#6eSZLE!!jk0-Q|-1Q8Q9hRViOXWQ9t)>aCc&FYe$_k?H-rgFcJ)qF5*O76GF
zK}hcW9Iy%puzFNkdSxlgm^iSxdDsr<0RH7hdITg-GjYp~Y&x@|;Y(jTgOd`+#x#!-
zC%^iiOK;Hb)$x2O<G@A^K0Cu<Sa4IB22MO?dY-K@c`SU9@rU<3lSNzI8{x#<V{RCO
zhP-BYXM)<f;ieMFmM)eRe9b!;Az{xeg+3_gPl8_wgrdTK_=*uNiF!tmN5YJraS=-!
zp+IW3mj%WqQ|rp-i(8H5CoSkQM;H&2C+AL93ONhz1sj+yz9gMcM=jXK*N1S!X`*yE
z@%xieN&G+?N*IXj&i~b-5dtT>0WMmH&kM{s4FtW5u~L(ROU|^k<WWb4P=dN_kzad&
zcE4o;OkE(s?`H28XS?9fo#8aT{qT?kJ#oRFPzMz-QR+h`V9wi}=3vgn8)tMGyL9i;
zJ-9oLoGkp&f-JhN0-0h?2=J&7a5Sm%3K<IVGaRp{6y$emzzK6}_#y}DM2B-mX_)Fd
z=y+Bh0TNDu)}*TgPefz_``UBWDpG%a-U2Mz2V{F4_omSlV_odW(l9VL)Dv5>_*1gE
z7ukZ6UEIlP#3{FJAc`uA65;+i-;2q9N(-f1GQTZj@yVl{C?FELGLMP2dr<3)@JPlc
zwh)>En|%1P?Q<Ta<pSA(RMGT^tMB9$GEY9dS$y6-fu`Ve*uaC{HX7+KB6Q{p*aN&Z
z-fg<*JQ+s~Fa3p%=CW;qM37jJ!zGzS`ANIG8M)ocGK36m^@S<YA}y&al!JGfZz2x5
z)R~*#F)P^CmFQ~zePIf!3MEbaP17or?;GC8wUT~NEY~HbaEP>`u7Ctfa(FB}6Cl#O
zL5u;v{#ZlL;27V|0Q^P)SW%2oM&_wTgZ#3fGg_TNeAb+l;sDZOl&TKX3H6ZaW-MB#
z+GFOYRsD1O3Ng~iJReaZly5sfqQ3TcYbjR_yQC8i^5#@JUOddLv1~}*Y2cKuG-H4e
zddCIC5*HfQJ|V%K9+nj>r&c%d&5{}XWAFP}c)zq-ACi2EJg|-i7YRH0O^z^33tqfr
zAy6<M-oyz=qkaf#{+=T21U)iTnwy%KW|4I4H#d&3Bq)&uATh!!3_`~RQ)}3s!BY8k
z7_ex=<r$V73iy>WEO$<!4=|vrp1AOI)<&Le;APVN7CUocA7xi^146+GuRX*|^L>cu
zw;CXOicu;%Q74pHuA8z59Lf1a#51rk^n}EN;G6cRPef^$_FA~Dq(}wW-|95>4YoeN
zWG8pE;(f~<%rs-v4mSA~pZe7BSq3%B@1Vgmi9RFk&4UH49j%bDXtkxNh6~17rvq+t
z0laLqUYC*hyp6m+I!nL!Zb<@8Z3iacm?%=Sg70!vEDd4dl?3PG8u!5*3lYE^XCy^m
z5Nz<M5eV&OE8IM9#{*6Y!Kqmq`_55P&@i8U!!*os^)X^0Z<z&yfR2SPQuT?kg?~}b
zn!YPJ5|I%&41K>2%NIt5CzQ0{l#k5NY<UbSN33v%UtkfHJQ?6yTzs=SJn=nDL@@zu
zqECy(P_phunf67xm1)p)1)g?@FAcIAI@t3Pq}l|9>Pp)L2pw7Ed=LDGrMRTMh;-a;
z>;+CV0c2E^v#M{P=0ZM6{ee5u^mHUc`BGu>>uBYbq0)$M1OdBY{oIUr{>2~61n?xV
zVrZUC0C-`cIw2rgdb;1aLK;S%KjSWt9L%;@dfW8ro3Kz3@f?l$No1-k&^HtP6inly
zH*WOe9sx-KQQP;0!&my5AGh$_!ck-VVJxD07irOno!rS*#j{IH?=gcQ4<wDih%^Om
zrs>c#fA2=+g3O%IT&(Ghu7OE_1gLn)@`MjCo9(>^k1(rsd8=EImqCJ8XUsdD%9t<<
zuhLiL8Tx$Eg@xr|VG!6Q?O|rjeP4{AB9JSNbuE+ejbASXvuianfKyD32~%#Vx7x1m
zb)%WaALsw&`@@qaGb>)qK5Vdwpxfu~eiBvfdca5!5{uwJ?8zbNktTq#r`R<z(G{Bs
zLvt394Qei+I3Yodg@=aJ>$0jQDUlgKfFR=!%~XrDz(-FOS_wQ}6UTDg?7u^dAK<27
z*rgG`d+uz;PK>?S{U2MoNQ*Pn-?rzd6DKSEB9dvCEzj}^)}VljG?l+lHh7%36DsHN
z2gB_2%r}u1E?CJz%ptB=6DQ1rMp9{*n$i8w)R=v2e`Lt9KiT_NQr6VD$p;89d8{5F
zJQMlGd#A?Og<{Z39+>1JedS-hfWTozy}<$lk7PtZbXp)`=iaU=*$5$F&IL>4pyMO(
zHJFz)Aa{aR-~>_EY+VqLCD|nVV-Ev6MdlJMf026OmGWu=ET1_Eyh;8xBniVite+i*
zb_j38tI~pVy8PdaU(qstH|I<Ea=s|!xD*zk=<*5lklNtlA@<*>RCKX1(bcx=jhIKp
zr^o*dpnl{_UI61aDts6dPB?GQUK(xBS?&y*=i`otHB`g9842<B_77;rT4XW59g~W1
zhS<QWQHGNZtQt|08rZ;yj#rF?9)x4(R^u$TFVEn(_tc#Ick-4~;^?h4y<=Z=hB&}M
zN98VZ>!XS{`J@CLlLr<gQ-&aZjMyR{ww_#w0TRwjC64h|YPPV-RO|vvvKn=h!ziqy
zBgXmHvwbf)27X$Z@#y#3(%(^nE}0UorQnH1c-6WL)oMNl^ojEDRtXIjU7xDXd_$Vb
zuwqXupUd9T`U(Ri489<rybY6`ahc@JwIObmQ>#B2XBA`#pFe~JG8Dbe$>aH{8{Q2F
zn3Y)<H0>V{Lh{6nXBIQyJRS70hzlEkZv2+B$cfjVY$+g4lug83#Esk8MD0vA3~4X$
z^eqb5Q*+xVAnqlpN6!0vIn0*~7X95}8&4odXm1#WzR&lLyR@!Zn#ua&d)GjIEsFJ?
zCNlVre8I#Zn)%jJmn-i7JAI&=ib8-fgdj~cJZ4<<<N#(e)j@0Bd51+qff_bRv}0{X
zf>ec^_kDtbze^U=pD?TC^`U?n#LNgNsK1wpXV)PU;xuucfALw?IXx-)4hfW$MZmDz
zEJN3D`AdQ_UV7Z>o$#{i+o0`;ls7lmTFevS0p9m-Zspy3o^TZbJdl&0h%rsfdly-|
z4*gK5#_wp;k3s#z;xM_x8h3F%qM{&>^cfPIMKKIZ(f@pf{L904c9lzQ))*WQ|5vt^
z&npCh8Ia8I-9Av$;bFsZN6SfGv8RT}J0Z8zTRv|Sw@N~EyZ?*T_`BCETBbqtuCEx?
zmjhOS*jVbK7|C)uCWq_FO>YqM>ZjUG-5nc7A@zP?Y#3TH67CFtt)iB<oWQLv<SA>e
zyt$F)v1(uxyp*HHhQ9d<e%3uJu-<87dYhRloMY8lmEbJ+1B2&Z5Cloza-f3qWvub1
z2pI8>zVk%iv8vjrPYl;1q{~+UAqr}P(LWZS(TWOs{!Usjb9;DjKIz})Jv`A$7WCs5
zJ+8|1KN;a}%~&R!rvneNlQsqveyf@Qf7kblzF;(%1wwbPBBtm;zrmpy9-`pHH9}uB
zENkVitd^$yJ7WbYK*r|}G{Y+R$qQ)EJmyBg9y1I)1ppVrnohdBjoZeuSm$~fnnvP3
z6*BCC)0=GEs*8Y8-F=N?8N27WJZ961Js2&snh@t9id%#e%}Xv*<geT*N!K!v+52>s
zJ4j(7$^!$<A*+^+)Wa;D8@(L29DP=cOKnb2>|@+t(PbZ-Kd^<QVQD7IGyuc0XqCnd
zabY1AYY6dU)~0wEuRp8LSxH3k{{@GPSFUK3?PqiJTGZ!r%&WDrh4ww&?C~mhidXK;
z8&tVF!)|AP*Yt=Bou=E7{Sh7V0`7=LN=HFi=h6)0AG-m{Ly~OL>}3O1v<VEE6SIGl
zjD5`e&=!DHVnGM#n&Q5qK(6S*TYE`ky!Ivi?AML>26`pWanWZDxT+GoL*p{j|5V%n
zx|Uhkjm~qsWjQt3%XTQcFt!o7L_3R^1WK|<GZ)RvS`j0;&Hu$Ug5AZdrv>xD#Rx(3
z4t(fGakc)KV%#buK^mcI-_ur$4sv3FfBi0I_J023_s(86yV;841&vj-b0>4WWMIIp
zz1BN*wYI+ksXjDzcL)olA2}m+P;(Ecpe~pk=Z;wYj0$0xzRmv5ginFwM1aZR-%v(g
zBzhB#yL4@I;f9<VCL5SLjb>QYj7woXUI3gzA>PB%+&ks=Fxg`MBU@RoY0-$?#%JS%
z9Yt)rNuL#?{3CNdJMRc@Jp)%4ZELh8wAj?WURq%MlNK7n-I;dSTlU2gVu9f&#~;QZ
zDb3|oJYTB5&v^%Ar|jHS6M{R6M6F3Q^!dRKM{M-4RMHTR^Q7f46JW8wes5;eBG^%+
z%)$MctY&)r6%-FMAO9cw4;kk2suEP|tYVQDt=<I}i<nYxM$lyKU;Afc(M#dl^QYMH
zJcW6e6Yh%rR#WU6Oe>1y8Cm+1dyM=zWz2&Qvs{>o<V!J9uy4aH(b`tVS)?l2oV>IY
zn~Z=N89xAoR<*lww1KaEmS}WGDgqcZl?wOaFgDLl8fGbub^0dn+$&2f)7mPoOzXKq
zmd3Y~ZXzo=zg@YsJ>2R&`Yp6%PPm}_Y!;?+AH8g&dR`hb+<L3)Y57nyPq`1o*H-NP
zsuT1B4iB&9hX<YA7LH6DZY!G}oZIH8?ppdZ9;a<9d{%ak+zgj+MH^VT8UVYizQZ}_
zm18~5^M{8s+ESCq^}X})t>e;%)9;4It!?p|Wt?4PU#1&WuhUI45096Pe=QugWn|vm
zJ)-<?J1sAK^bNESKp+k**xOE0fS1$5-Yzd`K6;KDH~5(Cl9Fy&N`9^CJt`Zv%%Mzv
z$=>Q52?CKq`rKAk$?Xv(6Yk6kyUi1hw7~oGn`=u7oUZMc_`=?dgv7Ri&F@eI+4C(1
z#@zz_ekIp?^{c1mDd9)N%j^WPT!`HMH21)DDdmr}ML{hN|1P_4x6&By0O(0-8CtRj
z3A53Hb5=Dfj1v@O6Ft@NoBRsL-N2oiTDZt(c)@z*0#<wy?r2JGa39$j$?i+BMki7d
zzsotHeVjL*%Ap$oRj=?&a|sd%qEY(j7fQy-V4jP4C97>Sua1VOI#Dq`{(6-csL2wq
zx62>9*m-_<ap$ni@R@#b1bC#43^5+KS`cZ+_y&Ap;9}SRg+$a0p5icPG<K<4A4Gk?
z3fOI)rt~g9y0@L`{AD+`7h>MFIob#HbDul+`g9N2JT-Fh=zOIUZCQ#M)zUF>{!y50
z3+W=F_CuqPJ4BQ-a3+=9)GQsFh9H9US;8u=z`<;Mk8|MGd*_Ky>A>p|xZT8|{c}Db
zbNb}@F8gfwfyIL{g&1G!l8qjB17+s|#2GV@i?4uLive>9Te2&k4jJ{{9p535Sc_0_
zs}I3+PdP9kYjO9|TfhSzbCHE3Zn=l@n7~vzU|j@1y0D+yZk_w&zJ8tN)RTf@)VYJ)
z*}+_3v^Ua*mrT*w3CQB^`1&nWe`^V(cQavb*|Pdp7>^Neirvfub)q{43--U0Q4+m%
zDMm=j9cQ<IX<&nX*F-^N!J8x1K;}VXBVc*#v*%D0gdCLY*Z6M36nW5^zd9_S#6FF=
znSLd~zTc5=9vM`(I&8c(*HmqfhqS0zW1l57-BA1np&`vK4PY)3`B<#1WlfG=qhEuy
z;!tBxXH@+7=Nlpg*j%UQ^Za;MtTGnh$=Tq9iJ>~Uh2c8oz=v@Aw4#x^U4OC`dCV1u
zI(s?_ExUPXx4JuJd-C>0*pNi`&$;N11i1r$u+#J98v$)X>{9aRDD5{bH)5W1D@%T!
z-unE66|Jr1B?kLZ?t{(cji21+bwWRt=mR!g>~nQF>I40$z6>tInw#Br3D3=|daZsG
zy3M@;6Q|e?LrTBkk{OhrPa^vza_?wl*-MQmqWZRSmz&>6Szl1s_S4s6p|N2-oCd;l
zSPu>5?ZNgtsDcbor;s?x-L_!~)f({CAcJ*s&%Ndm-VHYDm)0j=pPY!?zxcg10aaAQ
ztrZkPhePs9KR1_w$_ooVuU&*A!@F<w|M=1W<0_%9m>hcSmi0_~Ct}|7DsBV?>R_#4
zd>V)qbIy0M*mtr;q%^5$VKEL*|7;K%cg$9fKu3gW0b|EpS%TkEe?fD^lzAM(Jc5o~
zV8CLiJy78_Jhx6V$xRdqmYe)_O_lyExtCbGG7`n((|IP>kr-u~@!48aEA}BT!*c;;
zpC<JEMqiVH<yN7*@w^!AriypjmxC9>*Sm#xroh*T$?FW&mBTvIf_akb`Ush}x!Zz0
z$Id07-pLx=SP*_v?`?8%H=?`mx9@BB4kNtU=&AN%!7+OM@LpT!Q|;?%^BA4%S>5Vi
zCdYd}-;F6kU%B1ge8pPCo#YjLH&Ff3`t;?sM02sO@lF@x()$@YJO0aWK<LL4nQhZO
z+GntL!=DUXCITAvo^6mlZJO_Lx~U(RmXF|x15&}=QMK~q(RkH5Nefmpu?KRgpS2OT
zTCu5C58W1z-6!XdYr94q6K!Q3s6RuXBo<%xsk`>a`I{v@vl|SH0*+UT1RTV0)KPIu
zEZlx!bVS8$WPh+8br;yd+PGm+K0Ypy!mL=5S!Uq7w~1-$G-r5PldRUA|BTsnf;QOJ
z96*FN4=u#Jb$(pZ;y=Jvo@Xj`vUwscK%=s8O|E%1GkRdF9F#pp2Wb#b*No&f;11N*
zUt8dbaN~J(JmAiycJTGh8Q0G+i4gb<(!{s`qB&Xv)+)1jN!c(==Ny5T!C?>;!W!+1
z(QNNDsgq~@-}9aXvXmGVAlAgmcPn+OMML*Q(Jkbj0D+t%psiFfE&H+21jLMh+<;gL
zXPtnsNMclL0ar|^I$r)g*!~gq9zSQRsMwIeEg8z3&6<reMSg*}46^oC97{Y-UHr-f
zYoA_mkG6`&Pru2@JJcshLs@%d1O`3<P;D_<AW7cjLy;2dHtTwF5~?d2F0Biq0t0hW
zfRcO(ok4W$i~V<$CU=1=mLD;FQ4l0~c=%qfk%1GBEFrHq<MT0{(+zjfht+$r<T&|w
zli1x2Am#3_SjG3!%#|Qr!<E@IsS%w#sd)S7I|3*DN<FcR`Qj5Kz4ZKFyMKOY`9V50
z06anB^vGK$oY<j5e8+(Z@4cI&&=JETFoEZ1)*30*y9FO+4$=$5D7z%-N_zclyioU2
zwe(74pqGTM20s_xaOR6Aa?_LrO-cZnqPgY|TU4sOE2s3BQ|(SWUDPx-8B#fZXsiqg
zJK~%mUEtP~phHn|?@VyPsr`X<?0AWukr;c+uWfXna7W?CuZw|$jvc!v5vJ22$ZI?1
z(@l;0>vxSJ_7AHE*|$zleMspd(?V1QHf%ih9`a8w=wk1H-?{}ppNCsr!Wv$rV9gPv
zuun_Jm&#Ue%`MH}nsY(SEv)Pm99}v8uHjm-gRi@|ab<uW8?Hf(3_bojghj$J?Kbfk
zb@uO1^v1ty+#V-1y>?H+a20Uh8kEBvMz~sYH9&O~9uw!Cy?txgFD%5WpsB`CDydQx
ztIE7lGs3vT4It&y8u@k<NNS`+yU>!a`C61EW96{gU%VP+5Vli}W*6SZ;{Fj9Ed#Vs
z1?q}h5we~U&wDh*a!q68XL?C&e$TMw%FCN`QIUA#N!F*yly@T*nSiZ^BVbFnlK95w
zE@8=j@*0&3#U9roUSnF>y3ckrA@_-HD!MSqyt9Mb3sSAr0W{jx+P<3D+Zaj<KZ=Xg
zS)tm;`DyAuSxu9W3R|*v=mj4fkmu%#VUNP<?Lwoc?t?L~sAD%4C*AbmJ^rqg64R&o
zI^E}bL1}DKLc0Tp#BfST>M0#Fh~u^Xo^kL}xLbp`znhVg$s`%?Tf_*Rn?q$*GRD^k
zTm=s84fu8|3Uj<aENzaBy145saKh*Ng+CM5e^Fn!89Q+5>LFf+i$+U%2_Qu)9SI!0
zH|N9ufyUAkYS*efiICT><_~|!UVzsFn4rkcmg0C>t!d>8^ZONQF0dGeOHeGL7)JNj
z+2``_zWjMl0N7=k-f4GfxYy&qKhr{I#B|b46X_Z6q^?+-vcHe2XXp>fovysd+gZoP
zjrGTA4{osD6!r9Bonnqr;DkuJP{+yOF|pGgI9$y}HG3>0k&*2^{rQ3}pEiT|?Z7Jx
z*+lRfDfdR}J>m`5Z}e)#B)gE%{?kVVMVA*K|F;hZ1j2yP?cZY$YAjFncc007c|v#y
z3N%Sx7_JgJF3&;n?-n`;MDp((*k~6MT7^jl<yXKZ|M$uBzm58!<_a?K>I~2#g%@z&
zp*spR<o_w0R3H#+Z~p%~E}%~oCE!bhpwEREpb?6=e;3FsMMC&)VW_$=3v@*hm*P*o
zgFWW5!@9-(=X@0rD5etQ%l{VEzbmMS{~t0_Q-Xu%fO-6<4ebvDVcJxO2Z8YZ^#L1s
lNkCPUMB&e+pixR9@a?kDK_yCTTo5jZ9}xultnl0R{{dtZY!3hc

delta 9491
zcmZ8n1z1&0x2C(hTS}0YI&?}%H_{*-(h{34=|iV90*W+9cQ*(~cT0EOBYyw?-Fx?W
z&hzYj_B(6Vta(?QneoejzD$NDRF;Q@!-GPALV|*VqK10;ftEZH8VV}Bf{+dd=(q1+
z$7<Hv6OnAu>}ty?VTK8P)k}bU3r(Me^{J~C1RLCX)WuT5Odv&dVKP{;&B}FY#;!Y~
zQ5oRZGpBGq@lCdE>n*9^XxGen^BEluoq0`3MzDe{RJWxEz?)(ZGU^y7;8MZ4dC$bb
zmZO;>fSKfuLTD}3gyy`f(W2}O#6H+xscenlXzwWpQilX;F-}$HZrBZH*U4G*L~NLQ
zeajgLI&I->pdnz^(tM)ct<PoWw@hZU33)q?s7xXcRZ=>I*coXIBWa5k3>qN*+~Jll
zsKq2BZLCcagK7H!CsF16Yx>o1@E~?%h*=qoPjOoFpzDj)ciKZ4dimR8z^_93LdLI&
z6<&+)uh)$eoc0#AW!KqY>ZZn@7|6Ta$<4^hm860ijL59ipqGB!W1r(Ve}UOSK6#n8
ztl#EvfGQw6%m>T)wywn&`<zUqF3HJ}qQMK^(lFSk)G}8v%bzONU!scdat9-F;r81r
zLGEUaK>NW=wm5wso(F<0B*cbDk@!_iC~!M99ty5Oi#ZHrW|m>9VBkn#fOtiDSPra^
zqkt#sp=QB(W||3GHmMy&vj=F7)CVKp)Y$wV4_DG+E;+RnA2Z6`vpiETEGqLn^02(z
zaFV2u12QZo8#O!RAL{E7vB4jtqYh*{{Ap}U_De6gqL?>xW-o*z%GPp&UcGqoBXX6|
z><$oW(6{2#PW(WmdoG7r0=&>q+$0ZKCQ%;d?jDgv5_E>m6~1n|X?o48SZ+1=(V@S9
z_GN6L<VdW}b?lt@-WgA>W=;WJ`*+`g-LQc>8dF#b2Hl73og<rZRaNO1!D+CWTQ>)M
z@YPNEQqH)*LaMa)HhU8%W|6i%TYv5qM}?5-h}I}C&d5^bErh90;4W%x_+;#CZyvBA
zA_H(0%NOp9Yd*D5Ez2%G<}YK06RNvG-<u<4`FKZBr08$XU6LZz{cZH*=04L#snsr>
zM97&x?Atq|4<^Q4^SLjj?&{k_G#jvuxEX&YmHpOjX=C$lTON6Q+;^GmFADwUB@Q))
zf!d^55~JYE__N8l^Ucf|0k;MNY2gYZ<!}y=oRQd><~%)BXs44k$3DJBE>0KIzEdKH
z2Re+XSpE9TU)F#N{yem1CzSXrQ?$QLiZ_W@-cA|?6@?`0)F51hikjqhj2*+A1iHNg
zvXmY&CFWx|{3oGSxDq8Lp4`~QF^xUA&%@-qN{_gMbQ=;#wb`bQWbrm~k1Q@2m}U9E
zm6YZZ^q?0k?N7=)Y{su&G-;5Q2*-E))1yY;zEnAzf458X^J-Zqk4wW;y-LiyK)FfZ
zh%$OH1i<R6h>=kV{OLv}*tRv7lTl6wqusrkh&Nj1;h)u3yn#<@Qxh<eMG4oi9sGK_
zR*!giwN(|T{p#!-hH>Hhdn!2l<hzeTKqz6j^D+S^%~g5$`y#7YZRxbT)K&Ug^C0A!
zsJ6i*v7O0<(SD_{)bre2(>&cHpXo8wg9*dpS95MZv0jo$-AJ!b|9T?+_%zD7?`!Su
zqP2|DLcEll8)NCk@T+p3<+~UQVqS7g?{Iz-Zh`Lp_m6lmt>A~w?sXC(T<gXk2tfYV
zRMumg_z;(dAu`&i<~GMKq@>jSxSem4DwOm^Vw~Mg%v$oehcQ3DJ}l1s;LBe}D(Bff
zA1{BtehXvK?qU@oAk8@uGjJAf$*`Qhd~A|1cEjkOdOAlS@L*(PqvyP({QZYt!1(;R
ztSpP*6z{d>J2dNG*rI{uT{TH9_&<P<ME)tqK&;aPf!etGFPSPL@>MB&X8Xn@50td<
z1My>)SrciSX>V%c%RB<+e1}U@(3LaQ*cDdpvTPLsXFvGmrh^w8-&hhm9W)>)I)~oU
zDRQQ@#!dg$GPK=k%P8Yl%L_6jpc2ZYZQk<Q71KV1yUPbsBF9|?T-Qc!-3b{T+V0XQ
zJ^5ROPEAf9KDc^rEPk?e1(KD5&*dH5=f?KcCAKm;s{rUfp`@xAMF0ln;0jmT6AubX
zA|4ElP63o<>N(8IB?T`draT$#2-SXR4CIUIN}`S93GB&e0KKflL9Jko$*0?PF@3zl
z)A*!5ZIIqAr||iX&p>}cW1@(rA=z?warx2vBj~PT>5zARd*8s#cTP}Gq`dYjeY<?7
z`RR7Fk#}-w?(w^Ki=nW6_RLIk>(9HT<)x?n)+XStVbNz^q--XXOK;T^SoGo}Ggvav
zKhVP5FWP+czN_@D)oZbJR~ig_aJ{-Pd8*W7JBkq$5;8bvW9ubU8XR^W)$nMP|5EXA
zYF?$gY_GMP{c{vi%dE~<pW@*D3Nt;~N8`{cQT4Y~!`<b>=CJkMxrw~@6389{ApdkZ
zk_Biw5E^FJHEwRp+|@q~g$z#5WeeW5wmdw2CfO>UlvPTfwr^ba<<FQOAhaL3KQ4du
z?Nw6g4;+!le9pOJle)(WCg?1=3&25cuK3%u2tMh(MTOJ5GVdR54y_Kq%e|hOGJWpZ
zDa;;t1Lr(0E%;K=mlW7U7Fvj-9YWR*)<c2S9s5(D`ReF5Z<6Cp@rc_#+e|a&oE{hX
z#jB-O!4|(qud2s}t4AL<ZQn=Jhk66@pKh^b?w2u#m%B03m1ghV1s`sYHc?N<!#8cN
z&)n|5vebTWeD}-vs+VT-`{1<knW;~eZ}o4?%iY<h@^snOj4ml5)Tia?$luZBx2;FO
z$nP1$q-9FXr-}!DLx&b&vV*CRZPPp31h%5OD`4^4)yq49T8V7T!OGIZysySjUYFHO
zGkHG5ubx1U_YDmqApI+Zz_U`{*O{}S)weAow%L!pyTq4ncXM+TS5+dV50z)Tj$@Vc
zSdDYpvv#vev%@2sd}$Bii<K=e9zB}@kp;VfP_oQYpV!e|^Vt_m+YjxVjtiHJ46~Du
zU0FVN8y10&-21)RlwQh$(N=(_>02C%9eg*4Wazu?WU#SdY#EK}V;;$eG0;Y^7d4ro
zS>0gg=|kh<<#wu&`0VzFr%INXy1DsE&6{|VX(h)8n*B_2ir1wMly$#%XAA&)+B*}&
z#1|q7Jmp@OI@Mdv8bDL4xBE$F%Qr1YZx@U^+v#W)mxb?nlmhmdox-lJQDQqOPEp1?
z_0G{lS^0Z3d1I$<Dk3EY^(z#_2gNHCB;>zoe-oF_(dImvBJntgnRHIi%vwYpYz{G`
z2%@`hpT4R0t$3n%sw@+#yygOSK82o+dv@qVB#W9e8H%c%usbYD-z`t(;jzW0a-yH0
zG^mw?CHFDBuaNmZDZ2K8vz%q~q*fmam1#qjG2bYIT{sKHTk=wePSWSoPBMX+PCk0r
znWVou0e;v#5ft{mS)qbN8Cb9&0&a~(g(|TCfhJfVB^WOfmne)p#m@|IYrpR}sbCoo
z>GaIyWBwG;X@}+*20NmV8lqj`E{7l9sRQ|0K1u?m0S|?Vh=CpBZm5+&Mkg0N^i0x8
zJqf4RkujRP&c1Xsj}60$D@(>O1OKRAj^2|`K0(I(i>EBL1Dk5KUSt(Jm)G$})~ZTL
zQm*ZA&QcZut~wqg`cZ%b6w?Cgb;LK>Vo|Y3EU=*eN4=ELW>qiN7ziG7JN&emMF6vo
zXNB6};kk>iNA)Ntj!BF$1FC1S;;(|mQF@Sv@*-t7%;(s$Oa^f5KpDN;<Am=I(g$+S
z9Q9x+*1Uz+J<q$XcA`tMFyA|&+j;u)BzK6TcmglD4Qufa3D#K@`rOFNU#KTp(r$oM
z#1o|$Hfj-qx|n=>&WOTrC&{&_#Yfh#<NvgIA&FG;XGA%bMP97Arctk@*>7SIriPNh
zOkQ@GIC9r12&a;HL&1DZu1I(w3MN&8{EZqM|HKuJW5)V{+Ka^ArlFdalNQ`UzE{Bc
zm}33H78IcrCWx@7+m$H!?7BX`vQ0w3^Heu{wPcUm3vCb5%I%`2UVm^tU@&#9o>{4L
z??XDQ{%K{7LQB`U2UR)g3bHP<=LvdD%%Fxa6Y43XyH1Vi@YN3#@X1Lu_iOl4NjNlZ
zc)j>h*vizOUpT|rF`t&`ed+up54?VGKG>Yh-T8dkWmyx7hv15*YhHf$tGj^vDxuw6
zBVa`c$1~x_7e(~aPqYF4O-Pc+K*6L26$skhso)x!0&rES7R_qXG->*!h88G*QjWnH
z_JO0;0HXuXMS19Dmc(c2W6+?yxE&{K#0dW<BCPL0>@a~h^3iKZr+E29i~vd&###u=
z3kSb1@JgT$qUe;P%3G4Z%!n|1F(MhL-P??WDdZ@um287+V$79g#Ae0B;|e74*lVaF
zi|~rEsqoO-6;g+k^-q?WTvLq1Rs98o#RizIl_HJqv>{^&AU7k?kt>E)Lv8o?=1&4G
z_M>gPpIt2ab&8P}3P-QEHxQ8EK9xn(9@GW<jHb|$+j&O+enxL;(RUI)WcaXmT&9>r
zBX`quO9e0}9pfQWz+#&Ic8^Ubv#D-@);FiA_@tz6jq>(8e;doM+SJ#?9c6elL&uV8
zt8k+<?O+Cv2)G!3nRb1*r}6`i+YBeOdto54K$1fXpl|MN6NR>z!?gwzBTZ(ihH=zw
z(>PC^VD#m0<o~e{N>(KpV5J!0#siJuiOgQURD-3c<8PzY6HP$spy=rgCW<-h(lXxU
zUyP+rB*PV;W|8Gk#siUWFm00C9lH0c>%4Kfxb{bBJ&W{*0i9|>*>P4zwW^_TWL>V9
zMgszmdpWVeAb2K(h=8I%sDf;q&uvqcA4?Jnj4vGhI1|ttUK97^(Q#B#%j8_|<tP*^
zmFg<-GyQ{a%5S2q^0`n~32Xhh;l))v<q_V_(JT9UW5A4YIiS}tn3f|^>Dc3jfC*I<
z!e{*(1`jk4gd{KtzH)vrYV{dFm=;J>ENaEGkQ6qtU)e7gpT-Co8fEWVMi520Pc7Eu
zGoyz9lFTjBDv|=L$J#2AHJpc;%~!>clVdxwrYxKZY_zTQ9GCpdE=_H5fdB!N4vdL7
zUpWC7HPj9dfdCR{@j1Ph;2ampQVCQRYH~61Y^nm<8U|_hKli~#h`_F_$P04+FTqA2
za<M2ss+wUCF@4`EQh9rjBiz{u^28#|AM~m(_LOlzAVxrpY1B{BuQe+YS)0mVc1z&W
zVFO(1YDgJu8#dB^=~6c!t%e(L(|ZsgXMx()=>80L3(`nT?igClJLe~TGjH1#RMkOQ
zO}}zW0Y1$TGSH5=Cuuqar<AqAgabmLfOnodZsimut{<cF4Mb63O?g+)Gd<MME9<s1
zV7B9drc~YQ$Iz0(B=Y5|L{L-}MHLM%_$}g1Kh+Bn$ROT=L?E`*Nksp_NnE%d5<dAR
zOo=_oy_W6;LjhH{sLGBDRyLaI8g7d2PS-l_)N%GSP;oE{QN}wLFZUC%$J(dRHSovs
z$+ftw0MIibuFYa`vfHKt7<?O%A*SC*UxoN)Onm1UG0UnOF4|T(#gE0H|FEapEH*x=
z4Q~xwrB~6;y1s3tQL=}VRfS$+mjDE9G5!+>=#{UN)rpOtk=yto(r&t<;sLn+M<b7J
zh(<_R@8`U1z&Y2FFD2V>)^Mjzl5x8kHkkfWT9P&}!4j^J0CZvr#{&bZtoTXa>2W<0
z$FcgRPnta?CbTl{7p|T$@*L70Ba&dBGy>Bcgf&R(a}d@beW`leCtWQd$xcoBhXv+;
zSpYyD==lz)Ncn$SK9s&^C5_wWR=3_O{LW9sm~LUt>C*gdIt~spsaQX=CbLBvWjsyN
z7^a@53c{X>UiKH4eoQS0Heg?kfMIB{+jZA0G+dXg9S!832;8#xI9#zW8?KoH&qQ_^
z2)RqN>K@}cJgJ5$BoO$fx_%3MNDq9kaoIUwmJ+QR`ZM{gYgauBm;B2{N{o9QBE%`h
zivp`nQsOn+ro<VtG(U$Zy{EY|Hs@3bokaNoBbLcW?rGDTyHsi)`sUe40_6Gloe9t4
zA)WBR2vm}5(s#Nnu%FQC;d62u;tz2oxx0$Vy_FM-@XsCF1*po13WM<3YsSJu@r$v?
z;ugO{sMDzfU!ECM24i~T!dObB^cPB1N>pg}j9i|B1V?hueLn~^&y2!l=}mnFECjpL
zgYg{HQ8F>&!;R%QA%Qg0gYyqIRlyRRQ&*B8-sFK3k31EgnemT@0DoNsC)!x90|MXj
z=zzd2QXMV9#zV-+h$!9VY`?(aQsSBax|3?Gu^bA-zqdS4ApUKU8o&r%HDz6<?)bz{
z4d1T)SdpZP^{j@%`zf&wr?T-|F%u?aL}ngWqgk@CIOI@H;@rF`YJp?P8KXmh-{&*Y
z3$niqgBXu+Gc>Ih7)s~rp21+|nOL1NrkO;An45vRSrlSyIkvs#J&eeN06bW!9JSi{
zas@W&Z{{&Ygb)KdC6eqq?y<-12LG|3tH+@_zhpjar}k1@R6@qz7L#HhIpp538CmDx
zDzPbdid6OkO1_y^5Yv206pv(BwLqOZIq4InWq3CE$}Uw4Q9&0(_DXm!VKMef+(|Gb
z7=vRCKP%tQYMPT3amA>g{&<@?6#pkoR^OX&3$ck@-xCU-xF+Bjx8dR7WbQ&7@j68%
znxc@iLz$i{kun>0^dxULCfn*BIpXTl2l&cOxdfSu3}!+|uBmPRCKBTL(V8s~vxdSd
zr^kUxzMm)Blw3se;e2-tR-9mzN10Yzy|N&nS44=jl6j`sU_1MJa!i@fjP{flkLmE2
z4-l@z2Pw!4_`>SQ&2p4{KzoYmK+*vnh(<xB+QzJe(>ixvmntj?amZv^M#rrH{Whb!
z?2Nsf$8^;DR5e6QU!>@xH7SixV<ObX4;H4fLIP>tqpSU(d9Rez-%8obC+z-sZ|)h`
zP3CnogXMyY;Q1#6ZqiMQRkN$+!ds{mAS|h*Xm^3(BXL>Ce>`qYi5lmm>{NX>mu2rg
z7Dh$Ec}^<qpPUfIIx0et0Gu#*g>hFEFB0M9U#`2tpI+V=P|LxwdFm3Ty{Yu;6(o+U
zr1~d%YP(>OMkdbs={VXtzIe(-3{JaMwZ+gL3ypH7aeTqHkRWjHw9bj0V#?+KiE&`n
zKgo+xpbx1>PP&b;<nqZS%mnWw3~C*YaYK(dEmYZ2vW*ca3HvPYa#UqbhFXaKc`Wc!
zi2iNb$Z$kb)BC;3U1v~{xSwNZdLa1YMYKrq*O$)fmnzC<N?Ct6C^jy3CZd@JNUL02
zP@vrC95GIL_^l;9$c2nBVrQ{zXf;{V3+VK{@{MlxCYag<7yZcs+AfYo;y2xII87}G
zfDv^Br0E&ccj2Yuq<Ge5ISWQqcbExCNzwNo3A-hjh(V8@dP_mysg(XkjL$nOwLujV
zEnFz?Bl5!BkBEAKwBBl#>*&Cj;&F~zFg>R#eS#PS8~uO75gz$MAiL(T57Mg&PIxEZ
z$kwkJLpU?lL6Nz814^g~!rK6nt2bU{x<M?%-wdVfGUgPcCSaek#<*68{8`dZe5o|g
zg9zSzGcth0Uj1?uf6DRiC?H737&Ve-Bs#C$HKVi(&tNlmo)PAQ4_(ixR`9_$!hh5t
z>dp`Jz0=P7x*Wn30h3iY`T8{?<HmH^8Z{oEOMX)qd+fpZCoTPF$}H;`m=0e<G}e$`
zI@VBKkb9rZdDq4_F3;Eveusl*U0;#z9!B#ID~u8p*IzCtWY_m_d8lQ*U10Av?jp5M
zK>8ITPwdM`Z$Kp1JIr3ZDQ!iGP_yti&JdATFMt!0NDKKQ0gu5b9BMSr-<k?&61xp-
z=6RvwkH&JfvydYGZ}}IAk@owI+$6dhne;undjgX27?Z^Akhxb50S(cVt0^yFt~{go
zOa}jPv6*)*gb*HgZglp&GKYf!3j&i`7^XH*626Tq3S8J|_RBXfk<7tDGUnOA=Nk}h
z07$J!KwiBFPN*d<Bp~oz9%iY3H?mPjIKuuGDpH#<*z#T9E3fDQVbtCJ{^u;lBCylQ
zz~sZLz{+ypldj{~nsH%{5a6`Nk|5p{utfD=$<Knhm%s@<&w{sySrY0hHj7+`*xzOZ
ztA=SSZ%09-0((vW72CwXl*y|=je29is}S{&bxLqi&~yUD(@_<1kMMR_l6z;^9`aY^
zGjHQ_3-%~0#Nn$7X}vRaHCYL=0S6=NT>s&A+|2$YC9d&0M;rP#uoOofNeS>wf6G<z
zyue4Vv<bkbP(D{h!}|KS5k)Z@V9I1i7LqfRVx*pR`|jrt7oT;;XMB%VKqFQW`T24$
z$tkAX#)C>46ZooXx)6a#H&2P18`meb%7lg_aa&S?`P0Xai)_YNh`)Qk$R8Jj71kg*
z79Jn_;gYM8N@8irV>VedOixQ9_aaxt^DTFNWig`Qcr2vA>d_J>0mxle)CyqVljx?u
z<z`lcMYp3$4YjQ5H!ICa4U^{i6&|8a;F^hxzRT2S`Yat)SVPybFy~@dGLMsI%rSk?
zVMu7vX_x`Sj;<pok%odD{UZYv9qaM&A@7f@*w|8|<S+T_<^g#hDgf<r%)e_R$(u75
zt*q{byrXwORqqAiT^QS_okP{Uw@>k-&uj~shTy{X;p%sv5??QEwxgNGQ{G1PR@=JJ
zJwn0m%HNdxoma_KhxS#z!Yr8Shi9%w=8b{}N$C<t2km=Lv%k<|>exuV0I#PBgWU)1
zBaCzns>3CF$XZxqw~waqY3J$L`t8x+qA^hW%NHQ4Rbwgdw!SEHqjd0S;hS4-ZM=r8
z2nq_HUOizx?|=9q73^rhLO}_jL)I&a0nS$*cD7|&dJezX@qDwZpRjH+^~vpN)Zs&Z
zhQ67s9;~uK(^gy?dOc?S3s`pQC_sO!#sl`F+Yrna0fa~RQx`xMU#i}#I>j+CI{IvU
z&xpVu<wd?d@tGr~k+F&|mu3Et^qHY>Z1{XVv|p?bvBq3Mur0O}&aUQFPgc=R5@0Ub
zkZZ)hpo5x<jh_5r{fjsx4F*<Dq58BQnFnnbn-C4wIfh-Nsnue+Bv<Hb(Zv@?2Kv@)
z1`AY}pR>9U$6+?+%1CKKbqgsq_%gqV1CO69(i6rn6tN%mLgDU#<gSB`quzEVJQ+qM
zI57v~*c`%CX<4;oJ@%1$24$sw1Gb;&)1bWK4;ysaP&KZF--vl{p|F{a3-;f>=QK?w
zJGy2T19B}}$SxfM4FG=abI1CW3u!0NUhv@jT(JlxLZ{NIA$MjOU)lH6MA|t4vAT8-
zilDyqw*zpu{c~bMg6;~!OQ<JC_6zNN!pe+EoYtJ3)Q+=N{PL4<to}VJK&!l_Ge*Kv
z>e<arIH0q2thHM<n|7f3phzan)iP&2%RYP9xuEbNQcDT7kkRY~+HVsHc_|dK<9)M*
zgIBW5r`i;l-UW5Y5i~QDE9^uVCL3d!6Et@ki^$O@8gxjnXjeTVBTWgf9#p1qkb08+
z9YOHY<?tU9HzuOt$IS%dfVCA-ivTwbtg6vKj@U$J#Nm&FyPXO|3<s~fzN1ZHEs!Ai
zrGAEEy7m&eU|6C+E0XCuK!TPTjfKKA4A{~f+d(@OJ=Uqw*|9G{hb^W6CF2=LzbtxP
z<)8b*o|LhL?^v9dZ$YKb7;5qOyhYoyU>+vomZ#B9QnAwM{ai@SGyp-BeC=OAu%1BY
zpBuOD9J8)N53=zxvWMl_4T+k7G_|~#N9Yh^RkHm|zxX{}VDB~BSKoP2zOvm~|1_6$
zgW~!1F81nMJJ{9Y!g+`op}n&C=VxR6Njr!TjL)Qpx~^zarR$rbu6WV=iM>73#SbFt
zL#AK69;kIGW|iw7iRyAmYTV1y&10s2H-2SY6I;CEO&lo+Elo=bu$?8O;RR{E9r$T3
zgFyODQ!)K0?ZYdS$)eQ9T?0$Yrng#p9x}#b->+XKwA5hTx)|Sfo#~C9Q$FuDRvEs?
zLq{eNjo9}<go26#qjGhln=C5yQ>GF*$lSJG2v#j|RU#l?O25Zc8t8n2eco267a)O#
zhqhPE5ChK$@^gP*fF@}NTH{jV{Nq;fwS;9*VlCc>8JWOLprH+kPJ~h?=D;DT5l1jq
zW9kU@xzK~Qpr8AOzd$*n9|9YLr~y5PJZZe%<(C(NR7(t5cP}EU0{p*d4rpprmI_y0
z@=5bV!moF!)GRk6zK>Gul$d5%VZR5qM;41rtK<#5XJ&HV6>cCDg*#{&zpEP^JfGJJ
zbxAv~u%4NIRqdPFawGiU^0d$9UUA!UhU~p~Ip{*V{^(Y*qoud3{-8K}M*u9@iqEKH
zQ#5W%wH|rb{H|N-wW#|{G$^GuZFl?4alY*FldPI6Kz?b7pXP(Ve{}IJ+JWIKx0PmH
zcJ}-jx&iAX#1jSG2t?c{yV5^S2MgP-p@*?{Sg4iXBT^z8x;z$8s5-})JgLb?>#k@u
zhv)}dxO)-VKe?qLS#e0KIs*aqP6Sq+95g@o;v3OO;~!+fwboSi<r0y{7e9VqHSQf=
zg;$)Vo2SLiBeG7=g=in%_8#9>qn9fiF#aYeSrKH%?;YN5N9C*iX5#7#x7|bQxwCR`
zgO1qj52~3sfBYuUwX*l_{2ga|%&L<XUs;ee0d7QnHG+AxKo>h}q!AFGoO&1c>i2T`
zK*(Z_)twnWh8-LxVpsV6<61oElFLh1&A7M*3HKG&HeOyN0h+N!5}*5!$-BrouhT_T
zJTDTS8^Zgp&l3J4X!38wP!F+K@q>&K#HGX0oO1b0L&6mdn9WLevL&uw2e0t=jpfq@
zF_q{S!d1r0cFA`rN0WmAVPxZ8(MP0r8BjwR!s>^)*)Nd=;AP;c`Pa&Vs5lL%GFFE;
z(B=kaiw$e{eTwJnuP?9JS9ka^s>g%#c$^Z_VDO36Q{@Ylg@X#<iZuCq<XA2E->lwg
zXdTf;>T~*+@E13QfcJ!{fh5@xu_>M)=R~I=`Je{4Ff9Ine4GUN_7`*-*sL;r*{+Qk
z<v!w$m9il%fzUZADQ}D*%YgD%@rqv()si^7oa}R6a?23&k~IwV=~pgTIaxJxsX?nQ
zqv@@2E_h?WFX`h)k4I{2iS~*`HmRdosiH_m87r88<s(Icc%?&Jfm2z3RE~)g3~QH7
zm~?0VHiIA5s$so&WP3=2DQxSp6%C>$L{OS*Fg8NB#|65I=euQ(R?}Gwb3_u7nkMQ-
zsEw~jjb?Pw=+u-Ym~5Fp5(k9-5F#rw1<9uzpcp$BFs}Dm;8Y?728#;H1dS~S^rGV@
zbJXTod6V8DZ&WiAh-k@|KQ+K)ug#AD_PndNhK`)RC;PW!ew0E7AGO?lybY6!zKYCJ
zlwcOFj$#=vfbKh}WjeoH#Ypcb(q29N^;_)&BP`LXC^0T*pnBRaq!u<&h#%`f*&DTg
zQPXxJR<iNIYtpTh9L>AwD#QC~LB4WR>}NYBksc4TjFY4?R0MCXY9pE5fJVKjzpDbW
zCNIhd7r0MJ-G_=jJeyJeT9cOS-(W~R;wuyO$qq9o@k|G=s8XYvBs`twiTX3xhB0h<
zT4ymF#rx3Y0Y?S)UPnZ<3t35q{1sYNApHj-QgjXi@_-JR49DY{0Q-c2&)7@cqOt{*
zyUe#vMYipTPA-(TJS6kAQNOBVR?m8`O&?BwmXm0fG~y$wn+2%Z`!)375oZxRI`UN6
zA38LB6$Mc=`xY>GP`dm1A$daybP2sY+MRT65SJ3iVa18}lqE2apGX*Myc@OO=)QY3
zHWpjd{)BCc>BG2A9JNg$K%E6G@q187`5xv^@C17)VpL&D*1#kG_XG}j_zfTFzo$N+
zpim*_9{#<$!Blb-WX~rcAXU*<NSMa__a)@+8Ud^;CkUsD0tE#gMj?5rEDsIC3ia<v
zpMUp%p`eKVPs;@GlH5zOf9tLP|6YO`yex+g7LaFy8KDE)$csQLf=lJ8$o`uyD4-zy
z{O`+&6O6@00Dh2Xh9(6wD!e9p&JqyB0_4l^zmZTpg5VWFCYJxN?Q>3mjFSa&OzHp1
zZWIKMD$v6}lMgJWh!4{s0@hX(f?*d2Co6(jA0(lm%p6RWKR7r#vzfX&yExeWsT`H%
T;Sv7yiwXH0LFAsu{CWBx<M5UD


From 661e682cea459defbb3d737354fc0db05f569392 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 16 Nov 2020 12:17:22 -0800
Subject: [PATCH 158/209] add redirect

---
 .openpublishing.redirection.json | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index e6293265fe..2842e1a326 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -15654,6 +15654,11 @@
       "source_path": "windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac.md",
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac",
       "redirect_document_id": true
+    },
+	{
+      "source_path": "windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac",
+      "redirect_document_id": true
     },
     {
       "source_path": "windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-whatsnew.md",

From c55202ed4def017c632d1e74b7494e60637d847e Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 16 Nov 2020 12:54:49 -0800
Subject: [PATCH 159/209] fix redirect

---
 .openpublishing.redirection.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 2842e1a326..2f50152758 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -15658,7 +15658,7 @@
 	{
       "source_path": "windows/security/threat-protection/microsoft-defender-atp/endpoint-detection-response-mac-preview.md",
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac",
-      "redirect_document_id": true
+      "redirect_document_id": false
     },
     {
       "source_path": "windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-whatsnew.md",

From fd9658382415268f69ed2b2a4086324bd9560b85 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Mon, 16 Nov 2020 13:32:03 -0800
Subject: [PATCH 160/209] Added lightbox and valid type for code block

---
 .../run-scan-microsoft-defender-antivirus.md                  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
index 73e99ff502..6b709df330 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/run-scan-microsoft-defender-antivirus.md
@@ -49,7 +49,7 @@ A full scan can be useful on endpoints that have reported a malware threat. The
 3. In the list of tabs, select **Windows 10 unhealthy endpoints**.
 4. From the list of actions provided, select **Quick Scan** or **Full Scan**.
 
-![IMAGE](images/mem-antivirus-scan-on-demand.png)
+[ ![IMAGE](images/mem-antivirus-scan-on-demand.png) ](images/mem-antivirus-scan-on-demand.png#lightbox)
 
 > [!TIP]
 > For more information about using Microsoft Endpoint Manager to run a scan, see [Antimalware and firewall tasks: How to perform an on-demand scan](https://docs.microsoft.com/configmgr/protect/deploy-use/endpoint-antimalware-firewall#how-to-perform-an-on-demand-scan-of-computers).
@@ -58,7 +58,7 @@ A full scan can be useful on endpoints that have reported a malware threat. The
 
 Use the following `-scan` parameter:
 
