From fece0918b736f9be56f19dc01dfa044d7852ad0c Mon Sep 17 00:00:00 2001 From: Trudy Hakala Date: Wed, 22 Mar 2017 15:08:09 -0700 Subject: [PATCH 01/23] review feedback --- windows/plan/windows-10-enterprise-faq-itpro.md | 17 +++-------------- 1 file changed, 3 insertions(+), 14 deletions(-) diff --git a/windows/plan/windows-10-enterprise-faq-itpro.md b/windows/plan/windows-10-enterprise-faq-itpro.md index 192d0910c6..60a48fef2f 100644 --- a/windows/plan/windows-10-enterprise-faq-itpro.md +++ b/windows/plan/windows-10-enterprise-faq-itpro.md @@ -49,7 +49,7 @@ Many existing Win32 and Win64 applications already run reliably on Windows 10 wi ### Is there an easy way to assess if my organization’s devices are ready to upgrade to Windows 10? -[Windows Upgrade Readiness](https://technet.microsoft.com/itpro/windows/deploy/manage-windows-upgrades-with-upgrade-analytics) (formerly known as Upgrade Analytics) provides powerful insights and recommendations about the computers, applications, and drivers in your organization, at no extra cost and without additional infrastructure requirements. This new service guides you through your upgrade and feature update projects using a workflow based on Microsoft recommended practices. Up-to-date inventory data allows you to balance cost and risk in your upgrade projects. +[Windows Analytics Upgrade Readiness](https://technet.microsoft.com/itpro/windows/deploy/manage-windows-upgrades-with-upgrade-analytics) (formerly known as Upgrade Analytics) provides powerful insights and recommendations about the computers, applications, and drivers in your organization, at no extra cost and without additional infrastructure requirements. This new service guides you through your upgrade and feature update projects using a workflow based on Microsoft recommended practices. Up-to-date inventory data allows you to balance cost and risk in your upgrade projects. You can find additional product information at [Windows Analytics](https://www.microsoft.com/en-us/WindowsForBusiness/Windows-Analytics). ## Administration and deployment @@ -64,15 +64,9 @@ Updated versions of Microsoft deployment tools, including MDT, Configuration Man Computers running Windows 7 or Windows 8.1 can be upgraded directly to Windows 10 through the in-place upgrade process without a need to reimage the device using MDT and/or Configuration Manager. For more information, see [Upgrade to Windows 10 with System Center Configuration Manager](https://technet.microsoft.com/itpro/windows/deploy/upgrade-to-windows-10-with-system-center-configuraton-manager) or [Upgrade to Windows 10 with the Microsoft Deployment Toolkit](https://technet.microsoft.com/itpro/windows/deploy/upgrade-to-windows-10-with-the-microsoft-deployment-toolkit). -### Are there any deployment tools available to support Windows 10? - -Updated versions of Microsoft deployment tools, including Configuration Manager, MDT, and the Windows Assessment and Deployment Kit (Windows ADK) have been released adding support for Windows 10. For most organizations currently using MDT or Configuration Manager to deploy Windows, deployment of Windows 10 will change very little. - -For more information on deployment methods for Windows 10, see [Windows 10 deployment tools](https://technet.microsoft.com/library/mt297512.aspx) and [Windows 10 deployment scenarios](https://technet.microsoft.com/library/mt282208.aspx). - ### Can I upgrade from Windows 7 Enterprise or Windows 8.1 Enterprise to Windows 10 Enterprise for free? -If you have Windows 7 Enterprise or Windows 8.1 Enterprise and current Software Assurance, you are entitled to the upgrade to Windows 10 Enterprise through the rights of Software Assurance. You can find your product keys and installation media at the [Volume Licensing Service Center](https://www.microsoft.com/Licensing/servicecenter/default.aspx). +If you have Windows 7 Enterprise or Windows 8.1 Enterprise and current Windows 10 Enterprise E3 or E5 subscription, you are entitled to the upgrade to Windows 10 Enterprise through the rights of Software Assurance. You can find your product keys and installation media at the [Volume Licensing Service Center](https://www.microsoft.com/Licensing/servicecenter/default.aspx). For devices that are licensed under a volume license agreement for Windows that does not include Software Assurance, new licenses will be required to upgrade these devices to Windows 10. @@ -104,12 +98,7 @@ For more information on pros and cons for these tools, see [Servicing Tools](htt ### Where can I find information about new features and changes in Windows 10 Enterprise? -For an overview of the new enterprise features in Windows 10 Enterprise, see [What's new in Windows 10](https://technet.microsoft.com/itpro/windows/whats-new/index) and [What's new in Windows 10, version 1703](https://tnstage.redmond.corp.microsoft.com/itpro/windows/whats-new/whats-new-windows-10-version-1703?branch=rs2) in the TechNet library. You can find information You'll find info on features like these: -- Modern deployment - Zero-touch deployment, bulk AD enrollment with provisioning, UEFI conversion tooland -- Windows Analytics - Upgrade Readiness, and Update Compliance -- Windows as a service enhancements - Differential feature update support, express update support for System Center Configuration Manager and third-party management software -- Mobile application management (MAM) and enhanced MDM -- Advanced security with Windows Defender - App Guard, Credential Guard, App Control, ATP) and Windows Hello +For an overview of the new enterprise features in Windows 10 Enterprise, see [What's new in Windows 10](https://technet.microsoft.com/itpro/windows/whats-new/index) and [What's new in Windows 10, version 1703](https://tnstage.redmond.corp.microsoft.com/itpro/windows/whats-new/whats-new-windows-10-version-1703?branch=rs2) in the TechNet library. Another place to track the latest information about new features of interest to IT professionals is the [Windows for IT Pros blog](https://blogs.technet.microsoft.com/windowsitpro/). Here you’ll find announcements of new features, information on updates to the Windows servicing model, and details about the latest resources to help you more easily deploy and manage Windows 10. From 073b05bb363843e7e624484e42b9a4fe4a8d7619 Mon Sep 17 00:00:00 2001 From: John Tobin Date: Wed, 29 Mar 2017 15:07:24 -0700 Subject: [PATCH 02/23] Added Cred Guard topics --- windows/keep-secure/TOC.md | 1 + .../credential-guard-considerations.md | 62 ++ .../credential-guard-how-it-works.md | 48 + .../keep-secure/credential-guard-manage.md | 197 ++++ ...redential-guard-not-protected-scenarios.md | 166 ++++ .../credential-guard-requirements.md | 128 +++ .../keep-secure/credential-guard-scripts.md | 488 +++++++++ windows/keep-secure/credential-guard.md | 933 +----------------- windows/keep-secure/images/mva_videos.png | Bin 0 -> 139543 bytes ...-logon-dont-display-username-at-sign-in.md | 86 ++ 10 files changed, 1186 insertions(+), 923 deletions(-) create mode 100644 windows/keep-secure/credential-guard-considerations.md create mode 100644 windows/keep-secure/credential-guard-how-it-works.md create mode 100644 windows/keep-secure/credential-guard-manage.md create mode 100644 windows/keep-secure/credential-guard-not-protected-scenarios.md create mode 100644 windows/keep-secure/credential-guard-requirements.md create mode 100644 windows/keep-secure/credential-guard-scripts.md create mode 100644 windows/keep-secure/images/mva_videos.png create mode 100644 windows/keep-secure/interactive-logon-dont-display-username-at-sign-in.md diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md index eeb1d26ced..b427d098bb 100644 --- a/windows/keep-secure/TOC.md +++ b/windows/keep-secure/TOC.md @@ -574,6 +574,7 @@ ###### [Domain member: Require strong (Windows 2000 or later) session key](domain-member-require-strong-windows-2000-or-later-session-key.md) ###### [Interactive logon: Display user information when the session is locked](interactive-logon-display-user-information-when-the-session-is-locked.md) ###### [Interactive logon: Don't display last signed-in](interactive-logon-do-not-display-last-user-name.md) +###### [Interactive logon: Don't display username at sign-in](interactive-logon-dont-display-username-at-sign-in.md) ###### [Interactive logon: Do not require CTRL+ALT+DEL](interactive-logon-do-not-require-ctrl-alt-del.md) ###### [Interactive logon: Machine account lockout threshold](interactive-logon-machine-account-lockout-threshold.md) ###### [Interactive logon: Machine inactivity limit](interactive-logon-machine-inactivity-limit.md) diff --git a/windows/keep-secure/credential-guard-considerations.md b/windows/keep-secure/credential-guard-considerations.md new file mode 100644 index 0000000000..bf97ca9299 --- /dev/null +++ b/windows/keep-secure/credential-guard-considerations.md @@ -0,0 +1,62 @@ +--- +title: Considerations when using Credential Guard (Windows 10) +description: Considerations and recommendations for certain scenarios when using Credential Guard in Windows 10. +ms.prod: w10 +ms.mktglfcycl: explore +ms.sitesec: library +ms.pagetype: security +localizationpriority: high +author: brianlic-msft +--- + +# Considerations when using Credential Guard + +**Applies to** +- Windows 10 +- Windows Server 2016 + +Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. + +- If Credential Guard is enabled on a device after it's joined to a domain, the user and device secrets may already be compromised. We recommend that Credential Guard is enabled before the PC is joined to a domain. +- You should perform regular reviews of the PCs that have Credential Guard enabled. This can be done with security audit policies or WMI queries. Here's a list of WinInit event IDs to look for: + - **Event ID 13** Credential Guard (LsaIso.exe) was started and will protect LSA credentials. + - **Event ID 14** Credential Guard (LsaIso.exe) configuration: 0x1, 0 + - The first variable: 0x1 means Credential Guard is configured to run. 0x0 means it’s not configured to run. + - The second variable: 0 means it’s configured to run in protect mode. 1 means it's configured to run in test mode. This variable should always be 0. + - **Event ID 15** Credential Guard (LsaIso.exe) is configured but the secure kernel is not running; continuing without Credential Guard. + - **Event ID 16** Credential Guard (LsaIso.exe) failed to launch: \[error code\] + - **Event ID 17** Error reading Credential Guard (LsaIso.exe) UEFI configuration: \[error code\] + You can also verify that TPM is being used for key protection by checking the following event in the **Microsoft** -> **Windows** -> **Kernel-Boot** event source. If you are running with a TPM, the TPM PCR mask value will be something other than 0. + - **Event ID 51** VSM Master Encryption Key Provisioning. Using cached copy status: 0x0. Unsealing cached copy status: 0x1. New key generation status: 0x1. Sealing status: 0x1. TPM PCR mask: 0x0. +- Passwords are still weak so we recommend that your organization deploy Credential Guard and move away from passwords and to other authentication methods, such as physical smart cards, virtual smart cards, or Windows Hello for Business. +- Some 3rd party Security Support Providers (SSPs and APs) might not be compatible with Credential Guard. Credential Guard does not allow 3rd party SSPs to ask for password hashes from LSA. However, SSPs and APs still get notified of the password when a user logs on and/or changes their password. Any use of undocumented APIs within custom SSPs and APs are not supported. We recommend that custom implementations of SSPs/APs are tested against Credential Guard to ensure that the SSPs and APs do not depend on any undocumented or unsupported behaviors. For example, using the KerbQuerySupplementalCredentialsMessage API is not supported. You should not replace the NTLM or Kerberos SSPs with custom SSPs and APs. For more info, see [Restrictions around Registering and Installing a Security Package](http://msdn.microsoft.com/library/windows/desktop/dn865014.aspx) on MSDN. +- As the depth and breadth of protections provided by Credential Guard are increased, subsequent releases of Windows 10 with Credential Guard running may impact scenarios that were working in the past. For example, Credential Guard may block the use of a particular type of credential or a particular component to prevent malware from taking advantage of vulnerabilities. Therefore, we recommend that scenarios required for operations in an organization are tested before upgrading a device that has Credential Guard running. + +- Starting with Windows 10, version 1511, domain credentials that are stored with Credential Manager are protected with Credential Guard. Credential Manager allows you to store credentials, such as user names and passwords that you use to log on to websites or other computers on a network. The following considerations apply to the Credential Guard protections for Credential Manager: + - Credentials saved by Remote Desktop Services cannot be used to remotely connect to another machine without supplying the password. Attempts to use saved credentials will fail, displaying the error message "Logon attempt failed". + - Applications that extract derived domain credentials from Credential Manager will no longer be able to use those credentials. + - You cannot restore credentials using the Credential Manager control panel if the credentials were backed up from a PC that has Credential Guard turned on. If you need to back up your credentials, you must do this before you enable Credential Guard. Otherwise, you won't be able to restore those credentials. + - Credential Guard uses hardware security so some features, such as Windows To Go, are not supported. + + +## NTLM and CHAP Considerations + +When you enable Credential Guard, you can no longer use NTLM v1 authentication. If you are using WiFi and VPN endpoints that are based on MS-CHAPv2, they are subject to similar attacks as NTLMv1. We recommend that organizations use certificated-based authentication for WiFi and VPN connections. + +## Kerberos Considerations + +When you enable Credential Guard, you can no longer use Kerberos unconstrained delegation or DES encryption. Unconstrained delegation could allow attackers to extract Kerberos keys from the isolated LSA process. You must use constrained or resource-based Kerberos delegation instead. + +## See also + +Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. + +### Credentials Protected by Credential Guard + +[![Credentials Protected by Credential Guard](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=mD3geLJyC_8304300474) + + + +**Related videos in this series** + +[Virtualization-based security](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=1CoELLJyC_6704300474) diff --git a/windows/keep-secure/credential-guard-how-it-works.md b/windows/keep-secure/credential-guard-how-it-works.md new file mode 100644 index 0000000000..62b860bcb2 --- /dev/null +++ b/windows/keep-secure/credential-guard-how-it-works.md @@ -0,0 +1,48 @@ +--- +title: How Credential Guard works +description: Using virtualization-based security, Credential Guard features a new component called the isolated LSA process, which stores and protects secrets, isolating them from the rest of the operating system, so that only privileged system software can access them. +ms.prod: w10 +ms.mktglfcycl: explore +ms.sitesec: library +ms.pagetype: security +localizationpriority: high +author: brianlic-msft +--- + +# How Credential Guard works + +**Applies to** +- Windows 10 +- Windows Server 2016 + + +Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. + +Kerberos, NTLM, and Credential manager isolate secrets by using virtualization-based security. Previous versions of Windows stored secrets in the Local Security Authority (LSA). Prior to Windows 10, the LSA stored secrets used by the operating system in its process memory. With Credential Guard enabled, the LSA process in the operating system talks to a new component called the isolated LSA process that stores and protects those secrets. Data stored by the isolated LSA process is protected using virtualization-based security and is not accessible to the rest of the operating system. LSA uses remote procedure calls to communicate with the isolated LSA process. + +For security reasons, the isolated LSA process doesn't host any device drivers. Instead, it only hosts a small subset of operating system binaries that are needed for security and nothing else. All of these binaries are signed with a certificate that is trusted by virtualization-based security and these signatures are validated before launching the file in the protected environment. + +When Credential Guard is enabled, NTLMv1, MS-CHAPv2, Digest, and CredSSP cannot use the signed-in credentials. Thus, single sign-on does not work with these protocols. However, applications can prompt for credentials or use credentials stored in the Windows Vault which are not protected by Credential Guard with any of these protocols. It is strongly recommended that valuable credentials, such as the sign-in credentials, not be used with any of these protocols. If these protocols must be used by domain or Azure AD users, secondary credentials should be provisioned for these use cases. + +When Credential Guard is enabled, Kerberos does not allow unconstrained Kerberos delegation or DES encryption, not only for signed-in credentials, but also prompted or saved credentials. + +Here's a high-level overview on how the LSA is isolated by using virtualization-based security: + +![Credential Guard overview](images/credguard.png) + +
+ +## See also + +Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. + +### Credential Guard Overview: Credential Theft and Lateral Traversal + +[![Credential theft and lateral traversal](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=cfGBPlIyC_9404300474) + + +**Related videos in this series:** + +[Credentials protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) + +[Virtualization-based security](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=1CoELLJyC_6704300474) diff --git a/windows/keep-secure/credential-guard-manage.md b/windows/keep-secure/credential-guard-manage.md new file mode 100644 index 0000000000..88acb2d41a --- /dev/null +++ b/windows/keep-secure/credential-guard-manage.md @@ -0,0 +1,197 @@ +--- +title: Manage Credential Guard (Windows 10) +description: Deploying and managing Credential Guard using Group Policy, the registry, or the Device Guard and Credential Guard hardware readiness tool. +ms.prod: w10 +ms.mktglfcycl: explore +ms.sitesec: library +ms.pagetype: security +localizationpriority: high +author: brianlic-msft +--- + +# Manage Credential Guard + +**Applies to** +- Windows 10 +- Windows Server 2016 + +Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. + +## Enable Credential Guard +Credential Guard can be enabled by using [Group Policy](#turn-on-credential-guard-by-using-group-policy), the [registry](#turn-on-credential-guard-by-using-the-registry), or the Device Guard and Credential Guard [hardware readiness tool](#hardware-readiness-tool). + +### Enable Credential Guard by using Group Policy + +You can use Group Policy to enable Credential Guard. This will add and enable the virtualization-based security features for you if needed. + +1. From the Group Policy Management Console, go to **Computer Configuration** -> **Administrative Templates** -> **System** -> **Device Guard**. +2. Double-click **Turn On Virtualization Based Security**, and then click the **Enabled** option. +3. **Select Platform Security Level** box, choose **Secure Boot** or **Secure Boot and DMA Protection**. +4. In the **Credential Guard Configuration** box, click **Enabled with UEFI lock**, and then click **OK**. If you want to be able to turn off Credential Guard remotely, choose **Enabled without lock**. + + ![Credential Guard Group Policy setting](images/credguard-gp.png) + +5. Close the Group Policy Management Console. + +To enforce processing of the group policy, you can run ```gpupdate /force```. + + +### Enable Credential Guard by using the registry + +If you don't use Group Policy, you can enable Credential Guard by using the registry. Credential Guard uses virtualization-based security features which have to be enabled first on some operating systems. + +### Add the virtualization-based security features + +Starting with Windows 10, version 1607 and Windows Server 2016, enabling Windows features to use virtualization-based security is not necessary and this step can be skipped. + +If you are using Windows 10, version 1507 (RTM) or Windows 10, version 1511, Windows features have to be enabled to use virtualization-based security. +You can do this by using either the Control Panel or the Deployment Image Servicing and Management tool (DISM). +> [!NOTE] +If you enable Credential Guard by using Group Policy, the steps to enable Windows features through Control Panel or DISM are not required. Group Policy will install Windows features for you. + +  +**Add the virtualization-based security features by using Programs and Features** + +1. Open the Programs and Features control panel. +2. Click **Turn Windows feature on or off**. +3. Go to **Hyper-V** -> **Hyper-V Platform**, and then select the **Hyper-V Hypervisor** check box. +4. Select the **Isolated User Mode** check box at the top level of the feature selection. +5. Click **OK**. + +**Add the virtualization-based security features to an offline image by using DISM** + +1. Open an elevated command prompt. +2. Add the Hyper-V Hypervisor by running the following command: + ``` + dism /image: /Enable-Feature /FeatureName:Microsoft-Hyper-V-Hypervisor /all + ``` +3. Add the Isolated User Mode feature by running the following command: + ``` + dism /image: /Enable-Feature /FeatureName:IsolatedUserMode + ``` + +> [!NOTE] +> You can also add these features to an online image by using either DISM or Configuration Manager. + +### Enable virtualization-based security and Credential Guard + +1. Open Registry Editor. +2. Enable virtualization-based security: + - Go to HKEY\_LOCAL\_MACHINE\\System\\CurrentControlSet\\Control\\DeviceGuard. + - Add a new DWORD value named **EnableVirtualizationBasedSecurity**. Set the value of this registry setting to 1 to enable virtualization-based security and set it to 0 to disable it. + - Add a new DWORD value named **RequirePlatformSecurityFeatures**. Set the value of this registry setting to 1 to use **Secure Boot** only or set it to 3 to use **Secure Boot and DMA protection**. +3. Enable Credential Guard: + - Go to HKEY\_LOCAL\_MACHINE\\System\\CurrentControlSet\\Control\\LSA. + - Add a new DWORD value named **LsaCfgFlags**. Set the value of this registry setting to 1 to enable Credential Guard with UEFI lock, set it to 2 to enable Credential Guard without lock, and set it to 0 to disable it. +4. Close Registry Editor. + + +> [!NOTE] +> You can also enable Credential Guard by setting the registry entries in the [FirstLogonCommands](http://msdn.microsoft.com/library/windows/hardware/dn922797.aspx) unattend setting. + + +### Enable Credential Guard by using the Device Guard and Credential Guard hardware readiness tool + +You can also enable Credential Guard by using the [Device Guard and Credential Guard hardware readiness tool](https://www.microsoft.com/download/details.aspx?id=53337). + +``` +DG_Readiness_Tool_v3.0.ps1 -Enable -AutoReboot +``` + +### Credential Guard deployment in virtual machines + +Credential Guard can protect secrets in a Hyper-V virtual machine, just as it would on a physical machine. The enablement steps are the same from within the virtual machine. + +Credential Guard protects secrets from non-privileged access inside the VM. It does not provide additional protection from the host administrator. From the host, you can disable Credential Guard for a virtual machine: + +``` PowerShell +Set-VMSecurity -VMName -VirtualizationBasedSecurityOptOut $true +``` + +Requirements for running Credential Guard in Hyper-V virtual machines +- The Hyper-V host must have an IOMMU, and run at least Windows Server 2016 or Windows 10 version 1607. +- The Hyper-V virtual machine must be Generation 2, have an enabled virtual TPM, and running at least Windows Server 2016 or Windows 10. + + +### Check that Credential Guard is running + +You can use System Information to ensure that Credential Guard is running on a PC. + +1. Click **Start**, type **msinfo32.exe**, and then click **System Information**. +2. Click **System Summary**. +3. Confirm that **Credential Guard** is shown next to **Device Guard Security Services Running**. + + Here's an example: + + ![System Information](images/credguard-msinfo32.png) + +You can also check that Credential Guard is running by using the [Device Guard and Credential Guard hardware readiness tool](https://www.microsoft.com/download/details.aspx?id=53337). + +``` +DG_Readiness_Tool_v3.0.ps1 -Ready +``` + + +### Remove Credential Guard + +If you have to remove Credential Guard on a PC, you can use the following set of procedures, or you can [use the Device Guard and Credential Guard hardware readiness tool](#turn-off-with-hardware-readiness-tool). + +1. If you used Group Policy, disable the Group Policy setting that you used to enable Credential Guard (**Computer Configuration** -> **Administrative Templates** -> **System** -> **Device Guard** -> **Turn on Virtualization Based Security**). +2. Delete the following registry settings: + - HKEY\_LOCAL\_MACHINE\\System\\CurrentControlSet\\Control\\LSA\LsaCfgFlags + - HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\Windows\\DeviceGuard\\EnableVirtualizationBasedSecurity + - HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\Windows\\DeviceGuard\\RequirePlatformSecurityFeatures + + > [!IMPORTANT] + > If you manually remove these registry settings, make sure to delete them all. If you don't remove them all, the device might go into BitLocker recovery. + +3. Delete the Credential Guard EFI variables by using bcdedit. + +**Delete the Credential Guard EFI variables** + +1. From an elevated command prompt, type the following commands: + ``` syntax + + mountvol X: /s + + copy %WINDIR%\System32\SecConfig.efi X:\EFI\Microsoft\Boot\SecConfig.efi /Y + + bcdedit /create {0cb3b571-2f2e-4343-a879-d86a476d7215} /d "DebugTool" /application osloader + + bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} path "\EFI\Microsoft\Boot\SecConfig.efi" + + bcdedit /set {bootmgr} bootsequence {0cb3b571-2f2e-4343-a879-d86a476d7215} + + bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} loadoptions DISABLE-LSA-ISO + + bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} device partition=X: + + mountvol X: /d + + ``` +2. Restart the PC. +3. Accept the prompt to disable Credential Guard. +4. Alternatively, you can disable the virtualization-based security features to turn off Credential Guard. + +> [!NOTE] +> The PC must have one-time access to a domain controller to decrypt content, such as files that were encrypted with EFS. If you want to turn off both Credential Guard and virtualization-based security, run the following bcdedit command after turning off all virtualization-based security Group Policy and registry settings: bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} loadoptions DISABLE-LSA-ISO,DISABLE-VBS + +For more info on virtualization-based security and Device Guard, see [Device Guard deployment guide](device-guard-deployment-guide.md). + + +#### Turn off Credential Guard by using the Device Guard and Credential Guard hardware readiness tool + +You can also disable Credential Guard by using the [Device Guard and Credential Guard hardware readiness tool](https://www.microsoft.com/download/details.aspx?id=53337). + +``` +DG_Readiness_Tool_v3.0.ps1 -Disable -AutoReboot +``` +  +## See also + +Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. +
+ +### Deploying Credential Guard + +[![Deploying Credential Guard](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=sRcyvLJyC_3304300474) \ No newline at end of file diff --git a/windows/keep-secure/credential-guard-not-protected-scenarios.md b/windows/keep-secure/credential-guard-not-protected-scenarios.md new file mode 100644 index 0000000000..f656c9038e --- /dev/null +++ b/windows/keep-secure/credential-guard-not-protected-scenarios.md @@ -0,0 +1,166 @@ +--- +title: Scenarios not protected by Credential Guard (Windows 10) +description: Scenarios not protected by Credential Guard in Windows 10. +ms.prod: w10 +ms.mktglfcycl: explore +ms.sitesec: library +ms.pagetype: security +localizationpriority: high +author: brianlic-msft +--- + +# Scenarios not protected by Credential Guard + +**Applies to** +- Windows 10 +- Windows Server 2016 + +Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. + +Some ways to store credentials are not protected by Credential Guard, including: + +- Software that manages credentials outside of Windows feature protection +- Local accounts and Microsoft Accounts +- Credential Guard does not protect the Active Directory database running on Windows Server 2016 domain controllers. It also does not protect credential input pipelines, such as Windows Server 2016 servers running Remote Desktop Gateway. If you're using a Windows Server 2016 server as a client PC, it will get the same protection as it would when running Windows 10 Enterprise. +- Key loggers +- Physical attacks +- Does not prevent an attacker with malware on the PC from using the privileges associated with any credential. We recommend using dedicated PCs for high value accounts, such as IT Pros and users with access to high value assets in your organization. +- Third-party security packages +- Digest and CredSSP credentials + - When Credential Guard is enabled, neither Digest nor CredSSP have access to users' logon credentials. This implies no Single Sign-On use for these protocols. +- Supplied credentials for NTLM authentication are not protected. If a user is prompted for and enters credentials for NTLM authentication, these credentials are vulnerable to be read from LSASS memory. Note that these same credentials are vulnerable to key loggers as well. + +For further information, see video: [Credentials Protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) + +## Additional mitigations + +Credential Guard can provide mitigations against attacks on derived credentials and prevent the use of stolen credentials elsewhere. However, PCs can still be vulnerable to certain attacks, even if the derived credentials are protected by Credential Guard. These attacks can include abusing privileges and use of derived credentials directly from a compromised device, reusing previously stolen credentials prior to Device Guard, and abuse of management tools and weak application configurations. Because of this, additional mitigations also must be deployed to make the domain environment more robust. + +### Restricting domain users to specific domain-joined devices + +Credential theft attacks allow the attacker to steal secrets from one device and use them from another device. If a user can sign on to multiple devices then any device could be used to steal credentials. How do you ensure that users only sign on using devices that have Credential Guard enabled? By deploying authentication policies that restrict them to specific domain-joined devices that have been configured with Credential Guard. For the domain controller to know what device a user is signing on from, Kerberos armoring must be used. + +#### Kerberos armoring + +Kerberos armoring is part of RFC 6113. When a device supports Kerberos armoring, its TGT is used to protect the user's proof of possession which can mitigate offline dictionary attacks. Kerberos armoring also provides the additional benefit of signed KDC errors this mitigates tampering which can result in things such as downgrade attacks. + +**To enable Kerberos armoring for restricting domain users to specific domain-joined devices** + +- Users need to be in domains that are running Windows Server 2012 R2 or higher +- All the domain controllers in these domains must be configured to support Kerberos armoring. Set the **KDC support for claims, compound authentication, and Kerberos armoring** Group Policy setting to either **Supported** or **Always provide claims**. +- All the devices with Credential Guard that the users will be restricted to must be configured to support Kerberos armoring. Enable the **Kerberos client support for claims, compound authentication and Kerberos armoring** Group Policy settings under **Computer Configuration** -> **Administrative Templates** -> **System** -> **Kerberos**. + +#### Protecting domain-joined device secrets + +Since domain-joined devices also use shared secrets for authentication, attackers can steal those secrets as well. By deploying device certificates with Credential Guard, the private key can be protected. Then authentication policies can require that users sign on devices that authenticate using those certificates. This prevents shared secrets stolen from the device to be used with stolen user credentials to sign on as the user. + +Domain-joined device certificate authentication has the following requirements: +- Devices' accounts are in Windows Server 2012 domain functional level or higher. +- All domain controllers in those domains have KDC certificates which satisfy strict KDC validation certificate requirements: + - KDC EKU present + - DNS domain name matches the DNSName field of the SubjectAltName (SAN) extension +- Windows 10 devices have the CA issuing the domain controller certificates in the enterprise store. +- A process is established to ensure the identity and trustworthiness of the device in a similar manner as you would establish the identity and trustworthiness of a user before issuing them a smartcard. + +#### Deploying domain-joined device certificates + +To guarantee that certificates with the required issuance policy are only installed on the devices these users must use, they must be deployed manually on each device. The same security procedures used for issuing smart cards to users should be applied to device certificates. + +For example, let's say you wanted to use the High Assurance policy only on these devices. Using a Windows Server Enterprise certificate authority, you would create a new template. + +**Creating a new certificate template** + +1. From the Certificate Manager console, right-click **Certificate Templates**, and then click **Manage.** +2. Right-click **Workstation Authentication**, and then click **Duplicate Template**. +3. Right-click the new template, and then click **Properties**. +4. On the **Extensions** tab, click **Application Policies**, and then click **Edit**. +5. Click **Client Authentication**, and then click **Remove**. +6. Add the ID-PKInit-KPClientAuth EKU. Click **Add**, click **New**, and then specify the following values: + - Name: Kerberos Client Auth + - Object Identifier: 1.3.6.1.5.2.3.4 +7. On the **Extensions** tab, click **Issuance Policies**, and then click **Edit**. +8. Under **Issuance Policies**, click**High Assurance**. +9. On the **Subject name** tab, clear the **DNS name** check box, and then select the **User Principal Name (UPN)** check box. + +Then on the devices that are running Credential Guard, enroll the devices using the certificate you just created. + +**Enrolling devices in a certificate** + +Run the following command: +``` syntax +CertReq -EnrollCredGuardCert MachineAuthentication +``` + +> [!NOTE] +> You must restart the device after enrolling the machine authentication certificate. +  +#### How a certificate issuance policy can be used for access control + +Beginning with the Windows Server 2008 R2 domain functional level, domain controllers support for authentication mechanism assurance provides a way to map certificate issuance policy OIDs to universal security groups. Windows Server 2012 domain controllers with claim support can map them to claims. To learn more about authentication mechanism assurance, see [Authentication Mechanism Assurance for AD DS in Windows Server 2008 R2 Step-by-Step Guide](https://technet.microsoft.com/en-us/library/dd378897(v=ws.10).aspx) on TechNet. + +**To see the issuance policies available** + +- The [get-IssuancePolicy.ps1](#bkmk-getscript) shows all of the issuance policies that are available on the certificate authority. + From a Windows PowerShell command prompt, run the following command: + + ``` syntax + .\get-IssuancePolicy.ps1 –LinkedToGroup:All + ``` + +**To link an issuance policy to a universal security group** + +- The [set-IssuancePolicyToGroupLink.ps1](#bkmk-setscript) creates a Universal security group, creates an organizational unit, and links the issuance policy to that Universal security group. + From a Windows PowerShell command prompt, run the following command: + + ``` syntax + .\set-IssuancePolicyToGroupLink.ps1 –IssuancePolicyName:"" –groupOU:"" –groupName:”" + ``` + +#### Restricting user sign on + +So we now have completed the following: + +- Created a special certificate issuance policy to identify devices that meet the deployment criteria required for the user to be able to sign on +- Mapped that policy to a universal security group or claim +- Provided a way for domain controllers to get the device authorization data during user sign on using Kerberos armoring. Now what is left to do is to configure the access check on the domain controllers. This is done using authentication policies. + +Authentication policies have the following requirements: +- User accounts are in a Windows Server 2012 domain functional level or higher domain. + +**Creating an authentication policy restricting users to the specific universal security group** + +1. Open Active Directory Administrative Center. +2. Click **Authentication**, click **New**, and then click **Authentication Policy**. +3. In the **Display name** box, enter a name for this authentication policy. +4. Under the **Accounts** heading, click **Add**. +5. In the **Select Users, Computers, or Service Accounts** dialog box, type the name of the user account you wish to restrict, and then click **OK**. +6. Under the **User Sign On** heading, click the **Edit** button. +7. Click **Add a condition**. +8. In the **Edit Access Control Conditions** box, ensure that it reads **User** > **Group** > **Member of each** > **Value**, and then click **Add items**. +9. In the **Select Users, Computers, or Service Accounts** dialog box, type the name of the universal security group that you created with the set-IssuancePolicyToGroupLink script, and then click **OK**. +10. Click **OK** to close the **Edit Access Control Conditions** box. +11. Click **OK** to create the authentication policy. +12. Close Active Directory Administrative Center. + +> [!NOTE] +> When the authentication policy enforces policy restrictions, users will not be able to sign on using devices that do not have a certificate with the appropriate issuance policy deployed. This applies to both local and remote sign on scenarios. Therefore, it is strongly recommended to first only audit policy restrictions to ensure you don't have unexpected failures. + +#### Discovering authentication failures due to authentication policies + +To make tracking authentication failures due to authentication policies easier, an operational log exists with just those events. To enable the logs on the domain controllers, in Event Viewer, navigate to **Applications and Services Logs\\Microsoft\\Windows\\Authentication, right-click AuthenticationPolicyFailures-DomainController**, and then click **Enable Log**. + +To learn more about authentication policy events, see [Authentication Policies and Authentication Policy Silos](https://technet.microsoft.com/en-us/library/dn486813(v=ws.11).aspx). + +## See also + +Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. + +### Credentials protected by Credential Guard + +[![Credentials protected by Credential Guard](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) + + + +**Related videos in this series:** + +[Protecting privileged users with Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=JNbjYMJyC_8104300474) diff --git a/windows/keep-secure/credential-guard-requirements.md b/windows/keep-secure/credential-guard-requirements.md new file mode 100644 index 0000000000..ee45ea20a9 --- /dev/null +++ b/windows/keep-secure/credential-guard-requirements.md @@ -0,0 +1,128 @@ +--- +title: Credential Guard Requirements (Windows 10) +description: Credential Guard baseline hardware, firmware, and software requirements, and additional protections for improved security associated with available hardware and firmware options. +ms.prod: w10 +ms.mktglfcycl: explore +ms.sitesec: library +ms.pagetype: security +localizationpriority: high +author: brianlic-msft +--- + +# Requirements + +**Applies to** +- Windows 10 +- Windows Server 2016 + +Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. + +For Credential Guard to provide protections, the computers you are protecting must meet certain baseline hardware, firmware, and software requirements which we will refer to as [Hardware and software requirements](#hardware-and-software-requirements). Additionally, Credential Guard blocks specific authentication capabilities, so applications that require such capabilities will break. We will refer to this as [Application requirements](#application-requirements). Beyond that, computers can meet additional hardware and firmware qualifications, and receive additional protections. Those computers will be more hardened against certain threats. For detailed information on baseline protections, plus protections for improved security that are associated with hardware and firmware options available in 2015, 2016, and 2017, refer to the tables in [Security Considerations](#security-considerations). + + + +## Hardware and software requirements + +To provide basic protection against OS level attempts to read Credential Manager domain credentials, NTLM and Kerberos derived credentials, Credential Manager uses: +- Support for Virtualization-based security (required) +- Secure boot (required) +- TPM 2.0 either discrete or firmware (preferred - provides binding to hardware) +- UEFI lock (preferred - prevents attacker from disabling with a simple registry key change) + +The Virtualization-based security requires: +- 64-bit CPU +- CPU virtualization extensions plus extended page tables +- Windows hypervisor + +## Application requirements + +When Credential Guard is enabled, specific authentication capabilities are blocked, so applications that require such capabilities will break. Applications should be tested prior to deployment to ensure compatiblity with the reduced functionality. + +>[!WARNING] +> Enabling Credential Guard on domain controllers is not supported.
+> The domain controller hosts authentication services which integrate with processes isolated when Credential Guard is enabled, causing crashes. + +>[!NOTE] +> Credential Guard does not provide protections for the Active Directory database or the Security Accounts Manager (SAM). The credentials protected by Kerberos and NTLM when Credential Guard is enabled are also in the Active Directory database (on domain controllers) and the SAM (for local accounts). + +Applications will break if they require: +- Kerberos DES encryption support +- Kerberos unconstrained delegation +- Extracting the Kerberos TGT +- NTLMv1 + +Applications will prompt and expose credentials to risk if they require: +- Digest authentication +- Credential delegation +- MS-CHAPv2 + +Applications may cause performance issues when they attempt to hook the isolated Credential Guard process. + +See this video: [Credentials Protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) + + +## Security considerations + +All computers that meet baseline protections for hardware, firmware, and software can use Credential Guard. +Computers that meet additional qualifications can provide additional protections to further reduce the attack surface. +The following tables describe baseline protections, plus protections for improved security that are associated with hardware and firmware options available in 2015, 2016, and 2017. + +> [!NOTE] +> Beginning with Windows 10, version 1607, Trusted Platform Module (TPM 2.0) must be enabled by default on new shipping computers.
+> If you are an OEM, see [PC OEM requirements for Device Guard and Credential Guard](https://msdn.microsoft.com/library/windows/hardware/mt767514.aspx).
+ +### Baseline protections + +|Baseline Protections | Description | +|---------------------------------------------|----------------------------------------------------| +| Hardware: **64-bit CPU** | A 64-bit computer is required for the Windows hypervisor to provide VBS. | +| Hardware: **CPU virtualization extensions**,
plus **extended page tables** | **Requirements**: These hardware features are required for VBS:
One of the following virtualization extensions:
• VT-x (Intel) or
• AMD-V
And:
• Extended page tables, also called Second Level Address Translation (SLAT).

**Security benefits**: VBS provides isolation of secure kernel from normal operating system. Vulnerabilities and Day 0s in normal operating system cannot be exploited because of this isolation. | +| Hardware: **Trusted Platform Module (TPM)** |  **Requirement**: TPM 1.2 or TPM 2.0, either discrete or firmware.
[TPM recommendations](https://technet.microsoft.com/itpro/windows/keep-secure/tpm-recommendations)

**Security benefits**: A TPM provides protection for VBS encryption keys that are stored in the firmware. This helps protect against attacks involving a physically present user with BIOS access. | +| Firmware: **UEFI firmware version 2.3.1.c or higher with UEFI Secure Boot** | **Requirements**: See the following Windows Hardware Compatibility Program requirement: [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot)

**Security benefits**: UEFI Secure Boot helps ensure that the device boots only authorized code. This can prevent boot kits and root kits from installing and persisting across reboots. | +| Firmware: **Secure firmware update process** | **Requirements**: UEFI firmware must support secure firmware update found under the following Windows Hardware Compatibility Program requirement: [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot).

**Security benefits**: UEFI firmware just like software can have security vulnerabilities that, when found, need to be patched through firmware updates. Patching helps prevent root kits from getting installed. | +| Software: Qualified **Windows operating system** | **Requirement**: Windows 10 Enterprise, Windows 10 Education, Windows Server 2016, or Windows 10 IoT Enterprise

Important:
Windows Server 2016 running as a domain controller does not support Credential Guard. Only Device Guard is supported in this configuration.


**Security benefits**: Support for VBS and for management features that simplify configuration of Credential Guard. | + +> [!IMPORTANT] +> The following tables list additional qualifications for improved security. We strongly recommend meeting the additional qualifications to significantly strengthen the level of security that Credential Guard can provide. + +### 2015 Additional security qualifications starting with Windows 10, version 1507, and Windows Server 2016 Technical Preview 4 + +| Protections for Improved Security | Description | +|---------------------------------------------|----------------------------------------------------| +| Hardware: **IOMMU** (input/output memory management unit) | **Requirement**: VT-D or AMD Vi IOMMU

**Security benefits**: An IOMMU can enhance system resiliency against memory attacks. For more information, see [ACPI description tables](https://msdn.microsoft.com/windows/hardware/drivers/bringup/acpi-system-description-tables). | +| Firmware: **Securing Boot Configuration and Management** | **Requirements**:
• BIOS password or stronger authentication must be supported.
• In the BIOS configuration, BIOS authentication must be set.
• There must be support for protected BIOS option to configure list of permitted boot devices (for example, “Boot only from internal hard drive”) and boot device order, overriding BOOTORDER modification made by operating system.
• In the BIOS configuration, BIOS options related to security and boot options (list of permitted boot devices, boot order) must be secured to prevent other operating systems from starting and to prevent changes to the BIOS settings.

**Security benefits**:
• BIOS password or stronger authentication helps ensure that only authenticated Platform BIOS administrators can change BIOS settings. This helps protect against a physically present user with BIOS access.
• Boot order when locked provides protection against the computer being booted into WinRE or another operating system on bootable media. | +| Firmware: **Secure MOR, revision 2 implementation** | **Requirement**: Secure MOR, revision 2 implementation

**Security benefits**: A secure MOR bit prevents advanced memory attacks. For more information, see [Secure MOR implementation](https://msdn.microsoft.com/windows/hardware/drivers/bringup/device-guard-requirements). | + +
+ +### 2016 Additional security qualifications starting with Windows 10, version 1607, and Windows Server 2016 + +> [!IMPORTANT] +> The following tables list additional qualifications for improved security. Systems that meet these additional qualifications can provide more protections. + +| Protections for Improved Security | Description | +|---------------------------------------------|----------------------------------------------------| +| Firmware: **Hardware Rooted Trust Platform Secure Boot** | **Requirements**:
Boot Integrity (Platform Secure Boot) must be supported. See the Windows Hardware Compatibility Program requirements under [System.Fundamentals.Firmware.CS.UEFISecureBoot.ConnectedStandby](https://msdn.microsoft.com/library/windows/hardware/dn932807(v=vs.85).aspx#system_fundamentals_firmware_cs_uefisecureboot_connectedstandby)
• The Hardware Security Test Interface (HSTI) must be implemented. See [Hardware Security Testability Specification](https://msdn.microsoft.com/en-us/library/windows/hardware/mt712332(v=vs.85).aspx).

**Security benefits**:
• Boot Integrity (Platform Secure Boot) from Power-On provides protections against physically present attackers, and defense-in-depth against malware.
• HSTI provides additional security assurance for correctly secured silicon and platform. | +| Firmware: **Firmware Update through Windows Update** | **Requirements**: Firmware must support field updates through Windows Update and UEFI encapsulation update.

**Security benefits**: Helps ensure that firmware updates are fast, secure, and reliable. | +| Firmware: **Securing Boot Configuration and Management** | **Requirements**:
• Required BIOS capabilities: Ability of OEM to add ISV, OEM, or Enterprise Certificate in Secure Boot DB at manufacturing time.
• Required configurations: Microsoft UEFI CA must be removed from Secure Boot DB. Support for 3rd-party UEFI modules is permitted but should leverage ISV-provided certificates or OEM certificate for the specific UEFI software.

**Security benefits**:
• Enterprises can choose to allow proprietary EFI drivers/applications to run.
• Removing Microsoft UEFI CA from Secure Boot DB provides full control to enterprises over software that runs before the operating system boots. | + +
+ +### 2017 Additional security qualifications starting with Windows 10, version 1703 + +The following table lists qualifications for Windows 10, version 1703, which are in addition to all preceding qualifications. + +| Protection for Improved Security | Description | +|---------------------------------------------|----------------------------------------------------| +| Firmware: **VBS enablement of NX protection for UEFI runtime services** | **Requirements**:
• VBS will enable No-Execute (NX) protection on UEFI runtime service code and data memory regions. UEFI runtime service code must support read-only page protections, and UEFI runtime service data must not be executable.
• UEFI runtime service must meet these requirements:
    - Implement UEFI 2.6 EFI_MEMORY_ATTRIBUTES_TABLE. All UEFI runtime service memory (code and data) must be described by this table.
    - PE sections need to be page-aligned in memory (not required for in non-volatile storage).
    - The Memory Attributes Table needs to correctly mark code and data as RO/NX for configuration by the OS:
        - All entries must include attributes EFI_MEMORY_RO, EFI_MEMORY_XP, or both
        - No entries may be left with neither of the above attributes, indicating memory that is both executable and writable. Memory must be either readable and executable or writeable and non-executable.

Notes:
• This only applies to UEFI runtime service memory, and not UEFI boot service memory.
• This protection is applied by VBS on OS page tables.


Please also note the following:
• Do not use sections that are both writeable and executable
• Do not attempt to directly modify executable system memory
• Do not use dynamic code

**Security benefits**:
• Vulnerabilities in UEFI runtime, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware. | +| Firmware: **Firmware support for SMM protection** | **Requirements**: The [Windows SMM Security Mitigations Table (WSMT) specification](http://download.microsoft.com/download/1/8/A/18A21244-EB67-4538-BAA2-1A54E0E490B6/WSMT.docx) contains details of an Advanced Configuration and Power Interface (ACPI) table that was created for use with Windows operating systems that support Windows virtualization-based security (VBS) features.

**Security benefits**:
• Protects against potential vulnerabilities in UEFI runtime services, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware.
• Blocks additional security attacks against SMM. | + +
+ +## See also + +Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. + + ### Credential Guard Deployment Requirements + +[![Credential Guard Deployment Requirements](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=sRcyvLJyC_3304300474) \ No newline at end of file diff --git a/windows/keep-secure/credential-guard-scripts.md b/windows/keep-secure/credential-guard-scripts.md new file mode 100644 index 0000000000..1eca33e2e6 --- /dev/null +++ b/windows/keep-secure/credential-guard-scripts.md @@ -0,0 +1,488 @@ +--- +title: Scripts for Certificate Issuance Policies in Credential Guard (Windows 10) +description: Scripts listed in this topic for obtaining the available issuance policies on the certificate authority for Credential Guard on Windows 10. +ms.prod: w10 +ms.mktglfcycl: explore +ms.sitesec: library +ms.pagetype: security +localizationpriority: high +author: brianlic-msft +--- + +# Credential Guard: Scripts for Certificate Authority Issuance Policies + + +Here is a list of scripts mentioned in this topic. + +## Get the available issuance policies on the certificate authority + +Save this script file as get-IssuancePolicy.ps1. + +``` syntax +####################################### +## Parameters to be defined ## +## by the user ## +####################################### +Param ( +$Identity, +$LinkedToGroup +) +####################################### +## Strings definitions ## +####################################### +Data getIP_strings { +# culture="en-US" +ConvertFrom-StringData -stringdata @' +help1 = This command can be used to retrieve all available Issuance Policies in a forest. The forest of the currently logged on user is targeted. +help2 = Usage: +help3 = The following parameter is mandatory: +help4 = -LinkedToGroup: +help5 = "yes" will return only Issuance Policies that are linked to groups. Checks that the linked Issuance Policies are linked to valid groups. +help6 = "no" will return only Issuance Policies that are not currently linked to any group. +help7 = "all" will return all Issuance Policies defined in the forest. Checks that the linked Issuance policies are linked to valid groups. +help8 = The following parameter is optional: +help9 = -Identity:. If you specify an identity, the option specified in the "-LinkedToGroup" parameter is ignored. +help10 = Output: This script returns the Issuance Policy objects meeting the criteria defined by the above parameters. +help11 = Examples: +errorIPNotFound = Error: no Issuance Policy could be found with Identity "{0}" +ErrorNotSecurity = Error: Issuance Policy "{0}" is linked to group "{1}" which is not of type "Security". +ErrorNotUniversal = Error: Issuance Policy "{0}" is linked to group "{1}" whose scope is not "Universal". +ErrorHasMembers = Error: Issuance Policy "{0}" is linked to group "{1}" which has a non-empty membership. The group has the following members: +LinkedIPs = The following Issuance Policies are linked to groups: +displayName = displayName : {0} +Name = Name : {0} +dn = distinguishedName : {0} + InfoName = Linked Group Name: {0} + InfoDN = Linked Group DN: {0} +NonLinkedIPs = The following Issuance Policies are NOT linked to groups: +'@ +} +##Import-LocalizedData getIP_strings +import-module ActiveDirectory +####################################### +## Help ## +####################################### +function Display-Help { + "" + $getIP_strings.help1 + "" +$getIP_strings.help2 +"" +$getIP_strings.help3 +" " + $getIP_strings.help4 +" " + $getIP_strings.help5 + " " + $getIP_strings.help6 + " " + $getIP_strings.help7 +"" +$getIP_strings.help8 + " " + $getIP_strings.help9 + "" + $getIP_strings.help10 +"" +"" +$getIP_strings.help11 + " " + '$' + "myIPs = .\get-IssuancePolicy.ps1 -LinkedToGroup:All" + " " + '$' + "myLinkedIPs = .\get-IssuancePolicy.ps1 -LinkedToGroup:yes" + " " + '$' + "myIP = .\get-IssuancePolicy.ps1 -Identity:""Medium Assurance""" +"" +} +$root = get-adrootdse +$domain = get-addomain -current loggedonuser +$configNCDN = [String]$root.configurationNamingContext +if ( !($Identity) -and !($LinkedToGroup) ) { +display-Help +break +} +if ($Identity) { + $OIDs = get-adobject -Filter {(objectclass -eq "msPKI-Enterprise-Oid") -and ((name -eq $Identity) -or (displayname -eq $Identity) -or (distinguishedName -like $Identity)) } -searchBase $configNCDN -properties * + if ($OIDs -eq $null) { +$errormsg = $getIP_strings.ErrorIPNotFound -f $Identity +write-host $errormsg -ForegroundColor Red + } + foreach ($OID in $OIDs) { + if ($OID."msDS-OIDToGroupLink") { +# In case the Issuance Policy is linked to a group, it is good to check whether there is any problem with the mapping. + $groupDN = $OID."msDS-OIDToGroupLink" + $group = get-adgroup -Identity $groupDN + $groupName = $group.Name +# Analyze the group + if ($group.groupCategory -ne "Security") { +$errormsg = $getIP_strings.ErrorNotSecurity -f $Identity, $groupName + write-host $errormsg -ForegroundColor Red + } + if ($group.groupScope -ne "Universal") { + $errormsg = $getIP_strings.ErrorNotUniversal -f $Identity, $groupName +write-host $errormsg -ForegroundColor Red + } + $members = Get-ADGroupMember -Identity $group + if ($members) { + $errormsg = $getIP_strings.ErrorHasMembers -f $Identity, $groupName +write-host $errormsg -ForegroundColor Red + foreach ($member in $members) { + write-host " " $member -ForeGroundColor Red + } + } + } + } + return $OIDs + break +} +if (($LinkedToGroup -eq "yes") -or ($LinkedToGroup -eq "all")) { + $LDAPFilter = "(&(objectClass=msPKI-Enterprise-Oid)(msDS-OIDToGroupLink=*)(flags=2))" + $LinkedOIDs = get-adobject -searchBase $configNCDN -LDAPFilter $LDAPFilter -properties * + write-host "" + write-host "*****************************************************" + write-host $getIP_strings.LinkedIPs + write-host "*****************************************************" + write-host "" + if ($LinkedOIDs -ne $null){ + foreach ($OID in $LinkedOIDs) { +# Display basic information about the Issuance Policies + "" + $getIP_strings.displayName -f $OID.displayName + $getIP_strings.Name -f $OID.Name + $getIP_strings.dn -f $OID.distinguishedName +# Get the linked group. + $groupDN = $OID."msDS-OIDToGroupLink" + $group = get-adgroup -Identity $groupDN + $getIP_strings.InfoName -f $group.Name + $getIP_strings.InfoDN -f $groupDN +# Analyze the group + $OIDName = $OID.displayName + $groupName = $group.Name + if ($group.groupCategory -ne "Security") { + $errormsg = $getIP_strings.ErrorNotSecurity -f $OIDName, $groupName + write-host $errormsg -ForegroundColor Red + } + if ($group.groupScope -ne "Universal") { + $errormsg = $getIP_strings.ErrorNotUniversal -f $OIDName, $groupName + write-host $errormsg -ForegroundColor Red + } + $members = Get-ADGroupMember -Identity $group + if ($members) { + $errormsg = $getIP_strings.ErrorHasMembers -f $OIDName, $groupName + write-host $errormsg -ForegroundColor Red + foreach ($member in $members) { + write-host " " $member -ForeGroundColor Red + } + } + write-host "" + } + }else{ +write-host "There are no issuance policies that are mapped to a group" + } + if ($LinkedToGroup -eq "yes") { + return $LinkedOIDs + break + } +} +if (($LinkedToGroup -eq "no") -or ($LinkedToGroup -eq "all")) { + $LDAPFilter = "(&(objectClass=msPKI-Enterprise-Oid)(!(msDS-OIDToGroupLink=*))(flags=2))" + $NonLinkedOIDs = get-adobject -searchBase $configNCDN -LDAPFilter $LDAPFilter -properties * + write-host "" + write-host "*********************************************************" + write-host $getIP_strings.NonLinkedIPs + write-host "*********************************************************" + write-host "" + if ($NonLinkedOIDs -ne $null) { + foreach ($OID in $NonLinkedOIDs) { +# Display basic information about the Issuance Policies +write-host "" +$getIP_strings.displayName -f $OID.displayName +$getIP_strings.Name -f $OID.Name +$getIP_strings.dn -f $OID.distinguishedName +write-host "" + } + }else{ +write-host "There are no issuance policies which are not mapped to groups" + } + if ($LinkedToGroup -eq "no") { + return $NonLinkedOIDs + break + } +} +``` +> [!NOTE] +> If you're having trouble running this script, try replacing the single quote after the ConvertFrom-StringData parameter. +  +### Link an issuance policy to a group + +Save the script file as set-IssuancePolicyToGroupLink.ps1. + +``` syntax +####################################### +## Parameters to be defined ## +## by the user ## +####################################### +Param ( +$IssuancePolicyName, +$groupOU, +$groupName +) +####################################### +## Strings definitions ## +####################################### +Data ErrorMsg { +# culture="en-US" +ConvertFrom-StringData -stringdata @' +help1 = This command can be used to set the link between a certificate issuance policy and a universal security group. +help2 = Usage: +help3 = The following parameters are required: +help4 = -IssuancePolicyName: +help5 = -groupName:. If no name is specified, any existing link to a group is removed from the Issuance Policy. +help6 = The following parameter is optional: +help7 = -groupOU:. If this parameter is not specified, the group is looked for or created in the Users container. +help8 = Examples: +help9 = This command will link the issuance policy whose display name is "High Assurance" to the group "HighAssuranceGroup" in the Organizational Unit "OU_FOR_IPol_linked_groups". If the group or the Organizational Unit do not exist, you will be prompted to create them. +help10 = This command will unlink the issuance policy whose name is "402.164959C40F4A5C12C6302E31D5476062" from any group. +MultipleIPs = Error: Multiple Issuance Policies with name or display name "{0}" were found in the subtree of "{1}" +NoIP = Error: no issuance policy with name or display name "{0}" could be found in the subtree of "{1}". +IPFound = An Issuance Policy with name or display name "{0}" was successfully found: {1} +MultipleOUs = Error: more than 1 Organizational Unit with name "{0}" could be found in the subtree of "{1}". +confirmOUcreation = Warning: The Organizational Unit that you specified does not exist. Do you want to create it? +OUCreationSuccess = Organizational Unit "{0}" successfully created. +OUcreationError = Error: Organizational Unit "{0}" could not be created. +OUFoundSuccess = Organizational Unit "{0}" was successfully found. +multipleGroups = Error: More than one group with name "{0}" was found in Organizational Unit "{1}". +confirmGroupCreation = Warning: The group that you specified does not exist. Do you want to create it? +groupCreationSuccess = Univeral Security group "{0}" successfully created. +groupCreationError = Error: Univeral Security group "{0}" could not be created. +GroupFound = Group "{0}" was successfully found. +confirmLinkDeletion = Warning: The Issuance Policy "{0}" is currently linked to group "{1}". Do you really want to remove the link? +UnlinkSuccess = Certificate issuance policy successfully unlinked from any group. +UnlinkError = Removing the link failed. +UnlinkExit = Exiting without removing the link from the issuance policy to the group. +IPNotLinked = The Certificate issuance policy is not currently linked to any group. If you want to link it to a group, you should specify the -groupName option when starting this script. +ErrorNotSecurity = Error: You cannot link issuance Policy "{0}" to group "{1}" because this group is not of type "Security". +ErrorNotUniversal = Error: You cannot link issuance Policy "{0}" to group "{1}" because the scope of this group is not "Universal". +ErrorHasMembers = Error: You cannot link issuance Policy "{0}" to group "{1}" because it has a non-empty membership. The group has the following members: +ConfirmLinkReplacement = Warning: The Issuance Policy "{0}" is currently linked to group "{1}". Do you really want to update the link to point to group "{2}"? +LinkSuccess = The certificate issuance policy was successfully linked to the specified group. +LinkError = The certificate issuance policy could not be linked to the specified group. +ExitNoLinkReplacement = Exiting without setting the new link. +'@ +} +# import-localizeddata ErrorMsg +function Display-Help { +"" +write-host $ErrorMsg.help1 +"" +write-host $ErrorMsg.help2 +"" +write-host $ErrorMsg.help3 +write-host "`t" $ErrorMsg.help4 +write-host "`t" $ErrorMsg.help5 +"" +write-host $ErrorMsg.help6 +write-host "`t" $ErrorMsg.help7 +"" +"" +write-host $ErrorMsg.help8 +"" +write-host $ErrorMsg.help9 +".\Set-IssuancePolicyToGroupMapping.ps1 -IssuancePolicyName ""High Assurance"" -groupOU ""OU_FOR_IPol_linked_groups"" -groupName ""HighAssuranceGroup"" " +"" +write-host $ErrorMsg.help10 +'.\Set-IssuancePolicyToGroupMapping.ps1 -IssuancePolicyName "402.164959C40F4A5C12C6302E31D5476062" -groupName $null ' +"" +} +# Assumption: The group to which the Issuance Policy is going +# to be linked is (or is going to be created) in +# the domain the user running this script is a member of. +import-module ActiveDirectory +$root = get-adrootdse +$domain = get-addomain -current loggedonuser +if ( !($IssuancePolicyName) ) { +display-Help +break +} +####################################### +## Find the OID object ## +## (aka Issuance Policy) ## +####################################### +$searchBase = [String]$root.configurationnamingcontext +$OID = get-adobject -searchBase $searchBase -Filter { ((displayname -eq $IssuancePolicyName) -or (name -eq $IssuancePolicyName)) -and (objectClass -eq "msPKI-Enterprise-Oid")} -properties * +if ($OID -eq $null) { +$tmp = $ErrorMsg.NoIP -f $IssuancePolicyName, $searchBase +write-host $tmp -ForeGroundColor Red +break; +} +elseif ($OID.GetType().IsArray) { +$tmp = $ErrorMsg.MultipleIPs -f $IssuancePolicyName, $searchBase +write-host $tmp -ForeGroundColor Red +break; +} +else { +$tmp = $ErrorMsg.IPFound -f $IssuancePolicyName, $OID.distinguishedName +write-host $tmp -ForeGroundColor Green +} +####################################### +## Find the container of the group ## +####################################### +if ($groupOU -eq $null) { +# default to the Users container +$groupContainer = $domain.UsersContainer +} +else { +$searchBase = [string]$domain.DistinguishedName +$groupContainer = get-adobject -searchBase $searchBase -Filter { (Name -eq $groupOU) -and (objectClass -eq "organizationalUnit")} +if ($groupContainer.count -gt 1) { +$tmp = $ErrorMsg.MultipleOUs -f $groupOU, $searchBase +write-host $tmp -ForegroundColor Red +break; +} +elseif ($groupContainer -eq $null) { +$tmp = $ErrorMsg.confirmOUcreation +write-host $tmp " ( (y)es / (n)o )" -ForegroundColor Yellow -nonewline +$userChoice = read-host +if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { +new-adobject -Name $groupOU -displayName $groupOU -Type "organizationalUnit" -ProtectedFromAccidentalDeletion $true -path $domain.distinguishedName +if ($?){ +$tmp = $ErrorMsg.OUCreationSuccess -f $groupOU +write-host $tmp -ForegroundColor Green +} +else{ +$tmp = $ErrorMsg.OUCreationError -f $groupOU +write-host $tmp -ForeGroundColor Red +break; +} +$groupContainer = get-adobject -searchBase $searchBase -Filter { (Name -eq $groupOU) -and (objectClass -eq "organizationalUnit")} +} +else { +break; +} +} +else { +$tmp = $ErrorMsg.OUFoundSuccess -f $groupContainer.name +write-host $tmp -ForegroundColor Green +} +} +####################################### +## Find the group ## +####################################### +if (($groupName -ne $null) -and ($groupName -ne "")){ +##$searchBase = [String]$groupContainer.DistinguishedName +$searchBase = $groupContainer +$group = get-adgroup -Filter { (Name -eq $groupName) -and (objectClass -eq "group") } -searchBase $searchBase +if ($group -ne $null -and $group.gettype().isarray) { +$tmp = $ErrorMsg.multipleGroups -f $groupName, $searchBase +write-host $tmp -ForeGroundColor Red +break; +} +elseif ($group -eq $null) { +$tmp = $ErrorMsg.confirmGroupCreation +write-host $tmp " ( (y)es / (n)o )" -ForegroundColor Yellow -nonewline +$userChoice = read-host +if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { +new-adgroup -samAccountName $groupName -path $groupContainer.distinguishedName -GroupScope "Universal" -GroupCategory "Security" +if ($?){ +$tmp = $ErrorMsg.GroupCreationSuccess -f $groupName +write-host $tmp -ForegroundColor Green +}else{ +$tmp = $ErrorMsg.groupCreationError -f $groupName +write-host $tmp -ForeGroundColor Red +break +} +$group = get-adgroup -Filter { (Name -eq $groupName) -and (objectClass -eq "group") } -searchBase $searchBase +} +else { +break; +} +} +else { +$tmp = $ErrorMsg.GroupFound -f $group.Name +write-host $tmp -ForegroundColor Green +} +} +else { +##### +## If the group is not specified, we should remove the link if any exists +##### +if ($OID."msDS-OIDToGroupLink" -ne $null) { +$tmp = $ErrorMsg.confirmLinkDeletion -f $IssuancePolicyName, $OID."msDS-OIDToGroupLink" +write-host $tmp " ( (y)es / (n)o )" -ForegroundColor Yellow -nonewline +$userChoice = read-host +if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { +set-adobject -Identity $OID -Clear "msDS-OIDToGroupLink" +if ($?) { +$tmp = $ErrorMsg.UnlinkSuccess +write-host $tmp -ForeGroundColor Green +}else{ +$tmp = $ErrorMsg.UnlinkError +write-host $tmp -ForeGroundColor Red +} +} +else { +$tmp = $ErrorMsg.UnlinkExit +write-host $tmp +break +} +} +else { +$tmp = $ErrorMsg.IPNotLinked +write-host $tmp -ForeGroundColor Yellow +} +break; +} +####################################### +## Verify that the group is ## +## Universal, Security, and ## +## has no members ## +####################################### +if ($group.GroupScope -ne "Universal") { +$tmp = $ErrorMsg.ErrorNotUniversal -f $IssuancePolicyName, $groupName +write-host $tmp -ForeGroundColor Red +break; +} +if ($group.GroupCategory -ne "Security") { +$tmp = $ErrorMsg.ErrorNotSecurity -f $IssuancePolicyName, $groupName +write-host $tmp -ForeGroundColor Red +break; +} +$members = Get-ADGroupMember -Identity $group +if ($members -ne $null) { +$tmp = $ErrorMsg.ErrorHasMembers -f $IssuancePolicyName, $groupName +write-host $tmp -ForeGroundColor Red +foreach ($member in $members) {write-host " $member.name" -ForeGroundColor Red} +break; +} +####################################### +## We have verified everything. We ## +## can create the link from the ## +## Issuance Policy to the group. ## +####################################### +if ($OID."msDS-OIDToGroupLink" -ne $null) { +$tmp = $ErrorMsg.ConfirmLinkReplacement -f $IssuancePolicyName, $OID."msDS-OIDToGroupLink", $group.distinguishedName +write-host $tmp "( (y)es / (n)o )" -ForegroundColor Yellow -nonewline +$userChoice = read-host +if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { +$tmp = @{'msDS-OIDToGroupLink'= $group.DistinguishedName} +set-adobject -Identity $OID -Replace $tmp +if ($?) { +$tmp = $Errormsg.LinkSuccess +write-host $tmp -Foreground Green +}else{ +$tmp = $ErrorMsg.LinkError +write-host $tmp -Foreground Red +} +} else { +$tmp = $Errormsg.ExitNoLinkReplacement +write-host $tmp +break +} +} +else { +$tmp = @{'msDS-OIDToGroupLink'= $group.DistinguishedName} +set-adobject -Identity $OID -Add $tmp +if ($?) { +$tmp = $Errormsg.LinkSuccess +write-host $tmp -Foreground Green +}else{ +$tmp = $ErrorMsg.LinkError +write-host $tmp -Foreground Red +} +} +``` + +> [!NOTE] +> If you're having trouble running this script, try replacing the single quote after the ConvertFrom-StringData parameter. \ No newline at end of file diff --git a/windows/keep-secure/credential-guard.md b/windows/keep-secure/credential-guard.md index f36732aa45..d0fba3ca1d 100644 --- a/windows/keep-secure/credential-guard.md +++ b/windows/keep-secure/credential-guard.md @@ -16,6 +16,8 @@ author: brianlic-msft - Windows 10 - Windows Server 2016 +Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. + Introduced in Windows 10 Enterprise and Windows Server 2016, Credential Guard uses virtualization-based security to isolate secrets so that only privileged system software can access them. Unauthorized access to these secrets can lead to credential theft attacks, such as Pass-the-Hash or Pass-The-Ticket. Credential Guard prevents these attacks by protecting NTLM password hashes, Kerberos Ticket Granting Tickets, and credentials stored by applications as domain credentials. By enabling Credential Guard, the following features and solutions are provided: @@ -24,928 +26,6 @@ By enabling Credential Guard, the following features and solutions are provided: - **Virtualization-based security** Windows NTLM and Kerberos derived credentials and other secrets run in a protected environment that is isolated from the running operating system. - **Better protection against advanced persistent threats** When Credential Manager domain credentials, NTLM, and Kerberos derived credentials are protected using virtualization-based security, the credential theft attack techniques and tools used in many targeted attacks are blocked. Malware running in the operating system with administrative privileges cannot extract secrets that are protected by virtualization-based security. While Credential Guard is a powerful mitigation, persistent threat attacks will likely shift to new attack techniques and you should also incorporate Device Guard and other security strategies and architectures. -## How it works - -Kerberos, NTLM, and Credential manager isolate secrets that previous versions of Windows stored in the Local Security Authority (LSA) by using virtualization-based security. Prior to Windows 10, the LSA stored secrets used by the operating system in its process memory. With Credential Guard enabled, the LSA process in the operating system talks to a new component called the isolated LSA process that stores and protects those secrets. Data stored by the isolated LSA process is protected using virtualization-based security and is not accessible to the rest of the operating system. LSA uses remote procedure calls to communicate with the isolated LSA process. - -For security reasons, the isolated LSA process doesn't host any device drivers. Instead, it only hosts a small subset of operating system binaries that are needed for security and nothing else. All of these binaries are signed with a certificate that is trusted by virtualization-based security and these signatures are validated before launching the file in the protected environment. - -When Credential Guard is enabled, NTLMv1, MS-CHAPv2, Digest, and CredSSP cannot use the signed-in credentials. Thus, single sign-on does not work with these protocols. However, applications can prompt for credentials or use credentials stored in the Windows Vault which are not protected by Credential Guard with any of these protocol. It is strongly recommended that valuable credentials, such as the sign-in credentials, not be used with any of these protocols. If these protocols must be used by domain or Azure AD users, secondary credentials should be provisioned for these use cases. - -When Credential Guard is enabled, Kerberos does not allow unconstrained Kerberos delegation or DES encryption, not only for signed-in credentials, but also prompted or saved credentials. - -Here's a high-level overview on how the LSA is isolated by using virtualization-based security: - -![Credential Guard overview](images/credguard.png) - -## Requirements - -For Credential Guard to provide protections, the computers you are protecting must meet certain baseline hardware, firmware, and software requirements which we will refer to as [Hardware and software requirements](#hardware-and-software-requirements). Additionally Credential Guard blocks specific authentication capabilities, so applications which require blocked capabilities will break. We will refer to this as [Application requirements](#application-requirements). Beyond that, computers can meet additional hardware and firmware qualifications, and receive additional protection—those computers will be more hardened against certain threats. To keep this section brief, those will be in [Security Considerations](#security-considerations). - -### Hardware and software requirements - -To provide basic protection against OS level attempts to read Credential Manager domain credentials, NTLM and Kerberos derived credentials, Credential Manager uses: -- Support for Virtualization-based security (required) -- Secure boot (required) -- TPM 2.0 either discrete or firmware (preferred - provides binding to hardware) -- UEFI lock (preferred - prevents attacker from disabling with a simple registry key change) - -The Virtualization-based security requires: -- 64 bit CPU -- CPU virtualization extensions plus extended page tables -- Windows hypervisor - -### Application requirements - -When Credential Guard is enabled, specific authentication capabilities are blocked, so applications which require blocked capabilities will break. Applications should be tested prior to deployment to ensure compatiblity with the reduced functionality. - ->[!WARNING] -> Enabling Credential Guard on domain controllers is not supported.
-> The domain controller hosts authentication services which integrate with processes isolated when Credential Guard is enabled, causing crashes. - ->[!NOTE] -> Credential Guard does not provide protections for the Active Directory database or the Security Accounts Manager (SAM). The credentials protected by Kerberos and NTLM when Credential Guard is enabled are also in the Active Directory database (on domain controllers) and the SAM (for local accounts). - -Applications will break if they require: -- Kerberos DES encryption support -- Kerberos unconstrained delegation -- Extracting the Kerberos TGT -- NTLMv1 - -Applications will prompt & expose credentials to risk if they require: -- Digest authentication -- Credential delegation -- MS-CHAPv2 - -Applications may cause performance issues when they attempt to hook the isolated Credential Guard process. - -### Security considerations - -All computers that meet baseline protections for hardware, firmware, and software can use Credential Guard. -Computers that meet additional qualifications can provide additional protections to further reduce the attack surface. -The following tables describe baseline protections, plus protections for improved security that are associated with hardware and firmware options available in 2015, 2016, and 2017. - -> [!NOTE] -> Beginning with Windows 10, version 1607, Trusted Platform Module (TPM 2.0) must be enabled by default on new shipping computers.
-> If you are an OEM, see [PC OEM requirements for Device Guard and Credential Guard](https://msdn.microsoft.com/library/windows/hardware/mt767514.aspx).
- -#### Baseline protections - -|Baseline Protections | Description | -|---------------------------------------------|----------------------------------------------------| -| Hardware: **64-bit CPU** | A 64-bit computer is required for the Windows hypervisor to provide VBS. | -| Hardware: **CPU virtualization extensions**,
plus **extended page tables** | **Requirements**: These hardware features are required for VBS:
One of the following virtualization extensions:
• VT-x (Intel) or
• AMD-V
And:
• Extended page tables, also called Second Level Address Translation (SLAT).

**Security benefits**: VBS provides isolation of secure kernel from normal operating system. Vulnerabilities and Day 0s in normal operating system cannot be exploited because of this isolation. | -| Hardware: **Trusted Platform Module (TPM)** |  **Requirement**: TPM 1.2 or TPM 2.0, either discrete or firmware.
[TPM recommendations](https://technet.microsoft.com/itpro/windows/keep-secure/tpm-recommendations)

**Security benefits**: A TPM provides protection for VBS encryption keys that are stored in the firmware. This helps protect against attacks involving a physically present user with BIOS access. | -| Firmware: **UEFI firmware version 2.3.1.c or higher with UEFI Secure Boot** | **Requirements**: See the following Windows Hardware Compatibility Program requirement: [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot)

**Security benefits**: UEFI Secure Boot helps ensure that the device boots only authorized code. This can prevent boot kits and root kits from installing and persisting across reboots. | -| Firmware: **Secure firmware update process** | **Requirements**: UEFI firmware must support secure firmware update found under the following Windows Hardware Compatibility Program requirement: [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot).

**Security benefits**: UEFI firmware just like software can have security vulnerabilities that, when found, need to be patched through firmware updates. Patching helps prevent root kits from getting installed. | -| Software: Qualified **Windows operating system** | **Requirement**: Windows 10 Enterprise, Windows 10 Education, Windows Server 2016, or Windows 10 IoT Enterprise

Important:
Windows Server 2016 running as a domain controller does not support Credential Guard. Only Device Guard is supported in this configuration.


**Security benefits**: Support for VBS and for management features that simplify configuration of Credential Guard. | - -> [!IMPORTANT] -> The following tables list additional qualifications for improved security. We strongly recommend meeting the additional qualifications to significantly strengthen the level of security that Credential Guard can provide. - -#### 2015 Additional security qualifications starting with Windows 10, version 1507, and Windows Server 2016 Technical Preview 4 - -| Protections for Improved Security | Description | -|---------------------------------------------|----------------------------------------------------| -| Hardware: **IOMMU** (input/output memory management unit) | **Requirement**: VT-D or AMD Vi IOMMU

**Security benefits**: An IOMMU can enhance system resiliency against memory attacks. For more information, see [ACPI description tables](https://msdn.microsoft.com/windows/hardware/drivers/bringup/acpi-system-description-tables). | -| Firmware: **Securing Boot Configuration and Management** | **Requirements**:
• BIOS password or stronger authentication must be supported.
• In the BIOS configuration, BIOS authentication must be set.
• There must be support for protected BIOS option to configure list of permitted boot devices (for example, “Boot only from internal hard drive”) and boot device order, overriding BOOTORDER modification made by operating system.
• In the BIOS configuration, BIOS options related to security and boot options (list of permitted boot devices, boot order) must be secured to prevent other operating systems from starting and to prevent changes to the BIOS settings.

**Security benefits**:
• BIOS password or stronger authentication helps ensure that only authenticated Platform BIOS administrators can change BIOS settings. This helps protect against a physically present user with BIOS access.
• Boot order when locked provides protection against the computer being booted into WinRE or another operating system on bootable media. | -| Firmware: **Secure MOR, revision 2 implementation** | **Requirement**: Secure MOR, revision 2 implementation

**Security benefits**: A secure MOR bit prevents advanced memory attacks. For more information, see [Secure MOR implementation](https://msdn.microsoft.com/windows/hardware/drivers/bringup/device-guard-requirements). | - -
- -#### 2016 Additional security qualifications starting with Windows 10, version 1607, and Windows Server 2016 - -> [!IMPORTANT] -> The following tables list additional qualifications for improved security. Systems that meet these additional qualifications can provide more protections. - -| Protections for Improved Security | Description | -|---------------------------------------------|----------------------------------------------------| -| Firmware: **Hardware Rooted Trust Platform Secure Boot** | **Requirements**:
Boot Integrity (Platform Secure Boot) must be supported. See the Windows Hardware Compatibility Program requirements under [System.Fundamentals.Firmware.CS.UEFISecureBoot.ConnectedStandby](https://msdn.microsoft.com/library/windows/hardware/dn932807(v=vs.85).aspx#system_fundamentals_firmware_cs_uefisecureboot_connectedstandby)
• The Hardware Security Test Interface (HSTI) must be implemented. See [Hardware Security Testability Specification](https://msdn.microsoft.com/en-us/library/windows/hardware/mt712332(v=vs.85).aspx).

**Security benefits**:
• Boot Integrity (Platform Secure Boot) from Power-On provides protections against physically present attackers, and defense-in-depth against malware.
• HSTI provides additional security assurance for correctly secured silicon and platform. | -| Firmware: **Firmware Update through Windows Update** | **Requirements**: Firmware must support field updates through Windows Update and UEFI encapsulation update.

**Security benefits**: Helps ensure that firmware updates are fast, secure, and reliable. | -| Firmware: **Securing Boot Configuration and Management** | **Requirements**:
• Required BIOS capabilities: Ability of OEM to add ISV, OEM, or Enterprise Certificate in Secure Boot DB at manufacturing time.
• Required configurations: Microsoft UEFI CA must be removed from Secure Boot DB. Support for 3rd-party UEFI modules is permitted but should leverage ISV-provided certificates or OEM certificate for the specific UEFI software.

**Security benefits**:
• Enterprises can choose to allow proprietary EFI drivers/applications to run.
• Removing Microsoft UEFI CA from Secure Boot DB provides full control to enterprises over software that runs before the operating system boots. | - -
- -#### 2017 Additional security qualifications starting in 2017 - -The following table lists qualifications for 2017, which are in addition to all preceding qualifications. - -| Protection for Improved Security | Description | -|---------------------------------------------|----------------------------------------------------| -| Firmware: **VBS enablement of NX protection for UEFI runtime services** | **Requirements**:
• VBS will enable No-Execute (NX) protection on UEFI runtime service code and data memory regions. UEFI runtime service code must support read-only page protections, and UEFI runtime service data must not be exceutable.
• UEFI runtime service must meet these requirements:
    - Implement UEFI 2.6 EFI_MEMORY_ATTRIBUTES_TABLE. All UEFI runtime service memory (code and data) must be described by this table.
    - PE sections need to be page-aligned in memory (not required for in non-volitile storage).
    - The Memory Attributes Table needs to correctly mark code and data as RO/NX for configuration by the OS:
        - All entries must include attributes EFI_MEMORY_RO, EFI_MEMORY_XP, or both
        - No entries may be left with neither of the above attributes, indicating memory that is both exceutable and writable. Memory must be either readable and executable or writeable and non-executable.

Notes:
• This only applies to UEFI runtime service memory, and not UEFI boot service memory.
• This protection is applied by VBS on OS page tables.


Please also note the following:
• Do not use sections that are both writeable and exceutable
• Do not attempt to directly modify executable system memory
• Do not use dynamic code

**Security benefits**:
• Vulnerabilities in UEFI runtime, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware. | -| Firmware: **Firmware support for SMM protection** | **Requirements**: The [Windows SMM Security Mitigations Table (WSMT) specification](http://download.microsoft.com/download/1/8/A/18A21244-EB67-4538-BAA2-1A54E0E490B6/WSMT.docx) contains details of an Advanced Configuration and Power Interface (ACPI) table that was created for use with Windows operating systems that support Windows virtualization-based security (VBS) features.

**Security benefits**:
• Protects against potential vulnerabilities in UEFI runtime services, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware.
• Blocks additional security attacks against SMM. | - -## Manage Credential Guard - -### Enable Credential Guard -Credential Guard can be enabled by using [Group Policy](#turn-on-credential-guard-by-using-group-policy), the [registry](#turn-on-credential-guard-by-using-the-registry), or the Device Guard and Credential Guard [hardware readiness tool](#hardware-readiness-tool). - -#### Turn on Credential Guard by using Group Policy - -You can use Group Policy to enable Credential Guard. This will add and enable the virtualization-based security features for you if needed. - -1. From the Group Policy Management Console, go to **Computer Configuration** -> **Administrative Templates** -> **System** -> **Device Guard**. -2. Double-click **Turn On Virtualization Based Security**, and then click the **Enabled** option. -3. **Select Platform Security Level** box, choose **Secure Boot** or **Secure Boot and DMA Protection**. -4. In the **Credential Guard Configuration** box, click **Enabled with UEFI lock**, and then click **OK**. If you want to be able to turn off Credential Guard remotely, choose **Enabled without lock**. - - ![Credential Guard Group Policy setting](images/credguard-gp.png) - -5. Close the Group Policy Management Console. - -To enforce processing of the group policy, you can run ```gpupdate /force```. - -#### Turn on Credential Guard by using the registry - -If you don't use Group Policy, you can enable Credential Guard by using the registry. Credential Guard uses virtualization-based security features which have to be enabled first on some operating systems. - -#### Add the virtualization-based security features - -Starting with Windows 10, version 1607 and Windows Server 2016, enabling Windows features to use virtualization-based security is not necessary and this step can be skipped. - -If you are using Windows 10, version 1507 (RTM) or Windows 10, version 1511, Windows features have to be enabled to use virtualization-based security. -You can do this by using either the Control Panel or the Deployment Image Servicing and Management tool (DISM). -> [!NOTE] -> If you enable Credential Guard by using Group Policy, these steps are not required. Group Policy will install the features for you. - -  -**Add the virtualization-based security features by using Programs and Features** - -1. Open the Programs and Features control panel. -2. Click **Turn Windows feature on or off**. -3. Go to **Hyper-V** -> **Hyper-V Platform**, and then select the **Hyper-V Hypervisor** check box. -4. Select the **Isolated User Mode** check box at the top level of the feature selection. -5. Click **OK**. - -**Add the virtualization-based security features to an offline image by using DISM** - -1. Open an elevated command prompt. -2. Add the Hyper-V Hypervisor by running the following command: - ``` - dism /image: /Enable-Feature /FeatureName:Microsoft-Hyper-V-Hypervisor /all - ``` -3. Add the Isolated User Mode feature by running the following command: - ``` - dism /image: /Enable-Feature /FeatureName:IsolatedUserMode - ``` - -> [!NOTE] -> You can also add these features to an online image by using either DISM or Configuration Manager. - -#### Enable virtualization-based security and Credential Guard - -1. Open Registry Editor. -2. Enable virtualization-based security: - - Go to HKEY\_LOCAL\_MACHINE\\System\\CurrentControlSet\\Control\\DeviceGuard. - - Add a new DWORD value named **EnableVirtualizationBasedSecurity**. Set the value of this registry setting to 1 to enable virtualization-based security and set it to 0 to disable it. - - Add a new DWORD value named **RequirePlatformSecurityFeatures**. Set the value of this registry setting to 1 to use **Secure Boot** only or set it to 3 to use **Secure Boot and DMA protection**. -3. Enable Credential Guard: - - Go to HKEY\_LOCAL\_MACHINE\\System\\CurrentControlSet\\Control\\LSA. - - Add a new DWORD value named **LsaCfgFlags**. Set the value of this registry setting to 1 to enable Credential Guard with UEFI lock, set it to 2 to enable Credential Guard without lock, and set it to 0 to disable it. -4. Close Registry Editor. - - -> [!NOTE] -> You can also turn on Credential Guard by setting the registry entries in the [FirstLogonCommands](http://msdn.microsoft.com/library/windows/hardware/dn922797.aspx) unattend setting. - - -#### Turn on Credential Guard by using the Device Guard and Credential Guard hardware readiness tool - -You can also enable Credential Guard by using the [Device Guard and Credential Guard hardware readiness tool](https://www.microsoft.com/download/details.aspx?id=53337). - -``` -DG_Readiness_Tool_v3.0.ps1 -Enable -AutoReboot -``` - -#### Credential Guard deployment in virtual machines - -Credential Guard can protect secrets in a Hyper-V virtual machine, just as it would on a physical machine. The enablement steps are the same from within the virtual machine. - -Credential Guard protects secrets from non-priviledged access inside the VM. It does not provide additional protection from the host administrator. From the host, you can disable Credential Guard for a virtual machine: - -``` PowerShell -Set-VMSecurity -VMName -VirtualizationBasedSecurityOptOut $true -``` - -Requirements for running Credential Guard in Hyper-V virtual machines -- The Hyper-V host must have an IOMMU, and run at least Windows Server 2016 or Windows 10 version 1607. -- The Hyper-V virtual machine must be Generation 2, have an enabled virtual TPM, and running at least Windows Server 2016 or Windows 10. - -### Remove Credential Guard - -If you have to remove Credential Guard on a PC, you can use the following set of procedures, or you can [use the Device Guard and Credential Guard hardware readiness tool](#turn-off-with-hardware-readiness-tool). - -1. If you used Group Policy, disable the Group Policy setting that you used to enable Credential Guard (**Computer Configuration** -> **Administrative Templates** -> **System** -> **Device Guard** -> **Turn on Virtualization Based Security**). -2. Delete the following registry settings: - - HKEY\_LOCAL\_MACHINE\\System\\CurrentControlSet\\Control\\LSA\LsaCfgFlags - - HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\Windows\\DeviceGuard\\EnableVirtualizationBasedSecurity - - HKEY\_LOCAL\_MACHINE\\Software\\Policies\\Microsoft\\Windows\\DeviceGuard\\RequirePlatformSecurityFeatures - - > [!IMPORTANT] - > If you manually remove these registry settings, make sure to delete them all. If you don't remove them all, the device might go into BitLocker recovery. - -3. Delete the Credential Guard EFI variables by using bcdedit. - -**Delete the Credential Guard EFI variables** - -1. From an elevated command prompt, type the following commands: - ``` syntax - - mountvol X: /s - - copy %WINDIR%\System32\SecConfig.efi X:\EFI\Microsoft\Boot\SecConfig.efi /Y - - bcdedit /create {0cb3b571-2f2e-4343-a879-d86a476d7215} /d "DebugTool" /application osloader - - bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} path "\EFI\Microsoft\Boot\SecConfig.efi" - - bcdedit /set {bootmgr} bootsequence {0cb3b571-2f2e-4343-a879-d86a476d7215} - - bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} loadoptions DISABLE-LSA-ISO - - bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} device partition=X: - - mountvol X: /d - - ``` -2. Restart the PC. -3. Accept the prompt to disable Credential Guard. -4. Alternatively, you can disable the virtualization-based security features to turn off Credential Guard. - -> [!NOTE] -> The PC must have one-time access to a domain controller to decrypt content, such as files that were encrypted with EFS. If you want to turn off both Credential Guard and virtualization-based security, run the following bcdedit command after turning off all virtualization-based security Group Policy and registry settings: bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} loadoptions DISABLE-LSA-ISO,DISABLE-VBS - -For more info on virtualization-based security and Device Guard, see [Device Guard deployment guide](device-guard-deployment-guide.md). - - -#### Turn off Credential Guard by using the Device Guard and Credential Guard hardware readiness tool - -You can also disable Credential Guard by using the [Device Guard and Credential Guard hardware readiness tool](https://www.microsoft.com/download/details.aspx?id=53337). - -``` -DG_Readiness_Tool_v3.0.ps1 -Disable -AutoReboot -``` -  -### Check that Credential Guard is running - -You can use System Information to ensure that Credential Guard is running on a PC. - -1. Click **Start**, type **msinfo32.exe**, and then click **System Information**. -2. Click **System Summary**. -3. Confirm that **Credential Guard** is shown next to **Device Guard Security Services Running**. - - Here's an example: - - ![System Information](images/credguard-msinfo32.png) - -You can also check that Credential Guard is running by using the [Device Guard and Credential Guard hardware readiness tool](https://www.microsoft.com/download/details.aspx?id=53337). - -``` -DG_Readiness_Tool_v3.0.ps1 -Ready -``` - -## Considerations when using Credential Guard - -- If Credential Guard is enabled on a device after it's joined to a domain, the user and device secrets may already be compromised. We recommend that Credential Guard is enabled before the PC is joined to a domain. -- You should perform regular reviews of the PCs that have Credential Guard enabled. This can be done with security audit policies or WMI queries. Here's a list of WinInit event IDs to look for: - - **Event ID 13** Credential Guard (LsaIso.exe) was started and will protect LSA credentials. - - **Event ID 14** Credential Guard (LsaIso.exe) configuration: 0x1, 0 - - The first variable: 0x1 means Credential Guard is configured to run. 0x0 means it’s not configured to run. - - The second variable: 0 means it’s configured to run in protect mode. 1 means it's configured to run in test mode. This variable should always be 0. - - **Event ID 15** Credential Guard (LsaIso.exe) is configured but the secure kernel is not running; continuing without Credential Guard. - - **Event ID 16** Credential Guard (LsaIso.exe) failed to launch: \[error code\] - - **Event ID 17** Error reading Credential Guard (LsaIso.exe) UEFI configuration: \[error code\] - You can also verify that TPM is being used for key protection by checking the following event in the **Microsoft** -> **Windows** -> **Kernel-Boot** event source. If you are running with a TPM, the TPM PCR mask value will be something other than 0. - - **Event ID 51** VSM Master Encryption Key Provisioning. Using cached copy status: 0x0. Unsealing cached copy status: 0x1. New key generation status: 0x1. Sealing status: 0x1. TPM PCR mask: 0x0. -- Passwords are still weak so we recommend that your organization deploy Credential Guard and move away from passwords and to other authentication methods, such as physical smart cards, virtual smart cards, or Windows Hello for Business. -- Some 3rd party Security Support Providers (SSPs and APs) might not be compatible with Credential Guard. Credential Guard does not allow 3rd party SSPs to ask for password hashes from LSA. However, SSPs and APs still get notified of the password when a user logs on and/or changes their password. Any use of undocumented APIs within custom SSPs and APs are not supported. We recommend that custom implementations of SSPs/APs are tested against Credential Guard to ensure that the SSPs and APs do not depend on any undocumented or unsupported behaviors. For example, using the KerbQuerySupplementalCredentialsMessage API is not supported. You should not replace the NTLM or Kerberos SSPs with custom SSPs and APs. For more info, see [Restrictions around Registering and Installing a Security Package](http://msdn.microsoft.com/library/windows/desktop/dn865014.aspx) on MSDN. -- As the depth and breadth of protections provided by Credential Guard are increased, subsequent releases of Windows 10 with Credential Guard running may impact scenarios that were working in the past. For example, Credential Guard may block the use of a particular type of credential or a particular component to prevent malwar efrom taking advantage of vulnerabilities. Therefore, we recommend that scenarios required for operations in an organization are tested before upgrading a device that has Credential Guard running. - -- Starting with Windows 10, version 1511, domain credentials that are stored with Credential Manager are protected with Credential Guard. Credential Manager allows you to store credentials, such as user names and passwords that you use to log on to websites or other computers on a network. The following considerations apply to the Credential Guard protections for Credential Manager: - - Credentials saved by Remote Desktop Services cannot be used to remotely connect to another machine without supplying the password. Attempts to use saved credentials will fail, displaying the error message "Logon attempt failed". - - Applications that extract derived domain credentials from Credential Manager will no longer be able to use those credentials. - - You cannot restore credentials using the Credential Manager control panel if the credentials were backed up from a PC that has Credential Guard turned on. If you need to back up your credentials, you must do this before you enable Credential Guard. Otherwise, you won't be able to restore those credentials. - - Credential Guard uses hardware security so some features, such as Windows To Go, are not supported. - -### NTLM & CHAP Considerations - -When you enable Credential Guard, you can no longer use NTLM v1 authentication. If you are using WiFi and VPN endpoints that are based on MS-CHAPv2, they are subject to similar attacks as NTLMv1. We recommend that organizations use certificated-based authentication for WiFi and VPN connections. - -### Kerberos Considerations - -When you enable Credential Guard, you can no longer use Kerberos unconstrained delegation or DES encryption. Unconstrained delegation could allow attackers to extract Kerberos keys from the isolated LSA process. You must use constrained or resource-based Kerberos delegation instead. - -## Scenarios not protected by Credential Guard - -Some ways to store credentials are not protected by Credential Guard, including: - -- Software that manages credentials outside of Windows feature protection -- Local accounts and Microsoft Accounts -- Credential Guard does not protect the Active Directory database running on Windows Server 2016 domain controllers. It also does not protect credential input pipelines, such as Windows Server 2016 servers running Remote Desktop Gateway. If you're using a Windows Server 2016 server as a client PC, it will get the same protection as it would be running Windows 10 Enterprise. -- Key loggers -- Physical attacks -- Does not prevent an attacker with malware on the PC from using the privileges associated with any credential. We recommend using dedicated PCs for high value accounts, such as IT Pros and users with access high value assets in your organization. -- Third-party security packages -- Digest and CredSSP credentials - - When Credential Guard is enabled, neither Digest nor CredSSP have access to users' logon credentials. This implies no Single Sign-On use for these protocols. -- Supplied credentials for NTLM authentication are not protected. If a user is prompted for and enters credentials for NTLM authentication, these credentials are vulnerable to be read from LSASS memory. Note that these same credentials are vulnerable to key loggers as well. - -## Additional mitigations - -Credential Guard can provide mitigations against attacks on derived credentials and prevent the use of stolen credentials elsewhere. However, PCs can still be vulnerable to certain attacks, even if the derived credentials are protected by Credential Guard. These attacks can include abusing privileges and use of derived credentials directly from a compromised device, reusing previously stolen credentials prior to Device Guard, and abuse of management tools and weak application configurations. Because of this, additional mitigations also need to be deployed to make the domain environment more robust. - -### Restricting domain users to specific domain-joined devices - -Credential theft attacks allow the attacker to steal secrets from one device and use them from another device. If a user can sign on multiple devices then any device could be used to steal credentials. How do you ensure that users only sign on with devices with Credential Guard? By deploying authentication policies which restrict them to specific domain-joined device that have been configured with Credential Guard. For the domain controller to know what device a user is signing on from, Kerberos armoring must be used. - -#### Kerberos armoring - -Kerberos armoring is part of RFC 6113. When a device supports Kerberos armoring, its TGT is used to protect the user's proof of possession which can mitigate offline dictionary attacks. Kerberos armoring also provides the additional benefit of signed KDC errors this mitigates tampering which can result in things such as downgrade attacks. - -**To enable Kerberos armoring for restricting domain users to specific domain-joined devices** - -- Users need to be in domains which are running Windows Server 2012 R2 or higher -- All the domain controllers in these domains must be configured to support Kerberos armoring. Set the **KDC support for claims, compound authentication, and Kerberos armoring** Group Policy setting to either **Supported** or **Always provide claims**. -- All the devices with Credential Guard which the users will be restricted to must be configured to support Kerberos armoring. Enable the **Kerberos client support for claims, compound authentication and Kerberos armoring** Group Policy settings under **Computer Configuration** -> **Administrative Templates** -> **System** -> **Kerberos**. - -#### Protecting domain-joined device secrets - -Since domain-joined devices also use shared secrets for authentication, attackers can steal those secrets as well. By deploying device certificates with Credential Guard, the private key can be protected. Then authentication policies can require that users sign on devices which authenticate using those certificates. This prevents shared secrets on stolen from the device to be used with stolen user credentials to sign on as the user. - -Domain-joined device certificate authentication has the following requirements: -- Devices' accounts are in Windows Server 2012 domain funcational level or higher domains. -- All domain controllers in those domains have KDC certificates which satisfy strict KDC validation certificate requirements: - - KDC EKU present - - DNS domain name matches the DNSName field of the SubjectAltName (SAN) extension -- Windows 10 devices have the CA issuing the domain controller certificates in the enterprise store. -- A process is established to ensure the identity and trustworthiness of the device in a similar manner as you would establish the identity and trustworthiness of a user before issuing them a smartcard. - -##### Deploying domain-joined device certificates - -To guarantee that certificates with the issuance policy required are only on the devices these users must use, they must be deployed manually on each device. The same security procedures used for issuing smart cards to users should be applied to device certificates. - -For example, let's say you wanted to use the High Assurance policy only on these devices. Using a Windows Server Enterprise certificate authority, you would create a new template. - -**Creating a new certificate template** - -1. From the Certificate Manager console, right-click **Certificate Templates**, and then click **Manage.** -2. Right-click **Workstation Authentication**, and then click **Duplicate Template**. -3. Right-click the new template, and then click **Properties**. -4. On the **Extensions** tab, click **Application Policies**, and then click **Edit**. -5. Click **Client Authentication**, and then click **Remove**. -6. Add the ID-PKInit-KPClientAuth EKU. Click **Add**, click **New**, and then specify the following values: - - Name: Kerberos Client Auth - - Object Identifier: 1.3.6.1.5.2.3.4 -7. On the **Extensions** tab, click **Issuance Policies**, and then click **Edit**. -8. Under **Issuance Policies**, click**High Assurance**. -9. On the **Subject name** tab, clear the **DNS name** check box, and then select the **User Principal Name (UPN)** check box. - -Then on the devices that are running Credential Guard, enroll the devices using the certificate you just created. - -**Enrolling devices in a certificate** - -Run the following command: -``` syntax -CertReq -EnrollCredGuardCert MachineAuthentication -``` - -> [!NOTE] -> You must restart the device after enrolling the machine authentication certificate. -  -#### How a certificate issuance policy can be used for access control - -Beginning with the Windows Server 2008 R2 domain functional level, domain controllers support for authentication mechanism assurance provides a way to map certificate issuance policy OIDs to universal security groups. Windows Server 2012 domain controllers with claim support can map them to claims. To learn more about authentication mechanism assurance, see [Authentication Mechanism Assurance for AD DS in Windows Server 2008 R2 Step-by-Step Guide](https://technet.microsoft.com/en-us/library/dd378897(v=ws.10).aspx) on TechNet. - -**To see the issuance policies available** - -- The [get-IssuancePolicy.ps1](#bkmk-getscript) shows all of the issuance policies that are available on the certificate authority. - From a Windows PowerShell command prompt, run the following command: - - ``` syntax - .\get-IssuancePolicy.ps1 –LinkedToGroup:All - ``` - -**To link a issuance policy to a universal security group** - -- The [set-IssuancePolicyToGroupLink.ps1](#bkmk-setscript) creates a Universal security group, creates an organizational unit, and links the issuance policy to that Universal security group. - From a Windows PowerShell command prompt, run the following command: - - ``` syntax - .\set-IssuancePolicyToGroupLink.ps1 –IssuancePolicyName:"" –groupOU:"" –groupName:”" - ``` - -#### Restricting user sign on - -So we now have the following: - -- Created a special certificate issuance policy to identify devices which meet the deployment criteria required for the user to be able to sign on -- Mapped that policy to a universal security group or claim -- Provided a way for domain controllers to get the device authorization data during user sign on using Kerberos armoring- -so what is left to do is configuring the access check on the domain controllers. This is done with authentication policies. - -Authentication policies have the following requirements: -- User accounts are in a Windows Server 2012 domain functional level or higher domain. - -**Creating an authentication policy restricting to the specific universal security group** - -1. Open Active Directory Administrative Center. -2. Click **Authentication**, click **New**, and then click **Authentication Policy**. -3. In the **Display name** box, enter a name for this authentication policy. -4. Under the **Accounts** heading, click **Add**. -5. In the **Select Users, Computers, or Service Accounts** dialog box, type the name of the user account you with to restrict, and then click **OK**. -6. Under the **User Sign On** heading, click the **Edit** button. -7. Click **Add a condition**. -8. In the **Edit Access Control Conditions** box, ensure that it reads **User** > **Group** > **Member of each** > **Value**, and then click **Add items**. -9. In the **Select Users, Computers, or Service Accounts** dialog box, type the name of the universal security group that you created with the set-IssuancePolicyToGroupLink script, and then click **OK**. -10. Click **OK** to close the **Edit Access Control Conditions** box. -11. Click **OK** to create the authentication policy. -12. Close Active Directory Administrative Center. - -> [!NOTE] -> When the authentication policy enforces policy restrictions, users will not be able to sign on using devices that do not have a certificate with the appropriate issuance policy deployed. This applies to both local and remote sign on scenarios. Therefore, it is strongly recommended to first only audit policy restrictions to ensure you don't have unexpected failures. - -#### Discovering authentication failures due to authentication policies - -To make tracking authentication failures due to authentication policies easier, an operational log exists with just those events. To enable the logs on the domain controllers, in Event Viewer, navigate to **Applications and Services Logs\\Microsoft\\Windows\\Authentication, right-click AuthenticationPolicyFailures-DomainController**, and then click **Enable Log**. - -To learn more about authentication policy events, see [Authentication Policies and Authentication Policy Silos](https://technet.microsoft.com/en-us/library/dn486813(v=ws.11).aspx). - -## Appendix: Scripts - -Here is a list of scripts that are mentioned in this topic. - -### Get the available issuance policies on the certificate authority - -Save this script file as get-IssuancePolicy.ps1. - -``` syntax -####################################### -## Parameters to be defined ## -## by the user ## -####################################### -Param ( -$Identity, -$LinkedToGroup -) -####################################### -## Strings definitions ## -####################################### -Data getIP_strings { -# culture="en-US" -ConvertFrom-StringData -stringdata @' -help1 = This command can be used to retrieve all available Issuance Policies in a forest. The forest of the currently logged on user is targetted. -help2 = Usage: -help3 = The following parameter is mandatory: -help4 = -LinkedToGroup: -help5 = "yes" will return only Issuance Policies that are linked to groups. Checks that the linked Issuance Policies are linked to valid groups. -help6 = "no" will return only Issuance Policies that are not currently linked to any group. -help7 = "all" will return all Issuance Policies defined in the forest. Checks that the linked Issuance policies are linked to valid groups. -help8 = The following parameter is optional: -help9 = -Identity:. If you specify an identity, the option specified in the "-LinkedToGroup" parameter is ignored. -help10 = Output: This script returns the Issuance Policy objects meeting the criteria defined by the above parameters. -help11 = Examples: -errorIPNotFound = Error: no Issuance Policy could be found with Identity "{0}" -ErrorNotSecurity = Error: Issuance Policy "{0}" is linked to group "{1}" which is not of type "Security". -ErrorNotUniversal = Error: Issuance Policy "{0}" is linked to group "{1}" whose scope is not "Universal". -ErrorHasMembers = Error: Issuance Policy "{0}" is linked to group "{1}" which has a non-empty membership. The group has the following members: -LinkedIPs = The following Issuance Policies are linked to groups: -displayName = displayName : {0} -Name = Name : {0} -dn = distinguishedName : {0} - InfoName = Linked Group Name: {0} - InfoDN = Linked Group DN: {0} -NonLinkedIPs = The following Issuance Policies are NOT linked to groups: -'@ -} -##Import-LocalizedData getIP_strings -import-module ActiveDirectory -####################################### -## Help ## -####################################### -function Display-Help { - "" - $getIP_strings.help1 - "" -$getIP_strings.help2 -"" -$getIP_strings.help3 -" " + $getIP_strings.help4 -" " + $getIP_strings.help5 - " " + $getIP_strings.help6 - " " + $getIP_strings.help7 -"" -$getIP_strings.help8 - " " + $getIP_strings.help9 - "" - $getIP_strings.help10 -"" -"" -$getIP_strings.help11 - " " + '$' + "myIPs = .\get-IssuancePolicy.ps1 -LinkedToGroup:All" - " " + '$' + "myLinkedIPs = .\get-IssuancePolicy.ps1 -LinkedToGroup:yes" - " " + '$' + "myIP = .\get-IssuancePolicy.ps1 -Identity:""Medium Assurance""" -"" -} -$root = get-adrootdse -$domain = get-addomain -current loggedonuser -$configNCDN = [String]$root.configurationNamingContext -if ( !($Identity) -and !($LinkedToGroup) ) { -display-Help -break -} -if ($Identity) { - $OIDs = get-adobject -Filter {(objectclass -eq "msPKI-Enterprise-Oid") -and ((name -eq $Identity) -or (displayname -eq $Identity) -or (distinguishedName -like $Identity)) } -searchBase $configNCDN -properties * - if ($OIDs -eq $null) { -$errormsg = $getIP_strings.ErrorIPNotFound -f $Identity -write-host $errormsg -ForegroundColor Red - } - foreach ($OID in $OIDs) { - if ($OID."msDS-OIDToGroupLink") { -# In case the Issuance Policy is linked to a group, it is good to check whether there is any problem with the mapping. - $groupDN = $OID."msDS-OIDToGroupLink" - $group = get-adgroup -Identity $groupDN - $groupName = $group.Name -# Analyze the group - if ($group.groupCategory -ne "Security") { -$errormsg = $getIP_strings.ErrorNotSecurity -f $Identity, $groupName - write-host $errormsg -ForegroundColor Red - } - if ($group.groupScope -ne "Universal") { - $errormsg = $getIP_strings.ErrorNotUniversal -f $Identity, $groupName -write-host $errormsg -ForegroundColor Red - } - $members = Get-ADGroupMember -Identity $group - if ($members) { - $errormsg = $getIP_strings.ErrorHasMembers -f $Identity, $groupName -write-host $errormsg -ForegroundColor Red - foreach ($member in $members) { - write-host " " $member -ForeGroundColor Red - } - } - } - } - return $OIDs - break -} -if (($LinkedToGroup -eq "yes") -or ($LinkedToGroup -eq "all")) { - $LDAPFilter = "(&(objectClass=msPKI-Enterprise-Oid)(msDS-OIDToGroupLink=*)(flags=2))" - $LinkedOIDs = get-adobject -searchBase $configNCDN -LDAPFilter $LDAPFilter -properties * - write-host "" - write-host "*****************************************************" - write-host $getIP_strings.LinkedIPs - write-host "*****************************************************" - write-host "" - if ($LinkedOIDs -ne $null){ - foreach ($OID in $LinkedOIDs) { -# Display basic information about the Issuance Policies - "" - $getIP_strings.displayName -f $OID.displayName - $getIP_strings.Name -f $OID.Name - $getIP_strings.dn -f $OID.distinguishedName -# Get the linked group. - $groupDN = $OID."msDS-OIDToGroupLink" - $group = get-adgroup -Identity $groupDN - $getIP_strings.InfoName -f $group.Name - $getIP_strings.InfoDN -f $groupDN -# Analyze the group - $OIDName = $OID.displayName - $groupName = $group.Name - if ($group.groupCategory -ne "Security") { - $errormsg = $getIP_strings.ErrorNotSecurity -f $OIDName, $groupName - write-host $errormsg -ForegroundColor Red - } - if ($group.groupScope -ne "Universal") { - $errormsg = $getIP_strings.ErrorNotUniversal -f $OIDName, $groupName - write-host $errormsg -ForegroundColor Red - } - $members = Get-ADGroupMember -Identity $group - if ($members) { - $errormsg = $getIP_strings.ErrorHasMembers -f $OIDName, $groupName - write-host $errormsg -ForegroundColor Red - foreach ($member in $members) { - write-host " " $member -ForeGroundColor Red - } - } - write-host "" - } - }else{ -write-host "There are no issuance policies that are mapped to a group" - } - if ($LinkedToGroup -eq "yes") { - return $LinkedOIDs - break - } -} -if (($LinkedToGroup -eq "no") -or ($LinkedToGroup -eq "all")) { - $LDAPFilter = "(&(objectClass=msPKI-Enterprise-Oid)(!(msDS-OIDToGroupLink=*))(flags=2))" - $NonLinkedOIDs = get-adobject -searchBase $configNCDN -LDAPFilter $LDAPFilter -properties * - write-host "" - write-host "*********************************************************" - write-host $getIP_strings.NonLinkedIPs - write-host "*********************************************************" - write-host "" - if ($NonLinkedOIDs -ne $null) { - foreach ($OID in $NonLinkedOIDs) { -# Display basic information about the Issuance Policies -write-host "" -$getIP_strings.displayName -f $OID.displayName -$getIP_strings.Name -f $OID.Name -$getIP_strings.dn -f $OID.distinguishedName -write-host "" - } - }else{ -write-host "There are no issuance policies which are not mapped to groups" - } - if ($LinkedToGroup -eq "no") { - return $NonLinkedOIDs - break - } -} -``` -> [!NOTE] -> If you're having trouble running this script, try replacing the single quote after the ConvertFrom-StringData parameter. -  -### Link an issuance policy to a group - -Save the script file as set-IssuancePolicyToGroupLink.ps1. - -``` syntax -####################################### -## Parameters to be defined ## -## by the user ## -####################################### -Param ( -$IssuancePolicyName, -$groupOU, -$groupName -) -####################################### -## Strings definitions ## -####################################### -Data ErrorMsg { -# culture="en-US" -ConvertFrom-StringData -stringdata @' -help1 = This command can be used to set the link between a certificate issuance policy and a universal security group. -help2 = Usage: -help3 = The following parameters are required: -help4 = -IssuancePolicyName: -help5 = -groupName:. If no name is specified, any existing link to a group is removed from the Issuance Policy. -help6 = The following parameter is optional: -help7 = -groupOU:. If this parameter is not specified, the group is looked for or created in the Users container. -help8 = Examples: -help9 = This command will link the issuance policy whose display name is "High Assurance" to the group "HighAssuranceGroup" in the Organizational Unit "OU_FOR_IPol_linked_groups". If the group or the Organizational Unit do not exist, you will be prompted to create them. -help10 = This command will unlink the issuance policy whose name is "402.164959C40F4A5C12C6302E31D5476062" from any group. -MultipleIPs = Error: Multiple Issuance Policies with name or display name "{0}" were found in the subtree of "{1}" -NoIP = Error: no issuance policy with name or display name "{0}" could be found in the subtree of "{1}". -IPFound = An Issuance Policy with name or display name "{0}" was successfully found: {1} -MultipleOUs = Error: more than 1 Organizational Unit with name "{0}" could be found in the subtree of "{1}". -confirmOUcreation = Warning: The Organizational Unit that you specified does not exist. Do you want to create it? -OUCreationSuccess = Organizational Unit "{0}" successfully created. -OUcreationError = Error: Organizational Unit "{0}" could not be created. -OUFoundSuccess = Organizational Unit "{0}" was successfully found. -multipleGroups = Error: More than one group with name "{0}" was found in Organizational Unit "{1}". -confirmGroupCreation = Warning: The group that you specified does not exist. Do you want to create it? -groupCreationSuccess = Univeral Security group "{0}" successfully created. -groupCreationError = Error: Univeral Security group "{0}" could not be created. -GroupFound = Group "{0}" was successfully found. -confirmLinkDeletion = Warning: The Issuance Policy "{0}" is currently linked to group "{1}". Do you really want to remove the link? -UnlinkSuccess = Certificate issuance policy successfully unlinked from any group. -UnlinkError = Removing the link failed. -UnlinkExit = Exiting without removing the link from the issuance policy to the group. -IPNotLinked = The Certificate issuance policy is not currently linked to any group. If you want to link it to a group, you should specify the -groupName option when starting this script. -ErrorNotSecurity = Error: You cannot link issuance Policy "{0}" to group "{1}" because this group is not of type "Security". -ErrorNotUniversal = Error: You cannot link issuance Policy "{0}" to group "{1}" because the scope of this group is not "Universal". -ErrorHasMembers = Error: You cannot link issuance Policy "{0}" to group "{1}" because it has a non-empty membership. The group has the following members: -ConfirmLinkReplacement = Warning: The Issuance Policy "{0}" is currently linked to group "{1}". Do you really want to update the link to point to group "{2}"? -LinkSuccess = The certificate issuance policy was successfully linked to the specified group. -LinkError = The certificate issuance policy could not be linked to the specified group. -ExitNoLinkReplacement = Exiting without setting the new link. -'@ -} -# import-localizeddata ErrorMsg -function Display-Help { -"" -write-host $ErrorMsg.help1 -"" -write-host $ErrorMsg.help2 -"" -write-host $ErrorMsg.help3 -write-host "`t" $ErrorMsg.help4 -write-host "`t" $ErrorMsg.help5 -"" -write-host $ErrorMsg.help6 -write-host "`t" $ErrorMsg.help7 -"" -"" -write-host $ErrorMsg.help8 -"" -write-host $ErrorMsg.help9 -".\Set-IssuancePolicyToGroupMapping.ps1 -IssuancePolicyName ""High Assurance"" -groupOU ""OU_FOR_IPol_linked_groups"" -groupName ""HighAssuranceGroup"" " -"" -write-host $ErrorMsg.help10 -'.\Set-IssuancePolicyToGroupMapping.ps1 -IssuancePolicyName "402.164959C40F4A5C12C6302E31D5476062" -groupName $null ' -"" -} -# Assumption: The group to which the Issuance Policy is going -# to be linked is (or is going to be created) in -# the domain the user running this script is a member of. -import-module ActiveDirectory -$root = get-adrootdse -$domain = get-addomain -current loggedonuser -if ( !($IssuancePolicyName) ) { -display-Help -break -} -####################################### -## Find the OID object ## -## (aka Issuance Policy) ## -####################################### -$searchBase = [String]$root.configurationnamingcontext -$OID = get-adobject -searchBase $searchBase -Filter { ((displayname -eq $IssuancePolicyName) -or (name -eq $IssuancePolicyName)) -and (objectClass -eq "msPKI-Enterprise-Oid")} -properties * -if ($OID -eq $null) { -$tmp = $ErrorMsg.NoIP -f $IssuancePolicyName, $searchBase -write-host $tmp -ForeGroundColor Red -break; -} -elseif ($OID.GetType().IsArray) { -$tmp = $ErrorMsg.MultipleIPs -f $IssuancePolicyName, $searchBase -write-host $tmp -ForeGroundColor Red -break; -} -else { -$tmp = $ErrorMsg.IPFound -f $IssuancePolicyName, $OID.distinguishedName -write-host $tmp -ForeGroundColor Green -} -####################################### -## Find the container of the group ## -####################################### -if ($groupOU -eq $null) { -# default to the Users container -$groupContainer = $domain.UsersContainer -} -else { -$searchBase = [string]$domain.DistinguishedName -$groupContainer = get-adobject -searchBase $searchBase -Filter { (Name -eq $groupOU) -and (objectClass -eq "organizationalUnit")} -if ($groupContainer.count -gt 1) { -$tmp = $ErrorMsg.MultipleOUs -f $groupOU, $searchBase -write-host $tmp -ForegroundColor Red -break; -} -elseif ($groupContainer -eq $null) { -$tmp = $ErrorMsg.confirmOUcreation -write-host $tmp " ( (y)es / (n)o )" -ForegroundColor Yellow -nonewline -$userChoice = read-host -if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { -new-adobject -Name $groupOU -displayName $groupOU -Type "organizationalUnit" -ProtectedFromAccidentalDeletion $true -path $domain.distinguishedName -if ($?){ -$tmp = $ErrorMsg.OUCreationSuccess -f $groupOU -write-host $tmp -ForegroundColor Green -} -else{ -$tmp = $ErrorMsg.OUCreationError -f $groupOU -write-host $tmp -ForeGroundColor Red -break; -} -$groupContainer = get-adobject -searchBase $searchBase -Filter { (Name -eq $groupOU) -and (objectClass -eq "organizationalUnit")} -} -else { -break; -} -} -else { -$tmp = $ErrorMsg.OUFoundSuccess -f $groupContainer.name -write-host $tmp -ForegroundColor Green -} -} -####################################### -## Find the group ## -####################################### -if (($groupName -ne $null) -and ($groupName -ne "")){ -##$searchBase = [String]$groupContainer.DistinguishedName -$searchBase = $groupContainer -$group = get-adgroup -Filter { (Name -eq $groupName) -and (objectClass -eq "group") } -searchBase $searchBase -if ($group -ne $null -and $group.gettype().isarray) { -$tmp = $ErrorMsg.multipleGroups -f $groupName, $searchBase -write-host $tmp -ForeGroundColor Red -break; -} -elseif ($group -eq $null) { -$tmp = $ErrorMsg.confirmGroupCreation -write-host $tmp " ( (y)es / (n)o )" -ForegroundColor Yellow -nonewline -$userChoice = read-host -if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { -new-adgroup -samAccountName $groupName -path $groupContainer.distinguishedName -GroupScope "Universal" -GroupCategory "Security" -if ($?){ -$tmp = $ErrorMsg.GroupCreationSuccess -f $groupName -write-host $tmp -ForegroundColor Green -}else{ -$tmp = $ErrorMsg.groupCreationError -f $groupName -write-host $tmp -ForeGroundColor Red -break -} -$group = get-adgroup -Filter { (Name -eq $groupName) -and (objectClass -eq "group") } -searchBase $searchBase -} -else { -break; -} -} -else { -$tmp = $ErrorMsg.GroupFound -f $group.Name -write-host $tmp -ForegroundColor Green -} -} -else { -##### -## If the group is not specified, we should remove the link if any exists -##### -if ($OID."msDS-OIDToGroupLink" -ne $null) { -$tmp = $ErrorMsg.confirmLinkDeletion -f $IssuancePolicyName, $OID."msDS-OIDToGroupLink" -write-host $tmp " ( (y)es / (n)o )" -ForegroundColor Yellow -nonewline -$userChoice = read-host -if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { -set-adobject -Identity $OID -Clear "msDS-OIDToGroupLink" -if ($?) { -$tmp = $ErrorMsg.UnlinkSuccess -write-host $tmp -ForeGroundColor Green -}else{ -$tmp = $ErrorMsg.UnlinkError -write-host $tmp -ForeGroundColor Red -} -} -else { -$tmp = $ErrorMsg.UnlinkExit -write-host $tmp -break -} -} -else { -$tmp = $ErrorMsg.IPNotLinked -write-host $tmp -ForeGroundColor Yellow -} -break; -} -####################################### -## Verify that the group is ## -## Universal, Security, and ## -## has no members ## -####################################### -if ($group.GroupScope -ne "Universal") { -$tmp = $ErrorMsg.ErrorNotUniversal -f $IssuancePolicyName, $groupName -write-host $tmp -ForeGroundColor Red -break; -} -if ($group.GroupCategory -ne "Security") { -$tmp = $ErrorMsg.ErrorNotSecurity -f $IssuancePolicyName, $groupName -write-host $tmp -ForeGroundColor Red -break; -} -$members = Get-ADGroupMember -Identity $group -if ($members -ne $null) { -$tmp = $ErrorMsg.ErrorHasMembers -f $IssuancePolicyName, $groupName -write-host $tmp -ForeGroundColor Red -foreach ($member in $members) {write-host " $member.name" -ForeGroundColor Red} -break; -} -####################################### -## We have verified everything. We ## -## can create the link from the ## -## Issuance Policy to the group. ## -####################################### -if ($OID."msDS-OIDToGroupLink" -ne $null) { -$tmp = $ErrorMsg.ConfirmLinkReplacement -f $IssuancePolicyName, $OID."msDS-OIDToGroupLink", $group.distinguishedName -write-host $tmp "( (y)es / (n)o )" -ForegroundColor Yellow -nonewline -$userChoice = read-host -if ( ($userChoice -eq "y") -or ($userChoice -eq "yes") ) { -$tmp = @{'msDS-OIDToGroupLink'= $group.DistinguishedName} -set-adobject -Identity $OID -Replace $tmp -if ($?) { -$tmp = $Errormsg.LinkSuccess -write-host $tmp -Foreground Green -}else{ -$tmp = $ErrorMsg.LinkError -write-host $tmp -Foreground Red -} -} else { -$tmp = $Errormsg.ExitNoLinkReplacement -write-host $tmp -break -} -} -else { -$tmp = @{'msDS-OIDToGroupLink'= $group.DistinguishedName} -set-adobject -Identity $OID -Add $tmp -if ($?) { -$tmp = $Errormsg.LinkSuccess -write-host $tmp -Foreground Green -}else{ -$tmp = $ErrorMsg.LinkError -write-host $tmp -Foreground Red -} -} -``` - -> [!NOTE] -> If you're having trouble running this script, try replacing the single quote after the ConvertFrom-StringData parameter.   ## Related topics @@ -959,4 +39,11 @@ write-host $tmp -Foreground Red - [Authentication Mechanism Assurance for AD DS in Windows Server 2008 R2 Step-by-Step Guide](http://technet.microsoft.com/library/dd378897.aspx) - [Trusted Platform Module](trusted-platform-module-overview.md)   -  + +## See also + +Prefer video? Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. + +### Credential Guard: Credential Theft and Lateral Traversal + +[![Credential theft and lateral traversal](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=cfGBPlIyC_9404300474) diff --git a/windows/keep-secure/images/mva_videos.png b/windows/keep-secure/images/mva_videos.png new file mode 100644 index 0000000000000000000000000000000000000000..2a785874bd0fd809b74bd64ee2e125de6e25cafe GIT binary patch literal 139543 zcmX_{Wl&qu)`o*iakt{`4sCIl7I$~|Lh<5K+}+(>8=T@++#1|z2_7KG$NlbbGn3hw z_pIc{b5_n?d&v(KC0TS-5>x;HfG#g5r3L`NzJ7!eM*h!oN$^GTbwP2F)BOqnVEp>e z8zz+ngY;EIa+m)ijkFC%j6;DacJK%C|B|$hySRtDjk6n|vTjoDRYG%rm82}cn!DM$ zxZ65A0dP^MXkK;H|LBs=F5Ygo);8{d8qCR$uPVm>t8SL2|1qU>w{^4x@If$9Uaz41 z=Zdf!-@BaVCZNHj3n7*320owao;$LOt|H#^=ZcesN)_^|JgNRoR z>A&Cia5J|A+`NRGzL`lnJ33lAxdUz|(|TVu#Q&IS*t$Dd0xHht7+ygDCd06g*fL%|LKj*_NA<=_n4wF zTpOO>N3dT2y0@#)_0w$oItceLPoAqULodX)m$3Kw;bytM_xsb$Y5mJfHvwSt;{E1D z9wgxIzL^k~t}_Q79smzWAfw0-O-|_9g9LW}+ZlPGMNU8zGx`2bd@jb~(Xk?6STI9? zJBh!ZCxMe><>U(tXUh^Yw`d@ygkX#sCeXe=c-Kigw&=U*2|i=@_DlpAta*Y#kZ#~<+rRY<2#C(hQ~qqt z7wqdvDCP;S^FPJ;v)}E!-s8FX&2yv&-0f??T*UKDMjWK&xs$y2?_B1>K5-+DoxQd45reo2vFs4 z8VYS>R9b#3Oi=0k@gL6x!g2D57h<(^h}RSrmPO-kK{S^q!d6YRr&z@egG9V4r-*ExO#^DXLV!L z*fpa(+Q6tPO;_-r_>x+w`M-qYhRDXA-k;oBRjAV`O(G+5_ zZWfiGc;`Hl$tK*;@I`sysrax+G#4VYdI!xaj?+9--^rRxU3*jwzGR?heQIjzQnE&f z6X`K~`n$=_3=^xf4c}!`McVy56wlX}a-Ku`L{r@%kO8!RX7$d-q_{PKE_`oDCgpNc zdPyV0rRxJailSx4x!bhAAQPZcuCKm;Lgs$^jXYXd)Wzbl(sC1jvJ9#aLVk= zY&7SM#d6vQ8NJcESv8BepEgKh-n`% z$S4*YY4Z?E^x!8^N2XEZs+n000)AOXI|h}sKIZAfH^5u~mugyXhXgijlnkz%3!i^4y;fIw)V?SWQb(6uvw zrW<|@u15$x9JqrhE;;A6PzU6q`*%1}icv+fy=WOqTI>Yd3||V}E$1i`=)E5^fQfdW*bymNWMIi` zE_N6lqu*E*%*6MIczgBb)7eMIB7_2#+P{>RTtptX{zAfH!nE??ZWW7<+@t*zPgt!5 zWW_B@tx8M}GR-6s%A!?k%MM0lgeQU7C23AE=v*CIR8YSPvqFz|I0(dKSELm4QG(gw z(ubR`gI{H7ZF{{pL4WN;_}N9+J$c~dnm4*38{I66N`R~dUrgnqNE|a6@rFEM-`l;j zv7Sw(!>juQ-roVMLzv8jB1G(5N}bz+@;6KG}g*DAPx`AS$a?SHGASye*SZ zf;3CpsU(2;YMWt^$+=7EN6NXFSpM5?7vP5XUzpF6Zn1lsrCSOE4#LqF@BSzMmEtq$M~3E-!ice-Z;YxKC;IX8uJqq?ffU#13dHbbEijqbIr^R{6vV4yBZZ)gBZ|L3S*OIiIwm1bQ`^h48kF}!We z%N(%=j}E-{X9q)l=6xXPWRK41tv1j85Hcc!xu0x~u8=KbmGn$X&K+MXf-~j;50~2z ztcs;PETKs;Wc#crH1zl9qJfNt$pE8H0h+0W2mw`z7i6#TdT%sm=VBR>^xeC8fB~a9 z2UQWhotzDm``BLMIss>z?YlUuz|x|=gpRMgl=qqnvL^+w(%#`2K{V52p^+mwKNq4c z-}8~xhv3r>zXmJ+jW0;hWtmqK_xi9jU4wm58^!}?ZiKN?&FpP86jBvn6hC2v-*_bx zWv61@MIMF6=1VFkqMMT~aO36AzgJLIO!@&^0r2@0S_O-~^VK13w#_x@=(3(rHS<$IwtNs%+<`mQ%nVx)J;s7!~om>n6=mmhiBqkZn>}n<;?0 zZcUc5fzHQV0!p#rNJY>ai_SZVSW4;`f&t=Q^6yfx1++o8my7;ie$W0Ln`f|EX{%LK zT%qc;x2p!EXJD(@%jNe?+Mr7$|0WSFDlp{3k@s&bF)z5L(raN)9H; z;v*9V94s?lcs6;W%LwoD!lX&-0EEV|@c!lYT$PZC>7IETSFe2UfMeDgDm;_pGKqCs z!<&Z27LN49Wxh`nl2MzM4fPLUd1I0E>=vlNCBd7uI=HX)X>m3U2n3e0tvjwmdTP>y zq~dn@39x=CB_rbSGPTU(j3@Dg-k{dkAv}~vhL%&p$9Z|-%B_68U*V$~eV{Qh{T>@r z)ABq!So=BnfOCiNGjntrVpCbJ>FNdIbM1(eF=a7E_+w@ppLo@0O)17)7f zyq1~y15Ap1hE`z#+p{p@;8^aZ6Wmes!Dmvh4B1Q|SEgJm194Pg+I#AWf*$nCh-rHF z6frS0jm$c+LQ#|u<^=(f_azRrL+4obZ!GR~Bt9)9QTY~b+t3_{vw(AKH9Sn3B*8Ge zJTheT#lLLWMhIeK*dDSlz0>?8{S%{QsmN@EsmC}pL#qQ zlILIACqiyXYZKAGU_Wyq=(bqZ^694&jD=X*9?laF0^ngwZ!xN*W#VecIG3!H?d8#e zlV{UtaxWI151L#2=guS_;C-gG0_LV1Nnn{WXlTTsUywy`SSHTFINoDHU`@k zP>biZSq&HiQ-4d#gSe6rROG*#d_ovJgVvq3eKRX}uyq*1T{QRPk>WQTHE6>&z!H|7 zF!`p-qblCJz%(|`#d_5rqaDl5o8KghW@cylvnbAzk=D(vB>DYclV#N0?D_?}6L+a9 zna~i}kERyCTuna{(sKP1yO1CzV=h#z^@(gagR>P_TPwZt2Xyd>^+DO(R3ddsvSFPabOT9mM7 zx`&cQ67A~qt7?_0$Z;V-Y=h%1ED0=+{S`_&X)Tq<+Hl-epAxxdtjq-6E#$0mEy4^! z3>Bg;S_x;;EvZ)1tXd|jBT^?;m4Lnkfr+Yyc*9a+m{T{pxEd$|qn49qReJm@2~idw zx1*&=24g}?^Z4f`^Mr)EuWpv9Dj^N7hU?n?i@qpzr)v(nX^VRL%a(>q`z@@AoH`D+ zwQS!$<_=Jr_yF!b5b{E_;rChF(+Ps@;@#^XQ@AISn{~7lCf({gY}3#`|3RYBlP&Aj zF$j3T@P-VO>BO0fGaUY&=pb8t`u&A~oLVyQ*-tfQ^^HY^Tk8OJl&cXrdmMQjtch~I zh;6N7yZ`z_n+{I(pY`iixJ5GZjYJ}i4ctY}okLx}zj3?C!r_zffhc?kuHw2Ni~t`D>QUphQ)9%%@MGfa zc5B(O6UeSMkDuK^y69r76G_1QafOD@_Wc}QL1Uk^O|mlWojhIP6?6)t_x;RzG8w7HxwrmQ~ z#*u6-TKvpPPurrZV{U3M`x;(zrnDxpQc~iH3(1BfZ``WBvB*O8ju0jE?jIY)s>abd z6O%4h*TpYPHE_`ujI@oz<|Eq2h|-{0)_DPVG&8@EK@dZS(8QpY2SZDJCpc zURU4-yRqNZF|O~$qxUb3^d+>8o|`00f$e^P{c(NCNn(>s@v5z^-h~;gjpL6=Qkp-Y z$#7NPY>B28x_WroyKL;49HEu0#2)B$OOsyuKB?%nc(qEKG;)oW$d(Afsve~yyX8J$ zZbb#QW&uq_OB@Y_u`lnsyMh>oc4tWjTh-syLTbnqZ?IG z8nsbA#ULFn?1`Vz_luvYH2Q+}_{pNK(YQ&>6VE;k(@BX>t^M;^UsOh5JiPMO&4RF- zg5ALUd_1P@Y-~0vCvpSKF}lt87wHWm(r^hkV`2MP24{w8x5?wkzDYj~Po_6o9lJe| zegpShDt*EJ@oF@LKPP-$o>j|Pvta7ZXvf3vODM6n>`$TlQ!_6o47WWV>6stK72ofY z&zJSOy?hP0?KPS{*g*g0-w6YmnJxi$_|3A|rP!pms+ew;#YSt6`J)pSJ8U7RlvvZMt>Tb=3XRmf4`n^XpKpNqd5P~K4l`^qbjc9p3$iL z5e-aR&7rcjVotOcm1znK!4Fi@$>!E22k(cy)}cI5Z&!GtBs>EU$)|&Gd31en)T)iu zD)gqOhJ}sPos1mxk+oGiH8d2p-6~QJLrm&@?qsnn684D79b+JnBUaKvug`j-AK1Wa zKSlj1ts8cJ3u*tioD@79Q?%+Qo2B-D*}b>j97X{TJrI9Quwh>lYdW<3`)NeLZoA)k zNNoWP7CpZ|SeUhHtF3`}d$f&M{A|5P+T(5mdIsuthHi8NA?uc#O}TF@9D$CcMEyo! z;Z=Rl89fo{4On42-R}HG=4K2Uf{&y1CRJ$6(w+D-#Z^}18B_&lY&2%6!TT%aSmZSS z9NF_N=e*}wNU_iME@MSp3Kxk@M zPK;jMB~Ea5U_y}vecuL-t4u8yHH8Oo8H7QyNKOO7vz%m}vCe zpL>nUCs8R@6a!2lR{*MIFB>#)YkbH4GrJ+- zQ&$lTy=U<~Wl<2@hH~^--nsTo14NN0qy|QlcKWj)ZR7xQrwDYSGafeSjYYnjjFbeu zeM_54Pw`-o6`HICZCZp{oOA;HgLw?Si|UUh^VW$1PShe9zSI6fE0wJNxYK4bb_67y zkYMZZW$%G|3qWVLH}slN1e8<#P$2zFq?u*^9K0V93jRzwo96jV&s+>{!!^W1LZ&|9`n(*?|L6 zZ9`{)Ku1T+^(O(pDFH%fO+8J-@5e~N7vJxAP6)X^rVfL|#UM?X(7GatuV*z2-6Bf7B;6o6d) zNdg7(K;0KRmGR*;(l!G~`-ofJ6tv9nzmtRU>?g5sxT0#37vFbfe%?VsAmTUGx`C5h z*K7+4`G7FSHK$ixUYdyn62?@MF0-?W%Pjwn%7$K9E#+VDbzq!-$ldoXeq=6A}RQJ+7Q~Q=BLc$>e*lpj3CB3WtvM{i*&Hsb#e{)N}eYejubDrC3Q%tB?^t2Wlx9a2VnIen-5=Dk2Om-FgoV^5}769`yIKfQCQSr%)`bNYhaJ_ zy65-x_HvlJbJ2^!dhZt~rvDtzmu+7p>KWZ%n*EwA-`>?t50E==BstMcc}P{G%?mJWNLP6-}OxzFjb8IUbC74(O79c0<>y=m$uba zgWp)3t=}K-tQ(ySc=p`x2z&=2)fpP!?u|9i8@7k3B584yeB#;h5h=FZ)eJSRiwc&u z=1z5;tT@gwv@)N(aJxUl$8z%$jH>!Fnqh_SuEqVqVpBMkp?R3Av0)Y0-UQt+o#N$a zGg%SnDA2MWXW--6Y!!pEn8nAvX4n`8Z^WO>LW1G;l+ET?$OnM7K{ohUDb=ltzB26S zHM+6$O?=PK&=X9=?mX_+x1Y*lropKQRYPp`1SB^ouWQnk_PZY~t*x)AZ^8t?6zlKiI5}8K%aKD9pdHu%6 zx-qK%jYW5mf-KFjYBjmQFN+S`eVSE#B2>zSp+!jr|Am~<^za_g*RYmeuaWy>`)@#} z!Y^j+sM*7)Nq}3G4x(@!Bgfez^G7`!c5~JiSxSK<^crdnnUOwPckzm%%$^v{$nhSq zTkDX`l8L*V-PC8(@Kj@qLfs)P)a+pHg2e-G8^nQr^_HKVA+Z)Z2KprWyOp{jAJZ56 z)V0CTxU;3wi8co|3vEEcd;YTxerFKGaT7EPIh*TQ@40{7M}ap_^aw8-ua$(Jh;&!r zKj3DY|2ky7=f;1tt=rlEwOsQZ=m>%?0e^y_8;}j?U#i-k_PUrS9~?5IB7>Xw6eJg) z#RA*cO4@((TD8Ky%OI6mRAjvgoiBLHRwhq6S@=%|*qOv&%xZh9)hm5$=;RTcRL&01 zH;FOhEmDsyWdVJb7w!{Uf^8`lWiR{bMU*@f*;nKK=Ce zvKAT?-irUf7~J2p7v$6pUhnzmyXgdd4Y1puzJco69l_9V>us<3N`Ii^#pM}v z$#AV51gypYk25>qVZ_)Jit@LZ)cU~tL~)pLaclkJUdC1;;*t;(_^a)h=x;V6HX1H7 zK<$F_!GC}C1FINE!;A*AxR;)tk5|lCBRc0^rUStT3Z4K1GBWWl_rK;Z`nwXU+_F+l zXjZeqlJ-jjBE)M+e+sFSrquAL?~=d45_idE*6B4S#8n`$-gCm`2^oN$*OiK(8(Ld+ z;=XnF*iWv%9xir^?+kl3F|c92&|$RBh()`lkcg=3y;Hz4R9i5H&jnw{u@A6y+Lz)Q zsA2uPL>s^IsBil)j`8LfI>wN{6!FH$fx5ukXd3FEZy!Zh|J;%rI#n`zlnmwA$9)T3 zM#&V{z#H)R$9_xBf?&| zU?U;X-rJ&o`eNfQGE*cOK=KBIXcbv@`q;`3T6R)aoTp4Qa6jkNN|C-&9?SL6#xPf) zeRP+i*x!J;uGmY2xQLGD{O_EaF-hqKUT>4`32+x*lO}dXJ#Ssvtjh6tTO*QBebpp!Xe=$34i&AC=DC7nS>`e~Ff@m;A1wyNQ2#pf z=X!Vlhsv8UWrTj((c1!UAVK~4%`bSxOyw@HPVNQ@zX-|6aQ*Bsx#nFKAuLp`aMw^O zlpzXOMoayJ?l7!{_fYb!aejHC*jEF951hU|cZC7Hc1r7<32b()h zCOt`zTgelq7hF-LSZHv{pt16lnFd^$dy`A@mj^}W1;_L@5ZS^2Ik$Tnn0i>A0>wix zQ34ATN3XD>i2^4>%*(@JF_2@e9M1?oxY(U7m|(K%Y1KAnr7^;qZO28xkyxapHbsWH z$ZHwni_K7TjPCJUatYy@O%#`k1zR2PXlv2p#r`^hAEWpBaK?#Z<)03mR?d4mf4M0R zfQ)=syHU7I>>5ZErZi&ELK#Q>gQE4uV!#3>;soCt+{oVT31|=-W>!D*j?vA_OWix% zs$-u19eWap?G{Iio0?ifDIt?UCV0BW5}B1a+<<6HqATJFZxZ5+>)W&YiPFon`S$$e7E|Ol+PV9utk0+D3ky9I)?wUGgvow%{pc7rI{RwRv4*oB zGW*CQp~U+*KS=0YA_(Ju;%LS(GT+G2P5@jOi4-YAO#vdeJfe_;C;Y9Z77xQBCthZ? z;%G{ev9-Bij&=f%GM#iwQ+lxevmI4eYKY0}&S5c#@XmHB=DH?`kEk0B6GqS8Va;a~ zB7^Mq;Nux#*(lRIX)_XtF;*gU_{n%@?2W~T$6QMk<3d!FJ{f&1=?3Q31Ip(MjPP*S z+M2z^wmtu)2A3g2*SipLrNx)IfRmT2DKs?;i;pffUv|o5)9I-Q_9_qoa)$1zW{ic0 znP{^o>%NfiGuPXYSZ10;5NP`>s?96jB(`Xyh4f*6yHFc_z0J`;DIC!}r2Vwk&^e_o z9C|?bbwwga=~TUliDvh=6tfWOSA==ufzi+c$#vY3es@M2O|CDtBpHFere0UFtL>5o zUly4iB4)m1$0#6Jw=iqQ;4BCWeu?W|;2WgEAFFIEo#AZf{8#jcrYR{3)tUHrO*arBrd6Z!9SChdw9nFO2qkrx?uInAVy>Nt6Si zFOP{c-?wWmKS=BGJ${!q3f)FsxQM-&K^~^If8cJl-}V)-pPjatLPJ!vCsAeMSyQlb z80%;m{z$tLGo?pnXd)9Yqi8SFwp8`|dr9P1K`Z=jIJsM1wuF)UF>i%mJ>aOHc+FM> zPEz_a%F6-gL&{GlS3p8VeTA>y-W@q>_pOHvrEpFts}~=ycT3)pN9&VyUlU2=ewYBM zxmhG`o5G`Ufwe``6h2F#U}rPj!^7ZG-+C1!P%YyJ_4flFuj8Npa6Dhv(*lSzM=r%y z6Jqy}`JX=E{`f0EiEC&7Ubi5JpOOV=BbH-UxTd%H#)4$8I&)|Sd*#QIljFr1#bY0m z$mMo`UyuL~KXjYoe%AP5pO;dWtf`1g(wpfjkDT4 z7fYz9h+>Ia&oTOEz~FM%ONcS_`E*cNTg1R=6B_XH+q&mYT05f(SqEW;lG|G(1dOfC zgoqG0+nhaZc1cfb9);7mfm;fM#C$zH()-D*M*}(QIZVXXr%m(m1V>4!ER!oEMmlF^ znn}${=0(gc`p1(*Hej8BoYzTb@_SBO2~T}`9A9%pj;pzd8=yLh^XF~P9vkRWx$%0y z1?XuCQlsyCd7gPy|2R3+W_<*My5vh`$s-@@x?T>8_{PFTK}Cbwm(uzYId|Pdf2Nug zaviE8_UV32PKePjQD{67H!2$2&W>kGSz!VfdCBIDjq2GpAmhV7wAXPPdW`tcp z!7EOP(pK9`f4>a*Cew_3&@v|3Xo7X2{9OxD_`Bc}o%<6?E3WSIN{yquo!s{1Dk=9o z>@)!nY?