-```DOS
+```console
 mpcmdrun.exe -scan -scantype 1
 ```
 

From 1e28417ea7a49671c0cf1d6ed1cca69a0c4f91e6 Mon Sep 17 00:00:00 2001
From: Max Stein <mastein@microsoft.com>
Date: Mon, 16 Nov 2020 14:28:11 -0800
Subject: [PATCH 161/209] Updating Intune images

---
 .../vpn/images/vpn-connection-intune.png      | Bin 11428 -> 56241 bytes
 .../vpn/images/vpn-custom-xml-intune.png      | Bin 2460 -> 11868 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/identity-protection/vpn/images/vpn-connection-intune.png b/windows/security/identity-protection/vpn/images/vpn-connection-intune.png
index bf551eabb764e9f20275876a994e544316a9505c..8098b3445e40129245a4d95cb11707d7c4027925 100644
GIT binary patch
literal 56241
zcmcG#byQnj_byt6LQ7~%@c^ZGDQ>|lxE6QP7I&ATZ7HO<ySqbiCxzfz+$FeEG+4+D
z^yU4&^ZVzXd&WJC0qpD~d#*LtT+g&;`M#GE$H6ASzIE#sj--T$;;mcvq;K82EA!wE
z`VJ#eISKmTZ97Hrx3`M=fa~ZN_l(}izPWX)B>3UQ$NT8lSk@96cDHT;U{}Al+pTi+
zZ{3;_lN5QQ?5w+mJWa+QY1j=;M$OMA3nlNm3)t=oCcC2l@Dktq^Z)~gEeMOv$9W;-
zYYH1l_)1KA+dT-V<<^UtY`tMT%xB`?Q}_!pUic~e`U>!4@)9Xm5D_sKt$a!ucZg{4
z(X24to>bb^sWaR45TYn<&oUj!Q!yJk@i@v;xqykI$A<plyAK3hU)Tdc!0U@Opf%|F
z;y3TS_4P%H-7om{#p~5Cu-jKxU;1uC?q1(YybHj*zTm_B-+7R62mI9}U%`Yfs5MI+
zpi>RMTk&CcF*<)jiNIn;xZblnE&Q;Vz^<d9d9=!&YfjTHRhAKEV0OF_0MJ6k4e;x4
zzToG%!wjx*b#_K{omG<j1o6FuK0HQHKIGZB?>fe*>|sgNG~0L)Is>EF()}Epc(n#!
z`qCKyM$YF*-w$UY^c|G|_?E$xFcA}EC{qCTXSOi-SyZ7qHDI-Cc?z*J*FekFHUcn0
zjYfKB-cR>d8&+HPA?rKZJZ7X*?ft4<v!ycf<IsGdkHW)2BkdR>1~GfYpRk!6g{<R2
zt{KT>;^AH?Bu;!0V6>}Sa=%V3$!O?%IQA5^K^4f~<@`1KyzR1Pea!4|%{Q1yMjsA;
z0!c|=&b;-O0&ja379G;k)n2)+2u3XWGST_!Nxub1oIqM*0!fdu`V|^zr_RSdTT&AH
zle>KU_yM7dB$@hy={knYre1$EHCo{20PU()R|Krre(ZH*cw6SQTI(&$CsKS7`p%==
zdPc7914_%Rh%*=5`17a1u7}dfWrJ2U_;Ud@?Hu3K`HA0>n`8>O4X#~8Qti}hF)(Gh
zYXSc3UDzWIXmFcQ)moeV>fOEIsA=SY>?Jjqo}1K+SsvY}z1-Wj#NFBfk2~aO%%8KB
z4Mj=H4KXu#)>1<PU)nHE!p+^a4W^JkIFeR#(@QN9g<e*|SD9vix)x8un=jSIv_13W
zn5uN(5&3GCfsXr_u2swptfu{xI#m`wX*&BpYZoYMm*}ws9ZzANBP<!TjWzQaYmj@9
zQ*+^-@1hm6K8+xbn=`d~byXaM4sGrDIvuNKt@2HAGb@QB0cPLU$An+>j(!#zhaxYT
zBeQ~2X7F9BicjUsAkC&*o({{)c@2Cs9}!R?n99LO-}L3lQRM@je4OC5p)93(dh`;!
zW;FQ*)5u`zz4X}R>T?xYsbsEwi|L9ss#=l=D*wtNjmq+$1)k@%{OOOL?lVK*^M(hz
zEoJaqWJO9pyzk3m;DYkmRQc(=%!h@Iumam1L=s+VHqX%iQhBp+xsB|`mX0o*%2l0d
zSf~$9usv<gWUP|9L@4t<EUv!TpTgeEaD<&#2`SP~JAOXF)}(<@J#;Lt6VB^#-LyB$
z&Yyj$QEHGmW%**|@&mM*X`-A{iK)yivE10-GC?!{r>(!`blawbwa$VyS_4yz+Bk&@
zfrEiR17Cg)?gJ&XP7aPUX-?HRlz=bA2`nb+j`o^I2*J)rRJAUogd2Pj6Ghe&aocq~
z1@)(0MK%81Ib@a=+mvVO-8;dEVDpwOu?A_xu6C92j<*_%n!mYpZ@xW+IoPp;cOI)t
zxnOd3lvI;ed|IZvF**TJJXNUm!N)HW1dL@AED(akn4f3D&y=Unew23u->?m;fk958
zMZOdGD=Cccm{%(WOE+pkxrZ$rMkljO-9?QjU82amppAe)vkLfG$KVwPz1HD`!DGe-
z&Fyo@etgfss+#9bAmz?^y}O<t4v+79jB3>sU!^ctH+JO~Vn=$6Fr|o}uO;wDPw0BT
z!wt0s)M!K!Bh-K{6?rh%%_3C}-x%GWS}##iapEtY1!3$^q)CrA>~GOS1EB_WV^;4y
z!w`Bq+udoG5XN(wA2ZORvA96z!eANjab92UTWe^g3qSKp<y5V1|Ghd!UkA`iMLBY_
zNYTV})6~<)l`5@myA4>XO!j1Eiq=Pjc2TZ=y<6q{Fm-H>`$zC1<%YoN2d|gXYNf+6
zQS&MVJ`EO7=Yf1N4#~hCtdD>>Rf7yApj_9-BVH|v0=4vm-jv`EZjB~hRj#6H>Np&K
zOb}8t>v##yXODvCwuc!v5-KbG!^f@xdRRsY7=)Dt;hA>(0bq6j7B3DcLiFDCFxuP7
zB)q}vIm?^?JU)sVUi4?aDAinp6k=Gp3p=W<iADm05Sd@SqoXh2!fa-`6`CZN>G+kK
z0pbEr;E}t<Dj$=_#ag`2tM}y@a?;aYeJyocc<H4{=DL^0b$1HUSS9Q-l{e{#yIt#Y
zT3g7E*zuI7xKkE67}bU;&4N8(5V>_P`Ot5qv8vZbd3(fpY9H5N0=A)4s^Bg6=*JZ4
zu3t-mpkbw(AYqDKmfE$?G0oxyw0n@dEWSPBaXnZ?bphxe&DVcWdD4TCN#;7+%UHGH
z6x<T@ijO8!#tO-LIqKgf65?Cf5`p6lW7R<@L`+ytuRkeTj{axx-|@Lxmc@1Gt1N!-
z+12mMs)f1uTEZiZz`KF{3{^Aliso`^Qymd3T8Ent>+Fl;W~IgzhrAa=FE)#W>+%^#
z?T>UdJLP^bsFh429Ib&3_{et}$3M?9MwRF+p>tNsV+i?YgwM8aCQ@Y)3w}F>E2k)$
zq598!Bmt{b6g9f{hc<$Dj<*xp0qt%QwJoA2G+2C`uiT|&8{XS@P%<k(acBmz8Ojcs
zxR6OIkL@wO8iu)$1p$^3xG|KRp}hxsmb>?vke&l;6^E))bBaU7+@}>d$G*a5q)$|b
z=P{R85?@b{9((6hUlidx?lQ>q=9?p2Sb~Wy3{-_B$2_ZCDf(Xx*0H%9b)RR%(~R&M
zcc~U^%sTRC_yXF21%;isi4gJMPZG?1HC%hlPhCQteE0|Ruj2u(Ax_9aX#U|mCSf0K
znheWg>T&+9I?Unj556ooEec2CSuD(_gTJ)Q4vlgNEFwj?#@*p@7J2!vTfZs9&PHP#
zTj?a6)T=zRk9%P2y!(s&U~ZB6x5F_?IH9>Xl7*fEd$ZZ0N{o_Zo}3Hzid}CmGq$$7
z6R`TDv0~oc<h5f2AR0M|ao&>5<-I#&jVg_Fin?IQ!a7KSh_)WHFwc!QBd11R)!K#5
zhO1POTG+3ri6X4V3#Ywjx+H7q?S2mP;2*xQTf?pS==D<5{rd-abNs_@avrK9M&5*d
zd=7kiXw{5@Wg5%|(=7gsRqQbHwxFNb)2ae(`-5gtX*J972IfqXP7NIow}r&)z=TN?
zCuVJDqmRqKEZr$1@-eQQ_^{LgFvxdx8pW>B2Y-;QySp$1Z>UqttIGbCqX}AS&Lnl*
zTys0|LZV$?og!{cXo!2S7T*T`@s6&ORy2~|rL+em_=t~Y^(~T&b-7iMOzw_OCU)u{
zN?|`KC9u41&X|15v^Ty&3u>b)2kTSkFrsw(IUd5o%o{vqEBB5~@a)0S4t^wAP;TLA
zz}L8guH;7R*D7j`yT|z6nw72{_$!Nj3*0=fw0EqQ#~CR~dX*`hM*Y)J_l`q~rbf3%
zr=A?|&NODJWk)-KmKjyut)|kaWgvLu1vpL{xR`FIT?TuQGQ{poDgD}uA!;KS-tIVK
zv^Yg-)VI0GS_za%iaFPn8dA7PY(ejno{y99$MiF97Rz4Uyj2ba%83QgK+2pqXVu1X
z5m@QbJ82(<uiq=gfP_EM>x64p*jBmDY<M-)VPdZ^&i;K5^ZzUg{r?uuqF6s(fWGgi
zdkGzN%6lv<QlO%Pk=^Z=r>M(hl;ESQk-WzR0VAk<n`{8$j{tuI;*I+dFI(zGYatqf
ze@01l=jzVcbxfV|#u`Kq{`5Cw=DY*IT$VVzj<H{R&0D_@YWW+B8$SjDx<c2kW9}~)
zP4E;qUz_XL{P%+^c>{lEkMj-orf`%d`ogVi6*nB~G}6TL$>P6Kax$Mv>uCp$$Di-k
z^{bQ7{YQR|L!P-+0MXxv1b%_NVNzr|_7S?y0<I*RhMGEoWPy-_EuH@42HWDqf%=+#
z@8G#3pF|UUM%9AxM)$hJ+@2k^{-mRec0nEJ0CVock)9;AxpF(%tkIR6%KAUQEcxjo
zhBpE?9emEr%+z|~_yAYWU&25?J~1yYAqxRtYJorSCt%8(z&Cdt?Gy1a;(VzcI~iAo
z_)0#PnmZAE-bZb0PFCIle^5bwHTe!45O7#gg^RbB3=&QOp&EY1n0*gf=)ba=7PZoG
z8H}jh8RVTh5WoTYNA2LrptGCTu3ym_iUI-k%$LTh$+Dvm@EG0u>7Y;CpOx*41|#R*
zGw{WO<D@x1o2I%HB#aiqtJ3t-8IaVbj*Hy84J^g63ZFEWTe-*0o8%b9k5*1bLe}eM
zS<hAbUAcnGVnx*O=Gs~cL9WaBjj+ARrz6vIMUJWphDL!KX0K?`&Nn6S7d!>X;BNzB
zJ`P+K9WR**jRE-`$+nn(vr>8s<T?NBR`uQvEE1{C+Y7JWSK^5qul3&wPinfq*I%UU
zo4f2RWV%~MnvaR}F-`THo_MjGuk#Y8JU)o<euV?S#`eXqYL3^ZF_k0vI8OKZg=PmI
z;~C>kD&xPxb*_ZxX1aq?qu;ZY+i=;CH`#INP6LfbC0vZ9yGlMZed9749gkIf$(z7V
zdZg+*75~WrxV}t3HLt0|p%RCu*1274++3_a2ybz)lYQvq&&Xsf?Y5;~M~j@O({=uk
zxgo?Z-Fr#=MlZke8G3<iugqDxkQAcy^sKH23qn=mkkE@eluk~`7_RHRp<o*a+mm^F
zCYElj%Pz7hRw!NGs+bGpil1h}&!JhX!vEu#ZW6>n>X!$g6HveWDzS6=6K<tlY}lI=
z+Pv7~z(wGScALM&uJ#FMo;#?IZg|1^X^Cy%E6wt?Sfiv8j%9iWkd4%7pp-fbJ~x!P
zRhj<~<85SD{>s>6#Mm(K%^2!-fB)LdxoLA}OXRCX>u)n@hBIIP>_4=mi&5dW<d_=4
z96L$4SHW318ih{tUklwVp8?w22H{0L$M!U{231Vn5-&^#eS5Dv@-k??+e*20XG|O*
z`@|JP<Js=_K^xE$SBh#zDc><BX+bZ=Lyu#W9z}&T_(8l$m3kZeUSW<9Ks+Q(Hv~t6
zg-$iQo&S)Fr!whU9`ntLVUxO<wcd7mAx{jUS_APbY8zrxp(uo<zwO$Rs;qmgh|Cu)
zTz-fgw5@;E@0y{oi}K2qKJJ!rkxs3JJy}p)n~gbnZ5+NxFd;(uap^F~LE6mx6>5<V
zJtclLW}GV8wO?b-FZH`<WXeGAMfB?3x_K4+7j{Z8{s%ZU-hk7+{{c?G8*qC5Kfvkq
z=|6Dv1PyxPX}H(%D9ODmG;I3^^f;T~ZpTx0qHkWjrF!iC7vr7>@+J5Vc_M|;IAgrv
zR16@X<h;Z77hOqG*&udpi3=70UX((pjLgZU&PR;z8&7V&ipB^Ft43!V6miuSe&=^?
zUMHW4$9Wn7|3E3RFO2uZ4h%%O8(1}Ry293Zpa%`{b8Jv{M&DBUj^Ou!H>1q3gisx?
zBtxMh2|a9T0!|y>1UW1x7g6K~-K+Wo?Tt{8())}rl>KjD^nEf+;dtec24&WkmR?L0
z<FPn3SF>kv%4IuLx`v7`ktmJi;hjOYenPnkXR?9>)PEQa5aHhp+W`c$d4)n8(k$o(
z?am$-lFpv39KBoifR2_Grgfqnfc?$<GXRi-fgu8atJAKFCOp(ZZ(f*rm<CYc{SQ@q
zh|;(rBhS{;)nX<9?lFSUAx*QYJ^mP*?VfjfrGnkLb>%ec$TNPY-rMod6tz7XCk|`6
z5jm%+jm%|!*}me5Zf*A;s^P|QFgJHks5tl1(h|S4k9{<Am;0)ga*I71EqYx~KHhnn
z7<{3NC^wrsIjgA4)=Bs5mXWUPCwIy!c={|&r4vrSsi-}rH+YV*U2Y5dq+M%);W=p-
z#SXzdKh&HA3{VYcnXZ5mWO>Mq{1VX#_`;TkV^XK}CHo?H5Ga??Ib=2YjBs%^!QSy>
zJA`}Y?zN+0#U4gxew73#U5<cv`F2e6ZHK~`)Ca<Csc4AgU#Pb82!|5x%SvyQAH0>y
z1YlP{;sgP!r}0@EVRZfL@@1gb<<+=t-Ji`#p?y_7?gi@8O4B7K7AQUMq%r`9FCJ~b
zW^SF!MS>=tkr1msVawkNnAq1^vOXgyCvqG$ewsO(80kr)^)oFS+a2UPHX`C}QEQY%
z010n7UQMY~9BPM~YkbgEjt3z+75x`=72+3XKiM^A8a2oc0N0YOz|Qd{`VdJ!TXLJ}
zVPDf`4&f))&i;!+iY0_&Z+sWX<_Q_-MAa-#VuJ0$G^!-f2Ii8tWi2)dDJy(j=sl^@
zy8|O8pLIkq)GkS?72z<+9s0#Va{^$#-Lb5j@Ok&jBv)(>SzdUZ^?#mx5UbaCaLNci
zy@;H`t=o^Jm_FN(!;R%y-*^4PMr8*&<G8!NX#J88sB#C%otR=61XI{j7to0osBwMH
zt4!-6$~4fRGz#A;<u-h))>I#~vI^AJcX>reD{S(&CP;LD!x5A$v@!+h@%TKrWdZ4#
zbv)}WR<}z(z3iQmJ<9-FhMPC}CB5VYDqJve89C(f13Ac^1b4pK&R9Xff3#|R+7=%y
z7b(u6Nt8blO2|p44LyLZTE%5W%Wdz>WfL;~ElZ}qo&gv&56lUjloH}LUSxW)xULVA
zf-6_V>^1_YWNI(uKpR?czXvKx=#`+aoD+OUD3m+KK{CK-+CKBAUUneD4x~jO!?C`~
zgbS7YU}ssgcTdo@+2O8&@ZZSo!?T<zc!2PR)}qJdw}HdCdi~x&F~gY`odg9x-m4f4
zK=Al+itErCvDlD}H}|7#g>Ov_c+MP3X89=9>774a5n#1Ww0SdB<lg6a@YjAc<&l6@
zJ8}1YS0}f9OmF#w&%0yHr!b17@qGwgRm|KX%c+-S^dqz(KS|Xb-m(GtJr%}lNaH?g
zW1^*OK8<=7d5W_B#A5$pUh|-6vYfPvp3(an$<Rvol*UQziIAm`>*O~X*kbT+4i1R6
z0YQ4J*D5cUJe|WAtcTSy>v~aaeD5Ov!XMH7D;Vz52L?57mY-TzSAU9{ojz=x+WrJN
zU|R9K;N%Orco0uH0(VB)$*I9B$o^W<s2A)FucE3u=#x!Beyqz-)Iyhri`~#}CF*mw
zIPqNA+ld5pM3h+2y<597S$1^q8mLpe(Qdjiq7?)b-Ge{0Kg~XLjQ5Ro?;Pvnl(hy;
z%C58E$t36({MG#Rhl3(?DEj{V`N~yxq?#o+^3I?ZyKd`Faux`<2Vyjm<&>`YYX^nb
zKC7n<P7e^^ZTC3Tu)i!lK|zj;!>%?*g?ZNYuP5;9C|DEo%7bYfU)h+Mc!x8}#_07B
z5G^C9v8dzye|<(;Bk&)ecl+ua6UTr3A<?ZX?<jNQE3aPt{}shMfD)+W&dx&VMhjCO
ze}DPopWr)$57^hA<oqW)7?rxe8!2Cmt@!Qj<GklL-f|djU2byfbwN_IPNT(BZ#R!T
z?JtO0#{_@=*qy{9TPv}D&-=OZo8E2M=QEycFd`t4oP755m+0))Ca$*InS=bM0O1^T
zh*tHjD)i***tX1p^I7c>QY!C^=%VFG*}<j1*Jxzc71-MoIUK>&=U&7idi2Wd2?N*m
z5{o6?KwXZpVhPas-Y<`EOSD0Aih5hXS}%8=mt;dh^@WeAxn<qGhzWuOxa@#^9Ak->
zq&93M1||X=i!6D*EBrtU!=k#rvX7sH%?n@L9esYp3!GRJ#hv#+3rv~GEyitM%QI5#
zjze12n;L>A&qp)OD7c3jVQkpg0~-V!3moHw`Z+Iva@l#Ei`MlaI-<wWn!aAzIww=g
zbRi&=)>n2I410EMCaf5_{qO{+Va>&C`MUfr(Ag6Kp2gF%o0~t7uC!!b-)97f6X={C
z>an{YmC1Klz5fvfN<jN&9xb8>zu`p+YfxgIVKB^B5H<u2#p2n_CZ*atbU>^0kYmi-
z>W3&pHfrVTxX0SgbFWU~x+lfEqV*!mrIeb2zN`B7WIg)CcAup8xo!54^1{}ka{j%(
zQwt8b%GRJFldMlBf$SnQIUAB+!%~cHqo-~wMFtSx@>_#%vov1n?uBKO@93aTX78S(
z&Z=-(Tx`8HsLx>CUGPJJva>=2s?_>mC=Bgr@j<}Q7+`!_fS<w7#|Dq3^;p})_!Hhn
z3~1SCH7y^Wdux9(jfJ&V2=a+W|5PP3D>d27BziS(t(iuPfUmLYV6Ke{sPn@eR7Eh}
z)!jMpiTQqMn2UWzrImK^#qLgDeut*%<OBwnO(+}ps7Py2+9QSg!}<o0#XmfR#B>u0
z4C1mPjCo@By)&LM%GwpTWggn_^28`!^~GKTa$)d<stttN<+_5#>S>iz_hC)2;GaWM
z{@HQFPXFkuXp`_#x2fd03Do69w%WGfpG&6rQAsIu5R(hDnPHznP8H0(2Z+S`4fYXR
z$eCmLn)i+OfVB=2<(EDxs|6%7KbmA8VYF)ltv}UnRd&%2-`FvDOQp)u4u3%F7Ck;w
zLl|q#<__#S-+2+|vBJla5_|_K@=2elfG0#Ck4nPG`HXLoAcD)*lG57+7_?7BpyMel
z&q-#Xrlk2JI;}pWm6xxss7gYq)E_;aTl>;vfYmvabMji;Q84&;31+CdK5&j)pTiY`
z8llb)&QSD#)hrxj7}2w|$OY>bo$oA3HJ0JyQR<?O^j%re7-IBYcnE-r%A|eT_Ydhs
z?DW!H4Y=(s%X{6Ld_O#&bK^$><p#->?Lm&~Lt_k!se)qc@#Zue=2()OObX8H7`ZCt
zoVLauINRl8xKz~fDSuu9BX?CLK?#GC3s+E=BAA0#c*DLE)NLP*Qm@Kel@E@*)IC1&
z^K`BL^GiDZO3~BV<e_t<m`Py~DUS;eg@98ZU+6YJiN&6&dkU3{vIZTD5exz4mb6;n
zEmm2+(>~_0arTf!EfS!d^p$J+hCRv>w0QKPG7P5h1S+kp!{)*ixuzPd0|7xcJ?s+q
z9?7F<OR(PMPOzTHiS3W~(RdDFu!x>!mb!zI927<v5mB0HD>Uw)Jz9YaoqOm}hk!S%
zK}Jkq+mUcaH7idB6~fEC+nv7=%|1@YsAa-@iikOsn@eEEJ#S-l-{43w_L$P6U(z?%
z8jwK%!Q+iZ&q26MMr|90g)L6Z;3WiP`8Jj_F377j3XgHXxs1j*^f$sVl6%Yl%;E)e
z(^O9It~Ismp^Lh4$UPOiK=s^xK>KiuVZoow+iGmPcy^APwL(R--%JRv9oVE78jIHv
zGrUGeUSq{t2k{R1(w;1z4-rO!)`-F0&GX7f)2G_d3#l{2+0Fy(0VzJ9fmOXnWQW8L
zQ7l=}CB7~`pphZ9(Xc~$*Pf1&`Zwh^IXa5~5?2@~VKg6&Uss0pAwU5F<2^0f43zVw
zmC81HRl_TRi#?#2)eQ6Wf2GS=-Fpl--u(1KRytM)ctFERIUt@P6V#+Zrl)B?IA2*V
z1PrazC27nYeSr>7u4~GAe&}Im6a)E9HrS3XF|ND;@juB=i6|KWGqpgJ;=1q4`QR#9
z|K}~StHjgyKNX;^(0|gJs}d9M)0->>o!+tB<RQ2Jhc^_zscBt3_rGge|5wt+s~UjF
z|Jy{ayeS-fdQ#<aDc|nCo9t!(J&xwTTxp}-sc_Q46w2{f2emETPR=o<C-*cyFLq)C
z|Jk?q_iw6fis&V}grE++;xExr{N5a$yW>I?6j`Wwcw{p4?d{9_Yu`67&#8lUhQyHp
zaWDRnK{d<+Fd9rvexyheTFM6V@_tUE2l3i}byJDkumeHlku65F<j<&sl)anaO-&Xs
zFL#?40HXkO&FIQNem_S?3QC5^A^F{NE8%)Ll)`asY1b2VsA<37Nq677WrI|iyzN5F
zR|VL2Q6Z|eowJ%vEm~Zy>OsA{eC?Wz9Sm})<(uRq3bpD-a4a`7NkwCCR{BaoorFle
zF$+|Gu;nR=%<fP@xHym^$wBq~k8lvqj4M@J`nd2Mt*Sl9H{qk7bL7G#xtT(<2!G+j
z0J5M`p1$z{6+GQbdaZRag~}TPc#8(h5QgN7!GK`$%Mn92CQXL`btkw}9va_f!lKTk
z;-j|HBxNJkJKnd(+cAWOEo+HCvwUXo@?X7>LWW+^xc#V3%vsGygFW%pQy}V2-KTz^
z$kgOF+U6Yp0~n+ponj{z8+*?&vPDcG>qfK$T6BjeGFoZ%qS!?E49f2QC!22gg{Ol&
zjczj!6S|`n>TV~qU)@KMZ7n*3zqon`l>4A5B^b<7HxOn&Ec0JWe%gnRI@y)JoGaTs
zvjSi4mmHWbZk3^!=tVk7cRnebn!imCd#^7yoNt-BNw1;Mki%Wg)VDILsKgt-Xss+&
z`YB0@>`9l%%?3l`v)gijC!bjp%C(CIg`Ag{2d%f@nGM*0V@aO9uqCHbT~a}3Vds@G
zkBf^M2_7pLicTc#YF!kXg{SY$ezY?d4zE;*h`p%^=UM^#nvyL>J$=01``v6-c0Mr4
zYkHOcDk%S-Z9cJRr#Xt*z2iUrR`i`Mb>|j*uLFS~>lF1@I|CixdnWJyRvz!?{d$*;
z8(zIi@wXa8Eb6#T=Ha&ahpHd9c=oJnL<^O7l-eVe_UcYfSEKv6<IZ%AUVBh#YN`__
zJ7rlIy}voFG10M|-2CeRS<ue*btyamM$CkvOXgwUJ(mo0L#?aLJ*4(6m0-W6{5olG
znfwp!^N>f5<Ro8^33#B#dU!#ur04=KucFYowdKHgtlZMN1uS3pgq4;1tFn&;xA5y<
zq*nENEAdv7vFs8UorXpqM1CgQ-NF21-fUyVa#e`$nnI@++^9des6R8i9%Fq@K$b>@
znOP!9?#@S#e;V~C&D1$f#rjEbcbXfe$o)I%Ds*ZTLA6|no4vT*d+tf*VGa9}T)F$O
zM<$OtUO!6Z7Lda2Pg6Gw^a2eOy?tsTrILmkt$pu$|07=fIu{!OCAe($zEABolTb_T
zLs(<Fv;}W!SQ%;hZv2`!d(+%m;JF{cfsK-05B9&XXX?~e;*r}sU2a%SvfUD?;Gw0k
z>59zvcYKrR1{(H!H>MD7Q0$1iMOwXHz~M3)@G~Ry_ZgF_e*4`rIo{QsCfsdvx$!ci
zel4p810zl^FE7Ekx2b=|pgun8>}tr(6@QjSXSEgz)QNaJUnRp#KSo*A@>rkvaA`75
zDI}T&-011)o-7+t(YBJxAo%$Fcsm^8&AUp<``Gru(reCYwdF}R@q-4$Y#n0O)nJr4
z=eE+<VU=mPWrmyAgkMAbZml$SXxdgO=gZ-|$PC>tbxymDJGGlj)xrlo9NY|PQH#uV
z!#mz}JDR2XoqdV?+utUM_9%(?ufRScStx<e)hYt!`^qmaX=03A4~Jro?_#*Sv-qLF
z;ZpHvcgrzY=RIh-Xxmq`xREZ_Ao68><yJkcbv(hX$-$dTzDQ@tX=-}bfNF}Y6~Bx&
zAQ@ygaPY46F03x9H$lK=<!<cGI9WFf-{N;tj4f@(%9sq0^$;%|c)l_wMv&EdrW|Xi
zh`3{dPI5W-73Gh_J=Xrq!7uXcY91lQT2+1D-y0s+tR_h_2~+8B(uQ@DE*~GjaD@{{
z)YZ^>?4)wl%Av8d4DFh8nsbl5yKJc7@_b1dTyCte@!Kx7?JgzJ!E?^R$E&Zm+ypx`
zOD&gw@K(6x{@g;5#1or~GFNrs7iFq4r5sk18fm$#6I0ubkiD>oCJl;>^35|WKKO%p
zO>mWO4}Y@(xpF$v2A+ZC4#@icya$hcpQV@T<6-0mV3N}+qN~H5FC$N^t@jRX@Uk2b
zJn5_NwmbK9ymcJ8U6qX{jmhhDyki#yU4cC-VbNfZ2|1e3pS$P{6b0trRj|Z=H`-s{
zwKNLP*x~do(x=PjlT6+B;FfU3IW>0(l%StrhbYymG4cabqwZ36P=<gSn+}9Wz79(;
z>AtAA5Ch7M=&4B;YQA27<F*oOq*#|rrV?D|S+F??nV`g1FZtBk(U<(>_xyw|{uQQZ
z4na5!x*}{A+afu5kETeQoIp=$+TYX!4OnbGCFr1a+%)F<7~(VLgqi>7aB|{o&NKfl
zFQhDo2g$^xfDb8abR9hLwM&-SH744CZhun>j-kehb!!Qj@P32$GzN5;^p&e&C_8|H
zXMMbAiYIquQPsc2fw~!a*UR0`5XkHgh-W*8H@n6Dc4arg67b3>?7nF30w)MaW&_8M
zt^0Y0^zHE4<OMdirYa?54{I&`P5Uvmv}fIC%VEQVu<S%9*d*marFv`^-N{eT&p*?6
z$`<XivE1#AN8IJdv`V)bEZ_&GWV_Y*ro}RSJM8=|39N0th2+}o(hbc{Cx<nRjyd{o
z`~<bOKdOW;SG69o0H!UcT*tAfJWN;v)pS3%%87PRfypm&$sYO)s<<tERbv(jZ%_T4
z4nvkGvBy7a5@e8le0*`xA8!xk)Q}$KTF;bMRcrk4;w99LP_O1~)GLksX}kWKlOBV<
z1*;OY!L|jGb|Wck_B{ynt0Xw7*aGLpV>4ZIIYm7ToYuG2`CIN~v2PM|s#4p9Fnh;5
z6AtdC^`#A#<RrzHsm=8T5^^xcB!pQS8sHTv^roQ+6FXA8@a5MTX9;<jZ$n(9T$jfZ
z8V23ME#tN{^-1U>_&aAdzR6UFt2!2J>4r~i@u+2eD2-LgkU2dXk~J(_AKXWV(HL|`
zG0}QyD6roXZz?o4oT;HZq4Zey(XO3{@~o^@YM!&VV-WnYV7-(=il#o`<&itt>Gzh;
zxy5p;K|ZioH>4g+PN4VP*c`{smpHN=$AVYv_u~?pE+2(d<naNks(O874D^{K*;+BU
z*vx7~-jv3g#%MUv(+EnKTsL7gIRHk;vm?|p^dee0oa2Qn6}|t0CLB57p7YyG(ATdr
zP*{Pj#8)Zv<=s@6!bi(;d$rW(zF|*^<5Q3B7OiE4tXM1W_M&R%J0m~Vsu)0&Qpc8m
zo$a74C&6Z>lxYfrK~ZPewqz6DH)>UE63)8*hoi{dw*7adfn9cBJS(~q7}i)^Z7@KL
z*Opx3EL}px`?$=?pV81aIL>Bfqe+J!BTC!l+vGMEC}D5NC9Nnkb$NzIkQ-E<UA<Vs
zTY5%q^PYm7en&%4t<?ASxRStgj5bCKaqw8i-Vigmbkt(+`{v>Kr{$NssdE+ae27r8
zRzd!=;!R!VqY0kh9I|nqh$x+`J9sSW3d;E7wusop_QaaC&njQ<c23|*1N)Z3S$17L
zjL(0`8p$WHdW=e$OhEeQsPSVQ*B8(k+sIf_UfY}XGeWh#Fuz`nng;dh#^cFTDmN3>
zNL$Zr&SL8fp%b&yp)7%=>9V=!zTaY_p39IYgf$7iL5f#@mZ|Nr6crAZIfqBQ>#}F;
z;yB68PGZM(m5g33kvaE{ft2TZQOIviR&>j7h7Jo;3Sazz;p;}`)+Xz4>XCdRq3IxJ
z<p&Q|S<NNIEjTLIkS)l^KkWe=4&9Hn9tc=sGl&zg^k=u|ihjmhYN+Wk<9FF-h5X9O
zY1{m85IE$R`_t1fj`qB+Sw{MDI9z)Wi8McsjG#TAh+tUmUZ#?k?zebDd(p5l8YY0>
zh1diRgGbr%9ZwkJOu{ME*&N>OZ}!ngH_1w*B_tT8t)o3&7H+%j`28nn)Pvd$@A=E!
zGD$Zno}#<#v*B++8|d>m6NWDEOX!YyXd3m*7EDne4^7-C$`ah{aUXwX$xR(GDnhGY
zdFU2yqVckfol*iT6Lahp3ENdLQeh61%j+c0ZFurDk@e+MCifvp?`CFfT!AlIf)lZN
ze+1>rBuOC$?Y0d(X?cs*UHl2D%SOTRtjL|5;*ZtU7t>ga^1AiCao-m$oo6$4tHreg
znJ5)Bw|Ks#0SaQ7=;Uz#Mx!tjcf!d;O<a>Rv9v_8Xm0DmlM=?U+Synp9+^Z|k3N!E
z7Vu|?9jJ>7ivoZv_#B_#sYdXq9QmgwDc_TolrP~RdSc};f0o=~Qou<z?XJbtO!oLl
zB5c4v?yT_6=NDN*kgoe~VH5Y+@I%b^zf0qM#G&<aEx_I}ArT;(seMzs<b<mRVWdvc
zrexNk)dt1fS1g^%ndj?zRGRNKd$&`&g5ARz&ZA8`U7pI>y3A7bj=EL&_3|JxOh<va
zOq%C2I$d8rIW?$_#B3huzyjCGD+c?|JBG%yu3O?(+c!n76RP`Zje%R|RqaP4n82fv
zPqjI8R-Vs%P>qODw<fH9tY0+wSdvFDq_jh{ZGw_CjA@d%cYZ#lW=D}MNFP9=>&Mx?
zh1taU-WrFeY*2Sdf6S4A8>DObw)lxFQB~1}UlZ%7XlZQvqMp=G6<^lPvufF?&w*gL
zEf-rE2J|uNOBT5{2mhz5(A2aE1bp|wmgFbT+j$x4TY&<S3nS_D3gSg!PYV}Rqw$Bf
zzA{l;DCk9aNXtT#4ORF6*&9{E=(VC6xR8zCDuA$KVJ&8pW@;t|EV`>HwZXrOwx)Vc
zq=k)&j#oJDU1%72Z0aBEtK&mB%6nK;e@HWfPl*ts)t%x!+MxI44Q!IFNY`1Pu(DK`
z%~8N{2DjYoC~^c@HI`(yAZ^N!Ocb`-fK{i2D$+R5&b;?oF>buo^9Knv+k+(Sq~~R>
zU0sVqLbX&<$%kR>@)2p~qiccw&%IFPQ6|3Q)Y%0FQQV<}NORV&4ki?GBgj_{Q3SDB
z#23~|lk^OimX8#tJ?PPk7q9PFm!@4?z#L=ZG=DLJuG?N#Uf5owe=yYg{9J#P$GN!<
zn_s(QhesnMfmx30yd^{0Fg6k#%^ZVVq?M6_WQ+%j#xwTj;s)V_%5q6{M~i5TL5XJI
zA(<Y_IG28k1q`xTUT>v%^l8llsbqNf8HX;hrtKA3ULPa|Zx+=R+5h^;)UM+gG|`~w
ziTV+r#oHrf57A|hshCa*#aAje(4Z#P&y9F~#Fq3Xt5;6C)uOeJj_p2%G_nP~pcCd{
zPA+wVA0|H$iYw<B1zv@*!=*w%FAm;@h6bE*Qp$B}W&K<#1uVgI!k&c|BK+))is_B7
zN>XW3^u9@?>8B`)zONN_G!eVCuHxegA(IfLR_X{F5I?rj$-6MW?*8a-@m(zoQ8^9$
zbirbA8WSvgn&9{bb8EGdYAeXrLFge|W`|s&v6D7~9|(iAGWplaQ21BAD2sxszS{9s
z9yXwperTA_2b_uJU=#A>o^eh9$NgMAZM}l>&vH;RNtpiGoJfb#?|XvZD4MZ%)-6|$
z@P@zNxx`bm-mHCuAJSgfy%@cS9s0-v9@Z{ch{Mjr5N5d=FEWI%`x$+Y&;s<W4V$@j
zJI9t^M3H)C8?)-Jm%WA#>rjzY7%x{(Si;WQ$#O&z`P(|+gC?u!c^)S9rR&XjDQP))
zUrk~?^hk}x$@pGXTE3X+X=zc!^W_|e`m^qr9wr!`q8t|7Po9O<rVigBD=h-rsJ*r8
zT&O;87tOjK8-fw%dusyMR>6F(afS##{L^uOhVrC!nRK%2P7Rv$(otaEeYm7NE?P=|
zG|17RXqPwsIgnqGU8jiFgB<$UBo~VL5;z??a1U~D3IpKZ_k9rfx{w&Ms3#+*cPu6W
z!o&C7SW{}PQy|LI1Dm;~B`~zn_R+4{fZn;!D73t?v4~x(xvk98_mBd^kX9wEFbeg^
zXzht0>&hRF6=sdm;zk1Z-uq=EjOqjP#Daj;PEsR3Bi7=;NFFRK*u241iGJ;w-{H3k
zFEs0&Fo9oGAacf}e~wcHM})zgWU@rp;>8Tyn96>73*xjzOrl-X1_wdXT_ClV!0}4Q
z4`!eI(S6SN$APek!E9CDk6%4F3f-2;-gR5myCVT5Z2aW0cGJ#Cg4i>_Q8gZOjq8WH
z@p!Vk?lb<$92&B%Q8<>G`C{5MM)~|eJ(lcV2J^`hJ*AI3op^K;wKz;rICoiLWLaxG
z*AV=HYup*wy_;iP@XhkqRY><v6Sx}$<gie+r&JyZQM0Wryf<X1wePH3s_zS~mW+NT
zJRrjpy|QB@T*)etn7OjscwXeH*Qo6$Q<tb@3AuOP<jwV_HexXkj?ME~yY`*p^pm~r
zJv~}UHeU~)mBHz|p_=kzim}$7_oFdX1v_a(vuIjbR6USym-hD%88YXPo&x6e(kMxu
z&oY<8`!vB@o=S~P1@R<|=Zx5;QA-iva7)dPnwqtgN(H%L?_M~Mm8X#OX4bUpgy@(~
zGRDwK-<|m`i3sf}m7dW(LIk{Guah<k2$k&+V*9M$-(kP;#zrCuo4AKyCU&t6eiAQN
z=t~`yWW~O{dz&HqaGqNN57@VbE){)yXn1WgOgk{PADz7CTV>ll4-^P!EG4EJQm7OP
zV;g2>K?(E&Vr^Jn8R`1rZ`!-~Jh*H>$8`@)<;4RdKgRchBNw6!2BN##WciMl4hSB_
zAkuu2>Pxm(I|gOYNe&(q;egH%+`Y`G50l*jeG$0kwH8@t$zpWmT$?*wPSqpfQ6Elz
zMR^}rlst?oXcR;f2WCqa29@m3WIypf)q3Su5}S&`9g=MC5=&-L&96^CS>l@Y^J>!u
zj%&u42{H0q{>1BB*VR)C^-D|@{>g2Y`I4PYYX%<kDZ86I$$5B!=U6y<GwYH+@e`^z
zdlLn6SWw9BV=%YKgAUa1wUJsio@OO7c<G0jJ7x*&{~EHQr@z2V`dl4nkGOZlQ5W+|
zz-F1(VsIv0C1kbgy9@11tD6vQeMqL_k9dL%PGKKzU&U|d_A%g6S3{me!)>G7LQW>*
zMw8-lx#Jj<A5*AIhC#6^Jte0fyt<_wOQ9B-S<<|gPLgT-rCID*>P<@s9+C(>Q+nvO
z!}EJ4-=^{bPG2&xY<DE3y$E96Rb0aA+=;d*Vp)0b#~wQs^H=r0TrlhfM1Y-qss+JC
zZk^BbV?^1_y5wh2O@80>Ib45{@yABu<u>~~qV;-JdN3>doGQ+F`u;@bC39F;y!+0v
z*F44j@SRDbEn+(?qKkv3Ev?uh>-VPZ=ELT#+nyXB?J`DM%qKHW5Q;-D#@YtG^8L)d
z(1H?-l0L7jXD0)mJ|T(KM5pL({}#VwJRDw2KQ#!|?_i(+%w856X9zh1owpQAILG2<
zQ_;JgBrIE*b#~_YRe5auG=RZ<!BCvB%Alj)LoV}(U%%YA_iIQ@zi7S??_B>=sMIq?
z{-!>s$Gp&6P1y>NgJl*nt>F%lpE+SG#ewa$1Y>bfJHkWo5C4_A*Bj|YtsX~n+CL6a
z<i@2(t&0q@a&^Nch4Wn$Ta2exm<A@DSu>dW4NPeR138EAFCWKrk4!4WlPGi>j$qei
zKc3h~5se6zq`K{Wn*1tr7J!9T-AS0q)AoLqIWDi%<pv&RurR3Hs6A?V!*v=jYff-{
zm?c}KO<>+>Yn-zG<hnw*eCJz$vBsaV2&iw+mxQfVMKLo-009%|vBidUMqlp8&Ldmb
z+i!nK0Q)5AJQmB9jDC2Wb~8pHFA;5UbdfU7zVmUx(=NUcR?&|M0ZA3)ZL-<4B#`t#
z*)9LW!JG?_mloS>IhdBjqQV0RxL052>D)eLY8@m&JL^7|wd%j^eIUnO>?|v=v1DiE
z5(bSW_Cuo233-t1{4p`=V>S=1)9O}0h0B*zi&NpTn-P}#$#@B)93FmrmVT-**Y9(&
z6*BN*=<a|cK>Q_b_M4;`wX%-R`w#Gmd|{{i(LwI$0?5*jtQY=yh}C=Cu(<H1ZyRZB
zWDGXYzyqedaJr2@PejYU!iZmeUsiJhd6XDGyXo6>2+LefQ>x&9PZg`0b}KvLBo8Cf
zmyX`U$5<9jz+%X$`u(YHfi!;nAm;6%mc@dReQgs{;fnREJs(aJA-ZvVdNbLxt(Jb^
z#k#yak+8=_wY>X2-tq6NZo{o%v3HBscfytO8=ho3X0)t%5N$j9A<dS@mI?+T=@0kj
zKIZ4*(uM8u))#Tt{>zl3gp`?2u$x(OvXko5=V$a<&v2QldP+a9<iyr<e(EnEj7Lh8
z2<@{0$=Q6R@qeFx!y^m{<xl9RaLi%jF7rH<4vj53f?mpuKSCO6PV?eHa}1#gD?Pr_
z10t3!Jgf=|BS5*94^7FkuF^OaiZ><hfN8k4byER)AGNu2%hKu}&s|z%b$|K&U<n97
z{p}A0d_jvDlH=!+c#=u`LOK1Wf^K3A1ibCVU$oZjX*UuKZp+#tzG}Gm{%tME`D3N&
zayshwqwjr@LsJ&_Z#qX*e?Rb_CYr=QHU2A}_W#mEi@xCoqAAw@OB0Riripe<g}iBd
zTm}6%jg0?&VtB6aqBZwb>#v-NJLT)y{~W`=jXcF*SS*NFhFEwfhbs7iVnSOm1x3bl
zWsMt64sTftouA5I*uz5Ys(@Th{^v;3{)bfpwFgObV5t5&qetyUlJ(K3e3GM?`h&M4
z!!3V1RA{0_I<C=0t5#*>!B`=hXrX{4AtQ2I{UWnACvvu6G>aaQ%Z=?yxC4y3r!X(;
zSBrC@{q>D=@*0Pn0L&4lf4g$4*4)sevEFx{vd9M8Q&(XP?S%8!dr2OdU_teZ9V^E~
zm!pSoC?BZ&%N0H1O~9!`)$aA;DtfLmPdT+Qx%O*Ut9ghDHx9|687k7~rW|Yv`^}4u
zTQ^!y1wc4<7MSi@xv~Cf10NMD2q3#LX9bZf4cT)Sa@71}&(cO_z~%8gkB;vX|Nak2
z6D`U}7xe*Igq!pkS$xLBhV;jr<v+?2%w}?49ln3Y69>Q^cnVS4O5Qbm=%x6CPyg{h
z{MV1@R^O(h$IqP#^e9;xib2S%s_eOwW2d9yc=UI$fk6^7LDB<0;vbc;r}Xotx_Q+l
zXpgIzQ_=ml#I)Iu99Ws3e=714+%#g*BdI9%_zhk38lLk%_nWJQ7h27oR9?Dw%VMIN
z<$S<Z_2Gx+$C(wUW(JBqJ>P{&ghy+0Oe_=<U<#wH#PJ?nsfq=GzETI$uTKeXIJ)RD
z%3GpR5)5bR5KD89h!YRvd1ma<lng)E6Rk9$bhBTzdF7ng)7Eh!)FN+M3O$sc{^e*a
zO@vjTB}E^3U}7%ht1c8DO&6_^EZ9x@twL1F5tZ6lgw<fmZ@?|6y!JA;v#7bp*5Q1p
z{ys$_q9E~#{9<f{mh0)ZSM2GwUVJ=8A9vX~C`hMWcMe7$8T6d9A9_Qn$pC2AB(woZ
zCL}B1eNwJR{4R(2_R3Qu!nD4x_m|Kt+SwK=03lSfh6#rEXvNLjdW1ILL@fWFP5=BT
zC#mzuQ7rvYfaD%ep?UBTYgnq8p<2B}=#KTQ+o9`0lDqr5&YafS)*#2O=2@2P)tMb*
zEmH^3A|3g$uU%433RUs6;{}%$5Vfh(Wc5Bs)fcu0mXIc+OCPd;1jy|H<<JT2XVUOB
zs<$;m#z$}>S3Cce6fZ#D*wP6%RYiB^o3~?2pCencDoPl(*zp!!&Zy&KM>6=(Z6^xk
z_?_%srWq4Lw9s4Sj1K60?c}iOqhB_a=YCx-)Wv;cq&Oc;B}k?}By~kEFb4;&fA!6B
zXP9HJX3}M}1)07ef}|^UxyyYS8?h}O4TjkqxAg@5T5{&5+R;(?G37gnfBtxx)BIC}
zQlWue)-fu__LJR$t^!^dz$m3%lSB(Aa%iHk)GD_Sib^+{J!%MMiiuyNyE@`-th8YR
z!awr1+Yzi?tx&u_QQiU{?==gHdPhp`KQ_0(Pt382SXHmbeI#P6^bC4IV1JV0mV4w5
z`r5!YY-X!W;cw<`q=4Z<CH_R~+1wqRM>$xLVU{7EE(k}SvJ{>I+7CF2fW?2<0Y<BX
z9FbKDiM&QaXSK3dybxn>+=?~ed`}P@Q-%DKuPb;tR_x&km*YTse=f#A)45X!f?<*s
zJU+EDa>ViQ@HL%17ageph;wSWCD0&E#$}(W`g@JvkYM&w7t7Q&FXFcXXD=MMZv_=R
zjArrksMK#yG@CuSFz0e#+amNbf1vW-|J*uDCN|8}>d{p|73+5b5U=w$KJ;hDFLJPy
z2q>j^*~%LQ3Rd-d<A;>A)q<OUU$su)Z@yv*{u)m)K~qyx+v9vYllk@0hjILep5%!a
z0wGEj{)YG5LF`6#W>15fkKipWZB!$J--(8vMk)Ej2DEr6$ghtiy<Qy>fOx%!nIb_6
zS@Tl?Crn%@2lf#Ky@bx!@`q0~51Vc+iw$Z^{pezGWiWx5+JTC)A6!o?5%-F2!9<Sk
zm@8Y!Ok=OUi0J+4+c0wp0>%@$;*Yd{!h@mC+TKAA2u@-($$|>0uh}hp*InDm^1qb)
zee_v=^uZ0_UkXX$HEr_7FI-nGvi@SkbK(E#`~I&JNQPIf<)9v`xC8`fR7YS|5kNn;
z>a`~xF>(}o5E2BRHx)OYcB`Okw@^=5-v@{9d44wsrO+6;JGUP+s(UJU>et@5?*)!E
zp^A-cF;>mQ%%}P<$A^}n^>fvg2dd{GUw<)>Yjk|Z02V4kw15RRvhQ7e^v1!XDTQu`
ztSYGM;?xS_d-tXD7BLE*?Y16(3K0>eQ7237`Zp#Lf*e#xlb6&UhO!{nd|>jYxv|{7
z?B|(9q!t*7<OM<RRsQuxLJ+&9bwTl@SqskPr2{&7WKleRX94vYL(|4rmotADnm7_>
z&uRGIK6H}H$_+U=vx1N&6uM~LbvS1L3lyGr6AEsj2TZ3z1SAJea|?_UW~7%e{+DYF
zs&k1R8Xy!n^j2CuXFwl$@R0iH^48r8?H`YMq?8-@rm(#&Ds4kgpRg!z?P_Up=Azky
z3LepA<KRr_g9`7P&<U*v;5h|9^pJvo#A<gFe6jA8oXj>S6MqOZ)OKj;S3UXsZN%M|
zcK}1IF8Y*P0a`^s9Dn-Bq~}E^9x3UvX*mPCV@JUcKCyq<5oo&T1)0=Lap!Kt0gCnW
znE;0c=V_gqWLo0LdecTpglh?vbxTP#dCaeJ5&x&m^tx5@VT+f*;oJYEaJvqtB7r6T
zgPvU@c@To5-J@Opw1;gj^lE8l7~uLXB_d)p)*$wHG&8!uLHs53OaJ<_n^nk=gB<Ka
zg_q_iSmW$BxROuLY7Ecp&eRNrT{pN4C+XD%6|2~2g;sjY2Za&_c_!S%^`8}ZPpaK)
z6SSSuUVi#hre=O#aEa`hKzOdi+x3=93ZKN=(OsV07MA~6tI|1T(3iF*6x-1w!9Asx
z-VRsCO`ldc(YdXww)y;KB&k9W4tQy_Nb)EY&v2Fp9>ME4xfa3uQbB&|@Ph-B=X{{b
zp~7tohtZeu>DEZ@THI{#1W<HXCw)8QD@r;0-3=`Y9c!(o_=AZM2ZhH72$a-w&|KKy
zLJ|r@qzj=n(va6xZ$%IQdqZ|*A?5u2IFGdL9Cqt#%AUM^a2n>CK25pZ@RS{0kw556
zE<&|<Yeg`R?{`u>1Mux(b67mZ<=cx6Gv?5)UJhRs#w*ZO0VS|8qeIzAvd`b4jds~+
z=l<nE4Nn)@VBhPu;nOJ1wr2PhkGY)dV5P583C;fd&adCy5e<8zr;S!(Illn(_N}fa
zvQmR9j6tUeUmPK;Jhxu+R==x!^v{7KV<%^iySE~|&|gFo)~?S)THy3s-TGo{4KXLa
z>VgbFhDdzQYH989eYUho|1=9C{I+B)3Un(rRta^S_e2R3T>F9zKDByzj#pVF>tJX!
zACTTk0ZvnDU7vPJ6hiw&I!kk>d|_W`V_k!GAiS`*zk8PhS}V3>$av7j$kHF{E()J@
zO~?$zip9^T@|VHZ7su(}m4zl<ZWF6M9Ght2Q?L3nMOZLyVH5}3IcGjUF6J30hM6%k
zCze<%l~!8Ty+j3cle@_F6H$AXnccsYhylpHp7d}hnq$v;O#oT-al&^w(=_9m9D+Y<
z+^?9TlhGDfmI#&UDA0LNUc!?rC-#)3aqSNO-B^X?(}s_!C*Q}V>ra0dZ#vyaD`M3M
zxbTs=VOKWxF=Wv^#+JW!-*o+cG)>-D*zGTQXbSMvY^BNg(6cpiQ~Ma5D7oOUbts19
ztHb7KcfvJRqK-3Z2w~Q5cqL`XZI!4ZvGvm2VQA7ISJc;HLUh2#2h+vCCFQrlpi*so
zmqCcVQiPonpHWk#f(56kRmB;<qfmuolejQ#7*@P;(n!84{!T-C-<n2f;uEO-uHfY>
z{Wq<vRiJx%q*8meQVB!O2dNKRbkJeMQSw?JUi=UVu7RAnl(usMQDjscQ=55rpD~?b
zov|BwE&+SOzANa%6)7)42~pSNpY~&T#I`W;)9{c(e3!{;0Nzf%$zo7B&(Gx?lPRht
z{2i%3;**aK*RfdQSFP)9?G1X$xnGWk<*q+nRG@{u4o>_rm1#%vP`_SQKqvK52#Q)c
zgn0Z(&-P$*ov3Ow3-7W+o6X6h#q97nF|u|tVM1-3xWh-Pe|Mbw9{t?H)|+Y3bZv2c
zh2ioFJT$Rx+4BYFg0|GUk760kdk5=8=~-IzP+NS^tn~NzK)EZ!1?K9t!zCVrKRtc+
z_23DIo}ny7kYqq0r21Pm75)Fi+<QkgwZ7e=Dk?UDfQUc<6_5@hEp(OMrAt?OC-hE4
zMLI~Ajv&2BF99NiUPA9BhTeOJgtORtyT9Le?!D)ZamE>U-2A~mNfs;bddu_7XU_S&
zz$;->9wU%3l!;SLK*~5R-clAOQKZfJk!5+4X`CM%$7Lf>f#bwKe5jc$D(53%=rBLZ
z&M3A`tqsh|b9O3Uvf<LKAf!y)?T18<i0vPn^1hca#Gf4x|I9{Y9FagEEFW)u)&Afd
zMc#|aF;wuFht_re=Xef$TSMN)^VoSlF-8Xtdx4h;Vko`e`Gn3TW8#fkShyxW8UyM2
z9>A*6^b3MsP-g$c%%2z7@paMid}Zh~JSh*fH09`Ho&A_na=@QNAhlhME;Oi&UdDf}
zAmC{wxk{GDlb!;75uK0iV|1&ufs50;7YDqEm+*%`Sds_W;#{s`j?hATi0_`g2Cx;X
zYCB9Uc0!Uqw*-MT`SIqYdw$0~ROc8TJ|4_Hpy6-SvGheoNbF;b6<U^Djh|e*wiGqv
zuZqH`ttXYxYj!<+FRRENx~}o@hsl7BmOn82E&rMQ(o~cFM(HrL^O#+3AgK)36+nWg
z=a7JB9~je$$swqTYn~-*^<q(hBX@|^l}#sl;{}qnFNjnR<nRb_?`x8Mt#i)LeG~|e
zj_Q1|u?edT_J@yopAS=oF+J~$>MjmY$uo9jEOxMPupj_QX<B?4y?*5b!2f6aOT7|C
z<!^L99793bw%<AbO`Hrnx&Xc2@mn@*Jt)rnOnv?AUE~uN$VXoO%(Z9Cs)@*c9&QQe
zgZ+^)f1_-L8|MNc--0=6)0#%pvDDP<A6I+r?1?t(i>ucp<H1pn&OW~YNoC6^!lmJ4
zWwz1$Gve!FDy5le`4Oj`x*z*6*Pjtwd3-q)AALv0J51#cE{Ou3J~KjVVY9CA(Jt$+
zSHBbGd^&@snLJ|HgE!Tqx&b&X)={KS_ut(Y5K0BapN#I2(Oj%0<Li|#%$22xu8qtR
z+OecKx9Q8AH`#N2?7lUe52EtNW0PR*`2>5*9=llQ=ySdo%$~$`b_Yk96x;Y`@0A2-
zoBNb5irC>WBi!7ulELXmH%eN2h@@zp%@*MnD{dQAZ#GlS0;r@YfH3GK9QmK$OysLu
z2?-t4x_cxLWt7#jbRCdoW(atJLBAe-_;Z4UNK&DW?0lB?6VW>`81!uBoy2F$2S7T#
z0s8m+092=2GslM^lxW;0fnBbFFczzWzO7-MaC+0finOUYF9A^r(Opk9h!pWyU5TS8
zbT;UF-2h-beIu7A=bE7F1b`p~eEsX_yk{(*0b0^Qke8nJ^7S+yJ>0yl!Kz#(e#}|X
zb_&Su)ahHo63}nphCex^!EhjoNt<@JefN?Y1DuYMx1P+)ZH7AdmmkTte*^BEugHC_
z*~&FF2iCJ6l86Rrutt17pj}mK#5mRd;eG=6PR-#0t!E|8c)jq>WIZ-#Q`5_P?KBUq
zB4-a-Z7H<zYvNU9fmyuo`$0hX@Tq@PcM|j#yYd2G;3^vr7n=m>*_pA%Tu{)h<S*L&
z>^niSS&TIltHg9l>v6hr2U%z8t%k6wTm&NhZ2`gL(9_~>uX?RfivM8D@-M{YHw^4e
zXyS~r&#ALvCIZU?fIURMNAXF|k6y)lBMNzdR8i<lLgll@t=T@GUuE>X)0C!jh06!s
zz*ghQq^K}SJa7h;75)-OTs#}Y1+ziOM>|6*chlQ3-|krq2h>eHdhjn=0fn@Ad5)A@
z>5DGrX@=KW`s36cW)?qg3ZlME9t9gryY%pkCS63OCSmO^Tn1zqZqkdZyst+(>AJl_
zEXiEkB5J_~cGsdM$%x$|+x6(cib+qj^Nm?F8fsKzZPkK;EFZm%C<QUhIMpKUO;&49
z5~&6M4K_jkw5KSZ$*^jNGqR-yhh|-@=Yk6w6Hv8tGGmc_BVWqF9#)WWE(XZA%Oa2^
zpvLx7U{Nw?=O-bFWPJQMDJ?T@t0~(*QKWT+pvFEEkPH3+{w@)+PWx;h?8K<(MVE~~
z)*<nP=Wy|B@TftbcXoBc9(%QXDfW21%;YrvE=SVo0>??dR9+j#Z3ej@V|p0sYhYa-
z6Cntug=-|CRo{?g-UNqfYYyNU@WuW|U?}C(U1g>KEH^QBn8knzM@O+eq_$U*b79Y4
zhWeypZ&Y`#m@?PYKjT@_)i;CB!aLXReLD8dX%j0@Tvt!BvlzmNKNF83(a>R#<lzRS
zScPr}_xO@Gp+oDxe^*8phS2{T%mONE;wZ;;Se?f<y^cgH#;e{8nUr7jP}FfmOZ4kK
zQK2=~cpTuap|Ti-$6Rpq<}f1!S@N*SG+2PoX|Y22$!*azK=2SB3wQ$Lg)ec7M~)M_
zPBZe6Vk{{~`yLjBhQ@QKtsw(DLoD+js+a0eU522*EA5r!EL2>|%V_cT==wKk$KBLg
z^RCh2N&1wwy7)y}rbg`^m8K_7u|jB`hk!=$@+;<Fi3Gs?PgKLOrbjpX-%G*7OacC`
zLkYL&NrzJNq^=vr4=uP+zH2~Xu9mz8twZH=GX49{HlZpelE1;u^F*&a9ET%7ZFL55
zUaGdN|7N2KE|6P1Pyc-WlKcDTiT}@fiT|c+_)AFfQp#bgR+xmtz44smqmlT4zD0!%
ztQp?oI>WX}CFjvr3D&-Q8PB0G+iZZ@%JQSugnG_MjmbkP={|#d!Y|u8%ZL8?%s<y7
z{){t{s>BjCTzy1a%H}`vm&)UEWu?*Hp2d~WPT~R{pVHj@_pM9Zu`lAf{l!>>4NUw#
zHvGnTte6#m?EdXb(&zqv^VZ)`__FlJYS?;vrRdWDT-!(MuJ09phxbX~Qq!IUIi96d
zSi`x<exDe?CNAp&Zh#l~Je{`dJGWzGHZ`M6?`ye3YoDzxjzSihVguloU+s%tBPgmp
z8_{_PnHIfoY96NVaXuq~@ZOJ!+&?wZ0Tuq`zj6xIZcJTdJ6^6c+mNTPv_p&7&D1qC
zh?rRzzcy`IZGRdCfLs;#o3XUYEL14Gvmhjr-vxs3G#o`~R?N5wcK3k^rd-$9Tt$JP
zMCTHkUmdfD0O7G7mnXipVZQrb|5lIZ;X$UWx7|vaTyLG#N+NH~JwrQ{<PbW2kCjXp
z07<lb9B?M}v==i~=IM5fJ))W1`ObW5M<Z0RUIAa<_fJf9Q#ToTXwsH?)Ue+mOYO6T
zh1>EhSf35I;<X@Fnh8a`R^s)f01G5vd|m|BwIWc#aykI-=v!g9TIILPC*)g>tg%Z@
z-L3vHb<!tic{<Dh^IR)L=wTCj4wp~S91YHmg;ngj=i6WS<Z-SpB74iit}?T1cQ@be
z!=-TNU)blz&+N2*9v=}-dyan8ArlqISyvcRpeyVDBKd66!JG|HpX{iH(ZHIS4lFu%
zE`j$qK)lW9IjBBnvUKzGj+jenML^Zba@#`)Fb<0F$9@32V*lV^oLrb?EFSY-Yrgl|
zm6s-$&-4zUyhXcOPkG}$wNOnI)zx4(ST;R9%Z}smU?(xgBOtTmPY99y-&V}M_(-If
zr&8j<c}s6sw7z{u5xg>(>GW)ohoknIfyW|`iQ6K=;V=)u_-TL2YKg=Bz(DVYB%L~c
z_~nquQla2mb;o__H>zeXviZ;+hqy^HR{aCnXq!eo!UF7GQ8H}vVw$Rob=lKHdH|og
zc4I_m%g20=rFfIVYt|=T!=)XPq_b6RH_fj1d(y6M;zDpCp>o~Jd9+UuSGgKz!(SdN
z01ivaLf2zrYU%R-lH5`Wf~3HTntA!;%Oy79=i$4rr~Mk(W!AL@gd26N(p+_WJ$N{O
z#4$^FzbZ91HF!muxz|<D@w}|qDRFJ<VmaQ`d&}tV;%aH9<4R`S>A%@Vo%`N8U^JwL
zlsKo=9P=;RVoomV>G1Vj%wNgZCmu}q)RU({adp<at-w<}?A(qw(%(`g<3>#Fr3BHX
ze&FM-176_^yIct>*8X7QEo&T-s%mQ7^<uh;-NSfKkbTm7ZGRu$(kS(iqx#^ew?StL
zdQo_H^K>paE63GU7&oc&@cb}0xfRpA@^nVU$`OF-T{06Q)GtNJX(%dxE&$Z`=2xJn
z7&HtC)h;kF4NeL?rWxI%9TY&GjvbmCWjw3M?3W9@V7hoXg~~Kzw#yK3M0xEyCw`L!
zGM3a<l)0NS!Id-@-DXh-btt6Y={Gb<B5>fSj$26AYlR@{ct^`l=m599y(#=+gDgGT
z)gNG9)a_&)JTDfhRdY{iII!~^*VXK08Nt-;E*r+Q(FN^yS>*M$DToI{AvUO6R45#R
zP_%A?g9Cxp6il7R9DTt*%)hNg&v^ZN=jD<vvT7M8?9Df?%IFCx6QIy)(SF=fps_C>
z@s7kOKSTO~phF%&TkI7@D_*_wlIQY1hqs`*G^m5g3;iNOvx~#;Y4<bh1e4}<EGr3@
zHqkTiK7vG<Lkutj_3qkYkza;Hk~~KVFi?T;2uM=Q7D4Y6zfi?b9Tmm;HJ&I&>nYLm
z34F_0vwT;f1}O!ZFPC!g9Kfo>FuIo$Bwiq0deT`-M-^sfEpHaKd3Sd-NMCNxK)S5B
zglEz5W7W_#f7;+nST2W(WRvg5DZu&ngw?Dyj25}QCdeB{>=kAJ%)cKGa?0nY`AlM{
z>{4NCyooPV;ui%!F2k<N9%6ubeKctbMo|&k_$*bl0sF^Cw8()auvlhAZK<aYI)Bla
zoK~774zFS$NrFBX-8zx_v(RW0ZRpm7rb}KXK?iWO$W4QmGVzdl#e|}}Gut{_7aJoy
ztJ6J`sp@1A+xc;5#C%{frGd{{>q4SJ5G%o*S2-UAT)>JS+l$17pWnXbZ=|mnC2pme
zG%Rx;AU!UO4(F9-O#mF9g17I@fHQ&O*_53$?K0Bc0-bm&c>N6RbHptCW@)ZWzkVST
zF=3ZWb-bpUzwbW^to;Jbt?>ibD4Cd%4^B@wFHZ~dHR83SUR&H;az8#^i0{cX3EYMT
zMH_x`2s&V^5IjqvD5tsSwlwSv>kF)6t)8nw7#!s>RW@VlxQ>_W@2a05^m?j>CL#bU
z5SkgPlnrmA!ylCT-|Wvc;;W63f{FS*o;@s{u;)LkmQs8f`0^R$HEsiX_06gjX;ocH
zf=b)cJCk36v6$2j<&@zPZ^#;aPO~f8pOam}+w`#_-)E2%B4=cB<6g)v8+|fYE+~6v
zbeO$<f8dTm@S&$0@bh1=&)P*K93^OdD%}Xbm42~qj8<Whv8%s4O@}t1)RTPYWqe;m
zhge|S7<5~5#eDi%Rr`KRIO18Wq|@N39zYETl<k6v$%KuV@(ckdaM*=Q{OIkBbNOi7
zDd|9DKSvq;sm+k5ZNGNw;}Z}AZb18uBK8r(pysZq50Ll)HfJERohoSv7>pXrvh^>!
z*h0pwQ*TmJ=pSxwug9S;5Td%Lt#EugEX?c7We(acz5z0OjsCq|`7wUeK3PyX$c4#|
zaa_j=r#(tIZyloTJ*l01QaEk9v;FQB8{54Jt>XL9T%msUkPW}L34p~|K<3Gc5{wzK
zx7f3XR>!;Yfx?~$7W^66hzYTg+|Bfzrn!gSL2cJPIXIgY?3}sPIvmj5oNw0vnD_u1
z^4Klt5T(^8Zx8JP#r@WVHJ^yUu_)=Ay+vacb;RYbf(SxJ{pW0MEW9-`y7XZS;Rjar
zi18#1k@$tttICBwZ6J2El)8L~Dn7JNdsYL|!;<F{O?ksN^GlM2WR(FvumPVIs5AF+
z;e7~emN++3_&YLrXbi+3nE+&(-RSKsb9n{g48zdS)%22-<|<)|=~NO3NjwjT;l1W!
zG23c4DL9OUCN;{@dHFH~eKc4d04wPDk5CD)dl2Elo&vTZc4@E^+yD%Rvy*s1#7gYF
z8l3`&xW_QdM?Kx;sgLrTGjoK11rqqf3sjuHpmB*xzm$5h6G`^555_93Z8J&pga}sB
zjOUamFK2T(Z7@)k1Es;m^Kd&fdt~4{Wq0}>dG2$`lc-1zsbIOl))_bQeY2ZSGl&yo
z0Rgzj)6T%Z5>2X(`nAIlo+#Rln9KOGPRFb5=!((HtuY`R1hRtjUb`7%FiJGV&E{uL
z-N#J|6Xg)DexFuD`Cwi;tBl?>t^AC6Z@Hd>j?dnLyx|3zeDAlp(vtqwqkaLS7zl+?
zW0bV<1TVPRYjs-_{%|OszXpo-WvLh07G>U^Mt~}iv3)843Ne!XgTMn+5U<_7ITb(T
zE80Ib?N=03Kv|9CPwC|U-;!s67yv27o&#xJ!}3SR-jfpf0=I3#zvJSxacE0p4pQb;
zhO`)HsZX`{bagsB`FMTCP6&QfO`lIFSjf`;;f-E8VfG35k#5a)B~S5q&FWAh;-<d)
z!UBI;G2@hHxMyX@=k87}rHAnkK7_qbbDjEJ)busk@g8YytHLtXPe-jL(m0q)!8fis
zsQaq(sN?H<`+z*Eta!e=lRoM5^VQ2C#?*BwPVD1kDA7kS#POiPWj$8U$POF^^03}x
zpmyG^5$;Om@G+0$@t;M;DT%D_wgtKHhEjEz^?a-77U8vOH{jS!lJou{GuuL@_s%R$
zYz5&k`#G1-w!|@LcGr<1MAY>p1@m3xNU8*|q!P&fdGJBsmOW@CxN3zz6s4uf3P}j5
zMPh=i*bdOG{;@p|ic5`uzU5x>3UvczUrP1{ZMBP|9B(r`2@#-mf{=tmB(*3uEET7=
z<4E|{1$X%SJ<*Tcw#uYn{OuucLMc4GA*cOr3#+p!vtbHWaU4m`otJ7H_I2~3j$Fz3
z4+Z={`5+IvCF~;E8?@fN{gZXq>^q(oTG--zDA6!jRo4eseY=eMAz`6+R}znBP|F5h
zFh@M^``v;VPdc#&9Eu3f=e73%+c+fYsKY8Ebc;Cvxsp4X>IO3VOkaLW@pU^MaGU<A
zqGzA8(I=zXX#V%p)cvCu`-it-9%pM<yTFF+LH<{!pDjlpQTmhI6viKMO?~b&JH>E7
zb11?JVqF)o+^xPH75>c~5S(G_gnq7U-p!(UCTKZOGDv2p&V&@RvJ)_ycrfk>d?x=?
ze_!?IQDv7>N=_5&)~g)6;>nSHJ!Zn+xBZn;;fDSSAubIbE~kX3*<Z84S&5Nm-R$=g
zTnXgAcv7e2=W*^t8wlx+hwFLu-`Hfkfl&xe?%!hTj`#LU_6?iAbZrvYtiI7ZIWF9V
zq7=2=q;USi;3Wq*0JVn0-}$`|SxvA00XJK%jz7v#Rg-pw6c=vtp9RP`_)v=|q@JvX
z)azx-3skOU`518$$055|Oyf6cdjLzIHU$VQUfc2Pg||p};tSzb*@2~#sT)<v?r!ho
zK-O9>tXfM*4tU0#&$5>7wu{GEW^>By;46`181R_Wq<qZDPx3Omb$;YSlY(gl*Q6(8
zakV3sH3OnkC0UwF<gl^Z#Pa#9E6|pTBmuj*HFytJLnfI)%*vxz_*H#LmLekNlmPQt
zM&ks22d-A?3^|<-xg(=bmboM|F`n7A)qo{qP>PJCLF`oTsM<~Z81QS9V8~b0?9kY-
zEFG5n6m@_17Z8X>l-V6mkiZd#$CT-Fqw6Z#*xKd%d>3lYv)0F4uX!v(4l#7I*^Mn|
z3ceMAm{OBQKykWQ;J)$8SC6naS-`e6k_t%!+Lx#1oBQJX-5dYQ2)g>1-(BP0zC0!0
z$~q-}C0X#KCWntWwZQ5V?)TcRh}$2p`E#B8+<Pc2T5e|Em0lz>m(4N5PXAz3m*2LD
z+|_P81N{wpLjPQy9$jw|$LwAtzlMM(-h1ZVM(Y?BoIdPuorCTHP`kO9O!-B5m#R0G
zGOLzsc!<R^YH5E>^%+J7RFJYJm^9;yhn;SdInKmu;P%fbRj4%|5A((cS?jsLlTJ=U
zVsdQTeDTCqyN9w}q5RDvowmx!^`6uX?{=HxgHt%D8EtDax-@!ImNH?1G^?<82fvH(
z@DB;tV?7dF+{wE7vfyU2+!nK<>ZL^kz#?s1OnS@{NQDw#LIclmm^sRf4P8_T_rf4!
zKFJAYVuHGWRA|m2W!gI{$upevK-d+!5a~-L!EdD*oX<C%s16P@Xi90`sM;5j$^F0t
zJ1?j9R6mA&dcz}X(*I6DQ`H@E`w3x4A4dM9W4%~tchx?;?ldN5QbLu+=Y)k2@xr;K
zGM7akcdlfLA5WC0Y~%!1ob6v$xmlD9uK)UuTH1_*QsAdc(d}>P{@Th|h0_6^9h$D|
z2lrLN8O44>QH*0btH_GO_Z9=wgF_3j%><b_B^RS7`(I28qwy0v`s^ZyD^VfWD%A2s
zR#C!BZ7z2NV%Pw$yk2@6xpWedLpB;qtM{IoQ}obxJ=O==hC7b{_DS39%7oe&h}^L?
z;pLmYlHYg^DhwR>gLYh=6}m6+Q<Au3663$)(=o17KUb7Yo*^mrMx`vpOnd6)&$kSS
zqV?b8&F?s-zi@dF=?zi#P|!RLqaS3D-_)+l)i&=S<-0TFP8r9vRk=QA+Y;#Mkc%Yh
zjDF*g@<a2bg4dd@t9p(PB^MmKN#5E$<ir!>cRAyw+b~`$#~f_19l0)Xop3DnZkxz<
zQ_0bVmQ%O4&NCl(?XNZBfayiL$Ia^K6RTheQo9x=bNL_<@ZJ*l!L5G6pUt>_LZPip
zvICE?U(O^(gN8dPA3q*FmKWlww+`HAL<G*9PSgCHR^{C>R`;V@qj?%GaN+FtTbUvF
z*l6a_<5T2M0r%OX_xt=0lV_roHnogUueQ?1sysI51G&yz)}`$sfn><ab-CEAOr@>)
zg)~+ac!M3ZZ@_Oq5M$NyDrZl$CS9POWXb*GcZRJLPgF;CQh~wO!HNOJXAN(sZp73H
z&AGIUNcU07sy*J2rNKelI>%RI`kV9ZEiSi`TD!TxGP!l^t`$3EZC*7iH;#BCehwYA
zW)H!*t7Kj4Fl*f2u7oS~Khz`tvEtfAt}{2R2KwhbNEhp^nO$zm%Gext8>*)a*R93m
zWKxEmZ#ep=sLJ63zG*STZ)yC?OvAk0<wfOCIw?4Y$#iki-5>7nq(%LwXg(2i_<ucm
ztfs_6X1Aj0w4b^VsU#RDnn@^S#|VtqBw#F<2jchMChXd{=fuwJa5^$=HSfezd~CHo
z4$lVc5rux&Iqjyu(QKYCvhoy``#S&OI4Sou^fBqJT29`u$Zzt_;qvP%29vaiQ*Mpn
zZA%j-l2>^tsXN4iAW}j%$xH)Y?=SA(6?-JSA%dIyNJo)ZG+|bX3YxXaqK|jhhHgg{
z%S@BrEUJ!Gy|9@Qgb!tMI-@!_R*3`ZOI(Xbj%E_5!k&mI4Y1q?^hvY=Wp*zq47-YV
zESd2bp3M6Kl->@s(1wAX=khW<mH!--O^9%uj&Q}TeD)*sK3wLwF+QNyff48U0s?AM
z-!e0q{A@~b+QZ6uqmf!-%EG4UFO(@Sciigm?I~z$^v){Bh)2J#?@TU9mY(+4x3aNC
z2%8!YN7HcyxfB`!=<i=HJi0n9!hd-MY<`xzV|nFQrHL(AQOlppXJV?&<-yVVTgS{Z
zr{V3`8@sGYWe#y+FZ6Jc_7DbLzO*E@*^azQ^>NHCG6Sbqe!X8#VXL3QB<is*4j_B}
z8v({?TeoH<utf>AqSyKHZBr521Wn}Ho`vLl(06HOdG!zH@6o)imS5rs?EtjI_Ji3p
zOS+)~nGC3E+YQi;HvDEBx=ee4o#fT(W<pVm4*k+zaBpnTigvDDLAao8?8JUpTkUY1
zko<A=K_y9Rcw#>bJ)w=3)8+#iC3^^u-U^<pQ}H<ao)~sCSr@oTUHigJ)MWK<bZl`V
z<h|ul!ZNQF3hezwe$CxMn%Gk@cCersvrJ^dwdvOIP3Rl_l8na<S#a1&eY^;=CPBM6
zs}xGyl*2{r@3=iLhN#`&iQ;V#ojW-)IPF4HPaeccxo&u_U=clI1r0Rb@<(j1aKtgL
z5bsjD@%Xt+05cK_spS52BRS_>Y2ND%+$tmt$=Q?Y)y%Zy#DSj0mTVw_U{VPXX)0gn
zw9C3Tk&fzn=K1iM?h<i%Y9?~_;a5KFHcJ~Kvm5DJC8bgvweh2ropE-z8NYEl`DWsU
zyKnMQ4DS(9it)T=6p}N%98J3Eti%)lb=)ER<+6Bpt}X7TO>PfnZ0D4o-}OOv2S4s7
zIoWi5OOn=PTu&(bSMstR=y~)v`6FbA;O3X*JzIzO!mg9<i&Wn)MgMJk^olb^=)FZe
zRaI22O$~*hu@xyoZ3OP&KIBge_=wu?5|OcLd3z2O{lxI-t_Yq^EmfMb6&=SW{30FI
zUabqgiyJ4cw|4L3pk}Y;TKe_weXK}Nmg^Bm+|TT0Ou&tP*WF*6SxF2Qq=4J;sonkl
z>>C6XdI}4_={_rG+xlm$_jvbu&5gT;ZlbZ8oc!tZa8Px#QLz@dAV$sIpOz%TxnCu9
z{n2``Y0HK=*IYrE!aaE+OP$bqk)+tjT{SDxU29KZS6CQ#nc)}3ok)<OfavaG;Mx^#
zvLeVMXUOgMPPvm9@HE_fV&Z%85yHfW!^dYUc+2~7?eR%^D$dUlMpUqzJA3J9duPs3
zRzx<Zj2?_SUgqKTQj{_e2}N2kWi0<yrO}oIs$H{0ZC=j9s5#Ag+^~A_ngP%B#RyKc
zzCu)5bhEJ#A7<<D)8mJ6ZwTXRlFSdrwx|42`qF?UsAOHy2*CbgQ2pEP?_mzW&BH_*
z<X;>uKEWc;;)uKYV|!~oVwo%cJ?HK}YXPHJ`#8DxP>6+_c>kJZN0LS^$bWQL;3bf|
z{LST$KLw+dU4_2m))Id-9BijCN<W~op9^~DY;bCIHMTj8LT<`=Zi!p6-4$|3%Ht>c
z0ly;iKN)fEy<ajmr_C=2lPI!24HM-t|HHha1(IzLt|`KxZY>_U<)Q5pny1*s{NG9J
z2N?N=*-ECnsi)^`N+Y{xHNnM%8d5o>|5kTXk*^q4{}fv<J)HmFt(E^`ZsvMJ?CMW$
zzP|P3^ViUOkBu%X85F8>&=kr?)r+e$?v7@(Lk*FRZ&AjcigCYW!Y1@$dbibPe9j6P
zQr*0E(&0t*i>vuXNhA*f66nXPO8relyJlj&ZI47g+`M$hEa3%7Q708|O<9;-nIPf!
zUy!flqK8I`!BtQ05q^c7;m%HraKkX6^S&T5gQ-*7lH()9#WedTQ`$3)!=LMB<CCSm
zCcSfxzb?5v18*t)x$HKr1#k4B)F4s(9pCYCcDSkCT(IhzDEHmKHhZ2zsl%Fe_wfsd
z2iC+PHkWlY3M+5Obyy$yZ)jRs?gDr0wnw7^-?|6ZS<tTi`(SRiY`C@0ky)@SweVJp
zl3w*CRiQWWhlUDY?)RZVwYP@|@D2WlrVm?R{KY)Uwg0b+c~B4v!S%1LxduxJqH)#}
zJ2+Q6H+tv;_t+tgRaTz3jK^&sQ^5aNr+sj_?vIzOurPSMQH8Eu?c{&Ir69Q1zUaC)
zZlS8BVm260+x9x_mXSj%<dUcc6iCyk8Zj@;R8P1YE*csXJ=iP<!;U8V0q>z61*I@B
z5kGsD#B<(%^c+6{Zr6=Lgs{<R=25)`$qUmX@3;zU9V!6P5J<d}y)$Wta6Tx;WkiXv
zeckA?AY5kw(Nr@?Tj%}24cy^>>Y%&aO5O!b2*3|2N&e@TS8JvI`enJHrM8$Vj<+R~
zs7Ji4Lkq$019%y<tC{o#u#<?HcT3!fKEmD@0YR!L6^F{-P>OU;f7+!Fu91vRK`Ilk
z0+kk{xw2<fG_8Ysi--nx^RINOV7PsNr$pmp?w3sd1W%YgyeUPQLSh#f1w7;%c#+47
zm`>0vP}jS~#b~kx6<^fj;b-@9c*lC_FblZMX>Csg$&p0Ne({qD@4qtA+bk`gb@zzi
zlY=1d8`Tqz`o}~bvCa^Md}9URZVa12QmILIx1!Kvm>iN;YHyRkPlIBLk34@2)qdA2
zu69C-9o}al8@lOF3A77fPHGJ%n?9Hg*4dE%^hceLf$V*_b#LnR1|Zt-S_ys3sU`;w
zD}O!lv`r!`%z`ZBmE<P$nYYPAG)*#WEQIFz%B|41AxIgO6^?NMZf;oUj2e@GW~1&z
zYVD0;qqZ9=0y!SiHk#>TWks8A%ChG%)A#YCgWPmvkdNuVIUjt^bJtbNMJit{nobXV
zlRq*@Cs8dtSDDV$rT@aOIWgaaMm7b~8J!@W81*8<d5$?I>o|tBr;jsa4D*OM`*T$k
ziEZ0&6urdmJ_$2NXzn}nD4p_{ehHfZl$fTlW0Mq_^u+s6rA71H2PUez>I!=qgGjY*
z_?>jFkz~=_C1^T#B3nhM{f%_f*!%&pN>E<CviGbQS7i>A!oag<_>jah6p_8ipX57Z
z5AbvH?4(p&NKIQ&W;uPsK(Wt^F45fswQki-E)gT@F%#^olcUE3k~$&pl3UXa0&MqF
zdpCuj!7Mu4=?cHTn6GZ{=UixfWc(SlG?u?5U@>?mX>c(Y9ECWje~kB+(>t~P50h(5
z!WI!}%y)R4UaGR|mNiBt%cM0WFg6EPWoG06DhxRLva-9Z5rnFFQru1_ay&mWSa9R>
zD7Sj3@gTQK0gaD(ZgzN;neMccsSXX#2D2(sBwE5gKjSyht>@Wfib}_Tx<H_*0NAzC
zeCic99Y|_cTt!Wvf`qC~?YvX`h9%+eWKG^rFyEY&-w#ws16IpcM0haS%?heIA&L$>
zdJfm_`gnM)dMy2vP$3?*gNC|k4ki*#XFp?B>)@6$+0NEm<dpCmJkDcT;<mZ3IDnCV
zgceTA_V0ou{Uv*O7EH&x)KV$g!1-ns3QYbF-kLVkzVD5!laLY7M@M?33+3+V(Vi}Z
znp+@d4hz3>iLhWW)gb$$Pa(}1u=`0d;9XU%Jf29xhg<j&3OhMn-AGO0W@`V^cMIUh
z$~|?7_|-(1qLzg5vuzx>t{m_%{pll)Ftx<NvcL~70=~*3nVx_iVzp1ycR%Ktv*>rI
zgB2AHLS#1Mhq^0CO^&`BA6}#+kNFmrV2ZwKH2eQ5jI5kS0X=^hAhUs31BWS-5y1fU
z*o46h4=M54XkLFFd#|}NK9Nwr-yyqQfwxe;jAH2>`tkaXk)%*kIklI!*6wfmE(ZnV
zewQT;Lyf&x11nCkMQuWFdbGAB^Uu0aY_#@sFGH=Ff_|%)3v=86F?i{1gl5l#pSp_!
z?=H7CVm>@428i=994XuTg0gFeN!!`N23xR86wDhZRo1GMu-h?ci*2rfoz5STg^TWY
zHEQ2dC-sJK61#tc2u70SR{!d{-~Eh{EJC`L=5B5KGa}lXJF3wPG7r?~WAmD$6FjeK
zsFkdOvOR>2h$q!$ZK7ohoN1mh|E^FT7G*Z5dRn75-JKTMp)L^gOd#p;9gb=L8EdCa
z31HUHwsG3Ox*^UWrW^I^oj5}wGlPidw2YMuuQ*ZGm;-UoQPHj94g2&bGqKURiu`5V
zLZMNDbV=$%Z!#SQje_oE+sE4FsyjnE%yKq*$%)A8GqXZMGn&V8!jc*F1e316B2*Hd
zW#hTO>Ixxgr9qgEj*hGg_#CXI7mHM?I!$E=Hb8MxN<Ld4R}b&qf-@v3QQkA4E*t$t
ziu2X-vsW@6PDRo;--kU{3FM8t#rVm&OReJpJ)-0Hi$d8zVtJOPzMkLLsuNbpqZ+1v
zDvw}>$_Ys}O4nM&hgl|r24ugmt=>vlht4L0!CCLN{G<wZRcJcmU2t!^Ra}X`NYo5I
zcK3BV;R*a={xLcyDbjNCMg1Owxm<_4tsKZz^G)Xb7j7Q4+^PL<=}i_%{c$$|g-XAb
zbx%gF0mXgKxrQ8#0slE;14R;l)x|xlgJ2GV56>e-l8kH(c$`~!`{QW9=esmF5#{HZ
zmw16A`lPX~7d9e_Y=td;eb@5i&ZkOHf{kC~J@am$R6rPL5qUN0z8@_!DqxnF$0j57
zc>||(bkw6#!-mYPk6dy5`u%tFtf@I#Wtnupm+E=EdOFV>`0JhuOjKxKAsdt(NL!}8
zx`Npvmm15FJ^T3?a$QY_@NRf)Ua~InNv7tD04BkYz^-w@?Q$lYd~;DK&<N{R=oY7;
zU2E$%xv`*R`bj|MA@1~rt7+c3GJ*QR`uk9;%%2Q4>3KT~0IC0&X=f$Ex?#S=<a8-q
zpmEAV)#Hu?<*=E98og#zv-l8H5SV^3oeJShz@gN0tnDPu?>|@nHLG<-e9*E$krvBq
z!F^n@{26&0ZUr!3871oHM_wXAIT{`kGy!VoCB-wK5#6N2{uXa=7_+rN?a!6F2o>CX
zlqh5M;2O!rVE{rl2f$MR-H11PCLA_7F|gH`!N~|rmSt#j!-4TN3XW1`qHz6rZ~X4N
z1X0V?49uN381+wV*+g?*_(q&Y7NbbA{iDC&B2_*iZ(n;sm@7H;HSa)v_AsQ2hBt3O
zgjJ$S(PYqIaA3{jY*2m1WRTxk8Rs&nu>ww5g`U$=Z?JeXPgw8=19PYIga~$$iBtcb
zD!mi`FeBVlm%ij`+)UL|W`6q{EmDIIW2Dt^Pik5q^!B!Nl?zn>+gHoAHjA5AVBvE#
zS5I*y+n_<F?7xF`P9xeS0Ce*iqIEDue>h^}Iq>yeURfcgG-<w=Gh5NI>@0ueLUZd3
zy3S(xddk@`+*LKaZGMOe*QWIRa!(aH`Dx_2C9=8+zy)h795V;|Lps#)PUn1d-c$YA
z-n&U{3;U<@?%263)V`)n-t$YkCk-9N3ebDdHG2%r#w3j0l>1~$+QIcUK!eG;Oi^ZG
zO5>~6r!pn`+fF14`umuWTO4$j>>XD?X<!0@q<*m^c{a0ZUBiWY&qHoAr?wuUM@MD6
zZzQ_Zq1%scN@}V&<|4{phXsJi2A@7k1d6#0&_lnA3B=hCg)LFN^GQ{^O-i?=Uv(S!
ziWA4Uem<e|oxPNX^6gU+jyl)jE%euwPhrBsZ%6Z#bmeQPDY2^wWltjq<H?6NjIz1}
z!DiNKrW*mwHg^{k0c*{xs~m80tU9SbUPXTqND8%`P(%erz0KaWI6s`U({o-((kn*T
zE={IN@ggR}o=L4*&nQJ1J(2nhO5#+!<Rx}%U7U97XP~WN7n$BPK@EG>{Xe|ycTmVB
zYtkd3iZgoW%H*T{<6bJ#=rp<_+D*m&SV_!O@LK-L!`|8Yj>T^IOc8LD`G7jdoAux~
zlmQ}16g&FjxAh6Fm?7YtP#0%N#YZIhnwoGZeu^IAcNXQk)Ud#{zy-<k+KC)#ODhk%
zdB*mVue62~*NgxP4q$*PxL@sWaQY9bzU#S~I^(rdPq;aQOOdB3R;9!K-Xv4US9EIf
zwmdy}^+c8l%Zw_&4r17Ok?8gayQ-}KV(7FM_;}q*(K7(hjoC<L3xXf54LMMVo;1%9
zzx5a9S2#^|NRSa$2k0_zQJuQIWp|FnGC3(rdgmyLgd)mUm+6DZ^DCF0w?AQLCz=|z
z7oDA&`^74lnAz|%SBWxa?6$<@dDIq(s6Od~^o7YsagnP~idE#!=z?=a<)w^y<F6o|
zLTS#|Y}CMc0erhS@euambx*rUoG`~(>I~&`Ab||4UUdBnKSjVAu_)a=*{@F#snv|U
zr>T&=nY8<~3zEdo7=|(5tRvzB(R_PJ;hU*}RAD-rnQiRSK(CUCS4K8q6p!XnLxZY!
zB~6-l#AV7SsCtcozg!T=_&!vjeb)Xjxmv(v2k5_YK6cNP629L#ZJ4Q&!*&3R)IHVx
zvA+^%AV~j~Q?JvZSscp-^n4m<X!(6YayA=(`s`IHp_xtebd|st@e;<=%RCJb8MS|M
zoS7QGRZ%<-j^!Fp83dBW3>VD>E+NvuvQ)3xotEIu+QWqW;#vpAH;*l2jnSRdu~=45
zN;|x(02z&GRQT9$@{ACHRa!j)VH0_UcPP0&lIqZIKxeCl-XvPe|I^7KOVuBFvj0O2
zgzMzXV}6@&(u8sP(5n59WpuItSP|uiT)7fj@sC{4NuUjr2KrZ3ewhpY;jsR%ovxE7
z{P%3_IsRLM{fFB5mx})%joaVu0RQ~A|BXgTm)ZOu2Jio49s6q*|0Q4VVu;U&6Xz&(
zW98N``yc%uP`m|uA1WaPjuMP;SToZ@)xqM6<ASAy(QZTMzFU8;-3}ZvPo!u(S66%V
z1pUn#L|75o!aGgbO7*96OTug*DId{;o)o1N_i%X{r}dRapy3MOq3{>ymI&ZYG-$b%
z%Xuc!)MxD@H7`UCVtq{PA}L&(`91*w%YQjv107@d_xrf?r(mrkSTqd7k-lZ)uH-ba
z=*r-QZ7bbRGg7)}4%ZB>KLP%pSXIQ_`2@%ypL425I=TUj`H<m312B8h29u24n}78E
zhGv&57<d7e*@8)d2FJ6msotKar&U>^dn2wX)TgLgJ_I&<8odgeE0dx&dJ%FlrJO~$
zlx9)(O#VDcr(dQC_rVb6`Zb$;HI_jAC(VL79BJ{=`_sX<RHCZPp8p!38I{CJ;{%y|
z*QDbymwrBK?*&Sj*TOM;^q5@4ezCrFKHz-+^I~yKny?(LFVaHp&pdih2Qu5`Q@WVg
z6{SI}_ZncavBe_W=k`Z-Dd&Y-XXGON2lz&I#!X5}j4RNgyLw-ivH4Av7(>_-*)YdE
z*YbN2V$xl?Gc;w<j{*mX&zl=XmY~MzV`w`$m78MLfr&2Ui<850R{0bQJZ*2*x56l`
zf(GE}1`LvA59`1GWb@Fe9A&YUs|$82JWYQ+vFgqHhm8!hlG*4(hNWJlnu*pNgbWua
z9sf>Mf>}=@L~D22X>jna=RTb~tuyVP<>Vu_pmiVuvWB%W;X^{@ANr5VN%C|u3{ehP
zY9{*Vw?w_q;+^JfW-WTJ)ojELHIlBy*)1Gl%;o0f<&-YcnA#@aq_e5`=-OyX>!uY|
z@+DW2IQ+rMJ^>oa=9%ud^_g<8*EVau7)@NBkBPR5VqJyZ6cJj;e1dgve0kM?B7jP9
zAV~U0QO}3qIh*vm3$!v`TVO?Plmm!CL+!P-TDdVV_j8l1x#l5(=GLrooKKM5A+ZCG
zj5EY1Mn2`IhQ6s_qT?SdO(hjD;CBs&!Pd@JSuAzX2D^&}1~V5`XEUcSvy?`e{Ljx{
z4SE_m_1T-@=QBh*L2f%Or{3zJcbvzMwh4Gn-Z{^@29=eCN;b9koN7FA7EqKg6kCT*
zNhas#&O?8^l>$0u6lV@NQzP;$;r1;Pum0H&BmqZouuJE?gWEjx01XW`S#37iK!`%u
z0YcoB)bkyrp*85Vl{EEuXEgz>;+RZ$dw7;y{!1<JLvP=f`>o!sq?8;+l0P!SsK~Si
z{Yaqh0%6bYAQ_RJKUC5A&wes-a64g(p0Fqyz*3_~86j6iHeD`r(Zs*^v7)o{?wb14
zRufh_H>FWd?G+-vs0$O#(x^qmlN^r>3{?OEQzf|+SwO%vOiD~Pb_nwSdyPFe1UfgU
zl8FdyG#17jWL~V_9bsk>jjn2FGJJia)|-ZO6|;xxEQo;T?h6sVi&6Pla{tS=j%5!N
zV%apCU|p3%kvK(azi9Jm$J1P2=iH{{jLkO7V7Sr=@;963S3oXs%)l{SM<RR&GfVq+
zr~4&U=bUfvey{yw9`hME|CbtEH>3HhG-Ky)kG#%t`S+3f17NAupJn%dz+>f4f4l#=
z`6mA#5caaE=VgDpG+MxzNxQ;wxUgzQ0ERp7Vu!C20~9eaTU&?VD9Yri&G{@dJJ@sC
zzo9tr2gTRadvbB?$%3w%r6ygt^CeNT;1<LMcFTqQ%1itwe0()69ifW0t`37yIy53?
z5B`AzKPVbb*E+}Pxs2zj=R<j}JkR=?m@;)bf0ME5RpRx(8Sucq?{sh139*=9rSG}H
zBWU+)<)vfpQpkTqGCr$KY&59{La%#bk~AG$I{2TNCGao&b(I?O1TAy=OQaGQ)jsk9
zohrqYwHCvE6kZ535WQYZQ|jNIRsLKWm1O5I(ow@u^{R$^AZpO#5?=<6zn5?>Zf>V>
zlQ_S6zAG8cw2A1<!J8HO4kPg>a1D7UTLdRR+a-Q{*-uH}L#ABZuEx#z&kBMwZ8K^8
zkx8Ce3{tj%4o2Kdbmd=&1d@u`y=U_gdV79l9QOv2MZ9+j2~&J*zXrT9;RI!~{v}!^
zbs4V#zZe?jDJ$M5RKpXVgX6C|r7)I>;(N4ZRx~~7As;Q9L6t{Zl3Lxc8Y!qzbHtr2
zb!~|e3YP=o0C=~Nxw$!DQSYUlCezLo=Yq*6fy8NQ;C?TZGkd%<u>V_)pfs8iH}JyX
zV89;<Ke`^+E{%H0Pq+}v$R}BAuiXJ~JQ|}2u@hVPic>$gf<+TaSQEC#W$;ta);<+i
zFAe%rQ?tL$Nf)Rh1VFWgit_xv?!>8fqvSE40MWpFzVv~KZcKBI7_e1lNIosA<|;Jo
zh+?*=-@mFL*{Z_lI$OBqVl_N4voTrKo5)vOT->Wg5&u=IM4+_&2SlS#y8<v_62$vh
zRVCppU<_6i6DmEKemn)v(02W`NrXH*E4uSyh#8EMHl9(BqNGipEHs|C%k|z&%uYF;
zY9L9Opto&Py4bJk<v;Gkf98ed76sIH!{6tibdN%j(a$b~8)QIj>M}Rl4m_WO!_tRA
zZQ<S~n&F9kR(wD*p}7kY@XxqrtJ(4WwZXw@P(73Li;sT`A)d{S=-6TRQZKB{UVf#b
zriuehinyCEkypbWPG);Z3ZC+pA7MU}29Tr(X_Od0<w7fCm6W6D>${gVot^A5LVg^j
z>1lgc5w7(YoB>pKR->xuOx`>OJ`c_$35$Q2{aCF`pq8-hu4-L?)J35lA3E5VE{P{l
zc#YQo_YLkqbrsyBVp_dS^I(tZkNPYpM{{F7bXb|B%>cet4i);f=Axz#ny+QC3TY$R
zmR6;i+*2_RZJJ^L>8b8yWCd%ZVwj=#qzYVgx}lWHYC`&+xHoNPM5e8uqWt1eV$sFh
z9}m*)dz^+x_%ojA0DSD`VXhwe0{TQ3P@CX*-lfb1(47conB5TM5@HQL*LsgTKLOCz
zx@=SFam=Z7VYuS7n}yeFkL<5;Tmm%dBx4GR6_Ihj-aZpJ3QIXMyl)kzOivZYcu2R(
zR)Kf4-0bNxiPZq$YV(MNOlMPx4d{r(in76*CQP%{xM4(+f2rX7<p7phrQHBd)UfJ#
zO#_3yi6yv?%TQfnR^j+gaql{I)NCg34BFtcn$2Nwx`IT^?^eA8BB>T!v)~n3pc9Zk
z{@quG?wMo*AAbD8*!VprQdeIJL+*T1E*^aOIyLgXhToiWa|W#*RYmoOR-KmFHUS?D
zyB_{a`kj);jZu32t=L$IuwhOg<tSHPN?85uuX;nQ!t&zNn&>Z{nHJ{`_w<9TOsiw1
zrh<HDisJQ51qANzDDEA8D++O>)t95%SsZX2acAwcwoPlZ%IaX1tH(1An3%<sO5hJo
zik4cyd+AHc%S&|up$*P0k&nkk5>do!HzOpNQL|p!_2_fd<7o^8o}M*L&?xx6+jq|~
zE5%~w341+%i2HHt2lc?q!;M>cg3xhT4&T}})T5(kjMN@dQlcCtT|8U3=DgdkO$(zc
z%Ai~NzRp|2*}0*d`mOH{Ab+qt?lCI%!7ACo>Mv}L&SE@IhgCRv<8T_-XPQjvunySQ
zz5sZ8C~_s%h2Zc;U~*mog&=P$raFh4NJr}ZSF&P8;}MD0j@$mJk+<yAZ&f=1z^NPf
zK1<yj!B9rsyI^Tq=|X7Y_Mj?diu{8nD4ViFc}--6;Z(YBO3~}@d?^|xt!H$~ubZSl
zlir^d__0*5_f~CE*Grd}pG`TQnjMiSJ;bI=<IEcy9sl|tg~i8vkfi(k*LU=a_8oG(
zpd|crdkhI*@iz3nMDmNkU;e_p1q`E1B#1%T=}!QQlADrhvtg0E9fdq2en@iCRce2(
zm1>eO*!+TpQo~6FgG)Y|VR$QI6l;6lYn!<3XY{E%MlJg`Q?{Zj#IJEy`+%>`i%Cpy
zbO+cu5(1wB*i5U+RrC89;$^Rv3wEW-n1T&+$EJI~KAwpUiki|+u?yUh8zG;4q)pNj
zn~O+*`f6JuZ**jsCZm5=$g+o;tdSQj{8ZOQZ(K}N%zCFY1AsD}lJ)I-_AGx-5gU{!
z_?cMCV~AvFeC4rJTT$Ww*!!^xVU?7+|K%P($pnab{i@5@TM^*%PYVVV&%~Z)rwlJC
zIXyke4yqdY<`1YSG7mA2MCZU^I}ESa9h=i3Kp)ci_rxFu-&FVYpsFEBKO!HCmtJAZ
za;~EG=c{^c#XfpI;nj;XkCjMIo{1|Rt)Zw$`0}gjSoKpNBXPIjK+~K>)<d%WypIa<
z0!dA2TFbE>3zSAt`T=ZhvpQ*!t2GMJBI+`FX`N_VKU)^@lR;Vbq8Ng>Bh45p#Xj!%
zQ14{xp^fhH5t&6pn1L=q6{)(JoMAZW*=Sx5sVl<d;hi2A1Ax9Bc2`T~>Cp2u`>XaZ
zUT8><MN_E9-7Lsl(@r;MA~MRvRGMTRJX14Yuwl8=*fk^?kum|5D*fyxW^XfiYgDCu
zWcbQ=+ZfwyctLz1OO|100a&rZC_*~`VKi+oGhZIPE?K-ie|30R-(Uj#eOF)ox?S!K
zpl{xdhXEV}pMNCX4jkkWc#F$j2HEa5v-1x|;#0gn9=KdyHD*<!W6$~riN{IN-PJSS
zejo#_Be$T|CG8{z6pu(Hm!Tmb5z~o&Z=EpD`Qc)rQav98<S6#B7(FnY{%7o+nnaa%
zlh5ctql1wQVc8@g22eA7850-#)S68Iap+p#!rK$S91FPGiGNP^Q+9@Wj}BXc4g9D6
zB&4&2In#c*j-?y)dB35=Iz!BBP!*R5+hi;0sa41)1f{~0qU`|%J}F@I6s;ervFZ>z
z$+E7^KH;&s)@N*70A&i4ASP_tsm*lKlLJp{ghi<dW0~VE)UAgYd2GbC_fO+KJ7p4t
zOTPt4l*7*><ruZ(zVohz{|d~)dPlxh<|W#~?;z25VJqQ*s($<Zv_zV%Sx(K_(US*d
zq0A=R+%U7)gvWgLhMiLn_qD|9W(@TxLk!Pw1NTqEmOFwO7_0s#6#`%mWhw=(LR7l>
z!Le6>(hms3k6)wdg^?hs&{TUW9(qt)L(yWkoa{PueJnA&*JCdCs8GQHBo%k~1k3At
zti7M}T*aTuet-dv+aoEvgO5FLpxqijUcko>1zjvCyhl0grY|*@(_mR-o)?<YD}mRf
z0#o7w2At<N?u1YURB1d_W>S_e=jMJLS!CL!)@!4k4ZlX>Cth(!Hg;UaKVz4UsVB-B
zo>PF_DXsB%MrpVfYwnk${X}78Y#B+U_QNp!VW6(wUdFZ>M+Flxx*8&>^zDs06MNr-
zSw9gM=e4I(wNI2W_95z^V%d8A>P6<L<5+ENY}AwFHv>?r4vTn)=)0v%MZ5MLGlD|A
z^c6Tu7G)cf%1$(c{(kCn;>fmzs^&t*xUwQ6<*fUoIYlY@a7_|^Hr&kpmX<r2_-g8`
ztfIR4;5dB`3%_ECGhv}?06Z-1)x*3pN1Q7C+Uw`+-8^{P7P6n_iJC)P3he300{q_n
z#*5?JAFQ(S>523XFJ|tVj*K-k!3lv7RX<2JSXXr&DvqlZ(%~^}xj5$64r#}DnGP_Z
zYBvph9D3V&5t=>>UMJDCwz~G~cpPBIi_`_z&V^C`6V(Mc1x$cEE7<xgn>*0^mZOYG
z{6L!SxqZz6p|Wq_>vRIYR%BLOu09(e5a(m$pL+8;2Cbq>slM?ue{>eA>oI^CbDpEJ
znqQ4&rDO4@UG1}n(6-!7zAAZl&iGUo*VgNRGFutQJkKR|Xv(76+N;0HtsUv8^lxbD
zsQB6{2Yq?B2(OEYaO{~%zi8JMVwx!sAkO8`Zmx>1&V))$mnr**UhJ(A=l|$*<-s{U
za+l(CH5MWcWQuT&9)DmisNX&C2IWI{Cy+Oqo1q8Lnt-L>IF#P@wLBU4Fj>xq{vlUl
z0R)JU@%xjj;w<6|cV&#NVlQJ|;~dd}xbp?-cMtB%l>w6+P*h`AloniP>fCW~%d28y
zVwZ`GRdK!P(pAYA0DBJZcvTpe<h+RG{wq}gB|TJ4MUr2{%g_jJj9!>6MqUUy2A<>g
z2)7=&E_0gpn}waMlG$qQwZK#O&x^7bj{3AT;S~dy<F1WAxT9m-FKFZ=UIc#4UHC$3
zEzc>6pZ(1UGfl9RA4AhoJ7)RyRIR<dL6%2g8k+RmD%7bX0^X-%(T%C@ad-Y2BoU*8
zmhk8mcUEO-C3R_gIuqKV7hQr}0sJqW-|0J+&L)$XD~%NDxB`9yW8ryMLwJGwsCUgW
zCnj>QXMd*M=8f$a2RZKSr{y64!3c4_CUJ3A0KYiW3KsPknZ8&GnM|tZJnil`;9utp
z_rfhQh{E<r(gV=~T?Q1L!6_tz+5(KDZaej$2Iqv+7jJ<j&)4w4;)dnj_x+hQ4!St;
zWA>A2$$Dq(2ayVoR<&;rG~WS^1@X?fAhb&UV-qe`Tau!;*sFX?m)l^Td<jAnWhW;+
zDVpBQPV62UN<w+*DoKR|63O`*>cjcxLih=C!e&E2%7z`EO_u8Qj9{mV_M5MZER#cV
z4m#7e6TGqgR97L$JTwjv{LC(ns(cO*iiow0Y&IeD-Tp?E{zfT9tnSus$HmF=QqkF*
znbL*U&j*>ES`i@+5=dA!pi?@QHADbrDDcI3Z3KAqCc92cNWA|_Vx_lw%$1KIU`~D-
z;rE-bQsqkcBvVCZyGV-9r_GAjqXOR%$wsW+3xvy-zM<p?U#5^DKwmK+i$np5^mwTW
z47ZmW-15{G|B3){O-%=zqOFqyJnAw-e&op&G<1=9b*TEBY^k)0+-3>ddJK3?p~R^7
z@-+%;4@PvBdQ)LQ;;MJ;N}qjukAkheLq^mj)r{%TKe_iM#%O-o8s`5Kd)NOZ^e_=o
zC9<ph`TpyJ&Ka>Mc>kllw~VW@ecFYWf+9#GA}w7~Qj12qJ46H&5Cn-uHyFSYDd}3G
zbc1w@x@Zuj8(f4S-7V~EaSI0C&->r+-oIymdHmo9xVWw}=A4;hX3k?yf)M2B34=hr
zmqlm|RQ%#eq@k3?#gxVeH%n@Z0)zO3kakgar43*k(F|A+zH;-pzcG@bi{=9tDV2{Z
zYvHzP6X=9`OXjKBR)urT)~ap?@R~KpC4IrCRjGe|L1od4$t4eXAk5tuQda!O3rdBW
z7J+N`07VM&mzS>}j~E#(5X2WMLPnNS0dgL6fXV<#Q*b;CfRRuY13NwP*I6K=&GNua
zM*M$<_5|;(TW{8DLk9$Kp9r$VFB;`f2r%@Fzw>k=F828ni%bYGUVwJXBbUdBO!?8Z
zx%oIGIjQ~bgs=M&;b5#q^;%1-y{VyE`8LHb`~a-iT}=5tAQqV0$i{{5nF+iGDq{%T
z8kOzOH86r<+DOg>_4I87=0;tRmFq_7yQ<i{w2D;ov7wxg6J}nHK~0~ur5BX4!b9r-
zvYz+tVq2&k3qUAMH+q&i1Gl?>5#ooTKk3#t99t@O_fy-uG<}IrtXQBz&_6>x<{L0V
zZ*a#O$P-ryfQOC<!anM}bK3Xu4@f6t3PX=Ax!i)B`Nx{=0b*g6LN4{8n(dvUmrNhH
zs&e3J?^3hhwzgw!M2h-Cz>ZJh=dKa<<r^M_9PNaxJ(^(wSPhP&JB|Q#t5^up0Ntv9
z)5z;$C6{!iP)3Zq4pj5WqEFntkF?LQf3b;ob#^`W2^0{<<em)EGH-6`x|r6S<z~QG
zk`??)C0Bo?GsNHIBYot|L;%}L<8XCm0oR^m32+7NE!Rs<U~pk@IlhJ^=I3k#<A}QS
z3~%NJBIORZWonGp5TZy<kQcuI)#3||=)k)~0>Zk@D*{@Q{NE)VQziZNMvKiOmQ||f
zTSvK5!oKytqi55N{JLD3@%5J0cl@p_3=j`h!`Irw{v)?$y6A(Bqg~NQoct$S)ffzC
z8lFrPCm_0ArxxsApm-%IP3cXt1gBnbT<N)3opP32zC3K52dN{irq3vRb%M8bAmkeZ
zv+_z%JgthZp5na6hFbYP#aVj?hw<H%dmlm)_UacNjPK<sF{}Jazja4?rHySKqIiQM
zL3!2R48_*_BkDH&=a3G{<?2x_#tig)+}E3<2F>jpVEI<LTIwD-iqu9Toju1nL%cjx
z9=um8C>MkghUZs{i#vD2>y%}ywuGy@4)m$IE496}YFbjX2tgJf2jcatE9w>djqD)c
zTx5(hC3q1Ynn4#h$8AuT|B{h57&c;fUw?`!REaD}>YUO|wgS=@A4w=}^w@G%CrFhv
zJAA%hVm4nP&@Y)>q|YMZVJOKu!zu<KDBwVqY8>xdHC(M}Fg4HFd4quAwgZM#wAk8}
z$aQ%`B07c;g95w9249n8qcoO)$b406k>9+gwq~@tM^N34j_%%cPPam<;@t#1ucXn8
zFQxGrS;I5tS{ELZa73l4G7juArWQ8;IMLAp_GHS`e(RS|au^>g_|aslDPIZBc*$6R
zWA$Z1itA!NHrw6H#&L`k@;<8OA9M?))E2JIC~ERp=vZjUD6d4_`2sP)^8~X3>Q2WA
ze38F#0sZ<+n74Ke_KR73)fo$;Oo99^qt(x(k~?Ovyp@^dTbZ1tGA!z%EqdpBtke{=
zG4maKy(6W%J5#UV^)lGrO63v#9v5U!pH1>WHk%ownGB1~v^ZUKPCje~1i?gkipP{D
z$+QnuD7}^a17HGa{u6I|9x~lhUEdrH8^2r~M);O4McZ*o^Ly8OfDFsp?7Hz&Gbh01
z6LIWL@^(gdVbD@^8DowJXR-x*8MS=VxuaacLLJMN?hND)T+t;UH4hK6Z^U8isjUvF
zyev2E&6(PcgXLKC<P~R~7n5Qhj%fjCo_+`dz%E9eV)8k^HkBSv+B`yo%1++jPP5tk
zL%2c?H@1vb6VACs2kJXvLUhy7l9njK`lCr1?OFP2k{K^@RePn&caknMd$0~IBc3P%
zrsM&6FexEThJ6RDW6sjQ8*2&wd6DbRj8&>Fc#KZNnBVJ#j;Tj8W6EuvvaWeeLr+`N
zXBNf|N?HKfKJQdZVCyzX(t2IAndC$qVV`ry0-;pz=S4e0h@enz7D&~9GDP&9ID61_
z1-g(|a=&P$VClP09$AvjW<P|}Hk^}po6_WMQM)g%DSHLx>YvcfL5z=x!}gT#SJI@f
zkE%;04oeKnvoK7>;oF@LzBXy%rBmJ?ON=b)Z%4aH?P40e3@=Czikji84*zUGa!B{Z
z5X>}Vr5W6O6_#zSKm8sk{8YUYtV8VlqHh|~!p-%r%Zj&(O6#e2y?MB?UFFACgMCf|
zbCQyZ9sF)BR!KVd>}Y;!(93iGXqR1evtT$eiVNb^%S%l+|Ap_Yk3gshsL6Op9E!z7
z`{^1e5aUEOLAMbO9QdMihfZSxP!w0d?o2|YU%h>e21R)Z*vNl&6&v9At%xbRdtUSz
zoLCRF!*T|4h@CsL>E1hUp}+mke1?bF_OJ+`ow*ZKK{xTc9o?TS;vG&G0D&Z%YB<aF
zhTIuVKuE?QAQ$ye@Tpm;E!Z2lWPgcFIp8G0;6&?U>V04qFL|_96a+XEfo(y*{2`L^
z{-NOE;dU)r$AUM%_ZLI2wVYXFQQZ(+@um^{>9K1gtkZ|)%PF5NPn?pPmyPzBaM$@y
ze7NG5QW;&#xXV=CMSaswYT1V_t-D|+3?c}~fl76?HEVP0#4Rrjr5|KIAmG=QSAi3=
zBPnx<$|Ry1IR|=%QwM_dK1G}N{_yy(PsG{epl{`2d_pqrA@dBtEABNQuKTFw%8#+y
zf(L<$^W!S|q4VpSQH|?RO0R1|MQ{cIAeEmyHLAY!ItCVaTHO6X2)N4wcuLSPX9Y54
zCuBDMn4|PBKL;|!VpaDjn!#j%yCu<FMTgBGc#;;;JNxtFypcXfhzZb+;8Jhm)F?hQ
z{J6a=vP2yDb5~yPl@DkixCA|t`m;ZkeZP0Wu8rpZD!bRdK`Cba;mhZ^bBc7!QFcdl
z2ouy3=jrm-(7UezvUj@5F_yXwAS2G|4CA!kO1@>3N0;{%&Dk0qUnb{klpk)3>e&$j
zREX1h?d8Truk<}<tl0MyJQ0w&D?sz`Qeb2J;mz15P9aenO$9(-ES;6@>QGvPB6-;8
z47M1$u_+v)Cl#n9BusTf)IhTVv@<;$;bOna%s%GY;KLu1<=m|4Ru~p?NZoYfh25Ti
z%QGqeNB`LNp3(*CnTx4mW+ST)H4EM@v;1!1U*NW=pAHwvpmn^^z;Foy(l5*=RDJGr
zB}<$CGKRW`|3(ib+0tKc8k+~1<?l3fp=%tK36*bMRj<AoH2*wZiAOV5&AxgqH&Zs^
z4L$Yc)md`4kIp=+#W$%!MdcPy&BhK$8rJ03oqZMOffCwH=5TE-AJv9a(K&ADu=v!K
zwto^5VVVA9oxi{aZx^ouW2pxBF71b!;GGAN;LZ$-#}ttZ3{er`BX?m`p-X`>3u2Oa
z=hd5CBnp$(@WZ$k?#erY@3YX>6f1g5F^G0rYo?7l5okH?1KN=dN1Txc*jX@a;gs(7
z3Gl&rNFXhBS%Y-a;uN`9{f3%kUXGMe=8Goaf+P?FO5LB|Q&4C{*Pw>J$-)zS-Sm*o
z>e-C+$kh^)`YQ@iE3};s58+9Bnq|~p=3XUMMqeP7e#KdpLYEQ)fnzlRDLg$d7uIDd
zfHZLOZt?86)Kq4tN0-gDQ~@$kPHvo}F1wEr0JF^;z~hcDUD`n#db<HZdj}Dz8v<7=
z3LAf92fVhbD+}1LJAd6UK4$3@BWnWh>;zQNoRBC1B0K?tSJ!gY&B=nzFfDF0s;su;
zG$JzmeU#MItpdqp0b^q!k=Iu4kxx~^Pd3;q8bk9UD{*+5`HPdw9W6X@ViwmjK>kmt
z%ZrinuR<BThS^!aw2MXVJ?zlkkBEoL)btO8QB^4iwr~zU&BHHSBCd_m7r>U$1ayCF
z(;Sd5Y2nt`eIZ%kB$0(W{`%pu?gtuS)pEbWAC7tWjeY64{FXMmy(F&qAk*m=kM-zf
z;4Dx;pWR7o@*}4EbWQvrcjTGnY(Pw@-WLTZ+Y=7}4R|tMq%s9g5-~KKJ+{C1Y1t+O
zd}&(d=dvLa%YRW2$O5G|tbb7)$c!ypjLc1JG%BAt)t@I8xJ>ldp97be{`vkhTye*r
z<2soYG4%JJ%YIsf4`PC13*?G`-n>|(ya29Q@ec+xKk&B^`{^T6pB8(@^uh-oUz|fj
z>Ru$Ky!<sJcmt_?$$=B}?S~5aF(A7vcmY2MbX^W|vLru04d6e)52q^e=ga`ksHZ2I
z^;8i6EGmzO(3gH37$gDRW2a*U4N$!ijQpYVWs!wZJ<6xwJjR@W*dXgOGG2W-)pI{r
z?YD3K+!T=5BI=1zK=xaIT>2hqEPnmwsj@&~R||&nlVg^$MFB0!=CD5~PuO%~v%%a5
zjvwSRF~h9<_<`!udIUUgSZg5lYYL>qZTWHBEcs{tta~~Ih0~h%GV-$<!V-C6WbCxD
zWnSGIC9?s|a{OEni+K?;^g(yGDtl7jbTC=t-V(aL?+`5LK9F~It*F$|+1XTEO1%RP
zfH#u@2L(8@=}I0oIwEmFU^0HH<lLUQfpefc;-_na><s|)4W|&)^2;I?y6C1UMqk@o
zMI-H-CIFM<lKCnewwd{E90GQQ3x&-)fR`9q$~2n2fQu`P?vvVN%p11tAhF;}ryG-5
z?+MmOQ>>Vd(pykOKkm1XC3`n@a@pjI^`5|lsD70f4nh9>yUR6<!J~A2WwG58wJzoh
za>b&=vP>--K?7~RB;>&fQEi1$dAUc<&g9^|<x)pNZCCbqxx*Bk)jn2R)oC*2iVc%y
zCU++5h37|GIGcdwrEvuNE6{gRJ`66LfzV1oauhU-?xM?e<(1T3puV7$A$MzrTY<%j
z9Q20zr_7bOkhLcWyJHK?zR?V)@h{BS5`lqvyRfM+JQSZ(N;xuXu1#!$#nlJfiX$fR
z(fXq6ROYLaFDd%&tX|bu8}f>AC_x`D)4bGlATST>)Yg0=Oc&Xs7b2lmlE`SWk@o!n
zj^Y_f7K}lhjDO(ZEn(1XFsy%({W^t#=skw(3T-s}kD!yU_5Hq(1@xC>bkhj+)^Lry
zx|c;3ozc;;#^ZlEr_>SjSpHN3gM0RD!I|{w2JYdP@(DV<uc6Q-v4~m+P;)fn*4a-(
zq;@;waZ{s59WcDmo4Y)!1@^5Ji|G>B41;f#a0@I=&lB5Z+-(laTg#UCBGvIy_-m*T
z5b*bS&c9?=H%TCdoyXs@6o;XbvNEC|nBCjVKBHC4=*l{vv=dpNndzStl?xEG)13(T
zTB<g1c^8#F-P%1F<<%QPUS8$`Vm4a!>;WMX|D+_2cE7`KTkrj>rFkpm{T>7LZ9Ycg
zUHr7G3YSn?GDM_H+wa3>h9=VB7o%|dWlFEfyu2kmiA5*xw7L2ym0FEwei_n)y)K*A
zji{6PL{85?5$WkGJh4?Ap+U_inYmz|#+M#NUz(lrBFt{0s9m*$e$$d1blvyo*}gLl
zHHOfep>8$QsrY9IVEccRV)MYk67$bjB@Sb{WsVO0G9B3UOetHp134;Lb|pk_MJ1fc
zO6{>>p<>nXhWUpjx0z>L<F*A~CvBr~O#v>W04p^)jcxr=hcSuZdVOp}qlxmU^#mDj
zk7{^jDK-cf|3nw@s|Nu01+Il_)YizM*E`UfiPQ0fa^R>b6Xw;Qi@Mwb#i;qFEHT+=
zVnH~M8pi)hLba5tz<m68ED>KxjM8Zyg+9mbCJ#20h|L6JH=6L0s?$jlswx3jgAKmM
zxcGz_nl<6B%UX{hP-Xg*qYbn>V>8=d%zCgq$jBEQ^AT9oqB@kDUSY?z_v%v*Z_z^o
zWhkDWdfDV&fTr3;qpXIBU{w+?GPrb~R{SQ=C*amC*NZibPUo4^_%QB<i{}!uF4|&K
zA>=gCnNq(U1$5hAk!ukkBcO>BuXJ<!zLTE?$8(6eru9Be%4buJ^yUK#mel?^T}m59
zwL%Pm<S?a+?5UPqiJ5>ln*?emR4UP?xH)9_*9Z^!Daj9aFjw<4FD>U>hRH=NVZQZ#
z661rx<DXIeo7BHUO1*9px$+%v@h)^wG3BvVI|sTp|MOsQS9*eh$mf&b`ZMaei!m79
ze31;>;l^40FOUbAUt><BfBu`M@6knuu&=KFr*=fZ8gN$|jgYwD|GAYyHt&i*cb$vZ
zoY#7!{65_8ORQDC7ziW_Napk*le3z=V99nLtrJhiai5rf90W@8Z$C_<9Oa(~=sz%a
zYpL|X0RQ^JvBUD~N+Qdee*mW67Y4AQNC*25n|Tc70N3;n^ZkF<WdJxjBz)PH-Ikd#
z<%aS;Dn{RY2ZU3nFo}WKF~>Xi_wDC^eodz~;=~i15+GOhhvGqvbCl_TOK;BG8^QCs
zHZ$iyLlHl9&QK+e*_-}H3N~DaBRPlFR)^NCcm{4R>AXV`R=Oq<4~~MZ4@Z<E&@TeV
zwg-{3oac2uUWkt0u`&4F2z7{N+(ceWtY@Eey=zjJ{5l9^BKh;YS^*@a{J5eAB(qix
zq&x-i)y#+DB&q5M{7YLKeYhbX2LQ(;{tG0jwHD^8&5&>>0?Z$&X3LwVqLh+8(5+Q-
zJsl(T6J1qcwGaptd+IO&N@^dnwJ>O$-lEF$O!|UK?7=3VAy5V&_u%HJKrsPu)Y9Rr
zdE4)GGKz#3d)D&K7YKCvYFk9fYlzFF^s&~Y$qV6t#GFn~;=7&}+du6;M#?@e)JHeZ
zku5&BrmywItxDXP<!|<MGTu+LhYJ;yZb$80F5aGjuzTF7VlA<b5ZzmMrDjybt)ZEc
zioLoWrULYQQ(>nKDy*n<9kje4uW>yeP$$WrV2VB;S~(cP&h0iIHA9wn@1;zpt-FOc
zrw3Y7ro`XRfPk?4iSq`SP7&BMYyrmJDcPhOS(!NLUE`0n0;iwy63W)E#s*|K%-R@(
zBPpb|8t`MlH|)R|&EY$(#YANl4w0fm))iJ*gl<+P;e-kyx03mMKW;I*6I^&B;dy~4
z_3jH6lQ(a&5dDoMbe$PbHm)?We+?axglbqMd}6{Iq1zx<cS}l3LrrK*o+?zj%>;UE
z`HQ!-ISEl$QYPP$&iDcW4AdnBX=66Mmxj8&cgU5mkvB+14o0a|Cz_bbz;3Oq(RQ&i
z*;>3*ntL;sLlW7h8+U#e(08N`;MM0mj$since?a!?~hedraek-^8DTEZgXh{Bp{H|
zsm-=axw?(G1~h?uU4z$^<RQ^)==(}d&YArFVfj=Rc4NmI|9;kGh>5`1u6Zm?kM;!Y
zPFe!ft^0CHK6QS@3wM}{;)3+_<IeLVzv={D%8}(?Z7F{c&t<?TpeL`M)Ga5MPx$&p
zDem%!a_x(Apg7r6`9*q}laOO)K{ntUR^mAbo&j+`-jq(~?I7%Q+N%*_pRa1cOIrr1
z6y#9!4_)eGHZpo_bkLbOl<vfJU1|EqmHk8MGkbzB8r#j4@sR)}PWL@GmV&PNf%Pjw
zTk<4`FV4`ly?*`35nPGQrav808vicWMT$%R10rSMnhvFYb2*tXHiKGtmn}H>2}SLB
zi%RYbYXN5zQVP&_Z57Xk3*X&X&9s51F5qj;MmZ(Ts3T)>bLZ|Sw9oS7!JM?E#Xbb8
zeIKn^bf5HC)f2`K4(li4Fq8;NS@lOHD+M#PlzhzgH)~6><SlThFHS;=F96_vgB&FF
zB4nV9%V$)dY%;RRS&8v~YFfhV!MO)fB%q$NbNLtLdK~XNhN%Au9y=}o{wLD)yF&jf
z9y>0g9y+Vg{{@dBv#y`7o?RRZAdzJXY6?_}3nJyS9(YUTVmi!%3j&1!$GgJ2MZaf6
zd9jAaUmxpFO!^N9Ou;!0()|mR{HN6r5PSL0Y|;PE<;ryg19i)dn>l4%N=SCbws%yq
z$H_{;d-$a3isrW8N1e{yQ^Y&<9s$aPV++|o0|D;pSI*bCI*DJxe0KAizORdyr?XLC
zav@yJe-dD=TgZ{<W7c_-m}QvNf!Nv4op34wab5f@`4ck!5=<jZYqY-qCO<ROtqabG
zHesc3AYE~-CJP=rs1;^?Ae~JX%-rIvJ6{z)9H2!AI5h-kA@{sJ_*<S>P1OUN^Pwyp
z*tbXtLj#uS(&H(Z9R^Dr4uDSdGzy7n?rx*|mdxqyd~Mc@S#plhZk-i*?IvbnPXoPb
z?5i`VVVll8{`1SFj{rUuV@-sAZlmV7b#cBTmC<>4Zn^L>e@0#K=v*2@MD|5ckHk+s
zf()o2!!g)UWAT~KQW=t>eSF=_>LGzo;!2%9@}qj^K6x7V+$wOcBQ!V0kct-_Mc8S6
zb<UqPO%O)4{wQ40e2r9xsa}3}vp+k=0szo9RR#pq>W@-0-|6#MF=sO4F7B4!9Q&%6
z+@o1-W&$LI>D#V>xPNN06WK)~>w%>UL?vi6Ce$-8pD#@A2-;mz<E1QnVJUuL$(q&7
zQHZw4f9R1d*x*8SM3);zXX(?8hb%zT9c4UA1Vt(n&@E#=Yq8g`@V0UIz<Stir^ZTs
zR8Y__#yLJ19(w6|=S#`wZzlX#E`&(FPka{kaCAdf+z3ynoU*UScjzIR!a45e$B{$K
zxiHRXxrd^(6FSk-H=maIyNSPsBkqupzLNRi#*ILmP3@1<BXPSJL|bWDSw)j2H-&ol
zVnFm#^wkFe-xZ7X<^0*Kl1<3fAJO%c>gSh^VKtW4*JeK)tPA_JD~Jmsp*?|qb}77z
zaCB-=?B>`bo%?-?%fe*7M39U&TUk!c*~{?DgoQD;RW%-XINgk3BBD6Q9qdXQ(uRnc
z|L8`zype~WDG0^QdC>VFuZ%9k^#RI7YIr!K2D^I2NPWCpLAhm`5lXXeEJpteGVzye
zdj6Q|nQ(vhfh%D;#mS|M+V)^CbiZQqc_%y&_s;;&Z$S*qRJ_MTX0ko0jdYC(jX2;9
zb;7-f)ORb?#4SGeamCg-LZ$$Y_ai(G$D}wG@uZa<OlLE9w-gFNRBu+nyOK)Z#(H+#
z)b!+bGagqgwK>GH-l6R@q~mlNzmm;|SHkiRre)4nG~oC4aMelc6^lVirP`{Lm9w$$
zV$>2}BtP3NjGowDkwAG!%EE0OEzm>QPyg`F2$btVO9V2z+a7T}fcDv|Oj&tUT<8_v
z9o10i{$vIbL^H?+pM{=-Dmsek)&+Ij7ubP0Nsk+(b?7neh^t!~A8h4>tj9x`<@=d9
zzH)|4x$Qx!0TPfq7=&8!4$jPJGIL}63xE+0pTobTu%&EMCa<Gn^U4$abo?8Yj^u<L
z_M;>P7RklUdCT;gc<G8!{ABq6-p~w*h?o)UX0LT?@Kej7uiNq~);H+{`%D8AK#%c$
zkw*a0E({jU04-4EdHBN^1Efcw$;qe$Ik%z4^p>TP@9$5N5+z3%<;dC*7?`ipe^gDQ
z9Vu81M~_)xwpE>tHs>YbzD0)<k<SpwbR1Cy3WNH7DwxcFoFRR{8Ty29*`oO-!TohP
zjqp%DtHuAQjx^%SVddQ_xPNytiC>94cVfyDj=sM@H^Be&dq36l$j0Xil%VQDEsCUb
z;PVoI5D?>mP?w=>fa-TvHz}Ub5l7Q{X|mvm*a0`#_>`KSfB(}0Ku-TK0x5lfzXWS0
zeo})6So-KN2zZD$1_vhv46|!*q_HCp<LbT4GYdJ$%}#>B3vNR%K1RZ**T3wz5O!l@
z3=D68l<FJA!CA&q^gML3(l9Xk8uLbjG+hZ2FW8e8psUrVRrB{fhj%WuMrO7Jep)_c
z*tsWlt^2GoB*_&ad*%`kyzy52liTQ`8gmd!uXzdl`83B?Mh(Qx9nTv>FUzH@2};H0
zB`gz~-fKF68?INJ*Y}G2K%3Tw+dzK?2S?u##YXFrb3!|Z`j_vGijb{*{?1$d^5XQF
z<qqb4F$uZ8${Tmd9fk1hZ~u<|{(CI$e+0$<cO8^CFt!;N$fSY(Qv=|NSPtL{6)h58
z0)ga!dZ`i7X*LV%^sTYDy1a{<KWL8t8@`)NgY2<_j8gv*9RJe^{Fk`%aXapp<N&I`
zgmQi6LZa37o>sBt@>ov^r!+jkJ>XRhy85{|>iqlJzc>)fkh+d?1pwHlnM^}~28tt#
zbVDPu0LgJ;wyLQ@YLJCU2|p}RydN2-Zg}G)p06p-`eNHp-aqQ%zG0ieVAOdriJv&?
zBr^(l0Y>-@?yK8*;vpD=MUG(WOpIw#^pRG6*oHLEYm$8kwdf?Sv9VKrJV$pacS%5H
znEOQ_=S_TytdDP>0l5r2VeE8Rc;~nI%Uqv4-v{J6Za-Dt5Z?l;%>+&!zBhlUxkFKP
ze(>cyPvJJK++;H<&cK4+!JOI*#qtnBFufSd%upd;Xp*m%Cz8gfqvFf`IcG@_)+20e
zi^W;j(B=#l(9eJ5r1nun4jqW!|HNLWQrM4xOsEQqHEuhF#+7=#Z(W|SAsno#6XCf}
zl=)Vq-aLgLR=zJzSJ5;^jKYJ*k5)U-vlnd@VOc3?P*6NoPGXT%$D`!{Hg|8JQF{}e
z7zXbo4T_Q%Zso@K)nuM{-+3K~2q!RO^?*QdQ@CxdJ|A)NBZourg@7=iE3sXcxRCoB
zNN05+Wjhr7453AHyHmAPO(fJ<E`p5c_Jle!a%SPQ${X9cwcE6#SMisr`^5k^&GhUB
z#rHr7_M;fTXxn;B9KPvO@;SUXt!H9R98Z;6PZuMUNcX%&(HUIuK{nreP#V2ON>WdS
zX^;!Qv>>!Yj+?6&Az5#cs(F1V)xUvW+kt|K<B0{y-?xt(yU}-)%HIK)n5i<;EwpJA
z{HiLB(MFtc)+Y?Moz+E@a+K=zh@KwCSY>-K`aTsST2dL|bU(1JJ*@N`v6C$<T{?<O
z)cT8?zy{@<g5#eXGzn1*c|l~74zSB#7-6=TgRxRoDJTZQ)qGQ8U{`={XT-T8Mo^73
zH7}|{qq~K}#aVu4qF2-&z<N37FJd!zcKBorIniNiDPcES7r5<$IH-U6#unWoWd1_c
z+B;Mijw5)E{A9l9Z-OkZ0WGgkk6P@2HV!@H*V&f%4yguN0D1@1X*NZw)vhdT8B&~D
zdQPUGo9!~`8&3P4U|&Yzp<-6;nLyroj0JKC;d8yYWuKlsMh8;3ND>KIFcZ*&`6bp*
z@h|xXCKFxzd>@M*O@I=JbPpo}AB2segBq^?@=Q67Sx17fQx>Kc*EJ8Q#u82{h};ip
zrshCU6ppW_#?vD+auV6(+OCzgY#<ijB-G?B7onU0*>+1%!fdxq{D8C6gtPHo(U7@y
zTXvre9gRv1mhk-jY{?|*CP1?U!ZT5Trg|~Iq^|(WN9OSPRwlg+{)5g-dk~>U{A#p(
z)9%8G-ro70y-2s2&?|ELs4xEl9ZS5(l(U*MTgNULiBD+Pjk2RBCsi69BoKRNl6sR3
zQcZhLSW}L<J`*|{F-4}2ewgo@qc_m)Ct|NYn=k0(D(vz0tgrb*{f@EVs+hr<IOB2H
z3ERw0`ksx?9WrG(%HX40=bHyd!x`)LD48nS((j#<CjJY!?t&U~AaexL8O?}{L2x`!
z@#VP_<Rqzo&@u5+51F_99TWpI3l2FpzKOh08pd#AQc_(aUB0DZwbx4Pf==oI7n&}d
zF|VQ01vm`e5hS#a$?pG&<2}qZfy6OxZyB8L;`PR});9@9CUHz_y;cD0rOesk1T6tp
zE`$8+#E><%XY-x^hOhr_cYY~?`A<T?bjVcjUnYN=f&P6ZPby%3kGu!>jEKNKfnE~F
za|1|!<n4Wlm9|oy>mU#<AnA5T5mgx#uZG+o;a8FLAe*EA2n<t_$9EzvqZiPLNl?S@
z&Kd|b1!Q^u3}w$dgIlsCqdm4CD+S(0nm-N`paYFS&`)peBx&u5ErS_2PFR%vxjVX;
z3s~dXhd(vOkJXxTBWoAy*vb3ICOCP&8w%LfT(P?^;}%)3RGO5!zt648=IAC&I#8Em
z#|09kKMyLh>e~ug>Vbf?Y<0M_H?}5Yh1g5lQY?DZ^<(<)-Z#Mp6%+kb0YCEMcEFhU
z!_`{^Vc^<m8Q1tcal?u(5NJ)|6dIpICisU%U=GmaqE#;vP%+in7m;H#K$tjbzQMnJ
z+l)RBDn>hf<TTdpMyAYB+~BE@D*`1*jb2v(fp&k!5Kk>xD}u4-vS}xs%_qgrqRCgK
zfX+3x;KP0MY5=k?N}m~5g*9-PIQ&jm;@@)k>h8htg8aURTI8f(#+pO@nU4}1#qwGD
znD+baMs8m^^439>{fpud-iL%qKhQ~3o%W{MkRb=F6OiYA@4%|*90N_C(HFrz6SiRY
zt%U-O2N`j<5(Nb2=5zqYPKM(WuHOP%f5~Ud)9ypa8W=J<gunIGCwz#FZ7O37xw7cv
z@Cdlhj-*)ZHFLr$5WM;NwcT=Qh0t`@g_0)g(S6CtT<Og)-*VJf9}H2+1OLPt$NAJj
zAQOKJjXc7_j#lkzFF-1MJ0NVKnRASOZzOl^qElrZf)-x`;7<Tor828ZxJ_jSLe(^Y
zba)BAVz@2X81<|s$fbmaTiDGN@nMsX3o1<RqADHS)N2450kKO?l(eLv)ywl&`T=j)
z#DDtY7Q@*%V`lv%1oKHVabitD#`AH%ohNYHL#k4&cf!wWBuOHJB(*5j+4QwBv7fM|
zV?znF0g_jzzpVBifLXZsg9b^Z7Ep(haTu(UH~GnGjhKNpW720HKUU@<4O4-2V++h1
zb(}Rs69FpElf6YZY@Wi^yl4tlCY*rYI{;0Eza8>_xA{EOQJ^)=wKMe~{9O+>5!dR5
zd#r4(WKqI-sDhVER2U^GDc2WnWx+eIiWdUiAEag>iZ7Td%sd^DQ~7+6Nw?XJEI8IF
zdp&As;4iPt2!uDk7+?q_#~(u%AU(U{K*YA&q#*&`IjY*MVk$9nMpiw{iyIK!uL}^6
zg;q!Hfp|`zKV<<Z_@0BGn|*jz<2&{MK2mVQnJni?xbS!Ux|Z4wSg_BXf3qtmbw|IY
z>rTA;|ER=e?L_6neBo+G&FVJEM<rdyuw-%jNR20V2q14@IXu#IT$r+uI`>N@&1qI}
z6JXO6k9Mw!#>toY0;#)(di25Cl5lRn*4dFRd^c4j@~(^q*8Asxq750&wr(^9dN&C_
zWeU8<j>viQOJp*$ViLlOB4%pYWjRuA3-`nNz%^{}gbJV1nb4`?TVbNdD7K6^B5x_7
z93q8+o&LzQ(7M72Y%!0#p~0_pWH35lQ9_al&-`{NjpJ!ePY?O!mjwSMpfd&{DhcR#
zlZiBzz2A+NK%qFR&un;re#Yo1lg4DSUnByxR<uJbAD5!i)3J*2MUu^~^3Ft)5k0hE
z%zdsfJjbKDnJw8Mk!F=b!Pi&6BoNF#YeeV$F-D56yhNTEmSOhPM|efR^?-a>5NI4N
z99HICEo}ON*&Wqvi?D~j4e!P%+`lG8V?rna>R;rD6OniRGai5d_KpkuPPb*`Ega}r
z$mu-7aPO&2WZK6OAA;w}h?tB46F(oV=lc+k$wZ*;Vk;_x+XiSi<>GI<JLWVAtHKc0
zAG=e@pQWEipT|f(KMc#e9r<uu3m~tN<7Sn+o9)twkvEhz-~+XdpD%5c#o(i(eZegJ
zG)u7~BVrJ4OZC*O?JmK{S50yZ3+e(4F(~etn081HV#oGv{opgkwCxGwAjz%|%rC$#
zDpMikvak=4WO((n6t;ApTyGe{Hf`tkp12gV>ZYdWb95_ZmsGzsz_Vf`Zk!LwI(%8@
zm$V0^oy&L1d>1;`b+_QdTo^@fi;a7Al~Kxj6Sc8+&UmiKjegcDXpJfT`arHMm2Egy
zvoOGU@)Iugi~zEZ1lK^K)1Tdms6EStPu?L|T;{!(Q0~i(Fh(KbICng6*plzgeRQ?*
zWjxeX3xPW<YTk53*3`IstCdq5-bznG?>~Rb>3K6aT2iaf2H&A%^3yKrk`x}044Pjg
z2>OJ(XcACnM*HlMabd<31w`hvDC&dlxBZI4u-k>+BL-`-OT>@cub+ljPb@5jIc0Et
zNRd8-j4sP%=&0&l2`c&lWTeR&2sX+2?BCyDr)A0PCkHr_<gT#MqS)%o?a#e>RjL=A
zwU;fE8kr-4?5vQmf*$vF?Zq3#4<s?=1Me@$RVHA`2W;gU-jh>%uq9TVt-$ha3m8kY
zMpxy^Z59Bfzu`KI!T4q&)n9JcmzxerHCueFFE?MczNX@Sp@D9n>K${PRF}D$qa0l-
zSp|DN;ri%PDqT*(ckVQh33H7Iz0qFg3O7wFTOzgZ<WF=uXZ5Fa%6p<{U)WXA6(mKF
z<weHD*rEEm=v-#DAEMY&(C)s^Un#<iG6{L}?5wW<Bs-6eww5k1gc%Q?pM7}{`<Ou!
z^Fke_kPkl1t)_Q2n7NM@-W^t1DSW41H<@P0ddzrz2+x$&YE<WnF6G-j$t5D%y4~%a
z4sU12SBnVD27+<$mmQOBO(}j@biQ&G6yC*^qg*nH9x|_FcR;`H2XPT?g-^DBi~00z
ze`R1Z`v%T<MBcQ5-Wc*8Xq8MYN^-AGMB(1enaLTOwKd<s@hMLavp#Zj*NXX8vjqgE
z_VUcmqu0S?hg?dHupJxEov)S@=Z`Q3i+dn*osg8oa%?m=JcTuWEVM7Vt!b%#8X<l(
zSoIXx8`M!ISZHtV^0M;4+_=fiS@Pgd*y_S^5TJ<v>M=&(F@rxIOKlW}O-IwPx_;52
z(6V*jK;yhPStW27smc(Xvye$NdPtHHp;0@Q<#!N$*Ea8V7!TQFyOZ(dI=GX!XBysh
ze|NB*C$jj#&%U7bP_wBUYvw@5TU`#WOZbsdXt)+)w-CF`<<4qA|NE#JU%TMUeBa;h
z&P5Y)eJ}5hHDg*knl_t=z|5*q!J5&k|9wK!1cuP{UL8Zv@0<PIXfj>tUFW*dRP^{@
zt6QJS$vF?cRW35^&*6mI97T<<WWb@&$>`dEGLdhF!DNpB_E-+b$GiDqA=}e7#_Mgv
zI!8|W7rRi(42K-t%a2xGE@qDes)$(D=NLG6)K{Y>Sdh=3x8In-e!Z?w@($6;x!TZY
z*tDmmJ<23(QdX;X2r}B@9k2X-ITAhggkc>b`wJ$`a?WWg!p=BmLS+d@rn|N!&sB0&
zmTZ<M8cdyyz)Y`kV%$4drq(&X?JSyqH}Oh9JpR@r#6sHGQSG(a8_h*l?G@&7ud<*z
zD3MB0<>p8&GYXW5JYlMCUuY2GXGZ$^{$_FOtLDM+)cDo*Pmfp)zudO@x)0s1J^Yx?
zKul4^O&#|8$Z|a<<{`>au=RPR!YtJI;bz1Q(Ka&#T+ZIBt5(E$9M*`_!A}9xdAb-*
znL{B+`IgLeFScwuef_Zfl{MzR+G;{~d`Mh@gFj?KOL`Jo#_+DI*%)hPXBbSryWz~_
z?Vj9?#o!*P6*(l*yyg2D0&0&^Qou^5z>*<pVHks>>o&V;*U0rTv^1uF&0gQ%bX_m!
zdiic;_e-z&#tQAcO}oRuvtA>bdFDxpuQZe{Ul(Y-+!7ri78kyGLmSgjCYn+&Dt=|>
zcNhHzpWamg_d>93jNKNPySYSn^#$CJU!R#J1$#qzU^0IZ8m@SScKdmyo3A;|%EA}<
z9SqdM5Sk*vhOebN9F1tQQQ^>Gf{o5C2M-s~c@`&SQTxM;RjctO_J*vN0`U4zqt(Oq
z8(JyR&s84yB35W|B4Lw$MI&6IW=r3eyZmj|B(NCvLwH2`D3qW4zUqkwH11$3dE~bX
zMbz4r<DfV=42=@8vF-6T>>(lJFzIxzg@pxg4k0*jvv74DLJx2LKG)RU0TZ>@ft1CM
znYj6lTJPzWeE4cbR_Y(7fyLkne)ptzd+J`dz(f!$G&jL%a$&ivC?DPlp}4A0=!c@p
z26Syy7A6TUj#Tj=Z@)9g+mXxHOoL^{c8w|8dEIs0Zf35>wbGs$eX@Dmp>5969eg=N
zFyFdJnv-9Iobt5=|JnwZjiIL=1@Ei-#nnNJ?s~Pafm%TKW^WhEO{D>m4q8vDR<oJL
zgkAkOO0e+o3gT;R=N@s?5rm{Y*+{Mr0&02Ctq#wWfrt97;VdCQX8v@#@N<mOr}7}`
zNRAEpLy;s7oKZ|x)0EZNXpBU^&5HYqJNR?JAFKS2lKge@e|sz!c&rjv!R`plY^O>t
zzSiJ^s?v%2WZZ(hAu6C1O-2NI8#*2;6o!EJS}XD&>;x3h*?_)8p3Z1OfNWOkM)M3G
ztSXzGEk92oE5HxsVA$kj#zr{D`g#y+W^1i=zUrGd&XSE25#M$<TBg^+*7hV$h*J3d
z9SFo(xZ{O{C~;Mb*T5Bd=cTP>qh}8*$+5S|C?XBq_Ey$crMfS_64+Tu0_8KFY$#zr
zLX5~rPNWQx5_QwMb*g3}13?=v3`=xx%cUuaC>Q32F*0lL>soiH*a-_;Fv_ZB^SXmu
z1$ArdMn54+Kn5zO)6K7fu6v8|91(l&11&2&)|E<4RgTVw<Yr0Dk=kc7Jp{)~b9-4F
zKt{DFDuv_uf_Y!RdcC^>1NEA8-~80UEoBT-E^>V2c5SBn#6}&dG!|_^{FK6Wq1{pR
z8UqmCpa(;j-7<P}Z1TNsEOz>Z*P_1925gh?vAz0Xh&+_x#3Tw^Dk2z)^}?{-nZb!I
z0<1;~Y*n3;q5d#z9@22#=%CKR)FKZH%UcX2?Jk6$Dzobr(@EOh`e&QxA${x!0kSuK
zmUk?`n-9TVstX7)b|X198}R&P8+wWE=T4k9%L`j&tt$CgO7x@rWx>17nV-;vdLh~!
z2fMwSYnMkRG8?vw1}k-e7RR*jSz1nwt>dx4bqv7IxvUqOXCiu%5wa2mP?VbIzsdE`
zi+RYK%LTNLz@X{>;xQ8BV}Pjre?0a-Z~J3;|IgQL7v^VQJHEKJ+z?+DZD=qaR2Ej1
zz0u*l!$JO*<Wkl5?+#*1OMBmpK_n3;s_MsH)s`bLbH7f|yS2<cmZ=^#RB8;-GBcM4
z{ppcS5%Iz_)v!0|`7OZ9TSSI;+p)eLnwAN;L?krwVt)=f5l-#9P!#>=bh~s|GY`?e
zy5KO3uJ86PdI*jq_&Z%eB&U}1h48Vm>97IAMRy-~n{sc&x{^pb>I$?~eU~cL=Ms|J
z!UQS(^!NUeRKr4O_)zPXS)1}gS6ltpCAYCQ;_~xovuY<t>W8wcO+lm_30{dzoq}0_
zyI(o$WG}|$EP^(u|IjyH_u+EdRh$f@?K{sb`lE@~gFnp`fIOQ|56H1MIu#ALVTS|F
z#5Olj5O2-74x~#SberxBmQKe+5Tssuqjcgj{&%>v|92ha|9RUVh~b|FnX)Ho|L#>b
zTpKTPX`8PKE_&2jb&w$8w7-ui$ac@0y#2WS)GYomo9vIk&N|S%n^)o!o7?>4?HvU@
z-+C^rWCq0d7Jyzg{UK3AONbj|i|p9L;A9z+_QsI1=u+Fq6ep&*6!}i^8_oHBkhQKP
z1n5ZoRKou8B@P6z%m&^!i)_lmE2{R4zB4_xJ~JL0u#C<ZAHbW##MrzztNG^%d5cJK
zTYtZd3AP5~EF6J0X#PAJYH-)GT5y3o0XNwf!xKY&;(T;ig6F-Lqn*p5vvHs%qETtU
zAa9-y^1lJu{g2@ORd9a;&VNJ1|6A+!;~4C1dwKGWx)<p!9ZcAjZ*SQ-cGw;H)10de
z`@@*L9)vjUJFhQxuv;%d_4umF@ycpP7SnM=ysE1bg3&|B&_Da07>XZWjF&Z>n9riY
z3g&1dm-^MBgnwNY-W-fND}Exc|Bn8rW_V#eDk8O&<kq?F3R&FioBRM6U=YNAbNNq6
zjKwnBZKT*VEqDIDk5ZaCU5*fPpcNzf!<X5ua0dr0b|hE{?P*wmzMohDt9ror`2OLS
zpY`dnkdFcGdxtp~WTSsF{2vDCSC>f7mK@uG>W^r_KTi6uk4XTJ{TT}R_qR<I^B#TQ
z9v_SoCO`LHo0qlwpa;T?jI#XuKvj6j@bH-Ye~-J!NKOrQ9>-^XV2VON8tS!$hrfEB
zeGo~>1oD3nFw%{nDPT^Y=GQBdl1!nUQv&eWv6cwE9b-&7(;<3vu!4Zw)PCP;Wv@Nh
znG9JTuRTIQDc>C(?gRgpu@5h=@G5F7S1os8Du#1>f^!pgTPhOV{M5|N+TB+CL?hCV
z=6DAJZpS1e4mSG@%|9Fh>>6DY-{<pd4-eKmM89un+-X1JlUERYuSbBwq4bd(r(098
zh*PPFo1wc{kxK)fDGwkv0Ke?vKeE@h^8!|CmcKTzs}g&KxBgn7b+~D=+j=w7wFbNw
zPycCt-DnsNrAUgFP?mBr`QtLChI@f^JBZ?(G1_jSX)W`Ad~oM9x;<69uL%TQFR)jl
zl)6_wTj6hhCHM?UIbJ$0)*j>LSa)Sv7J>JAyh?C2%w}_=EIytef1RE-y?0&P7G&D(
iArzCwz~gbSb7XLPm8R1&M-$1#B`2jUnJ0el>Hh)@bJt4%

literal 11428
zcmd6NcT`i~wr&vp(G(OARGJN>2vKR$6-1B{BE5y8B7zWVKtK|erlO!!DFH)~CPh&K
zfe-`~0SO{ON(dm*5+Kx20)e;V`JMC58{^$^@3?QgH{Kr^N%r1rt-02m>zm*F_Id(^
z7#-j}#tQ<04qP+7VhIB6$p(Qqg1GkpSHycE7lAL1AWI{CPz6z(3jEpYdD;9j2=p$I
zZ`*wz@Sn%u*dYi6;%{MpINJP*Z-GE(HLhK`Y<<sVp3<FI&=xtmq_O-}&pokW*6jh8
zJL1j*BbU>QwH!yjn6&*kc6qPXQ+&Y5$7-MW`vZ=D;eLs5Gk$dQ#N26aq0?z1y4)&x
z$>J)qmv}_pA6~lQ>9=P!>Q<u-qrB9QbuWjSfu@GhGS>MHEQirbTrCoro54ED<3VdY
zAdvk&eF@Nm)Z-)$kUh_T@8=UI3ED!#l9*pZb-x4%^w+u>rg6QbSnDdUsoke4o@4y;
zqq{HZWm4C?tcsDVJG!evW;R-q7=Dm_vL`R&#d~ulLN2d#ow+xz2~vN4VN}-1B9^(e
z73$-0lsODt?^R%?pC270RBC}hZ#$JokfBGNKNpye*4_sj;Ef0Uiyag!VsWH~nIG9u
zF3_-iH&Y8C_UqvRqC80}{+{cNAK^-*&JFO_9$A#v_dV0kTYkOHa(RV8dk+xHJCZNp
z@k_`h*eCOg@{N~3ApaZP+i`(1Md&~*FC(N-No+Eb(GC^Rv2zd`@TtM0>n*YMCqDlE
z{#k-Mea36}-1C9*dG}qS7Cwv<<bSeToM!%JNEob7X~URz1b>aYJ&?nX0AHzm9+Ez6
z_+wg9=@>0!YLov8qr7ltEqibe$lt{7AWdWUzRJ*xpu5ibn%0wey>M%@SQi6Df=Xo!
zyTKY%vt-KDpr<^+#TEn_yXt(oIL>(O$yqVO$0F^pQvS{0l$y4RNUI>Pi>j?W`Z_P<
z4$gxfh=m@;(5=h`-*xp1<IC4xoX$`As+Y*aI2qje*u3H_sgt}whicsjN|yvZ5US6F
z3UoTOf0pl45~iIHHB={!hP72hQ6A~ut|HgKCNs^y+eS$W(e(KX=P$M&r0Ip9VO%Zd
z1i^>;qQi}UX5a7mtPd0YB!r<a_@D8R&<npM&@S6}R_X2U_1G7qMzOfB`Glo}Iu7VF
z(>$QnPn#H~;)S3VDZtDt#jXS2=D9#1_(2R(muKmNk^tfO7(@%?_K=&g^4ay9f}jMb
z$}CzF1X8#R3|S@k|JhHwqqO?@sc!>5q2XhHNvvH+W?f#7{uXdZh!Zqc3bQGea?bIq
z!A)PgPxr|lc`U=;XJutP2<%m`5Pss6-nqVl)U%oE_2rV9<buW2o$Z$c6?4NXa*gWZ
zYg&qjE1n#++kohIV;ZYMMJ+8FbGtsFPH@9_$iUW}u1kW34tgcOw-*1nB(+CXV%cc*
z%e}`#M+yxElzObbYz-gi)6Xkfr1)YnBoSU}oz_vZGeNx7U`Ol9PBRCn=>p8KIO~=#
zwbX9?X-cZuN5V*rmv6q^t4yV_c_<ayccm)^H`@WxlE}<Z27%%c^B6iEla6{NGk8?q
zRffc}Ka48ok5Cn&(V_2lAXd`A+)m-v$P4|4X!!f=e^`p@4kr6be)KwG7`ZTVxH$6)
zVj#;KVMjd(Z2u!YK=g1MXU!^MR4-64!dSH(@L^gbm(V-GCd}<4=Tm2;I#Tob$kpg)
z0)f5|!1-5$Z7}rcT5~gA=2ro;MOP(~;n#)J2dq=lz0f8@IgDaz8~_2&X5<Y392!3U
z--EONA_`uF6)%L6mER50bU~n6%OXBT3vyaHvS<s~qbBI%Bmpt0DLGP05^Sfu&Ca)8
zgDe#sF*ux9vWcl}KDQf>{_2h@#NJv~N&B)}8Ls@r;z*OCKMRArSZkW&Jei+yanu(!
zGn<fa7lcPh-ErJl;N1+zy_#**>RqZ>?$VNSUW4fv7K10xDAf^JXFz-brQ`)&lDe2^
ztFqlCEd9Luix6p&mBQdEnV#8r_?TfdQ~6c4G6tCvKyL%t*Y!r@>UVhS7GqS`;md;d
z&LzFeJ+a|tOsLh)(I0ncf|Uk*&r!RK=H4TG5*-K)ZgenTjM?dwiAtF|gHV@}YsRWU
zb=}H6f>MQE&(?IP-JkZSPaQ`zi^`lR%8<#}QYp_2c#2gwj(Q4pHEF)O!4tlTP6yjz
zWC`uZXq#_8w&o%-9|eoaP$9O5jgq~GsNz;E>+hScb~%YsvhX4q>gvj1hUU`T@FicN
z6XoOSrlSTve4sNSPoa8q>w@Nndr}YG*t}mNI;w`a)$2Fgb5Ex$RWZ~s0e=k-RV;c;
z*oeJY@)u3Sws(;=!C&}Xtc<7J|6KQJ8-Fpzt+#aXvs7gjuvWi*Z)<~w%t+EbC6f?x
zZ1~Bkxm)2oFUoEj^?T#5>wnaCF0~C2ySe~rk>%|!@tH~<p^X>S1&OT{9XD$6nQXQC
zSaa>g)Y$?EZ7&EiXN?_A6s;sMVlF(5p$;jEC2?8xv$888ht!5zT{?PSQ}pW!W>0H}
z_JB24&2)LXngeAlXDqvZ`fO#qimK}6rWQ-^_IkqUyyeR}OA_8eV4}lBXkYf@o2Ap5
zCvzRM>sW&^ugrv24jnZ;i~68-AYW45w+ODRoU4N4Kh_z8F6H*C&3W0c##5lp3I>h+
zr3fbd-Zv!k9CpHRGgHY3TTf|45cXG{)cP0~oEmC49m6zpludtah}?2GtlX1brAkI_
z*UpPOFSa(PsB7Fa%dHF3C`^kiGt933>i1qQ_?F#<Z5>3m-)hC6UZWK=Uq2nux$s1%
zx8NV9bnm{Ry&KN@{m9XAeaBOz`|AbsN2|RY53)YCLK9D*!I>)<$r{5TN~qn$y~tcV
z3tq9|{u++qBdI9JA=pl8eQqOjhc`<*+4|GZ6yGeB5t8`0)5|#Gr<+WbE?8Ge&{|^v
z6pz;shWUl<ygv~+h5V2?tIaQYN;@Y(XWvRSx9UnoS?<V}i!F4OXWA7nI@Wwk6tb{}
z-m!A+SKq!dZ+>g}i<p=*N_I)UG?E&uL`R)oO5qr5O*=ySbrOE_jfq5MW9eGOR<jMC
z+1x(gjk@`BP%O08_;GOUFedGe#Hh2{@3+flW-WYiIBFZqcQ^ne*<rH+5h-uD7`;1N
z|2;ta<$aNNK~^^`6#3C3=cs3kYW)gRb=1kSwzFm}yn3rDD=N?qHwD(%uq%GEj&ap2
zQj-y()pMm)z3l{vWB9dUtR{qry4xX#IE2uaYPoN8bR?6wuW5!Gu~#VzoI0D%&FH)@
zU@t=m!K!P3#$*oB07A4E0MaItga6x~XB9}h{Q^7P>TA2dM<Ztm%j2JCTPyu`+Vr-@
zP`k!@PeETkyoK)O`?0WzdOP-^pzIg-S9dljyA@jhxYOdd<4M`$A9x@1ut!mWL|9|&
z7C3<*2?EE@;XGoPQrk<DJ1f6I6(FfgZo!?r4D8N~-i*kD<lmg!&)^Q2ohbq<4bE{<
zL-#?`Oxj@@Vasm^52x(S!8~!I-`0Bo%Avg1XXO%D=9Iu;PR(+Ps$O|Av`x_t3F3I>
z3A7h*-R;LsW;093(VFnOWlnB4ZD17ePBp5~337%MO70rG?c}=<>ICbY?rXSPKR9FQ
z%3BCOm|%)DCD)vb38yRbbG>!h<k)*I2e4NZIV}*}NgYL|pB?Q;vzUZ}wdSOw4KA6I
zp`(4z-boDE#wZaY?c_+l(}5}~9JZC)pgl*r0TcU?)2_5M<*+SEWtG7_F14MY;<y?c
zee63$EsPB>qJC8rbI>0D$38wj28y|boBS3Ru6w#3_e#l*)-6ces{zOS)BJfq0${x!
ziA-J)q)kD#Vhms%mhQTlak_K0tOPRVpMx&!{v>=?Y};2Y-LA;t({j-#ZokM5_;&(7
z<FuqXMrlrBWAQo1-=hMn(!HB@n}(>qCUE@XAlJbrRR`PRU7B8)6}I9ihW`U(jbpFB
zIp71-f)oMsZ$7+B*o?sK8=Kew?a6lnnovf!VgKfGSJv}>1YcA8635=F*bk#6yCX(Y
zk#Ds?5M$l&-7yXni~pG~;3(I|6^bisSqwET6&WK6b~%IeMQwHIZPC|P^SRy3I(ZQQ
zwf6dd%-q7e-BC4zG&K+?%KipBSyxY3|B{b_*Jx3~)EbNMbigM0cs@k#OjZ=VjzZC$
zhn)f_!#P}G4AVU*<mZ8<5BDv4X5R;i^{)n8CQz~q^@V;^kdH?iUYrYc3=Uaa{AEDV
z)CvmoffJ^^-?g?8p5+(z-SWj=NF$k^db4nVb*<y|^>D6Xhn08`s3|~1gr+n=dnK$Z
z_ffk%%Hz~Nmkx-l$c+mqy>spIF^y8WuQ6tt>G_{cbYgHNY4WwNePwPA>QmJb3cbcF
zPh#LnNca@l>=+uLIL@s{FiL~BZ(f+l?t%<LFp?`;F?U?va9Q4|R-1_pzphB^`uRb~
zbgs2|#=TXzJ0!_*5EXGw(+{XtSH9G;cIGfHjId^Czou90jgusvKv0wN(cc1-&M(@U
zg)`K&tZuF8Q+!_?8L7KKxWI2z800l>iRD2!DcV%2dT4c>cqg>7UH+)nOf)R14rO;H
zm#DPvC$<N4?q&c+$vMeTO}9)i3;kY4h<2>(@;BpM!xP-Dq8}1wm1A(_BBsOxjDvkA
zy9%C$W!NXt3T*Q(-UU|OKU+GMN&DI#GyW6DngYnF%?VN^EJ!_vJzKv2jLAI#cJ~5j
z?RDn$z31M1j=}vCbhr_qrvO-K>PtKr2QVoC%JrHZ=%+{=vTRKH4{kdli>1^&dv2F`
zJg0<2e40+4hL^>mIk6%b{%7!LXre>osINL1Hc;WLLMkkx>^ySie83UOD05|5Q}OE~
zy*Cf&OB|sXV|Loz7YtZc&wG$Bve#$lglSH&2Y$^J(V+vCg3eE80WM?EwTi#2sV<Ga
zjLqtTV^eu6ir#2c?Imnag7tPcyYJ?pXjZOUL;b6l1lVI2K-c*Y*LvHb={gZ$iq!sg
z-^QbRb)(EdqU)T_3U-$XNAFRf7Fc@LRMU;^)gnFC@U-rkCp(4U$ZPR32Wd?+SDEPW
zZ)4O{Tp}%{Bp_9CAlmkaBmc(Ue#5ZiksX*L1D8>Sl1!hhts8D~$mQhR`%Cez+k@T6
zH(Ns72)AGZ3ev6@L*I0wE5Rp6rz<liBbsh2u&l9N;A6C5L>n)AjM)7QbLWsEu`xAL
z%ml8rZhK|>EdxW}abS($>sTZFnfmx%@gqP1@C@Dx?I%y&z$)0%O0+$~aGb7%5%QuZ
zp3N(+LM<6T`7;gh{o+UX*-vg__{XmN7hLyG&x(lB#(%ZM`2opibB1bksOgo6Fii@z
z4b(|Mlz0JAQW%Xp%>=-#RdrwOWs1NUK4P7IY<*!AwK(>vexY$|m1<Sa;dWl+gXQjL
zF!E4^+~~#aK9(P9xBuSKI3lUP5;YCpUFFhCOLS2u<!Xm558RtA$DSs+A~z?eb5SlA
za_(@6cwAOs<nC@y|H@pB0h+R;cDr`B3A>4Gh`blMUb$-<2-6K0#oLJ3&f_@UI7AN7
zevL%%A{;cWMI~Gs?!jhFb%U3C>hBbr<_Xc7^3Hk`LW)<$5m8`$341PETEo4ilca~K
zZiU2nQT8RCe_gU)HDN{QZN|H5#Ot!WaUh$@t#ubxa;|ncucu25xm$N59FZbg>9hf~
zM*t5~3jMw<t4lR771kRCYs&f!4Olz)?qSrbsLctm3wG16m~*yjBQ<<KV}Z5VFHI_(
zs6IcmJJDm;tf>{l^wg6`8_ngZ7aVcl?a~9EbS<^PD52vrsS#1ZIVQL$<XUfT-R_u8
z$#FEcD{Sf5EW5jN-%MbFjz5BBNFH*23x%C<V>tQRy_o$F4j+YR+r~#oW$we_7^H~W
z(3E?YXyrqfXw54AmTid6Eq`@agW|YiNX9X{`OA=*)g(|F=X)X~e)$sfZKIS~G;VEB
zO+XbGXXfv5bW+V?!ev*n!?0nKV!KcZIeklVk!n|%ORL#5G(gwW8?K@b(V8^(uV^ux
z1=A_izwR;O0+VJ1r<c2fs@0;y?Z?S}p!xarknh4Y-yoNU*oZ%m*I1_8)%q&Y^<@8N
z2-oA4rJ4su^aZ4C{N`WFk?Q|7;i{QbO|VM?WaaNQM+0F{6vpnT%5wU1yeNkM?Op{0
z;CA4W$=QIyoxfwo9MSXZb9}!lzHzG`wKY4sX}UQBJTjA3Yq|U7S0x>_we>!D40wXa
zC20o5jFRd!N`!J<#kQtuJ`e*$lYFOf6N#qh$4L)+-dS?JX7A*;00IIaC7}QSB=BgP
ziNpiIsDIt&b1jilV=gMc)40Ffj>PuitE=&IVop{cHBXm^*!1+6Vc~n~=YJxC2jVFC
z;%iy+5bVQ!r+^L=?-wEgp$td8rfpHU5~7^(KK%e<JvGm}7=t_!t@+m<Yqm{TNA)8`
z?FPxd`w`gY5H+Wg3Z0@pRO+auQdjVqrx@gmn~ld41syx-a4es6Ma#wUeYR^&2TrgD
zKo(X!kv%`Bud>g-eyyCIEVZUplENR;1QDYa`xH!6G>RBcUYJD7lOkuK*9a)%;@RQT
z#FoAGB{vU7Gas=Qf5m%xf_1ksbeGh-w2%z==XU-YON-%0wa<p-lYI9*A4z!+A-b_-
z#s-xDx$OPNtOvob9DT9TnpfX9K^I(OeW?+Z?VbxC*YAf-B=*M`niG6KrZe03-noi>
z`d9dexm)i?!_s|1a{k%*niiwAqAJQXE}SuWoGR&UfG^cAzUgcb8(tI(7W60;r7nb+
z<-cgeSN`R@SNL-^t2Hb|$09f)$5gGpuQZpas?jBDB!(zd@^X}hAEpUT$eG;q2vyco
zF~N=&W?o|^?IP|a4;mJC9=CB5q8;gfff*?g%=;+6+Gkm-CVFFZ>XkK^&vT2%#x<gR
zu8=&tsWdoedl#wMKdzE5J|B#sk6W3Yo_UGMfrr|42D>jr$2D}PN<WNz(izwdh&QeN
zvUA@QcQdlML;Gj-Qk2V8r)B}(@Hv#<?ctaGj5m<luexW!A8iV!^oJ$Bil$vhy+n@J
zl%+&a6DI0T(H~SUWOy4^zc;$xeJb=2!ssmyjlR^9;66QGZ$>-S%gWVbk{;*jT0`^;
zn!~@&ZIoO^U%wv}7+7KKlsoDhdGd)w*&HDl2NifY1gp;3A;_Ldc4zFj{_6n4U&5?k
z0}l_Oy+W2!aES#<71PROi&EzgrS)I84;>O<HsZQ62Srw9i0=AYA4`4Do7oaCtp$_Q
zr<XdsS6I2q%x?}|=3jCm2ESo(!`6I#vL1TPl8KZrtPBm|WQJCWRmsoXr$LXP>!?qS
zgKwY$rfc3Mk(to$vdt1FdXu7>cQLkK9}9Elnvdy|TaWAuInowF$sqdZy{VzTp`POD
z>UC=lc2!aEl%CV>(CDjA%_HCTw(^ZM)M})qkd>yka&;Wneb%(1O2e5U(U7v=MUFEG
zNfAo?TQ@&fP5J9cSL^A7|7IGn{JGT|C(RzM5jUxJG>~IUERHah(djyHq5lfjVRc;W
zNUx|_FTzu;nl(T}lGl4f1UFA<TD#Fiy5<VB?c4-1cgiRxJ-*5hL$12?e4R-pzu(-M
zPEc!G_S!T+w?Af*%==svoPO>f5I)@{=DZ4%^o?jwCEu(o*RwsK{0q=EB8&ah+<Qjq
z7R-w|)#-UsO#-?bV??x8Wy5j@*^j{5Sh_jb$7xqot1IK{h1;%se$PFajP#@jhE<SE
zi?TM69bQc2txA*$giI)LQt1q`{H#6KQ{zCQ)?{3=I%p=m-q}S0)<cV?F4jnX<6zsM
z&}^qV4Z~`Nm&Syr+{mW6kxeURvB&D(&6+SQ)GwMB&!P-&qrU5<m+knYQ#Gshrf-0B
zBblo``9|P|#Yel3Md>5>veX>Ih|j{k=~vemmM;{?^dYLq^LtU}Q>W1IsjVl;KVb7S
z?lzepIbS8^RbMP@CARc`lPQ`$Oi>fM!}}=jWsd^ZV};c%;hW&G1KmA6o10KFbl0OZ
zlOyX<!3yCa$tv_OLvY=#@aRXCYF10a805eLODbzxPt;FzHd@pFw-S>h<qC>gn4S|s
z*Vvqn;u3H{u@DZGXDo8Gd&0X<!X%%!UyypWcB%FaPA|H$;vt%ENyW~grM5AJxYqkk
zS-4?<sC%coGuTypzh~C;4FTLdd>vLzso5vraLPBVs4+5*9YmTdS1run_)ch%9^L*B
zZ}#zfR%U`V%k^Bx(Y<dFmH8EePm6FY-FWsYiLyW@Pe%zT*U*aR^^XQSy&_<%_X8Y)
z^1f>@nba7$U|hyRk#g^V71li4S9?aG?L;SW&V_Q;LfvZ$Elgper&zP9{5Rj6x^QDA
zUw&a8vW9BC9(3`*pm>MT_QTa0>n)qI5x8Wz)eB*~%u*awk~@FG()F%4|EAfucF6Pe
zvnNUWF#N-{@ko%xVqBoS%ZVs@p{fhGGs<zmc@HeExBqi&!YIEs*<yjFrFx=GDq>!z
zeEb#1EV0884wig7ZH+xE%*9I3X@AqS*mlyXXv6*RZ{j*?XQpO)Ir@!EawiNkT73Yl
z)n}sdlsD2&@k9FXYii)QxOqHtSOLg+#gnnj`E%)FMzg_z(yZ}E_ci+$m^?_~Kk1Nl
z8`gE0z%Mkakb(53m=RPlL=y@7J^H})!Na2?&4;T)?*>S0C%#{498H6YvR(Xdsg%-e
zM`OB{^9=1a`uxz<R?LXtCKqhKur<Y*><(tHF4|hqisGv3YSsu9H*?7{1@607m=@vX
zQuCRNoEdqB!8Da4U}YJ#e>YR=q#d5eUWQ#m0DXSWx2xan%XE_`RjzsY2)4;3N*4wm
zG?8oz!yQtG=egU7OVNH*X-@#WhlpA`KW`Kr&YJw~c!*}e&i6pNbU9nOvS-M%R48-{
zqr@>J<LX@&cVE-nL0l;&&*|mtOZ40XZ&nwvuv)B!H$pCX#4<J}>6Q$s&>3frfPIGT
zSpGnV$nQ5WPOf@61(wF>r;dgYZRac&;x`8A;}Jr)$C0vB)>AZ2>N$9(!Ots+CDeA~
zPp#ot5`XZ8(jAq&56#xad{VN8mS6k><DB)T8nNR0b?(aI3_eGC9e_y{Cplrt&M8<-
z-#pbTj<~H43s*i6X&0cOt2%$qDgAZ8@HyL81c^>0?BI_lXqz#vC;40Jt)A6t&&-zv
z^}5s$6{pk|oES208EkLdEGMao-G`h}(!Q-vS=to+eJ0Mq<aJ8A<qZR!7~7LVFL)c#
z)_lFmFBDF7`4y_(P4%pU7#3lQoV$FHLlvpHQQ|y(&D$O`i<0|7j@7it=00AG5})(A
zIXx9OzM%9~4*}|q1kd38y8P|M*&ec2K$xS|UJ!W@;18J=MsgVfh?3)}R#)mq*6Ql!
z95KXw29&;ZjRB`U%L|)cri0eSalKv)ejS5iQN1_BE!%&3`jP_Ti8##HRR5KBP=WxW
zT`cR9(!d)7%IDN}4U0DuJFgYzYDd)0OLY41ErG>sa?oNlc+2yHSk~3hAul*UeWKs}
zNKcZ7D-#-OgoGNi&Z)1%w=O4eBU~LuqhE)Oma21fUSU(gZ4;fhVLD=BUgqM>KJp}3
zsi9o9rITU?5281!i$qGb06)K4lF=yv+c3$Ak&F&jGMGuA_MY$kdgu;sL~nw}l<Czw
zucmU1{CX)Cy1YlTM;8}$#YJg`b{Ka?V@$QusMOg%727X>S{50wN8A9&CzTx$_9dLq
zXw7q)wlt71P}C))YJvcMo`18D{}P+d{`YQ+xfSN*tV=gr5tW!#l^HT?hrF3?A7Ue#
z2S}V|^QSs_r#1tVeZgmSpTU!|pX=~x_-QOHMt?ZoAkf&VdkjH4>tD~dEv?Zq{kvk0
z1&x#HZ2+^X3fsF85FT(Rr!D*=AXvN@$Nj!Af_|wJc`cH4<3pFgorT<ea4B{Gytktz
zC72IvJRXWc_&=4FTiv($gkq_XT422rV;DFMO*}NCuHU;ou}r#;t>&DZtbOiJRo1o|
zHo@+-%)PK_eWbKVqkf8debU|8^;ArFL}N$e%_WC9>Z;+4d`k3#_0Q3oe*!JfjwYys
zxZ{;Gxr!(e?lp~m5rQx?iP@iw%KTVjg2~A=z9vrc2$|7KF;;))q#-=@{foOMsmN7g
z+gtZmDL*VSDuahHbzd>kVjDw3A+9=(Pn|=E)IMi#ns}EI)71huQ?n~|yn@%4yQ_Q-
zoNl+w+4tjC^~>V<i8K=Fw%mx>=`GB1o<k_U_KvP5De@^-g@Dkvk|*D!MImv3*%-&;
zMv*Pr2i6Nu@TT@gyiyRN0RXh57+y$ku61w<HPA`j%YrU=_*VajT!VJs^*9w;c8V=C
zZGvi|o~pok8NtOZl^gR;o}=%Y(l!PKY5r`}I(N{x#O#bqN#;_h&Di^6CcvC!Y}~&`
z;}o8-On=f!HB+MD+n742-}EWNfSF;>(o>Y71ts?y8zC_oddC$0nb7Wf_k%&cYyjsI
z=2?F}cBF~mEd@^J3G&E`8NWZ8WUBVzs+kr~N7X{$MYW{>`?L9EXu6}<rLNC)(Ef*|
zkmgGr(;nH~x3lbM0Z&grVc)p=<a|N`hE?uFG^XigcE)qBmkQeDLb-sL_M<8=`sCpR
z&iG3}WCO9;2#MBA1KvvhDX}!CI5#HRliL!d^ukwXM(`1#^x>DjIv_U=cI*Qp1f@Qd
zv7oNa6DarcO1kszVvE2>!3Q30zy@Ipu<R=BkBkLuoIVz4q&{?^B4Bri#U&uwutl%8
z$kpvT1`>(-$K6=MGt-gqSw$X3Iv`1GPUogSJ2Ujq&>iRtw#s?rA9@3OSb!AZcGER6
z{AYRogKF^9TN3McXKCAOn{WZA`qL|Wt2bU*kA<-F%YiD(^cRfot(=JMb_S3U|Lmo|
z>`P1wq=xe}bdPK6Qk*xoby}wr>WzxFep4N$Ha|_&qrt%z2m0Fz+s@=q7ZsUahR^1L
z8!0raFBG9Ron=V{;B3Jkpwi7F?F)MR3lIoSRgx(9@UB2?Yoc#UZ1-)Hb?N2+ar{z9
zp`<=VI@0E-Js{m4q5QC;$<;_ZF!;B9icPO+%G*ePn{=h#5gX9&XqMML9qMG1+2)~B
zbsIn-Tudct1s`A`I%s!<wpp+L)~xvVPj(FqL@Zpezo&^9N`y_=Vdx2KaDqh)ZjCBn
zUQX&g;YRs;$Ml;{9GSM16rtDGT87q%?LIZvAC&4NQ*Qvd(`;)9=h`qWNRXH<IJ9Y?
z@fOhFpTVgFD=z;Ff5zU0{NKbxr&SXj?PFa!N9L<6y4?^0W_*dzUalgIH3v9PqAjOV
zG+P~5Ol7)@z1NOqx;)Z+vlWuxZN8v2w_;^GeRt0ydy0I!=<q|dIF^z$PBx!;e0IGy
z;<3e5JK!V{=r$WMzc`fmtyV<bfD`I3rcaD)&ZNzO7qD#*&^Puf9;mj|3o3EhrZ+T}
zNc#1p&j!{%;yULE!|b%gfpgIKjm0>|+Ib~MskYyEyo&(~0?VVE4&KTNbiL6(d0Nw-
zgKs|~7ZlS!(rYkX_Yj)vb6cQcJu~N;waWK=k2C4n#0%xLTOxM~MoYF(3qQ;^)JVV?
z3U2jZ*Mi6L(vHzIIJW6abvY@N+OdWl>kRI<d9}xM3hrqa`ah~^&6o+<-@gubDmv=1
z7l6LdU9fM`usa?Od>@;*Ew@l6U7+RPI2p(E_+9Q3@|@#4dQ>BS%f5fVz@H*|GRYIa
zKbq+UXdV1x!LfV@vA7)k2Xd(w+0UM3gF63=96&~@fF-HioWgh!G-A9>GLbx)VWVRo
zW;t2xE_pq&mC>h%-pnWdr=>6IyvU9gkVmVxp_NKMyFQYg>*C*dsMpxKUe|N^ig;b6
z6=_&`#wLMsl%i&wN<J#=`zTO$u-Df$XEq(6F`b7Jb%t{9o>M=nwf;WC4^dYlQhL1u
z8LcB(|9ne1NLFSx)UwF3TrXAZ3ji&S-o@$PQdhT4v2@}7sXSZP2t_QT+sl<m%l^6J
zKcfE8T-{tM2RuJvQZ$?}7;I~HXYCH9dT?QXX~&A9(aZ-;WN8dtwr+a7O3!xxUH*Qn
z3tPSUU^b|DZz?co;d2%5twg8uyau~Afv?8Vclj#&4r`SM-fELleHvAR8(m|4KtG0K
zW>VEDkR0N0&y+p#3=2cNb%h1bD#hE@yggbaXPlYq)e{=_VP4t}o;X>vW3T#cxe5@q
zfMRQVEJ}brT({DpP}#s*BLg6t2Gj9JJT<NMG#zHt)b1h2W6SMBtoA)vkmj8<j3fj(
ze<;?jg!Fl@T54U#+NG72I0Scgz3y7dbE6lJ`fR|nZaYLaHhRm>)UYejHJIveYc8@&
zAdJxW^*PM06ope~a~Q-EfwA5q3n`uO)n-2MOboF$V!gsP{I97F@y$-}+Si#~O)hxf
z-uGFwW24te>slcxZ(bid^RrAtD_o;zpr@sjR91EsAL#V+TZ!x|ts(KwZT6fa8{c?W
zrYhe3%ZE3KSf3eABfg%IPB%-0F7_pq+zV$HGe8+7-QyZgEu7AYfb49JeTwRLMZtc~
zwkMyl_%NbuEIQSiMzR~r3$Z$nP!=n5A-}}mSKp^7^ab&Gu&49MQ|RIi8(PfyA+O*!
zo^9EB=)rtttK3X8^4HMfeO-4%GrTeCsuEQ9$gjlX=gK1_5E8JZ*1t2xKg&p?NETyj
z^F3T3&Y&(N=q$pD&Jb4JCI<8*)tNT-ld=v(5lJ^Je8pTf1dbmzK$kXP?|Rw@iwBUz
zAqHx3%ZE@+W{m@tj*O6%JLpFRGpbZVsC$Yt?XG#(iQFd|gC$F857;Z*BQRF71Fe9<
zjLrAe@z>++Ke>d=n)<{0%pbo80*R6NNU|%rCQ}QFzG7=Z>S+%l&%A3&C~V;}?A`3m
z(4!6HbZVHJ%cR%q6FkLSLP}Eug%2|;9PfbZF85BhYGjHq>cCv=Kz)ee*XGM5B5rj@
zsveR0lMmZ)!OCc;9&jwEHXvH_XKP&Ow2}q}IS;IaDLcsn{FYVqM8NUDkLvzr1M*zd
z(3N{RS@c#-P{JR=y<vjqWo+DISm+M=sxt?Ib61y+(&*GOxz56b_%IOg?jJx)K!Wsn
zVG+apB*jez5!tL*>~3L>FShQ!JPDgs?aV)>&CVMq0J8a0?QI#ff3!Hx^&RKMW9+=r
zkQ$ykbHf`zBYie-N0pPvSJ>sL^q)-SS~6Q6{BCnOo$xlxr6T~C25^M#Px|A?{$H8;
z{}~bg4_d>4LSQAOW@G=)ayd;vO(xFq?LMx7D1fH_B-{IiIk`oR>8oqq))csNT6_yK
z{en{swmx!zUbDwviJjEP?Py*l5>hES`V>htFG8}CUz{y(tA8`0fa_pBMNn+nVhPlu
z9F!gZ=kfx{3OPNBDVn?|Msqxc{kxZQ3XIlaWVehT;qO(;9xX8f7Rj8wNPo-W?0Opn
zVY4+LJ8C}YWxM9z6!YSnx(@*DCTx3SDc>lO4v@8JqQu}&PLK#YNZE`GA7Qs!Es(Rf
zF2y*{v;wv9E6$Op=>i*{*zc~`EA;0@dM#U+FOV_@-E=eoj<r4T1Ony1da|)>vHi@h
a)XNZ#6XFq{KLRI<LDvi+S1R<~9{mq<&{19h

diff --git a/windows/security/identity-protection/vpn/images/vpn-custom-xml-intune.png b/windows/security/identity-protection/vpn/images/vpn-custom-xml-intune.png
index 94cbb2c5cb9923eb1e19c39e3ca8189c6228a6af..c6437e95d1d27f88f8add2808ccd912acfdb4c55 100644
GIT binary patch
literal 11868
zcmeHtc~n#BmhVwYsR{y?Ov-2}GRRB>WQ-#yqsS1D1P~BpOqgW~T2w$mKvZS{6#+>g
zfCvc$2m}S0OCZb;BM@X(!kCcoV%@&?^?mF1?e5pT-h1n<`s1wR+vl8bTHpTd-~R3M
z;F_fgKS&$|0095hE0?YVz<x9C_4|+exfVfGA%*+1FZjC21pwD8InQnU;C0^OJOEUs
z^6lO{z-|A8yy6%P00OPwuYK)^*B$_%^6l!S^R{=KmnZj9WoKhP1#;r9YzaE(?T9VD
zB2KdR{qhUn<!@Kzf9|4fA85bbn5ObUv04oN>!T4cDCv}6;nLI(?lWLx$M%w=XY~tf
ze!4=uWa=g>@vEbtWPI?EvTaw#YMytC$GuLjZ02JkF$<;n`PnO@D^pW_4O5Z6ws1H#
zG7Gb1Kr!sn+FMiGTkG4~?aKs!`|q{H)SRPN8@JX@0>DdTk6P?b7oV8wj0pf-qUD^q
z8?`kV&iKnM2zvn1$mrGI`56GL33M^i_WN-JDNkk}a2V~Y3L{ijRi*u<f#NU<3LvpY
zko~}M(D3dwgfs1gXiWd(CI$&%jrRS^XvEbfEE2eT2gdDoRY4LsE^SBa&C}2POE*&}
zmOq*YcvpCOA{Wt=Ed!4jN?oOfAFq2;J5BxK{|r`|F+p10&Nko$?xy%^YioPL2}yl1
zw6S7C-j(Q}&e*{S0kl3oj4<jszd_pkMrBR7QyC>Iz~KxG(yK4OC)JbueihY(=xAw2
z<#<`Oy#x(Mw&qziaZt{Ofx{0*#a75RBp11v-={0)<mKG*(JXSfT0_)}wUP=0#<rmh
z$w-Dqdtw{}9Dd~6TL6I!kl}Y0dg~?elfkR<3lFRem^V;9N9c|O%7#G+{c~`;(O5Uh
z-yicM4<I+=F2fqh20J+y4%m3#+jSM_u17***01FyUrZ%!E<gjy_(G<kF1=Qk&7VQT
ztG;_xY4QL7{zYqvM`pWu<bywBu<SKxt4#tiW0Kjkm?~42`;BGQI6k~m=n`=XVo0v@
zB5|_E12`0)>_tv%OJ70sEScpbyu#+IFbZ8taY8NEFN_LOccTO$;VW<Wh8tbZYQ{&!
zy0d5EOgIA;I%oPg3l{iTdP|A3ijf9mp|$7J>Lwz65gtu%iris`voBXIp>4vozzla_
z#QmYl=>D~gEPtBw&O-8rol)#>ZyMbr*mL<r2Z#&uTX)=~{>?m{3TYxfTa|B%vuHKB
zLkp_vT!g0V(foVXS3q0Lj`aG>)^HH@4s$AZ41TC#b6T)`PV5_srMVhek8tz}M(GY`
zv@<4ThQQFFHSVBM57+%PBFwtqBGq)_a(y9tjT66y{V>qi(ZE_yn~2L@iHT-!Ebtt!
zsDPmQdMMAvULq@uf^5KydTQj?>;ga7oh@>kRTHa->a%zJCetd%Z`XreS}`$n=p&9e
zOVfsBsy5<L26M};_}E!uMIKfZ#qKWLn(AL#96MPO^l=E9tJ|KxXp}H2u=H3a=9NS>
zUDR?XPy)Db46O+`0nxDXbR<Mik~kxg;gh88rMcY4>8*JjPfzN@_@usQ+%f0|da)Kc
z&{~lpvlzQq(=IT?kXM_yKfE_at1uv1`&H{>TICbYN3Ifgjs`?;QzDJ^dLug|NMi;~
zA@eneiO2K_7VnlVgBTa<zP#yE<s{9z$~X#as#=VTX5il~frg83&%p7U47m;c;OyiQ
z6rR8B1NCL&-qIHqQq5@O%xX%>K^5}`PPyXhbpgY-dLPEaOemzp@u3_91znOlD6zAx
zlOvcIP*(mbp&*J514Bq6nF*EtV*6axf<?q|QbT^;X|Mf_)ODGI+A{K^v+@>Gq^}D)
zYx+o?ip_8ZydkECRsU5ioWiH$J|K68vhJH|7ke^|n&^A5W;huYF9d8#T1@p1|7ExA
z2%8sAjo<nDadV0)q5^yWeuF}9Z1fd`e3T;Fq8I7WE7?hPD?KhLB<2;ZF)X*2sox}`
zzy1Jh9zSX4<S^rDO9(G$C=_Tmk%_F`Ib$*(EU1Owu8(cOvXwv6AqNqwoX~7<2=>h?
zqg3`{PKIoW8jM0v(~>z|$H9?4;H_L-h~@d<P1Rdd!<{y8HfrrlJ62Z*#hnI~=129@
z4=xiwUOe5$DnIfg5S3A7=wv?QX+u~6i%+{hfw+&xe5hoVWFriWcEP_6lhPAR+2=6q
z!um5_Uj?r;Z7qG1dqPx##W>Z}K_ez(sQv;kdq!$Zm?@Nyf;008FCNh2XPQ!Dr$4F{
zc@cHS*9t}_H%6vIa}#8$_T4pnuYJnt+>GaS!Z4#<yvxcuBP3R7h(Fai=Iq|h<_%ub
zI<&(7)r+aR;ryLWe;rut@)s{fY<NSC<O*>|P#V7Ht)<{+)Dk<n5y4pjg_kmKcc{O8
zPgS1?bYr;iO{^D*@f!AC-hHRytqzTDDvn56Y0E`mhQxO&6@Vp0+%9P>v<|(<5iXND
z<X_C@c@yv`JdpjuDX2RVp@*Uq-KP#kO?T)o#BRM>ucyMJa8h5FYmt<^HiL5w^DT6+
zyx896#~v1@aem4sms4C`_lu+M(S|U@nA8aA4Lw$s4}ji3CX8dtva|4=kz+?;TWBvL
zTDxgW-UNkZB@j|5dzwR{GFybNoi<n!mCbTCv9y(0Cq1;v34y^}dU#`lx4g#0oTKRP
z;P|=NU;L>2I+H=|3uDZYYoW1Noi$IV%-wko#T#f=&i*KG0RRq~!UDiyq3`kK5)A+}
ztj_}H%>S9m!xOE~$|FK1gSNtZ>2;aCM&GinVwqi#52-g$UuV;@A$PtE6rjGKcU{5W
zJ8PqFD;ko-`Xf~eB3@4Vj*VR`B$kDLtn5jtJzgHQC4``JgBJGJQDI!ClT4PTYbi3E
z%Fe!tn2P?qa;92&f=_UgJ)5wiTB}YDL;K>NWO#Sg*CFk0kE=Y3`K;e6&(|rHyd(@D
zLp74fMQ+K8rr<B7a?;EoiB~y;B?(Q8OO6DYXkC?wa?SXwAgDP)bz;PN@+fzGWc4I+
zdbYPW<68J4`pj*KsSA>2YjFt+UaSCrx5s3Wu7~rEk+qVyJo^{;H*6@H`~?x8=iQio
zq?XN3zV#PP+XuSqSo&7NX7q>v#QtWHn+MSnPQ_uK(%Bn35wsURDC=U>#=^>M@sAWg
zC?Uh`o(9@%Mj-T-RQRFUl*IWr$Ys&~g`SW0?T^Btt1oj_QV#=2bk^`uRru#cgST7K
z49$~*NeAKwCXqhDcaFqB#+Gfp=TmP+)5I|<;n=5xV0i@?e%8S7p(F8JdSi<Q4<Ooo
zVk%)#-uX5awFrWi>$@)f?&XlCfmRB8I)XzwJyopct{8hr>~(%n<`DoVT&(~LR$N7>
z7mpk=G8=_`&egC<Ij^xP?%`>!?2GxuTAy^IxX0Lq5UD5AdK|0;x%1koZ2WRvPX=5V
zH-cb@^Nvf7TLaDevn*&wESkj=eVNGH6g&0I(&*Y37<UcX1w}kn?V2dg89%i_=Z?G;
zC0X5bI?BJCHSf=tS<H;W>^zZUXAm<F0S?MwCCStMfOS9Ms(X##`1oM(%GLeNkDntm
zEp~2Zb21cxPoP3BL(2M2j^seR!2Jj0eSq7`|63;Y18TSm$aeDryMUBB(_k@oLvMPm
z4zDCEko9XwXJf>s9|~~Ie-*5f7r4`cyLQ$U)W4b@0czf@>jqoW?kaLEX$q2+XN3hE
zWI?>j0%#sl?t+po((Yb<6VA6ajbJ-!LI6>+oh@O`Y9jK>r}6~L2AIXOJGy;&5{PH@
zb013aYdo&T$`@(cL-w0e4vym=1eLTcags)ky;-LadtcJmH_(ts^-;qgM4M~p#+|4}
zk&7=1OS%TU=N36;^2YYr{Bu?^x_3VB?7IG}AW3g|EF3WVwX;dnJ6L66tYWWiSP;e<
z;g`8u{9s)jvadTk4;0>)R*26KV=6fkBK*R9g#{R{jv#zk0DGIWUXy1h91s&qy~nOu
zKC9NF8y&QK2OJz~*rQMk_U4Nyck^r?U4^hd@Is!N3q^>k$A&3S;QL6s@8jlu^R);o
z&}j^_m(~JnS@&b8@4U~<K}RyZ#_eY%Qqw25%cdsHmNRmRX{9+4RX)|;<ts<){iSs`
zf@0oMy5F87ZM_X>O!MgwD#2QNPeI45t9v+<jfyW{=I2BNf?Xp(;q(33?(o(`a=A?3
z15ALYHh7UPg`Ly(Uo1&2C@t=^py>L^MR9g@1oJt|)E$o3YSfxgL3j1t9q@VD!PYk~
zk#@g~J+j>bGuB1j38&TJBbIhTv(Mbh^$gyJO!;ZVFY@UaRO0NML~*H(fz51opB}Df
zf9Qg+0N5)V1RcD+1n&&+JXRh!V8<7{aHKS>_2$I;0+;PY{Z&(!CyGJyzNr0KU?CCQ
zeN!mm^wHUN!?8zx)&!J|%4N&b^#=|zSXs%6FzeF9mX9fFu<+)%xNfDChL<bp`@tS{
zpv)7L39K^TFcmRT;I4g@R&RGYLB@R_PFP43$7kh8I1kkCPgaB7h?xmKQ5Za?%+ICK
zx1wpxQzfdfrpwtDU8xN(KZ^a>{p&3ySW^pON|X!5`ulS|4?+D7JBZ7v!YrX%D}%?6
zKG2qR62p~QyLnjRD@sAo6dF@R{xmG&tJcYi*OPqeW*HU8(ARDJ!<e+u;_T@Xtg1Nv
z=1$g2<i=$Pe>ii-oM8m33CMiSj3ESBRt?RdvAKi2WyRwnN%lqMv#HoaJoY_m3l27o
zFT;j6ur_DApWRZ1nNq&hB6~t&ssm@Y7k+am7)(wUEm5EF;1p~`a6es)ovZ-=J~``K
z>Z9}QiT8fT(Tw7PfuevMverP4XlLJbdZk_d9n{iMRcp!J<8PNG3yR(uIK-3pMWMS4
zs2LAzYtrz{yG2~Ld;fDWlH!V!e7Vo;yCY6xRAKC?@nZet<|Bp3=FdNZ<9To(uD42Z
zz4Zv!TifFV%bNayn>)i?tV&?a#>amL3je79`)`L~SJ3Vr?E`v#PmovnX-MZzY&1_&
z%igqvgTnk)r@;YN4vc=R1lcUiMV2f7YOV>~1zqAU@ddK^#3&!y3DOix{RZA?NhzyX
z(XWhjlu<uW`}y?g35I-tVaV5^i}KDmIm?D;bG^wrmXpCVgHAj9)K6x-KuY*3u>_V@
z^BRo7FZJ%CSB0a}{QL0urkM4iizZf?B?G;~>`cptWttMb1x7(%-!XPtPFy?N9d}A`
zqI0Zn_xZ6Pl`!EVq{Cr-k(K<DCI}U^b?6%;V`ORQJN_IIRZTlF+*29{9aXCi3_2ya
zU4J-VH)C!IlHqB`SB9fpY+bJ$zhM~Yxs0ry=^Qhz@x-$YyttS{d$IxE2&o(OoN_(6
z;^ij(e-2u7`G#*5ABE?cS(k#JxMfTaUY}JFyFEQ~Lv`YL8k|;NnZC+RHIQ%`COJfZ
zA^b+bs~qj^)*16_gqF%O1(@A^ZCMJt+o19NQ5?uztk#BdNw>rSD`2IOr{naH#w7C#
zmibaL(2MT&lE~P->J;DVb9s8`)^5jsa#6i)_OW+m@G>*FnNR-}&jk$_{)!{P&4eA+
zCK^CM#y*PMfeYNbn)Moa*|wf+*P;Mf`55n!MBd2tQ4G5NQAItA+U{pgOEk4RloA$A
ztLKrH^l%QG5ecmj&ibWGKOXydfEv|J7nt3F7Z^heULz^3%X~Vug>lI<M|hrS+@#fi
zeTtU&;knZ9+vFmOiIKdfUP({?b0pijO$_G}v_PJ9dOG@c_k)sn%)Mr1hfZ?3jx0W+
zP$~86!5E*ckVBcg_nky=2AGxOA_7FO&*a&V&{a$RU(;@1d=pCR6hCE54`JnCkh4c|
zE`cw}>AWuBwZySTpxR>x1f4BkwCL=(-55D`*xt~$-HFXYPV?#9SuIZ<7$MsUIW-8D
zAV*Hw2;-W*l+Y{-o_S9tV275E*pURGy^2FQ4am?ZW7(7tqT5Hz+nU|L^qb9?oy$_b
z80g?iJt`EGkX<c{Rzh4BSmD=h>9W#Fo=3n1Ol?%FLuvLymbKW-!dB1Rje0okh}}$L
zk2XVCfar-KYu)@(!3sTCPmETvTaFLbv^cIb-oGAPKWJe?@T?!bu;bV%S=%YpmnzkI
zDltyxx7xhv>Ze(}UDpU`jr&5CcT^eCPIA{N##0MC8Q%$kNfy~It}f{QLFH3i&`H78
zBR8TDxhrS(n|0@(mPDd|`u_!!tO@Y7e_=dw)Bi3G6(i?{1is5(#5ZB8eN7?W>^nKt
z_45evh1t}Cj#MAaDZzq?52<aBL>2HbgvYIN=bP^SMdPd{o(Rtq<w1TP)W2g#ayQ2r
z%jF1}#*N=U4$RKKWrXe(37y1t$1_S&B@Mnsqbh&=PIPoZ;q;N`K5>zDj(QE6$~HN~
z8%3{`C)zsFTe0n9ZppV;<PEE$WPFjN4WY(mFS$a7uvsNx^w?Zz{w8Yw$b)~#o{oX=
ziUtn`8z%BG8os5@v!BXT2gZCH33AqP*Zkf3$#zkFg>Brt;TfA#of`f1V#k>@uYE$5
z?zE;D&a9fWxeKGLC6pu%rGyIz(m};uxd|O=O@qpV1Ca6B)6_d<OKn~oE6zUniHT%$
zN_Uc7u7z)C`|tjY52cxlh2@^b2bhf|p^M43X8C8~$)=2^{*)a5%?e!XWfLn%1u~1r
z>>9zy^AtQer|ppGz{9Hk;U=U%w*N{%w@Od<Z)mfD*&l<<Y5#yW{gm|_8F$msnt(a%
ze+9$Jj)+XsfQe+O`jucFa6`YnRKA-YqV{O(23kVeVHl&rH{4!!_7jKWB{l4MPwx-^
zlSE4lyi(Pz)5u+w<N{!U#m9vlTMHdTd1&rfF>*N<8F#Bqc;$1S+U`bPcu_@%aNW8V
zWZ%-eOK7E+{USJ!@lIeWm#+xpsJ3QlPZ9&}wd@*sx`Uv$7&qkGX})2pub+-H61l`B
zs;K#pBV7abBqQwQ(IPDkC6LaQVOKvLR~C7;q<`UZV7suuh}M6WN}W=epnsK(Uv1S&
zE*;QXtIRj$o1;M&vpnQF$5XY~U#rw6zTOcQsP_0z;NCG1loVlaj5|F<XghPtm)F6c
zrXA|*r|FB4+W2Oc6snYgmY_mEt!4ig7*~-3?7gd`y>XFW_w$Q&$XN-5N~?Y{52j>H
zN~EAqQWS^tY&?K&RnEpBEsio5QF-@PR9(#Mh_q+sLLWM7&#<4Vh7JhhvIA<bp)xcR
z%Gcg8+}n{4K7ZnU;Xk*ne2U)E&)rTQ7=5SK{1qm-fx@dS^&Q;Q(b$8*vxoT|OuzFM
zXee!AYf5|4`-hC9e*mF|B+~9Vmxlc{ZIX_5-RP<IV(<VA**xF*hh2hUX!1Urub-Kb
zdb8Y2OLop*Z@B+hW?v)x#eZ9hXj9p=xrNm!o7_T>&Ie5u|B>8HjEjJH&Cl!2_BO4D
z{cq=dFOkHVb}F;l0|l739pb|W2F*5e84l|0+cFs{X|<UX)7}TW;W8QS8rqmsQ@{GP
zqX>fh&6SHERkhdic=F~wMlyVM@-n=2gZ=2xd-&LOQznxvW0<uhz5hvN>rPm}GBW(c
zpvLPtNo)!IqTc!b&D@Fzd!vU;VJvG<^6FL6xkhvk-&@;bQ|n7%XbIgTpVk~6lgrEU
zx&&(tN+WSd+7ODZ(}emo)*i5ZMbqL{!p={w^0oR@jNiIEnc2ad3u{6zS~UjTrI_On
zn95Ig(pu&ntyK&HY1-|6ERBf~yGpN}k#?gndUseRYu)dL9AxAjm-1QXL3^Gpgg5Ux
z`3L9E<w~bp)GxTm=jxsuRT{Fe;wNUQNp7U{zI9S?8bO40Z_F-j6~xTM$(R;DFyPC&
zD+SV78+Xup-T`UexJ=>%8anov3leG8;E%R*=RSV;>``jsovVLln_XczZ|o)QByrU;
z=9w>6UkqpXiU}+v^n`ViH{`wXY0&}uMHF4R1qI&P#EH#5xr}P$q;6$ZZH`s#f?vm6
z^K&~1`PA7^Y*$OMP~llPQRxC0jvzJt@Rm=Qc)M@&-KXFBc6Sic2JCSXgWWf^H6w47
z{T-^8ckJ1&sY7nax{6p>QUT4g{=ubSW7~n9_8J3=gIr~%sPr{zFjY#X@x|lKspy_F
zzC{)KqN*SBZ;MQ>FxjH=&_H!})gMQ?{L-tW7#R-z<aBxCVo2ISw9?UM3E6L~*sC8V
zr3X&G$BkpJhA+Q9Ho5e_CYB=)r26n7FQ}2{z}tb#C{tbtZgOqb3gre%V4B{-fPD!L
z9GcqNKwsSwncr&0O+Q!QP*k3rr>`#?(xP>B>Ijz$F7_3Kkag%nuCI{uPkqIX7Qc2w
z=HvAjY;*`7gMwHU+suck+>Vc}JYns>%{ei5`XKlLQ5^f2G=E=~K=Lz_p0JdnYVSKi
z6enM+Y@9<JI3%RYaB}T|w%_EXP#{jI+|Z7d%%h^{Nm^4Pt+mJQw)d>dMwltzqP20P
z#|o~@W;^CHmPZ|~2mBI9chIXztPVhSj6{p`RNwl{DBt$?8%8Uk))Klr4*qg1s$XQz
zw(;wS)<_IQqy1XGssBj*0}FXn*Qe&Y8FE2e6TyAIal3Y*VZbVT(U~Q;m@g0|TxD!7
zR&StwJ|&G@1g?!NdEum-R~6SoudW(f+71>ZNOI45ucX8#eGLTN^TSIh$M#0m&m2N+
z^D>C#T60iRn$ZQK8jO232dZy&t?he~IwhX*3OU=8_~ts>rX89jRH{2V_RZe8s=nnq
zZu}AccesB4s8)mIj9>}HNnt1;tSZ6?dCV`WDP8_T?1KuFTUXz8%NvB<F1N;-a)_B@
zUs;%SMzM31(XGUC{?;e<^L&|G{Zd|in`qx+VkqMvuQjh~(k+FF3-f*5i7lsivUD;d
znwE3koH-D8TjeJw$<vh*n+~-8iiDFoDk1`WGo8XXaS{J-!OqFe8Q#rr{o3QO&l+tA
zbkW~GMBtDP3Vg~i=IB%i&*2gGr7AA|Uar%0KkHiY@?W8_J;Fhs)jz(o?{387-kOlM
zSzh7=uD0di!eWJV7EzV1_Kt_(iomJ`QC$0fL|Xp0Gv9wllm72`F~F2V=a?AX*%Rc3
zmF6|gR<2sa#olw9Ba!*KKQCfg0$f@tsG6JnM2Xjah}n~;8|J#l&1)l3h8h>fqKLa~
zW1U$CZuIWWmaOd2a;dumRxykOY6IJf6k*hN5Kuk^J`J-=<03h?P}y59RZ#3utpbz6
z1jJE7g1NeP0@PlhOkg^S3)QA;vS>4Z)~5vN`Q1UCK03GH+4aF3lxd7`Z+%4HimQ8C
zrG0PmwpzKJ$Zd}qC_g4Xcum#PUdqCLyfinbM8_r+djl_yuepi^g$I=zyt))>D?cn?
zbtc~I*-kGnVvjqsFKK<LlS%-r=M3pvNz(G3snEE~AusatpBb*AXtOHCRnX=`6&U38
zf<ikoF6tpWV^Kl7+-GdaDs}H5#b4iE`W&2)O!v*F{H7k0SBCT=MMP0*ebmEQE=}29
z`<quv)o!<%eNGu>Yd}9{Uvo|rBU7#u(wt(mtI!e*3uXE%yUw<d4#hcymf?j+pUT3C
z+ORu1S>XAj0)VIKM%1opxHabLFiy$-52-OMx+t^jGnYs#K&+TGMO}TB$T+bHTsqwf
zO7O|Wws+nO(}`57bzC*00WigdpD)zwiA?|2a!VavkrVDQ#<H6q4eQO~L+trAP1%zM
z=5!}d;YZ=bS^CRNwXSsU>i1WkkI<_&0t^ORw1p<q!7ABQOP@`<<=2k*qX$AOzHDc=
zDCO}&XJQEPoZ(07w$_9on^puYpF{~cFEP0`SF8kMP(5R|EAy|P1(Htb6q2NeGHaq|
z%W$snE6l1(b;zqXs`6q3{L6C`=)%5QwE2>8_&RjH33-xtsMe>8ETXX}NFaU49G=k&
zg`TJ7tU^D=?>csVc6#FMvzOc(Qc<S>W9PK*idj$zRdz}x`k2)qVns{rV3-=En{!u0
zpgH}781A8I{jZ@yvm&L$b0V2Tj{|H}Zdsll`>r3d?K7zjqXC|=KjRcrYYV7S4iU|*
ze^n8Clep!V6ODI0&*UfzQMyY_-fdvZox^mh9Wk7MVqJE)uG;Uhyj`nZ_5=JIn?x0P
zjQi^hMG$m1+;n}fG|^otg%_Y-4pi}J9e{6{@LY4gtRohHe1JWcH{iU;jZ~YO+;wIS
z&}klMCDoFijp!MX<fi6qFp(?a7vFmHNDe+3N;+ixlCOiyU<YqAo`ty#h~U&5t3Gqt
zykOJK?Zo=VZhkb+U8VL9$4l$KZ0S70NZjCV?8rkkST$EsT=<KkD2&GDFV|kPz$<N*
zV`?)>c=uuHVxfMoovn$BJ~wE<apjZfu9m+g>E7jOy8OD2I{sj-wp=-J;=(t_&gf^9
z-B$VG_GH>=W}HlXZQj6Yq$RiN;CkYZ)Z8hETRT$UM{x~MzvP7C{;w2Sq(mVK!^JDa
z|5?@SpCXj!H3BaH-1&45hR%o$9#+akOby|<WtBBy;5*{}gR+Mcqq=03H0`TK=ViPa
zv;NE}iG3=!63g`R9!hfQ5(4hRHT`KgedaW@m$Qa&jzYXk6Unt$PT3Jt6)U1!)mn}W
zqOs6Bijb^lVtX?wEUVN(a~kj|XtW8LAk9gzLfvxh9FJuecy-+pH?jBAuF<E%2&XT`
z7&sd=hMI^v5G;HZB>|Y~xR|P;<S{J!bLQR_ofmaob$}4@9uD3kCnHP}O)s)S90@-4
zFZ`VGrlz)##!?HmO>UbHI}BUHG!y`39?23r2A2XVPw9)|qO;6-2*P!(E_;xZ?!+FY
zm7EA_QCXp8Wbm5+Gw`DYO>nJ_TIdrye7#*hPA)O|X~TMrTUX(R*}6L+Flu*no;6-L
z>Ba)?2AVq&W@0(aMVCnC?)_ZogjUk_tE<u?p?QnM^eexV%Din<6n}DMx%A{y`%$?k
z)82Rkk8!d{V0r30bpb%mLkumkNEZq3IRP5J7K-aI>7+b5t$T}h(01`*Qja|vOUEz0
zL|!zm1_4L=@>OAZPxWNo4|>EP+ESjy^AO{!&`MslM2R;xv>aXF?)*p;dT~m`%=Yqp
zf@xvkLgav&{k5K@uD2U3Bph2i(kp<*^5(Sp1L}rR$V1Q)MVoa`#!{0`>v$F%!L%D&
zK9iJeTjsRIsfh9CDtvB9JO=^4E@@@%d9>o{0QoG|mRuksk!Z|~uV8M<DiygcBZr4+
zAbg?U&+I`z7XmyNU&F0S0qQ(|JD;+C+{ZuI-9F|`S?L}h69IFd1<daM*DGq>&yn13
zom`D(`j-+%g;)BE_QLI00)VTv0izpSVG&R6Y2JnN0^J2NoUaKHKJvl=2eql4Y1y(J
z5!>OhTlkZ~+T*Yck^gCZjpVD@u}|riz1n*bEwS-MtckH|6ur8~8P_qP_r0S#>1sZa
z)fE)Mg-_?X?6UR<Osdr`#Uy}<0GT|75<$aJyJjWVM;>!q`)mo;A}O-&uaSkPC9k$!
zqZ!+sef;nRIT?eLJ;v?aj&?;e9yH8?NbgONn8SNT!P2oJ!_i76o{wecUXWD=|29~_
zi@#3#@22PUx(9y*s06qgy{Hezc|Sl;C8x={>vh08jnOBsI$Lmu)hy=D<YDP|J9pTQ
ztUpbE?!=#G;!juj6BPc$!vA-oLS(v#0B|?rky*8p=e4r{ka74w{(0En6WuhkOb+Cc
YZ_LCC=r?cf7vaFw%a)gL7hHe+AAd}`EC2ui

literal 2460
zcmZ`*eLU0q9v_jXi_W3WP0ps<(em&rE2YFn$kaR>LJl>yIz*BiBeS6=lu;?>mWR$|
zIhHfZQ^e|^opNx_hIwebH0=C5jM(hhY`Z^O$L+pew?BTr-}mYB{k%W#_viEbezX02
zJPq~D^dS(4p%>cS9|F+`0NeL;H-hiozrXzz{AgVA_dEjmsmB}uJ6e&h-mVZxZJxnu
zgf`gMyNC|C1c4Z}uRR*9xXLr&7{bfl^+fXNIbJAZo2SOh52>Z8xl681_kSLjzO?j?
z%Ak3>&73~>$jj^auGZ^p&XMP6?a2yXrytN3+rL4gafI2SOWzBgNX|R83>;jMmv6=s
zTT4z6mFImdW$)%j8Vk4F>cm-v1|hV=i8y^b4TLr|ovMj(!D#HXpg~MF1*Gd`S-sTi
zFb&uIf76_swnoMU0wW`Sb$9NT%&x2L9xwVgLl1|UcZNnbU8-|R5{6%fkEZ%v<2N02
z#500q<O`PvqU{EHaArP>3**kGkGkXYFFwsNdR-8-)ICKV<qCZz<*m=0qJ%MSNrEUu
z3W}2$%om-sJU%$TF#G_Qf+c*(5hI4q)*bD%*Og%x4qfZ>!8IF!R)!La^rd9b19P=!
z=FE7A_FNg!a%i;C8)Iy|XvYxG(Wyq;zUI7^KQVA4Y~qaPTWP@!-5gA31hn9@D}kZJ
ze_RvPODaYT;9b@!Z}32K`?ts<BD9525+R%8Wp>Zl-d)Md1zh?Lu<AnIBPZ^}aeKL;
zy-Xs;;kA7aP;*&M;PK^HXTnp;YBKBqV+cu5tgf8lU7f5rUicKhcXb6lMt{WhYTOD9
z?XDLzP0iyKE1_v^Qwr4Iq3%m8Q4YQI5p`;Nh^=(K*Ee1C!45g3kaonvwwbhu8+<(*
ziz5#!7nl*n2?~4ztZw9w{P~y~BaBjUgT;==VsaZDM57(y4dWrOOhqEc<@)o7o4abr
zL}Jv~68G0Jt|)Qwkcbj2yT^nLk=$f@ZdJK}<3^s%T?^+Quh?6>n!c6=M<?-SJCOJb
zucQ->&Y1}%<L(z4^G8d2@M!Yi{8!pG0x?>ELckXi+7)ow;X37G=nS;Qj?uq4B8;7!
zC?Go0fER4tDK<&(0FyB@Lels;rRUg|fWd)P#N44G|I26}9gC7p<K?`I{y8W>=s<&i
zc;hQgC;^ZYlDtFTF5z!a8@P~j*z#T$Z?0sv_iX{faKu|;!?d35X`GkmEgjr(258fI
zFvb<nwNW=lkUf*0lH#(hOom)B{5OT9+wG+B4W&Bp)P)hqHKr>R1wZtB$>dx;<%|sA
z^Aew#5O?jQ^mr9j6CF>)0CGIu(LOH~dv&$GeU4C^`mh&ah$X*sOj&N^6$%Mlmc3y}
zQX2_D8983Uja-!tlNjvyno%F+7^@u*Ak3V0+J(arhQs-fPqB?J9(*+-Yfn271?wuk
zlzQcfk4Q)Ynt_HEIPXvD4Z-C0u-2n-em>=rMtFSW&?c_^KYw&Gb5#tF6Iy(b$o;H|
z!D?muJ3kEP`Qw@DJUmh9x>w@8<Xlh5z?V8+7XBt{ZY%D2M6{J%g-*=ev>F)>!E9}C
z%w~mk3g7-R7;8gOyj!IA;v--&j#IPy5!L9XV^vcVCHrXmGMi)C1A%BGc`&`k@H6%O
zeI9^P%Eu-T!_pdFtc+uAx7@0DJK5^1XjtW@DZZlD7Z2g3%bsbcMq85hjA~Z;M)kFH
zdtkG{(Sd3d>kF6GW1;(rn6Ve)#|JelgU`{y4MAVaF6Zb|d4LX1zmHKD_>3i@NKlj=
z=_&UcrZaK@>9zqrC5q3j)iAD~#;3?zQLld&iaYD(k?HK9ZYU>ae`jBz#)fV88lsn}
zZ3-dmeblo}tqUHlKyPe07W#11h%ZW7a5LwW>Ub&jN?G<wf+SxsH+}17#&?u+{kK7I
zUEU@+V+qiLwlo6chpj(TNj5U;CvW=C>Q2SGJWE`n63Ar?{)7WXO3u_vUWh&4j|S_o
zm}6otTQaAMpAJGj59q&g(hHZst=ZIExv_7cJVCc+AE~+-21fH0Q~piv-pH_`jj<RG
zy)zbX)=<Av#kp_gG<%>Sx*YUBoTYc;kL$N9(t6FMkqSAh?m1Hs%^AaF3{Zm%i=1hU
zHhH``rBT`vrAT5Y6CZ$?GCLi4JwsmSP4^Fcoe&KVu7t>|@&FrVyoc@@i8%e=Dv`83
zW2OOR<cjKlIn(y=R(It>rUQqoK!5KUou-vo75xTra-?e98lfF^0>%;i*W{K1Do3RP
z$SX3*4U-|gzeX{V$WMyb@?(JH!#LP%D?g@62727Po2u2vFdAn4EK$+Sx}0yt#_x5@
zPOEVEVom;n<a>&UQbSt7OPi^hVw>3hSwyQX?Im=Vs#VkUg(pO8z1EfsC%Ni9hFvjO
zb#j1M$O12f_H^*@8u(dPOd3?R{ytUH9wehN&6?&SKNf09gHW8a02?*vY%7<4OR3};
zxEkK!ETHRuCIT=S&VIvHAS8aF+T)i2={LZ`t_-vSN%%O~ackYm4Lk+?NEqYN<n8O>
zG^xT_1F~#E>s`-$=5BRxs|fiWb-+fr=B!U?i^1v7X0U_SP%5aWQ+9u<jc2Fn;D(B7
zkb%;V41i123WFGriV^bZ&eBd*m951r#Y?H{FhD+b<egHRttljCiLU&GK#DQf=%cGD
z&t}~{-WZo+xgL+3isrT4IjgQ$@MwI@SBd)3HQTsDl~Wz2Wwkm8lJ%#+_mHvb?9oBA
zny*W=c3S`w<&HscLDKvvr4cf1VwU)4@+9+t5*R~aktrXh7Y)XUY+UWhs<0zylx!7N
z``rjw4iMuFpZP(3?gH}hev*riu03g6aCdTfQQ2{PgSnmPmnHB<1@ZFmasTN^_?7<v
DEYavx


From 7c5b046a715f3c90931e42cc85eb8ab2dbd0cb43 Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 16 Nov 2020 16:03:25 -0800
Subject: [PATCH 162/209] remove section

---
 .../tvm-exposure-score.md                     | 40 -------------------
 1 file changed, 40 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md b/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
index 5cd211d354..45f7973943 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/tvm-exposure-score.md
@@ -49,46 +49,6 @@ The exposure score is broken down into the following levels:
 
 You can remediate the issues based on prioritized [security recommendations](tvm-security-recommendation.md) to reduce the exposure score. Each software has weaknesses that are transformed into recommendations and prioritized based on risk to the organization.
 
-## How the score is calculated
-
-The exposure score is continuously calculated on each device in the organization. It is scored & evaluated based on the following categories:
-
-- **Threats** - external and internal threats such as public exploit code and security alerts
-- **Likelihood** - likelihood of the device to get breached given its current security posture
-- **Value** - value of the device to the organization given its role and content
-
-**Device exposure score** = (Threats + Likelihood) x Value
-
-**Organization exposure score** = Avg (All device exposure scores) taking into account organization value multipliers
-
-### Threats
-
-Points are added based on whether the device has any vulnerabilities or misconfigurations, determined by the Common Vulnerability Scoring System (CVSS) base score.
-
-Further points are added based on:
-
-- Exploits availability and whether the exploit is verified or ranked
-- A threat campaign is linked to the vulnerability or misconfiguration
-
-### Likelihood
-
-Points are added based on whether any of the following factors are true:
-
-- The device is internet facing
-- Specific compensating controls are misconfigured
-- An exploit attempt is linked directly to a threat spotted in the organization
-
-### Value
-
-Points are added based on whether any of the following factors are true for a device:
-
-- Contains high business impact (HBI) data
-- Marked as a High Value Asset (HVA) or serves as an important server role (e.g. AD, DNS)
-- Runs a business critical app (BCA)
-- Used by a marked high value user (HVU) (e.g. domain admin, CEO)
-
-If a device is valuable to your organization, it should increase the total organization exposure score.
-
 ## Reduce your threat and vulnerability exposure
 
 Lower your threat and vulnerability exposure by remediating [security recommendations](tvm-security-recommendation.md). Make the most impact to your exposure score by remediating the top security recommendations, which can be viewed in the [threat and vulnerability management dashboard](tvm-dashboard-insights.md).

From c4ab6405b985e18e68977f02f6e7fe5901bd0af0 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 18:26:38 -0800
Subject: [PATCH 163/209] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 1d2ce21e5e..9ec2258fce 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -180,7 +180,7 @@
 ##### [Deploy, manage updates, and report on antivirus]()
 ###### [Preparing to deploy](microsoft-defender-antivirus/deploy-manage-report-microsoft-defender-antivirus.md)
 ###### [Deploy and enable antivirus](microsoft-defender-antivirus/deploy-microsoft-defender-antivirus.md)
-####### [Deployment guide for VDI environments](microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md)
+###### [Deployment guide for VDI environments](microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md)
    
 ###### [Report on antivirus protection]()
 ####### [Review protection status and alerts](microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md)
@@ -198,11 +198,11 @@
 ###### [Configuration overview](microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md)
    
 ###### [Configure and validate exclusions in antivirus scans]()
-####### [Exclusions overview](microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md)
-####### [Configure and validate exclusions based on file name, extension, and folder location](microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md)
-####### [Configure and validate exclusions for files opened by processes](microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md)
-####### [Configure antivirus exclusions Windows Server 2016](microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md)
-####### [Common mistakes when defining exclusions](microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md)
+###### [Exclusions overview](microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md)
+###### [Configure and validate exclusions based on file name, extension, and folder location](microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md)
+###### [Configure and validate exclusions for files opened by processes](microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md)
+###### [Configure antivirus exclusions Windows Server](microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md)
+###### [Common mistakes when defining exclusions](microsoft-defender-antivirus/common-exclusion-mistakes-microsoft-defender-antivirus.md)
 ###### [Configure scanning antivirus options](microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md)
 ###### [Configure remediation for scans](microsoft-defender-antivirus/configure-remediation-microsoft-defender-antivirus.md)
 ###### [Configure scheduled scans](microsoft-defender-antivirus/scheduled-catch-up-scans-microsoft-defender-antivirus.md)
@@ -216,10 +216,10 @@
 ###### [Management overview](microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md)
    
 ###### [Configure and validate exclusions in antivirus scans]()
-####### [Exclusions overview](microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md)
-####### [Configure and validate exclusions based on file name, extension, and folder location](microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md)
-####### [Configure and validate exclusions for files opened by processes](microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md)
-####### [Configure antivirus exclusions on Windows Server 2016](microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md)
+###### [Exclusions overview](microsoft-defender-antivirus/configure-exclusions-microsoft-defender-antivirus.md)
+###### [Configure and validate exclusions based on file name, extension, and folder location](microsoft-defender-antivirus/configure-extension-file-exclusions-microsoft-defender-antivirus.md)
+###### [Configure and validate exclusions for files opened by processes](microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md)
+###### [Configure antivirus exclusions on Windows Server](microsoft-defender-antivirus/configure-server-exclusions-microsoft-defender-antivirus.md)
    
 ###### [Configure scanning options](microsoft-defender-antivirus/configure-advanced-scan-types-microsoft-defender-antivirus.md)
 
@@ -231,7 +231,7 @@
 ###### [Run and review the results of an offline scan](microsoft-defender-antivirus/microsoft-defender-offline.md)
 ###### [Restore quarantined files](microsoft-defender-antivirus/restore-quarantined-files-microsoft-defender-antivirus.md)
    
-#### [Better together: Microsoft Defender Antivirus and Microsoft Defender ATP](microsoft-defender-antivirus/why-use-microsoft-defender-antivirus.md)
+#### [Better together: Microsoft Defender Antivirus and Microsoft Defender for Endpoint](microsoft-defender-antivirus/why-use-microsoft-defender-antivirus.md)
 #### [Better together: Microsoft Defender Antivirus and Office 365](microsoft-defender-antivirus/office-365-microsoft-defender-antivirus.md)
 
 

From fb413a3040c4bc786da349cb71abe0791f160e36 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 18:28:23 -0800
Subject: [PATCH 164/209] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 9ec2258fce..7d847bff96 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -162,7 +162,7 @@
 ###### [Detect and block Potentially Unwanted Applications](microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md)
 ###### [Enable and configure always-on protection and monitoring](microsoft-defender-antivirus/configure-real-time-protection-microsoft-defender-antivirus.md)
    
-##### [Antivirus on Windows Server 2016](microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md)
+##### [Antivirus on Windows Server](microsoft-defender-antivirus/microsoft-defender-antivirus-on-windows-server-2016.md)
    
 ##### [Antivirus compatibility]()
 ###### [Compatibility charts](microsoft-defender-antivirus/microsoft-defender-antivirus-compatibility.md)

From 64c59ebf0d2f3de5b8724188acaff000a9d7d7a8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 18:29:57 -0800
Subject: [PATCH 165/209] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 7d847bff96..48eea7a622 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -183,16 +183,16 @@
 ###### [Deployment guide for VDI environments](microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md)
    
 ###### [Report on antivirus protection]()
-####### [Review protection status and alerts](microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md)
-####### [Troubleshoot antivirus reporting in Update Compliance](microsoft-defender-antivirus/troubleshoot-reporting.md)
+###### [Review protection status and alerts](microsoft-defender-antivirus/report-monitor-microsoft-defender-antivirus.md)
+###### [Troubleshoot antivirus reporting in Update Compliance](microsoft-defender-antivirus/troubleshoot-reporting.md)
    
 ###### [Manage updates and apply baselines]()
-####### [Learn about the different kinds of updates](microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md)
-####### [Manage protection and security intelligence updates](microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md)
-####### [Manage when protection updates should be downloaded and applied](microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md)
-####### [Manage updates for endpoints that are out of date](microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md)
-####### [Manage event-based forced updates](microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md)
-####### [Manage updates for mobile devices and VMs](microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md)
+###### [Learn about the different kinds of updates](microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md)
+###### [Manage protection and security intelligence updates](microsoft-defender-antivirus/manage-protection-updates-microsoft-defender-antivirus.md)
+###### [Manage when protection updates should be downloaded and applied](microsoft-defender-antivirus/manage-protection-update-schedule-microsoft-defender-antivirus.md)
+###### [Manage updates for endpoints that are out of date](microsoft-defender-antivirus/manage-outdated-endpoints-microsoft-defender-antivirus.md)
+###### [Manage event-based forced updates](microsoft-defender-antivirus/manage-event-based-updates-microsoft-defender-antivirus.md)
+###### [Manage updates for mobile devices and VMs](microsoft-defender-antivirus/manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md)
    
 ##### [Customize, initiate, and review the results of scans and remediation]()
 ###### [Configuration overview](microsoft-defender-antivirus/customize-run-review-remediate-scans-microsoft-defender-antivirus.md)

From 8be9122e618f88689e90a9e3571b65aad9804c17 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 16 Nov 2020 18:36:09 -0800
Subject: [PATCH 166/209] Update TOC.md

---
 windows/security/threat-protection/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 48eea7a622..b7380c9640 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -8,7 +8,7 @@
 ### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md)
 ### [Overview of Microsoft Defender Security Center](microsoft-defender-atp/use.md)
 ### [Portal overview](microsoft-defender-atp/portal-overview.md)
-### [Microsoft Defender ATP for US Government Community Cloud High customers](microsoft-defender-atp/commercial-gov.md)
+### [Microsoft Defender ATP for US Government Community Cloud High customers](microsoft-defender-atp/gov.md)
 ### [Microsoft Defender ATP for non-Windows platforms](microsoft-defender-atp/non-windows.md)
 
 ## [Evaluate capabilities](microsoft-defender-atp/evaluation-lab.md)

From d596d39e030ffef214aadc11bfe5148497416e86 Mon Sep 17 00:00:00 2001
From: xl989 <v-lianna@microsoft.com>
Date: Tue, 17 Nov 2020 10:57:41 +0800
Subject: [PATCH 167/209] CI_125045_update credential-guard-manage.md

update image credguard-msinfo32
---
 .../images/credguard-msinfo32.png             | Bin 11424 -> 10553 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/identity-protection/credential-guard/images/credguard-msinfo32.png b/windows/security/identity-protection/credential-guard/images/credguard-msinfo32.png
index d9af0e8fc4b9547e6fc13add49a43b2e9cad47c2..ab3994789e2193b21c644468ee7b1a5720b9e13b 100644
GIT binary patch
literal 10553
zcmcI~2T)VryKNK^6#*%Npn!tXi&P~v>C#ntm)=2vP!ozMMUdWmuL9D06X`XCA|>=1
zdMGKh7ySMH<=yx0ojZ5t?wKUt$;q6(znydTT6?W8_>GDj(H)vQ004kU{<ZWw0N^?j
z7hB)DiF?=1?Ow%wTyuUWCkZGWdbEi<xM3-wECB$NhZCL|<KvERe|W9q3;+;!T)nP!
zI~JJXzI@^$qwON)WNz$Y?db4W-P+z9!26u{Igp13$n)Yc&vPIjKTv?@*1#q13M`rO
z(h}<KhC8V|PKYKHN_DQfZC1YhdJpmYcR5)~@_htf2SkVl!<US5d_9sZC6AR9*uLJ~
ze$3&^5X}=(C%h1AHWg<kANNi9!!C+%*^8(G6c!ei!>B|2qSfb8?EG-ghyV1H`#Nq|
zxK`zV$$UxhcYN!{Rj#;Jb?={1MACH(ttfnU1g7F`cb98DEUtT{NhMJ^PGbDDvF;|V
z9ly03;1wjJ<T{|Onv|kvFYQq(YB$(H`lqj<Dzhi;FQav9h9Hh8ozI1^dW@e<fotnT
z?@hp@>?8GgD>;}w0puwFp#M<9?`*+XsaRPoYTjOx-}_Y=F#r&suNtx;%}l8uVmgy;
zjSBvP#trR);%CjoT{^3#=?8ef!UT(XIzKiwM6nIKDK;o-eGRC}5`Ad)yI#Bfg_hyB
zVQ{XIj&+52-{7tg*Iv~Y=3~5>MgLY0h<!A8J_+vTT${teY9!kjb~Dn3+_ddDR!327
zPk0o`g)y8=%|`gto<+?A3uJDp9*vh6zc5xi7H(E?pR*QqsteN<1pwZ;iz^dg-_7X0
z7B-Wcn7@&8e~mO7MWncDh#Mz}v`)_Z70L4b!RibfslZM?#q#z~<w8)sigzy471v}-
z>F$fgoBJ)V#bvp~S}PT2`otFUVcuxwc1fS(H!A}<IwQ3#CF${j2fgk4KVI*_Px8jb
zW!Z8=uK|+;gDDAU@+1n&2JG4%k=aLA!E9{~;cD@D&Gu&y{;XqD%9SK+D>MnemkSX=
z3f+!Z+RysEXe!whcLNSi-Dj3K9e!=tX5b)m4u!aq03NT_rNC@N7@^1am$q6ZPX$q+
zRV+O&2aVg_QyMokwon}VDfCt@do(=S&rkAhSm$nxtZ3A0>6x>ABFG_-aUE}RJ>q><
za@Svr(#%HnSq$%*=Ff`Q0*;eO`_aS!t0p5@V_p7h)#RbG;9LENIsvn(UM9vh1Kee;
z5zNCoDeT!&{t~*^NuGiIXP#7JB3p<}lfKBX0?w}ec$FmH90eI<B#aNCQXtbmr|OQ+
zTWTm(xWoehGVZkdi4dh(N8b3@?dB@TVEM?039Cun0%r(?!y<@7Uf9bN*%(TTVq@9U
zZC|Mc8{G=gs)29^fHrHmRjD0BJ-qp_F?cl>XkFT#Mt*pI8NT4Tfxe{d{Uv6JrQ^H1
z&dq^G^49>q_@hqY;HnLFLe9xoFbJ+=fQtKLRoVu6(h{AgK42qqf$C0Ulr;R9WyXS`
zM(;-3?sB-(GN(XPk;iR239nRtHR*J(M5D~K-j(-?{OYJg3p@`nm?b(PLO!tXnOO|8
z2Q=wapM+Zz@BJ4??g7WkQ<bE>hq!KH?yO*j?$GtNj)Vj)4+mReY>o_-?z}W{%zxRx
ztl0m&cI@}<{*Vr>Pbhwk6aT~Ui*a<yedD-!MZq2{(s_$|hI3Ak3#5)5=*hqBft*#<
zpq887sjL3EC3x$i=i-O4*km-WQ-IyCnaedNGDBx!j!vO-5&*!L7uWN$=qS7Hv7}Lf
z!h?~+Pcg0cV41ykN~hLZc2n+V^?B?gCWON=4JPb?k!z3Xp8jr&bhsAj)Z~!}+`MbJ
zN?3|CJXq4)zfgM!(Vca8cV2bY<XPmk+gL>>v+0`ZzCf4fQRD+P-=~2tMdaGkfmIn1
z5zyRk39=rDntOVwKQc19A;dE_fc@wy`is#`p`Cqj-?2DuPKulkPf>d?@yiRj%GS#$
zqiY`w_Qg$WJ=#d1fDv7E`q_^6s1hbb8~4+p{MoM}fcOA>z~K=Jx1jGVzwYm5-5H)v
zx&;8V-MsGcp*n~@X0z0q!uURkuVCiIgBY}})>$pf{%axtz=lB27IzU`vwET(`PT}W
z@#S&E|2!JQEsh(TYXNDlNK?}fLT*(eOzWUNyNbI-bMu`78}GB_8(%1si@ART{jzoz
z)mT;KaHiGobFlF$)MG->`ECL1%Y!mrrClndj|Vj}H;~@O^At_(Iq!hj1nN=A@P<4G
z0bhu}AsXM+IDhJ}F~u#9Tqe7A@CC9~mm^#qO0_eURFJPY_Lh2jj2WEH$wQaYTU)ct
z8}mJ1Ggc8=scFPv%BMz>%!Q;$=k#c-?4f8a)z>Bf&15NI3=%x_oyEblH}H}EfjlLG
z9)Z8F7HMBlyTC}kj7t`|?f%m56RT;6iNQ}2Kawc8z_%D)*;*q`4kJxf=qD>|T}~zT
zOq`~3y}s3`C+-2s&_Z{WssBXmme;fj-AtXiO3dk)_yBGDL1f$^-tj5Y^m=hP##m{&
zgDHb}gt<2LM~Q$x0Zo}w;BTmfKwjOvrsW$XIDcp;uqvzh!-#u;)lgmNut`AT?3QOv
z6x>;V&U*52nX7joE?!%R<?ppVAL!N+>Pkz*FwP_!vB_Q;mp9i<b6|jME)|v=zjVMn
zYX!Xtxtq38tk>c2GY{eBnY!Nu^IZ8rTkW~u28km+iZ#^Fd(_`Fw0RtdELhi_dMPmR
z)<+se>oK&U#1!*Id8ask$V_(mJZUbK*Hj&T4F2Zz%UESj-?bdBH^%I4w{0g*mF3kR
zV2ZDt?um`22qpO9Z8iCJ$*x;Wc*T4Jq!mM_R?3+u$hx3+%B+%cnUr83xLBhWDgZ~w
zJ)>@_c%P;mv)(XZ7>@s&8*>)cFQ*$WJ2unL{j?h;0NqGTlOsqXc(^nmHl=ex2D&^l
z>+Lwg4+Q&V@(CBIOU>MxWfac{JWy~8f(H<XSmtIH{ZL3CZ+=!e0E@%daGKCUgFkCv
zuh1x<FU50%{(*2b2`h6;8kW#Ad7ti|VATHJT{{Qm;H8GJq05Znc_jy9f-b%47`p~B
zw+It@I?ZIAKRLG6n9rr`HG@92lD0KxvPWFX+D^RGAA7=>HN~B{AXDDa{dv^8HMxwu
z1zCF;x`IEus%iJVZg}_LgZ_}UKw9JnJXuH$GLl=*-bon6&#>mNn;#3E@Eq;!=eJ+6
z58NJ^iJj+KYnC~W5$1L~t*1C>Oa0w+aUo5xEU|i!kwJTUaO(NibE-zYD6KTZ=MKt<
zwt0tQrZ<spK~7>n*oj7|dseIx;ALLgx3^*5r}2WwHK*=1ttKa9*0EOv?e@x!e$81f
z;$jiwWPd<FdR9^V;JaGjd)lS5$B#ORi$A|G-{+PIWGd@xu8-BA2S)%|DvH<czqnV8
z1Hd)?X||YmvYbYFQoL$o7XA&&!0Cb7E9?W~hpu8cXboI)rj(|~jC!KiU58?!neC4`
z{Q}8a+IJ$R&t4k^@(f1xh!EH|fp2o}T=e{0`c7UjqscW;G0qx~=^=QSB4>+0^4j28
zBqLa*lxnIpnwrj)9(v3?k#f`$Yy6-PQ~tax!aLW2H+`>Ej#qni44%Hy?tTwQmw=xB
zNZLRPGFnHE_Sfb*f!!|EhkW4n`8_I6T<tzx6Fs!&?kj4l*N$}pTRw|Fx5=b+L2O2A
zAWBc~VZILKVna^I9`(Q$5-H{J3&KVL;I7ykW(Uj7&s|lefE;uD-K9xXZ^OM;`>2-g
z9fVMuob(c-a+(xt`wm5F(?nXSA$=-x$?i7o?8(PA;gfdQ#=6g;Y`@rjOoX{m^>cWq
zUHDfy58KgkVih7H_YGDHv>Ym?ACM#<6r}VJtguSq9jK<kPOS+HK1qD+x>~EKqwj&4
zR*g0j^GSl(T)gq|G4Va{eJlFvL+vteLW_e*-lX2mhx0SyvDRC=HEMSGYdcoaPnaw=
zi<<6QMFVsse148(y1$*v*SDy(z^*iGU67qPQZ4#5E!|toF3_D44W@QN{(kD+L<MLJ
z7kB8jm<YYX^RTy_oBGm6_3@bdh(smg8fhs|S;8oF@Uj$jRUh!=51f~Wo$7P%%K*g^
zR_JRXT0%*YGl@;mEN*{G2|a}TIG-8eS7kRNVfE?QHp}=5G}5U$oiMXhL|`;M;k`(K
zsYuU1GI*he%K#>>VYgMUF~cA%VB77U3$J+)RnjM{wJhV?ntxu!j%P`iayZPL)|+Kh
z%XF1Ti_U3nB$=OxZA#X<cP3T+Wf2gZ`#yb$?2FphN|BbTyN9GjsXv-tg1<x#GQ>9P
zgF)SMb&|#y*6>a+rv5l|htg3l4ybGBTb}zLS;Jf}o#4Q_CsL;2`BJxiFQQYZ2AD6h
z-Xri{BIrc2@IlV0%gpM!`HH@lC?>MOYbLWZz`9|W%l!7BqP;kkS*`K0CH=tAp6WI(
z&F6IPGan;q!7W1vxs%$sJm<t?QS%ffI}}reI>Jb1S%Yo`VP?Zv`i8Pa^G(as?qx=x
zX@%9hnzI&99#~WZ3i|zAuYYg8RrT_;^;z-Wy)0OkDl?7a>iXv$Yo&AYWDxZ_H8jh|
zWU0cdb{Wklj1BqX6dq%&T-iSrR=EX}>N!|7N5o9(_1Ct(uYZ;>Io+S~1V*KkczpJ?
z?|WXM<PpD7+H#3%cY|3^St`gDCUMEN&V2VRN#DB2Nkyl}HyyToC85x>PkpA7iyZYd
z*y@90Uimk&VP{wc1Z!8S=5ONEov$5b<#5ON^*wU1hxz>0PCn~h1AftCY-zrD`IFTZ
zM9O-0AA1GgayT`K3oSY`v8+HD2x(>!Woo+1lcb#0S-5u;{K+Z!EY^jS{(SDJ<=r`X
zH?ve{-B48gj0#W7(TC(j&y~ZkWzb`C%$7>DVaIXBu{g$y42iL<gMI4fe%@DT;8^A*
z8s0>==)KK8KfD+~fV@0Ar60Vw2${O!yXAjbSUA}6%;(;x)*mAIGc5a1j(Ztt0IRPI
zMy;>(7K(R`hL8NZD2eTEa=j`n5di2vy6B+XoX@|hMTofVOF!taeA+MFb`y8{+FyJM
za<7%r9n;!R^ix9g+WsMR(^9XN&U?NOw|`V$?VxewlJe7ik3SJW_ty3QdGuP@Pvp{L
z<DuttZ}_+N)mbPqA!U-avX{5O(}!v@!~Yx8jyG|UVP*|`!>;aDMv!euHWP-tU!N+z
zB6T_q5f_XlSOC7#<6vNkSZ|%R5?K1zo)vWQJ$rg_LMC#6K`C`;kVIXo`V`~M;B8(N
zN9kjJ@j-u-c5A>PYB{S}mlj0f)>U{>jUredt+`k@-3~rjP->~>jL$R^tuE64npTZ9
zp~n45zg;3H(RRHvsWKM7wY6(G`(oz5Bz8Z;n#9i`P<bWlUaPQO>Fbvl!RK2zmMVNa
zm$h~H54MH*?v{N28-1y34xSH<-Qz_1E`BjPg%_WT14trpOe>2#RXeaNeB-3}i}^N8
zGVY1)J!Sg%?}T{cz1tqsCtMb)p#+xurqdM?TYbl(_RQf~a#@O#DJ-Z$p9JAgrj$2^
zNXGX1!*AzyNgnktJ~#$pGvwu%sIBRBJ`vDuxLJ#Stq{r9!?I0%_<Q5cOKT#RJf5)R
zJ(E)X<1iH{Oh5Yd<fp_kb(W`SH=4sDp|`nIj%`Y`do|TnRD5abUh6;<)t<{8&{C}h
z3O-vnl**lLAm{(OI+$k*`De?mX6e+h`$*%maW(#ILV}amJ*&)tsPT4k(flUp=b_40
zWCv&rA+e5bVWJU*9d5jGUKMi`Q)x_Iee+?C@nF0%V7`XtoD|M}E@{b|$${H~(mr!x
z;-lG{Jlc(+&PJ53+s-l)!zQ>IfA4Z4NJIoD&f2x+iAI~vJAyt9%cWv(Vi~*qC5@`K
zSU%R6r_&;Nj~dt&!dWNNl#(g-OCS`?BR<LlH60&jSi6!Oj<cig8tObBX6kb`uqf-k
zz8w$t?p|diye{{LjFp!E2&%-ITVfQ)&SBBdNMKZtkoW;Z+Xe54;!RNeIUNiPoEv*e
zR#5_vRCP?<Js0RO*F;0L8l<)bmHhri%lJZJab3N3x%-$~#YcmjGQG{Sg@G6C<$RbP
z3%+en1owvWgRV#_zA-sJ74Y*1bd;OTGjlNwNpdXacSoRA@>MTKo|jM<B_^5@2iM3?
zZwgdnb_*3@bAlIQG*I0{`Q$5oK!BJE)DvWNqR8a_c6*;Ea}3gm0WPxp{4Ec3c6~kF
zru)Vi+!FHbY3eB{6e~IoOI7tSI-I=Utu+i3o3U}(wU!>ZWLt4I0Ie``SE@fW3$(Uv
zg&cc@U|HM@cWa#Gm;8jwz0S{riM#y!mL(+gPL@%qtfPvZLUmCC3HtlHtw7Hi)|zNO
z(YEkU3*@W(31RgRi)$x+`myuS{+MD1ngLPDIA+K7idAk66v=SBZOFVz6PoAn`)nZA
zWWT@Eq)mnP6Da7={{w~ace1${Kn4YEQWG1>DL)Sng73jVpF{k0yU3%HNSd=_Ayz29
z=1y+R+y3~?h=H`KsSJncFu_C4QCJ?I+x58hN*5Psqy?X~n$Hu}v>72S*}$9rRX6Aq
z&^K$PYz`SAv?3}#V9TW5`%jcr1LDG`-HXt2P|+4o&4a0l&%I~w@eZw&;j`bHWI#Dr