}#cXI`4L<@{bCn{gxiVd6cH)syKzouQMEK4}ep+r^4odYuu-mCn6(<{>ww zZo$;*e)40(WPFunZ%>v*t{``rHi57~N=;{!V7hMvZtAS&9mff%e?!kc8o^}{dgFt8 zcYQqH#tM2Z>iY(q*0#6(vzq8c(qzV@>6~8i-48Oj19iW#h)gUg(!66mlDNhgMta9I zcb9IXi1fo+7Z(lI_;bLcE}^>Q?V##mvB~TouzT`6pzHS9@U_T-%(6QYQmepoLVA*; z#Mr%%;N-S|l!yj=?+}RXpon396Jy!;4!+-%$I*(w5jU(?uV^ zkNTUB9=#Xh^~l%IXYJ=X@7ri2!G?GP?`jGLu@EHpH8og-dNar;G=f%yi-@NA((Lq zne2`-hL`I(HRUTN5lf#w{HncPr)1l0AaecCy!ldCf1{oM&uYSA4uVD#*2Cz`910lsEc(VLqN=2qSh-r@*Rb_?(vYsV`|s(C zJ~zK?CFet9Kp;z@J1mT0K{h9u;iEx$df77p*BrRY+Dr7n->DX&LD0nfG)TFp;GJi-ssXfOP{uOm*b5E38@)g!BO{)VCJk% zoyi`)M{S1GDvriR5rSpRSL&QaNThdN?j;ABIhiiz74yGyIWfJ`5+ z6!O^-{#W=me_WT3o3nr0K$8x-OB4GiXAy%@Uo+?bHYkB%#HDT3bEbov21ltufZNE8 zlC}NONWYqqBXz|_(y>R_PE{p!CkcrFp==Y{4fA?68@}Q9Bq@kuE##6`np@@xKTMmN zgGiCeon7LJ?M1yJORN%A8U}BrM$i$_%2$};_KyH<|CpVjWB7sPZE;;E|>0lI11jngezymNooXOa;Wvu#@U4v1E>=9k z5biWnq2EH9F04Oj`~E`OY=5KDmc)>#p;{YxpOjY~Jt0@_e=hpQa9Dk*oj|Ukq>HzJ z4?6QU5U11=WbqC}eb3#%!m~KEbDqtvqWr% zB6niwd)UPLy92uK_H`Kq!ku$k);}M9?G4)Sr#lr}!egMGrmk`NH}FR;a`8f5KI_y( zoSgcS#*g^8oi$D9cT#7>{`DsKHm}l%*mysp zUXB8p)i$^&ueyaGqkBK7bDfT^$&UuA&3xS*u)6lsit*88{K><-GFaYeSnr?=^D%w> z;W7E&O?(^VRvij2(royU+|JJiDTk)^_}^>y9!gRSJ3s&1d?<9jFRRz`tYv#+@qqRH zVjlePCp-ToB;XFyf9tgO8MpWGNB#47{o@{k=mkFb3Eky!3-fWSJpkJNvL_pWx+nV` zDl78*mEwi1cQ^Y?`EEMk!XNB4L-D8{a5Cd}7VW&+L^<%@T zorFI{tO3$FWV5(q2>Y-+FvuUTUyeZW$79l=D{(crg;EG3K7{61?cBdC8NW(UbrPq^FD=q-r+ct7% zN?!dI@=+~TRTv?`~FX1v_|)Ir~JGE zWaWQ-eEE`*A9L_8v*!ofHzNr_6aA(-I4MkCwf-AYet!?$Z z^M8~b4_IyosLH&|qy?i?KT>XcOnMz@U)wm><_^`;dw&Lu(t1;K2}^&?+t5hk#@=k| zZG!bQ-wlQUi@>avpOC-yoov^6JC;VjGiGp5f*)TCgw5!0bA-=jEON^$Ws`+F=id`0 zN$Sk0sv#RT)G%V1;H86AvR8BD7t?fEhP>~P%o*1Ww_CrRxT!jfri_^OEUy@d9F-Hs zqAAGM!q!*3hG}?Xp`*oQG3DM+UsW|h<&CPaP0sm@>Twa&fc5wJdG2czcQf#6wQt>V zUQj?@B`?0OhRikL2=;fOkXsjQkX%y5Tq*YN*pXgJ+XDDSTl8Wkov%X@Uxf}ZhluyY zZ)y5JDQ8s!r>-hAnX26QPQokEB6%;{JYiav3{QZ?|F#Z0d+t3pTl^tzoqntK`Os;O zmp=@>XV>?H)gV#-2l&^Xx3Q6c3qsMmSmUc^(U%_#GkF``w|i}Z7RHc5%${9g@WUO) zi-c#uE=!MtFq`Q8yL|uWogsmMb?t!dV2JNVbi&7XT!t2=O5Cg<@6;06l)>{hG6h=P7~ICFdr_Zmgcr7E1TLo z`(UG#{tRH==F`IdAajh1I5%D5W8nCsW6LrpsU@gi5P!3My^U`-`KnVl8m*yZ zVxNS?%8J+?*{@PsJ;@=SNDOsIj6yH%R%ch{leXKVMMfG8kq`NBZQw z(mF>J+`j&AdmC0Lnf4x(4D=$egpezITH(M#w(mz&jia1cSH_G=aIs)f3oSo*%o(>H zVz3KtnAmTVMM?p(ee?80-0SuP6Tbrpni)usCFqvHAe+DR9YvwqDk%$D9iJJAv=te4 zDOsyI%H%~?OQc4zlrUE1!PSgQjc`U?(x@R7Q_Ibv5ezjLZU}QD?n?dhFl?VBx{@)R zz8(5x5V?;5b!*$tU+84{1p4L8x72R9nL8ifo6L4LWO7YMPDB4zdzs46TYk< ziC+5$K#{)Rr@ze3yf`8?TD`G&{3Y?IQJ5=H}nsY}7D)3%}ojihWH;WUnIY)7gf}Wu%I<+)d~}R)mMs zT^ynfoc10rJt0*M#7fvhxJDR@`q?jJOpj>rZ~I_FzG7Ljg3la6mBAmc z&1A3WqqU_YUq2k4(w-y5SKXe9c^hR^DCKWK*`0aQ(O5nmrfW*BoO`IDZK*NIY|m>R z-L-(ah>`gfo@k^F-uncUr9;5<#$xie8`9lw`C&8H7rgG6ya(EaX$<=-Gnacc#!(q& zLT*!X;WUPDDK;VT^EhT1t42aZwh+Q|dxYNbardZ0oG|z#T!@6J$v|i3`5iHf`)Zl)J zRq8KkJ*MMbsTsQ$0^DP+BDe4%ex*=Zng0ERNo3PBBFWi0I__QRS*pJl6Gtw(bO1F9 z2ba04-%4`l6|5X3iI*@zTC5gWk|ji6rZa-6d~$A+(zB$tv;B`0tb7STIicuVaiE$HKY zgZt{V@j`@RO&2A?2xI0Z&g$7IWid)Wcb}h`GfK|Bi{vYnm-1D6EgiWNa(mUfJuq*i zjVLs_)H3?SD#}793VBBm>Fk%zz!XmFJq?3~uT40AT1yR`{!=8=BUrenGxGe!DiBpq zmN4V~RMN&Px8YCy*(G^{ukS2DS{4cpJkNZOV8(n04Q#Nb~pnxd#1kk63y6VZr`o_W?6Zn z88@VDzTfM?%{phF^MTR*sztWiTh0>kRjsMW2EF4WM(fX&Uqtu`jU6Mckk*uEib-H zRghT>iNl)kWYEMStHAIj*ET2QgfquTU$Mcxv4||a@LLgczoJLKarMESZ*(h*z(PJO ze$hpeG#!j(9vcOPQm+%Vns(dK36UQ;UiN^YK6?4WzNiC+wS0mc>8CEn!7!L=!k+#b z#G%eANBaDH2d0B6)^PB`K|W z@e9@}4aiz0e~xrSIZL~Df~5O3qczgD6ZhpD6~@L|QAitruQ%N6gMps%>AicCiE@rg z1cn%lcQ!P}(## zHNhpO3Zc~cx{DR z+>x(|a<~r*#$bpNDu!Br_Ornw$Q@<-DcFPNn+`LqR5xHk>HeKXd7w=z1Lr zoop-wcq&00{1}dfQI4pf~52ZQk%Bnm2P&r z3blp{0<>onv6cRMgn4 z+GkW)GE1(n*SnIsdU+GNF}?<1Y+(J`GD_jiG%M=Z>ESQ*9QU4$$+M$0il}EC$yC%; z3or8llqX3+^X3UugedO?9R@7!X!v4AYQv9Z(3Xd4y3DzV!Wd17wb({q-S(d&P?9O`+!tFzbIGQ{lIlYOD! zQLrl|H!m>or@zRr+yYtfG|lKfG|7w7#u3S{UkyFbr&qjE~pbJ=H}p1Ofql%|Hu9-%^7Y zktnA-zMvxzO?sn2|FHwfW7`fSEJ;LwK|f!on}7f5hJ63XcKY+~X>g-;X?A40W?0w* z*<&$V$)b;&wJ2HA5B9v<+IZ<`S?%I=hFpW)vkfZvPS zg5DUX_YPl(uJsEtoND>}a_#s^xe>Z*zfQHumnS^CCeJ8Eq^lQWF- z>&w9~dQ$Kuy)`m2k`;GB%!h~0k}z1Ze3E9RSX7YGthOz|W)Gv}=x{=+EMW{eHn2Bf z1>%G#Z`D>8O%)%K`(c;Lao4D`vjC5+;|GR1n5(5<;Y;;Q`DfI!>b8GR&)dwx(L9iu z!>{&B-J4GB9=fpI64t%$ab(-sMfHn}+S%BjrGBiA{d$)pi$*(CqJ$jduWdv&u4**& z>zeg1laFY)w&>}d?30lgKMQqkWRW#ensBGoFsWD*)ASOi!L)Jv$XLEgcEf`uZ9>Jx ziVcn`Twb*eQCc8CHknTahAho;t`8s2($8Y+^k0!5Luj-4k|#r{dmb4oRSlzGQj)1;35 zCEE#}AutFAacX`H1PkwdhhL z)0hgy4O2-^)KUZVEk>QNN~a8B@sixYy~VK0!KC_K?YUnm{@N@@)NUrcg9}TMaqZIw zzFrGilU-4O7lKMifjRs|#JePbS(mRIVAe1uQS;Q4%DdCgJ>S)LfGO6yIxl6>6lYV5SQsNycLf_j}qIx1FdOO89-dd#0Gr#i2zLwY0^RP`pef* z)v6#ilKTzW;@RVR5AJ|L++922sNfJS;vd6OZGIP#gG#*llGDi<%FvuaYmT%~s#|`F z&Bh(3NS|Gkc`Amo_#&VN)&|c5d`uL~Q37vdVB*MKv&VDmE;&S?gkYLT4frA4f4~@I zADQR8LW2n6z06gSBMjMx@E$q$+4{*y69{HjV;LLy@$c=!-K828Vk0QALEc!2{Zi%F z7F|j?Nc(%KL(XDBHKJG{{|p_BC+@ycdE<_rq^Omv%PCd!y66Pj&L5!m2*WF9PN)21 zAv*(Kwp(vH?xv-xGXo7X_%N`IhG{wu!9vV{@C`>_i%V2$pj0Ym7FKG8RWK}I^S z4?(B@G80;il7$|CAs=bk%i))wSm()lS@&>XZ9-CV5{+Yos7IF5=CCgACFo|*;X@Gw z&9xm5_v!-X#91Y|+h~2A>i^{&J8vAUiJ!^TcpV2<9qTPh3Ho za*mcwbIrf&l02&774g`8b2jQ>NMM&1^kUVpS0f{FrKoFd{(Wz+qM|osyzbO@I%slB zAL;+V{h-O?lf)45o0tB3v@%wnR8m%$@b$GOe#PFEiNcEY2B86ZKSoS?7K`t0+>E#n z&0KXG4gnLF;Yz9@^c23ZUFtwfsg+EHO9(p*Jh+I+XCa1hF|mEjvCg0$OS*9x4_EyP zbq#;OKNh>qusvd^#fr4i4Y=7!;J+?Fk;ZktQ$a6Mcs3;H{Y)~82TLZWr$|u!bUD&d z`Gi%*i;^giCt3I2bO9}Pt}(GkE-75SKk%U^Z}9uR?H||v$RoUVpnT(;td9qtauDI7(Pvr;bOhu zDVb7@-l(`m|NA(o2;v|IlA{fLJlgdJ>(``3V|AI)6}_*P1XZ*vI~rl4J~=oWohh`* znWqvxQ_6q7->UsFCgoFeK#!uHim$1%pC}J+geyt>Ad=npJ$y~wNvV-RdmzBnOi4ej zXJL+sCz>H|>2D;VGOo4KN*C9X73FJ29(GrJ9qjjgQ;u02;R*u;y+-?flT|ST2>`aa z#G*gc#Q+gc=o6VHV{wfuz(}Y=QG#LX55`QKDkTyzghFq@L04ZOFPSkhP4<`f2+0pl z7^jlE%|e|BKMlBfx&%gYGNY%kTgQ+p@1HJI3{Y7J(|aO*CAAyF(*#-(x=FY=5B>d~%T-5t=)_w!iWRdQ?AEN+ zGxXIK3gyO4>>gV(&I$wqzqqr&CFlD?o`r9U6H5b#r5DwINI9tTR-Qw&W84!-)WK`-;KelTxr%U!vTgp#~ z9y_do9+xIX3LhnK-SpprKLvmgU0KP+)BTi)AoI-`c}KMLcuuMdK(Rh?rftGju#TVA zmbptuUt?1FjZ}#G|5%jhG-rf=)Unn}2q8`gmKaNwdb)|iL1&uqqy1@F^S`5`LHe|w z4m;Zr+mUIqpu zNqg$!%n*wp4Pkb2{)?3_S`_h)59Zh|+&~86h_?bXLavy0nJ2WAAl><>@U4@UCQc&Uo1O*Ql@fQDPHpsO zAe#@(KO0*`wfslS0SedZkffWt{=A5c%5YR=J`xxs!0Rrg*aMJIq~f1!sj_<4YVpjz z%&j_fkBI2${j;oJYYtPe~>picrD+X6C9PGHRTnl#Iht?m6iFJ*NDuzKvJ( zj;n)?R$aG(cH*(k_5hsubM$;lu6qE zrmcCp_j}G+LZ7e%u^|lDM!1*6W;fnq^VBj^k?>IWsD&ZP9nZvGLy2ma886IT)mme$ zEMR&I?2o_L)-Y*IkF(>b)jwUdnJrWiwNndj6X1~sx+H$z^}E0vCn)}8DD4dJa6{{o zCIypIYB`cXr47WAW;RNMmh$jv^P!m8;$S#~qws*cqsR#zI+Vl2?xd|Ax(R2O?aV%! zJ3%D?fui#-|LJs35vqK%F3*V*sV1tJRfS`4iF^xasF|su7B=yxw7--`#rg@4Q0tQ_ zPwn=6uDE>=)fH-I1ZW}CZmvy$ zugkniyPE8+`+IyAL!^1{y;lemw!!4ooTtK)dm+Mz*C3Hdvrk3g{j|#jt*jg(!h;;5 zA^eA2{8hQ_tXvj`WwfzY4hn{K3+K}FShqMPEN4AM%ueXbQ#S&XB`zA2LLp4-!D*wb z=I$LiWHJP^Dka?PH;jeMBsFpD*uy(g$vp9I%h^^=D>i}K8mivN!@H@VoxwoKMk)_V&Z_UXcI{{ z8&@c40v;`6dDrc0Hh6R~W6<42`99yW!aHPBsWZLBYAAgu$05JBMP<}dM z3rYYYyKDCwciXRDFWD&(vdt$#N+zVxjHJ;1aNtsYQotc@r}*sRlhPOE_YkJD_6vN^ z3h#%igx6nF>&o|Bhi7$-Dx9xd*)Ka|1x%a^M%sstX2(}g1w zGnPfJCNvNj_CzQ1l9`58u0wL??wBIN@BXm>c`7tIEib!&;{~q5U?2@?NP=hEc-RDm z8LMlKisyGjpfW^E@%&Qe-x|<2G5C&d#O%dHN~QAy_4{sBb$E|4jy7(lGdux*8_9<% z#kNhV44C!BC<80sc1j!RuhRL+(iM}=nWIcw3~b${CsP0cbBZ2Icc6@r%Y-x;1mJ0Q z?M5ZL*xW#@1&^;=wf^~g6gR&`<<*^Xv6>|(Vm?LE41pX2Wm{)Q$O?&g_HSspq@-+G znu)EEc|5U9wmoL=Q52j!H#}1{&f1!vD{>Q6uoN3Vpt_+ArGt~@!;iNjbl5e}+>I-$ zQanW~p~PutU`z6#a1}m8qS{-I*kAR9#EG9lj-#W` zsFVsIB;Jd$)j@F@--+Os<_K#axE6xHjqWBSXn83UD0lD#^1&zW1DuNdKmy8i_?4I1 zmN*E{70`akI}i(Au@Mp#5N~#(q%O18^Cx8#?{)!r59of3f$Ev1l@QPtMH*`^vJf3q zz=2q4douj^m0xL@A4KS8Za@jKZ4t#K`WdBf2V?nP-8rv3d~{eGL=qHEI)N3T1rDv(u(BhGefyjj!O-S;2ji2niykbf zS-KxHH$WC5%k0K(XmeY0<2F|E#vm{|u?L*gPs1)T*>8f8DrBmmHq5hfh#S;Wi}bB% zAa+m1;sW$!6S{Xf=_Oa4ROrIordhxQOg0EZ6;T4P{PYlx1+=e;zI8$+wd6izWGbkq zY@y2Yf_Hhi`8l8&t2(%X+f6KM+`$fO=YQ@U6k_qKbHmgIWxb#4gLr3ClKj(!AoR*4zuk{&eu=RQ0bQUW zb6WD6o+8uB!59+1_)K)FW@NEW*%aN$uy3|t{MR=Eq(>5z{o(xuf-4xqbJR~Dix~}7 zC{Z5dSMfTZ)+QCq(x0gQZ7`oOoi>iCE9fz&LFhLjASLwd)EVPvtw8|=6PiQr=$`+S zsjC})I0z`XC2lPaEuGX1*YMl18#sLyS#f%NV3;7dr%Ksx{x4fS^D)0-sP{1~k(y;( zb<*LDt*{Bjhy~0jQbWmxB-o#;(dDvn581Nut1mMs@i&Y8614e#vrjtsF16ClLEgWyW?H;R{$Uez(hBU@n9~g0r1L?4eNJExuEG@XeS?*Z;g^_A zgswn@eOh*ax3o5EdvI|%g7-4H{uC3aTyPc{TxOv|#(&$no%iaQPP9KT?EFCwBLL^$ z?+MITQ}uYcP=b{1(?SG;Zn0OMP1+7#lzmWsL(#mc~A zndQ!GOM%2b-znX$4TOyN!Qk+qL6C%)Y}^G&KJa?>JpHBR-a=wg3%sNwHH1yBqKbP4 zSs)`S3DNSi>&4V^kqp1Vepl$3%{aZw@n?kL{E-V*q6}w%miXTcH!%8jb_cn!j*17~JOHu$w~>C#@yRij#~;-G^NKVwS5ih&5DYIf0b;Lii`hD6fc&i&suDf7 zf;>Z|=k(*$nCd=`12+b-gjLV+wA(_hAb~LK4*sqn!N#ERoC&lBxr8rpE-6p#U`2yy z>}HHpb-n|eIQnP8l}-!X&6-^9@OW6RI_$zYojZ<477;-Z2-IjDi^qLA(=B6s30} z!E|3iiDPV`cv%vPfw3jrFrHuyOEy}~n3V0kg_-nR*Z~ygPmH zQ&jrP?q8;(&W!xL6ZLAF_Nd+Q(*40&OvcRh6`sYeKN zbFwo6BOl4nN;DyU&_+193yv0mF1|JVpIgNXoPsdp4M4D{?{ZFY_#(x!vq^peOy2Tb zmV{tPW$pPafxL^s$}>VLKtP>x?7igfI5dnfua6yYA{J8u9x2Yg)B(|Esz^qHCE3n7 zyt@{0#xkm!x}pfmy%XGV?sm`;SE(~k6;Y;6kmVXApg^`QA?)bEjWhKh3s~}LSMw}U zh)Lky5PgopU{o91oJ^sTo`lX69frgO9eB;{2aViik`aBlY zu|&4!@#zuy!&x{XFx1YM0eN8^KXH)a1vmyW{4oa#YS>!=0e@jRE&XYk?qFi^HD5%4U924YQEL9~02(hE;7!WYV_-}=p3oFZp z`Hw=lppYzJdyI?`dYEwIkLfea!5%DUR<`EQhz3P%PjL}tIS!CisK5?4fx!@z%tGtS zVVLV7En`%+wS^oGfH~nbV1_3fGGi?!kpfJ$;|tGSR)I+i%PVB!pi5KY|D6?K6(gU; z9I-+LGF!kwE98?3*@l4}6%&DWk9~OkGy^89*K!vtB@OvECizu6awjM!FGy(!`}4E8 zOo^9AF$3m8D_7MD*_nGF?+&Wr1Rps>IjkujSmGTUDW+60o)8nnXKJl?GvCYbKC#~$y8en1WSGZo@kq!c7M1+1|mDo}Mkpn==N0EV2$?Dw@?}))W!|y?2NQ~;11-$@*IV2cg z@ZE0#!u$L?k1$0Tabik2KT3#KnecV9NkIcN@ZhE=e(5B~#^G||YdHZXGf#|7_kZvHiDhhhz{*b&IB0jXlZumsW zRG!Ko|EUk&WY7b;F@QqS)P_vxTm~E14m-rbMoC7%g$(Kk9jPZ5g+#^oHA78a&P5T{ zUysVd&ER$o%CUPT?Kpef|BY@lw|1vl%rv*83kc=k+iE`2J69bbH5hZt2DWMJU%)Uh z0#hyUU^b+njbW1Ko{4PcBBq3@th|cq*PRv=Pr@L4R&J|=IY7;&Hhvru3f}Y=TAkaL z!F)ERwu!uG4gx7j#N09ht3aZTS{yDJa0We%5iqpP+rD;|CURQ}|B+u#PnB0V9s6&M zJQ)=DzyDNz_Fo7f6o$$2W^=5{6*xz5hvhl4mw3%f?08joQ9Pn+Qfe}B^Nla$my#xG+|XVWvGqiaW1mp;OETZMkk_QOvutsz^zQv!bYbn zUph5G@&Yt1qonhrQQV4;Wky}o?T;IK>##lvgqR>48&H(*e@u)Jl z|IMf7(}RX z{S{%cFc$VdksVK!2wmC{h$_1PQU07oKI@E2;SfP_ynCEWDg`5I9NaOwr`B956*8Lu zM?k?UD>zUeL4f|Q!_a2o=jqNa+umWtM`RYstEa+dSa69&N`MDRBFL16s;pj&Sz{@KVS&5Kim62MGdzhJ^70if*S+moc0VL90>h^lUw1>Z>aoE0bZen~Y}u7AGH1 zoN+e$rwg(Ih9nkHeFM(*2_prHP(=z6Jsv&ArB;RODojJ@ZXyd4-BIS$vXas-5K|TJzdGWgTuHo29ARr*&egTNY zXYarR(!v@lw#)yGov?ov$8=vO=)sNMZ7FL`gzOyJ{yo?$=5^k`5e-jNQ|D3!q`_nPJ5<)n*+8$I-cn9kt+NbdU%9L&z|whJ891W30C&*I5!U1Lq7Q!$KbPE+~Q}Nu+v`0r!ifyyek^ zD6O=XeiQz`oJJA#hPtsD2tQ`&w$8;`V(VR6Yvp`4W91+Le&zUG+uy|yaX}M(>f5G+ z92~*nm>^cxqxmO==Gya^E0N}emd4iU5Mxn)mK)1SgK8=;a~q>E<4GEZ#*V~R5-iuI z9SIhE!5kg)Nq!WAVdg~?q<-Adb#50(E#~Cy*mO(}r-39T5b4WB_uk|Y05y|KQuEHn1PBj2W*rpl$ncrTcL! zx@}R!_cmp{yWPjhER01WH>>-Vp&$zZ!k_U@6k=HGbt_GhMl%18Mow_gq!?ovPE}V|DX-I4MdaiV}^j<(7kQ;BY7G1q!yM^NkFMkpKP+ zlKw540WUp{Nr>OA&5kZ2*W556c1YNXHE779?^UDSya6u}CE-fiY{?6=r6+Z}V zboa*ADZZnc%h@d|9YT3^PruQq9n+T>$ z4eVYUHD<88z|oG*GE4hOn$pBw@4A7qVA=@!KQkZW8{CDT2xz0Kt3~JUeIsNrCfgNP zE{~C>V*^xhHy<_2wjT8q+v=>OA8>%#Mv78VS&ovcCd-zqL5Zlx3?ww%Mi5LK+TT6`lNcxXpUVAuz(DNi;qnw%l)1@ z>&<1zfK}##H0yyb_<8k@MNx5sl&RkP^du?guYh=f-ySvtGGLzLtDssJKYqy4dN1qz zI1GL0II8-*5<%psVX#lwnheCLf%Wwuz(gWAf%*OtvA!wUr8%U z#pN<_wgL~1EjO3gSditQ`;SEe38_mX^%B|ukX|X7a-2b&rXUatP-tEv3?^42%Z*6% z)FO#7g)eq|jw$O#7|u!`^4%(z6I2;`H66_4=xer9>`as<=IC*|#ZEvk5FRD~)Q7ri zgEz7b=VM|U$gzxiqe#~_*H^?1DkdvDeSq{p4-kqcQBPLqBlJ_&j`5~5>tqrvWe^HH zF2B?CoozD*YaQq2y?7_?!6V>5^q-&Xf0?UBqlOV>&_79|km00El51*>-(rV7nv1@bF}LTncU&oJ7HAC*esi}<6a4d)nQwz2L*Usek$tmP9IID5y&%#&LV^c37Z zqigrMCm&eIrBSG?l8L1>H7ftH7?ZsvE1gR9Zbl)(02lLH5eIcvPD*%Q{^%JStHfQ6 zJ84_ra6U*NXcO%9Y|Rvc&ewpIQ;RA60JY>a7kW^aZ5D-|+FS~frWRw9Rm2YPFoLT?O_z7v z$@--cL|oIAPfKTBIFAChsR1dZ%K=HBh#~Q97M1XKTY_t4$IA+p&SU?lZd-M71@j|)k3G=Cso3;M@Hfhw=dmT-Clc|mvb?~RPjmyAhIpH-4-FSw4k{?<;P z`+F;my1MhG&U@)ao!g3a(}}>pqyJcBKTuWi@r~wT^gdSUe)f@fRO@g`FrpiQ2ma-c zFH}z_CzF-h$gAwXK<~7>AN9RXqw}6m_I(xfq{nD`j;i8w*&E8@dq1}QILP>X->h0` z{Y)L!nBa6$Zi2Uciel68T#tI(yydqz`>xt{7EH%kycud3x_$e3v##mukTcu@C|WL^ zAhYtlZ>ZA1hqL|IJ~x-C^4d2>c@iZ?6L*!%r7)j}T-s*j2wbpSPwtYW& zo?KEUY&&qKv%epE>~KBp`1zR9e^t)ZsQVE=Dzn;NP3OmUf7+j(Jf80C`h927MTjn6{Ayg2M%RqunVC zGPm%UU%jx9bPwNt-vZc2l8?C(`JR1-UFDqUH!|AS2HV?}7*iS#D@XpiVNcwv2#sTb zCvacnTaI>jYQ!40nhDhvDT7!N=~wgZvs4TqHeiG*1n@AO^%13xK)WK3ERqKQoJq4DNBowr6%k6eMK8JrT;gO{kL4(d}=`6OmgpZ zTC1zpizHp^)AOXp8ZVR|pubRqZq#mY{=eD&1Y-uwm_cRjx?SpVg#;qGm0>iEn_nNcXfl)>J3j?v%rOgRhhL|D^4!B8S~_Mh>_+!OaFBCSaO-$j zJlp#k?|4yekS0NjME&JO;!`v$#aP(2vht-6EMrn+92%hB`N`pNmtS*PBH(eY!-qN! z8qw?UY#&eWowt$N#n!F&KV5aMU%tWtz|eJ^&-X%n-+ju~U$WTvKIuMBRKH>Zw3=Nn zyMK?b`#$YyYQgwE{#i{{RiXO~9{spN%syLse^sqYTV;BTSM8n6c~ltL8lgMqvAeob zq-DRX=&Y%B9<+Tw4*f7Mpr*9^wl5?sOcT~-|8I>5LC#Gc?Dwm)it9uluUKAw%`fWO ztz@4!ZMqCry`|u~zB>(8xNh80bw;Y6D*Jw*`^v5{LWcIv>wY#Yw!cT6pH}8zFg@QQ zc0TT)ccoNe@je8;r|^ERb$%@U#(%52-F!NbcDLQA;p+(Zr|R1A^?iKid!_Vxd}SM> z8S6Y>KP<1zn!V^9Z(8b&!Si{RbnUphS^T>8gjbc_^_ouW?>n4cz+uPL8MnXZMb7K8 ztd0Av?fc8>rt?Mt)Hb;*0_XVx_NL24na}YW-$w!6ml=Xsoa!-D*dg#K=xEM(yLFKP zbM`JZ;WHwh!1_*5tRq<)^AXj`F1D^Zycn7em}gS_j|G32gMNV|v#{&0BtY?-UsxDi zVAbj`ub$4!@0n=DdhZcZB7AeDKW7Ei;p}pIdWR+UGgH(`LGVFVBabwH5=;3&_YL7Q znF*-C!e;p2p908CRkBD%0Q}sEc>HaRZuxBBnLZr2DqFbz9V5R&NP7pyV&yqU6U0Hn zc(oGt&C@Za1#k#7i+c(bV#VJfGKmbQ&3F{&fjA%rpg|2~z8>pvFCQT%mvbp-}A!)~)h8`A~H z595x4auTz}J!V~#Xt*_O==*}S<)sjVzy3Oe{&~zs>$&ZC*>-!m@z{+xLEDqD zdDGnL)5vD+?BjH6t;yE;d2j1B(y+Km{|Abc-xBXDTFrLdX*R3EmZ{vE_1OTHO{tyS*~Yu5>yK8F>y9cK_%tC!6OKbzL}ao$!tz4uW*pM2jB zG_zfHA8r3M2t;jWh}o!hR~t#BGU72>Ekj~0ap%Bq`#SNq^ z;27(iD=SZHF)FHJeqs**Fc-gem7`83Gg-xSJdg3knZ6&D&5UT#|5)5kZZsI0PuMlo zv-7Ry2#Df)na~A9ZiW56fXdqCmn@)s$U=JG3(7+M+fnagmMlYt&4W>G#iE2r8DvQO zKHt5R03<^8x1B49QIzxxw3SZ41`9S)XX)$<q_l)h^Gg(MVr^|cE@#G+&cCI+V|I#N<4s;(=d~z=22>#_oy|azV3_a zW38-MqXX|@2-1)rn4ZknO+{rc)LnIS9=~Wpd!rI2-4+riH@pq*d+0xkZoR0m6 z%BaUkDvK85;YnV`XNzQVf`0Bjl za*b9tE_}*4s0hgP^1Fl(LP&r_IjYScQP&EYxX7eGamIFw9Y=P6Cf~s%{?i4Qu#Cb; zZC?zSA9;efwq`O4d$(>W|AJmo<01r0bbvJ6$1tP+4lDvqcVSjAxl+vTeZYr)h|)7; z5e{^_2@(~ostU%s*nGTi-=9N}zOS^tYiPy&+JQ+Fr+BkZ=>CFDI~2ia-$?+!$JN6w zB%vZB=IaZr-9#EQ0~sNavve0_K~@V7y_wvHeHBFaIK%#_a&x+YE#( z5ApewQSDh5nuxpIXZL-#M>1IktM$o!3!GMR!nK_mnqCD{5MZpKjI3aefGm6$Yf8PO zODPM}<3@3k-OJ3`uwK5|!cZYwP2JT`JpG2!?VR}JND|CXB`Fvh)~(Ov&{jX*Dq)>SeTsgXd>+$8AYZxbBj-KwB*P(0YW8^I~&nM3>WJGxNQ6BnV%mI-rxMeC~(GX zAz))&xVY5~{lH>yWC)1qCpa00-PCZfyJi+x$$aP)Mn{1_>F4}5N+o3(2e705zGl-|!IR8O@efD3qQd>0IBEnbV5nxsfR`B` z61VI#Yqm}cOds+Ot%yrsbY^f%?F44e+>->7L0>u&1&g^!0T|O90-E)qr?6+G`eKsr zY-wp}3sHijUGdOgqVE*0TgSG6k@mg6`I#){m!fs#XRmfn=aVBUqMt4#V0w*);HORl zatY_$U>C`zX|SNp=ye5<4f*>I^tY1?T;<%9L2d?~Vr_Y<_O|2~2K$H&YmnRuQ*n9! zv0zSPKZIW5NFn>f0EuLYeS&z8(9#b6%DhGw{j-7&u?cZfkl!vEs8Ff%P%EkXnvQs$RT^a{ys$Gx;B6A^lRnCYPx!cGv|!TMCk8^M(77P zrrC_6z&p3S92JI|0LuUonh{exmDLUUp0MC2CZPh!Dh6*}MKU(G z8k(-W#(#<00Wlr_*Q9PLf388KER2m}MQ9ht2LU%Yv657JiSv+j#m^Zl2yx$;l^KViyn(sv_nrso_bLi`eBS_cN^s zo8bbC)J-C57G7$DYfCE}jhsN)k7zJwP|>6dT%W#Ewf{1arAAls{Hh-g$k%>uAC!v+ z?hrwDVVlenKmUPKzs>|PfXI#birNlr`PS`-0EydMih<;VAx0sjkeE2~_$U`+lW%tC~w#Kt~!EIZp(W}LxN#t}qy5c>vO&PZE^%k`&T8B-r-O1LiP&5z+?-urzQ+iA)&k=#g5vSAVHz(d`S zKYBDMX-XR5;+jNyV-C8`Akbn)+!90z)>#lo^()X~kz)uTnH8;BK9JS5jgUqF`AN^> zSjf3E7;&D|f$!ho^KnSeTb**J!H&fA#kb*uMG2k^xDSrCWfca0?-Y757=-BzVEqld zCbM7;1oX@*8}l0?g1M0=q1%C)YDwSQ-5MOe)yZ&KPDU^Lkc&$v8W!wJ~58R<8XHrhw`45#$$Ss zmX)QhuFmUlw59j_r1#tx_Y!+uL5hBk7P*f8mlVB)`#y*@4MhMsbW$EP+Mu zlzn{FeS=h{$vWf95~&RpLmM;DU)bnp7IsqV5MM%yKvmY@cEXss14>9xTufmZPvLkZ zgSDVb0aLf)y!NQK7XELIq{8M~`p?HcYH^9zTW0V3;^(8P!xCLFHsOf&CI@jv!o5xPuyZ=NjYSL3jl)a6|=9(>cb1dZjlF(M4Zg?Pq*?r9S~1;#mSH#2(1TjR`_{Az@Swh zm$ab@#A62pJt_+(91(IcP0dg^qY8|If(ls$e8>44y^x3O(L@2;3V#7H2npyWHB+q4 zK)=a?l|0O>X;>6c#iJV48K*SlDtP!?BAdzW{&W?$zf11f{(So|wn)p>*k*6#zS}qA zu^%g?0isS5>csZKb8=jhe!LwVz$b`K2>E8-1#c6s z#}lMMFVYZ;v?PTaQJ0Sv-ttcuF%1N&m>p*`lwf`t@~^&`$YA{K+;SM|KjU&fJFCo9 zkVcpTs^|{(XLEwgFK9~&JL!J)a18oI(-0Mz8$jo|+}woy@Rmg8|Xx;$+WyRNr8 z997q>Nus#!82P@cI8}1ngJO`2G~1uKSvJ~6iMMFW#P_WH!i=wHmZ~j!H=!+jsgZPR!rW z9XKUt8ID9jyT|iJ*F!sA*FNmkLjPC<^ASlTC#TO6d21>{LbBhMYp3YEoKahj(~M;~ zf27fQsb6-jC($gBh99NOcVjJ5;({cNc6{zVlSNZs#m) z%D-9qs(hX!Jl}&Sy|>E}T|kWoiCc&Nu|Nrz&2=enml43aBxVF)3KG}#0gTn}O>135 z3-py29!7jyZ)G>0>s8y{YO8#X`KSYTEhaI)nmf3Y9ovIfQ@yXXg_Au1@NAwQ z-bH_Gvt8LY(|@VUuFVnu;qfx0cs2(LQ>avLW4nj#q4nZDPUtQ?`8tM+5r%;MXg4(U z`1~OtusI0dMSudRk*v-hUSH_HSO{LwLf39rNg7`3(P~X75C<$T1ecw!+zij7kZUV1 zCPbaLqNB4}yF~wxjN$gU>Kn;*Iq1`{KYGe_QNt{SMiGK`pa(Fe7=N!`dKFPu{$1K4 zR}eWKi@kJBDvL#J4*W&T>;vj6t>={A9r2IFa@^TFQqc@e1yaB#g%DoQFV^!%P7Q6vmKh z_vNL#sjs~t8%PN-;wPMUdDge)P0PzQ-p^Y)w}WIFCTAYZs1R|3ky=i>ExoGQ_1Z7D z9p0Mn*FvILghJf#d7XyBuMWItm9vowNkvMVj)gugC1R{2qp6@#Ri!498Gz_oTIv3~ zR8neX5|XvrcwVn#dTlPt@j5+-kd(Yk@>?n0Er3{?07yzGPz=jlpl4AL$Q|$mhm91~ z5s?fDQeV$L#fwmfc5$?-3#ADhL zjn?y66B4`H5pnH>>1hk!x4aY%6W@7pBO%gwoY;@8<2;~Gn;%jN(h&A*qnh(^hmPlc zWY*a_tYL{O{bLDZKC+L0ed5fuvi14vM>4kib30k{Qhc_uVd<3G=Y>gkqvjU(^0iBm z*7sR4S+=W^$8G@gDqI$x%y@dZr518StG9Q@Lh2t2aJa z7NQ9awoe=5bggeQd~XR&C|!em&smc`7m}tqo(rv;ju*3Z+>alxcxRK7ZFel1F;zXG zd~e^j5=Cse&;|h~(K%!e`kg@(m_#ErG4jYws40Sq4_L#<1Aa))o`%p|Nf+OG42cDh zBozm8EqY>7ciJGrZ-@Os#)4>xTj>*M$ESC+;?u;Hm+j;B&(p-!+4T&O0m6(E3N~Zv z#aY?Em-P$*jTpAnC<0}(%}>joDk^Ljt)Fo|O^eo~uZT1$M+AAyEW&2i=ZLv9zk0~& zDcAmt2I;qSKxef7{-9Lq`0fRS39+CRUQNg5LSWVUukP#uqdaP_cNeWkegprs>PjqL z#LgCjjz3b}5S|r@7hsOS$RM|fd?vL`9G%kz4vD=n(U>F;QZll%h|-H_tODm7DoR%x z;5bt-5)RV{;fe)EC1GYk(z;$06c($vTkbd!zYW)g zOtgqex~Fx%w(>GCV)l0tgD6nbY;>Xjc4Ap^v(whtP(cdje$k$JW2@;~27Q~bo49ty z)_EKsVV^3vqmzHb8nJ;6^7kvp5P^fe?GtgqSVgEZQbE#xx&X%h9{&3z$L<0`XyKn* z3T2Ndp*YEHi_cN}GU4hyfI)8rZSL(|-`2*tQF7x{lr^a_3YeQPRZSkme=3OKy*EF! zUad8v!C&*eyU5`Yo03S7fsL2-xuIh7@jXnK`$(gO`x@klS-AK`bm-I#-@#VZ^`IGv+>AJ9K{J=u5; z)zNtyX05e-N3Z$bFPpx?5DLz9I{i7p`wA&e5WSCzp|p9IOaHNWz_)QlkIBLK?AGPE z+2y*B*2Fcb2AFZ?yo})v4NaYlkG*aEbbVj!JZgJFr^PDoy54U{`)G`L>-_XuJxA|2 zBjtN+OW`(W_n-7N{!Hm~n_syhne?0p;A2&IvC9oH5(HuP90dd>0l|ky5m^eUfpu5K zVnjqQI{5&_ShP!r>v*ak9La|L1gHVIH_YFZ@_PV)P&K_FhuJ4+0N0^0Oxm~7G#SQO zmwlrKik8f-zJ-KgBQ4Z*o7P2Z*VQcQ@pzK)x(CeS%ZtZD&#aB^K&X&{`}=J@wMYc~ z4YnrwroVrW$7azVc|G3Ncp_HWCO16>ClT=I>X=2qEolIi4cJB*gW-)TT|{qkcAMYE9>UPJjtMjRR!kLzc2isy53#Oo5n%5Q_)w{SQQR#sLRK)5t94`0O7 z>&=?AcxycvZCw{sQcMp`>dHO46CTgJjXrCphX@uria_Ej;4@W^|MP=eOig;psZfUs zoMc$2M=3Y}{xm`@SP!4Y+#2|TS{=dTjv}%N=#QuDUpcv0wfnt{Sqm$u+ZHX}GT(g6 zhFqJQtKH=oiZaVh8$RMI(otebM47wZVwyN5lbVm~i)L9Uyk8A?TBw2<8fct9z#+{i zhu^@>Kwa{F)Nwr!1M-G%Ww>&(<}9~}$0}VfC!;qU|Bt70jIOhbw(yDF*tU(vPTJUZ zW1iSnoPW=lZ}whm&$Z^{cY0Qq2lsd0Q5~`;?BNH!$Cx3`!$S-NXPeLM_y4tluQL1QC#H11A3%i`tsXyH$qwohRnoo; zEPC6{FMgoHEDH;3RI-LAKUqPX-x@E~ce>5XXl$G~A5iSR+~$1)xBaJ!tXI{>Rm=L7 z4Hl`mjr+}xb*}F`vy`G>Pm!fx8D8_BFc_xX4(8li7`v4|@4wYP2gfCZopf4f>Thj$ z((LNNoUGYl2N@~Z$#kpH`nwRXa>nN16ri7FULjK}DMKbAz&Y-@AgjiN_EgG|zQg z`DRb=U*73?oD23$Ok3M0QeGeU!YT+V5v>den;!q-w~A|V05@uuxNWbhgMzG+bZ_D< zJ3C`cgXUdA>b?EW_n_D)}vh!pW zU6>^*$iR)MS-2FT+%AT&d{e7|{LoWi%w8gn_`AocjcCxmyQoB{AMr7j%pb`eqU|;X zZJv!48FeVW#jEEMMY)S2A7vpqgVwbu%gG`aP0jw!2lafd)dSa9e!BhAr@q#3f9K3Y z9dH!us?3-FtGyoo!99A+CF+*JV>irQY1zxngmpj&t#}ewNp1tIWX& zpJ}1K9v!TfIkc2M)-D7*IChS#Y3`CxQWxaQh4cVwHf2Qam&_L zHY%P{>_=Yc1{HJd1Lrfvx+w-N9L6U)4Uz)NE}#OoJNE#GO7H<|Unu49vm)%DE@1X7 zjqwFJ?Wn^(f48B4gA6`EXE3a1$XZA<# z+O6D+GeB(0M9%lJ#EeDMIkra-;zd@15N^>>*qGi$JCyCRZ_v$6eqC_j@;!Gbrx0izoo+||BQ6+03c@s4CkTIq7#p^kR*s_zKCq1c2{%o zhho)JuyY=U4TGaL8m>;vx&YI40p9t!I1%J6)3KE_K2HARq@wMA-SlCzDv~CJW?J5%798 zVSVf7InPgk%2?R^lg(Nz6n!=Lk+}X6s zFa>jMh-wgdvwl3wXTKkL0k$Jhfl%O!)q^rZ&i7QZ#V=hjJNby_!WJPzjbkSr00^An z2a;%eqX={Y3Uk~p14XT*qc;8M2qmhRFtb{xDMEAFD3*1eqjtS%ak#;m0fzc3t%#uo z>OZ1+;>x*(`uA~#R%&+W`s#|$&0t&~Nz?rj8NxlhqA^cTykQ({N<$g4-2MgdRjh+? z=Koj#SE)KoLdgQ_l`Iy zs4ffKKNg4B*ks^`bV4*)7B3pX$sz!}aW1oDTHL+o*W)Cw zEY$@k-K`#d$P0NNf>H-V6`6$tzx~Cgk?fFZQv!t*^mRmLL}LgIk(l9jcHI5^I2*_i@ZcO?B?iWD z-KGEP1!wukLWQvQBj+y>jd)2)dWnEn8xs};hlwK1QQ+5-3zfMg7*M+ze0=%3n9(W^ zkweLAr>9#lW3G54E@!3fb@7B;91=-VQ1=iPIQJh3xIa>oBX1VS6vdB4hsvnA%91>& z#m04liz}~eMd6pRvVUMga9|}Wkm}JPht}j36Be`iAc$Gh z(ySt&t13MR8* z@+4t;$zRQa9Yq^=&?~{r01Fu*3YlQ=bo@XLq^q3%O1J5iOj1#$9{}?ytg4Dg9a+%s z`B0}-$;2{goBgj3J|FvhLO{4J2EjhKo$;OyrpXS4^Q?fgN@N&q<{ND_Hi8u0yF>d3 zoi3Okhy6B2`kRG(DAu#dPf!2&{3zEmV-Y zJ)a0H%?M~v_5$@hJfmDlZa>U@brdFk& zC&$x3u>)FjP73OlCSEjJ+-yu%4}$uGmf3_vPuq_bu}MAs=|R<@jJafEbqiTHPn}Ut z_J=+bWF_ULG;lp#ZDbrq%W|qmfVmK^ z-`}IhM@qbUS)Mjdg~C|^2pVwUNZ}Sm1OYnconD|yzvR&ty25GRl>iOfpn$?TkdTe2 zCQKRv+oF?DTUB*KWc8OmRFk$|A z@x#c+Zn^-XLV}?4qeE>Jvgq?OY3FN)%xUXFTFRv5Ya?E+_q+8_W+xpG05S+GX#DQ9 znU_~n$A-l|TpC8L>S!+1Ujvp7osOmgr0C)5d)S%EEC&XOsl0fn)n-<$B>mhH)hK+O zwGQ_6*gxTsK{Bkjgzmuq?%=nq@7_s2_Fv5CaHTNoG?*&=n2TI4NnjlRDx8s6(+!Q} zfTcnlR+Sh`gXOXD%o0AH8*RE5-<9`vW$j1hJR$+QzI;ev01Ua-u=)_#V0C|zLMy!Z zt-L5bYB3@-1U8hufW${|5T1Q9$T-!+8sJ^<(YcGk!1(+xMv$#th2~|D*%9U1EtQ;T z`B$2w%p}+O-K98w3NpvP0E66mbcU4Wn%kf{1Y<-N_!u|==SY}wgXx|UERryyE9ByX z;_HXwsCT-PU zxsG8h#@{!y*5`mgz4VH7gX4d?(9%pkue)WFiVKvs2uXcl6V~!&>k`^`H5$!Xlym`Z z)-dB$pyaQow3I=e;%b!cV|_dGu)1wHFaN;vEj?)|u@oVrehO^qFyCY zKJ`2iUW0?b_R1wyLVLa4iOQjo1Ox`EOH(YkgLRRc#}=5+mEZyj&}ZiO_{xP$k_yZ- z^W73x?05ZdAJZKsF6QTV$0{mDcqiT4Z4|zSR}@rK@O}Hp`dyDoTCfl(bGJP^7cU%> zmsKYg5~Do{U-jXMQF3l^-js?~|FM{g`?i@=1xgeLicQA)bq!9Xqmvs5m{0iV0TqnR zKW|GYt3;$AUsQpST*AE|n?Z-ag{0YyHlac=AF2g|;13c+>|+_!wF@HWGR9XK0iA`| z93T`G=F2%nmKw1io+W|W7Se}Cu4WjqXS-&A_;S9OCL8B~{R&&ogOHO-2y-HP77RH$ zGqdKiY@`~^T_;D&bECFu3J=N2s}p{Tm%B7{3V1P!5NCx1zstI3UTDFwDQj%i8DW9T zbZ~IRMAWyi@vmin739WFl#Zo<(tbt(FrhpHDvtm*XgbN@!3Rt*!#(nxYI1m}TV{r4 zC?hw@_RU18$N-;?bPHpy8NQVn-m!lyIQ59YKYvw2JGjGQ5rI#`qK5r7(;lQ(-KhIz zX+v;9w^VYS=<6_+vTZY}+%L|BP0=8mk#WM75zz+=NJorpg|>mfJrEe{|fs2N{11Cox(u z@hPeo@|SH*a1J1SB~q!NrBlUrJ$M`3=|NPJ_`~R}`f6M00_nLRm9a1Q1fb7ModKa= zwLnh6Jb+|iO%L^lGXN+W-eK3xCegiA{Evk<*8$zAi93FSb6fSoL1;D zp^A#tM%&VPefYI2F9FXXN*tN!=`PHYdsBnSsJ*$JQs<^ARDC_*h$mFbWKdgffdlf^8n! z>8({vQ1Aiwk%QmxxEeT$iDP2e#Y=8fpIv^!Dk`fCg!)dXyxZLPZThT!*@E3~%LV%D z(7n&k#jnZzTm|O*{3Zfg{c$A|SUnnxC%6CeYn6dG-(z)yV57n>bUG8J`n2sWlJ)T*2f~M0r7PQb)J!=29n3itElA8%ttG(z_uq5OXHehfpS!6vzrE2 zyHNXgO>z)_&Wh_g-PnrYh{x)MbCUn6SXemDzg*?fQ^4HrNV_~Xj34rwPgbn+aA!EH zU>sq2xd!7`i5Ugx-i1;zo15J50w?QM&THtxuZtK4i%Y*stCqdx$*1m&M*s(9yT)ngtBH>(HFt)+BJ zb<#on5tf1H3B)V@6vPt3;7fKNxvr1)1qq}G4o$55y80uEV8bgj3)+I;{hA{M^_7ba z8uY5h&(O zKY;>3(m23b0-Zaf15g!;u#nM&3}Fq*t0ovbM`6c=xVIC~XF1kG9Qx|$M47&3r0D9- z1u=)n))c?K1hr4YE{Ja=gc zsVBH~qnc`L&R!$=z~s*Ggl%|F>S5TeBBmmv`w)iN@!ZI$q3&-7(=}z;OZuma(Cdo! zk*`W%yp^aP!Vd)OD8>|!-JFMYjFVLX2%=wQUH*KKbaniU`h43imspsQ9YncQqyBNF zL)afAjCRfn;DDYtGCOTq&wyYH=nj?Av)#V@c<3j5{k;l&nO>*34C(KR=pdyfB8i_r zs$+F-zsyJ@;A(TY?9MH3I~Qr%3LrUS>5Yrre_lQdTWo*Xk!rBf1Qo?9>*jmxQR{Gi z_d+BD9RZ|0E>s6Um~4#x0KsFn!mPY(?*fsyD2*avr~b!+8`)?SRPFxi^ZBaM>sH|5 zWBiA}LY5x5PfzQ2@HT4kkSHWR2T-q?+uuD*zAD;qWb)t;g0fhcw`#-1o0hX$t0DkP z4C=w=KlYhPht}EUb}CTM?es)lT^Q9I>XAQsOQ?z(%ITJyt#8c>&zI_q9a=Ykhy+I% zh?{n6I%D7yEz*f$(fvN-f;*z)i8Bqx$8y{%v9GaSopFn^zn}21(kU%l)< zQX?w535OF2axMJY(DS`4uA2->uB}-@6$FG$UZ+_lM|%kX5K? zBW$Jt{MTfW3w%e>4(nvctR2iOnat2&*+jON1waUJ}Bx;Wd;W1|qOq+=U{ z*=T|IhX0$6_UTmF4A-0q{4=idJ7U{e(MjKAaY<|YdFx~2qa*jlttD=?t|IGV8tfuv1esvVZFZ@Eu~XeNCK$nv7#!D0=9>T%yBe$Gf-zOQdOCzWuU zeiW5>T%NMs&K!SuZ?-n-t}7Mtn+ib8Bmx4(q0x?7%@Z>SNlnq9rw>njjs!OZ$Y`ESttKkJOXHmRlr<@ zU~`bRYH_s#IqqoD>9LB{rX_xSd(lmb|SOHU@fT7}iRc^u!I?tDfCH)GLuW{ zYUpYw6GlX8tZr;N>uZVZ%oevR z)AWSv>k;}7H8spIPtq`OR`c@KbsN0?gau7CMM>}~qex~kg=mhkslgW$yR|3v<_BG}OO-tNcWDp!oQIA(a%ecU-qH9D*L*hBPdWPTGnjXg}Mxv3M z=Lt^LLd4*(1`#Pbs&W?aIZzM)zbhv{woG`vo10bLm$nUH+v~;SNB`!dwv5C-79e@P z$joalkIQnQJg5o%Gz?+FM3Q|abRbLS+{DNVH zs?%zBv4aE?7Q~{)i1H;B(FYR&zD^o6#ALn(V^5p2+0%Kf9i9`$2Wi&2VQ?;7J`^9y(y99JCTJhJ!1s?GYdgzd9l!d##$l%7-J%klgs3^+plk4SkOGh3ltjowUpTnx0A0+`xWH(_uP6F1ws20(>aSU z$Wl(x_XY#rLvvm{#bIFV2=bf{r=X9C)gS|R(SBjE42-@NvByPl z3Jx?9M+_bLuWa!B1R*S`eA;thwD@UF8Mg)rR$v!rRG?fa84+;yb_{b4&6xwSoeB}` zpDt?1iPk0h?icZyP2jC|npzv2y?Ha~7#I%3nCY!D4*@@=7jS3;>j%tqu&t4u2Y6O- zaSvrP7TjQb;SvH@E2?o-Q&#CX2c>hU@}ti5?27HHXU-z1NgX#1R7x~%Jm zMgCW_JAA?*F#iRg(Jx%ob-J=!Bs_QKMkMgrntR@j(gDxWw;Z{?`Slolnpp*$JUKX+ zP`h}07^sS7F<^mun5ZqL*xjE0<8zkD*ZTc?L&ryCYvVvJTVy3~jmu(Y6h+fp&A!dT z@)GsHtX*n}WZy~-k<9#4ET7ctgZ9iY_u(Q3f#(yvK}lY;A}F95A^8N=&9{V&9r#>M zsEOM<`Em9to0aO=Di!LeJyIyQXGEzHOQO<_g;h*qLL4oK1XB?R=tT(GVi{zMeJH)qRU1_T(l}l5B&zYafz5X z2pQqWgo`I$GWLpHj*{j;rI@;9hokRUq{cBR_c$N+-@kj%70 zGd`oIXaA;)ph}Fp$u>fhg&AAZ%VI*fY*|MLK)F*syWp>7O$uy@!%?dm9?eZO5@x`b zm+n{unWX1`yT+trd}#^3CQ?Vb;?u^ABKdtj@K`4p$Fyq1n8$CaiArM5oLQ~wX!VjY z`X_8#7en*1y*yNx)XUkc6YK(^HPsZ*z;cMK>!(#D_Sje?e--bL$+9H$5d}6Vqr0Jq z!3BUMytHmM`+SloQJ9P8&9a?5wuWDuWe1oLz_?)p66yF6mHbiRJY zQFVgDZY6ErIEG#=GW5?PT)R zia`Z-yaW&G+}}2Aru}1)&-k`ls{8K$4z;!J z&k$CBxIM3K_%@g}`_*UuVSo1BD)}>&obaPmtw|};wzY7B4&K& z$RoQG)c-6?Sqm>Ln3yjG2eCH$+@tY>ntJwTkHEJ9#7QtL z9hK*!nbB_@x19o?8&F%;z?akd`|@>{5kN3&8ZMhN86|G<`#O}fiKedhv z;6$cg>-F`I&(%+tQA^#=UEpVi%f^SpZreS6*1CFW)cSpfR;K&zw%gHt zZW|t9$IS@gQ_P0Pr}H~&)`vDf{)a%N=P={PSjP`po##KFHxiM0{gGP z4Zzb3=0!v<0Wwh>z^L@J`tN^dDl#C52poL%ILwq6g2Uxu6;T-w0!qW$zFp8O_u+Ci zA<$i3e{RbE$OU{0qUC?1es6yC;UC@k-gzz2`LTf6c73?f=wNZUg3I93Kbn~NNy^x? zOM4Y5m(J7ZZU0FQ=kv0$XbbLhul86`St;;!)_cxYt|b}?TJc4(FrzXVSnEM~A*FUU zBe1T8_3Gf^C9l)pGm8qDmO5>>*w=?bjUAP%lZua;K?CQb{ktS#Nu;EO#n)}rh}3h3 zalU2@i=#*SN2gg(v1^9Nrg+SJi^?Jl7_!%f7AGpKr736CLv1K^G*b1j?#OctRJ)S! zd2Jux2PZQHO5OR0jdbIC_nb?2|LJ1e)xnVTqFA-tu)LQ;4o4pjz(mDGpXc%#4{f5? zeR0j>xe#lHG}bMV>>#XfdowNagCcFlFyJrk)ZLJ0R=c-d&+{ ztCE1}R$*kyodH^lG?SwL6;Xp_UCus$6vq=NXo)W-srE9Kax1DGf3R1~>Q5YQ%S)e# zfmve%-0TRj%L|SmANdsvw6+5N8F=r{|J~{EcJ~}<)97LLxlvxe-O=89fO$|puaM__ zxuW9zdf{L?LBQ>~gaw&MI|_H~?mF;~#k)--xWc?&WH5W1s+{!SQZcC-4&llT=FGG< z%XuI%&`Gz+9U%W5);OyRx|>&j5n;Oc?QEXV@!3ed_HU99Kj5eh1m(q{eHy7m7_4t< z<=}&tTof`I86M>0Y~81^*828%0?zv?aZm@g@+}3?=QP~Ki94KUcbl;DR%i10V{y~* zwtn#9eW6s(<0)4!`0;IdlkAvfWFkYa{d3*tA^-E?AWdP%sO5eqX@ddTdtb)K{$;Of zHsy7o*X46@^YcW@=Xij&g4c2I`-KsVB>?EL`su#6Z4i6^vA?VLv}fJ8_7+d}(tB3{ zTyL!BGT>=?T^*dvq8;4zM}`ITl1qOr@c94i>4w?UEUw0PLxC4WOVi0dmXeZf!nZ{M z?`?+-*Si){!jGdLB0two7c1x)NXV)=9YcBBzvX5Khk&pGj=d>0k6ga^DrhX>9fZV# z#kU}#bfcruumN)M;LQ{AHu)dAXn_KDi;bQ5Fzh(xFa?|5w{e6HdtD-fojmiq3|#^n z2A{KO-XhU8^G|;^?>WM@>II%NUppMMC7-)HKMOyfvV2Yo^{P7OS~!lIoEiP0Y-}lr zC4VV-C=kbQX=kIq%y&*5J+kgwx??up&YAV_3ejdl9e=gS@d#zsJZUif3+D}F$#kiYgQr;&u--Q)7Zhou!Cjq zG^fBJOd`LPmjw+VFY1f`r zG!1Xu`WqCvxI%p1a17~h_jXZCQWulrX-&z$@yanXDk_O$3W;4vly)k6v%^Elu#WTN zHM@g^DG`OYaHFOZWj?1BhH3=OZ^v>S&v)01?zCT>jQ`6df0c`z)V6<`TGOvc%hy(R zPmOEPo^~`{Ij2Wxq!=XRbX&h)q-Qwe_SzAu2&0RPizh{|WMFivy_*X~ogD@zDq*7^ zbHO}lMa&{VA*xsJxty80q_Fx9+~ItLZ_&~O@6reN{qqe}q{y+PU-Bo2MY(Hv6?5x1 zD0q&(*@%i{=r&*%3~`nUmKFCRY37?}N?@rESY7u4nTd%orl;Xi-qnxU9N8W=f8o#AGixY)u>w( zJK>q7k!8c__fkP*W63(}KDI1&?Df|q3uE+>BKG3?YwX+Z?-DpG(J!{U*g4atAfZfj&d1_$Mq3Akped#7(T(J8@+$B)5p>R`yRK z24u?^GMCIRLmI=nFp^>>#b3MxD#ly{k+W>$HFVGv- z=S4ga>F(Vn!Rx9DlsS(T)aqAI?y& zw^e&PbEi<42Scyha2z>P=3cw9oje@YFDRhVk2x(ij7S&{X#%1pL9*)?XqVV`K>z^= z{W*Z2Hl`lUTXl?ODPaMKjL(D3g1V$v zY|4New)gg(vnkT{qQ@9woQK7ekNPl7E08+aXvnZ*E!ZGyFKeZ~LO=Dv;cPA7qP!me zcJH)-U|Ii(m#?@J&H;cfu92QoC_uLJzdc!ImXQ#FBMCwyCRA~m+reD?W0B614Jfh~ zM3M#wLlZ|fY}5!72RWLmaPxmlEES_czJtsBj3;y(W`B2!MwX@x0V!ke1K)rUt^f8L zFs6=^hRM_j9}}CJoE%s7I+^u$r?aV3GE$z@@nrs|6;cp~C>$_gCTQZ!fer_fCqtYK+uaOAnz^6|YMk0Z-;QqA% z;L>pd(>OI>k;t;7Ac&z92_CrS^;LTZI)=LI)uF$H6ALu@G#^26TEfn$L84cvzVk_F z;c(Qb^`~~P9ze|D;sZ={1TkCcnm*DjbF&kdWgozklmV!PNF3D~h5AeZrnyW8K82r9 z?JmDK%+_#F0Tgjx8DO>5Uw!C&0Jvd97^8)-d&7w{OD=70;i9&eb!8e7Hc@UoR-|}_ ztVu`&v+#~9Z>nseiV6%dQma@B=5rlg0q3}cTDZgdybkSe#&ts))-1fliXzH?EU0fh zZ{Jd$pS#y~c1}7}!0Ez!a8Ua#n2ru-g(b|LkfoMdEoJjb6u`4<=`bWEsCA?=*kmL^ zrfrj*-9=@!0yan~1paN~+(CkzCZ zSNSrorc@{5SR-l~vbN4xx+EKN;t)j3Ltm;B2`^sHVc&LFDbc));Jb7@aZPqy51f8n zlV*t_!=Ql+VQ_6Y{~puQmx?e7ji|O1xxN+noH+k$@E3p#E=f$WJFS%U;tKwAXQ{Xl z6fi`C#$Z-aZXC$y)Bmx-vyndo0(UG4vlQm3Sj<_vys2>^x@VEG#NLd0FH|+W2KtZ1 zcZU8|W|~W@EVtVYM)cq>pUG0pRZDsa=i9!-{pZV??w9+qH$x^LEvJkI?s5?C zAB&7U37;wU;tc7Vk(-Hwhq;|+)>BJdT&Ty34faLWTx&l3ullpInqq)VBF8Tp>hY4t zYx3R78iQN`Es~~u6jqR3lLeA*QECeNxu2gg!1NmL)YOK+dm(Fq$hzs*K`D_eZgz!*rC_#@gX`Q#5LB7zem12v?a-4geZw%SbecZVd{|&D9nK_2 zaIA_CcXBQKNQpf@aBTxsQIcBW>CnoKGC1B$HrCbK+lF^zrP0N0@kDu;?8yrx8QCbeFcj9{s@t%VoBQ}3RaH_XypV`*ULX3iE1 z^55ICxv{x{oy5;!cwga?rdeFNOU-kH7rU|=x(mk~GSG%+$2J5(2^1;xudjoZhuVlg zL$fsZCsSH?Hkegu3DwOnPP}s~Af}kcB+eWY_Ft>#cO5qgm75+Ix;KV$%dMt=v20+qBpUqT zvC6~K%Rp=)8oZ5ud0st{zCu-5R{f?>JYrDBXI0F-O<+2Hc1T0f|LjoFl0nykQI`49 znuO^NSV$fw)6)tNc{S?DcbQPjb;2p19vFUGBPA^%f$Rpz{K0t4qe|&U!4;WE29SU| z!<9v@|I>wn2;@`&4xJI>^K?I=7p(WKwa-(EocHZUt6T!ArewEfIDE%>#(iNZ*9wvd znhXDDP~`(4^ZJf***-AOk65bZwmsqb;unr-UxflHvtSu`jaUO{nf~m#FZs~z_P*Mg z&%X8ggLtMW82}Sz};h3(`6=|(qz3tkPouwZ(TXy|-?kSv~^0!{hhj#>3A#Eq_8 zFw;E-Bxu!WuG54T+74)=Tbhlvo^`w2X(ZR}0X(tEgZXW6nmAU)1Q;++JfId+kN28S zzRaQHGWPxpqZjoQUJO#G)oFgb;eSx`fnffo*10gakm!FSa7 zTP75A+eIHNP4Pq~e|_DOfPKGEu@xR|IeRu0Z3dZy$_Zx}CMM?1abRe2w?!{Nakz#` zT}#VixUG%T=cucrzc~}IdYUIS3fKC0rn%m3X>MHo{k#6-Q-maiufp2#1U)_D_OQw0>g+WtCyUf%tYC7A!|3q2i*Fx`hG! zzM~}?Du@c``R9?7hMM}zeBH|~MFV0`AOzUQv@$h|+NoCUxK*%04jek5#s> z3*62UcsPdXD%E?>X_w+-#=bQ(&Bt7SXfwrMs=d_OY`ZKS-2S2amQ0IyxqS>NvzT-+ zN9(h*jMAmfk??f&yTj|<_^RhnfVN&m8N;5NzlrxTqHu$*3&#+vi$#5r9|;S9J^f;n zV4s>~4qx0w9=-oh7e=hhLP{`)2*kLic7aSA1cTzvSV0WBFFS;qpiBk!*+7u8dTaCu z?AP~wM$hYtM;`+3mw8&ox9&pyj*1b5U$81N*{M{RLO+=CWG8^V)3lf#$TT`j#|zsc ztpqN7Uu$@h;?`f)z`NGA+XpW* z=a(}3C4b0Ak8yo~pwl7PWb@BGRY@^nKVzaqs$^-LAFx+*p>bNPJV6b(tG)M;=WNGD zcK!=LgRci3%nT<|VE^-9D9IIS(5Yb@JTNkb3|~!oK8C94I=^qf|KV%9g!$8XFcdR- zfQh+778Mn;N0b`azKm0DUOxT8az!-NwkZjQkgQF)4c^*3;8@1@yTYWCnL0J` z*Ec_5(rjl{*$h1GLRvSVXu0`Q67AJZ6dAZlqM}84WW6M84MvayqVFZ{F71d;g)gn4 zLB6s|qGagkH$6}*ZjA`g8oK%cWn*%rgxG*)A++N0a(0r^QVTXb0#4U1Yxsu52%)~_ z=4P8pIHOrAguyvD(e=6&lYhF1jtPsuQk-PL*4l>=c|FZ@s`E!`Zgv~1i)qkAtjS|jQPE|dGo;I{XYKveIZlL zYhMai0dLdMK|pe=aMN}S=YF;GR<84LRp2Vh<>RSPz z$#?x)@tpsiu>IsH;c?A@+7nLqAB)QiK99`nv!GqdZ3n#%668GWY;ciuCf3|~y#5SP ze`Dg^Gu+LV!+U|ZJAWS4T``=Xyo@cv*U)(t1+L~GyH&{b)f5RI0lF$frn2cDC-{1pLyS%5DU6?? zxWRydd-=O+J+tQ3b;TBb-U-3unEx`pa*P<^!J+*=g0BV*Br}foImw!OaoMkaRdUGB z=_?c-u}5&B{uM5&jy;_tK|&VJF)AhwCDoVRH5*LLf98@O);Flei#p6Z`ME4(YrupF z7n&-sRV7U{qfQQbZ^W4;>cOzOi0}Biu3kbmUc)966bo$>CJA#yIW5?;EdrHkd!Hbt z>n!bj(|zkKyjO1w{|zJA&dH6aoG>SH(HfymC1|$i^hLHr0G67=(@)h$;e0&6<cSDKtewk~m*b)WNdz<)1Dr%RWcko3<20^(h>-wg^hY$s}XdHA)j= zbGN^t;$}BLKlk?sNgh5sT9ntX5N-9mwXut{eAych`fqyP-gXpI$;=SU4eP&Qla$@s zds#ae7#mMrg4Ir=$JC=^k}y&#f%`=iuu%m{ll)A-4?((No?)XMWeFoOX)wZufcjxHQ=qh^#HbuY^V;9=*29+5$EVd1xaz4c5<=E9Xxk$r ze+z4l4e(ya=jB7k!^Y=+Qv1F}O$WX33R%w}>mQ4Ko^4>KnGCUl^JV+xoYuz?Po>v* z!e!foiegWm?_=BJ#v$)(Sa}BZkdYy)fE&x~3M}L1uHN(f*Y;wUkK4+Rg0)tDCD6cK~qTuQ31XyXlCZuUk{{eodG~BWKDc1i%QZ4bf3)kPA9|K zAFFRe^-xS9{)w_@w*uO1VbCE|aW}C6P!m}K>!GM1*?CxZ+;9#_FvSD8ZzW(J!2uga zyk}$<6`N^NyXw?1{vkhCZ4wDujC?eXsiJ0VD1HSg7Ey)GvdN-=n^^wDnwbml|9HNr zPr`3=+#ETWP!}KFd4jBlcqrklWz{f&C+&bXCKf~a$AV?CJ2IGny_5~N83RyGmz~&f z&R~|ZRk3<{mNd_jOMsmQ>`po5JX*W3V>x-1dhkD4}tGKf-R@;1o!bBnA(u^tsP` zCFEsIU$OB)4zdcTdIW^Vu1lYef4|TGQLeGXE<0gWe{*R`8XL=$L0Ai?TK+^5aB{nNDW4vqV#oV4F&$=clga{P(uZqDUi)HO&N+x&I+>8zd>F zrtL6)bAgUbE}XZ^Ovuyl(O+zdpL zW%k#J){O>5xMaTF9C=?G6@W?V72w~!7^C7Yna87%Q(sOq5vz-5Jl6FyAw^Tmkvo)! zLbF&@jU#GCJs&Wne`67ELL-q|Gc_A38|R&;NTPI{9vYV?MFuShO?N+cL=)Mn*q`X6 z5&8NqZCT3xle(TmQPeIz-d$R|>_RufxUQpveSDNGM7NpkpDu=@1N%a{eDyg{m?{30 z>W+W`NRX3OA`+9JS`!avIlpFL3@w|QnN4uX?J$w)4~s^m7<rbe7lFJ}z7crDv3d zwPmq_sK#wCKY|8zoq{S#fS$Wrz1xm%=EfdgR`iG%ir_dlvfwl%0say6%J7SP7u7$a z@G@m@cse`>hvNzvI^S-T5VNKsK&lbJo&pKsj6lldp1==H>jagw(kF7ZwFOYG-xi`n z4bgsa=q2}NBD_=yxRX?oj%gzx)lG2JuzMe?@|RTpFee3T%|!;)=$|N7 z8q9J#ReHG8oid(S;0`X88W-~4LAD+(ougNxy;$w6Oqf=ocMY=;^jL{)2EyCz- zq`SM3?(UE-rMpEsq)Spj@Z}fZ{R!XC+5J4vxv%S-%EX)YES$2OawUq4C8_`S1gzBX z1H+7nr8P7-YvqjaB}*D0(Hc_C0<0ac(W}agdukI&AQeO$#@9$5aMHRUD?sHSp z>yRTc!Ta+7VgMcDX$loWt}|QN zsnIj`XYcI(XS!`J?|>J3>Uvb2CbG{PEImThjGs7!7AR84i?5bo-h}wSouq5YGs!?j z)0&i#FfFU11la@(qCWIxGaRClJlFP4adu!WHuhtGu>Z6mgkXs&ra++FIhn4G^9KcO zFqM)t(>H(Qhe(LDk$y^I)<<;CXhH@ckpl&C9dFURROvd?1*qdJW-9jC&2`*YTTXYw30=-&d3mQB*c#8 zuZjidTEHp;Nh(U9`2s1RHtq#(7br(1{ZTHjKSkR0gr8~GO=*sQ_w@O`e7m-|(}|ir z4CF^AKb;N!4jd_d9wOw%#~5YNa@|J4Z$Wupdo@Lj0@BKGa}6PmCDz=uLt0nLxvaAJ z`wRr2Xopo(4if!15q%1ju`PdS6akuHJq`x!n|7nQ95)+_QAvhWm`n(gN##8pzHrB% zj*+}S!h{U9BBzO%|Kl!Qpw1i-CSwQ*;t8R1MlCF%9>%{A7@09QWTpiv%Nf3kG5No* z=p!p;Qg8Pbys~D=P|9DM#6;Js|Hl%qv`~?H;jSc0I5|0rt2Obe=k37ix)63)mbH(n zj%kEC4hbF3t51e|PsTa;VHOFpf&!OA95KePe=ht;ic;Dh61*LDq~pqZpYu4k_;hWY zLkh4+_@?5zxOnz1kxn%s%?|^Gy8#-?OI7KOW~)8%@oe5u{pb>kz1RsW^!>cxx z%Gwd_fUrWq@IVuanOgGk#gK8CI*W$F0#J7kWnn<8c2(SUsY}Ac>gZcwELFz^MKYlz z`~Tjr%bU^DOiOc~I-R|rkpxH6ySO|?$cF=;Ua+ALpNs6Dj>QN`x0@*YZ}a*0daFN# zn571M?Wkid?+Z5+RqJ-$X-p+u4%DNgQD3$W%hQ<}6*!~sNq?j3eC3Ijx!9L;HqzL$v5z!8Ld-Z8QWHe3KhO!>|2GUMWHh+b_)57Pl$eVra0ql#gVPW-!2H5@Ijk3Ge+EAD2l zLFSiQ62`_iq~NED0sj8G>qN=l$@0Cj+6o*43D!%VFp5O`mpdqsJ1i`#Vu`<<-jvi4 zv91_~4+x5zI3p53pL&Ul&J^r;Cg57s^KoZ+MIMR3GU#$~KH$wc1prIMlL|l+Va)## z1s>k}w;z!9Exo3rVdouy0S13fgsQE#i~#*(Z!+ukmz=cq-qr{aJrylxBJe@BO)`yLl=)~#XP6k-1S!m zzYvSTU0J>VSf~z+ulM`=cjE8i@!Cf&xGuotV=F#PXbT`;e4Gawph|x{N~zWTD(s)3 zlPvy%jT4!o@1Rl0ey29wHhCL=CLsdy8kK7~zwrkRAqT!LIDQC7SfFgt7xqaMZd|mV zrYc{Af&~W$5io_l(6)+h#{CFT&PR2+iywWLC2-w?Ja};KvLK=PIB3(2Hq*C&S-SvT z!*NGzcKJhaL*25wyvB^N?1{G7Sxp)iRaIl&%nAr1KQBnxns%~Rv$_SA7j*lGuV5Kq z+#hQwf4i|nW&MJx{PaXaUE8!mIuw_?*r%Wz?ER|D$$`=;q8>=(2Lu!)$jPCMpQP9W z6j(qWt71Us|8owMsQM+l2;bDTS%nYN`3O*hrnA-XfPozR*20jjIMI;__Byg6Q5 z(MnbQtjhho4bz^IQaL@KPT}VwDRl&y988Rku4>p@z@zFw_U1gGa}J0sd4c!(O;z2r)7sQLOsw z&*a>}mq^F0Fp#e6n~}bzXk)`Y78v!uo6!V$B;>ni3@wKY-KDuMPZxB7R!t_Bw9Vn5-@-&XJjrjGOeuu=9&q@&Sw!(zp_aL&w|9=6 z65k1lfz7R$@ke8NVzKnDcwgh@ej)YlBtbFH-PF%5TUr5sBuCeIbEa)LrHpAupg8KB?C6lK{ zXYkTW`3(=o+Wl#gPT)TlHPXI3_vn)7fyq{KKTIqre0ain#$lS;Qsw0wh6s&k&Z<$9`>3^EPU0c)h?c0uV z7CtaHt6B~Z6NrJlZwT}=F#v)IF~GMc%W6AnuT^r(i<^fcWnRCxlvyAH068>FMjW}a zW26Yl`$JzjeRBKwbWtR^U|Qd4GRj3zKYLQNIu z6gdMbW0Ko~x9FfjtQwQd75aOi$CDd2YC*bmE+bIoLpJBz$^EPBfpOO?&R0hcSp<>2 zzcGLzuo1C2pr3w1tK}i*KNgx{5B!$++-+#@j$QQKn*0D!NIiP(7`Ih@{?OW29gMy7 zOb-^pHo?(Um%CSztzQ(Yma0Hianm=~1w%CkzgU20i(FxwXpiN!-F@YdoSuS&Y+YmnHWbE)WY< z1&i5yVFSZ=f=bRcvNp|M{`Eovd>ufyeO2A>^yF)qTkFqmt{=W5S-l;%A&B9O7dhnT zn3O81-LLBGsjqKQPl8_vC6~-prK*rSI&jXcF;e}=5Rwj~ZR{NwJ@f{OTVPDd@p zB*jGPDAOjLL6ZVuXw_7WlZe!IJTiDJ+A_(^v4By?6muVFyCADgBTvLcD??VtPj(y? zD$5=zAd#wrMPuCB#9ba0-DWcPf3NOr%j^jT5dw3FcnL-%?JDpqWAV-37uvNSzqtO* zISURnm^QU95%ciyG)A%#sG5IH0-b2uMa`}~#j5`n0AN|<)a|}T1qx^}0{rf2Bti|9 ziYx|QDaOOoA2~m89|!s!znetH4%=sT>-5-M$n-O#)2~Wt48=mtu#p~+914zpXi5*t z`B1ffKK2uojV`j3$?3Nr^U`(|pMZgUsN(y{nGv=39u3zcGc7RjdQj*2jx^(e8Q81@ zLTcgO`Hqcj2N7_9eGCO57aUE`sfX8pdFkKTA&z#&jHt2Z{Z&|O*r6o%%js9oiR693 zux?`Gzy;0e+cyNCc-K{ylfBTW-=DjG`=<-jDqcg$T3)KyiJa~Z-!K#)zOJEEWRGF= zbjFd@53;f?W4G1kt)|oRnXJYnu6Z<9soCWDd1oOJr^7}$wHW1r2-dXxdJPk1<8VP$ z80Kb7kg8wSlRNNhISq6$dOregDgqHG;P~?VfRtsVv+5<^UnoU1M7iO=#j}K0fqM$z z^g;TIJ`Mf%q&O!&IGld>A8T*8$J&C}p4?ZSragl?cDM1ne2#Y=dMeOe3gZRn>>Q&V z_M`K3Z0IH~6aM7wfFzkCl6n&K_B?7N09gJ^QG9Y6T_SHxI9ah3j7=JmKnp+enHuX5 z=_r8OrjCyK+&9qx4Q((Dd2@=egLQ0XG}1p7(VTv8gbE;$x467~4HL6sU zvcjb$4_7k7qMAwslYFAO_HOT=+~<7Xl=OKlVq_#4fS&GpWt65$VUiKlstQUUJR=ml zP39002Gr*@rK|}^iB?MdX^3GTY1<&6IjV-+X5}vI%$b2SErpDWWn8t?Iu+vv`yE+z zy9})&!D4V^>S?OA&|{nVpp6a&4)_hKm#~J+GN)y=<8@-^z%C?C6rJxiM10O!zAz1p zbMtv_!9JsD6#VQr7adHu3S^zHFIh4E{bce)f|Iyuij;YYbr{~<3_-h|B$cYqX}8;! zc*Xsd;BIA{Mi3aVNFjpiUC*jB#Ok|EO>XtS$0t+h!YI_3o(JA+RDFQbP(CTxMG?uTvA-oQ3RN`b<9J9H}EE^6B&NEIIJo8 z`C&ed2FjDsx1kwKNYT?5)u6ed{u0-E{o4QXGDqT{F4Ce7Ov@AdOn+0a6_iNQj4HDs{q=U@|rqPG-_F>m*^Q5W(j(@IpWU zU5w&K;Jr~pP*=23!<(LE%_h>yalGr~rhpFxY$!ueH=juA3T^b#)Eo(9IG#c^2l-JG zJqp4e)xj2}w>P}!355~^31E2TvrADbamH)P0PnTNmsC!Z#K7gmNX4cJz@lzeG8W}~ zdiqS-$sU1}5#aWY-kRV*Cui<&NbHX}97x6RtCEQ7e=M3WAk?dgRd$(3`g?gZoA1 z8%A_R8l{CK_a6~TO(rt1E%#ez zVaP}a6Se#A&5D}N;v|7-VIh4MR^6?(Q+zMiO!lK|m|+MR4xkI{oH#n!6mv*wv+zb8 zugAdX-1@kQ-WyrPQaD!}bvI55GyCW>!=LXIrFXj=zbm-^u>hgC&M)vr^5VJmj#lZO z6A4H1(ztDSc9REiV&jZ~|9*>x9KIw^;!C|-x3*%8{FC&yHL`;a!eCS{O9ifnPQmM^ zsmao+IOR5S*XfO;n`INKYO*970geKh02v!7C0`p#Zg7#0208p=V|K=eKc~a!Y0B{F zf!!tNuA2Psf*konKVQ7A=gHc+ecA5D!*&T-Z)$7&+mmg}NO=}jyltUPo;190GjVWf zg&p~5%a4XqRv1-y=_EsJ^X}r3QrDv7D~_t%w&QM*D)VdXsy7(}7AilJe`QIs`Q4Zj za|o!KHnQRFI0a=kvElo*ybu}V6$7G-&kD2F4Nx<>zVukaB)L^gW=^gsMUt}gARs!;SK_V!Ry9kQ!p6)eQ*85Ysjs=wn^WD-9 z9&q#$wd+PVQO`p)4AjyZ6DStB+I!*C1L7*8c$bBy=)QR)Ns0!=k^Y2|;n(qgP>cup zj&}nzWCNYPma6F%>S@A**@M)^;CVL-AMMOP?a(${cW!8s*J)5VBFQ*_a#(>A0YRg? zRvkpw>(3$L?JyhEbX_|L8ac(B$+yDWarDU*FWbGL?4pw@MXTYsx@MkcU@r?Qr#d2U z#F!q~qi2a#u#?#62NnMEc{@sXO! zka6LEmp*KSc3c8blceCH=QwYYg3@-k<3Dn5G(C#Y+VtrzY?<@ zEzW0Mj-F$Qj!wo_R>s&W{aH^3gk}@j!rtdo+4CaUa^XCR1p+$LL;q)ikf;K&%JRog zs$fU+^T{knOvKv8$q|Sob&959Im#lTFw|#HLCB$dN%qC^+(YGNeQw%()HLMF-ViqM z51AehfTs3fjEDvswI%Q)Qd+pzZ+lW5gG!g?P~FAzprHAHjqct5`$s&8Lh(_e zAQY(=4Q^}gdxHFlVU0~aDfr?M0x^TjUq`f1h)|k&JakeVg2r_FlkoFdVj8{&r0*2m z6}9%RbVL}{8-5o;e_c=-WkUQ;*0vIlTKEeBjv&9x$Cw4gZi}X!Tp8kQ#P}c7mQ~(N zM!wp%`g>oH*Kob_;+U7#$PkKGH?9NiR5VQ~@p(g5sTYXMZG3*sTX)j4r+9jYTCRTL z6I{FH6D`U8J{Gsv<5&1wMdo})h#Q>%W; z43Af3&3vz#F67dDeni1!ijs)pPt>yv_UgZ;esI_?f9G>dC>)y^NxED7$zgYgTz(}Z zW3og-B$G;O)#>*}uWTJ{0@DeCD?%9q8m^ip;4LL(`N_nAgWrBr@pTgPASg%mm;Gnt z0;t8|S3rQRF0ydYDYu^5>EC-J*C#@0l>jul)qo(BG_>QE@j_eTN_wbc6>5u;){VBu z(AuXt+;E4giFQ;=F6_5{Av$Q5QSSgKxdX#z+~W9Px(!cN0bGJ;veE`MowS`l*T<^n zD;ZRLbdAU79dq)Hal@l@;AJG6$oi|@DR~JY4i!*C)$JRA7y^;UpyYF%NVKU)J^f*&Z z<96-rqS>d@ZL%*N94g_!`8okYFBdPP!a%3RpeP-}x|D|_{oK=okw8=HI|SUp3&Zb` z^#eSKhn#3R7)s^QTNN46CpD!#&ozGCv=@+nclOwP=J*^(!YHPm)ppA(ZCBjB&enhR z|7^VHdb?)UrC?6O+-nZ=@_R(5_kHK&q}wf@K3>?@4PzoDPFeik;|#!#o~I8iy{8_S z&_h=Ia`TjPwlqOK0ItUzDy97L{ZSZ&yjMkq$Wu6MP>=+pfKZeIp!|x<;I;1hK~gMI z4%eNsf)O8H|D_BdS3D{qNP#QBSjQ?#2;0(T(i}a}NinS%Mb3)6S9_b;is>O-HV))R zyZl3Af^#rPFvCT6$+Y1Vqr73>vTg+vsj6v!{HVO^gfHXtyw6}Uv|*MPxY~J}dlKRz zOtn1TM$HD)WbnlgaImdw&pczjb<23?dsFhT&3)nE?bWPylFMnRXnj0xW;^C)YAB%F zr6BfC7ot={aW2H<5(u(d%0HBLYi-U4eNVjxho&QAh#s;)l;PR^d+{k6FdUUwg^opu z*wkb;YJ`qNG@)d$ReOYrc1jnXd~qJ@^9pjXzz+N5Z&j}LvC4liX&_XEVMbzS-tTY; z0KhZ(CF|o>DZ(vya*%2e}~|!;hH^$LvGSOH2W1mWk1jfDlRad zu*bcP+lotR-(ad;$F?M7B$h(3t24Zr|FlDhKgL;xNjPa*(86fEp+KOOdYz#)^kiPb z`GK|R`|dG0g4y6Sp+)Sd8XzcFb*N`4AsGDUVmHgAl(8=GqV0fs0V8N6IXnLPZ4O_Z z6?b8{>^~Mi)1Eh8vqk$eoW8OGRG?FNtB;APw%zAfoAZ&vd6Cd9X2!9SLB9rmnJ2zQ8M80RE#c$yFx*^e= z$kF%FK~ep)oTlu?iZESE_BU9r%vvkyn5kh~w~%=;ogz1KPvN^|fe4TDR;zr!o2BeE z^Q7n7dq1vd7&jwcMYH@X`OhLgHZ199kPAV#V7VGD>&$Hn$)~~=F}W!WObmhIT%?em zHECl%fL{-YLITo-0m9d|3PM8i;_n%=*39rB1C`I$R#ixS1GbRmo^4w%So5t8|C0Df zh9)>hLBsKng-0VrN9DqD-Yt0Om*uR$WtOg+onGe(nQ+nO3jzgmMSja{Cq_U6teeGyP#{R0xiSh!=gv%~nSFDG7}CSNm>(4!HA?B3 zM``*|lj`%$D@BGrkF=R(rZ6!t3!#s0lNBRrZY-!r9Lh}N3|A@uE(U_tWWLT(n>i~? zdVgHt>&4Ny{>MVos^lzwu?EyCptK=@Z7jE<^a_&s-bkJk5S+}&`7!$UptZY{ zB~rORC;NM}u?(itPKDV*$09~V9^p^iy*1VNGpch70V9tOF1b<_Y{8x+4nrvv;(mav z(A}Hq8~sTG;}sg{A*uc2ebeas8nzTC+>iT@ZAVM!fh#-{S`yJGNH7GH z;LhK07Z_S2P4j*}UJ^t*%JKV~7FiI(bGsYDJJxB+6?dH>Ak>eEj^Y8fJMbw8iCv^`-l95Keh{vaZF?t(kls>XyOh~en6_s&RQqxiq41-$QB$ZHc<4%#)X%=t?dp##d09oZIx!9p{ zdI54pengAfv%?SG-v3wt!u4bzrdVm=A_u(Kg-pGD$Nc84*a2uGxmp471^d^|dU7lp zw4d|UZB#F6Fb}twb{Mw;vSsN7#QnpdV{7$@iJ0wMn%63s^_zmwZ+)CEUhaD96Wv}) za2HcS`CiR783zP?iX>x^$e5Z=3Y4-(7NO&AGV02m<1dTr6|_V$zGKU=yDxS`*-pNi zl^xTT#0F#K+8A_t&s|<(q>(N_^g4Z9nlq6jz=3@Zejtg}mOG<07R&b>u7d0tj$(TS^>@P!3ka0_i3v$x6l? zC1Za`bD~MdCb_0$oJ#%2;-z3CZoC2bu~^TLr?&jLj;Dct)LsELhQTbf^y!V|f@oWq- z1{;chvzG?0wTY%9b#r&wM5p9KO}d_wsv6^i5p0TXHyOPbv6C21TKLeYNWq%zSYShlN= z!Cwlg)rJ7%4`HZZYTt;wlJUd0IOczyloDy#P)Yz{1!mmTKmg2~a>Mzb19q8$Weqv84Ri5&PlxP78&$U`YJV%chrf;zO;6lHGB+fmBTvu+s@rBAXc+)C|KQ<&B!MULk-nAQQ~p37>T1%s zY0M$ZpvFrsBqAo>Ll(-$t&v+!6G{}$f};)^R&U@xUG;rjJ6L98M+jhxa@fz$1^A^z z83wB(iE}rgRg7rs7KQA*FPQ(Q3m^gmX&V&eREQln?5Cy2=IU=h>w5Xq@zzjm00U4a zuPlcGf$T&Cj?vrCz~5mX@Gb{&Y@*(IUo#GGz44>597zPssGo6s;IG0;+WK=Cs%07k zpbr+Mb8{rXHy&}0J9OAGP!(_=Mgm3UZT1Zw{7PR;W!`O7SVz28U1P;l#pd=tcBYGc zOUz@P0U1c+Yxrt0gM^PSDH9aVgm!?=KE=VUReCf+mN3K#uSE>|g^4>3s4svwraU3E z1d=_WVKM{X%gckeU7NJCDl>`=vYIqB?D)IR5S^#Aw9-W@F5{5rbcX%TCbj`4Ak!z+qJ4$w zQcgK_98P9o%{FaQ7aUt!((KFwR{D@{V;BPjsG6t9N%GKoEwddOq10VeI8^B{Iw~QW zI3NmjRLkSq-h8U2f%(Mp}ak- z*qawDw8fD3`Qw<%s+Qe=$a*~@e}hAI-|czEny!+15qrC6-i3Hx1O~alz&AW&GNUju zvM85i3E28Ar{m$nK%d|9-KyoTExVF1kdN)r@Z52^W%g8)*tz?zCts};&NT^SLFu9NP zX}&D0q6Nk6wUGfN;BaGXilJl5Yw|c~>TIFl#G3ehVo1L8uQ>-Kzq#VZw_uayT%GKJ z2#^!G!UYf{Ka{H4)Xf3rOxq{l*rIXz$098OscFJ545`r&hb-I(K=J;B&FoTpc8*wj z|2`(2He+bNJjD1%f~&Bz{yy@!X+U!|>2j5w?)oj2F%9gfe4~@o)$Q;3>2$$|$F0;9 z;heWC8Sg`;1t2hJtTDz@F z^V{#lab!juW&N)cIp5dlU1fhZO%3jd)eyPlwB^gV_Gmb`4=MdTE)fRLH&0lUC+bu` zdF2gr0XJ9`5fo2+-5Jbp#NzQYV(EwR!v_q6Ftt@vphfifpP1A+j;#HqXDaJ+N#2y0 zm}i#p=dy{&M5SEjb0iS~6jgM`CZy$Wx&Qb0HpL`21^SCYrN8;pHL#&<0V99Z0~v*g z?!pHZjs%zzXG&QfXW1-D-BiHrxBW(R6V%w{97SJL4X{!(uANM!+G1&yG_8xKWsZ8} zHKFyKgehr1!prN7JB?%h&|m=w%UcyQT1bU->;r=VR4Ny^*hUQ)U`W0aLD?d^Y$We) z5glJ3iqf}+?}HuLw85Qo0ZHeuwipWcv0v|A>On!e)Lo7bzu$fExGY$A6S1Y{f+83y zQ4}^dDjQ;CAOgl!RisYhVKm;0Zp*Cb?0q-^C}GyqJTCLn-5s^R?>_u#jdn?M2s6Uy zsVj@(Olp=!RU9%eWerR(7O#)3m^1)TS%9ZJ|LG#BZB#IC{43{hB&n=_e8*k}ak>Xf zBVHV-Js?GwK`4s>3h#-+k%2?Gh$qqfXau&>aM%^4DH{4mW}}$9hA*OvUm<}a7y@;e zrCuN-=R@ZpIRtfbvutUeAOsN=-6;`g#=_|8F<;c9O9R_rp=%28lTH`-)qXn zoDK)~gBihXvKW$M$KHTS zYy?7vfHqE3l3~>_+61wg*#pa-zoMLQEP8`gSh+~72#1!L4ikd}=YVOS5*3Vy zux+kZ|6q8JMS2B7AMmnl7%LpIue_xi@v#7Zd_h42`i^K`U9$c{R#k@HXf`am4VWmD z`Ih^2iUYTw|s;p(BK+a8KWp$k1@uL78e_`Nj`#x?rHOyk%1SibM!;75h| z>}^RnJZECtb#9lfK1STWf z@modF)w)vWvhK&8uPGF|2xc>siH19qONsPj3f^0XNi{?uwK$mU^#y+gshMaEGt=z+ z=+(Q^f*?#SxZ#4p(}Txgb!cUHp8U&^Ut?*$1Ypj>inD4Rh~q z_##}xoN;(l{h_(=$?@#sy}Ee=Q};hb}jp#DgRjzlb`+p=cQNx|x`Q&l#;nJH=#RjlXK9 z?)2A57O;Et$aidg!!dMKv_TEC=<6Q8D#pfOLdl1&a&Q`w1&p%7rY=-;LQ$qyGUcbK zEU(CWc&BnW;yI9$xv&5-thx015da9F==2T~Z)QNFv-a{I3k1z;wmk9YktKx}gb`R^ zkj!DTSUn#-rNGa#T*1vkjee&|9~Bi*B$;A2k5|wxiyy->x}AH<_H0qZWG^5roRU5> z>ZN6KoLp%Y9*yP{;Hs95v9h_pqq4!AkE73PTacnBin1Nw%=|xx7?3oA{s6$5o!IX@ zJQ0UW8_^&jf0%g`67Ofi!UYOt{Ww|^BzTH6xQC8zEYp%d3A+SeMVHU?bK=442TTY} zu@kuFJrSt-1y60OPuT_Im(W@h+`LFm;NTFaP^aRW*>HZYmKjLW2qTaYKe91%l7$?C z61N&ie}0He?X}s&|2$Nb!Onhrqy6XBcO!U&x2^EqN!)#c!#@_yGFt{^Z*}Tti(k?Z zw3H;_rcRKin{e()K4m_TV`ED=kU*VzYaBn3d7hWHRkW8O*owG~4zuFEp>zBcEq!Aq_VSC8+6CHf~n2W>Ptf8R)%&sL;xyl_YSJT0p?+<)O{TV#s=-f6!aru z+2uIWl9Svyc(MauDH7Fs3s52)(mwy?K!NL>&YgW)Ulv#O8p+-9{``mIciycxwFD7~ z*(%3X&_<}wzGn;-Y)rTjWp`*|*m}Vp{t-tUW(e8ttjYMS9VF=S>8`1L!0Y<)%;!li zN;F7YLmU1T2u2GRy=4lZdEQ)31078N_B`H~y2`U{?D&TsG~k!?i2 zbUh~4uS{vyvMH1cz$HP@v0-c>WZ2$TW+Tdb`*~=+D05ccmC6Z)`(?H#(cU-%Av)Q# z{S|S-IlVXw=6)f5oP1$@6iDVt-o~F`@S9h%oas4m$RrJA=|G{Ruu38S{$(kgkoQBm z0BRgx9r?8GaJTufd?&rleNj8(QN|%b)!V*GUK&8aSf)_}O+<2diOCmP4!dNA^o)`U zXbcXWIY~_aE6WdM2r;q?F1D$wmJsiYS!};T4|nyg53oSmAHetD>Gb}wAe5VX0*(3j zb_;cAU5ikTtm4T?=F(~8Do4gHd0 zD)Wcdz8qf7q}cIS8kU{7Kuc|gqQ(UDcXPkCxP)Z`oY^B*`ccKJl50;-;$J|&W#`2X zf9!>k5Z8}}AR`EDQdf*x0F66_FDU2`@kvgTgr+?Cv1yAKil{R2&%4jk|5yMVUt{jR z0I240y~Kt9dq4xFzyLpYn1m6IMi3e*J&Y>Er~RZYMFI{*#F0HTH--E-G2KU(7{K%4 z%ZcondLX0q`?yBo7_{)<TGZ$A<>cE>we14m)6dvb zhj73Fw!eDD{Efr5$YUqk*8h&k*Q|z8}-4O&9^Og%qb#4M;B@CH zFQBa^r>4TK(TBAJ#PlC?N${mjv;1*TH zu4)b)UQWMSyYI?`-IRRJ z<{GP=qQ+`)N(X)YHP^c?;gBp->Y=_!ZbUTzdnt=aN?(c{Fi$9L1UJTzU$RC^@?yb< z%#F%MuYK^@cB*@d7QQoY{!y!S<18nOG}+}mFp1$zos4a4eloK& z!;S3i>}J|v*&KGXl6(XaF+ZSDGXx~?+qNByNy>iOb@|fH^XZO~;7bV}^-8-Z>B86c z5AMDBOX;iveWv@`xn~jzc;6JvkIJ>jOq-l8%d@rLtWkoo;WFY|vR`~|+kH6#o-=f# zu2%pxw{E}9o(>tip2nBEAD$~aiX$)kakahzRNyE>1L~jBDPXl6NjM^59Pn4+k`b0n zCg?G*g}$OG#K0V@A2n#>F})ZFdoaRJi{PzntyA^-DkI4+!>(iw&FPv+1#2cYhhq@F z*!}-|ze@n?=H-TY?Wkc{m2Z-Cbok)HX+N`fhAgw9cH#r!@3#1j_(?P*hje2}l)y>+ zUW(mdIKkMWf>FE}O;D0d98r8d6Nejvls4XS7dDl^H@_gy2T!m&&)n_ffwoz+WDf{P zbES_i1OB~}t;+>=w>p`+1;cqvMb}$B&z_1R9}w1yZsw)s85^O^M}C`|zbKGu^hLin z9`T=vM1biw6_>s7H@v#qPj{AUI>?7VofVuH$)^Iwr++!Dhl28(Y{|S9@t_mvYu0FV zgAkTqy<1ci@z%y#{racjiHrAt=l zAVVe%f4}=49<=3jK$hH_nd_6HIPC3<9jP(PeMmlAq3Gm;Q~A>pvRqI9 z%w#JsPOVYVZr~|ZMc6@ORc7OmiSND=RrUAHaq;&Ld&4n?bE~X7&3E6ecx{zsyjvIk zG}rWaIIn;l+jQfE?sie<`_zf+cRp}L>!J{9=7Y! z+1-xU{ORZQneE%<)|dAS^BVI!@gF-6@@W!?b9)DyDJ!kes3$ckk(}IL*M57rJ-Z6b zty5G>Eb2klX>2Mhe|}n^IdpX&^FIzx4_noA`#4_gJG&4Bql+;y%l5iS$~+RVc)i$M z`7AXQrFogC+JRL4l65cID5#c0E=cbT+Yciup`2|VGpI2z01|lU=z2n6ogW23qTouP zB7E;RB|AxJec;GCrPuV21qVRHTduU>n5Nj(CbuIEAlYCu)Soj1%Dn#u&TGB{%G~qT zQRdb~r}@TL{E4XEGsLz$4u*f-!Y~{z92u<)0leN+u_lEM3+1Be48UFvZ_^g!s2&%J z%DDb@`f23DUzl|IGFk~~Q%~;$TTXX;BOwQN!O+w#pa(LcX}9+2@iOP{3z|rTqY-AK z-Rl@rb!s_e0qrnV#|N*#A^gXNzrjI8*)kV1U^sv8%JKifet*8#MYHcNN5Y0nLT3g$pGa(c%& zXjs#;S&klFv)X!{z4evk|Fe_&{;6dBdS%Jgq|#|Y%dE%Ko~!$2Y&W^a1@D73Ti0cS z?`6#~YwF+8zc=hpI~D8o4X9d_+Au?#r!42^^lYiGL(N698mg;5E`kpi!aFutyFut7!0Um>+yVi%`3~ z&7$4M*LRZq`Motg+5tb8Ht+VIE^4WNZ~nr%h#;6 zd3s@09|qp`o>3pi^Md7;gPDlZ+Okof4e#`YBin|P2e7D+D6u$?Pp6=^U2}6YRGGcJ ze{E)oIcSZHQ-j{HJi^tyYpwDjMd{UW@evFsUn`HPh(7D81YE+Lqh<+>My`-wxV(&?z9c_~DBcW`5l1Db6w0xf zRHi`pi~Ds=9DACr41gx7lA<&mi3m9^Vm?eY4<|QFnfV1|n1c>V6FzKY+o!ELY~oX? z(P$jXehom;dSA}XRA?e8p51%%|6C3{DD6v>G!0CiiJ-wnu1}E+68Y`QIi1hdR~=2J4{9$r)caKXN9*Zkj1cm7DsTeC+s<%j#m#wIjzomZw#`9PECuB zwmYIp8h4nqHkzgpXJPbx;wy4r>1=LzY2{cN_op;X3L47f#+%Mg7q*uIKZE=6Rr+z%(zq!G)HR#;Y zGlAm}mcq)wUCDH*}Rg&+#x%JMGybr%KVBG73ahya1dj;4zhf zkk{3IX{$SF?)|UHKmF8y!(;zu&$q|?(?x;r)#P)47<;u)kLB7!4>a5+cIko6FbvWY z-2aXR>FfS5q;M-d35cKl-Ga9=;u!GUG%Hr%Mf@viI4o8!x~#gz%WsK0yD`AtR(t;P zSfGM7AW@c>Ni|!WAYLVyasA2=bKqR|Vr#P$18j6cm5@8E7j;$-!x{&22g<>ILVXN}C`bHsLVd)7nvnt-= zdN!_==aPrhKw}ODE;rG*x@+rQB`|OjtkV?IjBe1y zU7EZgKW8r!f|P?4;TUMf1caOAeSz4#DkAP{w#%T_Z@vKhUNW8#1q3D-P*A~)Zy2*Q zKUJ$Ru-=Fv9Tz3b&vU0#YHh>=IOvTViW_bjDw_Tn(yY*%22gzw5ImP2pjs{=5aVsh z(dzXH%oIX4+Z4t`-27ZFK&(jCPC z0x%{L^jq$=pt?1yAp%~GbVMaG)?8isb|;P&ArY=c1^Y}@Y+FWhQr=4pm-XtUknkJg z#9f`LS$jH8{<|gicLncpqd{7l-S_TI_tNd^X3^24$n9~~a*Z_~WBc>(0X<{k?3jK1 zq4)Oj!{04z-<$C>Ew1OABCdg4cS9w?+%-?aPrH@81KP_iSkN^uci*#t-VgWkIjh}1 zo106tJOcm-mmvy}1BC$TJtEVII0!H_<4t-pvHnow`-Cp~=jrb+-}@rcZqJ;RsHhh} z2R+XC4{yu@X6s{S#(7_hQ}iI7xFzFvIBfktpZ#M|UQvF-i)5%dcl@RhiG8ykVykwf zTPbrd-{>grn?6#2$uPcw<2Rf<9NzpBTM40Te3ihi;@5p%@8u=LYex+HBw_ctT74oD zkJu5h_4spqk%m%jN}d**f(Iaw!~ed9+Q9o_YkB={=lR&b$`g4uZ|u)bSKDu2y>$oB zw2$gL3jFRm^90G8CtUvm0}VCiE3SXsX$e|I$xf>M zIc_Oo9?EvL3`V24*CNzJ8Hfu4#p(3gw731;#|if$X@< z3S%9@j@0quGjFY$W_VDL=x^|q;;QnG)fv1IU;+C-7K0^&q&52GX4NOUFz!Z)rqbPq z(Y(P2Jf#d%KI>*#py1+Yfw}h5r?NCHznyxefHP(eidHFnLw_cmAeiQlaS3Bl%gKu|c82 zX`k_!1=|7|%Q$$RShA+b^+T(TDY^R(8>e6N&6QRNmUs3eWiEPBD<&2bKIZh)P0xOr zh%oM9hyu^!pw2`Y^9=@C&hqUZ8{Y3j42+2bU${b+;k;(8n5rI9xU9g#k^g5hi=as= z#xBO{5n0wh!e|5{r(`Q2w;dn@Y->=u=-KIlag+Cs9Q|!#?p;H!&&gA&)^ql@`vvto2Ki3nJ<>dl&5L-Z}psc2LW`9f%J+P&aM%+}i$uY}V6vvbNTwjYaom=RuZf%v7e-bbO7rST3KvG zrE1Xtxb3LqRRI#!hrFf_*vY-m3_QPH@o}5UFCm;yfcZ#kKSaLY>5L;iJwrMu11!});{foa!PdlFGz-l^WvY$n1+pF`CNQedrYL&w|M_=D zs=dt^r5QuHNzsMNH=LrBe4~qG$|utG&a^W03VdOjq0Q)QBFhlqr$xNP~7V&*aj_pk!g-&J2TS|=4g zqOs)hf6G6?xG{lnz|k}_Es1YrO*+@@4aQRXA^BnW%UbS}(LYL98xU+J*+KWOWd(n) zNi=5ZS$2sS8dGU7G(i?`jh{0lrpwE2^aCt09QiJ;t>$aV9nA{Ow(xwjCMLA#a7!l0 z#~BRXAGdro9Xps*H}PFTy}KHxzw1ZccZyR|W!`U0uRLU%zRPZY6E@;-U1yz3%m*Yi zdjF3_^YP6Pd*7u&c=|jBf61$xr%0b0s{7@!hsuW|div~&cm8)Xlj_FeA|eLDu{hs3 zRAz^FVHGCilJBy!-Am(duZROS)}?+AdbAkI$9WHEy~UyUVK450^06k~6}@`z-yi$M zPO<;;u=VXzsb5~F2k7hl0xor4LVuIZbB`JeT=O*bUT4($kQJTgLjfPvFFY-|r;oyB zV@kHtynHuQf;}ta1OGXXa_AK=v}4)xbdV2iavF@6$XaKjXag7rv(u8v@7~Oa zQprgxFhs?u!J#fTO&yO!#Uxu??izWoBz0zlzBoE8rVBl4I$iQs!>yNtE@I}(gtjB{ zsUQqSv!|P*0ZYTN<6&S|vO87YL= zLSIORCBsKAIo=DPl&Ew_F?}M(srog|vE^ks;|?0Ad8Eu0q#&y9gZyGY@e^5Nm@))> zRq+`7O#iWXFTdJ+w#P@E>&97>M0RfbB|VQN{*hH}`Cd)TB7@9IMC+2(os4SJGS;q@ z=1^Xd z8xVru!R*4k|E?ZpQ)PNz&bQrbw;f-v1RNdp=NVZ1J*CEfIg0m9#0@2|epIsOj8@-P z0yaxZPnY5UpAqY&*9d0|Lfb7DxiCxV-;WHrDVY{4MvZ4PYLviO3>Xdb9dD#+9GfH> zE>G^K4{yYs?ia=HZ>*(I#}6n1(;KOWY3EiKRQ@CO8Ts>$!8#CUMcOL~lV$F=HHigs zpP9eTYrAVFj;t`p9V7N@Vc@tE=E0F@cHWHmNZz;EaBiandVg8%llt$L*ikW5iPL>W zpOi3puQ>#A{me|5bCP{;KIY-)#tx>qFc|Vv7={jmUr4zyYZy4sI_ZsM8h$XDt<5~h zDC?PW8_kQC6R$b7+Cj;b3E;;50Gn?>XL#X!xWVQ}*lfyzy_gzD9R_4L15+^*m%;L2 z^QHqos0m=m^#8f#SzU)`GIAMx1h$ zE6sKCr&v?5$pB)3`$~92BPvBzEDU5ttiJ3CJ%#NOU%Ry%Q!(v!^7U*|ww-$yDZd5r zGTLYgJVL4%VM){6Fm?wimHbG80#X&One93GINY~R$!tUM%jwjJL*+LneG3C9wjwZP z+AS04bqiMOf{3vGoe@+q^}-u@e4=OJcs1hzorDwwF+0=eG*AwutfVRc#y3VRreWjM z5o<{vfatrgFXZv1ZYFrE#r-?SFTmKce54<2Fm6#Rr&EC^o`DxAsWaJ6YozVCd5?a< zO`g(Ac&(4OAam%JFsaS45mP2qGo|i?OTQg490l5bHu-}6r7E|L0&g~@ZYSD^wES<$ z0?(7Bt}W29ZE94m=Xto;>UI1ZT))$l9qo%Y%=#1@VTAVKt%s|q(>a90mpv2ZVr0xA zEhv9p7!j)~+W z?D|>u^k-I11&}$hO!%Pg0Q_1g3C}S8Y)rQ;{GnRH)uzg?n?6A`gWt12 zz9=3~1|XZKZa7FQ=yfPP5vmE1Y@vZ?Fb+IxW2v2(8oiQV{2)jys?^Is2LW~%Dz`jt zCQe$27eFyyf$&?g3?S=R*l(V|r~xKbuka;dEnNcyJ4%}(^9JDrq8?wg&1sH;|NKnJ zlSzj_hCi%8Sr-!urJrJO^b(&1^A@PA)8{SYg2#G`eNOy-V&%p| z>g+3zi4WY@qQy|k`))w-GOk_Q!V2(SGOh=eCjN?vO?JZ zzIc#iTTN6fkm`|KbZtdv!oq3@kIodaYYtDgxKLzd;5mz3_e!zIs(MBp- z+9v8yVjbnwGuPwRzHc$WX5OQGctr;%tIDlF5h*@uhV2l}>)iD#GXI;pAv0Mm@FS>wy)Ym#SEx5g}r);uz= zcDu>Lg(COfl*=}RPe`#!`&f!Op8?3vtA>}Zf8RDls!_?)$csyThL2BryBOV(0Mqxe+yb5o%R@;(8(ComjKm zX(W0cF(6q~fnGS1h-}Pr%ky2!5Cyjt`3)mBy&Tf`;7((n%RO492idhslmsMRRy6ww ze1Fry^SAbrkRQxsq#Gg_wp{?ELEh~Y%3&2{Iw2wyixA1@h4YB=t=N+C(*5z4$vFZj zx}H` zX3FncS_U&v#7;aHk1Hfy)?$%a=IDtdzSXTAPMg5YL`m51&1M%5Or_*6h8tP{?Bm<% z!r{D+?(UMx)hfhO%9gZ5BM?3I$I(dy5Iy}Rq9@D$Sg_5uM_25R$d3F-4@+6G?o2d? z=xm7ey!~{~ApQ(fHV7LUGH#%6C{2jnN!vo70FALV{u1)nG7I_y*NQI)ARU6+lP6q` zDU`pp@y;=BA#zGXo3rgb7gbVo40#68Lvv^9c&=TBsZCiC8NJ2?DPhruJjumfcAKKNk440s;1>q8l`;xHzA z#63)lH~tne6}{**_KtPvEu#g`CpT3uy*d z?6p-1fj)4%h8-+O$wUe)>rqj%+cWxRwrV_PjF+%Q&LZ|0gqIiutg_t=*d_@| zxT%v86O#>#rXsFCn0XX`dUfI1a&UN1>A3KCTs6Xti4mCQb2P;9bPJ0>EcWITUb_u` zenKpgB5wRBB~SJkU+W7d`Ces^)abp%1RELqSypUE;w8&tDLm5bz%3TPWW{tVc|kyK zpr8_kCPcPH4vdvvey>o!Xom5|U6^Y&-ga=^&Fdtc9{Kbii}z^-+#)i6X|chM zR-L&1is{`^@_o+{B07q%5VZq$gGPVdG6J{~F4hL-`v=H3Fi(?Q82O!4QFNY@R!OR3%#Vp zf>IrV{G{9}V3b22HaJLce@aLM*f`V%t__-7J0qNAX)_v^CFY#f;}R?zvYt~?$mx$| z&cCS*II}rgI%j{8yjFoAUE3`EdU^TvR9>wDxBqU7D4!9t9ez%2E|fW@tmp>B`ZbTP zl{nQWcyuzlR#=h5$uNY2LS?mhP~~iwCx=Ere1Cn#&`n0Z70pwVdPvJ;BVx;&-|RndqcR}^JREmAWP)W=HT!( zGx!<^u-Pqz&?qX;3p%Ig-Oh%Z0zVz3zh| z`O-Bsy>I32jLq}|Axe&*JnTkzfO%Zi`)g$$p>YPardv@{WpBDqXooa~D4>Lu(D&xQ z-~E)f^iCe~vbP(;?hVs7zzB5#$$=lGA)KqZ(ZWzk9t^ErP2!N@Z-`pEx)xQ4Y{2=e z6CB-e00!RE$dy+&J#BY8fk!L%=1l?X9e1-RCktS?0A{nni^ui$Gm`(#$m5I4%ge3P zbhr&KgO|le@a^bwPC0Fmfl4WS-J_|bw8x?9S*M~RdV#zpEL25*@48cTw$>3G9$;|k zaz6gBDo0g8=OK5w|7q;i@y5vBtW)#e64D=uehzybYt0h*BTekC-*fzs6W&vsz3@e$ zO6XW|S1ujv#X{#Yd(0(sLxCU~CX2G#nS=p37KWhHoaz5XP zL^o%XkKXeFr@d>%0U^cp?s8p7GlizT=l*`^~dZ1?-QqpEn9X* zg%3QAFkI@IK7HKzR=(GCdAQhyf%R0(?)~lhb3tVlH5|?m99BitfC%VKdTr-2B}2jOfSDa`^cY;!@H~nop~lJr2Pwd=pT#I zD|%m~pM3XQLMA4G%ZG=ph3^5`aQX%TW@f#z^YY8PgJ)lgZG=(Qh|(>kI%N3zT2Qgv zEC2PT+=tS@TU0r;dQYrvX}>a8BJlc{edTt>lW6+#WgiR{V+LXQ&LI|OR^R4Up{1)y z9o~w36VYW782AXf@8F{&D~khBU}D0R*4(}^1Gl)l!<&p9Ul2BduzTrxvDyJ2F|VlG z$68V1D|gQKdk=qBZVOgE=QFFh^F;O5In0VP9#;@c6+E@XzT3V%%yt~D6ZJ)W?PUobEmywpbG6U;pPJ`t>FO)seH&p#B zC9gl-NMIpFI8w-@Wl@6cr&YMG{HNL@e38oj(2+mv!9BLEZhs zw>6M%Od|MD{lFg)PlB0b*x*xp(_wnw_R_N+6Bf>} zAB(=TP`vKd0_135y_aY_qls^w-gjxgS5i+`9k$5bleLELnL^AbV)9h&51p#9t&?i18p4anVuiq9sa=#8W*PbJ9vqVFA{OXb4{v!8iOJ>bu)e- zepr{f?tQp(ZG%6|U zal~u=W6=Vq)b^gD#$hS!3MXN>0V66(o1D~e6X&Ky;V;6EKW^>P?9;3QjzWisFCR7o z&vPXMkvDC3$OmhTiKJ|8Y*;F1c4%wro@ucvfwD$WL+o%@?TD|R9z)ef=jq5i3@eNT z_#e39PK*M(^(0otM9+P$!9z@!mANIyrUpb>+nMUz7 zKI{MAm$MyS=Sa-8wti_!2&sSR>1i^n7zrUUgRd|iBW7QQG`2OzFj+|9E2k)h-?&IK z4Lz1_L1vdjGx~Id7az$_GeqNg5ef;sY(c(&uXDa3{6+*jq*h})DZI}2I`hh4!!NHZ zOp+9`mg;|TLCTbw)m1`f1I0Aln>h0}$NMImEFs?a>sbmfh{+Nfv0fT@mU|bG>wkCh z_X0h#OjH%B1jCS#0|UBI9|JwL#VwRXYss)Frbj%C8o0O|g^lc&?oULk5Kfl|J2R*^ z+6YA)oOh~cmk20Z99En?B0AL$=3Um zk>9Z+6$;(p7QWF28W3wQSkA8V%Z*4JR!&?5tRnq2mBLR|FoY0{Ckr%LX=>z~fpKs` zAy%%sI2~9y0ALCuU4Fo|b>M~b?Rwxz+rwFOreX)bfH$SERA3SWk)9`FG+f=3QyAZD zNGWbn-SPkKAgjW`N8W(=?Tro;yD*FN{8~v7vSwPSwlGQ)1f;;TA5vT2T{!T}Jn(S$ zu0rhVjli5}W_7}WvSF?io&P#|` zsxTDVrZ!an7Z;Zia#D}K>g%JT33OZ9+T<+i)cn0`GZ&=Qb*d~?Y%NAuBCLzpz8u@0 zaJHGgpX&VGMrzjiJw{SS$ohT@Ud64Nf3^L1C%btM_F?kXuv1P&_9G!O_i^V0D3>)9 z)5@LQlVh|$GGQ)Qu^T`}6UszEVDyT9)S=dpL%`6FYlG|AYx&=#Ihs=(Y5VeqQXIWO z-d`onags&xQcKZWgQZm{k4^}lgG`f?$h7x>iD}WBKU|d8*gn%zo;+`W*Lu}=eY`m< zh;Bo9K73g}9s=KhDHt}szbBc77Q^z9aR(*lpw40r=xUio9n-3D%ly8MS$z{MQz$5; zS6BPmMXi?tmGS@V9jPIJ5H|hSt_^Wg%7b)5@>J$Va#WEjgdAlfZ~sc&5Z|xaHHp#^ z$Bpd0bdGSL?KQJL5Q$?{(AO=&H%bAq+UWUe)uw?$Dr=a&(f&%c7(Q8G7a!$){Dodf zQ*&@7b-U|*HV)*eVwt`z3WHYiYNO|}?edA#)%b%}dA*GFdqEfL=fUS>Q#=UA9on}a zQGb*~LRr#n{*p!Sr@hGNxMu-;JnpI#$?0XBH)2yxf{iN5eh6u-Dz$1^DfdK7_iTDJ znK;&u*qI2a#R3`Q)mLP_OMwM_xXv@w1+ z^VWAFS#OF8OWdM7692^os+IVzxTh-?y8fG3HPd8zsumK-S9gGC`nzYk2QkYehD+ak z)mRZBl5D#;4fW2>3CFuPgVRo6G5Wr9k0vMd$7SrDvEkQGY=RvN0k;SA~lkz`*TPg<>)1|=MlE|sf+Gx$!%!v~G2p)1C%aH!ARQ?EYZS{?jk1U>{^KsF^;!9H1 zVe=tIbg`k3G>pl;QXs0E052?EW;x`fE_O#tc%L13g z_oolrmk&pmm@$`q2(aJO_{_9t+rwQZB9mD1+U7{sfkOIIa{J^dPeD6)hCD;!iR%r~6g{-BNYffu+2~VZj z+nfS2gQAM*%RA7Qlk?2iuZSg&^ZohhfVS3Ob9%M0e1z-2a~?Z8FE8J1AAS^BTwKgr zs6$4q`VS5%ISq$#v*^}AFu!Yi-kjZCUQnS>7kWY!8R+Rbskn|uQa%vn^u6Mspnx;Y zDFYQq5Xb^-(dOIgi1MJ-HQHXF1OdiTE?_YYX@+U;F^d>Lcv>W1w}T=BlLb*w6m}h( z9cbDG9B@Bm+8lsttSDX5#q%Tm$6_;}cFE0og~t9x<%?N_`wB5H2g%#LDYF$1NuRB( zDpf!)CGmA7+|Le`3&43oe`1N9#yY_4?d=&I4 zZ7BTIMY-7)lX58Q*5q#M!48*jarVQO@0<~odWirjNNaj2OzzCusDi& zA6rcRsyLuoCx6YtyIxG9D+>l<=%xW=SaEe3)-$G4`+p4rf-ZCLid}oZm1hJ%rEyar ziWXd!RDKV)J*djoTTx~MSnK7|SnGMVy0cRoAq~ct$VTm^rskWoz1+5z2JiD5HQkr} zSq_HUtQ?x-;zeJGeQp~P~tadLZoslY7v?(js$u-u3JB8M3F zQPJ9?UDV3Mg0ufAyzMG5AlMdmWW|5Gt0(COy+=KY@#XbUm6&0Lut5n~^y zHvke^dJrY_1rOKiTn;#1G!J1@stOJoM}O(YzX>Vmw%(po&CbrM`q?2GZ5;;F`FagP zivbg5d*_9sOY|hqhiyaC?Q(cGc?#$N$^Tez?9ief)QGXYLW-K@JS?*tej`OA)unv> zE){#v*(*#TV9CbAYu(&GK|N|Azm^;;D|iYj??l+j^sh45*rejdBbblxuEXwx^nPx< z&bIrlrnlHB>)xm^|0!CVzUTVYueI+<*~jajJ#bW{h+YKNY;el!Q7%PB!m$9-5D4qb zjL}m+w%(K5pw91LE-*Gd@?ov*a%*;07qLVJ!whGD>KHz`RdS%<#pd~gr<8091(4jd zKIuzTvnbWoogO%R!3V&Gu=4lPSdpAd!is4uVr#!eb-TltkvswS$!#!)^QD#hRGT2E zns(J1hwCq?3Qwy2-LLe4H1e|KkoUq*289m)u^4)uupvWwt5aP_hM{`+u(1zHyJ5~_ zq>MBXhpaGSn?H7eBsLn}olr^X5``bkc{1?ERX6zEvj-xb@8E&=D~*Z^6!0Ah?uQ99Mq9Q)fbMj#NMCT5&?rOE5M<6{2wrYpV@ z(uHmrUw`Sm-0XdK#jveU_bxBN33Jy=D4sV|2obIO_2N%Gig5tS=JW|)c6{URI zDrQD;BNHPRT5BE3h34c4&A{Ox*+%{8sXAAsBEGnY!+Yh*b}oJ=VFbtVY-ONCTtO8s z#X`kWMZId-JHGl?U#9kmKneMVmEk#Wgq{b3|FMYZPYupr7Cf&r8}eOhz1Ka%mAu(5 z;8|WIy!&{4oAF%VomG>A^(M-|zTCy(jWY9FCdF_^)9_kq?