zOg6V<A(2<HMk2sri{Uhm#njkPMhr$_*S1uwIl$bo6?s=v2!vwxcuw~@jDV@7M*p)z
zH+X(Yk$XO^?*I-_7rF%1rZNbB`CWed=FvcHGfOcti-dMKri7MkUR(Q>=y`<#97NAx
z1g%&1A(dQvageD(cEoS*V7!d(<Ub_c4f$IhQTIi#5VcuSCuX8e<8Z)D;h1EqH5gJL
z*Xp!N_%R6Gd6(zZEYR!ST&~`#N1C2$+I*;3uK&hRCXo0)BWqzTMWdPSPZ$b0o~6SB
zK;AlH8fV$FqMo8#XuD))9qUj6MJ)oSW>5}dD)q#wxb#Gib>^nBUVLR4y_R814UGTK
zBs7&JLTtp|{u^^!<wavD!x9Z0sqMgy^cs21jWa6csY$ij$^i)pxy4A{AjRuu_?OyN
zjFozP=T2~t&+XI3H)pbs5aimTCHsC#>s0LWq%!8;U>$fKolgej-d0z5k@2mpyp=q2
z=LWda`}~R+{7$WLNcQ_t_E%Va(1tVjA^R9#;v>7@0E8hAtZ<Bq`!5<7Sax<mwN*EK
zoWebNpkl9zQ$AcNo1~V~jYfxr2G_SDnj^G2#TDkW$DE1N?cpv=j#V4|3pyhKz@-Au
z06U3432RlB(Ha?+);LRy#pcUm$;m?rK%oSf8vUC_^FMiD$*lh0_BONGYEZL9_K~Sc
z)uv6O4tn=`HCI!M53ZRS(~UbQAN7MKA>=3P(Q~4#jnbySiahx2pT_BoopgZ9r5_K|
z<Zsj)ZOH7l7OB`(nZ>cByh~X<$Td$0f3x#>wR5pJ)Q+-ndv&Q;_@wLpoqkmhj<x>b
zl6-{SJGp+s=QaGe`~0+!ZTWR0ZLOv|{ARoGR7U_tU$y16rC(VEsuE&$K)Q){d)QJS
zUrtp_!)0)uTz6P(hUN!A+ACB2?g*q|2YDDb_SQOQcTRAl5_J2Nk}N5H+Li0BBVO3G
z^|Om#xX1p^vR^GH)l~cX-XkN=Z{|M^b|C5=m&(v-m8+B)eN4tc->aOLG%%T`NfG7y
z9DQ-~THF@8?@(e%72-w-8|x>qJ;S`Jvf^(m8zW|2sQrhkvf+xlUx#JPHMUV#YS86{
zV=qGZ^G4MMEVxS#BV_DFqjver!l27TwrV3iVP$)6=jFvf*o8^vETg$LY}=`3c^i9l
z&k2l^t5%OEkUQMk4!75;Pk1eRj$||~L|e0Xi>-_9i4MlEyKlkDxu}u0mhfqpk=B09
zZK*MT<kaW<Ens(0QxhfzRh{9La%>lu?lXiOEz^LSBc)yha;I+<FnYDz-mUs6xKSk#
zXk^+r&ow+xk4E;j)MAYJ9$>8+C@}>|d5A5xY(iFMtvwNX4a3M1YM%l3jIB13L9onD
zMS<f%4MAG7k~7?KHe>3kZVFZ<orNX7$4Gt>3EflPV;`6M2<BA}-Qw`5-=SDmB&kg-
zloKmM(-??Hw(jz83h0+bls{)o_X!Z@tUJ4&oicrV(lB}0vqiew-Dl}&@XHF5ha?Ym
z>S1hoT4s9p(tF_Ixb67eA-~Jf6tH}rh-BpwgAz|VKc{LWz9Nbqxr0(L@mtr17LlM|
zMr`RYdkQrAk*}uO${v*!33&W`OXpGzr^DH~ik>YruvAyy^bK*=9~C)29a~_NpuM)g
zJY^5|Nxb#jcd#@tU7zaKO8Yp2_brJt-38Q{y~CTkh+Dqm{_X5(-m&<Cjdb2l2JdZg
zI^0#`yutqe8WaDrDE_+<&dTt(I2?I#R25DC(7(SvdzDA1OwA(N{LS$NSE&TSL*?ma
zmFX<YYdCeyc(txxZ}gz3&!yx7!wi#7{fwQhKJ8FNPL2REvQ^$&!u2lAweVrx1wC=!
zD^<=jyPCm$ne2}!w=s@^g(<%@{dWRM?d^o)je8r>*(YhsqZc1@R#V@lB{N&3IvaZo
zY4OjcZ5;7r5`!-YMn0#H$yc6#N1HEJZEvGbUJd^m&llif(p;TBy;eEj;98og>~wi2
za;A!Yg1-fi`ybB9+%wmQ6Loa=@O>Qv2o7+>kYNH^sp3x$-I;vhk_KuQZsIDDd#jtK
z=Avk1NyU;i3`uurL^4_lDP!axE||AwVoKh*y4rcA5A?SWXDOdgq|Y+7yOGvZTkOAD
z9`Cvp>RP4qjWuj}JTXpWzK}gfN*9`zXW+`EsW84J)V03ClO(boQv46vw;MHJ=Mg+U
z!;p$DnSx*yR9iwN2-~h~mYVH9+FSn683-;^bm7*|jVbZhHQSdqg44Jv*1A3Y7wK~;
zsXLZ)DdQM-VIuF#ODN@CIo1K1C#^2Y%cmhk>AZyOzgK$Ej2e?dyQSIhDaQyod(5xQ
z#~)%ESKrCMDAN#s$g2jiIZ}=2*ke{6lYcL468Hfpk7(MG%eJn!>$-L=9Bb5gNvZtM
zkB6f<r*PDleRy(aoyBz!^^oYuKFwR9+Rx@;vWQHSq&z*@e6kpYnhaGlakS&sR{qdd
zqv;v)tYP}&?}=$KA@glxYDWIX;`vmb7CiAkM%&(HoZZrfrEs2_4{5Jz=#Dm~N%UKx
z&sTAzGw`j?$G%ccm{7|w)S5?g*W4+nYx~YYdqnoylf}vW3aP`Tjr438BX&G)ai1Dy
z@p9W(UK`Bx^HR$V4ArLfupW#Rw;l|gty(5G-@s8gl^ITP*iM1Z(9Dzc(%F8TmXzYd
z4}Sh-s?2dMd6COshCW}(;Dy&zh#3a_G!qT1bPz~f^3GMVL^tj7wRjOFlGSp4HS;s6
z8-#ej^GQWR^dj$XJDX!I?;Gj<6mmLrE#58TGKk%4hJ=-d6v}-_{m|q@MvJM3mo-(`
zBRR&FrN&*Ld$%_$51oElS~fS@$1hAaYNx4c(Q3py)s#4pB*Vwgh;&qZZkXdNrC7(Z
zsj~T1yWqj!YXmffiWxKz-6joq|3qeQu@kos%_{=zous_-srmhkp3<brFvGl@SmXT$
zfiwjc^D*Qq--umT66fO$!A&I#{<*SEgITqld}YfE>CZTQEgzfeMe{bw$nZZ>xPX(V
z8-Mh*(ED`{ELy|KWwHf8uvp(4M$|6@#F7Tkg=&U*#oIC!*TH+}&Qj#ZFh^{`5+9pI
z^Tba2tLzcgm!JvxU{{K5=liFYZ%^pX6&yJl6?C4yaI8H%(<qf>Tb4YF(aky*vJlVT
zVpz#rmJJ3jS~;PcOE1PW37(zOvV$;h?i&nvNn*F7j=f#y4W5?uc#HkC_ev90YV_L2
zin2(djY_CRU<`#L%fiC2THdkX77f|W{X0SQw#|_ULXATP`;6DO9+<84)7nKnB}NfS
z8#L_ns|EZ;*;Zd=i0GIV;7P~ld10#C@>)X_dkTK~(si+um05mB-xBTVUULOTlNcYq
z%+R90ecJavt7q2UO2D<(B^Lgy-_rEU5O<t2sRpDnsA20+7_uHnzQQaxR2a>>!xE}+
z?p(TkAbsItA`y9(7ld>gKG33^W!c;N6<B1O=&eHk0<kv(K3AtbS1}M%m!Z<4ofuOc
zA9bVZEp8=RE9|BF67z80FM0n}8Ym9Mm?aRh6251f1%>?nUd++Rj3||(&=D3P*=|`h
zmT<J8FcRSQD^V+e1!D+Bcv~e!qkG%qtO`nBCgS}H<PBz>X*ZOV^@yS>sUJSRZuEUu
zY0e57Py4w|D?p@hpv-^W+(By!QlT%XxrkR?)c7qAT)B%qGn~gveMSd=b4KLo3$x`o
zT|SD37&aX_<VVd~oC`Fit921ckVBG-(~Gj_3;P3$HkOJy8nA^x>@I_cK&=EjXev8_
zZCSWSjUmGFT2#;qj&%JxSa&CJLpLW-d<g5Wcb54TA7|`PSWX^C6*x>W_5J8AMBZXU
zCzZ%=6%|$e!N}V|)U*-uRlNW4f8xoZcmDR|^xorDo{WZ`Xc2?WKRl+x3~oYMVHziI
zbc((y1NjrnhwQDs2hhe>QKaXF>O!KUCk;@E6~~B5nMjT|N|EWmU*@ZTQ4><`M(uqU
zHII{A;i@$XXxsZnrEsIv^As6}=?V5RdE@y!6KcXCgc|~x$<~liA%)!rC$-KE?=*(2
zU|dQ<fIFnGdeFpoSnv0ApXO>-AqEwOt`i(_VBrrj7B1WSUK6B;-7ms9CS7Et?G_We
zyiy1G3Cj6+2o&iF<b~#%lu})8mYu04nxl~87aQNjtNJbKYm?Q*ImOG;5NW6AVcp!?
z;B!z1zbeQPy&#a)`9yI>1g)8RWdsrxYdOLxO^V4UJdWyyJ%H90tx#Yb6}?oJea+Ve
zcK_76j%hEm>Hgj5)tZlC?d+*p__V)$Bi0UIyQELZ!&|7AQHjW7-E^Pp?D*a$%PBzC
z`LLI1-Zhd&>7$7wf!aKA4M9?HU7fuL%hg1eTl5k&`-_Nmk>#7&7cGM?C{yP5)DJU7
zG+bEcEt63<j?^qq;Dc2X^q3Q!Vo`p!u)U0khZkD57k}}i__I5{Tc0iyiw5z$>o%75
z0lBC0m1;=la{xdHP2OH+d9F&V`FMW#Aj4Co_AU7gGoZka28XA6>uL@%biRrmz^@)y
zFZ>0kN7k5^x#v@Qt^oAZwqQ%^0_82N&<N1x0pkLy+V>TmKIc*(^Dpii6B#twEidM9
zHOB`29sAAC=461TyN1JhJaXa$(~_yCH_lqb{#WES*3JJ)ZZl-IhgRMZueZZ7wzlDC
zSGro8Iqiy@stY68%_C1><S9W*(k+G%GfHEGi-UItO%Z%}KYBT8SNnO=1ww!4?Pl&7
zBXLos(eSbyjQlxT40oLo*-zIo?Hvi4$>8@@GvBSwe4+GUK9L|Q@ndinIpJ#zDcrj}
zqORn~Ix}XqY6n_%I=1wODrVgNXPJoK|5YY}xU(6dS!LONOPGp1cdf7ZAhGO-ojvNL
zb9_5(8L85kM(-wXQPcDbVIQe-HnH83-1y8~9>aT+6ChWl9NIRZWx=W3y!X1lamCBP
zEv)Dgj#TvC%AlkcfojzTz&|UG?;QabJ@Sux7J)X$86)&ih+G;UF#5K+nvxbZ63daw
zJLq(f^HlYiF1$HKkjuAL95@o+(?2G4ZWj|sn@ErUr-~%rt8kVOm%pzf*+0ri#-X0I
znH@_yx8u~cp9?a3Dr!=w>QM&uXmtHtM{(Sno_!ZnDjQ}ka6}-Q+8bEmDP$o5|1`%W
zQslfco;Y$P6FEH>;TZL*ZDs{k2g$OU`iAA<Bxb(=>o*8?KEm$-(lbwYj*_OqsIgpY
z$A>=j->l9P@ayv~9IGrODnfu}()_2-$eUPP(Ft#8yxa~!KhtmQh%<UzbF04}GPzgj
zMFzxqb(-Q~kLR^+s-??kC}~Z>D`o|`mj0?PSseX>KI0v;gippEvg1+%@XO=m8-@bi
z*8Yso_-TiD-^QN3A)*XzW|h!o1@e1n?2c<PhAgy?N<<n6l+iXT$+P1G9Q?#-wcEL&
z_4i?RoxCCEpya=WKCWHXD;39w;U^Ltx0rFuBKi!8CB#)d4At`j`5)vw+kf-(MIG(C
zWctmm=Xr?&N#-Y~@1wJ!Ne#2Ry07-w@w!LkqN&9}ef=)6&960s_C9Jq9!ytwP48*8
z=yY)7r39<$P&n9{t#qphegA6oNenL|^4s}1qcT>|LqkU;cR@e3&Z8bP&Bc*-?OMMM
z>`bn4(h=a!qC4-4<$iiE#OP6|mH~wOp6kC?pZKM=3`!888~(r5Cj@(Ju1GT`;*D>y
zR+iLC6p4*QC0$&Jr4@~47(2V4*RAX2#B`5hZyyPaxTIc{r96(o;VaNZoI$tp^#x8W
zt+4-C;14GUO=jCA2mf{;y)v?p;k9G0i`Jg~z~2Gg<ROLZntOloWQz9Zgua1?r{IGR
z4l<QYB$;U0;v?Rst;pEos$klviiM+J=pLCr=h}~bqRMu-wcwFBqv4v)5&sRo-z)E}
zH|aJC{%ZuGIOB<sP5SAjBsW7CN?P*E{`kffKK`P6|1qxnU-($ow`*Orox4_izB@j3
zPurVY=lPW|VQE+EPFOqkwwI4FooS`lSzN>Xk#+6z#GSI4$LNW$zqAQ$dq3sRRaEMo
zPYYFR4ZL^R{qf41EmXo)a8nc5_s(8lsj0-43-2;%NAD{b^Yi?wmJa|@V~Yq!ot0XR
z6G9HSj9(2Ceyx2J6x&IxY+*XB+Gvv8&e$(t;76(Fo_Anq$u}tRNa+WF5kC5O)%}nc
zG)mpnN2R~oyoBGn0O=FNR@K3Cu+|ulV|CQ*l|nwc1N`XwLg`Q)6+mLhsQaj*YS4er
zTAG%(p^6m7qWTBQC`C?iP{#Cjz&jhn!7YZ?%bilFE4%Bu<O|x1wB~M9jhpG}eCoP5
z^JS=f4-@nEGtxWw$Kv|SvQhNLZv(Yo&MvN96W4Z$4QgGyl&>W7`SPbG<@n8CXmY*t
z51KT*97TRqIIXNnxrR$WgYB>Fw)^Wd6Lw9nGW_H23^e7FgBOPf1vhZ#(UkvPz#xEL
Z5>$=gz4!k#MRql@@-iyYrIPPI{U5^595Da@

literal 11424
zcma)?1z1~6y2nHL3N6}}0>w*daVx<IP>Pj8fTG1qaS84OE7s!fQk>#WaCevDZh=rV
zxZcojzq@yL@7}xfJW0-Za&pehWM<yq{NMjKd09zZEK)200Dvp?PD}v+K*vWN+dsfS
zy*~(^|AqQMvsI9M3n&^S-$I@IVI%?;0RT!vv9EORqs|{%y;HLV0Px!GUT9sGx%vPA
zGnbT@h?0}`PI8^aHg9#8>LB(n|0!;6g)_7yo|5p^=)O;km}C7@;+`gR<itjvPfuik
zCHW%nRax&{;;tZOg9D$3QLVUolSib#jCjI;*yvlhrTYHnF^e`4F>%ei_vvyyw>OI`
z$fnzCOX&XXyt%NXSn5+M8i!ZZagNdK?smd(H2me$ttQ;!AIk_gL<23tjnNQluz~^b
zH2X5kGgej0?om9``*q270bInTH#uN8a0y*umvR?S;HaeNx%ECbQpGK~q67enl5elz
z!ddvc_*ODh%N}v11#e>GmN)Po2*iv>s+yd>+c^%41IOxWeD+gYenTbcobZj5O?bh0
zE<z;Qgu?;=;3bCC?i3l9N8WCXX0*`nouW1D2^<B_b_bShH(DPVGa%nx3#fNPk1=S}
zOYc$XOpcSZ3lh;>o}&78RLPF=ikH=}A_A`KUzyWmJF2%sc{#X$Vf_2fbS$KD(@QW9
z(a^ka0<6Z=H;W^y!9wgI7-J7fs+>7L#Q+Dkc50bI?55wsL@RSn-`vcS4R4mD!R`Gy
z7pXhX1OWigrvtqB4Ri@(J~KQ#c5NY;q^3Zn27@<9Q5~NHJ>alWiHr2fE#t$c8Vz|Z
z0ugX0E&yPZRh>EXNfvYCO*{9l*QSu|_x`1-3wA|}d98#+ixt;Pf4=+D&dB>y_D#Gn
z8tOL7nF>mbr-WV|Z@dQsR49H@+gzhM*0X1TPUq5~|K=*t{qmUDIvjZ_d^>s+y14Fv
zYpXe|b(x%vn4m*-La?po+-u1t--S*zGO?je?pzZlxbMvIJdLBd(DHKtz#Xg6<Cb+O
z0C~KvdU3ce-7Cr4Q}v2RQXM2?Y^g?y2>=X}7hY12TvTolPGMJW_ou}dO2n{8qizl5
z4Ma8@xvv<&6S=|s8W-)Hj{tzAl!>^7g-#{=(&f>e+HM_Ja2tSW4giq%Ek|`#)<qSL
zL$fui{=l|HUM2Uw(X82Hb`PgIRFjm}?^Us&q3(++MQFTt^XRUyErI?#0MvUT|8}&0
zZxH>@!)EON?Ly;W=c$p^0bIe|wWi>fv6>9uGmz=L3AY*s*CKr7$zhmyqzxuu9CL;d
z0Jt)ba-ck$<Od1_&C|?(1>Cfx$(4D~<$m)r(@t=XbIv2BqW5P!mA1D6z&KmIpoh^$
z?ws=upJ>nkOGX(L$YHV|<4P%4{JMbv3G}0v0DzTCEhm0dG00MY(?pn~`W~vHx&DW<
zF)rw&h1?Q36&VAjVrhHd2cPvJ=fCW(kdz7)8V~VvJFu!S_LCT{dNih|_2(L}Mbe#;
z6FbiAom&%&#}H12!&%tmt|rzR6YK8364~M~gpWLzH~4IKSj1tbi*S=vpA(-vuD2b(
zT4WJgQ^u~$Y(dwuH|qv>D>Y<KJ`5EolEfRzP{9XyKC{T#dP8NZfi&^|_3l@&<VOo~
z>RQN0`cqUzVML4|<Zwodu{aR&ygIGz>YJ~A3x+2!J=R#_mu(+E7oT)Y-Npb$exe4}
z%5=r!!i(MMiitCDyc^kLd-xHDMd>4H&BE6W>ucWxUS79>8Xafj<u$e`qB&gFMxvzH
zh2@1QAJp~s^KS`_aARF+c5*BVR+)@W`%QXN7g9xdRmR^EtCxG#1oMwRFunj|@P1g^
z=cd(`{^C$8dloQxBN!&U#8{oayDwCO33z0y*>B915W((N1N#+Q3@N`Yin~UQAFCfq
zE}ztK)+UO3J~=vkUv4Oj{fypBZ1CyhSEAt9-i8@-bxP<XsQf4^*<?rxU1oGzwLZEA
z<XD_R&$N>*-dg$!SBtjrAWGtrt0BPk@Gw5wsPV9E1sc(IH6d7<))2&&>=B*<8p<{$
zWkDRTJmIDPPNs=h+8=sk{cL31QvZ);IRIHbQkmbxjB@Icpoa}@t6>vw5j)}RUhfnY
zYBa>Ydj<D$k>d=-2<cLF;C`9EC;!-u?8##9O4n|wod0<sH&TV0H671QI(lg0Tb>U-
zp&#(9$RB&wZZ<jx$5qG~s^}8y{fC>GC%=>Nm_8dDcG;oj>Qj>_YR!Wup|e)W+c+zP
zj{&Gk^chipaaN6=tNA0L3bphAWJS2(Ug~zjFV%s2%V)K;rlyzOyWun2x@EqS<^~6z
z^Ifq$Z9DHH%B&xjk^Axsw0ka`ax~6CCGdJ;a*KD#WHIoU53+e>g+fAl8Aj=4k4l6l
zYw#!sF`pAO+5;OZ50f}8$xzSXloN-0?Wr#>v;hUN7t?y_6NYN{d}&%AyV`fCk*a?D
zQlrH{)&%2)cDl+D7<dTl{QMZ4*AFc}ONk7bCrlMgO`B`&0_aml^Ae2ez7TZY%{C{M
zoY{d@Ty0NaH&U#W=<-j7<HOMbWe=)V1~XT6Yz3Ib2rp4<!cs);FOZMxf@%fgOel(Y
zBqN89!IIl_#EC!sI+LZU4OH@RHQu3A(DW^&6x{is{E>r9L3u#+WVc<Cb-eTF7R$Qm
z=%Mz(e(I_F3Ue)I(|r5+*oy6jqMKhjcw6_8r7spH_BF5UF<9*PGXJEC1g4^ec$Wbt
zTdw6paK{$#>!OF_P4bzm-D?JqyPtXYDbMKI2TcF|-+Kq>79CsTuFr|DPqx`sUcmP}
zZnCzhn)+@5Fy=ERDjsxb5|(GaZxdzRwXEVg7#05ji1o|Uy~6@tohJ7zHl4;ys1Je(
zACN@Ky&2cBNPq^=r24&7>zK@<R(nrd031z|aD_&3hYJ_IU*(<^IG5@xfu+gnVnE9%
zH2|PVVMW=j+>$CVvbg&P0EW?8l}~O(j_Ni>um5yy{eKo=QaehABPUzYP=Rwxy?wh~
zW9y*7ZJF{Oj@)x0;@B{M=7cEMG0rsa*pHG)W<@z=S3w3v-ike72%CM*w_404jyD=0
zo~&fdo66z-fLX!O;0K!{hselZi)aeLP_4DBc>nmEyaO+rTpPB0x-@I4M&rIvMVwZ-
z0$|tu`5y+LA6$_16xk1w;xO7oD<QRX;oNSuS?kAG6JyHJ(mh6nwI9U{4TZ`MUwEuW
zys~s8F$pNHhfj#im(eS@lNpl7n)`d;y%)f5X!)v=Sn*_+n~4-xK4a<0<|s(M(YS7B
zIP<!@e;EJXUfir1DWd_7g>X>`R7&u^ZF*1J7sg|tFjv5!t($N-^9YsFlD|n8hN@~2
zvLcyN?K);F$?=D4oEpZOq<TNz_)f0}%}2L>JQ`98Zc2MVBF<dYV%0d=u(1K-atL?+
zV_!F41Vb+}nIC&3hj2$c<AI>=SUKknaf+Q?F{FmE1`dObxetZb(U%p#+Hs_`Q_c!|
z+;|*Kz2C>a76`@gVkFS}w9Qyfl)cb})1_snH6$Q8a67*us$D5BO$r)TuJ)Vrk@;!n
zlDrRFby?d7nI12BZZlJC(%e{w+c1whhj^rZpgh)OBFpLIN8oKWz8WGaJcx@(n>qfe
zXa>p}aR(PqaEgxCZy%7Jer>aR2C?a><r$*o)i;L-)1|xh`2n!h-4Ug9uQ%~+j@bo5
zpO^_a^iU`JX*)VEQ+LcnFhr6Mnx^umT$p{XqVUs_rH)^YcToykh~RtF&zHJo;=pe%
zf14Dt2Xp#<Z1pa=q5e5vW6?K1xg$={aKFYQLP%NV)qTXx!D|{kMPlYH>>yBih71=V
z8EXi1WX!I<^&U1mtb3FB43kjh02RNw6L03qypoPAY$sFV(jgWMUj?lv!Y+0PVO;K!
zTRu%WyGh!ea{+2Arome*baM6R2&#>PhS@=%nFJz6gQM;YhR9Fu-`xw2ia5$Uhv{Y{
zbW{62Zq#+5z-M;fg*~&9L+{hZt?xvE$V@IxuxIw7z9)e=o~2&EWx`$T!h!!Sc747c
zbF&HcUi~bQKN96b%8rPP4z!y#m9Dmz6aCDeOVaCOR!Em@myjKlv=c_*QfJfGQO`3Z
zJH1*~ovQd4kLX4Gq@|qQFjdqpzRgT2S#=TImlz`Li`csNE3)YZu?eBmk)5!@7d-qT
z06zc-t(|<sMW}8d+E9TGw4L1?@|5UDN1nmE3ism(QEn4HViu3IS}IU-5z9SGMnQHK
zj0dGpIA}lu57ztrl&=CgmgvO-JEhkb#&OE97hY3FRrGZda=)*{X?Ue*45<P$WDv3S
ziLO01(=KL>jM-R*uLGHepxL1v=P$`(*%x|(yyE|TsN_7vP+<3NF=EV|qneTjy$0F$
z_4=t*@sAnsA9iB=(Z*HjOj0R(k$_+j;dPoZH&A!~-6?6+OtG50_j}{WVnellB#Oaj
zx6{a<+ajvyOopk>PB3YU9FqK5CAB8`iuP9^Kc2y><T{Qf7aR`P)@ZtDH%AB-6*3Ei
z;t2F#cd4q_n5f#We^(3ztNf_jbsJSZ)a=#<kVPk9A_PZ3d3MTtWS*`uBhT42`H%HZ
zr*hh^#LZ+3R$m~7tCh~7QS4Bdq|@}T5;>uYEfqDUN_b=!PnM&}CMTu_89Q)KTcftW
zw<%aL^Mjw2pQ3s32LB{U2@`i*%My@KW}~G(AIJQ~pmK=ISg@gTo2+{Bhng6d_lMId
zcE<Tdruq@lj;aFVv(Xx?;-wwyro!Ne%`5nk)|mgr&Ns9Rbcu73Zw(a0E#vkC!1@Ia
zeQWJYrOd+FS=q*<gjhWl(pHinRjRe;{G?G#n@kKWSj1GC@zQG(LExggT{&ux?+OFX
z@=?Q@8~M@m8F3H4#$>i;DdJDLK^d6hMLtCZONV6z89berc(dn9qGKUM<F7A0u6laI
zfFVzA`Cd}3;&t+i;1w}^Bb(%HC!wGofs!MIjhfyOncBhw?14I)W>#2?ivn`1yn&8s
zugD>{g2_voRouG6z)YC#ZL+RedrI7Q;oJ=2ch##e;%Y5E`|&9HF%RmczOOnS|7Dkw
zln|{4OAq5hi!2cOs7m3ZSek>1-k95S)JwO*0^~}{7T~G1+U-WQb8k+<WK6?HVwMLo
zLpH)%&Syd0LMMLWqK}MBG<6?t9NKZaTU(#WFd}238=Rp;Om!lctt*N#<XQ*QNRnQb
zIc-*C+`%JdmAH3uDRm5qo#74wtSq;+$6v@!+WfXOC53{vBw<k`1EWge%F%~PQj?yz
z&<g*Ej^^*u)ev{>m&tv3bUYk;gAQ@jZM<`@V$;t$v#L@F%4SP0`gY&s&qkV~=ISPX
z(hjd29;+4{)@sHqN@P?m*Ky1vVJ6^gW2zDYH7J0neOU6z$9KE5bW*GBK?0T^D_O~d
z17a4H*$h7_ow6oG3wLLiAs_9kYK-JXt{>EfQ37>ppOm+twy=_=j#tf}gN;1fZO(k!
z8>N8#U*stvCNkNpL4Ey^vX%@~?ct{Zn0CEFfLEUuPIqVrQ;AZ6sR-axh&sNv6O$6}
zo82z!yh|BZX+w5AsVT#y1cQ8<U~Y(*>Q3&gW*NeVBoJ@1CcTq7fJrlil`Wrf{YOL*
z+F1B9e>`|agVi{(e@W9)u%^e-Kg6NKs^=9r1zgf$U@1J1J_Qo`h__ati+=Kw;0TkW
z0x;;1G)X&Oo3cn05YrO&&?7MfOvl<RL^!4+J*&Ic(?g;C#_*n&TwC<($$*EUP0~>{
zh-N!sqyZr`x+L-3Wu4<Gqi~Y~Y*%ia$cu-kANzWZu3Y#webN0|TyyQ}dZ>x>de!lq
z3J`nWgJssxsyDQKA8jJY0zLLICT%VqAmN4Fq}(vk8KSj|pdqdF96jEP0C|1s=&X`d
ztkX0a%ci3s^!7L!6CgWaEmD4VeX#UdL=bIXw0st}kbA$(v%fhMkc4Ta{1w0DYjMm4
zsQv!neZ)ggs?>!iOi*#JzrNmY2wt%4&n3L!CVl3nBQFQw1g8{bumAuFX#e-N_5VSu
zzi)(5``e||&Ze}k<g4n}PW+A)yb^Hx>}h?HacF9wbhjuGxVHhzv=M3$ds-)5=nZ16
z3`tlsVz$*vdhcNBnkN7r7Y4+l&8*Zg?11*!x(!w4cEc^i0Jm=j=vWF<W0n7jw2F)9
zR?NC8KgMH^`LBN2jYDhr780pG%8#J`1z5S7w7}1^ft)Ns55+v>!^^AIUpy_y$!Cm>
z7*e+{{o3CT)n6CC>3k)<u*)%ew2i$TBOZP@%f8C%%Tl$j(O}X0K3bLkm+T+=+o8XT
z18G=x$6b-`9xi_|n4PslB4IEF@oe3fRNM*Yf#1MHJbA|0BCvjv;D>e_Ve9lqHI?ee
zPSybfk}rHCYq~A{wDfW>hK3+;{ktl8QDw7`X=>FBjya6dpMO0Z<xWPj+T#QJJd<!i
zMwkeP^`^(Z7jLHwJc2Gp8xckR4bE=6$pXZ8)8pmfQj8F5!ScVb*;aDtKd{;HDfz0$
zvXtcMOiX@+Ye=BL&gs>I2BDksAQ&vIZ-AhQt7dOQ79#)O8+WJJKR51qU3u{2jE!51
z1L|V++*i1in|T_d7H_i=Tn(~LbJl`3PL!1{!+&QVnVKPzP~}}izNZDJ?=+7KmSYMf
z9N(P=u$TsSMd6GU<%GOYUu6hBF>|TRCQ0AW3Y~;Wl4lqEiD#6&`UP9w`Hf_mZhf_^
z_hUoUk=s8)QG{lXV#X(C8vm2fB7YNF#(zR+pU{V>?N1KBv`-LkeCT1-=+pVWOGO1-
zVYhFIXl(8V3iK+q{g@Iw*<#0kXUnOsM@om=^<m->S3Seu<c2J!Ws5ef>%Y@l<i*@5
z{b8@oU$C~jj{9S8H%w!-y4_6gH>`;nd|de)jf{z;TR=O;N1iP}jNU@P*#ARmQ29eO
zUQKV40FqHMWWbD^*Gr^LhByg68&!{g&5pc%Yc}y5G9E7RX3UbK`P&Qs>en6M?BpT>
zp|%<i{55=7Z{f#VyVSW1>zBH0YI{Fxsh$+-tU_m28H&tyYgb?hwXRnh!4rbG-?ntV
zIkD!4Xl9Nvk7G>h_Rg^ATrYsg3_|-B9Au?<KYm@)ZW0_3@sO_-?l$SOn7c?J)~*mF
z%*(+p`EYZQpHZC*<x^`DJnF{YP3l5F3!A0m&ee&}#}{x(*)K@ESAOc-A=Ou7e2)F|
zdTGlJa`4NCfK{;zOZ<bDdBA&onLv@Z1wQ=`hVb6<mFp7TrsMEqjieta)Wq_<<RA8r
zJwb*Xe9zS4E-LwuXRyf<|JJM=@}8v9NsaOaTR4T3;5LVe38lNXQ2Aj$;eWzyR-6^9
zOnvc5=c9)`!z&-i%t@}h>$;SO7+I$iN;ns%K7E2^b5AlAdN-!?E8K~%qlSzFoY++&
zeyrP|b0T^@3r%PKv8M%*Yvr~wbTj|VZdE9D>#BfQ`x0Bqb?{aPGiEoPR7KL!QSot$
zgr=Ouyf8QxnHnBZn&zglKKA7s*Nas~6uG7zMT3aTh=pFd5K!jnrTd%Q$Pjhm#{h{t
z>`NIK`S8bG)18&J@@%*Pr`Zv`%hDg+eWc&8sp~P45r6P+%<6?__$;>xw)PqNyB(&1
zt9#Xd2&RG>85*Rs#t9XaRW|0$q+`|2tE~e#dmjy21?>FPg!7|2ydrZu$rWGrkycWB
z530ij!lXb3M;TLsE`r-I{Y2V?54Zxxi6gah{0hjwpiZFzH=&G`R)?nwrU}V0`AFAe
z1cw#IH=6N(XcBz=#-o{Dn7*`n{RPY%y9=kd8b>W@Qi9NA57h;1IUDP7(SBAKt3NUM
ztb#Dsv348T1H~)`rq*k>Z=N1jr)>uFjz=2`GCMB+I1Y|}8CqW!6Ru;O$A=&AB%u#l
zS?2l_h&I9@1G7V*)rGPxz63r9y3={0N(Te5Hr?1(`v#2G!py&2AQprb!+-ia25@Ji
z(3M=Mt%quGjeoKfg?YGJDJPLtobq!I4sTOe@u)-Kt6`vVH3?y?#f))VtXT7%icU7p
zy<W7sB~rxKjEylPSGf^x<KEgNX!#xd3DAlC1N{B1p_bXGhIUCroA3RY-U9J)F?Csq
zQ=2`ZRdXvT;&(doHBqYJ(v96Nx};qjqSz5+5U>($N4x<-UdjNAcVb66E`Dr+*u9^-
z1RA--TyFIes3@)B2Kqf89EG($>0jS6zgk(@pH|vnVRA*DF{?OupZIp<F!R-}l*1L3
zt>U|a{Bz4%#as^Oz|))|6|>eR=aYrRb0t*VGI0Jw-F}=i)3-d+r^J+A3(f~lDnJ*j
zc17CaEm!FF^eYW??#&U(_e9=bSm&$G&!fjb=;|*dLxx{%-#Z-W;9;%YNqV+`!JMpV
z?;3%7;r-;=tDFVi(~`AEuIdzQ(7p1DI}di#X$+y0lO5;{FAl0?VZutXI!?2^4VKgS
z_$__i@n;|j(a(m!?6n~}(b^wy8iyf*naQ6L3Khnn^&$OdOwC>QS=w)%4eWcWv>65P
zm)$D~3;ES3i?O#}BeR&Ov*eA#|Ah}9(eor7jK;}yk;KN+B`+ulCB4`q#LtRy1H5mp
z-<t&|39|?p3H>ypZ&h{asQz|siBi1mQ%x*;a5||U&f;j6o7-oOWCw5NQP?L+t0b3T
zj4tyVSvF7OZ@t$GbHYzg+xhAAepCHMFvNx1sz=2;i%*jdC<U#%4~d*kG|SE4SgRJP
zE@)V1>MqBug8hQzI6qD7!tC=(;xcbe(f@Mu#*e6ZItDpokOJv3!x!)S)a}y*hJS%5
zy}qujppZyOnp?iFPdj|fsYzm67`J~`Cl;TN*XX9pg%zEu!=QPJTiKCRyQHyOl|gu%
z0X>A7n1L!FQ-lus`Xf{~4uyXvU#x{5&G)@T+JB&eb9LY%-*&7{{X3Q<oHiUjlKlLJ
zP*z70`UsRU+x&Cn-hM_{&K{jHKGc4BRm!9Ar4@R-7M`$_7WDQ;D}@lgJz0FT-WMAc
zD(|+A=BbFv$uPTnfMD<BB>`9azqpHdOud+&m-nIBf1u>WU&?z#CHz>2<=FWvb`tvd
zV}LMb!z-2ZfP1K0<^~=%I|EejFYdvwJ8`Ut22~}mf<=aL_sdbwH%1BihW{}({y!I@
zq`R}61ItZox?2cN${+<x$cS_DKPF9zBh7k@@aiOMb=P4v8p8+ay>>q?&VgfM$!CbU
ztnIeY%;H9S8wt)jds$hny~!dY)$bb5V@C(kZv)H?*O3@3_s%d)g-lGY+sz4ZpR)~s
z`a#OU_)((KuJ;A`ST{o)Sw}w9Rq|K5lbcxQM8P-0rE(aV2d4uhX5}uRWQy4Qx9Gz@
zDdSS*4l2-P5UYT|pb(6+bh?7}qP<MBmV$j}BFpw6Bw{;Ot`;TNg0BU5nX;1o7e0yQ
zgVk{z$tJ#IK66H;o+$i(qvMSA9XcAZPuaHwn<q}RJ!c&<vXZ8X#(p|{*@)WTowLDg
z5=JA<JY%o@46ENyPnYi016eSIi6-@{-8Z-&x-0csY9MfpD`uW~mr_7fXt3Nce`Z9%
z1?*{Ia!fO0nFE6zK_wTiAqO56Vho|bq}J9_R##*%1%-FhyUSLdl#e?*uT;~XZUNP|
zI9$MXn0YcmYG|tQmF&kt_I{%Oi)6P_2psu47(#%7^VIW9iV7%Y?n(88il3c3(FEs!
z&B1qi*<(uo`T~xL>EG0~2`M1_+8L0lt;utK{F&dQ`Xl}FhUL%OV9wR6@!Ztsz8Z1~
zxdcNF?RaV0LJlfs1b*|jVQLN%mNij33-7uFv=ZmeSbFxh$5knd$2RC~z_Y;^=80{x
zKRDzKBBN6xBHoHnJedSjU@=4zH{fODA5Z@<trBQYP7x@c{-~cgEyO3j7Cs_rY@=GN
zyt&w-_G7<aG!!F)aG)Y!p+w>^6K7Z{?o0ny?G=(Vmf&1zTOnXl9e3|jM_XwTyFCZ7
z{6@F$9VWqxPuNngQ)+Ep9tTf8AvWu`<a1uZle%RO-J5ry9aq7LRgnk<C2&04z(jQ6
zb|@Q8oLz{`(*FV?$elIJ#xl!si!nvjg<s+h_1|I_s<l;qkR(L|H}wGM0?5Z-ZT^*F
zikDnt(wbj(bD6Ha)8vlzUW1A_;?7B2vrU-l1X=2W?BC`<O>qL0dbenGgjlnY7Rj%r
zCe7R~9*(YUOU>J_%!kzPm|JU5we~G!rSWUXf33G0voTZ9nRk%w!4^1j&v=vUG|OF=
z%&6~}IVXd)9oAtH-4o~@8alwLzV{R2sO@5LUeg^`nB}Gt=`W6%ceJ<k>n@|EbabK2
z_!!t&?%n1Dyzkt@O?h5nT(7jdo=<7_9lw~U6?aiYs?J;!#f@PqehU!{ja3)vQ6B<h
z*F{{`Oa0k~4Ms`jOe%E7@?msrscO!60>kH#oI9TZ6dkdHO(^}tNRca;=-9>jA^Fo`
zTu8_EJ1WdXUBg3HJ&J8B@Qza_O{+3SNH`S>Si|TOldHBmWv%1YrzV>Z;yhYWBP4|7
z+S?Oy-^26ilK8hX-v}H|)I^-9MKy>nu8^sDC>e8ev&~n`<!v#M$sbIsWa&ImU44}>
z@OmdHg*e<|&hlw4K}ZZ<)1;wXIpX{G`JPNx3dTrcBqdd%R>=a>>~8(h;TpVEr|RdL
zZtuL8;$F+E4?WJ`7YGJuUhy}U0o@YcC0p%rk9BW6VkKz|%kw~~bcMD7`<qkkGE$q-
zNE*E_s-xMnMIeJIWY22iXx%SpMGs-2qUryhKbs;H7{OB76nh5zHo*}`Z?el>K{`EJ
z5j`IhBi)HrXvw?*>O~k*+E2py?BSSQ(sE_F3UuN#;Z#|_Z1a9CuZh4~cO(z&@;Co#
z?J!ckeQ@hq;<{?UAO}$*V810FUq6K?p%qXL+!>TEzTu9`rgdIZDDc39XCxq-agMIT
zj0fudSGN;#f2?QC(^O8jIjQy6iGDggSg)|Ei^w$B{K71%WYo5d@6~f=gCya5sgd5u
zUvB8|-ZEfS2{o&K3v}DIcLH6~B5BibJyUQ*v$7wjbpjP;7dD!?fn%0IWGNOEd9L$N
zI>UTHozPIefH1d^ON4kdKf^?b4Fe>#t;}rJI8dH(-thS6;vmDd-}i^JhUJR(Q^~b<
zxiZ@3_8()D^V%HXS*o^V{h6%JYl_((m^nG=$Yu<KR#&HNqh$f5k&g@AC#{c{$%%p6
z{h>_EEptUt!8)4cyN`i;8q?cds$9RyhlNVcQV8-_0)|qC<SmxDMdBr24f@#qiz>$k
zq5Mr{%U3v4pWe9czjqbz&&MHZw?PC^7MRTR?k2`C>O~R-=k$L+307-b{X(?j5ie0#
z+am?nnv73BMns5ft3OW#3HGGFPloLlVtQz_^xkmLB~<J%Io&_13}T%uDpnDQMUBV_
z>2awdh+@wsHskc4t?jRHGk4(c*V<FQo1{hc6XMB-`^`BXm_|8w+MEYUn**|J?wo8&
zO<j<ki+N0SpY)$0vq~|E%s@z*DoJo_!?t0Zue?{hLYFjzgThGDFvZSA`kXzoUKR9G
zf6;pl4Y^^-V|`O`mUOO^n)W~kjd+pvMEYcv_h-Y+f9D$wCx7P~Rf-2|2VUjN#<d`<
zl5Op9WZc{A<FuXj>24yXpQw_QJq%u32sd<?)-stkNJ{_Hb29O;;{fz%zRO;r+QJWJ
zpY7Bzk(2s7lKgjfJhhZ0_fKZg-PT)cOUaB$uDsNrHEnPUQsllW<kBv)(k-_Qargev
z1hGB7|8qx{kK(-|En5eq$~n|OInTH*(Zri|bf;X!**NOgV#{>R`I?!0&~&QDh-K5w
z3s#$(8@Nuw%|YE2zGvT;rcns6xvO6mkLqdVqKT;+@F~EPgueFDX;f!O?Mp@SD*8Fe
zJO<btjP@PFbdzSdX|nHhZ*g7Cy3zgmy-p)k>ioe^RZ0LaS3mE7%E+l$^A_*uitgLX
z-q|$3S?M%H(~|P&4+lI=3a+Ea!<YGhL39{ndzW#0Y{qM(8<tOfMiwH`;jG9~1`};5
zv$~*)10aA|<ja5gVDtL;cLo*eVGOj41gQBOs^IbB0XReE2M?+#TW-Ai(gua@U0>c^
zg-Xt%%F_KLlt<>ScoJKoTr9tfHj3E(EKX?u_l2CBp#7oE#o<-io7rceWC3;Z3?%=U
zc^Qsr<50(|HR?dxb#1!Ih#`)vZi73^%NsS6Fm@&F8IK<Lr(5N9BFe48mibR^6)YDU
z&0z{MK$lKaf!j+c<Mji~!yZ-8`AEeW=KNiK-z1C<idwR#|D+XsHVaYVB>mKmHi+X$
z-fpxT$)<x*O=bSfz0l62C~DnyHcjgCAfWH=>7HhpS5;XHo)Y=Nubrkx47t*W9p#OJ
z*3V^=AMTC?oR|aJ?}&%5&HQRel`|@S^4}uQ{2UAY!}qZxX6XVb7Yh!Cmcc~p_+>~1
zEU;+X8J>IIqyg>DCo+}t#;iq5ge8XkZ~+$+P&#UclBY-(Qa-H}tyLAWT_g=<ur`Aj
zyn`F*g2$MN@dH+r_N=@67+1-iE;G>GzQX#UxwmBNx{~RVl)5$6KAY>>zkM!%CCT(w
zAif}JkP4@w<byg~iVeA50N587U?j#i(!T|d!F69VH{D%$z<o9|r|@W~HpKX+BYuVY
zDvv>oLpw%<tqTb<Jo8l%%Ijov*iI2~qf5D1w<D8V7@QvUPhJ-cTeoz`)03JYgGN{L
zzf%ah8Ss{^!Vuk-%s%t+@KGX;ReJX_MCQP$38g_bu2lX_gNh5aN}VGZsm-A-y(r}+
z`bQE$-svl(V5wX?R@R22pK6zT0b7K3<E|+FP8jl<yHLjSnYuH<r1AgEM;Uq8dYelg
zv5>MwyH=`Ag3bUtzm*{hLAiHKqLw`vRWpb{h0gJQD-K}d8Ck8&--JZM)3x7uy>)+7
zUeEvgzX1kT|BoAz7ra5n34CAfpaE~%3JhU&9QbAx?WMOSDGk)rlFl)?;|8JHE?sZO
z#)}vBn_jph$mHDzSs(^M8{Z#O?y3^SclEa_RI;JWJrzS5KevM#7+r9O^Dmbtjx;mO
z9j^W5krCDS%Ohj7Pb>r_9b~Ped<z+asHSlII$t{gZ)xGt9<#heJTC`FHq<kB|CNdB
zkOo<_*%tw=1}7w$<kJXr`(YY=pVBjHW`|AnrN>kpG}Kv15=&a@pc^PVBw^0=6XV*!
zyUA|Fpkzy#D}E}P&V{55DK<+l*rBm6am_q&i8Eh*tf2-%h31{7%MP!kreS}mg}hBh
z&-q9D44WKA{J+{~Lf~!ZzmsO8XpdmMVYITy)g>ot&%$3t73LgOZ4~K8F*UZM(B!-M
zx5SaV2`cdl+NVs}Qai&78Bt}0PPnm=KMt81WBF6=*m*yF*3q$CKIED}@49-P=jTQ=
zgGsb#%K@<KFd8zVueOqI?9X^&^p;;HlWu4}3cUKRjv_Y3W8S5udVu_|;2MX_5?o^@
zFTYbYYVHE;L>7tQ$1xND@vta&p8IHQ7>-Wosx|t)iyhMW^Dl!aIZ(C=&M~RmL#Y;m
zHb=&iT6f4lV^oT-Zhb|GMpLZ^cUh{Lj+0y|nBzQ7`6IkfQ{QP9SYM1;cN%O+<y1%E
zOZB;Sh^8-G4wi3@UO5oJ<pPJ|<&H@LxC{M7>IoUimHsIb{)_Ww0_D8%U+rAu(e&T)
z#q{9di$8FTrcSg9t9Q(d*K$x*cOZci^!QqK<h@u#JRM`Y8*7?Co>VB+eZ3R7&e3df
z)7QYHrrYz_Y>z9}TlA%}rDBYEoc+h;fnrd-)#U8^3zT=RUC)d2o9j9d)8J&W&Q@P6
z8v|9^MK3xa#}8N5=l~Ut46HLd+I&u;tB`jCXGsBNt|`Jgc+GLJZrpFGgN49cIXhuG
z0An*hy!&4G<=;#>J+8nfyezuO^qAy#YxI);{r@yy<hgl^c4SBYuK4}}2kMsqDREh`
JqPL&E{1@RiAmIQ2


From 4cf28718a3e9fc16827325b07f3d72aca6e1d612 Mon Sep 17 00:00:00 2001
From: xl989 <v-lianna@microsoft.com>
Date: Tue, 17 Nov 2020 11:14:50 +0800
Subject: [PATCH 168/209] CI_125045_credential-guard-manage

update image credguard-msinfo32
---
 .../images/credguard-msinfo32.png             | Bin 10553 -> 144583 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/identity-protection/credential-guard/images/credguard-msinfo32.png b/windows/security/identity-protection/credential-guard/images/credguard-msinfo32.png
index ab3994789e2193b21c644468ee7b1a5720b9e13b..46f838c8d2f1e6c3db9e51fd95c1bc4d97fbcdee 100644
GIT binary patch
literal 144583
zcmZs?WmH>Hw*`t@A-EQYVl5EdCAbwRQi{8~ySuwP!CDFw*PzASrMLzuQi9v#yWhRz
zy&o@QoFr$QF_OL4UVE*%=9)WNRaq7bgA4->4h~CRPD%|94srkOdpH`x+j~7^lI-mR
z-c?Oj0<LC~{OIil$rAJ#1P51_`0mLV`RyLvNlx1p4vy%<e=c}=HTnxUxYsgyDUgPj
z!Ra%q(|g?<hNv5v&SkI18|l-o=#~7aXz$t%%T-M+_mz_qL2veC0?6%#@3{zbG=aRp
zXfoahg)|!Ja}nut2&0@AHa#9XeURVl2om#gdza?Ax_<|mA$dsjxarI8%j+Yyvc=25
z@83w$lC?|y70MN+T>;qC03?@JxLzlw(_LyZbViyXDk{L?VA$=2{!-V;8a#<SAd+g3
zkM^WH|N4=!i}1Cu*Eg94)rt;lPHi)r(e;=b4wIf@L%&3f`eUE?HVOt9TXk|!I7>r}
z@^R%1ac@?Q0EEgPRLi{)I~aw%owUc0b&=Y$%`p;oj?7hp-I#<so+(+8B`IT=Z4`pe
zkY&_Y2p7m?h$`NQXc6ILG)8?I+7?qnLDEb``u{hq*Q2`!(E4U<f1V)uwEWh|`Q$Ve
zsvkv2bZxFtA3PvYp5Y0{NQx>anmda<Qkf%Ci5p)D*o%a(bcer{xO;N0EjsAKVN7+t
z(<488ITU$5`d8OWZ18cj3;%qNqu|cciRq=KUX<x<`bhFJkRa}D=9QcmYyIwgA@~3O
z_LTbHro&qoHFB#*!u`zY`c3eUZ8EXH#iiW(0rWppw)i<20PGDb1ibu8_6F9(OFnj7
znC@i#?@YUCU!1xU?B;!M&O3fCb)Y$=(167_{j?l5`yM$qUT^Z3GY?VeDEfr%yYqQm
zcb?}0&0cVx|NPIN_xGX=$84V{6)|7)?LJxgaS@I_;b>dZS6s3&xc;Mlv!e=X;Ki`n
z;I(h+mj6=&?tiBZ+%_Z*{QdAi6@mEYhOR%5+YkJJv(e9212S@Q3WB3RReGSF?%aES
z87SP9ef%eT?jG@__388fnC!oHlf0-MTI!B%=ZHJQ#&~tOsAZ@s*l<W#T<r!U112TT
z#fuWN@gMoeE3lKTdmb-ez5%@{*-WTjF|yxQL<MvF=e_07O=6tI|15S0`YYL8==}rV
zUjo4r=KSD$v&pX5=D;1<T_*(w@;*=f;xT{r&VIff$)ZchWjB@};m+Lo4%H-}ufqy;
z6Cf?K9eJ66L1k87IMwUPlvWDEVG7+|KOhyn@*KIPdtdvU%%6uodgvtGrRj-=nH3sZ
z`{sV<h?_i}*^ZB)*#bjIbX!pBnU01x$NSHKF2vpik{F`?aT6y>&Nq3X;q}IeyWD!E
z(YcT8$vP}{LfdRb*iPCPMmxWVAI9k-B<;IJ*g0Vm3A<%_+&-o5j2)T3rT!Co(GT~-
zevLvo(}iE_;9VM;lD^_m<FtIw5~)v@AyIyYx5+pt_<Z)Yp)By7(&Z*v(iGq1lhd1{
z1XA&5aXoHd@cGaOy6W|JI}ULC$64Q=yneqsyl<BQ2djkk1{sqqGgKGQTDdT#R?V{@
zByh7}+AoNMD%4C^(#c5Jq=Mq8ImwggN6Y}KRSOsBhUp3)Qn?WCek>rImtyLq30-~v
z0)8sC3W}I7nRTa+sM=bkaZx(v;s5+ip3U;SCrQFASxV_RXj6?-iS<h*AZ3`)B<FJ0
zb~eqRIB5noO`*&rELg5IqffI^3NHtV!#ZX9$2@<82|{qhaZ;rNXLMe)iWO`;zaZ>u
z^#^B$KnkE;JK6&rybi)Mmnw@AVxeHQ0rrXsHFmqE#&@+MK?w&zda;<=VBX*zxp<AA
z=@`uU29`yo{G${l-+8DLb2!Dt70*>gBxG!gGocdHJaVN=l53tp8Igm+{0wLkY_gh0
z$AHX6B)oAFHy;taAkhf2x%J*WKFVoO{M_?rJ~CH0TEuyq`R?g4weJM}vdCSGap(+B
zDnrG=J|rlJm=4@RTS3{?I55HL;OSz^l0E@dH~#8aBQ;y2RaF;cD5)S-)R^!(!Dk0V
zu248&Zq~?v)r{vuSl91L(ViDKAWJ`D5CBON9rYr5w@4Dl=z$z6&yTHuS8vjl^Ix~3
zLKXYH)EfXqjl)H_>d#`~kw^dVV@Pv~a?N*m!}xot8brq)?jwT0^bMw{nL@Qf=qECT
zw!(gRfI{+!nF+@)O*%L6Id>G?NG<Q%07EUl!il4^({=+5VNOm7%Q%G6FgOz?G`-@l
zHbJ{K8Ypz;vN!59nJnr5`Y&(2`W_Pt($?F$n+Im8Ik8-l@xF^QqyibVSa?Q@W|BxE
zLc8Iaam}?-6{^+j;Ur>O*<<XcPn`6AZ)>D&o>-r#espTnfS;j8Hj4?pmYr!76e<2)
zit3ktfJCsYldTlY^w{OZkD{SlH87AyDKDKu#*bx2Ve&4_gq#sgFa8O+s7+Af<H6UB
zuDMy!uI6`nWQ2%M<fEmSEF#4_j?V5FBKll9O7mM$_q+Tk7L<0K62<(#V2$)!Wz@ju
zfF6PADfCjJFRs-4P+8>PFW2HG;tU#uHr@f-^84V3)uo>kSbM6y@=P%=QWGkHoLH5J
zn>#o+x_^-HU&4wQS352M!@g2}>-?5R^;R%Jk{f8Qa<O>?cLS_wrsOD0jq4T4KaLqz
z+f!j|0pI_ELKm3|oY|t+iRMSjN`ycl;o;%_{{9!&K{<hl)SJfknAt#eLZ_na{|3Z6
z?2z;Q6Fc4xFxb@9760dCZwY_#jLJl{CqQYE?dQ@Wk4SC6$oe{By|QDq%*Pp8N<-R|
z$#FJFz?@+BAWCdRM!6it_Zf*Ej&x8(WDrqVDJMVnBEZ?rf|+7Qr&TH*fGO~8W$hDl
z_}T^lu>Pr|?$<AIE1n*S-jY$xEGZh)dgWZj-yfI}OBZ^AK~)S*{1@&x%?JCj+sPcf
zhNTQxw9H?h>(5rIP(B1_jDVPcfo?`WYbfQaXOPZPl^J?a<&!b;^-NVynByhb7#5&I
zNY#3{$GcQSIJCsfSyt0FoIE-rU*W^GLg9v=ByE(!iOz$g-V={N?RdiAwUSxlv@=k)
z)9C>-;*=1;6TBcFnp1LuI7TxcvsyLb8FH)d?+*l@YgvjB<Qy;_kR{Xf6^qW3f>YEK
zRWrDq^biS1*{I<Z;ebPt#5Wrp?oN0}2pWNdSHUI0Ke<Yv%y@o8R-_^Wt7`~d8yjm#
ze*XUM)#dFD{^{{H%7!9VB3Qu@_(2|c(>%pVDpdc$4LC3>KjMwxuY4#MNu(m;D&JBn
zYXjUxPHZgv9-7u{1&-Q~@0U;_WqS3cS5eCmm;_j*htVG(W>$l^qn_&M5rQJCoBh3|
zh~(oPBO@dA_4Rdi9Q-J>fGsC}C(PqpBT-H=#5KFt(Y$+)ga77>C)D2Cf9^%YWo2b8
zj+-a|)J&4yx+aL{^9>lbHrrNazvaS@@`-d7&YD5KElyNi=F;6B9H|1G%dBRapfMd$
zb@fR^Ed@H1Y&o}HL}v-&f0lKh=UXwTuk7?S{E#kLpwJeQ5!Du@^bu*8G=v<r{U_*2
zBb07b`8>wB(%8hrMZxA_dHxfApcWHIzK8#$#|+OU91ZisclE0~R9!2aFa&1WoJRUq
z1?+zzSVNc!@s}b}ZZCq6ydf2|_#5XNBgguEwZ_kK<+EEo&@Y0Og(1^S(k5)2i<PaR
z*X~BUX?o>?%X}dSG+;~xiAhHEvWT8A6WsnJkVThx7;{>sRD90tw#{Vu-vLFM<ol0y
zITa`FrSN{3R^(1JjVR%OFP=G);y&{Q1ZWXQFr)}$RIv#vi@%sbSmKAAg_RVraR)CW
zC=8E|8^xb21ZA#->N94V5`6@kj^2IALw2I&w9zZ~4=M^&b?8EC@Cr@;Q#nEz*HYt_
zMiJtF5ZsPY2}PLy>6JUlCeRWM0?(J^<)g9lJuz`PucfiuF7RPFd#+;g@d5c7E1t;-
z_J`O-mIf#ot{j<x<0cqk&lLoZjgdNqdQR}nFap&qT17p9jw4BpQEg6jV-JbJ<ryzO
z-Lj74{x^gl#=Pxyle)VZuxvm;z{$zUMY?vt*%3vY;skrU<^bUiEpBsHyR@|&a$*ON
zm)63*Vd-m!?jPUwhlctZKlf7;37Id4J@n=D%R)b^o7^oF1;dUm(a+8(rLWw>r39zv
zgt#~a=9jwLTcwOx6siiz$ef$&{hd1W7;r9E@~#(nfWZ>QzaS0ZgX^lvmyO_=?dSo4
zW~r!Do9wIxpaA#s0_Xgnjm?EYV|$S1;Gj%io*tV4XSbnt(-?j*kAdlBnvR0}F<}<L
zDMe<B2%p%7*z~nWtKs)F)2x{f%WFn;w@B|#eA#V|Q6CvW28{<Y+b;3H#c@l&O7AFa
zopgMxqB#rDzWgp!CFF=YC?jLRaQL<7=ARjcj~He`RT)<U*mPIY@z`);YU-?ot!!{)
zA-(#tuC2H?`f>)jO|Crok{P1Mwro(4o0UyjSdb5I0mp{uhM1OM`Xl{5d!w8WUxc-P
zf*p*2fIoL`7sF(<sZex6P&0?<KFEZSSufQP`q3XN^&Op%0u8)|l%xUyzh`6<2R}bQ
z5D15bhCqUevV|i)q5Wy`;=;+(^Y-qpRf;w^_2b8nI`KIgralq_rgavBgJ{TJp!r$Y
z>?BJpWQ6oDRlb*y%n_!L?R%E*ZvNJy%VJv%iHRAT0fIu1wxN`N{0fczg=gk^WfW9}
z1ZX|%2$?~~$MpVh4iP9Z4Zeh20DM-_E#DBJPc;jp=)^<oiq)a6g8B3hH&gK3qQ~Ty
z%Mpa{YSF0|nlyvc1WRi5pL>sg)9wZ<D=XKpoc{g$H#r$M%K_DP4>;D`+}x_?;Opya
zXh_9%9b`Xd#@Sk`$|T;v%E}7LTUc0FU0t1=oD7Y(fs5*HXh2MDX>0Q~Ha7P5CRHP?
z{cr7bL503Kwj`f&dUWLM=4NMaA6`5D@G#bn(w!96HS-~^s7Ajdo20OB(_94`%V%|^
zbVw@v-Yf9mA8ciEq35f@*E9APs@I{J23`;@vtq2Rr^DK~f?{EA4$3GSezZCs-c^15
zfM4&%&1C$^hl<3)yM?L1%cDrDaAahaPKue~w7$P0W3I%puI~tF<p&^-+r2bgTwLkt
z>CFiML-PBFD*U0Bn@q9SyAyT?5uYII%k=vZYLyDZr@w{)mov5c6n1ADZ25%+7+6>@
zDz8UkuidXxuT%Gm8B2~CxA98IVMFEn#0^NaTXTq#e*<35WD^2zwq?6TU2nX+@BilK
zvnI=N3JFnBW#W<G9Gny13>*&SlXp61Y;NM7As8;H+3cQgqOe}L$1z61&^_vZ#iPXu
zd!L@lQu%uycS^hK$HJ*6`<U2TUi!%QerT9`g^dN?O*jVP;^A@ggp+AkFADpqn%nNe
zP7M8@at#C3{Qd%TY8H2&s@oculjsTq-A<vI2BI5StbeVZ6E*~2%9|$#HV)<w3tMvv
zvE1tfFCVAyXGb#y(v%`ImX8SC(aX|*Dyx)-eaNM#d%iXdJaU?8sj|lLiq@ec&p#FR
zeA!zv4D`P_U5Sf}yTA9IZ-RAYmX^}n+McM0J<qSNL+a}4T3Yx%efrr7Whq<wL737`
zJT;4#LR5ax`e!X|c^>%c#BO<h5foJ=pe2<1=UKQ@ZO61`&*J4DRp3ka)4;38OPs%z
zlZk>F$iu?f*0m5M8$2~Pzg&=%G(Q*W0VTr}Y$DUc)L@l?`%k=uM-yaf?tiPUamNqb
zr50(Rm~WB6d__x`HLt~DX-0KHJ@%b#0$V|}wf3i)Ux8Mi_?b%XKYwIUwUP4j9~k5B
zj(VvPrCtN(nwXgA>FG`83t5_*yPqtwZte6mUtL}4>+ART_fJeruzvbPOG}%zpLl$1
zBPJ%6mDn>6E-9h5x3fFFzdEE@jepM<1ePRk(!o-qPy-bZv*`uh0RR9TS5s3&m-2nS
z|EZa_#W1=uYw?ll>gy3u7`V7n$M*ZO-+uftUGw|O(ybKP_ZSz~cTUbOhmPkSJoACD
zt3vGpf$OL3(3j@Px9AFm&IjJ@TWV{a#ZA~bEr&Fgnh~Q8U2fz4N~5LR9GMiQrB8$O
zBXqs|Te+HCYz{8iAYPcFPH3s>$Yb2AaWoY4KJfU0&Zb_<SdnGe%FoG(;Njrq_tVp<
z2sT;$ZZT8;xl?H4CN=G4U@m600z1<84-Ng0w7y{A4@jG}hsWy7%*yEG%US5q+`Ers
zx^}jViCOdHz_ItbRo0|+#l`_s1zNl<o$^z17-$!WqX5FZT;02!D{%Mg=}E_aVu9vT
zIm4m9H%v<3SLDJyT$wG!1z09Ex(=QXOBuVZcfUUlol>|`6x8vxvDKx;pUvwGJr?SK
zrFppeZl6Kw4>DGZTOe5Rwd?Ep_V(3fYWGi1CT3D=O;u%*q4@a}h`yidQ0VASCypPN
zQo)E08GC%Z^9CQ;6s9I~^K?TTpwLq+7<N=F=1FChb|JZ+$JMB8_g%$B)~o>0hYAR4
zPOaj#jq&w!$4Ie!6Cta*$oqHwpJocws=i>yH%c+ynH`pj1in1IW!sgNm8Pa9o$8FC
z-Smu%hsQT^#{cnXuHyRox}l)~3k$0U#Q^dXe$-^Ta?~*`tFQyOyx!gQE8udzZ1eSO
zEHCY8k<Z?$+TVU`U~*e0U~*a2(9Z04+g#@P`uC&1IX`^Yv-7fUD|e88<w5iVY!tql
znZdTUbgjN^ozSDd6udD>7mTRCuBaxK+{r!(F$j#(nKe6xq}jB73b0kwQu0$c`s<q|
zv$?q9`R{kzvFy~$1{dl5)~J0Ie&!;P7BMk#B9)kfg$2s#)8+0^Z*Q;o3aB<_V5g_2
z2V3+GPQyxCTH3*(=B<R#*U#@YVq#{#Kd!1B92{I+TntJGyjigXemLLkrozKRcyZOz
zBL40Dcw;Xifq>(dRa#wL{T5y0xZwQOnY#W%p1tuY#uvo+yIkWlqK2p^$f#D%=tFfv
zo(^qoZP&NA{bdISi+vxLP&brqu?SS6kWr;ee={mBcTPT_j5S!+n47bB`K4*7i1_Oq
zZtZO@i_&U+@tI9ZO+K@8<m2O!CxvzB<~C=1MHXliU(|FN*c(Pl4TC_4iAczHi0RE-
zD<Wjr3|nFUj<`f~Q!~>kaESorieS*AEMe>M<g;%84XAoOUmR`#1KrY6oo4IU9VzS}
zhpa)pqRMby4k&Hm;$tPgJU-f<Q(|GMWpAffleV$4y30G?4Z!}#%*?V?*HWDG{$y-q
zBsw`c*+|dR!$V}<UoT%I!$Ql=M$*!Bs*aA)kaywTe9E8n+wtm&Pvh)JkKVT}%~75n
zyP^H8%KBb^1fqCj-&fXsH|Kia5|Z*>txfJbUR*r(G`)BSq=ATtXy@c)V*BFZ5w*IS
zoaJKyf~h!P?ku14S@rk_BwuNiR`$s_kR&%ZFDjBO3=seB!;g?Y6GO-DnhYWZaEa5A
zou^_@uCLsDlR4YYkt+Kdbp=yf#+GHpZ)9JjPk`DYPG^N$ZdLk~wQv5%FiY%@RN@`D
zWd5M-h10ywbrC=-R!z-W4`onmC_Pe5#Ps@t^UGRxMIvR4_oq>D4UtYukDI5by`K`5
zZcW!t%^td0-@-w~Ls%!VRh9|)t-cK!q4F%}nYuZDuy3Zs^;_+v^^`0u9tgwr8tNuT
z<)-ZItUjQTC=XIu1~uj0^k-dEpv1kLAD*~*CDsl-AQwJBPo`cj5y!X=3fK%Tokwa<
za=+=p|2{dR5)3$nog6kXB}?31tlCG$@|x1^j#YiMR4Mp(b(x=6h|JefUO)N-Ys++R
zQs5~d!Sz2)oe~lfDju(E=|5B{WM*SqSzG<?bN73F!PLpl&fJu1o^iUjue>7=ZnnA8
z0Vw2LQ?ipR_o>?Z-`e_0+0BBj#lt7o>Yhe-*DIsC8>hU0`XB!v7dMTK!vY_*8&t@a
zzxx7Gh_5PZa7{HZpfnPr?t^qB_DhzueC2cRd6~~qeeF@D3KURTUYWLYo#|{SPM=j}
zK?gitAA#G|89%iP${hKRwWr<5SqfE^t;j3Xn%n;rTv?_c8jR%^Rx7jiSx-yPBiy4n
zwcB;so7*+05lwo9?aha~9u|HT>E+PWQTUOXItPO_Dpw#TmOvWlxP^aiDbPd?Nvpko
zgO<9|TCwY)i24x7^QU~#$CdMf<`y<|FKy#!Yxp|Xjt-NUoxc~XD%pqohU(UCtn4=S
zDuucfxus4`fT7;-;n88(&5eP9!N$6=z>44o6ANL3m(lOXV;y_;ZwsB)#`2n<*AbDW
z%b1z1_xT*1T6n{Bb&CrMMz)h(63~u6rdlD<(tcuL{dnH4I-dH`+y3vh_0grlMvZ9K
znPK2_S!n3`>gwRZfrq5Ot&w<EY{M;h^zbdT>wr$#rV5{*QHc}%_YV*7w*ERg9=bfu
z4=i0%AVdo?aWn9Ic$dmDW6CTi(bR%_dPGQ;+TADVryqrnRQ7?nOm84N=U7EPE*cYU
zQgQOE(jNR)epLCY>cCbU1I?|?&xy%w&rh!wE*sECw7IT6PO#=@WZFkYMC_}P`l|;Q
zXnc?G>G;WBP+R+*VF3?K6Z_nt%gMMgFby)|Tz5GxH%$0z4-=xDrRUV#1j#6zu&mV*
zZ8bGD-&~s?z$~6m%S+mV=G!a#>SAA9M_+0mJazmBw43x)J|f<=)3S>m4cCgvV<afV
zEBtDy7xKM%`i<FcNik<5<ol?c$FHe-MYe9uqAu3yF}FTwZD!&Z39<C-eNsM(7irRy
z{?cEY1DVwBI=0i^IW4^pvv`bPXZ>V@<?}L_keWTwR8lWeQ`+^T_aMc833iH?OYE@g
zOIPfqP9M?8HG$|LJMod~>*YZG&*et`*SDN(3@kbv4_U_DuB%})Aa5oSkvx8%&iP*q
zGey?3lu5dfXa~1*Vzo{r;u6+}R_*3%S^W$6>TusblbpR{>sdpThA>e!&!W_m_zqne
zEfJ^QL)U<hUw36mv`X^hgwdVbd@Li@p|YMs<zEJLh3X`tgL1D90i^_(I!d(~E!w|J
zc}2NzhI$lKWLVfyPED>?&X?HN@%;ae<Qp0?=2E%T)zuFt^FOk&Sv0J?Ws-t|0>{k~
zd%`zxZ*Fe>mcPJYu-sQjfQ1b&m+1P$!XHuK^vs{7{k#3m=lv<FW**0_(bJ&2Pu<Jg
z3!3}~j!vPcoeGK$SI8;4-qO7uHBZt$fh-y;;)Fy*s{+gHY-}~v)dI`Q22&sRembay
z6(4HnPppjbor|PS=MMDBNaBA_Cn;krJ6&fA+`QW|ngP5wFR37KVG+32Q4Way#$sdR
zeYF4g^lW?UXdfZ%IkWrejmKMABw9_y(7T!Zi@I&>ykP*^Z=sUZ**K25pJ8VUcuw!G
z%I!#vtdJGguv@)@t=<%H^M4ZMWsr{2Lx43B9o^`()*9L@R-5w{164Wk^giN&OKn1>
zY?G8fV=)ZK-gmSOAw^6=D2f|bcN$@aPq(j^*L4lb8#HVi#R-(~gqpQTYMLtNNdxA&
zT?L>A=lDi&`4<%c*0+2ib^R|11sdQC;p$FDM{5Bg-my(wZ-M*63gUO3gwrO1n3wMC
z#F-s@ic+1`y5?H!c^$35Zj6aa4ID6?x_O!B*`_ZHHWKUW`EhB<gM>3UA|v`+)`cSi
ziOc5HQg;)TO!E6osP~F;`$V}$&P;I&2n1p#J-VtI!$6>-r0Q@xnoS**g*|_2|1m2>
z*_@z{=wFrlo{gB*(SX$;&3Pd0=I<Pz0ps`&osCnYl)j!U+l^#f#j&u2H2XS8b)MSn
zRkO$MDF@*Wr}>}eJ{}gC?|nwDWHiox$kBo;uWv4s@I81`3>?m#-|cYWL;CqLm)r$I
zm14dFKYz6-E_8&B;=NmlLf`zt{NK*p3#M~aZU5n;pT3GQi{9ewY+6bR5gvJVM#|>Q
zYGf-o1INx$`tE)(G91y+(b3Mm-np{I3+1ayEGhN8#*%K1&|;TWXx??$u@0y`7P1dD
z;=8!czBImaJ>*PDLFsrrPuqw=i(C6+gowLm_b;@w4-q2i>3NfpnfZpM95=h(ib#jG
zR(J+i2M1;FOj<@pL`1~m!oo}<TB#K67ekf6C@t0NxlD}JJrA*(76FeVi}fl2T(N#W
zhJHpLKUZ~$FL)WlbK@LBRY7C;P2H8Zzy`J{cDx3D>W!O&uM%n|ZhqtuRURJNHIr;*
zTCrw!q9m8w54;^$Up09q)Mkg5W+VYKt~>G)w4*VJP2FD3zpCG5`%)|{FP~6lT|Al3
z&5rI&{L!KVhw$<e2V?va_|w(3f%7)VFTQgbnlwv$W`^#Kx5qYr4JfE$VJ;Jj%4^yN
z#)1gLtU6P4m1!^pOUA^Ta$XDwM6Tnm`TSpYLo~CrZ3ogY;`KrhKXg&O4E~y!ZRea-
zStZizalfLRnLp3+_N?vC$}KE$lv~b==Xs9|O@AFRlhwY8QuCvkOT1cH#+ZASiLuG}
z%4`Y0m^v6|c)(X0S>RAPkK{eMarNK!KaZsY`!OpdKbYlNCqA_<udK7N;$5|TJlkvp
zb_feKln%O+H#?c;rx$uojLvpJb+jF)k~Bh!oy#P}uzP|pXHMUGa}`LKZH^Z@Xfl3}
z0qW+?K13JpE0l>Em3t=g($eAKO$+OzkqYq-f0rxYsF64NfdKU5Zl`m3PjN^kQAMTN
z(eeJ95Q5>RYJXIP#j%ixN{%Ma0*1R+xu;cz;?}`2nLO#<A97FEj=U$6?;$@SucOC#
z*MF+3v68tL*|rS+E$|ep0$%(!;~vl1=Y_p{anU};I!5w)-86gB$z#pmEjOluD-t~~
z`qmD5ch$SA)c%(vCf)J97yQQlAl}i+f4;kWI}_PGHNs-j5LPOIzV>Bw<J}Dm?fP=x
z&d!6oNl(yq`}4$mDU@J|AC+ebEusZ9TK^mpuvCtCye8%zYXD!v1+1&Fnxv82x?eB)
z(^^}b!qZQ}r8AWcZM;_axi}54pbM8%Q+i!Sh<=cYio>-w*Zuu{asVS2*WBQsg_G08
zL@wVO{j{;MvA(|kiOAO3+1bU##cHb>9PY1U<8k$;#U4@ee*3#@;JvoNeyBZp)p$3d
z@rnA&zx|YNtu5m&qK>%*8KG4pf7=$AR00iUml7Vz)58aLY^4h}3|h`ILXq=yvs&uv
zClwSA9nQq{R|}U4o{#5aS8qhJ0e-|G0ki@>JEbzLyQgj6bo?Hw3^!QYICzA49y|nD
zSSI>E)>nCIQ15KEx(_T)K6y`o3pQ>ZB9<yt3Ok*)*ET3+8PtPjD9B0j^R=1T+6gJL
zIXQ%x*G)wrns`Ttt|vNQ3@y)>p|E2VS*C?i&G`o6_+(sXzS>Qav$O2ebJhuk=c?Do
zZX_gz+B%J%?jvz%l5UyaH!^+Q!ou8qsGU9fzsnByzk;ey(Jx(<Nl6!#zhe&FCGp>-
zzO%IpRsw@94l`;EK05z$_50UqbNY9>Z+`w1dhzFM@@{(TG_7@&IMG0)*2%M8=;8iw
zR}$QD;@edN;-DF^^3T6f3aZuBZ`a65?X|3JX_^1?M{v)K7(qRf1}U!d_|nz(V<fZ^
ziN9aif^t}}e?GVs{2!KEeFq3O?-TNS^iCMvyO4AIh<dh~AyXbUj0B=DrSG`+y6&RL
z)7OiF3kwtVy{oJ_)-DSD^L?tDGMj{og37hiC^<cglhFv?kji_(?*3?oal+kBkLYAC
z-|7VYEyj}GRp}-Wf8uKR=PkUlJBtxJcaZPO1+J<B9n@&`sbzTUMF+1P7q&lDvHzeH
z9dufd)AjtRC7z@rE-S00=sJ|%XQJBIv&6U520gIPQh+r+d@cK5g$38|mfKn`#TNeW
zh;xXjI>~aXs!jvz6BWf>`Km{9=`pjm@@1Wkz*hx}#f{YmaV?c!jz)_9RT4kx({%K{
z=V$B1#4C6-USVRz<mHkT=94MM#XcQhCEBy)4oHW02nm^&(trFA)8a2V>A_Z!m@n|M
zFcP)Jgw05GXJ&tnAcT#9@uR8=u?z5%LWw?)`K_+riDiFzsC|9t#}<29cxw&)+xt(K
zr!D(_yj1C(>xqhTp`fERh1u@5<;hEHwYJ2U-Ov6nL~NNNYYpdX$ButLqbERIA4M}G
zn{%fC@eE-y1y2u9St>uTo!`+Vvv|!(*j<A=#|kDUJCJ`JPx`!NGl?G8(#TSco{27I
zR#c)mK49zllWP`p3qQT2NXxLm=|if(%K=N-)4w8x3yqaWd>|fPNPRu8P~i4_-L4@r
z%Ds-R?i-hXepdhZh?<%@3z{{RRS^>M))4;rRRO3_wO`F9jeO^S(~COPE$DGGUKSFP
zqMtwzvwO8Ky)-&mz<)L37<l5gBFxApC`es;cO058!t*Z<mNr<#tD1$m+vvF%aDB~4
z6>#xJDZbEupmFvNfDcPU_hy}lrwY7TU^L8sc(_C6JMYnQXJtWvRN7d3i!jsNuVptF
z`aQ_M@hHRM?B>*lV*Y-xhD7!}(c{CvCbs4W$55aUM?+m_I!<~@x*GKk)AaPT`X5`}
znQdbg%JodNTOtcayxmmgeBsRe^zOD^wc*RvC9E2@f@It}iQu&2qwyU<B-qP``KY(J
z&xpiji5=<hclel6zk^qAir04Xr&PgyI;2^Bq3gTr)jy=guDYgs=nQz*km~+9k}A^s
zQPvyvuFXejYKoPO9h4HIyFX@<kVl)@vBBVr0y+ANWA*D_<CD;(_FIQ0>?_@>k-0SE
zI&&a3&L|mWcLE@eTt~m)n_(MXvR<}sJu4x|uNS5e0=D#Z#aFH*=*T-;a{S4b9h&gg
zAq-{qIDiejRU7LR$;m(Gu1@}6=#IDP-OXHY&<G!@Vx;>pFtESfvP)a6_U;L1=ZHH^
zxudD^7pDk#0En&v<l(I;->i1U;r;3<^ylHxH`0t&)NEk=kB{b6X;rniskyVeGpNVd
zl(X$?S$3fg)auOchpl#wzP91o#)?^$CX###9UYzcVlYXpR7qQ#K(T6Td;1%MIJ2<8
zBP_i3_F7zQZfcUYX;dp{1VawL=&$$O(Koa1eR5#O@akDAMp1lD{fvkx;>x8%+H1Iy
zKBgf~?A}UL*`mjEc5?iN$Ny51Zz&F_%A>U^3-NG4+S;OTo}kPUKeF<({_Ku$h?FgU
z!AK`!B>`9O(U&nU9a{1o5NB8%tmdw^3q24M@j4+m`&dx~J9%1obb=e&y0))JkNak4
z`_9e)ARL5XD`(@Ty5gqe%d5H>YgUL{x%zN1hn8i<djrVv$!T@qoG=gwxZfg!Et6Ic
z0(m&rbqrsdJ5nL-oty$4Ev#C`1pJ@fDy(@*m8x;=|Bkmb@d2>0gB6R^cAVhVM~ju!
zzI)lZ)HGQ__j5B25(-#}h+QJW6fh0-^z7^%j{cs0)79Dg>j3u5Id0l@d^|A_$;~F$
zE_fq^3r*WytSvsXX(Y4w$WtMGO$~*JAWX9T+Yi%Y%UxQT5#k4iFwby(EMhOA-Cfn`
z2<kvIL=6e}<xSC4@TM_|1|>o~w<)G|BdxmtyLcAeM7W;$WW>>)L|><O+6xf606|jX
zqn5<PTW_Ka_h!$=MZQVQ#A@Zqf6d<zqDdwlC)r$@wJ{#Pe@;WweNR%jDWg)pGgWhj
z`T2WVkpw0Rau+vmQ++$&GCX&!t{0a<)YeWJ*iupga|z8!*^d1yVuGszR;Lk>OgR}-
z#6tUQZ%?uK6;Q_^ua^*(owcdX{(qqR@{KjTiW>|ptOXa%m|z;p;vVtCy5vRB^>85d
zlq8fuPAU7D5Ag<Unw4o`I%Vb=8t6Pebz%(obh?$AbQzA*?;FX;Nmx_`ex>US2TvNP
zY`gFjOR@JXS$}aJryB=sEJ0qydpteR6M`pBvdA$9pZB4OrBZ@;d*yEqBXL+pO*0Ip
z4(1;Pre{z)XCr7a(Xg7K63&)%m|?LX`Y5(4NLmGH^&#VlIO2x&$}?!W0pO3zRHwx_
zi`pf>LJ`o4WH58f%YD=$=a{KUsw!rvg(f>A$%B;<;MFUcSyyub(a?B0XsJ}pcPF*t
z>Ekc&OImtn%|S@4Ws4<x?o7B?tZ&2+-}|jnK+N<<f-EUo^-%6gz1API&@YA|Mvslz
z9x_{nxN^c!3bptdf16Vu{zcG=jasO6I$q_c{Ect#G1!WSnHb`b8|CxSO_DpII@U(w
zQ0OqdkL*WCtHaI-!;`K_pc7fYP|yoC4f(-|4~3EpM5aVFx)k+tTe3W<zXCzMWJ$Om
zSA;^26a`g*Fv6smxUjedpxDGeOU!~-k;EW91SAHD^l_w#s}+&YaO5o^e5gQ^Ls8eL
z4n{;^vz5b;?7%TTPIY0XA)394M9}JPzKPGTzIygebV{dGCvzX@FhY|1ukx<1kS3^h
z4tpIuLF_j>WoTKMMMT1F4;RN9WNd^p6~wicFptQNBvU>I?f~}o74aCa@`Ere=#b#}
zMWq<fb8sa9Jw)z3tGJd@@L7VNQE52!N(;>s@Md16XmMS8F5Kb#MEsO&8he<(%n*F|
zvZKQRxF62eWQ&sCv}B$;!dVJ?I?@%GA=J@<^RvS8X`-}84Tt+e;(#vRAyY)_hBr@c
z6z81d7&1KEd>q^)sh<^7<xF>7k$Un$4W7PFgLBy8RrATGoL1>CHC~dIp0p5(4+KNo
ze4bN{!-r5H&lCa2b~iKwD@}o=j9JL*og0VSJA9k)ukYluCKLyodY+54D(S^pNbb?o
z2=XI^X?oyyg)4hZi+u5!I@DN9zO^c_&FoAw51VqJxRFsn(c87572+j#P=rw}rle+W
zPcw@>AMc0t4&7jkB1AF@9P`)ZH^tHXGF1!{If9O!<(;5TSWt2FTW44Y_V^yt-6sj0
zg{i$n3WEtE&0>-fKI_sdRG{8c?pK#w!&%WxyA&xjLQS=P%f5;;A18&z^`A!26O`P+
z?B-*e6mYH3nWCua!<4XW;;5Mfn1Bcjx5sNz0~7VsV&|2WXnaVC!%@p+1MW;{+(~sZ
zO2Clps{gA!LIMo&sxLPWPf)j$uz)$JK=a3sCz!7haLyYI<dNMR0^}IuP3P|dai~Sj
z<ln_8(b!w{W)!Eh>iFHk#ae&Lj&8t~!!V=)UYjAf9{eJRQ-zNA&VZ`Fco83}u0H2b
z5<K|_Emx8r-S~;|F?2pU#5EgYk{69lYx7fB@j|FFqf5YzZomRzw8)+)PaHrClK;Vb
zW^7bbKPS1Q_jE*x@89Rv8nFKO>DO6TCvE8vf-dGyj`{NJ<YYyDcpf4AZ2xK{mT)QT
zKYsT#j$~qi`w)8H`?HoyK1&nBr^`0!T>>v8i2WUAVOV8RfP86>Q@ou?>0xj63FX-&
z8=LYQ)4}JkhM-?P*xghQ=tVPy|6jY@Z%1x8K2V^*Wur#$)B2iXDm8jq?B-Lfh<PS0
z1dLOm1u{YDF+ZBu^XYu%-!S|pyR>yue7X(SCt54*3`n2>YQ-CM0XO4^B0s*I38rSC
zxE@jai2)8#hENZ0LUEyE0p#T*!-QS5LrBAdezdcgT3Fm%MkPQ$iedQF1<>+Puoo(P
zPB1!b$&vn1#w&9ajRaSr3<I(}@a9JATSg@3k+&!UeJ#p<OUw^hU+BiyOb@nR!~{z?
zMAb1KO8H`YQ89F2KN(r?x(QZ4M=mZg=cjbE6ffbDlqbp2k4xHRE6wvmK2K)Rgod*G
zue8-Nsyizy%Ov6EUeMm4OXZyIT`$hi^Tnhx3F2p*FF|n|+NrN2KpnP+!WpUAp$lgx
zKa%n2(4MG=_zS>hs}l}D-wZ?A{JGdmtmS+F#9f~K#jgnUO$cZ)f@xS``x%w`B<>a&
zzK8rN>jE{18qK0=%DBkB>kYr1<36Sy7WVR$%nZem87IUO$G>g}$%vy`^^@w@@)beC
zdv1<aek|B(Lgjg^)VScwdBdKyN6cLKNiK(!4E{GkLE!ElkX&J+hOYrn{PoIL?iQ%9
zLY&9Nch6#ePx?laft!ayJ-3dLx3%O+*MT*EUwGhHZPJ3bPjE=o5|k+qPGH_>adoek
z+lfdCyCe~ij*7)MQ-=l@xS`HnO)s6p`-f+{MWxNXgO!3*tQtvtNIKyo5qXNItu*Ps
z&m1)h=EE~vGXyephH|6^ju7zvm!4&Ow{>C~7xRkiM?veyu5NjXg%ABho(*>xhzU5n
z8tS*|yP3$k^m;w<3~Gb<7sBz2ZyPnd6e~UwTjw~qDF<*H2G-UqiAHjYwmwXtF#$dg
zS;G;(Nky~AlxR)k5W8OTw~L}~J3le(KY9_*dF|kIy`_@3P4eMs8v3jZ<T^r)xW1KH
z7V~vF>Ht%0>HCSe?&5&Oj*g-k*q_7LEHJ223gw#$J*b?njST)z$P^)#S1WmUmVSMH
zaB{wqc0REE^Mz@8faEjD^Z5nG)vE~bFpwWOQ>2~c6jjUhN;7Tt3^aUA{?}b~4*H67
zb9u&c_3V`Q42RyE6ewmGX%yG9{OA}NN{jPZ3{5Hed{<v-H(D|X9$f4!zP2r1rp7V!
z<^+!MRAi7%6fXBTe5mh*0r>-!AirCj8<T&`3^pb-_I!srNa}oG$re-RVTRKxVzynw
zwurkFu$0388EQQ(KoW|ZgiCL1@sRkV{C~SZT^F*K*Nzd0CkROS-V7t4pw#n~Ovmus
zVOk{9FJfeFc&0_`h!NkYep$M87IIx(Lv}WiTkqnzl*G-Rw_bD}#$N~rN#=r?0r!lJ
zs$xO@95;xmQvrjR09o<7ug*9{{IDbopTZNGF2GWj8&k*IV#EhM*mf_)#k(?*xC#;k
zKv}S0%L*cmDRrk*fdBAQzxg7l!l)21t+ON}2X9{f=Uf8=+0}qoxTu8%lk2z=7s_TF
zc3>m_`3|CCg<M||vJIdi8p&Kq{pML9mL654bb%zU)?8ekq~}A_1zXO4CmLvRCwW^t
zM}(q{EQJ*RRaRCFg*w5=hy-thgapPyhlV*~O4~(65;H|k*EL2Ce%huY2<a;F%er#&
z%KY;fL_aQ~>qZMs!nv`h5tQ+86=Q9e3gvZF(#zR@uPCvc7&-~e%<^(0-}OG||AwLe
z?C(4B`<~&(_0A#}crC%0eW4F5FL@_XDAw2oc-tgVPUxc9L1eCC<axq!K|Ooe@CjR4
zHOZGLm%{mB(K3iu$nv#6!AfpE64kxj^e+<*5{5VLLQEM>U&Y*Za+k%>(c||^xZDg+
z8I2#zUrCTr+$iFcv-Sq%Hqk35100wRI-=Yv`n62`<J&00&QX7x(aw33>P~t6+v>g?
zzPn!6=7;0xc{UvlH*H_CTET%<;Vdx`vLNeASZ-5|A_*pp;FARhjElJz2;6<~s`Yqm
zBXu=G5)$U!&=(;HMp*|9T1dg?gTXUY7lcy0H|3Wf{gFnt5y)r77d8{GCN8Gn3H_O#
z;5MW~?QZuikNf5kcz~?*qlc;#n?ezCP!jYZGwC5Q=zc%Y0CZ_g8H{4#R(^><VZ?ic
zIe4oBlpvYwkv1(*rJhBEnFy<eI$@#Pe1h|rj&#!?n6_phd&YX^&^L{Pqf&AQOacvY
zr<qaWyik|fhe_ZQipO5ifGcF7b$WtR{hZShq>0&dIsxr&FhXr2H=^K?nCS3dg*zfZ
zMw-{>Dz_ic?6ANCOpL)f*ax|KLp-S<$#&zT0L#hQI;$eOgU-72tx)tqE-0El4<+a8
z^o+0jD+8c}qTTH-?~?lgHG2-PFYw_Mg!J%7s5gL|`o%M3@(}VLrQ_4dTcq7S><6Cn
znKxE{b)2R~Dd#=2H`?HhF{lk450z6<;CR><O49@3Dx^r%p3JG1%FtCz+ak!<VL&YK
zNrcVHN({dyRuLv4{t{xsSdzme7=#K*)DFriN!F5n5sar)2TKVmu>9dwb(!uGEDh=%
z#-T4;AcJjT0Bs_A7MOIEq>~k38EUHh7wO(%!g5uMBS)EmB^6{Rjj9<Mp&7MMMoM)X
zSP4Fi9HlWPTn<5}YB9*X^lxg$tdq2w4zB{3FUe<~49Z<;YQ@a+{6f>7k4F9hcZ7qy
zjY*aJa}mh=1WQ36VVqXqP{$Rd+32GXyUikp#Y4>vrGMg^o|rWIu4?O?lJdPsM3o#V
zwBR@4F!QWLZyII}s(uh{(F6Z;Gz(k~WeSNp2d-*>Pqi|5aZ8nLS7Bx<I^q~d2TxW6
zAR^O!jZW%KFX+<Ps2Y}`rcN(YtfdN4Jyso<-nEiTmr>O9RZy&?hx#{GhN$w(i!-XJ
z@>DCtzDdhWw^P2p8QU6JqJ+=>`~3JA^}fq6UNo($I14OARuF(mO@|%kchnBO7ED5s
z0UUb}!cf<9k^a6fKHLOZL)V+&+C4GTR6m6nheo`2!%9g|-4Y&tFG!}<uPWi)SCKOf
z;v|uPlCYqJ9~W`VoahX=z-AR#i-VJYYB7U^k>@eUuqR6@EF?qw1(>Lg<Lmnt$nd@q
zayO#Xu@PY9edGQirxxEy%!8rIPNJmK6rl=UP#;bT&}B`~GaG)tK;~k;3c}V8?GH-<
z8}u^e%Q2b;+r6buh{U@+?jDlj->Piru7E+YsCa{%a2cWbY$;bwtot7y2$&-=i+95C
zKEEA~k#a;Xhp9!Q5h9(UP8iQGLxV&SB@q@T#lIgd!SxE@CZJG;&rA`@mRZsJB!z0c
z)xlIn9xR~|Nu$%6?Ti|gT}e3fGpZ!RiA-q{ku$j>&|9n%CS*`0)^r0WL;)UxK>Qnn
zMx=*H#5ic1P39cEOcxP?_!)teD;_`x7(`Pikdu$agaje1`#l!1Pg_!-J!V=36}Fw*
zl<3WjBYV5)gntu1j7#Y^pZ<i0$jz=n3?szEjFKS}x1YWalF+oNBu>HlfjI#{1>RX>
z6-l$RBCl7bfoo*@REy+`n9bCR4MNq69E@6_TbQfp;Q5~4zzkniNu|(o^v0M72Ysj=
z4EX>zCrT+4hrYK=j%K8E##AR=ud+Dl2eLEFMNOr<f%JFpwG0C@zM9U5VeFA>vQqq{
zG_rJM^z0IOR7C9K5c=R@*zd^Ni*UHl?`Bh-GE}!Y!^sC}+JhXDq$RP_Lv)Y`*@l3y
zv%_Z&bIc;aI7Nvh>~a0+AYlGBLVgk(z5-(1mkFq67n%AfQ@(1IOzmE13K~hg4_0uh
z6|{J~Xvb~+$d9QkL#=3hnraja?9MD+EKVd#omz|nTHy7Fk-)k^k0W9sEQOz$4#de1
zm`VS}9Bv^yieFM`ELUQsq&=;wYCrtB>MQhG!N-CrX&xxy=0lhe2hc}&3azJRejZjH
zPG^%$uss5l{Y63g#YK<@LVW*hTq=V?SD2C_r=CjY6C{~ROA%3Ctuw&HFX98qhwl`j
z;3@*~N!SP)Dg-y8K^Vd})=*7JO-Cgp0a*G9_I|8<VBs&J;zVQ;iJT$iMlc-UqI=x6
z<pw7TDFO#|&%a{7_@WNNt`ZZDbj*K6p+qUuSC~OAyp%5^#%cc;5y9WYyh#Rlwkv}B
z{qnOTi?WR+<`nRexu0>6L3D8msOkww?&GO3d|GWf0#K&lFg5x8Rta%yXSonNAiNCW
zY20|_U+boX6fo@;LCJtoG$uk3KX44RfPf1(7-67~VPZ7``5+K%6`>kqucTCcC7twc
z8dt!|OQ(%`AjANK(Z(S_mlG~26SqACvbMo#!69LSXUSO0&d<ryMp-E1hC7n|f!#>>
zO|r;oyhH2*33kG^c)5{*R}=}M8S-pD<LnH54PuiuoPDedkpp_Vu<B+S#$IVUyOeq;
zW>U0FL>xy-3_w-$L-7J0Mj6Qwdpm{_wK#wpJS{4ij*%JaP=+kTL;%qsL@QH{r+Hu0
zzwgHu%Z_@6W<8TTzb%}FgN5=HNg){Fiz7(K%D5WvsqQP7ND+4iWFD*(hIeERW#Gwz
zr*=@~UJp{G(GZv)tGqrE4Z$W%vQI*GK|-tq+w)fXiZu7{OxD^>%aB8$xRu{EFrG*r
z5VM%P9GFmt#jzNItl{^x#g%(@rhCNQL&uUx(1i12@hY(|sGAHB$x|IT+%&7c*aRu{
zd;Tho0&>_(Y;!_1kcMznBYbjn`#CgF$1&uB;H8OT_kWH!6Io)DV<hQg^wF3~wc!2j
z3G$U8MnVqi2+zYGhPO&a>f&ORX~FDj0uE(LHsP*EMo4x}6wy1A7Jp?T#48$eqZ|}h
zAvlPoj1sj+kiRe}b=&Wi4jMrsCf%NCaI^Y@p1w0`zNJ}2SN^b72;DbHDK(5uJRm7E
ziESoY=^#(*mI;paph2bQDg}wYN2`ofmOh|JSMK|;hhPk39vBqfP8E1Njv2CH8{0_-
z?2YS35jJ?28k_(pI}VR@x5ZMdYn)PakCk*pQ%Bi})GpaWGflmL^n@~u`HL(+*n$m6
z`qn@$7ng-AE=H@9iIF38L;OX@9a)6CRpn<IVB<@SI9LI{0I#9)9oZ2r1<ZFVL9tDK
z@dd*f8tM)2hb5ZrAaNLc*0p<rV+H&NuEn{XzV|<UPv45M9%R90BZH$EQjVFI9*sMP
zPmLi%W;6;lDh+o0E=2|xks6$0vc*FCf|U&7ts}za=U3g@a_v9;Qj8mp0OKHI4%3Om
zXUPiX_qpe&mWSe&@C7v^5Pz<sMkl$c6q3XELs(CwMM#EhHaSl&DuooMl7xi9f`>aP
zC;y#tGrX@@9vB~^7Hu?5`--B8<LyIDX@k;!Ulgk<Q5I!Z8&kUF+-s)xNk!$Cly4Lo
z;(lh3N`y^t784GuYLd)X1wLv_V>b%%ZuM-@p?!&S9HEZbSVb-?4pfvBcpFCK`$n?)
zE}WkA)KMVMFLA-T%hQ0M`|>Zg@>~C+(D6A}D67wk4vk4p2K0(Sp@V$?#EYb|#ucpa
zlQL?ss{@VPKqs_+!UeT!B;gxtBIw02F;SWjbn@BWmqv1KsbY1pU6J^<+ZR1Fs>cJ0
zgwV<emPPhzd(vE>+>IpgV7M2$eFmDI!D6%VI7#myeeo*-a;^`|_?5pUN?VS0iWU{Z
z$sk}|Hc*w&8>y;~o(VNT)|c;z0?jQ1DJwR$BI!{KC!U$WHHx7{{E&$Scp$LaOn;8F
zz-MA`dJw0N0xjV!=!a&w6WCbLNMfIT@L^_a?FmDBz&l_Bu|M}T_9m@_X&}|41r-}F
z8pdr46%9F)z<}D+JV<-+B?jemh~cUxYCa>_)flAr4??5LRhxly(|xaDMg%8}*x*)%
zC+-V~pFYZ3Qp;yJVksh}G2seq?;8|_GMuyO?rJY5k>}&xBT^2XNmZI>rV>mR3tSzx
zB@FYPB^nMjSMI90kS`yAjX4NwXxupA*32{w4+x^2DXP>}AqZ{!qPW}nt6w+S)$Qiz
zH{K4=k>)RF7;yr3hWBRJ;ZP|iKH*E?xdp{C$CFnQ^e-*wl!2H~{`4=Y3&*VL8U(1i
zm7Okz4v4UQo|7k+BL}dM%Y|UrM8ME=Y=^etmK)XLLxtm-(`|98$`lbq-UUPud65ie
zGDI?Jt$ERIs0T*}Yh=lw?#FQ8{`mBRU2U`oZH5fDnv(`Gp6FD>EK!Lwk1GcUD36rI
zH|<;rza_i}Mj%D|O?HG5{7}ghuh7|+lAEJvaBrfEgn|YW%VMqs>e$ItWpNwB$BcKv
zC9~m>!kHFuqn3fE_rxnus$;5(v4Ye~+Bx9wkj#F-|3O5C_9$BsqJ$eL_u&qsf>@1f
zm9Pj2H(MXKI0_re)W@6!=99jzRF>#`S3pz7>|Zk9Dib${<|U7T5N3L>O-OAW(wpkh
z|D8MC+1dfP+4nFn<tt;zNR5o*jXuwiS}9PsJ5k^=r#pKS4`W2Pc93I!Vh9(jgf|8z
zi6{1G26b)~7Ti`IfBm{z9gR!0PB(lnNk9+=sz!XB4psxf@gZ!Y3^LV6Md^$LcS}67
zIIA&h8J$jarj-h%*CLD07k32Bune#Wpw@XXNy%OqXIzBS))9ziTgYNJY2Xk0l^7Zn
zeSk@PM_T41`=`qIL1!}a1P!+11E<7O4FXXggoTylQcwiZ6QIb81OFcY%0M;0gF!(N
zY)ZOQmYbTDk-N3Is}u7uKH}?qj6lX7{kR12(R2fPf(pmga23fT7f@0*&<>>>=YjLG
zxy{?#U0YdIDGBiRfRw8+8H$G{5wtw2Arb<8r7(pOngWRg6N46w0@4n%5Jo$t;cFFA
zoyq`Cvra2D0KtTqdNijslnT>G3?vAH2s8{R7^npLIYg?3IR#@<FWK6Yb3~9Kw2qX$
za{Frjjk_;aSipQ}(nF76NDi|CS^(MuI2&aUz*(5CLWNFcT$4lrEzg1wXx{&8@O7OM
z<`vErh$S+hmpkjba2dpc?xQqH;Oj6h<QkDyg-(EA(8x^wa16{=qG1RhEi>{C2}%W?
z8t_`=xx$oy+|)X>aYc*tsuol%4jj%v!hFQExPru)v_if>Et0i7eSI}Odwy+BtdygM
z07rq;%b7)7HHPiURU$q5!4Sz0vp}XoBo1Z*`gs$EjS$HOl|uXpNGFU|5+k8M!39^X
zFWk<Ey<72gN2uy<YA;Mrd)@RJCLj9EQH)lgWk3p{@%LK}#xYMV!&Q(oU0u|w7+43X
zNDre}DC9#yx9^mel$0zjY{OOBUxT2>Ra%13!VuW+3k3KIGhL}vs?|{5fqF#qi?%X^
z7C5Dz5b^g`xtrh_a(CEJDAWjY)F{!<R4NTjP@1pPYYV7E#0yDK!Jwg`A7mKnIJ!hM
zk6>g#0?<*AKTiaX4Js4^#f7ATsexP&uuMvW7NejGU@$Pf3PTrp<1ja2c%wBS3{!Er
zxDLiKninuvz$t<mN0){2fH96V6--_|sgTJxw%M~w8yqee1;`NQ7p<%HT5$Viaup0?
z$XNzrL5bkcLZD|GXf;$TPzf*^Kog@M3qUaBl%RzT+G5g@LqBUsHIxM>A)vm2Ne$B<
zjvyaMjdIhVr6TkTC(2cf^ET9C0+Z;L7U!9&3BfBt@<D4r^O4{<F_}XkNj(Ix{wkG<
zdCvwE0J+f_qX4>2CRO1uP?#i;3qjD!K;P!;2dnJ=HbBDtlwcI=Cl8~zCj2z;y?lLT
zb+)nTRbPLXno#QX#@EhErSjJ1w$`TCn~VJuW8JUY=QvzYB0$i^Fz3ZcM}VHwjx@F0
zDJbe6Tcm9^OmF1E<8m-n$iOoOO{bG-bfD;&X^wseM0^M-Uvg%6<mBg8x35<MUmqN;
zZ|fN0i-1;x%E4)>jdUoZAP9P0nbd%$qu19-N-9Sl1L%lX<@X-ly1y<XL8bCHHpV(y
zH@3Mm>)VhI%~_cYfa>8O5sugn;_Ha_GAvq;)?cAgkQ<};AQfsE<P&HyzSzUYEhaF2
zeQpmTK@uf__&VrR45xq7N6Tik(ntIR)ew$UIM_igXjI4+0&-|j9IZhmF#sDt8lNs2
zEG2SkP#p9fodQKq$hX$qZEbu*6Q(zXs4Tb)YMSBePzO3DlQT*OOc`t`ohNW51+D?b
z2~l+D46;S&*J?)hqqFom<VirTXvvT%UX6a7CD773fqD@FBFA!mQ)Bz&%%Vcf?eA#H
z&%C<1&WB7OFSQQW7@(WL&>`!ABw?fib`8eOfGGt#SCiA+EbJ`KTr@MYIDNs)+1Ib~
z)hhvpHa=kBqd>*b7(i8k<lwW=>+MFqj(QGVfZ>Fg4Ft5NPV;qi9tn+X9-Uk|H8arH
zIWG}F?_dNeK=LuwgoMm5x!`%CZCWrE5IaPCT`foJ>j%xKH^^CQ4(6A<gA-ObYGejc
zb)Xs0Vn3g^d++Wo2M4>)zxe9tu@jL|F|%_EC=WG=L=R<TAYojibdW#d>u6%3AG09~
zBs>6mTBTMH7~;DS8HAvHJi71DLw2B(bl^=G#FU&p($O?MF%M&5q^%h^?!^2m>JemR
z(a%0mCd7vTO#vmUa4@WBKM%B(Rwli5z0}d#{_-U=8*7W8fWX$KUb-p3mLtBdl&PW5
z>2|}>em1zoG$V`_x*k&SY0yP*%F&Di;h`WTGYnr1s<2$EB195YF*+ZpFKSW^y#lJy
z>*e6j>m_JE32OHC7xj;BJzQGfmc#tjDF>SyItS+WK!rfR0Ar@71=IrOhe%70I-QtO
zvmqtZZg2?#XaVR~#`T44|K)rgwI8XtUvS0W&c)Kg=Jc719uD4(4IMiwr3i{eKQ+Nj
zfPn|~Mw{al8YB$bm4SY?Lb-r=&_bXNkx1aMfxPJV9~fhZ1F678GK#9z5K7>qosISF
zP4zMns6jNtL3u*``-TP|S3X*so}cX<8Sd!W*jtBGbV-On14V_VT^%30TTnhTye7nG
z|J0z=DFsSkN^q=}!2kkk%L28n1=fw$xluEK=u#YxR7!(jZp`uY7ct415`x-Z-0W{{
zTUc2J5{&Yu*_w<*W&o87e`+l#RyET~NYkQqYdt0J>TbT8U$Hz7>P{<D?2V64_V<m7
zgis=A5G8u$6JzY5wrCtOeW6w1a<m4Ix&kspzv2+kLPl+Di~|*v>~7^|q+GByGk3JM
zzF-mRA3VRijm9NPgksSH2{aArb7(t63gH4|i<&@=w!^_OWNW}Qqy%|N#sW}6h=PN|
z1vP{m3<QoL7aB6AM;E3fCD5hlJ2(UMuV)ehng&vn(yi?W#l;P6Er_q9K1N;*xamNV
z>D_V=3sVVMU<77IhqE)YE?L-oe&mFgcR)!=877f1d|ij3wF9O^DM87R9|yUCrvP&Z
z`71PEr?ooM=?ZZ5k@t@hXee9>HKnD2zJMd7XY?eHe-+)V^fUm`ATG1Ifg+=Jfnlf`
zYkBT`{^*6Xm(QHBa<{WDy<RfEC5L1v4k%R^)5zmN-%*RbKV5Jfr+;Q=0`f4Gn3Tie
z<mOy^J2(q{3L=7g#zY3rK=;UgF!A+o!6?>G9!7CZ_-WvK`TFw8OljGb{DSPQ?KLI>
zV0CppJ2U6{wS4|Iq(X`pnFzG%CQ)g094*@S3QF+B?RyUAFW-9jQikTdR<DsE)q`{%
z=tsSRk2H!wNB?FDwx7_WMLy6i^oog2jq$g4T&#j`6;~**EdwP2f<voEkWVGYWikxy
zyxbp0=m<0ysQ}7|lPa_u4~pW8*m2&zLGHe-6U)HY5rLGW-?*V}awT0Bl&b*_B1J};
zQ9+1-;0mc0H3I^Q1Ga=#l4wu7Od&>82H9Ye5X%!o<I`iZwwHJsu<|6m%^fwIRt<!Y
z=IaEeLL7)$_(1v&XeC;2P^ctY^!OS|Bqh*$#Wje1LbfEXluKoxCE*eTEwl#I85k>0
zXhGML1j*YA_4Wyg%bMq4G_OO773~OzR)dnj+rSAWX58k1e%Vx_RBA-QjTsUe(zw%`
zt}p;C#HtZH$K?dH9?B5)KB|nI548uAMS%5YjD<h}Mg{W3Fgaa{MtP^?%Gu*)P4xq4
zDH(Fp19^hRAVmt)+Df$+l?K`${S*t`FW+0A@wBqFJ8zYqkRB7A5TBYF8XxEE>odKw
zEM@i~(R~3{5^{qQ<!WI6a2Anr$N||y)EP2pF}WHwI3h!8i9(6!K5Bm86*@{P29}F{
z2Zs|-tPX}B7*@!J4x~m$U`q5m57Y0!88jr=U1(C&5f~rs@TTKJ<EVK%!Jh81saLi{
z;Ig8+K#qEi1bmgpkM4(u1?A>uUoR=UedlgmeB!|1TlAv`07V1Ff@v{KqeSi*%#<y$
z7*&a+Kw78>2oE-l-g1mu3`{Z%0E0>k)DA`jFgmSD3LOG9k;!<JK}u<)bVsAiD~gM4
z&Y!(g@eK0O6Bsh~^e98~maYhD8R$xI$zU|=NdD%!x1+=HuZ~4UM27_XdAPgAMP;un
z?1Eglnv0~RmtD~kJ7OS^A>#Q!#8H;?QYN#4X3Skr$$;a4U})19T!20xm0Gki%|rmp
z4FVZ?fC?xE)Dej%)~GakokA=xPAl-X_w4E)fs^RR0R^fl1hn@B@_}P5G#(lR#(q)r
zDS`*>1pEf72CWDL3F1I<Cj4>h>j2s!L9;=?frx_JoE{W@=EE<eLSw>0V^bp26XUbq
zuB}2ZpqA9Aq-v1@?PW)qF^xfYv=YV;@`^QxtV3Z)Du%Bc2!mR#*MKvCB*&1ujQBdV
z+3xmQ#qFCp=_yNd(;y+72fof%NaK<c^K<h!Yg?!QH1p8XC~8ecv#Erbj6KlQX#Vx(
zH_y6u1WJXD)MMb!plvf~?~qyv0~h^ti0X$^IG2Dk0N_h>4oDYn%zIj%N-em?QP8!g
z88903a<rHNbe!o9IDsmoL7ocju;XZN2Yjd~CC)Cpan<&6MDrUE9>X;p$O1VWh#8{}
zAxVu;D5Sdp>3qlwsWPpY-lD@~4GpeBS7?ogX;d)Kpfe<5o`}76_i90Oa6n34TK2X4
z%Cfr;O7Fa#n?bD&QK6wBG1^}St)oLX=0MRTPG~SVfjBn0@d3?u9jX_!JO+ZH)fAc~
zgSkLIKGA(nVj@ZlG@9;BlETmw2gRj?OFGaWO3>^Ca8wDQm6K?j$im=|^CgRnygaU4
zsgfeOVSGY>CPf2~9!21AvX*9YQ<EdY!V9jJWaJhW6c(42-Q3&UgmHp?<3p}Ek_74j
zHG+0V{i_p#&kI^ytfT}Q7)J`Ei$G>DI7rcf1EGZ0LY+W+vvMhDOH^^BT0ukzAfXOi
zbYRk`kw7BI1?|^DpnrHFiN5FeFMj;1z>w(NYqw(pf?RFv@4oB=<p`;eu>fxhlYxa$
z$Z_KXh(Jg}3x*OMq0t2Zd6@}CN~D6Zv5DhHFFm;XQYuFGJ>V+jd;p+GM9@uq{rh1Q
z>n9JRxF-BG@V$IpBIQ1;xE&TA)IZS8M9^w=Jw1I%38}4(ZzSybzV4RijWbfvYn%MR
zii+W}>033g<I>ZL3JU`5oPPaR|LEiueyi#wdv9y7tEs1{OS}sziPR{SFCMjw_0Ljz
z1!WLTj!fj|UI_~g%*;q>eA6l5%78dbkB(ZLb+0V15r~$C#~XXPC+6mPBa@?7N^+tT
zqB3%_GcxmvipxeuMnGWJ4);xMU0kS7QgrbBTaTAkI1)8>`)=9Uk3T*7@fSV`*%d8a
z7?0OhQ{CP*D2JL+dbLv4)82a}FFzqJsIV}7WM~GdAaFl0K}%y#Z~I7deM545%){Fc
z*OqtC&&;%b(xRXFXx>Q@axO2x)i=yLvhG<+QQ@7Wq@0plci&D=;q+~S5GF>33UYFz
z!s9YhbLwiFBofeyP=<DMXBA|Nii?d;PJ8{P9S5GNQi5t;nI0><QjnXO^|GdRZG8u(
z2{Pb1YIk$5q2^U~e0*7U#-pM_do%OI+#Ab6om`LZCIl6U_L=BOwL&`B+gEh8I4~fz
zpy0~#{2aZOgUh+>hYzZ<^R8dJUOqTHr9r=8png=TR09J8MMXu?kui7gJm9kUo6D^F
zm#rIX+vx5z0$-onse972y0<1*i#wh-^}OtDZ0;{8DtU6VNVGQpvikKv|43W?O9%5y
zzxvt7p+Tw7o;Gy%47PQ3&MnV^#gwY#3oEO2jV;qt^GNTbl`ybCA_-^B?(Bu!giM1P
znJj44=H8x<zW(ZJX{nk(E{B*ad|ve|BP~0>;96(jAas{X3++izxOn_+Z(&J!QhM%_
z+a+(?8ty-?-Q1HAQo%@fQ)^p?P!4ueE8_08)OOB{&yfUwW^(Z5qpqE0rChw%*Hbsr
zH~ReXo05VXZH=w;G7>r1-CtBt92FM&wEFq%won26gI4b4OACwT_a8;YCKcuvyu5$Y
z>9Tod;q5*8E(JttG{Al^E^9p^JjmP2ZIS+28B?i+A_)ZMRxsA)R?X8V*K)G*GBUcF
zyW|)N<O$@13NKGAWM$_D#zb7ZRW?06spj*$8{Ul0j403zmc-`5a${Z3#tN6hu<^J3
zFIs!6n%l2l$*sPBU9vX+wzcKy<JXTXUxvGTeE74USv&b$FMr(CTHn)LySTIhjR}}r
zT&wS&?H*e~>vLd(fe8>A>CR?^mwRSPhEl20>9EFzH@27kEAPMFV=s)1H8wZ4OpGkw
zxL)z#-ouS8m{U@z!0@D^B|R-AJtg{a`Q44BH70Y>!dCyYhW@thM^CF$@^T&BU0+o{
zhmoq#VL-`&D{TyomtVb=m2owz^yb^8CDayLYI$Iyx3RTnp#MhY!^G6I^rVdQpP%~G
z|M*pE=9R|QHu=V4@9UR6lWPLh&p=ps^$kt&=~+36ncdBOe0uXVMTq3{Lr<%oL?mW~
zM5jJ`*~I1}dJ5cNKOnOHNAPt$x?LD?H}KohE)GI*B|0(8&RZcsZv4vlhP}0CN!3#p
zOj0#5J3N$Kl;auVlb)K<*4oRJqm8<d#n!^ylgf(dsQ94JnEIA3aLQ4!l>TjBS5ZM$
zR(e9!lL{7x%kX=`0L%|GidHETHomNh2@mOPZ2}1u1SZ$2R(H39!^7%c*Q!Obg@N(5
zSG6LH&k^zJ9=CMYkJPt!#%Cp^Cr3qkd;jde{F9?aK=JLz3tKx&6Jy<t4LlKnhNw(D
z*4)(AJ0pX3G2lyMowsh5#Kpy>#3eMmZe$A)Ef=rN_&HomFDjYY5={0@4mNf#EwA_X
z3_U8ocO@YwG$=CvdRbatL05M#B~uY1(W|DKsMPSJ=)fC=1#{z@5|O5>_tnwkpZ?AN
z?|6V$UhSL50?ATy!(d0t6qn0KT~1Ns<CFRMg;|;D`B^C=z1`>>IMSk(@zKuqrty}>
z(S)RsqSCCs{v{yK&^>ZeDa8@fhl#l{KNjd@Uy_$2kPGDCY{-edrA?Mdh#B;w-Gj~5
zF9ke4dfTf)-d@`<*f#=Nl)bar^yc-O#;&UBmuVSMv2lLwO`TE+c#60T=fQDD6Zkmo
z>6vN4Vg4m0W!p;_>IC#W0x>SdTN?**vP&c4;&O_j#%J1*v}#JWzA@I-GSEN#x}`I_
z=z3auW<o&l&;ING_oAg`$-M_Fb31Y|N)G`wJ8Erk8^Ph1w7#mgHM@AT>;{~Js>$Ry
zhr?5WrKH!_m!`(=-M$kZ5mQupZ-XlX%|LG=<r31(mZpLDw33u-S#R2_IqS3QZ^t{H
zz2$F#!=_XctiCs$L-lVl3Bl$F8s0Q^w6!<Zy~)qc>hJ7C##@ay)YqjZr)6a3zN%{y
z%8YxfU|P^Ww1F3`?5`?!Jn~s>YnKqHzf_qL8WoaWyaXN!%nV$)xwd%wPFYM$Tz=lw
z)|O7W49z@n1i<g&a=CBbyh%?_kBA7nef#Fh>H^ekc5c$g$L}Bi{u4XvfXWANb~d4c
zXvU%aPNbeDdo)cq@%8V5QLLXljN+Q`)4&hiZ#p>C6%iRyQF%`!LObvj3he2Vn&^ml
z4r@mv+lh?|^$0FpT{SGc?lAwSU-|flxkbhwKY!8M;_|5vKKrl#um9`VS^Mym+{K0I
z>v`$X0TBzMvs#%{w7VDJ5|x)$B;>AdZ;ao+b=T9y%i7}7sbgO|+j>?#cm`T;xUcWb
z5xeJ)>Sc<J?EDC4NB{ob#pf@c1%-OqJK9{hbn$=u&CiY;J^7^iDPPC~Hk_HBVSf56
z8?)2aW{z<Qxs6@zd4*ZO{mZ}p#b5uum0#r5s+#%X;Sg7+q|_V%+EJ~puXz^W=4W@=
z%HI0iWwTQWQE3BRqm)j$yfE(W=<8_d5gi(S;_EN0&Rxz-&fVS<LyJJu0KEjRL$9Eq
z4F<s1Elyufipq4b@j89l;`D{fnT1z@rxF_Z_Qrhq%~CHn_seEB$B&$LcJg@is0x&(
zNX#v`n&aZ`U}kyw%muT%52~dS3^e%i*kE*k&)KiPvbVJMaPz)(^B%L~Q!J2I+^O(&
za=U!uguktIlCRgr<0m3hi)J_)(6K6@NYGJeafKZ2?+FPAbai&Qc+t$)+oz|!h0+u9
zz4a&MH!q&EJaWwJ%sHEc<eZ6#1(<(ooSd1N^Y!&NGqbR|Y#S61I@~|n+1%@D?|tXi
zJwk&iB;r>O-UPXacl5U}ug!)#`#YU-^!1Gl3X6PFc6GY5+1buDJtey&KkKt!{nLN`
z-~Zd$Q;r#FSMv*sLL$Peo<9LcL#@}`xKo~zk=fSPL6a9PMS{m7mh;zx+&qdiuPQ}o
z-@Jk#YFk^ZoE;uKsstB;!`i)j<Bp4+leMLtm9>3rYR1^y0vHp$UNt$`5f>SJ9J<TO
z!QaWo-RjcG^R^9bLu<1WS2E(0l2eyAH=&f3`I#f1o_tpMoKWoDxpBqQCSq=6Z*ytt
z()llZoqhb=LId0aEAKv(a@iBZgJHfwXO5k+x3-FoiF;Jnu_Zvu_Dc3@`RzLvR`xdb
zE@2^|i9z09{O&hVN%^Z>M21LoBOsVDj8Ka6^D@K3f@Wu@we&5dq|P9fp><fLQdw0|
z>Fw@jXMXAY$<x^>IgKs7^zS&-^5jxpa<+}F{RLY~M=$r<+E-J(y|x$5WnazM5^liI
zs;PWrZQ<6|G$>r(ijN9EVd3BvodjM%dTj7~Z+k*eP>^5Dts9RV&tLja|Lgzr%j0Ho
z=>?DO-pGiLcv$reJRlvRe(<m|EVJz1%MP@+M?$ZiLr_Y>T^&OMLRMDRK=`rIp$jLy
zD(=3K%Gb+oC4BwmF&Fz_KhM~dq}1`L1`cobPT30=yC_>5t4kNYcCoT7%+6om-q8}|
zU`>nJ2S;r$T1Uqx*toeKId#I{&9koh*`9C@+D5ptaw{dv;T(+NzzdFUQJFa$u1K%Y
zJ}fLd`^9lrPcN4Mzw>67FJH9!)nESN|N7tli=(Swc1{6jY9ztWCn}?8c2h)g1l^VQ
z?Oa?=nqT&`bdCv#dD=cC(Sw^iSDhX2WM^;V>UYW7wfsRfSBUl;1It#baW$#^SK;fV
zUSUwni(^uw?ESdw0*#6qXdVgji+wXN4AXvbdbZ-`4YvS~(^eNxo;Yi3>t6n}QKqE?
zJFK#tOdn?#I~#jTEBjmJm3)z0uE0iyha$rQ%`TjDu($H{_qqS{$(C3qGXM`HHRwrN
zsL=KKS?J}5cW>{pw_(;ONW7)DD=;+V?ck6`qR5X+3wHNh+g%=+9&xznYIDvdA|ct_
z(bCHN^pW5F?(hEdKmPtVXJeADj?J&!FD>z~vu|v9i|%n{v6B6K{X$bGS2+^)=Bvum
zzyP1~=g%Mi@@pFl+q|NOn401(P53!o%D#1HPenbt`6%2q@LBb%=BBRfu+%^s@2@^R
z_OoC9_UFI;-JLsk6fE{ke_u>W_&Mv7=I6e;eCkweXjV_xSXFh|Km6lg{-^)_V;i&h
zk{ekw3mw7!Y4K4dTU%RTI6B&U;$l;6Z5%J0KYQWi=Mny1qg~_B32Q4oVWH0FPPhd6
zrrA54J!kfLSXkc3C=anobgwPyC(!>p%Tw{b-WjpcE1S#c=L*^!K^(q9o|l*r<mkRU
z4}4KCV(o-^`==ylvv#;`Z)(lXo^^2Xk4#Llusr$Y=fCoG4S4mkQA6Q#Ym;#7Xzmsf
z9(&o=^6Z79_O^DVxi5AX!9$knRhx}9^&viqRu*2DE?b_n_+4<g-OTU?^wa9lTOV6<
zYb$&Ih<I~*my2-u*qQ(HfB9cO`uubM$mrF1mP~|xmxDmBuY*Je9e5Wyd~JF()YtoJ
z;T3^cAyaA8gkG)Ipd0S>+QsqF%)~f*YnwA?FFLsR=9k{v6sZVM*6Nko=cP`L!ADNH
zSbExrCVJ10cGcV{53x&{?%$FTySx0UjIgAPpv;xIjfTcnTWdQ9JNwAcFdq;1=Z_yt
z`TW`!H39y<W*5ytbNU8^g5OB5#iJ=elJqZSBtH4#k@uNngL7z~s$^;7YFuhU@dFmj
z5k0jvF_xMXd+fy57cN{fH?s-~40};it5QKa#Mc`e8?CLaEi5c7EiG(qt#fiS7MEtb
zy4%j4x%i*{kN^JbUz~^x&3QYpq(k<|IPYk($I$d|gnt{L+5S_4QLLXljN+Q`)4&h$
z^{wsY_=M=}ob=h*SscejBFW7g<xd_x*AW_}U@a;<C@A*E^0IE?X_Ng&pPjpC)itxE
z(CXzP+4GzC+{_&xJZX}Ulu9AKo|EQiZnrYI2(GtYi8)*NrbTB9IBQ$$V?AwMTgzLZ
zqbEj&f_x$Zyg~$=-HnxHhsy!i3(5terEA3rmKLtl6D*BJEfBNhN=a8wx3^DVW>y|+
zZ&$0+w6%86OiimqyA-Lsnp=AMtW8~8vs58W^a}`b_idY8;pi#W;-ZhORsNOIU6FiZ
zWH>u9Auc$2a&TCq5;VPe78{<NmXJfJL=qv(?6lSIe*Rh0%Ua&%M$N<OuRcCHGQP0J
z;%)Bj4ZiJbYI-#~)XCdfQ;UUxZa!aq`1PIZ6?@wfP{n0;9$Gp&mzCdyc3WGXYHw~}
zZEk_`8X1}h4~y~k_La#bgF`)@KCaa@k3o%!WJ)c)RYthIdB3<I+|zBSqaET`KdDKK
zOI=ysmP^$2uNs4Wf=hA>Me7@sLf-N8@#nw&oqtr$EEo9=V89SxH|R-)GB+bNA|!Nd
zWEA>Q2mFyxQ9AW#N4>9;U1{+hfr#AWD6?}*i;C{Z6>1(=oDiSl=NHh@(xxT!6Jyh?
zjlHgxK8y3Vk1C!(@2i!H``0RM&N~i`4G6@0o@S0;{p`ypPu^^9K_g?lg{k9ToVb1C
z9&cmieo3*txqI!)J{+SaCg)-j5-XlmDmAK^rMcA1tek>Ea14+NM+-<w;OpDVV{TS<
zzK-5cDyq9W`(8CP6yLd-ckRl^<S2;U*U=T>9|Y`>%NEQotQM5qxKehLq;zw0V^=a0
zf_&Xy)VISJ<*dx5MF#)s!y_$SqkC(MiQ#@;-o6WKz(lo^BSZF=oT|#72-!;|g_(Be
z{pa7Zp}(vy9Xa~Rk-8^MxCm`L*;!dE$ViO~jTjpofpLGmq%1Q1%KR2vuMj;eFA5F}
z$}2493Zy&^_syfbXTSb3G&XB?O9r}&ex4m+&`QB2se1gt#o0bKHoE-o{f*6S9rPxx
z-1__b1AYCn(o(mU7Bos#e)^Rgw;peb6@0ZeKefQk+WC3SYcYYX?d@#utS=4^yI7i4
zK7X*nUIHdv`?UJZ3G4CU6*W(6V{ZQUAAE8BQO(lgJf+7(D|7yijwuQGoIS<Un|B<|
zEFM2^;mOFQ$&swYsJx;Z615JKin6n_gVM{!)<w`$lmhW}u|%ob-HP;ZOixS|iKPS~
znwcIybJU~aZaq%0ati`~{mb9QMdoj<%7lCgMeX$uzVvjC%}am8-rH6w_wJWo5A^n}
zsC-P|n(cwvQ$PRI#nQ2@t9OSlT;1MIj)?Jfab4e80}fhMTomcx^7_GZnS^W}8VgU$
z?CKgK#Bl!ZM?d>@WNh5b#u~0M@OA}dnWdh#-krVU&|u2-#SjPkz{I=_zFIUsQ|Rv-
zo)Evr7bv#`cMET4-+j6vl?x~OulPCTXJ&(Lk^m(I3PSIh(a>8dAYdBRzl5*T8`X?_
zJu4v6_kv^fy_(n0ns4Uce|Y=ZJV(ISXqIQ^2iiMUcGrM*4GxVtIr#-A=Isbo108MA
zKJE{1lz|+mIyl-9AP|b<Vxxht_xH3)C46vVv#u5O&n^K^*8n*qG5YzfTBVSm6dRSB
znf7+LANV>)DtPqbS>BaGu@JhCiuDNr=XQ2=YHD%n+?Qr2Kf74h+QF9bG?-+#wZrCw
z!^0bOY>^IXUYMTYY3DRK!@|&SKdJ<8uYj<$m0c-+d!@Jj$=vKD*j))v5E~J9(aMX(
zk&4!4+-%Q8WaVth$!GU!oX*+w_6&pcvK2lhF)U22#3rPMMaQiyEmOE=vZuSPr$Ipq
z)N*#y^XFfEeE#*zcCKI{zc9_!Hm{>`2iI^!vZaWSTtAPj&CN}@k{1>l?d=&d&_Arg
zWZ-E>`gvu?=i(xa&mMJkIrsI)me;R7gB-H2#yC1g-+j;{#+AU=F_>S_8Q^oMC9m(5
zJ6^mHlNjCB-Oiq0r&Ky<FHEnyo{{fkX+J$aK^b)7ot;28uei80P`^#jU;M*g{*{A!
z;K=;)&d$Q_)?7?bY*a+@)Y_Cl#SQfi`}iM!fAhv&xmqcd?v$03I$Ok6-DotZ_Eu(F
zGGbE$+~TGuwiQZMYtMZrx06Mgcfq~pFD%-gIr{NOpFers!jWQxMnBUt<aE*eN=eC%
zP>jpaz7w=Q4}FSsF+IKvBzk(4LX;R8Zg%m~m7=na-a&<uAW5`kg^-D1Hu<_bHP*es
zRGQA-QNM`9mXSH3TDh=L9~<cq9-1{dFHut3skMG7XX$y_9m_AhW(Rk5lvqKm$9aWC
zyTr+O%KC<u4}bR&<UcYvM4&r~wac@!-tKPMSsClA8yv3i#_jtz$}84bBDBU1vqF!a
z7NymxhaZ)n{@LFYmfwHW&|Xz|{n_<94Pz@jsKOq<EF&#E$nWX1$1o{+x(8yS6Jlc$
zM@Pru>(J1UtE+2HPR{D;s#Z(fzkk=!$@bavDuIv#U2J9HbGxi|cZ*=AqL!d<CjgcI
zy_Egm2K03Q3Bf4VPaZ~bP55cxhxob*m((}BcK2{@XlQ^4&!4|YOU;^_ULw_mg1;IQ
z8R8ROw6da~f7R)8?9}zLyP&*8m|BAoeXkqs&stT#?gsk=eEnKxa)@W(Wd9gUW%2Hw
z%{jNCtg^lB1&RVwEamO+fTPb$j0Sp#yE%C6Y^+XCO<X$b_UOSYv2-;nC(PSD?Crn`
z$c7VQ;Oj-#i(TA(#-?ULKM;D2mZa8K*Ek#VGXBo(k_X36UaoCz5=nWfK_Rh05zPIj
zd&|qN<`+wE-rv|0yngn~?!twUjzJ37QiOz5ORnXW`Fe%!>@4kWFS*%yCx)d7xA!QL
zY<<yq`Ly-xx=yYHFDoxUaq8&rfB!po=gU2<b?mj3aG!u6kHC!u7APs5j@si(FWJ~<
z7v{5e*R*O0CKGS3Zz!brQ2%I9V7QBm+t${`=-8ltkauoD=E}x8SBQ3a>qu&2cG}JI
zVqQY*SZ~kX=Jv~)S`SwrFrS3V5aJ&e;2E$vw?rv1N{x$_=G|;;lXCA2t)X90p@%f+
z`N4WZDyw>UFD4@LWzCD7on6ElbQ+yfa_?HU)!CCz9=%%I5G}26Lc^1@vx~rZ^!5y$
zKWFyjNwrieXP(}rlBuUgXROWapFDo1REQN4arNyNwilcRNBem~R)CF1l2795DhJJ7
zT*_aZ_H^>PR#>8y3h!Mna<cU5>6`^yrO{F;8JWo$DZtk!=cl9N6W)%E)BCyg1`?;x
z?FwQZYyR@-^S}7-|Md0mkDfVu@vr~>??Ymvz=%S(!q|9x|Nhw{$DdYIZEfz(FRe!;
zrX^(M@I*pzll<LmTN_?2ZF124UpoAC<=vC#ZQryE@VD2(eO;20Qy16QF{NZ_cFM`Z
z{d#VRn7dY4UKZ$*v^2__8z1s=G0#cL5^PD4S=CWXQ{xVo%`y{`!9(Eh?gAOL@(6Al
z9OG{;M|j!CM#t=OgwQ)6IDd7{!TeH6PAM0oluFcAXhRf*Hq&be<v@RTVq(0dm5sTD
zWkX{#dd`djyK&=&x4Xynt5=q$CPW-wW@1iASkfX}&^b2gY425arxHCHg5FQ7(W;h5
zM{UlZF1vS~CE1pXS<SCrTbj8wz3IofqF`Tt3upfsmH<7&N2AnmSYhs72{E~Rj(VWJ