`iO zL%7ck?a}|Kq*SceOYG@OREvvnt%DG{VWQZj=G{xC%Pi*ZC`b?9AD-HK>ckv@w94-L zt-i^{ho`HwY;Ibhu`YO2tSc-@+|(_Or=OBeBm1I#-m5UgPW||%NbxgAo{~W&T3&&~ zXDJ7=Ol7$vHvW*>D{=)adP;4t?AHl|^Sm(y=uF8M&QV{Q4hj$djcEQl5tqB`r`pD$ z{XH6WckWR;72<2onPwSO_Bd)}TP+Rk^ZHsA7)37c{U=d=VQ z_0z2$D>fO7oo_G|=ls&51k4ZQ%fk(fUshIU;eB&8lh^7!b~P0j0C|*7pQ{JlcIDpf zTbs7}JoQuBg%^Ib*${-LMR{g-fk-0x!a?6@VW#Jn|KdWvzE`r}H#hKP|8C3V6-got z-JO36wh){-^GDk06Y0tHx*VZXeGyz|uKIc8a&xOpn6|IT<4Y&q^x(KkgnLWt+`C13 zq_nimP5zRzCl@DsmLNU|hRK&6Ra#p<8wWNg?4@~USYPs))T8~Nr{X0GG$ao;Gw)+U zMgsWB$U>@Ngg*DbZsv%ef;ce1Ou|txK7&3vdVesKC@P83>OvB{S61@Ne9L%qaj*4d zYUPXE`2`_0?O6&oN5cXbhK9XuU{!c?G@vjF|Mb;fk`*cYh@M*i-1Ac7ErL4=+V!>i z_&3u7u&UL8#;ePYVB+6gf4*C9zY-aKw-A#Ke-WTG#rTg!`YsWsD)k&#E`VJvs8mFlSU+SU#kVXY{O}4~a{&voSZm&z^!*#B+r<<^JSWkNB1UHOhiTf#FlrBiOnknBA{l$jW}(H! zEc9M_0JceN^C&vkpd zF@G<|@e12{j>aB({qfaw>Ga_rrg^_02CBwk4UuDBLr0py>|C?8>dc0RuIWr^4%JlZ zw0Q)C8Y%3`ZD=H%o@>Ndw7U9(;Fwd)_t6)%@R)hG?>${a$yyrRtO6UHY}1{2V;Z{! znE(bRG78GCY}jPOnQD7nK_#&UBx$doc0_Dm4q|l2&l&<#53Oyk_OgfECbb529Ywev*VywFmi9FtG1$H+l^Z)xhxkZ|i3-Nv% zuV70@(!#JE6?WGDcO(Kk7Lq7hQrZ5Qt8Q^sW$>_TBDz>BZEAKQTai z_9G5UC;4kiSycv!Fp!1EHJksW=vUaM??KIFD@+`u1=rh?#1Xs@3I-q_sHn`pW>l#3 z@8L)}yua568Ov&+O722gkIJr6Kwrtn_g)Vtp~PwyDd%2d?-rt+fpk^?rCc{7)Ni13B;>1y`~pZP~abvI`aDa3=5;EHQ|Qthy+P{Ic?QPM*p_@6NRZ%}w z({%FmZ^gvRB;hW=aq+I8Fw3&ige$K=u)^Dhqw$C_87xL1W&IZOcvRRY@oVqbr{6w| z&`@6aS1oQOm~vI$<^gYkA{91baocq7;N|^OTZ5VQ}^+#PjLx{k^%fUYg?s@<)b&n2SLq#d^B6 z%N5Qm%fcg3&`I*E)t9C2EwD29(m26ji6iQ_X`q)x-Fj(mv!usC+-#}U50Z?x7H1|a z%t?@^h!@iD`}U#F8L{~Is1b8(UWj-Jej0nZ7_l>5ZMQW_gw9EjN4jVR} z*3}iYvSQQK1hKG0_a;IdRVO_|VN7Nz?MnUqGv7y_3^1CV=%LG===mFhar*kEUV{^V z3}-T~Azz=W1Z$d=t`B2QoW=o3RcjOHf%oUKHO)izzE+pHB%9SgNB`KXI_R{BwkQ3I z3oBYF|2I*{e(bcvw0VAIe8(_Pv;?L^uh#V^QAdzsK9k7+09R=F`Eh z5!%w-h7rLf(;qcYb#!}OAm6Q~b#&LurKvUAAd1l)NheRJEhgAd1_w zKsiR{+t1gNM&GhQx-8uqv-a4!L_iWifs)isn6xZ7@;5lTyBjz1CSNK$ZpKksfE)C` z*IW43*bBnkmv1>=qYTj7SV}F?lV#d@h)y4)pfOR3EDVOMJ4I`=yuee7Kirrga!mNs zJCVnd^6v_lDCN;f1j0T05`(0?c1FyeOydns?N`e3no4}uzt!#{H%B|{^c6h9*~qjK zjS2v|ih@ygU^Q85GV8uK;sJg{@>(;~9sOg8&PaFrrs64LDf%F~vQ30;VG=D;PQYwq zKCn=X*V(6o@LDc0dhJ>~YRwdF`bD~i>pV2OcnSFw^bPGD5!tYO{!tDa6aC&_^=$zK z3{98{fZNd(ZL!($JC|7_pX6g=?Y2(lZV? zpDNVH7nM2>nxD2SCxxRhKE0FO@yU7C56}vJlm~!VwKZYJs%by5vPjn^|Ambf82W0A zQYt0>vFHUy^7B}$My`C$q*xQ~(9lf;vmm%qY$~!+yGAU^xQal6anQurJw^J0`WYo! zbK3IqSa z=DMjtYr5$$Ic|bv_cp5dn{3MNf=U$Cn^2i=FVPao$_g{OE2wn3vEs=VmxTkDaI|zn z%)B&IwI3Khz;7rVr~1LcV(D${^~`1KbB2Kxrp7e3f!eT;?xCTf_2aoq3C0rGB}QUa zX-45|n8jKCUL!*=?JtV>DyfS;KEe=Jk*9I!iuTj+D$h~AC;H;m{gkl+{a{8eyCt38 zxuCkH+*zR(ukIkNyO zi52R{4to!z4jvaF0BEu(Lli8*a?V_Pcg0NML;?bzJmkmsK`LchEIPGIhk9gsZ^EMm zmif&3KL63JfM4k!??|Pc_kZS1d!Y@v3VTAIj!((+(Hp~r)Rs}4Gfp07YB97v&s$o9 zOK5l!FkwF!_>0h;70|gK*r)0>$;`pTL^j5C#pG9)x7K-GJs$+34yMBL`f1B@`R!Wy z_4SdWm^VKqnGlMd{sBNYe7H`{bAAXgla1c2c`eJvKVCM?z{E!toQW;%ozOP=$fG_ zXmDLa8^6|Vo-j$-4v&8IxstAuUQOGuSdoA;$9bTdame&uSiwwK*QAGoQGpZUCq~y) z;hgcsee`XgLjo{LCTxz2KS|!hfy=_)!hVm7KTfr$(A>4#Bj$L$GVtcf%KeDbwuLHQ zTOLengXftm)jt*u-Nj7HzS7N&jXvjlJjnnhRPM8P&icA0B#c~(OUt?5)`!V*5V7|yCm5O%E{<^j+;8jMB?8yU*Q z`zhph1Xi&trc4{orz|)_DgXf68y`4qI(*2~oh-|MmCW(+W6Fd?C1PD_FyxIT9q8m!6gkO?H@Qf6|S*XXGj#C^G)yr`@$41mdD61j|$nH_M+t7kI zEprg3ooi8CN4Y-vm6j=JOWZ*{y7z^=gL>{c63g0dSSz)?Oz(NQesbdT`L5)FV<|+WNLTv<7@VLL47aKM?vqL@%n`VdeBbtFVE~D#K$08;p^AqO> zUkL0H0`0zj&P#&XjV`~)Gl2lC*ThU!NW{jyJX&#(`EW)j{ruCQ7Fr72(+X1o-rs-J zpMBx71MVAw6>us2V=;8_i2fBphdP<4?H@9N0Fj-o=(iVl-AU}GM%Mv#t0S-cFX&j^ ztsA{3LWG``SbtdhswGcispTrJte{#-&LY32!TALefhToe zKGh0+F;l_(!wNC~b@Kfm3p{Bk_IYC*2MM#jStcmekBlwNILLL`#URZ+3en%(+WaO)Tm{EC2TPjO zx_Na3$0Fm!Gw2p(kg^BC8yh`F`&ffCFEOIYvrRKH@>b%00B%B%L8RcPz&F2$Beltk zDT9+ecx*;}((B$Xcz4H4lCPP68!R-;yBd}u8JpkiD&T!d`osI;$l&k}I zoiC|_-O6=VuySzO3m(S|{=Zg)&LsNsi8Wz9jwU8q%daQD;o*PB+=nG7iSboAP-;kH zTM1_Q9GaQs1B2#+g8Lnk1lZwy6Kobqf>5QD5PvdUDtg&jcg8E~g%EdxYa9;G&z+e2jI)l5t;=(z8fu9|7K56*F?me(WRA2O2QjM@O>*y!nx;eZnF@r)Nw*T>TmQhiE zUl$*c7!YNKE~UG>yE{j^OS-#57+`2nxiEp%5=k}I$DTjENvMXo(M zk$3joIs|l>?1PG`-djMLb_aR?^5?di`);aDR5G z@o?FaLJXkiv$;1SGBhU_XCka8T|#iciN{(4WpeE378P*qG(SZ73}30V4%eC`w{g6C z`C@jz!btF{2$J4bvk!0~0DyLI`mN7y2q;ZVx_* zK>O9XrGSWp5OZv+`V60R!6IX(wYdt9^CR54VGw^@CoXVUc*T9UX6#ZZ;dv!27 z@7AQ4#wahUREuq9)sNHmu>glwwUoH^`-jsh&y{aPUaIp0eO4?R4z=<+Ha50$1V422 zVHNrTYgTZ0auKRWu*c@(1m(T&a;P$zQW+i?5U%qc*F!*AAr2^#6h-Y95FnmJOY`{< zD?DeGERIhFR+8rRXFB!ZVbq(hzkiVy738I(755hYGfFDm9hnz2s;Nu~t@>S*T%ug9 zVJAhEhwX?Gu0%1!t>XNq*_i*G1(kn2%LI>-(62Sus~{9~Eh~*w-LaVA^9O*`YH}z= zP6fyJJiP&uhl8dMfG1*rN_-t!R=eW5rzsJufxx#`^9SW`|E&?fRj=v#3F;wIIfKU? zHXMS9%f~I%q_V53!6zdoVQ zrha~2#>?1|P!-epI!~8*L!LOQ5;Waxl4lk!II>6lTBzBO+zP|mHy@FfpJs?DxjoYV z^{~>3*4Y^rba%Toa7J7o_AoLF0d~RRfzxHtf1ST z>sx1sJG@KNqf#SG{KRCr%e^ITI%farGsvcT{e~s4+UQJ1Eg=HHj8T}v)XQ(J2G*#= z#>0>NE>VDoC*XvR{T4cObl%>5wmU>=et)efsk}JDRh0!~A(N$}QG*b%(e7};#vS=z zu0QyDdCl|f!yR=fbUY&PMu+P!eL#Gk= zJ}e^re3mi3elz}(00NYf&q^Uh8Hn{D!DxYCTNB3t z-@?G}EO8(!pItuOPO63S$Q@f>{fOmc`(x-w%TA%en<`243>k=x+L$RH;=Y82{r$Oh-}K{_fs_K2IlgBzaB8t`FWp#F={z5J*qYA%8ZcdqBW*Oiml|U_echc z6w3#QUO3gs>A>cwrle5w5EGd9rdlqdrj5|tZwzOYY`Vb6-qiM&=F=Wydv%EV#2g`M z%LJ;-ato3w@#kyR{9QtbuHa!q0<~*PZhZBh-@uwdZXP`A*_m(J+NWdZOaHWxFJ~h+ z*uK15Iq?>IrFoaoS?k}u_Tm9K6+>Xsv~{+U4te$4ocu_BXbgDNZ+^O#*uF zrmq=L=p16z-V%Yh{9?^d1LX;o)YG1KC>Y4(u~G0V`~b##Jq8f*eB!J5$<_&+vS{Q~ zZ);G~^n0D3dW<~iG=0Z0y-$BWs7@hiF3c%&+1A6O#Ps~(^t-)ao)LiX4YdYm=RYl8 zczMr64KOPbxh*nV!A3W@J`Aee`Lu{ke3=l%N1<_ix_Z1$)_*~Rou2Q4fwe%>zfK=- zsimi9Rk5R}C&<6*q;slJ|7<9ERbx!9;nCtuCU$8u9`+^IywL4 zyQ^trHTq%U(_?QtPApFmicmdzMy+g|jvUH1Tdta6+}VVI8dijS5h8XL4u|v3zK{K< zg^`Wggq8J}Pz+4xqvDkF@w<*@B3U+*S6G1Igr{4UQ00qH z&FwMon`?KLQ22Q2y~Cnwe&k!{J9O74lr*Lm6ERc!>nPB#Lp(7`(B=X3YeXJqVA-Zi zsC$l0i?sx<*!k-npK&jPS1tbeU&sDgITvcQbB0`&R>xA}RZy z{0zhM)-OvEn!z-!!6ablkOu$-6%RZ`@@K)v1+uuDTUt%FpL5r@yRm_t z=7PzCSEz+S;86;IlUd2-soa$9B3rZo5D!2Os74`s5Nl~`a(a#p#JBH4$?<*>N0Viv zup#zaH}RhqQ&|V9P>cNHmr+Qcu3oDuoeqe~JM&pamt=rs%@^X~pmJ@{tYMH41;DTb z*7uhEqtmv$o)$Wyee~gMQu1yGX*{h-4~8l8&!?;cNV2{e)ED(RvnwZV2ogRQzs+4%m$kA{pY*N zQ5uZqMZv=0$CL3D^6!*??I--{{A@TB|`T+2>A_t^owNV3mH&cHw?BkP>~s#u;+ zg>W&GKaoFaaq72w_iByc2hlnlQVxv{9!r*@9C?Du%9M8rqc6fMfO*dBIp0=JM|4g< zY|!8^SZfYYeA1We{oKrBS%$v_8rw~_8#?&gI$JI(*p5BA($E8COy11o4KwFy?>_<` zzv?bje5dR@F*&+hkM>0Pk)UDcTOB-mKuvH=N^}5~M*XEdM5$MP)3FKbx7wD~YDVBC z=h&&=Tt0Sp!4IHN^5aQg5;YM%ei1okE*e1Bw+6wCTO<-3KQ-poq^yZk29sVypVmT`*6`s4^okkJ(& zSsc?KvLO@{#1ZcD%Dbyl{=EA(3BpY?xS-)XT7aH5;$i3E9G#9^Aw9iA3t-98lm(@4 zrA{zQ`)DL5b4)F#e3Ya|0?&x%k%NM)oR{Co<$1CEFltG%CSkRwgZ-JJjZ^`>7<6B5 zDNU|(Z0p(%m}j_i#5RxPPKxRC>wXZ1YQ86ABb!xoH}_#PXxOvDix=I?FQ=af6~zjV zJGVnJB;5*xxOU-6;T8LskjiRouoX<(3cE}Nx7|Ojip{6Xf!mrzYL^q6>-yv&d38I! zy;#%rmZCkEZIkprPNV;-3FAvZW0Z!f*Y6pJQ6v^|Z(H(F`FIu5;>w~w4>4_r(kwblpI#vjYYJzE;Z)R$a?7yY&}`13SFj28qBaBabnoc^37-ufH-j9cKR^eF z%i%PwDtTMbCRmX=5+U&a-_Co5k4D7Xk+tqNvuNk><83Cv0?Lv~l}rp3=btyvhVLP7 zfGQS{q#Y&P-taQ{5sk4B5Aw)?ST7txJL4zA10wDCcgQ?7HezfEjWfZ+MXy^FDJmMt zg08FldbgG&VD(5j+XI$(*?~WL!yH|bSW>YkWVrkkXDs)9E5Vsr`W z-)t6Is5ak32mQc%+g3$p88*(&D~SQvUn1J_a&F_keQcOI}9jg4Z-di~+M9b5Vs6>d$zX)~z z&6v!${R=mgq_g@Jcnij!s%I>@^*I4{!uzE_QMfsOD(;v3#ik~)#9dah7ZEP6isSGyY!rR%L1)p0{2i;ZwS+gPS+iwE2wCQ)x`seKVDUMZdttOvJOXQiG$p#8$OVkfCH?BO)d3 zDg~JRoq#?nHO=e#z|2U^Ko_sH;KiE{&k9}hS)iLK#(8w(QLXBMW+QLaMbtHlC!fbg zr?{vqvyD%8lN8XX6euH;Wak1t*|)vX?*DYJ$n0tdnfB{CnZLrg}l>Lq13YTDbH+(9x-01a3Q6hLP19xt9IXEal3 z&~doGM~!-LHF>a=N*ipdOV2+C^){Wym0jq6Na#f2g_*L?k_>hsFeF9nk>-PP=GWBp zU88DHJP0J;YuqujIV_sw+xYVIRC2@IKP`~fVnuA1Ak>zMM(6B&aN@3r-1k9XIJ6?C z2pUaOlp}j7%Yck^U|_J>=zFjvQ8YFz%MebFT-PIvDVC&20vHH3TSg&c9?=uYTJAEd zTiy6KyL;G7K3?RPXl?Nq*aBG8Rt2(T>|Rel<6w4fw3lLNc_;du*q-C70D~%YY-^~$ zKA!b=Z)b(JW9uzie!^R15R7rO@rjC9h(%mMk%>iJ*6hSFq@Z8yv&|SpodZ0Qk=L~e(`yDvMI%}^clN61&xyb5xXkaa=`dLtv9ToN z#u!M@Zz#tnMB;MC(-hV!@f=z(pR<|hKK{2xJUSNUDZ|di6g1@qMfy^o)~HsMy z0`p6-+Kyy?sE?fqIfS?{-OrQGw4^{Fl8NULtZBFsaduW{;Y>1>N*GeXFsz?du(|%V z+b#R2bIwquL5@W)%Yy)y_&rHZW5B;iv-l|Y+B4~7^hEMBC)VF{9ZA#$xP zqMFKD+wv)q`}&8|ozcW-_YC85YVfjw_^Wq^}I&vf( z8;xe8HsU&JS=73W1$LA}jmwczVp3z=R;7ykhJ3yQ@aS9wrAEfT#h%)|eSCZjm#e-I z$xX}BgXjg5aMbyIm~833z0s!ETrBIJ{QL=YhCgLob8x?r7f^t2!mU_N&(^`B_<>V1 zyG~N~gUsB?X#J`1ZI&j-%RIjKyHU1(M;#L;|E-b7d+K!=iHpHPA-RW zK#>Zx@z{u23gzOtDme$GKj~2hz(8hyI^f!!hjQY!EQ?vnQQ}m}UrjSha>_*JGZR2~ z!uy6bzkKjC#sI@a#uWdQ5G)6z-XbMJDY;SRCYG`NMslku5%zc*MoLxoXSJJk)5m6J4EN>sgG{G95B}fVce)pfBS!*nYQ(~8H|9PJY0Bx;yw=G^6kxT&MphO zL4`al4WKZYHsx~A?2Hye#m{CR2tFR5#U(dTw$ajtXKtoC2L}V_i2h1vz;*LYyHAs8 zt?$0w7f+Zd4^$*1et_%~DIDTGD^4v6a9k-%Qm#|D~UOTuFaE8P)sV znL>n}aKMRwDrusb@ZdT1bzjQwzC|r$G0vYHEc=CAC0Xz8_YWjss`T}{SZ<7LTkX1e ziivv$TTQ{ABss+8vwLh3*pygwb9W9fh3;&(9*5<0_ssr&Np_7IWoG%Rbf*40c;vlV zBI8_H5hL3&OKvSTre-ffQ(2NNJ_e{z$DfDYIA}3hESBNAQzpb0c%g zGqA3YVEqzk8uBWJfo!bH$kxiP^!SFIM#W# z=<+JOM80HK#U|>Jibj12usSLYs%Wonn;3)jt&FSP6xnTU9i?g;Do*}v6BYf|x56?1 zN0%RoN_7Vs;#GS9UuO^t$yZ^RMD>Kc<(qo{Zi_7Qt3hEmp#HgHK1lTXWfuLuO z#$Z`FjXJ~OI!3j(U5G&NiG=?)RY_ld zG@ZY&s%*^UR=^8INo&Ekq$#vZgTfkmV=diRZvy3G4lfH>DzYtK(C?DFe`N_RM^ z@|o*O7;nSpw3lj0G%SK%iF?f?#-BgfHwn%P2T=A@_Hz;6zO&XC@D$ra=H21xXw!W} zRV;+^P=o`)vQh+DzlJD7R@}unr0EQtI)z>Um}}_zfqJO;OS2=mD-U;9l6MD!%enh? z`y5B6FFAm@@W#ERS7&ZX0u^Y|^A|Y{D0nkwt4A%lO>fZd9xU5m%~fA;;kY;oBhgUu?P!^j|YR?nirj1LNb(wF_C9cFn>RFRNR+!k#vM5EllY zWbeKdRJTRGRo$Bmz00nB;|#B(%)^u#tE^$jl3fDYO8s&u1(E;L!jB``0w-wh?X%X_ zF6|wvo9i{SjAX}1o0rgx@Ixm5^nqztuO+Y{qVpxPv4i;aSuXIQYCc3uKWbSvlmu4zJZ+?pGe! z>XFceVoDic|J!+&6#<(pR^Ic8H+Ictq;^8*A%0Dr0iPUT1y&!2|E5|ffbdrAz>H~& zS=bYzIA*1sK>x>so50RMMCX;6Shv;a+``BkwVK7UsOPJ#eeY8@wEk)FyJt*&*+4f! zDH4Rbeq`!eLytfU7%ya~=U4b9@6GUs^Q7fK6e<)2m6zGo)}yB&&Pb2?S*- zL075hIlsI1qCO#<*0kBIfqnIpX;E|wZY9z#nQNbIIz2v{ED#Hb-|_9aLv)9EAPTTY zXh>~;_@N{QQEbVG9*w-G($-gC0s#AstxMde*Nu2+hTAb#M0E}XlXS;DcnB}jMZ(V+ z)FTXiOJ^!}t#*w;mF<$!s`aT>x2Lkl(w)~O`B`ucLGAlKS+%%scuTY`PO2-rJmMJ|ki48G-Zv9gHU84aJ ziKewnb&>~u$Tz}ME&NS}wSx2d^QMw{weyxccMs#CPE{^*E)Vy+yok+>)tjliwpk05 zAAj+%z*=gwjP6m4R!%N!xHNcZ`tzc35znoV=piyL*i#VXj z9^HxOMJkp0>@O2HzlS4Z%CMOWQ@@>@wh{t7q7E-tlV|P|LEHS4AK!k1y8YAQsuyW^ zFcJ^By>}Nn@6!@=v8@$Cpfb5!WArHCrbts6$O6B`D1E2_XR!j>nkZ0DHZVWFaRIqG zE!P=a!*I>C)BL*pI>DC`Cg$d052d&{Ew)&9$QV##&QmMd!}Tni&V z!xIcGY5iJH!Yubr3HVxjN_IU{mZlK;e1j^9PU|@Qn#%lc{m*{BvtL1Fd>nBFjRclo zoQtBh$uo*_gQyZV#;rLSJsjGS{(T}Apae61mGi}bec{8pTc~?TNNEUZ?8hJf%}0J6 z_r_8_`aRv6f292~NSNedP-Q(_PhXWj9M7P3O-O~8c67IPw`JdbgKU+8jZvSIqG1^K zfSig_wfkY;AKF+Wd4B-N`c##dE8Lk_?uy)KVQx~aFp5|C?0BfuZ_8A~CN=u+xK@Wj z(O-{bPWaz()fheA3a-BT72z^*%N$r!#%Nip${NXLBQF(!wEcbNPwj3EZCK4)hX1IX z0|lo5Qj1RB_m{^ zSJpetYv1^o8e13Jr?u}WO996W>fZ#WLDq0xoCI>49*#h$aCjB`_N0%K13~Fu^JML35uV6#%uhF0QtBTpc3p0|lJ_ zt&z~6X2bki!Mhb#KcqDSiA5oG64kqIqem`I0>&m8xPKy7d;D=N-^CSu(P}Nxb81IO%7PGzRtSc`aqN z5C62l1j?*Yu6FB-`@8?}F?C6mNwdHSp!9Z&FYsUn`)t+xwm|Loixp2trXJz+<84TK z)baVRC0Gg2+afw^;qb-{pIS)Ea&_IZs33p>wTAnLtL;lOSk*#Sg{yp^sU7c}_sZjz zosg(xJ$%rBmS*C`M(JPLqQ(}u^SqC#bts(L1IIsI9?r#L%Y=O zpH98|ta&#TlK4`_$RBUzsA4cw9zBhz!+qO3*QHGb<&58se9XWXpzO%*6Mzb#3)$+a z<|WJi)1qcqB02)}ZD6zW4)@5f?{~sv_qF%c?&d?#eiP)lSeGQJBZ=thHLcPy_A5Fn zP;sLjNgjC&$Ppix;w8kkvoc;lTFi?NtFfC0O?-q~THDUPZKn2Qbl{}v~S*)P+R4CLM`?LZx|3NrEn+Nw_qC$;Fgpqd`!Yiq!HqFabk+jGZr zjX`QR`o4c!60>VjI$l~E*_OP zuxpScR7{x#(ODDY?Xb9kfx*UtxROtwYq990@w0oMp`Ckh)2NK^JZMSh2djIeV>*!7 zEal}T)r_}?CC2RU@RZ)tdcAf)S@bu08BVRl$wQ*BJmWGgV*$^h-oWHB^ET#Zl_8eO z-oO31{7!0~M8fZ^<{-^oykP8*)@bYwA@|bA2B_A*$=@YT_#nPHEp} zk?K7N@Eb;sa&Bh)#$ED9R@n{GXB_?r@l^Eh!XI94sG)kO3}R7WmEcRju{r}8MLuAC zi|4~G@|7uoa%4hf@|S;GfK6QO=`K0?(2~|aAO&w3z-w;WRAj&R04@dsHQt%B1qnnIlZ8~%+EoG zWu><@LLd!03{u=GPQ!olKgu_XmGo14?2`hEKxKZbLAa^w&*Un5|2M%F$emsMklY=7 z^>DQZ|M@AA_rv}_Er?H~WwbCGG1!6%HQExXbx>#&c+&#I7GB@4`?Vh;yP?Yh<8Gl3 zyOIyblrQfd1|CN1!>*-Q1Xf#R=f%TLGh~o(c?TC;7>Wg~xnfB?Xz$8%6@!+u=0Mh+ z%&#}&QwJI}%3u6zJV;KrUCB2FF3WWLyHqm*L~mUp#z6FmyN3IOpY(;7R;JeR4K$)O zovwSI8C-5`|Ff&C`{qG0gqsNu^ol=en;zp9&Pz8~4UA7>_!u~nFPUTkbD*+0g~CYL zvwtQ2A_LOBo_ix_y4(_|1(AEF4Wy%DOqK8%R{5Pq5YH!Ki;tpeQcE8W0=8+83)TWR z|NJaLwb1#9UpMOb-=2z0oy~6$rwu;cH+QWsM3;s%a~6nK1-JoFo)Pw98(e)y<)ZSK zU%R=!L;UJy{7q`H*Vaw-_g<;$~z@r-ou?F&U_ad-W9?93hfSlceT%t4pt3y zk%-#c;$=$T*oRe+v2}Qs^_*yZtGp+Tn;?!Oq&3vN^SQKGoVJ2}-Cl)@G3c4ZP><9M zmwIRqAN4AxDus-DAC*L1pz2bPvr9Rn%fiSU5_th>f?IySkuLQ#k;DnX1>5!gjfzn! z#!F3cj?6mv78G5C;p`W(VD4sYEE#rw&iHg~jr#N@?39r*`0N=EGDmLeMIHHNd;app zcE_h-~QyXGgKyQ2@m`NuLj2`Z#q zg(5_{RXrr7r0Vj-7_~NENB?ONhqi&ah`1|!y4R0v-XQpqAy>Lf`r?@mfv9|c_E*(F zR)?_DkW&+!Emn3jWhH+(ZN~UY=lN0}8g)2rR6In`Dxb3aSLJV}s*`V%MgoEfe}+e2 zTEPNNHU?hQ$?hal|2T6KuCSVAUo(7OR{n*AE8pEnf!$$G&p1WI8x@Sz0ZYvgW)Mne6^4E(ZIJSLAWI*+c@bH)58K`M%OfvwIRp`%e)U!C zyi0?1f-a`HEi};i<~dLvbpGrO6z%wmljCasuKPOS={)vH{T0D*7xanYPu zX{<1ssPP!Iq)eCFT9D2MKV$Qt?G7|X=P2AduldRP7SpFgM3_lEq7`7B&9*$!$ldlg z*QU}2jU$c5m7jr%J*n(U7~`AGPqn(-vUSx^FicRjS42lF4={8s8;#nKSO%!9Y|vxZ zjo@r;BDFw)idw<0`h44i+yk^Bv%jbIQ?jr&d`tziIj93)P4}GQa$CSGoTlq?WWSiZ zEL}LR%w;MqxKttTikGkI^r_&n{_u0}i2#I8#>7ouS2~reyQ@1j8twu->A7;uUW>q- z5b;%UJhaZX`XT#{PFhTiVj+Po-BuU=CVJsQlLm&0t@-c_4P~#iH8mS7m%adhihQ?b zQ9Z3&e<;4{dof(_o!0PmPA(PYUEbDzXRYt==!hF%7DRpOACdbWWb5fCWXcxH8R-oq z@=pA?t_a4WINMFQdKN(?iF9|7vNeI|!V06*v^dJu)}RtDmoKX|A5T-+2nTJ~KCeS|z?qxZ6)iNaV(#(%8lK z4lt5iNNIQBjv1qwHQCs+^v zhernUOL^~;F*1^Q0Fg-=3-gYPqs`Q{^hU*DU$M3IUR#Vazqho$n+yu%fV_vU^2{I ztBkK$)hI{PD^EE+?t{h!z*ud*uTqb{hN@~%4H^KDtxsM0rWts5W8($f6v>z{{_?*A z>9FLZe^ArIdMPd^C+BkDfXqSf%Z+v4PVzhi@{IJguDi8smGUyS?kVo(Bd288%wc=j zmD}UtYyvAV^r5uSDUj_&hE800!)S~Et<&v4EpX&mNUUi0f{Hyx9Zxl(dfG!AQq`;;zJ0Jqe zBb4-8O6ik+{Pu2^2-I)YNX651^$k~C*+3N^yZi+f@=NJQ?J*GG7f`ZZOTeOTz#=C4ezW!FFllQC2CMj$M30p61 z_o(qcD6)owV5aCL)D}B`w?KafR`2$|Rgn}4lV?HuNmdRu=F*yvC&1IVNKRv6e*Rkf z*Dpr(@TC@)X}(#zCdb^{`;Gh6&a)T}rQaGL$9nS3357ZkRxUAsKEFk(cm8>#B;jETkkq$@E`-^C+7n>V;n=sXmG zw@Bxtt+Q46?c4b1*I^*jF1K-jt`Uqf&5hkms1Zn^pY3qDle+x&0FT!Y;qYajy3CmU z9KflrxUWlm<{8uW4V3B-=^-a~Ol{&k;R5N6nRO)WK-NUy<=@>YQQK!=6kXf--d1YY z$jyqXsH+f!cg}#~@~9|g1i1+=9O<^^dj4ibD(RmVT<1|&5)1@05GWO%A2!WL3~QoB z3oGy>w=^GV-(ULky4rp9<(I22IkS$4h}%cp0T4g%FQBb_Vg#}njz((9%>7~8+rF}GuSMYr?LdUx@vSdvrz0`aO))MgsR zG5H;&tGQT;#j)d1(t`Du%IR_xGYPTiAi650YVWgc>}(8k>Po3g_;sWkZ@nW=(nL%7 zcb;a)!KpGPG#oHOD8|>a$wrcI*KjR&1^`O1D@V&eEwETN2v1PlS!m?7UY|oxrF?sY z1(#6d98>7cUod)3wV>x@zYS26xotZZpc~}0<6$Lz%uC1Ym6c0Tdrl+Pxhwx#_BFl!=Sy`GD_FyO82^}_u{FD(db1&a?)cWdbCctK z@!FT_+l|#l$Jv5>w>Q<7_xA@IR?~dyz|-~KsFvF55u<4mc$U_D3@r9su79VKasi}- z+6v?zkf9TrzmllaNwaPlv&jxU{X=QmbvJ={_#w$So#!$kU1KFtP(hsP1&we*Q`ZAU zY7_$)mWewu(4F6%& z=QNX&S40 zv1ZnHgKC^y-Rr&Dk^U2*1MjGc$({T&X$;~H;_U}6m$Qoh{94zm0o$g)2sFaJPg3?g zyid-#ZU^C5Gk9N+nV5()xvn&6u^-+avXX>T?Ml9+c!ZtLN;Rs;7Q8b_peVmtmQq`t zmKm0bys~UI5>)S8LtNxsg?5@5J9TRIUZwQIN`khz$^LkJ(K{h6$7Ag^0Ws+HznDrr zryW|=IZX?{T(~b6H~T)FhV^f%E8sQUdh^KLZqnBF%JknF;Y5P|+a1Xn^agA6 zAuBV~B$2kV5K}>)m6i)T2&Jp*Yst>X!pHkCvqEuDLku|x6pZ~nsf><$M0;hlgq(av zo;Vc^A1kKUX9c7lEo2>8_P{gp@!q<`1gK&qC6L$TT4cy&cB9gW$3z&eCZ<@GuS?I# z11O7i!|5c)m~VN}F!)e@Xd%Ic{rp%aTW)>urZSBNCn4ZKlJ4Gkd!CuGDHs^I z>OkgENkDs8OrA)` zk`JJx##v2(a=hO$r{scq=tVhg4Lgo;<}^{#S@8bzhA8jRL#11g1JAXAc(+ z?rX8@CP^eh$TydMYhXYg0*TrO^uJkqOg3+ti+D8GTmJB{vWhsEz`y)rPASvQp ze|y;;ghzFL@zxQ3ob!?U`<;5)Q2TT~m=SLkGsRQJrWfpF*0t93-wcrq-`4)E;}9o; zIp?Fys%((pxzf;v~MO$wI~MTrYH2qeSFQWT}B*a)@r zvBco5;rDT=<;YIkwvsD=WECp_$vPr z&>_&i@f^zLG|!YE@07(-Biyq0l`Xz@*h1CuVoZ;;$jkhCXIC(3bUVvvhlT#Z3o*SV<6#3)a`I_qrH8sNdS?!T#UMFxobpAK02V|DT>87ou#s#EO5`&#UGci6H_ z+16)Cf+6_Tb^g_5Y+v#I%bz_R$xM_%0?A0UoJs`T$q(d34$_cD- z6@;z*P?h<-4~Uu(Av=dC`ljSS;bR4x$+>T5+wZ0sk%*q4Wph9enidAeP_Em3L87sf$q$tv< z^MABPw{};LW2H@D8N*^zjagIfvbh&ga2pJm^7^RTQa(C*_u<188YZ*`lPGQQrH z6cYM5aU_yh6fmwr-@r0@OXsD zX*A`I*4x%sB$a;fer$|2(rf>mmVN}j1jKrH7_oPiey)Y+Tzf0lAdhAL;F zO6Po$MYgG#4=-Z#14c$ZQU;T&xnF_`e()mLfqerry?!%tmE2-J$D(E61sD{Sb zZB_el5y`c@!ovJQm!%4$`gtGQ{WiyCyV;igS-8U+X`7I)4fs*eJQB8gmulFUO4@9# z^2?Nf)In5!0>*IhU1wVHr!$e5PeQMm1dqtoDLZ&UlTG|59|QIJ)P+&Vr~mk!+uQp{ zaD4vrNKikSZVQGM@8}+koLuy3Mmk{?{bGsQjo{R)0vUjG zq~gW`+etG9;gOWc+{}=kj2SOYIZuFgdi~#yr#U~#d;PFe&blwLhvVa){G#1E*IpqD zr?2pFl=7)Z`ktw;g8oIkbn|icF&URU29)jVM_fWvW+q2867Ws5asv2yc2MBIHDaUm z+d+7#I?gr)Cn-*kJiwZVS-Jxkm3k|Kn8RiuuI9;V^Ja~Y#dI*mV-hE&!N(lVXE;*()fUG-e^aA$_q6=mZ7YoWlBnF|C-h3@qH^a^ zX*1162k@PU7aN6cw-w9-jq$D)&=8?Y(6)O|_gN1OJlMDLGwE53l8Kn+5t4LA4X$*a z>bm%`^_&NIsBA+8tQ<`fj0Vl;4e0W1$v3@0Ui1vC?+cMoy9dsv<)^mgi`YJ@%G80F zzqPMDV(q1ynub|97~X*(GCE)+DjABwHF;BXLO5JY)fE1Qp93 z|8zs{OILR*q5o^n6C-;%ZUv@($Rq*WzV%=0QCD~}$3NYhLwqkbPIybA%SzwI1ES(s z>Pm{n!l?t9&xp%EK>t{i5w$PPZ$Qr_6DRko5>>+uzGTmM%V zI%bAh$?}3cp1_Eo2^b2pDuqAjB{VFphVKft_%V(hK9DR176>qxKUYGN0$J6)Xa-WJ zaPj>Z1;27PBF#vqcyI^^@hzttEp>6ox@fevh47YIVg%ad!(4L*ns_hp%{z{qQ{*~? zajTV5f?aKemeM!Ed7-Z0?-+wSre$S5CHe*q%r*Sq1jTqh}-$OiuE`T;0GPR!+WdxiLaNBGBI#X2^6=HgLt8r|+CD z&;K_!qYz|;C3Eg)M3;nb$bQBfj8Tc4G~xZTRzluz8?e83OC{Cge5yuJVtd|3Wx2^V z5T_iTCnJa=hpIh)VIFpTbk+5AH^2N)jLaRg;d7^DO@jF(P2C>6|K%oqDQvNk_?mh; zHO&w8c^cv^O_ug``rnLu)T{-vy35!u#9h-FuM_2+8Pt%@on_cEGef_ii=+idDST+{ zVHS6TVOGsv`$osNV#cO)n_uMw=MFn3*D{U|xBMztxR#cixiy2=EJe@I_3X>U5nG%m zLxrqZE8ke%P!eNK*9(qU>|cso|7v5Yn?4Oa9TPvzo8J%FC`Fqr9DD2*=33KO6{}34 zCLUF@YyVp#;m;#jv(N3=w;i!ha_V$nQxRT`u^PfIg=|&P9{%w3_466blx!1cI(+|W zqHO4(Kst1X$9~1UMONkD5V?chPB_yqZlkmxf}hvG#uyqnt5f1x9$sp(ak0ntjaE6u@XzdauhXxS+ads3 zS{GF1J2M)WruDJuxU&9_8+PuiS}@92mYbeS+xmJFlu?AV@92LBJ%!9*3P`4SPkdbw zQ)jZ}7$MO};!_Prf%HvbCVxz(^fRSI1=*y$#(S7a_cQ1427uyvNj8|F7{a3qIyveu z80belG`=s0{dZ3lIb38ikMBQFn8Z(4zbp3;`Hi__9HAs8d!uwX{qa;Bj;As*s2A`H zL(R@-Z(!{GZLvj~E>X{c2>a&y=(>HX;bK{j{nQ`$!me>gOk?!VjUwixomCD6P}lGj z{ywKEX*pD*dX3NbMd>o`O&0jtCen*A!~5n3c4hI~7AUp! z{oV4RKBq&4#YcslF1CfqKJ4+IH`jS`S%bcb|~ zQKMVBTR>V$0qJIRcXu};E!{|WcL=IMgR8Q5j|gj z|4aV$PY*c;mL6sJ2WC2!XP#Dd2Z#T>On--}KeF_FivJ*kZ~YCeZwyfwZCYX@PbPtX zYMgqstWkQ69C{6~GN>B+^0-g_uo{gbE|0vXIwi@NL|+o;P!_|-cfzlLUkl(aXgkTypuBuH$&5nVW$9vDj>We1|qQ&yHmn)Zqk=?dQ#~U~o6O zGh$${7+v8(D;lndY4~)|ZzTTWyfuN^0C82F17+hS$X*yOTzHSC$6Ks*H#<}D(=iZz zleScq3ZNqV{d43l_oGB|NGLEst+^CWT8|+Uk*pZkflQ z1H=t)D3phPAgN=>U7%inXkJ!QZ;x7X={i0lEx74zY$NS#?^B(+vlG}w>Yc2eiK1y+ z>1V4GywdVRqMWur?RaRI-5tU7nI{c81qOZD7dT75eHHB2_v+$l6*NLA3MBsqII0`Y zdfsfx67{qxts_j1ze%T~^9ILqdVaSuDsSTR*XZ|g?;DmdOTe&~noD6u%%X>LOO*>= z{gS7^CB^zyaX9>NTV-#bJo=H!Vq2170`i82ZNLeqXvSCj>oC(!m!*uerf5{`AEwEB zIoB?I8^NJsxy0sh;8)if+$;fO@@;Hcf!^=F%n_uO|LOw7?axDz>6L!OG^p{D7%gA^ zm3j1gULuIWg!BgCs0rU%{&J>-Z`hplC-p|v$E3x`W|1sOc*2}K&6*}WkX_3NS!d+! z?lH3%5Gh%#^i@B&;bJ>oTf&`Hy5O$j>HAXO60uHdpF6|Ob*Jn5tEob{3&_Z78}{ng z+m)9gD>qlQG`9wRHGxlKEk9m1j?Z^nJ)>N3Kl_yQHXS4AM=jB(1qV;M{=v^-Ze#l~ z)n17$3w&Miy(;H~@DRl+O21%}IAQj=ZzXT&br?9yM8<$lf1s&qljSSJ2y*ucfU~nv1q+$l;LUml3QV3WsrBt z%dAFfgv7G1XGLQ+%{&ObXM5zw?IHNEetBuDDb(Vc|BD-pp(Z3_vq$iey@LB|;$xS~ zC!%)@pJF1?R1tB10`>>%hD-}^Mshw68^lYDWo%GrP5?+J3MkbMcDhc|FEzvPD#zxn zPV2?epIWywN`5QJC3>HTq&GV|eMQB4bQkeHdv4o%nvHu&13(!i7?BDoYqd*j?QCB* z6je+8z;o~P)pr#eVLtfB&!$ZYff=_bZW4GskmU8-gfJ12 zLVsY$>*^_!wT1kL*q-nbwOec%-0-E+=Mx7}=O+RjB>VE@S<(O2&cDeMqA+qU)n;?f zw{h2D?JA3z!^DXr>_=0&W_?qqnUS|qsh9h8!zhM*CK>Kk^e{>i~=EM>)oGaC^FL-Ac z6Im&z0f z^`sHTl^BaPN*oJ^drlTV<0@C`D?}SJphV<%P$2XoqMH!n7bD)Aa*)Mc(!Sn@|AGm4 zv`yVa?f$79**|Yw&9uK~HT`+ZJ}LTme)e_lx!z7!SEI4kZfPz^%XOu`Y}DfF#jX#& zjv!(pwmfxh!Usf1JKV^l^ZD@YWBi}Rz|EW5*NiCv{Ti!8bQEV}8JBE)|J`c|sV}EW z7^^*xE>KnHzLobd+XboW^-vE;fY3Rz^X%kV`{@GLc zO?6>*1`>WTa%ufZO@5=5YySvysG?M};oN(=3SAE8jlFmrU(}elfki;Am=xni0`4k- zD3?b?|8zQvOp91L(~pR8Y?LoIIB6Ga7%PQ0vR{+|bNDj;ARAxwb0pEUh^1wQI#t9H zt=tcuEOgJd@oh$IsrROqQ-4plbXGldY#!E|czIu9HG1_aTANCt+?;KTeODLX8O9hrtjDEk|JB6< z0aWPA_C5@@{q_3!@20sm=&S2x#wjrOwvm>xZeT@x?x55{41)s1RF7j23g-X**=_M2 z)T%L*WlGpRxu|%Zs0y_R-FHVvI_j7onlgBc6Cvme-kp?NEKp|b6P})w zuhCJ}CGJn}P#Q$LmKsRKfNnIVBzLT(tS8p9JwaQj?b<07I?;4HW`6vhQaucvZsoe+ zT15k-910fQH4sgDrSosAFb&-?)+fKPWMn*Th zjH*Dx2w=55|45&<(`w7@m?qYvPzU!pdo)%_%>Xq$aVLu*4tHK{E;z-=1%k< ziz3~xOpk84V|iBlJSZ!dv3LhR{b5%4`BQOc02w#)=<@n<7b*%aZc!5gd6CG@r0Wlj zjPyg(gv97z7;TS+|k zsvp(o1Y!16pqjbWNiiMRUmO|GI}^#DuojR?@%xy9uUNmncl;n(io*;Dxpu}+IiS6k zVaU$q!{z(YFEe90%5@W;-A=&USAd2L9VejkN8k$ShdTA;KiTI$+J>vk3ih2ouajmm zFaKkq8q`@@cUeI2RHg}+JqeJk>QPS}TS`dkW&GJAvRG{*R-yc+Qik3Epco+Nhid-U z9?c=y-?s)1)=Vnd;aq-AgGu!g8xCZxBuwgwBBiNFMb3fJEg&#Xi{Ng0h{Vn*5%v&G zu|=j_C$L|ghoe%5kWDfrmiS+%Qnc>>x!4BYy;y9`Emj^~A6Mta->H&Tw|mg;AGPxI z$G6=(lu4`dFD||OL;F3-b#{)fc0`&h{&u?%u{`N4MR5(yg)5JkiI6t*QnS-aHGoJfo3 z-2DCDY`hkHj7zT?e3bGyyG>M8${D?o*|ch1G0XMJ-YZ}#ZRFt-vS#sY9{Cj@h9EGi zJ7J&G19{06q4`m*PiNNKIwyjL(`)@aVlsnwEKX$nq*Et1`9OG+fc?nWc_tD zKdwmecNERPy2w#pyRA}xYvj-EpO76Ty|vFKV~}i47WC_lHq~Z1dm%~QN;o;)CsBJO zddW|@a|dBjRzZWg4qQZW0`X8E@VJ?p-03$9KEM5g-K}5XH2Uez@CebBojwKcip2!L zy9pq1H^nB0VT^7fUsww3z&oz);X#KmLx+XNP`+DwIx|}Sx|>l4YX)7K0!E?PP~Fxi z%XwWbud9cnot-ZJ*IuYI-nF?f)~H0mx<#P?H}_n&feh|0A^8rli)#pDG@X&Sco zTlzkk_Pwb{T25$vosF_;(w)d{KDm~naPE2btdRNv2Z<{@LVAQ5CG+ZGZ{W(9txD(A zDqb1(^m%ER7`N*m3;Hl!=TU&<-{`J=G`@n6{!KOT7RI7ntYTlq8_XDY(lJkQ2E#8- z_GG4C@<;4a@DZS)S=!%JcVJf}lUgBn)b;)t*${dLo)i@LnAb=U(q`s9_^i;R_)l`m z_YZP|(J|RLHvY#smSK!`Bl!FIkF4V32Zqs}S-A$C1p$(UeYl;eZ7ye{Enf=#qOj~3 zo-DI0d3?%^g|-kE4sk)OTJDOGK5p$RDyHg=Dl!VpGsdN&OuowZf_b<+$o$b3HXOjG z#&ZTxETzehKOYi3xh~wh4ZN&9;w;zlNqh!&mO29Ol@?l(O%fwqPU(k|NWCI!^A9`% z^XUv`&Bj7B5m7KwX8y5=i#b5*&qo2~H44C?qfU6yf^FlNc#DiH9Z+ag2q_xiYI zf!Kcnh~M*lLX#U%-!?>+9BWrB)0%K1@nsW#>yK!rNw4I9cH71O>o7vEG_n|&e4P`O~WVrhnskuv9cKPeo_rh;ts4Mz%<91;`ber#nI&xwDq zx*>CSz*o>~oyRy`R3M+ms|Z)j?WS^4{DzN)4;qtmEnZvyxgb3>2*_4J)1^f z+9sqsl-N{&=aAMj9WAdRQyXMj?kzR#Sv`R>6pf9SL|d5ujE@6@=))0&O_;=Gp9=)- z{7DANBFOP}^N6UM^Ld7vdMePe*HKnSsIG@h#&?KunY2E zAfa*bd206hFlMt?-o2 z{kuGcOMJ_nIj5yu=>bPXrqJ|k%2-q{hhz*;0e39t*7I}$6wF2X>76DYEJp77hQM)F zOMg`vafJPg_J&>YSGT|QjTp|Thjc~tgb8`foW zw?v9r?mwKEJl5{w&Kts1>Fht307dnC^y^J!vkPcy)Ujz!R_BC$yr3AreET)uuGagW z8fvv?qf^{{@}n=R)!R)bvOIpZNkAt#DWgY$LvL(N(Mnzr})Gg~Fn(Xyapitq=>%G$X0bm|W6l23Cz zK^89uQnP*g%yxJeDv%9d9}X468kM;MN-fb#Pg`f6U>yF+M$36qIek!IP8=Z^PczvW z^`teCDW4RTNP89+Z-7bg4fO@P7fp6J`MxpLDQ?hXeCS0-c&G<}zYl&Ja{ zvT0uIoh6nA>Vr-)0X44yp#!0G(F)9yy~rWRJ1JduEM-#0!h0&{0Lm9r>yX-OrRwh= z^5r_IYV_JV53uR)i3RogyGCet=~qU!SB^_?kzzfb6X!qK-j(Kz>SOd@k`%WsNz`eE z40`>YvQ(1$`zQzfQ&_sxF9Cgx^joet9aH6rOB`%(4aqmzG*hK*Q8Y`Y1nT3@e-BMX z0``22$RuM#A~f~g{z>Hgu&vMDJ^3Y)Fb&gEQ#K>wT~Y{eB}=-LY@M{cODJ=TMkICI1gCRYvKQTG$UFns@7OSeCW|9ian?XAb)u~1cp2R^I_}FDAAO}j}Kgp;Z0F?*r%DGk0rjUe=nO*V#Rn{wS>KfCZ zVJ2DmfYq;-t{xtsKtVcV?BC3NIc7Tpz3a)0OqiU7AY>!7ws)S-e|T$tgr*Yincr>7 zRp_qj!FQ*Cx`|Cupw-q^Tdv~8TknA+~;Nr$$v!SYmS$2w@#pl0K`wz3kBHBHwPs}al+nZX4hbwXfg2OhJ zOIu2}8!}Z=gzRsnkvODM(IJ$o(g=-W)*dVx0p`;G>Y^;*=P4e$Kl+~!M3RJ$^tSj^?;J<6&tL2G>+S8NCJ^=0Pl2xSH-nMSFzw(-5zZFB0o|pK<8i zW@CXcG88F_o`o!bppZ>+^lg*}Tga9O4EZk{)~yEp`PL8;H{*v_&d<7|qW+bH_v;X9 zUyQhhNQLSC!_m=Eky4h|+w%8gm_A?G`-9ejXWmsIxc|*-1qK2@9R2jk3ArPd$7L?1 z%q2c8-=FB81u0Q3F&&!XcHWF;{+h-nlMF`plE+Fc889i1q7J%&n5LqgKE7m7> zHV2%JD4aYc@H&ADuO&PsfFD&UwTIPPsx?@RvMkA(CteNclbZhzl?){w zKb1>o@HP&z*`-eqi5O9pB|Qzi*bypfnv~~8&x#zHU|aOxd+NBESSGi!I(-W*DD*o0 zomApX4a4M^A3c}*!3hGA(eARS9sLfb0&}K9tp8#Mk|Oc_urzko_vX?viw2z&H{PX_ z#FWLxl@t3RUW3k^N5<&Ri76yza=pzXEeL;=x`n!Dyp?6*DO_Yt;6~c`>$cml;n|oE zTT2|R2J(e#f29k7&^VVoA9xr+N2XRqQmWtti<^^>mN2MVCxS|CM0NZ{!QgVOUWyOBrFHZ#Mv zcJ&2s*AcbEyvDtVkfdLX{VlKh3HO$d$MXJ226JKbus1_b0{_#}l$F`)YMj^;`BZk>gBFc2TPcn{92(RiP{soJNa{wV>R;>3@vKbVDHyTPTzNY+c!k{9Cz7_THPw9?JMiu(}kbq(Inc}yWwmRoIjiT7o zV@eC8d5^b9^hp6os5lfMZTnT|6fCl$QH8HI1kS8|>~yhEs7p)e49N3YC_-F}moSeO@e zuOxAQX)#<&7f+daSfL)BIs*j*<`GSKp zW1jEZpTAcgIefWR@Yz9Ye>;X!z>f&d#E2mm<#FiKEbNPxos$#EfFLME1x?4pLXVL` z8oPhWc9HzGyn3(Zz-j6H9sS_*%o=MSAN`G!Q`OMT#kyE-`6T)mSpqLqGO)y2FvXna z-(&2T(DBZv4kgj2?Z1DT{_bu*wx2x!{f*V^KeoS7d<(*S#q=uNFx6!HMD@XT3Af5v z^}DKswBSuCZJ*t3R%LLAL`>y7czhDQ0X47j4Szn1ek^|OD2TMW)gwFFEu9p~fFEEzIEQ={rLUx}c&B@lHP%1iE0aBe3%H1z_U4Cr_M$rMdp~=#`>N0FW!)GxTjDDUpx;g4j?;46)ufKPRvo8WK+opJoleT!tGS-?SZ_G*mF1 zb=350HaaC(I3%b?VSMIv8*=Ot5W=((x>yg*T5T=bDYzXuo}agRsz}m`13NoE-2c}j zi}R3vb!>8xyUXD{4s#aDlK=$Ap-jW`?B`H~Il?2e-Db9+De^E%j8+qpSu&~&3s34Y;Byk*r6J1gBi&ot2Y6G}_V8yHcCQm?+r{l1HI@RsnA&i_QE@kK&dhkK7*otNA$_ekMF!_P&vD}4v z?%u+tL~T1AHPdl^H!JbiIns>Wr6=b(G%*M;!&_gSDn`aC)q?OQ(W+xX$n($n73{^! z_g{~^_!sxli8`bPMO>`TYS2(6VUr!ZwFP67=XQ~^X}t1WSIP|28f8x&wx!N&LQYUT zKXZb*6PZdm)seA^eplVusS-!TkAg3|TWsn5B5ws!^g)9Kn$Q#(+^ zeso!;BQMfHB&x8WrWO&8f6ToTOD^e_{lhBFO2I`b<&xAQ^;coxLDFOLj zPL82E@!Iivrz4(3X*x1p&x>zmd|s1(xYVFz8~=OxV-iaL>J$o`VsCHntn;eUJrhTA z=Qu62+Nmlk!lb?Bk3KbnM3^fsfYJ;v167U!)p4Oz8SRcDUpu_%17H$2tb|Q^2^}|} zMLm-DAB#+~!RWpUUb>GTV1u@Z$pnQGH@9GNyVpvoEFdMauSDI|22H$LT1uHhjjk_e z2BH^L7?W+^i_N(3Qo69m<@V_YHdU^4O44V^(2e&lU1$BPJ}0%utNQ&iCGko-2g0L` zRTE|OS<>*|U;gBY-tW2Ab#^YS9N)hP@mh1vQ1-sP(>oVe!$S-KP^m?`X&T1_!1LlY zY0!M2-7E>(zWr~^kHP*Bgu&y#9IO1|`P<2`PogU{TfrpH^0`d5+0_(jTC+$+XQHDR zT*euOH#od336FNJon&+$Z_RqJVuMAWgil5V##Ws`?%|N_JW2JtTGV4lXi5=o|-B(c_f>Sw&wY#?^86 zFPWkCNc-c}{*Jd5@I?L0-<8L*YfTcY2nP4F8wqo-xSy}SD;$U>7yf!NL%j7ZuU@k% zc8gfyc1-Y0$oo%V!;2Y>UDJ~80N+UjJ&UmC;_{{{GH_G8yVNTrK+Y7QyN4;l0lBEfjKYX=!QrusEN7wWFK< z!4=+4A7(KCld45gR%W6q?IPUH76o$QOGgfI1V^i?0it-Umm1H zn^E?6i9dFtLXs`1ESM;+l9qL+e9O4G980*>;FDpf;!%Rg=XY>w@YjxaubO-|>5xb{ zt1|*D!7=75);p(j)^qmvnLItqu=$5&ZrGO}IM{g4Zs2)i`8&0US7JFhmoTOSHv$u~ z74Vi}7>ch-YYg*RaN2kjas6TpIexSHJI;zaN?R)LLK7+6VTNdnJ6y6I9DcA^N`tv?(WeN;e zm}=UT|BoeOcpYJTGXIYSpQzFWYvUi?q#glf9fKR*xnI-H5LTn(^&X~@!DCNeUtDp_S43Md(Q;s z*u&rG4qnWrvSOT|`O?K6{=L<-v<+HtKre_5XmcE_ z^f_}r$L?f66Lc`wsEcf8_ax%SzE8(D;hQ@mff0Zazz~`u0Z&U4On1In)i`=k>8TV> zcOF;BeY&~QZfUtqUu-DT)Tq!=tI(m5(OJkU0b<^(CrL>t_Tz;KyvzQ?(Ej=t$*OE* zzT4zcU`d~M*)&rSn~|#BKNh(ZF{-qgC~jP*Atm2Qr+G-))I*0Ae05h@Jdl*1V%366 zzcFQQn@KRri35w9#S#_sCN~N9LXuG@XJ>`2FU=?eVuL4STB8#By}_80{WWydvhRL& zugBs`PrVH}CUqfjJSj19T76#}*l(VS3gqt4FyjzzvJY(o+2DPrv}U`6AX!K-?<-)v z+h^p0Yp2UTaY<0EkAV)~gPNz(N_b zsg(CAsb(1Qdx-(K{;7^QG(W96_yrb==ifzo)`={Jn8t!@cxpMvFc9dR4NGF55jfMj zJllvfB5E)E)wg)l43Q}Chs7z_0BdEw@uN~J=lPBpiKLt^mCEF5iU+`x=j2}t8=m`6 zBwL!5?Vn|J3?^k7Qh=Q|`RHI-oS=>U{o?TbkdZACBGYv0E#E(>{LaGTNf5$Zm>3L_ zxETG*U=mWSm_niEr=Ut~?~4$u`p%AGhbFa-f>_By!Z(4;NJ3rPXqH^oOwx_&ghv4i z#YsVPFAne#CRPR6?)VdYTmR3S(Db7+!CnL;?`M-;_(wxdy*bKevq~ieON5NovZfKD zFBVt>9Ane;s9V!i0X=HA)CuiI*Pb*g{EzT4iM?(4`Q=7^kr8fWi}!q z1*Sp6yJ3`jPv&=~t0txLt0}w;H?|!g>#e!LKHwy}0%u)wY1g_^(%nqY4Rzr>s}I)S zmaab)9TGP5|BqDPdU1pWiIa{Z0HC9d;=_{JH|O}A=nTH7u3$bS#Gnsvv@3`e)0H(g zA@D)^uq}EbGBVN%Ug@JzDK2ZCJifWuuk{MEL@e`f20<6`pNrm@+;D(^F#swGA|!(f z&4a_zfSh2l7ysSWWogl zode}vM*S~+CX4{z4v=KUUnpw-=XI0@8x~Z57!3xKF;G)z9GfY@reN`7KiFL0VCYOu zS6Bx0a%1oMOE1`+D@972o%Wp>^gh201RkN3fKr+4BY6i!JQ_<$;98sR&*K^1s=j^s zp2pbifI>D)8`sAxGo6N|&q27&{mRq_62wI0nA*Ia!3~iMJ$L>bav`#HG;pY@B$4^Z zD+==8m`M;T*1!mlPPPIPQc^o^;)oiLtKI0RC`2PTc+>(<(h=UPLh^<(bu&Q{M~%KKt?MW$EA6}WuSaaDd@oQxkQSPbz3P9HgU|FLF^29AW%E>#h}XJl zLFM5{AfZ!APB9aC*^i#Wu#_Pp2n@PTmIRl9QT@d4;n8VJjI1|SdTSDr0A$Kpo90r1 z0sV1gBc=2lpn1P{2dz3p7Oi-;_z31ydNN|RW7(G!yqA0C_vcw4Q{?1b-*Wbm8ntO>iXb$Cp_zHUBLE}Q)MlQvOkL7Rc}UKO5% z8$7UlcKAsuS}edJFAlzt>U^Y#*-84%GOLj>(RNh>6qbQ;}nE6jd$zL%0R389#RXO~CQ@ z1whumWFDZH*+P-34RT6Ihj84(*@w&$$c}~<^1ARif^{P3=yaU+2`_&9f)A#L&(Ga# z_U7}j6!F`M$cd%ikAC^4s;8PHk{1GCFRc1OnGKdjVh_4sjz05>qg9X+lTAi7?s<@* zq6`4a!l9!Ursors^lEvtP-=<(W}tt-CoHK~siP36)%O6WT4ygtJ-ve%w?DCjwbV`C#x zrU{i;u4S$q64zj%X&>aNF5U-EkcU^esFq{)C*>*<2I11mi}lin%@mN73U;2o^3@rH zfFb2CDzDU<e zvCO@@PI5Yb4hq$ySmwoF{8VsxWUUz06&?f(a0yp{6f>pjSf|+>nU%O?=?Zg$1UM8d z3q2P`_4G#*#;24mNv0(L%22p|LqSkk&pW%)VL2|^MJPDy!(F2OiJ72ocwn~~ zr6{_bKS?i}!{n7R5Xnca@ObH=6evshA{O?lp`Zk4uxHIk%bkq^WJ6U^-%kuC$G}4f zV`k?6rhX1TFi}^_#h0Ui<4hpAY<1CqN(8@%p9ll;F?>z>KM*46>(9RY+y|9NetQoi zrZ%ZylU!(4Y!2nv`k$>r>2CiU2Se^DhkADUgfAdmO3J~AP=LP6b+99-DXGJac8uXq~h zZ`4ip;VunOKUg)gW=7hNSElTqYJsN>ki$A2^lSB2Im#=&ye`hO5I9)S38yp~1h%-Q zP)wbY2#^d8?a%#*Os2C5@gzrzFI7;KT=YSk?B#9H^RGV&6b?v1pf=|L+z%nFP!~L* zBG^dqh2k;c>n4`oxz-BK$e7Q1(H+dznr4Z zUTllcK9grGtsq^2z;p+(w0-xPwuT=V?JMazKufjdU zWTBF_$&c(ovbG2<_$w~fK6~4p#Rx8!o1fL_geZ!d0b+zfnR}QR7{yyc6`z9`%Q4=E zVP>Q47NE;8Bn0Hz44#mD2o%%UdFYJ1Hv%mN!a~3pfe`-xGB^A!poi-`vDFz|6Bppn zP*h?H8f1u57WMwLtdUoatO${=(2H-ZEOj+gw*zkgXfhpdLPfrQ^DyLO_dJ<039kCS z%Qr+|8?Cu`^AjR&^=PGo+z*ggNxKcNP7ZjQwqj<}?6zA*?Nji_G#iGKq)3Y*0vh7l zN^FwmOo*9}fh*Axa>1o7EmZ*L(K|nMad7DD&P)h<5TLjbs6jL)E>rS{3sjQ*c4!LK z!u({RLsw@CK)fI{ekDA9^<>jS*z#Rj3Z0WeLmqRCg`hc?H&`cGp8VJXQLXG{Tynrjuz zWJ}ZnkOkJm_SQ+LHBt`C%IMo3vp>kze0hK&V9DTc2nm%>^k02We_2vc`_6$el<*dW z*9fw?P{hp$T%6Qql@jIX!Pvoe|JNU#fWQ$|mZ4N5AQtnhWX=`=M+k+iObVFuM6_`A zS!arbj5ut|>}bxeqeEDHT~ehtB|4(x_h!?{TGMS;SD7&~Bjwq_Nx_BuEFtxN{xVWF z?uFh?^ACrCCC_)oPVB!(l1d4dG;TU$V?nOxLzw;W9-%%jeT3dG)zgJ$9Fib)i8(|I zCYQ-YbF@>O7hiPGOv|4NSYKvYO*ujSxygX$^~^Jl75e>ZwXgW%ta zDqq9IlIPo#UoMYz(Dbo(JOZ3&2bS`mIqD109#e2XyfS6M4hfq3ma}X`ZRfY4yiY<; z4JK{E!q};0FZeQ*_|~Q|=RLJ$$Vbe?d)(yD`az3JJmL%XXfigonU`ls05~VdSR2s> zmWtgwAOd^k5$6pNDblZVb>we*9;t%#?{HN}!iyJX?nw`9Pg52d&6lsd*KUb8*KQl_ z79g^l9$yGwe*wD8+r)X&-FG@XB!fd^sA6T|;7F;Nh+L^Wkfch7fzl>8ERQdA%ObzA zJW$3Yrzw*r25jVu)3v4N_)&0;r#Xu1Q5cj@ms88(a)c)nsrKMj$He@ZiNAt&DVUk zJW_^V?soW{El(Ee-li;f`k(+fEci!3n0iMhZrOmYTOWqmSVC(-jDb{?Uv73!1qp4( z(jcpZg9i~1gJ5)PQ5r`gI23*S#SQj^Cu0Y=K1dzG;c5i+X%HGe{LM=4G^xYoID>+i zAFugFg)uOUT~DAJp3i+LNiqO`G4IMOS~My~GiVj6fA^h|8xUiN6FqnEj|IP5?}U)M zN3_lSQ&{#WqHowtn+2YNJ$D6Hcm0>>+Dri{Vi-1OTb`K_#I``p!v44sJ3}$s3no=2 zauemnl2K&*0Yl6}OOtK1d`pDLRsTt=(gz$E4mr^R}+@%Nb)8Y zz{o3I5Ky8kg7$khO$-`9bmM?;sI}>M!hh3*pLvWkj6dw?Ppt@Dhf}Xw{bS)_01ODp z18k#oVvR_8imr{tU~S|%>JwpBm|*$tbI>+)mhXm^y%U`FQ{19A2`hU@j!EAVr(x=D2dMKIJ*La;p$@+AB>9TEL9luIdNw>XARyKPZ zijR*AK?O$O1&W0Z9Cr^=U5#^4HuhMK{0w_LN@u_sx0BVrHP&$_8e?e{s*cglK@rw*?X2Z0gXmau zjVAlCL)2Q=O-iHHzWA9x%FmfUOWDsebR+1gv~%s;u49rNtmJJKU0Rnf!qtVv?iE z`D>^A`<2a$$a|SZ?%MTLIEWOS5>6z?jIg07h$f><3Fy_S*I){Kjh`bHJSt^M7!=VJ zR-D01WGaN(-G$u^1HSm|1tqYT&)FCgzHFLxJ{+86cJW*4d70t(FM1O|xVMTIthnF( zmg<M%>BWS!hwVx&O*03@XSRzJfw=~SuwolIU%lUdoZQ2BdG ztY{vT*U}!o!on*kSXjNGpPCl*D8i`Uvnn1DxQ+Ar89zk)YGyoU*OvVOLjf4wj!x`H z6IdS;rSnB00AfAJ>UyOJ6RE71ojPnC>SAMcj6TcCc6YoNd=ZLrY-${!z^q(5X@t|S%2JHm_A931h^mYU8=iZa2u zot-5Er0#lk3lX{WpLO=93FxPfg+Mpm0=O#ij_QV1u-GG67#5&3VQBE&3f>!OF@06)nEq)D80&~{D@PT) z5gV)D=8g;6((64SF!yr$c#zRom!56s=ZIFoVzgqR7pA=kd+<*3EQK*Ux<4_mD8}+z z9_@bk;51hc- zIuw?eE$=DnWPK|Zia-(QD5~6spwsgy>RCra?9F>7Bt##t?KFO!AZsWQD-dPKcBp!)D7**_u zz7br-UpEhH<7uK*Wo@=*W_)2=7Ih3bAjw!6oPK^&5{~!4K3RD;Zp^L&&%r1hiqa_E zZ87Q9p~&Q^U_AJ}co(5%ajsCBwwNkHRs(H?i`-1p5FmTckwJD4X>?LAQbtOVQ(z$Z zqWd3VXB0VwnLT_2|bre6Xmq>`;ld%103~W#gCop=uMf%E z2<*?bi_%Ndonvpa-EJJ@*LoHW1E$$^Ty|HU42smAHG(+8T-Fksz9--hre@Aelyv!> za^o*iRFeQ?V6K+PYV}fg>{jril33#UYfZH)R;pdvR}nw^GYF85Y#o?8j7qo(r_K;< ze?=uqh({xUT5v~WMmpntwCYG%;FRVdi83mSEA2>Xb4LMlK?3?A$}geon5l|OPj(GI zP5B@HvFN^5^gT&Of>hMx&rz|M2x5#_;qwwT~pY%s&5(d7g@~q zD!Eyk(lAvPJSkja;JPW+AXxeO-g_vY0wp+@mNN9%Nr-&M>$xo9 zS{*gG)o$61wEG}SB0WlP&kdy_G$pgVF`yR22$Q4EU71(;{xbMR>Y+|CL8F0diJNi`LPV`11o+%pL`;K76%93 zZ*HyX+5cwOI6+!;!V^ZXzGY^fTI9W?vFE9*)&4djku+=FK*f3~em<-o;AqN}=1XW|_usaTSAG zd5cQ-{m-X+ty_wvEN7kj1cMx}(t7yaGsHnEs30VfVOA#z?;onPk{UEJGjqpKEhVIM z$Iw9{t7w9WJ#~E8J6v?_V0QpCJ`w4N?@34CHFfDCneWq_|E>6t=8SJXVOpL|h}i&* z?km0s#GjL~_?FX4&c#I0bI22&N{I;8FpDF$9-mQ|j7`cYDxQu@(;M1h#oG6U$24@Z zM%qBU;phRSe|1rIo`A5G4q`&3X$d^YZI$G4AJ9-qTz;*gsP43+;E}2M?)ot&uLaRR z%)BZbqK5gcR)iy}>yy#>L|(M$uGbf?FuZ6KFiz^&x#;+o z+=I)>ZC8?GL{lUsvbO*g>)KN5_m;{1XEcZu>zVVj)9?AXf02~FJ5S{KUZxkt=F(LJ_!%jg)kEN_TgQ(%lWxjnd6`{bu;TaU2=pJ$~oz-93Bm?p}w^ z`=mK$QK3s@(tsvDDa?028sm)4(WC}aePE&4>OZ3^K_gNKe}WJZz|8s=daOYa3s>YO zog2hc7zA!=S$gN&gsjEzOXfXkTMI?dMQQD%zh!GIDH)#2U|{Dov_6tCL-{`bfk+j0 zg6AmuW65oy>BKR<&r#gR!Ym`5cj~7Y=(JB{WCOo+6(%KM2S`Q5RPBkJ$D+rUgH>qI*|BH6|AQd!gS>)I948$~0O!T3@BJ3Ut2@ zNveHi(y*IhQ?Corv%Z(vokKH682(Oj%vfzj8pbr~;~R;WQKAr|e$l1C+rte_GS|Xf z>OakLn8I`6PrwF_k}TfU+bq9IqQtgvUN<@0%#%@T&lU_xU64xjp`sR+CJzAZvm!*j z!zQ^SDx9f`p0(q_DIci|{c*?~*my;x_9mtu;&}FhjRPQ<1kwm0Y|G9ppII8u8XsC|kW79AXu&3Dd`(?!8P zGT5t|%0nmXXydzG)U-2A&eFo%8?-=LE~7#6 zwmq9S1vFY3DP@bW#wKD{j1Gh^@zcA!-m;-OmkRag82pAAbnml;Ff!0lwmQdCZw!CL zk2i@f7N!(28%YbfFC^xSM~aAoiX|g5`E=yZgj1hmIh)U;{|QcrmKqm6lxV!A@it`F zqNJKTtV%i$v)2w=EaV*9m^prFk|pEhfQiTb84I>>+bC;F7>JL8X%=yEkt1W)rDR~A zsD{)$PL#@P9jRO+2@1$s7+kz`SxLgg`^Z@d@#BYI%zVdiU?{a0I{e4FW|vig(Tyl6 z8mzb3GwhbP?|QyDss+BpahP9$veDK61V;i&taF zraD?cnVEtJQ7My_5~a`?O_(ab68&Z2+QT0>9*J`pb+>1fo zw0@yhcmf+eUOS1xF-8iu{Ko$*gWmT*3z2O01*8!x-9h@JcvQVMbbeZVm4k9zaa2?> zjs;HgUl!IjjGJjwN<0{umeP|PsUrCVx_qq?cbQjnpL61dzLQ@?%m@X)zW&+-mlns{ z@SDLI4Gw=lYT9`;%C`=W4QpPI_YS%KyfBM;#@a13=$O9g##eT>ABl#pSOs&W)jDl0RHKBn=Kd z`1Z%t!c(cT{;$I#$XG{`AxbSSqMH<|_}A{v$FBS15_Hp9N=QIa2r2C1Up<5AY3tnR z9Kk!e@5BCL!*=PCzi2<+to_+LC`B_R8uE7#i(vEVMaH?&d3nI zygpZ<#~G;{FYFyQTTEa?TyuyF!>g9jVX#Msu!@!!HTQCfT<(|L1qKCXM;+3lHqy=;3X6W|7Z;-_WTzH4rwgnL3^%%)>@3W}DVi4w z+~4LEqmja7#imPw7lDWd7K_JCI4r%z&RW_Kp`=XB@FxEg{{}+05{m%m#Vk_B; z?hsNny7=N9w|3Io_W^Ds%BiqvFn&D2i3=A*eR({G`E7n(#o<{-Zg1#Um0{};-ixNm z#Kicc4sOdO>+W4rv7B)w7F8xv;N(~5T1d6L3wXbKm(k13D%$fydTy5U*M<&q7yhR@ zo{vBLX+omhmNu5o=stp!ro6nI4DkoqA0UT&j&NV`<-;o`?{FbVb=*!@puQxk?u|?9 zk{{->*rT98|7oXF78nkXU;MqUc!D}wB3O6;iI*GJDT+i|aB*vD;K9IJ^%)DNUez?+ zm?-)^CYiRh0`H$cyu^Dx#2v^qe}_a<(d=8pDKh$F?rFCm3bB^G zrCXP!jdwnrwZN`@k#Y3`PF6~>$(Qcr!|cJTbu5|2<0oTh%Bxfz${ku<#0A<6#}`QS z`Sb+HUH)ga_i&I}lzP>;X%!uRij&bm?pu*oF%pl2?=qjF`_e+>$~5|t9r1Kp!!+kz~#`RX|0H9*Ml*$%y&!Ck_Lm5otljy5j_a;IsB} zl8ZqSq2_drMDwX$zbnwG-3yv`8+-D^ArjT4^6TU#C3%G_41@vlKlcP|rXy)}4K41% zb!y58Kfx?YmEwIm6_XDl(y~}epmvEf^@584oLSB4wU~Y0nMekVF8PhW!G0K8ZoslG z6rQFwxm_wN)Am+-@hI{)U41268ZPWon`G4;q12lA`B?qUIqfncbs}`m`t7pwXS*Q4 zM2cc^BDNY4|Edt^PMeo4iz~nMzMc!(9O^@F2o(klL<$jB8VOQ1uQ_0a10`}gW>J5M zfzRD{*_TE*Gh2zyZL5`Hvs$Zy`_fcsBYoraYpG)-ss_Pt$MyF z0bJmM;LsV3hBC)bv%p9Bs~H;@qWYrlry_n3{UD5qgy|_4H4d`HY_eY#( zEW)tPs5hWNuY=NSNH8YkEe2g!z5qQ;UqINpN!rhLM7~HE7V`deQWM5+3$Kbe@uruZ zsq*ZQ;T5_jzU7`y&9a#VBSXc+rS$sDE784>X-3FmXWzDUYO$S;%h^MqfVMAtVChMw z3fX8JM^}n>w7&<3|oBMLX@=MiY`lQ#>niaPcKaGxEbv znv3^v%#J%PaXge15E;xa{L$z#qVllhLv1EIW-&^qg%VvP~_<&o7;+ zAwJCysz*dLgzET#&TftM?kGuGjOF2d7Ps6AIL$ko@AHOeIq8&NFkm*n^NW+Sfaa_r zkAiu|qIsjZ9$(2^o06u8*Y*8Ic=>V^U8Raz4ZTZ?P-x*=aJr~7b&=J<E#&T4#bqM4d-RS$uN?O_q zY6xs)dy>HVTVW-sgvB)DQD@?AoNt^_{~_k$qkyxe|%wg(Ah6 zE~8ofZx)E|i8#{CL?DU67Lm!8eGr$qKpCe$)!RJk@8QXX0}kSa))##=8uc3~p@N{O zd?&-*deol;Cyz(BDA{e~>HQl5r^H}vA~WuQ6gBW9G0j(cgSdN0_-rn;9!y(DRN379 z>4Prr83#{QvKtn8vM2VXzh08+8p-@plWtNWbkz}ugUsNH6!oRK@oPttf19aPd{j!= z()uzWn4;bVRWx;NK!S5;ymco0@ovc;?hQhEVi&EjwY7{wbz~70+CZ^|B5{*9Z65N? zdfwy$atlwtjcPuYhukWtZ;O`}lP2hWYsi2IT{78HK(_o!Iu+lcE(Q9ywT?L%`tbD# z0fEaYNqfSxT}WN!ElEg7N}Z*@v98lRln|=bhI2kx#9&QBuI(DbzfG?*m`z>O@T#DV zT!t&DlWkb_YH^_TXr8D=+=+T1LgGV&;s<0$ae;P1Mq?@Xxfg`<_GfHQKQsexm3^pt&(h{Ew8t zR+en?Wr3z@Hxq8`gMNX}Vo;Ixz8beNCCZ8(5X9~=o{g=MzjJzVU&J>ZfWHZu7&!eb@>)k zf98PZOERfTxXCtFqLF<^v7#3!o}+SbO$oB82oTu)5B}LVDT13S9FU>EY(culNtuf- z0~ZdZa*uWs7|gj8f?0?CZHFdPbM~G=!`yhKMm_W8g}9%c7D~T1YeGUu8GosKm#335 zoejKW&6``p?)q`Ae9WA*wLTT=d0f8xc8oUfe9I_D*Fv*K=13L~=c1AjDT%t#sOXz7 z5A{Rd4=36)vT6iK*Ra)WkYCouDGUX2x57SIjG5u*dQAO=+Jj4qH^E6mpNP}tB-P>w zM&IRANe&B|oSufQ?Y@1+qAV-nR=GGNYC-ygSdVUFXtbYezIVWtCJ@nS0hb301YFs!ZUb(0jN;$i0 zh?0R;eaNhcDQ+`gMT9q6i?aB2D>v3B>kw`8sQS$$J(NfVEF9vU{!OS|cvJLs0#6kvjncbeXjoSp{Vkr?}kpZZ&{?WSm7#X9`ttb>- zW_XA#JLE$ET@c!LZ7DLvz?)|*+S`7_8P&^AOH?BS_V`VIo)fp`Ul&s>v{QyU~)#^Vcgk9p0=K!xsj*=3d` zv*{_#aaC$I!@SahSanel4I;2C{)AY;u=V6uqheD>F0tf|3w_Sp^R}N+S8Nz@PGl9y zFvQ;|s7oHf&co~*ru;2(L6CaM+P z3AhagmLB4-F(V^>ajUS$*w@a#WYp|$u-;tTOKi#HrVC~*Srt#-fL(@9aDNk z;}({c)2IApu6yp~HyVDTxnB34R<(jeoMBMBaLrQP1Be$o~pP zE@EsEEm@IS_0KpFvGnLUP9aBL2XStKm2TiO7S;&fnkT0$4Wd><-gG#m)tPA(dmc*t zlYa}+ZpSTX8w%TrFPJ-n@uV0yS|M=um5tr0cTtlsPF(^UsuvR5G7x(A%m_O7(2L6z^0m z?b=iloCXSbNSi~1kJ(+=hK;H9+G{DoHIf9Dd0pbdlXf|h3zUO>#4t>U{2ANPjl}6K z$tDX|S0ajd#=g6+MTs=vZR9UYh#WY`?jU;7#*ZdD4$qz&68Lkh_Dsl=*3-BR#ZZ1u z!lk`yJWp36?HR9hBJ0Z^a$>7rPdlFsWM8E)`mYZ$e0(3jSnB3>Hy0_NJ8Wgic5XC^WpQktW+JPI(EO~mx^_HGKwMG3#3Mc{M>muKa#3Le#BQAtB}q9 zx({MKuWQWC|G8q7g1Uzh9f#T9%QS;4@P@n6Dwx#;1*+57$gHZviI{+HNj&<1%1P(| zs-*WE!T;OTq#X80ntDkwXZal5u$GF(K=9dgT|I2u$9mU*Qo9wKQcr`A)5xi^Saav|6azT?Ktd5Fit*(}vuwz(Ua1&GL+1`eBer@H+#YTTNO!-p)! ziY#z5^9vJBT9@W2eMyIlNZW|VKb%(vux=+R=HTI~?}7~TlZ2lRhl5zNVeqK< zYAuizr#Ym^nyw&&E0kWaDCAhV`G7kCF-BcqXMEDui8GL6E5tYiH!6C9VnyV-;4z64A0bJaQ#BWrsK->J6@rW*vN`v2iHKROt zhc%-aZw6Zk&OId##d$%lPF}E*d0bLIXu2KeB6Uss{Bk|^#SqI8ek+ zbXwXAyD3B<(gwq%=wR3ULx!sqtXi%@4c#tkrOG%>`m4wqg%!R*3C?ce(sncOf-2Mg z9-)vIhP0Ny5qk;_=w0wqtml`ij3D#N;}kH=`l(1tQ_onmFzyqH z;Fz6x^~1*Pm{`n|{9r)sraCmG6f$LphlKNJB5zIvQDP42TnD3*d!shdcttR4f>NYe zjM@*dN)a3pvEii&pDQHuS#w+Aa2!4(B_E!8KztUhTZUx@p@cZBZ3AhNtC;Is4Z8f$ zJa5sBww zLRc_U2L7R)WdVPFgfIm^G<_#%WKAP)*ent$dB4Y(N*8I}oui=JZmj3dCisj6owm=> z;@t-3y?ryvTm+7zjvaw7Bfff#agSB4Miv~0QFq3gF1-GXW`|-@uvYp zdS6?pUt%H}X&LL0a$}Y-XolKJVTa&S?#s!`v{4#X!IeO9DUwYzlvNFH?qWC+Ich`2 z>1QV|ha7rUOvBm__`m)t4wJNYC!mng#q*Pn*tOw_Uaj=H*ZaP=KlaV+!A0FD-x>4M zDKl@qjrx@zGOfxXC)Q_;Um2Ttdal3Y)%DzdAibdyE_M4d%s#6#X~hw$OY9!E{J2Oy zt~k{XNsG*x$dB`im5WcU~CHKQyX6>eCVG~oWM0LMKO~CvLdJCTJ{8{t>Re7SYS6^{`4>fqka8{4WheCx@hfWf>(5Iwz*{u*26}1MAK?Y zAK_Ch%AA*K&DkOZy+D&0$<7@bk;c=K1Lz`{Z_r}btsYnBQBz?kHZmZCzM_uy`B;GLWhD zPnhGKot?g45gJ;n^VkU`35Ya&lcY&nGTB~deey<}5|`w@Y5Vgd6#GKI!Fsts@L@0J z=;pt=-!}IvWSqPO;+I>I{>kpQF;r49Mi)m7HuKe6^!hggG1L_;kGB;bo0Q(l6|<@v z$7~oe_A~?enL%2e#3KNMx z9&8pWmHq5zRp7ZqtmgO`Q378n@)_x5oL08!-H1gG+{3jc6BUC?qkWK1but7}r&ZVS zbaCQ!l^2S~oWW)H9eLMg5{0?-`cF67s?%(``{kkeq9b_$+^!foEb^2fqV46k!zs?{ zUvFyqJqtgLF4ns9e*PlPcM)~}Fo?;r<8Ci()g2r!o;-^#ukyuU4t3OB+2W1==!G%;iTo{@g?C*V#v*!j|M)K z>E}-=K^hFdU!Qt)|jZ$eO!3awc_dSeYR$E?7jBLE??2#n$U&r zALgtAT@b1QJOfJ?8Z?cuxEM9$@6VgFj>n4%`E;HOLGT&+?T;6pcb82rHqo(h@CGVA zFBG@an01@a30JQJNnz2Jyq|UipKio+qJx?XXLBcn5;SncW8*0O<{hEg;Y?!5TS`nM zUQ?f|N$>{Z+DwN`n%U_uiVB-e7uJ-Oc5H9{wen2w%Ai+$9Wl>Lu+#MSHN#!3c{R;> z3o|MGawLrMd3Y7L25@Te=!uk4um|j7L6ZUL4Hg`Ou1t zvx@jS$g14(?m+wy*-VBS&nH~;?fY9^%cZ%lb^1CTWVmkuck6kfDw_7rd_7kxR-St+ zuE}9%<{(sP$l=*8F8)pX6TI$1n<>@YhP25LvK)KN6Gw^0H3T_P zB$2ho z>TP&K$giQ+S~=VHMk}t*X4|a$ODc|^CKB7P&nGQosLUe+kBnk)$6!98cOHzc+k8RD z6qw|9nL&OsZGOf=ZgsgM^0DVtWNnmhWZgv{|cMIjgOxa?MX=Hb=4}>prG}C)MQ{V2_FFbud78YAjz36eU zxGEig6}F&~VIP=A5O80kK(f>hZV#Sr1ex2;mw}l-u4dkE zjvhDdjAi?(#jMRRY9F`X9d~tg7o^z_z~QyJ&6ex(x*WeN{SG&1gJ9Y-m92n*@f9+{ zwc4_#yHZOqM2j-t<<#;OqH*Bo7TOs6afgG}xWt_Q2R3Zi;>uib?y#KiQ^k@XQ z!BL6&s^=)baPZI)4B2~ib#-hpvukx{j4d$;?H*tUN~XQw5grHVE4Xe&kzNjAJvoPw z8N+{QTBq~YdGJpz-wqtSZ0@wSkILfJGW7Ya@N~{uzh}A!`zpy^|1YAH9ql*fJdfRN z{67&MEd;u}iATb`Tx>t2G<`j)>Q(cM5S7y;Tm~G%jm5b>8@1j;p+LgMPaNMSsKn2V zO;2CUdOysTzjD`mwu=+j-o;GU^}oy>zfl0ILC*XBzJzqH)_h}aEjuT%kRrVL$N()V;m;F>RlBpImHf->|1gU?V-;w?|efcKyM}!3xW(mpv5fEagIl zU{VAzzz?)(T4Mxz2q7pC)%!quwfUs|Zk=Xe8UC%_xK_h7cd zrRVz?ax+<;mtex9ZN600Et21#A-2)h+u{;#Q_fY7vqok7LO9In0#Ug*p46kN0C+VxKNkM}p9QOH^!|K6zFa|FIu%*(dz@Msx0@?L< zVs=Emc5rhgqR&`h_6{a6c7VO-e6(&IYMF#3r&--$lQ@B)l+(#{xZd|e&G>aPLS&Pp zmjNHzlI2a#$O2$k$;<*|)ZxtMt;q49&tQ(_C6Kyw-83pcMt-cMU1(+87@&}n-g+04 zqdlRpuk`1%87X%&dVv3(3ITL=$5H4!KZDERp@Q)5p!1U<4KOXbpqnE$In1&C9LrSC z7yaB(WWHq{!{!MF_jT+nw9TL?tMa1u>TNxst%snT`tf%5$@r>VSFSE^IFI-L$xz0! zyPV#a+LEEkXDm+p2j#pzo^7k^d$MynmibCq@i@lG8R<05n6sr{;h*+P7^eJ_9Yew$M&rV%H@ zVT5~D*JYV^c|<4i6-!9`mQ!zq9c;I@W5FGxS)Fl0D^Vr{~qT z&@0k6VnrXQ?1S%@@VUyA1IrL-HWH?586KW(-mG9fc0DL zgNYjja?{opMTAv%B%6XI>1d7?OfacKhO*L&+MnK@6?~>cRV(jN@@=m1hp1e>%7?mh z+EU4Fl?yFC(_}3L-BH_1>{LGKAJ9LHTDX|2&5~|H*F_=96=QCf zVn0qZ$b&*w?@H`&Lcjz&5EDZ{&0t#K>FH_Xd7ur5xlPknLYw=g>yW;(Fnnlpv)$f-T~FzhKAAo$M6!6I z{9M>MeoOVg8fXol{L!Cq6^6{8$L)l?>pqu`OjBMiMZHC8b|F<@*r%Ris%UaH~%f9Z&7pSPO6o&D!?J6Nv zlk(91Zdu&?5|aflAVT7Qy>?l==h@LEOF3^Y(rU z61@Knb{?d&T(`yRy8G$wa=Ju};@>JU@Vo6Df#WLMwX8|$`O_b9`C7Gxdu;T}nx17@ z#!fCS6*^6r7_;}sE-_R_aiK$qufGZ(sJUO|8g%UPdCS*Q-J)*H=dI0ul^HnD@8#AD6VQL% z_6n{({XQ~f`Ga3H`LXKstwxii3GBaV6eg^B%1X^ATm*1$MYQH6z6nxIqLXn%*P6mk z{wVWSp-c{`jz`9_lQwd&qN0o6=!=PwM5a%WGRK~>qh2;O_iBKt$}P~+8)`Krq4i}< z^;gi%w)%YXWrtUv4U7+OSUQ~uWu}%AZh{BhTY(>gg9&_fV~8t(rV*6NY2!7hyDfVLpr>ox@t(Akbh)f&)UbYkx#pBS;1QiD$lLTbx#^TDR^;ELnp zjnS5w%m*6X8ZjA63TPMu#24?A?V}jIjx0w(JiycU+5@+$X;NB1i-?wTzUpYbTCser zu=Kjgypl_KCl$R#CBR>EqVxM-xn?QXU4pjxSh-9cG{vk+5PSnb)4Kx4aqXmd-%*MYTl($_bXxn&#Uw5kLE|j_5_3rX$ z)W%EClelb_)a`uys_n${%}`36^O4r1aItM;Pzg#>)Sj9KTnyKaD2JQH{v{T>`6OHI z7F=}g*&m2tr(5X!w+iEFribk~b1nzD&_TqP5!m9t;7A}@1qHko;wX3wqCOI&o{l>s z>D2oPinL0<`(+V@SXlY0KW+q`tvIfLyy3WU1NDJw`j;}>Yl7uDHFP-Ls69}w6GgdHunH0V_*^E_=~ z<-%7rG+ccTW!gVDxckR$0AtoPk5Ji`1loW4e0jQC z^#)1e@>xx$-N@bTtsmJONEpE6+jed1CS#BTNaOz_OQo{7o*%#14_`;(D$_3t2@EH* znVOlojx2E_ApC29U{AQfII8$`34ENM$KO2gzdU)>TJ6Z)`tT{KO$NVzr1QG8n~bEv zAfQ?;*30sTZn(O-UhfrTu7J=A631k!e$I{?8;B5W`$?wLjOM=#rv_xiKe6QX&Q0-r z6VeQx9v=uftaeXMTo&!?qA&Z~&7_YVRylZ>-!_SXXQZ2D4R^=j6wEX#sbE#rsm7yGDHC>}(Ni zi8X}V3);yZ6k&nkq_>8ro1j{n8z{#MjN0{$kszY|z&~E?SnZc-;d}MB=0AU7H$k;} zrtj&LIXvIwFbg($B@m%Ydlsbmt&{c6Qf3PcE46_f28dEhI#3H_Xn~$~4-_V>@jH+{ zis$?V!{tsOe{O->EiNhlvYl*d-F~wTbq|Mz~mIMRVu&y*SB0Wq*cZNLab2v4-(YPkC)s|+Rv8@GQNap>k>(T?`ax)^~+`Oy&YfW6a}=; z_;@s^R7xJ$a5|Xbzh0||rSbwAoZwBrJmA?KYLQ_2+S8uA_w9D74GBKJ>&=$>zw{V% z6kpIt#bjq^k7zhqvtbx~z*1nEK5(K?vM>Jdyho60-m~$@%ky7MB`|6mUCvd?#!JIt zpqZqhN7%|be;?jdDq3EXH~$ragFIc{@%SY^2i^ie0@x55lmYO#csjOS2m*hgAY9-$ z42rBEoa8;-uk9s&ug9~@j^BZVOGhBSv>fxFxS`>DZuJn_r180(mTJ}uj)d%Qbhj*^i#FsM!u<8*v4uJ;HNPT3*hiouyaNAQ-eNg-ky;{qd`3v0Lw;AQrl18DYt_V!g?cD zszL{pk6|IJm2a`GAW(8V{rTPf`H(4GJV$_MVZSI=N0xdAZc0;WVI91Aj|`23gha<# z`iaK|;i_2M>sEM zD4lnfj#`@i_~@vvSqAWAu(Xgh;E4BtbalI50){l7>kQMYm$!m1?(XhzzG~K6CDS!o zOc!qrCW5K3niuCK`VaecvwC;e8bTi zfHKH-!515*vCwlI5AZ(YBu(aa$R9`tqYI4_b)Dyp6W{i{3ePW_QcM2%HtB#goeig1 z=Q67a8OWUwD2SBkdzFC6qz$||vv=!Un8GS_#-*59l)fuc>2}BK;*VVHKHzxIcOD5p zht?GGPj!)hI+y>KRAh?;EhwyTJ8YAEZ%K4A+LQnJfSws{j@b zc8ltbcDeg*%e}5+CF)sB|Xz{6!+~8NI8QVX{C;-_F}H0h zK^m`C+`pND{#IaRK)lv#b}U*zbpxydvIg=s#gw3s;(XUYi*Z>LJSIL6?bgY<{X4}X|*3A?I%~~;C8!sU$YQ3R8&-Ss~>kfJ&t-FJIM3>{n;rr*hfXjsM{Rp@Gqi8qU2J_aR&%-6Vk{s zJ!3Kc_|2_x4;X8u|KWmV#d58A?6M_bX(ci3|3ci|aSIwmty~8Q0-U68om}zxk&SnY zT8ZcV2I-Zj_s!{6iCWn$SUQhVveujJRGh!SlFD!j!Cr3xGXmePdY-timb?p`DA>vL zel(2acRq5Oh4$g`JOkvy#nv_|7#y>#o@Xxn3zOMso`{gRzJLFWukgrgXmA1Ve~H7n z3?xlmU0r7)fy=5$;s-87auCRRxCH^b?!jK^W@+8aPt5>SOIeP43y>ZjaEFD<;oNUI zwLB#PA|gKNs2Esy)XqMI=7@VpBLW1y_dJw0MuG&LZD;KsAMFjtGZwSe(l0sr>Al-| ziXuDrcBJm4vr|Z3K5`4H z{e)Sg(f~Ya`w2+1PirzCN-w0j_Htv}Z>I_WJu*}$5F=KAD70w7Kbrc^{8O14v5X~6 z#%Bur3V0SSu79U!9e=}Z_)c2SKx(&~p)+%Ep>5N4@dkuf&{BR0N= zmQw1DlqZ23xfdVwls*YqBajWGF5LQK=7(^jpRu5pNn}!;a=zG~mKOIKbzeCHt4HXra81wNr>EmzZ%-gAA)e;bXFPla^nRdR}z1y47wy8tz{l{`( z&!$V%>7y1p+;_*wRl&F?4Yb0?$43xT%NrWh<5iZ{L0a-&*UoezwSvPWa!Qp)r}fitPF;qRckZWqj?CSg$|T(brXx3cO>2S6E+n z1E)@)JqHHiaug&R$4gDpHZ|rTrMO(QLGxP!I}4GX99mTI9IWeMeyX(^t_`HpNiLno z3HTdsj=f^&E$e}RT96|EdISdKm;!VGr}Ma+cY@eXNWE#hTR!o6yxD1KX%W1}BVDR@ zS_G0{-av)!-B3C>0-9D;C;tHsD;I%KRRH9FPcU_d1>_euXFHK$VU8?Z^XVuMd}bJQ zVc-$4Y(QiM^7Se2abwQAiBf5B6nec4@*PkHM8fAWJKxQG z%9k@#C(m}Va>wZ9?C|J4h_ACMO?}i%E3vB%Ol})?6|enIK*#-H$NhPMU>i8=R?~x| zznT3z1?~KBF}v8NW9!q9d|4*L)C7ynuax}j7HX}kmt>G%HE18_OPcrN4b!LERhXwA z;B9~(*aa39$8#}JpJ-SBz?Dtq2#<*P$BKFdAFJ}V|9$0kGpN7PXtyz~u3u)4O2h@W zr!SfpxDkl&v@c&a^$-(y-lvK-_m>v?3wV%rXs910FAcbnutoLgf-#MMz7ddCve}{e zRX>waq8N-Fe-XA*fXQ_tz5Fx~e(?RCN2Ajx`5Ur|Da3mGd({UD= z&sYeW7#OU9z1iV@#WeW(myeIn;h~kUknP#FtaEl)@*tt@Ym;)}$*9Rc!Q08ckGX_{ z$U}ABY1V-HQBch}_Z4d3uAe8l3vT-YdtqWWw zGz^UFYZ+d|S@MO21<;YGM2#8n9eL;CaSonKH8D*D~~adJiv4tH)A!3SNbWZJ%IX>jl$CsF_z5z&Cp z#L-bDPpRreL94^-0r+|Z1O#TCMgvblNQ2MPYQCQzv^(yfBsm%!6!CL&WaYi3CI_(U zK;cT|cdySgiH(f~LFC7r{T4*^;hMDU{Pvv#LJzgJXrbQRFTdN}#MoP!H!D^Q7VBN3SGz5R5Iql3_erKF?);cfPQ60k;d)H77h z5mv0zsCJ#q58n(G5D;K3IwXC%u2^nyNgWB1m674~ymjpAz+0;pY>#!=KG=x(Z>H4G zKBEcH*9U@sB7Y{|U-mg&7#92&_D%O?4J*=;l6|A2f?v*Q48vEX575OtJnlgV@$>T= z7#Psf)}HUMJJql`@+E-j3@MT)d3bmLmt%JWt2jG7jUeH-XinuO1UZx^@GrnS9_;U@ zoxt{FpklaKhe?Q@QJ4^hCS7|)xdg~k?OK4G>}`2A?#w*f9dck$kfo)ivXT;q&C0(+ z=Zk$+e+4-?IWMpFcx4r}41VWBe6(!;pFcsG-fh65)26jN{yT+*`_wVFs>lv}_rYw3 z^NC)lQV|0UO=t4s+}YbQaW*cqdmgamfbOKG@2$+h5zz@qLkLBA<>B)l2?<$fw2RHm z%=*5bIy0lzJ5x`71@q@qrjZj*x_FLegSD=sW33RG0$n_6Vl=RP6civbYWz8<=*Zx9 z2xRs73Dc%=j|~l}G~1sPS5{X3^l3c=hrYF~?PRq>@P~yKx-eoH5I_L;63+f}{dWV% z19t81fm4fOe;yPzt(bi~=9jY=#zj{c2l(AtC8zEq-`}JTmIspsgGABB<^&WyeiQu; z3S=cBNu;PS`MwNe#!Fu;+SIw)^!*CO^L}~=aM&3o%xEc%0!mR(V1{H~vXoRmD3f4h zWQ2ivfPsPes#T^}!I@d#Lr6?a%(9P$^s>LdU$eu@6DTCc(}=Rz&sZ4eZ7FiV8cqrV zDu>X+?|b9Xu3LoLumB!~G_s6|nc0O5{%3FR$wHmwa0)wEdNA45%EIE*e_c=p9pWQv z)eNgcO-2TMK8)o|skxaM7g#h;GpvVeFyW;A32-nkFCc%YIyu#`E!%{7c(_e)wy`}9 z^U};UUemqDckno9`W5^B`|aIMhu+)Wd3aWF6aMd9Ur*1@21iC#stge_Qoig>P#+Zh zxwz1+HtLTc=3QT32lWm`t2Iw>(@G3duz*&RwPAf3lPh~zF6b1oRDO>?i23A(3_4OQNWMq_- z8-NY`y}0;nX*s#)cuole4ZXgxado_W2Z#t@0z~{@fRhdUEBPjzaO`2V*GXPcG)_J1 zE&PYLt0H&X)%dH=5uJWaQ$)LK?7OZegN`;gOLpj*jQ&=ef+Xqj4s$UsHiZ%igbzRv_~U zFPes)zND~{hL2B&DG@mGftd-UFnSTf7~T}-XDqyz>OZG`Wrr|OP*AY3Ie^KRJn6@P z!vaBT6=9q0AR}DVa9`is07w zZh;)ARHOnn0>P_Sz||t6p+$y<{!2NHj5fhf1FP-;DNaO0M1Q&48>+LJhxp9KPVF@t zyK)BM-5dOD3zn&SgIzP~xj1-Q?!cR}d~f(s$3HWEa47#Omh86%0FxgX83Dq~<>h5Y z21%P9>8n>MQBjpf{V{WM8qCZUfq{V_Xy+;I-M=$G_+)4(cx|9Uq} zii*rbUS7DN%e=3UPB$#xg?TpNseoK1b2YV@?_!~SP#d|xXM?~un8^H(DASR)T^s4$ zzB;)HZ4LN1ML7Os)_ODJ+RYpof#4s{oij5ST-*B+ZLQu}3Va$UG0)hx3_uv1VLwiR-`d@tZ>{;5rpB^HayLu zv&o8m^yMY`S`o)nO^O%ldL#+Qz=DwQ9}f&}s3+*7QLz{ejim0$v4)J<*;((>_f=Hl zNi1s6NH|D1c6Z(m$}o` z@_8+=!-pS6MMX6?H)muZK@a-q3r96ilU^yU>J^TO+Tmn3}vI2zVG#Y&sr1ybJk&~12vAB|M@)Y#NSrDX4fak-q z%?h+&CB6%aM5$}jyCz6q2*^Fg^?w>+D)HS;2kg`-5<|9vk7PG+YR@~=m#GqvNsU2ur^-__tBARV%6gkmBDF+< z%W!#sz+k;FDluf9t2OaACRt%smSkEHm&@H%!USSome}WK3ATF@dOQa{g!b(6#W{H|cV*pQRkz;a zLs?FOMijL|01YH$;i$gCWkRd z*OF`R*M~z~J}QQ{lZ)>(h}m~jm6`D|z~Z2~^RMt8p~uoZoF>uinpB1?cJp7=jfz`h zaLAd@62^`wx;nW6C+KmvMeOl|A4L$J?y{%eI@5 zp(UA&mbg9bz~o$Ib~*VH%*_~`LiGy-($+|STJ7dWFqmt0NVp5F!j`p#>ov3eBOV=HO zXu>?%TC(>XHl&OPR~%;gXY?WVQ5ihG9sn>v^X!yZg2cz&yLaK4EEWsou?(_$6A}`_ z!on6O!Dc2G<>N=i3sO^4bx~%9hPTLyHl=j&z{CsrEUlZ)pxM~Sr2e6=uV3Lhx@Rnz zb5CA~E$RPboC6a4w_5BrdIZ8ha~nc+b#;Ae6{3lv2*f~t|0Me(&7+WXJJOV#rb_ag z#pKmDtZLQ1VVT~%{D!QW%HN?j+B{<5%!lh&yiQJWvAML|UvU0#9e1mp@-yyD ze%=u9{B0ttk}4}JYvRpMTVlT%88IpQVnv~Ro`YqYYT$4rJV8lfEP!d8C#jZ9l8?8f zP|C{7T?R`GFk(zF7m<+`XGG;gI~Q=KfoUh&*1(~ZWl522p7SjWQk7#y=cpi*0${6e z?N%ePaqP)1Uxfbw0yhwT3=~}f{AOus86F-Es#k%-3Gf@5w|ALgmJZypbTBS1?*9Gz zAo9v3gD~57yiKH%dWlN?_Wk?A`1sKC#}nH*qG#+cuv=fZw*$xTEvUGQ5B&1z5o)7n z97ZoaqpckPFgZCnIWR3ilyY-(CnhGqdF=o=j*5=vba%J*?X9HN`K>xfy1)-59HZT_ z4N5&Ka<9>yD6@%pO`v}nomUwcypj}nZuk!D)g}bo{MwqDsiy9OZZ}9(>P>`$W|Wy1 zo(i^zDN;+iL#uk{yPA;^+YE_S9u?&$)+s(Z{5+-wwnCqdSJ*%r5!bK1;WSZsRFLc- zyWO$ailK;PW7Qm{#i48j8mD4ooic-OarzFo-^>i@n-BIYa(Nz!7Lbo#%x%AGY`)^P zXUK9fgf5ljMCnD?7V~L`AlS`CeODkE+dAI*&V;`{$u!uceH7+%XQ;GHePCu0+k6mX zvBTpl!w!5ezRLP?_m#^)h}NnP{(FNsP1c@S^>(?zeIq}lpgWky`o?OLhn9&sS) z>2ftYh6a(4R^E#_PsM!Hs;fM-m2EVK_?;w^PC(gv&-)oRh`l8Hl&=*yCgz{p2YI<2 z`z<3u{Nq(LCzki?*Cx=5aZNWn!|M=4lKkeE-zEWdGoA&pAK^D7alKzAR)nd zf95NZ26GcCEuev~o70>=+9i)H7S&dFKAIGZbaM~u#HP5}mP~iu_!D|N)auT-3gLJK zuYVD9kL&OFy6kpwAKM(Sg(I^)2=p|DG)wBUYxZ|eZd-afd(OtZ@pYFmGq9y%Q1F@= zET^>t{res^_$td-3CqwyY#-qXYM>>(Gvb9Ht|LtrfIhBb z;2Pp$!2YBV+e{eHpvOo+A-!`uG$v$+O7DdMsv)ok&<9dYj^HO|2P^uYU;aP7ut2BN ghXeM3t_*XxVF4>f7Vuks>EISJ&@~|z=+Hv`3vbS|NB{r; literal 0 HcmV?d00001 diff --git a/windows/keep-secure/interactive-logon-dont-display-username-at-sign-in.md b/windows/keep-secure/interactive-logon-dont-display-username-at-sign-in.md new file mode 100644 index 0000000000..db24fb9fca --- /dev/null +++ b/windows/keep-secure/interactive-logon-dont-display-username-at-sign-in.md @@ -0,0 +1,86 @@ +--- +title: Interactive logon Don't display username at sign-in (Windows 10) +description: Describes the best practices, location, values, and security considerations for the Interactive logon Don't display username at sign-in security policy setting. +ms.assetid: 98b24b03-95fe-4edc-8e97-cbdaa8e314fd +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +author: brianlic-msft +--- + +# Interactive logon: Don't display username at sign-in + +**Applies to** +- Windows Server 2003, Windows Vista, Windows XP, Windows Server 2008, Windows 7, Windows 8.1, Windows Server 2008 R2, Windows Server 2012 R2, Windows Server 2012, Windows 8, Windows 10 + +Describes the best practices, location, values, and security considerations for the **Interactive logon: Don't display username at sign-in** security policy setting. + +## Reference + +A new policy setting has been introduced in Windows 10 starting with Windows 10 version 1703. This security policy setting determines whether the username is displayed during sign in. This setting only affects the **Other user** tile. + +If the policy is enabled and a user signs in as **Other user**, the full name of the user is not displayed during sign-in. In the same context, if users type their email address and password at the sign in screen and press **Enter**, the displayed text “Other user” remains unchanged, and is no longer replaced by the user’s first and last name, as in previous versions of Windows 10. Additionally,if users enter their domain user name and password and click **Submit**, their full name is not shown until the Start screen displays. + +If the policy is disabled and a user signs in as **Other user**, the “Other user” text is replaced by the user’s first and last name during sign-in. + +### Possible values + +- Enabled +- Disabled +- Not defined + +### Best practices + +Your implementation of this policy depends on your security requirements for displayed logon information. If you have devices that store sensitive data, with monitors displayed in unsecured locations, or if you have devices with sensitive data that are remotely accessed, revealing logged on user’s full names or domain account names might contradict your overall security policy. + +### Location + +Computer Configuration\\Windows Settings\\Security Settings\\Local Policies\\Security Options + +### Default values + +| Server type or Group Policy object (GPO) | Default value| +| - | - | +| Default domain policy| Not defined| +| Default domain controller policy| Not defined| +| Stand-alone server default settings | Not defined| +| Domain controller effective default settings | Not defined| +| Member server effective default settings | Not defined| +| Effective GPO default settings on client computers | Not defined| +  +## Policy management + +This section describes features and tools that are available to help you manage this policy. + +### Restart requirement + +None. Changes to this policy become effective without a device restart when they are saved locally or distributed through Group Policy. + +### Policy conflict considerations + +None. + +### Group Policy + +This policy setting can be configured by using the Group Policy Management Console (GPMC) to be distributed through Group Policy Objects (GPOs). If this policy is not contained in a distributed GPO, this policy can be configured on the local computer by using the Local Security Policy snap-in. + +## Security considerations + +This section describes how an attacker might exploit a feature or its configuration, how to implement the countermeasure, and the possible negative consequences of countermeasure implementation. + +### Vulnerability + +An attacker with access to the console (for example, someone with physical access or someone who can connect to the device through Remote Desktop Session Host) could view the name of the last user who logged on. The attacker could then try to guess the password, use a dictionary, or use a brute-force attack to try to log on. + +### Countermeasure + +Enable the **Interactive logon: Don't display user name at sign-in** setting. + +### Potential impact + +Users must always type their usernames and passwords when they log on locally or to the domain. The logon tiles of all logged on users are not displayed. + +## Related topics + +- [Security Options](security-options.md) From 45e13d3fee05d5e934031c67d804464ca009d113 Mon Sep 17 00:00:00 2001 From: John Tobin Date: Wed, 29 Mar 2017 18:40:45 -0700 Subject: [PATCH 03/23] Updated TOC Cred Guard topic hierarchy --- windows/keep-secure/TOC.md | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md index b427d098bb..9283a8c055 100644 --- a/windows/keep-secure/TOC.md +++ b/windows/keep-secure/TOC.md @@ -23,6 +23,12 @@ #### [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md) ### [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md) ## [Protect derived domain credentials with Credential Guard](credential-guard.md) +### [How Credential Guard works](credential-guard-how-it-works.md) +### [Credential Guard Requirements](credential-guard-requirements.md) +### [Manage Credential Guard](credential-guard-manage.md) +### [Scenarios not protected by Credential Guard](credential-guard-not-protected-scenarios.md) +### [Considerations when using Credential Guard](credential-guard-considerations.md) +### [Scripts for Certificate Authority Issuance Policies](credential-guard-scripts.md) ## [Protect Remote Desktop credentials with Remote Credential Guard](remote-credential-guard.md) ## [Protect your enterprise data using Windows Information Protection (WIP)](protect-enterprise-data-using-wip.md) ### [Create a Windows Information Protection (WIP) policy](overview-create-wip-policy.md) From 21cbfd5191839776f310af57363bf602156733dc Mon Sep 17 00:00:00 2001 From: John Tobin Date: Thu, 30 Mar 2017 11:44:24 -0700 Subject: [PATCH 04/23] Fixed white space in cred guard requirements doc --- windows/keep-secure/credential-guard-requirements.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/windows/keep-secure/credential-guard-requirements.md b/windows/keep-secure/credential-guard-requirements.md index ee45ea20a9..59e3915359 100644 --- a/windows/keep-secure/credential-guard-requirements.md +++ b/windows/keep-secure/credential-guard-requirements.md @@ -117,8 +117,6 @@ The following table lists qualifications for Windows 10, version 1703, which are | Firmware: **VBS enablement of NX protection for UEFI runtime services** | **Requirements**:
• VBS will enable No-Execute (NX) protection on UEFI runtime service code and data memory regions. UEFI runtime service code must support read-only page protections, and UEFI runtime service data must not be executable.
• UEFI runtime service must meet these requirements:
    - Implement UEFI 2.6 EFI_MEMORY_ATTRIBUTES_TABLE. All UEFI runtime service memory (code and data) must be described by this table.
    - PE sections need to be page-aligned in memory (not required for in non-volatile storage).
    - The Memory Attributes Table needs to correctly mark code and data as RO/NX for configuration by the OS:
        - All entries must include attributes EFI_MEMORY_RO, EFI_MEMORY_XP, or both
        - No entries may be left with neither of the above attributes, indicating memory that is both executable and writable. Memory must be either readable and executable or writeable and non-executable.