z)$W3MQ^&Xnqez9g;#RSLSd2hP>}{>b#>UnSt*~(*5FjxR1O}0TuP69>__}*{bas!9
zc11;o`g>%)?OVa{?YzRE%jVXDJ&RHSGVMBQJ1)T^&^vWyR!Q%BmMeH1FBg~e%nZ1?
z+%anV`PnCT9)mLjo;kE-<MUdp^A{T18o)!&2nqH)cj;|&-{v~MzVEHAkAG$5b5ce;
zE-JS?b+Ng<12hY?szQvF=ihO*aP5CPi$)ZW73t~{l$0-2Q+<_Boj?EV%8jyl)~;Z2
zCp|nRAgyq6o5dgNEerF?N=chp-Q~+*##3??Fe8*3hIZOQul|wy*J;32(0DkrA0|IE
z?!*83v)}yP2PeP2XnD%v<&!26y%$_1m8&JvW!5T7%IoeK^zaDrj!c_g-J9s|i}mva
zzP>a!FOi~$t8n-diBxWO=|W~&;_|}e#`;qAiyH6Hu!pZ3Xg6E0MZ4yJ)M$XOgNNzm
z=6vt|ZCpn*bhh|~hYXF5DCG*3KyoYRny;htCTH#K<Xgu}ZdcQ9?1`j6ha~*n+5REN
zv#xbd`$S5#{q9EL6%Sj-!QmC;E3i3ffdS#Mxif2A7y~$OZGCNNcXxMbW-dJ`<KzXW
zv8iSD{HU|l$@s#nEX?rcNrT;~%Ok_nsI8Qgfvc{4-r(fwH8wqmT2w_)a@j6_V}4_t
zwLabT=FO2$FP7has-pzA%ZqHy(#8it>q|L;negD8AfLRwy}jnvSJqYzPpfLBz&xRC
z)shz#_rN`yc{?Q+&w99D^mj|%Tve%v-Gz;z)2H2Um3M##f!5b`6o&3V!O_hsQgP3l
zx}fmDPrv*u*vV_AZ$xF#%e9)~^t=dH@A>H&=uJ{8b+NQfNy$+v$$^IEGhZBe@T^{p
z?gv3Pd)zC2U~BExKR2|-Uk`K+O7KrwU)u%M1f4lMJ>zYkdiTl;Ot{)ochk|_uKroC
zOpL0lrM5D10(~7LC2OQ~ZQae{TvB4@{5smp1kJ-+Ub8)O{%++%J}6{*{4wk6=*Dmu
z+-O|_Hz>svsS@q6s-HY{aQ67(=*g7StgWpbu&)x%ZittMyS+_UTRWR0=oy%>aq};#
zs1a*aWn~fm-WLY?mLwPqHd0AJ--(`Hzv*icH`KZ$*RW*xYJPNjyhjpeli%FZVPj=m
ze*2DGEJ5ovDpkvyH)iM0<>q9~&CKty`B}MFf+ON)S9a+=F?tQUBOGRkX6(uRV}J9P
zfAhPK{^8TFT~40An{{PDq~%c5%<zQc+0!*oDp%K+U_K}n>W2CjAMb$1#%3HRii?YF
zZEfe~=ICcm=y!Iu!Xtu{Q{o8?HaIY1cESD8gEk!97mx0*0bR8}?-(%i?r<={1QY&9
zd@o<e)l!XCF*7@nnwI$J(WCkK`I3^dg!mK@Uj{ltD`&;Wga<^IZf{f5&zt>Ep00V-
zC`Ei7n3=w%s>bPpZDYqcn#ClZlN=M~9lSoXg1(3)p0>fs(OJy;dO=p6`FV>^Km6_K
z<41n>KYnFz<GQ`I27KM@ocrU4uch*J;Oky)p)=zwLakD3BsDLdCZ!}dwsfM0`5JUG
zmAvXnjhl<>vCn>U;pCSe{_6LC`}ZF_e))W5ec@hyp|^wEo1q!Dj*_rg?w8GqO6~|1
zL`8Xdu&e9R=p5qfI)#B$6y}w>IQb&JzPsXN<B^$IpcctM>kqf|S)a3eR8^-oP}^)?
z-$3u+VEgQ3KZ%L7a#2)3U{XW^ZyVi22zm?%L||l0S@~_5oWH&@T~wHN@$9){U!Q{T
zi=Y3-!NIAouLs(;Z?MbL$JNr-CO$c>qZ_Sh?JO;v{PcI9{L|0OPM-MU<4=G7vtJ%N
zdb+ixXJvUiEI6tlvj8Xw2tz65vbE*(*toc?vI!P?767PXq!#J@Fe~#j56bUaT3oib
zcf3(rrVtA#JyDnv^TE&l{=?sX@zoKtk3Ko|H-Gor$jIcC)ve~Hc57?fuC5-`>x^zC
zsgCB(BcC6ud;JDIn%$tUt!MzgJ}}n5y}Js0{d!{Y-X7WzODRQL<3lzUc2^6oQ))%^
zy>gq2E(5)bpoe90{C;IcdQL`LPe)TnOWu{Mvx`e;VF~g_PjP{<0DOHhz|}j#H@d2_
z=6TKQ!0_;Zu%NE~PLKdRoTA+9fB4J4I(_uyhaY_Us}DZ=yWe~q9GAe8h$<`Z*j_q0
z)Y}eKhA|4Hs^j&uvu2JBZA0R{t=M3%$f%f^r6urOw%3;J%w3;8cmbZ+^(%Q+r+n9@
zCG5>*2ir4uuixQriI7><=~m|^zW)7(zyAAwusDD5>(77x)z?RlnL7?nFDke@Ng<xe
ziAgNB0H?PhD|Xkt9PAP@iZ%qKTu$GYXCSn=kN~TUrU}XAvg;d~3a?yqaCEMD@d~7S
z`t<29|MBOaeDJ#qCyssn+2<ep(}#Y6QOjHr@OA6+R`u1jDjeN73w41Rw>2~4XnyI&
z{Spj4GZ1_Bu)^lDXKTZ-Mj(xkjCKo(TNeWt(1VL2T%PxLa88WP<LqM1PhMD`z1ZGM
z-+`ybURB)>j)-aP8R~9t14#y#`2r9PZKV~X9l-`l&D-_0w)pG+_E%<R7DtYJ=<eoJ
zb-z<4q)0vQYH_5KgX_fbI;stD8TEQ>yl04i8heZ3xJptEl0?QOB`(Y@wmp0qaLKu|
zzH5&wL0*eS*VEh)8xq>o*|f8_7U$z}^k=`g^wrr@C(M3(<m5km{Mo(xkHjoNc}|h1
zjq}LFB>miSN-k0sr(N}T4qRH>)9ESc@@$BcLr_94TTb;=Jv;kPKl|wO&p$tP=F(SZ
ze)spkvkQtHU)!VvTLYChd^|jlp0o50is|kjC(wR*3X}kI>$XaZ|8absUO<AYP<bO?
z&-9P*zvSHZy0gD~qUzRjfA6S!uj{v@lC71sqU@~W7f*hE=IF%>7JvJ<zcP0USl$s(
zI&Dwg^Kf5pYm3Vvp-~gl3m{K#-@w;jeevsG{Orh=pMLz&Z$A3$(=(T?s++q+=>Aay
zi5@c#C88(8?yRrmW~SY~Q?|OjURm=bDLZ46wF6@76?jofj-Qju+}iZO*nsUhryKeA
z#VQy%q(&v08yvJh?OapQrl4=}y;pMG^6a@cjROX#qC^6G-9IdCX;-S?v!0e;adUP2
z<daWM9Xa;dhrj>wgw@#O($?gFr|sFKYsKqgb=B=E=kvC8wM_&FrKY-{w?+oXKCF7S
zNk8ddFP3$_eianud&=VI>7yV0`fvW`mw)&B-0TveWbMYSE7q41dRlj(OLY|2)iEM6
z<O-L|ef9dOy`6J+*AU(QI?906RNe#k>}}_uQofv&=${x}w6%sQ@!hHUo>Qk>?v%H3
zWn$p#$j3xof+#-XeJbVF-eyZ@YiU-YzmsQkPq!FX-72{5YvVLLFsM|>BzwEDA>na}
z8GC!8wx=~0zdHW7t_?k10Nf5e_O^A{$0Mw3c4$?w;cMfQ6_N?G9?@3{7xD!OAtiUN
zJQK3!UOl<y>+H>1mBIz+IJIFbw=g2WJ!W@K#$Q<Uv$ra`c5{c1?yd$OY;A1P_Uzfa
zmG_l;9ZW9*qqrK1Pa++>Kg7VMpeHiHr~s#HeQWRe>-wnZ1knGp<Kv>eoltMjU;o43
zo;h*yx4--NAAkArZ+?ILc}p)#%+1U7kB@ZTSeFoJ;~dBdE{C{0yTIXu-$c(kx`kf3
z673lp?HaSay4Td)Zee!$QAH)L00#^4_2#;|pa1>e{r<C0zW(ya2Ooa=cR%~3qnpp$
z$z`Om=_vqhi>nnwkIS9D{w$~LR@=z*z{~n*H{bBw8{1$Xc_OECXYSo8LwjdvjosDR
zXJhS9UHzQT7oyvoqNC}ZPADs}SQrx<5gg*bySMdrXw2CmxaMh(fTPEiNN&^!25|8}
zYoW;B6-+R}gg+8Lw7#y>t9bmqipqN>B_-9>)mN_;m6qPXF%7B4FyU&DzlUc?0h>*Y
zRn-QZI#t)u%2LsHk{k356;<|UEnhYDv!p1ugvdZ=OUJ3f37F8V^>r`Du<Yb3+v_te
z%~f%cvA1rNS3Q3C_|XINi+28gVO!g4V`C#1&$vD)e=d`*<z$Ds+50a|aSU3`;^Me}
zfOl3-wpfPV4=Ps5XO`yD(sR;N)1KTbeN*!&E+XaB8SC2CCV`lf791KK5H__d0S(Su
zUw5;(lv{9pn=5{J^H!LL$3SxrsQ{gV0bkF{xgHo8y|_HF%U*T1^}Lc*Dr57t63I|g
zkM&vG2Nkc-PH`Yu=*ej~dcv*&lW|$V*W*HBcGq~I=D~`tZSnlWfUlSDu{Y{oRfPrl
zU&+gVTv2`d#=SGAFS@$A&(F_7Qy3_1cVGL}>&3o-AyKhu9JY|VvF2=k&cWisllymT
zU%Y%?{j#_3twe&$<(k--q_Dv7&4p#e*GXb`dfdm!IV`DQdKW#J8%MXQ;`F1Sfk%>j
zHmCC8qia`7fQvtUR7vSH56i9{{p6#xl>Exa^-rpsU)Oc6tn4V1L{ImCBaq9Q8t86J
zp#-}E8g~5c*oD&<tDijG<8Es;>W3v&mS^myR;F3JO|Q!?SK_a3?V#rt1FsgW%sSb+
z6kRLRC`1p+O3cpM_I0E6brnvIPfuMfxe}Ke_wY&O)0!7MY#t&IU@*|*Yd~ZvcYD$H
zqV<)m>r#;lP7jTaMZ`sggavM_FHr_<#myUMzdn+knpyF%s;RxVs<vrxdR{~6o10&|
z+nLqBs+NOQhei~0`x;-H+jum#zh$k=NBX;khDGf1(T#4y{XJIaoo<&rP)K&~+`Mje
z)_=HreRW~V$>IE+k~?B9dh!Ddq=o5GvkNCLU%2q_?!Bsthp%hjR5$gC)Oyj*T57mY
zL0&#Hz(8`r+Ptf^Wo+sd;Ooru9MOAo==F6dPOl?KQX>$G=jInLTUy7&#*4*L;Oig$
z=C`4N0o4!hKe~7C;q8Yb<8$Dw^iEAXnA-zi-(l@RVu4ZyX<760_LnZiro?a*=$Y<y
z)io9uU0NH5R2*SkM3hTl)I3{^-Zlyj;>uizn_FS-O|^<@dHNFg`inO`Y~VQt?ZWtA
zLE+Vm+`?<uil07zy(-X%5i!wHBu;5{1}$ljiQ@zPj(q-gT3SX~*_EE|PTnpM3rb50
z3$MmH+B;2;uc2px0AI(q^YUYZd=uxVfUbcnC|8O&p#i?}sfkLZYOR0T>#SW(#S1w`
zGP{kRRXz*w@>$(m7s|OlwwEt|@l|O~@xAgVm30jjb#-ixfDkJm6qH8#298XO3vjgj
z49Tu0=lMJP&oA%rL}D#xE8f>TBq@K5t7@-$YWvk^KED3<s;Zk`G`xQLreS!Ft;B)5
zP=sK8b*=pI%fN`F^z3UBGpkTK+Q<TZpd<h2{p;W4>l$Tod}^4T_ue{}P*JP}&V@5J
z5m`B7o9oXjDx(7Y3d#y^Ju1Ife*ehVr!PDC?Fi(ko#ldoww71Vp9KYnC#Gad6sn2I
zX)8+$M_a4gH;P}>Jgs?MTi@9&q~E3lR1TB?dh;3-3am~dtbhF?H!riY`f+MrW?|WN
z7KaUD6JmK*WMZ(p=koT#`0S+ZIhTsE8YPJy#beOQhuhjLkJ{Ef?E!C&BU4<<%J6e>
z?irXy`d7%y3=MJfjeR?})zSDe+}k!MJH5QT{O*lg-flkU%-u%D7ua(n;hr{GB{x_y
z@>S(4kIPOCjjbBOAl=~S#biWB#B-$zP~6Zoid|lDR#rfS@13ffub$p3E66{6<no<c
zRUH1}_0l|7`_$n+4tTXZ(So0MOnP#eNF-@)dE@Nt{QUU~sT4ea;OhiT1Yf6s;ojk$
z%`snZyXdeSIil6d$=Uvkmptx0Xc5ZM3q)~xcN3^Gol=07YSC*o(4FhOZ(1ELTIH9P
zYzz3MdDnbwot77upf`6{mOUMuLn0FSeEDQ^r_*_hXU#n_)T<aFVZW)U3-F10yEP-w
zN&Ibnlf4plcZD*o2Gb};N5@0FGoIaRgjRm}q}0yBZm4fYC?H@QD0Mr9#R(zaG3(=;
z-Kl9$>&rP=MSMBhjiZ3^KQ?K9{#?QJ0<J>D3@9j0ibfIg1JG~;X9N5W#N~13F;iQ6
zyj!>LySTWuH8hCXtoYF2^T&^X+Id?2;_ky|Z37d-OY2fXSy~hm8DKv&Fe}CoUneQ_
z-lfOaO6^X1_O(otl#(Z2iuMizJ<MZ?di#bhn_Iqq`HFs3x0YF7|Kih6q9VheR#iW)
zdRFtQer$S?Ey6(nkw6H7(vR;VM_*LBo&2h<ts4fPh9gK0i9G8R*tf!6U04ZmbG}xX
zBasTwo^=D&P~T#0W#8J`E|)8_va(!VU3YeNP}5R+7Hc~>B|bePna$bh?;kvU!ur{h
zb|C9I&AY{QMEdE-bok!cXMzbP{6Y9<_`2Sp>FRC^4-bbKo1UIIGBSoHBp7<dPJpkA
zdvLB$M2$Up6>$3Go2J%n482bqbk>X8_na<Ty=dqK`=mDzSM$>X-TjBUhjePJzq{-F
zG24{5oZjyG)U*(HSC7?|O_<W)tXo^USeV=GvA2P*TbcPVe7(3R!P6;detcKV=UvH9
zi-``Oou30W1hQg!ZEJVCt)27jo3|(eXf%HJM&-w!p1fXuOC;qb2LvUC#f)tUz%=YG
zEqPd)XXh2MMT$4io&)c>RZz-WS%*C4=0<{pW258J#Y!$;v}1kQxhVe@E|%$)im~>=
z3r8-!uImDt2*uG)E~oc(=#_Hbj;FnygN4m-&lqTG9H$yv2R!`4E1y1J-&iWXnib&V
z$?RX32o)~Qo;Egi>+7p(0zEzrS!;^AS$^NsC$zPtYk7JiIU*=B$Y*|P9NJb-FY`bE
z>yeXt#mC*Zqp1bG(VZk_yW2ne^>2b>GgpM@{vq^GWeCt~hz-+AzhFFMn14VBdLG=)
zW_MGa!)5b|2hU{+#1SBXT>%?1JUn{&^5xXjWPuQIGMQ8?6$-|ONBq5gt`z3WF`-JO
z%!tkV@}m=P=SDU;YXJ`4MJd-eSz`21IvvJcp0TxZ%+4tk?rlD}b=}V+q^)@vY6=%6
zO6kqJH%?zV4fJksWK@PB)lUlvwE`O<=WZ{%*|_AVUlR+^Bda+A;e*EyJ-l3>RX@T+
z{8x`F-EHme-?}T4qPq#jYD%g#sP*L7Sbw00eSTKT#vXdf4sUHCIV|A!M=rc>?B#E-
z<s?OVdijjc&Vntjt*QR{(=*o!Zi@vwl@)hA?Bj;}HdmLX9i1-ZX5<NZN@O(*+Re53
z#KiE-)FkvE9r~40Toqb*=WQ%y#|A}&g#+t_E)eke{S7bAAN@K!K4*<bzYz*Oe_BoH
z<eZ(gp~0So`DwHx6Dp>_0s@26GqTp#H{06Ud_BD$-YwTEV5k7)MZJkpRQJS0q<?rx
z?$!Q*A(&laTnVny%IHL}yL(b*((>*aP`A9)tW(D<+nU}g_xQ2l;lS4yIAS!|bxOTp
zFWA*JAtsy4R=%mM^00BJYaT@W7wDUSRr9>s(bdB*IJ|RU9NG<e8z2^XW+ixan1ahr
z3=ad}SSA5y17^3L`Tbg_ljY>b+S%A|tfE)a=(Ktj&be_T-`c{p{ARU)&xHZs*WT#m
z?vzth0QoI+kA40(A0$Pk?{a0(TtX$Dlb-A1;JC84j_KqD$+3yPK7%d2n39D0O6UjM
z>lJu;?p3QZ=SC+d#2O@*LM+dV%W$)D8J}5#uLO51*u~K&B5j?APjz>PyVw>Nm#7f+
zLBkcqMFT~?OA$O6-ZBkUe5=ySFTA#)6HQ5=9eSNeCjD38>&){UbHZc%tzCrB>;`Ij
zaPGvhi*Z*9r+2r~;$or$e0VZ8_>8<gww<+;xt-_wE}vdZRnq>O{?_e#m#rO!$EUWo
zSw7yL@zD`$%X5%FsWWiIN>GME0^&iDS~YqDDe4{Yx96tDW8)%Syxan#LhCzPG4vov
z%AizdM<s=L_$+TN4Ns1mAGf_%{8XR-M;#5nfu=^wW7f4#JCK^DsES*~zApC9Up32Q
z#AJJOxT~|HS7iUpdR4_OKUed~i4mx&7Q@pL(~q9EefxHXzc3!)a4|9^gDuy;c~Wb6
z`uxD)TZK|xdHrr`XhMJAFq5rBq3mmFgDII_m_dL!Af$~oFFyR`m*9`_MQb;26?wU)
z4)t!q=$0wBW1^E|BC{6eSNi&T{QSL=k`ms&eG3&~ZLZ~IWd`|#u{L(qDqci{Uua+w
zdX@+bt-&@6bGKW!UxM2PJqYs<^#-NgUYVL3>|?DiK~safzA!u$;^}|o_RRppKs>({
z_U@hH8$J#$&CSg?p_&^Tu{eJ*G$utR(@r;aANl16QQ22#_(B{P$@eys{F71=@@7OE
z8`z%LMb`+M(6O-vp<1QZYbqaAc{)b4yzT>&(fIn2jfHJ;VxCN?lWWxzi@g!?{)y4)
zIG<Fp_PlLvQj_yI67>9akwm=ocG%z1uJmp(hI#=FDB$bRksvmS>2SFUlnE|m?<`JF
z4h^t(_aF+4ttU@k*x5PM)zs{+Eoa2V*jrp09vEbX9SjKwpuz8#Wx86Pe(|gULr$H3
zo3|q8Y&Si67U`8(_q<J{<`2*GIGNdnxrTFgcwOE7=gypeS@YuHeMzGO1J)Mig#~$H
zp#*Yf%H>Hl3N`cM6g{pb^%}gV`mV$A&pWz@z)a%;Q9^jsImf^So_b+!G0?*~$lq&f
z65RnM7Rj$&Epc>k1xo={yLt1bwY7C+C3++PWYyo_>*MQ@m!Bn-3Fqb(Y^^=2D(jh-
zc|dpLDku=j2Qc%F3Ew^YOfbQOKM3E;*GU~lXh0W{>l@2HK0d$s&2JJCk}wRXAJPn0
zHp4<ZJVJ6dHg$s!pZcCS^6cfST{RBsmC_TV&8^-xj!s^ox2s>W*y{~-)gF!>wwLYl
zvoj*XL;vY-KZ^=W;qy1j?-y8E*(4;Ug0r5K693g#XWZTWmsaMxd%Ntc0&kX7ZmbXA
zC`<Kq3GHs2cv?~M4}bgLjvf6nBP%m1HtAaF&4$jlhRzlzXAfsbr>j|sWmmI3o&A6N
z!I7H}@98N`{liL|^A^tGNl&{57Dh&VY^_q#^F&IGh{Gw(&GoW(_xJRUjSckmck%EJ
zsd?Q(QuyZH@|jZ>S!vf4A_=7<$2*2je{t@0T@Q<g=p)SrfOIM$5K>;CyW5dZz6kaX
zOHRm+h)D7936Dw6URvM6)$#{-OU|D@5gQqmoRFRrpZ4)bpWE9zE-fu^xH}~`t|cVL
zB&Vl2yL%N}y*WR(LaDKV_6C117jJi$#Kgq-gp`+WnpEhq2vloFZ$eyhXkbvJzh7Zm
zQek}b2mkmpzp%t5wgMC`O+^sNQu4WA9&)m>Q&Td7!=ilyLc6+pBm(~S@<MuIA`p(m
z<btG>g5uJ9lT+y7gTPT9KD_VfWE&FdpO_GH@9wS9q5jR)mHh0ivu95D276}ZWL`RH
z^Yv$^`=$nG)~5ZPd=i6F`7-o_HKh_Qj`Uht+Gpin5wN$0x?62690UBK>)*8OviD>v
z>GRjs7c4IXh6k^2?`U8wfa*pDM30u8^h%)kj#f_bk?E{$^fpjJN3LuxC#S@DxjRe^
z^=>cBUCYY0x3u>435re0$}GM;yTyh9M-Z|n_e$NJY&-)Z(y|M0=4U!yI`h%zr|Vk>
zDMH!&^6{zDXU%PFQj+7sg9HBIZ+>_G?lYlqC%+)e);x52jK8(Ha^cdEtA)i}HV|m2
z1Bv63C)M{H?5(XVEt2A*OG<CN?i>bN1l()9t3EC!*3rc?DK#rLIwsc7{j*>H68QQ8
zONqz?xI2iMVe3mXMc49!0)6A-V}Yhe$HalpQ1_-mCR4~{vXW~>7tWjx@$rg}j4Zuc
zRM*%9{B=($YkK*{%ih`9)g?JEEBjjE;NT#Cb?a`?bvqXaCtr8yEbH@@Uw(G3{&g2;
zX*DK1#4R{_c2|H5o>nGWne}&ch>OY)3yJ>v25)=E(CG9V_n-0EED{s-v^QV2wDt&!
zo><+5*^9UY>S;J4D2<Y{zUJfR5$Yc-<nr`j<kbYYc+eDDts*rw`qG7q!-M0H2EBoW
z!sq73BE#aH9lXJBNlT7%w!0i37uhp5s5R*OUbP<k#pjOJ?vV)@3AtCz(Ia#sUp%i_
z<85jve0I1y*3-lBl669SYVNI@x2mgHd%NJ;*FSu0bM9RK@PHh>DNL_cVlVGkS)MTu
zjf$&pZC;-o^tHDMj>_W6p_Y>3%!Es4FFLz;M#U%P6qOCl@4!%3u@~P|TuaZ)NXWcm
z?-mddle)alh6w@=A=H!(e+*xTiE!|I7>2J?q#`{e?Bl=tMWBC3N@|w7y_dV2U+qBO
zrd)WpwD{8TFQXGfL*jx{<Kut-(dSl<-ivEneAepgs`AXFn54v57gzVxtlX_#&h8%P
z)yo<m57z*1kGR<A!Yjqk>zXn2a2O;Clt`$7;2^%PCsblSCnq=Kcb|S379X{|vx&$K
z#E>fUVpF~BoMx7%y9WAf&N|<}UcJo|(0(O)UsAMJl&g(@PSMRB5pQ9l&(GE7)cH#x
z5z!gp0q4H>%+ft%e1qHEP-AO;Bsj!BGCHa-Bm3y@kA8W?Vq$EOH#6dAbv7t6eosO?
zx%>FiiIXpCU%#xY{qi@TeDd=TQq!^nW8zW^3me-yXWvc$tGj4-Ii)ZoBQ+u1&;M`#
z`#;?%D;J8ls-IO{I_DnjpVrh|x4t>;;o;@)7dAJ$ESD=QAC>#~y1Kc!<>uytat;az
ztf_ttmEv-C0s?(Pf?`*eSZYGq(%Rtc=yUsa6^F|=_LTv=OX<SQ(9Oc!@F2gq%*5op
zjM$J!7`mO~BMQpU-`N}B>Ur$M@u2Wv(5)Z*`ZwVT>D$|a(HBiee(~XXXWsyDKx2a=
zy<CHA1Df9S2q?{liW_9<=k&QvNJw0KZf<-=s-2T_YGVH8@*dFZt=0MKMJ0|-?n&v{
z0ny=(J~qCg9u04rp`S$S8x|)|W@cX9<jP>qYe+4Bbtyi`$JN&%t2k?6W_oyNtZQ~|
zRU*}a>#NeChesK}J(do4HfJWr2L}cvrer3hW`>2wL_|cf*4HV$c6w+aD#+i_)-E(G
zs<7yG+5M_DE*D1c%J@KHkgtccXION6W^sPm-O|04rSaD8Xx})COZGvrq2Y-U$3H#d
zYT>fFwAtL!VRq5H=Gk+VT){klU9h)z=SG>0wPjF1aAHzgZb8x5^dcAudawb|18Oj-
z=*@%T&;RkSd_05V;<EhR+<m;f^Gcr}*IFvCdGavO&(q)ABRez4-!It5JK%cp4S@hX
z7jArfJTo)X+}u1iHa0vw)Z5!LDmrZFZ6A!~g@pxguOLtNkZV_NZEm37g#b8u`yiBj
zIDE(KGr<HC{!skT`Z}f(>kS$uCatZl&B(}TY;1;T3YpwMVjB5+#e?g`_v$%Zia#*+
zI4!AfXi!MM@&hH8N^9;`IC=#K#3ya;EXyVA+ogAoe0AK%+r1z^H!d=_?sW%-^M@x|
zvvcws99=D~&Et||<CC&WZrs~tZ!az{T*-Ub($LT4%yxG@yLIj1<iI-cbvx?|h-2AU
zpE`TVGcdU1{+%5GyZmm2JD3LBOQC*lIcZl?(yli5bc$ts-ojF0T8>Xbc4<xB#>`CB
zjgsn`H+&gdjo4XOC@;F@>FjD{btWL#1IW7CKq>T6o@}?Epsem?yBO>Trd*#|F3Z0)
zG`w`c*U_6MNht)aocFrwQC@0BW@3(=wVRolV`OYb_s}FngX%BMkL6~j`FMER+c@WD
z6(%QTl$YP*a@is=H#sfd(#Fir$<aSJY;<A~GBs#ag59-(+%#(|b9+YzD?7*Z{449b
ze8@_PlTD3n(cuy2k014Ru(^9Bw=gsPe%0$enGPq><2BLhsZOilao%=!y1BSIyLedI
zIG5gjz~hV2vWi|mH8$?x;NjrpXKv{f8WG>v)Gmiqlzw|>{q~(wbBnVlPkdcmRIs_W
z2x5;6_W1{ReRb;du;}o#`26cv?{0`$n}W@I#pPAEo(nPhY10~+cz3n<`px>Lb`35S
zad!%`uYdu*ee2%J+Oo!=?jCFpi4M-YRv-W~21E*~0sr7rtELRNQpmfKRrKWHE1Z7k
z49&F2=9V|n5rNIGo)Kc<P)B=+Ux4LhyEA6C4!)tao&9u^65_qJ;=*i82M;qVhoX!m
z2$!tfUN`oV3b9Jaf>C5<Z5`n6RgjY%8<{ooc3vW5zj#?)R8X_Fh;ezWYsDFDtzAmF
z4n0u^NrP|gEav5BIXO98x_H*r%_F_2e0psM__~U_Uiq*hBs|8>(Jd?_wBmX}erodb
zH{DwzJ>u)oU;F!E8XI2w`FdWsaL(Mq(#F=l@==vYEM=a6Haj`x@9pK|;^gjRA08N3
z`J@UO9sB`8s<=^b%`d?J*u}GfQQ@PbqZFZE9-j`4jy!tdOj1nToub=mNmmzVw+VsZ
z(f#skcOS2b>4jLe7~frgc)j>VbrZ}m+4j!8;^Kg?q==*(kr2HpY_z`}oa*$Vd#eI9
zI7c8ST0#Rht5s5@Tq{@HzIpfIo%>S0kbaL3ZN`B<;#fod>!PdI7UmW)g-WFaF`;qD
ziLvSY+$)~$9v3g1iH`~I>}tW#?>*E+$B>VOTabU0M_|<P%eH5&>?$js$mMbsdMpI4
zk#g!Dl-pe}zi{6Cl#OL%R?5iOu!yxYP*-1=mNLIGr$+7$Ng4FgZT7XyeD8qZ?802$
z=Ipckcb>iO=14&%?ZQ-lYD}WFmBU$U>x-`RGZU5Cz2)J;v><aUOLKdVl<cC$);=U9
zMG2(}dI&Ku`Tv*lb+mI>r|f+B()p6b@e`+DCb~I#^z;r%DT=34t}jd_1be&t+B<ky
z=Vqj)C8Rv4tYP!SYxCpz=}`{WW_I>giK%I$^nLJ9EQh_Dm6q&iV`*{mf}d|tVe!qC
z9f=%0oDjwly&neV6Pmy1RRE1mbx{d1uUqPsIt@6nY89@LC|av)?_a;clX90g*GsbR
z475ygBtRTNR1D{_J6^Pgc*l4Ih4hXOXcVl57Y|&$J<TjHSC$lJ#YbPc_nd`O>nqc_
zX<_~W-WSa-UCGQzj!C|9_2KTeP`$ZSQ<h)-vR<m8hC2K1UN7z%?0WK|I^5g;^2rPK
z&TeOHY>!)5T)lB?b$YqEuF)mH=Zo_voE&Y-3a?$sFX`zX0PVf8xmb{U+s8AetgK{a
zZW#2*)2C16Qm7xbv%6gN^tO+W*ToAK_V$iXpVXii!x^Z#xw+EP((0!##UgN5C}4ZH
zZ{6?g=mRg8=@A{;b4K78ujyrVkiXX%>kD6<KM~>=)ZWy#hoLudDnzmukDkCt@Cov}
zR*(yxz@wK<ES6~eMQfmyOJHiALtKKj^?6T=i#0c%DI_`pMFL-scZ&`>=k4wuXzS~H
z;?l+Fgyhu~^y4S$C%ul(72LQ}e$mGIgxPtQ0JpmKH%cY?A&$ScR+5v~)YP*l#$ocJ
z(M94dHI)$wflhu7{oNfm%WhnMQZ=@<i8j74y^h{GhVQM+-ML=mXz%dV(Nm|+o8{zQ
zSy)(7%jKj}Cg-x>Jbwy&{n+u-ZeGC=iD~^4<7j+pwaY_8paG7ZIb-YPeCOd^QYy#U
z!s@$EKp8stc%)y+%S+Fzef&xyk}oc;73N<Vc{>cQFIo|SL9A9U&CUAxdIOKQcW`lW
z_o;eb%assvT!#~CjYdrme{yl8HQ3e4!_M>kNy|$Y&sRQvw8ld3Zc`ygo#<$7aC5RZ
zzhq%;Wq;@PeGXf|bP7Qbi;IgnIXS+*zNb!|0LtFi-^D13ot>RWmDORPv2n4<W1~hQ
zp=I`Z83Qv@zhm~9V1fyMD1L~qqZjvKQk|Y4Nm4465(J#5wGvup=3$Cm7I0UXh8RJy
z*1_@svrtnSH6}*pn;>^ZN{OBlDR?Npf!f+&NhP2H^l}M$51)a;bd(sl#q#==KnnDf
z)aWUp4802xG~@0Tj-Ek<9+o8(?I=JTxlo8J1v06SC*X^u7)u~xiTU6jfW6(>+Lm!Q
zm7+aRnjj;+_6!t9qm!$*l!iG0x_MM57DyFnd#4V(e-fEZOeSaTEp4$^P*u^gxm-ix
zVwnbHNBaVyH84FXL)#r76*LV<rO|-xMi0%P^cXG@U_uF8kO*-e50fg<GYcUaw4Q-f
z$i;%Kwe{U?E~qJmTrCnwfDMs4e3!E&$HZz<3seIb5MorQwQ=CST;8r+g$ZTKEv^9M
zk*QICfF%GHCFJZX1#A#quTshhw893-(C^30?M-?@hbh>*d$^i}2E;U!97B&$0f}{5
z66(z1VLTxStAuKy^GHlBur)4!Qz+bJ`kK<Iz;zIb*_aOPC56V9inVeOkRpI9LKE<n
z=zUR?0W1Wzy~7a!Nkfn4K`Yi$3C80I=)E>X^{dC>abZmzEpipwJ&D%W8C{M12XuoS
zk{)WT2el4%0%#TpLnvijIS=SEh(Qtx3{z@2V$~{Nwx=WrgHEXw8dM^=h@;R@BDosl
z?!2jbaL(N6d2NS~wE^-dF?@^7775W!4pJc2XmbvXRuv{kFB8;L8eA(BiqHcYq54oF
zupt<J&=EZT9<GuLgkqMA1U3LI45Qef(~D)QojpGNSUpS!9;$|tK-0lUP~j8-KATLZ
zmSakZ3X>58u28CYd?BtzZLU<R&=v~=#b@uS#6k(5BNy={N-0ROrxc-QHArQoUbo8L
zK`#ddsG!X#rAD*C<*1}eQmzwl=%3n2QYPfGq$--oK-0;Ab}QMe?F}AkObpX2WGucC
zvH$^queZFaiiwVV);5a#JoLg6boZbF*-aUxL3?faJc$P8DWs*FfPz+4z~Dy57`kf>
z9q36Ndf6?AuhT2!Qkg^w&VU-1!)yYoEmbM|YCF8lT<+X@w7Mr=7h~vYt(ZooQeo(o
ztT29*lomHAFo8g{%wtQ?LlX5!7?sMP1m_Jh(c+{Etq7`h3NCOqdIiuR$HhG0V(3+A
z^h8t(<j}NYy>3Y)7SY>BKo3ayb35!ku1v$1X;m8Z&QDZPm^oVX?#4gv`7pq9zRlM)
zLII3s1+J1}YM8%}xeQtoa?q<eD>Iv{d7gx2z%g8`P%8Cmw1)$ia8`D=S40v%xNA~i
zNAxg*>{T)`E)j`19GOJP=1CbngKnUppAVzgqBnFJ&^uyDnEM<N540KR5G_4?k;pQF
zgdu^n6~$hXkWxyag&6{(f)A!ra}}6~lxbny!pId-1ZP*U%LfIk1ii%J5EOmqB`)Q!
zaQS;8i5L{JL2cj*bZAqaQbe*>#WFP#Nr7n<Xvz!FGny#LE`NPzZ&xlCX-Tn4tr8;U
z3R8VYA&^R;%Vn6HP$)38*PkAG8*4oJ?HmN?IZP$hY0*nA!Jp7m&_EI%S0q=c)dXr~
z^wSjGAzH0Ytw!&?2j_W@#g?LnoY0*E^NWDG5C(%n&fDegZSBgqY=sb)p*hS|(|az^
zOF^}ptR1OJPHJ(Wk{~*e{GNv|{mmRop1<i_+u(54LAfK-p`%!oa+1FqYUzJF=K9LY
zE{`DAxqPTK6o?dr3@31CT}p;2MJgFf%G(rh=p`pot$@}*?@vV^V1!f{L<em^X(cLy
zSft_2OpcV5UcX!WYD+1H+R^gsHBc_-5G@A%u9PdZdP<IKxjeC0EJc<I?ea!yP$m*{
zc_O|T-xDi<N`r$&f$@W2AVqTFCZDZ<mc`J!W}yl@EYuyKHTZi19cUtYbZx9{f>TGg
zDI)8TIUGpDLN1$!sWcoI2U4^*6?z2*u#vCBOf-mPd&`7Ct>CIPBq5MVBrudf6{9>s
z_o{VZyoC}0UxKTU9)Ko7t3ou;?mfAj$Kzm_LIW))7m>&yps^|v%J%j+w66s!1iBl>
z1~aE1K=U%Q&jb@p_?O}^Ux!Hre4Vx_lvag<okH`?K)-d40W&AjZdx38o)YFOP*zZ&
z6oGcqigZ8@VRC8>GBGGSI8s7>ltwBwzPAM#ezh9u7IciOG-y+VQmqA!t^!kz9w$dB
z)W8qWzD0VDg9`wh3kd>L4D=7ME84^&$>2M%Q}hJ_<R%k<?E~Ef<sudc<?GPv+(mGe
zUWdl%C(xnDT2d{eH;F=qBw9OH0)01tX(VtBy`vS~CPf;Q=-~_S6+K9Xt~LoO8~G~e
zcXP-S)H2dnG?T;Wnu}y;2N6jE0ivlfDjJz38c-joqE@Mr$rN(P5K^I~P*A!W(20;*
zuSIvxy;E`!fP$l>V8Vgz=s|8of`JgA^K`v5=*}mQkG6lniJ&;B4r)vEO9-5V10{|c
zNuxCo8v48f^{g6rC$dBYj!V#LA96QPzXN}ig4ID|fs*RbbCIF)1{`e{fY=%gj4J^J
zff#grLaju%t7^4`5|eE1tVYI!`UHB5<uZ^E^)j6gU3I#ppzrCPRpWFsqw>_?#vn;R
zI`HIZtBxrNC4nBI0Ra_cfbReQv-jW8RVK;4C^&1@n!Dz&x%bV?T65pL`|i7M-ZA%_
z)2F(+y1TlnD2w+-1_@aZLLMU!!U_q55JDc|y>~)@5JCb;2nit%^4@#9y?5I4i_C9-
z+7eV1RCo31bJvR%+R868GBPqUGBWbB+9{J3Yb$IG@%FQa8Q;%eQBq!~o*c7Uv>K)s
z>XcSZT7@d6bS4XZupUE>CZI611<qvS7(CSk8%KJU0EZ|-Ly(Kb;!2Z&ZoovQ0r8BP
z_Cn}8y~~kHOv3OvLQ{k8)?_zoqY{2O(Dww<b2LWdf>LaP>1--i&M6H^LXV_j<;KvA
zBCMr8s*TgH6Q`S1v~({l*MO4V5T~?irL@>{88j5?(aAIHhp`tN8%T;d5Vmb=NqrBk
zu4H@Ib<!7b>DFoueHNZi6Qfp#Se*LBM}=j=PR!UWGv-EY!AQk4U^oOZq9Ul1Hic8>
zlAM=rD_kyLx`q0f33O*U5N2<{bfRqo;&N`&TyoM6j13b2v(JQ$B+YbU4$r|%NT!w1
zj>2q!?sU|9>bZ%<XV?>CbBu=2gh@XJTF_%4VfaYMRrFPQpbC~mB&1{@liUV^cs$cC
zp8-abh3gjP-yjv5X1i7$=@wboPJj%FUd03=H5zma+ET-o=zIhU5MR=Xa?B<*{=wdm
z2P?v_kxpZ<(YMftCqW58&<1=BO0^Wwm<-s9!KRhyB@r`IwMf-UY!!$aqX3Bzox%bk
z2b-Ok)^IZht%R(JDH7RoJt9*uk?G9r!Falv-Uu@oLv_-h$~;9oNrMWz5wc2pY#t8B
zNTUaRG8MtMnnn@pqa~Vu#8zctexF$iYEJ6WahNpg33X6KXLf|@IMiUbV<8ps9JH@6
zn}w~1-oUMo5Sqmj016!@GtWXD{0bFKU_#Rqvkco}6Jk;-#Xgx^lu8Q6OJb6)q;$82
z0%kj9eRlcIx&<q*W%2jJ=&kT17$Sppf*x$rW0M)TIeK`Qp58!*umY(xYT9Pd84XM(
z=nV>`GaqUM&(HzXOc@sJ%D@~sPze3kDZtM}j}s|c8fz|Jx=>JEfv(cc;gFO>HCeT=
zTzE5+UQ1WHAS!hWG#FM)Y&a!@mVL&7*a9&(C|*Z*l{%9SO2+sw&7+LuvcSEd;}Dz9
z#8|Mq#>`_tN+S=emdo%<FJh+%TaRp1$1aw{W=rb$IBoLbd7wW!;exh|P_$8H&|%&I
z)p`(;Y&2C-pVmbKd!B&Wfr|rMK577Qu5kqLd|0|gIA?{L%w7p`$mYT?1t!ikz6ahZ
z=KnwB_hW$f;^RAlmN?o#%&^OQZ`NNQ#6H^N{|U3;-%>w_*Wd6IpLlSxGo_(SJHR0b
zSj=h_mP}@36bi$q&>^NMye$PCG<9t=mIF%&cFBwQ5oW%SZJ!qA{PZ!ChZO*XJOOM)
zf|Eg-4uv-8kis%5;{QO-==c#s5D*OmR6@J96@{Y!sL8q7`Z61sB)oJsOc%|lH;W1D
z!n-&F=$Q49etDKah9Tey5$w}85G9$7T>qQ}mJ1+H<A)6{C!<4_Fq-tV2qNgu$hf)D
z$7|cx%|(U90+l@y6DBa@W(PCrY^C_&*2O{})H7+-^hz1v<mkwY=g-z}*mN&FLoSnG
zm`o;$NH8dfy-)>X!|QTnJz`eC>r*QjS%$1p<nb!(kSG~92AC8q92atU^=bTZ5bCfV
z*(9-LivNX_aLE5r3cti(s6|Y;z_u1yDW}cJe!4X{$j8ea2~MxosGu$+h!gb@lSttD
zF(9<1L;T7l0f%Q#azp%suU)$#Q_=n$$N@$IC6nrG<BK0#DJhUiOSVL0jDV1rlEQ_)
z*qBfX)op_UAU|NEnT>x5APH^45Q@?Q5gM}KhxsCod@QJKu?iCJie&371G`eOIgSKk
zDI=IZ5ONrykfxMyz$Ao7aLCw8Kt;?>m^TKpYJzM+WmccciHy{X3_i`N1b?9AWIW9d
z#j&sr2Y{D}fHZ4}xB!rbRKEn64T!yC{OC`x5L*`ip<fkkFRfYkGPVQ+r9aA&>2(M%
zNk0}$1bSSxy|;7U&OL|s9_s4q;a%W$?SXUUMXYpM2C<aokly%8A(c$X<#L5at-)TG
zyaZ7&8ivGyK*$DAisuW&_~9tzP>M>0B>zV#JI%Ah86c9`71`$r*+L5ABFrz=kkA$#
z0mOrM(XN~eBci}_HVQrEGsqqprw@g9o3j(gb}$q1!^uA67ibgJ20T|p0YG4z`yU0w
zgq^stnFKP>G}jTAfdM1nWYdlQ)qu+egiySX2<12;O=5oxFjmxY;g~1wGQ<Pk=&ubQ
z-U=fVWfg?92hNI*o`@gF{4WFV#_O=6p8$*mZS~nelC0eLu$$&PYgU<eiO!fZ;*aak
zEOh~Az^pRh&j4Dt$9Jj&rvU_zoFg|}n|HILoS9+Ioa0A=Jv)1xSqQ~)q$YT{U~5aH
znT3B9fTGyu&8+HZt;@@KQdwH2n51)Hg1B5vpdiyn`y<<{!RRtNPw4gf&d$!4FJF#~
zjBxIV*ZJLC{2Zq^gj@unW&V#GBJ+$KNsYD=8_s}PWx&5N=<e()EO-GN9cEXtEZDLL
ziUQaR&heK4bdKM_!NC_VUUYYN|CE<_r?Gc3-kbF|0z9e^Vls|)2K8S2mBC(D9H#-+
zD~e(BSCsjo0A{?hFr1t}81R{cgsnv!aY}adD}t>-2Eqa4u%TTsPjXXiZEbz}^y$FB
z0Oiw#FaqI3zD`$CQc_)A&EAyq7X!2_o?7O>ABPYQ{-(iBpR<7L)ZRT3P8V{!5RHLU
zPgchRJ8pi!Y0mbMx@|Un1n?F)Qy_1e%P9QgDE7t{uYWM|YFuUp_G~#4fI#e~jq*bP
z)k%%h>opn$ubJ@@fa{rEe->K&YXX-I;)vY@(kTFz_?Z3@FmBVT6Owir;sI~>*M<*o
zg^`J}iZ~4*;9BB};s*a$=)yF7e7r7<r64P}KM`4F-YXugfAo02Us1E*gNW<_GH{$(
zm*X^W8nHL5kF#l}>)B<C{DB_{@3ON`+m4`Epe_47ZE-S=e?@?nU<@kyHS6e_FPev3
z$QEVfC`k6v{>ZlYPA33ZdhM4+F<!^2zztGVmxwbC_&UTFB)jY%1(D*Xi2iMWUh0B=
z+hl`g#CSynUT7ovC7{u0xWYN}pO4q=fM>ju{obs9bC?b+J|I%(_$z~`I}xXWPc2cB
zk6u5(Oq?&mF_3fRXlqd<V@JOt*c!A4dx55bQ*whe&^J7V8#cta969zz3*g(%UkT94
z&#j(+Bk+EG5^$Yz$4F?)u`5ImIoiyI8y-ibf%g0f|NMBJx5x$HIOBjLn)<ckb(Era
zFdqEcC_e;<gSgO8MKsEF#1V%K7=fU6A?vRQTsAHd@1}?!*<S*ory_`oe5Yr#DSsXK
z@KzX^y|^5wfwK}vj~o04GXKlKFNoJg!zEeK9nl1lU>)RL63ITUKcbd^KMEg2WDk&m
z<IK9VtBYj3Lk!;`6RX-~ixq(%53|_KWKCd;$86c}X-g!q(foD5LO1K1>ESbsH9cd1
z=0)jdAxVaRzZ_tqSd2vzMH&k*JEXgi32oMhUz;`BDMUObxA;Fuy#8L<*ux{!@II0c
zg;}gPh#}E?;GJf~re|iqH|yUXJ~Ceav+VhUK-ArP)Wzo&@E3{%e)cm(_y^=%g<Jys
z7b$;LuxnEUE)B<N5Gn0V6qboYF?1Fqb%1^P&j)b(%QE~c!u$0}z;*hQ@j8%O0!L<Y
zJQxtso<E^oypF?<0Nxfj^0q_)1Q3rog7-(p>r5UXm-&4>1>iL3=10ae0w3NARm2h6
z<!WLA@J3jvsPMlwaM`#}VmJTKc>P_8IV+&3E8qt*|I5HHi`O}ltmqLpeU7Y;ygwq@
zU$s9!58_Aw-vf}Aqc|SFGW@6{|1JP7#vtzBbXqk%%gB4gwaC-<`0;>sQCyOdz>>^Y
zN?5FDu1Fvs(%9MI`x>+_;P~$!pcCv{?4yTYFOq<s4eTq%|Koz_0X`6aWe^SZ{X;5>
zA^NM25D6^p=Zo-f7Bawpk@9a1_{s$kEz^D#<9kc)H+arp1i%o0hS2)I+ra%D;3NJn
z+Ca?U#=x}9ZI2tFJ&M*i3qJzHhQxM(Gr+!p<2xBYiCm<av&No608S(J=!4-MR`@Tf
zPVATPPsG1Aa3zR+<Y61fkL>UN0Pr&dF-uo}ZT<X$czuSTykGYA$AFR1BTawp{(KPp
z=wJXKt%zKB;QQc5IeaAilrRi90T*QUiS~bUAT3Q<5U-Q2rp&?_0;Ap{3OpM>9$=GL
z8ij-R0Zf;Ib!Nb5LG**~Y0$nv#DC`i{fH3*4<LB@F9m9~+Ft*^Fkb(6qi1foACA91
z{FIg2OY%#cEg0MRZChLRI5Yd-1b(7jF<i#47?F$j#=vgh8^r$w0qt@D{s#d*%=Typ
z_SvGFwSm1U0%48ZAZOvnfqg?Wn`2;K!10}opF}Q_D5niXifP~kb~GOXA|D$oo<xs0
z+Ok;+yr+-<njm%!$VUyxgLST%KOb0N@HYfM*(r$nqtc3s0{*3x^AYf|@j5^hm*{!d
zM6|&Snva879D#N)s{}Z+EslRaOmoAO<~W`Cjs$?2M;`-XO<QFlDQ0ryjoV%CL&64j
zvI+QSfY{;(qSd0;YuRgsY(O94vE4@`(EM`XH>Lxp=+yai@A#cCuvwD{!TPk(vIb`j
z**jn_+q-B7vr2$}Yhbd_T|gYoQ}jwuF@hlw%S8NmP$(2&C<a469k0)BM?4mBX7=A4
zh?0qD2eV3me;Xj0`unW?C*eK45c_6VHuLCLg&7^;jdFK4QviXC?<8TL_PbV?C=O8s
z5Vx;L{KBo~PXZd{ARPbAfuJbiNQBw)+Q_(;MVt*pBRbewv<x{P9_oo`$N3|{j`NSh
z2NAs&L}_{A1Av;~#2<j~2*#4r3KVhyGs!*z#EKt?KMFG?|0tc<!8`5PxY^wl1bBz+
zuLd@GgoGf^M}k=QmsS7e@C)K~z-%esr}tml6LBO(w1ZhCK%3U=@h<|z2Q$j{vNJxr
z7``I`qkK1v{y?x}YtL0o@p5{XFP*eT6Wj&bwS~IuY6eH4!Y>7}-48^v8TJoba-*3-
zXZuo)e+HOLSYoM1Mx$P*)3ETJ*2woRy#@nye|n?@{1KQXq=<Gfs|5JB24cLfH_``J
zxP;>Q#TlY={768=Bl-mXxZY1Zv<LR$ETE?Nzgfrt|3%8bEfD1t(GF&n0RLv-$L;)=
z!M{!4Y_7~Ub0Gz{6VX~oF8Z^loIcBr1m9SSIRIGf^o;lm0hpr+ObrfytMNLN0~Jl{
zlK_&6I1QZAj^_Qq`3OGNo|6qZ0dG`9mdPnT9zL|vFJUf9%M-w#1(EUtkat-`0qj>O
z2JfNyV6d<IA^20k<+1<$H~{+}ou|{Yl{ni|{<<KDA_7_$&2m~Eg4vWm4Ypc;UHF-J
zU3@PD|K&?HrxDM$frkD~kqcuPM22u`##v8RB$LVbApq5p$xngc5d4WDQ<+Ys=3kUh
zDU|dTH&z`bh)7sD4YL8Rk`fl3L2aPV7?Ji7+tD}o?8bnHlJvzQUXzXh)Av1tu^4}F
zpN?NHtwuwi6EV{#KE&tGV0`SOBM_H;qEBdteZUCCB$Cjw&_UsV9f~0)S0;eIJV)=U
z*VDK9bQ%z#0&A3h(Oolr0LjdPbrXH1#Xw(koKVyI#*rX@Ng`n;7|l8reIAj%=7U4C
zR;%UQ(60TMicJG}KDy5{6$%CA3KEd7G3yOLB(zEuPXN_&1sbMLVS|9~7`IhnNZ-b>
zh3^3VrEw@srKGQ`pdGGl`r<bOu5)B^E1ESHY&1<~i=KVsn)EN8W#_`P0G-;U&zzuj
zI-6#)5hKt<-!b+U=$TAN91eDwLak!A+M@^jyRXnDeJDf+)iDwZg$*Wp?KfJ|n~|cI
z&w!j0;Fl-JZW)mMLFcwskl-VZgs65T&`0F+x*Yfv;5ou5*nl(VJb6XV6F{fEnQS_f
zQH_9viOSIoQTd=l=dhpY0*l#5H}Z1zih_X{Iowo`BX)rUitMEYjW|pI5JP^>hgx6=
zYlil441LmErV(Ss%wz$W%OJxnwr>fX0m1<T(R$GemrCqD?*ae>;t+f+Kx{6#0BFI6
zunGu|gdhN#HW@{G5RndTGD9t*Bw#B_4(*9F_PyXXZ|@a(Dd;%?*E79PoB=Yy$6jFG
z95T5!_#u8#5t#rYvIEXvDy7c~*((j4aVT=8ZrW@B3Huf?*1Slx0a1RQ17aon)D#lj
zuz4E4=r2U#WTI?**6=h4;l9jzdgZ@XtL7e9ttT!(_60UlII|+61S;h06G^t|1K@2z
zNKrzxW!HoNy!#;ILW+GvLL}xw+FP2a7SsZWwUBRLgkN-4)QqTVa2C1Q*X0S2VN#0(
z04@O6r#*;W6Bb`a$=d~hA!iQN@^2Ukug_xbDCF!dUJTJ8UW?`sxlI_Y?Ryi<UE4&1
z5@=8u6Np5gM$+q4NMl{p8tCg@$OSDHDx=we)d;;Y&}X~A9K!@gR{9<sRx<;sLhR!#
z$HMyyP^;DAD4?_KL)~QjIOOW$zhZT@mh=Duv6j8kcyn^O-2M=NUZV?Yja&>NcpsVN
zl3D~{+5pmbd8rS2_EjsBNrym1!R^qf<sV5D&|=V9v3j7h^wnNko@j+)pwVFMqgLpX
z=e!l$`bEghK<pQ~^X}-+0OqNLx|S&mbZ=X!DRRKC*<zZ0s0@FkC1?+vNwGGw5e<oh
zD1bO3oD9FB8d2R&lWb^^04oDjN;8*^(NhbQz>vPlW06QEcnPL6h>-vv05Tzxz44<h
zQ7WG11A{}D2YwMnaC&YGC<Pz^K)x{PP%;ITiiQCK42#-m;v-H20k_S+xJ*$B$)gqd
z@a6#G6h@;wZ6leU$e6rbuwM^;G+q~H1@gsA00KFM?Hk1$#77LVydll`AOp6+DN&vG
zkdF!udE#AAD^*6Ukr-mA5A|8pNXUK=0U!?0V$q~ILCR)lzVY9vP)by4I7c*1hy_cG
zdq^A>M=BLMy^b$z<aAgpNFbUZA5n3H)N1XdRANB3RgYlV7O%r2A%HfMgfM&NgCH9e
zgy?u+l)l&sJ~rbZKxb!-BAT;JLdz7qq#33|ri{88n39gvO$Qt;R`vLVg}xK1r^~;v
zMKr;>k3xjzw7i+M{B8Fpm0TmAWZy6pMnMGoapd}kD(vM1P~Vx(>2rO&bvEb42~VTL
z^BI}RV3tYM6vpyQhW7C~W&-`Q`6Id}hX1ykD<HtE@D!5)LP9DYQb1}wef$-~s86d7
z1`gK57LVz9g2<cSfum7##Tc=c0GSd51n^$dB1@6ERjo0OjY`b)!Ay3(16jO)iBF#u
z#FAtXJ_<%mty2h##lE2z03^hjECS>gRm~G<9Ujo068X?Ja=?U}9BPTS2T?h50GC`e
zAslii1poy?UQ88q9@`0{*@Q@ozLJYImsO{A4r9mr#rr656#y-Qp>V(ehp^B0`W+C9
z{enn*u=pWFf=Q!Y85SX?F=~f5$3_5C7r$6qjC%SiC<s6X#6k;J-~)ltG!g(V!z|;R
z1)?(F?ZSrxDvEk0K+<f{Vv}jp)s)$yQqWX|oV+)XoC^=N!yf4RhCK(+*j@ZVUw8t5
zw)hZ(fDbh9f_=^`RsdK#*C0y}@XkW{TyH#6oOH<K2@bG2o`bfK5SL*9TBM>W>*V+Z
zeUX>ZXxR5+nVUn<F)chQ(g(}T)9M-<8+&*1@&u=WY+}D)8xUKRmRCgUq9p^Ubv0DY
zS9e%6?0{5_nayXl+F-#N59=|&bz|)}YK=P3lQwu?&;-P^k37VI00EbTJ3ahzH3HBs
ztR0!C$Z0r;1e_lH#lG`22*ezFu<sOr>wH!`goZd7egP1`erUL1pj{dub_jYLLV*Az
z?58JW5JNh!;#F*b-8$GB*=NhyeS_pA>ASO1iHg1$E{Knwn)C)0B3EPp`NGRf;ln2;
z5Mz-A%48B9`#LWT6I-)1>`S{CCZLhNf5FdfQ7QY%DU67Pt6*iEB4^8Z0(f7<LE&S^
zi#VVZzxJma;LSjW?u*((8el6Y<bb-!7Y^P5Faa?B=s5MABf6&5DX|rSvXKu0m;gpb
zDp5|aar6mT^kN3mSBhD}piv@-hc0b#JR`RWCzbL@*P_>HfYdaTn8y^*1R_#KKoY*!
z1HTItor}wsovskL^MqEZ;skoNhAWdR)*jFtelcGWm|%VgM$Lc0)nvlZh^CH1aIj~>
zt0P~oP+{P?Juqq(tQ)mv9kgMDf}s-&_DGCCW1Ny}^r%9FGl5S@&UO}X^X9+e5Q{dC
z9DDnR!6W1|=$U>9EC>`~=cs`~%and}Y*08G0s@AtcVyTM1)y&szYj2=phtpFSP?`|
z_!oztI={}R1VA($kZ@gNM^{)_^x(k*xs*PJ46VStsfSE2SU~A>^wT3g8|>X2R4kE5
z1T7=mV$~^BSs4%8n_CbyzNxBCzk9E{yPG)z!7l)zB&A-f)T<|Dqn0UhNepS<5AQ1K
znol!0ro87b^YdOI%{qwM2neJ~rCdCB1%MdbLilc&mMkb?3KL6hm_ne&Oc9e1R-jTh
zRoArEH|tfHEfo17q9^CXdcfT)_&{%1nRsW>L5$+8NvOqE+XCSc92=A>sYE7K>GbF)
zL<CP9Q9npt6U}?A^5v5!Rkh9IIx;tSDdGzXBL(YbmDCD7P}FY3&K_|s#KdHPI^fL#
zTqKP0yK4*tn?B`+LO$C?FTfH!Qddf47?kHva|-kFM+OEt0r;VwL?Q$<Iz9St!OjY4
z?BEbQBEc5`15MTGrAsuhS>_I~<)Hsa=yiIfN-brvJB=L>;lh<G*9u?In3k8l$$a!w
z3ui}LWORgPBSVu;t5hgt@W1u-^>uX(uv@q+rAqi}H_2q2>S$^y&VSL<(J4rYB~3FO
zoMFgSI;{qgFl!tA;&VilnMY1YAjBLQ8R2Q@840dx(AyKsWHP=oy*m&XBUI#SL8+)8
z<Y#1L<mKh@9Q-1Oh{+rU!vk_@x#Zw8{c3is)7+3Sx!46O$R-9`un@GxJsmo3ziPr<
zAuyVQ{Pv!~e!L(C>hd(2;_`qLksl&ml}t|IFSlvPz=Xq(&SV@@%Esl=SFcN2TU*6|
z<6VF}Ja&hWXbWPXYsln!2H=n<egUAa{V31_)0j_c_Fa9BOkjj8>_2_EU9Q$>F~4m(
z=ar#13@aCsGen3Z4j%y8MlX=CZ%*_EVqZ{&*8;0ouU@66rw<PHvv&A3A~T|9EFPl5
zvBW|XTu7}3V<a$#JW%O-HG@pFo1dRwRaJ$<j<)u!%*U<GEl8tjzAe$PZ7OU@rm*eY
zSQ9`D{j4w@4WaL4Wo0j4z8oGN1_1!A;8&nvy~fzVmV{#)aBc7+)+vioqrd>bu8rs~
zGbE|jptg`val4`l7#IqM$k$<u3hjvs0dSu15ByN{HUK^ZB0xg>iU1tKz#tD)!3`c&
z?1v0R05Jy%`%<oO_)>d6&%1_NXbwf((*nSsH(?KG*QSaYhCQnx0Jwn|nc$4WS%ZQ@
zwyJ8)7MPRXWG3UGvnSwThgel6C#6^lnT^2+X^}Nrta>bXdfHXv&<1=yFsnD|b!r(9
zHi-(571Kkhv#4}NgT<^f(4vey?uY4g5;}sa%%p|~hrkQ^u~!iXt_}2^PY2#Fduat^
zeW!oyNZd%v)hbqK#pY9Z^MM5sG<FG;=GV#;GC7cn;Dsn3En=<HVDZ&xp+K-DWDAXD
zXoy7R#6Y>!fMtL#FSF3xs8#7yazyG=MhZhU3MnFWm28riQk*(v!Uh9_CRbwXX;rHX
z&vFZ1<QFKV^i6I;s|DUzCR6a3p5xf4L>y=+gpcn}xJOYuLc4ffMDbi3zh?pAvPMG-
z7OV^Qg9KWGd4dy<Zb3t*)mRm_kr1xcK<DDpfHb5+K7KKd;uJ%rNrgsb!is4e8=sU)
zCRk4)fYzjz(pg2b0XiQV9=)CZplfIpt)dEmn=3Z}@D#@vfaw4s(KH%@9=IwXIexjR
za4~qAs}5<nUq0Cp0U}<9h8bYPqBC0{t=3=!A2N7kqT|_5o)x_;RVsJ~DH9E1cgl8d
z1mFzEt7Ipj!A&k>rzsgg+F}NxNkbl<_>04j#_MPsMdRb+NJA0$1%XPf?d%zBZtHGq
z@40gIW?byChPrx;szCz}3+uONRBDX<;J|2QRc%lI2zaSA!kG-NSqv>74CtMEC4e|Q
zsE&zU@$%Is4{wC*($Vop_cIdX6KZQ~F>DwL<CI0BQpmMxrHRf6VOp>-8vaPD*2tKm
zN!P%EfuZ{PMufbOtF@&o_DI6nGgn%gJ24C*4M*NPdr)DM$<EiJMFU0qpnzk7iLhy=
zH|V6Y%{~G9w(sg}>f~gj5{24CXTA}ta$~Xwt^pCCWT=-}KP17g+G>W=5%!(P!mOcT
zz%lB<;3N{OL96U)kKP@AEa`M(zeHiOYMDnO3Ny_Iiu(;pqhiv4iNSmUXYejS+oHmu
zRmdia2mivSH+JnjWXB}u^IW{jhPXC4KH=W2+Y=+BljE{CRn6!JtcK36GF5QocMc$S
zhs_{?aRNVhNSFu49e{A5xw)CQ3u6$MQV0X_xU0epg}gewoS!9Px-qc}BbJ7Srug{8
zjQg2GgJWsO&urVev#z$48YV}n(<micY+x8Y-2!4V1Ox<yg@w0w^l<UUB}$E+<bj^j
zuiXq>zwudCwoy%26?jC8^&Sx?9}Xal4XCr2bOy2(3~^muU14EiZf<TtK|yC{=d3A;
zLoo*lQNto22TCB-v*?pwIv1;O;Jyj=+0)Z=`t<3WH*XFM3}8y4X&#QCBU-Z&b3tX$
zVMl?*5(WwfOPgCWi`Q9i-;`Ap<rNe^%g=wBTVGqp4PG>RE`~VqIj|w3=u<eh0|<#C
zOk~u;Au4jQaR`lJ;|^r!e3*P7(HdaGdWnL90fVWfskyPaNo~|CjJn>j;q75Nu3fu^
z4LPx9z|{ruU<R`U;4K1BDhezb^Dh7}6q`T-?tHMjzbLohWlsK`Yqv^X6zi1iLK6cG
z_6X1_BxJ^*G-3B=<@R6?P>v`kMs`+=C<08VrltlXi?rAU^u3EgUtizj$B$!UV;Y-k
z6-tTGi2h<yfQ&eUth%}y@dRWS<8=XTzy}2Y8L-m8;fRqU4mWMu6dN0h4b{`fS!u~B
zIoVIyIaFc*wE{;b#_`Kp8ZeF7t#K?^A+v=3M@L5+8ym$9>b`yZQd3hgqs4ZSfJ*st
z%X0t_18XzJ4$Ct%BNmbJNog2(C0!@fD(h<B7QA@*<XJ&(;p^s}!9j^|?TmF1WLR;~
zaXrS2F_;06P#gjgkOPq*4`kq_5JR*gWb(v&0WxE}pdze9{r%WMO#@hoCIoKa&(rnw
z^>^>yy?y&Ob~3Y=qY8I%NHY-x835wifl=c^A_ocla((hr0B0f`*Z{UCa$o>2&f^lY
zoYB$oveN3Jm*oZdB@gcBG}O0KWJb!T>%}00dlv3eV4fWAQLBT-Xz$0`!jfau32`lW
z>IeFJ%c`1thBO*1lWa>)bt!CwxkAYZj3{h1X*3nD%F17q7CkR2e)+1hvhwZQw`}<%
z0CTuC>`wV|fQGo=qbLwUOj(Ee`b%CGb+)z%Q8?X~qQk_2hE*ChUEpHv%2Y~9z#TEa
zhu@bk3Ui<4<UM;1^KNf#<8`qb@C1;~H`9cI2?5b5qed$Svb0H|AfMdb)n8HmmfcUp
zkSem<U3knr>rNQD*vW4EFzG?l*3#P9IV@K~VC(pV{L+Q1X{pC6OJB1+3`NI?TDT-o
zILOcw9Eo6WTJHx|S28wURaQPZIwq{q7VOLnIIJu!la3=|wsyC7K!JHVxi9kzN?*UK
zs3;p897JvC5bIZQaY<QOMQ-l%mX<cGA4bDeQ)9bSqQdHjz!Y%`Z%TA)y}i9T3^Fq_
zF_e71;}<hpse&PpZ$uW8n+yh%R3jax_+(0tX=^g-pXU`gt@C`4oj0aX^X_rZ9Qb76
zYyrFolMWX0{Q2{ek`lh=aw7qVhV<SU!Bqr=pJe`%OjoOypdJ!N6T(q_XJ_~BT@lAq
z&&s4~L>DZi<bzEpN+JTZMCVdDXJ)|B(b2nh?P_Rfm^u6Y^6;badQ(%=sZ*!!-Mh#A
zH~_l9p6SxnTWO~*HZ^x(?nozPbbcM9iuE2^qmZ2_UlbIF@7kaKAR7xbTs^BjJtU$D
zA_v`rgM%sX9J(y4GgcM9_H=SNcj6S{b@&@BDtrTnY7h>}1Hx6S%$PJroe}PXRL{_8
znKB?E$4m<k-;H=~bOifd+GEM2h-j^P9Ss1Y2Dt*F(=|RIyHKnbE_twfDhzO3Y%ux<
zhTw?wbV(NL6+(YBOG)jdWOwlP{h_=1+WWu*9bzJprBXe1$0}UBXgxSYn)g@KFdJIb
z)9Te@D)|_sLS2PMuVlBv8_e*PW}Om2C8+44lCr(oYxSzIebLRsDyW0EMVHkO%VILn
z=9QhT$1-LyD&$fq76jrwl;Tba0EKgT_#r@;bv(l3_lE$n?dA!N>@+Qc+JUYf+1Lcg
z?%ue!apTsaSM{g?G+L~3wN9#3iBA{c7a<NyQz>|Jz<hIYafy$Qhi2@TD*)u=!_5F5
z3xg|+FFfhQ<Osk24{<-;96x0p9-7#@=irvjJL_uNwOG^PG41Watd~rV4-WQk+qQkz
z?!6tIz0^M&k|kQK*Uw#CyJ9usb#^8glbTckKp}jvehSl*v<;N%1pk6aeaDU+%a<?z
z{PWM}&YkP;?~nM2i;dYUPFmQ2Xzg%A;#v;<+j{{Fgt(%k2pmM`2mmGKU~6kDXu$dW
z`SW36VSH_)JE~bfG4{+fS*NH^!p;fPr=_l8-D=0LfB*S6pMCy^fBD4Q)9dQht1x(|
zU9=4jXp|2JWVUygG(Gfs<e-#{%GM(!P=%*CJqmEFwweaVM`a3j9t)k&vAfCO$+4Vi
z^@pMk?mrMQE|)^=F{Mndr09(^0l+N9L-2%3d2{GEx-S~A2q3nzmX8B)=FB;O73_a+
zX!!S^f4h3&$_3vp@N)4w8Xecv&<e)}BL*oXLq8Q-!;nNK(^2Qe`j8d?3Gs_V3_Z^W
zK!*Uxk8u>$i-`RC_3IZdTtFsrL`@=0PfSe2mJHgSn82<KLaEvP3<%fIK21fK-}?3I
zpFDX=&BJl%E$~_@B|YH7pBMq~(R^29$VYgza^=d%$jGsgQB;>rOv3SUO7N2^71;Y>
z9|+^;cZJ!9ID9t?GdOYLM0j{O;#VA^F1jEN1gr(W=%Z-WD1`=idKPeXaiAMr$bD%`
z3iEbs-?ntwickOe<(G4pcm`~#Z0sTxFeyk0M&|UU^jZxWBm{s+_N)LH0&FU{RInfW
zQgIacAr!?E0LaOW4Zk1*AQQy+#aemj(4jkb?x2YGkr#<w<HXQ#c6RpW&70@XpAY{4
zRl`?cOV3vXdp*pOf%8NrLLW52^F_np0Ku@&u^(2X(MM4p4#;F(MqT8icXXrn?b~<1
z_|rH4`Y)e<`pK8`eptCX{9r?UD<ikC+j%Kc;T8^Gjf8E?MSx#18FfmH65)>CYSJ_}
zH3V+n^B}tn%M@Bt>CG~gT5r^_%OPkNT`-z;>f&e5zy0G^pZ()+zxn_SLG!-!i%&oK
z-JCgdJUl!eK77dgh}bbLE$!QHzeUg^UKIhLrwGuoMZ9(8nva+F#k1!Sm}2!tCJgxK
z(WAkeLkf#tLMHxX5t%EhF^Nq&eE}N%YR;TLeewO*-~9K#`}@F6ex=2)Xe(hd>r`s-
ztTS!m%rI)<<T{ocwFbR2^4n`MpwWk7H;04`56W2YIe)B@#wmjajEouu+d3Mtm!*8+
z5i&xJeDdb?8vy}feFI9E53sj;fFc}<?2UrMW-{n?R*A$Q#_O<Tar8NeJMG!P&YC}c
z^mte3j*3^W4TuY1To^<1RC#g9mVlswoM)56qhVXN{o#{Ozx#5|@Ba0Z-~7uzIXbRM
zPrs{DDbmx^zyA8`-~RS@pMCa+IbVIZe_vE?PQlF^_jd1!tgUIGbJEbHiOf~BQurn8
z%zb=(zWL^xFTeZ}Ug*)IN8%|72#<l68?15-T~{ZAK{t&EOVpBqcB@WKPuW>54<9}L
z^4q!hv-8PBZ1Evf4L)#&V&D0sL(@Y;LxF*TpM3JkpZ@fx1q&AZ{`bF!3GLal2Xl&3
z0>o*8>QEOK7@G|_+%)*nK!Zld?HnaK!=wc(6${Oqnp)PZUb|~&)Yzz$`B)=@!%4{~
z$!~=>pvlGi2nS21#zqY|G7NuC!Cq)+Xh1*!<bljw>|Y6fG+yuO>N<JyWK>iX0(YJR
zMbtMmMMTA3yn1hVOpY}S-6y#%7Ww!%mR5x9V?)FJy#p!9C%&7zBsuMZN{fJjPQTfo
zlfYyHD|_b-_k`7JczBq&=}m2K>({%uol8AIK_Sx%cSha)eVx5M6AIb5N<OJks-}zz
zqXuE^@Mu?8cXR(hhfF@s2cWO72l2YUe_-K@619ppos$!EZ^`(WjGbQxjY*-DU^zr&
zZ+nu4Kq1%A?!#;y=pRukbkKzuuNy6D7Oxwv2BUsb8tk<xW^a^aSlZV;G&ZIfmub|9
zR_QXLV1Mw=@IL6&`1rW!UNIF%Mn(`P;TLNO#8AseU_Ionb&4U3zf7q%SX2lSnMsfn
z!bTUGk&MY(8+ZEq?TI?pEhVFaM)YPDuVaPNE2h*FvZ2ng-ZqVNl)MJ(5ja5kkO4kX
zTqmGRZq3-DKthOtK}RWFOJUlkszx(5ONg$JMu3hqa_XwyXk-d11tQ?o=nh3huUhGG
z`O4$538T(nRcgq3IO@#$uKsR?MvXK-^`b|(#sq*PhJ(gRwr$(C#>PhI1eq`i2xGtM
zz$(;grA{x`8)Z`2$ly?yIKFVQAfT;3yB+h;!MMPHZMARN85E0AHqk#Z+NY3?D5PWb
zcmSJnK0dzDhmQ;njra7Aj7}(rMrB~3R2re-%v<+dS2?`Qc~1Ki_CRe*OG`&b$I#d)
zdsu>^VL5^yrq&6`Bw`f!EKE^^R#jD1#l^+g_d|HT>O(j_zI@RI@D6f->j6OFJhQvI
zTb$nLySO(NqrJAaHt<1$lYuk#@heuWz-k8$5}6be0V;!FK$%80iVSuOvR;c$Yp3+a
zzK*U<9^MCc?|c3*tL#OQpYNuvTem_6aN{yS7?=kH7OfN;23Q3^*u*jb83^DOArG8G
zdwV;&hJ1+4odzWA=;?0j?@^dB)HD?MgOSjgb*)h|CXo$}zA38+^bgqN?^jY;F43#W
zhK+Ow0_x%y4AC_D2#1S?xRnB+QZx!cTRlBJyj`vk6wL}~J{-V-GvR>d3_5-Eo`a5y
zS6@DPF)#Dk)pJ+325rlGnvaekCe|7)n4UdQl}v#qNqE*x*fTT<$zcOrrC<fl$U#T=
z6yr^ZfKurE%9ShIw{L&@_APSI5!esLB`z)w*2T}eV{2+KYSbE;T7%WXG(J8G&!$w$
zA3uJyeEG^#r_S_r4?qH))+CvvGv9>l77jE`Da;lY$YLDP9M6PoFmFdkN4R(Cq=dSL
zWuBdPgbj>ICVPekpm(4`r-AQ*V6df$kx|LWm_egeE2)F<-VqTIPEJnu@81^(3*AJ%
z7<ZyMbO-HnR}TUV94s8AkP4O$sZf!RJ0DX}>1E>`^;HM=@7^A|73+FQ#hcus@`ulg
z>pO?QbZA`K*FOktksr2bCk8w9YGHD54iE-Y1|ARA!t(*V<LC&Au=-%F;T8*#07ziE
z0U#0#n+wkY!vuy%KvXb9XtH|s>izrogAY2w>jK0C+0)b%+=9EiJILT1_*FRg2Qj9B
zdBY^&Y>~q)-`;>B9=8@Q2DB&2gIcJ|(`XSDArhvcSRGve0srM41R*%7G~?{_xdj_M
zXD7E4$1j$bHk>(iJ#_2d<fIdwo!z8QY=HEVzQL}}-hq(`wHBLe1n(w<Q*^1-WTB9@
zr@MV@sNX`5W<n(W_;6R|qX*y5b2yTCrL9K>A<!5QlO8L!#iD^1p<9;ChK9;2w>4|i
zj;7R?*Y@@FV>1&L7Ut^eiU6IfHzg(IKmDiw<mu@NMcL~gTh-?JhN!*!fB)N04@VuO
zcpcmgMg%R;@Pb7P&s{jrmlz<L)|rg_b{7a;RPbWy!bJ&3<H}x@Jj;H%-ox{FQZn7l
zJ!Mr$q=@^CT3uI1r%FjP3w>26ClRTSjP~~Rx3h~9w9vqi!glQT^zhBfd@(vir~I%w
zAT&peu9A)`C1X4^*D0ku1ec8uOGXE!V?%nCti7pj*Us>jt38TJ8u|ugXm@;6LZ`qj
zM#Us)MkAL%lF4!SJ1v4+2%*uD&S9>wRoFA)Kklf16fob-mK&F@EMK@d|7k8=A7)E4
zeseOjzW)4+yVq}Gb|aei@$h>2JpXNFRYQGkP0gFZ!F~j<*m5KMg&S#a@2sw>mCMuy
z{nY*ROm8ng#Oqi_*!fKYZsC|9*yMYAd!IRT28LZ$R+gWi|N8Z7aoHLi9UGJD`zMqW
zay7fa3cFG9c%9Iwf_~I0#l7^5rK=pD7M9B3RCRPx20jYrEzVgOFsz!drvUKZv}qIe
z23c8I<>lpQ@xp}**z#Sxco9`#>X=F}d(7+J-d?em02b@Sn0j~!vy}oDgHf$ejcWA}
zSUn->mq<tDaw)pM$u}r9`5XoU-jxl#X<`y9_ykJX-C}|sh6cyzEg&XqOLK=pPT>a!
zY{)}GLS|ig`!(Q4<8|n(pr8N|6{Zjl`Eru|G&dx4SH+v=!4YX<LTX}sl5~8cyS4T3
z{=HYuoQjT!Sg~ZOi?i$3bH4w7{7?UR(K4r<d!xF#>FP;LObj{$<`|XK)YRLzZ$rOu
zOjoa7b#rrDx^yW*5YUVa4P)lD*EFnIyzJ_k^9U0&?%q3l@>Fwk^WD35H*E4<zIxRP
z$2DKh{cb~$e_m;^Ot0!4XpfHByLibDz>v-UPjfQgys0{U`s8nZ^T~hs5C8X7E1hoL
zOmA=NONdW<{3ws<*V54VHZkewIya{!OBZ;0t-F2uCfigYHtL8wnwXS${CMhVhczxf
z8~igeACIdiG**QCdiWq3NDIa5x(UgikR873yi;RSRxWc`xpJ+$Pe8`g0#Kj@Sli{x
zm*J0=En5cve)Q;3^b~FgDlIB1+PQNl`a6IAeB`s6t<{pTuAA4+IytU{1B#A4R@dB)
z$${7xtSVnu#qN)CoHx&X;k@|mn?05<-+k~{^Qac?gj^=1hU8QFq0XjzS5EH;Tt9!#
zA2zr-y?B<5Zeqf}Dk<HvWy{*NYkhrv`P~#;42<Ua^XI+1yc`@H{QUeN6<h;i=!Y2(
zbSgDwc;U0Ww8Z50#%2t`g;QtZV`5_>4{i$zxqAL0w(Lg_9gaO1jr{ND{O~{hr~mrH
zT&Dw3$q7l=VO^}LZ-Gz~GU<y~g=a3Ft!rw;q0TggkR3rBP^U9s${jm)4C`4!LIUDW
z?vgP1ArjU$9yMaAJA3x*lP8b$21RDpoee&2-+uR})oYf;9XniGi}(ghZ^w}%N1x@s
zfKNFZo4n3-ePwwAwEwoUEPQ+5!XM_WSUh)Yh<|b6bCVGp!ijC$w)<}KKNNFp#cJnO
z4(rysZ+QCr6-8?n>*L$$E9NgM%FVOr=q{kVoLtC;vD>jLJg@MD&O#@t)E1-Mge?h;
zFG6_)>jw`W<iQyh&eqmetmx1!EWDwi0oCWuoeRZ2c<=zKhQhh!-@0`RYZ7#h>ebcN
z-~%QlB_%KzI7BRCiHV5_1rRnNmV$BsaE?hyNiSZ!fTKKq{5Wi8&YU^_<-hzF#9OF)
z_WZeX*RQ;7Yr;NqP%{4D$>VcZE|r#-VSOb*S?_w=JKfeeolQxb=p8gEHMeixTE2Wa
zrX*HMXgD@D7Cd1jM~)ofrz<c7K|w(f(#OXqI5-&o0TUlR&CSil%*D!j;J^V`6wDiw
z7h{L+qZXz!LO0J1>*p<BvOQwY%ZgIuYE<fnx9-MA9lmkq!sZQ|R?T0$a>3&N_Fw<E
zfB5hJxM@pp%K6hZ?afDz#i2#GY?v!lflfI)J7X2Ockdo|e^3rMLu0E}t@`1IAK;GA
zDD=s-3W8q@kemz80fvX5BxYaqwoRMIdPcDRzb$(k>=$zL$}PT)fAl2B%V*OU-+aG#
zwZp-<_=<)`*aMcO^z?LWfmW_uxp3h^s7PFOpex9{Zr!@5s3;6KZ-N&AFyh$h1q1|O
z-1!;<C1WOHKbDb^0exa|N=ix?86D{CYB_uE#Ig98UAuQUI<0bYa`^1CPyf?@`hR}$
z#aEj{LJRVXZd|{cl$bU&I4+ea6$%xs2n#A!eE`&mL4-9z5_lf8h=!m*cwMa4gZ%@T
z=?O=U7QZNb`Xn3U?&Rw7!=eRW&HH}Q>J_&$(lrJ>Mj<gi0gip)_j6qxobKOC2NUcx
zKK=C5|L`CF!;&RSU_~(6)2C0vyfF*FA62lFVtqwGj}F4I@URTs1Tp+Pa-c30VIkl}
z&<0ZiLJj?3N8|3$;Db>I=<yqNHms(tzkiZWh+Mjve&Xcm&JOI%_41M4i>Hzvrr$$Q
zRa#mKONLkB#tG|%1`vF6VUQ0<PELkt!T19M12Lgc1b_)4<h^$78uC$b^XAR4YD`rW
zAtHgO5E$bKZ-5mFX89lg<A40qpZ<j98O-@U1b|`Xt0w>*fjwgz25s;h1QX~ZkHSF)
zkGFB-Ms$Do?%fz-WTHA~YHDiG9GbwAap=$?I0vl1=oEB|sR7%7B+x20a<C;(qDSyE
z7&7z)8bB-sGh4G}4b+aF!qpRJI$ME-0vmX6P+YihY3Y(RIoU6<XpD`hj~q^h=Nuo$
zkXfX%5xCiX2X_5w&bKb^zG-JJHMaF&b^#Gl_4M@~*dMXhd5z<$<$J<I^K&va^6}S2
zxyzR=`M>_({@<T|zI<O)+RM^<sfx~Sn5PUHJ@ysUE&?R^#Av~j>}7KoJ-D83HDFt4
zfo;R9pli@JdIve73b-|Ye}821^Mib*jE#)mxp5QW=J#KHjrB;l9ZRl&Rbx+kASyEH
zcxqM6TO+$E3J7x*{GQ2NTKsC+qQ!S_-ohpmfj$EFO&fgb-n?yZZb^(gmYSFp9T^o8
z6nyo{C7FCeDjUCW@$^PtkJW3Ic&&Fn923#q)7IQlkInNx|I;V`-~ar7EM4q;?(`jn
zgih$(xqjKrdCjV&3wLY@sxEtlNZo`5dCFK;{Nli#oqiiUH+Z;)Z4Czg%Rl||fBc{R
z*HsQ14j)PDY#%yz<|5)5gz1PPw9<*w$CEu=*DYDJeECx6l;f9&Ms?`I$mryyOP4Ud
z01PFZFbqbtwAsKqo0*=ma`DpQ{1<v9-A+vLy2;Y`widHB`(dVRY$C|lFL;yxaBn||
zu^O_gE)=}NqTmN!zAVPJQK`^k(a>rv*RS1M>*U?lF-#=PJMv&1K{F--><!)+qXYK~
z=ZRlfCST*=7WPLS{CeK9B@XMh?}>c&Jf9xVo6=j&8r4|u+2kXeJe*f7{607+AY}7a
zXAhr((l?z$<7fd4;R-Nk(cjF>OwlLvIi*&s5r|_Q#EA2q3^Fk{F-@Q%?rh<9usEVG
za7Pf5yA&)OWn~o}Zkv`ac3d!j`Iar)o;}N9J26ZOb!mCt=B>U<m(5$d)@lF#1DF?S
zsTZ1?x-1q`dq-1z!VyQOm8(`S^YV7PeEA|%7u@E^vACqP<EKxby5QuvZp-E!nUAv7
zYC5BVI2mqMJcsq`0pj%<p5ltIErE37RDFH@h7B9Am4TXIF$hO)-nzGaSH#G;LNlQb
z3);RdbO&bgi|pJV{`e>NRcnq$9y$^mmvZ9t`gI%r`TzH?!CQ7+ym7C&wIw;}*wQ77
z_zh$|UESWE>%+G1Kxp3G)p6;<#mI;QX{pD<w(nf$;&J3~oLZ{vYwcLQbUAj7n4bss
z?py2RTv=I(FevTh3Cz!fF^50@`m4E%7v9f)tTJe>Ub}!8?!?*SF|mhS99HcP+j0N#
zqic6=E%<KUlDSI`96a*yNp5>fua~P&*!BpOlCJHZJC)|;<`S`gHw4?XX=6}O!2Jgq
zu#v{57H4Od@4lHE8F6S|`2K*6f&Tu19mBm6qe4&T+?h|9GSOAr@yP&>_1}H=Wo$%D
z^nsXDCoj5t2Lx~5U;3s2>vvC2*NGFyBO@cQZP>CU1fdlIFPJ!dQ&JKvJ|re4_RN`c
zIXTa;*R-0|_pY4|4f2iH6Ap*FEo|4R^H;kE#?aWnz{G()k-qCZV|IpLOOC%B8~w#U
z|8sa`(wkm|)XaAerl~14jPL2A8=HMS5AO><m6VWi<7RJ5D?CD5V_ix@JSKd^fvEiv
zk-PWo%YBxIZW;`x^z;m0Uq5f}4QZ(-PM<vW@<q{u`x(xTPPeXI*DIAUg43y~PAgYe
zmzK9TwmPm@GxzK7_wLx67#simN$%^yqK%&3#||IPxP9Bj!S%D>ejglo;BjW*jT`sF
zcJI5JabKlZ%QcFGl+^XU{yEPJ$?4Pm89?ZU&aq)LgPE3>mj}lLhX}R6>JY1ig@s|&
z$7CZ*yLl5E)*CmjRh1W=Ig@lSHX<=4cHfR|?rR+qjwi{~@>kCbotCXWb@q}{V?2D|
zsK0kmTXWw)|LCLp>G4OSlat~i5A1bZxh!h$-nNc*nM%3d-Fxo$3wG{35ET=5=FAmm
zXV36Ghsw&|OzDjo*Ke#^xTvPIY+`7rs33p;?mbx7<KyFZ@81`noKjI!16A|50UK(Q
z#n|81vomaaNO0iG!h-R!5#BeBElsU4(ML9T`|R4eJ2vL%-o5*=nqn$pa-rAm?(XOm
z;_sBC<idg%CB?56Em#Ph%O>cqt>a0_E0?b*E3a&6ZC|o<`IleLiHtmWGVN4#<(u--
z3WpVIk`j{7ojJc^#j3Bq`g&*h?vtm^T)uwIH*n+g!e_9S-r?b6$!Q^>JD+4f<5QSy
z)ne>vX>?plyI(!5*kpZGRQkhrbD!ttsg)YYIp@o-F&R^nQyxFc92yvGX>L4pFw)!0
z1JP3Sp(q#UwUPUyC&u9ZOeaqq|N6`M&JLbO4#y@X#(8?U`mEn@?eZOi7JkE+nR$2H
zmaTq%0ZA!|zMF%hQ%?*@<kI1R{ab>+`~1tGO~EPgsmJ3IPR1Vo{)<2U?#r)ZPo8@8
z>`7Zk^WuezE}lI%HaH5;aO%WKxNNNAnCUxqhE-NqVb)ZZSHwgg#=OQVd+yZf{O5V%
zsY?53`yC)}_7i}*3}Bw1q^s;kqu!uVV;>&oyJezhOfjh{$S>X>ap-kv6`H{)K=~Nl
z#Kh#SJHl7Gx*a)jdP1wOt*?teb~IxD-Xk&5F^3PmDt-y(e2;;t7Z4a6cPwGo?!6eS
zfx%($QR{U^Gkc(F$~w^1gQfK9#Y?@ty%ZRkjZdEE!s_5EvGhiS?(|vbHaOD#;#K|+
zU(KC6XI^}2aza}C(U=3fw{7|2lP`Tdf=*w!HZD_Q;a@s`eo5I|x-Mrl`TO~Xglric
z92_0!x^nSM%+bWSgw*|e!q%-_vp3?<m{g5eaP{hy$tlO>GWGrIcN`b5%zgM|xNqpp
zsj~@*$$KIrmpVH9@!L7~9zBrCWkp4WiE&5c5g;Cl3h@i@_S%^B<XK)`fup1IAAbMk
z-dzW>9zQ|=?X!N<{=JdSO$~az_G$KWzfHmJ9_z6s2n_J^T<7}W?n8slI5N`X?&kd6
z*Ymc9?7;TJ#nr*v%lG-SA{q`l^~LT6Flt7-oA!o=gam9Vc=2**T#Bhj=Oz%1nXO@a
zB78P(dQ(wqozf1p)du@|L_|ak4i0DE&-~_3bC$1hj!8^DcrY@2`&Rg<Q>RYJjmrM9
zeqS%2uRi^9d+4s?X(tax?ceC_6%!R(RbHb~O4J%zW@gs1rK_VNW8>oDw`>mZ-RSi^
zJ0F2+3u1!hOMd_RKgJw6mXvrL9vchZKmPqcz)zk%d%m%;S)rs0SwMJHwr-Lk0V^xY
zJlxl9+q$`_vEGc>h@BF~uUe@pEO;4x@bKo~EumYtN9;Rr>{vouTL-#7F*%Zye9Xgr
z{l2}C=g*%%c_IaMPo|w%v21nyn+B^%FBuyS+~gPF7d$a3zn_u$hd=(w)6<)_C`aSE
zI@<^Odruut4fGEP58HY0VD$FwVfWG>YISr$%&3!FOo*Q0y^Ig8-(I)M<wa4c)?n?b
z?~OZ<aPHy_I*n|a%FMXGGdy&im)n`M7q@H)_wx2VdFuSwxD;a7*Ec37CV6{$Mef^s
z^zcDnZ;#NBfSStEw#K(%+d@D4-8`3d+s>SS(A+kvV{0UPX`4~2h0~zR(H6a?tmxIM
zB`Y4@d8AVsG%AcF!1Va>qqUB1w{G6kYUIf&$B_2-3t8{&Uik7k8r5k{7L)mPNil-;
zZ9yTcm##d2^0ahxQm@u@v~^;kym8}J{)>Vb_=GE$Br19*6>A!up|`gg<ci9YlGRI>
zW@ThxOf(ARnG+}1tXSFJ)YjbCvU2&V70Xs`-MsDe$usaLN`<7XtZ>T~KZKHTM-T7b
z9pdTfc>dg({@#Jxw{H9Z_;yLezPOh!swc;k`A>5L)_aBc`lKbrNAB5kJSnlSs}rsE
zc6OvCCwaS5q#hHs_f&FRTEgKqE0%us)%>tsM{=IMmP#~hoz`s)4jJj|Q%c4k-@D`E
z;Ssud%b8Q>gM+sF_-@O3`dXo)$A6uj9DeuP&!P?-j6AS^&8pQq!}h)?c*T@P#%4n(
znT*Y-)uE3L%U2>^S4?0hKpQ6DqkH$)u6D?M{A6-?6gu3qV`qP7FLoC63;+WxvT$V^
zHf((Rw$`AxOd*@`&3=;a;l8o0wO5bb78J^Fft#{6);EN1-FEKGS$G)!AOQx58#WF*
z+S*~RuIt=WPo3KuzTeGzBSH>L1Waqi_+W8fR)DwL_TWt?lH*ULr8+n||MPEue?N<s
zt*Wx}Er`~AH^s*t+qG-YvG~NM=2kl21e2v(A?Vpitx^TO?b)@ryOXXuVll<u0BiJ}
zJ9lu1_<^4piHwXypoJZKMn(oU|JWg8gL*73^+ekF-Mb<X+QBn)cD3mA^2Vk&VLLbb
zZt_e_I+~J_6du0&AO8Mdk`hnKCRJvw{>GJy>)hAw+_fEnVz9rTkMD-e>?bOnwzI3p
zX_ezQUwpe~?}4zLd$t9KZuHpL+T13Q$U;MRfJtv}KfM={b~u8P|Kjj}c~f1-Q?_`W
z<}X^r>NPeta`I#v_6_{xP)SMY`3qNWKg^_Q(JPDg-x;udN7KMS)ywj4{{FN5zM;L%
zJ=na+EK@IT=XlR|$;~Y$KWk7V96PYy)3xqRH7aTq8mCpxsR=3a$%&!9?%L`qg=7*9
z4s;J~4cz6oK4fx4@}{bK`O;+=euYeq$i~IR1;IM4aLl68Gw%Bb2H+RV9`;pl$|{D2
zhNKof^ptb`{?a*fZ{$9mm@=P;N;nX(v$U}VB6T<P1+5Fj{%L4PQug9ifQQ$aq~x*Q
zKI@bPTcXe%+anG}Nfh$l!GRSkR(P%ReEYgmJtli__0IAI%kSsp!Q17QRzw|*N635Z
zNKDh4D%Hry&cHyIWh+Xa6<ReGmBdh9+A#NrRhO>blPhJteQiz6wPWLhP-91D%eHM>
zuyT)#jFgs^FPOgsdoqK5YI1^36+j!4eO-~;gQ9nbH&#_c57|%iHgDTgR@I2Tc6`!l
zzl}i%k*Bb4)~YIUvX;+VxPAZ0+CeKnzizN1aG6wVdymEK3JUb?>gcASF<JEz4NT_M
z<McK2zrJ$inp9)LBAt|WHYxQ~-{4qtODC4D0}+P?`e+ZWQ)=a7@|ub_OTJ%#SRWC!
zd}8R@#d98O*Vb0Pm5#{Pu3Wczv193rD!LufZ0&04a9X)C`B<#gtVR5^Vu4#vyF#b2
zzI|IAd1zN+YP8lYudaI&wkzuKlUKbx3O?sC>mjOz&Y1KcK71GxY;0@{vksf)?Cfle
zEVl2-$;rER?ZVDbp-_Z}ho_~b_4ahN*Huf#`(!2=b|_OrqdPbFY}g*uJk;I#qQZOL
zs+$ipM>N{x$b_9<Tlzak$42F~RW)dX`|k5eCs!_5TKx8H*VtHi;0~9iPEQM7$xT+Z
z)cEFg{k(ZAE?vH1P%ECK-*Q;GsIs_lY_RWO#NK_o!m*ctNHq<OyY?NplkrGtw8-`J
zj!c-~*!U21U-aTxNT4smf@4Rb@7}zjkVxr<NQ?F2nM*#N8?RlwL92(sx?|g}8#ixj
zblRG_TE75)I21bXHDw*_?K7&i&$6;tE?AtOnQc*M^po;yr_Q;oaeh<RSXtk=e6^#8
z=Z3<9Vlc6&Obr!v?yFrdpS(EIJ975)g-w1zm2c}{@NGREJHrFcpH0A=t*vbh+ZlWJ
ze&NV4f5WD6N{?-Tq^r5q-D%~C<TSP1Dx0*NO}p%{d~H?f8?8c*P3hNv`X=kaW13eK
zG3nEi6E=9dJ$ssozRD(tUOX$<=)Udlwa17vZ(YCi$=}aE5O#WEcyh|5R4a!g_wD!d
z+}+(gF*(t)eY@-SEn5e>hOA~|K|z7<zQor}gR1`4)V(1K7cNdcf0J%k2Ppb>Y;^M3
z5z(fAlQGtny;!$&#g(*kP!~cjS4WqJ4>Of&74}!ymLED2qtj`MUlc5#H@~Xrr4>#P
z>jW%T$DS~;1G^LL$mfUwU^KS%Z5pS60t-foU%GYGYS11H-LvqMIlDu4@7{fAL&)|^
z>6tKGrOw#!re?gm*DRGn424YX?i=W}eNT^4TV7e_xO`#OgL_aofAVZ{VhqOY@9&Q=
zy{WAel0C@E3EZ;1uC*IOrk<j^s`OgjluBn9m1f_#x6#!DJ2$AOsJ=S(%<+ueC$xVv
zSdaN_-{<4kKGgWEB;Rq4cli1v`BiU~2)xW=Z=XKixNy_cTU8@ExB$!fqyt+#9bdm`
zmDAl^l8{Z_n>X(q85))K*ECe-A<PAHvt}qMcGveyT;H@yM#o1yJ)IB4#7{^J_b%OY
zU9_e;zf?WOZgrco<`ow2IdJeuLIRdzy;0ZO)6v!1XjDls-}AGcEL!Mv>dbAU$(opO
z!f~Z<Tm2w9J~7<8BWPc+&knTys`y24V0d!Um6rAaqsh|O*?c-Ne#H-~6eBY0)VQbH
zvc=!7&3#m6nUdz_-JAQJ)7@J|7;%+e0Y#}*CgsS0)uJeWksTW3i(PT-(PP)|+#i!8
z!nDfN`ol4?2!*?vYfXyLDfvjyM)zHj2bD@=`GdUQ{xARNzw2<bM1`SL4fiJQKkVu5
zQ9k&#UDoZh!o&GXhn%P7V1huuF!Pb)JkRvYS<=a_syDgoz5S0Jy*M#4rBRw%nu`zZ
z-?D%6A^o7$GB)nG@cVVH>mO#m;5G$+=)7vp^@~?w0N5(RZa4}y#qUeD>c>ZV)9+m0
zxqWkx-^SSJsFIh3-0<`&-QJ!1wghgif758uTbpa!HwW#=$tgtPy$6>!_^!KlC4Fo}
zgO-K|+EvogtLM)<Epe-Sfpt@B)k#8qgLiJ;+czjlfBgKL?-wCxK<J5O8#C@@?$Zq}
zYtJ7~Q%Pu9IdS5`?!8Ak`{lHsHR~;^5w(6yua}mmXRQ9yoHgs$g+@h0ZrXl3;ry$*
z#!;hLBQZv7JrEkYFYjfk*<>B;8MtuzeAw0<#RWxXt?|i&M*%**7fzkA=nQ79_SN&e
z(15@b@d;LwxvsL#b+v!`%_4=2qD0-4RbepcECx2MbaZZ&p1d@_t#~tk?xMT*9wM%$
z$BQV`lfHVD=e)w__VveOqm4<)5nKHB-MX3+6yP3paI0iQ0rx%JKXCo>g^g~Wcdy(G
z-Vk{C>_x@60;?6gVo*@X>ynDmv5DlgQ-_Wo9UPkkSEbQRFRHY_zsnK7yndd$Zq>>M
zH?EtMD#^%L`1T!J0ynodcl7rSyR7waSmOeRsiW8Dm<BuB5A6#L+wA`;zXa{7<b5Yn
z4zG9ftFLZ{Egd?vcawK;Pscb6Krtzg-50UN+o!9p$!eIYsjS6*_0_8?sX~9_<~?js
zGao*ZPmaOH<inl1iJp@QG1!E>sp-H#$YnZbN7u-`2hjajg)g@T2FJ%9?P~2b8K%0s
zhW73~?CR#HR+}eBhkV>zS1n#uT39+|)Meg(wBY--H?BUFO4!r1Q&yD*3nAto0v@^<
zAJ%gB##OAy<;BJDgJciPR<XFOS+?ToqbHJ)iETk!mMvJaYuhfE-|>`_hog_y)i#-o
z*5j$CzWa8byPNl3?9mS#&Uu=T$mH^+8}4rFTU)wl5dkY&O6a|C&!6VFI66Ik@KAWC
zv+X1tf5<g0IR!EIwJTSpGKEfW#7-MA4;FN=z<zR*@A|0y`$mT8PB!?)#KgooUw@ll
zP&hI)oECjJGGt5D%M#hRw7sKu+s-|=9%RCLU?X~+lAaAP8`a|zn|=Jg{lnK`o5K$5
zk4#ERii?Z8c<~|@Q<KS*m6e6Iu3o*0ut6%7o;Y#h*s)`MeSHSHo#EBw1l=EHG)%?E
zCptPhvQX9%8yn;1=9-`XT*uz9l#}xefmvcg>OfcD+k#gC>pbF;j&=5RVNDoq>)yI!
z`;N$cBPv<XK)=i46@D&WWmVOaaz)mS^tB6C<UGn58XODTu{$te^WeZJ43NL7goiz7
z7r)5lFWw>i^MJ+cjEh~oE;u5IbSx()J2*HnBjce)qq~0X_RjFVb?t35iapB2;C+F+
zcGV2^R}_@3pYQncdNyXL1Obg@s^oTF$P(|TPYP8Qvs6BG_~7<HU$54NTCH3?IW)P>
zVco%fkwZN_n9Pke)pxI7Kbds$!imeSt9-m%{KrQn(5b7d>!nMV#>dA~Q&TY*H8nNR
zKE$i9uaAw5jgF4y&pAPI<(TyO^ZbJ+j-S1LBVl{wqThde?n!2obRs%n&wlUFx`82V
z^9NgpJr=pf$DNpvYVKXU5$v|Uy{eWwT8wwp;b<>kpW(^zp|MeSclU!42Q=eSIGob#
zJjW$#uHApyI4nPLE!|^Nh`YDX-rakuUKNe^cKf(EZ{4_YxTA+_ODVN%Tpt<}lib(W
zqc_SL8mli}I(6>+$&;s2TwT|?xH#9<HOOR&)2A*RiNO~0e9_Bt_L>uGSIt}Jg+I70
zUv@4f_0rkP+qUlV_6g3+e%Ui1-4PxczB8h&v7Jp!<CJVXaHIc@1Lx|8c)Si@IAOB(
zYYp9*Pp<CW7ansY{`QURkzOTvOS$rP%2DU}UmrXeef~!JftbW4t6ld-#<X<y7Zp`F
zJ9}n6$fgJsYq>&ikm+h(zghPE!YAqXRg=Sd^~9~K7hTq@sVJ@(>>TlN^FO%fXn*?{
zon+QqyIZ<ZloS_ZG04xIIN|LQQj*_DCSf(kCF~2|=PywWHMTYFKXB|-NvjIW2a2Yw
z1_MlEP_1iy^X3)8)?2r3VV-n$c4Fe4KYt$kE*xUJ92OQ<R#x`v)hp~0uU)%Fm5thp
z*ZHSzoK8A%?0!P3_kzV<JA#_W`&yrtZ2Do<mGq2$wfbaK^5)e(t+icni{nER4<0;<
zNlr;SbAF3gz~XNf6xP)ANThyiH*R0QrMYL2-AijVNK6|yghU@cIy%t%?9p9Bw1v5k
zTN`S&1pBRZSQ8f)3!C42Aaeeq<(IDC)>^ESDuaft&}?eZgKh{!jwi+~p7$L#HW{~X
zkM<9vBsS{k(s|2bB97j=boXQ;;&1nWz+lYtCr`5-oE*_L>_#*SdQ8@+P*)a}c&>5I
zzMEl{YphEB?Nb-lu5hSrY-#T8U+3j>@KEeX{}{Dqw2pQRVY6{Q`K)qOapCkOH}~~<
zFH00Ai&C#XurDYrVZUr*yrj5h&z{uE>Y*t!z0zpPpt9<Rt=7@@`U02L3q4&u;*Op>
zdgOwSdvI)If_zjZ8&U4x8L`Q0Q{x*pd?w3aPiJUI;IWv4ipgPGYpvR$o&gVs&8bH(
zO2@k&+`H=U9$ogF?pU*$6-Mp&wF{SgUH4ZMwzjtxZSq~<vDP&%A};gV<t-tbf49u%
zdTy1vyY~1lUqAogx&gW$pWMt?{h`fno1;@2=!&IrtmVyyl@6zmq)59*&n2J!(`TRW
z*s=5K%^T;hUS8wkjF7#jr>o+1Nn-S&w3rxp_O{A52DNa>8>aEz_wF!cbCQs?$}DgO
z3PAU*!ZyjQ>E#$|t5Kb{`{0-V>%T1fZrR#(KK{F-qE4Qx?HNQUfc2@RtUUYj)f=g4
zCsR&+Id{qGz-@J7l8&zS_(S`4hX!9fl~VqykVb3DQd(N#?Ci46)9YB`@#Ck@2W|^r
z>Fj<l>-mrzp@bQYkqnrmYIEK5;&A_vTQ_bF$R-|^6oeey`?UCl#bC5fYEA|1+3o7t
zG1^$tP#v^%-}%VLO{3T@sIAuF_JU^{=J;k^c{`36!fL&evd7<PUQW>)Y>2fgY4qM5
zetz5NT$E+7zAWp~t-OTO={L^C1o^C3u-do0Rngqq<mk90DlP?4aOU;LKFilN7QZEV
zOxF6E*4=v!YzYl-YVX3bBUj2KlOt~{UfsNqcJuu4=zV)W|Koz#V;52J(uLdZ&Y@+6
z&F}+OvwF|w=%`%@vdNL>&z`JV>3!>VzJ}Iut3f%Q_vpT#Yhe4^){(xltwC$|Y)KgD
z#?VYuym`7}iSLyQg`<-b3Y`R5<PxDCGr~31P-oNer1%937Pz>3-AaEbQEK&OE0zNf
zSLgP+N~>nlEFB2+aofKCKu^zDUFOT6RqHQi6|uX0^%%#@3pYL7+_RdVH!C~#ZwNcH
z^VH<HRf#rqlcUXzJADpaOupM#UvT$+s+Wg<MQI;(pF-chlS%t_`$mn|ss^j8gWVib
zlh3tw&>1Btr?sZh-NE_R#cMJIPt0yOVnPs5ysjs0z(1HYm9Gn<_U&?9xioy+w!&x6
z3@Y8k&{)8Rz{Ni-IezTqy=xgsN77a<b~<<NR(JnER7|LUut#%aKMRl0nA)Hmy>b3R
zz`AX%6`fY~gjG3oVDrvUzwo{RdCtp<6>HqioV|n)hr%YasW>Nl(VRKqA)C*poJ>nP
z>F)0DAGD|JZ7)6Ut5QLqh(eKied+4g|MkCpvHXW+-fKgaue%(XRMOmviCACO;<3c@
z>h;G8m?p-|Y<-cP>%Dee&Vx*oQj-#UY?FugU`IDi7pxaD<-YAZcWnukkBnCpRjys?
zbK`6db~^|q`9wmzt~F`Q26_t9YS8PXvZDN#OP8#C_#~Ge2!n~zBM_3-rfTQq{ts^D
zO-&8P#f5sW4K2xQy>UG?B*f`iRv~zmm%I-2U4P~Dx$=V79u97Y_Z}MQ9g&U8bF-cu
zh&Y7U$Y8NPc$^)Vlv>x;!JDRmFzBpCjn$+tev;|1Xu+<{!6)Mr;-aGieEhCmxvo(f
z8tPluuJzitFM4F0z2d`Ytt%__^K!g)_BhQg@)?TPg;|bE-CyQZsukmr`*-+y1+~`o
z>9r>L_;`@J*U~S)I}?|3{q)tnVFy;NaDDXnMgOoOd~dX0;I`J*c6L=0JAaAQFm`a)
zW?vuw>Y7%#sfkI2-^QSQdk%~aj1=VNyE?jvCrW@<uika{@^5NvpBxzo4++{Ax~H$D
z2dpYzSFBwTbnjLXj6!EJLvu!YnAc>$ro^n&BWl;HZ(qCYv}$=lZno8EoYL#*ei);<
zwz3)yIs0MO*ucmJw+;XL5C7`s=;pP~d;SlL{Wb-cm%Txw$5T)L>u)|=v~anjgR7^9
zPeOcZch|tJo9RJ;TRYl&HEJVW3?T<;(#RAw6;)uEar>@OO^-#1&$i+a>6pla`*!Xc
z8)A<jvI~si;o(^5hlYlpJbAKl<HqdlY_;v_^ZWPjFI~DcFE0=J4E6MK{N}sVL$O!S
zT|Jg~V(}{Hlb5b{4h<Si`YC$r9lU|ws#FGhZ~V=F`)4mFPiM!qzyJO3gMxw(3UY1_
zA3pr_(@(v;ybv*7xNrd>oWH++Wo0FbMn*>N-+yrV^3{}-<4#U%7cX8~P*B+0+aD6L
zB`GOoU_f{_psA?^rEzibQySxwi#LN^y~?Yr42ZbNs-_ShI&Adpl8z3Jj`%yd9orQ#
zE|tL2DxT(hE?oWc>5GYR`N60oP#QKl;(!9>GL7(w1MJmx7W@0%e=+=2ye?Nv4i5Go
zJQ#`IwzYMfI(cs2{-_Cs0()+2>uB`GZ9dz!RrGY`q-O`L@OXXinMq;9<R8%K^DaFO
zSm1u|PL`bH)ka5!Zd&iw*V%^oBps0=L^yir$Us+DM{~oWh`p{34xj(_bC*?azxh8t
zcU<n#-r7}EROIC3boT7o?(S~Ha~O&8@^Z)q?VmYwX3w5I&!0c%XVm0U*~JrQvD^Or
z!nyNSEMNA!Z$JC5|8(JLR<A)D8?rCjKfHOA?#>(O81q@-b>jHNu}Rg#Yj-!SUfce*
z-XK>=$LY-siK!_*0e-d3jU7GR&d$yWN8@x-1tv$?)BF|lmStqWL~txITKmRjBNNi`
z(J^|9jZAVdJS-t9N`fd&J7rQ$DW&E^ktt`-ULP77XlSZDcxdm6l?%W5_6tX+mH+ZD
z|Fn4V!rIz;vw5njvUcm1u*Hj3?F`$0`QjZYWVp3u$ya~;=Ce;XxUTzt&Ub(M{A*wT
zZHU(=WX6!KyQ2>s#hzX(ky>>c^-!;ut4CPWxfXbDa!(eMRjSr^AtsY5y3_C9c63^|
zaK6Ky?T041N3Ck@g_wvh{_%hN!yi6hu+sU5#jC$txH2y3M0?Lr?z0zb99$~P-qL)-
zu1`l^xW3}8!=e>g_tJIrOsDqV&8zDi9h++#hq{M1tn*7bdRjfnURSBNVh`%+;*y$h
z)S#Kfe#G4|AUmT(B}bX@*4;DPcWumimY(tWLCWz<ZS7LJyPj4-gjO=d8FE$g_3LLb
zov`j=OtCZGxpOCC^p+NS{qvhQZ?F@?zWLt0dq<8Op$8|XEbTQ_;oAdOd#zcp><5o;
z=Kk(K|1a~`t*#kpZ+`kJc!|r6hnZb6*@;6b+noJs%bP|<WU0v~*01;Zdf|eF%a?!t
z51;<-A3k|n@_Iljj}DJYIuO@AGAV;R2+S~EQSoQbT+}M0+4pa*SvtR@AV)2m*tvc4
z-~aFb?fdV){pOqR=6v@(;`K+_&-h{hBxi0ljSqL}l#>+EP8kP#Ixd|#v*5e$9^AQa
zRO^$ErhN7<zhCmh^6$Tx_r<5*EL*VZ`i)z#)a;z63l=SGZ*Pa)%GpDHQyP6~!OK<i
z7F|v|ZG~IZnyw_DbX&8w@KtGTd*@0=mt*lMYK4AEXVp(?yK37#SG!$3d08jdC&Z;V
zuXV4gZA5INpE9Q3IU64xUYPeh^I?8+%FUiWJru4|(z#K%O{;ahtEqVPlJ9=|&!2of
zXW0+mIqlsM-PzcOo=Arkh}R>+Bl_C=;D2EZh}ZpnyiX*@t7T(At3}=2+8N-r=S=dA
zp}wZu*UxQm-dFUb$D*B@9PP4N6j>P$LpDTrHB9#RRxDZkPk;RF?-1s$nfu+6MT-}B
zhi8?xST!T5;Tt#l22`{SV`phJS*8Zw?hAC@7=E~@Q)1AodTU;LELm~=_yyg#>SEgY
zfBo;jS+r=$YA46veD>*A-+y~7DN!Ps(5qDqRTbeuLCe4X=D^nNh0kBmSFy+gnvL`}
z3&C;O0BNA$!6*aH4H?X7PNM+tiP!i01V?PxI?ysOHmON}R{X`XHT#YwYNxD?Rn@!v
z13Z^3T{h?I6^mE?{U?81<{MlyI5st99%yd}+wAYOVo`|y#s}%Qri_N>=EhGy{p??V
z_u2AQPGA49VE(c-9vcH6<h;NnL8yZENCrr!w<<aZ&LpH9I~w=AwD|IqjG)NfZ`ztr
zY8jSZ-xIsneSK|LMR85}#)V;b6JPWwwNgxd^U#~j44-d(b8gg4Oj#$arprltcdTDi
zP*w-GFgZ53H#8_9V0&kKm$bJu`SA7?&H=xlvvSRn&;Rh7|M|0TR=uj5Xzy(E_IBPI
zeXP4*di~_JHQy{Qe_Bi%4XyR|jf`EpBc2x&YuS7Kq;g62lZOEtJ-__)ALsn;zb~IZ
z_xGQDA9M8V$ha&u<&29%;H&(%*xm!Z*9L}fj_U4cE-A_Pa0@7T-G+F5d_rP1sj}|e
z@>uCz`n;s8rEtd<_o(pH!44SjL{salwGP4OPv=g^q&l;P1`Mh(>y?9TX5|>0U-TB8
zvlp*?H-GW%`;YpDMo*nO<+*NcebsBLL9Q9;4A`(PGVWM+_h?o6^B@PG8#$$2^ai>~
z^Tc3HUP(|uU}i&ZyQ*uei+{@I#IX@e-?+l48dLQ5MDIv>cs)-c@4R&{b=4}D#>Pq6
zB%R&Id`XDe5#km$(V*(7tk@N}J~94O|Bx0N37yi=R9&}f;ga*mPfv_VjYcvWZaOd{
z0v4}Rux{1zw^G7CG`y{h*tKin_up5SR`zxDgl*ml|FG!0rSrdDH2>=*^S)V9TwIMf
zEFmRwbLhsto=J<*s*+(9)xt@gOh|NJzM<iDvsE>r8S6s4zB6cVXZOVOSJkVXJTo3-
z(dVUM{2KMM2lxN(KmX_DbLXvGy!^Yb=Y9YE@*UwZHO<3xeqD{=Rc*8?wW{&rOV@lB
zEV=vqQI~YM<=N|f9>H!wL9KFm?dygOD>ppNEtyan$3|##^185S#iAt$&U6Y@#I8NN
zLU&9KkB;;Wpva`r?by6^=hjfQRQ@Wz#AVsWjO#B{*s@L04NIgAI1c(G4eZHCufEgj
zUOdlRv3$*qyBR~{a<hTX$eN6!`Oh99UVnVA&|v5}a%9W8)xmAGlHQ&-+qb*L9!zYk
z?z?{ZijU{Ij{2s_zA=B#O{uZTW{tVEp>6NZeID-XpXC<hzkHRLdcuAE#<cSnM`Q}6
z*`m@xZ&+-wU(#pazVYQJzxn#JPrv{CPhWiY+3D1i<D(Ohzq+c<&CTcBxoe{n*iq05
zSYKY|>AW=S-gStq7*U!H<1d~+ST@)3MRvJ#VlZNFXrNzce>XYp!S3#LOIQ5vzx{*z
zN@v%VE(^b3x@f`btn8w`A^HBOxbQtuLqj7l1D$--YJ^5)rxOo*d3e_~(ut(uk;%<L
zp@$E}_IC8-X65+%_>~sDHtG?^Y2dCeUc9-^V^eKSV^4eY)=e9aMIEJh-C{(%zGA-j
zrE}R@jZvYY*FVD85U=a32;DJdOd7TPdG_N#-wls5?$JB?Ocbo6n;5$#^A_B{bx$o-
z9*#J?EpS`)>uSlU6gw7riWD86vL+>_tyu2xG&^r}M55E05nm!R^U>1{>;3BMS~v|k
zPxx)U@ojmfo739thndI`z9?ryMDyX>wr>p#R?8LANr_fVFR|Ucc{4)xiHV8y^mGpo
zkE*IF4SPt*Xfz^%cX4q+1mE4-x@VK$oWK9aRo^dIG<WfzzWU)$-_C!Kldmuu%$QBs
z`l)5=v7w2co_$+)gl^i}P~A8>JQg1xkFX&lBLkZOetsPh{JeSd)~s1GckbLdbLJq5
z=;`UfYMYjpwqyxCd$MZPn&18I_X`&;E-fwZ?;rH{4@68mK0b+YK~y$8Jc^vi$b<56
zY0kB~>sL8fzkMTBD)b}RbXgG}t_#>$)?C-x+2OUq@%X`5i9)V384<5LeYg1GorgW$
zgZuX#gwkqj$aQl><g3N_&}T7B{FNv4c4!p+dGJ&5y56A1YIN`3o!z_lqI=0nX?O2E
zKru|*I;=VDw>@O{?rx?0*~47l<!;ZfJ<>_&&83JD@~&iUTjl%YF+G0?*AsJar^AXx
zHI-!;S_B7<%N?U54mQ4hdom@_*W07EvT~qvptiih-C<++*2tc&{<m-6u3fwK+_`fY
z_2b8ndwY9B^#+3h8>zi}_ujmDlRp44Ha7MmzhINchAUUD)%W+b_V-<mJ>fEM<>lP$
zR_SEKrX7d;!|Ml!d(@htwh^Dz>r<1@_4bZFxPI4t>FV73kEj>)R!%MUPn&`R`$mSa
ze_FS0U0QOAYFuKLtLt8tx~+CSe<PzuPLIUHHIts`9&CebXduYjbCbJUb5#x3*6X60
zO+GtPQqCb>KXWeG&)@rX>5K7+q3So~Zf>rDf&T67?A=3bESnlT(~h6>^WEB5)7018
zxW(IT-?lB~g)h5WJ9~SE;77m`aYR6H7&dL=Lu2eDigCE5ex0Ms=3Oc66LcZ~Q<EM)
z>W2UT|MW>jK~ye3S_ZMkSm`XAsjq*eytFacKm6v|>yobS%!{Yi%$;-d=Iy$6tW$=*
zQMpn_S81N-y+puw`NDODj6I$Lzp617<rW}bzk22@eTvMgJr;9t-Z$U0)HMxs4!W-P
z+#eP#8B!z6h0^*vd)=L#(~^#<<s+BRo^@I6(_TM9%CwpWhFTI+qe6ED$EPG@Jj@%P
zuwczclP3E1JSvY4j#Rt5JO1W3zxndZFR>^7=YRg^zx%tt``zz;cm4WxC3~61$&)7o
z0|PN3Gcz+0#E%aTor;eQ+~o1H`sKKMxGC?&HaE|;K^qzdJF(sbEM0r&$&)ULBr)RH
zUZ3r6Ue~9mXRY_zc>DI<LCIumXIJdrXqV+qImIPSz5T&n0h?TX%4(YsGeO$wq8jKQ
zCT-DcvhLq-S-rHhC{HpvxHELiT4%?XFJBA}4l7lf0R$#$JwiF9feZlSLbo$a(K~rG
z@^SeDdFQ&SDjyGzvuUS?dk2rlA78y>&CQE<#``6TG3{vo<nYKCcIp`qA1qq37$!~o
zOe|~)dUqG%^|i}ZT|a#uLtxdJPacW)a&~)NQQbZ`jCeghA(dYMu_#P!)y>X}9nL48
zog9+v36H?=b@tKgGGrP>e|LTC!JT_{hG9FJlUqGDK^ID)bNR%Oe5}oC8XfAa3ikEb
zzc-?!w4tk8-qtk0Emkejgm2vy8Wh^q(!pOTFg`fAbKB<d(9La)wJh4ucQ&_rI0WA~
z|41z#ym#~Rl5aMoUoNBS*rXa|XVXpwc}EVmE5}D0)_ec3**~zlxN4%SQzntuj#)`Q
zqwLr=@4%ofWi5k~Ff-H}YuX#=5*!iNOt+vLTPus)7A?!Xa?dcSxqABY$|Wn#oH^G!
zIDpBhGU&Sd`)D=5{=;H2N~JwDwfnY)?%uJhxv3qzuz-ODfO`WQ@HK?>kO|6X+zgxs
zx*vwc>tLnl_rs*^KOE-f-&)<OGg|BWMjib^_QfT%cJ-c0N!c9~*j`$u8W=3ff9bI)
z$RRMaw5^BkfS=N8Wn)dXl?k!YJGO?rsjeIt=yP}X3=9gXd|TH)g6K}&J0d|a1eL)2
zC@7^1+U)#|#`G#DFX}*K#L>e?&ZZ??K06?zmtvWQC0BPJ+3mi*W4Nibq1t=?=7%SX
z$4v09G>>X?9=m_(@#I?dqy>6bpHJAceZ9kz7v+f8jXLEfFV`)bcQ!RNUp*PIJ;)`u
zu)bqZ(@|fvf2Yra73&Ks`Z~JWH*fKaNjNT%nV)CmtY7Z(Ca=saGrY`w6|pxu?Znwh
z8Mz>pPXDsFFeKP7@#rCqbXYdjnVoTO-VZA;UC9`qkR6Rn^6}i!(J~BU(5c4vghn0M
zeWazOCNKX03PJV0iL;~Eo!dEjTCJdP?fKMX_m$qA^&Lh{&#thId$+|SUN>7N-qz)>
zTCwT$i7fVcCTN7tKnUm8Eo!}Df^IFaTB~a6-PilZr<`bR@4^i7^YLzPcmo2(K<oN-
zYj#H+>hB*fzVT@3@8_jnd(2)`f!(j{d~C|LEuk;_O2@5|Eo=RDyM*`mYS?<DZmufZ
z;IQ@j*-Wi|;Qpi2%T_vPJa|Qy_etE*$i4od8}{i3tdh1?Z-=E3`wvgbgvT5@8=9S$
zuef>PGCKDD^Xq1<biB``lN!`gqeg~+Ri~6?rl*H(*;15O*!Z@7cj#_6NB1Z9bKoE3
zqne2!MPJ_pswW+fc63>ilU+>4OJ_LfLA?uUC!80%)fCl&t#+(;hi~w~@Wbt$qgnZ{
z=Ph2Dem~P<nlfoLQ)*S-qX#a_mL*0XuC08lkZMLp)#Fk!HaHuz1c9U0!p^l+-FdKa
z@rvAvB0A5hwT8R-eZP8Dw_4fN(7kTS+T`T35(M_t5o^J-=NrA(7ZtqFt2IXsMI+tO
z(#mgv80hKsUB4kV`mjl-&(AJc@q<hH)#pYX#p@$d#FLnH7M)qEkdD#K3<kYXq0Gz4
zUFYhV@%X7Q#8cMh#@D-dhV0#btiN5R*Y}=CJK*iIwX;F0*9~2}ny@u+XRvSh?y#L_
zPo)mDcXc&%U?EP3Nsx|6&!4*R&;R{jzx`(JpFW@S)tv9X`u2za`M>_}E*{=(eFJ<T
z%xZ-dOPEPtUhr&_o9p$nXL?&&#|8#y8D-NSk*KTd`ZH&)boS88Os8~H4He}Z-PWYU
z9zw9re1<A7=f1<zbyX#eYQ<z!MEK^Q9U}vDqtQrTU)ZLA5cdsv53*%L5{=Bz-8q7e
zYmL^>od?`Jed%dH4BwRAtQ=JiwnT+*_V!#~QQZV<>Fpa{=i+fN^3YK4;FE`0u8uCZ
zuietKdnZgr>#<|Uy*31OwD(|53G(rdKNvUK2l0$=Dk_&RTz~WGbK!m%?3b|W)1yd;
z0WoDDuIWwr>tMf)N28-g`}=ACX0ph~Coh~j<LkBlb>S=Jq<qizJ&4x_y9Qxhh}Y2^
z56!P$x#jM*zUFNs(m;cL3bNn4anE6mOVP_x9Mbu9?oeU;&8@+k{Er<z($>&~!Nx`o
z8v`_i*j+g(jgN`l5)f4P<}I;e4|!u9kByB*`o)VE3l}a#@WyXxR;$$)E?jVMaLCWk
zpBNg7-MQ1>(JA|GhGJ4VDbqG~^uca{ChT1CpPgUVO-$_D7PfcW9;{j5KQJ&57Z<ml
zUTFJ7uh%0~`1adxv6DyKILTgwC6P$5H^|A!@$~e}&3)d})7RA05*oV0$!Tq6Wi?jz
zO`H6;ZQI__LC>QDYHRD)ulG4}<fvq1BKz7M#E1NWMp_nBdc=pGA^x4Cg99VOK8~(u
zk0nn?CY5ScZQ<+n%bhdtWsVF_Mn%SK@(mgq9LLJr*4nL7>ai(;l97-~RFe}5g<K1y
z@axZmpNiLka8z}5HNnA~=gj%$U{p+PU6am4yEp5IX17Pcrmb80)biX1Po2M8R($`N
zRz|TN@ad%oTOE8)p19CAF|JgPJ$i7}$J_P7nbX~EJ<p!xeLv@isC|*GjSbO}`(2$^
z_jh+p87!U6y$;LVJzX|+w)ZqNG^|>+Dk&)mF<fF|;>wjPo0^&`D=W8c+lEbBQBe`%
zcm;cXPeoa|m#fF+%U4JB8tln#rJh^*<qz>!FVznZrtFPH$X-xg)2r6VhU9@Rn^KZb
zYqX}4XN3`4cI*fUDScTyIyeN=2@DQ8nh=k9GcYvh=;#<9dvs!G#H`R%7ZhV_ap&Q)
z&T$oAWl2x;n1{unkOg>oE}uK^-sS5PgA?sdoyiHOw{6*9SXd#GN#c$ja&vcXY^s3*
zTUr~OoE)5;9h;k5l}a^#AN<6){N#yqfdSi!3to+OcAktqyn9PXRz`*i^M1-oH~BHw
zlazF7t+V^ZGZ#9Vn)+IrZl68%$$$Ti@7Cz15epV(ExVa*ih}jYvB{3{iQ$n^NoVJ%
z|HjbcM^hF3Lv{H%JN-6XyLJO}0I`i+Bd~q*wqa-ZzCFA4mlT%`^$rho_hU-eSJ#FG
zZ%aHJ`=-34zNS3TZ^IAYeBDytJUTGGHE>5<bn;;LIGL}-+E~-zw0c!)Qk-ObAmi?x
zRf}DpXT2U7oG@GTa1?2$k1kz3f9IavZ))4<j&6E7mn%-I)AbY--gb0cwtxSAjAl(u
z4JO#*$B%=9gJWW1T3hK&z_)MTMktTX_sf?rF|o&n2ICJ#u6K7XYpB4A-u=2_tGlPO
zpI3E9W5ctOwO=i~p7EexsW==K8R{NT_3G{AOE+Ac-7+#BYOPZpJ-tyo_pMsE?9ubQ
z{z*xYSHSY`m!7|Nr)N~s(bRJ);dJP>-7gA?rwrOVSI;k>|3mhp`-;i2OXp5+4heer
zFhi>qzJZEqfOuWYmS?rWtX9dOpZj-j6z1pfuVy^UeiG!j3C<Uq%z2y}9=hw|nak2K
zER*CM4F)><R@YE}EFnH5B&4*oR60J<*3>-M-CI@sdaG|hWZ3Si!dD2|0zEg(`|3MH
zc<udz4lZs{2V*1?!~|+@scu}m%<<BR3p%;((uJ%30U^&`6!ngdV=5Z8<EK&%FI%*5
z$Bu~hE-4zL7jUD=DWlaWu}(>by5BmlSsWX4RHY${A%+MPRTiy6AMCezqnB@gS0AId
zDy0&1-`&+QEhT=iuf4jW_;^xs!1`S|kBZGkX~w<lUw*pk=z*){uPU(#xPJBI_AOhF
z$K9G3(5sZ)XU-hhv2`1^?iQsSVMLGGN}t<Nj2sAX3)vj{rehcjIU3RQzKPiExhXvA
zX?2@gC9Qq++<C#`Tc@tbha|a~xj~!gv`61SKXrP_LT_-#d@~vbdpf0q16GCN@b0}^
z0yo#Zr56FwZGsH247_vyy6C~UDrVv|yc4e*wFd&X1+MWzaH-Tx-F^CEfs6aWgp~3(
zwUK-FY}>R^*42gmL2*IRN@w?#KEc&pgBp!$q_^EdUq~E3k(_}2UVh%Q;o-sf_{2?q
z0i~61U^5!yl*%-PW}pOk63vu}p3~B>Eug{L)7W|_>fpCa76k7PFL+xnr>}NfjU$re
z;9WthoVrF^3oA=pzw^76kkuzg45-3<?<{$_ZB6K<q^y<^dM2wR=T^Aix}&M*-gb`U
z=437S_6xsFn;YsH&nE5labJ>?UxVm-ptE}CHqW_B+;fVX>l$h|__*yla9Aog-#&N4
zW#P(-XRq38S`J6V><Zgg{Hk27GfNa|sZv#1UgquPcKG0at3@->-*z@N>C@l->Gau~
zqhk|kC(d}T3wn_L6viN(=nwJR78<;>udl79t~5Ak+xqoE53`<P-;$sE@ZheUhjt#(
zOsLhe4!?~~ySKzjhA>8o;@6KCEpSgup|{XrcGIU;5Ns%9?QcpR-@R5`@Ql73iPa?M
znP1T6dk-=P28S<Ryy)t*=F0ig4VAAR-@GvA51)jDg%1x)D;_@o{x@HQ>`!=B(_UX+
z`8xN}hShGV$;VsO9YdCpU?*Sixn9?<X0`T=ysauuIU2LcJuLr8g=uP{r22`^rXbJt
zJIbrNTRVEM-AD=vbWM#uXP&eg#>N~L{cz~eF{x5`|44gXqnGpAgy<u!&20vQbzET>
zl^LL0!T7MfHfbz+Wn*3Cql`P{uU}ft2AxWN?b1aTM~7E0iU)fJuAILb8nXRy#uLS)
zip&#gK*(sdK7M*9c+1A5gwyS<Lt3S(xuJS|sPAdUBX5U|$B!IueN$18b#Kv}??QYw
zBg%Y`UGV*aWjAi#)oTqDl3Ps8)m4!@!y>|V)>L38W7T5g$zFjjkszppU`DxWQXv`7
zyKv3<>$x|dWJt`qx}29=o!4(acwj)M8S5E|+`89wo!7N{_eVy@UlkQ^-xj)aM_6-X
z6E>Dl9%s3(bvYOrRr|K4y|wN1$y4jSyl>sOX`vg_YuCGk96x%cr&9*sLiewm=xY`1
zzG~a~b+e@~FCX#x@zdwAcWr6zuBxbvjN0bz?s)gcbC4?4-7&G-JzO?7)(q?Pqir3f
z+qdri|NOuHZsP`@+BfAO80#I{=;obtG@-q*H6=cIt&_{+$4{!N-jtPBzA7u<ec*s!
zNXWC|qEQ4yMtWPKmEH85pZRdfH{aYme~#TvO6Mb>XoJq&(%i9Z`I=+#DT9Nw79+p6
zwK;l!n2(#wjdRxr+WN~&o<;57v1dnQN7H~#ElW;{^Y++y@Al)-;R(d1r;a7;-@N_t
z?F{9F60&JE7R2HhhkF@MgF`|uUAofU-ZtFVG1}8S)>U`@czoE7-M8;$VNI9GHQt^+
zhY!UV)cVfWw)GyKJ43hUJ<IRy8GMkD<>$90`be^#HaZeW60u{SWEkGtSoW%9#bWPk
zm$I=Q$(0Jdku<9^B3M^rXmu8YL9ecVTeV|r$a;@;g?Z0SI;~o+sDE3tB`7#z&t5D^
zI;D1B`2L_x!8Mh&a`x05kbmyy;)SbAm#i$vFG5<QHlTHc^7qpp`TGSoHL{l@!#E8V
zY|Q8mJ(Ky)jhpT+t|0+|)#Vk~$iYytiyIpn)+m%2ckf|S7q%_5qpiKUxtX7LyLs~_
zoO5?~Hx@obZqJ`TN4l`EFd!h{x4-@EqeqXX^!oef&h7T|%e-|DTNliu2}HV9`V^g7
zt1=suJYH9gjRt!8Y+UEl*4UwtVR^G6e%P{Q3u1JH=JoaUyLRn5bm$Nw3KU^2(CKst
z5!2Jt5k|gx^;)gg4h#$h1%-V3?e|Zg=E~*D^XD&a*s$^R>9bv3h&G!J9XkB4|N7gg
zs6z;ZDp`CO6cYThxJcSReB<oJfRNxrNyi`+;&u1cPN^|*!=ob_o%YR(S8hwzWZlmi
z9va`hYrnVG#)1A3gwqlG4`x2fmdn(aFJ0fe=RjZY5QZ28S1#Y6E5m;t{Aj#xGQ(Gz
zv|9D}_~@}?3EzG9!<o|;RBF9atE2Ls$>_ka&AY-|h6i3e$q!n)p(49TKBkz&z#}5e
zEjt{t-*;p1uBga2H6;~gc|ra@-+w*FYn^w9|CX=+^v%KjQL>5g2lsBTbzJG;>b!i>
zvaLa(^S)W;w$`_~u?+*@?M+YjW2=;$ob2Z2R#H-O^ytw~KmGKRPd>q(Y3<szK0ZE|
zFJFHBs$_e}wgn3oEp&F+7!vHedfog#etqWtJ(<;-f9J`D73-XQHl<#_Sy5OS;JWER
zM9k3eghg$rC@6AU<FsbkiVdD#*!dldKGfJsZy{`KZUXb9ghaaVr!yjia$VyJ=h)Og
zP8&YH)?4V5hIDvv|Mt-3^X6}Gb@yK9>A2E)#d4>Vr1RtBN-V|c_is2ju2`~k{<7tZ
z0s?&(En48_=87#xU*AAf<YAY!?kiU~ZdmVk=Je%}{!zrU)kTFtKI`ZF@sAEG)_8eh
zpO@6yK_N?T?`Yi7L>Fh*^=@uEf&;hu`h54*x4WZHwu~ATY-f!C(rlTK$-4_*J`M=l
zv}(1}x^)}Zdj-CHMi1vrv^L&2mG+z8eDclwr7IoR1#St;dRkyGTUBa9Uj9p%mxr4-
zcKP9<JF8w-jP?&FABl%fmM)sRIcU?$rHc@hmlnOQd|kCAV0*-_gOU*ytxFbbP37Cb
zO}^JJUyzIsRlF_<^4;$38gMf0%<xFRRxi1B>x`?H)0XX_1H<IO>D(xDl!(^{2i{^i
zjEdaLU#4a<nXoy=MjQhj9UYBr7&2>XYq4+k^Yh~`r8elbkMG@Hy<*{Nw>92A?m<p2
zi~jJrPiRn0XH)yDDxYP}cOGYr>-DGN(spjxTwmQ>SKI6g^{!m)>gDC)?y+pak|pyN
zJ<NHg(wp{$?O*o8QfIgIYuz_Et#ox<wif%hu~7-u)T{@0JYAi#9;GAr9vtY|wskWM
zZPAj&OP8&Pj6PD|+=hPBlt8dWvA1b>pz~Plp%qIPtX{rk*`oOlD_2DA-`7-EkL{Lp
zOm;Hm)DK_J`{MUsxjK0GZ44?YDK%Nl*a|+&dyaj`^5x5yE?#ozKx9i@148x_@kz^n
zSm3e7c~{6bpS5mlS36Wz)zme&1#jJcG%m5Nr4tIDQk&aqT3lB+pE!0L`>UMn=k6Zs
zS39{Jj!WnrLa43EesIIt$ssIk|G0#n=CXZ})2NpATP>1~hEh*ghvUajDAn|SUog}u
zv8q}1Dg*rZp0M4MBNG(3(rF>f<mk|mLy_y89sGU0S1n)UyvE_l{i306snx8?xOel5
z-!2c?c*xg#(^|*nYaN#!ITYQ~A~R#cTNSM>#Xer%pZ?SD92PI~_FTU=@lxxs%BmVq
z-oGVm=bqOHfBD5gMeofsN1Zo@IQnl-zjw2#syN8q>-wq7I*CTF(4R^@Id9&AufCqM
zc=<9nFVDP!e2ClG(H4DR->O9mg1o#!d^V=vx;HY+&OpOaF@Pc2-4cTYkPjD-&Ir!H
zX&_1#uXB%Qv`py{ug8Y%{p`Q~)7&q9Si02V`=yQ{dm`&Q=;bZxw{NVRKi6f+!u8IM
zULM}xFIo|}_fSpu(8R>p!TsTZzU#d`To6iLzI1M&zt>>U6&Af*w0P<F^A{~%zRJnP
zBl*M`iBeDR)x*w!PRX;46IwP*$w$U91s1Gaw(nTXh?d^$j?yWK>e7L@0|CKpgN=yS
zLp>sHr#)>Q#x788HI7PJ8x9A>xGo6_+8tfmRNGpeA0FWO`>*G%bobq{eT&noWnnw^
zwY9X@Ry_6bSoy`ArOQ`&`TIJ5|IH_k>-@`V`s*9(f`T_j96BPC86I3u-{$RKoc-d)
z*{h%b_D}!#cmLw(v~K>Q<;zw%96xosvbrkf$iYSPzjI!_)YsEFVt3d#U(Y>t_KH-d
z$j^V_>$7>|`oQyNQrntqwghh7wq?iga5rXpX=!;-@HW?V?#^r1IILK-KWuviJv3?U
z>8uF!cRLz&x~~(9uBz%y;YOdZYgg!g7`;Wu<8{Pall^VUM-Q!DwrI_Y<x7?<S+&|>
zU*w^xntJFAZXqPt-*M&AjUH>a2Y4@E^uxg;aie3>H&0)zn6t=f!}fKXcRM?;Shs3n
z)V96NjV&^(ym_p_*TKtkp4WQsP-hRHHEWgxY+Qf$YOaQ!B2g$z1NR<2_Vx)~vfSOp
z-D}~JKOBkO)mYVSRa!M;V<DToj~_qRJ19d~#sbH_Lwk4od3uFy-&tN>i=`p!c}eF0
zoggRR_rpx-U*tX66708T<r3~6{CqZ?KYgmTu?fBFY46>+E&TgAbAc{v+;?u@)898T
zDV6l}x1GO4FA-k0)L~1=<^%h}J6jri+dHGe4=(#|iNB}&{vBJEeDlNZ&^=fbvY)@)
z;2W6n;IWe4Z%9|4)RW_PFJD^t&A0Qvo9F86;q2^v<=O*<nq4u_z~gJCm}V;;WPkGy
zpZwDwfA_~9zVTkX`hfq|2hX2&$+0!DjCT!g3*E8OWv$CPS4U?jS6A2cjQcW~3=EV?
z<)tf^mo8oE9~j{1=(yTpO-f2iKlaa7Yj<bgt}O>$R&LxKemFbl)uWt(>lqK;G}O^4
zJ(J#|*U-g2o&Mpy2VZ>g)hECI+|kt|IB5HdWy`mPZp_TQ+u1UqQCQX5zNF-cP3yy&
z>xT4(36pvJ%EepX%~^Wlcp806)naX_YYOo3i#~AZ!QG75n4>_Q&cM#~(;Ujl%ipzc
z|AlMUI{Nz9du)wnl@x*b>%3<^t}c05nY03tb7Plzr>s5Q1MA$pQ;(mP$=Gv~P>fz%
zS6Q+@EY!on&DYb{#bNonwX0qiR;VO8lTn-f<k2RdzztshcW>WEC|q6qYG+{Z!f)m-
znY+Ym-TIir2{kosMg;u><45C?oSfFqpZ9~C^P0<NQrc@vU%$xp^w{9w>~Ze=m73Z{
zUmySQuw8v!-O}-i+$Y(H*PR@k9UT!oIE3xoTUt>IafbT4wg&kf+<S0*XkyBwEqeK4
z)B5m>=N=A?45w$@d;FwGDyJ*fMym=T06TRGt24dKf9CD(x_bGtl?cF>F8kq|Z{eJu
zKg~h3Egh3=4chkmPyVoWjmwH<tLJ?At>31gvu7@LwD(-SauZ=dZcaXbED|V{D3KW)
zw6&uA4cai9r}*<iX1!s`Xi`X|x2|1xTkGPv&TY+#l?c%H><lj|c!B)E-o6tl^oF9f
zPR{P`Sb|rkrlxjubRcwwe@6U<hz`Nk#*G^hTO)i2L3VbwPN9(X^c)BYSvcprc|R<i
zzi4IX?gMXII^m8nFb1s*YZXSbucdk4_MP#E6Xe(<K~Af6czF2Ov14o2tT}u3EFvp}
z=HGnt&Emz2mn~c7>+1{7Fxr<dUwV0Yefi}aS68>-;LXdIuXJ#5diIRoB+=X3pO~1u
zdbNX(kMEv6`+R-<5Z_{noERRrs`Q8tot&JOuUxUo!+XX2MNx;N>pENEoSNENk#jO3
zd2pES!$ExLwaO{yac+BC_u=TH+e5>l(kEHD2;tI>pGFWLdnA7KDkqe-wRWvs;czrI
zVPZmf)$cEcpNiM9k{OM9gzVMTZ*SeYQ&-yrLh?-@RGMm@7v&bcoYZT_21be=<&HG>
zqMn+aK(b8e8Vak<pSzZN?yTMbpQ3zSTyQ)oIsQoEgS(F&rDwJ`wP}@#k%8WvCl61g
zCPePrpPThO_wmcB@&<*BzMK8v!Go@@F11>XjTGOOy?XTun>OsC0Nb~3KX~vU!ag{x
z+UhqLxqY$G7j9mA^(60UdS>V37+vo(SPSkyJ(QT7{_Oc=|3r0RMR{2bbriy@_4!#(
zVP5fZ$4;C$QT_G}|9HMsF3Zf!d{b48%^mtV(Ao({GdLz2*U){HI<r;DJ}g3$-()H;
ze3^OYZtla!XO5pbk$mdb&5Y4u1q$_gZEs)4lk7)W=OQB`9zA-Hm-noys$zV69NoEd
z=Uzla<i5R;8TT_g+Ixwc1@q2OQB;_goOI-HZ1kbn%*Q#%)@sSwwlsH~I&nH;*RIsK
z*uw0rvf|R`uj<EjRvEUP=!;cr)Q=f-qm`8}Vqy;+Iud*G%;l=edZh%hwZ$Tx(2S2_
zSC@R^T+GqL)8{VNun`2x<m&vqm)M3K*dKZI@-_Y)3hYuYo<1G9Z}*L>7cw*My()ZR
z)ELw<P2uyR*DuTH6HQne^iyMl^v=Y_+BXKRVq#?YRY6%?bn>kmcd@TS?_U%>-5n8r
z;mT#H!e}3_o6SnOtgGa8*2}`@{3XpCVE2g8vDI#EZ8fk@Bw%hA6ckJdpJ1?z4fdtq
zxt?$;DLFOa`R(+_*Kd{7RZi#?n*Pxzmv7a!wMq=S`m&mw+nJJ4nL%%Po|}g~USev>
z?Yno1@?U0UKI!c3lPXnZ#pMs~K75q<G$rj!TFUA4TN$JD!V0TNryU*WdGYLNcY6zL
z(rhxksjj?n<J!3k=c5iCynf?Wdv}jgYk)(;tbooH@=1$PQ~$Q=bXv;M!_mp{$I@@#
zYHt>9T!Y5ys%vjuy`7c>yG}cI=3--GGfDvPTzPqU$B!S6j5v_@>^VJjWwEw5HYdd#
zjf;xDbNO2Ky$3~k1!LpVkx5x@e&L(9_0mc9$_|57Bh?gS<#o4o<4~_PWj}p>G$Hxn
zlN=>|EJmC2=+2Jq+b&<bE!WXWHLa0enarXGMD8k`eE4bBgWB49rDjUUKL4r#odu$r
zit>vKa`ScQo<>V|&9aakdbo1o?BRp^<BvvXW;~D#(_EM`DIaCraa^|X(#c0Bl267S
zjzE-F|F*`06<LAK(F0`VC9hNBQWB#NrzEAGyqS&tomDG+lm9rsplCuvH};Yq%o5o^
z%cb<p&_l;w6y$0p!+8(0-oC0bAxyPcJK8$WoH=(aAwDT3`NplAZ5{2CljC)@Z!e!a
z9ldYQq20S4-@P|EE)iE3nj!elfKmj|7mz#{!=H=S=`p$Kczw#KtAAB`G3n%y$k=1Y
zj;EfxUft3)u0+U#x~4~WuOExtmmCwFlb!qU$@7BBhUUJJ-rnA`CsOwB3fs3U?E2+P
zW23`1w$_|yxhbh>k<o`SShw##gae_sXRyXd5-z5S#-gmO?8@C+g;izKrCL)*QDtdX
zwoErZrj(Rs)pS;m$&A<>L6HjVEBdPXFCTx9c<y>rUzc@C)>2t?I6gHZHYNLMCY<WC
zrv;J;sYx@GlXW{G{%lO_iQK1mv!2{4D0(v{vyO}nKhC~iT2%wJb=9}$-hD9HGyJBc
z;zZ(!*qCD{(#}Rk#l$71WIua8HZk7X+I;Qm#ptL#iE&X+GVkBLlTqJ5m%>yk&6BKW
zr%s;Be3U*i+*emqU-r6GCL4hhz_L+RUU}kF+JVTusEEl$y)s)3+L4^>yKl?dCP!hX
z>Iq5j{q($sx?veTZ$bCWq2oH4#A;ME*HoN6m5R_TF){JZ-Sn2$cDaJS)(j|p{VM)Q
zbmEby%sW?~JWS6iD3B{OFEg^dR=OTax^(RP&DbLc&!)sx7L-~{Q%b9>TizbJA>_!m
z*h?2P;!;i>i;uZ;`+8qDe1%n^A2nGOTGLe7o3=wojvqc6pL+6eXE%El0Rp0lv4{6=
zl~>hE6l{M*LuTq|sJnLd-0_suC)v*v($1eaf3u;T&aDt&YE98e<;k(ZqJrm`M8}TA
zL`NRDckAZZ&>-iak}C6a^3I+(cPjPt*%RllT)Z(fIL2(0KB;);_Wg+chtg7ymz5Tq
z^<)?|<+VwN6JjFvJ-&DQ;f*_Q%ic<)s+P{)^oNg|TiWQ`RhY9z#GUlMkUQ6IoJdZK
zJscksllba&9qrq}*ksjB%9-ru$)>Kmr!FL(Igxbs<dGeFnu^O|Otjr*rueqD=JL(!
zJ9dS~CnvouF4CLn<OI5g-@(z5hnbH~o;?%3d)J9Gr@MRU)$GW}&bj$**R6{Wu3gD^
z_&D$6#VeQY-0mA0LL5ogM(741>~k!#ap~>bcViQhkHjZM9EjetXHP}d3)l(T)zGLa
z-qyXmcjxKIpvF7}Z=&ky9)9|ysJ*?N#Ijh_Qu*^IPpiu-n(FGyOUtS&t01z@K-WKk
zqmvVPg)a(UztWnqh(nhq*qK$Q9q4Gwx|iPD-ma2Jj9OZ_`Kt`&a^=0d4_=p4Xmw_+
z7hq0HFg<Bdb?MB7sJ#bHrX=L$Jb`;8wOB3KeuF+S;dsu|Jo?a**-}>U;zWGP;mDYy
zF$tNEo{o<TpD%6i=s`E*jvj$SXs9kV$VarYvHR(du)l@1NM)*$VhI0+UhXnQA6zQT
z%g2fz8F}#Hg=@8S%^E%VZM9;uxZqhyLCF;PYURlAV17<jbwy`IRr%o~2hW|oEmL5-
zZ-Vg}*^TOY9letZ_~LoaspF}LEl#E$zj5ViLrpE66elNVEiQPK5Sy5MEM@=R$OHSq
z<Py5CkZTZKJb(6rU-Rd0HGx99I{RJ~m#LK4tDyTZOy+FO78Uyt6$UmZ>&dPiVKD~}
zr6wk2J$!_<gYu`W*oQoRlzCu(#E~OMu3WhS$H?kaV2Q{lCnqN^E^hDMy*F;$fV)FT
zjU}Fp++-}v$vJ=gWNOOExTF)eA7ytBP3XyRAv*1T(M5|&S@`r>Nnz>8AVmfIYHCjp
zw0#?4p<b^?bbjH&g|xJ^n3x!>{^jN6ppnbv#l^)52}$wsiPx{+%*x6}u-?<thfRo7
zD(~#<PEJlmForNaKmWzkr@0LcO|&_|+}9eP<>Z1}a$NlBv=db|Z|RCCRyc(`JM(dE
zWi@>%V#?az(((9q`e4rxHaV3QZ;M{O)~F4b&QG(SBUILEjLl8$S&wtnD!o#n&3u&I
zihanR{hr64xgQ4E2tfJSD}FK`wDdwBEG*bLTP&FHq*#^FszzvLmFVfVIjfRx%`~!W
zH<l@_PCdbVnUyXHL)FM7Bd{RunKB`?Hj)KftU85-43C0g6aQibmSLokK&->x4`UBh
z#0*8H!lDP>@LXU<4ro-Zw8-gFpx}?tD1sP`g*s|L$Rk`Gqw^E2M|z`yzU56^>6m?l
z48umhw92xMkl+-7g1|x#c0eiUA)T$%YE*ji9$-i>m$m2(=#<Gqy#*IiAp1fAb%#F5
z$(jK2Yf=^+{IUraH)SLh0iX<>o<s%G6Lma=?!&D>cGe@QhMXxBW1{!2U^<M06C|9F
zlK-RUkmyb~=z{zdx~tYv9*Ss7&N=~5D%k@!n57!6@RBAvKS7fp34?~+-40GV8d)}$
zR({70#hMh`vC(2Q$fQr!YUOv*Z}<iKSG;+vP?NSWMChMh3rm627+^VjogKaWRin}H
z8`=PTl##;|9N4sEtq>cNT8l6R>c%>2kr~xA)&>%4622J!aEOl3wu?UXWuCGa&14=>
zIO`()(M4@GMp~7TPDD@9=WKaL_?!4lWW1OMCiDfl3KiWl2-KTt^aTT8BGGCDp9vc_
z=n?T-%_ee=ybuP)bfQzznF;C$gt7k)IV?k`*VCgz{QQVOZ&A|_pawbt$4yo7N3Vf{
z=SKf&^bNMxLcvH#q$!I@t2~t&zi;23+Qt_22~@0?uwisfZ&XdNs2zE9LlpgkPGt0G
zzc8#o#*pd3qEWypQwRC2KCmJ)4AzX0Kz{rB6{qDJ$_kt5qAJ?gll9Wcb;yBc4eaB%
z;D)(_g<M4*!m5#3jWoreR^&pTh#jmJy1R@nYFbTGbf+o)GbRwnM1eQh@clD;3onVN
zS7Xm_GOLv|>G+eTJY<K|?Dxm-he2BGAS<5+qNKo@?oB3Q3=0h_<i`;P6N<vpkGZDO
zp{icTpCHt;@W?7t>d+}5*)UB6hLF!})M&6%v0y93+r)H30}=&&g;Ak3fQV#8rk3{H
zdKo>rh3SBNw52i|=)DA}h8-6*VA5EWH1N<Oy~+_<HEI+?WP8v&JTS89feQM9AWVbF
zqi4oUP3W~_I?WjI*J5p#(TNJg#bh~X!$|kf!)uwX+Hom$84ETI0l5v-CjUW$Y0|+G
zxJDRz$j(o^iB~n?+@LxQMh9%^JDTt%NSoNldO#0$#7iT`p<1VtQ2!CA!4j-mg`94g
zMFtazKPL@MV%3CKL|qFU0%YJWONXA(H<frS2ui(1NiS+Z(W5KZ*Di6$%6~&olcQa_
zwTWaKGYt%Dx_z9z4uu}>?i^=UV=@?Yyixc^wPg|#%d|9jS~EHg$<^eda7@OADN0FH
zqj&}Wfo`{;)w-#<<I3%fYj?8-#<AKFXchF4OC#9{8G}Y4g>&H3id+QdEPO0CPb?@}
zh{*<;$q$j>a~K<|WP(0mgaP2Mhy`lph$)%GWd8JDtK+K`6|3bEY7uKOTnfgMk02Z}
z3>l)EtXg*KGo4*#0|;-WfCAA+qjg**g-r6v3Aj$M(phNNgh-9`dWt95-Ab%cBN-=8
z^RJ4M42%y1scY;we(u79+#H1t`&;TYq_U{gv=IX-QzQ3Y473U*J=jVwq`<JNM_5;o
z#%R+^-;u^xTg<QoGDlJc#t!3y4l)1<P^+i83HI3X;a98I2#yO2F4GCbpx%)%R;^m2
z#iRqU%J>1WM<?OT;P;4L2OmYoL7x>O3KB`62eJoz(O(eI*1*K<2_+h=@Z2%eGR!`z
zNVg+`6$ww`$u%ft6!6SC`Y12;i=?7SG({ZP*?$1?*~wCiRVu~ipQbB@>vdW2`Aer?
zzN|(Q$k3YQ>;ZnL-oy=nIefP0GfU&IS=6)B0YJgqGXX#XM1pQs!l*zq8Y9o)eiaTD
zzX&vW-?{QRavKxV{BUwqcs79Vi1;FoUmmmBujwN2&xbKpQ)EV44@@yVoz_7eiUUjr
zm7G0vj)jH-Bo>W8LNZCR0WlzCK0yFF!EE<^Tm(k=MexX%2{8dMkS8X<{*5QdHc*Oj
z=Oe)%Gh^e6y(^5LsxnW6cm}^_6`jdKf;<=7>hJ^*-NGRfT&v=t*!nMqpO4pVHp@ie
zK<#6yk$9vtlyh42gy$elW<&p(muDUy$DA3ESm7VqLMeW!Gj>HE3?POuw8}sj!J~mA
zjTjRNKZ1lzl|r*(L#!?S-*#k6*~n0japDX(Kw1%P^dfSC8TjJ>dbTQX&%&#VoY;{q
z#mSh4vA{6J0-$ByUBovu99&KU&|{u32Pbml$o_0FohwSqyUWsI>ANUUk{3XPYBrks
z`+HBFKJK;NGv!2@TurAWNn>2+^oLQ#<YAWZ;XrMXBp6(BVCasS7E{5--Z#F~6diM9
zz;cBm{!f&O<21cpEe0Zqi0=^pq?Um1!Yl$2!HfyUx<V-Y<Lw}q5pckNnMz&PP=E8v
z#jQbpDJdz#;}WO>8)qn*ZCfB1GY?ukNasvpHl9C*LSr^W4sX|LJdu{XbfNQ;NAxmj
z>~DzKbSW&5?frN?cFe{FOBXp)q|r2E4>Ih7Su{@^*mWX~s7Ms_Bci~OET19Gf*Hl{
z0GELG709IdDd6;WNH#{y*}6z9*b#s`D|Clk8*+H37|dca4WgtRc}I~DjyX9U3vB^~
zQXHc}?3ZY3#?lD2Ndly>POt+O(&InnOd<N?X{IiLEu<A<K6nmt9;{Io98)AJG{n0s
z3S*lrHbgE&;N8bB4n^Q~h|DHFM^4P?ZFWLLEJvsWBQ=tL5Qdc87m?60G|Y`wU@js9
z)<GK$uXX>*m6Z#Y-n>^ppT$QLCVFrXi>2Nw>mG0Pab3S}OH^Zh4>&SULg5xFLVqT@
z4_FvVAfgmf8k!ZP5u7Rk1S5L}Qjf|j-oCD`Z|)jVFcXGh+Rm?YvF(tH{$n@;-lfMO
zi?le-@(%(%M_VpKZoL#A;2#eJ@yAAk_muyGq0mVw(kC55IlS}(k=U{nqW7w|4F#{u
zTKoHS7UILiW_v!;4#_%Qg}`PQbPOwHIwvw_IYK@FHD-6s9%hvQZ5m_00@@eP1j+;f
zb1YPa=|P~ht2q6i{o|qnSuQW)$bj<^>=T*O<Hi3?3&xsY`S{Pt1U+%)q#0qp6uii-
zsxIm4n_%a5>68xKFpt;mkdaaoKaL*@v#S3reiT3haAmZ^p}Ob*cW6kkj=&P&zJS7@
zd@TEq2HpjxMcx?Cuty<Rq!F_IO7KhLb@uHNWWdM-5+F7iT-P=qL1{h%QH*0dO7@Qz
z;n%M8qk*ak@f_nU$bdB4*b8Y^Bs7bE92tm5wu~8B_+h=Fgbg@5hMWw*69SPP0pX7W
zRRI%@c6l}wfDRZ9vu3D_)Q(K@GR(!$Q{&`ndEcob{;&+Q1FCI@GeF3)m)3@2h4<o2
zva!+Od-v|_*|R4m_Q>msO0F@kG@>O+KGw_<J{+h%wZei1GC6b^eWLEO2JnMJUI=2=
z96MmOxBxtZk+WkavXJJ;DW-86L=u5efSL5Oh-TrtFpFR&ib(;)V>HDQ{Jf^gJT*8p
zQc+Ri<+d(5a({DkGkOH&!okA^6dL@8VDS44r)a7oABcp&@VzK@iX-GfP(x34nx5r8
zjXj)LRo;N?>3E$J^1-#^!|jj>fFeqh!YPMbFb+Y$vTe~DkXk3OV*}u2%*Y96YWqE4
zqZbhAp9W5EhjvX+G|5JU0Xo703ueQ}q?k`Ao5f@rY@BAG05h{@9N`aapfWmT!vbq`
z1u6QEAGUx^=K!EpeohosnGE=$hz&8ipkc)QKuQa<hPq&DNT9bz`y)mK-p~M$jXTRl
z8un--LxRSd0k=f_A_sNZ4^?6EB27AGb!{33LMkGmGB(z{qQG208;CTR2NsjbP*zwF
z7ajY$yhBPS)DXtd!!}xa{jqFJ*>yZ2<?f{i{k?RfxjoVuN_JU+iG>{K1Y+CSq(H`i
zTI2x)bxNx<O{xt1wNaoUe`8?hbeZRwf%YAE7l}qpqbUS=_N7eWoD&_=s0k$mwkCk~
z1ze^4P^=4N-R6C_rO8216I_|L{mBO+SPJZ>tTL5$NGeg7XnRTgp$GC)>;Ns;R}qeE
zGIKi-(#U64B+$+58b>>LUkR^b|2vyv8Yq+X9fU+YOA-`OnrBcR{)kdMCJ>Ko82~iO
zRmvQNSW16Ps%d28tb~&Z?ebP=_bBYQ^#+B}tS}?2B6%oYr!%G$vjJHZLUxFXKY<?$
zv#S3reiT3hJYHu?##F)p@Cn5_!loM`4Fm{mD*82n_ktNM|39563IH|p6wCZ;!Y_!|
z(GPaw7D(o3vkyjv3e-cEg9Pgo7?Oh%$T$+90`f6HK-9A@`X~S&idLB<Boc3zvPF$^
z&a?2R!AACh<i8v~umKwltQkm2{83k#TV&nGEa#;{m$@Q%MG@ZvOjCq2hx>!TqL7Sp
z$22@V+}PMWIwpZHG1%f`TbrCYH?5E2FR%~<XKBusONs;zc|MT+u(qHRdZ`0jjX=Q`
z4rqqgLIw`STL1RIW%y}HY^8K9n3iI?eQ0oSu(P#|z7WiM)Gry+G8@pddx5C4tnWzU
zh}*_bH}YQ4(KnV&lau3Ztz9yy3IYgv1b`iJMB}7U;m|hsS(?a@CMp8*20|&X#l#cv
zJ-{2{{DF3jemMO{0I$w!iLD3?LGtN%9hp4Vw3YrvL2Q=>j+T5b6w@107+e-%+h!Td
zp|}}oB1Qp95f0NOHZig{(TzT=0)Cj@Ia~CF&zI>&MYR2g3_Kj?Xp8SDZlIW(amBFG
zEyXM!Dq^7qwaqdFR@4_eoOMXZ{#f6B1~?7*J<F6qAsuUPZjmdj?0yF{N+-RIhAE>}
zVz$a!8(K#CBqjs~OhtBx2o+)rO9qn%y|c|7CIa%Q4+MxR=sE_E*FnN36c98l&ZSWh
zs(l17_Cn{unL1!Q1mI9O`^a)Q|5?aDpl85|?U4f`7c$sCbeUO{fb5WK=7W%Ua9_`C
z0IJ|aF5J@vmN?*aEGZr_Rg(@GvYp#>zL=&%QMM082B<9l{uF>7!)o(Fe0B?Ln5nZl
z&Lt80!46pJr-5-{b!}bdf5>Drjw5S{m(0);O9@w`1$iJFUBjdh*P>(Z_26~!%T>#{
z@ywY3ZX*6|0XzxJoAiwCbNk^Fii+&xb(V>LzjhA<{%DDv4S_HOHr3&9T9khab^g+L
zoy9{!Denv`MMr@A$d(2Z@U-P}BtTt^4oA?~7kxNz8ALfbGB!3=LYm{hb3hNEdSR`_
z0k<2bWjGWAyL5zKWDtOg6;0!NKvWu#tMQ`%^vti>Mvx07B5T&hpBv2k#rQC=ugh5T
z|8{9|_aqFqF;jvzxQe(hAemUuLi5m8>)!>4cLCZxTgl{yQcY$9oz}9b>EnLXYZd+j
zY>EdN?=rOU3wq32<ctWIB-4jBusal1IQGZdV?P`~Mjc^R!T4|*8|6E|8v-Rq*2+iF
z+p2spFcY%1!kJM+_=jLrJ7ra~Q?N|z>Cz7d5OcIkvLgmFv+R;W%67;aW~u2M+aU&;
zfC=`F{R>-F_QQbc^U#6j3p<>Fc1a#c@gQbKyw0yP2=O|r!ls%^bnJFaejYy(_!yuS
zn%oeAd<;JnI;5Dg(qrXZVEjkl?T~khkk#U7(*vtw(-jVQypEWO`h{|}iEcl`0nv~P
z<jW#ae=sn%{6AF$GrB+^2tZ&Tu>rWJ<;Nnv1HAe)6C1EYAzS#zt$msg^6d2UGf04X
z2D;rChp;ios-I$K3&03P5Ecd0kf2<C^bV3=dS9A1@KN|t0DAj)-KK3yV=U;M54L!n
zI>_YtI6xJ#%j^#p!e<;qYK&y&WQ>yOi6{Zn^5~5cgNgQ>Y;}hjFfT-aU#{9|ZnJ?m
zFYx@E0%!yJrzwDLu@#ECL6Xw!#Vi)$b>#3K{;HketxyyA#~$}!>nKwyshtjyNoh7j
zzqUN@!Y_^2c`12E5viOby2Fvx03~xtVlm5QRnT{ib_5>>ylFumHr06!kTJ98X-n`t
zG5cM3hhUng2qFz5dk?`+!VG#lJ{-i-*#tlnISzD|Etx{UsQ^VRUZ<A;3jsZT_!x*d
z8+a4bix$(~yC9G;oCV0yn+-~}N~YJ-SzVpZs<S(fHDg46RE!S=p|*{Q9Vej))*RCa
zHZ@c9%o?rR?A|S5?xB#02ftv?$Cmstu<ODHfsLN<r$B6)qX5$>f>{J+vl*)+%~l+v
zXF7{Ut~S$SycV6+Brz(K7U9(f^n<RlB<nJ0_z;Wu^S~aJrpNyHwO9BD`v-d7!^d7$
zW|ji56f5CXXqZ@<XY%rQfrv%>6x#Z!3e(JO$a6UU41gs&+lm&216w`h=*?C&LqzRN
z`6vYn%Q@kXgD8M)7TDM`1`K$<4e`TE?SSOqfKof2GeBU-{t2rKbYO4)>@i-O{X-sP
zai4FK%?|m0CJAcsA)u3C)GU4}UbkRt%nEGrI_0A^7O%4#u~_xli2R?$9|L;=y+O@R
zH`1wnt%CIfKG38Vo~5(O%~rblL{gEgRLj0~))RDJM4J-0YNz9M{GdAs)~Dlj9$o-J
z!*t5tvA~%A9B}SH#uf>FL_rwzW)pz^t7wY|t&&{G0x=&fj#Q1y%W(!wA2VJ*Ml&;u
zXM7+Mz%9^|h4e-$sDf0(6v9Na9WYWZF^=qz=Gx3dF)bi^Z8!aY7OAK960(-x1uh(y
zkHzZ(DU>g~Wr2cqo94Ok+vJ%>J3drF1bZ6$TI^4pajaciT{}wjR2Wl19^n9K;qB?H
zx^~K9q9+BYI`8{5x7omJQN_PCfHwHNBkB2ULV_f<kJs6B;{?BIC%{~2f~gY@lb!*`
zG1Sb&!lBKJ+7bU1;UnX9LLAykNvA|$XJPb<GW3L-sg0P|Wz0Aor7#lg3KR_(IV4-r
zhXb{4Yl0g(&#}p4<0+(V861BMX3_`@8BW88(EK<|)6e9?VY-wbiv(;+V_jtGLLoPG
zbe*lNh{p8v3ImGQi5q7iR;Da_;KhWZLuA@}7p5tNjA^iFwe+3`afspIAf!?QA-Mq%
zbE=5eQTsh&{0s=>?4Mv!j0t{lNI+?{LgL|<ZD!b7J!R7Hc-=@LyD;}q$lmq?o8x@M
z|19}qAa)=4A@HH}V$&iDxppwC6!Vl$XPHd&Fg|aA=^R5ZG0LST1roF4b%B7)L)h#I
z`14?7@66%P-6QJL>XcIqgkpi4Ae<m1|7Sl&wia<n1bi5nmD=O`fNIUQ&!4Km8v=h3
zc@D>)0kC9SJrax#P=hOwnx=T&B*g2?TXXiTn;d@}Yy!Yr;y)t=W6nTO5of_m8Be}+
z@gm-R#(|2M8c8i;4v_uXG|c`9tIG`gr|1fWV9x4-gXl!qB%O);Kj={mwJ_rmZi1&@
zb~6dF1d`j)(+&NU51Uc36Jw-F(7ubDGsD?tAmWdKJ&n<TZs|={dZCka43iz@CZmPU
zjIwxLVKk4R2p$R4=m4sStuuhQr~`r7GDIsHD?>Iz5EC1s;V0LD<nBNM9dZN>s{(4)
zz|Vt?JMpIZMJ#Yc=Tqr@N<txVRoKVt?Ai{KlPUs<j?2q&2C!pRi<6OUkf;m<dRw*G
z=@0uQ0VvodNni<31%$%^wZgl=4;VF)Tvv8TwceNJhm>IQlkqca|5==&4UX>vE*zJS
z#mz_(DU>h7>+DLJeY`HNXwzuN2RIG(H1@R^8EbJGNoHQfMv0yZy_gxVLpEEyPCFx*
zJ+oDTC&$^62q4rFj{cSa(vlt^8l>m52?>&vEPh73&P#vQPC)-?48MG2;4|rJ7Z;9+
zg+nolm?r)!!Y_>1h52JQS0Oiv&RB8H;*izg#4HW#=SYVzN`8qMNatxd%|`-ikvtrQ
zGe9)bcJeT*7C9qf6U+wuz%Gj?IT@?Zc-r*9OJ|}ehCuV<!1+ugs?U~Z1_1#tWj#W_
zpfngUyQ(ctd8SfZyiOl^L!rQcSGGq1sMt0-A_}806RCGLoKXZ0W;4A34RR=zO8Vk1
zTY78=dSXj$fm#&iV?ZEh|2SLD1PSo9^@1#rOE@!Lr>hMVuNdidk~H^FD8}o&w!m*1
zX9Dq`iL>cvq96uGPCs322Vx%3rY=q*HY6ZtWu7tt*~<s*N~f&y38g`6(HQh9i$-VF
z17QFv3St-uy2|+Chua35BhwNx6vX%uq!BdIEA@~zY7O*mI2_oQ+R_4wDc&gpHYHKd
zmctEKI0On6IoPVREULv@;gZiFcn>hOP`5?oIrjLY0G8}31a+1UxNuYhP4jqNW%}`W
zo#RZfZ<i^7CmCbTfOnt%kS{bx|6!u=q6E|gJS1t1rFkug#3sK@09KP!N@?~F2G7n0
zQ7jFEU@HwhV~Ik>8Qj2$j|CFMd=~Qmpl71;$@QLi-2fEhbrg~8h%G2YMh2@pjVKrK
zT?@436WW0KWkUjyl4$7soL)brgd|3|B5D&-QFKM`P$MzuOS@YBHa6&tiNwIxU+O;M
zV1(nWYlLi=Q0>R#b<7C*%0KyHq9Hz1izMV+e*}4d1!TOzjkY_C3*s{wwFc1y<;$k5
zD!Sc>MUA$29cUXe$`qN;1a^#C+$F+j`CgQhqBUxe7|<cnau%%C2mivgvUh8;>4}Mh
z2n!=XS6Vq|-Y-UvB#R2BXFaOe9TEpy8ks^qQxpj=BIER9NZPP5p=L$20T)X|RDm+>
z<8}Hh29RCZV45dgK^WnsmNw3O_})bV-r`JpLPmfVp)L_gW?scci9U*BN>^8SipeH}
z`=|T8>06eV&1@)V=!c}T)qOuQ5T*TjoK^j2@go6EkRDJGir{f062ym=jDNd$oyh?e
z)4LwIa7-*5GA~L5HsTrT`T+d1;1}HwLn_9iWqZ1a?mZy?2x<aGh9Berxh3Hr91#Dt
zc_IuFXTp(&gjHoN;)f1M2A<Chkyx>LG7any{K<tee}vi?X(D5-^FPYvNhXzGg+d2~
z1J*7hVi~sTLOw|%&<pwOS0Dz8Gy)UhmnQ_6rs2J?)tyC%A`xc*lZsX&VuEgRW~@zA
zhr84<<VH_fU?6fAQ2^o(hIVL2!urMZDagRv;f)D2!XY#d_d#UHq;tM(G2k?e%%)*#
za7KZcv}L>xXx>sWe!!N1#+L>f-Q>r%IZuKK^M{O?R6*z0*$F^M2_$)K_rp+&^vA^#
z_=}PgPzr6qx)=@1olV1lAF?705Gm8fmN*N=0xQOiRko`oAZ4>$-WQ(cJgI^OHL-jM
zJS`Rz%~pY)dIkefO=)EYsc;1bxi-Fx0272JnjjTr(==fWegdgGD&aNuCXJpx3Z~PO
zhvhj8d0Ifmnp#I1jWfU@X@iSn3loJYHlre7Mi$j#GH_7^$?d3T0nsz$-Fz?p6il}=
zQw-*>ux69XBId~ConhT%1R^mVG65Lb|DV18j?U}Y@<T!YF|%fQ*7JH^UeDus?q|1O
z2j8qKU1d=sMN-TeAV`47Ip;`#1Obv@Cc&H&NP+-C5IN_ZbIv(@2w%>5e!C9v38JLi
z-EQ@`-Hp8pAL`Vpuxr<@UB9YR=hRw19IjR+!$RR<C33e&w<$gDe&35pbU)02E&y)W
z(%{;)3D#jLH|V^Mh8Bj`aoeQ-NJsN|3P&{RMsUoYa6J6basRpekuyVn4AipdtkY>}
zKMXTPxJyQ!!tsZJma)eq!;*jRaLMJ&2$7jv6$^Klh>NrukMq8t7E^MgN~#r6A0abf
z<VysoBw~mJv^=TR1M=!=tsUbHJK}&PMu`aG{O}+X28D6C$_|yZviiV9Ms-#ls}zDL
zC5mOnn5AWDI9iq78i!QWUsjWvvRx^Q@xZ>F&*er$E548_LyZVS|Aow{o+Npej>Z0g
z4y^oVepV<&z%SZ;#b&PZ#_n(dKO!#1O1vKgthr$FXRWL=Xcan0f~o|Spu1e=t3`l4
zx<#yVT&+lfBhJrd&c)<PSS9X0mltd16~g5Ydl^f`mBPscj^)EeU^%R0jY}@8l}^W&
zbXMLLU>^=*eo}hKjVvA)jmeWER^s=$t@ycs_Z%aR2QKEShvl{==8ABbgSEjdky7dm
zB7%$XQ*`jGq7NgXJ5%Hp+xWw@KkWdIKybepA&bASdoTIl>HdKP$&(O}kZW|f@7wFA
zy4ydzh<^Yfb94|ez!e6gK<M1W9D8EPtSC7yG6c>E>hJCTQS`HTU8#bx({fM45w1|E
zNd3Vsop6A_Wrb=H+>@l08lz|l-2>W$U(#&_ozKCY&#+>iI93svRUWyr=S^bt1vO!P
z1vh^sB9x^y$c;iCQj@;Qm1M2tIyv_+8mToHA6Qmew(Ljw>!fgEt&XG#4WR!T-trPR
z=1E0M;91QMKVsdOxYp`*8Xc@5Av!p<8h*0o5|Ngj!k|^K56rXt=@SHO>_fI-9e!ef
zZo{Cnh6G7uLKI3zJRnqK(7=$hoY`YpLRYwJnw)?|Rs*oHB5*{ZEa@DQl@EY`Xpb6U
zGQD1{kO)u<y~<$VOVKn;o3-?M56xBRE&UZ1xj~w%IOT#r)DCU5Du0%_o@-h7AWSU^
zBmvPcgaaPH6z-!Hl`st$AC$%grG|8uOc;bi3anO$>BL|Z$ClOL6e_t)LC3`WpqEo~
zGf}{}tLYmRbOI+@ki?;v=`{+YPND?>)DvT?si2McPpm_pXbuA%1gTPi8Lg2H*`d>F
zFxeGxhnO3rMg?ETeYk`r1Hq3txQ!roq#Wd=p<`&6@~{<n_MfB&N9kap=>;-2NE2xx
z1!yBHl&u&c4ku)Yn=*vfN|jnVYJ>@dqEbA{7EYtoE0x@tQ0yQ#Xqwch5>n%<5kMzs
z5R)_>;8!bGVzh>=a77`|6{U!j6Sa^dBBII(jiD6cgHD`5?|>#NN#$4ww|f=}rqzq|
zdgwFb8I?fBxIsC|j0UA#C`33y3`RBOfcmZoM1$<$5P+tlT`!bsEg=~-+#33E2&2`6
z-)F#l_+kH7Qhk5-@1~zB<<HSSG(ICR#LfCyr-jJzPo~x>2^w+Sv#B8Nk_VDv8cPJ(
zYSA{V_alfztyHo%9bx9gbm}KKQep620bIzDGcRQ9v^um4^*n}t*q#dN0+f?bunhH6
zEG~l^1k)iQXk{sNBsq=c$W|lM&}UItA`}C?k{P8E=qTa}XaY^bkfD3yA5_`^6;z5i
zn1bpNw|b3ML62@$%GD|qw5lf(vL{knHD@2_%ZYjwJHv(b5E3w|qK2_ot4uq$8Hiwc
zBdJa;g7r11>0lA`SnvaO<tUa#rQ=AD4~Z5aRZ5Ql7z=WR3PzA};7Vco4o*p??6@`X
zC=qjq1VNAppjikFJ<OCM8qG$KfM7drgEL}Sr&ZId7i8gS;G(XE9*X`z=K*P#g>$Uq
zsDwgxs4%i)O@ZP`ZXAIRuGhnoP&n!V39xDN>Ronh4YM|^Y+@dPs4~fr3Z;6$RO>LR
zu`!<`u9{RH?3;`<kmaUT3Un}c46H*e^lQ*VnkW}MV;G>Cl2Azj;N&9c2~DlR7E>fn
zFs%7l1Tx=b?@6X~#2c&)Zh%|X*IDso#Na0eAU4{UPGbc4Mr}CxBbpRr5cHS!{~#;Y
zY$$YfC|OC)9By)tH9&|er!%^!G37EL_(5)JnE*N|)fpuSCedj$^tgu7(!c>9g+m`!
zhcJe!p`pYc_pK^;s0Hu`bB$C`b=tZnQq#xvDK*rTj@^M^*=h|~qW|DTAy?1>1mY-k
zIt85p$4a4j5}JXXDy1g5p)~o*`8X(rbe+E>P-}sqH8Lcko&;&Gyr0S>v2s|_kBGJO
z58R(2@CC=wTK{_q|9mF@%xR@A5S7WT5_fB*c0auJPem)GuzyTb)`qTztX{I8|G(1D
z;&twfI@oURd{eF$;s@-ibz+Tb94ZY&AcaE9fb8g8Ip{Q5NDLu#rX`I=zzI4!O^3!R
z^bmtiFBJo!Q4{Em66iejWh5|26gm;`F&$o|5gE}Jku6NIR)~%VW2dCg+`^voHPoq<
zGC4bqnArj*KG+=rkPwO^OsQ2Fq<mNe+>!#;5a(p6a0%-sR!Y?<kXS&SVDac^J9JHW
z^ng=LJz&mYQ>03IXu!o}uQVYwN`OOd2&12s24s>EO9i;4QDdkhoWwbJ<uV;Rlnd7|
zKXOP<u8}Hr#2!*1TyIcmbxI7GYApr~W@+IVu`F0FkQzI{41z)NETP7z1|Wd70QV}T
zS^@sxa3O(kb!1l%jov8de9W!Bp+b&c64J3<&}>AZgH~a{v=A7Ld@2R9(nySQm6$*_
zvV~Jhd3xCrml;VF5Lj&#O0;s;+z=Y<7nKQ88-XVQcUMZ|un1V8*`0#M3DOp-3!+Ha
zxq2Y5hfxFumn|I-`vfht8Vn$)I0ax7#oP=9(jZUCDR;$^k>Dwy6)i!7kh4;+m+5sF
z-Y6d=L;*nAu(<#ZU{I$9f`+yk<j@@0R&c(`55{d|DT6qe)@tQiDTYjHaj~4<wS<mA
zR~a+Rfj1?+Y^yS05Qe;U81<>4Fdpk@5<)oxixcOVX#go93MOFG(3rUhWK=G=;|^p+
zh7ctxO9Ekik*OW4KOK@oXS-@JOJPH#lFk>UX3?>wGxRf(F*{0Dtyv@wq9GIHMPgBD
z)c}8Bg8?;!v#Fy9@C|s2*izF%DfLZM4|7-aP7>z7BBFtp&3mAJdW}FPlj`XtTu2Mz
zHjoX_(Xq$SVJ#+@xB~-e&;s~rM0Bhs;=!R|$V!N5$^<`}jt(Jan3c6PlA%Yb(Epeo
zvQ-<zhw4HB&??jb-#f1F%jg^|luY^u$20*GS!zwa3f2)}Xk>{(E-~`yizw*5z-3?p
z8K6(ngcn4XPAy+vHY(VOrkFsOnix|{rC20qhgh>}z&J{%_tI&+^g&NZg{dPIPaIP2
z1Pd`;WMwnthKYwtEvBy&(OqPXJ_;K}P#wq$xuAn^1>mk$E+-|F;|At4LZB)1A23R+
z;tzQP+9O*n?PftL$Y@!slIThL4DzBMk)6_Na38VJa0I#0WOV2vV+k^lLc)+5O{!5W
z>$bSXDgxz4{Sk-yEHW|xG?E>VOATZ*2?e4GhzUea$4`^V03S@0GMR*CS@aof84Ng=
zGdmO$;~Zf=^hC^)sSn`}s}wVjm>~c)GHXC4kwPgyy3Mr&N<|M<&<r0;fe(xb%s#_m
z@IXn-rovzX60+y@WFF{DT^jq)<@GXTMvD$wwOS@7?2V|*egJKA`b+{qB-BpM>><>U
zRvl0|aHf%KmC#IzKviGi5UEhENJq;&xJQThqGHUBQ3M@>vs4T2$0(DteOD+Pl|a2I
zj$WZqDCy{8WJ*FngCbix+=|Y2ru?bydKFn8E-T!ILv*eqz>n0VRL~Wsa=5}h+$G^b
zRuC*D)EWg^qZoN1PdS^CFuldVLHz=nhNgk)=pYi34P^{Rnc)wDHo#H?4X_nLu}Wmr
zVctnO!#Jp=8abQMQEVjFK!iwv9;w6>o#{CfzgVwRQjcDzb^7J#@7@ms^hB#2Al4P3
zjY=r6aS_@-AvP|<U;wi(&jUfjdJ#}nqf4MKkfB&s67VI|#_ShzBN&7%$hg5c0{L;h
zMG9C;dd~U)y1tA@y$^og@|Z{rD2$xZ)s}UXiqJO2L}CuF<0kOB2K|%zJS$FtSv#We
zBswI(fU!6|EMi~_otN27Ruo|!>fvm5t`Lgns2^e!(*U@rQ~-Y~QZQiF@dLb$AwsMa
zFA*N1Bup}d(qIB%F=>cpDOqkXSd4Ii2=qK1FcBt{k`fb;1u`eGGigv5IfH>9E8WG2
z2`0g~MzFZRm&1^+)>;kx2ds%&AZM}-xP=Q?5n6iXs)!%PA$P@yj$y|yT2?Mc3c5oJ
z(5x1;#()HDQ5M6g9J2%g**5wv8fggZtV}9V@dZ-70!W&Tj8tuaVPpX2iDyDPtcKjM
z2d7u7lrkY*W1vAGtAI!$6KOF`AX7@8?B!TlWtCWj`4%r5HEP&F40MzgIMPY=D#?OG
z4b>x2(6B8wD)?ftQ~@oarlhpsgERHCa!<n@l|kknK{OwODc7nEq$(I4*Wz_974ZPm
z3x)|2X=(Umd2rk^-jK!0>J;2+i2!lP3SQiTqt?V=xPsRee4}&`qobA`bSx6fg;FX`
zAXN$^5If5XW0gWH*02c->Y~9QLr8{7Wdj!VAIO1NM9y4;tDtej0pnLL2RZ~!g9GO)
z;p73>Q!LPG78)DvAVV6AE1CtKhK)Dtc%2l(s8s947>`Lq<XYGqk~#V(nucvyW)=sI
z=5I{7af=jQ{6oAh*Xj8x)iMD-x+FUzScFX^^*6QEYJWk~QtJ|CQlmrZ2$`^FTO@yj
zR=UI^CKz5PfTA+W=lIKVkqp@~ybi5LdfY*;6C0K>uQc)(^*naoEy7U@T9?cai>Q+=
z8KDHY$?!Tj;Oq=lpMK!SOrEaj65%xGBp-EuI2Eji0uv8p08P@#=rIqg54s+Mu%vY`
zM$E{de4zmofq4L2>N_0bC3#XLQah~xRbD1o&*VZYwp2DNiZc|DI*lh>a-&Ggj=Lv?
zMP1N6Ip&!|O#!XhVfEZ_Mp+SkAA#n&P;yMMXkkLDM90>v*~44SykHKOl$K^zdg`wL
zU@E|Isw(A0pwpBoG6Yi!J#A-S)dX@dM;IWe7jevk5y+3SMI-1@C~!3r(xe?hOlZV5
z=>jE3kb=%&N4;ns0d6&z*l~ID#j-h(L_#)>MiBIH!su*N66v|Uwh+EdOB%#DM03-q
zLTM3#YM@~J($Ih)C@1V8F-gJ!BTzb&$~1H}4Wh`k5~)(cY>imYdIapU5_XvI`pQ}K
z$P64opc*40BY<=GqmIHNaM4&eT8;EX##Yb4u!29sR~khmMPP1P$y&(*d?Ao)Vbp2m
zCMwGCI-3d5^Jiio5xD6Fg)6no!0YT95QQ3zRUM|3`XI%jehdYYLQB;eoeV-|1yU<$
zkf|0X08<}QICM8=OmSO>KBv<N7a2~#6i6eX-UBgEH-^g73<a`e^S4#4Sf_RR<>=4h
zbt!G|;JN~f0A=LtjzJ+8jbvmcp1u9Ht50f_0nPDolkgMZ3c4I{j93LFhPFeK^}twq
zqfAW7OzCMZj{Kx5{Q|Dw*xN$X5m^z^<(bJ_7ZYkqIwg|1?EE*^ZzQ&N&Y?4y@H+Yw
zB}30r(?$@=R<UeUi_qnyFaavSF9qhoxWPd>!NT<8J6DrZ(?{lb%r4TNOZsHBUPRV&
zrHTrbhV2s|vr3SQD+GdI^+vBmPGlL4I=NaddzYM+lUA@eFM;90ZN!AVBTK|=u~w;)
zi<GdIWCamMgsf3V6J954NqclCoMetsfsNl}-Z4rbfm*F5plQ%6C4_YKQt_+j&r)-X
zMi)ikiV^~IV(x^>0&x;jG>TMOF+G-NJR5WXy2KgsfcV%T$w)7klbu3abKmBJnUTt9
zHw@c0!mJF0hh`+qpwdamP@<NoKkV#ef7_FX32&0q_%q`$e_|mmexo>{RDodvf?{6)
zWU~}jG_B`QEj3z|n1&Nn8?YK9Fhr@-NZArRnNp>KG!RKR$5nyQFJO>X&7dlUV<gjo
zIePvJlMihWi-o}JZIuO=FJG-|?xZnJN2_fpA4%v}&lZnp%x5DJF@};LGT3X?iu7Qw
zHE35OH-sPx%F@c^YB4>lW$1%=14|gUAPRVh8T@0?f*)5%B{!(i1*mWuUDPTe6pSqi
zAvt;$rWo|NKqZ=+O?>{!!O`vBqu0${BRB6odHg&<C=>!laJfMy!~^3NO-qtTh1Eup
znl%_QlXBm>hGgie4uniAZ%}SjREci8iq|oQVsHeL#4(hCH35_gQwgO(trnM*6+XD1
zGCiYM$LmCdmQZ_*UWw@;sW6keQ3B<GC?G=<UZ-BY`u+gjlN&Hy2cG7%ePxKJT_r4n
zY;dss?#<^djU#gOfE9d8ot^0^P%j#pH8v8nb#}^xIX%tQ(K2W{+N}g^-dWjp=R$mK
zTjPvqhQsSnV+kh2YMO@1=nICzrrezT7fJo&Qv#?h7+@WXX1_|Xq!1f5%cu$ZDGI{8
zQ6y5(TIct~;dPF<?hNAg9sqGNw&;gxKieP)i^d);F@cc|qY9WEDpiX{J-?^5{`HfB
z_VxvVQh`{ALB%2ldLfd~yb&`@A#H$UV4bEGEPsPcr(@t8-Iv3Q%vP)jO(jI;NKa8|
z^_$A1$vL4X*ci5#npGPCn2`|kloZmZzDS=S1S4eZQAKj(!95jhjltO2)_ecv<HDRG
zxlE)|OHHN;+0#Uw>W)7Zq(KKy0{U~19FD#stJcbCdQa7X1G}gY6-(k`g9v^ZUWeS+
zE<_@hTqBoIrD)i|*rw1?dr{FHoxK+?U32m9PAe#y7tzK`$YY6_Wn`#P@ZnidpfCV*
znN-Q@jsjtYSiM0I5F96bxmrc*;#6a%%$S`TFjLXMt(Zuzl1iOgBrh+jNP7Ktd}f~G
zn*@z&vE_fgbVb7v7Y^+P9U#2V+L7vo8mSH7l_bXMi6503s23x%N<hyA!GN?ZH}!r(
zO6TwltGfzwS_yCj$2nt%ZD=&rh44D}v0j!ZiIKvo?=d(IM=OA0ky^IWufU-OQy|C|
z@>!_^W0sT|yrCN-jANMEg`Qo|LJqC3tEd}ucztPn`uW{EZxWsfc#F7{Nog+)+D{~f
z=)fP9j9=Pkg@#}yGtSm&oqiemS-d_yGhSI$+TGpBHaf%N=w(usLayoR?yspWAL^~j
z$w|5Syr^#w>Z}C-ho+(%p_idwE%gi)CZ=`vOv55FGYi{flnc3@PT2!d>y2WKev$1w
zL6`~-Ly=UX(kPbt+glE9x4U-k5sx=g+gSYMX;%LL<^wPSfc#RWUMi8&CKn`w*%8as
zH1N>#D>D3I!Ygu^t?I)3wA6P?YU+{m<0BbK&-02(M`wBHOB$_$Yypu>XOPnT9HziP
zD3CfAnH~&FKyviC4Rm$HWflqiBQu3gEs^s1u6C{`!eT}SXUOam(gjS@NC8PXTMPrp
zstc!7(4KVo0K-&T2^@xB<jJxHQ3pp7wMMSi(&`SvF{Z#nErLXZAuvd3cw-~>*2j*Y
zxzaK^i~6$~XbiMR7V{I8UQZ7i(Ri%=FnmxpWaCgW6ERs*VgrPXx#5btq=UQVm~=7Q
zic}c-i6eSHS}6r`M~;B)j7tc4Zm=`q@yn9J3h~_3Xjezl%gl*MdXHYNqP_MsG}3Y%
z8@#CwPz{w%1zF%4W?H7@^V43u4i5|t4Gq0;?aJG{tg(ez+~&4alGExi(9@bUvBv7I
z(IbDvp}TAFI%ExVO!}#n^wgK%zxTMVsT*-H7%Nmtsagqxi%gJ+{vZ!rz^UmOE^S|-
zE9jz#rglGCUpMWC(b9r6ltDi_JofNuLPX4IuaMB_({V)wr78)TbnvKFs@T{_`VSDq
zlm{vWM_;E_&|pJZ(T*mXeyBR@>s%e&t*u;MyiRZJ8A*7Z`ZhIVagnD{%V}pmt1Qi5
zks~yo*?!_osg-JJkV1(Xu>zwYVE~%85JHlR$*}<tQN%huFwhEUKt2R)2<=E|j>qsi
zZb_v}apzB49Cj-!?_9_0L}(_4-$wiUpFV$b`oaYlKi}Y}lZ9oKN;w%ZnrcE*=q(ip
zlWiAN049^ZkcQ(wx)GwW^>u0*XcfUVVR3Qh!M(@s+<d7}>Y&>+IaDfC8uVk<U!lRY
zg^!RTIf$J#9Bhb8#Mde$CGWD@s+$oH$e^dD^X1(qP2FvLHJ{DCFoz&aO$)^uKyrmp
zK7TtVHpJ1rxVjE_o$NYh83w&vCgkwCz^KS;sffRP<+x99SWs|eWMooO(#*^ZN`?Jr
z%hN`g40=Tth`R(>=a%73cpdgbr&r>V!|UWIB0*RhLr8P*hpsAo`|7E+nQul$(-M&6
zDqg3lDKrijaE9g9`usO9vgoX2+|p~<E<IyQRa0tW>h#zwrXnars;6!KD|j6Nn0H{B
ztyR(L1}0Q&mP@?@c2Gs54j3h_lv=qK%o20-!{9jDh)qAJE!k3$M!}ZtaUX*VA`A_T
z0<Tw=RHLOan^LRQu#M=@WTlu$*|vTeTU@6K!Qes;DyRo-f&qY6a_|ie13bq)G+@&V
zSa>->LG)u*N6zdiAvRp8RSL0yawqFS!;(@efi;6Po;^!AaPY8;r*BD39bZbL401yY
zp_*(js0f}#8L~jD(35J?2TYDAA8H3wR;pA;b+isd!Y2{1_Q8dQ>>+2hVJ8$SDXo&A
zX}})ZhcCSld%?!ap`&{MgC(*>G-@3}<yxZzu-2IJCM_cTL`ZN%XlVGGH*e_$0K`H5
zCW4*P(O|7q(g1^zj&{Am8Ztwt<j-6<6=vn+U0T;pb_(-PwmJjJtaJ`E49x&=i?Y&b
z_(J|<W=ctS^8|(Hb(qq^!*-~XL1qGw4NZ2wc>B7oe*_r_0sm>4g{`k+oPrvGeKx6t
z!qafb${|i+tJ#))Zl%wNd5|1)3*91G8M-2nynOI5CpBehZn~$VJvAkLa%vtm63OIT
z4wx<~p)fRFfwWpuL$J6`>-5Xe&*JsYuGUA7@7=$DcYb~r;VKoqeYwEnU%7hY%H{J@
z!;J_dfR3&)CpL;iFqpWM>R{Xyg)fr5k2<|b%z?HtBgJ|eVv@mQ*`v4U(PQatMHM~l
zgY}`eOc*D!-i{Wt-Hy-hrHVutLS%%-X-!tHqW$i)z7B9q5$S;xnFTWaY!4hVqJ9pa
zcrnu7*W1mjV{(aB{!uBJ2>;2N6Dy1jBEsve&jSEryj0LrJ_rDPRUx65UBDS(I?m{+
z4fGUGp;L;5i}NmaPA5ZSmS$-y8<>zNFb+_)bo4|Rg9q7S&JkwBe{S`M%}ij_VV_Z7
za6#+KgvU6sQ@w~^P7;)i%@jxk8o~6qgN?QSiMZZ*DYtBZANDp9ObK%MJ}s36OM$Tj
z=8wu)bx6Pl-8Bv^%cMfD-Y_!`i-r;zM?mTHvJF^c@7(Z2BxDQ|3fdV6;fWtzzvku?
zSWwuCL675^6~c@)n`lrp)PRNwIO#HP^u^t~k$ypr*0vxkd)v^M6BW(%;E59AkCM<>
z0xvO&ieTiB$T_@Dy9;zmy=We-00|7t(Hl#Y03o!eg{`cyypSCH!25m9rfbG1evp>h
zc6EK7D-nSx2-u9hp^HX@099(Su%)5?+Ld@4TgPKgE(eZUIXb!Bzx!ykf0#02bp!}w
zC7^uT^7}nrXW2rX^l}N!|1=u)^4#;gx5NC7H#PLG;fSd*r9yT_iAFENgaO!Dty@-b
z4?(~jK_l9oiUd$K*0u~OuHbS&1wupg07}5EuXCV*9Oa68n3<@Q0->BwEvVH>FJ3-p
zXY1eDHM5S_i41z3NHX2ufBV`sM`s5cC#S9Z_U=DodFSC1-rN$zXy8!04ii~eJ9H*A
zG?GC~Xa$DX;h=s7nO3)KFi4azTGWHZ&CQiZ%p8(l=7@yUfSjYxgj4S#0>lISUAck$
zxXCxIzsg%1YMjh1AI9I~8j}=MV_c%w_0Whay-WyQKo}(?RY0GWUWtfwIcQbY*bZZa
z&WM&&5~u-(D$&B^tHKnom=Jqw8^^=ewpPau9z5vh7tqkqz_{1a7IuJ2cK8s1b;=eD
zVSHe}givV@0<DT*?rTu2#p^4WnIdwj2(Q0+@p$i6yS%&(iI!I3<%9#--BmlIlTY8h
z9^+>3-_kgy#wD~CS*bJ+Z`^gWcdM<a$0ayJT!EUlvoO34V7k(6i9wXEB}7K*kKASS
zK~uu(tVQs{Mj|Fvy<R2&CZ=m8uqir~p5BQ<#}i2CU3oS?p+2C5TuIzWjU35XlTk;X
zfLo~@!cia`;;;e`hjuivrEA=0Pm&>jbYON90~8p60J&;YDL}EfB@~e~VLZr6kio=V
z0D71pgF>#E7#TfxHtxj9)6=|V2|ay4UdV?&03Zeqmhg-Q+W$@UrTN<mUKcF$iBX_-
zR#^nf4WuVXPSs+yBp)1WWQ4<Z(GU2C#fBk3{WQk7sI#_~_MKh*G%rNXdNwry7aEOx
zcJAqeCr*xT*2nA}>|OTnKY09jR99DznoWwnC-|A8GASH)p_nWCVGOdR%druMZQUxH
zy2;+s{FA~dHpeUDpJoxvqma!H54PG{dL=%|!d)<<mXaiOS_M7H2hUVJd204cYZv=R
zFOt=I8bFxX$@<Y<ln+Bkg|Vkh+;E_y*RE&?p+fb`^q_<uSfi~V*g4wf%J^Y-p~X)h
z-m^O5nDQnQvlyCCKva|z4Zo_BoG|Hko!04>p`XR;yoH$;FP{bl1+=%fBAnZu*3{S*
zclOeo<ky1v{=vS^jxjA%Ro6GYSl7_iJJK*Xkx@`ooSPpP5WeXTUq;4UukIL>D@0?1
z-K}+Ptg~rVGI>Yy_+am}La_)lH8L`inUR~Fmkw87-;N^G%BB9UmV-O(Uq8)WTpXL7
zAL{Go3HiqE-j2f3)SQAhCFOZJx%oxK6~iMF!0SqtzNWe||J}>{w8X;vs@VmZL@BMT
zEVMna-+bSpJ4u-}{bLyP2Adm3r{<P1++v86iHCZJONxq9(-QIv(?&<<X-K1;DvIXD
zp4R4pv60cDyzJVFI;lvFu1-A^&ai^l4Qi=)Vg5vL#POiWrkakT{HpBi;?(q<MG>Y1
z7{aAGwPbR1qzvr7$;eF0Z)@$A%as_~F&+!Vyw;A!)XaBp(=%Gy`@|w3ETvA)pBU{c
zD=o~)$!czCn_m*p#tjr{FpiH-G}qSVq`axf&1|hGa&vMFj=eG_rrqRZP0(m6T5^($
zmiu};OG-*oQs0)8mCnshl3`K_MDr8%wM{uWC51)hBcqetJcl^ZX$A)Rva>VubMp%G
z3nU^bM)dNM>g7egnpUm!vpw@|m0cpGP-&D+b&U?Uj1NvMzRAq)Ypj&djP|tl&Q0>h
zJKG|CyubYPyO`L!bq)Ppy<?qSeaiw&d+2LIy!qwEhPL@xwqk|>STECQmWKPA9W5*#
z#owA8pVaAeLla|-UF{PKb7U@6s=2A@x{9jY^vv4o8s6dpjV@Z1bb7k0x?yZWSYF#*
zRZ%@P*wfckrj{>b#3MjzH1_rN47b$E<|hXSCYJbWS~*iGG0CiNX-Ln_%q`068|YWa
z<OaEFc4(}+pe#QvyRp7$Zh0A280Z0beP*ybFEcGEIi;kcad?I=p)X3Xfk7mqeZ&UU
z<Y52#GpB<CLmod#nB@yGZ<(84ni!jwE()O;8ku5jXgIGRKc^r+zqGKeyB+8pRn`iH
zJ<V-Hqf<lU)5S%3rMX#x@hRZ4k@k8|2kS3C`u6(Or?@+_usk?2J2knWmZK?Yk}x$f
zosnCZl~*|2-rinYQ`6dmfep>pT3$XhKD$iofJTE<SyNR%Gdqt7XG=>>XIuaH@N!jI
zdu>%SpFgYCEG{e#)zy`yzR4;nXq*}o5^yJJficxUdq?iOf{NlQbd&JoA<(Jjma%ob
zP6SZE7e2Up)y2;4$+O1-nG7PESr)YS^h1*urx#nQ8zu*a`&v8lvNETq#*|7qI#W+~
zXL@>KMtVwj+Z4T}Pv(@M6wFs?aaloLenCNMYU+z!+su<+<%)$8jfOr#($v(HmifA{
zBztIhTuSAr=6Mrc?R|rN;~mZIMLBsLb?thEUZ+()xO?N9k3My?amg*Jn4DQsFDQnZ
zyJiIo=;12iVtq+LPF^N@a%EZV<ixC$9sy|X$6fTabZY7z06XYhU<n`)MX2YepWnOg
z80>oH-j$)A0aA3mzQ4CG{asdfXAi(;e_v;9RU>P6jlrO3sB7-;8Ac=sX0U$%wxXag
zyQruDMp6a*W7J4x%e_4#{XMglW$mRUHT?q}C<Wl9vwZ~CEWaS7wJz`ejmu`cTxx2@
z#I!$8OFIH7f9Tl?A~dSzE}jWC-)qxUKcb}PN(>yUG`BBbx3f4_m{T-1I@LciF41Wv
zdipR<|4?^pQ?*eoZLO~C>Fw|88>}g>O-*^1Ra!XCn<WjVrvRE6;X+qqOHpP{L0MVv
z_=H5EX0H=yD~pR~#(2G5g9Qb7UA;~1-8Iv5!(^qHpt`%eyE<EiON)b@V~aB)$X_Vp
z_4oIdl$52X<&>4yPEF1uBA6747CSl{A&`uWwDR)Gndv2x8!)42xwXD=d}O+}b38M>
zba;4PBvNU0291thSmyA$h|lY6Xv|5&;8(y~5J(ja$Ep;4EltBi<IRmNZ=c?8t1QOc
zNuxEsO-kPR-L^w!N0Z-W&n~i$G$;k#U9GuQ4KLrN7iJ{!#`_kew3ds~I~yun+IxD2
zr!!%$J33^GOMvWRk)W};AtfU<t2nQBcu**nXqBp|k+G`6vfOmChYO3#NX`(k#vqe)
z*49>J=3u-XYU&B~4hixJ>+Kz-)e_t$@zOx2o8wibXC6Lae((O1sp)yG#>nF>_Vx6S
zkB-UNKAG9+ncC{QtgM`z?1ILowq-sY-Jk}LFlxoT@t*d^#MCSpI*ci&Bm8aM{2Mxl
zFh$Xdmizn13ricaGxM73T4p9C^dJOjAUzl{D34;HudCkL%=PVyeDFIvInmzOy*Rtv
z)L2tlRyf)<fod!*O`bV_e8c8%yaL1PoBL%DyiO`u8tG`P&d<y(FK!td<%`q`1wAan
zd`>esJWyC%1oiG|?ilYH>}u`oo|}O{#v8h(+j@Iv#*@l&nwuIVbG+V$_L0us;hwfr
zk>Oi5?1?*by}7NnYoM*OXL@Fyx}MgknB@su+6Sg)rWy7pU0<hl`bFr^?O)F?$aZwJ
zFD@=rsWd=fh?e;3ji*OIPe-R-HX9uk<{x=~YRcG^S{!lM@?^|;`+)Edzu55Irmdg<
z)o=dYzxjV{*nG&rH>|U(<yQQ;V4q;#<N|>5)Y#~y)AvqCU*YjaMB?#h&k}a+-1qf2
zpMUlB=Z=ovWu?_p@$BOK#P*FA&+eu2`IAqc+;DLWYp5B1o0{a{V*aPke)Yjezy96t
zKiIxw@3ZHx6iRJ%O{1r~$EMGJ|JBF8Ik5NW^B3tw)fLAhgZ}D2{D;5z_y3=dwjDfu
z_sL*u>v2!dhtCqHmx1y0oh^;$W6p2ivh{br`^!E1w%ot}Vq|1aqn8YhbcTn<_;`dx
zgoJ+c#i#ps?0^2`HFay6i(?ePn2PRAn>wURydZaP^Ic{qLr?G6dg!yyzTL88-`nim
z$@ys*-6h`m>le>p$bS8|zyI`48^S`P%E~HG?&8vHT4u7XgVo>u_P>9%ar5<CkID4w
zHPb_#*DuFy-SqWGAAaEJ<x^Z%EnzR$!vdzi%LwrD+Vtrs`!;<Y?eF#NS6>B0Umg}2
z7nJnnK@cs^s}*B|y{Dt2c5MIdumAe5j~=zCE-Rv^4Z`Wx>LO=Hw=cik`pq}nu3Wu2
zJ;Os&%jNRv>B+dbGn+Pjvw73EM=g%z=N7=QdVBh1yiEu8$7q*$JL$O3$<Bd}?!opm
z!O=mEA)Wz|+xH*5bM91iM#|ZfamPcVVgmiX{M~Q=-M{_MUw>m36dV^7eg53}E46hE
z8jVIOm8ZN(i;9ea%_Z%kPiQP_R0|`6O-`0a6CXYmU=#sd)@#|4vQef|iiM)=cj<N(
zmLLB1_lFJ~Oh|kM91oC@^6*iJtIx^k>w6A49@u9VcOpDG$gMCpMW~{e4|2<@LqdXb
z5}zhLxa(l&Sz8axVO*S>ef|2?QL7`r`|$TW_U?TA^vV3}oNP&uk@&`PpZSNs{owH7
zBQKJZC;3YlpGJCH??U(+H~i+ezqhh=OUfwZ36)?8`RJ9jfnOzF%1KQL4GehxGyzqS
zXlTm`JVL&Nb~9^@1MOYsPM_JibLS^te7@n^ucObLnwcI)wT9Z-&Yg_$_6zq8irBJs
z<L+&nU*3H--q!Q#-nGB^i~r-V|MTxY{KJ-n#N?Ka&WMP!XJW6+Pfr<jik|kC3+K*%
zwgD~kU66~TtF@I^@QK2Trsc8G5I5Jm4--eG1V*)?rK;M;Gaw^9N1<50a^<X_cSv~f
z*~14Ny*&b(nyLU6??1R`YisfGhhLiQw}1I8V}1tnC@8SBt+6^b;`rt-zuUTTo3pdE
zxy3;T`@ovo{&l=gWYFg%r-XZZKYQ>%uB82Sa<;LRKItgeG*mW3_=iLWhPc}~9^AVp
zJuL-zy`ro#@_6_cUwrV**PqA5-0o?grZo(sVq&rrw(H>jL*H)PWM;NKG}QaEKYg40
zDjR@gX>l$yJ?Gdlo8Nx$-}W8c_VVT1*;&3?D@u5I-^Vj3$S2a_n9ZioKKHb9E6**>
z&B@rkW6NLvr@#2)-~Peg#jB*et}?UC!^)wozG_*qG|=7@9qj-0#xH;U!S4_3HNSb|
z?l5l>0OUd3H5W6x%BD`>bpk8sYxEwuYO=lg^69AXi&0g5&D6N4BHOD$k7W!-iG+9Y
zVr)p@iSZG7gw@yA5*`wDGycASzrdTHdi?OwzCC+C{OEU|eDWu6&#;!JUYT52P?#AW
z7VYPK!rIc)&erwulRH4S3-hu|7w&A`y7`-pA9^~Ox!GHNx8X=x*}(Mj67V|Y3Bf8A
zGQ#V?uCQae#hX`7*jTs@_OR(a?(20%rRL@Rr+%(p$uHkLe*850?Ah*-L4jH-QA_UK
zzj-1&u(7NlIwUA4IMmZGXwTk5AN=v-0~Qu3sc)rxT36QUHI;Q$fxdnpfAq<QO<PW1
zy4uxGpuD-E+S%6jLd;bkx1i16ZuARq4ms|6|M9i4@kw-m-kzZokx@?`-bzbJ3iUma
z`0Sltr)ux4i#r#)Y18K4{Q3jyV@}0IFy`njs_L4u@Q45mUcdkSZ!Hd6CB95sn4_;u
zwl>rRdiw?kgge{&?%HAT`gIoYI*Mkq69`(NRtT#rio^Z<zxw2}Pe1<R;iKnWeUoy9
zwl+T}(9Ov&Fv88<XZMCrysQrw6<4%&4!PJl{O|wv-~ReHA6VKtzf67$3nUlJUA}PU
zo1J_A_~nL!J2oB<aPObMm|&DF&Yy`4^$iF;9&_Q)A@lISK;ZR-@rjJox0c6_{_XF6
z_1(UmPhY*5U*HM(f_F)8j_xOWXkmWjWm59g@)FubB^CBG*2V+`?EdPT%^!Xd?RR|h
z=UZIuJ^T75IJ{1zgLzPn*4ADK3B7Xu>f{W)hemTw{4*H&3ur_=Z)W!0n-m8-`;R{Q
z_|s3m^z`yCD6UY##4x<xTvZr-Jouw8Hh#HrOLU;;zHh&<wD+uS>jz$+8SK4w?e5p#
z?)mtm&pezx>uP%iB6{SZQp>n~FGj6!WT4f<J}C8N!P4x))BE?mT>PTKP9E65>zl7W
zJrx|=SlawHIbqY*Pye_7@bCZIum0c@aH77URjU<OmZf_++kW)hkG6e#`1*~PeG}vK
z0*78R)Z2CO;`wdcwtn-)*Y-!OgPeREk2zL!wD(L*+=x6I<>u=X6}I)*!P94=J8SDB
zyhF}}oji9k;>%Ay`hWhLfB)4N+k?V9PQ@KRd;We&d56*{6RDPx-)2Qbo=<(3&L+w0
zv`)Vm{VZPBXcfaF{lUS3*RNk29v%e(lSx(g?>&C{=#`i+Fe>Il0(~5PF3rpkUf=Q8
zzuJ4?$iuf;Ej|4s{lixyPVN1A$HRooo~fnjnUO1TCp{cJI-9!mD!E)NI<Uj$MA+Hk
z;r5Zy=9dYt+FH9B8mkM7at|Fib}sHJF#5<ykHtZ^>zAJi1XI_qpEcj_(%Lw|TbSt|
zYHV(=c$blM$l{2%U+~-_e|ml~^<7qdZCy)UQF}wh^$Yj*?6%A)FCLj33U_vOFhBM<
ztF(JjGTz<oZDn=t@{I+FdTew!?qrmwlV@>$!O&3K#mh0SuKv%Sy-{j}Q?o<nhitz1
zWJ~<zD>daM7oyMY{_bF9Z3nD`NTC>?9GRURUgnKz#EWVn-_gQq>*t#<#KiY>jFpu&
z-MstE!rn14?X6rPn4ai=`Rp-fHH~$xC52VyW|pT;#m>%7Pfd?{cso6QcE7v7ucf1V
zmM7*fOT-Iv58}^xI9k7Y_Gox;=+52yp%Eu%7KBoTzP7G8Bq;o3`0?h7vZ?O2#M@WD
z{rn5y_4XP1{v-@Pd+4Dxs^s@>Ui0yAt*j{P@9UYI7?~OE2VU=~D-Q8;j0lUWYwT)h
z?uk8n`QH7<Dzz3ZdHe3I{Reg@CBJNMYiVk%Z>XuQDX%`Td;imik7y%}PXFlAlY?6i
zH+41+jP>l_xNF-dJI-Fd(>XXS7$4}bDYHFdcPZ`)Z?G>mIOw}?550U<*wQ*)-_#uv
z8X156CbVd3Y9{*R>5CVx_4N!wyD(3qd5%#$KhqnG37@;yi>J?qM@OXe-4_gEw0$No
zD?1`6<WlU};@teYx;hUZZ?vP<Xh?tl@{fP{8%rzSlFFW*uKuaPp4d>&_{%XOH9hQz
zxp>Xj*SEPOKlSOOT{{jpH1#XQ^6a#?9`4T3F;R8R^-b-~<&|Z#GgE~b+1?H=53b$r
zY;MoZDRlDksqgI-sO8Te+;Fxu>uPQ4=<IH2=@lsHLq+HV^bIn4_%D?Uc;`=@JRN<K
zH%G$~`UXvuIG@(IFgA1j{3W|%*6Hc#H4XKNDX%@fJ+5B4ppi=!Mn@ejZ9n;J%b80z
z%PWfST)%Q~%YovzxpPBpr^0-9ZaSQkQNPR=j!uo)+j|H5pIio}o*TP=<Fc=($E&2Y
zq2ckOcZrt!c5K>qsHCcGX>7px$ibM?@iU7Wqe|aUQg(R1<*S!(B$CCLn25jn%U_2D
zohi<57#^5}YNWn<;^Aq9@ZPTB)a1gDfY|1SPK3|T4q%w{cXO{UuIp^+e)leM-+|qG
z_t<v#%&FMkCt5qBwOHDsMq?wh4F6II7Ei0CoyXiI=9vnKI5spqHZ)Yg<MD;d1Yekg
zN3S(zr)F>b^s6KL4!(T&gf|25Ip5pcec{|iKVR>Hg0!~QhEtK(9^6hA3nfY=Kl#lA
zE319+SFg9Xw$;=WT(}VZrw_h<lbC}(-`(EgVC!=3+=Z&T{L+ftfS~A{yef@e@+{%*
zAAk3yy`@K0VNw3Ow;t9mA)bNg&gEr=+rHWu85~*L(j`+HU*COcwsm(!W6hF$G3QNU
zd1hK)e^*gi>5C_?zWI7fQeLLQsCjzzo~M;tRZB0ozD}zxn22elxi6nNA2WZJnK&g~
zqFMo8EG_qU_t3Y`^+u_9Hpt)2$1SA4b6hE35DBJ^96WYDHlDvY+gMkc{3@}rzNxLf
zv7jJt_fCtjkW-LZdq=}x{olVaJK&J`B71Cfc4V|yDqD`f`q0kCGc7H(y`!qKC?(9_
z^W)!cD=#0E>a@V?OY|8h5Zjl6Nrc9zSIpeF9OZb-t0=d5er}03KaE?w@rf(3aTdGx
zm*f={6cqUe2j`X*3sutgzV_2+PF}rmdbF#>&F0u2e*aP2m79&-y%n_$kT!Z^X?cl4
zCGYR-j0z1s5p(KYc6MV^+sWuN@pm7i-1heR&p!HK&ldB9hbiM@Bki5l51(BK3Ui(3
z@l`70^Jhuko?bawuS@bXZ4NmmJxw?0)p6%fxVbxZb#=A3^>noN3k5O^mEGN)$0I|$
zeO#)lOM82JV@{oQcMW)(oQbK=U{A-kO`A7-vFXW!q@jViv9U#{7$7dXl}0Po8)fY+
zwZQ@2G2s!N&8?*cWti~1PA!ngb+BU_Kl<IaU5B5(c-xepaoo+`+RnYYvA4ah{+QW8
zCnvAw_JR2&fkG)sxF2tS?C|5nl*Z1U#78${!u@VMd^s{JPzslQob7(~+mBA2yIxn@
zv^+OwluC0_-uQaDosEmBtgo(ZYpiOhnVp|WNq!UT>;K^ToyO|=(vnJNcdxRBM#yJk
zxIa43`%G|fO=fOSb#rxgndLs~eLKuMJ4Y27(j}D&|MW(YsO;5CU#nw1?Y#)p!&ssl
zaSn4Wjj}X9-_zCQ(uIqyt?gx{RTvsPeS*7shk)0o#)hw+iS%`I$SuNbw=OI3iS5Ci
zI}cdZwe}lTiaY1e1_wpHdY#qT()IY>lM~TbyZfi82&0DH86l7&9q6ogIP8&`SS(!>
zKDu+~55M}z!`Z8(IPY!p%OksvU5L7}FgN}z;r6%Nzl*(at*vWJt25Tr6b1U(UpjNL
zIH$O?ZQ9TO%;VQdN~4-LGx_TA!y^{vDQ}XxTRVFi+dVCvzWHopT3Oi`Zz0mzcf)`G
zgMak#rpf-vsnNNi5$7Wg@ux43bhllKJ-y>wv*%A!o7*ePYxARHuV1~MAk|Bj6ueVs
zt{gvkv9h+|U$psLr~e7`vv}QL)X3zbr%xY;h6YzwR?Fqen(Br#r_UGVm(fa`f*0WJ
zZs&e(e%?4yRB!v`hD%p(_bssf#0F!@n{=0>j;Xmdqsz3Yb1K5m+QMq2cSI=>%uP%<
z9QC?)<C$Q20swBXe`s!c5yi=55?}9#y?e~Z#=06BDuCDT-F!Vg-4DF(WE<R4KZZDJ
z-I7AJ`0T}lfRIp3)&)}fq<UZP==>~CA)y7Ktfc&HTg+c%rp+$TM7p@23q94nBwscf
z=LZMf%*@YUxj8M673Jl+*;v20|9o){No3QrL$R@!-P{61Qr`Gf|6wy*XM5kijxLPP
zd2h21?K)Cf+c`M3^z`Lxa|^R=+rA0#ajY!Jlr7Ak2ncaL>R6gv0~@AP8q2HOteo60
z-@YYNEa^0Yf!+@K(3KuoS{E8}{NO>exw)C*l6*_+!!Ht_E{lZVoE8lX#-YxZ2yf@u
zh``o{8l6U4P+02a8&XnPFH;&%ojPx4<5*KxK^qxW(!T0aA16n*pqQ?C4WKHW?8D9v
zf{ng=?Q&><Z);-%J6uUiuSn`;1xZhi?%tB}CT&Tm86I6YbMETRTleRAi!E)fM=UK~
zynH%0KZW=jwNfsY^mcX~J!J7NDM_$2qY#M_Zzs80dNy}8jn9t+ICwiBc84(qwl->|
z^L_1hN9`}4yQ<|craXSMYun-Oo(0sUe`q=+^!SBK7u9NYU0nn4dS*u6!u&Eb;sD-2
z1R}kfKR-VD=;j@>gNJtQ*?sNy&5@}Ih(aor#-5CJv9<%M)+tm|Q&S#(K97@MEeiNq
zFOxB0c<?ZNkv=M|Rg0GHTs(O^)N68yKfECE3XZsU@1AC9F8Seu1N*G&8v4<!=VDL#
z`*~GVm9lRY=%sSW(jqV1FVNG@sjj%vpwf*DPq_I7B&267%A{A%#RR!KcDFTaw6q5i
z3cM_(J^m_%8ePJu*YM{i-0W;3!$RrJLauKxB}cpKC93kQ!btz%=MNvxOid$9qLiMy
z5a;M%GdntLlt^5x?2p-b)wK^`s4mXWG2ec)^j(orJ|BPngpbRK_U1Xvop_70K3);0
zqAmijR~BX1SnRub?egRdpNdc{KD>T@|6!;6(q_Trpr_5@lc%mtOw;#Lo6F0s%<W$%
zzEda!XV0G4@!h`C!X|J=TQZfxvvHxmes(1#Incn7frS$h7a!eEn4BC;OMT|yY@7Z%
zNyMYqh><q(MEEf)@8XiSpT_I|qL+tY@pQWH&n5$QS4t(Jp5AA|!&MTASSnH(3_OWg
zq9L0Ip;Q!B9Ne+@^69vl;W49uj_k?H%Q>*`;Pv>cOG}e#mGtU`$7fI7nw<tj>v3_l
zxO6FcdUA%OsTF2rC4ceBmc*xNeBSKS2Y1Z&9nQ-sRB9Hc=Lb*4+`M%8iC8|LnwGF{
zm*u@{FBO7i(d^`@fN*aIkD2N5#)j%6dk(yM@=74r$~DF}4_<p%IlOrLdQrB3Xv<^6
z#JkZ@m{YuS$G*pJlcCkOVz0WGJ6E^%VWN!w1)`6_N*9ywUEjCm>*nDO`Yh{$xcqIN
zx3lAcJ$s#Py(@~VmKH{0qJsiFqegmX(J9AA+xBiheEIBcxrEPO8lN7Yph>JzGc`2<
zTMfKEGTL8UlC$~SohOc8nwzFA5DKNRp|R4<CGg&z7b7D>TAe^6oqlrn`Zu2($jE3C
zs$eN;DW7&IlXkHcXQe^LACA9x{BQs32cLepefzfE8^8H-$L7se2M=xie8cWdTU+a!
zTbf#3JlvBq-l~n-ywY4uMC;1)sYlq`dV2*lb`8=8hGp`W>IM&cr}+D~W|!s*-lRHO
z9KHGI{=8Hyld3PAj}MPIKfbWo)>db}XII>b8v`A)V3;o$OU=0B=6$riy<aRaUOac>
z%;^~3Y+reChSh%iw=Z%Rcr$0u9rq9L8W<R$7jhr~de=(#@Zo(2N1Mdg&&3jqFvf}T
z*^r=9LH-fq<%NOn_QU%Rh6F}Tj?xYpg@WxLSvfCBr87uhB|NmVKJw;yf|$1?<%`dp
zzI6KHgYl`QzS^=QJGMlhyR{(H>K7&+osYJ4^Z`Vl86NR+u#b(s$QRSz=+>474?ByS
zm*W=2^dwL^H+KEpNh>GsrtT4yh#%qab@Z4c%(X(U(JR$59`F2#$Y4M3+PX@56_Va~
zQ1ce&LxV${?Ch&cD~%e%(BPPdZ$M&37Edh7OnK#QX`cG<p-}=mW1JnB@^=aHbPXOF
z;n6Nl)E*q@^co&7<L({jeFu8F`qg@)T!p5G4nh+(N{Mi8axB2xBlg7c_U0x7J-;z#
z<(636dpu8k3xD#f1iQm~UOc*^Vhi@*KhoFL#=*O}Yh<ju)7io-Fd(9Ta2AE-r04qh
zovdo?meUu)*v@@w0!dGEmGcp=f|N?5O!N5G?H!wTrzWLoHS(#^A^U^Qu|aVX{=&QT
zS5~$*1*O&WsUCyz(W7|FBRi5_JQgoYWMX5~$(xt%+#8vl=xS|rx3#`=<J!#hB=k}|
z!;e3C(fZJ_%<_uyg{2cNfq^!z<!$x!>0*Uwd1A_TpXIGH*E9mbiw6%ewQg@6LhXg}
z1^?hvXU^Z^D+NO{gJF?p5)w1HLjh3Vby}xiihdTavlFbf4Gnef?yhg%ycLNg_wPLh
z^qd^W2&7dlj|BO;J9?cT9@6!s6}oNN@-8D+U^EKY6gd0&E33U0MKv7~+OH;w4)+ak
z_gS3a85B|}pYQ7u9_W31da_q4o+>LTKN%V8=j-Y2<^n5iW92eAJy2U$VQ1z4@@dx0
zRNt)|aXv0lEj1%rrA#cDYHTizJQ;HL;iDyilrNFXl)8@g{wMbzdwJOSc{(57VfnjX
zeeo(MQ>2mHiHtq%6Hzz02vjbgTX5X7FYeOyMY;CH(<iov4owZvtK|kd20?NA_EQT>
z$DxUyk?|g@qfT+L@k+52c)hN$YWJ1{FO#xI=fw>j-S-~czkK;j((}80&9#DwaX)*P
zD8C5)6dlnAJ1*B5kDt919vj1392X0xE6WPwVq?5Ke4XswHh#0k#>TF<x0|;xlbD<k
z8Xja}b?oAm8{NH=;9<0@?ckO#4{iU}$Hmdd%iH|0<u~8%NY5^rniG5a1jn8_OP>Zq
zqi7WJ$srFLoA5I?#wD~b2aQAx$JW<dYpY-!T^$`FBaUN2qJu%w%kG~)`R&JlusD3o
zKP<-D-s`ikwuT*#9vB%dEic=<e@{+shEyV8NLmYYQktK?XUn$Cw{J0`7*wh^_uo2L
zxMmh-wGFhM42V1xbe1Qk_sWbq>1<!S)nV%^=dbC7%c%*^EDkv|HID=22_@=;7q8A=
zywK6n(cIjMson6<1hQvmh(NVeN;!{K+4WlC!ctjDY3!NPL1Cdm5n+SFLlTiVDm47V
zzx|EVQS0!)U|U<;KYj7p<$Jeg7I|+TK0CJiXm!mXfn_+IvLN+oXrNnhZGB-wyOVc7
zPEH;$!1J3oEiK$CsyZi!N4;I_u3S6|U_lF7^sQ$-e|gc#%4Yk9%|1?EZjSDbPVS$5
zyXEwa+d{Q!c5LA0`B>{C=03juZ{FoCNVEbvMwA8yI%Y+$5iiboIM|&#9Sg7`k<tJu
zQ?nrmLygv$`Rc9Xkz);2H3$F%LHoX8Vfv&uua6xuuPZB2@Obuzj|GLEom!;NfHc?F
z?B8sWc<;4QvvB!Ln5#|rK(|z*QwzjASLeWpz*rG)?(K^QPF4qdJ6e%9lNm4R$*qIt
zZk09t{PDg3Co5pPg(WJcqo(HQA=@X9UkL<rad9Ud?cDpirimrJQ6^jV^SA%q@Bc4%
zcY7B{FB?nGt(y*BzHmdUl_tM_V770^)Zh?l4|R9diRk0rUMG5b=l>Prb^3_X8oUm_
zS}r>g5EL64Dp_8J+CWH<0@PjvJfb(&men5EzUTFm=k%7nL9bFuGc(iw@VgIOoE-xK
z+&n#;zxa5Ei+%9K*d)DOdUQulPO?I#l+l;<W$o>?dv_kmd|Qawb!4#b@BaFO(15U@
zP$wG)vu)e0L&GkQ&-TB|d~wXevnZp1y=W*q7kbjo%4u|LaCB_I;pnla51#QATE0w^
z_VlguVe69G3YkH=JURN{@&!MCFK=I;13M4?_E#UoKYKPK6kk1Y#l_sUv3rznG>U0o
z586}>T`o*cFx$DQZLE7%#@7i|+Ih*FglFNwAzy#GEh8ld2KnsiP*2CO>0$a9!1B_d
zo4x<F^A9kG7YnB{Qr`sygu1%edw95g`ti4JF8;lJ9gR&@t}Z^$9={VTu})!B<>bCI
zJ80X}HO{_3MemyyW~JI$1QZqZ@ae2-+7E*<hPJX}#NjTC{ChWIH+``)_QcJ5ckbW6
zbN%j(Yw_pK+a9to+p(v&rG0#K?D)wO*KS{*6Y-uVKDmDVf=av~o*4;nbq)%Sm{_C_
zrl2r`RD0YnC?YO;Ng>Edc=^SzfA`&iJzkOFo*sT*Z`f+>>Nm<;tg0$FW_BRyNv;CJ
z6)`MqYEKUdcS=gk7#S3V2glyJc^z~1iqbUT^*2wl)hby{U199$6ONAdQIV%|vJ2HJ
zy+k6rb?b(wm+RR0pi(8JdA-hf_H=wiXw1UQ<X}&S#eqXNuHDhF{Tt9PL_kq$E$v*#
zh!cM$?vKC!m8XNFuZz3Cr|-sZw%L0e9~xWeuPL?Kx%qxV79trH%kS=7-e+!K)iyTS
zKj3b2?CRBfyk(_Yqsz^DXSH{0ZAmWLRZNTCvda9l&AZLZ8#)&Nl-*qX0wZS@6;wIB
zad~3G%O2+X3<OQP&e;+M@Vb|W=Vu>%>gnX^?-gKWY4_#EEjJ!NpI%<NbmnA;s~xYe
z2l_&-qc+B!yy9Tz(?2{fqQkBk>Gb-gg{-@`ocHhRXzf8PvR4R);h>LlsnueE)3Kw;
zFP~!qESC}|9o<7V&fc%yqzgroYnRTu+aBi6O@MzSG|C0H&P8K{YHlCuX{@)}vl9Yw
zb`1>k4>Q|mzGJu5+uSm-hPEC;$gCvESZ|Aqh1a{Mxdy5F-nDqkgVtTGJ*c2YE{X7r
z4swprDx_7_#Yc`=r)3u|3+Q}_n>WvW^x=QCvoa6%3vsp&`{?7H!O^FOXT}RM-tF4>
z)ifr(7%RY#+E|v7XR+r<c4ZCly3b+9v;Gki;sxM!rAj23n{zU=jSY;}iDan>Nr(4Z
z73P%-gbO;O=IYJ+G3Vpk`nzh|>!VIzDy?aw){)absC8PWUy6Pfuj>tJxasN13m4Aa
zzyGkVt|9)~t!r0q=;*`5YW_sWiBR9bsJlah>XxK*k8NAuyvu;m6wrJ5+MHKOyEko1
z&Z&S&l*kq?o(cDKaPCDxDv6l4;Nu(?;uFQ28_G<7?&j#~WbfhU>+Ry?{OL#EdbtOU
zP4rgRl$q^wethrk(!%J~%cpEDeA?@2L-5>8Z%l0Psnf@s+dEj#GWL&5goi~3c>BA#
z+4y=n+w8ah?wbQIax=Tf`mXqeh1vNO^-T_IjIx<|=iU3yUbr#2EJ;d8a5OjXZs<@;
z<$~o2nPMqE{(+}YX!l_2<jkOho#&nSCj#E0O2BU{tTx|y<oW9yG5frfl#aYn(2MOl
zg?fn>=I#~Y9kMtsl!=T2z83Z|D(>2qyZ4l8K~7epyNj)di?fHDx1F`qr=NW3?(PY^
z4#@~5O9?NZx_Nm=M4i6>Fo`!SnC$B^`)<RIuRrs4cJOd>_we*R9d~VXa(P*#4GE7q
zaXe;nU|7MM2VU3DO?cbdoH%#0XI8!_WAAJkj0(XLeIih=nVTHL48h*k&d<xUwzNnq
zTD%e+`sr`~=8)M@Cyx*hpK$-+6K~V9CuezuMJ4u*c8v{n^gU((YCXN<*j!s{ZDs-C
z0PQIx;%C=iI#{~bcGeHf3<SFeM*7E0Ey+amE)9R8yV=gl;r^Y+YQf^;8}UcX914qC
zXii}?R#sO<M226#emy%o_rd)qON$~57;0ErQZS8*-Y{0ck`f9u7-!~YU%XEI`rA#Z
zY3~Hf{0pZ}|LIr1bFi@Tbar)gbPSC;UfNhIkV)P>O|;r+SzkZS$K($Q)w0pf>g!ix
z&fmECAUXY9{O$VsM$A}V-oEEx8&F--$D5k*aI`*sDpDflD^yb6;w+LW6*6}_=WSmT
zUO#4G?dI-t;@pM2+6IiDK;?sN4QEfC0ABYCimGYtQ?hk1;#mX9(Dxi;kE11`#z!X*
zCfDfY46kbegS5u{luVmL7A@6va;Z!#7E5H}C(j<+SX$JT6f5U>0j|C$V{Qyi^Ti5b
zb5otgF8e3(&yAY-^DzO(4h0N!$+UXavT(-U+AGvAMkNxYzIxzdbEvwkNF*_k^ptZM
zuOFIQc;yweil+L5T`dEH&X10(P;Omu;jzO`@80Ik&5dCi8R!?@Tt6UMrUfgspnrhF
z7hnFy!^6SN*~iZ-DkLDbw5S?b;ohAK?oKxCb@ghoPDL+3D9@gYb#V@@s~`N=iPvHD
zOn9A^+f~X-(J{d5BYk}em0YgX@+4yPedvQirmnB3-@k2lMp6pogqTW&q_8mm%g?{E
zv$gj0wD)j#a(4=Q^(>peB<Sd<J8ZEnG4a9N%)C+#Et3Hz?%sa*T~e+_%0Cks`pIuU
zb#-v_@Un36unG;0FDvU?mQJT-B^*BBTAAO4!i-wU`H;v!7vIjV*7mOEgFANLyn0Kd
zHq7y*Zyvlpy7NG3U1d#M_5G_Cy=|<V9Bu6!?2jI_+`Mr|{L_SGrS{I*yKYCl+J<Lf
zlZ7%4W#Ly=llj*1@ZOBl>>24Y1qd_-nY5~`eE$xslDrC~Vk-KCugzhf(cWd5bbM;E
z#lgxuCL+GCyQRD|EhHe&{+NTaldZS6=SP41+TAr^Zho?*wbtUW&D~qC7Uxwo!!)YW
z(v!a3xTmJ7eQ9ZdPHs~1QWKw99`MS_YFU&@Bu0f?|NZ->26Sq$p<Rf-c>I{T^HA>+
zJ5rP$62byMzJ3#(tG%vKxU`&;mm3is`7-6@jeA#fa#D<X>EcLtu!q})3)ctdgd;*J
zpzQqU?CJ2R^Ea>XmBNhY37bFqWS7~2V;&xupNEIX-cCpnY4r^aB~}OaB|plS@(6cg
zs=!-re){5a?5QhhDb<(G-N{OOXVA?yR%bgNc1wPo!;S%z_Vu?%MICprcM0$h?dcu>
z_ZKgox3RSx8SMx6&>;S@EHdJpw@2{u{LDyyxB0#U5AHsZ3iToZt*di*U2ml0rJza=
z?#2VJyI9-!IJ>zyxL^o-`leW_G<KKdSZ>?+{B7wBol!fJ`!Ig{KHJi!(b4W6r^DtL
zrv@izYfVXhrt^_~RfSn1xq5th&Zv{-r@Yu}Zd={lH#0I6=<XUC5j#39l*#D*6Zs;~
z)7mojc$iEofIVCkFCtVd75RAie*O6dFJ~`18%GC6w-aa2mo~Qvl!|-TF9EMlwzq;=
z<-FJ^Gsc~|>f#*O(KjX5FaQtO54p)C<u9N696i$9)UhPdK*uCfCAA%@s?*Gl4jntV
z|6cqRwN#3lqwe)BUHdKU?>v5mXb<n+vNhj5(%ZfukS)TjOO~Epzi4UW-q|}b(Aw-~
zY4Po*9ah%vKCV9AZax>|pR^56V}ygXCA?0WBb^@X@Usa@xu0Q_>z>@Y?ReCwy{S_w
z;Y;|7$GuK@Sq7+tqO7cxufN%pn34g!E|sZn+&uf)r+@8WZQ<(d;b<S~;d|yyUWrg8
zFU`x?^UYWN?JdHE1+_qCR2a+N6dc}dkzG;86DvFq*`EuH92LyX7)4UqvXnO$<sEh<
z@{&=gd3pc2*&g%8`WB5w1(DXbw4b?r_44f-uim9Td!5?aL*J29m_Dw*PV4kb(4TwX
z6nI^wQdCt{96uiA<>dpsURF}6qsLw<!DL5}x1(?P^|@JNe^#N(=5OAlr(<jo(MCv3
zN$NYxeTPyDt7!M6LHzLMdHchbZPkrP*xlT?f1Bm?3->x&DsRNc__+JdPcETwAzuL0
zVsGsUyx!bazh|fI-5ZH|t?=&c3swi*C;LU><%L%-ZUqIqR@M}w+k!udMweSucFf8#
zDKQyc14G5T$LWW5THi}c9uv%*cJ{s&e7Z-X16~u2&jwrC-n{#4R;WsP`pnbn*t46D
zv=Xo?o0%I9k38e-9>5b#kIf8NnA=^ybYC>T2-MS4-FkGdO+r%sG99OFl&c{b3?vGp
zP9~q5jtL01+GXC?OkecFK$V_bX=d-9@HTa7X7EP*X*Xw^*~u{oRw9ynxcfLeyVlp&
zsx|Z}Gg$9sk@Ugimlj7|fTBj*TVey;P6l|)VT#X88>)ulWGdsyn2Ros9&NP^H1*fW
zMygA!_w4ZrIn_5OX9smtn;B&63<$KEK?|JS)79<g<9qAcWsP{bIxo$|`bcqc^^%m{
znd4xGT5rtFE3mdbcJJ<O-uyID=~Z&c!eU`YrsGjdBvh$HI<5NpnL7t}TXu|gk1URQ
z*twqyJ3qz~D^a3BHrCT@b;S1JgJ(*?LekR*M=c!c8fXh6+|bD2#mnbBJ>8?DqpK?G
zmlo;kymSKv8?;)LczR-xH#H?%rf<lgrtRHb2M?R4q@>JG&s>kY=wfNpQd!F^vQbIL
z%h4e;*)QK&?y#z;7+ApM54Y4Z`NDAe+h_YNt=vK*vr8)H=NF6$#p`>IEzI2O>W62?
zCr^g>h6ni!4`YHvOY9PfXqh)3;uqv%?J&^RhfKf`>H_7I(r`_0d4j#E=~+7`?||c{
zJNhvR)6iRkH1?=*_r=5eo~|ypZ{As2rmup+fqVWOU%f0X%PfFy-;ck!Fgu4}ok4r<
z+*u!Ym${K)&Ek@;lUG#Ct;r>&TqA91u6Ho^O?i}IG%jC08{%vkIoPStXchBIqfU1I
zCxR~kpp<4O9p1a?`J;Pe<_$&-f9PDK&(>`=<&^`o{Y@u)Y(s)B4Uf<|P-%La*>0=X
zFEW-EXV098^79VqY#pO>k@QBPa6ax_n75A&w;u-VD%ey9E&DRzw!fE4!u<!-B6{Qe
z{J58o`@sW_t!)$k3h_F~1lB?1*J|EAO9*y%e|Y;glo>+e*4GyVVj*8rQ(9xTYkz)P
zCPWInu2M?N%1SKEkKDWw&+O02_Z;O?#q8{`wawl$XTql@(8Z9q?D6B98^79_`0Sl%
zek$qlT^B3&)Wmnt1Rz>qSS@`yP@IzfXy?{rm3cizwcMx^oezl!aP$}(AF6AtI&#qL
z>4Rrr29vDp#4N|d)~UG}Ntv(x9qm$|JY*frSY24PWz){<&t5Dm^|#O5wLj=u+c^rG
zOiiuVi^MRqviY92Q$b!1zRu-s^#qjB4Ro6J#^wXtt=_)O;LUYjhzs#?I@#Mi1Kzqi
z3io|yb@9~w{_dtL7bE>Wy~T8#wPs;q-p<C;#mN_Vy{fu+$M*fNU*^bhhrR+SD6c56
zFn4(JD4EAYkC1Al)A1KhZ}`)`<m4(y()7OR%KEy}Xb`Im%Gsy)FE}3as;%gw$8q#Y
zSuKEl`pZOz!$(?c>LH-1naQZwlQzyaahGGeyBm!fk$8H@)6T}p&A)SW0Vo*4$;!y}
zc6CoodZE)RQ=UKdb8${ieJi9dtWYEJ=sZ|scXvIY<g0tR;yELIY}?3JYWr&H(j08O
z9j(KYo@Xs$NHfef*JU5u=a~2)b7^r-B11)xy|$yH3y}T%xy!@DqbVuLR>v$JJ-&w_
z5*6?68j3q}BQpH7Ot?JI-F|4#zGshLq8aI{m*`6?uVQK?(j}!@kn!%do%NCQ*GXhb
z*aAF+2M$|uQfzl^d7Ixlhh|gpb01vYe!!t=P{11-x7oM*^5r{=WPXgbWd&}Q`)*x~
z5zFagI?9EK$MNT_oqT#ndD5kYFdy&G<7da`WoqOITs=2?!rwF0&tr777Zycl)GD;f
znYn2{AAfH*uYvACjse7laG(xv5+7Uc*^-m^g1&U3F)mIl+1q;CI{3Hu)Av#!1@X%H
z`>Oup{I~%Bkl^FRHLZ{%sky-@6)ee@7RGuzqJ#aze7t(v+7PHx8&cA9ZCw4{<&?<e
z>a2GuR(roINKfIOQ%a|XJ&&0mvTzt0TNrL_@w2xH3qCP7M-Q&S8>Y(~V-mGw1+N>V
z{jD`#mVSA!O2FaWD_3pJ?K+yffY+tM<sgTM<L<FKsUjmiW#_Iv71d2hg#LB+-bH)6
zz1bOWsJ=RS>Wc9NDp+4uXtjIWgB#bl`YsL5#z$U0xXnDhq-H^)4z~7;k32IaT@p}l
zQShfGT+Hk)hM$*C$!?v$b$HLgo(_Ufa<y)5nHPWm)*g$aAtz7Qwsy=3#FCZc$ku6{
zelhxUc%3=@^z@{wtNX8i{oAWoZcL6(DI|30fSlLsYHx1s9636w?s}JV^pg*h(^6-(
zs%5oAp%j;8q}v>_2#dRtRa3XbpU6u~ICjANxL;7tyQC{;PygX>K92}ERa=?&;O==x
z8>h77td!(8@7|_v-E`3GpzY9TS7%Qvu-C0?FGPZ=_^YwzyBu4ph6}PYzT5J#o&BMN
zSC4WE3d`ym^DC>W8(Lgle1ZeRUcY&olbI6c9RAVYZaDw^vBaoOIv4L}<{0%jv0!+z
zzplk|zj@5r_+^E$r@7@$+&MQZr+e3K<mbLQ5gqL65%}m?GRB9lftFo6%+AGJ6U_3A
zT5Usq<<`%3+<%%j&kl_zOG#f$78oUqO5Uvd(PLlz_LK8b7t@mqUMJ^!1)Z|@39aeq
z7@g>S{P41km04<XV)E-Z8EM(OcJ4DXJ3KNnq*BY;J6lT2OHwnk!y{uIor9()78DE9
z=}&LFA2Yjs=|VwHZdP`|z{va*PbQEU@(OA~gN~nxJel?CWyzbDS3`XN_}~7ElV|Xx
zfbcgp8k&s2x~jLiv8*t!ytFJkGsoT4?f%W1{OQSt;#^OATX(PE2MKA}g|!*^<pZPB
zXwk9p$un`MU7Q`S$6tPzoLG{dGdDUm+|?Zyb;8@t`Tm0&7>aDooIm++V?je{eSeef
z5j)`Zfmu324_3Xap?uHogXb??of{u4FUYbuY!i9nLQ!cI>^P<(X&G;=t*v}~d=_{D
z{<4hBE0Cg8jX8}@E$e7)xOU;f!@Kv=)6-K@-`==$+u7Z%qM||~5O&rz`8v8r_y%UB
zrWF?#7gUz@%>qOk6K*`R`0hw<ZaWVkAGv82dhv8^Rrbf<Y}~N>Kt*F4eJ@$9ej0y!
z$9Gm`C7l|vEbGk+pwg(Q;H2aisp-i@h55Xh>8g?nJBwo{!=j4|%5(C|${Jf|6dIvc
zD;F)+7Ukq;rKhE5x_AU$xbcwNzfSVi>s2B;l4g2%F#hr-AhW0wF^`|WMDx9Sn^Blm
zD4Q27jZ9xYb;kDa(K|P8CMPGy$6v*C<<+ytz#~&#-FD{IK7nUv`1G;jlH&ZMyWNr>
zWJs6#;-Y;H@APS@0ff@b&JWpJ`viNPS{NT&oal)^9~l<td-v{(tn|F+x1$ei{rKyR
z7EMi4(&?T%abdRB!51$izkc*A(#QMrKW@Bv?Xg6>931R@^ssG9!yq@pNu^6w)!A<D
zM}2%;veFB((#i{S>+}GVTIuv;PgtP0!%@qe)cl<EytufNUwrlH?p@Y>{q%9be}#Dc
zeKP0;Q!_W>;vB85qhn5{<>X`*7ro2PPtD9(<ni+}@^^3E{_4?Fr9jNKD`|&@24YW9
zS9<yK0q{Xdelwq^<IOE-wc=;bue-S&i#~BGFDLijy~{Q>W?y~wUBaU`vW4mHhN=jk
zNN*RPcj@;^D>E`P+NY)g2lx-4UEH?Gswlmk@Vab1E-1`)zs1mSU;j{dSU`}Yy~~@d
z{NX8HUUKffZ+B!C<<_)S2Rb{P^z+V2dkeaLF8)9MhrhU)@Oqdhx^nU+@Oo}#tB@IS
zOhq)bk|Hyz#Dgt07EYGd?#>A}9@k}*WWIhCfAO-7xkq7UnMyI9^y-$gWmvH1*|gL<
z@mE8>_~Un%V;_$VbzZp`vHQF2Z(pZoq`yr}eEG#^TMwJrj*SljukYS<DB)@P5|6%P
ztx}5@m!_{>dEn&{dj0yfx2aDP9$vCLdT7&UhcYvp1xiK7XwTFlA1u*<_Ap;;4aBIL
zyLI)Xy`@J}Exn#juu!kT^fl@JBeU&0s|rgHD3S<o+`azYp6^ayh@PJrHtK=Cm+TIk
z{priiXKp-xol%&ap6lrw5FQ>r*n<&GGd$3JDmv23!}H107s;7<g>`KWeUoy7v7#)~
zV(*TZck)EDG`+^OL}TplA1XK7Z~uq?zU}R+Jl3+al_kmhzCHZnPCB*nXiHA+yQ1Q}
z<m41zpTMV2UWmog%F1$YAJ|&QjEuCb%)F?`(~;p99^6eZYBZfK4f}WQz8Qa4ut?je
zfQB_1NCtgs<$cqU!LH-zhfdCEiOD5-Ma9Lnts`Qk-q@UxWV?OigXHol0l?wXt8-D`
z?zFD#<c)Xt9^Ue8R8$;aN=gdDd-uXgC(8p@uHQ;a&%PCRBEsAG+RZ00&=8uJgS~@`
z{~!hlvS1|Wti)%59?qvuguY68{x0inX;m2}KY2O%Uap>}B4e{N@=MC=N@|-1W|z?C
zJ6mhQy&NOGJ>ETgmig-4{p*i5e7WPh-In#8qbMA>d07mr4r`*&PK{Qjz1zNHZ^+4W
zFOxDbCMUjpg#l%5WJn`idU^l0y@mO?*yw`1{FkrZ1c%22MV+l_?v_ZEL%m%WqJm>1
zf*(A7nVFUU@Z#ysAO2?3=6&tmW6A~I%iA~HU3}x?AEhOwm6cRhHuo=Usa&96;B`9B
zT)8~f(|l})ZDC@WW=Rqo9$~TP2)7?bw7lSN8xFiKnqBDbXtuGn_X~{3$}L;w3wwI&
zgM%DA-Rx76(n?EvGxFMcCSml9GsAuNE}U^Va`^eZ`=uHANp}*wEZn~Pa#u!aZU4l)
z|54X7e&KE7{lM!6qheuf#Kqk9`pN5tWn+6)x1X!q*_e~Xg*9kesaBL$@NV<&1GaAd
z{o|7upvCkYl&SMNt<x_=e{TOe?2N&n69|?cJb2{f<nlHpU9Hp@RP;W-Q961jKKAsb
zXJcck;r!yu9!|xTrSk@rlG3X9<0BVO#q2p|Z{_VhJv%Tt*m5!`Y||%S967KnBEZkx
z#`nRsrz+V(Y2iCdbE|Eec5T}5_3_X!8%xj7;F!L_w!Xox6UVQ;eO)v*((&xk^(g=I
z71^!#Z(aZ6AO7nHfBe5UZ2a`&&%dy+b+~xzc2igH+1M-JZP~H;yDuFbtdBcKxLWx?
z&CecQo|!0b3OMZim9@*Y%>0(Z@~Z)%m##gS6$0Jrhnkwh+yb_JwQ=LuA8z0I&5hen
z<TMplj86AQpE#fVB7;9QXH=;=${T~-!i&ngMC@1(sZyoa$hDFsI#phyx*Z!A?jGpl
z;P>U9wtTZ`zoTbZMrj?)3VL;Ad4?6Lx^2sbFTV~63O{CL=jRtNFwoc3T<7iUvEiGq
zHg4G#9Cq?$V$Q;x5QcB6qbAhN{_8(|`1KcG?%cH>d=5=4!!AM6uM(2YcJ1Bu<(EOW
zmN&!wf*oxyUAs5Qr=v`jO0`xhHmYPssi@%Ho5TC}fBE?ryLRjj4Gx<a8Kng(wY;OD
z?!%A2{`8yOUvAoCVdM5TBagEnJ$>Dg$HVvR-u~G~AGkT%4Ro{_wd$1T3EMYs{P5%7
z9<#CXbO;OzIN3hgJHQ)0ck2A@t51d(#Uj!Y$!JgW@yJt&uix^fM~8dbqEDVVXl`@-
zL~PGMKL(_%+%!w8!)MN%Q7Uvw0`N3uXyo(=)u2(%O^?MyM%q|fef#aVUvBuy-r4E-
zi-g6+MS3AfYrK2u+J+B5`TV1gH*MPF9^hNn-UxXXzR5llbhf^JatXy#ZYraCX?&zL
z_++$CR7~g4IN^1TCi~T!sEDi0jbp&9lKIJN7td_k^!Ya%zp!<%N_zc@#$dhiVocnp
zAAGjqi%lCh@AL_esvD%$$Beg$dpB?R@OQu7xBuYz%eR}lM__6fh1~HadbL;pybfW`
zPEN#~Id{z3e%r3Sdk>o1T06XXmZV;$w>Bqx2QSB*J!*dVtFONL_S=oIv8P4{dW||Q
zZ(#8D#T(b}yqR9sDh-PIx~fw_*UQrD7N=U@ynt5U>28)`j9C^;TsV8@@y(Q_$#J7W
zI5F7h>*4gf-+jLI+a2eloI^a1nw$HUmi8NU%dMsFTpUkq-Qr@k-^|zE#_5=6d2yp$
zCVcehR?NwBovl=NdLE#YsniRP9$(qMedC5NHh=!{cV2Gc-5rA>5l^oblon)p*gG8B
zb@=dsBPUOW28H;?#@sBg==#@;*8yi~ah-hhJ<EmB(c9OqnH@g#!6%>m?H@m|b#+fk
z&ytAb%{9%(1446C(}i;j9A4LGRJGN0M=Z=g`Q*2M`snvZ&D^rnsup>ehAF0Jdd{7T
z+`V&;*}+4$wub@&+<ZL3@-oVda-mkV`0`%jj&FB<_T_*5{OeykJDn~oALYv@vhov7
zhTmu^A2-TGdeOw&yN@nKo$l%F7@HnRe(~zify3?rq2+ZgWf`R&)=p*hRl~DG_b#5Z
z+_inn#tqxHZ3}h}bhY<PFRPvwsop$Hzj@|ibN}=_Tl8n7k_u;x(q*GgR?%AR9_+to
z!}i^ue7p0T4Mz`|-@N#Ac61Sn-`!Cj>3?<OCkHIdzxMGubnK8@!o94Ck?xwx40lK8
zy*u{p-Lu2j*ZZi2)A_jTQ`4iJT}^(zp-&&Bn)a`2b+U%KZcq1+ef#!o{qD2lK~8~Q
zE|Gy(YHG%+nw!qvxR6m$O#O?rYXz?>MPtD0fnJd#{YxUug`j&HrEGB_KlyEtn@4v;
zi$<Z8DWnOnpIbRtJ$QCUC0{1IF6KEOvvBkYvhzRwhmXGbX7lc2Zf+%26|_lPEYcY@
zDVZtTzTWip=imJH(+zv=-Ckyvz@D_Vl%5Rnugd9{%%Ny-ylga%@|HR-pT8gAd8wkX
z*=T^krh3{7kNd<_=5)+Vk0-x<xM%NopM3h^)~(xOW8!*y2AMqd<rT%i>*(?y{NYbq
zx9ooXl0DAS>nBGBP92YWo1D&@k<e*8=uj|(tXomlj0&Scnfm6{wy(eW=9AAifANi#
zm2+}_8?g99ZOP>jpVzr9qYFmk(nQ7cTYkr{R&*>(_V!<j2zmJM_3RQmQA@9w?`t_9
z8Fb*_;ceS@TkO~v?&UNvGLPB;uirR-F7D#((OC(%z78c7&y3x?c$N)EpV~Mcdy|$z
zcG+OOc=p1lAAbJjXWx9gb+=DwWPQ&N?GH36TC4Me-5j=l{`szr+rtA-`glj3IDNBy
zctN0J>)dpdtd=%ms-(tcURrvNd%*GEeE7vjfBM|~klFp~*LdSY&~T$p@%F_Nt3wAc
zD*fr>FDz_aimF?<WhS|ZUtg5v>0tf&SDW|lGm8uHy%H4?5ERYcG1V-O4h8y!fAYz<
zAN=YA%OlnoZ#`=sp@Y&fM5E6s#B!rrAetLJA9AU!s9QR-^y>b@3(*%x2gcEy!X@7I
z==--~A5HWQ3YO;1U%0eo+uoqi=&tTw4B*L0cfR@R<F7v7_|;ct`^>%bs+*B529&w}
zt}tJZEnj@OfAh}M0nt$|VTZo6D6Q`p7@xl%bN%JDd-Vey%SMIHC=<`mp7M)$aPGle
zk6^BU@$8A?+qZ5E2|Cp~FsU`ls@uu{)+1uBPAt+)0D~TI1v4w_v`)VaF}%)b4PK{S
z&Ux^wR4SL3mwS8r$Hpc|`wYOV%SHo#cCxR3OrXO6KR&(K*&>h%fj%U9xk4#6>NLFZ
ziPDCq!TI?)-l)+a6U_2D>YG~XtEWbXhPuYZ3o@NrqE_&yMyDHUTWTw-W~Qe5yC>&n
z`Er#|XHYlP_sb+;N3l3RHZv^Hh>bH7qdi@9rKQ;egWWBy?FFS3a{`e}trH9A;FyNy
znt}fAg#liF+c=*Nf1@w^&UK7tG<LKt3e<~2?abobf=CXdsZs&z$`-`!b&WNZ1^ojZ
zb8`ZTT&K`UbVgNg&&a~GP$QNBZ|Q`piGk^fX$g9@l3v$BV%iG?h-?rEXL<+t6Z4`u
zab0y=YwKWJ?>L4a^iqvpCKk_5jSqFSx7JkE&P>e?4~@^yFX;7JrApe}+toMFTTocs
z*4YO}n530P9Y)fznv$Z<_Kud;&eEy|*mZPu9p>mF`EdV0OI2l8b(wgqe|d6rhDWO)
z+!ku$2hF6@jQ968*49;5)^v6C%+K-wCR9=pOsZ&!H$FaJ+0a!`Qs3G&z*`c@FrHF7
z8%IWlT3Z^r+uH_vyTnUNG<GVKQ)9zTt#!TqJ&QA<p@C_kPKuFpsCRgIfm(w;06{zW
zRoy)UBG^sLTBO3+nT6WA=BepftzM_mD)I}m!oor_Gc%<S8`Bmo^l0TdCOw&4<}I`~
zw^UbGmseJ_w6)5WY>dzw6nv3Rs+i~>>hJC;D=VvQZj>6eGL6P4({<JLC@>LZxzW;&
zL5j)V$m~qd_%w--WT=IK?(LeEh>hYUS`jyB6`dW;4UIJ&oh_4ugVAVmrC8qC($&${
zUE9#w(A9$)AvvZHoekBag99}+b>lNUk&@mr1f%R*nHbg3;u@)734V!4T3S|7R#jV7
zUE5ICY*4Z9KFSCXO%0Cpc6Nd7j*d1ye~DhYV*4!z+xw^Ilx*{oR-;ySH%=-5Ym9uE
zU}9!ir2;a63^l@@jxp)7&Y*zSi43Y`-t1Uk-&kvNM^8)P`BNcg<{s^>(?(zvjkvF8
z5!ijGvq!ox-(1_Skm|G=`QpON)c73jv(=G!xG#oFBy$zzMXgPp$Q(UOB2=j8EFXnN
zDOsGEsjaB5E~^m<7khiVrzVA{tJ(lr(;6Vb3u-N92bik-i>Ebs9k_r#SGUZY@9ZRH
zsc3AdZEl{WPfBBC*Y&h@siktJ%zB+xjZO`vZf|Yt=x7)n8K|vn@9ktpk~B*u5X=G1
zmll@{4791$;=b+?xlnC@dDN>^0(DnwcUwnsRb75_^Rz&Krjv?fvwfZO62NA(qF%Z*
zJT^Bx3FVf^gbInYy|tshy$d~9#*-{e%nIdVEhc+Y6TM9hJ>8vMU0qPN*{Ow*d9n|~
z9TS6X<1k!OrpzEZJQX$(FiRnk8<pK7gS|~%9p#O!wbczZwHm2W1^Z_ds+Eh&GuqnH
zuJ*Q)k>UE0-dU~GsFd+B(;FQeDle+Qv~zlTa&&lZdTLRw5Fy*njy|#uBomaQQL5;K
z&hb%ROG{HzQw4uvbbe~AziV!J(OA>e6npthX;m#_i6A4iOfRFgNTrn5+diyBSxWG!
z(bG9)TAftZ+tP}NYPrH-(7jGh42=vaD$OJDszgg;eSU7v-XX_Jo4RTnItNFl8+&^f
zMFR9Y7zDnI4}{m-(mpXbQCioW*U&ODC!{yUjk3ndG9{nP8N=)7gfkl5{M?jidCs^v
zCsRm-n73enYb<M1@G%akm-rKvRV6(=U9GL{i;K$|HO3GOi*glxd}XewsiCp4d1!Ea
zW=g1%8|W-&t*X1dLn@|yGGJaNBi(|N%0(zrCP&!>dD|Kqx?0*=>Y8e6T6i#ah_g67
z-cq+j-(^7*p>c7drF(js5@{Dl25FoENQNn-Lpo)`x$&mv_Oh~y(e5TGZwkqA7ZqQe
znwaI$OBdY!bs%^;DpjxU>+Ptnt!VCOn&Zt9KRP{cZlS%YW1w%iqOz{Fs}F^WHENZd
zzAe_%T-RD%GuAW0pBHy`kM|GH3Dv|EREydUh7smQAw*3TN^N`JSXp&rS9gC~OY1;)
z2Q$$s11hVM_q4Uu*Vc7*^$m^B%CttQibNq=UO*R^9PBHrtgCNmSsELd>FXXIo~Ab!
zXy>PDpm$_oV4|VAv96}EYj{QgEKE1pkVk4JlPt`Pbxf)j=z}%V#ig<SadZ)CPK|oB
zV@fm$LyD-{dER0}b4P#wxIieDO6So6txdI^?LBq1{T0=$zDl`4A%%QYB7R4GLtAy@
zKyz<G{FB4GjyCrU%QeRN-bwi!Uu=Ns)L>-S%Oz9&qnc$c2|{IDm>lcvYMmTg5G*To
zMnzd&VQ_d%LQ?j!Tn2{G1k|Ra>g%*lzYP5w*dWfgiq|>wPX3=JQb63raIQsEx&i=X
zANpcI2e)8|$rj@-%L~B(J*I@rOt1J^IB3l;TZw?<u2@=@XeB;5x&U#BR*6Nz4_m~b
za`DGra7WLgsI0S7IAy&O)07*9v2x+(E=+OYMJg_Ar4*{&YAseBeh`iFr#Rm;`9u0X
z5b@a`2w8n!FH=4y$6|4L!eN8~xWX@Y2?4I*<a^@cqv~j;@9)1Ki;7<TUAc#Zj7fHh
z)}#hq@ss;L0ul4GyFkO>WO-@f;)QcTf&LvG9k|V93HQUg{1lm@a*qA1#Q(k!j&MO0
z|2_ifz2@N3eD4^2f0uqtEKvk5`I;!~iu<>k$x4vv|C*>KXCm^iu!JARCu0LYbPJ6F
zoI+DAI?$dPaV3e4eL+G=N5K<iroFMTJbLov#ravnK;)1s=OH0*ym1~bkR@9Q{JHQI
z##rD=gw+7*cPt#lZv88yRava{va26nuLPM0;#w8#%H^v3iPp3QMKi@DD@qe2Y68||
z2&9OJ!0a9upDy8{pOt`>CgZYVIfGc76|H8s;X$S>7=&oZpDe~oL$i!mGUpuQXEmH@
zDFV4T9B&kdu9*k45_R<!XiW$as}w>E#;M8qjI7Le>8V4*qpbMVRODynGQV02`$in<
zfY(<BBLeYLQ&ax_{uj>2&CkscCN^m2#zs7youg01PR`OXaB!@n0e#W#J66Y)s&R7Q
z?ym5|u}Rk`nxGyRlZD_0vz+j=s;ngW3Ho6mrCrT|^Ml|q`6>Py$K7IgS9rrDAGPLM
zkmhU<1(nUBQCTc52x(bUa>V>AIk8+;{M_Y=hO9V}$y!>8NB>vl!{U?Ul7D}fa}+?~
zkRg||DHcboWpRbB-r(Y_Uaj0+xnw#?|LJcfPa<~v2jzn3AB)ejr%RLLiZg}NKlXox
zAg<MR{N5}ZHS~oH4W?OiOK(h1$#Af83=KLi5G$12_a^CwR$tgAf2~@{-bKKaP{BU8
z10eufs4)u`o{Ni(j5^ic-KR3><Ocd~DH5z<V4c?KA4|aNt(@<Nc>RAGLBHQ~KcM&S
z!Tm2z@6`s5Gf$l3Y>dglLKtXtk*$m|6t*Up72+%w8*a%l3-wP#;6@@Q)ln+zDk@GM
zkMMSPOG$pC(V*NP)Mb_bHEjN?Cj<MQAlL8U2PhGV1P>nG4vz?Oadq(U@Njqc3=55<
z^Ax%E<=hHEod5LgyH4x$k0aBGR1%4#n~_+&G9CRfAs%NdfOr%-LaT6N6XS)&ML_|9
zem=hC#U)1c7$qH?KRZ6@>FO4HDrR7SKG<R!xzw}~WSxFN;szAX{R<=g?Cf-A);ljR
z4?8;>fB!&B%VYk2!OczWGO0?<K4ZiYOtpcG?drS;zqGYLkNKrwme<?T9vgMi%gz1y
z(`RBSJ*WbxXG`!*_19^gej)m2jn{vc{$7#(*PyjkS?jp5>PJq`HWt$=EW>K6cpZc^
zE5sRA4$S=%<2e+n*U=Uut){WI=4?!C@~cFtn07L8H`i8V9k2hG(A_}jdVn=DnM@#9
zzW?C%shCJtH%C`j*YoEu78jNC=GoavCbvQyUdQi0W&5tvI{o7aQ+ICm4pJx-D%u73
zvjpviiO?7gO07oAunyeR%ye;S$=TCqvNN;T+PRUwd0;TArSdn4uM6_>`F#4`l!@4m
znsxdGi5pNj_b-g}Q&STuZ(sZS`#L*21_lP7I1!zmmQCLWP#frYCPtWW(#|(#Z@;&}
zoX=nsEiU(UbX~u6CFOO}{OlaUR5~rUzOG>Va@J{`ekoeV>;IE!ZB^Df4&%P(*wai{
z4K{Uu4~rws3UP*&!*f53^NSPls%IbBrRSInvvV3YpvvX)m7C1{unOz6LTniLzIAY^
z)vC2Rpbf3Tpp(n#92R!NNFxU)%I}G5;&r^fPXF8qbI}#wDy>!fwFCv1t5t|?vK4ST
zgC0{^kY3BZv}4rJ9&S>6c-ZIdiMTxRyS~2uOA`cZa{t1Js}xyLwHgyWra7G2F~|0*
zk(FMH*D=&VrFAr;WYP3Stz4-PNocv9?X(feq?mIeFOiy^TD4B=^b65HJG}m{jkqrV
z_jYI_4uzBLV7BJRWU@hjCeANJ;0c4Meq}rD_imL;0o(x0jlt^#!Z5(m%JmBAW%N=S
z*J^sLR<F|;G-`uf#y&LggScE1{}Z?GI<3<`nz)e#1eC-1e~jQcf`V%d^p$OR0Mmhj
zl<FU>$7|J^?{SjJu{|(ATj))uves#x{vM>qgpVze=-Cnpdop97&pdFd1@jDz0-5&1
zuvD}eMy*uQ)1DuVee~T01AVjrcwMSiB5a-3>6fB)y#7C#e%RUnoMVJG;!qmg&y7r`
zIREr`-Ds4E#2kO*Va7|LSXuD`t>u3mtpEK8gM(U2-yT^#debDq9}t?AbL+HD|E!4{
zSwJe4>hBz1pyr4Hu&&W*@k@{G*lscIksWTE@H(A##9mp%-S;K{Kbi)w(>nbmkqK3)
zWvidX<30<<w2(RI->UZFmzLO96qt*k)6;Sl9NWu|$t32DP+C&p)iD^c)@hx7Df;J!
z*H^pB_ihcncL(l&bwU*&@wGML+)vO-D47_}xcm%}Wm)6?Ow3<^=s6+dSSe>O&NCHS
zvxSsch21l`mEd(+C2mm=Lc=e^86+`Wa+m{wYPELdLG2HSqA|Bl>-5i>Okn!&Gq?bt
z1F6HUSUX1O1wTOK%;3-qe`_PHp+CP%ex3d-{fuFGU(`Pn?SC<%D$u#(v>;A((Q5T_
znVQ>wNFSkrimlB3aF_799<xYJ@qX+W;XkxosnsZH|CT9uo!03Wpmn_dKa;pB{2h4x
zXK(x@kpWso>MJ(rpPE+IBp4|aDo&ABiQ|Vu>YQ7r_X$J7>Zm~P=W(8OTBm;*^y3ZX
zf991?;BpfThb39NB(Gq^`O#l!p`8s_9F#}M`kSWzXo7t<4IHbsnj3dG_dTtR`M)kf
z!Jtu83%OiMNAH1FE34N*yG(Va`sxjAU!vZiQK{GLU#HJ}$z(DX$v}G;S0TGvzy7}I