Notes:
• This only applies to UEFI runtime service memory, and not UEFI boot service memory.
• This protection is applied by VBS on OS page tables.


Please also note the following:
• Do not use sections that are both writeable and executable
• Do not attempt to directly modify executable system memory
• Do not use dynamic code

**Security benefits**:
• Vulnerabilities in UEFI runtime, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware. | | Firmware: **Firmware support for SMM protection** | **Requirements**: The [Windows SMM Security Mitigations Table (WSMT) specification](http://download.microsoft.com/download/1/8/A/18A21244-EB67-4538-BAA2-1A54E0E490B6/WSMT.docx) contains details of an Advanced Configuration and Power Interface (ACPI) table that was created for use with Windows operating systems that support Windows virtualization-based security (VBS) features.

**Security benefits**:
• Protects against potential vulnerabilities in UEFI runtime services, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware.
• Blocks additional security attacks against SMM. | -
- ## See also Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. From ffc75cbeaf0e8a84033cb27932f87ae812a8125d Mon Sep 17 00:00:00 2001 From: John Tobin Date: Thu, 30 Mar 2017 14:11:08 -0700 Subject: [PATCH 05/23] Credential Guard text and heading changes --- .../credential-guard-considerations.md | 13 +++---------- .../keep-secure/credential-guard-how-it-works.md | 16 ++++++---------- windows/keep-secure/credential-guard-manage.md | 9 ++------- .../credential-guard-not-protected-scenarios.md | 13 +++---------- .../keep-secure/credential-guard-requirements.md | 12 +++--------- windows/keep-secure/credential-guard.md | 8 +++----- 6 files changed, 20 insertions(+), 51 deletions(-) diff --git a/windows/keep-secure/credential-guard-considerations.md b/windows/keep-secure/credential-guard-considerations.md index bf97ca9299..c2bc39226d 100644 --- a/windows/keep-secure/credential-guard-considerations.md +++ b/windows/keep-secure/credential-guard-considerations.md @@ -15,7 +15,8 @@ author: brianlic-msft - Windows 10 - Windows Server 2016 -Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. +Prefer video? See [Credentials Protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=mD3geLJyC_8304300474) +in the Deep Dive into Credential Guard video series. - If Credential Guard is enabled on a device after it's joined to a domain, the user and device secrets may already be compromised. We recommend that Credential Guard is enabled before the PC is joined to a domain. - You should perform regular reviews of the PCs that have Credential Guard enabled. This can be done with security audit policies or WMI queries. Here's a list of WinInit event IDs to look for: @@ -49,14 +50,6 @@ When you enable Credential Guard, you can no longer use Kerberos unconstrained d ## See also -Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. - -### Credentials Protected by Credential Guard - -[![Credentials Protected by Credential Guard](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=mD3geLJyC_8304300474) - - - -**Related videos in this series** +**Deep Dive into Credential Guard: Related videos** [Virtualization-based security](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=1CoELLJyC_6704300474) diff --git a/windows/keep-secure/credential-guard-how-it-works.md b/windows/keep-secure/credential-guard-how-it-works.md index 62b860bcb2..da731369ea 100644 --- a/windows/keep-secure/credential-guard-how-it-works.md +++ b/windows/keep-secure/credential-guard-how-it-works.md @@ -16,7 +16,8 @@ author: brianlic-msft - Windows Server 2016 -Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. +Prefer video? See [Credential Guard Design](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=mD3geLJyC_8304300474) in the Deep Dive into Credential Guard video series. + Kerberos, NTLM, and Credential manager isolate secrets by using virtualization-based security. Previous versions of Windows stored secrets in the Local Security Authority (LSA). Prior to Windows 10, the LSA stored secrets used by the operating system in its process memory. With Credential Guard enabled, the LSA process in the operating system talks to a new component called the isolated LSA process that stores and protects those secrets. Data stored by the isolated LSA process is protected using virtualization-based security and is not accessible to the rest of the operating system. LSA uses remote procedure calls to communicate with the isolated LSA process. @@ -34,15 +35,10 @@ Here's a high-level overview on how the LSA is isolated by using virtualization- ## See also -Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. +**Deep Dive into Credential Guard: Related videos** -### Credential Guard Overview: Credential Theft and Lateral Traversal - -[![Credential theft and lateral traversal](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=cfGBPlIyC_9404300474) - - -**Related videos in this series:** - -[Credentials protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) +[Credential Theft and Lateral Traversal](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=cfGBPlIyC_9404300474) [Virtualization-based security](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=1CoELLJyC_6704300474) + +[Credentials protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) \ No newline at end of file diff --git a/windows/keep-secure/credential-guard-manage.md b/windows/keep-secure/credential-guard-manage.md index 88acb2d41a..a70d85eb17 100644 --- a/windows/keep-secure/credential-guard-manage.md +++ b/windows/keep-secure/credential-guard-manage.md @@ -15,7 +15,8 @@ author: brianlic-msft - Windows 10 - Windows Server 2016 -Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. +Prefer video? See [Protecting privileged users with Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=JNbjYMJyC_8104300474) +in the Deep Dive into Credential Guard video series. ## Enable Credential Guard Credential Guard can be enabled by using [Group Policy](#turn-on-credential-guard-by-using-group-policy), the [registry](#turn-on-credential-guard-by-using-the-registry), or the Device Guard and Credential Guard [hardware readiness tool](#hardware-readiness-tool). @@ -186,12 +187,6 @@ You can also disable Credential Guard by using the [Device Guard and Credential ``` DG_Readiness_Tool_v3.0.ps1 -Disable -AutoReboot ``` -  -## See also -Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. -
-### Deploying Credential Guard -[![Deploying Credential Guard](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=sRcyvLJyC_3304300474) \ No newline at end of file diff --git a/windows/keep-secure/credential-guard-not-protected-scenarios.md b/windows/keep-secure/credential-guard-not-protected-scenarios.md index f656c9038e..5f7dba289d 100644 --- a/windows/keep-secure/credential-guard-not-protected-scenarios.md +++ b/windows/keep-secure/credential-guard-not-protected-scenarios.md @@ -15,7 +15,8 @@ author: brianlic-msft - Windows 10 - Windows Server 2016 -Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. +Prefer video? See [Credentials protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) +in the Deep Dive into Credential Guard video series. Some ways to store credentials are not protected by Credential Guard, including: @@ -153,14 +154,6 @@ To learn more about authentication policy events, see [Authentication Policies a ## See also -Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. - -### Credentials protected by Credential Guard - -[![Credentials protected by Credential Guard](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) - - - -**Related videos in this series:** +**Deep Dive into Credential Guard: Related videos** [Protecting privileged users with Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=JNbjYMJyC_8104300474) diff --git a/windows/keep-secure/credential-guard-requirements.md b/windows/keep-secure/credential-guard-requirements.md index 59e3915359..c2f3f0fc73 100644 --- a/windows/keep-secure/credential-guard-requirements.md +++ b/windows/keep-secure/credential-guard-requirements.md @@ -15,7 +15,9 @@ author: brianlic-msft - Windows 10 - Windows Server 2016 -Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. +Prefer video? See +[Credential Guard Deployment](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=sRcyvLJyC_3304300474) +in the Deep Dive into Credential Guard video series. For Credential Guard to provide protections, the computers you are protecting must meet certain baseline hardware, firmware, and software requirements which we will refer to as [Hardware and software requirements](#hardware-and-software-requirements). Additionally, Credential Guard blocks specific authentication capabilities, so applications that require such capabilities will break. We will refer to this as [Application requirements](#application-requirements). Beyond that, computers can meet additional hardware and firmware qualifications, and receive additional protections. Those computers will be more hardened against certain threats. For detailed information on baseline protections, plus protections for improved security that are associated with hardware and firmware options available in 2015, 2016, and 2017, refer to the tables in [Security Considerations](#security-considerations). @@ -116,11 +118,3 @@ The following table lists qualifications for Windows 10, version 1703, which are |---------------------------------------------|----------------------------------------------------| | Firmware: **VBS enablement of NX protection for UEFI runtime services** | **Requirements**:
• VBS will enable No-Execute (NX) protection on UEFI runtime service code and data memory regions. UEFI runtime service code must support read-only page protections, and UEFI runtime service data must not be executable.
• UEFI runtime service must meet these requirements:
    - Implement UEFI 2.6 EFI_MEMORY_ATTRIBUTES_TABLE. All UEFI runtime service memory (code and data) must be described by this table.
    - PE sections need to be page-aligned in memory (not required for in non-volatile storage).
    - The Memory Attributes Table needs to correctly mark code and data as RO/NX for configuration by the OS:
        - All entries must include attributes EFI_MEMORY_RO, EFI_MEMORY_XP, or both
        - No entries may be left with neither of the above attributes, indicating memory that is both executable and writable. Memory must be either readable and executable or writeable and non-executable.

Notes:
• This only applies to UEFI runtime service memory, and not UEFI boot service memory.
• This protection is applied by VBS on OS page tables.


Please also note the following:
• Do not use sections that are both writeable and executable
• Do not attempt to directly modify executable system memory
• Do not use dynamic code

**Security benefits**:
• Vulnerabilities in UEFI runtime, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware. | | Firmware: **Firmware support for SMM protection** | **Requirements**: The [Windows SMM Security Mitigations Table (WSMT) specification](http://download.microsoft.com/download/1/8/A/18A21244-EB67-4538-BAA2-1A54E0E490B6/WSMT.docx) contains details of an Advanced Configuration and Power Interface (ACPI) table that was created for use with Windows operating systems that support Windows virtualization-based security (VBS) features.

**Security benefits**:
• Protects against potential vulnerabilities in UEFI runtime services, if any, will be blocked from compromising VBS (such as in functions like UpdateCapsule and SetVariable)
• Reduces the attack surface to VBS from system firmware.
• Blocks additional security attacks against SMM. | - -## See also - -Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. - - ### Credential Guard Deployment Requirements - -[![Credential Guard Deployment Requirements](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=sRcyvLJyC_3304300474) \ No newline at end of file diff --git a/windows/keep-secure/credential-guard.md b/windows/keep-secure/credential-guard.md index d0fba3ca1d..b36d3a7301 100644 --- a/windows/keep-secure/credential-guard.md +++ b/windows/keep-secure/credential-guard.md @@ -16,7 +16,7 @@ author: brianlic-msft - Windows 10 - Windows Server 2016 -Prefer video? See the **Deep Dive into Credential Guard** video series in the **See also** section of this article. +Prefer video? See [Credential Theft and Lateral Traversal](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=cfGBPlIyC_9404300474) in the Deep Dive into Credential Guard video series. Introduced in Windows 10 Enterprise and Windows Server 2016, Credential Guard uses virtualization-based security to isolate secrets so that only privileged system software can access them. Unauthorized access to these secrets can lead to credential theft attacks, such as Pass-the-Hash or Pass-The-Ticket. Credential Guard prevents these attacks by protecting NTLM password hashes, Kerberos Ticket Granting Tickets, and credentials stored by applications as domain credentials. @@ -42,8 +42,6 @@ By enabling Credential Guard, the following features and solutions are provided: ## See also -Prefer video? Microsoft has created a new **Deep Dive into Credential Guard** video series that explores the main features of Credential Guard and how it works. +**Deep Dive into Credential Guard: Related videos** -### Credential Guard: Credential Theft and Lateral Traversal - -[![Credential theft and lateral traversal](images/mva_videos.png)](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=cfGBPlIyC_9404300474) +[Credentials protected by Credential Guard](https://mva.microsoft.com/en-us/training-courses/deep-dive-into-credential-guard-16651?l=pdc37LJyC_1204300474) \ No newline at end of file From b3efd97c7ba111a0243fc8f6589577ed41c61ce3 Mon Sep 17 00:00:00 2001 From: Iaan D'Souza-Wiltshire Date: Thu, 30 Mar 2017 14:12:15 -0700 Subject: [PATCH 06/23] extension updates --- ...e-exclusions-windows-defender-antivirus.md | 21 ++++++----- ...e-exclusions-windows-defender-antivirus.md | 36 +++++++++++-------- 2 files changed, 33 insertions(+), 24 deletions(-) diff --git a/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md b/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md index 3010dbe37d..d4baacf3ec 100644 --- a/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md +++ b/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md @@ -91,7 +91,7 @@ You can [configure how locally and globally defined exclusions lists are merged] 1. Set the option to **Enabled**. 2. Under the **Options** section, click **Show...** - 3. Enter each path or file on its own line under the **Value name** column. If you are entering a file, ensure you enter a fully qualified path to the file, including the drive letter, folder path, filename, and extension. Enter **0** in the **Value** column for all processes. + 3. Enter each folder on its own line under the **Value name** column. If you are entering a file, ensure you enter a fully qualified path to the file, including the drive letter, folder path, filename, and extension. Enter **0** in the **Value** column for all processes. 7. Click **OK**. @@ -117,7 +117,7 @@ Using PowerShell to add or remove exclusions for files based on the extension, l The format for the cmdlets is: ```PowerShell - - ", , " + - "" ``` The following are allowed as the \: @@ -126,24 +126,24 @@ Configuration action | PowerShell cmdlet ---|--- Create or overwrite the list | `Set-MpPreference` Add to the list | `Add-MpPreference` -Remove items from the list | `Remove-MpPreference` +Remove item from the list | `Remove-MpPreference` The following are allowed as the \: Exclusion type | PowerShell parameter ---|--- All files with a specified file extension | `-ExclusionExtension` -All files under a folder (including files in subdirectories) | `-ExclusionPath` +All files under a folder (including files in subdirectories), or a specific file | `-ExclusionPath` >[!IMPORTANT] >If you have created a list, either with `Set-MpPreference` or `Add-MpPreference`, using the `Set-MpPreference` cmdlet again will overwrite the existing list. -For example, the following code snippet would cause Windows Defender AV scans to exclude any file with the **.test**, **.sample**, or **.ignore** file extension: +For example, the following code snippet would cause Windows Defender AV scans to exclude any file with the **.test** file extension: ```PowerShell -Add-MpPreference -ExclusionExtension ".test, .sample, .ignore" +Add-MpPreference -ExclusionExtension ".test" ``` See [Use PowerShell cmdlets to configure and run Windows Defender Antivirus](use-powershell-cmdlets-windows-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/itpro/powershell/windows/defender/index) for more information on how to use PowerShell with Windows Defender Antivirus. @@ -184,7 +184,10 @@ See [Add exclusions in the Windows Defender Security Center app](windows-defende ## Use wildcards in the file name and folder path or extension exclusion lists -You can use the asterisk **\***, question mark **?**, or environment variables (such as %APPDATA%) as wildcards when defining items in the file name or folder path exclusion list. +You can use the asterisk **\***, question mark **?**, or environment variables (such as %ALLUSERSPROFILE%) as wildcards when defining items in the file name or folder path exclusion list. + +>[!IMPORTANT] +>Environment variable usage is limited to machine variables and those applicable to processes running as an NT AUTHORITY\SYSTEM account. You cannot use a wildcard in place of a drive letter. @@ -193,9 +196,9 @@ The following table describes how the wildcards can be used and provides some ex Wildcard | Use | Example use | Example matches ---|---|---|--- -**\*** (asterisk) | Replaces any number of chararacters |
  • C:\MyData\my\*.zip
  • C:\somepath\\\*\Data
|
  • C:\MyData\my-archived-files-43.zip
  • Any file in C:\somepath\folder1\folder2\Data
+***** (asterisk) | Replaces any number of chararacters |
  • C:\MyData\my\*.zip
  • C:\somepath\\\*\Data
|
  • C:\MyData\my-archived-files-43.zip
  • Any file in C:\somepath\folder1\folder2\Data
**?** (question mark) | Replaces a single character |
  • C:\MyData\my\?.zip
  • C:\somepath\\\?\Data
|
  • C:\MyData\my1.zip
  • Any file in C:\somepath\P\Data
-Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |
  • %ALLUSERSPROFILE%\CustomLogFiles
  • %APPDATA%\Data\file.png
|
  • C:\ProgramData\CustomLogFiles\Folder1\file1.txt
  • C:\Users\username\AppData\Roaming\Data\file.png
+Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |
  • %ALLUSERSPROFILE%\CustomLogFiles
|
  • C:\ProgramData\CustomLogFiles\Folder1\file1.txt
diff --git a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md index 86d980313c..d9be336928 100644 --- a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md +++ b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md @@ -34,11 +34,19 @@ author: iaanw You can exclude files that have been opened by specific processes from being scanned by Windows Defender AV. -For example, you may need to exclude any file that is opened by the process *c:\internal\test.exe*. -You achieve this by adding the location and name of the process to the process exclusion list. When you add a process to the process exclusion list, Windows Defender AV will not scan files opened by that process, no matter where the files are located. The process itself, however, will be scanned unless it has also been added to the [file exclusion list](configure-extension-file-exclusions-windows-defender-antivirus.md). +This topic describes how to configure exclusion lists for the following: -The exclusions apply to [scheduled scans](scheduled-catch-up-scans-windows-defender-antivirus.md), [on-demand scans](run-scan-windows-defender-antivirus.md), and [always-on real-time protection and monitoring](configure-real-time-protection-windows-defender-antivirus.md). + **Use Group Policy to exclude files that have been used or modified by specified processes from scans:** ->[!NOTE] ->You can exclude files that are opened by specified processes from being scanned. The specified process won't be excluded - but any files that are opened by that process (regardless of where they are or what they are named) will be excluded. If you need to exclude the process itself, [exclude it as a file](#exclude-paths-files). ->You can only exclude files modified by processes if the process is an executable. - - 1. On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**. 3. In the **Group Policy Management Editor** go to **Computer configuration**. @@ -73,7 +79,7 @@ By default, local changes made to the lists (by users with administrator privile 1. Set the option to **Enabled**. 2. Under the **Options** section, click **Show...** - 3. Enter each process on its own line under the **Value name** column. Ensure you enter a fully qualified path to the process, including the drive letter, folder path, filename, and extension. The process must be an executable. Enter **0** in the **Value** column for all processes. + 3. Enter each process on its own line under the **Value name** column. See the [example table](#examples) for the different types of process exclusions. Enter **0** in the **Value** column for all processes. 7. Click **OK**. @@ -104,10 +110,10 @@ Remove items from the list | `Remove-MpPreference` >If you have created a list, either with `Set-MpPreference` or `Add-MpPreference`, using the `Set-MpPreference` cmdlet again will overwrite the existing list. -For example, the following code snippet would cause Windows Defender AV scans to exclude any file that is opened by the defined processes. This exclusion will apply to any file that is opened by the processes that are in the specified folder: +For example, the following code snippet would cause Windows Defender AV scans to exclude any file that is opened by the defined process: ```PowerShell -Add-MpPreference -ExclusionProcess "c:\internal\test.exe, d:\org\ui\compile43-h.exe" +Add-MpPreference -ExclusionProcess "c:\internal\test.exe" ``` For example, files opened by the process *c:\outside\test.exe* will not be excluded. This is the because the opening process is located in a different folder ("outside" instead of "internal"), even though the process's file name is the same. @@ -151,15 +157,15 @@ See [Add exclusions in the Windows Defender Security Center app](windows-defende The use of wildcards in the process exclusion list is different from their use in other exclusion lists. -In particular, you cannot use the question mark **?** wilcard, and the asterisk **\*** wildcard can only be used at the end of a complete path. You can still use environment variables (such as %APPDATA%) as wildcards when defining items in the process exclusion list. +In particular, you cannot use the question mark **?** wilcard, and the asterisk **\*** wildcard can only be used at the end of a complete path. You can still use environment variables (such as %ALLUSERSPROFILE%) as wildcards when defining items in the process exclusion list. The following table describes how the wildcards can be used in the process exclusion list: Wildcard | Use | Example use | Example matches ---|---|---|--- -**\*** (asterisk) | Replaces any number of chararacters |
  • C:\MyData\*
|
  • Any file opened by C:\MyData\file.exe
+**\*** (asterisk) | Replaces any number of chararacters |
  • C:\MyData\\*
|
  • Any file opened by *C:\MyData\file.exe*
**?** (question mark) | Not available | \- | \- -Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |
  • %ALLUSERSPROFILE%\CustomLogFiles\file.exe
  • %APPDATA%\Data\file.exe
|
  • Any file opened by C:\ProgramData\CustomLogFiles\file.exe
  • Any file opened by C:\Users\username\AppData\Roaming\Data\file.exe
+Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |
  • %ALLUSERSPROFILE%\CustomLogFiles\file.exe
|
  • Any file opened by C:\ProgramData\CustomLogFiles\file.exe
From 59dfd0f092d8997636047c6cd4777ff523fbb892 Mon Sep 17 00:00:00 2001 From: Iaan D'Souza-Wiltshire Date: Thu, 30 Mar 2017 14:43:51 -0700 Subject: [PATCH 07/23] exclusion fixes --- ...e-exclusions-windows-defender-antivirus.md | 33 +++++++++---------- 1 file changed, 16 insertions(+), 17 deletions(-) diff --git a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md index d9be336928..c8456fa9cf 100644 --- a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md +++ b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md @@ -34,15 +34,15 @@ author: iaanw You can exclude files that have been opened by specific processes from being scanned by Windows Defender AV. - This topic describes how to configure exclusion lists for the following: - + +Exclusion | Example +---|--- +Any file on the machine that is opened by any process with a specific file name | Specifying "*test.exe*" would excude files opened by:
  • *c:\sample\test.exe*
  • *d:\internal\files\test.exe*
+Any file on the machine that is opened by any process under a specific folder | Specifying "*c:\test\sample\\*" would exclude files opened by:
  • *c:\test\sample\test.exe*
  • *c:\test\sample\test2.exe*
  • *c:\test\sample\utility.exe*
+Any file on the machine that is opened by a specific process in a specific folder | Specifying "*c:\test\process.exe*" would exclude files only opened by *c:\test\process.exe* When you add a process to the process exclusion list, Windows Defender AV will not scan files opened by that process, no matter where the files are located. The process itself, however, will be scanned unless it has also been added to the [file exclusion list](configure-extension-file-exclusions-windows-defender-antivirus.md). @@ -64,7 +64,7 @@ You can [configure how locally and globally defined exclusions lists are merged] -**Use Group Policy to exclude files that have been used or modified by specified processes from scans:** +**Use Group Policy to exclude files that have been opened by specified processes from scans:** 1. On your Group Policy management machine, open the [Group Policy Management Console](https://technet.microsoft.com/library/cc731212.aspx), right-click the Group Policy Object you want to configure and click **Edit**. @@ -87,14 +87,14 @@ You can [configure how locally and globally defined exclusions lists are merged] -**Use PowerShell cmdlets to configure file name, folder, or file extension exclusions:** +**Use PowerShell cmdlets to exclude files that have been opened by specified processes from scans:** Using PowerShell to add or remove exclusions for files based on the extension, location, or file name requires using a combination of three cmdlets with the `-ExclusionProcess' parameter. The cmdlets are all in the [Defender module](https://technet.microsoft.com/en-us/itpro/powershell/windows/defender/defender). The format for the cmdlets is: ```PowerShell - -ExclusionProcess ", , " + -ExclusionProcess "" ``` The following are allowed as the \: @@ -110,18 +110,17 @@ Remove items from the list | `Remove-MpPreference` >If you have created a list, either with `Set-MpPreference` or `Add-MpPreference`, using the `Set-MpPreference` cmdlet again will overwrite the existing list. -For example, the following code snippet would cause Windows Defender AV scans to exclude any file that is opened by the defined process: +For example, the following code snippet would cause Windows Defender AV scans to exclude any file that is opened by process: ```PowerShell Add-MpPreference -ExclusionProcess "c:\internal\test.exe" ``` -For example, files opened by the process *c:\outside\test.exe* will not be excluded. This is the because the opening process is located in a different folder ("outside" instead of "internal"), even though the process's file name is the same. See [Use PowerShell cmdlets to configure and run Windows Defender Antivirus](use-powershell-cmdlets-windows-defender-antivirus.md) and [Defender cmdlets](https://technet.microsoft.com/itpro/powershell/windows/defender/index) for more information on how to use PowerShell with Windows Defender Antivirus. -**Use Windows Management Instruction (WMI) to configure file name, folder, or file extension exclusions:** +**Use Windows Management Instruction (WMI) to exclude files that have been opened by specified processes from scans:** Use the [ **Set**, **Add**, and **Remove** methods of the **MSFT_MpPreference**](https://msdn.microsoft.com/en-us/library/dn455323(v=vs.85).aspx) class for the following properties: @@ -135,25 +134,25 @@ See the following for more information and allowed parameters: - [Windows Defender WMIv2 APIs](https://msdn.microsoft.com/en-us/library/dn439477(v=vs.85).aspx) -**Use Configuration Manager to configure file name, folder, or file extension exclusions:** +**Use Configuration Manager to exclude files that have been opened by specified processes from scans:** See [How to create and deploy antimalware policies: Exclusion settings](https://docs.microsoft.com/en-us/sccm/protect/deploy-use/endpoint-antimalware-policies#exclusion-settings) for details on configuring System Center Configuration Manager (current branch). -**Use Microsoft Intune to configure file name, folder, or file extension exclusions:** +**Use Microsoft Intune to exclude files that have been opened by specified processes from scans:** See [Help secure Windows PCs with Endpoint Protection for Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/help-secure-windows-pcs-with-endpoint-protection-for-microsoft-intune) and [Windows Defender policy settings in Windows 10](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune#windows-defender-1) for more details. -**Use the Windows Defender Security Center app to configure file name, folder, or file extension exclusions:** +**Use the Windows Defender Security Center app to exclude files that have been opened by specified processes from scans:** See [Add exclusions in the Windows Defender Security Center app](windows-defender-security-center-antivirus.md#exclusions) for instructions. -## Use wildcards in the file name and folder path or extension exclusion lists +## Use wildcards in the process exclusion list The use of wildcards in the process exclusion list is different from their use in other exclusion lists. From 3a56a8b57b4a3df8d72d68258f00d9776b178f58 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 15:24:15 -0700 Subject: [PATCH 08/23] waas-wipfb added topic --- windows/update/images/waas-wipfb-accounts.png | Bin 0 -> 75298 bytes .../update/images/waas-wipfb-change-user.png | Bin 0 -> 74115 bytes .../waas-windows-insider-for-business.md | 166 ++++++++++++++++++ 3 files changed, 166 insertions(+) create mode 100644 windows/update/images/waas-wipfb-accounts.png create mode 100644 windows/update/images/waas-wipfb-change-user.png create mode 100644 windows/update/waas-windows-insider-for-business.md diff --git a/windows/update/images/waas-wipfb-accounts.png b/windows/update/images/waas-wipfb-accounts.png new file mode 100644 index 0000000000000000000000000000000000000000..27387e3e7bac46c9ab621d8581f10f545d4af566 GIT binary patch literal 75298 zcmYJaXIK+ov^_i_5I{--C{k0TOK;Lb?;S;{(nUl>K!S7#H6SG*9qC0tkR~7^(wnGs z5CQ2ZAT3C*|9F4*zVC-5Gs$G0IcN4+d(T>HM;jSv(p+J=0ssJwwwBr*002c2xBDm{ z#P^M24SnJV$n%b-3Q#$~wnp3`byC(>27nqo)tMa`ai7v%%iI$H*m3_}Ap8o!5dbcW zwbhjG`dDvdlVx4goajEZjQ;p>yXRJ|2hY})&kPo}xJAi`R6?tvRvTHjM8b5jO77lH z8v(!P+-~}2L?}H^`uSwnFUY&;V^hl0+ zMn+ZxJf{&I-x9!5s08)@JMZPDYiA_Q9P|0S?5U*7#9gbOdyM*AWMUMt9Ufl4wEy=! zZj|ZphasWwtJUG)OJrypHz&!LyMss+<-Y@VTRGY%@lr>Lg1bynefkT(s^`o!{^ysM z370g{QU_t~21madR+&|`u=2Acr|TJcUk2yUz2-_v?*0$jE;qwzNOZb{qGQ|G)V-kehq6bRw)ueZP{vAjq2~8+pxx zz9Y!l?sskQq3Lb?H<$NXTex-|4!iqzvN`{ow5kW?@qZK*Mb+AV2VWCiNHFA@u)O8& z_QUU9rB!~v*O$8=f<8Dprc}InIj-0#>K~5zWb=DQD#5$B|E6wWV}EUhj)_`r%d_Ic za={Hss_*ahChiGU>4f>GS)?AJ@7rtzeDB_iY@ypr{&%^$Pg+CY%2r-(bhQ=hP~^|d zVi~G-2o^Zu{fOcKu&Cz?9bG@?&eedo2-Bi{htuQ6T%E+*T9^6=%~SW8L(TXfz4219 zETy%SOLsrG*Y}&IIeV;;=-ZeUtnpLrZ@vf!{8*dzx?iYd3(~pOCPb zyOU8XX2W25?eR$eg+bx_!FLkA_ZkL0IWn4RwLHJanyy9Ch=r+fUgNv@UoZucS$f^S zG>;B3vZ?pF@2tXG-)p;_S34tZRwmiE>u53cDe2))W8=9Q-(qe>pTZX3`RCsnFB!iz zZEJjMI((ge7TY_gu)Jp}U$R@JS^DJLv#>p2pXsu0>Y8<>_g|q=IbYK^Uc-)$fBdzm zzuBm~`M2`U>Dia@hMhb0f{kBKZ}K5GPM6*<#amvpDoFh#w0|!3M!$Xh@$|dM*)89Y z(N9Kh*Q{5YEALK}n%4X5KVbO9GI2db-a+Som&oO=3H$fp=k~mRFY9lbmZi&@Z?@6& zw7uvH<9(%Q8e@5DJk~h=dtDOk_?~$D$omrbTbU9>zONJfJ{RuEuk`a&_QCo9%cUxo z(bbzN27RVKBF!@!D?ZMy1xK(1w`AvRHW%icJtmjjYDr<)pEQa4=vu>|n-0R#~hI<@F zX}4JxJX$b%FnadxpyK7H#e>UP0{Y9|U+CCmq-iOrQk>7;xr2H4*m(l+s{6<%G&(3?) zjmVVvKY_*PQM)uZbLG^(ShiL;a)%f5Y?l?6Y`k45fmd`pv6ZSjZI-AzZIyJV1|O!& z*X~rDOMdKG$lS3NOo?ZITU%c)>1-aNz+|BtC%2j3`*FKSGpXTT*q-8_kgtks`LT-S z9#fZV3w4U+c2fCihk}#Y3FJ8=Zapxox~wBl6X-|%ui=+C#c!wmPD9=_!k*eW|D|31!Pb@09L zr?-^Pb_KcX{#@>dxI>6{Qb%XQE^G1DqaVJ1UpBmpb|g>gGGIpVLXRgqNs}?@3hZathZS&!H7;u$tK0<_SI}vV3&C>#&#M=R4yosYPY52jxX0fg z?Hu`7-cW2fH_M7EuBoZE@rxOBbLbs+beQg`?4ElkYB&8-eT;tE%_+vszacl9Y1N>( zg_c=*fAv`9gK+Y_)bfDO)Pg>T*YxFoi|AL?ynk(D8*@>iS~m%_>?YroIj;W3=8p(w z)86pu{(R3PuzCG%?x|0^xu#1$_lM7^C1$4Sa zF~L2zASa3}lZlGGfWp4;y;{OjkHXXR3r+b4RfV_L4Y*S_H@wc;cT0FTBM(^MYc=l` z8hS+n^`qtaPK_t@n}s?)j69S<+s}scuAhOuV%$ar~01-rBE* z?ohQL+>y^MWiPLc5X`!qq2Hz5|7n)BPQR5uJLWoEpl;FZ<8jxN@j^u<%YCq?;Yi~B z-COs1s$DmxesMlwrK*B6<|_7%4|Wpp+FEHx%9^OR$nduo_3IyxqBq~S4o?s^_2(vM z4uoM~MjW)C?bn`6C9k*UeQC>>=@z*B6Kl*wODec-2lM(R?a)i{gVXnpgtgNk@8-R) z=h<69nVz$#%(J0=?ns53R#K)6sovvqox-M_Pp8$|X8YhBVDsRiK=a^X@BtIcD;Qk= zyj2TcK6Tl6rVK5)RE9cUw*UVG_bNZiPBgSjj*1k#2 zjWv2K-GHrJBp3wbjN^Z(Os47t_%3eap-}qZxt<5c1d757J4Lry^#0nYrf|zq0gKer ziuZFtmUBU;u2<9iB3BloFC8rR(YI2)8ykuj!n@NXwf23+BaTp?j$9qSOFf5oEDn~> zA%X>yW85(sbCiKXMcI=<2+LIlyF%!br>CF0+FVWoT5Y9J2eBz=ou9+MzD>L^aeH*E z9Xvi|d@$N%OgpxoL_4-9emFAY>3x2@9oqgE2~DQmHreRef{z7>o#oTgjn%`p=|Hjvf)BaO*p9Q8;@yc;G}_CzmTM`u({waPf`soZK}^5)p&uF;8!-%!yIudk{6tb?X} zYTetaABB@D&X2@=cwOZrb$+NqOEyY1^(f->nc~tPzIgreV6-=Edn9(e@GUD;cJFp^ zuZUUA7;p;+`t$bv#Alw|ib2Io^zIFkQk*iofLwEorQ4@_a$AiKqzSn}C(fkdfPHJw z`3*d1JM5HcBjmn{Eb7unsVYcNYhPrG(z%Amwg2j(#(DlaoU<$1kUxmZ?tT>}ctz z78fYZZIHfxg}##GKGe4d=eB`P_H; z^)jC5POfsinhp{ZZM2k)7p#Bb1yTOEM=SW(_s62M#mE-dH~A%4*g+0t`&0dL9k^}- z^E&vTjQ(}l8^pW0ucD(`B@7MtRM{ua62)~@pCUUYjzgyJ-fB`SE;kK2jLld6&OXNJ z^=g$_IV@H&gDoJdHY`VLY6=cE)`RTVF|A6SwTtd{E)j-TT9cD9KSaZ8kRjPs~yItA66LIJ-X;l7Gs2O zv=wf#PODfGoN?&#KO9=TmI241ckwadE=AXKAMV#hGfd_CSr86kJQo%T35NUbBQc7z zW|p3FFRt+?r=%2j(#q-KKI)_>4U54KULA_QgUMeakoXuiCD z)b20*X#E4Z%fq;zl7G)WN&emd*UwYuh@bh_uI{CG4d|m&)l+}`hL>qW$0S6rPCJ-A zwbvp7b7g#vsD$=;lJXh;al$b%MI&g|gNKto*Eo@*jflC+=}YdL2gbb=9+w5UB=1^s zJ2wu$BevHsFN(OeKbCeTSY+1wrT6ojzG7-YbWz`72~n1N_?5}Z`=^)e!K8y%2PMyH z?H8dKr34p3SgvOdpDnv8wb_84qSxBUiky9$-^0fM$pRYC1xT7{Uf)k}YdPk=fmFI` zUTqul@LT4!?oJjS;T&I)pRiqL(^CUT#aexTHjrQ0Aho9X+6U8NiMiQhq#9VZJP= zpDiodghzKU?ozK5S&xy+yF(q-5aA5u%5H>xyZ#6a$(A`5_0bm}W{2L#0>M2^x>6`jtM?rD2?@Fwq`Zceh6_BUfa*vB+)j zSzk>Y+q0;xPlvO8^Ld}N!qAIejKaix`|h5b@yYP7hFm>rID8oG_e7ieQG05%eB^Go zaed=?Os3ZaDl>Q>$HHe|*21R;1R(_5FlNW^w8@0CKeCrLdN(MiVx#EevhlX4UXQDI z(xFi!uF17r)7WQV=Xz2HV$Zh6W=zCO4tL%iZl|kA6D^;0apA-8@*+4@u_p@Ui(9p% z*lHhr)FvLeY*ij**SKGM>*NYL$en}wS0aa|2BYwucMtWmpHDga9scy@aOVjECed71gh+S}#ue_Lqk8CFjuCtVS(Mr$eay8-j3*jqgf|ED=07^0UV1e!|Figaia)n=^yYmJoBk z*gC%DYg4f5i{&K4f`f-Q6QsvNoW*uEf>#rdRzuLvNlGjfe!fJEDQK8)8M;U&H2)ol z(YpGwd8dP_upv}0*MI9nDccOy?IFXVr2)C^3ijudsFBOtn(Wu=$yXjwoeM9=a5l^h zn0(S-^ZXBdr%mX2tBa>DJ@OuE#U74sjrV3l;>cGG^Dk+G(?X8jswx~&ISDa_Qs~QWvbq##BYCn?O@ss zFCbfq^RE`k4LtbK_wHz?6IytL_5VGPU07EQ16_&_qK!ZKAI7sV!+=;{Zjc%1Dh=zc zu_e4><>}T(LmC!|D7Xcf394{pOL_;rU265QAtzw>b02F6)5+mBB18mGwSZ|9YQ)_r zkRcW(90`BM%S}nGVSQhOTiH?=j2>hz=HuWa?A|kU^1M(+%=72ZNe!^WG*UCLkiAZ* zA{$+wXfGRsFF6=O9VK8zL06vIh?VY&5SprUE-c9nk|i-yqE$gQyG}PGriIWhdJW`= z{rde|b1j=Vp4&hAu4f~HjuwVh11o$MQDAb~*tQHbFV6!Vb5tUupoQA8kp`9pixWZO zcyfGh^e^T3Z{60=&>%hV!RcLt2cHq>$_hL&(K(NFr%D`p;}dyQe&hyU_*%KQlbvk5 z8!Tv`_5vEqZv;;9!GwKBt9HbqbU!NFGO>-ACj@F{-z*0vI{wc!B0=oCt0cN9zyUT2#IzV){_-PTjEgiJFbEMliF92Amw(GoG zZt`~Z!^hb2+SuP(SH-rNXmXV2~|4<(Ou5 z1F5OGtoz9)NI4tHJ5q86Lpm0-&BO$OZ{rb)3RiesD{pJ;o*ymYIYz?T{PtGq))HmG z6Nd8p$gX)5 z33EEWm$$rn-eGr;ZhdiSa9*k7YO+uF6b+uV#>E}Px{Z>Gp7lp9G)zB@nWeQG5(|#! zqT-EZk-Yg>0Kz|dMe_03(bG&aJm}9=Amh|45(E>EJVm^4i zjscurCj;(EthU8$uxGrQS{%tK4i(;giO!N!pieNo^h{U|Wyx8B!sgZf&ytHO1}lpuZN)sD`_?w#|2VTppLeWC<86UCkt$p zetJ(@vjyv1Cs&1EP1ASn6z=|I0K?mc@>L6uZ3ImFLX^J(kokxAdoS%i>JEmNk~K=VjTZR5lvA|&G@blEDES%}cCu{Q&*&KCgfsIc{e z%k0ji8IqhGJ6J9rh> zZZk&3`j?VBHW4e}!o8vEYHAk5=^F7&Fmh75YV}tDw|1>Bsrg{W({QutPo@1ET6Wbj zy(-af^y}~uyFnS_03Ydun}dQK^+(dnl*1yIcul3_4+D~WeWFdjSaO(iptCw?QPLaA zjSxy@`{Y~+;Q8wYiZC+@Drb%a_;R-=-4;&znWtyrvn5fb`}yp=-jga;Z*V*fm*@Y& z%J^jIR|7G$O3zNa+HyjeazsVk1|+C~xqMaJqc*X(;7Ktj+BR|Fuh^cKWU;+yF^zcBX*{)e1R%nnU{UZ+zkmbxj^59LB1Soh!HT^xVv=NUX5f!l+1e;7^&n_!p zjO9vHH!o50Z-nI_VSO+CBFO)QlUqGAkoED#N|9cF{c;sr=hSzdy_W&(O7=sU8b*}^ z5TaT8wb}a+1>A;HAQDuo5_J*7E=ALlbht;(WRM)|CiC3uy1%~~<{+Z6tS99tNWLdO zmHY@mVGH!xv4ffHEXc4RSY_kli$`xLbeRnSUDo-|OfpVXq(}xY_``%lh)ehAPh-%mb3f;mi|HbVnG19cYd=7z+mMZ!;;hg zM&?ytWHjZ&0U79v4?L@2P}UC9&aE&z8d8fzKA9tImI zuYieSqi8*!Ju8r%FC(0A&wrMnfz!@K?Py#x7HoG=>XTXp>^nQb38({icGRG|p5H26 z71o)*pSdz$Tnoo1y{M#D$6z}U<`5+?7ISbz2qC7TQOD{Sf}|`w^N~eu8bQ|EVn~Yg z5jO(SkoDd#6m~bG(Ub2YPM5g;Wr1~9ooTnHr>?|I@YR9Bj~Xll@FSyo+gL^JgYSau zbFKsSW|4YMN)%WMI9QE@VqVl8+6F|aP*Wcz+#0>E*9wD{r!|6X6O`1NUBMJ~6p_L*z=F6#w)KHm8q=s{~lzM_LDbS~Fy#9E+>tCkU>ueR*>50I$Y(2kdmnGkG9RQj*H*ktem+x(K9s4Z!_5fb=8u*{^+lbXYZ-0;$c6y3&mI zu~*^|c%y02927H)6u_|Vv5{tr>~}WHt95+5SPc_-{cz~Ff!yX*d4KG3AM4Pv40st^ zqWXy-lwPSi*rl3=26s>?&((1>;l_>{!o_aGr*Pz7mpd_Zvs4V>byAt(KF9~@gz(P70Diw$1?g!dzzx5b$-DU(x`CsiS-$?*W1R14#QRpYH z^{^6yl7N33zERH*q@_m%QZVaJrs}Z0^5W#SP>vgt4Y$UI6;BR(w#aOxk>g0pUH}EI z-dOnK6cy&{t;G%8FNJnUT!W5)Ec=VBK1#sNGAKqh>Z3IKbh zsI+fXloPg|Nl}na;kg6S;R8KH)OL8+gJnX}gZb-n2pJWV*a}!0&_gppw5rW&(lZ8s zg$Y!Q10+QtUr`#8BN7$hhLVPCQM;yZ^LxYl0Qq2K8MKXIo+giKQVe0}2V>?`@y$4e zpix4vqpPh!TIdvDV+`cNEDU~@*Gy<5pMOaUhpsrxvfn`=wxIjULmXY7$peTW7}XmY z#LHoarc%xwiM^OS+b|HHrB>6rsJSeRTxbV!5=f1q{Ck)@#PVZpE5pz74D4{4v< zZ3kF1Vc@(Aw?6MK>=~AcR#J4PwAKTxM@^+qT~X<0yr(L!f2To8bcZ1)_%@iaNB3uY zTZ^k2V?}I}`l3H;=2e!5MCHi9uG@t3fZzRW#tB?9C+#fEplZd?Ssh2O3d3F*0#k&s z;z{!y*F&9e41@u2?346clwpYSMCTllbCr_?xDv1p8fjbPHXK>8UQB|IqOlOWeCi@y z3pNLJRcpN!+jejZRx9dDPGi6%na>g^@p_&%yolY#dmw}Lx1GSs4cC6aIeaflGjo-M z{kCE}B~=^F_WYS!DXYigUzJiS=Nrp0-#gxcN7V6Vmp&Btsn&3^`TP_KN68FUk+O97 z-2y6%%10R9FJF8yfp#;}NRcAFwm>r$yc=5uCHzQ|S|&bdk$Z6ntra-*8=yzJ%Q*%1 zDA(CW3TaA(4CluG&R>RFE#rEo-sQxoiXQm^5+GZKP_Z0*PPM(VXl7^w?vagF$2}zhM;(E zfdS)bW$!<;Pf!2kkNq6yb-pgC9SUn0?ffiPdV6=^@dNicUdktGEEaGvQFH=<9Pzgh zJ-s?y^fv3)E$$badqzYdX>17=D1G$wo0)i@pSj~FGZgFXh1B&ACk-`?1n0Z04Ikc~ z$P?DWcaE0yU5Tnv@K=-btj*qzf3lK(#5*|#1)v3EC9qmF4A?w=TZ{6qWHd2P+#d4ZYSWr0ug@n>e7 z#lhwA%2%+&cX(%)hG`i_C8vL4V5m#|__5R~{AWrXzMYL^QUlN9R@`fRQOZ4R?>lX& zM}I)tpti#V?>}?c<9CnSklb04FY2ypCA^}BX0WmBOZRoTmprW4bTKe%(YDw6Um>;U zpO8vtUp=}l4Fh`?IS$Lf)w&DHEC>gGE&SF&7C}Am;XyYcnQukzCn2ol2f@aSmcO!k z#Uoko-D;@npZGdn6!F8)+g<->QuAB*SJ8B*OJ)4jRPfi4E|NyYtc&02>AY}*Q{(X< zhD9G5@k>LRtbxu91O9WU-^^|)UdF8rf55p}MjQ6$(LrX*M6ZsxQz+AaHh`ReA}L9i zk-0kc*}NxTvXMG9cU1RiUENRJ%-~-ri{}$L7S9i6EgtV!`%Qo>c6IxHkWV>C-yt$u zCH)$DMn85XGsUX#vj}(GmhO~j?Jk0}tq?Im$eFX7&j|Yz6$v>{KP%Je@Cax;EDI*c zTUu@esE^T&;3<-)5OudtYA(-|38bxrfKcH-u>JRraVwo z2=4A2gX-Sb5GNX{mf^GKRgXqwg2%Hw4~CoH9gc;HAB=PuAJ((&#Pn6XyL>|loy{K^ zcDUE@toZc+{|N5<&!3PjxwZCK#kKZ5MUDAcUNWo{s%T^5FT23KJjA9xiJ~;^shLk< z^5(ufUS80@?Doi01ER8!+>kPQk;KADq+zU}qrcC$zc=6O)TjPa9))WE&-!B1`|s9* z?B@sX!t}Y+TU4)!J~3J=U_LqMG-2`i?9AdlJe-Lc&d&_EXwM9qrOWghm=d=Hh-MR5p z#ai8zCyUaKQj*$Jx_ECzBm8qkHT<5m9+U_1pks2-`4z9F#Sa`DW1vJzoBp_raLHO*=ITJW^}Lxc z8vm|rNiZ>&CD?&Jw@3KXy}{qtk&siW1I8Qko)R58`7iouZdx`Ny)*WI^k@kuah!jW zc{2Yk^QU;q1_~y3`xTVVcK3 z-&Iasoh`eiUO)c&`?trVe@%4tb+ZMNryiSPVrIQ8HeWpTl=a#(sXBT5qrB2WCVL{{ z{d%XhH-GS%W#-4{rTf)JD=98-Fjq&psz8yZVsry^)@93H8rF)-_d0f(9wor={#r!h ze!tEq@TL1=BHWH}7>-eq>7$|~{J>SmrKFguEZID_j#$Qmg4;- z^u_*!5iUXD^k^x;Bmm8s#jz@Qp}^T9kem_(n~FZV4|OcsAh=qcvnIHgV^$QoV1}plnvttANM_!JPG&`pL7+L&0^2V)LQv8xEqyEQ|&VzFde^3qo9}Pj9%4^q*>s~)gHZhHV z|F!OGyS0N3LQu|TQ^nG=sICY-Aexh#q)E%M6}D=M-!0=T6Iq`yd6RCQaJ zuC<&0ig#fzI1>S2EmrfEWC|8b?4GjF){-{=6+6BM7z7YwpkuZla!r<*^>_2=poLO% z8hnusch=#Xkf7Nd9-@*H@JQ1lfT~??7ZaouvdwIE0J_0peKwyTK(W7|5bq1kbz?0R z_Jy#A@4kbA6Zcd;OyZ=M**iW9CyOt~g!`+=bkxHPd{vo_!yPJXJPevZMyj%79B@(! z{PlHugkpH2(6PHg(}wD?iiNVu#eJ$noX-MVKD#!DLY60nz8||~4iA$|UbRV%_DK$L zSbR3%(QGhDQF5`T-4Ze{M>mxt+;7ep;W>hWABLZ}8(4kNxLkR~$SLriZtol8;ya;h zUkbvjS~|}uJhWdq9OO4=k?+u~yl!6pEIERN&tZ46Ar3Fx(2coA%F%yOI_hE%c_KEv|MMd-4)Xspn-rc=$#4^`xu;jH=h^gEKsS4kzHpc1%Y7Vc z0>4?^0Q-+OmTvONgv3`~s-2@00n1$$vH|R0+zxlg`LZLRaZH?;${}Y}p2DO^kct_T z$bBmI7oHFirLRhq#}N`LvJ27_&UC^TEZG@#ybQK&DuER=YE1#{U(()Vp6}9xNiM6G zI4Mg_crF$SOgz4!fN;4jRmqSB(zBjnjSou@a*mMYKxHi%T^{|h zkR~dv{?d41a1U8)ORvSfI=b&shOZ)hmX(=U?H1VBl@|rh^;sx-AT|;2Vj&2Ymk4KA z?z2eGgMizEclf$i_yZY@9)J`Til}8#@N;ZS`}gBL@sUM~QmOp{Jv#w+;gtu2l8YSo zsceoM`gUq~bQ5>3$$tr`=A>{5yDdCIdw2&DE;2Bz&&%q+OVevNn6^^kbuINhPb{A0 zxQT5ypISgy#d@X_7c1b_8CW5L6=K@nJ3p%&*HY`7q+H?N>JG);r*|dp8}Ni=U<4ee;MQ%<)NpBh~a#$d`8m5pV9d zs-?t0N}s8}xS3Wo>GJvA-b==1otS_YX>E(C@eyCD6@FdKFV|Cr-rUdJz>MDgFzGD# z%p&IHCTc~x)sBuX<;N=v7kezHs#DQu^;c3|nd)Q^Bg2;mqczoNz)s*UkPaHSUKQZ` z1>0$12eb3VRoQ3@*D=t1ZNvI#fkilIvD9tdAN#3!M+(C32vx9Gu*#y171@kacZwx- zr9|dIG(l^z%59=~%II~?CTi;nwTgSG7+ZH(F4?wOVv2B34d>^u#xbfJ9PGOf^623s z1(o+pgcknXZwv9nguzSs!LObze#?`>DEr;#q0Tmv3U7J|+1IcEt}Y}X9eLO(G9}Db z<0aqn%6)Idi6wA5YT~<84ME|5NmHs-8@grx)ZczX7*NaJxm{!6=bdce zB6W+~wfx|+pP=}eDf@ei8jalH_cocB`ZqJF!@I*4B74mGgVLHYBLhP(mZ|D*tX&b* zZBf%5dHkrx(XPkbBEh$b@nH_*=g`J;MT8ujAU-gD7W-F1m_ep@!Rb-7qlX5KVBZIA zevRhJ{*ROG$Rd5PuaGM{9T#ZaI00|s);ItU7%K+f?Oor8^cXrr#x<^|aud#`uM?^*Sb%i7IE z)OU3V0GlKWLy@tndm#oH>`Enjx)d+>NKoNK11Oar)wHk*b#cqq^TjTYpPxDGC-XA6 zBd?zhj<>rRjwx3ej)L3<$7r_=CWPD!N8zpy&(22tB55Cso7cCplqK>@J-WAcGezj; z(5|vq9n#r5<@HA1?$eKE2X~wgep=8-xN*YHuTVAWs{b`#b%6?4E#31$?5;S~l$+$qabRdl-S zsuv|eOjrbAm;sCfg?A6+sUrZM6_UnM9xxl0+#Nu-feMP71=2M$%@V>zv)i#wAas!8 zD{1P7Q88pIfEeQ&RURy=h&&N8M2;M?91;h#KLU)@K1zug;Km*^HNe>H@CK{|;zSzl z=`gR7#|mS5#6en!f_94@kvzd8eX2gF5$TiaS@TI~L8vq@57nRB5BoKkhsgm-ZNPpt z#(!8aFg8flfB0!pOeNh`iH+^Pst}gh*Il?N?g!>^T0xUm{ahDU?`_1`jX#-W-)>=!&gh@q5@tzd8Cm z{@|&MrGLY#^3A#IlI*E(-z(jOkJKNuHi&z9_I_rmtGiqNCAHjM`NafH(>LpmoHwgA z^*2Ad75BrZ%hAsMDO|3mT+`(e&b@*!#dLi+zNaPWdJ8<0=e=VXLqGem`N!urCyH;&xf@KK{ zse5!EA{nlVdoU!Lpp7RAH>1ud2sUnj766WXXf~MByFx0WdX=E92qhVi0ybR)n^`M5 zzq$jWfI%1(VQQIOC^Sw~U!lX~&Uc^{Za}o3@>jD|80m=}P$=FO8UoEH`$8wL8ng