zI{lLLvv{2|f>J4zm_kf8ms{%K0?BBuxx4bnl7({~E*zJpBph+d4MHHu6rcM>68HK)
z+)9_=Zc%s9!NG%!&=cU`;SSs}<pAOqSJn;^rn@E{5VE#t{F<0wOQ!fHLiM>MT>cm#
zxHzaF$~A$l_v#Dc<OxD@_Q?c_iHzV-NtI3u$36dDiKf%DqcK(^>GX6^i<Z6wi_4Wg
zo|x~`N6$=rq6KNEokjyrAOyNZC>WDSBtNbTh-=N2i#7FyG}dlw0deZF)&r8umGq)1
z0(JC4y{QpUJ7m22kP!~zQ0jH45O=T&74%;INMb4-9!@?WWXchD34))C`QGr%wIC{M
zii`*-Wi7)TAvq$i)ew##3IyU8Ip7yU<HDh?YZ)-93UcN$H*xZw+_+TuMRmZKiIcU}
zM?vs&H9|~N*FZP|kpv#DC@vgvz$6#{CkYW)l6CqYAyd1U8iH$XQ&XB60)$pr+Ynr1
znIf!hVrU4L1M3<q5jd^j{A<<5MBH62KBt-7rKwOvFzFr_4W;1jdx6|16ir%T(h!cN
zwH^~80;}8#nRw>N6#vJ!))LpnAV5>mAXAk&LUL1QhaVYI1Q>sv4x^8$ptW)X!R)UU
z4hTgcgo|$~j>{02Anw+WYic6IG3AC-_{F6uK9>pSUrUGs-njUn_iD!xDzf5ZIYTUn
z#-%dl4-Xe^;sJy}Q=z6J5Qz5u^CfbnAR0<B6@kFDm+)|Ygd-*^2t{kv8rVkY53vEI
zLtAJyMzxAPNBy2CriRXo0KY2?n{q}eoCm~}0^%;YvN%6SrV5(kAUT&OJfNQx`&vQ-
zWXqMp5dyhxi*98~jy$<e#6@64FdZ4N>a5fP)l@3zELEzw*7W+aUa4X+k(Aqu#XL&+
zO8#7_aNMII&b{~c#X7CiKazeHuXC4cG@EX5cM-_lMQ7lK8LkI%e$acFtR++DK{r^N
zIS4(IUiL>AYy@Daer2NtP&@T8WNXk9WM}6qXy|ukWf}yV^_~^rh%<j6c(|h98$3X`
zT<w!Y+~s?5Ohnz1vCUQXy$a&ikL!i3e$J$dBw~p|PDp*VE?i2=0X|4TtJ5k~-1mmR
zcYx{Omwh&b+bO~7PWRS8WIzYCj2#lYmcR*DS#V`y9>sBj;x5+`nB=O1UsJQLtr5pF
z=jaT&)ddA`0tNs`fYjM(6krSvg_2;Am8m#ng+>8a?=i5p6vRga&|2AYZG>NrF_Zee
zN6;(a6{JOOYm;++6paX6h>5riP4(r3gZRjV3xNlCj$_~_329CFuZ@QAwbe8g!I6m*
zjOMFlAv%)NGz=aDu7(q#1TI4mJSI`B(?5pD5dF}Yn6SHv5XaQ4XlQ82ds>9MYg>vV
zP9?Zs6CvhWJcmo<hO}r?E`(D*&Trz4gCod_y9LkMrblvIBB3do=`K9T!E}i@CVmjO
zwp`GAtRf-U1Fem-mXI7AA|F%!xa8!3tk&j+9JouwG>ML~HNbMM*+a|(!p%1jpNna_
z$?g*&4p-%sYnJWW;y?)DI5GK6<(h~~f^cLA58}KxR|nw|cM)#NjUz66tsnWA(xQoB
zpw@C|qWAI#A#+YXrugu1O7h+yi&D5kx#}SB$GL%!+uEYJimwd;ArR);U{rGl10fLt
zxrLz>u+G+r(D)EGd-+nsVt%g);LRixPE|NRN8rJ97fd2DR~PtkOC%DR)<^yfnQDi~
zNd8_C96?(U4Q1h%6B=rYn5MKGAyBDA?*RW)SxiyTiAk?nO;<k2wMu9T;B~D=L4z`j
zqo=`br8+<+FxV^|Iqua9&c9CU^b69@;&o2N;o%Gi7lK~|t{q)|k}w8<RxVae2|V~k
zH#3ce$d>gP<@cD0eN~tGgGQ&4$+@rX!qEW3IsiD}95@4pm8zBK8!WRGLY^jWO$>A4
z_~q)zdB7pcHSviECO)~#ANO#M5Xj}s5o{~iTU%ccA|MdA)`lY?L<b3cZ?;zJqA}>@
zYL!eOH_gZaci9V7;1vSZa@E!==rlEi(9!-dp=^U42yBZ)0+kx50-1qr!gegB9>tls
zg~ucTFk|wA5RDt!!LX@;-~pNH3;Srw$|NYY#;9I1ywdj@G+Zg<Fxx=2*xX8E)T3$y
z;@^|%+Dk|VY^*iJ??vXw#L`+?TQy_?QNPzHTsR2fru;cVHMw?tFI!x`$H0$Id*MX!
zW4Xb@v1G~twG#@3V1T>CT@%l1{fLff*eWM9kZ{ck$EH9ll853;BtO8BNP@dRmdrZ+
zgUHmx@GLDYaelP#TKzXQG1_#kh9JUPO#lIiK(*j8rA0#{WUVCxA#kn1LAE9pU7Mk)
z^*KU(Q#9lWo#$dAH!dsg7ndA1g2%)LvYMZt=lqC<Tb!RG<YUSiNe~&ArZ|Ytab*fY
z1YB~(fskbFU5>cRwQ;yhlRZS9rp>_|YUkeJ<L<&Ekx3OQ8Ve8!Hj_pD9<y=;zbOg)
zs5p9@Np2_<Y?yf9=)KFIB;*5q0Ea8rjBts}QB#vtxzbHlLxlHuLkJ>(A9zfS@?JC(
zx5ycVz9&YGOm##iuqvD%grbogcR4}`$C9az$c<A-gunwr>8t#sAQY`qYfvdU%nP^7
zY;ttTq5-eNN+GgBA>(QRLMCf#0Yc8ubEu`MM(~*YYlX&nxTXP_YQcqrxbT&WpCY6M
z!NW!4{O=L6g-F5hYR<I6rO{%z!6lcL)sZc+(_DoSYQgRzM8$?RiU7PWlMoO>VG3}{
z9{4M@8ktH7><-NY18ezTr*-<r)1TYF&S@LMq2gQ!$kf^T`}>=ln>p~o^*57(nmpVu
z`p?>IL9EZN<nsf9?t=@Raei!)7L|2|#ku)`zJ3mSaWGY()4(BLmC+#6sKip5XLG4h
z9LEVV2M=qZ)zHw;?CdO8#~;&sR>nkY<C}~HJSb>*czA4Vj0@oik-^E&*_0pG7csd}
z2W6vPa7alG`72fQ);T8)I1aCCjicSeLwz$O1umRRKuOr`RfnOUR!Ualt<YM=);8#m
zY3=aC5yw0y4b-u>w->EXm0jf=(K%jBWw6LpKNvA&fI4WDA|v~978e2haHgEQ{Aqpo
zd0N{v@B?{38)s%_F#Np7{GXwpj7joewX@JVPHqT+XKkUVKKNfdgd^m=3{854a8z(@
z6QJUVzqZ!P%gcRz19P*B-wTnd#yxbVht#ZbnN&Gq;${<y?-Rh!m9=ucPXBN+wZ5sv
z(a>DT-=E%V0yIiPLj$xFS*_I~6a8c$=*LYd5D2QOs^;eAV0%p#&qSOyj*gC^hnh4K
zaZLGecm>2=ng|Slz$fxVoS)<8??cE0v~s~1?(FPD#W_U<GaO@U<E#+wGrLDCH4M0`
z6iPzytC5+?lT+!m+<r*PaSfT8>?bm3MX&hQ5Z7fm4;KPiEiNvC=f1wa9}5a(iuoRy
zH0M298y{u;oNU3K>6VFqE>GOT5LQxBVrtf(tl*F7y=W#*P|#1Y0Tc>VNB+<jcGqAW
zADipz9aYL#9_ljE>-0*ER;o8ZIJ6xIgq*?Z-^rCp4c5}s)D$$<RMWMYaFN04TH$~Y
zj%X;C(`U$pYg|l^@r$fXa~L!weod<+KO|&`DFVtR&q^2yG&x302XI$w(5w48x_VpM
zbqe-z1@_c|`vU1&w<hU2t<x__Ka1DVAE4+QurmcB4)h+E3kwT3ZrnJ1`ZSCP!cBIH
zgI|cibrP-*vpY19pm%Y8E?eY=nCNDpm5wKqqf=BBmISzal@}I|4-P+h@bJ{h=*GrI
z#77?h9{}qrgASQ;j_Vl6hs%mxt<(kRjq9Z_2d7S*ijR+n3C1my#dUAa7Qn;t140N8
z7znw+k7!&R5SJ$iApnJE&z`-0{rdFuG$Nbsa+QUjs}c8$K+eLN2$>@gq+z2DovonP
zVUEu2&PV=osf;S7H)<tvqe86_N)1xw^2AJh+|_4~-po!(DGf6W+!_E37wVx>%cL^l
z>K^eGeyEhywH){<HY2nYlNoKKHpz|itgSK#aUdU)oo#P#zjp1~ix)4($H&DI+1!Fi
zh-s77sMHu0N{qAg7z9M3!%PGX#o=|m!l*@C&^U{U6Nt~}LyKTuIr*EKfYSs7qBxX}
z5O}}?GDK_QmWe&aK82$R%FD}d-n^Ncn~Q`<#ifPcBmpGkT7)AmXAl>Nd=LUMWxf`o
zp$JqKcp7*M^R&UiK_pqZw}y}jmz>K7goKbYE)j@=xVs=zWkFmxGEYrS_4M>^Y-p89
zSH@$;n;OlkQlnc@6LT$#{D9NcDqwla0n8vnl*JXaPX8F<ECxCSx;C1d$Kydu*LEBz
zhN&-b;b<m6Qcjau6lx*d;$Q?WVJ@1Qn!>`upr7z_&BUoLq9K(jfB2EP30rUqkC^B$
z91wx3*VNR6hlfMqxz%yxhByc}r2;?Co;`~I`#=Q0i;HV%X?ai6Oqa+FrW@d|t*s3n
z6v~CaN1R@*T(C>PApEY?G>8Hr4AT(7!_^VtoIfioD>yh9Y{SpR;Ry8tasH*HC75f1
z=5TtWk~4q?<05YX#t=LpCJVq#vX*2v4SHJafS*k;P!?(dIdH<nFBkx!)*yty&)wo$
z2jVh`mpE8~Wpo#P79-BxyLaEbd4u|bZNx_=$bpN1g!n~5v=@k~!Fnr~KL{}q$0Rz0
z!_Ot>2&oVssko|ffr!9zB0{0~<-!rUxVShVAYkv_z3<+=!&D7{NDe;1KQiZPgb;X4
zOmaoA3`o?Re2^`|5rSVXGHxLnE~!+VMyH1sDKuoOk*8KFQ9XL_>U7NI$?;{8K+UbM
zlfr6bIs=RnDyWBuFv3Dbp^zK^K(<_lToD{I;1JwWdS+1(2xh<)Odr%WC@846x0kz%
zaKr>xTwOTg7={OdT&lHqe@rM2ofoaZT_Qs+Ir8Ch24P?X|2jRoA;d`gVW`V0b=)o>
zcn}}aAU8<HVARacOvInN_~iDz>Cth8L^?e=B@~O~Y86IfsagrKA_1IAL))lUwso!3
zI{k9=vv|Fyrzbx@A7+BncrF|$93e0n-QC@YfL{z$Tqj(6C^X{4#>Q4vRdI%Z3xvmH
zEPj@t-#TMgeY4rFy)Pd=kqJag^SqXZMs#l^<o0<ZJ&dB<pyjJ%e1#N!gR`?B6EpB!
zxNzbA{rh8MW8fcMuD-q=;{g}#C&^?=-Xl&dAV>iDz=L0m3Jwkqfq{WAQYMSQ5$<x)
zev(Y$<%m_6YJ^|lb#BiOg#w5x)kd{eC6uhh&>Dr)^9~la(c$Mu2A3%ie6g660uz{(
z^;gc}-U{1m33V|IA#2H0N03PlYpoj>!Vz?!y1IIFbQET~wyxpwwL491{a^<UyvR`v
zjH2)oW9(f6qeiO|8+Bk$p;JqShXyWRzI@=ofejlr?AWp6%9Se<6BAs{9HB&*+LenR
z^7dy44FLoLBhFod=buZ6aMP_n(^4h^k^qxiwrttIe?NFOGc&WWu()&Q4mWCoz%7&?
zy3Jj3O^o07+8VUBUKj(o-eGDHg!K0IPfyKr4`dlW0g(Vrjvej62sb&mO33QRC9c!|
z7y+&wKYsksp+jhK=qeNds`X>>qV3-69bAK&8XA}QMI0z6z*a&+0`77e_@0u#mk&n>
z$1lw6?c29uPLTw*4hmUTR)*;Wch^K<kJBZn;;B=oV4%=XNedYv99W7|c+5buv$Ijb
zUAuN!TU#GFawH-mqN1XLGo&a5%&hGi#O{xJ6Cxm6u7V)0h@YgCl$3q@_F=BVO*z))
z%vl?-4NMPn-PhBrmMb{RrdMl<^9ycYzkxumbR<)%RZ^t_W(9?zVDfMfat(ncQ)dLB
zE^B4`<BFJQ?GON2K_HWplYgdOKS@6s-y|gvBA~vYwVXgEKV}SUb1eds8y_F<@9z&0
zVRH48F;{$Rh|3d%64%Nc^qxRKoFB-QL2wj`2o$K*7-LUea&qt;8km)cAaB%#&KP15
z5KYn7*8^jC^ytwqzx;CZ=FLz%6YTyu0y7vuS1wrVpE+~J#>NI?G%nW)(8L%BskmBT
zz=gHHc<~~71ZPD}U5RT!z;xt^5h^Mws-U0%A#006d{c7(uLGttRYF0lWuXwZD~4MQ
zStZ=nD&*p}+J>R_Zlgk7UR-h`{(9d4jeSfNjVgnVozA-|YrR3M{)u*3r*--trk};@
z2!HV4!O4>+$H&KU$)QqUbcDpk#jV{6g7IUmMS$n|^XKN~=BcTvTnKuR2~y)OdKcoO
z3z>Q&x)8Ti02Np8MH9V)=DYXZx^xwI9X&_5v;xA=69C!KG0;1K*OlzZUzBRHKBiLO
zaddP<mj<8QAi@2j=(Q#Q2~j8lIp%R`x(mb)TL6zK1f86Vh7jC!c6J6{$G`y7fN(Yi
zr-h35h6*kM{M@u*Z8$>IY`Yt31fi?-Iytv#4p_~!b6o?oVblmDM!8x%HSb~Lb~5b3
z%%lPdxb<~%BvsC6Xy~XNof3$bR!UY!Q!rqX3_?&Y7=Rxh08P%uAso?6l|`Tl`<fms
zBC<(6KnTBn<JPXd<_U>u5+&{G0khvTWiayQr!@*%7}hG#jx-ERj`g34KH=lz0|O21
zx_<ro+qZ8qD1tpOfYQ+xoThPvaE@Du4tKeVaQedu6MpVV4v1TBL<n~Y;*xMpY`R<<
zfzt})32iiq2t-Y@x;_Uv0NHHYwhcojU=s$XkdP32d;6zPpK@7o2|3Xrp=rmnX^?<!
zqaZE<G6WBt{6Sm;aUSrAJDm7*T4Y7<b?^lXA~7;lsWlRfR*v>%IcQ{36}Je)=L^?z
zj#9XS*6DwYAl{su9AG0aFR%0G&)>a!7uF1D63P#S=h_Q#(BHY%M^hpY1P^Gf@DXV0
zJMHc50LRD*U;@dxK;(cVP-ZSGlX4;xBs4W^Mn(o^4zOl0#mJKjL}dITtF<vf$N`E3
z6Yb{a*45R;g&?x2(Ba`>7%p2|+jHm6UA=l06$}mzj*X3dZy*36$=d!7R$;Xeg1VbZ
zL?Fir2!UXRyEGMwB*5$7ACm{JYcpxB*is}xhKK`ZfY>U_D^xP}{*vCP6iZJ>pE|gA
zUrA9hdJqai0&oL|QGnYO3F9f1(;5)ULU-e&2SOE0e%vzoQ5GWOmm~N&{z2Sb{F<5!
zGa~#V4tEKHU_l)7Tx5=rKNrqjayfGzSdX<}acwFPF4wjlh%18A3K$KJ^M;0ou&^*p
z8rQB1aE6idn}{nKWGcwyK_JA4wu6VeMCQnZt2;*ur9`C$w+f9Gb{jySmR%wv&N$lp
z4EE0uvc)_KMxGw$s+4NM&`76`j~6-%dJ610bm`TrS8Z)=7$1p=HB0O(1*{Us75L$V
zf9cXCUteET6D*l3#W4nHaF-@R6@bMti-ult(nCSqElyl04xXZ-BFqxO6=}}ubO_}l
ziAlrR$6??{a=lcFhLYkAkUBl#1k0?lhz!ErmG8rVaYWY{Z(O~0VBh|<jC6rSEQc&1
zHF}!NS!E)FPS0)STBmjTr3iSvo%3-@yxP49*#Jv<dV2Qv_v0Ft0>5Py<^G|;MJ2^X
zrMBQ*=F{XPsb04*GM)V*rLLy_?!!lJZXVImF-I*d|I1(eS9@oddygK@%}*5<<>h4M
z&P>h1ywA@~)mAkZ7nH-lv@~5>TyY`pil>KLRAfX}M()(atX8fZ=;}GJ^FVS!vT$*}
zrJ?rav*)wZb47(^@i(sf2Ko2|dWS_tU%Gj_sJcQR6D=(*JbwJx+utuJB>3U&yM0~V
zy~BeKpFiL7^|!zI>tA{L`lY02E%NvoZ!;SkTG1iVnHFYe3UYGe&YTSj2*ilh*w_f%
zj6R0Ba$#X%L0*2sv*&TKryt*Y)X~<-J=B5&o+Psa3#QZamlsb&gxgqKy-7+wemp8X
z{CNEJ+kO4RTt|f!sH?5MdiAoeuXl9xiQL@W*;&+`#<t$x{`>bIdU^Q-hlFKka|=#%
z1bt0y#pTNvj~@@mh(0<>6C@qLufaIn+n<u~BGA?SY(zwMVxrZ7qo-nS&o0tKW4RQt
zj+zZtLah+z<YdL3JMHM|cKTdgS62ra6@zABW&#E)GU{YZ?3v<{GMSu?M@9+^2j%6J
z=g(gZ4Gw$t;$?elM_Ws4O;vS6UA-PaU#qUJs>sR8UgRxIj!$K#XXR$+y-aw0^ZKo<
zjO?a{#=`u9qQd-y=T9vxj{f@BfAaP{p782j^4qMu!m{z{IgM7YP^$a-27r482l|W#
zEunUX*PH4qTwR=Q-MU31HyUD|*WTJDTIO>i9vT=#Qvw`cyB=TH)F@Tb{`iijw%X$A
zx5?>u?>qtnubw}vC@JjjY3JrS<I^*lnVC&>wcYI<1^K0Yy+g=HqmXxZbv$@*FEG$Q
zI_6|qSsBbX6uYCN<L>Qyk&!3v+_~4<)}f@QHAa<4P+MAj{>)i_|G<k^Zj@Em^CfcD
z2Oxivp=@~}G9<*&-eG2%$MM<NSbxmU(LXq3i8nny)c5M;o9>=Ll~$%!Noz`L^V0Jd
z7kQJ@W4ReQMY)A9UM8MC6L&lQ)<EAN7+&BD>dUHgQ!`W2(qqoXT{v~NxuOo^qC_fh
zZD`3!&z_xGKrQO4>Pibro+T#6#+`j~`%Z6bvr?zhfhE0uZgk>h;;V=gCr_U~`|Qb!
zgy*j-tLhgPg^V?FKce+9;~zky!y_l7PQWtMR@ZRfla)(l!-GRIiL|r5qo|-TJ2UIa
zqsQ@AuN4;->9vG4q35swumgFyMchf|FceTZz~#%AFNcPPo;`c^#*JGWzu8hyP^41I
z(Z9w<#-BcZ5)|xx;o_O5#&*_hn$E74oXmoZcX<!)-H(fndGjiHes-~;p(!RN<}d%x
zzu3Kf$Af22%B!n}yLywKy%-o7mT6SNxrOxCZvePGy}hnqi?1jvmum<yTt9Qg-NvQ9
zr5(LaiAf+MsaPVIo=<(9?BMPGIQbPB5hZYmer{%Va(qT9SIy5&78T~gIL}TkfS-}!
zzTE7B+Nws8kgrrosw=B5p1%+f;0J!PGfVi(GObQIG~8QKQkIuneEZgeTet3%l;+bT
zAcL{0q8Si8B-H;^!u{Cj<J-6Ht*`Es%cx@+j9OSAsZ51RV*-vJqfvJ8VyvyD{Yc*w
z*)$D(_!_GI@b+zIdxyN7+{()8g2Ljlsaf0<$>ePv?M20Tr6u|GbydYh<;ia|;x1kZ
z2n<CpgZ<YTv;bO2zBD_Vo|$$sHYPUqOjc&z{E`4Aj*bkpG}LFL<lMjW^!Cj=&l4Wy
z6}+o$s6<l(^`ZH4vNOxd^7?z)v)*NQwsfQWEG*9E<>jE(z?3&`-011)<K#I#J(-@K
zj&R8T=FQu!Eu9!65WlClqoAMw%JA|<a{RTsxj97&g$fu~tK%w5Pss)b2422Mii$ji
zVW_ycSR^NDOpXi`=48A~PECH78SL$mk(@X)FBqFzx^n62M}PR>vrjj~#GdQ!?u81e
z6~d~@(hKLW`1=K4Iv<mr^^Sz8HO|gWwzM|n!0aTZK6?E0{{8!Mu}C7|_xJU@di5eQ
zG9va&42lEf1^>{``*$BiMV*8_Y;I|jsnjGlqe`$i`R4VrQ_&~FLL*-%zO%5f_wkA7
z=olevjAF>49aQ7PT}iK=`1<=je3~%NTShRd2_y}xZqRED8g*Y+=i`Tu!a~9$A|g@Q
zvGHld!5D-b=BLI=3-f}*qC$_KNJ~oabhNW|aBXPqhRM}RMHS^WCr+IW^bbHsTUr*$
z)tEPsV7by&a>3--pr!e-{LEsRh(FZdmGv$&DKYu(of~1Hftjfp3bC@fvd+fF?!Ww(
zzqGPG_VD4uk&z)JA0Ho0eEACXy>Q`DS$VZkN?6~ZQc3uWmDOdJu3S75apLK%2k*!@
zXHLw_kB&?>RW#&f<h)Kzx%K#7a#G@0Z(nIvLDItn7;sCoBmen7{-2oDKTCL?occDq
zFn?%b3>IFl)i$=aWo74Lh`~6^G-aLE>6f8@11rP%R`EKFJ3KVwtg5PTb#+cnO~sg`
zR%>xT@$Fle;~_mmL&h0djFaC1KaVcqVqa#J#ov7CVdw7ZA82*V-s*_$mM^ycxBvV%
z+YcO$zI1MAr0wkKFx#V!<3p21qi}Y*-|~Rhx#&BK3%&F6?YFNz_H~Usd}yz=<)Lkx
z_9Z?|0|QM>4TlccrX*#}&JLfB33hjKtFLU%Oe>6uj<q<t>!8_=zxu1+fAZPZto-bS
z<>`#nHxUtG2kegSIefrw&!JNRp#`lCF}H4f_<#NS<Nxwob4QowS$UmxeGUg4FJHVn
zJIgn!b@j!?PL@{34w*UG*?#xkmhj^d4K2;+SVLo@M~_<V-LWUsC(!kn!@;e4&qkgZ
z7@on@8K#ilu7tgSY;<~nyyO0UU;XLBU|)YvcOMH2+nsw3pFDew$EW#ve}DUhxEOCQ
zS4Rh%{rh%p-n{A6t5-0Q5{c~MrEB&ME{;y_t{%RZF9Wv1c&S=ziv3*ejvU%!Z+Fbz
z-u}tc7ksfyBvZ;2s>>HISsdKw<!IyYWaDLhc<ZKb{bO!7j45c%0nBJ*My=SWlUC$s
zoQgTU%k1c`BX-U{!QH(*MuS2y(w6r0#(@I|ENq;1>@~yC(9+(6Y9d`jeXE<Rm-(S1
zjy6ud9zL~YwZ*xGb{5B;+`Fe$NaT{Ghj(vTA3ai6Svxg4<7DHu<?HPZ$J|ba$3D9I
z1ensz$uTt0@Ai#LJGO55>%aWq$RYQO=kHv-d^aroM9SNDz`+8E{Q8Z%{sE!IMHOll
z#!iS%t5)!*riMa8gI!%+XQyZA#WFQpu2AcZDxGXeaO3jTt(&*l*xA~9xSqIhwtH$+
zq0yEkXYcxOtIa`=K%bbH<1yFIo%M7)^6p)N9Li)crWF*qy1FMmc#!zuiS<#Bl7f1z
zNG9dYoCpuzz3V$?R|iKohr9RhOwCLKhsB;cy?fi9!)8aleF9_8U78ciA&QyyrW4L~
z?$);U_U`8PzKz2R0ye19!yCQSs983OX5+$wBm6^#2Ihdnv~u~><fyr=+u3W^75tIx
z#D{iP{;BWERmLTmbo_4gUB9Ej^-a~I)4dkE&Gvq~*Ui(<+TO`(uZ6dZ_q2k(uNi9X
zVZY7HIWW)~v*80a?mLgRwRA!Z@ux4_95~X@R6jaC<Ya!teCJ-LpujyAM;*5vz7iNS
zIKxAg)ieC$8xPEnnSXb9m#dpyXkftSpKtZ>j9OUIC{#uaK!7T2P~#jM<XB%`<JO7D
zu=>Tlm20+C0cf85D$&N$s<*RC%omUlwL1DtlTN=lH{aRXwrksV-1YVJ@^<$q%F9<u
zW#wfhJ9g~wfDt%s<K+=tU)#kkLrzRg`T6-BK5XXf?C9p^VP$Fe!S6p$dz+<@E-S=K
zm(E@@+jq#pY4=gf?N=^7?rNV}S{};Ce75ZyGkc2we>Zn~n1gS2=cW|Z)HZs1di}@$
z$N&5D-+vf&<y>V;!`mAVea&ss%L>u+>oW>Yx%eJEdi03Rv4cByhX#Z+43CS{#)PQb
zQI-LP4Xv}R`PB-x(N1gZ&#ww~@;LqKZmW2j@VW>FgnfgHo?Rk_@O)f^vvts5=N$YC
zydI1FcBjIx=+u&#sotpY2$<qS2lwpXf6#27clz5Zy;0K8T(D#NehV{qdz(N%-_SRy
z50vWV=K3)=$5Q}I7Dv8|K5lJybldhX&5P3e^{gnJkyKTKu0*;D`7cZ59ak@e_}WLz
z_Noz}0-Ds*NfRkAo;zAwXQXA`ymc=iG^)O>4|VAu7`YgC*4^gFP*bVDgSFX#W0v;*
zR&M?d?*99}-F55y<$>{j9eS`v_2%B4J!X3xeLM~xum}o>$}ew%32$jAKeTO|%|0)G
zr<lmlsE8=9=s1^C=L2|)3K*oWj!_>E*Be(u$_rjw?zT#Pl&+8n^9tU^#70?LTRAv5
zVOHPL+#wK%Fw;nVm%M-f-Xlj2J2|=R*uFO=`f^YAAdJVzNY_3HX}6`jQ-qi6i8qOP
zN*NeOO+~1z!MHR(Km6?J<HLt+%nw>y9<~S#4=Zi%!6?&O{BHXff7og1?iPH;_0Y~^
zTQ{7$me4*XKYudr|NFoF`%gaJ>g{)`sIXiuS?+Ai^Km=2f1kCZqpyd<K3mIeMde)!
zVk3_?;^S-o<)%H(-qAk6$1h*LIMLUm6)nfboY=DYYuH0KZ&%pEIo|wF+Cy+@REV=*
zJv(+_pOe+GW0tlN5i#3#nb|n|w)TwCM^EStVCoJ=ou(!?!yoV<Gk;=H3g*emz@lRY
z2%w-+s094zkYH;w3tLOOV@Dl!?J`eznJy5~av-J<O$BK#M-S~j;^g2NbRp3B=;lxM
zT6)y?%o+teUT33+N6^>b9kM=h%-hv7IkjMHUZgQ9NmWn=vA8hSTjO-lEBkqwQL^~t
zcHFn0Y;?Ex^7nPzzk8F_{v%nha%)N&5A8qtzyJIHW7F0xSFT;|AM6ncm+sxYxnt{h
z-kyF(kJ<-?ovLZ;rv*5bzP+^6!OL;q;eFowj$ZbTurRmWuwzF>TRU%o@4D~U{%^Kf
zdb`_)`6WDg++Ee+b<8!~GwgBvgJb(G|I@$wkB9aiynOM>xpNo%1A<B`tHes>`250)
zly}yy?s?@k5DWFYby}xih!|dHI<*F`Q?~#p9UAVtc=7znlTlq=J-F4^J9PKy^E(-D
z79?WhobIM)l-Y@(dg0vQn{xMGZ?!kKFR3Tg3wxaYGSlLK^|O==APl)`_H1m>;k{O)
zePggzOY_5yM<OmpKOX2Sotmt!Eol{DXfSAaGsAwa5g|UYyv6y3*2V+-9iBZ+ot+yv
zcRmz@L|sK2vK1`wW%B9L@=Sl<sC##ldHe;fUQ$(B*xJ@8GHL~C>5B_D9QK)~)K;|2
zPM+~N9_JC6Royg;QE6HpWD|Vj+B1<<SCd~B?dN|sENrNw-Jnqy7Ul<p1c#l7<O!DN
z78myIJFw}ijaf<Q!tsTqyU(|Mxvi|Cl`l7rPV$S3Yx6SmEAorRdwV4Fv%XFa8$S9l
z>1o39Jb!6P{^E6(g{{}Qt9Qg=;lyZ9Wm*2%aF0eU8|d!}3JM4d3z5kbm6g>twoY$S
z(gk9bP@<NxaecU>=|ZIc=}@2QqHLLnpP!!}86Df!-7i(?-n`3jb8~xq|IW;Ck7{YE
zzA)|U4PUy)-0l_|Wn6nHmW<kE-QviD_;U`9&aM3u2#3s<`9gzisWtDF*U_ENpFf{i
z5KS$JZ`^-=_ff*^qG)Jn>g?Go5uqolE9%9I;=!)LrOAcL{Bm0}%bd5VM!nLY5kI(n
z{pg`Xt#z%lqddDK&RaL^&Pyv@oDyOj93L3>b$5Sq|Mv8F->s`xEe|<ozpWN7>6#mR
zjz^q)`Yb`E)AtUJoWFGA^0j+ILo=|6^sE55Kp_-~=I-CWYiVhD_41Xh)U=u5u@w`n
zH9m~L72@re{5lDEySl9@AT}x?FI^~?zqoK```>(hKH^?;?YM*|7EF)dJQs2CeB_c=
z(>1>s9DVxi*>nB%^^Y&#ur~LqDendPPkC}L*vmC5J$YHko90bU%uX&W@nBVfX7aNN
z#R7S4LwitE%$vLtflz$G*X^9E-9SS#_~aXm;|k-9l4MArUC%elri=?ir+nO;ENtGq
zE-Wl)D9+BjdE;tu?3J4KZli%$lJa=l*H(#1Wjf=cPBZy1>QS&oRBK25z+~H@&3i0&
zSQVGmHnnyo#6Pkzv(9R67!e5k_Sx<E?S}Y-gyPoLy2QNTUABqOlcWkQ;<z8NYig<Q
z9q8Qi#aDa3{q9X^N$c=f%GpP@UzwG+^-jsvMNd;>oO~X>dNd-Q5Q?YsvePzyd(ho8
zW_p%h`PH!}E^wGKp-(fszA9gG>v;VK^xm!pV0W2B3RHSLICS+02uRbQk+B`sdSgLW
z&R_h;|K#K5G1SvXfog3>ORKw^%eiys=4O|M2Bz=cesTTU<I&-T<t6F)bC-jI19Nh+
z78iL_Q!_6Tk~V(5>*ez#je`IGYwtbWs?4%{;qR~bp67n|&iBln`_1(9%=C13byb%Y
zEv+(QCMU^~Bng6&K~PY{1V&IXpqNlV5CjQ|f}jK?=bTT@>HU6d?{g5VtnR9w>bZUA
zVLgk(es@@V?X}ll`?ufoo^x(r%kgs$x_0TRNZQ`gR(|L}&b7<sf-rmKTE?&bZbi6H
zT1Qhe!a|VCZZA7Og;M*ZvMSWkBRBI@k7x>>S(kUm^{e%Tb(KSkg^3q!b1&XVBod`b
zpMT-f`foSnRXiCN>25@1Cu|R{Xn8vhu#T~@Ta$W;>gm}6*R@-&x7BnDINRxE?Ook3
zUtnA{WzF;B(uKLVKAzkCcg8M^nGCwIx9#O#P9bMA3noW<x;vh|sC}vsqkqlt(720T
zY=BRyST@r5s^qu7S>bHI=S|D(!kh}D7@z8li98+bms$PfsRng>i_+qJSO3B0;f-F6
zT#zXZQr(PNkkL&LAa?@}u-E`PFJ#A9t#C-&d!@GYdC}clWrcU|=U)qO-)U{N;aOe%
z!_vpT!Tat!d;%waR{t_BG5&T=_CjaFZinq3|8C{=yLEjF+MyZQwX93wUc1g-IVaJ~
z)!oWZ4D>s2_(1>MWMA*->8!kr>}!Kl^Bu3Bt^Vi_ZX3gjuQaP=8kKhZUimRQk8eAB
zrlk_$-02(Pp@EIhuGN(0+I?$Zm|G^EpNdNi@$>iS=xozybTiZJ%|Jo8c{4vGG%zJK
zv9GU3rPSRjcn}&Ce>5Y@WRg9rFZ;KD`Hi#vuKMae$&7jBX*3eOaheTwy6VaOpxptP
zhtJJVs~2WwGf$pKJbAHWcoGqN{U^V22~NIQ{z~4}bS!L_)2{gEUCM^4dOv&DBN>-l
zJLl26bb93E!Qg~Q-|~v);ZbpCb8&LCS7dzl&<rB&!Y&`{-+i|Jcuq-6_YgfNsg#!7
z$lD(pc<aXHiRlr<!_lcRk!0b6@o+{euP-Z2*zK1YA3xF8FP@dWc+s-i#>L9UwXJtd
zX&}6A)F8?j4fFF4FX#F?IySZUV$;D^Cf5l{g_eE%Ko7ir`bfIJt7}QYUHQCxWN_wi
z`kCFqaV3wQAxxE*JUFm>=ZVC9wQVD#^O}JtcY?RC`qIk1Wk@CKX+IY3>mRu9b?1y?
zL2>`ao#=#<O<iLe;0U8iF)tXT@SB0Ymhw=C=-Qhtf_yIPP~=y?`#kf&iB~Tlw>LlW
zcl16UpQW7ERhHH{I_=E4d}&@fhx1#`h10S7_MSd@N+OcCy&Xt6bn--Q!Gc&nT;H6s
zdv|b5*z?u~VOFVZ?hOgr^Q%w)c&4CWYE~R!>uvY7)sbr#+htR*ytsF4k9+W$^s{3f
zqvtcvI&E_-FDh3_m6Max!NH-Y&YT5!!e*0l^kh=T@mJl0I0C<mFUzz{|6%%3ysptI
zv^r&JX$el*#l;U%bR{o;Z(KrMUxx~t+<+uw*It|0@Vcp?_Ujcvzqcy5bQ57f$vpJN
zg#x>6E=5&OMfCX<aYkCKtF3!ad#_-eo|)+Jb4^IxdkWx25XRoT?CX9#)&8onx}wBs
zyQh!qo}rP!){ZtCYp>kg0*Pe&R8~rm-|n`iE^>UMpj1sBKbg8WJhACzuUH{5npC2h
ziRUlsUi7thjrQjxAKCo*H)o6Qb&BVX?>z{-{(5LqBnX3TW8Pc5;-Zg?Pf02ZOT#=o
z9~TxPrU)kE!ou94BZtGH_ICF7E=VOlKEAP0F|)(dILyB+e`>qIw)9bbThC<nxod0I
zZ2sgAD}3BMsvnkU7UmKn_5^u(cC?W75XCxsC%kv>KY1=sB%0T2#G^yq-5swxJ6fxs
zl)Jh*TUl-B>gws}=!)1IeeV3F%IfEnGZG9)CXvq#_j=n|MFn}6-M=;5-vfBP&T30d
zedB^m6&@As<>l4W(N6cij0)*k_x8;jedCY65esreEsaJn$br}OGktfjo(~NRFDR*~
ze>13{aEe(_7GFGSz3LCgj~}mn+4ijIjgyD}o~XDPk)o#dxs9#Uxzo9NHd!XMNzfP@
zs-IbXv-aNge4QK{k}~JaDd6?DuiIzG<^nuJ0=@PObc~Z<7=)fTU0c?#&pw`^QOsSx
zbjiuur>$`W`LomV#DtXe!x^(8apSAjxWq#xWi{|A7>BT=NoUd{u&azleNj<SSV-vV
zFTV~C2&yi5B*@j8dCB2~1N0%|yeqwf1NR@7S$n!3&OM{l>mTRc^H}BZ@aA*E9i)IJ
zFZ+<2>$bu9`R1W9TX*j}ckT%a#ih(FAJ>TH7X!0{qn@@~_wM$c80|yPdO<5w%f}{0
zLxMtWwpth7dN49Lar@pw*Ij|9F6XOs`l@S}a^m*g$-Ug%+zsr2?R9~kL<Fe?gILhd
z3evF<7rTG_fBycnKd$@LKYhGz^-8y$PA|KL>2{=Iu<Ca1wsoE@EmKPUh*3X&AwFlX
zQ(R|Hd-qU_vz2Z7zO=!SX-sr&;p1&<x8_$@&gyiTAqnwrAr0N#FvnbTzwbBJN7If;
z725o)%g!5j)YMgBTaEDWiVoh>JwJ<$@b&Flw=Zq-A6E2>BqyR$!foB^nxD!@M@4Vv
z8y9E)kg$V8qe`{TjMs5E`T<^Nc+<?w^p2K3S*z7*f!E!fU1Ih|$>v4VqvMN^om&oo
zb=$^G*DvKM#Zt=A>K~On#1Z<`sZ(#-yK!DUlzM7+z`mZYiJtCZ2YZ(zN74b-(Gshm
z@^S6DH9K<8=jqj=r06|6Hrn60aeHv2uBPseoAaL2Ckw_VS_&Ur@N@_(z1ak}HOUta
zMIH=t-_zYQ@T~4>fUV2rth1APg<LQ`y?W1W<woH3c|mI$n-{<CsjaPj-qM_R`uy5e
z>r!&_fPwP&W$)kQ|D>%8@Q^(NM=@S2QP!TlX}5CS<H?R*L8)C>7_EEZwtdU*{^j4k
z`E=8>%0`W9D0aVJY}m2R<|!cWiLsY~o>51Vaz+N;B8*Gt7Fu4mKCP>I_OxNURhWlM
zv{W(H(Nnj{%KG%l+harQkzZlHwEX7g^}DX*)X8OV-g!aj&%c<y<6H0Q2crn8<evoA
z6?`?TjfiB>vFqHa{lEX8U)!wSz2@`v->v*|%i8aDtY7=vfBavoKVQ-Drn7%wG$1VI
z#QCdAtx#H4nHm=}*WaNV>)7qM!^b0ZVnM*lMQ3B3!$CVe4rLw`DW;1rUhvwoIq^_p
zWA~eu*PVMp<9x&7MrOsYUsSnn-jbhHp_?PKh-CvsRoR|FTc5q?luCttktr!ju|{3r
z%evbhTRe&`Khh{Am#&-$3H5tYUGe5k2fbTp5~inT^YShQhXhnsJ)%c?Ov2QpC^0TG
zHs-+G+{oLv4bF}(>8V*0L-ck5#z|jiMsM0JsI-G>?MP1Uv2Ry@b1?b%P~XhU=k<QO
z14ELIPKs5NZ8eT-SHvB=3V<nS=Wk^uuebJp`c^XBF%Y!V>)iQ!A|-tY@@ZwMz11gI
z&mW=N++_2~qFdQtt#PV)F)WjeMeg--_utn(NEXHj6*Cjw_S>U^{U^uz>1(A-YPCT#
zJ~{TmcqrE!ub)2~w$tf(X({a@MnNi52Svo%yZg8IjVtKsFdl@B@`>?+(<hy`ZhiT>
z3uibOpSnXac0-k7tfwm`G&nsjPCP!1DaY{Z>R!8hhTSizL6}0s4X|0;Q1O7znlRs=
zn-sp@KHz!R+<eEYpdIVnJwqPVylJj)K6gC(yLApFPa3pzxYLm_!NT}pd!^^b-H)#{
z3euS~8PPk|Y^^M+!jVA`q=C-60vv)xBeLr9r`9$OckUM|v~syheEis97YEzJ2M@h%
z?`mjj_umr}k(e<%ujzl<80_e9E<a}$rvbT9m{#Upy5<z%|M10&={ZT1gKvWW-iDzb
z`b-jL`Axt3HrGS@)6_Gnn>qQe)-ErfzQh34YHea-a@gKTsY=^BI=*{vbV>EoIhBEJ
zu*<YezZm@}UT5!A>fgR?4+{&qaiahy$de~d?}?7>k<6l4=$uY*4|a%&XkM7?xmOqd
zg-yeg7g&1$W?1C6FW<A-;`Hcg<Ag#imW>=tj@-4=AMjPH8XF((2yjb?4m~1X=o}rX
zKX&M}mt)w<&;Mw(_M3nDyMK4F_3i5EZfb4bu-+~^`;u5ZaU>(&)77J+r3XrB6`Gp`
z7hHC3zj3|DWCY060<S--uJrPD`}OA^eYJk|hL1k~>R*1BTUyj76&;I8-RBzIF*PT_
zk@xLnxO+s#;j?PBa3<sUE<5|lUK}3uYB?f?5qN#8t@YseXlHNF`t=)+9nLf<47vqX
z^}R>-R`&TfAI{2zS&{bDtBzMqtpi;>lF5m=;lZ8O+f!qrv9H5=DwRnjGx~?cC#4++
zULWjh&pL6~dfSE-pMJD)!<vsj{>a8=M+=a>AUrIs@bwG&!ymu$4G4SrsuOs9yywlg
zpZv=oe*O1fe)8MTKKbaAPd@ql>s8gy8s;R5z58S1<KvB5><1c+XhJ#FAGbd;H1%}z
zlwlHBk7i3QXy*j=taN(l^y#x3b~t{u(fauLt0KY^suS@cpZw$h{rTsgf3|wVr(duA
z&BtFJNXx`Iq2yu3)@`=0n{W&e6k;X+4W>6QTQ;v=U-6)5VR{sJ6?lESl~wcemxEnH
z!0YKr$Hh}B`V5jm=x*=av1wD*u_J2v?4@((wr_N5tnF4x1&LUlfBjZWY<$I&>L+#e
zNhwD<dqx3=z<MpB7Q74LOEWV=p9)nel=tu4jf;p1_VR73Zv?<hi%a^4|Mow=`r^xv
zKK{e+KmYXq`@_E{Wo1q+EL2^+ziWfr)6#YghKxNyEpMzUJdhM|y}0;MQ;YAO$f~Mp
zK_<I;@~o>vaCK#yXmoO~pXb$_(;AILXH*&Ju^XdCr}l93{Gb2h@4s8Q=8F|8fBoy<
zuUNSz^FrQ&R3^-f6`strUvIT$&DON+>#xUUQtTjVy-p_+3?e~0E664e?F|cX^C^B%
zU0>g}H#Er4*Q>C+Zc-u>6vNL-uCH2QegDDp1zDd~J$!OscChW<w)W<it#uAoHu-07
zOia_0<qxml-@0Z?L3LH<<YbIna7JiC-`pGqG*bU|_d3TjC(p^`n#;#8xNWm<X>0E4
zedBBI1cOX!>BCmFmmj)(vF%n_)r3NQd|&FxsKn9vv1#3`-YC&3Wg)?_`=XBxjmi~j
z_FORbWNeV;trIq<wakpa$jkJOmg052UawK9j~q%noN`byJ8#nH7Hwu!YqfG^UF8#J
zTl@RB?$D}7zTOBQ{(t}Ozpq-g>hsT5{`NO3{`m1~_no`@d#Bpldc3`N-M(F*H>gb}
zgF>Ndc=5`~!Kd&}v0OZv92fNu|Kp#&`C{cC{`lX%`07{x`m3)GAIce<Xf3#%?co^q
z`0i^#qt#31)At_?_6i>#o9^o9^s{vaUZ2p(N2T+%SMLUIb1JN<nAR&>N~(^B#;jbq
za>c5zzx(W~U;V>Br{`Ul>V-QAIpJ15HE(*b*yJptW1L2Xwmz@WXPbRNOU)n_qh7D<
z>=Ta+=A1see&vpvm+wwbw#Dr8jS0(WsUK7+hWdKyyq!Z2#%52A^-4uUr;Z-``m>dv
zfA+D}#;yPQkLv<<CB5x>Uh(9Hvy<nIs}%~wS+XVJ^_@<8d*7;bTGQ-IhhXY?P;h$Z
z*5J~DE<_1<re07;4f7nY69^NgRq9tKjz(-<>2&7My|%{A_SdgEUpGImtccwc>SD9w
zP21a{;feI)=aY|QHMjN@6+b$8I8Bhw8mD?9Je*G)y)ZUs>Yi3kOLd~r`A~1a6K9VP
zjCGad<^J~X{`+q}{>?{UfBxBuum9zrKk*2R>K~hFZ+hyme#5m>WojJF4T3^F+S>c@
z(22<N7jHE;PbS7^oXt96(DXGwEA-szdGT1jTrxK?)st~Fb@P@Dt5<(__Ds&y<Q(u>
zOw9g(z+ID5qiVI1e%jI`#KolB*}9I5^fWiu0k3BrzbFC9qc7_fRC0r!qNms>U_$0|
zb5H!suYdLBXWy;*dc#+rt@!O9J_=3F7@m=I))cvKS$*nSDFNA`HznsXH#_XEZJX<B
z>v7z;HTl4qw|ydPe9x=PeH_+wHrD{GkBo^0{X}*7Ra@t<hc%tO-OZuFZo&If24?9u
zr44#5@Vc*)&E<2a5PMl{pm-=(%03tmXJv|`$%#=u9#cKtin;lPIgv!FO3lb}-4)W@
zF-Z5<;YEN3fbueFab7O)dK>aFFpV%VE1|FI0dBydp{L8vYQyP_BZMPxW>E|C^O_wt
zUP-AZMknU;a?gjjY#Hr%HLnxq(0ID{&dF5Iki@d*J!35mZtK4K^s_Zzerx;1$6tK+
z#W&V=z7HPPOLXFQc-=7C(_HScDe%#i=Wv6(?9@Ov|E^cv@bvk~-UH$B=}|{jbNU<C
z?%LQo7MGQd&x}DS;PqequfPB3-+#N}k6)}<@y)+}^krCF`rycH;prUDEt_AwX_O$~
zi`Bxc>gJ6*tF~{ediCmUSO4y9J1?Z37*<Os1hrBs(@e}oc!wR_cSukOMfvx4+PFM>
zQl}7OW`%-++k5v%*VH#uzi5n1Ozs+<K<HNSHL*;~^b66C;&sjw6Jxh--8_E$<k_?5
z&z;T9y>flZz`m8Vf8l^fh+BMQmvUjCv?1&(>nmsTM1VzT4ZNOrXS<bcMSUY&R%co`
zm=fjd5!l}~h~w|ncwdlrQhL(4=BCoCSJT6T_Fv7pS5$cG#<g4^KX3Q2(ebg@?QK?8
z_BlD%l*)y)v{(<<or68YSg1`e8WIx1FXWyS&0`k?#?#f*J_dd|bSU-O!@Kv(OHx82
zH-EYMa%pkDM3fY`FUZ!XePj~wtLOEgzny<lLdM*jyyjuK%a$#*Wu+=9HeJGzCr+L8
z4GicX9vT`MwzjrSPe~I`iv^XbrMl79%I40UM+)}foLHjN(WBU~kx{)c9}^au5)<3s
z*$wMyb;8JmC@?JU%!O;i!-JP{vcrP?&tx4ddT{sJ)l1IKj$U3K{8LJ>^w9A5ox+lY
z<U^7B6VYYY>leEmx9#2S^QgG6qO`cItgNNAU8>X!jZN+e-|Ob)Hr(GMm~?_c+0*>g
z*~uX+<<y&bK}s70bXN%SX?l;)s8Xxd4=d|#Jg9K<3(3#V*GXru98X@m;$Jf}GjA6?
zx_P&_^l@$9;KcNt>{0oX?K|wt9#%kv9)K1gPob$St*~0X?(Vf40^JnQ<etyA-M+1@
zxpla2)ZZ&8Ejd#q!LVs^hk6HH9UXGcWoeY6oU><KY<&hgX7wmC3H^P;2}z0jVq?zb
zUd+9GLoCx{n&>B_$YXFSP|D@(rWX6?n?fS3Dk*c?Zgb_#1@ZWFdVKPZO<VFVT`npq
ze%jplpsKukW(@7_oyqgr=-O1<PrpD%@me)A&~ov7re|nqdd`)zS8w$74PZaKn|s-I
zn|FO($7Ju|z5w6!r1<Wxc8pIi=tXkz?EFknV6c;|<DKhwsvg%ouB?6Xys>X)9@C0b
zpni0qt^P$`-fgE{5$Eqzz+t5HxiP>ssi2<GO!h|ldhYh}>+YmydwM(C(+(Z*4vMU4
zXu{T8Q<A^tE88cPIE*a_!feLgV}bVJ-92yGI~(jb+2mzkofj)GQ^i;BI&QTueo_Bs
zWMq$nPsW}EB!Jf^nz|$He9mWIn4Frsa3nj}ZCCr-mRGHf-nI@W4rWZLRSKi<^y;JF
zEnYb{?siX3MSF+tck>$<A5hZaM<tq_a&rp|4L=CHu4YegsMwt-*bSX7<Mls52zQ{R
zcpYRi7>^yvaCLO5sjT7_<czIaFq-O~R9kP|b}RpeTuk3v1undO$9l&$K(~h_<>ilR
zYO9+&-i#oE_Vtc#+qQ%5ug^^~`wNfCs#bor@%oj5h1s!N*Dr1SZp*36llP0x*EbYb
zRkRHDi4b7&Z=Tw|!M*%W1K}Z!;%MCA0Jo6tuKpMG&s{cb%{zTwDwt+fvhs^JTvl7%
zDld7_-JTK<o*5eb@ZrPK%8G=@{a>y4`qa(aN|SIS;au=~kD9h_fKvLMbasDTQ0bcr
z%Hje-_nb~^*UV5aD!pDJs(e&#yT$$ftrEFxFfL|y@UHlwF6gr`G}!23>zkEvwY%f>
z@yrCzoo@GUKd66Jec?jx>aScw0#o`2TdV5|9Ua`STq>ELW`@#C<lj91?MjD-_glqc
ztRykcqz`VLb=vG(bfZl!Hsf{rG!W1iy&Z%lJ+IQVoygc1>K;AXuBM;sG0?;7f?jj;
zVvdKSee3HMjn-K8ta)G3;kcy3*Yj_c6y7mOXN<G`p>7WQA`f&9i1}H5c6esDhtIWw
zD`S%bm3MEh`|OWNX^HpBA68b?RaZB549%#FLT5{(?b;2wnS~0NhE{`kPS$$)=J7od
zi3gI-UA}m`rKv%!>~C!>_1x}pHLGBLW*p&4p<E~{dzhP(7aSB0JcnjkStmU_U0d6l
zWO9*SZ`5jp)B`7CV-74VOuT$qV{hwlF8iu%f&Hd4TYqv~2y`m|eCEuNufO^tA@)!~
z{)3A0vil{)^_{~rGIibkD?YaCFW!C(5H6_Z9$!88-6ps47bDYylL0$Dj~%}<I;B&q
z3{T1)*lhUpUj79LRzbdLw&2RK?GAx8O+!-gSVByQe^_j5-vUa|@xth^pObxZbkz9R
zAdiO<rF3j!^n>vbO)`>`Lfl=a2l~i8*c+6|hmP91csI6oqdRz!TB)HTgYJ1*$u1Y?
z+xN=mRb+gM@hCPJbqa-Oay-Px`*g-p$<(YtZPckvLqju8F8){YA7BHzb~)G2ZsTBE
zBW4ZzhM<@{ve(bqH>$2>c($u`=lZYg9K6q7Dl9E5Eqn0r*^BNOsX=CtDs^%l@GlzZ
z$40yA_w0<Wx!r6K&zw1$<m2eo(S+@l@OqG|UqWz_dR}+y#y#Nm2W1Z@W+yT5?5yJ(
z*RH|Q^l9z$(z42X53716#X6(V^5_Zhdg0>-6Y~>-(g+}4c&~W%j_voJJQ<ysjdI(a
zvF||p#0XBK7@cBl#@F6EAuLfoCC|&gWNT$z`?#9p_14zb6WLjNV`8#%FXiOl9GjOy
zQ?@HE(=z>H^k?w8OeSe-YuUX!c;(7fnMY6J_&B4bZ|xBJW)nPuT%tl>PmMI+s_^=F
zePz*OELyo-uaxN@6qL9+c@-3uEoiZK$d4UOvfJ+P;7+k<eyF1C{@Sk`_J^glw^bcF
z6ta6)=ukHzy>77Yt(&8-t7E|M$XHX$>#bYuFI~RAFh7-=8t3Ka-qG4QIWnCX8y6K7
zGBn&PT95;IBR~{BxC2;u@7^7yVAKl6TW4~&to-iejVo>Aqeu6r#`uOeboOASjdo4!
zb`DHCcxqum*-%}#W%cT#sR!huIl*Ln`n1-2m(Sk)`{u-=v59dnFQ21FGH1tTvDE4x
z)oxw0<>JMg5``H6(H~f?5l>CH?AX5Hn^oAnk)u%RaxUfDI(pwJES;I2Op1>R4%{_4
zhVzNOr~9pwlf$M>8`+PNC|C@nXYmT|Jg|52c=DvC@9pcPsNl#D|DoPa=p&QKP(j4L
zq9p%D0r2|WJ2wTrS}U6`yL)ZLr=NI)Ct)*HV!lvMD-(3|c~ki;ef8M9R5>&`zs<op
zK0aPDGxoCLZkV@oK|ulL1#^jG7Qge_-81Onxho<5K!5L$My@t$4Dto(+t=-TcZVHH
zI?&tI4vvltw_3LrcztwWY?ph$-jMxc1K8kc<3T2hj;3DZ_5lC@G^<HOK~x`Hn4LI(
z`pl-aHqWYB#B*A`PQU;&k00A%XB!zE^X$cIG8(2|&fi8w)Rv5l^kCa-fBS}8@<r`a
z7i+ug=PxSeL|I2Nce#5OKPZwZ&_I|~N+ooTP~XbV@!aTC^SE7(%?=U`8r5w7^}N%c
zu35Xu&8MXLsa&qa)}9Yd);l)6>{ZW8veHvS1AXs5xUJMF<T`o($bd?tOioPl^YVRM
z@|cb&&<dkA2{M%$2LM4tU$`?iHs`Wy&;In&ulmMeUfN%cGI}INF?(R|o~YpPp@CTp
zUoDr^)>OKA?LK-UYkunOvx<8jE}>WQibuxV-nP~F+W9+e^zQ6x@9A$tG*6Gu7#W|z
zp7-$PgB?~o3MwlGW@eK7Bhy0Ty2i$^`*hd5@>pYi?C8nqnT71M6LuT6H8wT0y?Gt#
z;e8_QX#ec2TyLtsS>dzZ>CVFnME^TyuLe1|-7dN<GKh5s>Envhm8&*;`b3V5lhI%v
z>_8U04hO-Crd3SS_Kuf{$nYcIG}qkF2w<8N7vILdxk$%;157kKC!U)JUU#;4xOeL|
z^0i78@@s3J`1yLJrXEl#=%bWcHP8&sqNcZR`u6XS*|#sU?&%YQQ8Pb3fBab1uYdK?
z{ktXoJ#TN_xUyrDUE$sPdI6zNs+0*DC8kVt^;(v*&93^#Z{dwv$=t#H2mD+Ehesw}
zym;Yl?RfU+iAgnqfair}?i;pWExcV`U%P9&!^M=NP#bexaQUj$+Kri)uZ+#h&+a|y
zyUwMe@%18J*R#bddpmgZOzyW{cFEUHk92hlGYbG-Rpk{9+dYc!mWdYzQx8Ns?eMKF
zf34R|*HqtL@%vQ?`wqW)`7|LeG{`?dMGsl%hK5GAZ}#(Y->Xo~yl$&mzi#uDOGRP;
zQL?49;boPt_x_Wa1+QPX;__{4aZH5wSAVd2QbNx(DzyfcK?J-Gg>k|(&{y&<Xm!0A
z>5-l`fo)I6x$g=ly-6j%bSBH{+f@~h$`wlOoJ18Fm-_V@s}m<r5A}B8tZJGY@Uh#v
zWt08=vc?&?FfZ3%zj)ot$+fcjkx9@zDZcBnee?NCXBSjbj9sl3uwh8l#^<$<-EHg&
zuRPHJKN|#%epaOHY-laFck){CN2^;mi*;J1Rz2KMS7g7zq3}wHR0I<OSnAYj<;3`m
zpKnl1bi(B1^sQSrH*8#!c`SW_DhM^z^=_^KsVNz#`Q}X%@cNlkc?;79L=hzd7cDz%
zta80^T5p&wD9GLE>RgatNcnIZqX``VD>pp4?Y4dG`TU|$AZMNU#;L<A*E&=@?;q<K
zakq6$NIE{XK(VyvZELu%{r<3B&l=v+@|F)DOWWt*7Sh%;Z_tQiq5{2lN4*`Epg)6N
zE9kYyQ<DOGJP;41D#?Okp?9cHrjULx9*Wi4%90|_9XoPQoS2)KkV_TM>Km=L*{$Dd
z`?_NQePL#hNqAka?`vv0dLU)%4#%A9_eQ4{FmDpEVxXrN4X1|(_XY*}xw#kLErgNP
z3jO)>SFCM49#z&u!lRN0{tjENo;}$<I4ji&!>_9Czg@9vqvP}TQPsp?a<ETSR1&>2
z#KM(aMV8U?=V8zX1+%HK-bRnD{zaFn6f+Yi4<|Tob$C`)k7?2>XCiz<!@MHYVqMeA
zRvQQB%lX&D3JLIf-sKzz8|!NqFViv6BuJEWi%G6BcGow$T5ULVB5h=PL{J;&T6-eG
z_x<LJFCIR9HZw2X>lPRv6!o&V3v-B8Bdwk8)~+WHp47~%u3xz7?&$ucyh@7GJNwf2
z+lBYOTfYI2{rT&*Nr?<<!?|fqEYmXmLiA_wy3wc~9v+N}+P`Ymw^^so4vtPN7%2Yh
zdnXQu?hj0keLXhVbhkXh%K2vAO%>fvr8V}Vroq|4&C@?5C;$5F{LuY-SG?VJxjTCv
zJ)D%B5dFu0U%NLbxwq#<)~R^=9gYX$($fzn9Xt@f>Wg*u)}F0xZ(cOLba336d-2N9
zVDFK`sn{o~E1q0BfBEx2e!6<qmxqrWOiV~QcqpUdN!62@s$HHQK0aQ);UQtsQ9gFg
ztN!?T-h+FyI`!q_=fm6rqf-yvsi<mw-WKQ@ka0MBU~o)4Gk4}_Mxd8R>^`9MNPBzR
z;Lwm4jSbNJRm<z`+pW_N9hT3_G5X@0_t$*Awz#-Tsii<c_?Six*sE1br4fO<t=6mw
z4hTG$aws$`a`QI(l(Z9bA{@1iXR?mjY}*{UC*(kKV&vZNHEX_gc6OYdogE(^zn*_{
z-~O0g0YTwW(Fw_idV2bRV{0EhaM*6;XtzBfJ~lNqwY;KICRfT8s)oj<@bGXSZ_lVb
zAt`ZDiBX}y|J}cbCLZmYrLUks%rvSbbc@}nXl;C&oRkogkQ^18xF;&QtgK8e6LmJ$
z9Eyv;K`SI8`oO^>hmW4Dt$TqHNTjN~EBQ9o4naX732}+%&YXW<_q3;@Gvi>|rnPIK
z_K~y$u8ww_H>`hI-`MlEH^682{)m|A(Rm&~`#O8Q+;*Nmc}yXluYO#)(_vRk#KDpW
zl{3=|DwXQ`jcc|}cKc#u21h1gG_95xb~73Q7A@)0bVi*Vcs(&OJ|rwOHaaFGa5n&Y
zVsz|qSFc7an;INRj!&?&u?-3dj!#KGdEso|)EG`T1*dbox4AqjX&N0<GX*q)5g?#`
zgN@y4Yv<aREg}()FOsu|(;e-7>T25*GYi!vMX*?C*zSas#FWDai^_^;=V!V*yCV05
z+ikN6_76%=J9;+v^0-(E4SSjzPA0^pCnUy1C+-T_mv^tMcVZ4IlmDAkf^uFyIT#fb
zxMz20cjpNEa$UVrAxTcnuy=4N$j=@hY~Q~(<?|J5W8*?H4#(_RW9PEf>s52Zo43s_
zwk}6gk5A8tFjG&8A3JP!xODgKn}NYtzwk)Upn<7r;PsB$W}nSYxfd?0)cV|$=Uukj
zclC5Ozi!&O!|qW0fw2W38{yfV%1s}Cccq|Eq|v^qdl?rH?BwPc937l?IAKp%(AVE=
z@(YZeoS`StpdDv5eLpE2c5xxInd1(;OpJbr)H#`S`fHc-e7(HA-97g2jXaoqAT1^J
z;`s|>L&N0{ORd(eFSwp>wxmgz7#}^IePYLsZF|BZqax!ErktpG(nQ8K3HR?8`T6bg
z^Y@O9iHwVj^YQlo=YRVBl}q`+ZG(NC5h0OwHuhl=9tla|S*P+kJI2)7xl5N%+HZ5O
zc<|h$R0%3+X3`N?>z!lclil6j3E@%x?p~=`$Ld}+-adQLX4SfT<qzBXyQ6)BBHVT*
zBqZ#Qi}iE!{N2C)_RNhNqch?wspsN6!)so*0rlXNZqy5ayrh^)7;fu~I+11<=9jc@
z|Go1$2V<i#QtzF+amECIsjRqXx7B0II{U~7pZ!sOAN|{kg9*n5dOL32%yDsW^zqsi
z5gu~%=&?1c96a6j^bfwNt}WiUVe7fmH$-y;`*a4;)Xd=ZD-VPG6TQ5A_D1?0ObK+d
zS-a-T?RAfP$A+bqHMNZ`PZb6!_e%}^%9~W9A3S$D)z>+s?$H~yg1&85qmWDIr*B=k
z<h9eOwYdqdtT74)kDl6O?U;V_xJo7!3@Y7pzpumg@4mH)Njedod^99H*3;eR(1GN(
zx33^rC7#L7OmlRx^$!UQ4GTYZ^32nh?db7keJ!wW?umkt9w|+t0GK*EC+YX~4O#K&
zx?2Sgv>Js>-2d!Jk-e4U{p$}G=BHjXR;C_I3=Iv92;UzP9P!}(L#<XnJ3D>wP_n(l
zj)=V>iHV8sZa#ZL;~HMHU|6qTHLP2+{^;Rs6G3KTxfE+%uh)w)Sn$|bPijiCgRP6N
zcVJXhRANf%qxx4knKx7vy6xC-@n(?-@m(~2<ye~gu88MtV_j_>o{ld2W6}o4C3JL|
z9xE=$^>W$a=pL{y?m#fMJ?ph4m5so@vlB!9o(^6C5q%RB+_36(5^;USqrIU)0fD;^
z50leU?iSsf7tMVz9wP3|jt-|rMY>w=NQp-nPE9y)@XJ+e96h|dhbCY>iY;n5k`YG%
z+4xw?^B4XBAzlG{Xp2cni;j*xmwkF{U_idG@U*Hbe&0SXSGV}sgs8~aEnDnPW?#gi
z3nuSuZ^=$e2=>_-5D^!9;K-TO{f_Iu-tO$%&^D}`9({D<vWG{Yvqw-&WNb>pf#QdC
z!&73VK|v4b!hvzdQ;&7FRC`zl6y`nFh~}^6WCeNcZmxeNm}Cmc#J<3YeF6K2x<+3%
zzINK_=H>5ut>Ah`*W2l-3HZkP)!&5#1SiC&oXNS;+BbsXm_*`B$B+63?+S?sP7d0W
zz9-t=&Uu}+_5H_HojrrQoqbLwXAI2Gz~K-XG&3T1o1G^Pot)?!FTGO|;1#exVqe~+
z%R@s08jY&Fs&eC&t-%oy!_#vj743WMIjLn@reBQy)bs1KLImUV^yIBuchb|3RFpq~
zf3tVl1YuHqJ@fSO%ehl(#Y9u*rG$*u##S^_sp<I&V5*B3uJ{FoCml}j?Qb(^B@gZt
zZCbb4+r#C;nbS%8Gi%Bl_1gLVzQ**FG!GZAZJXC;oya(ndg5}<t%=FmS<%A5L+RBu
zby|(8thD69nX~P$Tk`X+V-wxFWz)uu>z$ol{R4KVAI*>}WjC%~@%Q(&vfGi6df@7r
z3-NpRRW&zCje7Cu+^K`d9NfK*ozIyZn!0f8+~bNm+O%{!L9M)a?zD@8t&^jDM8uw|
z>L)6VTA@<T%*|fBc)93)@$AGLB2)M4&T}Wv*Vn&Ns7(r`PN_2gmJLD`;!)m(3t7jH
zr5{RjaBy;R+==tU!0^=U0zDAl(f0ayM!JWqla2NEj3eopnHlHKof#P!>Fn%0ly=x>
zm*1vs*0G5Pnp)anNb&5XVAAB}oVDG)#oNon#l<BqK5=S#R&O9c@$~7_xY+0|8`lN-
zc^BTia`^D!%lFFrMFs_bgBym{NCmazamhV*H&;mBxMlm@d-v(5Hw`#sD2IFA;H-tS
zgpIw+?vRM`ifXh{YYY;pGB@{<ySpbqL+XJPfOUxLY=0BCf8VxE8xAHXq^G8&r5u=>
zoR!RpPi1C3xKpfC8ng<XLM)dqh)!l6yL0mfx|p4ux|3gGx798E;IX;61t|2m>XGkm
zzr&eFr)I_Q7W$fXW;7igF?0(H6Z!eqyn%(>-96mg6Jz5lOCP~u^h(0wWyK}CynWm}
z+_&u5zGq)#YhRaGDtYtt`RUYSqr>!hO32Yl=785n2j85|yM7=mM?!~3c&n=P=JnHA
zc^zHs{+vNyR(v0LeZy8O&%j;JUOtz~=>dj<tJnS9yj|^`-QB!HBci%T$7CAK;|GQQ
zPWE0-&bBs=S8o+fO4Zo*XlK%^p_ZVN<5X0DkbL2iM65O$F%TdOeOqg1a&pS~vqyBA
z`Lg2L$UTX+wi_}t5>w+2pUJ#5H#<E$Gkz#Jt-h`aZUYtD8(LEn4>omm!3sCe<lW7^
z(K9lJfUcSlpE;0OSy8Ri3q?2YpFeTBtEYQ<b}HvYc3owSOlMH*O~Ws{t{%Jas<lJJ
z?ltu{w<ILRuG_xeKfv?i#T*-Z_vpBc1*sA4Ngp|7d#c6=yI={^LT0>-*Z&j&yD#2r
zr=K`62^FPffxdnYHnw&<tZ}fcudUOoHFHzbDTzr<FB(umCK5Aa8s`_L!}bJOTiZH1
zxbF^#%D?si;8;T6qas|ndNC;2&(>}`{mx=p<&pHPmyIn7$%3HQylQIo^z^j0UFYJy
zBQP+kq2aAbkiTrMK6Na&r+rkXP+)PD-6^@0eX)OFNTbozmR3ZCg$G83zkJi$+tiwy
zd8)aiT_qR_&R;qZ8fmk`I$(F;wTqVlu!?Kz5Ta{uRb0+E+c`2OVgA4;pCY;f$Xzq3
zS0rX<+E{IJ*|6EgW=D{J!2MgL2DM3}npG<nu3fz2YVQ;1?+W)$O-O%U^IAMV)!bN<
zo_f&3&C}h(B_$;#H97lsLD|@N|Io<W^XD#BSG|<rXi0b-kW?dH&}XEd_x9f9?7a2-
zxzyZqnOR43yV_?e9@QVsJYHOWSE{9hC=}D`HCnyMV48kZT9B1-VPV36IKijEpiw@r
zeSA1IVSIRiJ_@Wh<XkO?Pd#!X`>bBA!m5;yb%uI5d${{0q@J>M^xnF|F*Wtj_}GYA
zgCMM-2M9Y`0)zav+wIt4XCE0IckT8AsZujC(3^4KU}H^(K|#v_3QJYPBH768I}b84
z&ay9Lglf{+$-YBzX-!XCRZ2<WgM24vJ6Bg%fbx5HABsf^jYg-{s^{h>v$Bu6xjQ*H
zI0OgnsjF#%K$%pmQc6#q$SN<bmWz!Vnn}LyAXZ~ANWe(6w!Dgr*l%l%&BG}$B=r8{
zS`?4<v>uGvTlus}MZi>EeJ?-b_=V1ag{jfWOXn`!yI(2S(E}><yAVeCy&HJ}Vf$S?
zd|h^|e^i)1A)?Q^7}V0s=T78ayEUsYsdSiiqo9Q;^yLqWb_e-cJKFm1397EIRpM0i
zBk>S8V6eUYa8h!hkB^JX&db-Xr)Qoxf93kn)GYsMe_AF`56gtU@WA-Cqc<`2$fm7W
zDo$>09=R8CaGKI1?i&oRUpB_=k9M$g-0A8W8<z}ql>9Tvf_`SG^GHg(qo=>Ui~ISE
z1J}+RJ9zBuqzHSKPLMAgJ9fs#!OPjs#lyuj>-3euQJe({jgTb?q=@Gxda}~bzpCwm
z0%b*a4j(u&J~V-7Diuv+A3px1=!srsR4H{2%E|)5LnERid;5DdYGr3@E6%iTj;@Xl
zt^q-NZayfbr2*d(&7R50wso>`+qxtF)VbK0#P7Cjt$f~~(F<pfWIf2gH>Xs{5l(^E
z=Ot$|&lDFF8RZ6}%6Q{SzUNN2__!GUvGS+&b$+`8qvGP`rS#ozP*$O(yL`*EOurQU
z8N6;X0X7nHBnA*i7HXU5i?|ScRCEW@L{Dka^BEL>QGp&-Mm*8c9TBzBsMSk!I*CqW
zB-W~R8m&%6&mib@BAtGYE;V``kf2tnQ_~yDhyyy4(O?2z)k73XLzY30{Sr(9G+>ol
zt5Rw;YAr6X;IvA;R;AMlDy>nimEq`b(36HLgGz5w7)(Zu$)q-+T&sgbz(b8et<Wf>
zDy1Bv^ym$pP^V-Au0I`Bm?fx)#al8G{|5;sBg7fC&_|<IYt<^KW&~P7Foiw_jhZu!
zS4%&x31YT2s5Lr;QY}-dm0GlC00EZLsq`wDS}sv4Wc1^9dSC~E#t+u(4SIB>Lf{8O
z4vfv;JcU+dbQ2~7QBb2*DpV>JwszE^w?Prx=<AO43WbUtHb_IQ4l?PXeRQnV>cPzZ
zjG3xnJ(MBFtZ4Kk32XvWpfoePbxU)jLqa2?r%)GW=?z2JEALuvU}(Uzh8Hw%FctG0
zW;?WmL18W>#t1!mztD-)g5iuNgN}aVQ?67<5g)Z`wNXz`zT<p_Ll%4qLa2AR2*9@-
z9*1pNg$&>$txV9;w-(XQQ-HM)q*AElQng&BS83qD)IY|oH!8Fm8KzyO&}bDVnBJsQ
z%8YWUL8Z}R1`Ygcel4~oXU7JHSLO$d=@&*}Sa^s5^CvTz6evVRqfV~Z%XRd<&oDe}
zt%A|ua#%(1U$&%Zp^zW2H%gH(r!jkmcXhZQa^EwzMKhco4D`M^t7FvYlqi(QXCFN(
z{py<y+2^j$inLThQ$dUq$1-03%Lq=WhyQ5lr^>-t;0QM0MF)6~$*bt+Zx96FvI?0|
ztz=(lPT$0#)#|Xy6~q(-^Z-s;1R{zX<Qr5$FH!5HDwRn=CqcL#e49-dTp4kg`+$yq
zHQA)0Wg<7}6!1oz%vA6I3VMQ)zG?+}0ze}4VaZ}e&@C0_S8yCTlgB5YyZ}C@Gs$QP
zL5Nn6tF#I!#t5mbhQ??>WEE8C2|*i-u&JgqDurk=h#q!<KHSfBdZi9N4?jnD5Y8lE
znUU@oEP-*U-T)veM(O;FuCTBy`^@ROh9`?Fm01yu5k1(KX7bR41jwXU%jR`ToQueT
z@pt5SR!CHISKlBOuwYOa#pB+N*8BFy_YcoQ)ZDyOu14=@jJjAlYMoJ`*2onK8O0Oq
z9tLI#SQ=HBZJEL<6MY(po>YX@DK=8rgoW5c*|bD;29q4of_`rpHoz2-6p+zi#D*kQ
zsw7J6BWkvDLLiTgY%K4XM#Otnn@lQfNc4Uq_BYI`Ru5n;LvX-)r8uVG9}5+9GBA&O
zd`m(amO+vNuU>&&1Mr;?p?txppr_R_-F!QMg1Dr?;SU4*8SxPDRV}ELbmI-XE9r(g
zHi97&Oua9Pg&`0F5v#D-stqtP<Y1*x)MIuOu(7K(u$w|jF2<k6#HMC6z;!S>g~A{}
zvY-|TDhVtNooVrCu!|A0Cs3dO0^uekKtlbJ>hKl}pUn=20<BSlER018%^{R-WMNmq
zmVos_53cE1kkx9*BWS!D9RCz7J{n|F)P``C2AJH~*YYMQ`JjWRSO4U+SO!EwYAMMl
zSl4KvGHGQx1bgm6kWITSb#J_QIX5JHPtl`C++3JP4a|Us%d||t5dA#7j#rBOSdH*R
z3d<B8xKE>iA{C0k@MC}|LKs+23~rD=gDv5d);-%z80KSQXf<=-LU<h=02m>MDkC%i
zfU@WST!&z2f@}>{V=_U&Q=}NJUi#e+jDdQ=w!yUH@eU2CJ}Mdk5P?mV*hjHBvthl%
z>+c{tgdzd$c$DBoDK;3$!7Jhw5gUZLklBYb4FJ|7qNdoa0k&8W)EH<<GqLCfL!)I6
zbPicu4vB$Ge&-K$5pnby`U(qXI1GwR2%@3WJP-)bX&?kU0n?jJ1NJ#~iXfQ&{y^BA
zvOcK5tSV`XZG<!XIpxI?K4`{EnqWczoLTAg^kmti;^?@@w4(<*dOMK^X1%apsbfrw
z29lY@*zL^4A`2rQW7HY+%m+XS`h<BAPys|p6vyjEB`)b(6d(h}q38G&@9?_b06S=O
zYNcMSG-<gxNIsOOC{KGOJOMVON!DphS`{Y7fT3IPF6y${Y-%jdWzHqzKqVAn40I?Y
zGn1t;G@vTlR+-1*7|53pc@+00^oUDp%RF;2jSA$MOb#_&k|rx)zRlaOpjnVk_7C*-
zb#@JQl~oicB*h1Z?JIfoR1QGTgfsoIgDu}*|4WHmi8Gwkyb3JV`yO*AAy<GSk*k_l
zHMu>45oQ4%sx^mD9y9n{FalK3A&xPhVPFhLLFRvGiWN&f#(V?0Ob3KfdZ>kc4G{NB
zbDU-|@V)5A+VWUIi<MMmijlG=$WfZ~^aVI79o<==(=s0pMH0kXz;yar6CSr|Jz%l3
zKuzJ1tzRDDOhAhoihh<g!+el#!&2A*QFKt@#DWn>#kv;_ugc0Fbq^poV0h+*hWhN>
zO}AcY5G<bv<D)x58jW21_D$Qhn*}k6Dd{J&Cg((SL`VMIXrQNaWK?WN&p6rwGC~lP
zqEJbZfNq{(sUj5M<PSUWnV~;EDDxyBv;euODE`yvXi$LEg!sr-sDKgCHo;C@CX9<s
zA_(Tt>J8@e82$P+w;^7cq0GJTj==b%K#juy9rzhuH-NAsVB&%8C>j9B8t7CGrr*K?
z)MUQFV=WT!CuSV@1KlCOQG>qxK`mz=0;RboqZu)9OTZwRFv!n{hcuU%96Gy@Q*j$G
zZz3j{=C&+O;T35pj7A7}I@&eNj!tZ#4NIrRmPdP#*%+8)C=b`7-&1AxAe3~s#oRj$
z4O_jAR+ITY5v?84mCD&GyJ3a@W{DPS!vJt?G82uEjfgK9TAHK}gj1=0alB*)oklb@
z@~XA5ySHPsr}y%i^M3w8(a9-OVwsBdj!ICH)*2ae38RS2VbrLVlau2$HBSzvrKTND
zZ*FZteHt2@EVIRyX_<Zr`q_A$mICkq;-MZsPs}TlKU<hWIa@Ha(@^LDGtcF0c61)5
z7efK0(+jO%>Pk%u%DgZjlx`I-ZEK<v14}YOg3|0CZ^YAhSxj39B6yFiQ(__tPDE@7
zJe%{ohVRp#$p0QMA)diC1hc}$p8hnM>p*E(6R(!$_=hVB-^@gemkQ)vF7gM6R|db|
z@O@&I`94uy=%K@AEGsT4boX!$4ECw1f5L92Fb$bKEnQ=-!5^0YJ+dgv@Vdc(tq4Jy
zwlPFty$pB*Idbk;a7g6nl_;e>kB@-40U|Qrgpek2Tw79$u8<F=QJ?@X;2#ptUu3+P
z{htsO4hl$-SQ13mgFfhy>wxN%#q7p56`C8$W@#iA(;!QlXPEWms*%kg)F`NA^2*}U
zAYb3_)_n8Lnw9G}uGzeGQ*mk4zzBWCDj0`A*3PJ<0}d@=%P1k`-4K@Pmm@wsV2gQ?
zVYV|b;?WONV97TZ@eCj%LauC*040DgS>YmHM;ULy2-PTq33(?8%r97i5I6pz9{C$x
z!nK%_vpNjZqZ{f8F&xX3l~{<m3YW%}0#TZG!-*x#b&$5yp-a5bmSK+n^pRc~yWXgS
zO9P!vOiqtaj;S<q?&B6lnwAsN&>F}U5|O66uney+Opg~mxNGa^kdShyqOP9xhjpT!
z=xYo0b<aM1eqeZp6ahk_g<>>nl&}E~9dxQ@YYt6N#B6ElmDOj2LYgDC&2fT_&=3RQ
zV?_nbgvBhJiBR^T`9<~zm`@nP-DG}(?Cj2kdDLK%O4?d{iEd2b<iMH|nb$KL1>1N{
zmS{s?`a<t;5MHNEmpqE{L0mc%_{s6moR3$qrJNUmS)Qeo4~?fk$V=*SIjk!XBw;9|
zCtZ@mn(e@9lc`z$dzx5OKtl!_79}z@n1wJncEV(>Q1WNTi{$7)&zX}MYu0}A>1Q8r
zSo7U?tH0eBn=mv!MZe<8TR{{@GDyQUAdz)pG~YZoN+qJ^R}GF%w!Z$}x9{Fk>&<tK
z=>2v+kY!q?Ux<DlUT2=l@Cx5(kfyi>k49W!bu2Z(2sF&cArNeK{dY{g@L<P#q)fDh
z77W(NjRJjX0+mq2LM)<fh%Yt@uY!WFiuZ_$EdQ6L-w_5tqq8s{5)q4upm+Ln{&|GX
ze#lFRXK>B=P^ilv&<8U)q1B@HTmlV&2YU0v8x;PKOTribnJ<1w+yb1rK|V~(I6ow6
zp;ysl50CWUe^AiSRHGG?I`)n(smJVT>79GRhr3|1en8}12*KF5-^c3)x}U_K3!*xN
z*X1aEhu2x}2(75V4aMDYsnw8#r7Tw<-qO;Z<#RR@rRWw785!f#VX5fo2?j{Ua-lxx
zxiH!_A%Jc76x+!HX2Lvym?rOCE+JlM(Spe#MIj$-6ci#+_2Y^gH?Lm3e)-P5f@cjc
zCTBz(;()dEb_mv_USm}A^~)QRW}x>5vrNATVXiRA-;Zz1moa%fzHuL1Qh^cvv&kYf
z$ry{4A}yPD7E#Hms5W;|R)4Xzg?PadW^&A~#p41`gUr6gZ^m2F)ao5^pIfA*=|%cp
zruh;gStm>O3w{Z;>5VJYGim6)J^3-=pZBx|Qyso!RIsVhpr?l>6@p2nmd(F@)mZ$n
zq<46DUO`_h1F>{8HY&PW8`|G=sL+5Zj-{u>T&Oh|w~8LFWRcJWJWJ4)dRfw+g&>dO
z();@zh#PLP!jgvOw&?Oh^NTSsWh`v5^CCleVhYqeVxfg)X4#DKS9&Xj;uBMbEXegh
zO(NC+9m8Byzz#+hybh;g`5-8O3%s)b$mF_`5K_i+!TLrL#-cQ5M);3%R%EV7CHx;}
z8qxbXZ0eWRLc>L7+HiT~2}}vjRP$Y%?=caYzyKD5!$@cZL$U<f2;(!+d5sC9zJ9`Z
z4WfnVp3au?N5#b@g;iCLA6Hejb<j6gzN?6K5J_l<M#_HPmHb6dZbotyN=bLm+o~t!
zP0cUFQW2_PQl(0I$H1)kGA+|DL_Z&|^Jgm&N;qoAB@aNf9%#`JTO6Iea5-%E;B{$r
zff2H`CPB&AT!9t_10O~~2FT8r6gw3t39=IuVG`(zQe|9ACdy2F<uWxE`{zo(WAsJ$
zv8XBQhu3~bB#;e-n2A{`ga~<HY(hLrFd{2KGkP}=&9G8AGb!&8Z)@JC4YZjU4ZIQW
z3RURcW>|Fz@m7nBGHw{Kr5?QvN}nb`+@{CbQNk+l1{U?Xc_AOfwBeJB{>dhc-|N>x
z)YwvaDUp5XZF9H`>5mk4PQ)qApTg@)gz)*IccQ^dzh94ZW_szdE7RRFKy&)$9m@Y8
zUY8&f<3$J5D;oqZdA#PEHalUmnMWygWYFTEK~uo=q!!SHCd9l=S|nLYSp_D7Dqx88
z5HH;TWC}2N&Qt<qr!;&27riqtG80`e!!LRcx4<H?a@K@TnOOtEZR&XmZN@qsyOqXf
zguIA%WgaYB9JEN5@%mp(OIF8wWG?<b84X6Y(WIdY%)FR5On`xW9Mgtb;A{zimIcVK
z*xWGS#{3Xz5Sv4W)UkTW4J}?^nLy6mQ8@9mB?qDqpy`!hF?&FP6R%Iz&>kLS7DU9#
zL6l$_sJfW>-l}J%Anu@xWKm^_1ole3v8S%dE%gL;Fe;;leqqSmKiD!rGqC1Q*fGE5
zpOB&_&Cm+haB{GL7Ac|}R-1~C1`S{~diaLKP;iwA8X4-+K1Giy;ap7-n>LJh{aQvr
zwr86Wm}bgiOJ)I<PjxNLXy&Mh=9evT7GqGt=9iDeEEqa1GSA^mf9RCrA+OGq;l%s`
z9zmKjW;4j#gSVl6xEyp$ny~_=2aDgBc(N7MqG~8bCi{=dOjqjQgYgi@BpNp5(9l7w
zYw{&FgD7LF@_!JHR|<Wsoau!saBl>2-WC}U#@li^7M+$dBkr7RcIfYiOf^-Ep)~m?
zO%UW_L6JR>fst{%PS$}1_;}Hb4Dg}xYG7xY1^U<qV7E%6T)aEJ$kaLhkyA0{nB@)F
zD$QCUSEr{NN)&9FQbr{`#&7oUWm=|RkbXX1r}fFU7%;5?z9lekX6puI_EfXCTGk{k
zxdd}Q2>FP)U~>hOSQZI=2FP-OHf*6HflKN_feMzIjMzWC(0}$1>xq^Wi<MkMJ{E%s
z+lLvlLl(=V5JT-P#O0W!5pliEb$C7xMi#PEpzhvXy(hx5Nh4!1c<InH8}*WkL|i3K
zlwMMYGX~DhYOw%<6t*NKF%mf8n<x~$w=1%GOK4F`h{tqurta8uFD0|-xUH5D8w``7
zRLCUKIfF^AH_2578QU|NZoH1UcOD$kz)XuJWEQGtp?3vvGaTo%0P9ljC1$*?Ml8l|
z$@~U$OJ72d?vP2bl{q7dSRFdP(7XT0LJ>C^3+SlD4mVsUD2m+?;hvZt-+$l8jF4n*
zgDs36grUzF5jsZ>{0o{Ip`=L;QDl1BD&Vy=DmHyYY*1V>&qBf?oEN@h`h%J%rUb^w
z7#oX9VI;@F#zKc8t|7N9lSaUZJ-<%t*HX^NEO(jy6usw%f1cn~@B-M`VqV5f2F%V~
zfMW(r5p#cDk<UJW1!Jm2VG7b9l{}ax6Z&vW&(S=;WbVpD@E4wDj716|I7xz$X3>w;
zH?M3)ykqkPmrJK*co}L?EAl)}v{KATMyxVw@vVW^2T@;?Z6-9KA>$f8s-`avfLrP`
zdIbx-Mzt3Bo9j!=)q&pvLSa#hv}6q?L1k3UGaKq;3aQ$NgDB-vbQg3g@q}77Pt9=!
z8`E#y@Y6Cn(a7l|jclnJI9_L?z>CFlOvoZbDkjl9Q<e(EbQq(-ny<;C3=lHxkCPZW
zL@Q<uTAh}`kW|#RY?NdGOIKVJbwmw$b;@ILp5}l*2t*YyAGESjx+s_cDXv)|4kxHe
zit8W?(Tw3?^hWN)YM?umqVt~?4_W&~4bA`A+?m-@!v68G5RzvWVP3|Ik>dBWFaeN=
z8Z-@r8|cw)`uLd%*cqmTMzm8<J5&MIXPXdNo6GyY#Rx61Dy*E$#hB(2jhLzFkV8uV
zM^=oKj~8luaJ&fOQpJK;Jf&01m?q?SFgMegPy+l73DN=jLIT%>?90;lPah(n2r$1e
zB@)l*3~&k5GgqV^8egVm`sL_n;&t+P!t1=0eJX@*%F@$hv}kDEfVi_-2)VSth`Ag~
z1(uKHXI_Dv`BE_nVv`_e-Qfa48LUSFm(&IQwu7Z6Bi7h_$<jPPus})io9z?CNbpBR
zDTj^DtT}7Ni6<?>(I4-Xjm=WZTUdyfvgkx*7UoqMv0V)VpishfW6Z<Z(uyEzOpp=G
ziIu(^EK5TtigxBqL=%qJVKhK?jFd{jREoc)Y$nzVS$-)~kR^MNtrwYew(ydCHk<U}
zE@(s2kfQtR8v6E2^V3Rv#;K6{Wg81!yr&Kr(s;s5iv<*E<wik^u=k^QofMP`MmoPC
zlf<(rMNg=}?trm)4QZqk8-yiZb0N?h3b0sj-p<(I%oYaIKu9gpAE<)l(OU>KboeDz
z#7t5nK_ZywTb)sHDPAXas7G!#@<@J3+XFFAvwW)0nf^#&er*)wN<jnlpcHkdQR5gx
z^>NM3iUg~UOe|5$3Z-l?BeUFP`ct&%ia(7pahPZ3L7>F~BAA`K0KrYlU`3coOOob`
zO%HnjnWcG{V*Y}qMU#ou4~K(u;gu6lo24;1=6_~}f75rmfLU;(5C^Ac^{7W8?i8#!
zb4^-8#H?F$Y&6RwJuGR)oVbIr;ZPJcdm1j5c0gC?QK^F-7>q`vmjSX<CR<--w!kAS
zAuT-tvjnfxU2+kf*r^p|0zb*MIE%uF=n;n1=nW<{a&fg3uhVxr>ZOo?MtXh>VCpdi
z(H9>V<!~)2!6%DmiYsQRwq&GiKVd`Wqb9u0n0=%e`4Gbgg9Mt=Txr>>WyLe0tVi@t
z-SO(2s0En=I2=P^4d{LXoo!H?*F=I^BgODKJ&y;K39lm@F_ezp*s!UFMIRc*Pl$(1
z%S8>%|9L)VO9>->fwmOG*x)V2l+EnRVkMYwc5LS*u&zZW`6N@F4~<ns7vycQ0ot4G
zNog(?6$u7#hh$<2MROp{>hiTi4B@~e2$w9NQ%kccm`;}Q(z;`YK^44`pUCux>{Jn5
zKnnIV(hb#75j`Q-!bZJ8r_-<pk!Tba*2CT8N(D_Nv+go2(=SL2uQOVL*O_}VEX$Y^
zUqvXvvSmmY-ib8()G1aY)u81}Wd6qpHCagb{%M#o@|BFSG*|`J3tJ9y3TNofyj&<W
zQv#QyCe{%kJ5}aQC=-&ISk?iRKv7=6vS^vIWk+eeLKbwROxB;78NHuDt=OxXcs@PH
zLgC~c174e-a>EtZld;)+=C;%?nAbxs6d=WIM0dDQZq|x62i}nP$e9xos06jR1gcLr
zhB@4%fQ(EYnwVH(NU~@_WSLx=$9J!kc-NPONmZ^k#JpoJ5Hlg=yNgaDozWQ)Pj&2h
z40ChyKT2_pP?N5>5ZDmRzfzNO7{O)8Yp4T+W%}eX#c9@<_CGq7(AO8jAuxP4cKXpM
zNMIF+c^VafwvoUk{n04du3@0F5Qf9+z~iX`D$>r%nEEzb7;G^zU9s7P!*U!z`yb`=
z{gK`h;)sFrxNz2x49LgF(~F*o#3Ej2`K&(EpS5F57i4?2cmXh-Y694>`Wp7xvZahQ
z$@VSUUYO5=A%YR)nB^|hj}l+kVD6vXW<SQvwwPo!`_>e;LfFElQd&xwCd`)-PD__e
zB7BZ&n(sdHS;M>oI`F9?A7yikpukF49bS_YYr^NBi)57-nc?;K@2|52Bc`)O1Y2R$
zg7SHir^$u*H6N2D&H6GE*OwEFz;q|(M5TybXoY^%daNjbY>m#S(&&J0c`r+tRpa;x
z)&x^~z1Dzr&j71NEkpmPgM5{a-dUogkskje{g8_?ldxb=(|fW^Wu;)0(`tZ7EpV8M
z^r1tGrBkTJb!OL;z^dmxFV>-IEQhLbTbm1r%uV?7PVYpqk<b--pkVSoUI&{cKrFhW
za}la@q7t$Ni{$3okZi8A$kdw2(XgOTRrGK*q!HOD&1}WgMpaf5|9O9ZIv$d6D1dg1
z_>40Hqbm0T)|L~$pmP3541GBaMQ@9dxvB)iE&Ck{N^}}TCW_eT%n^)_m$xE<kfjEv
z+E5%Y09!v*Lm`cj?`}+G^g<IsZ72ghVzBRz7afvoFBz|1p_b5>Dlzac)6nntl0Fc}
z8p3Ny9};QK)oIASU|MICOAU4Om2WCNeJuhhrPgZrjz;}1(=z>X^nbm2)xuL)X?V3f
zIZf#g5<yZ{O5u<D^^f}{E&iqS0T-qP{Gsk>87!$!%Ygoyb6Dw*k);dEe@?uMrLRAQ
zP!lH-wb?AtRZCx@yjaBJsaYAbZj9dVo0CR^fN3U_<MKnbek$?amPmj;OZi=erMyUd
zYS=3acz8vSqo<qR)mlvJ2~PZ3de=LJOS2;hI=Y2KgrgvXxIdYwbF)B*05ff%CzK(L
zEjjoHS0N3}myD2JWHbFB>;0>D`t$3>()TMc($U6%d^Oz|H5zfsWtE@=jh3~+i+SXW
zWD!K=oLG9%F)ZaoTEGlejD<<Yq%uqImU^uG`)tv3k(cSOM?j5AK~LXu4$EuUm&Ac(
z^kv$t6c~vRCpn2_cHR-sVZ5}IP1$1Edr6{qX@c}-7t?Fe#k=UewEhR^&lLX@xA|V3
z@6~@-%Dch<Et%&0?-8#<abxMae!rDP6sLFjL@bxL<&}`2lQ89zH7Ni4WNB-r_XWPA
zALcC5Vv`@M^CwE*6<J2KNK2c%tFy>N?4Q|CESJ5o@v<UjaB~qSo?Mdgfvk5$@6(Uv
z6D>;kK_#BC^wlyPnvumzq%D_3OVjTYDq}%WoaaO}zt<RbESJ3Gz49Mqz3-N0O)Q1x
zG+n++{gB?1z<8OK>90k=>#um~eZ2mov{(UPgEv`BFD0J;Cy0Jd1W@kJb@#uUjEmoB
z{BF^j*Dc0~BF-#`yes-JVZ3-%GlIqV<zJP!Mldnw4=9Kjg}qIqrC%&E3H;Y#7>s0v
zKVcq!jFd{c(G2>VpW>fKd^p@Pc;&<Vk4z=3jkUmS4#!x;?*GN?_Ft25N~F8IDkO9!
zLCSuj2=fQX&Xy3+0}gWh?%j`}#=nq$aX(z9Wm=|XTBg5c`q_A$R|5fIaF7A|VJlQy
zEd42j`g%RRg=)V3TOkY<TOjR%^dUYCdz;MwT!kGOML!R(fA22!f5LdVMwlDU-&2r!
zXL$Ylyo45~`#(tN>z5MsznA!wElwPV*MHeOV%7ZF<p#-rneb)$&maJCot)!!Or)Cq
zs+ZCvh*k7%IE9G68eZpKvFIEB5kFj}Wm=|XTBg5!`q_AWaZ5mgr}2v2LMD?fy}N_V
zKMUE>N-CA|9#Ip`|Mnmq^wAlNYPx-ep)9hw=x5+{hRtZCDwRsDrpKOf`PaT5#x+8(
zoWG|aoga7>RWd3hQV!qwY;tWeFFf%VkX$ZTC=@&mIiUX<kR2oviTKd|;t_FcEZP=c
zv1lt8fAQT3Za1D@roTB_yuYs3sMz-f{ioeu=ky=<!)02gWm=|X`agnxHeO$(MHqpG
zfEP72HE-U$nV+Bki4p)+dwP0azI-`4I{G)f*%*8KItuUK%FoYlYwb`f404%HBBo!T
zM$ym0>mUqMB9SyTHNocCW&aa!7}p5%!TEa%(o6xL8;mBMer{^IvHtl$U%yl=X>V_D
zY-}7KA2-+gi)e0c4ni<eu~@t~(*FX`6O)MJR!d7uM@I+To_qUGUo{^jI0M!WY_+hk
zFgZEd(9i(+ILa;~^}ls8>D8jC;jY%Ad$+IT-)Ly*nvol1^x;3g(Ef^e{jcGN%d||(
hv`owNH%fx={{z47Of4Y~K!*ST002ovPDHLkV1kT&yLSKp

literal 10553
zcmcI~2T)VryKNK^6#*%Npn!tXi&P~v>C#ntm)=2vP!ozMMUdWmuL9D06X`XCA|>=1
zdMGKh7ySMH<=yx0ojZ5t?wKUt$;q6(znydTT6?W8_>GDj(H)vQ004kU{<ZWw0N^?j
z7hB)DiF?=1?Ow%wTyuUWCkZGWdbEi<xM3-wECB$NhZCL|<KvERe|W9q3;+;!T)nP!
zI~JJXzI@^$qwON)WNz$Y?db4W-P+z9!26u{Igp13$n)Yc&vPIjKTv?@*1#q13M`rO
z(h}<KhC8V|PKYKHN_DQfZC1YhdJpmYcR5)~@_htf2SkVl!<US5d_9sZC6AR9*uLJ~
ze$3&^5X}=(C%h1AHWg<kANNi9!!C+%*^8(G6c!ei!>B|2qSfb8?EG-ghyV1H`#Nq|
zxK`zV$$UxhcYN!{Rj#;Jb?={1MACH(ttfnU1g7F`cb98DEUtT{NhMJ^PGbDDvF;|V
z9ly03;1wjJ<T{|Onv|kvFYQq(YB$(H`lqj<Dzhi;FQav9h9Hh8ozI1^dW@e<fotnT
z?@hp@>?8GgD>;}w0puwFp#M<9?`*+XsaRPoYTjOx-}_Y=F#r&suNtx;%}l8uVmgy;
zjSBvP#trR);%CjoT{^3#=?8ef!UT(XIzKiwM6nIKDK;o-eGRC}5`Ad)yI#Bfg_hyB
zVQ{XIj&+52-{7tg*Iv~Y=3~5>MgLY0h<!A8J_+vTT${teY9!kjb~Dn3+_ddDR!327
zPk0o`g)y8=%|`gto<+?A3uJDp9*vh6zc5xi7H(E?pR*QqsteN<1pwZ;iz^dg-_7X0
z7B-Wcn7@&8e~mO7MWncDh#Mz}v`)_Z70L4b!RibfslZM?#q#z~<w8)sigzy471v}-
z>F$fgoBJ)V#bvp~S}PT2`otFUVcuxwc1fS(H!A}<IwQ3#CF${j2fgk4KVI*_Px8jb
zW!Z8=uK|+;gDDAU@+1n&2JG4%k=aLA!E9{~;cD@D&Gu&y{;XqD%9SK+D>MnemkSX=
z3f+!Z+RysEXe!whcLNSi-Dj3K9e!=tX5b)m4u!aq03NT_rNC@N7@^1am$q6ZPX$q+
zRV+O&2aVg_QyMokwon}VDfCt@do(=S&rkAhSm$nxtZ3A0>6x>ABFG_-aUE}RJ>q><
za@Svr(#%HnSq$%*=Ff`Q0*;eO`_aS!t0p5@V_p7h)#RbG;9LENIsvn(UM9vh1Kee;
z5zNCoDeT!&{t~*^NuGiIXP#7JB3p<}lfKBX0?w}ec$FmH90eI<B#aNCQXtbmr|OQ+
zTWTm(xWoehGVZkdi4dh(N8b3@?dB@TVEM?039Cun0%r(?!y<@7Uf9bN*%(TTVq@9U
zZC|Mc8{G=gs)29^fHrHmRjD0BJ-qp_F?cl>XkFT#Mt*pI8NT4Tfxe{d{Uv6JrQ^H1
z&dq^G^49>q_@hqY;HnLFLe9xoFbJ+=fQtKLRoVu6(h{AgK42qqf$C0Ulr;R9WyXS`
zM(;-3?sB-(GN(XPk;iR239nRtHR*J(M5D~K-j(-?{OYJg3p@`nm?b(PLO!tXnOO|8
z2Q=wapM+Zz@BJ4??g7WkQ<bE>hq!KH?yO*j?$GtNj)Vj)4+mReY>o_-?z}W{%zxRx
ztl0m&cI@}<{*Vr>Pbhwk6aT~Ui*a<yedD-!MZq2{(s_$|hI3Ak3#5)5=*hqBft*#<
zpq887sjL3EC3x$i=i-O4*km-WQ-IyCnaedNGDBx!j!vO-5&*!L7uWN$=qS7Hv7}Lf
z!h?~+Pcg0cV41ykN~hLZc2n+V^?B?gCWON=4JPb?k!z3Xp8jr&bhsAj)Z~!}+`MbJ
zN?3|CJXq4)zfgM!(Vca8cV2bY<XPmk+gL>>v+0`ZzCf4fQRD+P-=~2tMdaGkfmIn1
z5zyRk39=rDntOVwKQc19A;dE_fc@wy`is#`p`Cqj-?2DuPKulkPf>d?@yiRj%GS#$
zqiY`w_Qg$WJ=#d1fDv7E`q_^6s1hbb8~4+p{MoM}fcOA>z~K=Jx1jGVzwYm5-5H)v
zx&;8V-MsGcp*n~@X0z0q!uURkuVCiIgBY}})>$pf{%axtz=lB27IzU`vwET(`PT}W
z@#S&E|2!JQEsh(TYXNDlNK?}fLT*(eOzWUNyNbI-bMu`78}GB_8(%1si@ART{jzoz
z)mT;KaHiGobFlF$)MG->`ECL1%Y!mrrClndj|Vj}H;~@O^At_(Iq!hj1nN=A@P<4G
z0bhu}AsXM+IDhJ}F~u#9Tqe7A@CC9~mm^#qO0_eURFJPY_Lh2jj2WEH$wQaYTU)ct
z8}mJ1Ggc8=scFPv%BMz>%!Q;$=k#c-?4f8a)z>Bf&15NI3=%x_oyEblH}H}EfjlLG
z9)Z8F7HMBlyTC}kj7t`|?f%m56RT;6iNQ}2Kawc8z_%D)*;*q`4kJxf=qD>|T}~zT
zOq`~3y}s3`C+-2s&_Z{WssBXmme;fj-AtXiO3dk)_yBGDL1f$^-tj5Y^m=hP##m{&
zgDHb}gt<2LM~Q$x0Zo}w;BTmfKwjOvrsW$XIDcp;uqvzh!-#u;)lgmNut`AT?3QOv
z6x>;V&U*52nX7joE?!%R<?ppVAL!N+>Pkz*FwP_!vB_Q;mp9i<b6|jME)|v=zjVMn
zYX!Xtxtq38tk>c2GY{eBnY!Nu^IZ8rTkW~u28km+iZ#^Fd(_`Fw0RtdELhi_dMPmR
z)<+se>oK&U#1!*Id8ask$V_(mJZUbK*Hj&T4F2Zz%UESj-?bdBH^%I4w{0g*mF3kR
zV2ZDt?um`22qpO9Z8iCJ$*x;Wc*T4Jq!mM_R?3+u$hx3+%B+%cnUr83xLBhWDgZ~w
zJ)>@_c%P;mv)(XZ7>@s&8*>)cFQ*$WJ2unL{j?h;0NqGTlOsqXc(^nmHl=ex2D&^l
z>+Lwg4+Q&V@(CBIOU>MxWfac{JWy~8f(H<XSmtIH{ZL3CZ+=!e0E@%daGKCUgFkCv
zuh1x<FU50%{(*2b2`h6;8kW#Ad7ti|VATHJT{{Qm;H8GJq05Znc_jy9f-b%47`p~B
zw+It@I?ZIAKRLG6n9rr`HG@92lD0KxvPWFX+D^RGAA7=>HN~B{AXDDa{dv^8HMxwu
z1zCF;x`IEus%iJVZg}_LgZ_}UKw9JnJXuH$GLl=*-bon6&#>mNn;#3E@Eq;!=eJ+6
z58NJ^iJj+KYnC~W5$1L~t*1C>Oa0w+aUo5xEU|i!kwJTUaO(NibE-zYD6KTZ=MKt<
zwt0tQrZ<spK~7>n*oj7|dseIx;ALLgx3^*5r}2WwHK*=1ttKa9*0EOv?e@x!e$81f
z;$jiwWPd<FdR9^V;JaGjd)lS5$B#ORi$A|G-{+PIWGd@xu8-BA2S)%|DvH<czqnV8
z1Hd)?X||YmvYbYFQoL$o7XA&&!0Cb7E9?W~hpu8cXboI)rj(|~jC!KiU58?!neC4`
z{Q}8a+IJ$R&t4k^@(f1xh!EH|fp2o}T=e{0`c7UjqscW;G0qx~=^=QSB4>+0^4j28
zBqLa*lxnIpnwrj)9(v3?k#f`$Yy6-PQ~tax!aLW2H+`>Ej#qni44%Hy?tTwQmw=xB
zNZLRPGFnHE_Sfb*f!!|EhkW4n`8_I6T<tzx6Fs!&?kj4l*N$}pTRw|Fx5=b+L2O2A
zAWBc~VZILKVna^I9`(Q$5-H{J3&KVL;I7ykW(Uj7&s|lefE;uD-K9xXZ^OM;`>2-g
z9fVMuob(c-a+(xt`wm5F(?nXSA$=-x$?i7o?8(PA;gfdQ#=6g;Y`@rjOoX{m^>cWq
zUHDfy58KgkVih7H_YGDHv>Ym?ACM#<6r}VJtguSq9jK<kPOS+HK1qD+x>~EKqwj&4
zR*g0j^GSl(T)gq|G4Va{eJlFvL+vteLW_e*-lX2mhx0SyvDRC=HEMSGYdcoaPnaw=
zi<<6QMFVsse148(y1$*v*SDy(z^*iGU67qPQZ4#5E!|toF3_D44W@QN{(kD+L<MLJ
z7kB8jm<YYX^RTy_oBGm6_3@bdh(smg8fhs|S;8oF@Uj$jRUh!=51f~Wo$7P%%K*g^
zR_JRXT0%*YGl@;mEN*{G2|a}TIG-8eS7kRNVfE?QHp}=5G}5U$oiMXhL|`;M;k`(K
zsYuU1GI*he%K#>>VYgMUF~cA%VB77U3$J+)RnjM{wJhV?ntxu!j%P`iayZPL)|+Kh
z%XF1Ti_U3nB$=OxZA#X<cP3T+Wf2gZ`#yb$?2FphN|BbTyN9GjsXv-tg1<x#GQ>9P
zgF)SMb&|#y*6>a+rv5l|htg3l4ybGBTb}zLS;Jf}o#4Q_CsL;2`BJxiFQQYZ2AD6h
z-Xri{BIrc2@IlV0%gpM!`HH@lC?>MOYbLWZz`9|W%l!7BqP;kkS*`K0CH=tAp6WI(
z&F6IPGan;q!7W1vxs%$sJm<t?QS%ffI}}reI>Jb1S%Yo`VP?Zv`i8Pa^G(as?qx=x
zX@%9hnzI&99#~WZ3i|zAuYYg8RrT_;^;z-Wy)0OkDl?7a>iXv$Yo&AYWDxZ_H8jh|
zWU0cdb{Wklj1BqX6dq%&T-iSrR=EX}>N!|7N5o9(_1Ct(uYZ;>Io+S~1V*KkczpJ?
z?|WXM<PpD7+H#3%cY|3^St`gDCUMEN&V2VRN#DB2Nkyl}HyyToC85x>PkpA7iyZYd
z*y@90Uimk&VP{wc1Z!8S=5ONEov$5b<#5ON^*wU1hxz>0PCn~h1AftCY-zrD`IFTZ
zM9O-0AA1GgayT`K3oSY`v8+HD2x(>!Woo+1lcb#0S-5u;{K+Z!EY^jS{(SDJ<=r`X
zH?ve{-B48gj0#W7(TC(j&y~ZkWzb`C%$7>DVaIXBu{g$y42iL<gMI4fe%@DT;8^A*
z8s0>==)KK8KfD+~fV@0Ar60Vw2${O!yXAjbSUA}6%;(;x)*mAIGc5a1j(Ztt0IRPI
zMy;>(7K(R`hL8NZD2eTEa=j`n5di2vy6B+XoX@|hMTofVOF!taeA+MFb`y8{+FyJM
za<7%r9n;!R^ix9g+WsMR(^9XN&U?NOw|`V$?VxewlJe7ik3SJW_ty3QdGuP@Pvp{L
z<DuttZ}_+N)mbPqA!U-avX{5O(}!v@!~Yx8jyG|UVP*|`!>;aDMv!euHWP-tU!N+z
zB6T_q5f_XlSOC7#<6vNkSZ|%R5?K1zo)vWQJ$rg_LMC#6K`C`;kVIXo`V`~M;B8(N
zN9kjJ@j-u-c5A>PYB{S}mlj0f)>U{>jUredt+`k@-3~rjP->~>jL$R^tuE64npTZ9
zp~n45zg;3H(RRHvsWKM7wY6(G`(oz5Bz8Z;n#9i`P<bWlUaPQO>Fbvl!RK2zmMVNa
zm$h~H54MH*?v{N28-1y34xSH<-Qz_1E`BjPg%_WT14trpOe>2#RXeaNeB-3}i}^N8
zGVY1)J!Sg%?}T{cz1tqsCtMb)p#+xurqdM?TYbl(_RQf~a#@O#DJ-Z$p9JAgrj$2^
zNXGX1!*AzyNgnktJ~#$pGvwu%sIBRBJ`vDuxLJ#Stq{r9!?I0%_<Q5cOKT#RJf5)R
zJ(E)X<1iH{Oh5Yd<fp_kb(W`SH=4sDp|`nIj%`Y`do|TnRD5abUh6;<)t<{8&{C}h
z3O-vnl**lLAm{(OI+$k*`De?mX6e+h`$*%maW(#ILV}amJ*&)tsPT4k(flUp=b_40
zWCv&rA+e5bVWJU*9d5jGUKMi`Q)x_Iee+?C@nF0%V7`XtoD|M}E@{b|$${H~(mr!x
z;-lG{Jlc(+&PJ53+s-l)!zQ>IfA4Z4NJIoD&f2x+iAI~vJAyt9%cWv(Vi~*qC5@`K
zSU%R6r_&;Nj~dt&!dWNNl#(g-OCS`?BR<LlH60&jSi6!Oj<cig8tObBX6kb`uqf-k
zz8w$t?p|diye{{LjFp!E2&%-ITVfQ)&SBBdNMKZtkoW;Z+Xe54;!RNeIUNiPoEv*e
zR#5_vRCP?<Js0RO*F;0L8l<)bmHhri%lJZJab3N3x%-$~#YcmjGQG{Sg@G6C<$RbP
z3%+en1owvWgRV#_zA-sJ74Y*1bd;OTGjlNwNpdXacSoRA@>MTKo|jM<B_^5@2iM3?
zZwgdnb_*3@bAlIQG*I0{`Q$5oK!BJE)DvWNqR8a_c6*;Ea}3gm0WPxp{4Ec3c6~kF
zru)Vi+!FHbY3eB{6e~IoOI7tSI-I=Utu+i3o3U}(wU!>ZWLt4I0Ie``SE@fW3$(Uv
zg&cc@U|HM@cWa#Gm;8jwz0S{riM#y!mL(+gPL@%qtfPvZLUmCC3HtlHtw7Hi)|zNO
z(YEkU3*@W(31RgRi)$x+`myuS{+MD1ngLPDIA+K7idAk66v=SBZOFVz6PoAn`)nZA
zWWT@Eq)mnP6Da7={{w~ace1${Kn4YEQWG1>DL)Sng73jVpF{k0yU3%HNSd=_Ayz29
z=1y+R+y3~?h=H`KsSJncFu_C4QCJ?I+x58hN*5Psqy?X~n$Hu}v>72S*}$9rRX6Aq
z&^K$PYz`SAv?3}#V9TW5`%jcr1LDG`-HXt2P|+4o&4a0l&%I~w@eZw&;j`bHWI#Dr
zOg6V<A(2<HMk2sri{Uhm#njkPMhr$_*S1uwIl$bo6?s=v2!vwxcuw~@jDV@7M*p)z
zH+X(Yk$XO^?*I-_7rF%1rZNbB`CWed=FvcHGfOcti-dMKri7MkUR(Q>=y`<#97NAx
z1g%&1A(dQvageD(cEoS*V7!d(<Ub_c4f$IhQTIi#5VcuSCuX8e<8Z)D;h1EqH5gJL
z*Xp!N_%R6Gd6(zZEYR!ST&~`#N1C2$+I*;3uK&hRCXo0)BWqzTMWdPSPZ$b0o~6SB
zK;AlH8fV$FqMo8#XuD))9qUj6MJ)oSW>5}dD)q#wxb#Gib>^nBUVLR4y_R814UGTK
zBs7&JLTtp|{u^^!<wavD!x9Z0sqMgy^cs21jWa6csY$ij$^i)pxy4A{AjRuu_?OyN
zjFozP=T2~t&+XI3H)pbs5aimTCHsC#>s0LWq%!8;U>$fKolgej-d0z5k@2mpyp=q2
z=LWda`}~R+{7$WLNcQ_t_E%Va(1tVjA^R9#;v>7@0E8hAtZ<Bq`!5<7Sax<mwN*EK
zoWebNpkl9zQ$AcNo1~V~jYfxr2G_SDnj^G2#TDkW$DE1N?cpv=j#V4|3pyhKz@-Au
z06U3432RlB(Ha?+);LRy#pcUm$;m?rK%oSf8vUC_^FMiD$*lh0_BONGYEZL9_K~Sc
z)uv6O4tn=`HCI!M53ZRS(~UbQAN7MKA>=3P(Q~4#jnbySiahx2pT_BoopgZ9r5_K|
z<Zsj)ZOH7l7OB`(nZ>cByh~X<$Td$0f3x#>wR5pJ)Q+-ndv&Q;_@wLpoqkmhj<x>b
zl6-{SJGp+s=QaGe`~0+!ZTWR0ZLOv|{ARoGR7U_tU$y16rC(VEsuE&$K)Q){d)QJS
zUrtp_!)0)uTz6P(hUN!A+ACB2?g*q|2YDDb_SQOQcTRAl5_J2Nk}N5H+Li0BBVO3G
z^|Om#xX1p^vR^GH)l~cX-XkN=Z{|M^b|C5=m&(v-m8+B)eN4tc->aOLG%%T`NfG7y
z9DQ-~THF@8?@(e%72-w-8|x>qJ;S`Jvf^(m8zW|2sQrhkvf+xlUx#JPHMUV#YS86{
zV=qGZ^G4MMEVxS#BV_DFqjver!l27TwrV3iVP$)6=jFvf*o8^vETg$LY}=`3c^i9l
z&k2l^t5%OEkUQMk4!75;Pk1eRj$||~L|e0Xi>-_9i4MlEyKlkDxu}u0mhfqpk=B09
zZK*MT<kaW<Ens(0QxhfzRh{9La%>lu?lXiOEz^LSBc)yha;I+<FnYDz-mUs6xKSk#
zXk^+r&ow+xk4E;j)MAYJ9$>8+C@}>|d5A5xY(iFMtvwNX4a3M1YM%l3jIB13L9onD
zMS<f%4MAG7k~7?KHe>3kZVFZ<orNX7$4Gt>3EflPV;`6M2<BA}-Qw`5-=SDmB&kg-
zloKmM(-??Hw(jz83h0+bls{)o_X!Z@tUJ4&oicrV(lB}0vqiew-Dl}&@XHF5ha?Ym
z>S1hoT4s9p(tF_Ixb67eA-~Jf6tH}rh-BpwgAz|VKc{LWz9Nbqxr0(L@mtr17LlM|
zMr`RYdkQrAk*}uO${v*!33&W`OXpGzr^DH~ik>YruvAyy^bK*=9~C)29a~_NpuM)g
zJY^5|Nxb#jcd#@tU7zaKO8Yp2_brJt-38Q{y~CTkh+Dqm{_X5(-m&<Cjdb2l2JdZg
zI^0#`yutqe8WaDrDE_+<&dTt(I2?I#R25DC(7(SvdzDA1OwA(N{LS$NSE&TSL*?ma
zmFX<YYdCeyc(txxZ}gz3&!yx7!wi#7{fwQhKJ8FNPL2REvQ^$&!u2lAweVrx1wC=!
zD^<=jyPCm$ne2}!w=s@^g(<%@{dWRM?d^o)je8r>*(YhsqZc1@R#V@lB{N&3IvaZo
zY4OjcZ5;7r5`!-YMn0#H$yc6#N1HEJZEvGbUJd^m&llif(p;TBy;eEj;98og>~wi2
za;A!Yg1-fi`ybB9+%wmQ6Loa=@O>Qv2o7+>kYNH^sp3x$-I;vhk_KuQZsIDDd#jtK
z=Avk1NyU;i3`uurL^4_lDP!axE||AwVoKh*y4rcA5A?SWXDOdgq|Y+7yOGvZTkOAD
z9`Cvp>RP4qjWuj}JTXpWzK}gfN*9`zXW+`EsW84J)V03ClO(boQv46vw;MHJ=Mg+U
z!;p$DnSx*yR9iwN2-~h~mYVH9+FSn683-;^bm7*|jVbZhHQSdqg44Jv*1A3Y7wK~;
zsXLZ)DdQM-VIuF#ODN@CIo1K1C#^2Y%cmhk>AZyOzgK$Ej2e?dyQSIhDaQyod(5xQ
z#~)%ESKrCMDAN#s$g2jiIZ}=2*ke{6lYcL468Hfpk7(MG%eJn!>$-L=9Bb5gNvZtM
zkB6f<r*PDleRy(aoyBz!^^oYuKFwR9+Rx@;vWQHSq&z*@e6kpYnhaGlakS&sR{qdd
zqv;v)tYP}&?}=$KA@glxYDWIX;`vmb7CiAkM%&(HoZZrfrEs2_4{5Jz=#Dm~N%UKx
z&sTAzGw`j?$G%ccm{7|w)S5?g*W4+nYx~YYdqnoylf}vW3aP`Tjr438BX&G)ai1Dy
z@p9W(UK`Bx^HR$V4ArLfupW#Rw;l|gty(5G-@s8gl^ITP*iM1Z(9Dzc(%F8TmXzYd
z4}Sh-s?2dMd6COshCW}(;Dy&zh#3a_G!qT1bPz~f^3GMVL^tj7wRjOFlGSp4HS;s6
z8-#ej^GQWR^dj$XJDX!I?;Gj<6mmLrE#58TGKk%4hJ=-d6v}-_{m|q@MvJM3mo-(`
zBRR&FrN&*Ld$%_$51oElS~fS@$1hAaYNx4c(Q3py)s#4pB*Vwgh;&qZZkXdNrC7(Z
zsj~T1yWqj!YXmffiWxKz-6joq|3qeQu@kos%_{=zous_-srmhkp3<brFvGl@SmXT$
zfiwjc^D*Qq--umT66fO$!A&I#{<*SEgITqld}YfE>CZTQEgzfeMe{bw$nZZ>xPX(V
z8-Mh*(ED`{ELy|KWwHf8uvp(4M$|6@#F7Tkg=&U*#oIC!*TH+}&Qj#ZFh^{`5+9pI
z^Tba2tLzcgm!JvxU{{K5=liFYZ%^pX6&yJl6?C4yaI8H%(<qf>Tb4YF(aky*vJlVT
zVpz#rmJJ3jS~;PcOE1PW37(zOvV$;h?i&nvNn*F7j=f#y4W5?uc#HkC_ev90YV_L2
zin2(djY_CRU<`#L%fiC2THdkX77f|W{X0SQw#|_ULXATP`;6DO9+<84)7nKnB}NfS
z8#L_ns|EZ;*;Zd=i0GIV;7P~ld10#C@>)X_dkTK~(si+um05mB-xBTVUULOTlNcYq
z%+R90ecJavt7q2UO2D<(B^Lgy-_rEU5O<t2sRpDnsA20+7_uHnzQQaxR2a>>!xE}+
z?p(TkAbsItA`y9(7ld>gKG33^W!c;N6<B1O=&eHk0<kv(K3AtbS1}M%m!Z<4ofuOc
zA9bVZEp8=RE9|BF67z80FM0n}8Ym9Mm?aRh6251f1%>?nUd++Rj3||(&=D3P*=|`h
zmT<J8FcRSQD^V+e1!D+Bcv~e!qkG%qtO`nBCgS}H<PBz>X*ZOV^@yS>sUJSRZuEUu
zY0e57Py4w|D?p@hpv-^W+(By!QlT%XxrkR?)c7qAT)B%qGn~gveMSd=b4KLo3$x`o
zT|SD37&aX_<VVd~oC`Fit921ckVBG-(~Gj_3;P3$HkOJy8nA^x>@I_cK&=EjXev8_
zZCSWSjUmGFT2#;qj&%JxSa&CJLpLW-d<g5Wcb54TA7|`PSWX^C6*x>W_5J8AMBZXU
zCzZ%=6%|$e!N}V|)U*-uRlNW4f8xoZcmDR|^xorDo{WZ`Xc2?WKRl+x3~oYMVHziI
zbc((y1NjrnhwQDs2hhe>QKaXF>O!KUCk;@E6~~B5nMjT|N|EWmU*@ZTQ4><`M(uqU
zHII{A;i@$XXxsZnrEsIv^As6}=?V5RdE@y!6KcXCgc|~x$<~liA%)!rC$-KE?=*(2
zU|dQ<fIFnGdeFpoSnv0ApXO>-AqEwOt`i(_VBrrj7B1WSUK6B;-7ms9CS7Et?G_We
zyiy1G3Cj6+2o&iF<b~#%lu})8mYu04nxl~87aQNjtNJbKYm?Q*ImOG;5NW6AVcp!?
z;B!z1zbeQPy&#a)`9yI>1g)8RWdsrxYdOLxO^V4UJdWyyJ%H90tx#Yb6}?oJea+Ve
zcK_76j%hEm>Hgj5)tZlC?d+*p__V)$Bi0UIyQELZ!&|7AQHjW7-E^Pp?D*a$%PBzC
z`LLI1-Zhd&>7$7wf!aKA4M9?HU7fuL%hg1eTl5k&`-_Nmk>#7&7cGM?C{yP5)DJU7
zG+bEcEt63<j?^qq;Dc2X^q3Q!Vo`p!u)U0khZkD57k}}i__I5{Tc0iyiw5z$>o%75
z0lBC0m1;=la{xdHP2OH+d9F&V`FMW#Aj4Co_AU7gGoZka28XA6>uL@%biRrmz^@)y
zFZ>0kN7k5^x#v@Qt^oAZwqQ%^0_82N&<N1x0pkLy+V>TmKIc*(^Dpii6B#twEidM9
zHOB`29sAAC=461TyN1JhJaXa$(~_yCH_lqb{#WES*3JJ)ZZl-IhgRMZueZZ7wzlDC
zSGro8Iqiy@stY68%_C1><S9W*(k+G%GfHEGi-UItO%Z%}KYBT8SNnO=1ww!4?Pl&7
zBXLos(eSbyjQlxT40oLo*-zIo?Hvi4$>8@@GvBSwe4+GUK9L|Q@ndinIpJ#zDcrj}
zqORn~Ix}XqY6n_%I=1wODrVgNXPJoK|5YY}xU(6dS!LONOPGp1cdf7ZAhGO-ojvNL
zb9_5(8L85kM(-wXQPcDbVIQe-HnH83-1y8~9>aT+6ChWl9NIRZWx=W3y!X1lamCBP
zEv)Dgj#TvC%AlkcfojzTz&|UG?;QabJ@Sux7J)X$86)&ih+G;UF#5K+nvxbZ63daw
zJLq(f^HlYiF1$HKkjuAL95@o+(?2G4ZWj|sn@ErUr-~%rt8kVOm%pzf*+0ri#-X0I
znH@_yx8u~cp9?a3Dr!=w>QM&uXmtHtM{(Sno_!ZnDjQ}ka6}-Q+8bEmDP$o5|1`%W
zQslfco;Y$P6FEH>;TZL*ZDs{k2g$OU`iAA<Bxb(=>o*8?KEm$-(lbwYj*_OqsIgpY
z$A>=j->l9P@ayv~9IGrODnfu}()_2-$eUPP(Ft#8yxa~!KhtmQh%<UzbF04}GPzgj
zMFzxqb(-Q~kLR^+s-??kC}~Z>D`o|`mj0?PSseX>KI0v;gippEvg1+%@XO=m8-@bi
z*8Yso_-TiD-^QN3A)*XzW|h!o1@e1n?2c<PhAgy?N<<n6l+iXT$+P1G9Q?#-wcEL&
z_4i?RoxCCEpya=WKCWHXD;39w;U^Ltx0rFuBKi!8CB#)d4At`j`5)vw+kf-(MIG(C
zWctmm=Xr?&N#-Y~@1wJ!Ne#2Ry07-w@w!LkqN&9}ef=)6&960s_C9Jq9!ytwP48*8
z=yY)7r39<$P&n9{t#qphegA6oNenL|^4s}1qcT>|LqkU;cR@e3&Z8bP&Bc*-?OMMM
z>`bn4(h=a!qC4-4<$iiE#OP6|mH~wOp6kC?pZKM=3`!888~(r5Cj@(Ju1GT`;*D>y
zR+iLC6p4*QC0$&Jr4@~47(2V4*RAX2#B`5hZyyPaxTIc{r96(o;VaNZoI$tp^#x8W
zt+4-C;14GUO=jCA2mf{;y)v?p;k9G0i`Jg~z~2Gg<ROLZntOloWQz9Zgua1?r{IGR
z4l<QYB$;U0;v?Rst;pEos$klviiM+J=pLCr=h}~bqRMu-wcwFBqv4v)5&sRo-z)E}
zH|aJC{%ZuGIOB<sP5SAjBsW7CN?P*E{`kffKK`P6|1qxnU-($ow`*Orox4_izB@j3
zPurVY=lPW|VQE+EPFOqkwwI4FooS`lSzN>Xk#+6z#GSI4$LNW$zqAQ$dq3sRRaEMo
zPYYFR4ZL^R{qf41EmXo)a8nc5_s(8lsj0-43-2;%NAD{b^Yi?wmJa|@V~Yq!ot0XR
z6G9HSj9(2Ceyx2J6x&IxY+*XB+Gvv8&e$(t;76(Fo_Anq$u}tRNa+WF5kC5O)%}nc
zG)mpnN2R~oyoBGn0O=FNR@K3Cu+|ulV|CQ*l|nwc1N`XwLg`Q)6+mLhsQaj*YS4er
zTAG%(p^6m7qWTBQC`C?iP{#Cjz&jhn!7YZ?%bilFE4%Bu<O|x1wB~M9jhpG}eCoP5
z^JS=f4-@nEGtxWw$Kv|SvQhNLZv(Yo&MvN96W4Z$4QgGyl&>W7`SPbG<@n8CXmY*t
z51KT*97TRqIIXNnxrR$WgYB>Fw)^Wd6Lw9nGW_H23^e7FgBOPf1vhZ#(UkvPz#xEL
Z5>$=gz4!k#MRql@@-iyYrIPPI{U5^595Da@


From c68ad1afa3e654f62e319341cea29ff7afc2d667 Mon Sep 17 00:00:00 2001
From: rogersoMS <44718379+rogersoMS@users.noreply.github.com>
Date: Tue, 17 Nov 2020 15:23:04 +1100
Subject: [PATCH 169/209] Adding more examples and Intune reporting bug

Adding changes. Awaiting peer review from Lindakup and ddsilva
---
 .../mdm/policy-csp-userrights.md                  | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/windows/client-management/mdm/policy-csp-userrights.md b/windows/client-management/mdm/policy-csp-userrights.md
index df12efd32b..b6f2c4f536 100644
--- a/windows/client-management/mdm/policy-csp-userrights.md
+++ b/windows/client-management/mdm/policy-csp-userrights.md
@@ -75,6 +75,9 @@ Here are examples of data fields. The encoded 0xF000 is the standard delimiter/s
    
   If you use Intune custom profiles to assign UserRights policies, you must use the CDATA tag (`<![CDATA[...]]>`) to wrap the data fields. You can specify one or more user groups within the CDATA tag by using 0xF000 as the delimiter/separator.
 
+> [!NOTE]
+> There is currently a reporting issue in the Microsoft Endpoint Manager (MEM) console which results in the setting reporting back a 'Remediation failed' (0x87d1fde8) error, even when the setting is successfully applied. To verify whether the setting has applied successfully, check the local Windows 10 device: Event Viewer>Applications and Services Logs<Microsoft>Windows>DeviceManagement-Enterprise-Diagnostics-Provider>Admin>Event ID 814. This issue is the result of the use of the CDATA tags, which are neccesary when more than a single entry is required. If there is only a single entry, the CDATA tags can be omitted - which will resolve the reporting false positive.
+
 > [!NOTE]
 > `&#xF000;` is the entity encoding of 0xF000.
 
@@ -84,6 +87,18 @@ For example, the following syntax grants user rights to Authenticated Users and
 <![CDATA[Authenticated Users&#xF000;Replicator]]>
 ```
 