q2YRjQy47r zDbi%iuA)E+8(#-tFotpkJE^RthY-y4qYU%YBjLXcY?j ziV|&0SI{{r(zaaGS4v;Sxpa}w4@;he>LJCO4V4&{C}MIIR6iOI+Ln!OgN1HCow{;9 ztkCu0caHy!pLBSFiemA`ShOfaG!IJgqDAW%@JiJ!831G*?N@9nlb#Pj{gBX;TZj4l z)YqfJ{WI1>lab<6vS>>?>O7Zb1V;HohidSMQd+)2-+vFuCn-^DVlGg}%| z3=eH8KTQb@<-B!r!9Vw`bNHw}RlIp)bL#oRpfH{2*NM37hozS<#opdLR5Bm3Dh9ia zW^SD_H+m=dJy{C8hMMfC(wge&2s#x^-n_eZMA5tQ+0ys&`n~7V!;6256sN-`zZ3bU z=#V*D+ndf-YShYU7}5$drI3M`;)r@GCWmZs_qDr#DAu54g&0m7AoU8gENd5bXl<<& zW3LoX%M=B2e*hb?V_wFh*|Qrl7R?N=(S6t3I%-40d0D~f%4*Dg*ZJecZZlR$tz%bk zW8!rJ0ckA0>^hd#XhD!c>D95r zq8PGfsHOnqx31$$$q`)f5JOf9P@Bb#aecK+V)Ru71j=aIj5O9Y1NJD4Nbw=HWJ*`8 z5vdAm%A{ty37lQZ=H??T37tB)gz6{StO-z8<=nhxEP1$QHqsl-hWRWBz(0XnVEjtD z{y@W6;+e{iYI~5H5`rTvU>M{(nzIL9SBKXj{HOzyBp$u9O&)613Tv{DTO#@lTn*VO z9Qw(kztRD@P5&fiwC{Y~6^Rh07(GE$jAg#2ZF}XnzY3-9C)qOGO$wHT@w3hGz zim*M(!a=&8^O=~OD8m*Q^#kR(!fYhT$b)92@*#*LXzi_^!m0<6ti2Jr-F>M~eG<>K zXTud4G)Jc@#nAbdJMvsghdPBjl4;1THKJD3ep2T}6v%KnH#+~SeQDGuSLLNqIwlIU zSJd1Uwm^nKUk+_N8Fd1%gL(F=nVA!VQR33e5a|P%3A7Il1L6=NFyap-(r(^XQdDW} z3^dPlAM-#UsEr&;iUB}vbcUhM$Tl#RVuH`kM}|6}4cAU18m_En)rpqQ!y8Fqlb(SW ziN2cX6^M~Bv}5t@v-^RIcbpbQOKY@Hicz6{D%M3{ko`BiPlcB2+D)r;FaU!j!DyKS zNDQ5wD`%iv1BW2AWkdZ5I<PI4K;w=nJL_^$E51c; z(d%u%NTk-9VTi!3i1&)W{}G9~T_UTky40*UTQ8ZSAhrMr(#(*W;sDDO_QGILQi&O` z4WgfibX9+iQtj=$Nt-Q#rSjtm6p(<(JBzq8$6_H^wq2ApFBKyndpbyi4WO^idshoR zOrRz7F~B-?im9nt)?s~okAq8eFED=nO0vmG=td2=*_|0(bLJiDtBZFk^Y|B&c!2i2 z?l+6+9W7sHF(J#u@$Az!z6AcjaPS|{p9%tr%GZJzR$8xLHfIzZV9*A!V;wR zd0f|(EXH!(NAife?7@O`Q4G=HrRAURUx{l`&E^$u)1FEWYar>ORPCb*%;WDL+_$w# zLO2^6ps_~Rw-#8MO71hUEb9`TWot=_fsp~Kh!uFh78A*uQXN**5fx{o*suIU6`num zp(le>?N>h@y5?Bo28*v;!!H}c_n@!+9tn3u8~P6M9}mIxI`7DkkS1 zI2z8@fmB+Ulzl{!1x6W)&t^9i}x; zn?C;KFZJ$hmE6rEA8^>Km!dhCsk5y+H0N%yf%5zldG3p@p0T z+LdUcbDW{IiB|Qewp12_@EHpmqaf0dtuo?BtMAomW9}}Q7!tmKs&cn!4(j-{F?>5f znjXrFdV3`14)3R-3%^kP8AkhIKw(+;{=kQLAr-SmoI?lEq$e@UG%6pmsyd4@nDj(^ zkLvVjhVdkeCr67c8Vl{xc3)$Wi}L@VT(Xnr^mYOh3<%a;DWL-!Yp<--7+jNuvZDag zRbDm@Hivp!{dtw8fyEZw_dS(f+R&Cxg=M-a!TVHTS)z?NXrt3sNyQfyubOp4ix`Q+ zBl-=QelIik!?xZkh{(`7Qh|Ak*jssiCKytvN<-;waPHYl2~Let*n4N#6JpKpnRQeaoiV9LQhao?V$o(o3D3;)hk$a5|q9}#quJ6~Qd4N6| zH?mqJk$jfDvZCH0k3zG(gL+8+noV$v3JaIT)&0Q9!tnAQi`$e$78(^;>G9PI(-8>c zgKL%A@XDRq_;KKm0(htYsrgS#f@DQWbD|y{@*+B_)elnUYqAWbcG9znO!HW?&O~l4k4&m`F#qHNpX=$-0odru>aPQ z1*}6Ajxs=tMEGk{Q6A%52!}QJR>olY@TBL`(3J-);bm|%Fwhw|9D*U57DwmN$)Z`NX)x<^ zzq4~TTwq_YG2urqqSuDlN>V*{mzmP3wakBMo3eKyN57l$H(`PBKNLlNGtp6t>uL*f zAg$&*HjP@ym4nc`d4vyKg{q*?ErqT+QLG1cJK=)iIBCM~_E6gIljJ*8zhB95w+b>> zck#H!cPhYC&jL~M;X6vQS^>?-aMVJMlEU~>HJ%4Xk$!}Vl_nhj)Pt_!$bYH*R(Q8=fO&`Snb&TJ z-f&>R@#0dKZon+DugcR6S?g}_Q@SLUZB(kG4s6#&Nmv?vE0kR0XLfc@Xrc_IEwc$g z6D1Hts~>ZR?|x(S=69kAo?*(FxM-7^ZXM+LIuOmsC9Rb#5W_R1Jxq)XD-z6t#Y%(N zU@Y+>KsXEzbUK}@qfC^W@dHIyI&T}ueo;$Qw; z?;hJ#LPx~KqatMsl)=7)6!$`ok?=r9KZ<5nVc`{d&Nrh=qXVO@yrlKD8t8E?xlhI^ z4fGn_)^8TKYr`6PrvyE6zS&y!TCHCvj*tzaqRFdIZBeEV{E*VB*1#!ULmB<$oUip}?vu zEXXRsE6GqnL|XFiiH(^B*3{HjGh0et1wC@5SGf_t3#me(hoDU=h=8lT*UPiWmA{Ao zO}J(lbLQhE3DeRdrYnbo@oBEEA7=jD+k6}ZBwydFZ8aohwr^qjigkp#W>>Mn_+NFE zYznFc)Eo>RA66+%TXhtw*CHspomu6GJ-68TSI&mq%d0o$vX0RAuQ8LE*6m9*{fxi z&kFz0GK`ewMjp_@cIdcUMb{o1cmDFmDHlLy`hM{ zrWE5|>8WTV$Uxg@|LJcW#Fs1&X+?qcON6-X?>LGWbB@um8}Y2uZ53WDcl!T=A=e66 z;eCIV*<8+dZeLy7+2=znCkm}B=kp#q5Zk)B4hvNKu-?CiL5$LNA*EV4vRN~6z61%c z<#D@Iz4WZb{~u3h9o1yq{{I0AA|n(PkOt|Jk{lr-(nvSb4bojA zB`q!8J-P-1X<;;s(I6o)8b*xz?RlQ>`Te(ZcFxY{oO}0mU+?$zzFxQVN=L8i!c2Y=wqH>=jS#uozYV9o61zfGMR28gIfMoVJmDxkmBVXp(V0m=|v5> zv7u08a<({~T8~ZPu`^F&b{Jyt^?&Kiu zD`tU^n$q#vDox`!CRItp3$&1rd7$B~eSnyW4pziGKa|P1i;AHS3?uY9+O}7ya;BFvG+gjfBt+EPwmkcKp)_B z#~X>rr|+H$nhGaKx^_@cXutbsI+aZak$v^IalidfbUgw%@UVdf%|3bL!9F zq9#mdDDI<6oE*#;l+~|{)=@@pg7W)EkxAZg>@71}yw3PM)rpIlBp&O@Zc><$=p8$(FYA<+EVf5W?K&)kP0{yqX|$soDfA zx8LC#fM2>!K>t~9tnUne|n3(4ACN4d;dQmSQv2IPU5Nd#-e`=d1?m8~?yzW~R9-Z_LZ`@6+GVHv+fh9v_ z{B(~+0N;aor&WUKO#yGef206tEdcPp<2+#?p@6JQJPBoE7Ju~TIRQoO<2hT(^8vvH zlC{Tg@gp9w2_Ys-bT=Xe*jPS<3KHkJ5?!rVt66u@PX)i2q<+(1PvQNRoKzRByFC+H z&RvqZBd2>jlku)(9B|)A8-NeM+m|P}+wgFeMB+>1t7xVxv=bK66KnK-~rDKb?&Y{sCe zyu%`#bR31`u=1yz$|W{EJ(l|$A>T#c3+Vp-{#mHXQYv{D7>Pyq#u-3{y+Nh+y_OD> zHVah(cuHm6uu_T^au-ql$v6f4(CtqqrGAfHg$nfmdaHZ&M8eK#UCMa2iXBhrSP4uU z$;RWKY>R%6M2%@;I!59z{bv9NTaJ!53(*~)2;LXn&LpBWBqBr3v5%kAN|naa2`r@D z_hScchV-lY@iu*z*fm)qwq3jXk9wh*q2>!uF5{;$*eOhS9DrM22)$aT7>{tL`?8S9 zrnr#ihy9m9GMp*uK(bxSIeL|a_ZC4bAp=~MBzeS&^`y!dSK^h(7vR-nBw;k4u46FO zEX`S$?z*m30v=r~YQO`R|4W!w#LIDY%phgTdJRWSDW4?QmMl1wjo^2@>)R`Ox~a$e zZM3y`wSUN>$&jRP&0jwPY#8r#4_73oiGHR1jl+5h48FxK1N7)_0tB}3bMUm;g5xf+ zzdrsgL-+9yv3)wk6pDk1vRY#AurXQ=`Z58Dv9r}A_oUkBr{AI;Q{b5eXJJ&%XO*fi z!7r)#2nUYz61aC|Qb{;a+v(>3oAYQVEV&C3Q9Ar*>T*&PcT>ijQT=0XgbUezWs-gi zkJV*`68MVbt}!-fdaV=?AU4j8ouAJ?RdjIty^Pi)`~@qcZGq%eoJu9*Jid4v8vB z@AyZcB&MP0Ur~74C&dUb2I}H+zhc38$q|beqr~{O761y4lzy7N&h!XiL4q?EESgFk zO0JIemJUapSSrE&2@AFO(-NL1<|L$XTZF$Oc3%ZkIWtn>yw+Xrw#RC%wP2&nlkEgN z9txkE{&+sil(b|~sHH+iD=~IHk#2SJ zGgX}5eUwry37i}Q>Q2ElAk)umwZegAWCeBxODhW-s2h$ zo<=2#&6z~v^i}Sel z(HksHPMP14-F^Izai6*M1>77gJ0fIerFFLS$>Zs~IVo{&I|3fxW zq;%poN`+$+Olb^w)Ypjf`&-MmFbb(h-3xCpq2ypT7AgE-te-m}ZzCTok{KlkJp%l8 zRmvVBmMY>V;jsj;%1dsBO)w|tqWM8M-sX-;MCgAK!#LjI2rc}=>`%D@C#S5$j!Ni8 zCdVgiQm&2kD=$ANFE(t4Jz5BJuREvzIT5alYJ9nyK(qCmF|X6G)Fj^zNO&m2Vmcgu zlg`XQb!WDW^Dp6vFEbIO;Ak>@2Y~a)>;qYHl)H>b8|`{=3<<8q=v||r%MLBo24N!e zhxdz&|Gy9rECl>lWhcZw`(3ih;tOG7?4d7>{784}Xw^;F9#?Z36L{3CMZMlor>YRmhS#03%bzq4dTiJy<;n zM3z9?B;4&j0t}F7Qllg8Nqmj7zsR#OnY*aoyYDWT9{a@S*+>24P`5Z4s$r7zL5bv) zjl9*bLH@6wT)Tmi6TOpJ8UrxOigU9cR5a+~9}w9q(sKu2fmq;x0i>G7D_6iyCl z{1Yv_Njlaxc1It`DrTC6nY=$4EK>FnCffS=e6a=-c&BMZ{A>O`SgVH-idbBFAQv=n zP_neI)F2=_o(!x*e8chT+Na^7Ylb~dY{A=xZ zb*s_oukwH4MT}w^L_Okt^FJ!q|A0_IG2{vXq5+O=IlR34MzX;6mdr|OC7{^DRNsWl zS)UqFnOsqAQ`p_Wr!VH%yd=5hMUISSWlHGiDAR~Y^5IU#@OC9&Z*?^0XaB>D3N-o; z8|gZ#`=J2&Ql+(Eq$d;jQhz&-jX8Y#hHIj`x^wcdTKVZw)s*&8HQe)nY~C&XCi;)W zfz@7WO-bd$I$t%nNyU%;Wi8Rh5^ZVVvNCWPxcSKoaHpF3&~Ph)jpiaHl^-_IOhn5a zamlCB1pS0O^xt%q3HaD^DT=98Myzmg9h43~P0KffdW5ZWaGE~2QB7lKiV@u?Q#U*~ z(>lw~ZxOHUMO2Gd&5yqK>@oizsOV@=TM;w_u$7{(9cod?z7O>ul>nv2HZ zzL1Afhcb19zWA?ew%g=w>zZ?sziL}c&&rTijK zE%TTEsZ9*7>^CCP_GtkXfyD-k7F8~2Fe^q+>$h?n3#;$4xy1A^hf6}0FWNbxO&aO@ zjd6@WT~^o@9WL5s#9OmGC@V&Q@`f!z2Oqea?rjn#YV$t_asB7uhM>cmgY>(SxXQu1 zChCUO85dM**QSf`L*2&JRadI{g@NnHJ;Hw^P-76jaeu~}toH9AYo7DrP+_0_cqHh1 zCH;Wpe;GiA6#~3;Bp)ng!@N?S@%o#a*(^H$;|M#MF$b;=%+*3$w_pTK9as3HitSRBQ{yvxGa6jh zc9shn`Z`v`JHOoEet zj5SW0;5r!kVy(DIBG*Jezmq?8w>Q55?tA456&a@Ki*yyFG%jfgzvr9soWu2?Z7^O1 zm(M_kJt}l1rHdQdZI-Y8u|GgE*qNIf8&6yeQk3lq>xZ1n{ih6w?3?=4?>!V(&0R!a zZY)-qWnGf~s$54Rn(i|Zjb{2B)%wW=^;2xKL*bu<66^nWOzYI0jrm9#vll0KE_pFW zOrCeSE_d53xG*&P{Fjgy3L=;NTAj{+!(Ek4G%DEaIRv^Lc%7;RCi!;B5*3u+(JNgB zW>DD6SeAp*A6G2BRY|cAFLO1jYjkS7G%;Y#5SUX{+ggyH+H>aA*tn2%?HD*gC>_^b zR+i|t231YJ1`nffG>t{oinlhjwA{R^D;SBG<#Rh6vM3#aM^hcETD>ZB`;cC>JjO}H?Ru5`^mOKVV2+Eae3eg!hu ze9IimM0S{tF222{_E`LOm5Zs4fwtDrE1ERluI?K`H9OzxcUssZ{&1mZZ7krwCE4y4eJ&Uo%o||5xnbI@CeGgEI(aVkBSUI ztLc%H`jXV_K6%5W@^%(>Z(lvg^Z6oZdnK3MK>eQy z1SlDC`*heTt2{E0`ZVG>|3^ZlxR<^AUIW8l!`rd}RwV}4L9orf2-ycPdb`LdF&Pt#BpdsF&_+`M~Jc7|qwb+US;WzCyWLGo z4sY$Cec7Ri|G1{18x~h_r1Rn$5*~&(-IaCxPQ7?mTbY6vu3=jXjsz_KKB(n0;fUw- z4fV_b;Y(5DnMJ?x49b9p^Z8*FGY?EvbYv-MdKLBf$o90=oQyEdJe1Nr{Mx+Kk2guW zeQx>Sb$C~f302$|!;Wi)Rk?103TW(~ZJdY_@L+|6*0p>vw*VM6L@=dG5VyvDKd`0` zC&AsRURKNRujFX7(JFprkXi*)e}-=w?U2sX$f+BvY1jRWk4wMdo-8rU{+-RrFZEF` znoX!fTccS<0ccBqr`|P|k5kVGT%7Etm2pIHIk-6(FZAJ($6X>?I}LJAnf1|@v-;&G zBUe4AyAc_fEqOz{;VF+!TSPBL{b$VQa zvz=$W!kjdS`9N(mRxS>&zY2m*7rwC>MkOu{?`(QTJkY-XUMuI+RVZlNPsIp+7Dfz? za>Dy4iqXCU=ugaA2SNM7#!uqY_7I((66V%5vvVSqf|EYV*Ug5jO4Spawl9CZEgace z%1d-Z=*`;CWU1$-+3#}>ANmRhHnzk(ByQBL#OEA9k)Saj<*cSDpPKrr*u8gwR(db2 zXQ;OMol^!z^q%d0NB)nm={EFeV|XW{Qec?R_utdl?6wi%mOjKQ`^kEbNg&=a^=Q`B z9FPR$5IN}49F$0&muY9J;(r(JI;!7lEW#9>B4Sotub9eK;~n)hoJZ|%Z5w<2`G@dv zjmhI{c1~j(z4eV^cB;-dKMPDTPVAsokBhW>$ILEQ1E<#67qTM`;q?ROKTfGiUG2W1kO zhWX~KDMrle#SiDc?Ad2X3LED)npQFl(U=|6bZB0Orm}n09#PgS?DozIj|&dJb+O1u zaE%!K?0I4c^N&6Y2mVN7@BNZ(H=)v8gce`k{%-lJh|e&5B)^iA+plr;+$B7II=ouD z0{@%qKO&>NTY4vQ#jy$5VeniP^u$1?0%7zrPvT;m8|D~b^YU@>rE5;FSDb?a~ zHt-tS0JGi&ReN7Yumv59U8LIlK2HCBu=*xkiijkX!7N>(WrnU()3z7!ItxK=qr(P! zJmM+sri}e*jD*1N5p0=8>cVTiRqKZHr~x=r7qBlp{g*<8zjxL*E<|`$fz{pjnmNiL z)P3OCLxG>o5`#jb=$x}1zXU}S-f~d=^V?uz_@#^X#&3(99*-Ih79Qmi9^>@%`Jp4X zeeKQ098r)@kg^T2Bs8GdWq|i3{M~RsGFV5Rndf3!lQ;B|g`2Of&y+~kl>SYmJo{%s zE_6ayGHOEhOvXpxj`pTGhRifCG&hm_+t+&#??`%kcbI{Nlz@%CD`7|51@JVSoHb(Z z+hvX$IoBY9kz~Mr?)}hr`~c!NiPpzlUw=I=0?o{Ja$Pl=B9pO2<`h_*nqfbkp38F? zJG<&4{d8`OaT?FY`0M%}g@NCGp*(i{tC8b?<3IZ<3W|;31z`ug4m%xb81eG;2EvkQ z1QS41kt16}@q5G~!sGudBlCUURwE(gW%=tvi27TmTkU?mrjyAJ*Lk+Ah7T=~B}M35F;c>3URB||uc zR$l^X$c9V=%avW2Uf`Q?!PAsQ=S0aj`|Hy231b zb>Es1u$zvVpfqFO9fAq9XEK$yzPD9joVNJwhF{W>4*6E})Nzz-q2g$Z?-ijC+p(dU zO}Towi%GF>ax(kSE=vYoLBNm#ZB5*Pkn2*R1r*XwGt@hr{BGt08OZCaPgw*kSv+f- z+rAJ@rY{uM`%i8~Hg%lzf6eSq6E0q*hi=WE1h4hRl+LQuPS;Y<1xI{M<0b{~9&^As zgPJU>^l_r;zVvMw*AEc?S}j4{pbLiTKp5$kC)Wr`Z-Yd@~!M4mSzr^l{aU?wHa*D&~iW$CT+&23>0 zEO{M$wiL2W@(lC$=n{%5!G4JLAijPOg4OcQ>t+PTZYlk#G4MWwh?qqNm>tuygsYR; z$)C@XobA>1R5uHDs^nhilpeP=$MUs0rq<9`kyzx>7&&7~;Q%Y#-#Ki^ys)05zKC zhhycc)%e@eZYT5WyHZ#!(`lFb*!Nq=mX0zon5M?2gwUW+;NN95f}_01FqcTbQs0?y zGO)$J3}o*)HP+;7lLjeYs0^&QsLm}4Kx*L+qLP{(sM!|Uorn*-a$)kGnf-DcV}JciNq2;J&aq}`ls5MdA4v6=YC);By%$Zo9Xlj`n7MuVuUv% z56AM*Xf#la zU~_Y2ZVmOGg&j+%oyUBeN_cY@NLFlCB|6TlETzI|uNb-Z@mlnudJ@ubMg^KNZ+?Ao zrA^qbJb7mlGdaq2>fzk}-h-OYKtm_lE=)c+UQ|KIVFL2hHU}pB^+I0|mR0atwRmr$ zz1?QqcR9QBtURrl8o6y(3Q1iMG2m`;Rd#J#D7K1Yf(?RI9ZN0e=Pg$ov~`Sb&1jpB zn$&j-hm&6sqGLhAXh((f5}lM=%r+B!5p9Trma$%F7lzh%`+(srgu6O%s=R+*Z+o30 zVZQd)?QkNjIg*XaENyP{cj!j^&7!%DpyADIeVCJ~DH0;GP!Xu=Xdq;=h#0!F=9O}` zUt1m<6q|9Q%5~Nm{Nm?TLKM{T2@xQyM_fFH2wg6%_4!wmsx9+e(q^M&Y*M`(P_}^4=_#OzOaGY<(0}d1k1-tJ3GcnvSd%l( z2u=O?KBw#5L@eU7$Gq@<6v-pe=hn?9QF%;}!ptTh6Ko>1>DY=PfopSnuI zk;1aX9=TN!?eVi5Z6+L+!>^TfHS)J!rm$DCYRK-sPSJlxVATB0g#&eE&FGFUq`1(9 zh*eWLI+`t%I5{6^*0gw58k8B?TTw3YXIq!x+bh0-Sy;Nh<=t1SEN!mQ+Bst&)mL>i zYL{AE$^nDyE+=GpF0^iPoLVP~hdFSQ10`p_h~vKv>*ZsZ)Eo;U$s3YPz`oult68z> zcu4I-vL+K#V<7bOlFEU_eQ)g#^6Ql@x{=}LM+WP z;**kQld@q`v=Z=DQn#mvAz4!IJCA@vUnwA2*M!^wK^jMccQqgGiMBfM#R*mCCC!uQ z0O~Qh;K!55P692>jy|cnPd>d@MBn4DU&)!o%e2FjL@@e4 zqX{FH7LMH96RL_KtUCdy0u)JoRYWrQsG(5BZ=#jC#d#S`ZY7u8oLfj2o+ zIC}26z48$Oaai1bgU z>f9}Pz(3t3RuDqy!WHnoEo+-3^36x)ww-S`hMt}N@o@=S?YR zKi-IXQ6`jzq5lEjxwJX^r|`>D;QSM#6^H54VwPxiI>{Em6?Yx+ORDmqs=FbMJ=)dc?i}}u zg^PCcZ8B7D`eA)I*yWm4XTLqSj3(xp`-Xio(;mwV{Q2(4iJ5sYvDG9Q2fJp9B)g6h zCXPSq!ug)?AST<^h*O6y=Ri@+{*;`VS@i$IWXDpn6m8kD6OpHzr zg+Up-GV-LUb`vATuO-a$(JH@clGii#CW2CpNA>a)jdyE8_q^aaP1)L@ZRe@^dm_?A zP@<#KhsBw5pHcS%Lw+s4nY{{`qrHkC@vM?0O6$EHJieyY?D>WHH_e2`(vE)Q9=;+@ zA@Y4W??-PVNj$3v^Z)J&gAkVX9a)h1g=JLhPJf`C$)<`?{a9b^95v-z0f3(5WT*|X zfJDc}Mk@p9`-@7|JBah@yjhDw{)iV zBF)|2E4rUdAAzmUKKBQUxAblIUwr&X{sos?J%sB(93jb&zN6@k@VYXCrip(*(FVw* z!R_)|B*q&&I_IvhRzeasMM<-e_B=uj-k1f=w+j5zqA)7sfAy_2vn;4jE%(#7<8B}_ zSziS&y=%`fGH!MH`De3*XPbq?Bka$|PJA9&s4yZ-+hnerA1}{EQyn%_bf{5JE4uem z^XxQTQ0(bn#SWGJ$YMCI!iKRAu^DgMBdML1TjS>a=Z}Pg`7C1ZrWM9)A8P19+HCV*2k^a*4-k>|>g3li6;E|`W{_W8&DpAdX@~HIHfIlREQ5awC+5r)T00B=8RoNcxyn+l0TQK{G*+tTQob{)A~ z*ES-F3-N5%ztxakur>S~D&R4i`9;d$ORYXeoo!;?U2@|97?4U8GRyw)F^xS4v-H(F z4I()qSHJQ3;F5w^L@X+g>xAy&4)8XV-}3i+;?rwp9KQfv+D;Y^ zK=vqruV;$}%cYiE+rhC)lk$-*ZYyUJ?rQyn$h5MQuFo~&fuL2)3_ z!9KvmR@~S5=xxZunCJW}_Wlnkq7xrP{;UaqEq`iwbelMP6Nxd98Wu#q3D7HrHZEdg z@BQsiUuss$KaJtScHk5t)eadydCiCW+9ul*O-Bj~-rBQe@ZFBarapXgxhUX@Rzr1xP#hh zaIpgQCZyFt5A2nXOq}&A5w(h~?-m#;`eIgVnzFFEX$c)T{ed^O3h_VUb@)ksZ!k`N zA4R^TMj}(X;?nn3j`psqpC%TbiJWfJ8e_!z%L}nlk9& zSZ&LM%*}FkMK8^t3ET1W8KxQ(oC~9Z?r4FNF!`hz)4UL?DOXf3R9%LwN^58xwdWkx zxon*XwiDIGTS}?OR$>-wR}z~Uu9Gt_sNY|!XAqBB8AAldkWVQCfpjJB`50=tfs#Nn z?|k1EDp68@vp5bX>4Um72eW-b$2y9d$66cX?p^MyMK}9k=Ln4&jZwVSiPCZ=_P1Xe zm^D(n1(z)`dj#g(pn%^D#F{1A>Fg(KOp-@+Z*;lER{_u3599h28fcC)n4*FE$+3?g zfX|g4w`pvpto00k976f4v3?PvhZeGe4DB<8TSY9gOKd0|f^dYmEc_ zsEw4DEl7{@Q_I9|AzL<>nqfuT!#hs4dPLPhM;A7)FH#2n6YqkUJF$k;{{(NYV%^`ovjs-{-$q6(f+eZ zAv1#7{*s{rYpGx~06FFO`N>}hb;B~kRXKA0g1r8KcayF$b{a$a5 z++8MLTMP-&w6S-qx600&-T>~=tAu|Y(+sNp17SmH9aBnD8BPsUmyRVb<Ytt0+;n zjWEwMT!!i_mh4VtzTVp{$%Q=l+pl}vzoW64o=ese|9U@bsi7g?^(|uDKm~Zs9Hw;e znM11`p};?9{fpdH>B%)ZIs~PP^4pC^`N^G@`UarVAa{)^mYJgBq&wxy{zof-L!X+vXz2v{k~lK2KmLsmim96a#bdz>c7&`v|BoLg(95e#sX$nh8<1p z#Qb;{5wO{~)B~g3-1oqal;o{$vIewxp16%$1edy3()+?~$=Q23lZryscIlSY%X*70v%n=e$$`rx6(&0}METz8z`NE_k!V%*A#we-OP^@rB>G|MXEz}-RbwFRAG zP6UcZnfhM^V&@uMGyU%EOI}&NKRMs9c+A(RNO8XlAhu$;JPa+2P)%ElUX322J=*ps zoJraE-M{-8qJ5mA{nN6;X#MoIp@yr*j1DLIbgv?-5pVqjs0lpM7ca)-^mqA5aiRt8 z`FW)PxDupp5-ZWgd3^^qcPJ`HWcF92XnZ*>j-WHH6~%YG#Jt~-q7i@8>NJGIJvVQx ziaHh9D#9GY&|;nFA>FkrWR-!AFOI)5zRbjKA+%7Xe6h|eYul>A_^M6P^skI?<77yXnBt`b8nS3tQ8Vi452P*WrOV%2yEb?gNnf(@U~0zt zme;~I{#Wy+{mJtCk`Mto12_zkizM5P_ev+(yF97enB6#FqERE;RrNrp)A`zyB@G3( z1eNz9{a**Le0|V~K9`!ZGn)4N8I`Zr((<~%S}dSisFQti5%eQP%&Po{bqze(l2X7; ztNaz12jOaLyG6*1C@wIAvJY!ln)UJ_tW$btZ}iKx4dfN8Chk|cb)fH{jn)UM`_Ll0 zMKK@qA38=suX)$j%|WKh#eQ^Vu^641?`d*ACBF@yt+QS!!ppU-Df)IYOd+f>k7K1D zLBM&Ivf}*fS3p9(22XVjh)BeUFgIw>G$}>oYlVc$>oO}^tG%8_(?BdB=W z!1Hsas$0sETgURlyaKq9j(*vU*%p9VtCErbDpw7m z7urJ0nn+W}E+oC^VOHhLTEC}nfu&r4g=<){sQY21&?0krG%AzVCeAnBMN+VCYmO1k zXC7nhm{!EHa`jFZ>=5NOIgW4{W#c0o=($?N%;(w4Sen`A zg+UntSP%Qs4dWTR_;J`J{I<}6>7}ykD#i~3Ud>AT=IWt2eUfifD{_3# zNL#k758d?kJ`40e`lOE=a2Xpnzfo|HxoAA+o0Qb&r;E$ydIO&z1lAjl}AN-xhCy||JongBt>G=7Cbe!mrM^CLs95< z(0SG3O;`&A2^|Yah6nw6x@f*M?32W0kc|<;U)Wh$LGiaoDTc@N9{c(c3oXYc?L&5pAS0s zcX4y3w+D;aDX01Ah=!-93EMMEW9dtZIi5@MqC(l|}@u6c|giaE{tb z^;5p{KWIDtSnwMtua0YF<2vt+aO@$=roj`EV{M;>mhQ{+yE3b(NM&*pk;yAwsq#$9 zr6z%;G(NjBAp5+|&O?H@pd=OH%U8?p+Z(<&4epj?<8I4om2Q9Ezyn&#!PPhE3;sFw zfJ|_yfd_(@YzARkYIt-5o}6ScDlk`VLb#(XMNbORJVa-W;D-Wy-s2OAMd=m&u|__Fw(nn{hI3m}nl8Cu* zDFjy!SyJoWi6tRNwsIWoaT)ikD+z4x9Hc&&8`z*yYwQfZsa**Cxz{bS*!QJ}m(6{I znl$8usYSf1@YAB}ir{7D+$y4!`SjM*ZKlP-IEK8UDR%=jq`W_dKkNztaQRO96YsvdOhImbK1aoMDiz4sJr^2)7v_+#%h?kjpx zgoiSaJ?D<3VuQoL<-5YTIFYm0Fb_z{80n$h-OQq~8rTCR zoknkWypLDmauDjoxNca;4=$^`$+auJgq#Z|sU+W zr|m4>#)Kx`a@LTejwR-yO<3{_6{(V!(brz6@7W!zu z1Z9!;7|2UTk?*~*(J>~gp5{lNdM_^cyU)ss&Foq56hvSACCnGi_SnzPb{}J0cJH$N41P_1Ro;nqzHXSG?Quu_IBfBQ2RQJGmtNF zr&bD~qff&$9K%wS;1jk4g3d;5N_fnXuB3gqq#@(OIu-RZG@(OZ0({^+)G1CA{(i4% z|0z#)qa+X)D7S(?*ShrJxY<^ziOc%g@lq=$>KC#RKXn)1m46o}Y*gy^#n9Kyd^vEn zvUyWNV|)J@y4Ie@$a~pn;bHDIZoDYu?mjJh6$x2G)w{l~>|e*A-E~Lh%QvqBdnr7u>uipvZ_=RGuX} zD3iObJkbeyW(jZWDj#dDZN7L|q=2kdETU{Zqv}6$YL#~2L(XRhMDMdQ9TG2UTLcUo zMNyyc1{cdcdrK--k6+?k+C$FKz6%=@q#nONTepIjs|sz=0v-t=O^GVd)@E?cUHab2 zO$WI3(3sl)Dg&~)5RU$1slb(95FXz$!=!_lQt_iI>&kI&wtMIQ@lyOO6%>z6I{0K+ z_Y9xfZ3=~(W4NVvnc%1xI?|T5O09*&DS6M^5 z@-mNnhx>ezh$QaSmoI+9hW909?|?-|^O>UOS1`tJXa>IyC{ZN6H?ZSiBV-&W=rYWU z@OP2dUcVsW=6LzP(3+if%GW!`q~OMo<5r0SUQKAaS)YTywYl-fg8|nm8qUE zKyPGCjNBa=seOCkqBq0s9+ivvD!pkQAy~JONnrI@`@;s7M62i76^D-tm%uf9Pm(6Y zE@r&v#(Pa8>EXtwj+dZP5RsUX>b%B&zo6fr*n^>cj~zDV+QsFS%egN;#zM;{F)E#T z%@=n_JxKBW20QsxY^TEOBFsH%P@3gY+`M=o)zV*#>G(xRXBRJ|s>DhLp7$NA_8pt( zaqN~p?^Q`XutULT1qm7*N1YZn#^TWSp(>&qQ5HrwcB;#Zf!~df-YL_*9MzmU7Gb~g zt-~GHt(I3r*w5|};$Ena>YC)!D-Od;9^Qkp_!PaoGQl@VR##V)pd3E=ScvL0juF+x zmM+}hpe)nmPQeR$(k3xXRd(W*_OVY*ThA`6TKhV@_*K$3j>f5%2KuH`c`Mp86@ps| zLT_nT>6lI}yjSYXM>}lTVlXOCiC(s5nio%jktnO$%aP64cREz`_9_}BjgY{t#E2xH z*4+V`F)9h-1RY-~E|-YhLShICj=#NH7OGm7@0nY|S{WbpH&Lgl*C_~YOSS?oUEQ}q zdVk|Wv+ey98`j=5xcE3Wq3k7@|Btq~%;28fgYQ%4X*108KxV;nP{t#KtCM@T|Fy7P zv2QwnHn1){76-h6A;# znw<&pMO8PNy}AX=M@Qv<>r=6~_Soy3?b#o97;SMxj$@@ZH6NVKGOzx}$KAs52KRNg zwB2KKo=FX7_s=W8DTen%KB_`z6mF>eW58gan$D5ed7GW2DR#$qMT1gCfxR-KXj;Th zO7rev<=G7MYll-46C_P~yOYJBa@kr|!BvFcS4F#$c*+CrNZ5!BVac>v)zn_4V5fSg zQPXla{Av$hbSItQe9gT2+~-nyFH2O3*568XefZbH-P#7K0AHefT)^+m87jQ`^d`q& z@xW-sNkk?^U*NrJ=Y7b%@9>uBVMiuP>*6bE?-Dt0de)(xnb{w{)|c&=YWI;Cv#^9F zaz3+|bMxu4H-Y=?h%}+!>g|Hv;yV&?55%cm*0)6Wzr#?&2H9{}-(tSKq*0)`Ikoq> zY-0ai{t+@&NMQ)XvXiX>f_IDViuoo&gFDfSNqA(mo)A*YKc| zHKycU`*w_$BPG=hm9Y#0;ip|KG3GKar&+931XKFyN97;R-F{7Pc|l#HkQ2>sH^(|GvqtnYPFv({gv^U54FcKpr|Kx9~CZtKhCi2k7uVQ?iq8xfW7U&`r5G zoV!f3E2H?eq;>3UwNVY+{$1H+9~`n4Cb97Ah-dEtPQ(3hDA-_DQ{hxMSliQsCv9)$ zHj86jeo#6u`mpCaDWHJogRgBv~y?a@}=ZQos2)~N>3j%D%Xcv zmzfW|HF7gxyo3L~{?|S~*}L_x*(qM^2sb;>hYLqhULZSBC}H)$m}JztYXRHDwl1LYJtaJ-e^~VxCv^k{u2$rE zcm7n8$ZiNPcN?G!m=RHR6f4>R57gK^6pqi*4;tl-tD~Kh$z7LTiF9n6$O6k}?a^QS zI%KLEu%>53pk3;x;h8Z6Gw9wI(79Vuzu+|F@4~Uk!ts_SOOSj#bj~=4U(e9}P6qt& z$xr;O@W{gEq2TYCL%LFnzx_sj_QkaUA>8rY>e0D)-zbH^xD@{?B)w3A@m2bFK1c7F z9}7oN6=-3jYZZ_2mp>G54MrE4cUjXOYP(E!Iwwqq!ul(&*Z4)(lQ|ql&NaG^=i)uK zP8aHKbVvPirw;M%WX9(KA>^k@KtjxZ(a}cW?J{#Y z@bV(pF2k(Acfgj)nrFvlFtf@(aAP@LL#>B=aSmr;wf^>L>CgL@W@{9^PEDsCGcvM} z_FkJ}C1dbsMVNrKW7w-qpmufQtYgA#+Pte**lcPw28Cl+JzuNOSUNVNgWK2QI4OR) z1rWTiZK1hu&84|7!f?fTKgD~|mRnD=?2Rrt!@;ForC1F!{j4U#s zX@>rN1fA*#jrvR5%#f>T*X5id`4exIUx~BV-ElNrbib7V^-pZRIXP{otwjQ{BA1)L zK$xrZ{{Xx|L%&A9$<~c6+UR-0lIRVXPt%9!9~a)HLyx>zpV^?u?mIy(-s_^hk2p=Y z-u;w4CllA;*(!3s&+0Q-PdEM0c^lXow@_Etx6t6(C1jOI1By`Ma zmurVT{-%SDI?Ke+&%`k2pFIW>0}r2h<&}@eQU~#UhylQTBdzB|wRyk0>fisYuDiW~ zJ-#|R@$@UT`vJ#m-$PHqvwAc~{i>9{oUPH}0V8Ury0epAOP{S>u#6 zXsYtY&QsrSmum2W)f%yAohB{YplPd0HGOTFrmiX1s0HOJnzTxt4Loh~rt10b6V&+2 z(Yo*Bk-Fo(AqM{;y130yUHi@;z0hNj=B&0-UCD{dEA(jk!sy}iHg&RfK<)0@>z2+Y zhS+n4Eg^yq0V+iIT}b&@OtS&jiB$KcoeeG}YaXXwH!>qS#Z8GUBztxtOE`19}30momi z<1e^Dm*0A~>fZZ^F1_Mb9b!Oyu)71$DopGVIX%bn5=8>d`9~mdA1&V zwS%qJX;I&aeS|hwZ+wueW6r!q`yX|oPC5TJU32q;s(HsFI`@L>b@&PA>Yk^Ysc^(p z^)8;OH(GbpZhM`mD{p&JNxf_xmzZP+&eX@r{dL(b_vo+xxLD2J%TX^A&f~AWr(F)V zh5z`g2CQ#Au=vHn6%p9+o8e#BYdYofx;psKbM?^|g(ki65iuNe%-Op8k=G+)&l@yb zy+$lnrmfg#T70TK4mm~jnzYtexf9gAV4~_g_`0q58v2_(kMl0Asq5{@+;gHjx>!T!tk57C46Kqf3)rIn={^zFJzwHUBUd)|`~eZz17zbA2f z(oY};o-r&p=$jO50Y<+AJ#3CrdyZC<7usmA!%vGI41St2)Pv0~Ve|${>;ozqzOZD4 zzRDi2`=4xUtL!9QdFzA9>^a6B!)P^Z(o)ABf0f>7nQU-0G1$`UIdX+wdpA=jo?lZJ z-1wln zN|Cyz7wXAp-_YNVK2r^!eoraArW;r$sliLHYmXz3R-+eND$O24p)Iw%{;TXA%+f1u zx@zBJPK^L1#ny9r{zP4IT|*sr$_e-fG z*a|*Xbsuh~FVjb;+571__}Ghe=Eb#Lt}pa~E$Oal{nh59B!}JNYv<_G9=+6e#B9Cu zMZOL>;c^pcYkir`2X4IQ?}3ijFnFo^jtBY3wR-!jp*p!nEgf>?S$gK>_WG<#zCP)c zqfR|~+OxYwN1aeZjh=W-h5bj{L%UP^A8wE8$+wl=e}Q_kbchX-+{klSXs>Bi^qTRx z*F31do_w{MePlo$I@M&b$lk!ph)nn*zyH{!YGkkM&=W6Gjcf0ATTfCE-W5PJc(s9j zr9S&=fG)oB9_@ADDf+-(aB}WY)qm(k9rX7L^-jm0Dj34l)FOL=E0tO_O*htUs9pCz zMo+)`zIqO|H_tPM=iZOVzv=sKpV54%wj?5ke5c>!#SgU8J}2tAH@}RCAM8v>UQnvQ2 zpQXBQ7i-*{RVpuC7m-3m#VQlTdX-gda3Oh(bge6~!NgE*sf->B&vky2R#a-jD$CkR zl`O4P|9R!gnX*=$M=a5M{buR4tVw#j>%{0w=(_KZ(v5A4bycfjx~TauUC_K(=U2%E z&4-&1hUvm)Lv&G#Av*u95}n$7oX%@8Qgz$)Q{Rb;w5q&9b2n6~+r-s6ssXeOrPPPbF%tP$!te6I2b z&r-qQIR>A39@yXNwKm-yua>=wbM$(fuMAXEZHbRj!^d0c=o7EhD=oX)?dNM=es_Dm zKI}SB=UsEJjyUOZwd%mDiQ`mMGQ+?(T|J7%=#Iv(Yp31+YGSCRZfOIQl08~i-`qqe zpM9H}zn7|_!Bf?9&_t!?_R|9oKdJo>Jx-69)=b z2ibz`zgFoz=jhe8U9|U6Cq`czr}dhmq`YyuNCvgWe?QpHLle@ zho7PcpL$DuZRzIrpQNU3yO}so(^a=WY5a%|A7m9jCevJn#EQDA)S$Q#?&gO)h`4 z=W_5d=jhASe(E=Rp5Fc}M~9jm?|GuNzQ`<5F3$soE>xbqX+8*J`42u|Yw<}R?Q5(0 zh~v*!kF0^}Gjxi251FhlO$^7KdbvG>)AZ=G*2mCqbZ_HVb=WcI>f-C~Ri})h&U>y3 zZA|qVwm`j|Cck~2-DigCJ=j$H9C5DdH+t1=HB!Atn&^hkb6;ZmX@*H)R`lTi#2Po7 zye@TFa~K~ML!S6Y0fzn{Vb;!D&$t5|7;qxHaJ&9(bMr|Z?$U6tK;iu0bO zzV7oMm?+M<=w|J@&ry2z)psT*?-m8r69wKi0iYMCpr+<8C->ny8$KF`3s zpj4W@rc&b;l&SBO6-seO?_f){Ro-O1m^MKVcO0p^J|3pp?+ww-?FQSk~N_0;1Q97&TIGy#@c%9W^jLtFmpBItCP+jD5Kn^upjL>P#Cg|LzqjhV`eo7rO zOUs<^A}hA%tTj6KS=LF)()PEy4lJY>zgE&_h#}q9T9z9tww};JH`)?gv z`yP3r4nN@v)qU_)ecZX1E%=EB*@?C)2k4RK-_yzG-ll_&yuhH>MCnBnJRoP;Iv=M; zeeLLzuGSmvQ>(uGTxR!sLG*6=9gUi4&jU`?wY46xwcABm{U@k%&JaEFN_!o5?seL3 zx5HKAlG~J&IYjAsqjb$JO$;WNs=*U)t4H<-b;}r}r(SAp5WYgY?|+mYdG14H^_#7% z0h86_)mGZ|prh2}<#(0VbEb)5tqKOMS7x8NdgX11;UBu|u{TUe)6~Nr!-Y54V>s(( zz0|6+atD6ndiB*+w?3r5pMHg{+BaR_5i00E#n#{q<@Wj3Br{#_eqN~4Y#|?dWDQ&T z-IS7FY?2uo#ozCUQ=<9)2cK+Xkee0hqs9AaI?z_<-_N>9?|14M0aD(;Y3h<$Y%i;^ zJ%(%4^xbR~8gxHTEitIPsJ#w2T{qwLoLYU9X?>4Xj&;=PgC4s0x;wSY{-R`qdgFci z#K2uNWUAVKk*O+_5e%3;2IsDZcG;O#LK zEvsQ-X!XTF?SJ%z2J%z&-WM4L$ua6=a%uE*OYM8anUOs5Y#Wp7EVcPKLp83r!{m0B ziR@*Q5YI`bxUD9uy$R<1F9#~mb!cgQ9BM#6__zyQ*JjpBe|rUAM{l*Y{3t_Tqz{eW zW~*y2a<~0Y(Zx44aCoM=JB)|x?LIHi*_Yp`gO0gKH`IH|X-;!KlTD0YYS;bjz1`MC zEkDSJ`s~MD`l{yL&+DKgPS^Ik9${j5&m{J(+k3JaJ=Id&U4UL|}Snk1#J=@``mDGJBme#@Su9 zC(u4;vR>^rT917;R1ds2K(*WS*3GT@=-RjX>au3Nbb>W+RbWzj3y7-OWy5!Bi z4(qS;-WX)CAFgv+jxjlm)tN|(u{yiO=!hWBH6fhWY`BSGq|RvZwd0P_^-klH{I4~C z4NGKHYUq-6y0PUT1AdyeyEV`C>8%~A)=S!=w~``{f$0GrC>l&GEG3a^3$9bv7~OKu zD?0kL8$C!b(}`!_qH`|4OQ&62U&o(wn+`tyavlDUt98p=FX)rx!3Lw*cFX6eOU@`Y zc&eR_^tBgTB`KdJ9PCEt4P%*zMQZa&kgu$MZr2It-K2li zxX}amSY32=J#{q!`0)-!9Uj$6XmsS)6lOJ)L>+tvcb%%MCiGsKL`8m|W&Z z4{IC0+{PB+F>3P42TJK_k73BVh#1m(&DC>neWiVlK2`M}c|&P^zcsK-(gim>tRqjq zQP02CS?LCj`yPKwyB~6@cG&w^{o}kFY?+haojUW9dv)Q}59@))+w0@5{dM1?t+e;y z=jxc#uhT!yy-6ouaI4O^tfqB!g$_CXB0XTs5f2OD)yoU7e@Hv;{SO^$61wb`NAzmD z9_pB0tcy%chn#S=UT>czmJh+wfBW;^I`N#ECYc)g>p!m2DHqmq+I4m0Ntfy9Q?At2 z_B=YKk25J4aO{1&Vvl5B17Q6ot(AvGI|#3s2c!%2`0HOp4`1svc-8Gvq7Ej$zn^)% z_B`S&9dpKYE_Y3xc1azba&avkbeuhg<1g0d_AGjin5)*GTs6U_w%_lw;|ZKKy!a}Cfh z*^)o*>>G5z5ohSwvv1T{m*4Gj++l*QtH#fNuB^Uu?Cnjnm(x@S+Z#CG$g_1qjazhv z``#%R*NygX+OsMgJ}3J6`21@h(B60~r(7FdL-@$aj5!aDAYmumO@PS(?}exyFUj&2X2@$(T=~xT%`BS{w=b`>V8o2?570F&`|HZLhUnrJ!*p)5ViUqBlfxLDVGrW;mJ=d5+oZrxho0r*^IDA4 zHBI~L%`U?=b!kOJ3}aW8s=;UDwNKq7?Qnapy`Ek_i5Oy2Nh?hZEN@_P7_vBe5XfS1 zxr68H^OTW#ymJs{H$SS|AAHlGl&a5c<>uObFR-UkWVgJB zt-m+k%~Z_?-c*ZEdW)r=S;9K6c%7}LOzviB>x2s(W?TW%X6#+WT~lt=kK(Yv}z$y7Z=}^x#t;s$1SfeVH~&cN;J- zxUr!wa2>9${kWcP_Ng9xy0vOGculXgOL5592RXGvcj@N%|9-18jtB&6JJvAuTA(f_0rqjb;I2+ z=)CJ6)CD&+RGo*L>X{aubf3Zd2ItW^Z;U~3p*~3&uIuW(5G^s%t#GREU7}2Ykq?)O zS1N6w0n%1rx^@4K0r8GTZ`cEKnogH5!k>Ecb9)6Xb<^E1+FMI%)xc*TaASN|!O^&y?-cDT$sy!)}X z`ZT532)S1@t4R^j|@9{HzoHSIdZQ;+IxpzGZo{HinbQX?@K{-D zS!ms6>U`Jt?Js)UTg7{G+x3}lqojkbto@j3_}bNVo>Pb9QEnHWPizc4f6KBdV)!3> zD+wUo$^d$JgIqOD`$qHDmus25hLQ8u=(TP`bZhfW-O#d^u4>lLBrsH$HZ9f#uMg7& zO-C5~M;pM$>%6xn+5?zi8K)Zd0M2hdLg&9RP?xtDq*@=0)Z<@`(QC=$^lI`%J=1-> z8h09}n(c?!v#?d!Y)IrKoblE;o%+@!onkq&#TcF6a+JbqwdHy<>suXuZ?aeloL_AFDa4RD7*8R#h+gz#Gw#6IgAGu_mUC^Pl`pOn}=D<0T^~Bp6ta_S-RXKQG^uZ8c%XaHM%er4&a$WDPUpd&+<&q@u*I9^dol;}I<3jC|7wGp z0c`MGeVR2)U3yJc4(tAy0Kd$itd91;lKan$)(LvA`w(?7=yXUP=KO~0;~s%NGCe{&3={rN8 zrH|1^$tC*Idg+uq(e;|6?megJi`=i(z0d6E_Z#v@0JsY*^VBhSQnW_V2R(-Cqom>b zJbjeOWJ>hr4!@?BU&0dF3$63Hw%W%i$%K+IfIQb2#N78?=VXU{W`OO{`x^r~zYoBg zLDTg~`iN**h>wzoyPd`=W02d!fK7O^!IL&k?>}2#W{y`H({zItIShT;;1NKF}2@xeVH>xAKR$-D0!qh zq>a;8xzlV^%yC<>g6dM2X|9qD{KWgzb@tI8rQ;v1#w#u>LlH+nx)-DB;-DV^7 zsr%^r-G*9MW1`=X;9Aa*1@5PFRXEap-F=g#N504!r+2#!(T7PT`XX~&)RtY)w>`1s zp3|cT;jCHJwP>32c9_eZTf+An9up?-bQ5w)|EX^G5lVC2S;!IHWZNT7>OD;zSZp$* zL?64nNxf$~Joe&7_4R~)%Mv4o|F!QJHuB~34s~P8Y9DZKh93QNgr==2i>&f-3)ice zJKXhe=ID}U19i^p!&Rf{IGt}fui02z^5b=O^9eewsioOOon=5j*TisvN#T+=2kDkJ zL-bUSZ}gc5eZSeOHFnXO=#8ae3)U!q>MFJGHB8(D~)@gp3G=5!xU782SdgXgFVwxwkmUqV_})L zpi)dO$p(&;;x$TlI%z)VqqvmblS~fZsOOMr>NWHm<@IN-H(yuY_Mmp&{{%IB@g0}J z09@h$I?Q>x-T0jYmO93(;SDOC&$(;z{9c$S&$_4x24W>8>?=n^Whn0nbaUF6?_`#vrs-;=QE0k(IXM3OH zaK5LA?qkt8-^YVrR=#B_hqj_WClBB~d0XA&GpGJkVT8&IgNtR ze5h!>IW5*dipa(Hr}Ds>rL0}Qf)OjCUvA4Awmg#bf#gdc@!+=c5G`BHTQ>X(pvyrT zdA73C-L?QQq?ch3<`vuM3whU(=MiaG)~sx6ov|c1fJ+_ut&M__>ur%cf2T)2k)9kc z%howBMqsS4v;@Bu5~bl|yjvub#TI=%=Iy#|ZP}w=+JJr$EkPdjPtwHVr{7!e=$3RX znbv&)`O??jcldxa7H^5$$oKP&i|>h!N22qX4%1j1(Cv}wal>~Vu`ZZ{}*^vUOTw@SVQAOrP2cxWUA5Ve?|0)pWeQ zgQ+_2O@qIQp+@sDI=9(4orM^@&-FR+u4*w@b=wY9%j{_yFlU{nt!2@?O09Ask>!?! zrIpcl4QZq1>BSynbxW&0CZ9pkL+R6+kJZ`s7S3%x+{80l=aAQHLsh4pt!5A6nd>UF zu&i7;W9RCEXR@^CUD?{IHiYogi6QnQCaXR8d8a(KMm_sHgF(La#uQNW@XQTO=Lg96 z(G`AJhlSPnb*|{A5dk=^IgFoNO!IM?E#VXo4+S$cSd)aEG(>d>41{;e28mP!K z!vL3Qz{&7{@j~>KB1il|oi$IukoEJpH zp5GPVEv^iJ$@fI>_w!|P^g5@@>ib#V8ldOb<|17=jZE_5KGK6MNYgswgRyAPSkGy$ zPo{x{@aUTXU*j8+*kCj8S)$)$=65PwuZTRHC-ow3?5981#l)UNOeg4qc(j*+Fv^=L zM4wlMMS5{skR)Kp^4r;w6^w!4{O~M!UD;*CyF}kHS?zn-^YQ}5fXUkglmX~kchPSz zQ1(c7zK^K|*EL#|)q0Elq8qQjTCWDzsI8*(XfO1G-dslOF~{ezd3u&)iIpq1ZkN-v zu(SnU4cEw*_ReyDiQ2uYuSP!u>NG=N4HA`&x{|lkg`D^ehv>R>PCL?1(yi-sbZIiq zaC=9;D2RTBu5%yY*ZnBF^P&$9w{hY+^1B`UdSLV$9hB*JBEOxrlIrAWM-#)|b$jTd zCz3RH)*3B!S_{`!D0j>v-O?;a=eHPc&wweTDY~HPXkFZNgf47aVuBc{8qG$TBt}NB znqJwgziw;UTW={P@_tE)p z4mLTAwC6Fx#4yZW$*71J&Uw8=H?}EJi|i?yvZ74O%PTZ^+G5pwtB>}+J5yWLi4nq2 zA%@ud)iH_vmoO zop!m7KI3xz{md&&2si15yB^nT@20y`8E6giEEAn%uOQRbT0}A)+!<8^neQs1AE|eF zV*?Vv@}P{s8H*0UM+iq4F=%H*5=-wpknr_b$2PD7Y7sEU@{0+_8xsfxAwSX~ zzm4l9ULqZNz#tir7*Z_`{WcN<3-7_le)E`LD60Y?gHNo!&J$u7>UK3y#o_>jRiqGK z&rJz+@py?nBsD-*k-nb5|=wx#wwkCCqXahjIsxDnWOe19r6qH3~d;sDm=bi zKS*cu@_pJrL89_;9O_z?KcpUsNiR-fanSh&3wrl)q;r#oJ*b%Oi4&_6Ao+WdEtyLC zA6YBO9s@s^UpGakHt4EUyTtrJ&Z@FX4V$q_bzA4DMvGxOx#<|4-D12hXCw+eXrFu2 z^_QPa3|NH#ejF)O3DZj9n9upckM;laAl|sdIs+i=0cFcSy##lBzCOzup++yguS;%e zsI#uDud_`OSJiq%4?X*K^onF^|5*m(7}%v-Qid$@y~~v10hek?k3c9!3|O=ga5=A- za11bE^#`c}Dh9mklJ0@}Juv`ou2YZ*fT|?w;4x7Ao)|VJaranaU;(&nTrcqwy~1Zn z52O$g!w=&yZ4*E-`eAw3fnOH`WTUzne4=`~ym)x{9=2RIp5BiMWeVjA zbqx|Dhkp{{59Rl*AqFInaW!Iaonyw=_qzS<%dc=M>0coRen5Y_I{Dhg0DAO&J=8ku z8!al6>@XOF*Q&wCeO067P@UQWVi;vo7-&)$sEbSt=bIR67`$sVA0B;wa9xW&dMRmw z2G3llRe>2x*SPTOU5yRiuX90tZmFzbA-+m2F#+|Nwn|MtFV zT{XdZjnYG(j@01ktF+$t&04xa%`?Bzfe&Ts&yd?sA_m@U`MxpfxZivr{hN*+)i;U6gS}yW1Xj+I43c)eGvcjHBumEEc^DJT# zbPyBLjpembiSmw*4}fh<51W>#JO&R4Dw6o?E_0;+c;Ppd!FQ^I8wnX|2cUoR%fgn?x5k8)z~p zj=nqK`-8Jvj`aCZUDdLmTKAr>iECod6QZ(}tujHZkEW3D7*q){tTr+5Rdt0{8sx_> zFIBVb$J};{=$uAPI`fIhR^YS zzR!6`38;GDdVt2j&FOqM4HK(3^^fU-H0azhmpJ;p>L{PM{C*%I{`cgtB@zRqV0p)r zRP0&|T` zrZ4oyb05C-Nk{NlHl~Zv9zQ5I5{wM`RLHlw*Ac>zSll04@LM21NMmzC9jp37WaY>D z1*95#IPJcHxNd>;BK^1xq6hsZg-9Y#4x;3l(|k+NJp>u+AHN^@UnGW&y_IA_*#1tA z^R@dO8M^fOOpRM2t#NvD*OuwM{xfxcn;|;=?eRM6tr5Dkd4FBhe6Y@KQDQ>iTLXI% zEk_y5hv}MD1Jr)dVofyuGaXeydCS+C1lFk{no9cKYlyjsAMQMdHC#=y0O$TecJF=o*a*KY= z?K@(~*EV&jU$*uzFTZLd|?@9G~Xz8(V&&LLe0*md%G>=^*Z=s!Nbb;-j}3xh4%8*n2cjq-N6en1QWut_)) z;<#LqM?qS#c8j%H+%awRUHfq!^N>P0V#g*@=fN8}(Zg)oAtHr^k+3`lZv@54L>Xfe zmBD2S5|P3ngEntZMZ^#ckfrV;JXc~`Ea)H>2V#tfA?i!M*Jb|Rli--RP6P6a_6Xsz zbYm|K{IkSgi?suN!u`P#y;I3pnDpqMq!YqoY4CPc7E?Kl ziK?{1J>REYU8>?nWr&?eWsjzWLfHfGZ%#Hv4F6+mCGAuvOFPzOo<39C-I=cwAInqE zZ!5KOon?KQGR7{{kI*h|I#d^$7|!S6aC06K^YFPu7d0EC8(a0(ht6w) zv7aCDj~+U2DD?q9*SR7h1V!Y)a;+Pp=_J0g<~JEW={r%^wJ6kCO$X_mRy=@aEv2E( zXJqth?0GH5=-So;)gpbQ=Bz8%GAp?6w6(gg!)WbRr;ELw9BpgQVLRTkiuU{-biV7F ztvzc)4E;?EtCTUK%z*Df;YJVh^4Yco>C`>?PS@wzX zrT6my8ni50W1b&O=Zz4)g5~=M$R*1l0U$*dy$5;PV1tS~8jG%dp82)fb{wpvqUkDh z$Keaze0L&N#mpQ;=VuxOOP47Tp92g|Bl;qn*GUJ@vqxb7H;8=HeT3faJS6&E->>q< zDs#YegU@Vz&~<>?d{(H;{@;o(gZa_+JS=gZj|?`*m^d;A%~DdYDdHE?-s>_*?K%!n z*Zj#UbY8Iq-CPF`EXv5DcUkU7vA2}?@puziR6YZr>&x0ffHNO}MZZt&y7QBfnFdkz z=p%aN)RN(H=Q=D3cmIe0HS&UZJIA0@;xO8QH+#H~zD9T4v_bqVr#%XE>bQIxkz?Y^ zw$N5g(Zyb^1mI(O%NpcC?!L}yqyRP`k-;mOCFnN}2)GW=xc%6NaN3mDbfYvzEZ0~0 z-{_5x3e}?zzoWb$dSfip`FHI#Rd0RXTVLgV?RMnDJB!oF;sZGM6JC9ez16lUKGXGd>mEuQIMeks(Yfxi?-@*R?i115LQc0}1aDl~m?&Ov zqrh$9K8U{ZM_4z}k4d3t2*PM$f|Yc9HVyJYgp zv2`99OwJqq@*)Cc0@(3dH&Rft&h@m;Av@QRevnO{D_P()=IFg1L-gjy`3^Iwy3J#6 zJh}h4Zjf{Is&~}xZch_Q^t}Y*$>9(`%i;5!FP+!2-S>FID)u%UuK+JqdjEOu=PMk~ zb#Z;kpFaNL+nIX5JHO+NfkfN7FFF4_>pOlQBrm$peb(W;VoX@pAU+K3uMd+(D!Fg$ z8l|`z146LrYbDebUQn$OdHaTo{XHOm4AYY%l!51vu zp!K%Q2TWb6Ti+k5Gg^-~F-$N4lvEJ|Q#~V8quJ=_?IfN%+|;s29}b?Y$tH%CE)$im zC@Xg*d7iLdr6z<@mzkgHRArgHi5M{~G%iTer=#Z>qwPhE z)m5#B=&8;_HFEx%=v#~NOUv|D&TJh}ucL_}+X5jlt%T%9%YE!rMGTji7}}W_(nplX zrfL8I28S(Y2F91UKWbOYT2*z2mQT z=Y(iX6vcd$#!9Yy$mP!Da`iL-^FuAYJaBq>Ky=HUtWKHZ)uZTZJ=eOE0lufwdQZ?( zZ+;pr{FgIuy84Y-rk(~h1~yX?IrM`;^Y!-Ug?g=hvdb||PdDqR2cLdVpYb)V%T#2^ z1Hc_`xEru&gb8BgLiHJIa5Au_nHUQUOnJjssc6(n^&*eafPHKrF|c@-pSq(9KK$!D zezoH+i-dSgb79H%BYZT=R~tA-crcCt_?doiI!=@CF$m8cxkLqy*K3?XafHh<+G&q4 zf%l%GN8aqDPKA85XP`BR^NVV{=ih7eYV{ktCR)U>@0c}?4*`478}y3YUeUS10HWN9Fh)V94xuTpaF8T!O+$4`)E4V>*Thr8~dq?V}OBdx6efsV`X zZY2@qCt8=T zn@Oj@ZQpCedhhvSo<3plH`(MzAMdSKT3?KXRVp;_^Mn5d)?K078uBh2X`=<5mMl@x zID@wPA|E*R9Pj=G2=iUXDBtgV_@1KBaak6g(2eh_ZOJl22R8qo~@@_bkvRazND@_C%J9icSc$-qe_+1 zZ;8hogya0jEV1y7iLcW~oL52dg2=Gx_5ba?2Y6oBbtU>`GLBinb z&E(BYk{3^6Te2lfRv?gM9?ai^Rb)=TcAdq;pv}r_R$_?L*OPwXL+YU-h_I3}Jgq_7x2hZS#wA@WEBxj9Q)@z>AW-P-`ozCKUdJ=EB<-s}Q3eFI) z6@7J7^EI=8>YCa`>7fe98K&zhS%DtI7>2q3R{sdxvaaAomt6eFwFWx0xQ$qDZT(F#pe@NPJzy@ZjsDIa%hT`nOotznC3s zUL_sQxsSv;&Bs76nzVA02!x4cEpP}(BPs00W|uG=49dizkX#&3s4B;BR9bHSQfUrL}BN_7&!Zr*6j34wbcy^X>Kq!isW(?zb_?T3xd!8o2+%f`w| zULu0(AwjglmFF(o?t=}EAqYu1i(&$IEcLM8CmHMQL$U8jB7a{)WY#5Ya0tE+l2_>BUr1uOYxL?FT*l{6kF>I0 z^C~hRrp}DsPAzXlOx_iGqs8?6Ztz)L#yZC^EF$4=_lTkK)57bo!-bw?c;+QoiW}h< zSBYbmQ|9-6-&7hG32>!u6e>lp<}~Wu-Zz~Vc_Sh+E}6-q!stbx;PdbfFULui?HE1i zO%5^CK_Fa@=CW=y(NMWU-DhE^$4Tt>j>Xb#p7^ERMwYdS9#Z-~Z{ zq6Hj^EWmo_<9v=s;1-f+jEV5n({MSOiamTzj{fXhog&zlh!ekDigy<6!^CY0>vOV64C;<6Vu-=>y9;qRm)2$7ps_HGt4|%tjkK_0@AXQ+OEcE9as(qj?-DEf zHCEC(Gn>^Ok640nF&3{sf(2_2W5H?*6%xELTbM?ZwKCB!(Xu04ex!h*Gz1$ z(X`g?lB^9;Ml8?rsjb4b! zzJ%$^_G9|ez3>jr!B&EXt8a=4Xt#Pt0CpdY#1CGWjaO%`g)@m^!D@T_=;yOB_d^G~ zzj!a^ukl25P6Ms9egZ-}y@f)&Hfs}p@UuDC?-_%o8$IyC+bi*w-4@JRwh!;l-;Tq_ zGZAX3!Y`(;!Q9mc@cy!$%!?;I3{6qW%3j=IKy~%*qii_NcxUkrHo&6<%^TR|9?Se5 zAXxaZq58r9WGU9{ImUDLFpWc4xy#>#v0k{r12dO9VDY9y)YU%tMwJjq;<1c+jvzsV zs$1`_030B>9E&SwLtlcoN!TlQ`7vLs;dwk2Yxn!(zdiFl7BFu|334g4iuH==P-p?( zrN{Ty-0fygfmdg2rar?-4t02a&JGi=Y4x5!0&fNLbQm+1Ibh+sL)^dJfd3BHXnIk; zh)TbR{RELk>pgk?QOsHCNTR4A=_fPKyLl~1b%99M4*vAmoPFXkn>w6B-OpL>2v@&U z9FMEQ#=Xb*T%53EqZ@wu>H;iScNodE{!KV`TFik7RrsracnQ;&?1+* z9r4zJ9VEG2_?;}l+Y5KWgWjUN%r(r@Mgpr_U?!e^Z5iJFz@EgLNUue6W8bAwQik`I z9)MqT8430ze){?{?DdSsF1JY27F>^J(FpNnp1fGcJn$y#zF!mxG&l$EFWJlATWBPm zpyA+wpTD;pjwJJG%j{`1q$4ct8ZC5r$8GSAEW)g{4zSzch+od%h*_(h5lDkz=fQBi zIPF8sUg69#XB%Tl9&||B1rpw2Ok28}1bQ5Pk;U*KA-?~?0oGM#tRPVz4$i|r{cM(r zv!#iao_}YRse_T}=djx&+SJd*tTQv%uI8?GrD0cN_Df%jSTEn4x82l3)!n(PU9fuB zQG_I)BN6=SH-_Ji7`{}!l1L1*k|;6w#@sag5rOnOb5rn+eLhMqb(*mZ4Si!cRNRJ_ z+$->m>uEgWSVI!1G#IbTjXfaIGJUkDtOX4i@4UhsyE1TPc3#T7sWD6yQb8&)}-j&=={U zRO4NbJb0y?!kuyJ2kuiXLzv-OhHuSIwnmE8mKm4iSEj8oku<$Svhm)cT?9uT^Li@7xclv_$YFSQ;Z9ooWqA6Pxdg6_I1-wL83cp{ z>zxUPrwJfCE= zi6r5L(1bGXcf>32tbkWg1{`Q%|NNbGI2K!L-j(Ykb4=D%EZ=k(Z_n9^khlsn+0N^< zc(>XI!qF=R&%M4Fn-BQoz@Z2{_3|8Ax&fHCW*_gr60y8iVXaf?EyQJCrNUlZ#9||Y&S_o>3;NX`?puNd5 zHqooOP0&)%zBO35#tC7T3Io)dP|1tl-;ZBeOainwvzQ$wV2a4SL-P!P%WK+n-~@q? z;IU*M4)OVZKmd_!aXNuF=Wb>inIsMEbECDHk1dXYB>5%qI&Q(jRr@e=(N=7;KZZrC zoUoZ>xt3+JBZztU$0H=65brP8#B06yjPKG2&?H181`^-j{qPOe4|+b)IV4;!EZcMt zyIjLCbLl>#=jB_yG5bSj1VmLMv+NEE>w3693BR1Zo+K@=$A=*12#=s_y!h@qf@Lm( z<139$*N{w|=vit`3|D`8TO!?UUZ&peKNN%i{`C7;z9$IBQ_mA8WSO^;tg7+;()}!V zFqUp|ry)TCUUdMgwz^~W_Cwh291gn`F7OE}zCz+&!E>TAPO&V9 z@ej|wgI8y-!-uSEigzW$N0S64mo{R9Lm=K=x{cm+K0HEF3HWHxMhf`M@Wf&oRE7b*~mbdS$)|?x;zL=B%*C zG`2?%wu#v*)Q$rX7+XftkKyy*!gd}=f^#K#a6jwl8hXjImhZ;_uQ=B0eOONtl}9WO z&wO8@q{(}rO#OaXti+)2GhZfR__bb1dexGIZ_bFtH|J;KkLTpzyYn;f{FV&Fl{Vwf z&^VeXA$51~)}d0oa8TbAG_g*F`Nr@xJqQuQzqnpEagLrQaKGwNjHQ7^NWOFzx2c3K z=F1Fpo6sz9T_lBeOpM;8w=h79Um>(d;gr*e>4)>NEVu?+<1S)R@F~3IU4~a3vha$1 zAzpMjO=7r&r<`i>rbiL>(pqR{S$jwfS9$%$kW2Uu%keFJQ=oiviWulMSbHUj81hLB zok%*}YeG4gUM}T)$ZTxc)zZ&x#N}S1MXE})j}>G$8(=gWwEPr&JiX`Xb8dWnOEmy?XE*O znO=4WAyBo{Ve!){uzE1i*)dj;!v zD@yBb_=V*lDy0g~zp)srw!72f-HE^Z=NAZii}B-M%)(Q@Sb*5f%Vy%0OuF;o$!7?p z9t7YO_#Z!giuXOMsH(1!6ppRndh*N9@9(` zk*3DXBB?kMkk%0#j-D*WTzUr^Xdt{w?{T|xD4cxbNer7<9t$mGds8Pe%CC|P)9Gcc zg;!v#nM3-YpMC=`ys;23y|Dya_V^i6n9t`HlUjz-x|@7Hj`(1`hne(7QwUY?Pj1aEwwXitPygd*_?MSv!He}GwWJZb1juxjAtviGE%$?1u)&`7 z^D^ZsmTd7b^Ju7T{9@Wt8eDn2rkMswC!cKx+eRaHxQF9~_m*MNI!7GzPsE4xMBV&T zkXUfZ)VZ|M>-fnp7ZU7Q#|tmhxH*Bh=WjLj?#+3dNf4<#?T9SnfRv)XC134rRD?lGaAF-as@wh zy+$E$yPm?&Tnh1~dloiERw4HMU0muJMd$DY6*9uY_F;6q9|L28)JCkDSinMdu={3(Uva_I~t|7@B*= za4@wIe`%MD@6Jibw`Qi195V5>8T20J=8+iE@O_2*ATfB67?NpmsjH?w_^MlBO6eW* zVKyrB5`5_rhY*~W(K>o<&N^09e?tswb{`=LcwyF(-3UBc1mDnXg6dAJpqFqoG9S|k z$WGpINXom6`2?1Q>)g#f6i-Nj)poec3)n%AfqEkVuiNd7_}tUj>~suoFWQ1&0&~tO zHcWaAC$lcm3JkoE477TX}WnMtUzK?}Do&|17*qOY&$;DNc}J*OC-=xkr((u40F4gb69W zklxJE=n|9WFJ`R8k?f4?xZvISd8uw;XinISDYy$Xkq zC)3hjX~J|LK9NIWZZrDN)BAaX_jZ!s^Y1KT`F7G`&Zg&6VdlIzN>4H(vC8Ol3qjkP zhR(FPTbZ{YdXwqQ#||vpa1hR{uRncl30xFDn{CZfejC}R?-J0O;6#t^<>_k;G3@mS zA+fB+^aUGP@6+i`We_|aj80{xYX&{dm?vQf=ll(Rt4P7Nhs|`vXV}XQ5tS>cOZUVxL3?56Ytu!;|;% z`4h%5e0z2ZzB4Bo-yk7;)vf>vU;THB6R?d|`}H1$xt>5-%K)~;o;QQr^eRbHZ~n}w z6hC#S#xu?ewS5UcB}x3$iB|q0vaxRo=6K~|&51Jj7tvCFVA(`)#X>1iZ}e0mPtZw9y(7-C4NQ};T04C)_E zk3sJb)kV)exBv_35zM5;@HzoaAJ3d=^~!SJ;T8rb0@e&xmYEbgg4m01uOKmaA&}rP zpBB8wQG!(Ab*!K@wRH0l6Ja!iBxEUT#l9oSn6ui27Gj05us73m0GOD)~=1U9C< zyzT%#+~y5G63*&fzUCF0fMnH9AA}}WW5HTiFi zYBMWXa9lZFd2bE;2|^jA4J1To*dK}|sZ_AR@50xE2v8^TG*H9*>n&j zJB;U+&Gs!Y{I5TLm0)*>UeIaQjT^M2J(!Q(Ec*exJ8wHlzmP^l9oFsg$7?e;;C+_k zd6M4h?LMr}33%OZ8{8vG30!xG7p=&wQ>TnJ6GHtLvo|wsKLpacUMlN;wLKyUo>A$i z&G!wvRV*6~i+30ABDhz=odh(Go}O1Iy}R-TY^1mLCPCSo9`)<l#Z{wpN4PHWB3M1;(N0b@Vo}N<&yOk zYJx>7oW*_RQPeg;l-mro?B7e*@^RGIk@o>JNhkKkfj zx)vM`E~Ir^X?iQAmNc1ev3n1tATsj?D`X!uiM{$~tEbI@!zr{-b7^Ik!i(2Mq+MVm zx(PRW0zq-r+`a(^?<9INC$Rp&QFtYKtw-ef+AZn6)dHxxmyBGv3mDZWXa71BaG z!8Bs9?{GXpqz0*_jpoDu$;^v9uNj`lvPlXxCcln8>Dc9&h`_`%BnE{Fr#|?6UY@az zR;&}YvQh6lY%x7+EJZhI$!41nBpH=$Y!4kc6k3G!_F>rM$b7Ku>PeP+>K=7okKKn7 zNecD!BwG-Xev#!#M^ed61R5ZT!8Upx+v({z9Eqcsae-E7E$qGGvBfczbt2N_F|DML zo=pKgFZE&zrH2s)udpIMcY+M9V0EF5&AGvJVoVR5&5q&NcPN4BT|-`tUfI>rE80YG zOQ8PgP13W~9LgGFlFoW|EUpay?di91@Hq8aaf|J{jpSBE-G&<7ZgYu58ub^KbA{IQ zDf3+P9CjXzhX2Vj^WoLrHx0+rFJWrrb7~FqMv~B+5POfLm^mgAiyPn-lF#Q;V8+O# zl{dpHya+o;xa;`59Qh1W%bSd+>%nImnR&tBj~|KFnFdZm;Wg~_PKNW*e0t^j9;9xq zU5KOCaD-muIugMqdK{WGDvk9!Fs2M1fobNOm?8wIdu(QPFJkg;V%MQ~tUC}yg0~H=OhE6B5CXTCN#)_~y94&1| zb;}^`4YM5M8r#s1k?~E(E+CZYQy1vp21l{Wua{Y`{95Ae~ANA+wz6 z789gcp%wo}0q_zD_!`6&SKMTJq9hY+lIRs^fS3k;CD01j;GK`+{j>6Ej)&MH1=Z7F zq1z-4o1J$xM$f=O`VFgXD=|x>s2cz>3k=PS+FycV`SC#@EG-|>u9BGz?Hg;X4Pt- z9Cb|+k0z)|KPd#sRDw%Nc?*BvGiw;+LZDU({CuJwc7?HsQ5tz*s}D zcbZqAY9kt~sIH|Jda@ems4lh|2&dPhu_RL6Ltd_R6gqXxHe{wjmEL&1h3Th|u#(Hz zwhCC^%G49EkHYe>?x$C`BBtO9)4FET)+l_vVoPB=%wSteGlS`@ai%QPRRZf)9QB^W z<7uqBnHogOXBE%(8O!qN-igYq(qI`id6w#u#%ZX%>G}kgKaS_>xb$N5VA5s1W4Tl( zGf!!*5j|JdE!G$7C~W3Mq(J%AUPup%h{5`?`pZoWvr>(G(|oKgqLp1_KIA^TB^BWW zCH4Mk85~E#nY);IxD-#joWcKeyNG{rJ!ia!mk$)-1Mf0~urgjD8ECx1eP*V6bQB!} zV>sJL3#YaTAw^elIP)^xGOxok_ZGsK$Kv{XxYa#?zL8;!(pykh)?cOkYsOa+6VZ7mf3V$&(9N(WEi*L?IB*|sq zPiNj-v$7Ff6BYiVmO>Cps@AAb0s)h&Hd^&=x{GWQK{hLafK#ujEZmM)yd$QcAdp}~GoyobzJQGB znjn4E{geTuof_eKh$Nv%ql&detAqDf0~J`A(ZZ~BSv4AgEbBxhBCADR=eo^U1C3j- zj!I^ExG$NOR!ZF<;(1<@elwqnv!nr1#uYBp_Xh#heO}LcQ>73cy~sYLfo!slG--_* zb3YsDFiB&S4YilQSq55|nvzo!#AtqNeaz3+U?<*N-!(KCNc?Sqnax|d!J^}}tIS)+F~;@0S&>FBrCnY?cr0aDX=YUHgZxJhDTG_k2jOhHK( zu-7XYf$^t!E{TBm$}k?2M&+^`8nLeOa@!huf_c?%eNa?6`OMO&Gc$LB^u_$73&^Ec zJ~z#^pwZkKoTdqYBuU&>p3Qt2^gh!y!yI*?d+6FU>4Vo=t#Mt;GP16i51711<|#gZ z>R;cyG)^Rg*9JtNrR5(-OE#OwKsl3nR^8Af zNYbMw?6Hnowr(zD7ZUGmxR8K@VJ<_}3#B-S!(phLAQ6JowflPOWZN}pv< zXL?4XK%cqB%(EfgD*qz)PUNr-XOvT4dREMjnHY-YkcY1PNDn5Y4EL$Ls%PoU zUk2N{buuG`9MLmW-C;Q<>zlQ0Dh;Kn_C+13-Z4M_c8THFMm|px!^{*bG1wL1&*qnK zUlRW3Y6}i!Tthq4Rs__-YrR-~Cp6j&QZp6}( zPh~?>g_ISqd4FT_NN5@Lh{)~75@0jHTTh3Dy;MFxRBk(Nd#Fm=>lHPhhgf zuwgn9-ZxQ=fB>9QJxHsKUQG2c^QD==`dN|KaB8`&$|bjy_plIHt)RyI$dWRl1@u~s zjjxOqo@rVuu^KMRM(|8#I!Oecc%G;FV4dwuWWfB<+Da}{W8pbvOt*|_l?l`o&~MlP zrl#98BeJVUXx$F6j3cc0Y@{MTmd7+krXw;jLGP3Yp0Cl-$t0Z&rXk&kxHNhV%v#Th&q%*@o%yYq_EgTgVZ;>4dnDkno+MB|sU#ESQxgJ7 z1f~hHW=Yn{s{zwVeaiz?T4^M$1U?hxUHdH5fhH-+INgUhTD}UGqP!`_Z0+3$x45$m; zNBI^h$_UXqgWj_0lXR&tBBp*x?LhhWmBD$_bGy~>OpDn znXrC~oTns_WwmZg-xQ{0Z9}ZjWvuTN!(5B3tpYevY*A%t9 zCb@!Zg>_LK5Wxwsd0cftqxvmsBh0t*l*+VJRz)dJ;5tcdS7oGVpV5giy4d#FrgAR~ zne%l#k?CaCsZLp+vk2TwU^GbvzZ)_90b?b7DlrfUKP^_$pL6>=GZW26+CQ07fUnu* zD6FZR-feafK}KX9zYkLfX}>*_4;Dg?11Hs2q`_{0dt z6(EoKGliA{2=p4^tblq7vpqnPQP^yw5E1~!1}K`Nft~`(G06QRx^8Tg1!9_mqiCTg z;%2#mUpg1#8P{q&?^=ZAC(2ON(2cHvbT%5j{xOxFI<}OmqSN9g=vWA}$pqIVg)kuKYu;y75G#o2x!j|0Th=Tq zYa*XhGOtTu!xpdz&{IT8YzRpNEb~2t_Ygo@XU-yU$=e_p2rLaT=pFM>AJa~wCzHs=oJvwirFWAk zFynO+18lMYxnDq?&U>Y@JhJ8$;zNXBh@qsDphlgP5D?j*^-4kHBa$-rXQMLVs#PxL zS)`XDy-=oRqcic4q^A;D>H=Zrg~t-~eE6)Sw^TkC=}6#Y1#4cbvM6l>V$vgZ#(g?3 zodj(5izJwi$|I1{vowM0ly~Y&;F-YlEz-Y^iI^vKWP;n7=OkSzugbp_B$aRJLiHuX z46bAv%$J$yhGG$ch`39s2O0^fB)oL$(rRJ%Awkc$idH+z7hgipu9hS%B4M5t;89?2 z>R*Y{q28HRCZA!f3H(SPBMDhOHF|ff?=lSJ8JRpz)=7b)$j&(dQ;xZ)OYGk^;GpOhGdp`n$JjtG^u;l84KG{D%*r6Q%WKUDh=sa z*Qs5_vz&U~0$vltiu>gqrSM!4r{+a5UZ1Hi%$u%PJ*9r7cWeEjh#(9w>v^!A^VpP! zCFe?~06Ha8dlZUJRpD!rgY{N>Deyu7U( zzL^975<@~&I}%6?NwO}~=;czbeH_f7?o{CfPN{5^No=f1wC0n!Z3QZ8qqcsd zkVT*d#`6jEYES}sSvl#|qoxtaf;3hOtt0auw^ozy+@&Qi&xMVS7Le7dnFJR$U|BS( zoEBQ%vBmAQ5L?V|Sv&&Mq@q?N<~Jj$P~#s2!faf$G?NTyupx>Vn8$dZb>X8}OO-O}g-bddnqB0wBGMDST+XP`*nj!?2R{+Kasm3fo)Y=e) zK$VR&QTJAiAH5o*K5_{V=>!{z2{x#FGL0PSBcI@vsq&P{o8`H+eJD6Ph-}_VM3KQX z1dPc{+e#1uN)dwyx*u^QZUJH{b#CD~i2_lsRp%|bjykXcleLj6KhkRk?_>1K-?2sQ zh%UIzwA#$^ERux0C=r>WYbKQuTm_cYR{{yuyqaUWsWKQy_{yKWA8UX?#VX?c^h%7+ zRU*sQ8g!BMhrkz}*+{~s0m8Bf@TEg}fqMOvB)tmkn3k1HWTZ?QBPu`3Cg3+-0e=gS z6ZpKX&xO`6$x;L(D>YqY!TiMKw;(dT-h9(h?4}$(Z!>2!bs|tSfU0`S-xgzCD^J>Q zJ*KsEWxjjKfRT4->VWE@)nk=Gq$7E&82D`eK*TU5`uzwV1Lfgw z3?CCig6Z%76}vq1PF~*_{JD6Ux6j~bh-K{ZeTp@2~lKzWP+pfDTp1X(kw ziyD-`iH$g+Snqe)0Bbr4KrM9f3Gk;B<+2^IWqeK~2ulU6wQ_}V?jRuOqZk_~f6Ky8 zEN#Q#$V#{b6(Kgi2_flM5m(TJWaih=I}I*=*#uk#J|h_rY}CL^;5>nq0MP(MGkhW{ z;T(_y|EMZh3L25F50E9d;T=|n6+4f^$v@M?gi`#Q^#{UW@0$hJ<0ZV8J}xp15s_X` zP%jE9mPs91zrW};78?=oC7_hWt5+Y#lP=+KcsV>mN)VH)h_9U{aG)Z%2AotZpj;e_ ztuufXmwO8VF{j|bd-_J#;bb=Rr@T|FA<_xt=65%VuGNJ3(EDV)*VcskdIxSumB6ir zsP9L5?V(BW^-Vy!6zMC{Yh*S_koid{zHRin^`HeoN#~hwk^u9jkJ|cfqL0odtT~@s z8by&`_0CzqE(cg*sA1b_rKJIIOOl}j&_a^oo$%cRY zIi@WmL?qC~Ygiuy+9FX|?|OB_vSo?9c%DGgQf$?GCd+B8R_Y;BF^8xZS;u;vr+8Rd zb$X3ytw(y*x!pA$OExQ1L?NOxubLQ8Dwm#}2uYGa&q8Tt&;ya4O}Gc8OX5gjx{6h# zkHu;W>ft8f)@#5d>OuF_bILn6gkuTkvEL^PVZ2W)>!;#ZsV?id09JW3U}?xjUV-&q z`o^LQX>At%t-v>idZCE z7^XKcfxEq9$hy*nHxJWdcdEoQF0~|vQ&r5vqCs)T!8t& zOF);WVL*iqP9M{(VS)AWRj+Ckidzj&-D6wW5O320>>v@y`fsNvLD1r}Q7;e!Li!L# zQJ2cp3iUkVb*0S&*kX8w6ymt04i5eq1e;Tc&$@zHOYE_BS0Lim1I6^RAlS&loysFC zWIRb=&!HqNSnCD5mG1ap!w~{S5zE*HOWt*C*cXhq=I_G(!|^!a6>s9ptlH@hN8eO9 z24o?rnE9UU!I8tpt_YTr43;ZXAE2vPMwVS3K}xAUL=&6{WcI$9_<*2fx5k}>lwrD_ zW>>ethhkabZqT&)kZG z$8(u)0wBwwwvt-fN)JXK*7c2r<)@@^TRmqKHeAMp0nmz06rApb-^ofW-r#M5uw_*f ze9La}+S>?CK7-}k0^lF5{{L6`9Fk2?HtAEk%R5WYfCR66=G5`o=|eN`uii9@{;9g7 z?^szZSB^SJ@VLA^vu4>9E<%GdwXI%B(v1QJ=8=@5(l3}k{_ii^OXDHc1o=CedD+xO z5oDq~2NJqo+ZfM{K%d68pitJDV?+C79Lb~0)3*tFlh%EADOS%qmEzThKB2I;X6$7jput%pkL$(rb9mwHj+; zZy>*E0)2W1G%?J)XtuToiDBfoAcj#AgFayQks^jLz;qOvBlL7PX8E7SGkfyzwo3_i zg`GiF!+;rUapukl94$BT_lqs~=A1PAJG(Ue@q#pZ3>FeY0$$!;Nn&6HpCktJfsEFP ztQ5UI+2Iz47v5QqSs&OVG^x%+H1#}@hqe1pV5esS8?>UJwi!_+mSyO3vVsjk4gEHb zC)VL`SRoP$uj6QJ1-7|H5(r`um8t7)!aFh_>m83{=b>m?Rp)6@u_2I1V(I4l(pnCP zsbGU^#1X~v3C(4ryNST~N`hpmiS&9fC<7ZEPT-Z98%kjUj5cj zB%L)4U*R~iNjfn(*SJ3l^H#ZGmuoEC{IalNPcW8}9F7F%o1lCOr1$(=%dvisAKqKE z760(#H?Y<57@YkR;pCUXN={EI?JV|tTd>(F4DQFXk&u54C)79IIUGCPqe-ggO*c#R z63JwJOQ03(9a;kWBS~1J5!TE0QKyx(TI;ZS=Mk*h;SC4xcpN)fg7lJ`*zXyOH)e0c zUe9=Vg%p?|b~yx=bdsY8FNL0!NKv6hHampEt9ScjJAb>9z~Xc3 zNt(Cm)s(SLgwyH{~@dDzq~M?$I}pzat`|rSxle$)Kbq8y_#bZdp^;HyJc<-~D-L>6V?0vnO{>#@K=sQiR${PvMPJ%pNgoqKl9?9sPbZ1t zo3oSgtr;=+s|B%G8*&!SM0riXU)R=;mEmXbyi>6m7(Rs<^jb(C_|ilSxsBN37=@p_x)jsqZa3itoc$7E zx7x`};Q#L8Jy^EQ&x9XNuOR3Ww1NnXi#K_h0Z8%rR|%X6n6_jOK|Kd6clwxMYkNE+ z2y!)W3rgbk?pVFY2X8OhVFpOWj4C%iv|e(j_37c?mM{Zsx3XARq-pArCSux(VpL&{&G-%qs|_9=E%MVEU3B zJYIw&A*uNJTMO~_+;y<~aF2;fnpfRqVop8%@1Ay{7()+aKi2N`$E*+c zWBK;OI24@8{MzGhfAC9|Bg}+y_{X13$1i7ZFeA2Ko3#;+^qL})PhkPeyL9tGK1WwG z`duTR=d5zVFYUI|;|S&R5s0>!!Dt5#$Kk&}^{xqcxXn2T`L#_r7E^$Q>zwfa{^%XJ z5+r@Y3o(C(R znO`h4K>_7`T1d3=R3q~mOube_(N((wSpVvAG^U(7a^^h_v+j8Ceg}<_q$sKyDZO@2 zAZ9LegnM8X0sk6_;-o2q0#Gj6;7+}qBguvtov)#>v0{f0j)WIrlYOu$&xhN5%)JiN z*wOP-_?S%&!SD*rGhU^PE`8VevdX^^Vo-P06e}^zrpKUHNt*R+b_%{V+k*eNAQA7n zw|F4fVU z?u3ON!%lY#UY@=lKH)id>eU4Vh($OUn1V&?U1?=SVC4=kHZotcZ^1feY;_7kWO6y) znY|X%=52=eiA;j?3B35;dYni(4GkR9s7}|TX#^lgxCNx3pr!-GwOvRrYQ(}-2eEX$ zCl1omeV;_M)&3}=QYx@=n=38%l?28TEZ*QqaW=7W6!XabNGw7UE8u@JpFrtuLVGOU z;DWiU?D68Xl>|3=7hPtO8r8Ss@uzs+VS>mWtlH^`n9M5db_>E!elZJ6H#!o)Trqp; zF2tnQ!9P3~+nN8>1d&(XU(0*NQ_mWSERUfPy9gk!&)o+9$U+lIa~TO@9)We$EyykIlP^ERsnoE$Hx!3)Jxef@>%OV~gRyyenpo;`t~X$-mH&4o$8yLDT;AMLPoY zVG{&Sp~sgI+;;F;zVP;P>ci9M;Ad|xHZh-mNe@k-!Xwho(W7fdw!%o1HyQ8e+1EcH z$T_mSJ7~#QnpjFRm+i*WuP!2S#Nr5n@AcW6;TKVWMby)6h2{jc*kxd_K=*8 zhGv-h;Y8ykFe(?*7Hl^$q9W*t=#^&z$vcGP{SJ+gC7a!F@K_>=;XHP^htZ>&PA}>R zW-$NHz4ZZsJsUrNXPJ4HiY>K*gtmBthlxU~yeL}kl1(10_dD5kit*BWD`{v2u`J~# ze2M1&P`>rd6qo9k^mb4X@yAqlXOYQiJ3)Uy8 zordLHj~P#3W@V%NDluqFUc)0U(v7?ir8mk#jgf5VF^qAaMn|8y-HVdz9XQ|7ipVeKp5=R~+2J@km`YFGMw9*bX*m5jf z>uwsKZ$vJZ6BIT(1|s{E-b+_t2CXF5fGj@r+eShXYe^RSXmy5@7_MTYeGr~~b2+W_ zLIdK8e!0alfQ=`aR@VXiHT<(4R;L+k zO|<@8u!i2sA%ecb1&V7@631Tma9DEBVH@-N?t%?SFTKS3 z+Z*8bIG%=g=uxPV=hifn=+44!}ClY3A$vRLP=VWr#6TmswaT`VQJ z&SzT3V)9Htwzuc4$Fb-<>N}gB!zKhoJ^rqJq@{qF4>|Y(`JHlHFcGJSnMQX`40{JOgyPL3=1i!~K z3eUW;#JuX+?-gUhio5tHvV4_TPOojw(*0OMFYCuI&c*b_+wuMfJMhA^#)N$7_(RGF~Jw-@>#16y*7Iz?7iYlh;N0s@CwN> z;lS7I@+Yx0AxmKy($5lf_nW|giumeq#6lvl2LH>iZ8O&^CY5_&x*-B>3s_I4pJ9F3 z%KL_+pso$EwASAuVXvhj5uvc-OLoHdL^?^o8uNHvP+TRFNoZ-+cZm<3h|0e~@5hhc z;9io0BaX%8@_9Mq@BZ~A%;mnf7p})^b5^kqSXggY(JMGY@V-S4D3$eO7YWJV1W(j+ z6WP5rkK`RyV8~VkkzRJ)oUi)#gXd6Y$jqR$}-MW*kE$yt6(g26eAAUG8Y* z3Y?Ebl+j9)H6DUUTCs~Zy5WN@9`q_2;7E&T+6VS*Ace@*F#6IKL}grJgL0?4eaO6H zm({AkcXF>I*1AeG^I#+OJz0oj303B!s2PYwt0*kB-lX+1t*R}K zA#C)%v})(lO^>35Rz;7&hvaa~xZjI6deAzzATjqmrZ3!v6vM}k5H0I1 z$g62$xm=hhCwfU)c#GDyLRx3>*&k0RH`d{c@2$orTHk(=dGL)aKy=m>);r#}^bQh> zTXb%)0gZ*5Uuz?0*59n(!31{g`HG*on(6oZ_eL=6+8VA zpMQ;{tlnZbvB^0SznHZJak-Zfm39`(w|JABTuG!y30`~Pb}XAjNI;>rsqh*hsTc6} z;sa1Dr(~Av2)&FKrmdj|m4e+KCuzkmF(KCX6L6nZw%L#x~WCqI374sI4!)w}#}HhRyWmenO8=uLRwW zr5Lbx2}mWu=drvZhCIw$eUPN1yE}o`x6S|A3y^aV**5gnxSOEw~hF6B)J$b z&s=80#OKwvn{ONMEZB?Z-(JVM;Eha@n>sA~a`qN_l*QEVVmSFFnfju64iut9lTxkR z;m3MfLeeNDnbabkq;V{^oJQ0xwiQ?NdTN(v65dI|SP3f&`PNWR#CMZxFrv=hAsr!u^MxEx_* z`R-wXIP=1cd`t}L!aBgMM<)hrS*=ck2FIC#jay$)iFBmQVU}B?qemydLrjcyQ;~yc z?jD10b}RmRUOc`!D;8g!pJ*ipdJHdaulkr6DmzS-+kA<7OV7Jy4^J#$} zw^W(;>msR{%N)#m>?NBH6L>4kREzW1d79}IXONuTj^~*V&ZY+q!Pkr4+?+Ls=y4q+ zA-G}sQU~L`ZFk`_`p^Yl;bo@Bi@Ink=8>iNHa0j$5j+oI!FmspqXPl&h?x~np3Of# zYe&+EGCFk$X3yY!l6n!r-JalGN5aUVXW>F! zxbvC#!jad{V!72*OGZa{+Iei)ABySpQuRD!G;DMTA;A@4!+{X$ibllrjV3zl-a~O_ z);8&GF3(%U^a5gQsPEHE&yyB>8K3iIdc*XFSPwLfr-&i@Oh1BBE?}o;r19#Wer*BV zkEfcTe6P>jfJK|!uws`NpS3z(&;X$;GDtdvTW;7lHnFUgBTRh5K(?rCUsO$ zeVxv7f3W$m`5xjy&vhY*P|suewj(Bxsx(O#0*I3fs4|9wRUzB=>dClJE`iD8g>xq~D#7)|36SS8P>dq%nkI1}+9UjyVW%uC}Gksw& ztyM>Vf|hF>0XLJte%-t_@(jtx7T1&5;&u`~(N(5#nsC^(iqwbuc+z?7F}+r zYgav>TpW$A;QnSrW?#cT{~SaY^4Zf1NmC3M zdPea@>P=H=zGG}AsO@DwLy|7APIMx<=Ug$ zEm#U~(b_FGJzjRYCzx_27Tsc*st7tf*V6)zkYdCzEfX7xc~sn*Xr|{Er}-$*ya|4t<-xEiC^<*pUl339rTtI zS=2wKisec(aj+8TQTaz!!7sc5iTStSdAxv@ZUXZfNixYbLH~SCR#P+wwnlENt0xJV zIu1=E;gC$iGcORtn&5VVmNrRH^I0D}uKAR&u?}1z@D`dNf(j}qJ#Tl5rME%gO+3fv zP)wjKX4_S_%{E%;1Z|H5qjQ&|*(UsRXzDo=3u=>7B#jb_=?D?S`l9Z(TUaNyF|8x9 zXH5B{^P0@Fjmfz|kFptusi)nnr~WZ@%opoNO)v9%0}lS_Ow+>j;z(py_`GkJD5=}r zqM5&F)6-6~uetLcn)f-KI?k%<;xn&>qo2Hqiw0Yc#?+Dk)GO~6)47U$Y%|ikNHaR8 z-o&rc+}c}MC)D-&WY$#@dNDnO1hzQ~{8*2V)2Olc%SCjqdM8_?qdFr0sNkWv)U> zBa$x_#cpKK|>*JnoJ>kAU` z4Lb||Vy5K*k3qyhk3kQNjUz*S-qp{V4N~ETEd(k}ahR%p{$(wQBp}2RT+O!#>e9Hh zeDI1*lw3waArQwaVkwD2YmH}!FI2?S7Fa0Rv}9#jCYQD%hJc_bkcz6R(V-eus)2F} z0g+Uuh@rHSb!_r{(>0dqX|2ed*|n@}JV#M7lSpK;E|b~l)sI|*^x{es&`mL5cux&F zlT}M#O`;_om*0e_tm`IUsXSLvJ=GUo{nOJ~H}o1vq^IA>B}|V*kw_vENGZ~3q9Rx_ z|4F6Iyk3zo+f3BaIEo^uYNW458K5aABR7n z|L}(4001TiNklYL7=tnrF-g_L{V$a7>N?jc`6U| zYDjDVSj3a4DmpZ0;q5X*@8>JVOL;bKm zDeQ-(lmyB8DSc}^PBP0DN3zfWJ`FlEv5Kgx1RmG5@igvqUo+-F^@ZogQ-8`+hCF0$ zYn*|C+a;H1@SdXSs$Qr})^QC=N9TT2-*X$xKBcF8s*A5x=c+^P<{4O@O}p7|eKyjU zHE&-oPhm7z6Y@~AT9aSZd9u4E~#e^X`UG2LsF8>5DdNI|0` zhPX;^4d7je9DH|rFupxc<1-TReU|C@ofYuPrU#`UdaV4438Pps0y2#%6(DJ*Grd+a zp)vR{4L}*vunuUlj>@!>!<4IQg2b_*X;6+eVBF+B>72*Ss9u--?(?#u{N zooB{VXh52_339UNl%J{VxRxk#=|{&j&}ee4o)Ah;pr{eTCe#A+qkL(t{Ad80$ioaC z;_sBn&<_#?yPL|tEMaSWBaNuFTJ0vkx{vNRnHLlGVX{0LF>H;NNh?~Tk2L^HqrnM= z(w)xNIVRvBb)smY3bHp$xjkh3qh~dU!t> z3>qY6tZ?dLN;f8bUTB*YjrHwSQ_`<(aGlCaNuUYSsN@ewm)~G!?;C z&qw=pPo1mL$<`Q9*3rqTqse@h8jLBODX-GM@;!CjfEn{(HGFh$?w39%#r)RuF!|J= zJ6_BCXsvyw9&x`ln54B1ORq-nllnFJXE|g%nL2KCMB#pstr?if-_~cLdrj%qn%6Iv zd`t{~z*tFB`#vUyo3}@pDaBG}WuRn{7&0sRNEE{eEF2&))ZjnP2*vjanBSaEZ()|= zBhkX1oo#w2eRo!z8TtHm62qU&DW><3gCA}#gjeP*+~Z9KMu%|YZVyT>x1#(?E9yIX z(bh{)rsd8uo4lC+3@H%eMGDHRc7F~r;6Ev!bo?VRRb6#hTTQdaiaWFfDQ?9B6etp) zK#)R#3Q*jOy9F&CG#ZeXJ&poJ3BiwyBl0Y z$R4=ZJohTdO#bvl^XFT**ZH#t8@F(rru(0Io6ML(JM#>a*`VmqQ%9z&;Zwy#xDn)P z5v$^n`8wa)Pwcv0T;uwnnhvxreVu>i_fyON?q|7Qf|t0*NayDDhBHWyRvDqb@v|Hv zaz85Srvw^pcz+5Rts6-A1)BNYxhr1(=r|aNxYpZ*&(2^r}_+Wx1MXjgmbx&pqd3mED?kq=aU ze$(aT25A|gkEceMZeTqrPL=c3KP2bT(W}dS^(hi6j*%FBTMGgL*5Uo)pA@C@GFfi8 zflscrh8kc-I^l&suIi=Z<|$oq{lp~ERv3WZKGEji-gNzJQpA7NqQC;|OME=lluDcH zVpYxbJ^&_bD$Tcm}oR4BksgkalWrk*`s^HJB6bSYH0_D>;_o zjmUYB=9t1hmQ)(k9L)xLlCCqNoc+E=1?Kay#2ebx7GcBHYgt;2yu4#dd}ZF2F_B?Q z`Vc+Vhh&bXzc5zl_}RoUEF4k|Lv9Q?u`wn~o7->-li}HCP22Uxi~po`6xQQz-o1J&@OCXYqx+;^UH6J%GV!e*gYCa)4v;Yfx4T+{_7o4 zfjeO5u_FjVX|5jg5pJ%Ihq_@-@}#g%6lV_~K7}dF23`t@Ztaoq=sLY_P6T&98~Bh#D&fQck23J-vor zAv$yhf(3&pD!Fq}jk;5T#T1risXN`5QSC^s`_~iME~#Z?7KqipxR^qV-Ef`B2J^z|!!@gS1|nUihbN2mQ801LGD^{%CC(j|T4InRWu zJ5y6FI;2Qjk~COeXkWWLs@n0^q+e`$#My)3EV1{3&360kfPLLk2#u%W6W93}d@BS= zrXSX-+5LH(R>*`=P!$&rvphlb_<3BdzT#g%XR0^3dnRuNXK1TKNEmd%)E z=d@gj84B=+pm|W2re&tC4-CNQXc2eh%lrYswDmzUSCzm)0(zB7(xr)C`9-|Kt#8QI zW*m7xmD@B_Im$}V_<6qt7^d+y`q@kCsF9k72aD=;ldt__I9z!lTc7vxnmQyB;>lGB z+TTe;2EEVYTHq6OY;|o^+3W}7|HD_EczajO2WN_;RN4Tax(hLMJ?dapKIawJ-XPgp+XYn;bOd8%ANnY9-c&qd>kv1ns_ zja}mV67@QOaY(H;3|8^ zxU9^eK@LB!{6R_laRveRe=Q_F8l7~0nO?p&rUP4alKl)yz@+yHwIzNC2 zQdI0zH&@$N{xyX4EU|zDH5Hkf)R3x3=L^CzE19<{0_97z9#DWF>l<{4WY78cO?SqS z7q7>(`31!T3NL9*Ki1LL+?123tRrscW^T^xtnc%YSz=9br7$`_R~V+==Rc-V>X184j6C-BP9Xw{G6@jXR}gO{Igf8O8!dMtEk>_RNq|ty}o^I z4XigZ9J1609m!BynJ>_KMQsKdCjUMlfcQRSk|)Ep$QNwArHM5REEEtIv^nLImN1U& zIAaqu44GA^dk^97AdgILR!1nwTmAg&k_8X4@npHIYKyJac`#U#GsME7e(e!z?4thu*LCD974y!>BH6S$N+3$h)vLJq=OEBshwsEfa=Q1}T|{fRDc9NLBP1)vjxLue>5YBSAbUD}w>c z+$q5jRJ<>XKk@XK!8qAabbY;L%a?2-@u+>BDUeZe_ZWmgoKQM=srAa%BO+-9zw}@q z3n)5 zK$%7XmoXY4>KlC&?7JR*Gb%ES6Gwjz6;t$gGS!`m{P&A1qpu@R^z%&6!1_!jx?g&H zFk>uz(qd_u7^!kElet#yjy`*KHX~wAU!SnTKS^uPs>|XI)uF!k|1ptH8gPg)8jn3C zkKa~YI>S%NNY*!q#bAgFeKN!-x*6IpAhFx+*;3EhM0r?C5gQ<7r&S4Ao=!47@7kH2sC%wQda~!nH-Sv(=X;(htYnq{;1v50 zP9*59j@{x*Tn@YJJ!R@f5AQFYv(^nS(0=}( zqRoXN&+3)JRYcWGXj+^!`BL$*UDtzo* z^m%ckA`N9;6>Vqr4{ZR1PH_#?lH-B^^=*K-fn;exN@AN^WfF;9T`&T3Hvm_dH%Q7?hbz8ujxgfW;Lwjuc z>GqQy2rEvR=*$O(YjOO%C!<|DQ@~$`dCl;RfU&@>V}lP`O%%FFrUz~><4EVN*2}OJ zs($r+{w|mEfuY*DXA7sMJVfg^CM=lzC@^(wG*&6HG6PQF7#a)Eg>AI2=_%Z?Y(!L(%muhbdUMqNs%Zl?+}sgy?Vs% zG-`=iqd}g&-?d5TNmG{B_kBlJ+lZ5cXL0+OBtaLjA#udeaz|UdA3CO>Cb7g96j>$2 zv~Bsqz=ldr-In5XAk}eKiK1Pr!WX*`f#vY9#+}~cM9nRcXTj>2pxfNJe`{d|qnD_A zO4)78{%x=4_db(Fy@0auerI>ux&<{ry1PL?yyT6*oE?fSjmPJ{e@M<9 zT;G~f`t5I@xC4m|AkplnuNT&{9ZR$cb^Y-qUtc_m1nSByG6d#mmZ z!O)T5F{;zV6TGluagEiV^w00G6YMBJ- z;d$g~s?Kzkzim&#ei5u(JxgbEl%-e+Zrx<%GUM(mZHQ&0_$uLDUIi1vhT=}OcH)*&-e;CQ zT6VFme@Hq#_vsPbz&|D^?VFen1)@=&Ps-ThkWOa$f?;ouma$3-lre z8uWRk+Z7G6nutoud*N(}&G1Q?X#=yv+3p?1g-Ft3$hou3+=dU17utNRlQ{~-4XfG` zKXmR+0|RUzCsCKE*+NRKUW7_5@OSKW{T+MjY?y^bqj>Z?Cdzc;^7UR_&GVLfRQ?4g zqQ-csj#1C9o*%_mzvFR-F_o3m0jq5!jMIJ$Bc8pT!H2i?dy2d}wIiS}FDK9s+jgi# z9&xUG%OA!nSVV1?6D|pYUXDAusN%zywOS$5>Mowdv6P1n63fuU+wh&2=j&>+=&vU& zUy+$sOz8BL(?}U^sBCDi^c-d~Oik)Qk+Bmh#Cz-k+d%hI0-MY4uSqAJU`?2_@n4B` zrbAw%orN7}99&l9usLIWO$~MYip=*=FFmIzsPQ4vCn+LPv1fxC?o#=YJnSAi;5UX; zS$B%aI7RRr^tv5$bdh#tM6WPsBi0$uHl-NFQ>Q}LsD0*~MCd4AE?Ml;78db^)9(GU zG>k-%{E}Skc2)4wa6MMwL}^!QYtv37I7?b?o!IU?67FImDIQn?r`C%Q;Jz0b^~%h1 zCnsKk_N8k~o#{7hd#zIGs&=%5$}AqIO@#^Qk@aQQ!D&3PlIBU4^GKGNcT#7Jf}WkX zfs$o^i$Kv=zpkduM@(j{*Gn%^Ebnwx<~y^0YYHu2b-d`#^~olhZYd_7!8O*giLiyN zC51ZP1If@~BmlMq_AO8YRRG~m-qhOBB_oQ*TyL%xF=(`2L$*{ z*j^Pab!KKSXnF0hc3{t60%zeeL~AxgVe1_dG|>{O?MVRqOzwsE0L+-%U%+k}wq$SkjgIJ}hH_KNl1Zde`n@6fL=O6#3|i2C(v`PZ<=!x$Zu?WpdeyrE zc5-B+5>4UV@}~*qv^5clolt@mJrxVEBJnDx=*2s3172}(dyyI)W2|vvRc>o>=W>d| zWg`|PuX*;4q7D7VEYZ%NlULz4ML)~AyP+4w+Knw0 z@SIDNDVn)1Z|ewSg7*^M7RK5&8!K`~MG~h2qn`TY(v5PN^{oh`K*Rhi&oZN4Hm>!h zkbgMq@bQxI(SjH#M4IYJ-cZdiV2UG&kns=h+RZRs+MbKvH~2PJGmh980byQuONzT| z`cafIED~VrI23X>!m#UV<%+0PmwW6}RriUAdUQ?g$;$3d5gGw#*)lh@nEpyuud6ar zL$_HhH7|k?mZ7f!3nJ>w#)OtbJiP69L>dUM`zt}93i z_{W9d=oXB76}txL57Rd*YAgf4s!d{(8_>vG4Cv8BG(-!5bu7D@Xhg&IO%%)EwXrK5pgZ2+lo;HHxJstH;zDj^oYYa_{18lGj@qzXof4Q$L zQ7GMIu@s~)hLfg(70sXCpL_D;=H_6@zs(F*{eW(jhB>A{lymAy5r;=L?x9IHKFz7T zWdBmjKIY;}NPsQU`~FWKD&dQFv@(Q)MBE*)!u*+Yj*3kdC*PEuYTweYRoSN^#(J45 z7&(qG`QO+vRitLq`4aq6zo<4$Tcup~Fa3#*J<=SoF+nI819(fa7&oasCLN)%PCtcS zv}G(Au=6CSTdy~22GxZKmbxrBP2mam&JU;U=r=qZpiYS$XA2 zqiSJ3uP3q~%gfS4Q7&K6_PF7CAm%-ASKjn00G^-rtw}tb!4r^|x88$m|4TCH$CQr4 zt9k6>J~x_^)*wF5mtVC*iBr52J@d7wViXuvn&wbfs`r_@(i~tV@@CuYalCGw8Jh^k zoL79us|CZ~ii97q1Jg?tE@T!!k z)qKmJ)*azz9|%rzGzG-HkE$Q%4-lyC!+T?&_oYjHMWG}!Ur?Em2Jl?!HiLnjd?}Dk zx+!wT1M6wFJ-z0qq~>DGI3@IA9=F_B#1X59ev3qSz@D3@=rDVZrfZEEO_{{Hh~H15 zGUo0-zVG&-J#X;yz6N>t-#T+N#;DJPEvCAqTOV}aj{~Px8Uq8WtcSL_r|K^AGW4gq zlNgpOqPA<+gcN_KSSIQ0E)))Q9)p zn22PMM9zq#t`$Jg(|#8q_wvkh&zR|mfBmwJkyO++A5vG@xT{rM#u!A)z=C-rujY5nql8<&x^~^PLk9<%g9BRxJLa@!UQ`zEFpUG9bz5s@ zTCU!7RF`S)HeeWdMW+rG6Ewh{lBZ$u4JtAvcNGQPgZh(WP1$2*h5AZ?M01sIQAZb0%pTTT8N zi%M?QzEi&P1?Z}~em+slYxU|0;F%}b-e=<#V7!)OAL2Rvve2QRR+IDJRgo!jRb<xW}Fed1fUv_OSBU%S`rIy9QnKQHP*=t+BDLwBk4SDR-*&FG_-%d zD15!@9!Jw7$%qNT!s@bx_xvgRRqL+!Um6j%*Al$QH3Jh#;KTch)b9~0MAWWzmE1F%>L`!x z&c2h7|9rtqpSH`rf14Gv%yqmI=QlFRkIei1N@rB|yFz^CMpmZ&lRcQ*SjkkTyp5A* z4f#$cFaLC;J+%$mA+_+A-M_RZcsed$=w@lF_S@@!d89jV5j_8)pzex-d=%y0%9g)2 G4EP^?x9`0G literal 0 HcmV?d00001 diff --git a/windows/update/images/waas-wipfb-change-user.png b/windows/update/images/waas-wipfb-change-user.png new file mode 100644 index 0000000000000000000000000000000000000000..bf6fe39bebae24a09b3845af92ede68337406962 GIT binary patch literal 74115 zcmZsCWl$Vlv@HY}9D)W02qCxycMCQ^u;A_%+}#p1c+lYP?(T!TySuyFyvg_Ky&t!3 zS3%cQS9hO2=WJVR?U3(s66h#E6c`v7bSX(OMHrZOl`t@{fk*)8e+S}=9OwmDM@0z{ znDQ~=L+B59Ghta_7?`Rk)E5H;=x<~@NexFB7!2^gKiGcTLSq;hNS>6Ku(F%($tz-< zPH)|px1)&T=e5S|_RF!R`?qlc!JpQw07Nu`lvKwtK&+!2RZ=PfwxkG+H2kjt9z-lL zjL-X@9PouDKLaa|%k-T8*4Eaw)U|lJTDrP=3s{t{($5sDl+3Bs?4@#)jE}!9k5e&L zcD^Gkc*+;N9^J-uWZieOQq35mJHprTHM+ZZq&h z5T?)zvsGmmVDqGAJo33fHUjs@27Gf^%r<=y{b5aOlcdWc1AtXb~?S9oY#rO6PehQt74Y`^Xb=GVsV;I)% zx^_k$igDk=uwN#&lNEY1ETkXNxP!{^ETx*{^CH&ncR-TPjLp)mOA z>9_(cLFzr@RclS7HYD_R8Fev4UlG96@xm&T%ud_-ay4wQ)e{o!xcRuBfvM+xtFn@D zG0L?b0DTzkiu-=rCUj8dYg#0`q26ar`=6P%H_1eUMra^~3OU_pE$1Jvn|ETQyLt9g zaiU(|?mIBK*4&Kv3vvdOC!`J%@Ros$9LBw4Y~%c+LVTF(z7X$~e0j)e!+In?8eMNe z7|L(;yPQwiGt=@yBo+1;bY$t?FPHt7&8&3vF7Ya=$n(0M)^0bG65F=w&a*1ugUOuj zbH1}i@)bKU`sP7S6vp#ei|vXUrgGVWWqA`78WAT0zUk3SQ8c;A?^iV)XBGZ}HaF-K z!8r2#ljX{&$|qqNUZlE7{H{uW8`Mcu*4w?oqL>1>h$!G-OiaX&Zu$$*Zw5nWjTC?m z#I0YlD7k3pcx4PH=3!0seS5V3^u46B!Z29q$%Nq6O$m6tb3@qC!s_ha>mnW|i`OzC zg4*kCl>S1OdOtI7khKn>J<~g`cn*d`)FI(q*&Z-lcgR|2WD3M#@@2p2xQ(yuw1p4^ z3B71=@2B5)x0~qz<(i&CH0Vm_lU2-BgQOr{9L5;6>%V6lr5Z`a|8Df6q zzZxLlZU>1p8REQreC@emzDef-H#KzNf&`y52rf7JH&3K(Fki^Xg zVs!@87Q*M07NmR7X;M$UQFvh0Tv)_>!wv`F=z3lDUTjARaY8;A>YhW51kL_9@PjUr zG((lxv=G8nQ$5r)>|W4?UM@t57b!1K-=5E-$a|C%?lNcbk4-;l+X>l~vT)+Tn>fclo3Qx0W@02 zlC~|U_1tswLleW7{iLLFJiBpr7hQ-A+*ecIJLkX33!lrp#P(ZOv~fxwpVKtA8b%4+ zEi|fVP@rbyqU6C}{sd`fc;9JwT?{jI@Y7k+7^H5q-FF{VbyB}*thZM_6Jj>*!fF`TWL7o-^?npW089YTOnBo9?M z5!aWGkmq&CN1oJ}{IzVo*-%;j1;Pobjah#T-a;^@zawqU@Q(xhl%Qe{Qz=`GijPXY z9uFRQb963Cpbn(|l{M;@i)k(e(;yPp75gA_UgvNMl#9}Grj+vKurCFEW1uEOCXch} zi%~xRu(Vs89E)BCJU%_lk_ADdf&e?M43W1ds--qv=*}xFZ{1J#%=U%Dig=gihPbn> zWz$5d?R`6|a6WR8WV~LVZ4oA$(f!f$1j_`(HKo*WPi69cag6u4w2*_1;uc0ZBsb7? z&7C^cZ7W2#urMEu3ASX91WQ^=PJ^-w%f z&5XUDuyD!ubC|oKY3+-Cn-6>`ycIsLPrY3jmq$?Vg;vq==5dnSukN z-Gn-uZVZ3GtS-0kwU4^yTB&nGoiIWs&{Rl4@Qcm_jp zv{g8}gkWO-&l7M>OU{gW9x9~{DpaBFa47y^7X6gF!O(Rnnh!@&svsfxn95#h(Yvv7 z1sUuuoSR9)(~>UMtP*-|$ml0!lD7dao_OlSy4m+S%I3#?v+_2dc1o$w9PicZ!$o;y zRS8lp6n`qyFY>F^Tz1lBEFvq~=y-)B)77&nl(8Nq0rL!t*m0TzP>NMRZ8!o!(niLDs9{fwbyGhOfpQ= zOYC**ol6wS5M-oEGmxg$UG6=I2|bM%z+0C39oY|mld36C)7xnxH`r9~U5vmoP_$j7 z|Mot@8hPb2PZm})Td`=E%#T47EPBqIw|_SsVBuNPXfQI1s^!z_c?pJbxs@*T6uds) zW16MAo7P^><3Pi(-ib=n3o&$4ZwBDVB`P3&Ifm{>69%|-z?`zGa_pmiMcW;UKO$yi zM?@h3PprR|h~o07bzIv(i%Qt;sSbLRA>Y3x^&Zp5fQ=K!z0{-YA|oWG594Ia+N8%n z-{jZyN-b2nXkjeGm-X+!{|+w=qBdc6=G&jsvW?&m3u`*737g&emQ0tBu~<^k4)g^Z zMG4^R9R(5D5VZ9^N?kClTh)wi^+d~Zt+J>8H4SvdO+w*C{`XoP-Krl5;s>*`Lf@Q( z<%i5d3wK@Jm!cgLm19T-d46O8IpXN=Tsxk1RzkNaC*UZ#&w(uZBX1hU(c+&+-_y#T zS3n&xgH2vifxVga&CiEW*|sT;wlW&|SX=2WQ7u$utGZ4!oh04oo9A-dDy#DqYBeqE zy2e>UG+ehwWPpKb)_{}iy0>d8lYVo|hZ8r(?^Wi2`l6d%!bP2Uko-&aF@3$JWhrG{ zUav>vb%xE=H$A6G@f1=Q3w4t)9dKvM8cItVE0vY=MUg>ZL_Owkd5a47VW1xt778f{6rShD)pACA`u@U%)bn%r9Akg& zPMbS#y_4{PFxZeA-`q8<8gLsVYs7 zds$X5zVuk@ae2#@a_(4Sz@&y`JZ65vm)48!QHV2Rb1F&@1_{vGoNLud=_R8)ej#3y zGEWA`fOJ69-LD`)f~WN*Fx*Xh&owEmWnA#N$6lzdYS4D)l$|UOn=Taz@doFxtL{5C z;;I;mq&B9LdoRkx*Qrm=KNsotKISGQtdQcUP*9?i7s#(Q)tfq%&|v()r3NXxaYxMU zahjH>ce}kiZBN?ZMaQ&CkDHqwpi$~t5rgJ38H{zA_!1a%VcT|$i+>iWZG4*?Em5Iy zC&8b4hFm3EyK3*4D)YT=2vxx!-Z@RnvWMHUw!5VoakX+p(~^a9Bm_zdmi;h{tdp$J4Ro7={^5b0%^Tn+=)4k`OJ(d$uHssvmW+jwSF#{DESUjhVl9;H{VZB*t%}y4o?1k15s;htU zMW$%=x&D$_j($L_Q7N4m+O2BE_{l7vQf^;C`yTeWMt#Di-N^Sip>ncYgsG$LXI}2mUsNc_8^KE&3Q#Da&pGdA7 zR55!PalX#!xUO=`lv6`L7Z;VDaVK+M1}rbReflq4@RgebD44%`Bz#l8_Lh9JL>`fH zBCtj#;?U|*o{!|%K%eaQ)-7)8)|<(!c4}q?cXYN#5nrsUC}7D_A{m2{x;Y;+T&1US z6uGCz9aOg|!J!61z1+e4Wh{G>--_o5>+o)RcM0HQSSQ*iQJ0@Ou83)~hUs07oc9Bt z_0CB@COWyi=p8eu$w(-fsaTcK8q|k+Z^ly5@5?gDViv3^>2jawZIX`uf>|OO>GSVb zR}V@OFS+edr7@2#a`2kkwboJ;psW9QU>D}SajNmEr6pPyTIhPjg13yXT=Lt4x~zlv zA&WKMpTkLYYV)s3@@l@J^AFm$uO_Tz?Mpu9HiW8i(=<)Bv2m>Iz;?p)MguwUNtt@!c zoyRYQx4su&tH)@U_uCboZ`-#F3)sI8FJ(1jyb7L!O)Obc8^06|j+FfC!gC2B<-s65 z)Y=?<8wP&~%|(LPKjMA>VH5w;)54-I&6VOwrM7uqYup_GAN^8KuXFj z14iqts+Rbo>+9`&)cEjMDM4qeae@2ree2fCzDrFDfvrhB$kTjdhNF~(LRnWnp`aMf z=a7*36su~fm4en*+qi}ojQGH;*%k%NH`nwlhuS^6G7O!4Vqt+!Lx(FX+?g4D6#{Q{ z@`8~{*{?M58`2BdXd*4(qi|%6AZt70Xnob22Y}^HIT6>i+(Lwkss^P6dM8AL8g-X! zE!~Yl|E3}=my((9yb}&HyqHqSztrr9@woh8LSYtm#Eo;#)%z_aG#Dv%PJE*0cz@K^ z?Pi1N&-(!@`ex!`=yMh%gpQ<)9O|FnE6~V-Z-wGhuBTf$I>>lJ4&DaKrM#-6jJOt6 z9CQ~?Yq2H`{nKpQq2)}_z(=aypTF=(^fiHDUdE3Mjw}aXOib-WhDgav!kk9hJ;*o~HltKA1?N*@zIqCz8z}kD z!f>cVh-M4=;$uR@4pWDW%rh*9`=>b$i6I5oM}Y~z6JUzfhX^FqD0TZXbm{*5pmr`n z(y^xfRlBF#@m_Co($~+a-u=g$H$>^^qNESpC(Do+=8Z9~?#z~TWNMvDb?)6_>h479 z4!SpAK3zWj7cGN}fcr4-Y4AXQegK=T4{fT;DjQ41bcHWxs{6FGfn@afZwa9&GA^^V z7DuHLbWY4>AlxjlwD0y<55il#p{i+~M<8997nC!pvaBa}RZ`zEsaS$u&w!l>qcEB- z7c9XgtyZ9gYatf&h6wjz3zjEjOlhhPxWjzxfkjxB!x6o)RnURy(pnk_ zmsC2+wz69$Iefg?L>X;Pr96DK)Dpph3AT73%OlwM^c|V|&Bt9BRb``Wnj`U;ebrEV z`BCRlj`^N)tsFKFGY+G)cX&*u14ktl9}BLk#1`{Ebn}=(i@)Cq4Wtl_)w1%2tb72y zSe^~Pa4E%}`sVaMFo!@=Ri?nfZ8-et6N^=zre#(jzQx;YZK5b4?Pu&*M)fkdAC_LF zl^cGjpxXq(&ub>3zI6{jo5_;f7 z#3w6kf4dGi)IU^2knn_&+wsZ^zzsZndQsrHLG!*v|@+c@G zccA0>i;OSLa%}j;R3maZdkSSI6n3zgoj$b>q17VX!U#PMqEu8>y_xmPO}uZ$4IC_qraXStoRkc@8&r zPI3y5Z(WAp!i{@Y+cza7#&u|_Q|2D4&d`pbV$zL^7qSZ z=a`jQ6=D}R_(V51*2}Hv#VQ2QPwMMM9LK8sP}xL8rNj#-IdwQ@y#rX@D4f%$MT7qm zdCa9gI|#%WMNe>n)s~>jJDGo`B-KdZ8U{~DX|;@~lAFpJEs}$m#$D%b?~cXId2ezf zb=)=st0pH_f!eN=78aGnDkCyw2y|RIJ_Db-N}&Ow{bovf!A+o7byF{2bT?^a#c3&Zd(1L=N;7SI=DHGEJZ zywiiA>7BM(Jy;Z&bSK@95k1L2sE~m<8KbvyGUu|*$^o}5)J{FD^NRzlR{lB7k{1;h zQL!#)5N`WmyRO*d;3|1*Wn$Y^->ibne1PSX1kV}$@psLbxl%?f##Y+wLr~rhi?)OW-VAFY=b`uS5MNAg}63#)VZT}hFy$AsA zB2$@7J=kWd`ueN0Xnvk2I}g?kjZE@FpnrWA*4~vbil}jC{L6b7E&Dsbh>?CTSxe3U zx{K;ePbKXqF~9Q9j|r-xS0y6{+z$R}cpMz+@gS)c)!#bITwOU<9$kgg9oFC0yi8X2$!e4zsIJ6nZTz_VH%h?& zz#Bj;2I~)SY)xe4TDGdW_}lS9nSR_Gf-h-iXoiNY=)LyweT^HwAqqbkWY(n;WZj)X7P$av>92F=L&}TXT2_@%tU-h5 zWNm&NXmbEI7YZ2fc%;>aY~9!$jAjHleti0z3h9YsKIo#|3^x6BJb2%M%BTHkK=5|( zVKYH3KbYJmjX3?eP)hINab74eI*NnQ+;QJhFIXW;9{H~z8{>&mY6d>?8BObjV@3*o zkbn>)8g2c0n;?Z3m$`a$(8wG!kb^_f-x~hLD>@UAqIsNaO@GS-XrtwE+4~_osezi} z$*@hQPT1R~GVM=czZ+K_WfHRftabGMzGr6x@ zQ7mwPMKJAy5gIN!r+8T0K?LPA7~O(yGG}5_+7NpEoN`&$Tr%`2 zrp$Qx4Fz`x<1OSKV*aBC0t4urIa*oc<34va4bWul?T?b&t>ous$kvCBLalF)`H<(| zHVvKcPt0&+Kg0AQ0HU+#>-n9Hh+{K*987ZGWy}>!g!MWN4rekDYMFma%K* z+Cs9*!k`{NKW#CgFB_~+cb$S5H191z0WuND&)OXTkK!C2rT6&Y-W3#hdk-o4iNdhR^s)KJCsPL|&bS#SU42f07)r0th&iE$+cOl7kaX zWpEPkciXcN7v0pn5+k%xmRc1cByBG-?S}`nCI4Jz_ai?akfItqIq{RaV1CLtA_fw!cLs%< z=f%HLB9@f0$P&=uIXD)=pJ4f@@XPVy(Uw!9iJ)nSO(om^J1Z#p<9Tbw9f0IM=y};Y zntOhPI)ad7pq2ZtmD);C%fgXT`U%aRAO2|pxSi$NAbT0%#4OhOMbi|QGG)divKhgfN z`I-gjDkkeFy|G(MXVvrs1W#xSQnBxrEGq~+25i+$lS~XNbt_kYLPpd5Rng?WcOpQw%E; zZq3pn<_P8_5N5u=i~d#p?an~QL-A72w&V4V5S12HHQ~>dGV`E&TuU0Uo+)W}V}>K*M9ldx=Z@`3(iiA9>;tS7FxK<|o)X0NV&Sp9 zdOwebFEuBk0a}lSEqos0{&`i*nsQHb@DZFvZsB)D9pRfzBiptbskv4JF zD+%K?ANbII%I>Mo?;srQweZefy9HHRtPmHwhV&aI1uE4rTP({L7F7` zI*}E<9&Jh67N$=zAJOp6Wbfn%;JG%vuDrUgq*P&Ei9HF=risg4Wp4OwIRuA#jGJ1A zJkODyaK7oV!E$Kc*~OpadS~8XQXD@-V7(ia5x0-u1TQ_`$ZVB`7Oe>aX1=egAE3 zU+#{3%^H=b2pF0d4A~-I=ih||y&`IV1bjeuaGIQO;W2Pqa2wA7XL_!oBciu+zSx(I zg3adzNuV_0pj}tZdSEZ4)8-KB(v4ij?*9x?OA(7Umo8lMh)K z>l^;u(#*N2Rc-+d2S#l1|2MWggD4+D8?VC><`;$Pqmfr&T5eT3%hl8Z%s7Ey`48ia z;9pQQI%xG-mEf{7*x;be_CwJh6I)L~w6^^+=8Gf5&}*i!eZKkg8m2b#R3-K!wtj6L z_N$`JT1QY2nQN=^N`dp-S?SES$wKcYhLCMWp#3o7MBNSlJY zin_{ZdG(V~8DZ?yd2Sk~x6aohlZmWQ+NMdmN`|!QzqvS8m0qHJTpCed-ofm$lm@@k zM2n9Fx+Mz_GsBp#DTUVc;tccCI=0D}!kd}{kT>GCwxu5ZS(}1c;|rb^5CL^tKC5qE zr;P_#86LNduwqNF4+Hb97Y`A9-mWtwuA5&6NvhFUI&UN+r9~95WQQigMvAD5xGZcc z3o?8>t}Cbrc9$iHzM_6DQ%Sc^RuK9@6ThYjWpP~yxNNjvtm}_6-fjvWh$>qk2nBq5 ziAGz3dwXT|OLS-J|JZw5pX-!^Z-aV&Q7OyDZGE4YE5R6iJ?Xvf9%xG>A)tQ5=U|~1 zvZqixlNt52>G;B?uKY7r11NnRsmIlCw#vxIzb93r$aWMAEm0UtK^bXt#YgA|c&sP? zxK7gVSAM-Rg#b3#Awif!V4>;GgtwY1aqe^Oy0vgJP*1lmIR0|W(#HC&0{QpnUF$Ge zoGG^V3NLfF)Kv)dLs3YEzA<&L_3NKzdB$9=a~^x{LIIYaj4F+#@r^n!6sIynCc&s| zy@71CAHl>BsQ7}1lmFv0+UL*U1F4;DuBJ6qc^x)+CN_c}Fat$nWI6AGiQt%5%V@cp zE$$uUKT%s!089YTG>(35S_ggJ-B+T%*Zb@Z|!03FkR4$I-y$aFO(k)e!^ z(GiMsv^h#>rO?k`;>lejkp^b&2JBcGmG+8eMJu^!nUtC0cIPvAVSQU3OUNhE`^n9= zpF@v}M#|e>+Z!tya`pfvVMpcC4!~Ip?HIrSq8}W_A6pJIohDGvv(yx0GRr1+(%v<|(AvA?bq#(HM;AZ5uTh%=G7;yV%cM0_vMxQp}3-j-*s>6D85i11AoW_2O z^nS!(;psT@1R6-qZ-bS)MEB(|C~ldpHc;8D#-zh_0?rmSJ*lMBJ1V9fi{ERZ3eI^lrhAU;WQ^nwF*A@k2Qnk;}6 zImCSS>z^NBdx>!5kl#ipRZty^I98;sIC)M#*Ftq~A(lcIC2bfy8#Ke^=;qq^ar0LX zy=Ww{C-V=2^h*)0lBLbB#n?~=u7&z6)1bU;Ru4IS7xt$;7_hC zqAm+!-PSWja)V+kcqlf)IkTc4Q9K+;_O)!cdnjz5(=$G+E1#9q@Uzi4bg(D2b#L;C z^^;89i1Oj6{i~DIFRyd?^Cq2?@3IiY(7JQ4Jg>*RD6SZuQMe`C={yylr#Yk;xw$6) z^PR=$E^QgXhbfE%f^J9Ec3TgEn+w^KRBrAgqcbj@9w33g`G-WQgm#35$lYBJq z^&Fmt{iJPK;0Bd!5OM7 zjozPj%}<$TGarD%Js%v^siCk@b;#GPj2&`!S%7f-KV54ed;%s*?)#J8rH9p4}!kF1zv53xLpCjR7sWc{$lK&=`vv7czvFB-~z3Agh z>1Tfn3!dd+DcM%t9{cR(v?r+*8 zL9~&(D|99KyqDL5DqM6qy>3?OvLFF^f$jGr(_XpA0NvR?podkwwjhIubmx{GmAO<3 zdBsO|-eQi01T;k5+{-|_yIOeKY}Cc%L}3vAcQE_Mxk`A9yB;D-pFBy9h~Es@PH@VW zmFuJ}&JX=kd_m)S9n|687CHZrE>6t{m~kp`=t5nlB$m);dql0(Z5rWtYN|fu+G&Z=30Vzny{=1FoqfR`c!ERr9?{0qLuU-(JUBV>+ZP`4 zNsrv^H7t7?XUG~$Ox9v19t%?xsK*|kxw?YKmRSD>W2(Gm_AlOaL#xTYL_sm4EjUTo zo1?&FAj2yqUZmd`G96t`J9NmN^#7*$57CLtO(-D6m`w{4m6)p&(#$C-9qv#ey(O>t zBk}f&3U&!DMH$>cN@@ivyQrwE^jQhjhkCrGt}(HSAC)a9)zWbpgBqW!C@gUwlV`(1 z5)R|>(Ad?{<>5Ho<=<#SB}$4GPe1oF!dqczNv`1NzniE43XM0hN2Yt9fGbDhWY-#1*cx+Ac}`_8 zL{H>x2KKMAbG{dIb{fxdoSV1-Kz$Lt`~k*AHF|o!@3W55Q!xRO_p7(ebOD!m${EIB z=lPlh5xE0}ql;Prt4A#w5zz_axmZfe&0$YU&Z>^bDcIA zu6hP5ETSu^EBQ~N2S&VU1Z=1?91B(hp~TLn2WlKaVbd3m*1P<(1^p(Ke3R$d43C=l zsW(j}!nXFVWaOb{qvqgfL29eZ0`6axN52ikTeH%64>J7?;Y?PyTid!(=zD$y*S_=8 z<sI%UwfZDocpFkjbI zS4L^gn}eU*TwjLN_YGu)1}tLasala#>`tG(b2SPZ1KiVTKK<`_H)SczMS>@2A%t+-UitE{HVrgdvuSbq<+Put+=chzv1xS^0x&y zVRC6iY!vV32h9r|uONrju`djCk7}Wlzb0_sveazfJ+5jLMFUS(K(gp} zJuS(akH5IaQvKT(d(VU8L9IA8p0_1-JJzw_8CzczoOKAN_UlV+B^Zx1sO*cokT%5d zQl#UVw)J7~e)EO89j##fTElJQv;y37-yT8F26-6w4Q#7;rXjWi_iu(j3o;3Y`Uahb zS=##SmM}kLB}KHfO(Y7wI(QJM#z}cNUYTvSNP!KXj>5P~I3qzaz!QO{E)aAQAws_A zye78=dK_h`it-dLCug**Cr0BOLMrEdz4vX{>z3mrPAcXwtBhE}G6wEY$QQ-^`H_>l zxFtP$E!=;@0*lnq-#T-LXJ8uOHw&P2{HALsFEtZ3*is(8qR&SbDCnI%*Al?}oR&Li8ZFdRgPG*JJZCjfDS>+jj-^g4ZK_ zw$~jsel-m^76@4Wd}i-lK`b)_*{sk5NN6Z_HP`EIYBu{$l%5V|BStr*kUX&g!Eg6| z?7l_y0_y`rjCE1;SD=d9Vcy@Z07MpH+?4=JtXq0D=>h0bh=}A$I~xkk?`eTfjLa(F zo_Y(fIl3-WW9U&!nxxMLeG4!0|8_3^i5Ssi*X3sEd@$6h$8+1B%Xk5lJT;OVfM3=x zbh4yx@ww=^@Y~<<-fV?Rv7lJgUCvzI4!sdsIH^#(={$eAx9WOTu{?Q~#EyUR&DxIL zeThz!_{z+{pz7+Yo;cJx^QMMDNex%FK$9raSs?% zh<}(fN3c?v0Lu8S*!PQLZ?SSY>ZORrsO?zX2PY{C`+4gv0n9(0-Vo(l_>jp~V%dM3+!}*E78S2o;4} zFWC2!7-4JAc=MS4HJ}xOPeQ_7{47HASI_-X?w^8g)Ki2TTAXIr+9ZA5&^y%)CiQXC z9>S=izS4DFb>2>3-e}Si{j5IzU8<57nS{{HN$zmyygj6mME;qzneBsC0}Dp&JATC5o8@{Gn`3#%o9?wlJC<0-H#2n9wOTGdy;mZ#MUHN z&q3Zfat}uer+Z2GgkW^QNJilatY!Mdttz^T%t@XT{j(LTMB`Ul;2aWXjw?Bi6$peF zjm()tY3w&TaPWz>%d|G28H=IB9@H=V;V;8I;VK-|!Zbw+uox=dopBHN&1%5GgF>oJ z8m!(+@8>e+_!IF4D|{6!`Z<=QWY7Xfp#6tVjeKKl65mgSdS!d)`}tAgmiHj#-*8nc z$uoIXka4A=@7XxpPcjMe_k&Pu>&x#1XS;BYbdJ}nVWy~OeW-#wOl$6r@4S_5Zxl7) zR~Tiw7VZj^UtsgmVvV~zY(6dzg9zQuC|&vtI@sn(=+bEC%>-Yu$hkwpWe?N&ss1&4 z92h`561c?X%bJjPO9S-~?kO9&Zrrjh0l zVOGjo;VHU9Pe6k2H`4vYIQa36=Tt$+g3$~m4J!`PH?lWmRh_(J-bk=^EOf!B$B`Eb zRh2ax1);X|UELreYutvTcxkK#>RZH>I>ogC)J7@Tuofez$lC0NcjCSJZI^^`2gu-^ z@D-cv!?51l)QjaFV#8jtW#3Ec_)^Cx=W@?$>63PUtI@8b)jxf6!qZMUBGd+SR~%qP zlaKzX<$vGy)S+}apes?$xt(^uCg}M*x~;DGvDU`xH_edP_h1?9#;Zl9rCR<{S-R>R zBo}-BfFe)wpqc>Hkh`Vjihi@h_}ltVY5?tx5wy>ciK!RdZhGS5aB`sp*N2eo&~t zFkT-Pi)#KOiNe#ylo%?6`fn3FIb69@$fxPs?=I&{P-T6xFGtfnWwm2l)UqqwT>*b% z2rTVV09sEv2v?G1=ze=i^-k8s`*Wm|PoK<8gnrxiv3ee7eo8zk(EV4fe|t5{1|G_} zY5mX5DpR>itV;mK9RF#-%iNb4a5XI30qxjX|8YKk6p~%PaCn%2}Rjkm~QR^h#?`Ny(r!TWWggyXgRPa zQ1@r=BY4clmC25&x7Nz5ox+d)r{<;6_7WfK@!R_kb{`e@CO;)&f>DlZEY&LsCE{XT ze^yg7A@oVJVE=U13WqtV;tXHE93waEJSrE(zZ-vp1(<;lRUgXT2*zNjW9n{7U z#=05BOF>@lw-Mf>2(C5mwSRikDsoMz7T@TG4}REt_>s5epHOWtc9Qo9R0%}Q1$_tc zEJd$XCRe2X(JSgN!^_1YbwAqmByVNLmavr^^e&v7!1o(H(E0J9Ym95%YZNjj7P?++ zCd*cbcKat|Gi)={$m2U{Xp#^u6_pOLnPn^zjJ*T9YeYI9!oi&5k(5LP5HHwM8$5!> zIufgf;y<6V0j4UlTRT4-bW}Y~-RB&Ff8LRf?Y@xcK+E|!Uer)9iPM4RZ{wLIfPLc2 z0ns9v4JS&AC{I0@kSwH72g|b+%Gl=_vCk@JT0SY0hY;DevK+CeNkEDnbHMCIk|a|p zPqGr0KMr-K^mxZvc;$GPq3&LA@05R#K>(7HPcIZi^Q@GrVp8KAiLu~*<&=&w1L4(q znt}>sIb0f54J5}YP5efS`0_B`Tg`QGqR=7ZyMLzJ8Eh2yHFF|!5Nb<;SpXp*-9drX zuxWW&OHen`BD?H!G?5Xue;oh8$)AsY&Z)l!nsMmkPY&H5XI=krimFF+RffU*lRBL$&0>=Ed~3 z`|k0W=h5-SwH_n(So7&@C3w;wJpMtQfuUy3bhC6>FU5YWoH`QC|ICB0v}$y1Q~ubR zq@M5U#O{R>Gf1i2hn1N9VdZ#4`aniQgL;n%|`HtuVNRXHE#Wb)^WSuA-^*PB>QhNb$fiKw6`9U0z;IEbC-%7x zr137r-#hF}^AGhOT?ob6(0-Ry84*!bTF1^b+W^NiZzdZkh;ALn1QKB(WXc}`LoVgmNgGnD57&^LK5C&}suA}Z- z92E(kI{R55Zw>80kPr*wH!xHjNwc?D0d@VW_kH`@EW1S7?++8VT%l7E)t`F4K-kNZ zgM!?&URHs7|HQvnLTt8v=`rFfW)IQGXfVrd#%5^v19@AAcoM(8HbCyyi+L*?5$)m5 zDD?-_51l)Iiz_DK!1up@mFOC-bTgFB^c@)}Ss4PXDj)vz4D-QLfALBM32l7a-`qPKD?Fxm zye)#>Pd$0b*264%!*;2<5kB8%K7nvQ!rVFP&o3~v7JR?)yAn>WPhFqx_KYMm0wh5j z`TA-BRC-g5Ddn+*II3jSs0=^NMHFeX1Co(`*%a$V{HxuQ*&Wi^6Ku8RNVU7%ki(ZM)aG; z^`Gxu54o!)?8AMU%Lw8CdaE8Iz>hi<9+Gdpn(%dj+^WWJSAWYRdLuK(N4HtD{+u@qVcs? zB%J<=mE)!T*8ykGLpU7tg96!0?_VY3eC~84LE@~eJ%t!^85F6lJG9AtizTEcsn8zh zuMqo17Y1Lj)kh0wghjA=NTS2Wrj_UZQ|9nHREGCD;}09jxY60y{ya}-yG>#UIqRNTv{jLg`-r5Bda392y4&P4spv;}=bcN}S?v7oc z01VPM{r4M3{u^%UpSanY-Q?B5BTw?W%sClGokgUV){UD%(b~}i-{{M5Lwb0Bly75g zz0}4bTQ-=Fn(83O(x@XlfL4%A16epfy8HCvu;jfs2p=d`lutcm=r6bCn-w8oT zV4%!qh3PKA^Nz#>nlqUC+x?LAS$+uuhBp&Lm zE$PUYA=0wLJ_^IHKSgk#8mCdl+j-WBV5ys!lZVidSY=Csu6Xh#3cd$R;**gpzKgZ& z{0-tqcHZFQe5#aRoEqu^iC;;wT@|_%#)mh0&;eD&zhWlnw6iwDVRx}QjE3k-{WR}J zeZ7J|VZM$ACQ)?fM>tG5I}i^9b6~A0qml z{==VacrO50gr2e#ss~fJiZKgK6u*~t-XYGU=J?e!2anzSy^jvStB6C6<6Tq@?8~nv zsHTJK{w&O*+eE#}FgRk1o#_b_i0&r13@`jTVZPgd8QzFiHtU~N&TBmKt*a`2l#K?b zTG)>G1{4eW|8bQ0rN?T)7S3;1O97juM`Uf z5!`=gLTj$i(hCbRTqM{F$5GVQerbP2J_Lf*=LfWmzTE=?KKVXA{Xy4CJN9=@ zi{c{8*x471^yHKr4}@9K6THGrqd#QC%5vcCXS0|YyfD&ZRn0qGJc~X;h~slcIy+9} z=TE6_D)9Up0lFIwj#O^4ZGG;Nv!A{)@Sr+>HztkBy7g#5aDIS(R(@%}v6@DriJx#b8k!1$B@W1G$h~DuxGR#^D#%IYrRS+=X}ven zBC3y7>sZP96Eag3IX)#THwXfq56Fk;fyQzF?(6)s%=~{Sd+VsE-mv{wLOO>=ngOJw zQy3bCmXPj7kVZNj8mR$6I;2yiI|S)&0coV9k&d(H`@X;P*E#E~!&)wu)XeO?=h^pj z-PiTG=M{2DsrhG^N`1^L#>1P!*W1u`Z=r@=iz>cW=0y;06`_kQg?CMdK{vdRGeUvC z%#%#yr043}*h&_>s6viHf6?X10_$K7jKWvz(t;kl6W*DW!O=YrpT96Ix%yCiWnpB& z%+elX8s>vDY}?l31eUd-@mqCN%upzDc9Eqhp?n{XXA8SU$s7*0Ea3`#MS>g>Bg)Wh z47_P3$(h2d-ttl9V<{%q`W4~J|JKYCyZ>9h-mjJb$dN4jYSkCoq{h?NY=sPJ>!bmj zG7BL8-nE{}&u$6Ql)O49u-#ZXMIYB>NL&G%WWriNfp)mV@I1>PN7k3eMpYjMRp`~L zoTNaO0tZKG_Am4TO>U6ATaQ3#-?-1Td&HAc*7{O`_Cfj^Du(^TJCfTstWt}jDMMKh zO2ciR>onaO)C?XJPe#2evJ3kZ(-aNmiD5poCi=ZFE9rfDo`g6k_r-f~mQ|Nz8Sz~V zbKvU;!Z2;=X7v`jw1h?97X&chgf_7j-YE+v@(=HxM>T-Lr?%HW^r@716=b|crAQuN zgV8+8O3!P{<2Ewgj({XrUUoxa8gcYvF|1lPrQ?YvS$WR&vpS#dq+*^|OEN|N z>k76juV-ya$JQ)-F5Insl1+>!6*5?~r@^;MLB7h)Rn$}ulZP5nWS0@i0S7t<0Q zxYM0aO`joHPi&8iuq`qp_Rm5$7dkS(xPnZF$?4JhR#eRx-r zX7=g4sPgKZJD~P?##GUH1b%i42UU=54$uQH^7u;~@B?3BRJ1$%MCyx~on}#us z!heV>usonES&e}7E)YNpC_Gs+%E)uK`2L92i0y(5bJVKv`--gE**-m7#mjTu_%ip7 zs*c-f=X$K*G>C%bd1)Ap&M@RGy0ID%yam0Yt=st}xF@hvpq9x9aWzH3de%I$Bd%e3H2~x=&h1uxKi3hT`Zg09UDL>Hd1v_X8ok7eu`36no>3R z?GIa2m~%?caXxz-IudC=hibi{LQ^TQhRfF;Qt|o4tM+QUyU=iRhj>??DY<%-qF;}Q zs+(;5W`IgLq5eS9Snw_p14PtG=x734Huom0ee%9^_T{iLgZb-z0sjx9&t!T1gA{)b zRaIOTa>K=O4;l0vu&k}D`15pNhdA6g*vQ#4&+DHx7Z#d)7Uz_i)`@IMNhujDiEB}; zwuuH~5YB6^k=)4@p&N=dlOVkx**MHJ+!D?3^7(^npA>vPS< z2ub561}0(~QS9r|(ePj)%rJL!q!dXeacGEclxG24AgW4N zSjZin4BWqcmwZ-bmUdARCX;}xSlqhbG0o?1MFaYQwMI3Pl;PDj zM@^e?Jl>Hn4SrBz+5PyZe6I=Z$%!Edsg3-^b{*YRX%<~*zQ~;62#TUt6gJvSut_w7 zN)(xvnWDb;hO#NKlal`!{1U{6%$qg!Mm^h}A;fDvuws%jlAeV@u$Or2C;yvmz3`q`>m-0W8V(dh9vi-mH@IrGQ z!+@P*UA);&TJg;)P=EQ_+bgqK7v!Qr!(;gC)Isx^CLZ#Kz$G*ZszF^sk#v6Vt=b5+ zecz-WF^H6z)KUVCOi@DXrnJyPio7yVEl!;joKdO%>GM9zF4xk?I{EF_z%P6fwn0S7 z6(t7&zF+ zuo~|BsHdu~uIxVjsTR&HJk2#-o55;BnmV>1PRN-N;otP8nF};-_X4>46_m!rtb`h1 z&Na^Nw3X(K%Z=LqojK_;R1bG?$RTiYP!k$ILeH2C(9ng=PVZ4$>*0ofH+#kBMHe^D zu~;$f`$k8vrN?tlpC#LNrFMmK3Km{5>T5nOeXU}rG5F@+1;RbJjU-v-91 zX~;r(@(3-zKI_dz%LV1KLFrkO`cdog{~?il9K;-y3F&{nmjeFlyU)1eQVD*}a_!XI zQt0mQ&P?(~{1j9(_re)lF%WE8#$Olz3PJDYTz`L4&n_ue|0&}heZh5nMBL{rGV z?XNV8^Ho24wvBW-Ej$|(qR3+~l~!b+q%Aq4V_{z}Zl(47B~Rs>I_ae^Q*K z{R896sEYE%_TupNXuQiq5FYT*r5LB_-`u5A%SG4?v?9!wZ8$>sfUzMp$N)msD^!@o z_fxPk#hiIQlhRR_4rl=>4}cu;pBZZ#lt76jZ6e1Rj2F#oP|PlETj zK@zGORpl`ydyPDIe-bbv*WJggvf|Hk8`-@n`kZbvw7_FGk?T!mq`sqOiYJQFEx+|% zA|(9otaIk&;nk9dPV9JX3k%RV@j`aT{;#EEj5#-vuo193kvHnc%j*mIpWYLQBmP;U zvObG$c$&sK~_x6m^|V@ztM#;HDlTLlQmFkMv6L-N>fg?W8!3*(YDhl3d;$6?a_J}IxH7L zLjY&g=&^7zz;Y&y&MTy66aT8u7CsUGPl ziJ$M;qoH&w#)oXjt@MLbsp{iS>LSA(djRf|Huo5RvS%q2&ggtV6xVENb9;9f@S~h| zMf`M^&R}yegNT!%4_?$5##gr>rMOe!T$#!bMlwJqm{5y(VP6s=pYu;` z(X{@7b#%|Wo#@OF^Vh(vDo==+gg1){kYYv! zBC=QU5Mv7Pll*ZwzD^3uzwgPAOu%QvVx!6@kdllcNEqsS;Y{^-5+TuhPCo8URQ;&+ zJ9XSC?*2b5VgVz}H`2Ci;}aK6`-_o*P0a=%=F(51>H~`Wy`PQa8F?EYbZ^Ol?~Hn6 zVFPZSD=R^?C$t%pb4tq*PrO8^Ta%iyIi22yA<0ZozPin_VcBii4m|s+6r1y*b5j1r z&jp+@+em>LQq#N@)J$L_^VI~^Ati>>K3Q8a!15EA@aq#(f7SuHG-G|yxt5abPUvCoH$n_5hc8Rp{UfjY$>2M5jL%zc#INjvJFEa{) z-;C(m>dBT_NEf6TMH+U%PPlDa@I#97s0D%#1emW#GLTEZ49{k1{_i`$*z&qLzUT17ODR@n)fHaY&ptznTVwg6Y9KH5Z=yK@0lGJ(*Ik-oyZO42YeoXunMEJ_j z=3P_XfOEV91nVI4%8C5p`pbG|1SG!ylIy5_Xri$vP%h1ruCaZJpV8ha-vl*7s~(0$2$eqIVpNJsR(1-Dph1S*Z`RJz{`;HY6t%698ciI42C-%tOrJ#GhHi>`z z+@}xDmOpkQ&&wHBSyu%KA75()MlNm4oi_3=U%L_6L-dyKN|u<(eE756?;K3Sb|8*dq2}E?f(bXP zCF@=WHer2AU}CVcy6TSOP*a|{ZUHfwU~!*POz$F^I+<&YL)taaagj>EZ1_ifdy&RI z=m#fo(q+0jKm9Y~9i?QZ_U0`)i=ype-zDot@f?zl(XM<#OE@UYF7 z`AVe<5Yza4QUA|R{*kSwniv(_Wata1SQM!*0_qqJ{!_R2zl9FToJ0IFA0EBLZErl< z42Dpb_yD=$zsH}U>`p(mjOLc!oOTEhmKq+t{^c>PYDwq3qtCW9=V2-}H0s1x*_io7 zo4q^T(@Kwk^R1p&1RAnC-0h z)(nd&XJyG|Og^8!Cj@>uPCGJOG3{u`e%vKP9 zFl5DI@R$H@fbA0?m-tf-;t=+hs|)mR*83IcZ!e1ti{6$f0(far!q3u#Btv0=z(-n~ zU@4hR{^F#5AEv3%%^H>@#ff;F6-f`+1#~rFzV6Rzrdb&BP6(6vyD-1?A@bI*SPb1Y zV{dytadj-*JB&$IU`0NBZ&{I)f|puN~>I@nfEmX;c8{d1tg;4SNlu#z4Dn1=)`V=gbpOTCH#rxK(gqG5z!7}%L=AkoH` zCP7M^J096oGH$J}H_pf1_bc~m$2W9dU+Bz^36FAzrh#y;=^6#end9&T{!}AA14wO6rteNJPr^}3QJqdRZ3?h>p&{4qQ zCx%~tW)7yx8%#qFvbhE>r{g!h^d1Ebf#c%vD?~AgSwMU9cuyEGw%DR(A&g2E+PqBw z%+sPP6Hw449#<(5z@$H>hv<9nfgbwkQ+-T^Q;U5=wtxG-Ifq99TSuU&z;nBJx#Udy zW!Vn(+C}WCj;lEId;BcTHDkW*CJ-MFzgqESR7vAyQu;1H^q1)E50Vuiq0{{cfZdog z18?_udX&U~Jd>;8;cd*N6to`!@qAnXXbwG2t%syREK_Y8(d-+Sc@Z>N54Zn59gr{~ zNSrY=;-U!N>giLdR&h9h_T(`_&^MkCDa6VXI0h<@!2uLZXY~lM8h>uCT{pRITKI4* ze*i$B^G1X=3ob84W^I{+Od+coHbNJKr;tm)=Yh9$b@QMDJ~9cdyle?L>Au?|!& zI9Drv&W>8(T|^Wog|YiQ+ha;`9l^1DI`FOn9AyhPdMJAfmhoAHSm!B*PM9HRxY0Wu zfD!JLLTo;Bt%s1werP8r44d|S^i>-CqZv#4t!4~CNx%#Uqnxe#_5|S`N`EGo27on<6FN7)YvM;(M_%Jl33KC6i}D{$4+IcU)Q4!JBZ_l9zr*^?V*v8V;{*^_ zH=B$<{IcF`2zq*iMZzn0dlj*MZUorm#VBy~SbHT7*Hy}(v58G<| zgd7%Zrsz?`S?*m(=)J3@CkmwrmIDG+#d<&StlcXHLOLEOPD$Zgsr(+$*#L&6vy#71= z3qwcWgQ|4;rOa<#B3a%Rbj>@YcjZcS3-cy{^nHVK5K-A`GGh-7$B6d}4Wa9XokRT#h7k^#Bbon@sQsLu zG3QE9alUuo#0|@^V6j)$X)aHx!_8tH6GeL<&`@3Z#Bd_bw2%DQqLgLGhkN<)km$Qa z)KOd5zBYP1CLiaeY91r@>~|}>o98{}jmc(Z{-eEWB-$X|Xn(Ca7j#o{akfhF=$9;3 zB9X(2m~johLuAX>0k`m{r{X(`JbH=Tv2@@R=N#d)LQ-{ zo)w}}O)>kQK#2$3wKZ@NOa6W^;)@eVjJnw`6X0;*yZMxW)(_V}2X5pg;efNzi~0!i z#rT818nsIO$j-PO$Nzi-u(NBGPONk(YF4(1ZNk#$=9N+!H_+jWru3rIZNt&!pT98xU^C&?3-^nL1PW z+vNUUKo9hNwTNV>zr!O?^jm8WA6+bBt&!huOg0U0HBCd?df;d&vqFW>_M=e=4L%!CLo<|^+w>e`wEk62P$dcnH z!wDY1-2J8ZN}~w@RTSQo^U>0-!=(H#7|bHKd%|Ai~AI>EfNc}SbnI>Fk^4WC?l*` zV}!XC&@nK)pX9-^-YG0VON4N@D1>o;o3Do$++exd`4+OmA-wa91!o=uM_A(yEB=ep zhL|71NOU3%K^1%D$c^3-f36tY+$N|#DiBn~y#uJ)u{(uLNEk+isau&q5CkZlmQCGaPT4~#I1|-_@#k=kB=+SnCzM_KkpyPH?^{rROrcF{47=(>? zzE7ffl0|-hzblAU85cfm;9VQzr3p8_Ved{+z}(=+$lZKFh}~Vw_zejKZ6uNwX@Bv_ z(7E07J}BdTLsZr$);5NM(x9xoIFQPd_+|{BMW_Ih3vdtk($snX*lSOK)9(kWHVze# za-S)_Dx_{kzu)Exiekhd_#)MM`tb4WmKnIO9qY-j+VrV-q@x}@zm9AdJNFDQ!vJ+t zqA}>vCdSJIlfQWe&S1bTbcvuOpCSoHVZC!PR-oKJI*9>~y5+_7rB8=97 zCzKtc?8@Ze1=+8GAqhc|{Dc(_KWR@Oq4D7NzMa;JYMY*wUqHVBamd4LeG$o6@BSqf<=+mK&O=ERd@vbuILH= zq5qCH2xx*>LXL{7%(T4i5=0Ila<3fllfkAQnh@!+9y0wC|H-3ja9_>9X1QW(&Whj^o zcrof@)32DW_@4P2_=Z6zk>@Sp;M?{h@2=bDyU(T`mX~g#UW$dR zD$=p7GUkt=I=ti(4NyB&hg1=dapm9T>cHOPLoa6d1}d4Fg0PwwXeMH@qq8+k0rTy@ z;PAt691%|r9}0@!*nsX$@te$(aRE@QWBy;)-2cag7}$2AOa6Vfrfq_WcQeb(_iP+L z2|KeVPwbFgrUGd#yq~@ul)TfbYhYX}c8;AnY|48Rn9hot>_g=~!ow4(k}hh5Id-|$ zGUSk#UfXJ`GVGUe-8I>{Sbr!7hyd?^4V#RaZ=t>>>?_^kwAyRVv943i(QP5>Uz#gL z;xK&)U_Yjm`O01}p2E-u6*JQUEx~@&0^PCk_lHye0()fCGv2JUO;KLCBZta*olGc(3?&lhs@U_+HQS`?FVDwv_j%k(y_Zk0czk|s3+)o?tHA-}^;sJm!a zf+7}a`W4`dxxfBS?Kz_XPe6S-Sugf{fWJ-0^FzcMEJ(bc+tcgKV=eqxUoIfjV#Eh3 zE$@y#^JtdRX%#T&+b_u?m1u%(v3`-B;;}0L!W=1!jv)Z&+Hh}wMvoCM%hn*3Sf|B8 zM}WgR$FH*eA^RG$$W7@{NTjFD_Y`YNMf&_fJifGNs20F>%el!{H!w)~pi#@E_bq7v zdiIdDQrQlPJN;<7(zG#=f8-F;YUo*inoWSuaS>g}0+j`3fy2}dEA7%*ZIRee|5S6r zN`(L4BvkiPwJ8ybN+4E%|1q9q%8%!pI9wrp)5(DW<+_^iB{FY2Pk`e9=}5%Y_E|ZR0|-_UV52F9SFsk*u5});}Nnu=ez` zj`P*$wXDGc$Ww3ec1jq1(g+ywQ0-g%SL2?o&q!B`lA@}M3jLs~Kk!IsSHqYy@jE29 zTtj3Avhp>05v3%`%1d_poS9AljUEb=GhTf-lGLB@WMl9MhuXd%yfXLe_(73ZB*k5J zC^KPkDz-af`B+;OmdO!NBT>F%N!y0AA@+#3y2b)!F{p-`eHV|s1_;F&@8jpR!n8$9 z9dxOmQf2ZN@~GOZ@*qVo&S-KAxi(Q|jq1>_nHzdN)OVkQjS#SOZ`?OTgSy4C)|SMZ zlv`|OG45Iw$Qs`erEbYrsa#QoGA8Oom#BgC#h-z_@h7ohDze`GD=x5w`~jk`s(}ui zC&_3*Q5RL-Eha@;|Ijn(<&{jUi;v$~Smb7W~q@Ua^FVE$Ucdtes~!N9*3VC(}AK zQ5ajSTz6oXV}7S9tQ_J<@NZ?FZi%IGeu8WixLD zu>c z!+>)pQ+38?MYyO=?1ien`Wd5D2&sE&@Lzbrxs&W?%*&G(tC;z;PrNZhrSrv)S3!g; z-rGOph&WEz!O2rB^cq%C7=)}O&v>n*n4++VRo-zbR}XxV#i~;1fEw_7CVmR2@}k{3 zFqq=JqQg&EhWoxSV9-OuEJbAflxr#{CAYsDB*w+L7A*1%zOGvCk7#T&rPQtAdv@Z z)e0BMszB-NHDSpn$4pA$cZr(~ zwvZ@vkNvnbD)>-lw(<}lVtFY6r|YlWgm4LS_gO~Ww&@@Rb(B8dl2Y5C>uLq(r$6+H zuONw6(caX2*0WYfjQDZ)kuO-?_;@uwwuD1|`>MsAW)#>q+R+HnmnWq|gClR=o;C6# zuk(J6T#Sq`1d%a3X6tY>wYOy7C7ch9&*o!%*qCuy(K7Ad@|tyb+n+;tJ|&sD6O9x@ zZQS5yoc)gbA)FD zs2?zKB#IqA3mH&3XPXt2;dDb(&D-D9La zu()mNW;XGBN@Pskr={^}c&A7kl2QfVN)9ZxeQ7#Rgwe1%$`$sUELEaUFL!QApR-}X z;%A3xm{yg4#l8TBPuG9=B0q^t*UfXd@OaDSKbJA_$u+-ETBin3_{Ou#oV+}h*vKt(jCDQU@S(tp@ z%uzGI0Dm(KX)hXm1qhbrA8&%*W(u`>crSXYM;yjc5j>6uJ=D;Z+V(&mxGq|Zx9Sb%*P-mab-V)scM?4tN-rCZxDcq z`|o<1!vU`=FlnWigZ9PK$#YV@T)Ne;p2vs2u@ApX=OH9`Qd?5Kp!kq-x5;0it zdgTghcJ4nwn1XeA~i!#E06r*?LD(SUeNV4)CA?z zX84~1HJM9ze4qx-xG5)wqk(WOo#uQJX(_I}ID{!vE1}Ns(C0SHd{00S(~#PK5yw8U zW6mWTEV}=lt0zHPw6I_NE^gkkBP4qLq4~K6KKYZ5m_#Xc2`6~FAaH{4I!N|ZLLf{m zdHQ@Hf-?WULY#Fr%WRrz_doLm(?TbW?>jxa^{^iZDJ|9)o!a9KKj^I5jLxVj!KrcO zX@TN)*Z{QmjRr&~qs#PtXXd-M5R63DBHQN==F=(d6XAbR>GPZ?F&hKS9{pI2622td zP~&pcPwt#+IcY@$%&EbE=c7A-LY0?yKh^*<<-%(!iiO{F_CmaXAhEjp_8@HfTcF#e zLq-%Ap_xF|b|kvQtAai*n7=SgnNr*=d38lkriImqBQKtn zg2*%FSIt&2zNVP#GyH6jBqI-kioNO|4QWopotk!nqO9~&ZLn}S(MtSWQpx^hs~78A`HMA^V2;~d>dDJ10MQdoqPEM)xa1_+{Q@?M2!vAdb_qH|TOyIUc6*Gr@070H0)s z*s9MUXz);Ve)U3|-2Z&~^a>b;1c0X>zn7Q@I{?_Qu5GUfsd)$$rf;uIPACG_m14f| zJLyMPIdgA7$hNW3>%S|FKf2hDKZQ!1l-*fmV;ImB9My8!w|v5?&4r;6*F?t zr%LJ)h`mc5qTX4PKQ4R$T8p*ilO|7p@4PD(1>h4^fpj=c7SbxvixK#j@X4Rmj}@Ps za35YZy+W|KU2YT3GYXbA?x)e>@hr0+UtLfO3WCmdSyb&(N!28-+OF?LCUxa`sa$>; zn~(6VMgZ6{k}+~mYx46MAsz|T=-%<>$5RSa_J6G>Eii7=SKy^_#=RWB{^8N>CXqj% zg3*od-jHj5c3o(9j>x-eqqrsUQP4b=+hVKFFjGuPmh{&~(MDzc5y-S__xy&*`0QyD z$N3Nb$-HbXhVCQr6ReNUT#J(=Q8t}pFiN|*mCh{gAoH(c+guLAo|{Lp8~5vhc9l`t zlgNfehL02!hf;Z$(?9CDh(QkYs&RHvMupO%V)aiVs+xb(P&PZJBTNV) zj)8>BtBcOvBHNKRB=&9CfA^kN`~WM@}zl?b0qn$Uq&Dtr~9zBws| z^OxdIJp#**jwqyAvD1LyI%YGTc%Ha7J+AoSl%VZdkcAV0qgrgvei@K`*{wwM66-%B9F%x3iT;`k zwNcB9i8A4g19d1Lvwt>bL-AL39WN;M`ajY-{wTC=-UhYD>wK3o3u1<6bnc$*b{vT6gl;P)0bXS)nlyycQ{LKHnRbIn& zpTg{qD9=7vG&`q={q%v$H#OEM7A1+LsWxhLs6N&q-P$if3M*=d>hY(^84y!_ZHbm8 zFw;~af@aa2UVx+{#Qh89_VVz>Lo`v-FOl(H&>F-R1ce3vqEjLUZF&7|r0}2H6WV;m zDgGXYad9xuRVD1GIS|E?O+GxpWuT(By>{C;qpAEeimfYPoG+0o9spzR7JV^$i#u*5 zrLvY7@eG*y*If;adl=J0UP2|=!Pv%Fe!Mnx-$NO%7%A0CWa)H-EDe>?h{gN9^(xMG zLl_z;fZaaIS|L5w7F}xn+N{|&GB>$l)%LY|_WFTf?j2^&fHb*na1%u~>iAE# zjvluL(|>#d!*c!s-7Zr2wg>6JRh^dF7{X}|^sF)d8vwvQTM!M*JYzg!oJAU(;^mA> zI!hq_id10DN>Ok%z!={Ms=-56eElcQ180cA^oop}sq}fB6!?>{fLW5VX3X2H zPiU%Pr-;^Y4HN4Hg2ESb{sGWWn~dMr&oVS8DZ!bu%96>&UT>)9#+~9^Y6v7)5eh11 z$Oh~WvdpPeix$*rhKjw$n(8D;XE(?4-6t24DohfpTIR*E&08 z{z>aT)3^?9vNyiAI{;iOK;YJ>oz9cl4441A8K=%KP~hFts=PoPVf4cHf&kHN)G{hr zrJtue5>Fy=pc#}6A?fe&sA~Vr`M(1Q`u?^O8R*u<4Ag{QG>d%CWR1x)l3Z>$U;6vv zx3lT1)*ZKDPBOt?R!J{o8ST4!V<8~1B>R(~`%T)-mr|f_vf=~d;=XMAO4VRyUqN|f zO=*FImpI!{G8|%GH8cWWNzG4aQZVkA>ERb9AO3;XC@9_o;-fO#CDOwmq0Y2z%lwq; z94kBHns>Q9oKHtuiC_ z;tf{h9;;8c-=3mj1fJnF433f|fN{Y4UX^JxNV&S42$>8*_nSGS@<11{nB1F1U^Z!+xp?FJ5)T&Y|^dI>Kcssk>@jjl>OF*rKJk#X&bOVs_7bj}JH zV2BxmlxM*a3Yye(#;Ca2=sve<&oz)yRsVg>jFj_u&Bm~tfD?16QC}i-wO3m5x_jv5 zjfD;hI|p^8{2EiK*_>{VVtd*H!#fIj@-eXT2YGqMd>xnoEFX)zw?S5fB=-2{$tnaj zL)z2EBgiAzEF%Ux3$xug3z*carwf@olQaj64mpo{;f z)==SBmp1!nKA!|D56GfwH4!#kBA-W6SKjnJQ-soIT}NmVCL8^=4-<}Ql7P7Jmx{s4 zyuZZ;K7rd$SF1rm%PCjmdo+V~vr|5m#@}2U1zWxnsp#CI-VVDxfae?EtyNv__TY!P zs`KN1H$)Cea?|lUB9`r-ESXLu$<7uCr~nRSO7U~#LautxWoOAXX$ffQ@98Cm5SuDsO8rB=t^MrBWWdW2_V`-t|v>T>xk z29}Q@CuA{hYJ9N0IwtFzBlwhCAD7EC@rC!z$}Pxy?Gj`9^W@nF01Ri+G^ z%);1aIx}r}N?m5cx$!r=8BCP8IJqnal9P&|9y!cq1>0>APa8`vVF{y0m81(@=UwiZ z&Z|gApMCH7{gH@rEp5^hj@-?EucRWrV5D?%fk6UOioInhp;kun`=SbF;AtI|cPD{- z-3|Zc@W2EGyE4TY`O3_l&GEvDPCE(J?qxK1pI_oZpxZ)e7#M&UkRzuv^}pD z2rkRsB>~r&d*!-!OQS==%Ni}UowSdIRD<|JimeG?*{dt6p`YDZ;C%z1CR$CYm0)3b zwI96{bUcw6+dJ?^_-N%!al9(<^RIt^2IiR*J}S!mwB#%Af?I;(`S@!~{YNCGDiP&A z?!RY4J6>!detum0RG%kBhAKOzAyA(J+q3&BuWYd?AN%r^S<|8MyNi)W^}8*&1~s6S zv19}F+GHS|7_A+0qQiJZbTH8*_$>9s3CEG?uxtnb(gHLgDn(ItMhcFhk`E?{fs3Es z%_q?ve$xpbgZUw2R)Q|;XLgf%S3!vvSfUX?rz9CsvUKgz->gl)SvW~ki#6d>9aOm$ z?XhGfjN4?ehNDh%XUhH&A{T6ZrN1`KE!v$xfx|vMkx3&+p^wuDXG?w-;dQI;D-KO8 zuOW{s;vG_UM3K+%FcsCpoe?R`qg=VA)ok8l#5~`GMK2j*Kszdw5Ud!a^ zE3iUie0g!aAObNhs=kgb>Q@2BzZ-i>?hYjW3FrGUAasm&MrpGNf)U0W5#E=FK+FDg z(<|m9tUJ70dO(^hLx7U!7!a#ZfhgKn2OeMUvg($kjixK^qQU-0-fq!9V)FE)z6GIg zwEXAXMs!mAbq@JMBESEHlb zj=dwX{207KA&z~>tjAYnfIP_bb97|a-`fYekLZG=JY0YXX_duM$c0`!ei=vwN5}?; z4)AggpnqX?(mS(sk?vjg(p$WFy~yAO-Vz1(3~|w`hDL4?RQeV9ar3)Amr=tYon-nX zklI=Gw*VSCWEZxO@MTAdo}f9Ep7;IuO|V%qZ5prJ;OdRVh}*_IA-Itj^{~yYmm`~0 zj3VZl2lR|t#G%J%oIo&y#v%oJd*-G-&qQnPq<-W#1CNN9yb_Yz1;$OZqB;x|U0r=F z5=ODUe#SqQ;$c`&S&%aw%x<2#Kq>tDO1@w{P`^f{M_{Y3 zM`_2l(|u21y1I>p9!N_F0G5Vxm8!mvWDyet<$7NS-b~%Rsi!lbPADxjvofQBD7OW~ zNZLDzZWa)t@(Qr5mVBI4gvh4AH+uO>nPb!pgQMg6)mQ}lQk^7 zC$>Xpnpm}YhJGbiAkVv8kRZs=C|7};P~FA2ogMza{n~t|HH$FlYs=Vg@(Mt0Coat- zKc3ab`0nG_r`V5Jv7e~k8l6QC*cl=0t|ce{exm_3um>aQl~Kf&K|Y$OTdt;}tN-EV z(Mw8l{1Z%uq@O_Ph(-hUWFH;fdTjwyCwaMSu4Vk`Xkx^?+RxfZ zioB%h&%bQkY4T0DPnVzL7i(Ru8*F}>5AWIrje?+ z3Gk_AFEfsgYz}98{H1uWphI}^>_UEZ)ff53gSZ}HR|2v=G=LL{S_as+j{Wx^pyLDi zncL08X31<&(*k(GcR7GY`=0;H9@e2zQqXtSdkSiZ?4U1v}0wwX&+iKD&d#uk!Xu5>2n2pp`eqT(!9v5i12+z!bf1`gT zA*QwvZ1g-}ER_UEw(xi`bw3`I+pn8yF@Kq|T`v#vrz{G3I*qv)#aHd_a**@0@fh8c zDYh8e6&B59NX;_CUBy-Y>9Vb*i)-(j`y!1U-+m#dVH+*~jY&fQYji+g1r)VB&h4Ec ztm-1<;WDPZr!F>-hcTe`*VnvNnNOjcN4tEC#ur<@qqagH$2scLl4(`m5S)&*cQu;R zk{G08qOl4$9e}1>_Zur4S43$d+~`g(aL-!9+-RzFZCP`)(HI$4Yu$-H5)^1=w^IPG zcufA5j@KqEO{z%j&rHWmBKHI-T~a#G1bQ^TwZR^Pt~%Ds3g4|W{fOGU8-Z?Suaw;U zWhQTq5;xOHNi!W#PAmO2at$*5bzHYr7=;r`xZen9yWk^3%UA&b8+q`pGmwfiy_5+# z!yQBRg=4i;W_KZ^S5Hs|XSp90t+rD|jk|r$nTTJ-<(KznY|oT37xgAMRoJ|4&jjHT zuIst@Ff%%k44=%HOhZ*p4(}bgmNrVU{Hm+~`%8>5eO&kT7$Jcduhi%l(EY_32m&Sp z^dLAC-QIh;j&h7g<(_=>JK_Jx2-F0R(zoIuKj=AW6F@G_R04kGnji`qA5D9(5KdT z_bqx>g|he+pbn*=@RY1XeZ8Jly8d+sk_CSS%r!W9Kqm`zUZLh?43M}f`cuo-@)}_z zpFsj_YagzHsDUK2oBVCg7ZS}C6zp&p+nlt$LEQB5?5KB_=(G-rVumtjtX~v#ahHDA z8l>e3?b-1CpWim6eTi|I2s6r5k3{Lyky zAd!~;%=6Xn%JX~YN`V$#G#;yA89Lm5xQBcC+w2nHy|k(Q35=wSg35#KoxmB~Aw~)7 z-2B3p+-MibzmKW)W0rLJ7H>?yMhp%=i6?vf&l3R5I0Kma^kB$FWUND)qBtqO_3}oU ztvxL*w`MEAo!o53F>6Bybq{R_`l6ZxPbD^$hl%VT_JPz%MeFQr{U zX~Uk{pKJ96QQNi2S;h@Uh(Zdn^NVP?raTU6kv z-CmFSMI=Q5!dic5>c&rIjK#|P%Rzih28F4YZfHqCQ!&bk++TI@jDkJ3*@HB>r{ro1 zY`5!ccoN~?3jFWAl1*96P1R*n{_}SlU^c8srbptlHaw5i_Ce}){r--f;H6?3B}2aG zK3n(xe=ROkM-iH#g<;MmQ9q7*L?z`OE`Lvn5cVRMcO8bQ<`}U}cCYwDuQ= zc+W$`20rnR?oZw78=3K!f*;M{2fOwO+-}b5@k?6fP#Yd``KT>y%pXKLA-)$s%B5KB zZQ?0p-mqpxGEQocTTC4%7rW}nxFtGcYre=ND%-o?eTD1((TQ8p8xuyr^YSeU?Cld* z=e4x3*S*82AD{1Qpq?RKzhDLH4ta7P8kym7i0BRxAeU-2Y4;7X zL2o8igWPPT0-mCt%{!i05R#unkq(TWnVQZLSfKzbk)%-tmz=yz$z1f=Q8&M;&*Ub( zBVSl%c}OyTK8D*{d0)BHux%u1i=kB?QR~z9+nW^5Eqg^J%5}G8Z{H@1{9mNKWmJ_> z7sp9l8lL(0Y45mA!|b8CJ>5 zBDN|$*u9P`dF6RqRtp7%Z=uc9I8{xwsh;H5ftjT-rs1-?h(9>UcAkF!l=gX3;r41f zOa`xas>dBL6ubBeFRoF2T}1988LqChZQ{^YSD%=?5QslMrp1y9fw-m#i17hfcW#JQ zn8j!#XM2ClXVO$uGRs{$#E->5k94bc{mgScj!Q%3$SyXQ|8$Y(hr3<;i@1c#@H*Mv z@|thO-tnyCiOSFn4N1lQH&=4`--HCPBuYEYdS8;p*WT_b0EekCl0XNXuehI;;8@*l z6HN==#U^_Xgo&t=y>+9dZ{5fk$@(i5|P>?OZC2f8q#rGHGaqGx zahY*rj%Z2kiqjvY7x(2Grsfm>!psr7pt4Pr^q1~NUb(5)fh#dBg1>vM*op5sXG2SAw&9JMH^;hoJ_SlIV%xeqIoI61AsruiB+Lu z`+Ts*u@d}Pw1(PdPv|gZN9ZB)V^VJiIGGI5X^AYOK6P|5k?{M-DqAI@Qy$sG9jWnf zlHA&5YS89oAd||7Qp>%pRNKdp-sRKQ8`jfRY22B66W&@enGO6|-)~n>>pB14en=Yq zM<7`K#8X7_76hB-c&t1zP1i}MuA89yF8Zvm^-pvC4{Cjp(YqAaFVP7fu7w2|ai3cz zriITM15>h?b!(PN3}#~4Q{^Hhnn|ZiuImooY=(#r|1R3UmGidq-Bzf7M)g|c*;;X9 zSc$X*)47`mK!ttahcIt0e;^b^V2XV4D zg57uym(cN3=FV6VU#`zgJ&v{*@wnD^SI3SRXH{lRHIN3M=OK`n)Kp0JyQqURh*p?% z-LJz0$NZ4zrKB3sex{`pE>Nr%5ZmvBph_SZL1d!dPpbNbYr_Ca@i5Dd*(S>& znHUuK7`&z2Lo8YPWZ@;OvBGIK4EaK_##f3&gm68NEs}xW+rf&NNkmTWWw$5wN-`{z zOc6eboxD~$-|drPKg|B*Bf0p?M|`|qCS;n^|JHm%6XmQ=7G;k_e|n0qPCu$auF`ScJJEiizUrRMpr^zV=ERP)y?rKZ{`A`P_|P+<>fV z4Fwkhh$Ai@`b0zJ7jJqZU3TU~LpiQzaYPzEnBA;qZC05FRVPopr;}Txn)O!u`2B)b z9xvCPF_Wb?DrPoZi9|o*gKXyz(wIeBZvg7pl>29ys1YdDAIsdlnXSS@9nZ0jFf&Sqj>`<0#q<6*;c^>cZ(F1!0i-A-6qA{{?yW4jMQyt6gvjY}waH_8?I0Cey+W1}8O=%J97;uYC z!V$INGdoiPzmSmAZOt&ecW3pq{7P!t8*&_ z%Ho9AfhTJTBTIL6lXZT;-J3 za{PjPg;3`0=(M1*8B7 zh&g9pU(aX1^9ez}^cv>|2BW8Gc z+5+M$aR|6j2Uj}jd>I;sd(t7qzIX}^I)>$*$jZ1nsW))Bp4{AALb4~EWB?sXf z1O;B<^o2cnq8gFr3J~E^%@qDhfehOhdW;@O!W7orCSfy>O*#xnr)`hU+n_Gg*Ku*9 z1pm&(l~GG+6QQ9JPZN=I-7J_xyWrZ^Dx*z2GDQ;mM+>`&#|L^#g*-c*K zUK5s36R`i67qGl*4YNmIEu#xhibq3}Liv0fC1gXwg%!gRW33>dGp^4PQ?O3LJ!Ewq z!Kh>FpI4|*S(R6XI>p*%b*r8>emo?@mU9oe^-w=Mj;s&XM!g7dHPc4dxv>f}?dbhj zGWg?Jwabn0BL)4O1f~pT>PM6#ScTsQNlba&Opfg{hIoPX2P5vCfULQvdI|W0WA95{ z^hDnBF<`4)rWBhpQOX_8A$o{PYridiZ6YK*k@Tf4{Xj}OG*|y>iD##7$x`=l0&lmRrgxik zBEo2=78YSt0wKJFNlpP@DR&&|6edT$R6MMEwG&33DbNsbP}k|kGE%7~$bMZ4hpgZ^ zlC8dy;y2J}vR^a(1eRLhmiolf7S5dYFKuapMWtuWZd<>Rv;s;@iD#6Q!A?bC0cmr;$54{1*KjCxfNUYa^7R7|lB2-q5HCZIk7{|2%o3^-(d;ahz z(Bv}}b84JWtSEL|G0Xf0egu?7eeqttLe9FGv1o2?E`;r*8x}2~&XrKo&+HDBiu*Zg0o8BkEINgZi*|@i{_fEvl`Q z*xjP*9-VrUPkV5wxT0j+Jw94QWBX+mc5`$Zi$x7!o9KW{qunQx{FBLP^7&_OO*vjrKF7N;_3VEhj zWfXWN&<2}Y1WrJ4Fm|yejl$3WJ{iP(RfUgr@4ZlC?wFx-w}bHyJP%74YFW(f@q}1K zG6kXAE;*5JG3CM&#L%u)ac8WU%Bx(l-Vg>SQ@7riJ4cz6kA5Aii8Q{TrQM=abBdBm z>z^P8G><=k5P=90T=L@$`J0_S)x?rlqRKEsZ_g@o90{_%IFX8Vf3EJXkZNR(!YjO=%bTABwl4RFjSDz0yc;aZPoXek$dkI` zwWHl4Mb#rN0qk=+t@R$G*JB^{8RKY#)R^DE|7CS&UjO8ROK17?Wr7h8hlH#EfoR9| z``_`<@hRb0oC*X3lycWWk;^9aXGW2q?9>U)%~^xsA`NICPaIr2GH=R3qI=e$iCu6EihB zcE822D_MyrY$dnz$PK+rU$-PaOtHOLn&Q7;6fXVSKmB&D(0S~>f7*Q-D9}I!MXoZY z=@j@*&>x1iWBcMRUaeC8_BQV}MrvQY>DNSR_XU)fi#3@-6vIbHzQd2~oz@}i-gj4h z#;NW0q0SU{G7IFStvd{oCv=i!^KAG|kY|TZN;Q)MyQu_+ zPWkc9cf*Pp_lJ+H^Vc`iD?e6e^X#*qxz+D>R;~eeDAyrx-bnU~&W~%NSUn5ZmVh)9 z(^*&48kyg^Z%PS`$hzUw(-9hv4QoXm!1foMKiNH7ZR#^#ZCrv@9Xtw^YOa5Gjx(hF zk_8lY|9CJ~U&-1Z&VZd1nE|WFE`oZ?J@fpXfBxhXqymJnHvqR<#Z=Wl8oTfYMpDL;y#?|_g zUNHAwx74DL4&fr@R17VpdcqlJ9qszP3AqUjnTU!J0i0?zhL3mpN=hpe-G4RPi~J0}hwNV2Yv8iQQYU4CZ!o~kEuQhFcG9htNT@V3lLj41ma z>8I%7Y+rWsT-;x&kNX;2pHZ${$FyP?KAmnBJr4_FYK~(a}7q6O%^@jcDU6wu``jasb+!p#?s@EO8hq|efdTwDHXYunWkqSQ)aGV@ycHSPgkVn<|45{z^ox(x;$+I;ZIrI;lgPN2K z(X4e}^b~BU{it@)fidhZyV`m;rE9-2!LjqZj^~|_B$R7G5Z{IuoX#(~zM80E_V{z- zW0F@~<#i>5nvj$`lh;`Kew5Rj9-Q!EV%NADMhDy1#4U9%^Yjl{)eDUXLR2i7f(5SCcG85cbsgKC>iP|^w2alpdOur z>xBqzL62k-3a`dKx|!iAx8KiCf5N^H9_?$+#B!)lF901%9sqptQ@H@DC2p?aM zqzx$qtBEkY{J~82Lq*bmF*TD} zRoi(55_`3SQ9S9TjITcQ#yWt`=Wf?bsIJh(jL90$XHVH0oKmO!0{K#528n#6o4s1Q z#Ja|*&rbH%@!FNjck@=Bvj4^U{O`O74XP9C2&CA^?b@XvFsG*;B;uY(5`0ZoR|;_n zA6O?k$j*^}lS={#eUQ{4tVkwOt8L;&n|&W0PLN9JG9q@IvQ#EJ_5XO?%Xw#Iy&A$) zZQF@YHH4#rdzGCu^#*`gYz&%0BUqN?wzB>G^cZHxR$*uT4Rs#HGC^elqmNc|?8l@R z?zO5kIRU*c%NKMd12#%9s}D;s%pkvJnBgy)Le=oPS_#X8Y9+~xi}W3uMDsJ?R|Ufju4(HsrbEQJ*{B0(nf1F$YAWe+QJw z9ws7H{Y4Xz%5OT*{s>;mPNYQS3xvK?cAcB6%E15roWry~ag$4@2NQmZE?CC|7igwY zR$6WkBE(tSN8c2jfq0oGd-5fYQnvrY^%aMilNQ%vBq}h|Gx%icAc}32>0>=33ie(r zzPQ>MDA2{( zqNdeYuvmxO#^y004^Y|1T?!zIQ^$(-dE0s>xuI2}ap!XvoV!s|LGYvL*~8yv6<&F% zun)cr`ua(uc&9sl9`rb$GA%!+WP6!&4xld|r*Z9?uS!E;a4p!8f~KPyWUNL}C?Tt5 z51&*jEtO{haZ2@$Te6B96`*T-C1Bx*)(n|ut^8;E2fn*A%rgu4S1=$J?8w`q#sKxd z{~inI+5!K2k)K=Q}VHyk^#P}9~sl!!BF7F^Vx$UQTp3MR!{HF zshT4%s4aC9mTzoF`F$<<4=)+Rh?ed+ghY3mj|NK)p+yFMjWYJ&Zcu9G7QXMFi^E>L zK1$#?A7IaWEuTW)%kbMq_~u7x;O|}wB#{QhCwx?xWUop+hZW}iAMat)8wRECnd)g4 zL(}muGB9_#p(=~syLfEpgmr-IBhjTRWU9cx`8Q7|xb2pj%nt&O{*iRRQt;hVxyJ!m z7>4-W-_*!i&`L#y58G>Rd#wT_(vy<%1}iPF)9V20a`Hn*FhM&|*!b(fe3EN)3iS7{4$)SCoEQ~GQM%e-_a_;GVPTpT zsg7VR)W@`CL=1{)K+NyHaMXdp&V6VpD)6ma;x$b70rRat%^K=Sd1=xCW(G}n_zNJq zL4~>IKJCX}^t;_ZDiXbChGDD#nzWjP{K)}h6DPjkb@!I>YJ`0#2IW29zhPGu04I3x zpxK#T(TXPm$XQ3g@HxzKyioF?t+u+7d_Q7#Pds2^7!=YSU@6z!R^VNjoAmKl$M?Kw zf#*UGS8Kn`Ya?N1YZ-2{mcJiEQW%YiuM~U$8fyjUlOrGhauk1YHMn~&bhqA@u;%x= z^tpL|BJ-cF6jgT%b?)d{w;=fWKokn%no8&#m~UPl6uH6_{T=Gc!UT_(wlF5xF(UG8 zGptVmy{;t?hF4+*pYuQ7jDbm?UpauZVB}KQ(!)h9QV!4UhnO!7gH#NmZ1{pDSXzwdSdwHCq7@8<o0@xRA zpF?sgECq5)Qwr=Dio`q4f9RyIxONbJp`Y?mkY7{=(WemOE1DbNr`h zY!^<^>U_!0IJoC%FwzrffPd(~1g6yza; zum$tGNspBCJc)S*Zb%=$@zHYo_XP1a0r}Rr!`?VrldUy)%a(OU`%EPGbC7z8+MEYh zfqf6G7Aybg2Zhl(=5*|z6XR5sg}@b6CH7d4lU@z0gSig+zK*45f|rK`(gecE<6Oh| zK#xPP_PEtUND@Xz_^bWfSwLzuNA*L4sF~UIpvgeyK@vIVdRqa<4b`h98zxmjca>QM zYhbiEj&n070(_#%rd|))YY1(Jw)Izrwimz$ZUr<;Mn5v*jQPaCEKa4>@2`&6*6#bM zTwpw{msHTKo4H8VbiFfoc3S1??e|6pBxeWxLL2hG2Znm#(0Wj|4{8l}S zSg>-+c?K-XyZUYKhtE$mKNs-juDl!s0auuo0SL3%Hwya|%@!4KCFJ-A6|E09y<0cv z!9uZyrYIT@ORr(Bk?F@zScbtuvn{lY+tlfcbtX(?;9>mCWjd&w$jEx6Z47gS^#1