+For example, the following syntax grants user rights to two specific users from Contoso, user1 and user2:
+
+```xml
+<![CDATA[AzureAD\user1@contoso.com&#xF000;AzureAD\user2@contoso.com]]>
+```
+
+For example, the following syntax grants user rights to a specific user or group, by using the Security Identifier (SID) of the account or group:
+
+```xml
+<![CDATA[*S-1-12-1-430441778-1204322964-3914475434-3271576427&#xF000;*S-1-12-1-2699785510-1240757380-4153857927-656075536]]>
+```
+
 <hr/>
 
 <!--Policies-->

From 207c534880c3d78a90f98d3575088d295899e1b6 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Tue, 17 Nov 2020 14:10:32 +0200
Subject: [PATCH 170/209] Update configure-server-endpoints.md

Clarifications to avoid customer confusion about requirements when onboarding via Azure Defender for Servers.
We've had support cases where this was not clear enough and customer did not add the workspace configuration so onboarding never happened.
---
 .../microsoft-defender-atp/configure-server-endpoints.md      | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 0af0c2d391..90716095ee 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -128,6 +128,10 @@ Once completed, you should see onboarded Windows servers in the portal within an
 
 After completing the onboarding steps, you'll need to [Configure and update System Center Endpoint Protection clients](#configure-and-update-system-center-endpoint-protection-clients).
 
+> [!NOTE] 
+> For onboarding via Azure Defender for Servers (previously Azure Security Center Standard Edition) to work as expected, the server must have an appropriate workspace and key configured within the Microsoft Monitoring Agent (MMA) settings. Once configured, the appropriate cloud management pack is deployed on the machine and the sensor process (MsSenseS.exe) will be deployed and started. 
+> This is also required if the server is configured to use an OMS Gateway server as proxy.
+
 ### Option 3: Onboard Windows servers through Microsoft Endpoint Configuration Manager version 2002 and later
 You can onboard Windows Server 2012 R2 and Windows Server 2016 by using Microsoft Endpoint Configuration Manager version 2002 and later. For more information, see [Microsoft Defender for Endpoint
  in Microsoft Endpoint Configuration Manager current branch](https://docs.microsoft.com/mem/configmgr/protect/deploy-use/defender-advanced-threat-protection).

From ea1ec0d6d398d8c3a0b4c502ecf7d1f36a61f486 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Tue, 17 Nov 2020 14:22:01 +0200
Subject: [PATCH 171/209] Update configure-server-endpoints.md

minor edit for better readability
---
 .../microsoft-defender-atp/configure-server-endpoints.md   | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
index 90716095ee..3e1ede3c5e 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints.md
@@ -128,9 +128,10 @@ Once completed, you should see onboarded Windows servers in the portal within an
 
 After completing the onboarding steps, you'll need to [Configure and update System Center Endpoint Protection clients](#configure-and-update-system-center-endpoint-protection-clients).
 
-> [!NOTE] 
-> For onboarding via Azure Defender for Servers (previously Azure Security Center Standard Edition) to work as expected, the server must have an appropriate workspace and key configured within the Microsoft Monitoring Agent (MMA) settings. Once configured, the appropriate cloud management pack is deployed on the machine and the sensor process (MsSenseS.exe) will be deployed and started. 
-> This is also required if the server is configured to use an OMS Gateway server as proxy.
+> [!NOTE]
+> - For onboarding via Azure Defender for Servers (previously Azure Security Center Standard Edition) to work as expected, the server must have an appropriate workspace and key configured within the Microsoft Monitoring Agent (MMA) settings.
+> - Once configured, the appropriate cloud management pack is deployed on the machine and the sensor process (MsSenseS.exe) will be deployed and started. 
+> - This is also required if the server is configured to use an OMS Gateway server as proxy.
 
 ### Option 3: Onboard Windows servers through Microsoft Endpoint Configuration Manager version 2002 and later
 You can onboard Windows Server 2012 R2 and Windows Server 2016 by using Microsoft Endpoint Configuration Manager version 2002 and later. For more information, see [Microsoft Defender for Endpoint

From 991070cce473892719b8a7ef3755a2fce5523ac8 Mon Sep 17 00:00:00 2001
From: Evan Miller <v-evmill@microsoft.com>
Date: Tue, 17 Nov 2020 08:21:35 -0800
Subject: [PATCH 172/209] Add missing policy and 20H2 identifiers

Adding in a missing policy as well as super script 9s for features added in 20h2 and linking out to the HoloLens release notes for 20h2
---
 ...es-in-policy-csp-supported-by-hololens2.md | 32 ++++++++++---------
 1 file changed, 17 insertions(+), 15 deletions(-)

diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
index 739826c640..e07209369f 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
@@ -50,17 +50,17 @@ ms.date: 10/08/2020
 - [DeviceLock/MinDevicePasswordLength](policy-csp-devicelock.md#devicelock-mindevicepasswordlength)
 - [Experience/AllowCortana](policy-csp-experience.md#experience-allowcortana)
 - [Experience/AllowManualMDMUnenrollment](policy-csp-experience.md#experience-allowmanualmdmunenrollment)
-- [MixedReality/AADGroupMembershipCacheValidityInDays](./policy-csp-mixedreality.md#mixedreality-aadgroupmembershipcachevalidityindays)
-- [MixedReality/BrightnessButtonDisabled](./policy-csp-mixedreality.md#mixedreality-brightnessbuttondisabled)
-- [MixedReality/FallbackDiagnostics](./policy-csp-mixedreality.md#mixedreality-fallbackdiagnostics)
-- [MixedReality/MicrophoneDisabled](./policy-csp-mixedreality.md#mixedreality-microphonedisabled)
-- [MixedReality/VolumeButtonDisabled](./policy-csp-mixedreality.md#mixedreality-volumebuttondisabled)
-- [Power/DisplayOffTimeoutOnBattery](./policy-csp-power.md#power-displayofftimeoutonbattery)
-- [Power/DisplayOffTimeoutPluggedIn](./policy-csp-power.md#power-displayofftimeoutpluggedin)
-- [Power/EnergySaverBatteryThresholdOnBattery](./policy-csp-power.md#power-energysaverbatterythresholdonbattery)
-- [Power/EnergySaverBatteryThresholdPluggedIn](./policy-csp-power.md#power-energysaverbatterythresholdpluggedin)
-- [Power/StandbyTimeoutOnBattery](./policy-csp-power.md#power-standbytimeoutonbattery)
-- [Power/StandbyTimeoutPluggedIn](./policy-csp-power.md#power-standbytimeoutpluggedin)
+- [MixedReality/AADGroupMembershipCacheValidityInDays](./policy-csp-mixedreality.md#mixedreality-aadgroupmembershipcachevalidityindays) <sup>9</sup>
+- [MixedReality/BrightnessButtonDisabled](./policy-csp-mixedreality.md#mixedreality-brightnessbuttondisabled) <sup>9</sup>
+- [MixedReality/FallbackDiagnostics](./policy-csp-mixedreality.md#mixedreality-fallbackdiagnostics) <sup>9</sup>
+- [MixedReality/MicrophoneDisabled](./policy-csp-mixedreality.md#mixedreality-microphonedisabled) <sup>9</sup>
+- [MixedReality/VolumeButtonDisabled](./policy-csp-mixedreality.md#mixedreality-volumebuttondisabled) <sup>9</sup>
+- [Power/DisplayOffTimeoutOnBattery](./policy-csp-power.md#power-displayofftimeoutonbattery) <sup>9</sup>
+- [Power/DisplayOffTimeoutPluggedIn](./policy-csp-power.md#power-displayofftimeoutpluggedin) <sup>9</sup>
+- [Power/EnergySaverBatteryThresholdOnBattery](./policy-csp-power.md#power-energysaverbatterythresholdonbattery) <sup>9</sup>
+- [Power/EnergySaverBatteryThresholdPluggedIn](./policy-csp-power.md#power-energysaverbatterythresholdpluggedin) <sup>9</sup>
+- [Power/StandbyTimeoutOnBattery](./policy-csp-power.md#power-standbytimeoutonbattery) <sup>9</sup>
+- [Power/StandbyTimeoutPluggedIn](./policy-csp-power.md#power-standbytimeoutpluggedin) <sup>9</sup>
 - [Privacy/AllowInputPersonalization](policy-csp-privacy.md#privacy-allowinputpersonalization)
 - [Privacy/LetAppsAccessAccountInfo](policy-csp-privacy.md#privacy-letappsaccessaccountinfo)
 - [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](policy-csp-privacy.md#privacy-letappsaccessaccountinfo-forceallowtheseapps)
@@ -83,9 +83,10 @@ ms.date: 10/08/2020
 - [Privacy/LetAppsAccessMicrophone_ForceAllowTheseApps](policy-csp-privacy.md#privacy-letappsaccessmicrophone-forceallowtheseapps) <sup>8</sup>
 - [Privacy/LetAppsAccessMicrophone_ForceDenyTheseApps](policy-csp-privacy.md#privacy-letappsaccessmicrophone-forcedenytheseapps) <sup>8</sup>
 - [Privacy/LetAppsAccessMicrophone_UserInControlOfTheseApps](policy-csp-privacy.md#privacy-letappsaccessmicrophone-userincontroloftheseapps) <sup>8</sup>
+- [RemoteLock/Lock](https://docs.microsoft.com/windows/client-management/mdm/remotelock-csp) <sup>9</sup>
 - [Search/AllowSearchToUseLocation](policy-csp-search.md#search-allowsearchtouselocation)
-- [Security/AllowAddProvisioningPackage](policy-csp-security.md#security-allowaddprovisioningpackage)
-- [Security/AllowRemoveProvisioningPackage](policy-csp-security.md#security-allowremoveprovisioningpackage)
+- [Security/AllowAddProvisioningPackage](policy-csp-security.md#security-allowaddprovisioningpackage) <sup>9</sup>
+- [Security/AllowRemoveProvisioningPackage](policy-csp-security.md#security-allowremoveprovisioningpackage) <sup>9</sup>
 - [Settings/AllowDateTime](policy-csp-settings.md#settings-allowdatetime)
 - [Settings/AllowVPN](policy-csp-settings.md#settings-allowvpn)
 - [Speech/AllowSpeechModelUpdate](policy-csp-speech.md#speech-allowspeechmodelupdate)
@@ -93,8 +94,8 @@ ms.date: 10/08/2020
 - [System/AllowLocation](policy-csp-system.md#system-allowlocation)
 - [System/AllowStorageCard](policy-csp-system.md#system-allowstoragecard)
 - [System/AllowTelemetry](policy-csp-system.md#system-allowtelemetry)
-- [TimeLanguageSettings/ConfigureTimeZone](./policy-csp-timelanguagesettings.md#timelanguagesettings-configuretimezone)
-- [Update/ActiveHoursEnd](./policy-csp-update.md#update-activehoursend)
+- [TimeLanguageSettings/ConfigureTimeZone](./policy-csp-timelanguagesettings.md#timelanguagesettings-configuretimezone) <sup>9</sup>
+- [Update/ActiveHoursEnd](./policy-csp-update.md#update-activehoursend) 
 - [Update/ActiveHoursMaxRange](./policy-csp-update.md#update-activehoursmaxrange)
 - [Update/ActiveHoursStart](./policy-csp-update.md#update-activehoursstart)
 - [Update/AllowAutoUpdate](policy-csp-update.md#update-allowautoupdate)
@@ -122,6 +123,7 @@ Footnotes:
 - 6 - Available in Windows 10, version 1903.
 - 7 - Available in Windows 10, version 1909.
 - 8 - Available in Windows 10, version 2004.
+- 9 - Available in [Windows Holographic, version 20H2](https://docs.microsoft.com/hololens/hololens-release-notes#windows-holographic-version-20h2)
 
 ## Related topics
 

From a9a7b85b6836362b122250851eab8319c16d1baf Mon Sep 17 00:00:00 2001
From: Evan Miller <v-evmill@microsoft.com>
Date: Tue, 17 Nov 2020 08:35:05 -0800
Subject: [PATCH 173/209] page visibility

---
 .../mdm/policies-in-policy-csp-supported-by-hololens2.md         | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
index e07209369f..8ddb479a92 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
@@ -89,6 +89,7 @@ ms.date: 10/08/2020
 - [Security/AllowRemoveProvisioningPackage](policy-csp-security.md#security-allowremoveprovisioningpackage) <sup>9</sup>
 - [Settings/AllowDateTime](policy-csp-settings.md#settings-allowdatetime)
 - [Settings/AllowVPN](policy-csp-settings.md#settings-allowvpn)
+- [Settings/PageVisibilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-pagevisibilitylist) <sup>9</sup>
 - [Speech/AllowSpeechModelUpdate](policy-csp-speech.md#speech-allowspeechmodelupdate)
 - [System/AllowCommercialDataPipeline](policy-csp-system.md#system-allowcommercialdatapipeline)
 - [System/AllowLocation](policy-csp-system.md#system-allowlocation)

From b83eb4e191a0564d1c70991c25d80728ef11ec6b Mon Sep 17 00:00:00 2001
From: Evan Miller <v-evmill@microsoft.com>
Date: Tue, 17 Nov 2020 08:39:57 -0800
Subject: [PATCH 174/209] super9s

---
 .../mdm/policies-in-policy-csp-supported-by-hololens2.md    | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
index 8ddb479a92..bd4bcafd21 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
@@ -96,9 +96,9 @@ ms.date: 10/08/2020
 - [System/AllowStorageCard](policy-csp-system.md#system-allowstoragecard)
 - [System/AllowTelemetry](policy-csp-system.md#system-allowtelemetry)
 - [TimeLanguageSettings/ConfigureTimeZone](./policy-csp-timelanguagesettings.md#timelanguagesettings-configuretimezone) <sup>9</sup>
-- [Update/ActiveHoursEnd](./policy-csp-update.md#update-activehoursend) 
-- [Update/ActiveHoursMaxRange](./policy-csp-update.md#update-activehoursmaxrange)
-- [Update/ActiveHoursStart](./policy-csp-update.md#update-activehoursstart)
+- [Update/ActiveHoursEnd](./policy-csp-update.md#update-activehoursend) <sup>9</sup>
+- [Update/ActiveHoursMaxRange](./policy-csp-update.md#update-activehoursmaxrange) <sup>9</sup>
+- [Update/ActiveHoursStart](./policy-csp-update.md#update-activehoursstart) <sup>9</sup>
 - [Update/AllowAutoUpdate](policy-csp-update.md#update-allowautoupdate)
 - [Update/AllowUpdateService](policy-csp-update.md#update-allowupdateservice)
 - [Update/BranchReadinessLevel](policy-csp-update.md#update-branchreadinesslevel)

From 69f1e8d666aa1c59bcf8252f0bda97fd8d9bdefe Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Tue, 17 Nov 2020 08:46:53 -0800
Subject: [PATCH 175/209] Update
 windows/security/information-protection/bitlocker/bitlocker-overview.md

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../information-protection/bitlocker/bitlocker-overview.md     | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-overview.md b/windows/security/information-protection/bitlocker/bitlocker-overview.md
index fe5a483d05..551b239d72 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-overview.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-overview.md
@@ -74,7 +74,7 @@ The hard disk must be partitioned with at least two drives:
 -   The operating system drive (or boot drive) contains the operating system and its support files. It must be formatted with the NTFS file system.
 -   The system drive contains the files that are needed to load Windows after the firmware has prepared the system hardware. BitLocker is not enabled on this drive. For BitLocker to work, the system drive must not be encrypted, must differ from the operating system drive, and must be formatted with the FAT32 file system on computers that use UEFI-based firmware or with the NTFS file system on computers that use BIOS firmware. We recommend that system drive be approximately 350 MB in size. After BitLocker is turned on it should have approximately 250 MB of free space.
 
-Fixed data volume or removable data volume cannot be marked as an active.
+A fixed data volume or removable data volume cannot be marked as an active partition.
 
 When installed on a new computer, Windows will automatically create the partitions that are required for BitLocker.
 
@@ -100,4 +100,3 @@ When installing the BitLocker optional component on a server you will also need
 | [Protecting cluster shared volumes and storage area networks with BitLocker](protecting-cluster-shared-volumes-and-storage-area-networks-with-bitlocker.md)| This topic for IT pros describes how to protect CSVs and SANs with BitLocker.| 
 | [Enabling Secure Boot and BitLocker Device Encryption on Windows 10 IoT Core](https://developer.microsoft.com/windows/iot/docs/securebootandbitlocker) | This topic covers how to use BitLocker with Windows 10 IoT Core |
 
-

From a7d1facfd2bd7bc13686a8bc295b045a1c177640 Mon Sep 17 00:00:00 2001
From: Nagappan Veerappan <naveerap@microsoft.com>
Date: Wed, 18 Nov 2020 09:46:54 -0800
Subject: [PATCH 176/209] Sentence correction

FAQ : has typo and sentence correction.
## Can I disable the PIN while using Windows Hello for Business?
---
 .../identity-protection/hello-for-business/hello-faq.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md
index b96b25c8f4..be2ed0eda2 100644
--- a/windows/security/identity-protection/hello-for-business/hello-faq.md
+++ b/windows/security/identity-protection/hello-for-business/hello-faq.md
@@ -144,7 +144,7 @@ Beginning with Windows 10, version 1709, Windows Hello for Business used as a sm
 The smart card emulation feature of Windows Hello for Business verifies the PIN and then discards the PIN in exchange for a ticket.  The process does not receive the PIN, but rather the ticket that grants them private key operations.  Windows 10 does not provide any Group Policy settings to adjust this caching.
 
 ## Can I disable the PIN while using Windows Hello for Business?
-No. The movement away from passwords is accomplished by gradually reducing the use of the password.  In the occurrence where you cannot authenticate with biometrics, you need a fall back mechanism that is not a password.  The PIN is the fall back mechanism.  Disabling or hiding the PIN credential provider disabled the use of biometrics.
+No. The movement away from passwords is accomplished by gradually reducing the use of the password.  In the occurrence where you cannot authenticate with biometrics, you need a fall back mechanism that is not a password.  The PIN is the fall back mechanism.  Disabling or hiding the PIN credential provider will disable the use of biometrics.
 
 ## How are keys protected?
 Wherever possible, Windows Hello for Business takes advantage of trusted platform module (TPM) 2.0 hardware to generate and protect keys. However, Windows Hello and Windows Hello for Business does not require a TPM. Administrators can choose to allow key operations in software.

From 2194df3ce15d330712bd359d3193ebdfcfec4159 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 18 Nov 2020 10:19:19 -0800
Subject: [PATCH 177/209] Update note on Big Sur

---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md    | 2 +-
 .../microsoft-defender-atp/microsoft-defender-atp-mac.md        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index b40f3ea88c..336b9f1519 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -27,7 +27,7 @@ ms.topic: conceptual
 > On macOS 11 (Big Sur), Microsoft Defender for Endpoint requires additional configuration profiles. If you are an existing customer upgrading from earlier versions of macOS, make sure to deploy the additional configuration profiles listed on [this page](mac-sysext-policies.md).
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
+> With the agent version 101.13.75+, we released a change that removed conditions when Microsoft Defender for Endpoint was triggering the macOS Big Sur bug that manifests into a kernel panic. With that change Defender code path should no longer directly facilitate the kernel panic.
 
 ## 101.13.75
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
index 1e18c177a2..e09cef38f1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-mac.md
@@ -69,7 +69,7 @@ The three most recent major releases of macOS are supported.
 > On macOS 11 (Big Sur), Microsoft Defender for Endpoint requires additional configuration profiles. If you are an existing customer upgrading from earlier versions of macOS, make sure to deploy the additional configuration profiles listed on [this page](mac-sysext-policies.md).
 
 > [!IMPORTANT]
-> Extensive testing of MDE (Microsoft Defender for Endpoint) with new system extensions on macOS 11 (Big Sur) revealed an intermittent issue that impacts macOS devices with specific graphic cards models. In rare cases on impacted macOS devices calls into macOS system extensions were seen resulting in kernel panic. Microsoft is actively working with Apple engineering to clarify profile of impacted devices and to address this macOS issue. In the meantime, if you encounter such a kernel panic, please submit a feedback report to Apple through the Feedback Assistant app.
+> With the agent version 101.13.75+, we released a change that removed conditions when Microsoft Defender for Endpoint was triggering the macOS Big Sur bug that manifests into a kernel panic. With that change Defender code path should no longer directly facilitate the kernel panic.
 
 - 10.15 (Catalina), 10.14 (Mojave), 10.13 (High Sierra)
 - Disk space: 1GB

From 0c504753cf1933894ae186980a076449c70faaae Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 18 Nov 2020 14:21:23 -0800
Subject: [PATCH 178/209] Added a note for value 100 in DODownloadMode

---
 .../client-management/mdm/policy-csp-deliveryoptimization.md   | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-deliveryoptimization.md b/windows/client-management/mdm/policy-csp-deliveryoptimization.md
index 4061074c76..6926ea12dc 100644
--- a/windows/client-management/mdm/policy-csp-deliveryoptimization.md
+++ b/windows/client-management/mdm/policy-csp-deliveryoptimization.md
@@ -754,8 +754,7 @@ The following list shows the supported values:
 -   2 – HTTP blended with peering across a private group. Peering occurs on devices in the same Active Directory Site (if it exists) or the same domain by default. When this option is selected, peering will cross NATs. To create a custom group use Group ID in combination with Mode 2.
 -   3 – HTTP blended with Internet peering.
 -   99 - Simple download mode with no peering. Delivery Optimization downloads using HTTP only and does not attempt to contact the Delivery Optimization cloud services. Added in Windows 10, version 1607.
--   100 - Bypass mode. Do not use Delivery Optimization and use BITS instead. Added in Windows 10, version 1607.
-
+-   100 - Bypass mode. Do not use Delivery Optimization and use BITS instead. Added in Windows 10, version 1607. Note that this value is deprecated and will be removed in a future release.
 <!--/SupportedValues-->
 <!--/Policy-->
 

From 1e8a6ff66c813e2b5083bc75b7f6e6e499c0b6b7 Mon Sep 17 00:00:00 2001
From: Nagappan Veerappan <naveerap@microsoft.com>
Date: Wed, 18 Nov 2020 14:26:32 -0800
Subject: [PATCH 179/209] Update
 windows/security/identity-protection/hello-for-business/hello-faq.md

Looks good

Co-authored-by: Trond B. Krokli <38162891+illfated@users.noreply.github.com>
---
 .../identity-protection/hello-for-business/hello-faq.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md
index be2ed0eda2..b3026e84d7 100644
--- a/windows/security/identity-protection/hello-for-business/hello-faq.md
+++ b/windows/security/identity-protection/hello-for-business/hello-faq.md
@@ -144,7 +144,7 @@ Beginning with Windows 10, version 1709, Windows Hello for Business used as a sm
 The smart card emulation feature of Windows Hello for Business verifies the PIN and then discards the PIN in exchange for a ticket.  The process does not receive the PIN, but rather the ticket that grants them private key operations.  Windows 10 does not provide any Group Policy settings to adjust this caching.
 
 ## Can I disable the PIN while using Windows Hello for Business?
-No. The movement away from passwords is accomplished by gradually reducing the use of the password.  In the occurrence where you cannot authenticate with biometrics, you need a fall back mechanism that is not a password.  The PIN is the fall back mechanism.  Disabling or hiding the PIN credential provider will disable the use of biometrics.
+No. The movement away from passwords is accomplished by gradually reducing the use of the password.  In the occurrence where you cannot authenticate with biometrics, you need a fallback mechanism that is not a password.  The PIN is the fallback mechanism.  Disabling or hiding the PIN credential provider will disable the use of biometrics.
 
 ## How are keys protected?
 Wherever possible, Windows Hello for Business takes advantage of trusted platform module (TPM) 2.0 hardware to generate and protect keys. However, Windows Hello and Windows Hello for Business does not require a TPM. Administrators can choose to allow key operations in software.

From 48222272f3aee94e1b702f1174a64c1e52b5cc1a Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Wed, 18 Nov 2020 14:34:11 -0800
Subject: [PATCH 180/209] Removed extra to

---
 .../client-management/mdm/policy-csp-deliveryoptimization.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-deliveryoptimization.md b/windows/client-management/mdm/policy-csp-deliveryoptimization.md
index 6926ea12dc..72f081a47d 100644
--- a/windows/client-management/mdm/policy-csp-deliveryoptimization.md
+++ b/windows/client-management/mdm/policy-csp-deliveryoptimization.md
@@ -371,7 +371,7 @@ ADMX Info:
 <!--/Scope-->
 <!--Description-->
 
-This policy allows you to to configure one or more Delivery Optimization in Network Cache servers through a custom DHCP Option. One or more values can be added as either fully qualified domain names (FQDN) or IP addresses.  To add multiple values, separate each FQDN or IP address by commas.
+This policy allows you to configure one or more Delivery Optimization in Network Cache servers through a custom DHCP Option. One or more values can be added as either fully qualified domain names (FQDN) or IP addresses.  To add multiple values, separate each FQDN or IP address by commas.
 
 <!--/Description-->
 <!--ADMXMapped-->

From d779a78fd1cebeb81a10b6090c753a62ce2e548f Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Wed, 18 Nov 2020 15:01:30 -0800
Subject: [PATCH 181/209] Corrected one instance of "AAD" to "Azure AD"

---
 .../client-management/mdm/policy-csp-deliveryoptimization.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-deliveryoptimization.md b/windows/client-management/mdm/policy-csp-deliveryoptimization.md
index 72f081a47d..1031aada9c 100644
--- a/windows/client-management/mdm/policy-csp-deliveryoptimization.md
+++ b/windows/client-management/mdm/policy-csp-deliveryoptimization.md
@@ -881,7 +881,7 @@ The options set in this policy only apply to Group (2) download mode. If Group (
 
 For option 3 - DHCP Option ID, the client will query DHCP Option ID 234 and use the returned GUID value as the Group ID.
 
-Starting with Windows 10, version 1903, you can use the Azure Active Directory (AAD) Tenant ID as a means to define groups. To do this, set the value of DOGroupIdSource to 5.
+Starting with Windows 10, version 1903, you can use the Azure Active Directory (Azure AD) Tenant ID as a means to define groups. To do this, set the value of DOGroupIdSource to 5.
 
 <!--/Description-->
 <!--ADMXMapped-->

From bdd52aab30e1ff2822a438468344637389a6c5fb Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:01:32 -0800
Subject: [PATCH 182/209] Update
 configure-microsoft-defender-antivirus-features.md

---
 .../configure-microsoft-defender-antivirus-features.md          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
index a3d582510d..383dce56d6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 09/03/2018
+ms.date: 11/18/2020
 ms.reviewer: 
 manager: dansimp
 ---

From 5f8681b6f29617b0270343fe18e2773d0bf65d93 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:05:50 -0800
Subject: [PATCH 183/209] Update
 configure-microsoft-defender-antivirus-features.md

---
 ...e-microsoft-defender-antivirus-features.md | 20 ++++++++++---------
 1 file changed, 11 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
index 383dce56d6..91b4bdb5bd 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
@@ -37,15 +37,17 @@ The following broad categories of features can be configured:
 
 - Cloud-delivered protection
 - Always-on real-time protection, including behavioral, heuristic, and machine-learning-based protection
-- How end-users interact with the client on individual endpoints
+- How end users interact with the client on individual endpoints
 
-The topics in this section describe how to perform key tasks when configuring Microsoft Defender Antivirus. Each topic includes instructions for the applicable configuration tool (or tools).
+The following articles describe how to perform key tasks when configuring Microsoft Defender Antivirus. Each topic includes instructions for the applicable configuration tool (or tools).
 
-You can also review the [Reference topics for management and configuration tools](configuration-management-reference-microsoft-defender-antivirus.md) topic for an overview of each tool and links to further help. 
 
-## In this section
-Topic | Description
-:---|:---
-[Utilize Microsoft cloud-provided Microsoft Defender Antivirus protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md) | Cloud-delivered protection provides an advanced level of fast, robust antivirus detection
-[Configure behavioral, heuristic, and real-time protection](configure-protection-features-microsoft-defender-antivirus.md)|Enable behavior-based, heuristic, and real-time antivirus protection
-[Configure end-user interaction with Microsoft Defender Antivirus](configure-end-user-interaction-microsoft-defender-antivirus.md)|Configure how end-users interact with Microsoft Defender Antivirus, what notifications they see, and whether they can override settings
+|Article  |Description  |
+|---------|---------|
+|[Utilize Microsoft cloud-provided Microsoft Defender Antivirus protection](utilize-microsoft-cloud-protection-microsoft-defender-antivirus.md)     | Use cloud-delivered protection for advanced, fast, robust antivirus detection.        |
+|[Configure behavioral, heuristic, and real-time protection](configure-protection-features-microsoft-defender-antivirus.md)     |Enable behavior-based, heuristic, and real-time antivirus protection.         |
+|[Configure end-user interaction with Microsoft Defender Antivirus](configure-end-user-interaction-microsoft-defender-antivirus.md) | Configure how end users in your organization interact with Microsoft Defender Antivirus, what notifications they see, and whether they can override settings. |
+
+> [!TIP]
+> You can also review the [Reference topics for management and configuration tools](configuration-management-reference-microsoft-defender-antivirus.md) topic for an overview of each tool and links to further help. 
+

From f4f111298f872493993a18d5a55a6b9fb44da77a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:07:09 -0800
Subject: [PATCH 184/209] Update
 configure-microsoft-defender-antivirus-features.md

---
 .../configure-microsoft-defender-antivirus-features.md         | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
index 91b4bdb5bd..fd9d16d4b6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md
@@ -39,8 +39,7 @@ The following broad categories of features can be configured:
 - Always-on real-time protection, including behavioral, heuristic, and machine-learning-based protection
 - How end users interact with the client on individual endpoints
 
-The following articles describe how to perform key tasks when configuring Microsoft Defender Antivirus. Each topic includes instructions for the applicable configuration tool (or tools).
-
+The following articles describe how to perform key tasks when configuring Microsoft Defender Antivirus. Each article includes instructions for the applicable configuration tool (or tools).
 
 |Article  |Description  |
 |---------|---------|

From c99aaeaef18a6d9a1fafc0926d4f4337d1a7dfea Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:10:46 -0800
Subject: [PATCH 185/209] Update
 configure-network-connections-microsoft-defender-antivirus.md

---
 ...etwork-connections-microsoft-defender-antivirus.md | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
index 8ee17ca054..1be93dc8a6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-network-connections-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 07/08/2020
+ms.date: 11/18/2020
 ms.reviewer: 
 manager: dansimp
 ---
@@ -62,7 +62,7 @@ The table below lists the services and their associated URLs. Make sure that the
 | Malware submission storage|Upload location for files submitted to Microsoft via the Submission form or automatic sample submission	| `ussus1eastprod.blob.core.windows.net` <br/>    `ussus1westprod.blob.core.windows.net` <br/>    `usseu1northprod.blob.core.windows.net` <br/>    `usseu1westprod.blob.core.windows.net` <br/>    `ussuk1southprod.blob.core.windows.net` <br/>    `ussuk1westprod.blob.core.windows.net` <br/>    `ussas1eastprod.blob.core.windows.net` <br/>    `ussas1southeastprod.blob.core.windows.net` <br/>    `ussau1eastprod.blob.core.windows.net` <br/>    `ussau1southeastprod.blob.core.windows.net` |
 | Certificate Revocation List (CRL)|Used by Windows when creating the SSL connection to MAPS for updating the CRL	| `http://www.microsoft.com/pkiops/crl/` <br/> `http://www.microsoft.com/pkiops/certs` <br/>   `http://crl.microsoft.com/pki/crl/products` <br/> `http://www.microsoft.com/pki/certs` |
 | Symbol Store|Used by Microsoft Defender Antivirus to restore certain critical files during remediation flows	| `https://msdl.microsoft.com/download/symbols` |
-| Universal Telemetry Client| Used by Windows to send client diagnostic data; Microsoft Defender Antivirus uses this for product quality monitoring purposes	| This update uses SSL (TCP Port 443) to download manifests and upload diagnostic data to Microsoft that uses the following DNS endpoints:   `vortex-win.data.microsoft.com` <br/>   `settings-win.data.microsoft.com`|
+| Universal Telemetry Client| Used by Windows to send client diagnostic data; Microsoft Defender Antivirus uses telemetry for product quality monitoring purposes	| The update uses SSL (TCP Port 443) to download manifests and upload diagnostic data to Microsoft that uses the following DNS endpoints:   `vortex-win.data.microsoft.com` <br/>   `settings-win.data.microsoft.com`|
 
 ## Validate connections between your network and the cloud
 
@@ -85,8 +85,7 @@ For more information, see [Manage Microsoft Defender Antivirus with the mpcmdrun
 
 You can download a sample file that Microsoft Defender Antivirus will detect and block if you are properly connected to the cloud.
 
-Download the file by visiting the following link:
-- https://aka.ms/ioavtest
+Download the file by visiting [https://aka.ms/ioavtest](https://aka.ms/ioavtest).
 
 >[!NOTE]
 >This file is not an actual piece of malware. It is a fake file that is designed to test if you are properly connected to the cloud.
@@ -105,11 +104,11 @@ You will also see a detection under **Quarantined threats** in the **Scan histor
 
 1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Defender**.
 
-2. Click the **Virus & threat protection** tile (or the shield icon on the left menu bar) and then the **Scan history** label:
+2. Select the **Virus & threat protection** tile (or the shield icon on the left menu bar) and then the **Scan history** label:
 
     ![Screenshot of the Scan history label in the Windows Security app](images/defender/wdav-history-wdsc.png)
 
-3. Under the **Quarantined threats** section, click the **See full history** label to see the detected fake malware.
+3. Under the **Quarantined threats** section, select **See full history** to see the detected fake malware.
 
    > [!NOTE]
    > Versions of Windows 10 before version 1703 have a different user interface. See [Microsoft Defender Antivirus in the Windows Security app](microsoft-defender-security-center-antivirus.md).

From a6e114417672f424ef360524007248e97541b7d4 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:27:06 -0800
Subject: [PATCH 186/209] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...exclusions-microsoft-defender-antivirus.md | 54 ++++++++-----------
 1 file changed, 21 insertions(+), 33 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 95de8ec073..8b00cfd083 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -26,15 +26,16 @@ manager: dansimp
 
 You can exclude files that have been opened by specific processes from Microsoft Defender Antivirus scans. See [Recommendations for defining exclusions](configure-exclusions-microsoft-defender-antivirus.md#recommendations-for-defining-exclusions) before defining your exclusion lists.
 
-This topic describes how to configure exclusion lists for the following:
+This article describes how to configure exclusion lists. 
 
-<a id="examples"></a>
+## Examples of exclusions
+
+|Exclusion | Example |
+|---|---|
+|Any file on the machine that is opened by any process with a specific file name | Specifying `test.exe` would exclude files opened by: <br/>`c:\sample\test.exe`<br/>`d:\internal\files\test.exe` |  
+|Any file on the machine that is opened by any process under a specific folder | Specifying `c:\test\sample\*` would exclude files opened by:<br/>`c:\test\sample\test.exe`<br/>`c:\test\sample\test2.exe`<br/>`c:\test\sample\utility.exe` | 
+|Any file on the machine that is opened by a specific process in a specific folder | Specifying `c:\test\process.exe` would exclude files only opened by `c:\test\process.exe` |
 
-Exclusion | Example
----|---
-Any file on the machine that is opened by any process with a specific file name | Specifying "test.exe" would exclude files opened by: <ul><li>c:\sample\test.exe</li><li>d:\internal\files\test.exe</li></ul>  
-Any file on the machine that is opened by any process under a specific folder | Specifying "c:\test\sample\\*" would exclude files opened by:<ul><li>c:\test\sample\test.exe</li><li>c:\test\sample\test2.exe</li><li>c:\test\sample\utility.exe</li></ul> 
-Any file on the machine that is opened by a specific process in a specific folder | Specifying "c:\test\process.exe" would exclude files only opened by c:\test\process.exe
 
 When you add a process to the process exclusion list, Microsoft Defender Antivirus won't scan files opened by that process, no matter where the files are located. The process itself, however, will be scanned unless it has also been added to the [file exclusion list](configure-extension-file-exclusions-microsoft-defender-antivirus.md).
 
@@ -46,14 +47,12 @@ You can add, remove, and review the lists for exclusions in [Group Policy](#gp),
 
 You can also [use PowerShell cmdlets and WMI to configure the exclusion lists](#ps), including [reviewing](#review) your lists.
 
-By default, local changes made to the lists (by users with administrator privileges; this includes changes made with PowerShell and WMI) will be merged with the lists as defined (and deployed) by Group Policy, Configuration Manager, or Intune. The Group Policy lists will take precedence in the case of conflicts.
+By default, local changes made to the lists (by users with administrator privileges; changes made with PowerShell and WMI) will be merged with the lists as defined (and deployed) by Group Policy, Configuration Manager, or Intune. The Group Policy lists will take precedence in the case of conflicts.
 
 You can [configure how locally and globally defined exclusions lists are merged](configure-local-policy-overrides-microsoft-defender-antivirus.md#merge-lists) to allow local changes to override managed deployment settings.
 
 ## Configure the list of exclusions for files opened by specified processes
 
-<a id="gp"></a>
-
 ### Use Microsoft Intune to exclude files that have been opened by specified processes from scans
 
 See [Configure device restriction settings in Microsoft Intune](https://docs.microsoft.com/intune/device-restrictions-configure) and [Microsoft Defender Antivirus device restriction settings for Windows 10 in Intune](https://docs.microsoft.com/intune/device-restrictions-windows-10#microsoft-defender-antivirus) for more details.
@@ -80,8 +79,6 @@ See [How to create and deploy antimalware policies: Exclusion settings](https://
 
 ![The Group Policy setting for specifying process exclusions](images/defender/wdav-process-exclusions.png)
 
-<a id="ps"></a>
-
 ### Use PowerShell cmdlets to exclude files that have been opened by specified processes from scans
 
 Using PowerShell to add or remove exclusions for files that have been opened by processes requires using a combination of three cmdlets with the `-ExclusionProcess` parameter. The cmdlets are all in the [Defender module](https://technet.microsoft.com/itpro/powershell/windows/defender/defender).
@@ -94,11 +91,11 @@ The format for the cmdlets is:
 
 The following are allowed as the \<cmdlet>:
 
-Configuration action | PowerShell cmdlet
----|---
-Create or overwrite the list | `Set-MpPreference`
-Add to the list | `Add-MpPreference`
-Remove items from the list | `Remove-MpPreference`
+|Configuration action | PowerShell cmdlet |
+|---|---|
+|Create or overwrite the list | `Set-MpPreference` |
+|Add to the list | `Add-MpPreference` |
+|Remove items from the list | `Remove-MpPreference` |
 
 >[!IMPORTANT]
 >If you have created a list, either with `Set-MpPreference` or `Add-MpPreference`, using the `Set-MpPreference` cmdlet again will overwrite the existing list.
@@ -109,7 +106,7 @@ For example, the following code snippet would cause Microsoft Defender AV scans
 Add-MpPreference -ExclusionProcess "c:\internal\test.exe"
 ```
 
-See [Manage antivirus with PowerShell cmdlets](use-powershell-cmdlets-windows-defender-Microsoft Defender Antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/itpro/powershell/windows/defender/index) for more information on how to use PowerShell with Microsoft Defender Antivirus.
+For more information on how to use PowerShell with Microsoft Defender Antivirus, see [Manage antivirus with PowerShell cmdlets](use-powershell-cmdlets-windows-defender-Microsoft Defender Antivirus.md) and [Microsoft Defender Antivirus cmdlets](https://docs.microsoft.com/powershell/module/defender/?view=win10-ps&preserve=true).
 
 ### Use Windows Management Instruction (WMI) to exclude files that have been opened by specified processes from scans
 
@@ -121,33 +118,24 @@ ExclusionProcess
 
 The use of **Set**, **Add**, and **Remove** is analogous to their counterparts in PowerShell: `Set-MpPreference`, `Add-MpPreference`, and `Remove-MpPreference`.
 
-See the following for more information and allowed parameters:
-
-- [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx)
-
-<a id="man-tools"></a>
+For more information and allowed parameters, see  [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/library/dn439477(v=vs.85).aspx).
 
 ### Use the Windows Security app to exclude files that have been opened by specified processes from scans
 
 See [Add exclusions in the Windows Security app](microsoft-defender-security-center-antivirus.md#exclusions) for instructions.
 
-<a id="wildcards"></a>
-
 ## Use wildcards in the process exclusion list
 
 The use of wildcards in the process exclusion list is different from their use in other exclusion lists.
 
-In particular, you cannot use the question mark ? wildcard, and the asterisk \* wildcard can only be used at the end of a complete path. You can still use environment variables (such as %ALLUSERSPROFILE%) as wildcards when defining items in the process exclusion list.
+In particular, you cannot use the question mark (`?`) wildcard, and the asterisk (`*`) wildcard can only be used at the end of a complete path. You can still use environment variables (such as `%ALLUSERSPROFILE%`) as wildcards when defining items in the process exclusion list.
 
 The following table describes how the wildcards can be used in the process exclusion list:
 
-Wildcard | Use | Example use | Example matches
----|---|---|---
-\* (asterisk) | Replaces any number of characters | <ul><li>C:\MyData\\*</li></ul> | <ul><li>Any file opened by C:\MyData\file.exe</li></ul>
-? (question mark) | Not available | \- | \-
-Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |  <ul><li>%ALLUSERSPROFILE%\CustomLogFiles\file.exe</li></ul> | <ul><li>Any file opened by C:\ProgramData\CustomLogFiles\file.exe</li></ul>
-
-<a id="review"></a>
+|Wildcard | Example use | Example matches |
+|:---|:---|:---|
+|`*` (asterisk) <br/><br/> Replaces any number of characters | `C:\MyData\*` | Any file opened by `C:\MyData\file.exe` |
+|Environment variables <br/><br/> The defined variable is populated as a path when the exclusion is evaluated | `%ALLUSERSPROFILE%\CustomLogFiles\file.exe` | Any file opened by `C:\ProgramData\CustomLogFiles\file.exe` |
 
 ## Review the list of exclusions
 

From ebb7a832fc41c69474297942f5d4254dafceea38 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:28:33 -0800
Subject: [PATCH 187/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 8139e27e9a..d799ae7d2e 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -10,7 +10,7 @@ ms.localizationpriority: medium
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 01/31/2020
+ms.date: 11/18/2020
 ms.reviewer: 
 manager: dansimp
 ---

From 07b2b44a207c34ac121cf02039e697685b05a083 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:29:36 -0800
Subject: [PATCH 188/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md            | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index d799ae7d2e..81e984fa4a 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -28,7 +28,7 @@ In addition to standard on-premises or hardware configurations, you can also use
 
 See [Windows Virtual Desktop Documentation](https://docs.microsoft.com/azure/virtual-desktop) for more details on Microsoft Remote Desktop Services and VDI support.
 
-For Azure-based virtual machines, you can also review the [Install Endpoint Protection in Azure Defender](https://docs.microsoft.com/azure/security-center/security-center-install-endpoint-protection) topic.
+For Azure-based virtual machines, see [Install Endpoint Protection in Azure Defender](https://docs.microsoft.com/azure/security-center/security-center-install-endpoint-protection).
 
 With the ability to easily deploy updates to VMs running in VDIs, we've shortened this guide to focus on how you can get updates on your machines quickly and easily. You no longer need to create and seal golden images on a periodic basis, as updates are expanded into their component bits on the host server and then downloaded directly to the VM when it's turned on.
 
@@ -49,7 +49,7 @@ You can also download the whitepaper [Microsoft Defender Antivirus on Virtual De
 
 ## Set up a dedicated VDI file share
 
-In Windows 10, version 1903, we introduced the shared security intelligence feature. This offloads the unpackaging of downloaded security intelligence updates onto a host machine — thus saving previous CPU, disk, and memory resources on individual machines. You can set this feature with a Group Policy, or PowerShell.
+In Windows 10, version 1903, we introduced the shared security intelligence feature, which offloads the unpackaging of downloaded security intelligence updates onto a host machine—thus saving previous CPU, disk, and memory resources on individual machines. You can set this feature with a Group Policy, or PowerShell.
 
 ### Use Group Policy to enable the shared security intelligence feature:
 

From 97e4d4c368a1b39c197fd002f5f73f093b5e4950 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:32:16 -0800
Subject: [PATCH 189/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md   | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 81e984fa4a..e135754b51 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -63,7 +63,7 @@ In Windows 10, version 1903, we introduced the shared security intelligence feat
 
 5. Double-click **Define security intelligence location for VDI clients**, and then set the option to **Enabled**. A field automatically appears.
 
-6. Enter `\\<sharedlocation\>\wdav-update` (for what this will be, see [Download and unpackage](#download-and-unpackage-the-latest-updates)).
+6. Enter `\\<sharedlocation\>\wdav-update` (for help with this value, see [Download and unpackage](#download-and-unpackage-the-latest-updates)).
 
 7. Click **OK**.
 
@@ -81,7 +81,7 @@ See the [Download and unpackage](#download-and-unpackage-the-latest-updates) sec
 
 ## Download and unpackage the latest updates
 
-Now you can get started on downloading and installing new updates. We’ve created a sample PowerShell script for you below. This script is the easiest way to download new updates and get them ready for your VMs. You should then set the script to run at a certain time on the management machine by using a scheduled task (or, if you’re familiar with using PowerShell scripts in Azure, Intune, or SCCM, you could also use those).
+Now you can get started on downloading and installing new updates. We’ve created a sample PowerShell script for you below. This script is the easiest way to download new updates and get them ready for your VMs. You should then set the script to run at a certain time on the management machine by using a scheduled task (or, if you’re familiar with using PowerShell scripts in Azure, Intune, or SCCM, you could also use those scripts).
 
 ```PowerShell
 $vdmpathbase = 'c:\wdav-update\{00000000-0000-0000-0000-'
@@ -98,7 +98,7 @@ cmd /c "cd $vdmpath & c: & mpam-fe.exe /x"
 ```
 
 You can set a scheduled task to run once a day so that whenever the package is downloaded and unpacked then the VMs will receive the new update. 
-We suggest starting with once a day — but you should experiment with increasing or decreasing the frequency to understand the impact. 
+We suggest starting with once a day—but you should experiment with increasing or decreasing the frequency to understand the impact. 
 
 Security intelligence packages are typically published once every three to four hours. Setting a frequency shorter than four hours isn’t advised because it will increase the network overhead on your management machine for no benefit.
 
@@ -106,13 +106,13 @@ Security intelligence packages are typically published once every three to four
 
 1. On the management machine, open the Start menu and type **Task Scheduler**. Open it and select **Create task…** on the side panel.
 
-2. Enter the name as **Security intelligence unpacker**. Go to the **Trigger** tab. Click **New…** Select **Daily** and click **OK**.
+2. Enter the name as **Security intelligence unpacker**. Go to the **Trigger** tab. Select **New…** > **Daily**, and select **OK**.
 
-3. Go to the **Actions** tab. Click **New…** Enter **PowerShell** in the **Program/Script** field. Enter `-ExecutionPolicy Bypass c:\wdav-update\vdmdlunpack.ps1` in the **Add arguments** field. Click **OK**.
+3. Go to the **Actions** tab. Select **New…** Enter **PowerShell** in the **Program/Script** field. Enter `-ExecutionPolicy Bypass c:\wdav-update\vdmdlunpack.ps1` in the **Add arguments** field. Select **OK**.
 
 4. You can choose to configure additional settings if you wish.
 
-5. Click **OK** to save the scheduled task.
+5. Select **OK** to save the scheduled task.
  
 You can initiate the update manually by right-clicking on the task and clicking **Run**.
 

From 1f325f118d6783836b7e625ad53d9a5ac66bfe13 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:32:49 -0800
Subject: [PATCH 190/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index e135754b51..76394d2a43 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -118,7 +118,7 @@ You can initiate the update manually by right-clicking on the task and clicking
 
 ### Download and unpackage manually
 
-If you would prefer to do everything manually, this what you would need to do to replicate the script’s behavior:
+If you would prefer to do everything manually, here's what to do to replicate the script’s behavior:
 
 1. Create a new folder on the system root called `wdav_update` to store intelligence updates, for example, create the folder `c:\wdav_update`.
 

From 7f685696729678e465c85c3f3c1151083d4730b6 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 18 Nov 2020 15:33:09 -0800
Subject: [PATCH 191/209] update intune step 2

---
 .../microsoft-defender-atp/onboarding-endpoint-manager.md  | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
index 0027824386..1c87de1aa1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding-endpoint-manager.md
@@ -104,12 +104,13 @@ needs.<br>
 In the following section, you'll create a number of configuration policies.
 
 First is a configuration policy to select which groups of users or devices will
-be onboarded to Defender for Endpoint. 
+be onboarded to Defender for Endpoint:
+
+- [Endpoint detection and response](#endpoint-detection-and-response) 
 
 Then you will continue by creating several
-different types of endpoint security policies.
+different types of endpoint security policies:
 
-- [Endpoint detection and response](#endpoint-detection-and-response)
 - [Next-generation protection](#next-generation-protection)
 - [Attack surface reduction](#attack-surface-reduction--attack-surface-reduction-rules)
 

From bab2ae97aa1932804ac19bbbbb522b643460192e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:52:54 -0800
Subject: [PATCH 192/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 ...oyment-vdi-microsoft-defender-antivirus.md | 39 ++++++++++++-------
 1 file changed, 26 insertions(+), 13 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 76394d2a43..53d4a57daf 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -11,7 +11,7 @@ author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
 ms.date: 11/18/2020
-ms.reviewer: 
+ms.reviewer: jesquive
 manager: dansimp
 ---
 
@@ -122,7 +122,9 @@ If you would prefer to do everything manually, here's what to do to replicate th
 
 1. Create a new folder on the system root called `wdav_update` to store intelligence updates, for example, create the folder `c:\wdav_update`.
 
-2. Create a subfolder under *wdav_update* with a GUID name, such as `{00000000-0000-0000-0000-000000000000}`; for example `c:\wdav_update\{00000000-0000-0000-0000-000000000000}`.
+2. Create a subfolder under *wdav_update* with a GUID name, such as `{00000000-0000-0000-0000-000000000000}`
+
+Here's an example: `c:\wdav_update\{00000000-0000-0000-0000-000000000000}`
 
    > [!NOTE]
    > In the script we set it so the last 12 digits of the GUID are the year, month, day, and time when the file was downloaded so that a new folder is created each time. You can change this so that the file is downloaded to the same folder each time.
@@ -138,32 +140,43 @@ If you would prefer to do everything manually, here's what to do to replicate th
 
 Scheduled scans run in addition to [real-time protection and scanning](configure-real-time-protection-microsoft-defender-antivirus.md).
 
-The start time of the scan itself is still based on the scheduled scan policy — ScheduleDay, ScheduleTime, ScheduleQuickScanTime. Randomization will cause Microsoft Defender AV to start a scan on each machine within a 4 hour window from the time set for the scheduled scan.
+The start time of the scan itself is still based on the scheduled scan policy (**ScheduleDay**, **ScheduleTime**, and **ScheduleQuickScanTime**). Randomization will cause Microsoft Defender Antivirus to start a scan on each machine within a 4-hour window from the time set for the scheduled scan.
 
 See [Schedule scans](scheduled-catch-up-scans-microsoft-defender-antivirus.md) for other configuration options available for scheduled scans.
 
 ## Use quick scans
 
-You can specify the type of scan that should be performed during a scheduled scan.
-Quick scans are the preferred approach as they are designed to look in all places where malware needs to reside to be active.
+You can specify the type of scan that should be performed during a scheduled scan. Quick scans are the preferred approach as they are designed to look in all places where malware needs to reside to be active. The following procedure describes how to set up quick scans using Group Policy.
 
-1. Expand the tree to **Windows components > Windows Defender > Scan**.
+1. In your Group Policy Editor, go to **Administrative templates** > **Windows components** > **Microsoft Defender Antivirus** > **Scan**.
 
-2. Double-click **Specify the scan type to use for a scheduled scan** and set the option to **Enabled** and **Quick scan**.
+2. Select **Specify the scan type to use for a scheduled scan** and then edit the policy setting.
 
-3. Click **OK**.
+3. Set the policy to **Enabled**, and then under **Options**, select  **Quick scan**.
+
+4. Select **OK**. 
+
+5. Deploy your Group Policy object as you usually do.
 
 ## Prevent notifications
 
-Sometimes, Microsoft Defender Antivirus notifications may be sent to or persist across multiple sessions. In order to minimize this problem, you can use the lock down the Microsoft Defender Antivirus user interface.
+Sometimes, Microsoft Defender Antivirus notifications may be sent to or persist across multiple sessions. In order to minimize this problem, you can lock down the Microsoft Defender Antivirus user interface. The following procedure describes how to suppress notifications with Group Policy.
 
-1. Expand the tree to **Windows components > Windows Defender > Client Interface**.
+1. In your Group Policy Editor, go to **Windows components** > **Microsoft Defender Antivirus** > **Client Interface**.
 
-2. Double-click **Suppress all notifications** and set the option to **Enabled**.
+2. Select **Suppress all notifications** and then edit the policy settings. 
 
-3. Click **OK**.
+3. Set the policy to **Enabled**, and then select **OK**.
 
-This prevents notifications from Microsoft Defender AV appearing in the action center on Windows 10 when scans or remediation is performed.
+4. Deploy your Group Policy object as you usually do.
+
+Suppressing notifications prevents notifications from Microsoft Defender Antivirus from showing up in the Action Center on Windows 10 when scans are done or remediation actions are taken. However, your security operations team will see the results of the scan in the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)).
+
+> [!TIP]
+> To open the Action Center on Windows 10, take one of the following steps:
+> - On the right end of the taskbar, select the Action Center icon.
+> - Press the Windows logo key button + A.
+> - On a touchscreen device, swipe in from the right edge of the screen.
 
 ## Disable scans after an update
 

From 74736769a503f0d018b6cd48203c09a5b680f204 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 15:53:57 -0800
Subject: [PATCH 193/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 53d4a57daf..4233121080 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -185,7 +185,7 @@ This setting will prevent a scan from occurring after receiving an update. You c
 > [!IMPORTANT]
 > Running scans after an update will help ensure your VMs are protected with the latest Security intelligence updates. Disabling this option will reduce the protection level of your VMs and should only be used when first creating or deploying the base image.
 
-1. Expand the tree to **Windows components > Windows Defender > Signature Updates**.
+1. Expand the tree to **Windows components** > **Windows Defender** > **Signature Updates**.
 
 2. Double-click **Turn on scan after signature update** and set the option to **Disabled**.
 

From 0b93827584f1975210e8f1f608c5342fe162cc30 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 16:07:09 -0800
Subject: [PATCH 194/209] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...ess-opened-file-exclusions-microsoft-defender-antivirus.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 8b00cfd083..c9663557f9 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -43,9 +43,9 @@ The exclusions only apply to [always-on real-time protection and monitoring](con
 
 Changes made with Group Policy to the exclusion lists **will show** in the lists in the [Windows Security app](microsoft-defender-security-center-antivirus.md#exclusions). However, changes made in the Windows Security app **will not show** in the Group Policy lists.
 
-You can add, remove, and review the lists for exclusions in [Group Policy](#gp), [Microsoft Endpoint Configuration Manager, Microsoft Intune, and with the Windows Security app](#man-tools), and you can [use wildcards](#wildcards) to further customize the lists.
+You can add, remove, and review the lists for exclusions in Group Policy, Microsoft Endpoint Configuration Manager, Microsoft Intune, and with the Windows Security app, and you can use wildcards to further customize the lists.
 
-You can also [use PowerShell cmdlets and WMI to configure the exclusion lists](#ps), including [reviewing](#review) your lists.
+You can also use PowerShell cmdlets and WMI to configure the exclusion lists, including reviewing your lists.
 
 By default, local changes made to the lists (by users with administrator privileges; changes made with PowerShell and WMI) will be merged with the lists as defined (and deployed) by Group Policy, Configuration Manager, or Intune. The Group Policy lists will take precedence in the case of conflicts.
 

From d189183c96745e9b124274024cda72f175b9ae37 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 16:08:36 -0800
Subject: [PATCH 195/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 .../deployment-vdi-microsoft-defender-antivirus.md              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 4233121080..4bad0e3733 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -180,7 +180,7 @@ Suppressing notifications prevents notifications from Microsoft Defender Antivir
 
 ## Disable scans after an update
 
-This setting will prevent a scan from occurring after receiving an update. You can apply this when creating the base image if you have also run a quick scan. This prevents the newly updated VM from performing a scan again (as you've already scanned it when you created the base image).
+Disabling a scan after an update will prevent a scan from occurring after receiving an update. You can apply this setting when creating the base image if you have also run a quick scan. This way, you can prevent the newly updated VM from performing a scan again (as you've already scanned it when you created the base image).
 
 > [!IMPORTANT]
 > Running scans after an update will help ensure your VMs are protected with the latest Security intelligence updates. Disabling this option will reduce the protection level of your VMs and should only be used when first creating or deploying the base image.

From 4660b238059867db435d359bac4cd0ddea310288 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 16:30:47 -0800
Subject: [PATCH 196/209] fixes

---
 ...exclusions-microsoft-defender-antivirus.md |  2 +-
 ...oyment-vdi-microsoft-defender-antivirus.md | 24 ++++++++++++-------
 2 files changed, 17 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index c9663557f9..81cb5deeec 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -73,7 +73,7 @@ See [How to create and deploy antimalware policies: Exclusion settings](https://
 
     1. Set the option to **Enabled**.
     2. Under the **Options** section, click **Show...**.
-    3. Enter each process on its own line under the **Value name** column. See the [example table](#examples) for the different types of process exclusions.  Enter **0** in the **Value** column for all processes.
+    3. Enter each process on its own line under the **Value name** column. See the example table for the different types of process exclusions.  Enter **0** in the **Value** column for all processes.
 
 5. Click **OK**.
 
diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index 4bad0e3733..bbb87abdc3 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -185,23 +185,31 @@ Disabling a scan after an update will prevent a scan from occurring after receiv
 > [!IMPORTANT]
 > Running scans after an update will help ensure your VMs are protected with the latest Security intelligence updates. Disabling this option will reduce the protection level of your VMs and should only be used when first creating or deploying the base image.
 
-1. Expand the tree to **Windows components** > **Windows Defender** > **Signature Updates**.
+1. In your Group Policy Editor, go to **Windows components** > **Microsoft Defender Antivirus** > **Security Intelligence Updates**.
 
-2. Double-click **Turn on scan after signature update** and set the option to **Disabled**.
+2. Select **Turn on scan after security intelligence update** and then edit the policy setting.
 
-3. Click **OK**.
+3. Set the policy to **Disabled**.
 
-This prevents a scan from running immediately after an update.
+4. Select **OK**.
+
+5. Deploy your Group Policy object as you usually do.
+
+This policy prevents a scan from running immediately after an update.
 
 ## Scan VMs that have been offline
 
-1. Expand the tree to **Windows components > Windows Defender > Scan**.
+1. In your Group Policy Editor, go to to **Windows components** > **Microsoft Defender Antivirus** > **Scan**.
 
-2. Double-click the **Turn on catch-up quick scan** setting and set the option to **Enabled**.
+2. Select **Turn on catch-up quick scan** and then edit the policy setting.
 
-3. Click **OK**.
+3. Set the policy to **Enabled**.
 
-This forces a scan if the VM has missed two or more consecutive scheduled scans.
+4. Select **OK**.
+
+5. Deploy your Group Policy Object as you usually do.
+
+This policy forces a scan if the VM has missed two or more consecutive scheduled scans.
 
 ## Enable headless UI mode
 

From 807b8fc534933e132b84925cbb0c10491e990f18 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 17:00:36 -0800
Subject: [PATCH 197/209] Update deployment-vdi-microsoft-defender-antivirus.md

---
 ...eployment-vdi-microsoft-defender-antivirus.md | 16 +++++++++++-----
 1 file changed, 11 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
index bbb87abdc3..a7990f4bca 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/deployment-vdi-microsoft-defender-antivirus.md
@@ -213,20 +213,26 @@ This policy forces a scan if the VM has missed two or more consecutive scheduled
 
 ## Enable headless UI mode
 
-1. Double-click **Enable headless UI mode** and set the option to **Enabled**.
+1. In your Group Policy Editor, go to **Windows components** > **Microsoft Defender Antivirus** > **Client Interface**.
 
-2. Click **OK**.
+2. Select **Enable headless UI mode** and edit the policy.
 
-This hides the entire Microsoft Defender AV user interface from users.
+3. Set the policy to **Enabled**.
+
+4. Click **OK**.
+
+5. Deploy your Group Policy Object as you usually do.
+ 
+This policy hides the entire Microsoft Defender Antivirus user interface from end users in your organization.
 
 ## Exclusions
 
 Exclusions can be added, removed, or customized to suit your needs.
 
-For more details, see [Configure Microsoft Defender Antivirus exclusions on Windows Server](configure-exclusions-microsoft-defender-antivirus.md).
+For more information, see [Configure Microsoft Defender Antivirus exclusions on Windows Server](configure-exclusions-microsoft-defender-antivirus.md).
 
 ## Additional resources
 
-- [Video: Microsoft Senior Program Manager Bryan Keller on how System Center Configuration Manger 2012 manages VDI and integrates with App-V]( https://channel9.msdn.com/Shows/Edge/Edge-Show-5-Manage-VDI-using-SCCM-2012#time=03m02s)
+- [Tech Community Blog: Configuring Microsoft Defender Antivirus for non-persistent VDI machines](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/configuring-microsoft-defender-antivirus-for-non-persistent-vdi/ba-p/1489633)
 - [TechNet forums on Remote Desktop Services and VDI](https://social.technet.microsoft.com/Forums/windowsserver/en-US/home?forum=winserverTS)
 - [SignatureDownloadCustomTask PowerShell script](https://www.powershellgallery.com/packages/SignatureDownloadCustomTask/1.4)

From a446f2ccf637ae28b1d6863aa577a0eb441a2c72 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Wed, 18 Nov 2020 17:01:52 -0800
Subject: [PATCH 198/209] Update
 configure-process-opened-file-exclusions-microsoft-defender-antivirus.md

---
 ...ocess-opened-file-exclusions-microsoft-defender-antivirus.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
index 81cb5deeec..725634e323 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/configure-process-opened-file-exclusions-microsoft-defender-antivirus.md
@@ -106,7 +106,7 @@ For example, the following code snippet would cause Microsoft Defender AV scans
 Add-MpPreference -ExclusionProcess "c:\internal\test.exe"
 ```
 
-For more information on how to use PowerShell with Microsoft Defender Antivirus, see [Manage antivirus with PowerShell cmdlets](use-powershell-cmdlets-windows-defender-Microsoft Defender Antivirus.md) and [Microsoft Defender Antivirus cmdlets](https://docs.microsoft.com/powershell/module/defender/?view=win10-ps&preserve=true).
+For more information on how to use PowerShell with Microsoft Defender Antivirus, see Manage antivirus with PowerShell cmdlets and [Microsoft Defender Antivirus cmdlets](https://docs.microsoft.com/powershell/module/defender/?view=win10-ps&preserve=true).
 
 ### Use Windows Management Instruction (WMI) to exclude files that have been opened by specified processes from scans
 

From e11250a1fc13d616ebd6bceb320329264791f5ba Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Wed, 18 Nov 2020 18:13:05 -0800
Subject: [PATCH 199/209] Fix typo in system extension instrucitons

---
 .../microsoft-defender-atp/mac-sysext-policies.md             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
index 9b20ff2260..73bb94faf9 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
@@ -150,13 +150,13 @@ As part of the Endpoint Detection and Response capabilities, Microsoft Defender
 4. After the certificate is created and installed to your device, run the following command from the Terminal to sign the file:
 
     ```bash
-    $ security cms -S -N "<CertificateName>" -i <PathToFile>/com.apple.webcontent-filter.mobileconfig -o <PathToSignedFile>/com.microsoft.network-extension.signed.mobileconfig
+    $ security cms -S -N "<CertificateName>" -i <PathToFile>/com.microsoft.network-extension.mobileconfig -o <PathToSignedFile>/com.microsoft.network-extension.signed.mobileconfig
     ```
     
     For example, if the certificate name is **SigningCertificate** and the signed file is going to be stored in Documents:
     
     ```bash
-    $ security cms -S -N "SigningCertificate" -i ~/Documents/com.apple.webcontent-filter.mobileconfig -o ~/Documents/com.microsoft.network-extension.signed.mobileconfig
+    $ security cms -S -N "SigningCertificate" -i ~/Documents/com.microsoft.network-extension.mobileconfig -o ~/Documents/com.microsoft.network-extension.signed.mobileconfig
     ```
     
 5. From the JAMF portal, navigate to **Configuration Profiles** and click the **Upload** button. Select `com.microsoft.network-extension.signed.mobileconfig` when prompted for the file.

From 8765322a40d7750701fd888530837ad94f177265 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Thu, 19 Nov 2020 15:14:07 +0530
Subject: [PATCH 200/209] Update TOC.md

To fix build error
---
 windows/security/threat-protection/TOC.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 29bbd110d3..2e9b5977ec 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -8,7 +8,6 @@
 ### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md)
 ### [Overview of Microsoft Defender Security Center](microsoft-defender-atp/use.md)
 ### [Portal overview](microsoft-defender-atp/portal-overview.md)
-### [Microsoft Defender ATP for US Government Community Cloud High customers](microsoft-defender-atp/commercial-gov.md)
 ### [Microsoft Defender ATP for non-Windows platforms](microsoft-defender-atp/non-windows.md)
 
 ## [Evaluate capabilities](microsoft-defender-atp/evaluation-lab.md)

From 28c6d8b6ffabca4d3f5990e54c94e8984f78d249 Mon Sep 17 00:00:00 2001
From: Lovina Saldanha <v-lsaldanha@microsoft.com>
Date: Thu, 19 Nov 2020 15:15:33 +0530
Subject: [PATCH 201/209] Update linux-schedule-scan-atp.md

minor spelling error
---
 .../microsoft-defender-atp/linux-schedule-scan-atp.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
index 3bd8a7cde1..fe7f0dbd32 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-schedule-scan-atp.md
@@ -137,7 +137,7 @@ See [https://puppet.com/blog/automating-puppet-cron-jobs-and-scheduled-tasks/](h
 
 **To edit the crontab and add a new job as a root user**
 
-`Sudo crontab -e`
+`sudo crontab -e`
 
 **To edit the crontab and add a new job**
 

From 4c77803457e67a91c8b7586dd8409bf6b7784c14 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 19 Nov 2020 09:51:10 -0800
Subject: [PATCH 202/209] update toc

---
 .openpublishing.redirection.json              |   5 +
 windows/security/threat-protection/TOC.md     |   2 +-
 .../microsoft-defender-atp/ios-privacy.md     | 100 ++++++++++--------
 3 files changed, 63 insertions(+), 44 deletions(-)

diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index 2f50152758..4b75b026fc 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -84,6 +84,11 @@
       "source_path": "windows/security/threat-protection/microsoft-defender-atp/ios-privacy-statement.md",
       "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-privacy",
       "redirect_document_id": true
+    },
+	{
+      "source_path": "windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios-privacy-information.md",
+      "redirect_url": "https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/ios-privacy",
+      "redirect_document_id": false
     },
     {
       "source_path": "windows/security/information-protection/windows-information-protection/create-wip-policy-using-mam-intune-azure.md",
diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 144ddb363c..ed7e7849ea 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -277,7 +277,7 @@
 
 #### [Configure]()
 ##### [Configure iOS features](microsoft-defender-atp/ios-configure-features.md)
-#### [Privacy](microsoft-defender-atp/microsoft-defender-atp-ios-privacy-information.md)
+#### [Privacy](microsoft-defender-atp/ios-privacy.md)
 
 
 ### [Microsoft Defender Advanced Threat Protection for Linux]()
diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
index 31ee7b41b6..3b519f301b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
@@ -1,78 +1,92 @@
 ---
-title: Microsoft Defender ATP for iOS note on Privacy
+title: Privacy information - Microsoft Defender for Endpoint for iOS
 ms.reviewer:
-description: Describes the Microsoft Defender ATP for iOS Privacy
-keywords: microsoft, defender, atp, iOS, license, terms, application, use, installation, service, feedback, scope, 
+description: Describes privacy information for Microsoft Defender for Endpoint for iOS
+keywords: microsoft, defender, atp, ios, policy, overview
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
-ms.author: sunasing
-author: sunasing
+ms.author: macapara
+author: mjcaparas
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance
+ms.collection: 
+- m365-security-compliance 
+- m365initiative-defender-endpoint 
 ms.topic: conceptual
-hideEdit: true
 ---
 
-# Microsoft Defender ATP for iOS - Privacy information
+# Privacy information - Microsoft Defender for Endpoint for iOS
 
-**Applies to:**
+> [!NOTE]
+> Defender for Endpoint for iOS uses a VPN to provide the Web Protection feature. This is not a regular VPN and is a local or self-looping VPN that does not take traffic outside the device. **Microsoft or your organization, does not see your browsing activity.**
 
-- [Microsoft Defender for Endpoint](microsoft-defender-atp-ios.md)
+Defender for Endpoint for iOS collects information from your configured iOS devices and stores it in the same tenant where you have Defender for Endpoint. The information is collected to help keep Defender for Endpoint for iOS secure, up-to-date, performing as expected, and to support the service.
 
->[!NOTE]
-> Defender for Endpoint for iOS uses a VPN in order to provide the Web Protection feature. This is not a regular VPN and is a local/self-looping VPN that does not take traffic outside the device. Microsoft or your organization **does not see your browsing activity**.
+For more details about data storage, see [Microsoft Defender for Endpoint data storage and privacy](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy).
 
-Defender for Endpoint for iOS collects information from your configured iOS devices and stores it in the same tenant where you have Defender for Endpoint.
+## Required data 
 
-Information is collected to help keep Defender for Endpoint for iOS secure, up-to-date, performing as expected and to support the service.
+Required data consists of data that is necessary to make Defender for Endpoint for iOS work as expected. This data is essential to the operation of the service and can include data related to the end user, organization, device, and apps. 
 
-## Required data
+Here is a list of the types of data being collected: 
 
-Required data consists of data that is necessary to make Defender for Endpoint for iOS work as expected. This data is essential to the operation of the service and can include data related to the end user, organization, device, and apps. Here's a list of the types of data being collected:
+### Web page or Network information 
 
-### Web page / Network information
+- Connection information only when a malicious connection or web page is detected. 
 
-- Connection information
-- Protocol type (such as HTTP, HTTPS, etc.)
+- Protocol type (such as HTTP, HTTPS, etc.) only when a malicious connection or web page is detected. 
 
-### Device and account information
+### Device and account information 
 
-- Device information such as date & time, iOS version, CPU info, and Device identifier
-- Device identifier is one of the below:
-    - Wi-Fi adapter MAC address
-    - Randomly generated globally unique identifier (GUID)
+- Device information such as date & time, iOS version, CPU info, and Device identifier, where Device identifier is one of the following: 
 
-- Tenant, Device, and User information
-    - Azure Active Directory (AD) Device ID and Azure User ID: Uniquely identifies the device, User respectively at Azure Active directory.
-    - Azure tenant ID - GUID that identifies your organization within Azure Active Directory
-    - Microsoft Defender ATP org ID - Unique identifier associated with the enterprise that the device belongs to. Allows Microsoft to identify whether issues are impacting a select set of enterprises and how many enterprises are impacted
-    - User Principal Name - Email ID of the user
+    - Wi-Fi adapter MAC address 
 
-### Product and service usage data
+    - Randomly generated globally unique identifier (GUID) 
 
-- App package info, including name, version, and app upgrade status
-- Actions performed in the app
-- Crash report logs generated by iOS
-- Memory usage data
+- Tenant, Device and User information 
 
-## Optional data
+    - Azure Active Directory (AD) Device ID and Azure User ID - Uniquely identifies the device, User respectively at Azure Active directory. 
 
-Optional data includes diagnostic data and feedback data from the client. Optional diagnostic data is additional data that helps us make product improvements and provides enhanced information to help us detect, diagnose, and fix issues. This data is only for diagnostic purposes and is not required for the service itself.
+    - Azure tenant ID - GUID that identifies your organization within Azure Active Directory. 
 
-Optional diagnostic data includes:
+    - Microsoft Defender for Endpoint org ID - Unique identifier associated with the enterprise that the device belongs to. Allows Microsoft to identify whether issues are impacting a select set of enterprises and how many enterprises are impacted. 
 
-- App, CPU, and network usage
-- Features configured by the admin
+    - User Principal Name � Email ID of the user. 
 
-**Feedback Data** is collected through in-app feedback provided by the user.
+### Product and service usage data 
+
+The following information is collected only for Microsoft Defender for Endpoint app installed on the device. 
+
+- App package info, including name, version, and app upgrade status. 
+
+- Actions performed in the app. 
+
+- Crash report logs generated by iOS. 
+
+- Memory usage data. 
+
+## Optional Data 
+
+Optional data includes diagnostic data and feedback data from the client. Optional diagnostic data is additional data that helps us make product improvements and provides enhanced information to help us detect, diagnose, and fix issues. This data is only for diagnostic purposes and is not required for the service itself. 
+
+Optional diagnostic data includes: 
+
+- App, CPU, and network usage for Defender for Endpoint. 
+
+- Features configured by the admin for Defender for Endpoint. 
+
+Feedback Data is collected through in-app feedback provided by the user. 
+
+- The user�s email address, if they choose to provide it.
+
+- Feedback type (smile, frown, idea) and any feedback comments submitted by the user. 
+
+For more information, see [More on Privacy](https://aka.ms/mdatpiosprivacystatement).
 
-- The user's email address, if they choose to provide it
-- Feedback type (smile, frown, idea) and any feedback comments submitted by the user
 
-[More on Privacy](https://aka.ms/mdatpiosprivacystatement)
\ No newline at end of file

From 32b25a4398371cf389df31b9fc13c0e46bdf709a Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 19 Nov 2020 10:00:35 -0800
Subject: [PATCH 203/209] chars

---
 .../microsoft-defender-atp/ios-privacy.md        | 16 ++++++++++------
 1 file changed, 10 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
index 3b519f301b..361ee24da1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/ios-privacy.md
@@ -22,12 +22,16 @@ ms.topic: conceptual
 
 # Privacy information - Microsoft Defender for Endpoint for iOS
 
+**Applies to:**
+
+- [Microsoft Defender for Endpoint](microsoft-defender-atp-ios.md)
+
 > [!NOTE]
 > Defender for Endpoint for iOS uses a VPN to provide the Web Protection feature. This is not a regular VPN and is a local or self-looping VPN that does not take traffic outside the device. **Microsoft or your organization, does not see your browsing activity.**
 
 Defender for Endpoint for iOS collects information from your configured iOS devices and stores it in the same tenant where you have Defender for Endpoint. The information is collected to help keep Defender for Endpoint for iOS secure, up-to-date, performing as expected, and to support the service.
 
-For more details about data storage, see [Microsoft Defender for Endpoint data storage and privacy](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy).
+For more information about data storage, see [Microsoft Defender for Endpoint data storage and privacy](data-storage-privacy.md).
 
 ## Required data 
 
@@ -49,15 +53,15 @@ Here is a list of the types of data being collected:
 
     - Randomly generated globally unique identifier (GUID) 
 
-- Tenant, Device and User information 
+- Tenant, Device, and User information 
 
     - Azure Active Directory (AD) Device ID and Azure User ID - Uniquely identifies the device, User respectively at Azure Active directory. 
 
     - Azure tenant ID - GUID that identifies your organization within Azure Active Directory. 
 
-    - Microsoft Defender for Endpoint org ID - Unique identifier associated with the enterprise that the device belongs to. Allows Microsoft to identify whether issues are impacting a select set of enterprises and how many enterprises are impacted. 
+    - Microsoft Defender for Endpoint org ID - Unique identifier associated with the enterprise that the device belongs to. Allows Microsoft to identify if there are issues affecting a select set of enterprises and the number of enterprises impacted. 
 
-    - User Principal Name � Email ID of the user. 
+    - User Principal Name - Email ID of the user. 
 
 ### Product and service usage data 
 
@@ -65,7 +69,7 @@ The following information is collected only for Microsoft Defender for Endpoint
 
 - App package info, including name, version, and app upgrade status. 
 
-- Actions performed in the app. 
+- Actions done in the app. 
 
 - Crash report logs generated by iOS. 
 
@@ -83,7 +87,7 @@ Optional diagnostic data includes:
 
 Feedback Data is collected through in-app feedback provided by the user. 
 
-- The user�s email address, if they choose to provide it.
+- The user's email address, if they choose to provide it.
 
 - Feedback type (smile, frown, idea) and any feedback comments submitted by the user. 
 

From ed85432e02942ac375c5e50777df87cc6957b214 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 19 Nov 2020 11:18:09 -0800
Subject: [PATCH 204/209] Update
 prevent-changes-to-security-settings-with-tamper-protection.md

removed a snippet per PM
---
 ...s-to-security-settings-with-tamper-protection.md | 13 +------------
 1 file changed, 1 insertion(+), 12 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index 964923be28..25da1aa38d 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -14,7 +14,7 @@ audience: ITPro
 author: denisebmsft
 ms.author: deniseb
 ms.custom: nextgen
-ms.date: 11/12/2020
+ms.date: 11/19/2020
 ---
 
 # Protect security settings with tamper protection
@@ -207,17 +207,6 @@ If you are an organization using [Microsoft Defender for Endpoint](https://www.m
 
 Your regular group policy doesn’t apply to tamper protection, and changes to Microsoft Defender Antivirus settings are ignored when tamper protection is on. 
 
-> [!NOTE]
-> A small delay in Group Policy (GPO) processing may occur if Group Policy settings include values that control Microsoft Defender Antivirus features protected by tamper protection.
-
-To avoid any potential delays, we recommend that you remove settings that control Microsoft Defender Antivirus related behavior using GPO and allow tamper protection to protect your Microsoft Defender Antivirus settings.
-
-Some sample Microsoft Defender Antivirus settings:
-
-- *Turn off real-time protection* <br />
-  Computer Configuration\Administrative Templates\Windows Components\Microsoft Defender Antivirus\Real-time Protection\\<br />
-  Value `DisableRealtimeMonitoring` = 0
-
 ### For Microsoft Defender for Endpoint, is configuring tamper protection in Intune targeted to the entire organization only?
 
 Configuring tamper protection in Intune or Microsoft Endpoint Manager can be targeted to your entire organization as well as to specific devices and user groups.

From ccddf150e43fc9b7e8ab5760b7127cfdf3d9849f Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 19 Nov 2020 11:22:09 -0800
Subject: [PATCH 205/209] Update
 prevent-changes-to-security-settings-with-tamper-protection.md

---
 ...ent-changes-to-security-settings-with-tamper-protection.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index 25da1aa38d..0cbd3e28f1 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -48,7 +48,7 @@ Tamper protection essentially locks Microsoft Defender Antivirus and prevents yo
 - Changing settings through PowerShell cmdlets
 - Editing or removing security settings through group policies
 
-Tamper protection doesn't prevent you from viewing your security settings. And, tamper protection doesn't affect how third-party antivirus apps register with the Windows Security app. If your organization is using Windows 10 Enterprise E5, individual users can't change the tamper protection setting; this is managed by your security team.
+Tamper protection doesn't prevent you from viewing your security settings. And, tamper protection doesn't affect how third-party antivirus apps register with the Windows Security app. If your organization is using Windows 10 Enterprise E5, individual users can't change the tamper protection setting; tamper protection is managed by your security team.
 
 ### What do you want to do?
 
@@ -72,7 +72,7 @@ Tamper protection doesn't prevent you from viewing your security settings. And,
 >
 > Once you’ve made this update, tamper protection will continue to protect your registry settings, and will also log attempts to modify them without returning errors.
 
-If you are a home user, or you are not subject to settings managed by a security team, you can use the Windows Security app to turn tamper protection on or off. You must have appropriate admin permissions on your machine to do this.
+If you are a home user, or you are not subject to settings managed by a security team, you can use the Windows Security app to turn tamper protection on or off. You must have appropriate admin permissions on your machine to do change security settings, such as tamper protection.
 
 1. Click **Start**, and start typing *Defender*. In the search results, select **Windows Security**.
 

From 75b5e382cea904df754549b3fa60a1e9b26a1929 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 19 Nov 2020 11:22:54 -0800
Subject: [PATCH 206/209] Update
 prevent-changes-to-security-settings-with-tamper-protection.md

---
 ...event-changes-to-security-settings-with-tamper-protection.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index 0cbd3e28f1..432e22474e 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -132,7 +132,7 @@ If you are using Windows 10 OS [1709](https://docs.microsoft.com/windows/release
 > [!IMPORTANT]
 > The procedure can be used to extend tamper protection to devices running Windows 10 and Windows Server 2019. Make sure to review the prerequisites and other information in the resources mentioned in this procedure.
 
-If you're using [version 2006 of Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006), you can manage tamper protection settings on Windows 10 and Windows Server 2019 by using tenant attach. Tenant attach enables you to sync your on-premises-only Configuration Manager devices into the Microsoft Endpoint Manager admin center, and then deliver your endpoint security configuration policies to your on-premises collections & devices.
+If you're using [version 2006 of Configuration Manager](https://docs.microsoft.com/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006), you can manage tamper protection settings on Windows 10 and Windows Server 2019 by using a method called *tenant attach*. Tenant attach enables you to sync your on-premises-only Configuration Manager devices into the Microsoft Endpoint Manager admin center, and then deliver your endpoint security configuration policies to your on-premises collections & devices.
 
 1. Set up tenant attach. See [Microsoft Endpoint Manager tenant attach: Device sync and device actions](https://docs.microsoft.com/mem/configmgr/tenant-attach/device-sync-actions).
 

From cd6713a92b1264be1c7d60b117dfbcb927223817 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 19 Nov 2020 11:24:25 -0800
Subject: [PATCH 207/209] Update
 prevent-changes-to-security-settings-with-tamper-protection.md

---
 ...event-changes-to-security-settings-with-tamper-protection.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
index 432e22474e..567fc845b6 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
@@ -93,7 +93,7 @@ You must have appropriate [permissions](../microsoft-defender-atp/assign-portal-
 1. Make sure your organization meets all of the following requirements to manage tamper protection using Intune:
 
     - Your organization uses [Intune to manage devices](https://docs.microsoft.com/intune/fundamentals/what-is-device-management). ([Intune licenses](https://docs.microsoft.com/intune/fundamentals/licenses) are required; Intune is included in Microsoft 365 E5.)
-    - Your Windows machines must be running Windows 10 OS [1709](https://docs.microsoft.com/windows/release-information/status-windows-10-1709), [1803](https://docs.microsoft.com/windows/release-information/status-windows-10-1803), [1809](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019) or later. (See [Windows 10 release information](https://docs.microsoft.com/windows/release-information/) for more details about releases.)
+    - Your Windows machines must be running Windows 10 OS [1709](https://docs.microsoft.com/windows/release-information/status-windows-10-1709), [1803](https://docs.microsoft.com/windows/release-information/status-windows-10-1803), [1809](https://docs.microsoft.com/windows/release-information/status-windows-10-1809-and-windows-server-2019) or later. (For more information about releases, see [Windows 10 release information](https://docs.microsoft.com/windows/release-information/).)
     - You must be using Windows security with [security intelligence](https://www.microsoft.com/wdsi/definitions) updated to version 1.287.60.0 (or above).
     - Your machines must be using anti-malware platform version 4.18.1906.3 (or above) and anti-malware engine version 1.1.15500.X (or above). ([Manage Microsoft Defender Antivirus updates and apply baselines](manage-updates-baselines-microsoft-defender-antivirus.md).)
 

From 7ef4f60afe1198e3510a178c3dbc019c94520985 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 19 Nov 2020 13:09:31 -0800
Subject: [PATCH 208/209] add gov back in

---
 windows/security/threat-protection/TOC.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index ed7e7849ea..c2d26e8f57 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -8,6 +8,7 @@
 ### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md)
 ### [Overview of Microsoft Defender Security Center](microsoft-defender-atp/use.md)
 ### [Portal overview](microsoft-defender-atp/portal-overview.md)
+### [Microsoft Defender ATP for US Government Community Cloud High customers](microsoft-defender-atp/gov.md)
 ### [Microsoft Defender ATP for non-Windows platforms](microsoft-defender-atp/non-windows.md)
 
 ## [Evaluate capabilities](microsoft-defender-atp/evaluation-lab.md)

From 0dcd93ee5b66417227e3d54aef0936e416988a72 Mon Sep 17 00:00:00 2001
From: Thomas Raya <v-thraya@microsoft.com>
Date: Thu, 19 Nov 2020 15:53:26 -0800
Subject: [PATCH 209/209] Delete
 microsoft-defender-atp-ios-privacy-information.md

---
 ...ft-defender-atp-ios-privacy-information.md | 92 -------------------
 1 file changed, 92 deletions(-)
 delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios-privacy-information.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios-privacy-information.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios-privacy-information.md
deleted file mode 100644
index b5143827c8..0000000000
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-ios-privacy-information.md
+++ /dev/null
@@ -1,92 +0,0 @@
----
-title: Microsoft Defender ATP for iOS - Privacy information
-ms.reviewer:
-description: Describes privacy information for Microsoft Defender ATP for iOS
-keywords: microsoft, defender, atp, ios, policy, overview
-search.product: eADQiWindows 10XVcnh
-search.appverid: met150
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-ms.author: macapara
-author: mjcaparas
-ms.localizationpriority: medium
-manager: dansimp
-audience: ITPro
-ms.collection: 
-- m365-security-compliance 
-- m365initiative-defender-endpoint 
-ms.topic: conceptual
----
-
-# Privacy information - Microsoft Defender for Endpoint for iOS
-
-> [!NOTE]
-> Defender for Endpoint for iOS uses a VPN to provide the Web Protection feature. This is not a regular VPN and is a local or self-looping VPN that does not take traffic outside the device. **Microsoft or your organization, does not see your browsing activity.**
-
-Defender for Endpoint for iOS collects information from your configured iOS devices and stores it in the same tenant where you have Defender for Endpoint. The information is collected to help keep Defender for Endpoint for iOS secure, up-to-date, performing as expected, and to support the service.
-
-For more details about data storage, see [Microsoft Defender for Endpoint data storage and privacy](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy).
-
-## Required data 
-
-Required data consists of data that is necessary to make Defender for Endpoint for iOS work as expected. This data is essential to the operation of the service and can include data related to the end user, organization, device, and apps. 
-
-Here is a list of the types of data being collected: 
-
-### Web page or Network information 
-
-- Connection information only when a malicious connection or web page is detected. 
-
-- Protocol type (such as HTTP, HTTPS, etc.) only when a malicious connection or web page is detected. 
-
-### Device and account information 
-
-- Device information such as date & time, iOS version, CPU info, and Device identifier, where Device identifier is one of the following: 
-
-    - Wi-Fi adapter MAC address 
-
-    - Randomly generated globally unique identifier (GUID) 
-
-- Tenant, Device and User information 
-
-    - Azure Active Directory (AD) Device ID and Azure User ID - Uniquely identifies the device, User respectively at Azure Active directory. 
-
-    - Azure tenant ID - GUID that identifies your organization within Azure Active Directory. 
-
-    - Microsoft Defender ATP org ID - Unique identifier associated with the enterprise that the device belongs to. Allows Microsoft to identify whether issues are impacting a select set of enterprises and how many enterprises are impacted. 
-
-    - User Principal Name – Email ID of the user. 
-
-### Product and service usage data 
-
-The following information is collected only for Microsoft Defender for Endpoint app installed on the device. 
-
-- App package info, including name, version, and app upgrade status. 
-
-- Actions performed in the app. 
-
-- Crash report logs generated by iOS. 
-
-- Memory usage data. 
-
-## Optional Data 
-
-Optional data includes diagnostic data and feedback data from the client. Optional diagnostic data is additional data that helps us make product improvements and provides enhanced information to help us detect, diagnose, and fix issues. This data is only for diagnostic purposes and is not required for the service itself. 
-
-Optional diagnostic data includes: 
-
-- App, CPU, and network usage for Defender for Endpoint. 
-
-- Features configured by the admin for Defender for Endpoint. 
-
-Feedback Data is collected through in-app feedback provided by the user. 
-
-- The user’s email address, if they choose to provide it.
-
-- Feedback type (smile, frown, idea) and any feedback comments submitted by the user. 
-
-For more information, see [More on Privacy](https://aka.ms/mdatpiosprivacystatement).
-
-