;`PYbCW|qSjBW%SYM_rJ)*fnEbrO^vVG2YAq#>34_KQ5=>-2sagcdca zq8Ly>%@e>DOc>ji^`*rD36JiG0e+reHlP~=BGn;Jf?SqG0uP(lj!AqDk!v8&`l?jC0YCnZVYTs>(dC6%@ zkOH%V5T>oMcd4&6yv^?XK}6WyaI|RoeIK?GkgC{KhLZUFM8YZ#MB+VHsm>dW6nInE z0vrLWt|R#oNxT9et^4vLxCLt)&I4Q5na^K`yye0L5+ICOI@>=$AtgN5#U}m-7DE2v zwiM70lE#y^j2${y`JPSwU>`>Z`d9;tmEF1gSdRB*F% z7S=R!>^AAz@Cx-bnK>9|lvNT9NqS*1T=e;u1L5r3;?B2Hv+q1l7v5Dsl@D-`iJ@8} z(RCRkDvZlKwq1U~UgxjF4ZwJ#9S*wneB5waGd|C^LEBBS?wrRnsyAV(+PaLK&4Ql; zggTPB>`SSD8f8JwFLH=nm&c$@F}`7pV)Fwv2-mjxfRAW_Hh1}F(m(t;14uI;d6ZT` zD7{VGPibdO>BvS|=PV!xK|3ETA)SqPFEeGv_L=+SC1lO!nK-;MrOJ%ME0EYKj9|ml z`?r28D*}=3Q*5aRc)sVh6a1^NQCL*|75hr&5v=DQbu?!!()3z>a{nU7ZP-HIWrhW2 zXFebP6aAT#)Ban6ZN>f@*lh~@3+hG*|6dPC#;B};{(J4-ZTst}NM^s@9;m!!-yKhyL@9vq7N* zM&km9BqYvc8qp149cokvs6oge$o9b?hZp-&uzX!6hU5N{JMJ}oY52yi1m=F=-}S?5 z8#LDQ*FR>fYxO>>yc#I{xsj<0_@P_bF=F*KBw~*xY#+ldx*30y-fPGGi%WlgnM11- zaA&FDvny#6h~jshD9@WLo5l-#&fuCPGi~2xO+ZVKGV1%~H|`*X|J`w2q*Z~@C;>vL zX%ten=z8p%)!Dry#h*W7Cxdl@dG^?%(vo=DI@5s6&Bq~K)acwegmJ$fuivCkv_r@H zOH)$Gd6X_zU;IxE_>!knb2?@SMU%w>;u;&)Xjw2TTfJWm8q4rL(1_Ac3=AxG-=Lmw zNrk^;Nw{(z{xY}qD~paMxoiCb^DD*m7lYtZDd<+!bN!7UW9OmvX$ezeLYiYjiCUA;1OC64nzEvKm;N#%_5LD+AlWtpgO5<_tQcIdhRc=oYs zfXoO#296!G_y*O;cKEuArwP8b4jA<+?HxjN60l9GHa|$3Cd|KKdxKy zD-2jAP2&%z2vTKuiCV&~FIYeHvan|9H}8@VjGO9+<*}d1 zp?r1Xd$kDZC!+Ho`6A|s^#F*HEb&2yzfP(ybi=YLBZXN1Snc~>ax*b?@*4BMB`0ie ztB1IERe{9{3Y+Sa=9*D3iE*9)RR7gr|CcAvs;a-;G9j*LqF7uji{}WHIkQvV>ife2 zacK%qIvWtj$6@Q0_#}-YA;N7Hz%yUH%Jc`}{4bx0Qy43AVBa${8$vd{h9I;;zJfTM zXE#ClzD9wieMzli7bZA}LMVL{P8Vt>vn{L5T|_9g*KS_Bm#YhVmBhV1G-+3@D37G> zk^y2zM^EjMSFFxEY5naQK_@q6`hOeQSl%6>i3wnFqeUj|>`zx1+E^Fw|G8N@W$a~V zBj4l8smMt7oz=Zrs^V+a;U_=E%<8u9Tdwf&?@3g??ebjw=(giO9Pa*{Kq_nc!Kps5 z0ExYR3xq3VY=Wk}f(xR}&ciF$cSF4vSPM#sEL@rAAWFtZlA^>?&&GxtMKJjs4Y~`= zfW}IGgRM6|1QhWUgi?k+!$styGKrX}AP0RrUv=H|)2&EW`DT+9II^arLU`*laUyH_ z^zcYM8Gx5X|zfo|8CZ_l^lRgQ#ikc8sC4Q_t=!lda7v0U~EhSWTPn z|BJ+2!Z>ck^tTsjJB)FQo&eE8r0Ey~TOfmX>6&0b$w4O|w`lq;h(XlU@hY1JyT*Vs z`Ema=KS2q7?N^j_%kwV#_pSFA5vB|d2f%jqJ1bOzlyE8H5v^i!xltRaYI8@nycK3& zx|U)_BO3dC?>m2qFv4@)|4}1!LtJbvG>g+{BK0<#h@-A>MBF^{JYBRHvrc`;T9Bl7xltuQ3$@?fnt)_9i zgcHQlA4Y1cU`0x##2b#fMqtlrLXLMMT=lb50qSJRG1G0iJ8)_F#rCx(vhlpHP|V!~ zS+we~_hGa9APa3Cy^A3HR9Ha{qp^BmTx?9r&x9}Ejv$(}+LUEOu^c5;%H+_$mcgj; zB0lRI#$t@J3F*~ECv>G_s{+H@8qzz#wdcpT+p(XAWVPp&L%s=3U)A|uW&QSzvobA8 z9d#X%rLjN!poG;_g`_pIiK-`nFHV>vUzA^^-U4eceNgsrrijW@8eRsnA0J8`5@dY= zKC0I*34-qSlEbXy+ls3=k7(NPKe^J(Rx2s?NYKhTe>H)(^#$hTksT~KBf>u35L0qz z9%9Vh%J@wdG4cUTX{;>8RF@NOWA2=mcPg4EGXU3UhAAUl;&p1%;*JooMRSKYas0{s zMJu3sGHxEuJ%B)zGP@qH#qr!0ZslP&_@|c0ZjW~^8e`M$AQmBNWwk;b96PSsWcE<1 zk%Wh881&u7(cof9gL;^($8Ootfxw%9b2~iLhzrl;S@tYHSdNnrhteXrIEJaSmYs6H zIfHV095tyAv)tDX)MLN1{iUr|_eB{<_mjA#rm|K?RsqACvFTcAL3t^k4eu%bne9Q| z@0mgqfWfljxg=O3j|hGB_YUlFejVzz_6M!%$`T8@**uG7E;;<;`h~Th2efz2xPMDH zIV}*G4Vbt@xM{F5rDenq}TyR_FaBzhZ?s$~6AhDmdVLM5+;R{@wHgH-gJESZZrqZ$dX< z|M|!n-hqXBeM;pM9CQ}O;3)*xwk~A{`q$sW$`KS_ls%`;ZtMGzpy$QONs5cb*ha%% z=)D;M<_emkj7_iAp6+`ni!8{BZGCA(hb7OPQNV-#CB4o>{sm8YZ2wK2{nC^E7hTN; z{WmK%==%TV0l)M@m2{~NpJJ$8kw+MB_ijP9&>PreF51N5fJM6@W`~_vtd-cj?i-$< zBY$bxJj`K@p<#PRTBL$(e4JF3*Osyd4$be*Cp_64S}v(k8;QSke5)alscg=HZ#Hz4 z+IpIV=IQ;SeWjcDd=IU^l;ZhX)GNFRuzLoXJ}XJsFH*SoqB`H+IykL+v+==chY_bEF*RA!b_i+5@bSH z9JP^TXlC%P?ldS6GC|V`$bb;vaxQcVoM>#~GA*7Xlr|=tzGBf#RU=$EVU4pamhHif z;Y%#1X4PT-$M3!_m~2FKdLXh>CfCO5J=dtgi(Ty3T-EN^CF%Oi0KwbK*t#yO`(TVK zUilZIKy1`roEmFNH;3s#p<7A zO(X>D2Q3T?d*h=n`jv>UNOzcN!@YY_!hyC0tHyY+AI>zoXF3fm`R-TE7ZD^1ah<$- z(SCzesfhyBvwcIh!&E0haxj4c&OB+NT{Mp#q{DZ16}pLE6* zViVP!a>LUpllgG1=qhi)aEFh&A#G8u(LxYXy7!^aV8EzwgBPu4w_TVONujM4QYM7< zm?fz{Fz2}&SeX`!%nP+eL>t)ELHmePaWE!WAa=?6P-~Uwbv$U)wxVA=46Eprt4vzR zYrBWSl?Yoo%UZuksyZALw1qIGyBA{7dlWHS5^b0)U@aD3{*gf}h|CIx-8bB*7KUig zAs7ty2q-J@UnEdX4;Vf0j8NSnDQAwm+o&qBQ#|g?1=RW|Lj^oFPwC-%_^ZPpENP+$ zpE(1R!f?zasV?)d3MTW>=vYUuM#FX7;$zKtXs7~4%=)umB{>uh;_W*KV58cf&~lX5 zOzEi7GBant3r~Evb_E)W&o4{g{Ey$=E$GR!;v4 ziupJKXs!?)QbW&1djw9Gs3ttrUl*Rr(fB_;kNTnw?TR&j^H+I=h<-RFsKIa;^Gj2h z!~%y?IHDZ|Pl?I}D5H~(NzYwD9Z@Q9uuyUTr$8_^l(=2h@uAn zFg8HGvM7p8^l(1tLfamG>a__#uVk*YRsMMjqyKPxZFvp2iI z+~il`MlS7fc3Kuw1xC%PLjZUDm0#Ee3AZKf$r&p$-^27nfB7rq$l1)Ti$!1g*^jp# zA{*|}clZ7ocma7Z>nm`uLY%v3dmj=(ajPc8!5%59Jp%FoN!i$pMIFu$Q!@KusZ z9msM^8AoDQ`9)$p!4mq-3m>n{OP%B(t3K2a7h9cQT?5ti8|E&6Du^tZ;&7rZR2Nro zl(KNwL8VBYNiSfz;iSxq6te^e`Kp1Ma8u|{H*iH_(ylZOeQWr)3Y*XxvPP=_FuQrQ z;SC&P_>TY&3QuOnl?=&tXYUssCFTqx4U4|Q`1_ofL>-(tfrROVDX&+aA-+o@y$11a z7MI>fPELU!3i`I2UO}Cia_A45zXxwOVHKdE*XC%jB~ch3EQt-wOO$>hMrQ-;k;PKR z&ot}aGU?K4bJ=AkE8y?Iw~4d}F-yeyq;SWYl03V+J|_k&QxlP5h?8rXP{4>@YVyg< zmKNSOa%F<&*sY3m4$7uH=objjHNy!%LQ#S_Fs^9RRN3Q$c6rNt{lHn<9 z-~+czggxbYQm}~0U0DDVqug>lBarLKI$H0VLeg6Ae%2oM47C!XV}`?kE+T;L0dAr0 zr9pP6{*%*Z1Hw@2-)Uw;#&|2e?ASwlchRU{p*ok;d~^;ayS9{KQVE z6<8RheUuI}<`o%?Ip43UB8!)Lrvxg5Z$y}m1#q5*sWA^~Fnr(;e#u-v{!yQF(P zed4a37IRF8f0tpJvP`|+Z-Knk?I`CEg=lfyG9WhBnmc*3j#PK_}-jF&I&}QFD*p}sGtJFJRczh ziy8<$*VMz|<#cy2sub7CTo zd-hueNwxajukLMFO&6~FZxO#v8#G1;>tkies$h}?HTf0k&jWLix?)4QDF`l}^TS)LiA(iV~8t!7IYYuhF$ zLzWf1ATqjc6Paq4)gxz9$jd7dHT<=gk^m=flpDwUH^ntb5X;ym({<`2S5CLl(-gx! zNrZA7ekjKl#?G5%9N-x?r3bMvkP^JLPGdo^F_!{q(CujO8Cgaz(C*)y z%E{2GjG>O@JGoPPfWM9KgX032_OQe>7a=dw-u9q%L9`GGKE{Zz_hvUns0bWTFVa#c z!b#WBmZFKRKNH!2NE`dk4|qc5#2J!_sr^uYKuk?F?LgF1T6gV`oHMGxqFPWXc0xNp zR*lE8u~sjHu@bNHr`CRn*niwp{3d_04|OUlZdndhgBPMbEQx5{j$|j>+k474eHsog zS4qSf9wM#pfqYKof2&yeHmu*;i7}bsk_rxgS$C|<41Bt6ba=P3uHuy@##Z#aPx}Fa z1{jP6H?Oa5Q*=9ziI#|l8um9hP5^B)rKsh_P`bwXO}UIoR?5`dU(b8KF$_N)5OPhr zf1o_=I@7+G1eri)-U)O z&%8-6UpHp?%~#>Mzi)0s*`Dw*+juVbtyD;3Vcy&Ox`w_cA5Le>W)Q1) zGBkb2i&*o{_EhEjuzl_*+U~ts#gnVQQMz7%8GG*J z-h5uL$SwhvRUd`>Dv8MQIi&TZrGE{=Tj(ZE92i}x(NgH+=c(&i>eJ+-v~le$AX0SC z{BAShqUNlz#$?BRqov>ELAki#^joI7$f8<5g3a6r2?8s;>4?64Xie=b^WbBNVOO+8 zy6uA+k3_C}cf)s3st=PS(xzkOcx3O~C9@?*oqKIz30(F{qyqE*FN6D4P z2GU_`FFZN!dVDZKJEa#%qg&T=D!0d2LQOy2J{nI(bs)5AGh{d)dK)i2Btw@fn*6TD zy>!DwD;|>_bX12XYZti&8;|geQ)^yf`?oG1`~wy1D^n0CHQkL?o>TjFKJlk~`h>zq zamHq8trNMCf+D0zKbn$|P~U9hsAn}zSgDaJ!?!2DvY)Uqls=+K_)sqW;3=}Qhv=SD z#}S92Dz-I2&=ot;t?!IW_F5-AVg=^o#p9j%)%9IO$bJmz(`XVwYF6!uPPGzSz4dxI z$Kml#0Dq3@xc%|hhD2k|Dn=`*Q)&_K^im;$wdTF5{~I&Z3}j+|(Z_?M^wmZA@*iR| z)l4Ovwki|XfV|9pXIF6Ep(aUw(R_UEu>7UOq`CY@x1I3=ebSQ>g5lQ1p|DUx)|*C; zVcZxW!jRds7fx1tiLgQj^6N4%kuI>nrqr*saDtn~6&-(STPZa3oP#Tmf-s;VggQ(w z&iiepdNi=O9|00hXRneFMiL$gIt?p$XnN1LpT@ZPHHyA1%WZ$$I17mg8ztM@_RjxU zw2bhHz}7CuUVC52QH}V_%C>XIsL3JLfPJOy)jqm)So4hmUxb4~z`}V~oGKN$%kVJMW1Ac-q^pNn%vOI4*VqQwnHd8 zUlJ{l4KLI_)`@?aXG-!dG6|DV+>0|g2p6Y}I%vXR!yS4KxxvV~ei7;W5T+G+=lwx^~RlSt%Nf95taA~#khq48`t9r`;$C`{zYQEMHWrK^eEZ>I=G z4-ZB1YqWW4b;);rca*-74qd^2;a!Ilkc=sv>26+%IDAsl{fMK~V)g#ce;bifvfb}- z^$)wx1LgN;bCf((=xxw>c>}DK;lH-{Q!{22OkMacVNa)@ajxHJ6~eo>;6^uI1y&x# z4}_>!cz!Dklmq=b|Ct<);;xUN@9}5Zin8LGl&Mbyt=@vhQMyK8bB6;|1N2l}x z;jq5r8hM8?tsUAM$~!*R)|H>e$@pPmWl#8pOY8ccti*)GN~&uUrlCgPX1Z!Wtsbhs zT&UblYLw)92pPVoO*`YAJ^d=K(k!%jyLDcRm44{2#&^BT*zta#^jUPvQI^AA_hraZ zS)J0;WsN^R)0H;V5>M(6J004-l%VH0>{sqJ=!VqPihg0*k_Qt_H0s>lex!%8>CD67 z7W6ak96x%Q?lTX$D_zxt$=W}Hd)laf-rJ2mJ#?J)H2x@Fr{^>og)ZhT@ldctUMY%%feMg57Fs&12e ztD~xSW5=(#Faq9%mr30L0d1}8-^fA>re^5wjB6A>-8Au^HC}IM4Ra4cu0%_J7*p?6 z7z&NYjheoXKva6ts_nS{wb;P9(KpxZa>STdDo5Y%1+~l>#Z1E!LeLE z!YJG<)rkn0(B=+wH%E5ZHJIff5uuVD);&fFu^e()TU}HsFdRH@&08|1-a9cA-pX>% z{pmCitQ55a7OHTN2^!|PlS+sXJ7NAD_V>CpT1h0=k9VnuXXo*U!(Q#*F)r@U=9{N{ z**GFc2eo<29so-(5y(kyFHn@Be0tx%!Mv{?o!X<$pEi_vtnk|v7paHF{`UF6pX!R8 zCKvr#-Zj6^J?4p)AZw+x@s(A*G@|g-X_umy8cB;+9hECt5$_KuhON=zam6ZT8Lj3l zSoA?AG^hr3C`Rr#lbA=EyCZB_c8^bB;=u-lb3!A4ub*?6iM8&eiFiS%q3`;c_*1le z*xhwo8fHCkmJ9o=p~HN^#lWufHT3m>nuYiZo;<6nUaQ5-;~+*J$J>38%y?8?WtWBf zG{{D3hn;u)i5WFVQMnuza~loLG289g4*obuFg)@Oi9B?(`@J+-g7I8_J39yA@OCVC zP?b2Kv3x-0OmUoV^?%&Pi#4yhQ|7V>zwTPLwDN_a*1yNbmf&SQ{qeMame`kN00I7pNJ-aAW*%L;9_No#Ll8 z#EJ&?4Ci~3Zu_*h;+#iG-Vgx!7J9?C=f85kGB0TGqF)0wQrUMQF~0C6dRz$3)da8c zO!Fa>OG=MaO60`yd+Us*q(`A*WJ`3$yPMR%(|>&x%#8h*--*ng`nbiNm<#jzS{xJoKKmB0L5ypv7q?Qu5T?K+O`kTT5*BWc>y7ZNvVPvw89o%>}XL%;YBcBr` zaYoyKEj$sKUW%aFSQ&^uS6>L08bwgKic|+#G0_Hrjx18TFw0$xgSa>$bMQ=Z2OVxu z8OQo1tj@cpRbIcD<_L_nyg^p~*L-MnVHSdo94$KaMgLY|7GWc%V%9^9!ver{ z_nL9tXW-@7%|P8dEfK>)RxX=~LcWfNWl$=S2{l|jE^ut8g>|InRbbLm-0+KC7BHh%x~ZP?zt*OlFnE`Lo8ouJ++KWk5k`7Q!8SJ z4Jb`au5#n~^~ht;-_ACgL*vUP0;L^MCUm<_hNcC&Is#Ktuj#)l3Z4W(r(gb3M2LJd z*LRZUyZv!|Y=DRXf4etufL_G2)VSn1Efwh2)tTMZgwo|Cf;&X)r>a`68Nu0%H{dg* zs2mEPyhI*yvJwI}=RPyTaW%D-i}UC06!Y=*5ZguH;hy{+0K7ch!g`&43PY?qX#=9lrb8! zSsI~L{PXO5R1mhsZLqMi6hsmz3Zz?SYrQ*B)ygMPZ0}uA9+ali!#hFE>%Rr9Cn3No zghmgnimD@YsQvOr9%*{h_8{kZO!}P%Nz^;rcK! z!XP!2Gz=xuNGdt>&>`JQNlSMOpn}xU(%~Q=-Cfe4#L!4dNJxj2;BWJu?|j$!17@zh z_u6}{=eeIdtkh}r!?ukmSB$~$S11N@`67C_K0P*ip1mc7UEvQk_xUv_>)U=D<(obJ z!Y+o2vi@7pdkcvdp*#^=KZygW9=!Par;9n;2%L6u5YkQPrZZQ()&?BWkKSJA`>1~y zqdN5Hlhm$?U07T5!!^H!O*xS@EwMkW>T6iJn(em}hEW-Vn?TdS3g&VyA=Qv6MnXIC zO}g_r%46yguY?z4a6+!G$NWo^8E9Y9S63YkxDo2aAh1CCKS?U4neYW*6t>dmk>$$x z=D>jHtMye=4eM#Zuwa5Kx&dG!H~zf6Sjlxe1o?U3Y5hFm3_m)cxxk+Ne8XA!I~g}? zodK}Kif;w|oT|5PDBsexHMZbLxzCIKL^3{)<@7u@`5|VCx3_Hu>4kxKXL%G(!Ya)Y z_QRLFcNSp1MG)(P>caQhhxsYqDKOF1FL>H>EOmsfhqtm-?VslU`6V^fKND>s6LQqU ztGpdprm8GbFT^bL+p_>?flRlayuX=z{f99?jw$caMT^@ja`N|!$2wE1?zDOBY-L1k zyLVkdh}844XjiU-3nQw)$w}>=UGwTJp!h+Jed=%6xoec?VgK&XxyDded%UdhTuI{6 zjr`jfO~8xEhG(<&5vE^@1ez}*-?I<2jWYN+a!V5me=k4DHUlqWR|fG*McX~rnrt9N z;gZ|%!=BX^n+$-fc4PYefJBL24{+yj*4w$9G#c~&kpyhhZ>wO60HoSoz-A}tf3yJp zltBFoC{w00{-cfoS^&uZf;~X9`k!t ziNH_K|D3sZKOkHF`#7fMcj3|X2;cpH)XJqx=~oXIpKA%(KOp$`)q9|>$W{)x=L^O} zYD>+~zg)|Q(~z-iI4vhlB;^s}3mX1D`C0ObgiXPk()qRkpAT$DC=Ph^o+Tey<#=QO zdEj5)PX-fMvA5Bgj{uj}zZkCN@D;^IcOSI+?{DruGAo?$Z8F*VC^PP|3||0sB4Oi{ z)?#$_dx<~6vB9ouQXl^u?<*+o#0&4wNG)lF9O3(U1)rp*t{v6o?Z+`vnNiQ4S zgBSW7O!S&p^DRo(jK*T@-G^tLr^8orVxJF&ZK^9ed`Ala@gnY;7=GggkjD%#Kf@#> z{$=G6>^vX#yV*BfD3W-k9j$7%zm%F=y5M$$J{_+88>rRc)11>4x(85;<6qw9owTD) zivDdnGj{7ukppoKC(1v^*ER4BBt_dHmUiVm01&?%3)G?>uEf-@ zWd2C@eq2CBIsd_{Lp|EoaN}#@ciHMF9yK}6j;EN{04F^(JjWy730fC*ws}- z0Jo0%w^ln~$-ne7PW%AORoUil`dS{|N+`O>-*2H$jKh3l;BqLRo=jZw7_z}#Rs*Cb z^h?my7Dx8!aO=K8uC;iKJ}esqS(x5`>_r?* zCbjpPbMTB=fVac<5E@Z1HD5&WGqE8W_7aoeYca(!p@_tEW>aHPw$#McsvQ*hKP4zk^39+}(y>H!9~w-U0GfZX8G1=#`E z*xvpZXv6L&aRv2m((12tyl)_dtx`(-bO`f(em4KB-pEVtKSe%P2_#sVeVX9(WwQ^{ zrZ}}Nr(pD;{uSN_yj_hYR0~!(E>^3Zik706I*b)ULtY$mC_^vLbW}IF_8}rgD=p#_ zSWkhw!yw3?>E`LXMT_Oc2Ib3(tO!Fc5PHvneSjgriTqhgGr?6YC&Yy;c|__^<<1_@ z8LKSNOG=-gHPr5&^!iEoesB3C1CvwMnocNE;CS5wE)cr|m3ERq6CbC9$`qeqw$8YB zgZREOcau5+)3Wm?o|jEzrgBK=6SCfqXL#)}Xaa8j$8nie<~)ufo0yao#S~~!Tf=C+ zG7EwJ%}h#ozh;j9Cl-F-ND4ZpV&d3T&f{u*lq^&H3A0dGJ@2V*Fjmf1@1?aLy#G?@D^a2|vuh0U>)_xU47DfhX zyBUwf%5?Ma=Wqe>A-^rES0Q*Ci<;4pP-?n5!3mI^tN`vF`~NjLqfx&EEvSkN<*Gq*VX>}x4(p!Y_6BWchok!RGPL_nR~lz;#v~wI^PaT=}&zC z78!>^u@chZ5N0b7xr`Q$3{FZnCZ>$F$_Nr-4WX99!AU2D!>O#3sS*6|kWtj5t(|fj zO@Zfng`9dN*B!%mm0n*u0uGz)S}t-GzK_B{?H=R`W_XObxkUX0dfO3>Cgvu(7ZI9w7i+q7IYim5JbU^3VNUzu(8f4X zT*nm~8|H8b5P!W9Rd(2IT_dIan|%%16|Eobgd{cvfbzW|nP&&5&8^3Di*UNW@pxp=XgBH{R-`$t$cq^25TN z>NUlPz}*+Q!(R2VO+#TqYLT(g4Ny@`nN$)zGAloAe5Pr3>c&LaSB?D#@b7)1S3*1d z$4~WND9PwvpWHqN^B}tsDB;aRp$8AAaE=LM|zME zIPg-MzL6Pil_Gf|S}I@@R$>0Qb3svTlTM(b0_~&jCqZoU#D4+tM^;tUlCVNbUNub& zG!i0-h@WsTO3$RsI+HEremfy7)bk#le;FE7h7uJM$qs{wt%XlMk$S9}Dn-*td;S9p z;f+;eiQ)PlFEeg%)v)7-4aGGVD!*b(jB54DpLkl;qSRs&_s^dIM&+%=KZ~R!hS*do z5g}J;Aw#`qwYj%WsfLu(sn@H&M1^Vn`_?Mz&?@OiiJm?Nqz~7aJN5au&l2|%jj?4# zz4zwI1Zsa}ING{j|2-Ysa`b}g>dL}V3Ec&`u~W=}y05nLllqftXqt9vSi(@J3YyeW zo;kzcrEe#tHv?kddTys+b2O-6^h>Xo)n%WSC+H_diYqa$TwY#{g-FE*Sx#dqH-0#B z{rAW9YQChldign-l|PzwWw_W(*;}0)MfeP{4yb9KlPwnLhw(cqt#>HDw|gm|h08L? z7x)vOF>#l93+%DOUY7Au&6haqB1@9EO_pvmff&y%uYJ4*q%Q-f=01P=<*56ai%`e* zLn*MTZt7@YUFtalKrU?C_`)*oH|}aBq=kAehEe;fR(fL!w+S$3*(8P>pLYwAK2199 zcI4iPrUiqr5NthYXcfUBlGy=ka1yYbYJ>B&QG3_6d9j#$_OztXS z_KUE{ky})dt__uqjwDkbw{@Mc=7~xp$ex_XroUuSf#a>NLKq-zc zeTZ+(Zc*+I`O1o^-Nt#}dYZ`b(b_r9 zlcji20^?WCOi&w>xq`o(1*BxA!SY!``gf?#drzFy8cr@V&#_*Q@yDn(g_dY4G7ajj z`|TPq4%mDQLVbITKdOxD^Cni;n4YSTv(kq!!6&3PN7#*UIC(&@YI-%qNK@gXo(bOt&o1V6hU@`QISX3&F>jB0tSU_ zQ(tFvsSq=LA_|Roh{J3y0_UNX!Llo9+wM&bKpJuRsj8l6zEUohm3;zjI%hk%!$E%+ z$0;ed@zF7`hC*Ho*GVAssI1-X$Ku3Ft!oSQYRyo317!EBvHYnLj~hA4ln3S*BZ+(x z#lECo>XG_GnN<0g$dczIw>@h~?ZZZZQpTOQD7Nwg!4CnS@m!~L@d7+-`(0Td5d>@% z+t6F+X~73HnQ*!-RHk}ioGjaoi{5kj5$+^NR^M$Z5i=4qC*{Xs_Hz_LRE7`hRdc*fcBl#TA!6DmYEuf^8fD~7seE2* zp*(pI;29O$)HX|yjzpidjf8$S#gW7&H=9fhX+EH_VpLs>iEhEan54Fm*2Z13ao!cT zGMHd=u*<;@e~h*{4B{#$H`Y6k!A7w4VZbe=kEW@>pyl_7*nG^eK{oyBONG$lig7`~ zRc3;-$?foF#rJVyYD|7OZwqE^yEu<|RIj@dtU5Gy8kiU!5HJvWmMt2odAM0`%J~5? z9p5BlC`;zISy6q^cM~8pk&EBYwzm@8nPeg>tSX|A)MC!4S7oU(TVa0%`jMa8%AK^9 z^118^!@J*#Jn1k^5a4Z{DmBN2$*bHw2EmhUv?9zq7UXF;xZEGdH4*3`$vG8lQXi|g zt}?|7V;gC5G}6z~>Og;mdwhV*$X0AJ$i8lFnHTN?@}S&j*aK??fO6^zeZm-uPM|dl z6CNZMxApJswt~FN=yKwHUI31B-8WHL8LWP@ft|~ey;{vd;>*N`#3>jpMJIemL~y0+ z9Bu9CN!LsBl!?ZuOO@H$M;4u{&jW~)HRtQop1o}+EG1gg**rB%b!CTa zb6lqZZ*3rz_ya6;ODIetL8ku^4oz>eOvGreHg?Sh-TFho9w99)@XdQiG(_%w$R7?%QP2{MU}Z_FCKz{ZC%LzVoKO z)jefvh%KRM0rToi4Zkka8z%{GtkDpKjoz0$uJE(VHZb3!3-8F0fw=e9MxUNvj9Pbl z?Qn9*t~aM_xvWwNUN3s?Dchm&4}*p4M-*{#ilQyYFE-Cy1$$=*4^NtZ~b#NXMe@mo$uI1w|wMH?0(^RQ>M1~zS~gGF|4yFRdV9OiX3 zI*>-HQ9cO>>U&$a;!~#f7F3#c61BB-dXQOmd3UCSJ}LvgTZNI|T{u`HSny1UAuBjR z0J(jc07hZ>u_efG!)vnSDv&(#r3Y9z%`nSsuGs`yQYbbB>0}dkd??i$2)iGq4l7?c zZ$a2cnm4FIrwSIu0~_k{Z#WLtxH58)L4OD7u^g)&QQ9+;aKjW+$VvqAu3fw2ycboC z-*z!KqM<*hGziR-_3ZTW%1#W-!$pT4y<#&9A`VyE51mp@+b~*&KXJzZV-0x+z2PC1 zBf~=BlfarD8j1R{(C4IyOp36!MCLm#5NMC*KdOmr;-E$MqfL$Q;f~ZFR7}#R@u`tS z1#uY72Ij-4Ac+^(S%dEallx9#wvz151!i7*aPBo#F$dDs^eIFnbo*pBhczfNN)Kz_ zwP4kVxo|Ma(`cCG&)Ub=N23L8qfCpzEPUsf3KBb9t#$=c%O+cOTbFJIMf*NK#Iq%i z^Vw3n{)j>h4|5Px0hO^Ia&5-25$7(xxDxpPBux(A4;9<(o8a!R&57>>o!zR;itC|1 zcaW8mo}8JhjNM>H*8Rc#w`q}f);iW2${Mf*F*r>7x2%-Jd6;VV(|qS9POWXDXz`j5 z^r-t!Q0j?)XQB4>!≀!y>WQWQW*m6DElyh9VP(pg(cYDg?|jG*ma~70sK>Zj4y| z)XmGn2jR^_V651=gpW)^4+gQqn#u_Gc1xX+Pe?nB_&Ps+mOkYA*H627h*AxywG9Ci%AN3i0yK|U zW;8avUFrzIX5ZEu&yo5zDdO}lePJ!YXC**Q4mLXr=cE-O2DjI>mo z<4U|&j1pj>Q*AP9*G%B{?JsJ~LI`}4%fv;V%H;y;IZX+7nV$0}tUeENQ zZ9CWBCC7rPY;FE_Ku|ZtW<1zaC)x*(AMZG3dxBFsTigHh!iR2}B}1D$T<)CH-B*uZf%pO#>~Y5v&FNlC6*jd;P}$`N808AM=c?@@B9ZAi@0}nLgJIvn|4qCn}n=E_w$qKFbk5f41NJFMlV^ zVCjd5*!{x}85aSinkRqVF$^%tgXK+!8bT#dxsmcup#n`TMP3F{U@AP?g3wi_w~Hi9 zMd&$)(sBV3m=KjARG=@G6s?WxZdBG^h@fII&1zv`1G8W=Y|3~RM*Bj;2s|K7E%Ic_ zvR_p1V&ovQo4PLY)kHXKkt{V4A1P+Fu?EQ|WSOJ+M*ID@%bIFrITILUvc1d)DZ?Aq zYKjuN91Ps1u$yIzk+6P_!OYV^eI~04Z1+9U@JG&ZF^{0JF-VA-GneGJkG;h{0c+ku zUoB|I@x}R38{ExL9hv~zXoO4EQ<#}WXy3eMS2QDd-G%BoB?FSt64reycNOb`Sz6A5 zopU)Q$I7>V32=ILN;Kc;c(YO`PXrVYs$t}*F;I~>guF9bAe7PXz`}|CT~@2H{HX(F z&;?fxUO;Nk@`&DYEZxj~L*9Q_L{u19KRl$Xa0KZ~HO$z*yx7waL&=Hxs_Ng>Hpxc> zVD)~*FzwXbQlY7Cs)IB1{&t8Gg7SVe^ZSu@b|LvV zchH#5ZAzmAu^%Ss9yQV>wXGe9)38aD`=ItU4#M&U+<0BwD!_z1Ip&>i*Yp(~K7H&p z8$6s}v1-KCcpboA^6?4RSKg|OG+g%&e}~BuE?kaKFAMTD`s|8*_fcN1ry5}HC=*rg~K9WFcd;%3j26YCbry#t7r;u>zIc1;&<2GFyOOP zz@X!pJf*U*7R##`OdL{`3~TC%lk~!-16ieQDIG}g>7_F3TPP;99Ak$f3bRJV;bnR> zt6cElm+p5$Z&^WCtWmIcombyoZKDWxK6spchu9_>9Fu5y!QlIG)>k_IGzLA!ytPxm z7)Z&XZXDvx$PHk-?y^*3s`~jB3ITiK@+etG_ma=+f_tl6swQ4Qt5W;7`?OhLFlCPf zeNg@OJ0mR5WgXgfX;u5+Nv671$Pk~Ih_#+ru!;WZ3YxB@icOf*G*M4A<3wIjS!>@m ztm#Xdm{FLVEl-;L8*9Diw?6UiCXYSiZ6>-_-x8O1c&a`Ky~~d$X(L`1SFOaksIXj9 zqHIumx4ZrQy_#s6#w)Y;HG-FMfw&zu+s?RHvG$(q>bugqkLz6X&VQ!kAP7NNOA4wg zmJ}Fx^5C0SNBAIPdR=3+k7^&b=`t`Th~*vBtKc`~q#w!eRRDfF^Sx1^m52}8gp!)_ zA4w>@C`$2k-xL>)GYT^a*w-*0)mH}bSbU;kp(hi6CkFm9LI-)ybGBt`w74dP=|JmKPtAi$Y=wB;u%J(4-`b*a`y^2-!QRPEs7Xm5F4sYSPm2b2azJHn|F zeq>LwV^5eG?)_dhXs76(^DGmVx$rOQNTDc)Ub2miAYf%Mz|HnjZAs4?8v618!9 zoI+Gb^xxs10|h%l$C;11nXDDmF^=VU5xU6{lOg?)IR3|G7l;-`y*^yEm6pYIxO1^kn5|+ITSgBDH5U}Ov=!W$ z($}%Sxs0`=lT8ADt*qNO`<$W)ms)Xr6X>%vhFg)yAB%}wA-`TdkUbG(P=AQs(U}|iXGjGjis)=p*GJx7~w;G^k+X2nH^}l{^nHRRL ztkWOuJBRMV7o1Y` z^oREI%sqdWoX>q%Pq!+d-gZ6XLYTdLyE%ErHa7@tMBk1OS95TB7I~`Tyjn&$HzAg) zPXHkF9#sqp#bCCWQYo%MeqeU?tW9`k&ea5CZRUY0DE!*i{lWZEhUL;W;e|D^Z%jTr zZ|uE_x%7aaS^g3tV**u;cKey(Sdl)NK$#e8iuSvpqw*kPl#;L@gB#PcWT6v8F5=)K zqH$i+RM#sfZn^YV+rX&&x5XIeGuYC*97$QC1z*5jEfQ5X@1=gt09^dC99O)vIIhu`KeOd}^GNFnap|c>eEhChmZ7&!q zuUKF0xoHpO{(>LLv{NiFjxBoh!34)7Q5UU)Hn!1r*?4g?s6<_tRI@-(1h<@?9`zU< z(rm$T)3Mr_@S-%3q+^*s(RFDpq)3ZBAW>>xjHc6yLN+?0-Qw%iK#*VKPl?Y&WpPCy zRF;=>@JIq8;C8~@vTPiB?VvC7jA-un1p*Bau*2a{EiqNGN^<{BAnXLR#))|_OXdHz zjXD7+R8j7H5LP&0G)q+sx0A@~t&(X_F##91Pgo&bkvx@<$3VlZ_;XK~ zMc_(;V_&_lc}fsA4uBy6IpJe zn)0?X*?rIk!y(tMshp^gG8B`&Y3 z)7vO{cek}*jj{v->r`TCQnQ;L%6l5hd?&;9oN^Pqw#h{1&DEe)`%pRFENdh-GdEwr z40fsRfiYx%t%DV^O#mzrq6;k#nF9{{IH1OB^`$qY=X~{g{srP8Wc=RYOZ_AN%b)2L zGVUJ&!-kK826*t;$2=bveo9};$0ebAZEjRsO0kTRW$BsuO`nwg=x0VvkH)*%xR<4xg%5i4HO9U*L2n&ShIb;P72HWEU4#O0VWE>iD(Ad4(?_Q32G1cle@NxPLX(}DQu9>#sL{aH$7 zAe(yTBXNHmV=ds@2M(1HhJ}|Jy*U8V3Vj>v31{ z*UGa8uWZQhL3+(Tz?oCVi90Cht{OX9FAJ7nw5ENkv^t&r9k0M-^`kl*^CWH$Ypo6N z+T3ah+)=d{&UEP39g(01euF*k^FicFpU3c`YpRAMnS0?326|t#s>1~ z5pU~WVqsKhS#txxm9n#EQRW(A)f2H4l_7P6*jBn7_fc-0cAZlzbK!Aw@F=sIkX}v4 zp4L%Tii4TagO=&#gOMaG0>|=j5{>>`RLkg7umVkCbZBBCXQ$i3bCb=)Ue2_WJ0NG> zNFKaVP5`fzP*y8>@$CI;PJCrSdw%5#D=!%bWxY)$^qvt{S^!FcQyr^}XzEL`!E5o( z1lOc6Hob5#0q^~83e>xypT_W<{Q260?)cCqxK63dV%C{)KUd2qTi+9E@<|Fk%?>%# z*oi6m{kisY`3h5(h}XX7cMGB&-TM_IAo%~Ez$|E{seV!&AC2_bLUoFFT3u#7^+5k? zTdnu}O(v+*a#hO_`!6&3@!y~U{)5gUp`g;_mj7D2JEi-tANa3l*I8ZqF9$NW3_yQU zgf{-p)AxLw-(d{t%ww*a{^)sH#8o54S{Ma5?Q^QF1XhD)62;ml`~2uI-swoJ84e%f z8`^F~XK`X56^+7Uo=#a}Q9RhC+HHIW6`W$~^@?9XbicjdaDkKlO`RYjTh!HjM%3nf zEbUp?@RJhXM=$L)aVbhrJs%7gtU*j3#6IzDc;iuUut%~Ab=A|;E z?3HtaIdj)>oM8)et-NOTbE^^6)QPIN1`K`QSF_WW1BO1X3>=&5L}A}W>z{RcIXc>g*X-sD zb@|zwR9+m!pLqA}9i7R*UW&GhzZ=^UZqPFeFr(ynL}mk7<>K!p{5o7h4n*F z)cC(!{QKGf%LLBo=)Vz3{DxIk5-BE6>ZZf~FM&7p989MZRh-zXf;;c=JtXyV0Xs_m zvME^OZ43cCDp|7omV6(SxLQKPrf9Vk&H~<%2b)%=_6`^S}K@A^S}*?DTIJ z^KUR}1#rrH%^NaA2`@;HwZ?*|S1h2)T@GgT`^3XUtdbuS2hUDZJXgF?tac*{FIG~^>k!+Tly3`)sFP;T(VpH`P|-d3z82D$jimsd&u

j}d>dyXjY zFQ16-NdJ@F0=>2LA2_<@q?1^WJ-aOH{CqYyF%7Q|Q6av~v+~Uo`*&8HyzG21Yw}!K zoiH_z0h|Ea{gBM$JV;^B>|Pv+G;@BfqqWR9n{2d% z^dx(*HHG-{-aVR+?`p6o2=NEjscP9;o5DSq%tctMt4ffH{cWv@9Vp}gd{NedY|b0g z-Zr6(*;^IAPg39P2^#J@X zx6&Ixi=RGHlmUZ)ovY(2;pITpO6Tzg^3Jm}X#L3qJW&OruSd9;pq*zBr~ z8!EpIf=F8T)nxgk*Yy%f+PvbhxVG|Mu2y?bmkxf^F0L9r%;7BNG+Yrlywg-|rERO4 zS-5x7C}e!%(OHxDX!?|k)#&|Z#^2u{RsUU0b`8@V=2snZ**V^Bd*-(q0K#7Q9ltK^ z(2&-_&dVd-T{O{ac9SV+Of6GI^KRArN}RnSO2)|l&yVLpc~OmlG7LFM7jjExrH!A2 z+69LvpV+VK<_3R00UwYlWo$Nzc$JNMiuU2owuO(*ztg3DX!-(oOj+y<{JhHmCk$L_ zhn}v;iS^c(_IuKK{e`Q^!h~Artons(ZejyfhvW5m@B11JM_>ykuS0=mM10}-G0v?@ zZ(%PV?rkHGyhI0$(UJS7$nU_2ob|BW>8RSm1A*xU@ajggxv?BzGaPBoCr@fehiUJP!amDVLcwMz)qhMAhr}L0&4ErC7$p?(^`zmbo9dAzI zHCLJs#<7T-;+X_j(m?`?(l74`%Hc)~j;YiIgCDbA^dr4=+(xQD1P$zvac%cbzl#<- z7gW8_@?C=E=bOAB{iQPF=CM{8j6CP_glnfm4s7P|=o4S*-gCO?v54Zk3Y8IYmlMkx zkHg$Ujo*YzBJ=?}F>jyVj~{~SSP>6cHQAL;N-S}dvWvQl;J%M=d#Cb@IP>JDnv)!; z_z665Bq$1PLs2wZPm03>z0O#1arDBYF^BUMKZG5L&Ac2Luyhztj;q^bat*iTs14i& zK_M82LC*T;vKwRuE-9@53cil$>R1>>!~ z3e)evkMP+Z&rhdP&lKUg$DFQO<+6}?io^{;XK_Ccs^RjO)CwO0XB!amU*HKOJP~9G zGD3aYQs*bmrO}7AU7}HK*Dg~em~uMmR7>&lOxvu3Vr)B)qF?t8xh83? z|G8~7c&?n{<$a*=8M9kyQJEn@g(5+cK_>R#0-&GWA&LaxV0CP^^cZ>_Y6gLA`iiy)a&$ zC39iQBPotY>D+DswtQ{UJAI0lIv}Im;ZDM~;oq6~H7J2T$nu$KEprC5PR+KTOeyXb zRlH~L-+sR^6Y))aEvNzQeV$@~;_0k5f!}vmxOLnJ9^~^iqr(j>gbiUwxGm$W=d<(Y zw%f{!2L z_5Oxc3{Nlp{d@RD-Hhz)3e{HGA;7hC+_k=w^~09P_#RKKvVQG%4-ElRsd!n-1Osd& z;rqq?xq#dgMhYER1{|A!$4OD!Fsa;$cw=!b!XQDd> z;5#*lnn@%=_&AGXz>y_8-uO1=I1XvBVsOI0CkW-xc{52cDv2wfx2{VSPO0a;z07 zss;XtmvucK-?vApz6BgGy3~gcu0B zxAfj~Oyx~$ALcJ(6Bw{1_=^P!&dN^$5xyB!0_3Twjxl8TS$0Bu(ro~rwVC+IJI{`N z;Tb~~T8>?D-{L3z0}p})1yVH;Z8T%{9yUJe{MEeX%&4D@eTq$PAWD?VfNZ z3*ca>V&`Mig6l8{o}nric@w_Wq;3tD82+FoZwj%J9CgINuEfl72Z|9}D^X4%w$_xYjl1ciKGr z7K4wjd|a6o_wgAky>N-urMAMW0ifed1Eq>Stl0Gi=*HZrpMHpeEWqiSHzdA8nt`D# zkDRgjG4gSGAoBFlPlja}#9aQ8cI8qrr|#ZYW}Yl!nky_ZHwogzxACOPy} zXHV=Rs3EjngzGWvkcX{yo~b_n%Xdt3NC>(n{SWzp@~;A;Z0R5c%UF|7 zj9Hm~IyVbFkCM~GBf`JD+1{_6wBnOYSoYh9Jo|OKqUkynv?r3>qdpf{cbPr<+r`F_)ZI?OHct# zlFOZ^3fVi9P_;6Z#oL|CqN%r_N6EQNWGrRO^k#GfO_D~o>_&y3jMFN3c?QGD>me9p zg~5vkmU*^muzmfN&B`wEpFvN&`tkSnK67K^Z5~PNzUD6dO>ofb^}YJvs`QY5h{QQwOq9}cDZ-aWn47l9h&?afS}`Q@Diqh_mN%;`GU*fr_R|IW!gxnf ztkQ3bi+E+%DVeUeEhPk%4>{y?ck%_@Uu7wDPV0Yb1BW^iR8zT8q+pu-PUQ)Y#akP< zsTb1RB7e?_y zmaE_7`t%>K!Jezc%B_NSH&W-)+skQh?l|{J=^5Me>PDDxzo#3FuHQpqU~V}*xcV&F z!YDcAg7SK3u%%{=EuXz@Pk&_~-vnOE_H~{`4xxTsCqpwJBfH);T$46S( zvutqd1XV>omCi0xY2O>}7F%3i6JxQDqY>ux5fkGfwco6Y7uyWp#0O3?Z^c$p!yu8; zTjq}#pt0wmk{H}U2JCXc@n3}2lPSOA6f5j+3sEGQ6{nTiF{D5;Mtd;5di^B3(pYC55og%umD%?g5w-KhOE&!=2NhE3yOKJQxUoyxEU$yXGSv zt4n@5?g7+u=P)A^|8Xf1QeDRO`0w1BVM~~*8majYY%2!y=NAG0+srZbtY=SE6^!(B zUTD2UCE+8*5Hk?RuFmtXR+A^AKcIpyT37auFqy~Lb9`ULt@rS_BqDXPv3)qv z6Y0uUMcLlNj7dh+K3ujZXkji<)v04>gBbQ!;IqOk08bdNxc_crO~jWBN#;Dvl|xJt zru&apl*TmvS?&E5x;l1HYq9UUh}wd_8!fj*ex zYk_&$T>`B&lKhdqf3a2)Zz;riThB4o}f9&G9Kiw*Nim(mN_A%gT_8UYvHqyS@@ z`N+ZsGK=6{gU6VI<;M&U?b90U3}ADGLDOW%DXGE)-%P|7@KGd0HABQU{ zyXD<%`(OnqiGsP6S)+>Ly9O-o0_;hoE95eG{Di(nYg@dkp89F{V5F>QyExPXT&Q^D zmi)mHGz;*BnRWI%1tPav1QHiTQb)WPv*PQdtZ?YF;#BC4ehv%Y@RQU*99^S)amFJAruO<8QGUR9Y;>`s@}PLOEl+i%w3`p5q_l3>68F#-R! z0gwx#KM$)8O)2N$h<+N5Sei-nET?wiC)keapgCy)Du7=BX^%H*&u2{RJ|*YCfP9S> zmp1LL%Lo}3{9oNz+059GG2tVr|1%%OvOIT)_jnhySndRLkbae?fL2jDB$R;azI~Hc z<8?Buq}lUpT1^RaTL*HK&i5pHaQA3jX@LZp!HOB*npMe9mnxqBTw3>2m5&($_7XZ( zabj4M;=b8fPQ5(zs@Mxv5Ugb2j@dswU~t)>@#2G)x3< zg_EJvhzWI5WKwS12XV%kmf;GQlXW7^Oeb)-^Y^&*5p-SA0xgH`D8!}R0No^jH5 zmsuUxj&}WN7FWXtXglefc~kQX(EmJ-d<(oi_Yt1isa#_y1fFill-lQ0MNG2uQx=DV zn|Glp{AcH!WjqE&qW!AU$KEY=stHaVW9tvno3c91IUK7FIL{TcHVi*fFv3T$Kmt-0IQJr*mmBtS6dbmSg zkeVw^DbGJdnjXXJoZXp2v?%vSR3jy(KlwhK_`E>!fp`niaP7kO|Gjhov=x223WFZK zJR)nFF?KBE3%MGJ_O@e6_}j}amC*6;_He74{*rEEY;M5*1wn8Of;?#o8SXAcA-eGT zQyVs2N$!mSklCZA!(-+Ogc7AAnO;S*$i}EKWgf^8C_lY&G_^_5t2xuVgF79Y0mhOh zyzYO@U~gdy;IhCHGV(O9VRe<54W<&f@cX^dc?w)3MKp>270Wmp*;vD}Z~zeh)oVPd zWgZVH7+-nI$7Sw2$kAH?61~yAdaKSK$~g#x;N(tD{>1s8^=8rqV<8^N*2b3~ zXRW(e%mdn*F0hQCr&oDgztGa;bkKQ?m%h|LFaEd5a#oA7wi(^R7qb(-A@ppWwr(oM z=Z-*#uDKNKBvV=aw++wE<;q73D+VUSEylv9I;(pSz3SQj7L_aj6#=r1XPnw)99H|c z;paQrUz-vmC;~=q3UA6nIo&9>^2i%uxLsmi1yuUlgGTUv`jY*>zcR)e$%{B(xDYel zes+MDV2#p_(Io%sp8a7$7$sWt>aUf+Twa>NN~)gJTGfKBo~h|&Bzu#_m?jHmkc|Bg z(Tp(_dk2Yr-WV5H;7&@pm2jQMpx9Cmdc4+dY}BSMJ4dMZ<>gw3PVmmfpKjm?hn3zp zboZB=(N&{m3+)aK>pQ$xK9#58+ndr+83i6kTYP);ZILh=a4Vl5#2S)^8$GpfA7Yz7 zdcdJ)WQoz^|FIjNbVMipDLxCCqA-Da6NE<6-;<_77!`YZf1YWxm? zn=OX>n-_TAz`j>Vhe?V+V-%9WAMTQ_Ue{yI z_F>zn{RUn_jD*b%Q-*VaNIvu1juVsg-7DM$d>Km?`PU4jhE>)b_BT%)bqH z?JU~1z-k4=8pcl6RbZNi##q|de4fy%Q%Y3xm~`f^95>yJn@LIZ;`*Om2|7W6@8ZX} zJDa$!nzIs@JwmqEsrGv@&f*7N$l>OwPsjnEs z@Xt7+i??`iTu}3K^UAG5hPda|f9e+uD*CVx}x}ZPj#0hWxpRkgrpE8!zVQCH8KKE`9&b4yj(D74b#nA(hEyS^o5@CeOz5k`CHV3r*QvhB~t-JL@v7fH_1K5F1T1;tm|z+q{8t z`!LIM9@ajE;q4})Hd`4}+Q!T8H>AS-{m;TV02xl9ED+yC-7vb^1YD+djya_6MM67Ipo3JrN%)bhx0vephO7 z>%aisDJBMzHh#C3N@Fv(Mz}3)Wu5E}Qt6}L7L8SuiK)r!6%AFr2ucahXS)ai*O+x7 z1I0tife-+r&R}5R`~4i5R_;da`>3Y9>>W_!92C%l%TAsS&S>&qiul=$$0jqQ_TJ3Z zK5J-YOc`=p@3*mfvvv0L8jQ1ejr(rH8|E4ByB57==zn5eYlYk8Zr*8sbC?6!LOgVq zv7``!80t?rfKnqMZt~_qXYhi3eQFM7l$cC^%-Ps`LfX_J=um!u7ZI2vKo`huZ`1W*XHJo_#7%~=4B=$rV z=CwRLh>-|Nb7K#OdyRJtzaPx;L@PH-nU2o4P&EHC+VIG|F=c>ws=-SUSlYkV;^Lb9 zhbgbxfHAbk-3i6Ud3AgccalqXAsz;_b+DujlS$uoV@9MIh{W)t5q8iuc5Od*9~fSb z6so%dg1K^rDpm@e)A}Gl(P>sEhM2xc7y51C0?6hA_u2$9w@+Z!vZWSsZ_fW;Q`a5V zRMNdId=eIwrt(QAqDYgf)PMqkfHaX1m%d6dD4b6yZT`B?eQxf|Gk4C+Iq#hJymIFTV#)Q_#>hUmPEdH>ja1@? z<`PV*{nul5j!2^lm5vPteqt@p4Ub zz1jIf`7`sa?`&+69yWGfOv*}Qty5LiBvtHYSi20_RmL#Mp*>;hflyz&-0_>fZ zEc+teA?56=em-7HQQ}^rmz(~dIZq6)cDTG2$;zy0kHPQ;Nbz0c6eaH-RcZfNS$d0^ z%%7sAJ(E$B_{NIb`&ddoa&5z-v=BN^UV1gaRrpY8&a!ZH)_(o$&ILKAbA3B#{9K-) zH+nI#Uu=EG9N|>y3@AX&=%e6TH>y1fqwnmCgSk?ntMWp+*X-HdPy$R9a zm*K*vMJIlaO*d>|&&TJ*H=otFYT@y0dhmaDo|L(?qWj{n7n_mI9Ti2j@F=Z1cpf3T zNj4I<9&j>(5Nu%A8-09X;?PaB)Fb@7NL0Oq18vb;YXY7#R1#%Pfh~$dOLTmoL`h^0 zZrafO>b+4-+NV`2W!VnDt5`oaU8U^Ab(V)cKhvxbToD3A0%aOPTnmxGeto6Io#w`0 z$|V+khv%^gd4!k|?{Gwz&yFyoN7Wg%%$lBIjMOqMmPbo11;>XO1RRgqnsc3E*J3mG z!PVPOGPQ-Qt!5JSMI$VFFIpSR{wKQalfe_`{q(VoN%xt(PahMHCf)-2UfG|A5JNK z@+F8-d{JWo(|lvAI=+RJqaumE)5*_5b0$SD9u`iOcpKesG)w(qZZBMuFIXR@85`an z`+EA+K~u}Wi#axZbaz(P#{%EWvsl>)BxTi_)(YIqAcS%%?l7*`;hL=ynLiM$YjvEEZjp475`sFc8ARP9U7g4m^Y7fV z4RUqJRJ&6EyQ=<=tIt13ErKnKE#iZB+Qt*!a4#)nG-Ro>2G&c3olSY_z8lr-?N>9t zn<&0X|Hd@)+-<+JOcIIkw?Cf$AOTx<}YTdfg@nVI- za2JBY;F5nAcOWjFH@Q&7O#e3DWtv&CIluWzi-A*4 z-mNP)lUx~+aj^4@T%G69Q~ggJIHk<(l?AyjyfZV6n@z4VjX6;%(jojYu<*;0K%!j~ zMuZ{p_p?;wX9TyK|8Xql$o6B73bp~{lJ^P#1SfS|GpN(TV|3s2Ty`aUqujr_S+LK~ zZ)_~9ytazHP46pNBUT0tpw3y|7?2HRV6zb-uS_TiZ+eCVF)wd=)j%kG~X+>zL zr+i^pQqz`l+hx0nVwprS+;*2g9^KRDjmzCcU!L zR2`wKCorIAi%rN zW@>kHK4O&OZF3x(w>wztWFFKLiWsryo4J}_Lv%z4x8BOfh2w?`;|8fOot(Z~)YR1k zj*s}!mhbaz99E_wy-un>N-${3Q%#vr zSgOKP{wQ`{UI>cXKlTIXw(L#j*vu9jL&cbfN;*36ou68*kQQ`JeqfCh3Rha%E?Yj? z2Z&&^xGhEoFM%U6K9gsRk0$$jMD1R@G8L-+*#tTH~JG7PfrJ_ z;_JIOc`=po7PZOK+j^N!MX}Re35qD3P4jv?=eIZS*&3>j>ob@>Iqp#lYHoW-Ao3Mo zPeH+IlZkqdsa`JZI}Zh~dyM+^rCL7xskY;m*|`*ZB9rdlbcWlvF7n!S5Av~|5O^3h zF5G|MxK#I8{ayDRbn52357oZB#SiO=tov=j(a(4POu^=rrEyZ68M^{L?qOCG`<*1X zR*gORHgG@IM3Lmxszaa@%~h=pdZ;ky-8csoRe^DV{C8O@!M63%y-5xAPJDv^Y)H`! z{}pM~lh+vR7&W)Uet*w9V|_M7#(e*#>7;COTyx+lN*-*16xX2Z=UB;gHwt$6B((8G zWc@h}Tlk_r+U08UVa^KXiX9vz_x1YiXXGT09Q3VfsSfXoLJRc~gB8M7p0~=WXef3S ztm+F%qo?NojC3+;Hvsv9htf^7;iGR@;9kM|{b=FlnFOwNnH1-bt{Zr3 znrxRMaohD=gcN0-u<0670w0f6{y3+L-n-B9e)+3NVt z#c=PCpbryG z+UOU0K28~`%SCD)`?VvmWt*w;YR*U)pPh`_nG#Dh$7W4j!#?K6%Jk68#U~fGz+%3U zwnrWsKH9ES4tFOdVn+4UyX<(Kj;5U|yU1WF`h@1e|5PM{s%RGwJFA)8#YaLOxpQ37 zkAe}dx)k$3(Qn3q2!u~IM_``7VEEn`5j8KSDd`owZXvEE;>OnT`zmUpD+gJ{+hUdhIrkLq3iQuQH~ve)m0OeDqR zb1j#Cj{m*BSz~yHBQSb8-BR^UtI?4NH$f=moYj#i(J_{ItMlu3*a!ROGvUEXtnIAY zf|bc4q8z8ZqFGTp4YPnXVkn#=v zQmx|^fEZE`Rp0v=9GQg0{L_=(VXHP#xT^^ZXn=gQXAC)25}G#X&cs$uemXcpcz$I$ zK&k(lRS!@nu9HcEfR3_LkcD!CtN?u<140As7(vC&v<8TG&;UK>%cpTr-^(m$G}vQb z7r0;$)OvpIeC`Yozk~7!ZXbrcgi~8sio7{N>tecx2`T`B&%^#T#A(kP;Et%Fzm3HST*5cM zv4LW42B_{j;NK=0LxSYUj{%~GW7x(3V{0MH}p z77~zZego;Jh=RD7F{8&0wgcEZjX@@6ZGtjn>rLYOO00FVo;f5qUIWz1eVw}6ZFs^= zTw2hTlh3p-ECTV#__-ROj6UTzw%r{>GZOZC-mSCNSq4D*Hy{p{1EYjzGz(ao>4DIi z1~CWx0aTomZ4mQDwOiwiz&@ns&A^TAI#Gtz0dH=7-kDuv%<(=7%$Cc$5JFeN3nu^i zC3%?$EE0QWbi<+R)I%g}v3P_hx0X)x-C3E@;&I^F2?xV^G(W7pPWf z`P%6Bb|VxDkUvC{fHZf^AEz4Q`{Aun;Mdw@v5U~L7gtdrkRtN(6?VMeauV9iuRvVxA2!xI zTtecoJ)dl4P5=9~F&QeQB|wAp_3YcuU@(pWXp5d|pp~T|?hN5yBzOcR)o+P9`zrq3 zbN;si;(4_|dt5~s0t#bP{7-@6C%?=U;M-Ss$Jn~`YukxScPQ28T34JkJHn;#jZs{h zTaFW3i@F=Owi`p zbu_?a^uG^jCO+$aq5N7VVwyAXhy6ic0Qavi(EpJTl=r!Uv?z3!JcM$I{!kHJ*d=5- zG6&!;iJ$Z@dBCZFy+0QHMS(l}R~Dz=4>S5{ya3Oxmv{?SsaPw0XhLuNoX`Ly@cEk! zmLJ317~r@5B#{Ad7L;$1`w1&US=wbkw`k~+V+bNvKo0=y*z5mutD)qg3h1>z?nYd; zhq?qk0FJMUpoV^2O7z-79fIycua}3Hh=bYFcQ)N28O&{pKgj5rR&r~94)rFM7p!ow z@_V4JB^dxSIiT>Kwja5GQX}i=*L4vKMjt!T`~*uQnef%XhGqe?!W=9t-b3|`Ks!ET z7&>7UZG=`epo>m`#EzI;3( **Looking for consumer information?** See [Windows Update: FAQ](https://support.microsoft.com/help/12373/windows-update-faq) + +For many IT pros, gaining visibility into feature updates early—before they’re available to the CB servicing branch—can be both intriguing and valuable for future end user communications as well as provide additional prestaging for CB machines. With Windows 10, feature flighting enables Windows Insiders to consume and deploy preproduction code to their test machines, gaining early visibility into the next build. Testing the early builds of Windows 10 helps both Microsoft and its customers because they have the opportunity to discover possible issues before the update is ever publicly available and can report it to Microsoft. Also, as flighted builds get closer to their release to CB, organizations can test their deployment on test devices for compatibility validation. + +The Windows Insider Program for Business gives you the opportunity to: +* Get early access to Windows Insider Preview Builds +* Provide feedback to Microsoft in real-time via the Feedback Hub app. +* Sign-in with coproate credentials (Azure Active Directory) and increase the visibility of your organization's feedback with Microsoft – especially on features that support your productivity and business needs. + + +Microsoft recommends that all organizations have at least a few PCs enrolled in the Windows Insider Program, to include the Windows Insider Program in their deployment plans and to provide feedback on any issues they encounter to Microsoft via our Feedback Hub app. + +The Windows Insider Program isn’t intended to replace CB deployments in an organization. Rather, it provides IT pros and other interested parties with pre-release Windows builds that they can test and ultimately provide feedback on to Microsoft. + +## Getting started with Windows Insider Program for Business + +To get started with the Windows Insider Program for Business, you will need to follow a few simple steps: + +1. Navigate to [insider.windows.com](insider.windows.com) and go to **Get Started**. +2. Sign-in with you desired account. It can be either a Microsoft Account or your organizational Azure Active Directory Account. + +![Account Types](images/waas-wipfb-accounts.png) + +3. Enroll your device by going to **Start > Settings > Update & security > Windows Insider Program** and selecting **Get Started**. Sign-in using the account you used to register for the Windows Insider Program. +4. After reading the privacy statement and clicking **Next**, **Confirm** and schedule a restart. + +## Install your first preview build from the Windows Insider Program + +After enrolling your devices, you are ready to install your first preview build. To do so, go to **Start** > **Settings** > **Update & security** > **Windows Insider Program** to select your Insider level. The device receives the most recent Windows Insider build for the Insider level you select. + +>[!TIP] +>Flighting rings are used to evaluate the quality of our software as it is released to progressively larger audiences. We will flight a Feature Update, application, etc. to the first ring if it passes all required automated testing in the lab. The flight will continue to be evaluated against a set of criteria to ensure it is ready to progress to the next ring. + +The options for Insider level are: + +### Release Preview + +Best for Insiders who enjoy getting early access to updates for the Current Branch, Microsoft applications, and drivers, with minimal risk to their devices, and still want to provide feedback to make Windows devices great. + +Insiders on this level receive builds of Windows just before Microsoft releases them for CB. Although these builds aren’t final, they are the most complete and stable builds available to Windows Insider Program participants. This level provides the best testing platform for organizations that conduct early application compatibility testing on Windows Insider PCs. + +* The Release Preview Ring will only be visible when your Windows build version is the same as the Current Branch +* The easiest way to go between the Development Branch to the Current Branch is to use the Media Creation Tool (for PC) or Windows Device Recovery Tool (for Mobile) to reinstall Windows +Ring + +### Slow + +The Slow Windows Insider level is for users who enjoy seeing new builds of Windows with minimal risk to their devices but still want to provide feedback to Microsoft about their experience with the new build. + +* Builds are sent to the Slow Ring after feedback has been received from Insiders within the Fast Ring and analyzed by our Engineering teams. +* These builds will include updates to fix key issues that would prevent many Windows Insiders from being able to use the build on a daily basis. +* These builds are still may have issues that would be addressed in a future flight. + +### Fast + +Best for Insiders who enjoy being the first to get access to builds and feature upgrades, with some risk to their devices in order to identify issues, and provide suggestions and ideas to make Windows software and devices great + +* Windows Insiders with devices in the Fast Ring should be prepared for more issues that may block key activities that are important to you or may require significant workarounds. +* Because we are also validating a build on a smaller set of devices before going to Fast, there is also a chance that some features may work on some devices but may fail in other device configurations. +* Windows Insiders should be ready to reinstall Windows using the Media Creation Tool or Windows Device Recovery Tool when you are significantly blocked. • Please remember to report any issue to us through the Windows Insider Feedback Hub or the Windows Insider community Forum + +>[!NOTE] +>Once your machine is updated to Windows 10 and you select your desired flight ring, the process known as "Compatibility check" will need to run in the background. There is no manual way to force this process to run. This process allows for the discovery of your OS type (32-bit, 64-bit), build edition (Home, Pro, Enterprise), country and language settings, and other required information. Once this process is complete, your machine will be auto-targeted for the next available flight for your selected ring. For the first build on any given machine, this may take up to 24 hours to complete. + +## How to switch between flight rings + +During your time in the Windows Insider Program, you may want to change between flight rings for any number of reasons. Changing rings is a simple process that requires only a few clicks: + +1. Go to **Settings > Updates & Security > Windows Insider Program** +2. Under **Choose your level**, select between the following rings - + * [Windows Insider Fast](#fast) + * [Windows Insider Slow](#slow) + * [Release Preview](#release-preview) + +## How to switch between you MSA and your Corporate AAD account + +The Windows Insider Program for Business now gives users the option to register and enroll devices using a corporate account in [Azure Active Directory](https://azure.microsoft.com/services/active-directory/) (AAD) as well as their Microsoft Account (MSA). + +To switch between accounts, go to **Settings > Updates & Security > Windows Insider Program**, and under **Windows Insider account** select **Change**. +![Change Windows Insider account](images/waas-wipfb-change-user.png) + +>[!NOTE] +>If you would like to use your corporate account, your device must be connected to your corporate account in AAD for the account to appear in the account list. + +## Sharing Feedback Via the Feedback Hub +As you know a key benefit to being a Windows Insider is Feedback. It’s definitely a benefit to us, and we hope it’s a benefit to you. Feedback is vital for making changes and improvements in Windows 10. Receiving quality and actionable feedback is key in achieving these goals. + +When providing feedback, please consider the following: +1. Please use the **Feedback Hub** app to submit your feedback to Microsoft. +2. Check for existing feedback on the topic you are preparing to log. Another user may have already shared the same feedback. If they have, please “upvote” the existing feedback to help prevent duplicate submissions. Adding additional comments to existing feedback can help others by providing clarity to existing information or additional scenarios to review. +3. Provide as much information to us as possible: include reproduction steps, screenshots, any detail you think would help us experience the issue as you have, so that we can work on a fix and get it into a new build as soon as possible. + +### How to use your corporate AAD account for additional Feedback Hub benefits +Get even more out of the Feedback Hub by signing in to the Feedback Hub using the same corporate account in AAD that are using to flight builds. One of the benefits of submitting feedback using your AAD account is the addition of a page to the Feedback Hub for your organization. Simply click the **My Company** page in the feedback hub to see and upvote all feedback submitted by other Insiders in your organization. + +>[!NOTE] +>If you signed into the Feedback Hub previously with your MSA, your feedback and badges will not be transferred to your AAD sing-in. However, you can switch back to your MSA account in the Feedback Hub to access feedback you’ve submitted and badges you’ve earned. + +## Not receiving Windows 10 Insider Preview build updates? + +In some cases, your PC may not update to the latest Insider Preview build as expected. Here are items that you can review to troubleshoot this issue: + +### Perform a manual check for updates +Go to **Settings > Updates & Security**. Review available updates or select **Check for updates**. + +>[!NOTE] +>If you have set Active Hours, ensure your device is left turned on and signed in during the off-hours so the install process can complete. + +### Make sure Windows is activated +Go to **Settings > Updates & Security > Activation** to verify Windows is activated. + +### Make sure your coporate account in AAD is connected to your device +Open **Settings \ Accounts \ Access work or school**. If your PC is not listed as connected to your account in AAD, click Connect and enter your AAD account. + +### Make sure you have selected a flight ring +Open **Settings > Update & Security > Windows Insider Program** and select your flight ring. + +### Have you recently done a roll-back? +If so, please double-check your flight settings under **Settings > Update & Security > Windows Insider Program**. + +### Did you do a clean install? +After a clean-install and initial setup of a Microsoft or coporate account (even one that has been used previously for flighting) the appropriate targeting needs to take place for your PC. This background process is known as Compatibility Checker and will run during idle time on your PC. This process may take up to 24 hours. Please leave your PC turned on to ensure this occurs in timely manner. + +### Are there known issues for your current build? +On rare occasion, there may be an issue with a build that could lead to issues with updates being received. Please check the most recent Blog Post or reach out to the Windows Insider team on Twitter for verification (*@WindowsInsider*). You can also check the **Feedback Hub** for announcments and known issues. + +## Exiting flighting + +After you’ve tried the latest Insider Preview builds, you may want to opt out. In order to do that, go to **Settings > Update & Security > Windows Insider Program** and select **Stop Insider Preview Builds**. Follow the on-screen instructions to stop flighting to your device. + +## Additional help resources + +* [**Windows Blog**](https://blogs.windows.com/blog/tag/windows-insider-program/) - With each new build release we publish a Windows Blog post that outlines key feature changes as well as known issues that Insiders may encounter while using the build. +* [**Windows Insider Preview community forum**](https://answers.microsoft.com/en-us/insider/forum/insider_wintp) - Answers is Microsoft’s forum platform and there is an entire area dedicated to the Windows Insider Program. Insiders can filter between PC, Office, Edge, and many others. + +## Learn More +- [AAD Stub]() +- [WIPfB FAQ Stub]() + + +## Related Topics +- [Overview of Windows as a service](waas-overview.md) +- [Prepare servicing strategy for Windows 10 updates](waas-servicing-strategy-windows-10-updates.md) +- [Build deployment rings for Windows 10 updates](waas-deployment-rings-windows-10-updates.md) +- [Assign devices to servicing branches for Windows 10 updates](waas-servicing-branches-windows-10-updates.md) +- [Optimize update delivery for Windows 10 updates](waas-optimize-windows-10-updates.md) +- [Manage updates using Windows Update for Business](waas-manage-updates-wufb.md) +- [Manage Windows 10 updates using Windows Server Update Services (WSUS)](waas-manage-updates-wsus.md) +- [Manage Windows 10 updates using System Center Configuration Manager](waas-manage-updates-configuration-manager.md) \ No newline at end of file From 7c27d00539b7cb739a045787f41ddd2563a2b102 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 15:26:54 -0700 Subject: [PATCH 09/23] update-TOC added WIPfB --- windows/update/TOC.md | 1 + 1 file changed, 1 insertion(+) diff --git a/windows/update/TOC.md b/windows/update/TOC.md index cb2e9787f8..8858588f2b 100644 --- a/windows/update/TOC.md +++ b/windows/update/TOC.md @@ -19,5 +19,6 @@ ## [Manage Windows 10 updates using Windows Server Update Services](waas-manage-updates-wsus.md) ## [Manage Windows 10 updates using System Center Configuration Manager](waas-manage-updates-configuration-manager.md) ## [Manage device restarts after updates](waas-restart.md) +## [Windows Insider Program for Business](waas-windows-insider-for-business.md) ## [Change history for Update Windows 10](change-history-for-update-windows-10.md) From 7711df8eabf2a2261d993124923dd915a984a2d9 Mon Sep 17 00:00:00 2001 From: Iaan D'Souza-Wiltshire Date: Thu, 30 Mar 2017 15:32:45 -0700 Subject: [PATCH 10/23] exclusion fixes --- ...e-exclusions-windows-defender-antivirus.md | 8 +++---- ...e-exclusions-windows-defender-antivirus.md | 14 ++++++------ ...e-exclusions-windows-defender-antivirus.md | 20 +++++++++--------- ...dav-powershell-get-exclusions-variable.png | Bin 9714 -> 9323 bytes ...troubleshoot-windows-defender-antivirus.md | 3 ++- ...indows-defender-antivirus-in-windows-10.md | 3 ++- 6 files changed, 25 insertions(+), 23 deletions(-) diff --git a/windows/keep-secure/configure-exclusions-windows-defender-antivirus.md b/windows/keep-secure/configure-exclusions-windows-defender-antivirus.md index bed4fbf9c1..874d94951f 100644 --- a/windows/keep-secure/configure-exclusions-windows-defender-antivirus.md +++ b/windows/keep-secure/configure-exclusions-windows-defender-antivirus.md @@ -12,7 +12,7 @@ localizationpriority: medium author: iaanw --- -# Configure and validate file and folder exclusions in Windows Defender AV scans +# Configure and validate file, folder, and process-opened file exclusions in Windows Defender AV scans **Applies to:** @@ -33,9 +33,9 @@ author: iaanw - Microsoft Intune - Windows Defender Security Center -You can exclude certain files, folders, processes, and process-modified files from being scanned by Windows Defender Antivirus. +You can exclude certain files, folders, processes, and process-opened files from being scanned by Windows Defender Antivirus. -The exclusions apply to [scheduled scans](scheduled-catch-up-scans-windows-defender-antivirus.md), [on-demand scans](run-scan-windows-defender-antivirus.md), and [always-on real-time protection and monitoring](configure-real-time-protection-windows-defender-antivirus.md). +The exclusions apply to [scheduled scans](scheduled-catch-up-scans-windows-defender-antivirus.md), [on-demand scans](run-scan-windows-defender-antivirus.md), and [always-on real-time protection and monitoring](configure-real-time-protection-windows-defender-antivirus.md). Exclusions for process-opened files only aply to real-time protection. Exclusions can be useful to avoid incorrect detections on files or software that are unique or customized to your organization. @@ -48,5 +48,5 @@ Topic | Description ---|--- [Configure and validate exclusions based on file name, extension, and folder location](configure-extension-file-exclusions-windows-defender-antivirus.md) | Exclude files from Windows Defender AV scans based on their file extension, file name, or location [Configure and validate exclusions for files opened by processes](configure-process-opened-file-exclusions-windows-defender-antivirus.md) | You can exclude files from scans that have been opened by a specific process -[Configure exclusions in Windows Defender AV on Windows Servery](configure-server-exclusions-windows-defender-antivirus.md) | Windows Server 2016 includes automatic exclusions, based on the defined Server Role. You can also add custom exclusions +[Configure exclusions in Windows Defender AV on Windows Server](configure-server-exclusions-windows-defender-antivirus.md) | Windows Server 2016 includes automatic exclusions, based on the defined Server Role. You can also add custom exclusions diff --git a/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md b/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md index d4baacf3ec..3d78deccde 100644 --- a/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md +++ b/windows/keep-secure/configure-extension-file-exclusions-windows-defender-antivirus.md @@ -42,7 +42,7 @@ Exclusion | Examples | Exclusion list Any file with a specific extension | All files with the .test extension, anywhere on the machine | Extension exclusions Any file under a specific folder | All files under the c:\test\sample folder | File and folder exclusions A specific file in a specific folder | The file c:\sample\sample.test only | File and folder exclusions -A specific process | The executable file c:\test\process.exe | File and folder exclusions list +A specific process | The executable file c:\test\process.exe | File and folder exclusions This means the exclusion lists have the following characteristics: - Folder exclusions will apply to all files and folders under that folder. @@ -95,7 +95,7 @@ You can [configure how locally and globally defined exclusions lists are merged] 7. Click **OK**. -![The Group Policy setting for file and folder exclusions](images/defender/wdav-extension-exclusions.png) +![The Group Policy setting for file and folder exclusions](images/defender/wdav-path-exclusions.png) 8. Double-click the **Extension Exclusions** setting and add the exclusions: @@ -106,7 +106,7 @@ You can [configure how locally and globally defined exclusions lists are merged] 9. Click **OK**. -![The Group Policy setting for extension exclusions](images/defender/wdav-path-exclusions.png) +![The Group Policy setting for extension exclusions](images/defender/wdav-extension-exclusions.png) @@ -184,7 +184,7 @@ See [Add exclusions in the Windows Defender Security Center app](windows-defende ## Use wildcards in the file name and folder path or extension exclusion lists -You can use the asterisk **\***, question mark **?**, or environment variables (such as %ALLUSERSPROFILE%) as wildcards when defining items in the file name or folder path exclusion list. +You can use the asterisk \*, question mark ?, or environment variables (such as %ALLUSERSPROFILE%) as wildcards when defining items in the file name or folder path exclusion list. >[!IMPORTANT] >Environment variable usage is limited to machine variables and those applicable to processes running as an NT AUTHORITY\SYSTEM account. @@ -196,8 +196,8 @@ The following table describes how the wildcards can be used and provides some ex Wildcard | Use | Example use | Example matches ---|---|---|--- -***** (asterisk) | Replaces any number of chararacters |

  • C:\MyData\my\*.zip
  • C:\somepath\\\*\Data
|
  • C:\MyData\my-archived-files-43.zip
  • Any file in C:\somepath\folder1\folder2\Data
-**?** (question mark) | Replaces a single character |
  • C:\MyData\my\?.zip
  • C:\somepath\\\?\Data
|
  • C:\MyData\my1.zip
  • Any file in C:\somepath\P\Data
+\* (asterisk) | Replaces any number of characters |
  • C:\MyData\my\*.zip
  • C:\somepath\\\*\Data
|
  • C:\MyData\my-archived-files-43.zip
  • Any file in C:\somepath\folder1\folder2\Data
+? (question mark) | Replaces a single character |
  • C:\MyData\my\?.zip
  • C:\somepath\\\?\Data
|
  • C:\MyData\my1.zip
  • Any file in C:\somepath\P\Data
Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |
  • %ALLUSERSPROFILE%\CustomLogFiles
|
  • C:\ProgramData\CustomLogFiles\Folder1\file1.txt
@@ -276,6 +276,6 @@ $client.DownloadFile("http://www.eicar.org/download/eicar.com.txt","c:\test.txt" - [Configure and validate exclusions in Windows Defender AV scans](configure-exclusions-windows-defender-antivirus.md) - [Configure and validate exclusions for files opened by processes](configure-process-opened-file-exclusions-windows-defender-antivirus.md) -- [Configure exclusions in Windows Defender AV on Windows Servery](configure-server-exclusions-windows-defender-antivirus.md) +- [Configure exclusions in Windows Defender AV on Windows Server](configure-server-exclusions-windows-defender-antivirus.md) - [Customize, initiate, and review the results of Windows Defender AV scans and remediation](customize-run-review-remediate-scans-windows-defender-antivirus.md) - [Windows Defender Antivirus in Windows 10](windows-defender-antivirus-in-windows-10.md) diff --git a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md index c8456fa9cf..48dcf3df40 100644 --- a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md +++ b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md @@ -1,5 +1,5 @@ --- -title: Configure and validate exclusions for files opened by specific processes +title: Configure exclusions for files opened by specific processes description: You can exclude files from scans if they have been opened by a specific process. keywords: process, exclusion, files, scans search.product: eADQiWindows 10XVcnh @@ -12,7 +12,7 @@ localizationpriority: medium author: iaanw --- -# Configure and validate exclusions for files opened by processes +# Configure exclusions for files opened by processes **Applies to:** @@ -40,8 +40,8 @@ This topic describes how to configure exclusion lists for the following: Exclusion | Example ---|--- -Any file on the machine that is opened by any process with a specific file name | Specifying "*test.exe*" would excude files opened by:
  • *c:\sample\test.exe*
  • *d:\internal\files\test.exe*
-Any file on the machine that is opened by any process under a specific folder | Specifying "*c:\test\sample\\*" would exclude files opened by:
  • *c:\test\sample\test.exe*
  • *c:\test\sample\test2.exe*
  • *c:\test\sample\utility.exe*
+Any file on the machine that is opened by any process with a specific file name | Specifying "*test.exe*" would exclude files opened by:
  • *c:\sample\test.exe*
  • *d:\internal\files\test.exe*
+Any file on the machine that is opened by any process under a specific folder | Specifying "*c:\test\sample\\**" would exclude files opened by:
  • *c:\test\sample\test.exe*
  • *c:\test\sample\test2.exe*
  • *c:\test\sample\utility.exe*
Any file on the machine that is opened by a specific process in a specific folder | Specifying "*c:\test\process.exe*" would exclude files only opened by *c:\test\process.exe* When you add a process to the process exclusion list, Windows Defender AV will not scan files opened by that process, no matter where the files are located. The process itself, however, will be scanned unless it has also been added to the [file exclusion list](configure-extension-file-exclusions-windows-defender-antivirus.md). @@ -89,7 +89,7 @@ You can [configure how locally and globally defined exclusions lists are merged] **Use PowerShell cmdlets to exclude files that have been opened by specified processes from scans:** -Using PowerShell to add or remove exclusions for files based on the extension, location, or file name requires using a combination of three cmdlets with the `-ExclusionProcess' parameter. The cmdlets are all in the [Defender module](https://technet.microsoft.com/en-us/itpro/powershell/windows/defender/defender). +Using PowerShell to add or remove exclusions for files that have been opened by processes requires using a combination of three cmdlets with the `-ExclusionProcess' parameter. The cmdlets are all in the [Defender module](https://technet.microsoft.com/en-us/itpro/powershell/windows/defender/defender). The format for the cmdlets is: @@ -110,7 +110,7 @@ Remove items from the list | `Remove-MpPreference` >If you have created a list, either with `Set-MpPreference` or `Add-MpPreference`, using the `Set-MpPreference` cmdlet again will overwrite the existing list. -For example, the following code snippet would cause Windows Defender AV scans to exclude any file that is opened by process: +For example, the following code snippet would cause Windows Defender AV scans to exclude any file that is opened by the specified process: ```PowerShell Add-MpPreference -ExclusionProcess "c:\internal\test.exe" @@ -156,14 +156,14 @@ See [Add exclusions in the Windows Defender Security Center app](windows-defende The use of wildcards in the process exclusion list is different from their use in other exclusion lists. -In particular, you cannot use the question mark **?** wilcard, and the asterisk **\*** wildcard can only be used at the end of a complete path. You can still use environment variables (such as %ALLUSERSPROFILE%) as wildcards when defining items in the process exclusion list. +In particular, you cannot use the question mark ? wildcard, and the asterisk \* wildcard can only be used at the end of a complete path. You can still use environment variables (such as %ALLUSERSPROFILE%) as wildcards when defining items in the process exclusion list. The following table describes how the wildcards can be used in the process exclusion list: Wildcard | Use | Example use | Example matches ---|---|---|--- -**\*** (asterisk) | Replaces any number of chararacters |
  • C:\MyData\\*
|
  • Any file opened by *C:\MyData\file.exe*
-**?** (question mark) | Not available | \- | \- +\* (asterisk) | Replaces any number of characters |
  • C:\MyData\\*
|
  • Any file opened by *C:\MyData\file.exe*
+? (question mark) | Not available | \- | \- Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |
  • %ALLUSERSPROFILE%\CustomLogFiles\file.exe
|
  • Any file opened by C:\ProgramData\CustomLogFiles\file.exe
@@ -212,6 +212,6 @@ See [Use PowerShell cmdlets to configure and run Windows Defender Antivirus](use - [Configure and validate exclusions in Windows Defender AV scans](configure-exclusions-windows-defender-antivirus.md) - [Configure and validate exclusions based on file name, extension, and folder location](configure-extension-file-exclusions-windows-defender-antivirus.md) -- [Configure exclusions in Windows Defender AV on Windows Servery](configure-server-exclusions-windows-defender-antivirus.md) +- [Configure exclusions in Windows Defender AV on Windows Server](configure-server-exclusions-windows-defender-antivirus.md) - [Customize, initiate, and review the results of Windows Defender AV scans and remediation](customize-run-review-remediate-scans-windows-defender-antivirus.md) - [Windows Defender Antivirus in Windows 10](windows-defender-antivirus-in-windows-10.md) \ No newline at end of file diff --git a/windows/keep-secure/images/defender/wdav-powershell-get-exclusions-variable.png b/windows/keep-secure/images/defender/wdav-powershell-get-exclusions-variable.png index adf6c2b6613bff859cb30361d7fd0be1c08c2a5a..68b455b5a3d6e45bde77d3ea2d3073e370597343 100644 GIT binary patch literal 9323 zcmbVyWmsEXvvw%Otw6Ctfx-h6DPCNP6k5DEZLtP|dvI;BqQN0(6-o)3;$9pAv=18G zDI~#NPk`rrzaQT@=Q`KBugK2qwO7`fxo75Hvv!n@mMR(XJz@X=K=%BZvMvCC3&NiJ z5aMG$q4V?av0p^4&rCc30P^;$H%=-qIU`m`0Di9dlwcm0nHGn23Vcv@EqZDUR`3Md zy0`-hOAybnB2q9`q-^a0bhmQ_+qpOcsEHo1W97tGawQj6Uw1njTQC4dfsn#V$*-mE z)|OXIS;2Nr)_}){6hzo7L|0ezTtHxNOLuF4sq5ucbCT=M?L2^vme{85fa;bX5UiN+ zN^E55?ri65188AfiNwkXZtnMV2U-L6FGErPYNq7k@EH8zpTwRQ8i{63OS2)RL_3Cc!?={~`M|sg9u-qE_Mvuv8bW04c!&R( z`Y2*R1XYXwkSn`+~TeadSNddP{`z>PQsUv*2XAI&?wAi0f9$y&7+!*PT3r z${Mdz5UQ34ZZ%(WZ0F!a;Ly`Y?AwGQHibx6g4akIPF$LG*FWC$i6G*jKwO;8HE%)k zc|sS*HW`a~+jDKZ3OE1ME!!#>`zcpM z6W-1az1Jp4&%|W4zdmBJNkK;T!pKORcah(Ydl54m+$sOsAD}@!sAe0yp>W|I-gSd&P^^;l~>vEgZH3Tl6A^4;kd4% zAyhYS*-BM>OPU3^ha*X~;*q!ktL_!}Nez>pp0wjV1rPSPj*RXbd4vAJdVM zlkXH)qUi74%LKdF+P-%wHtm|5n}Y=yKF5WN{0?6DC=i6_apo~|%o0539V~c!IEYw` zdKyKFtVw;4b+nqQ&5xLMbCma22{=+YNLfiYQsrfVvix4pSo0V<$MZi37V>u4p_H+Y zLA+U|pTFDqF$42Ap@X4BOkOau_@jvZIfdi|k<+U~4^<#^JZMyoq$}w%lFGETR`Jr1 z^~!?YaU(@WyW6T(Z zE=}{V>qWbcCU7u*zt7wQdzRpbF3sgS0zTg5ed;O}4}2wz%0Nr6d0eBy{R%PYF!=8! z8pX!BeZ;XXAFnE^=tyhdUG-8*dC=XypE!F>;n#XoXr92;U^v8uBzT|d;B$~82F%#l zsl6_GS;jq2*r48yJx#Gz#irl9cgzj?X_T{d&IeqnMBAiy*pX zbm2>TCOv3y(_xN30&1N~T@hM-4s#;6@y(OGRJ0QRJeWH!2Uix_FPYBT%CQGJlnjH0 zFPtly;o#Y;sR|n*L*cr&t#y93pbs|X7sZX@Vk?0L<~dz4j45>8>6FuGV1Klo!9Na@k&z~oeHO8G*fH^Wtvx#z`BV_BvyCzM^iPg-TxieU& z&VP=DJ-3kqel#W%loICy$mGu$I_M#26gVsb+IAO#s%fmD?^E4pBWHoOyaFr2W3=<9j z-`*_hK@=2cSA08!cJtiBAE9(9Y>zv!)EEex&0=6N`hx=407TT#D_lk)6o%X}pG`9K5sH z*)#cu%QZqemw>3t8sA5nvnFaoC#Apla=z*d1ZH48maP)9JlQIbn5ojsw)e=t;Ala5 z5$i7dSTETwvkxtqR?(XKrI-6ErwlyiUsa+hh-2Sfo*4z;umSbnTKReCa1SAHzv(B@vL8o^L<`%xI`$K zpAiR}K?{bk$a0X10-ZTL!46F!J_1LTtg>L@8ON`K&7Pca9!gb|s9T2GU& zGN1Bh;p?1H9rZWy78o^#AJ$=L_hO+?Wu3n};Z9M}jaIX*ViUTkzI@i%(*bD^?+~)y zlY-rhf}F{xft_jEe>9Cu6D*Q?DETTc$JV^8U9e%+Q0pH1us@IXsE~&vkNH(3hn~7S z?Y)SegIT>bIb$hqK^wJIkMEerd$0zi3hfO)%@wWnR(T}^djl< zpqj4G7tQNCmL3klHxZeq^G4BOtnz>?@n+e9j|tM8fXUpbY1CvpXXCC~t`PqI}A$Adg`GMi+MsEFjM31EP}YxdKF zN7(q|4yk1vYabaIS)TgC&XA2g>F>2+07Vh&;0Et9=l|c> zMa2A8<}!1;#t4ScHH6jEl&()U#XlM;@g6CZb|N>m(XngBK=9X9kHV^PsuUiJopE;6 z&0PQDDejqe7GByZ!lM{M!J5w%R_9rm(2PnBR1*x*serI`IVmciVy}~j#)ZbJ`sG&>T67>;Jd>ECk55|N+j=k&$Th#1+y-Fb z(mwm3&`H3>YJTsMu(I|Sfp(+T2oBdX(T3L$A>n!CVzp)48A1$zF(Z9N^udHNyh)@G z#aTV)L%*O66cy-4!?R)?;60hMT)z?|)7=GYpRR5T7FRV3cBE)!zFsljqaJuX42Qp$ zG#<=rk=+vArP|!@*f6UrGA#EBO@_qSIW*g%Z0ho*2(FY2^#^4N`MZKx^2jq`A-!!5 zee7uF;-!7rqCYM>+n;|g_>0I2xJ@@F9pcKZD|S?i)O2s;wf%}$^8P`1tG!C5>yn4U{Jw=Yuk;Lt(2nSWN}`?^Kp|j2hd2&iIW}geYIZkL}Of`zEvy z78=DGtDI(ks_1hp^sQN$#}v6uWsOyIF*dY0;#iNW+8p#S6$L4Xf>FT3i!u-fllL zLvM7%=C<@3ygW@hB=9YtBald$P!p%_5_cvSee*dH24BIWWb8TFxaY@mRT5 zO;fXCnpMCZs*~o0TuEpE^;^bn=yNXuPVGIa)gd1CdFc*8s}nBE&NjS7h>?OTmW`M~ z#grsafxJI^XMDCBMmdXk;$YB;6XXAUqW<4%CJ?WWPhy3xo~xA;rO{x3_FKVTQ=zY8; zxs2)Fz3Ld7H)s3MPt5&2JQOmaxbN?S7tuBS`F^g$kqp)S4-75Hk)tq5^NtC!C{}c% zb(pl)ulv|vls=C?@4q={&Ng-ts|eFMBV`_ZG@;T$9MSnlOKwcZh2%CJ)(pg?agKO|KT zjFUjG+O+>1(_!6!js@{P{GoPFJ4E(j|3~-KP^aLF@aJQtmwCJ3oMWW{uYyk`mi3h@ zC=7O1T3iBNhZTJX2>n4Fk+O;x(p;~_pQp_}TK)r&=t^^q=3D+wt*o~x)!6A+afWKo z_a}dS;8k64>>Iu+wO@YaiO=|{MXYPz!IK=*T^1H9V=G#JIt;*c+bxZ&AG!2c4m<`C z71S$c2d{9iJC4CLOcGH0O8PYc`ZdG^)|}PuE{XEOEZ+y7jIg%^%vD=C%G+%gxZPQ& zQySAPirxMoZNU6~$SGBXbM)v-FN3sJOGslZC2RRS;giLO`j7ZCKC17JQCai6a>=Z$ z)*WQLzyHfDC$M<>Hr-(R5lYF1D{z^l7vSR}dAbM$vp{x=`8*_~02^sNhoE%~NZ_$a zsHVd-eS-02Rfb20m6Aus2Gfdez3#>1h^cLv_kp2g}52c?Z5RVOymN4+OO#P05PTehM=H0!W zfrym2ljkB!*Gy~xLB2HCM7I<6+`q?AiznYmBp}dz7E3|fR$Xf0#aDK#{KEcQvmKs0 z1FcfbqoL6aO&9_12c(lz2a9ZSP?g02idea=s;Q{eB=gZ}s~?3EBg`%6uI89xXD93u zKWiG6;j{T6D>EK1DrEllbYSBT&dyBf&jzp#iC2CM+6^ezdhgD9{*|mY@PwrFjwp{p zJ+|#oZYb8A-RJxaDV|^Z93q{)ZjtzTsyQ!O7VAFELYP&rMwU-a1fN|9dqit zaph+ozki5;IQjk9Cyia2eRl5in3Y%6iKmMT4lfRj!^$#t+c>Lv8#tOh4JSNe<>Yrg z{uVxMB>hdjMzU>CW=X^(PbOefawuHu=#|1za0hhcF!-#EZ%?cqBU|(Kp_c*zzUAQ^AzQ zvkE(h%iH92Z(k6Oe0@hJk~>~EbD<8#IKAg07tlht+s6JCT4tu<*a}^(zN5{;pEHr; zR*%tuFRdPq>Al1oc#>72jSQZ}r$5}Cx{BpioS@Paw>`Z9`0YsCXvu0vwq!N4U`vi| zrMC@}>#H(de0%CAdA{-aM1zAh2%*ViQ(#PS`LK%6XIw)lu%C=ROMdMIu$_p2T7f=_ zZ{#3+YX_(k%-zTl*d-n!^elxcbLyRoK-eKn36DoN>iMxiU<+6^kDUka|ueA`b z3_vsm7E=+Kfx(J*#KxBk@L0y!S_=tm?`tcJ5RC_k?D~NpNVu4^(i^pUkYtNL$Xt{u z_@nr(&I!*lF5SX{A(pS4Jl$C%Ufzu!%og(bfVdqKsbL;Y+p-oOVW4vvuPpF& z6X_W_kL!K%1ofTzR}BCdN|&t-%z3e*$>f*Qy~7dOHN20|MXU+VoD!*=+D+X*9XC3? zog;tF`QVjT&)7MBF_U$%hsZ9Kc`idhevg#dbWqd^-#G(&^M}q_hPGp+gD$QgMd!@F zG zlVLggbuVT&5?wlBNs?ayvF7hLy@GGFNLz~|$0?iPmgjVH7_R2pV>6XMk9c0o(bnE- zHzRa^wDb2D$5Al-=fL6GfWk^g21TXpSz$?sD>eRH&TEIo+Qy*t~yGX&p0fT|o0Kj_<7x8>_~QLs`|H zxJq{6V>{0D;?VNyNTJV-cgU1z40WL1GwPPCiO=EIv(do8Gb@lm>|xN)iO^pYhxoY^ zQhEx|9x1UArK1*sBcJHJG=Fj~NvW;7(^Y(WFYMFi-(TKu>~U{T)C*gH=;|d0%;{ls zKmBU0db{vF?ZA!Wzh+~Ar;M?xSai*Ps3guFuxdtj>E>Res#^mgD98vZ=u-{9dgXb_ zLR+7D$+OJ0gs1xKfCl&}>j5Z~=`nL}AM4KHS4x z%r)xV7a-Y4e_vAAUrYtQ&j-vi{u+xp4y_gSU$OBRh?8O(fzTjl_Zp`i<18`b-kUmW zrgkgL&f162QuBIgdGG6WQPjUO^xU_tOp&6yZuFy0eObSIYdiVo!A9?Q2W6h-U|vqg zhop`av8dfnY-&J_!z8DA8=qcu2Yi#lHGlwi-_9nLpMPo0>s0t=PHL)NEZiBop&t@< zouS|5>PrHAq?gMZS!0}jX9wPkKhQlm!8Be4$cXh`)xIg& zz?*7xb?@;@C!?R3EZ;O13$G{eA)avms&fHBX>#hHFE8&pUOeE9Z*Eonty$<*9(r8e zS$!-0KKSr{e(I2@I8z6*n$OLfY*S_S8J_*<=sp)o{0#ju-oSx%MwMjPq&Qve(8AtI zt|Vm1xY!d^I}-yBmFX4w2LpC_K(Tb}(q4Awp?}^c&{gaN#T>R$N5lY=wy7Fqye?BD zA|Er$B1(hLQFhh;V?uA-%ticD@|b$wo1vK)71NdoD1DUI=rx4Vy9y)9w>R2a&|2kQ z@3M2?lh=}^8N&)whD{?+>05g)CW>cEg4^yCD%Y1bh&f0QNjPdrf%O5{R3*Pqz~Nhk zyskYYo#z%8ulYuyE>e?A7e9$FJfM|mQ)$lPVGVlt#5BF~X;W>(+mFmBDXvIg`9X;o zr*zcJ)q;X{M_+O@JV=I7n@NCF2rTA zj4QA-T#%9L$73v+STe`1eNYph@&&a|FsQn;Upu#c)CBMmlj>D2OJ-65*D!7#atXHL z02C%vmRTcEs~kgozd5LRTz3a zc_g*afAdnN?-&^WRo_%X$$aO-+V7z~bK`gHp3xgLKsgVW(jH=!oV``K{1cQ_cZ3nJC?!0xuuVl=~AWu6&iFu{8EZW!l#R zNnA*M2t2q;z;*#nXcLq+O&s>#Y@)I_rj$RY^j?1{{5kE^jHL)yy>^EB3y0hJc?g6h zE-77TLbdOs!QN@;>s_TYos2^h>uGju_+&mw4$LL>n0uEMn3&$OZ@A&*dy-uP?QVLO z5Qw#z`2N_#Yh`=KapeWLPdJga%|EtroQ5yBiuS-iZ4*MGZ-$7^B% zT3B#x4+4PKPJdLb1V`l~PoLdPCW#j*3G&u;=W0Ldncr*u`=)2_s3dgn_#P-B5XEVB zA5?&P+*Jcaq_0lc64RVMLT9CncxN8I`!WK%9jW)&6^PngX(yJ&xJvf=qjQQ(df0Pj!kjsZe(Nlxq~QmoU{0WZYK5S+C=t+1|d{ zY@Fg2nMnQpdZxwV8kkS3%PZcLU4-MWbM6~K>#+IT=7mMZ_fmnZo;z10QdxPWfx+p* z(y3}bpGOsGxe{^TSL_n75P1tGcabu}l03PD+C_(vDJ8jEFJHG;1`TP5Uq0+9iT%eC z$xwU{hx9*2P>%lm|5rUtdTxnO(?zo5n7sI_k!+8KfmDpO zZjXa%(wNAg0$kW^%|BAM<6!MmwGGYrTS2!|i!}L;&aTK~lbwY1Uw1a;H$dqHcSY!K z{QfT0#_ews*z*oHBQ~i=w5ymRqDcU9#_u~=d_Io=avRX`dx&|?Qfiuw-Vg;q+Pn|b0EGM1 z&91daTkL2Cw2zTKyG#XkhnE*0WuDQ16It6J?CDh2H~6VV(7@c>@I!OV*&kmP8h(_+ z3%v}9HZ+){_r9w35Ox_cJNv@!@fHkp9xmt)za4&K>}8#bSd;I3(UDIKRye!bGfiw_#|Etw|@{*1@A&ElacP%I5GO_xS~$c7-E+#w>sWumx-&k>%EuR zS7Gvf_iNEMQ-&dhWEve`A1B|i>CdSRO<2rm$~p9%ut9UvYc|Y#PH|W~^~MKgu!Wvr zawTb=HSRk{|7_|%h8y)toN%w2ylcbhQOYi0^VI>L>9C?&hYDBSb8=|^U9~k>xrt*Q z)Bmn#c1yV+7;6;OwG$i?S+Q^hTi|)DcIBsUtAYBPIHP0rJF+S13So_r zX&Swm968MOx1Nm91}B=xT#qF2Z{8lSV@`gvKEin7Qc1WPWu)bFRRcqDwgZAn%R5}+ z5}`MYEWz$&7@IVnd{n-()>j{Y6CIbdGXEpiHc|ZIdiX1xHz0Xa_5a9C*;MGwu>5Cy z_5{V9r!u@wlTw7!vQi(v>cDZ@d2o#n@3;QKz#F%4=i>g?S^EF_fX9EnpYtDY4k0fI a-n20&x_^amV4tZ0Jb$XCT%u_4?!N%;mia#b literal 9714 zcmb_?2UJtRx-J$#q}k|I6p&s*uOdj1B7)L;Oag`u(u;snq>1z*0Vx&;2nYzFmqZ{0 z5d=anl7MtVuQ$PS&O7V9ch|c2zPDEhd;K$ec4p@L|M~uJCdSY}i}o_>Wim1{S{-c- zBQmlJVB)>sB?{tq=FChq@gJ4Dwz(G>8C?hI?_8=79UIX|>8+!GpK|5``$anT);j_& zXQumR-fGXi9o;<1K9!-hi6$CvqDcef1@v@s_jYn~CA&^_^A^#5nPgXYbNBajf;f7U zmC~aXh*r8Yt0%~wRF&J?$pu6vy-QC;ETJNm7`uVJeeFF#WY+Gdr0UdXjXQY(o$ZNL zJ;`cYz9tgQmq=z)drwy7Uiq-CSHiuHIxj=(J{{ zje=C|v6Htmi0tF)Pku5oZZaJWwa0!rD-)s4gS+qW8~Ajo-Wuw{wk^i+rPJfJ9_g%Ga*V6T}4jDatcXLl(X=K+6^>u1#jD#RELFYxqxP@L?lVy9T_m|uk1n}y0~pK`X_ZJ0Kr*-m$$ot#-` zk9`j}+-g~Fra!qJy4yJrRB{a+Ben;t2t^*vdhzj{kbBKiqs2}-PY8IupbdFk2R>-A zqBE~WkM#22VRp=#YJHi-=D(Bl67893=;$h4C+g#Nqaq_e!r||dJ(#LfHYVLv@NRC( z=Zj<9XumeC^Pad@w{~>kO$=o=oc??e~0 zCC*0eWV+x*eYdcS`}jG?Pd15f=^e(;1`sp_xR&4bMG`(_8WTd7#D`+eioT7Knb?pU zL*oN)5Qia?tJn#5WD!k4Nx8p+)Tg1P)vuG4lIp0Hb#-uecQ;Te`51)paH9VC(dJy0ad?%6;Z9FtAGo(z-}KRis^*x}3yDex zih6oMn328a^*Pn%p7&Z!XqZ&UyVvDno=CZV%hzx8!Wi8*=p%%VP zx%*6p#@2vBv|z^O868KsZbb(}TjTVu$eyF{t>GrwOF2s*n^T1jQ4iPlXXBsLzVs<3 z!o*0>x-Tm)C!}deai0z?YRxZl-3N43%Ptp^J$3x<{!teuv{UtTZsjr69FvLrPLbHD zsPsdXw*|wG$!0e9^JQ~#d0CXvnuxE?b2B{&Y(9*FZ|mKjthnf3ze|MDh+IUV!Ma6Sujkx5YHT zRR_ymD+9VWlGjEN@hx?XK44uJWX>8NK~Z;Ggw$8+RKVZ9(x6w5ab6+M2ed5}O*Xdg zH#Bq#8aGJ!L`((w03XN~Ac6#%56u!1wA#03QFsTVFXyi0cTL>u)hYS9e5vu}PgYpL zJQ=%$K05i_y*{?(-_cJZeI#4z(jv@5bX2r@id^bovFwFKxTlqxHDgOfV@f*Qk6edW z^mn8i4lWgAf?_7~ryYodv_t2Tpx7}2gC=V}{^bDV&{e;Fleq%C002=yAuUCz7sN8joINo)r zf$6{G^A!t0=>1fpqI@ehwqMrhoh@HwIJNx!&z?V!7)#2PlF zrtw6yzjh-i+N&#Fc@ZBK8_dNYt_pFN*d%B;jWOPiQY%KPnT`1uNXjVcwY|9ISiAm|4hteY2Z6dUVUT#yty0dzZWV zQ`92b54_~drA6nWJ!QvR;hB=)%su72uKDFCe?Jf70pt zj_u}dY*Sb5vs~O%Fn*~k&l#WgVY4K&D1 z8Km(R+I&CgxW4DU61+Ctlo-P?+TxBIv{b<3t`^t_^nsSXzGhvP53d#ieNVdT*si*kn@F7MXEHr>c5Xjm?xJ0e?j@onN{JN58s}Y%)!<>@7 znlZeHL>#+MN^-)rRpshsSuP zXv{_t%uJ!U@lX&X%!BebSxsY|9KoM&aHiH9?P%{hWQ}rcbzx>!6nm76&d_(o7mbOg z0%$I@PsFO4*hSun-!2=OM$-_Tk*u;ztcRD_Gi7jkA3fg4Tp_)$&)rcjwYq0d<%2{S zHmGKTQwuCZ=qrD%8}nA9U0=6XM+KvZIe*AV^f>>P@kHqCGbpsmbt~x-hIoVjT}4x+ zP5!Y}^)w}P58t6{bCKdjSkhjVy&dzS$Bgf3@9 z^ABp*o{I7|>9NYY`W*=#c+5MN+EDI)vKFH(7rULiDUw60w36Ry8yt_b;Sm|q_m`Rq z(UEFsGq*n_`GdCtAsrtIdT+ttD710VZyHYr|0GX1@Q1WG4V}@ReW*JZ;B2~p=if&TN;D=AEgGPC<&!S ztnsd0&+L{A89anWiz?6jdPEa-*Ak!a%;Sr*eGXD^y|t?BuTZb9tSNp&m`b{lcwJAv z@zovqleQa13QnF8$rTU3S=pja&g1NqLn+o;s)Q@2mU<={y-iC&bBwah!i8|c`vO>I z*6P`he>#)tf?U?EI^28w<0<)LmC4eC%>!+DHx4u1P~Z!$#2b^@i(~C8HPShB6d!4s zCNa~j<)=3ychUv`=}Tw})v(>hmP;?8$*r+0%~Vfb5YiX20& zqj#avVo`9}>Go7+;npKZ`Q@gBt_L)D{O)k?M3AIKmP+C^Z3@r^#QZA=v^g5-01}w% zVSytsJ*BrhXltGbL%vQUQ>E&l{`5-_wxz?D30bLLR}4kw--b())`F;^@l?r#pl$|} zY0q<|ZQFxeS=lLsAzf%R7j31omLb?=7{E;HvBdH4Ab!1XA#|0Tm0wwPNfOl^Xj~pI zQj0XY-X2G521cc86Wr`(u1b5qe(QR#iB0P2b8Cj~5A9%PU56 zIg@x$_SF0k0y`$(Em*ZJKtg+!tZ!JR8%K7Xwj2$`qoY=jtiXHYuOsDfLWLKEG7yq7 zRdJ>~(47b!wGlfATkpkh47B>HccHfQ3=q3r$l@?iw>5b9GV&W$6Jq*=#z9wd_qyd} zhTT%`(isJs((oCED-X#XD1_`^JSEfWmFqAqs)UTc1h=e29aJ0c#sDYAm^;cotja&v zn!Y6#IY#eVE)9$1Wwtz;4q^Owv6icS1?4_w-lVaf(U5ENI#Yk&g6Y&B^+&)qa9Aa+ zYJy@HBL3y|Zsj<=x7K>_Z&1=$;>?ccw^^DQ3cvEM#F>z^OFi;dYmlU|J|4yF)Q4`N zypwR*OU}n}?tY$kgOh`MzYMIPKHBy;PVjf#70_>g-tgFyXWtdMkYJ71cyFC6pW|%S zb|MlZ|M=%`1N6-&KQmlb0s9S)6;VePLLMueIuuo5tCtSVdXT@(jOGjL4oSQ{$;!gQ z!gCTvL@TSp`S)KWgh zp%~&AgWj3!ESq@WSA$NpbdP@NOvFw=Q*Sk`bvo8Yly?WVK*SB5j{ThltVHe3TcYxs z884J>-bdtIeR1-@v9_B98+h)3NTYjZ7;1mH`jK~tnVp;Y5?ns{C)r+B%3MUx^)81Y zQ|tK3LU%CJ_iGvs)>#b-9VqR&%6NW;M6T{x$k4U3IlmPg!Wk1jqAA`J5 zkbOg$xF^uee@^aryQWZ$bpAZP)Bz5lv%>l8g7^IQ@e0Qkq$EmPCK&+2hF86JPIsG~ z>HS*SdIZIk8g;~eaWcicZ7+qQo$-q8R{pNa)d^6OV&RUJ`kUQK=em{lBP5d%*xK)0 zHZ%-Od9xmN66?^PH8Ag;0r5-Ed-A=Co*?&{WX(CF$DpZzQE1TH`M4E`U5h#LlAW8} z`5)rv8F~odg}2Ajs0_?dHn?}){im-GGHG#mLfBnpfQ$XGccByY_p}Owq6iQg#^8&5|M? zQK1KluR>>l@T2`mILD{8hm-_Lb{*ZdrCw^2ojdk#^Wk!x+R5Q=hP zozu9)w02*l#8|pnm{}ej%}pW5Mw`TpP4HM5D<+RE9ohthNv(FJP{ z+?gOfAzvoddl;cPTqvXJHwD0aP3fO^czs&jBUhVjcCf(S+qJ~yA! zZ4~_KRSuU-we^X}KD_Fujot4~EG#)~a*a0nosM;M`705j=|O)#-r&acE?Vf=kx1;o zSWC*vpWZCyEo*HX**d7pkE;(=0qEZp-p1?l4uI^bakw=A+tD>*)8J&4_WX^rkpn zYvD8A;&)wIA#uDlqfz<7`1D@0CI0m$Cgw1A7fC;fxt*bHjO}~qs@k|p!^mVzKeNF_ z`^F5paKKdg&0Ga5g*wGKS5ziArf;ph;M-5qEr&~ zSy8;kue$*Gg>AAnLVQ{H*J{yvce0_cay4)8U*15a|KH;c7L>Yu)-eUxb#*=m)FpnL zDIr)CrLdqK#QAW*L-0xELXZp;=FGFaT!1^YN;rO#zH&I_y7GMlwr#c3rxW-50ipvh zT{y~QbU6dMD(1`89=FojbA5S9HwgTU&UjLHw>TVGX^0~MWK+D(bG|#S87C@EfCB+c zR8es2tH=MZ48a`Z^;+cB>p+t$L+%_DCavq2m)sX4JN8!E^H#_bvOJ;{=`)+CdS8su zZ$tA}ucPW~C8Dh#PI&!EXwjM+3>#vA#^M#`RRf-& ztRwXOgiX}l-LXBDgCuFj-9$O7is7qzAkLn9SqM@*zX47Q!x9OA$@+7I3%PatCutjE zv?E6BH2?6prW>;+-hC;~Lwd}&f(HZ6cU3z(wW(WSC8VJ;BUsH$e(@Eu-WEDLiscIh zmTSeXCX-d+6=4q)OKNV2GW}Q_l31wiX4=1#s&iqvy=X;vbdvhVnw4b@yN!os*y#G@ z=&^J5vo?*@Ma>e+24y;cI(v?|M#XTJrB`Mb1;2!M=MZeDF8J{ECIt({0SL*tPb5^1 zsMw~Wf`i@W4i^k1?+|^pMj_h!n7la$_W=ZJH#eXu{V)mE?NnP>qL#NIK6!(#sg#w6-~jo#sFE+; zEN*wLd4KmX^8&p6hhnM~ByC+)H3QSoxe@(Om3v0`O$30@RXfqn%zbR`^8z~4`DF4P zS+6x|bKr>FPNTnIqY!5N7W|Wn*Y=XssTUK8onY^D`|R^^PU=x7Y?jMcJ-8~?R%|T~ zurMFaz+!wO>o&&&o^cF6+ogb)+DyFR(4g=v16JYOWe*wm+hg-*&p%e86Q&5!AKgjD zgs@WNyUKf)eeGtR+U2`&d)%fZr=Kq1@A7Q-t56-jLaRl_s+s5DKS^U<*^FZzzy=JI z)@27xI+jNab$_k)*$<&GKXlo<$rXw(A6ZzvZImw9RVAr3?Q)_rm1~li&_oQmO)lTw zdig0}hsDNrEsK0#UDQY~2Uu)~9L2zbdntk#V4kEEyKDoL87K+}7Nd4Ko2R!^!oDCh zrn(^BQqgD%Mu(%1j9W(tv%!hkE7m8c42i~miwnLoKP?vCfLj6vj$H1pzw`)~IXNmF z!J82nC~-ZTXUHCuOP1Vug>p6)j-QpyZ`+S8w?4RZ+sEWRuJ zLHrp0+cl>N4B_ZX6-U;%iNH7k9{K_s5+^=%@WF5((Jc6ni%NovZVg+o>h92<$#iA< zY7=mIPD!8W;k)q4HP>nF<&~#-U>EC9nYD%ZndX*>`pW|nQQAv8=Y1`5u;T;xB<7N8 zjPO{XM{TmYz*%7AsgjuULNiKUr*A~Trl(_rX)yOgCnA14RuqVk4#gcbNDzTSlvoP%?!U_ZW}N~D)bCBvXenwvn2Qi19SX7 zQ4(GN1fs(1HZQ$Ah7A9Z=oLA-Pa+PC;qP72Z4t8CrwI&QYwyP9Nty75OxATs_PgU3 zm8J!mYx1L6P0Hi0mVj*q&VT|H%?PHEQC!h^VzO*B=H!y(M$DE6f!6rt`v!PsNd8LY z1lzK6LFqtK^QRvoI0)W8c$i{%!GpckebIDoef;`hTh21_EXkC#eeKh-1yw|1-5`>D zTni0^cQQ36ZQb6&go}#-&zMj_p8|U|Mif55&8_!IVX$b>`5g0#UlxO zeJz7Ug9>J?t|iq0*C_(=aRy}*!w6gL`@VH(;>U>uqOK6=Bym0mp`N1_x{luIP zr++S6bs2l376aN{Wdm+K(Oj@Zfkm$wTojtg|LTn1PkO>$HGD@Npdmjtzv!j1Xw6^g zhsb-Oj{ZB!@873N?liFGMRjDASUZ8BZ){xCD?gjHcYWWd4mRg89t5b)M|myUhYXv@ z7oVvVSL>R41%V_fB16E~*xCSojBmxrlsK=jnQ+^I{Okz2+g*@ro)f?=ij5CLMzA{{ zN^JUuJ|I~*dI8`2**eT4`b4KJn}=mT-N5umL5r#r1Z)uv!8q{2j=K=+gR~orgPLm! zKv;~CKKU8wJXM8^kj~21{WXJPlU7fg`Lm8zzn7?ePORjOZ??o#j;Lc8It^6}k}4TK#?UB*mJAZHlVD!fEqY?DB4dE`5x8 z*qCETchmEo3*9!=HGZ&$i6DpU{h;7`e}2rWdRYlY8ug0h`?$S1!HYUt`jH|+61hVS zLXy!15kw3fkGKlrjcZ@J1@U*#hk)J{rCxHdQl*`y4_t^ZyOqQHrTZ5@+SV@3O}I15 z_D`m@;a9Kzv%Ws9Uq!5J0yreLM@PdBbGrl1%gChbt*3 z-O0lgieqMs4ceWuCcWV3PffvrMCHc=EgLUG?HHmsZ1 z6EB?5z*>0V$9DY4ZF7IGpL@vw{y}I|^Zw?a`#XW}{SO$~uz+tFlrpc+Uno?8!woo=K1xk2xS#fe=H&dY5&bkS-T zMu@A36V3!`|7ZqY;Lx5y^jN>OGnl+rIY!SwFcxHl$wqOoaHHhyO^`y*#XMHcPE?e) zc1nv>nQyML>um?rs60s%T=W< z&EPm0gNa-f4>M15ytLxn08+yCM(9X8DUhx?6*TgV63;$dtRS5QfQ$yOhTFXu)>^{; zX_&Fl>HNiJ^}yyEQ7Rd+FsHLZxZzO7HiuSU2mPHovtWP0U+ymkk^*p~k#J;8DXgXL zopZJjU==-g7RS^nxy%rvX@0>^Byf-`AVlz$=PQ%k$NkFFG?=pi``u(xDGeq@hZ@L8 zQ_~sF9-R1GRb?%#0R-Yug*ml078f4EXH2|JHv_b!w4Vdn$`dEKPX-^DL^R@_F_e9n z?l$wN((#gR?!v(8?*^ePK9_`D&C~chzDad}5@|5_xpGAEkl{QK6i*C-v3Kj5Iw_&XTF&i{tt>PK2Ov_`=Vy*2<)3{fdw9So>{ z@ACL|xeYN`S{TBxD3ADI+aoelsYe!mNyoX^H8VLFLD7h~b|ntG${LsgpJDzr%3SU4 z`@Kf=4mTaoK;2%<_7~LtdjHyG$iqlv3qT2P{uSN|FW$&FN6ZzVT3Tn&PP%rd``iEl zP7Efk9XO`H4eVyJK!|~EOVhUk>)-Dolb%^)|ElN>eC9( zqmn!@BKohgaiuxnOgN>wJzQBtMehMZ4VGd_x@qo<^MB8vn7;wDWLOjD>TV|KLzqER z4Er5-a$B1YPxoZXBS>Chh40!nG@u}^VAc}6&@}fDXZ9DbIb6uW8)x9wcwK&nNRj;f z03veT%{a8+{f0}~KJ#ctkTnpjIK_hN_FDS%+^S@P?Q3Pgb9J99EZ^%ANRowy##0rB zl^0IK2{NuL+QFd;8LG^ZZEKazUx~U3WXz+U6#$u&-1$FLE-i#KX_GMed)rfH(Pr~M zYG~>IMK99=#Lwn@vn4y4V-E995#VZ@VuUoRssuw9fAVpi6?$^{{X3Ne{GGSMoPTa% n{TC13{NFau{=e?Tov4P{DXR`^FYXYJHj(MvH_#}%XBYk-9mV60 diff --git a/windows/keep-secure/troubleshoot-windows-defender-antivirus.md b/windows/keep-secure/troubleshoot-windows-defender-antivirus.md index eabca9e983..ebca8b01c8 100644 --- a/windows/keep-secure/troubleshoot-windows-defender-antivirus.md +++ b/windows/keep-secure/troubleshoot-windows-defender-antivirus.md @@ -2,7 +2,8 @@ title: Windows Defender AV event IDs and error codes description: Look up the causes and solutions for Windows Defender Antivirus event IDs and errors keywords: event, error code, siem, logging, troubleshooting, wef, windows event forwarding -ms.assetid: EE488CC1-E340-4D47-B50B-35BD23CB4D70 +search.product: eADQiWindows 10XVcnh +ms.pagetype: security ms.prod: w10 ms.mktglfcycl: manage ms.sitesec: library diff --git a/windows/keep-secure/windows-defender-antivirus-in-windows-10.md b/windows/keep-secure/windows-defender-antivirus-in-windows-10.md index 243eb9a1c3..a9cdcf6735 100644 --- a/windows/keep-secure/windows-defender-antivirus-in-windows-10.md +++ b/windows/keep-secure/windows-defender-antivirus-in-windows-10.md @@ -2,7 +2,8 @@ title: Windows Defender Antivirus description: Learn how to manage, configure, and use Windows Defender AV, the built-in antimalware and antivirus product available in Windows 10. keywords: windows defender antivirus, windows defender, antimalware, scep, system center endpoint protection, system center configuration manager, virus, malware, threat, detection, protection, security -ms.assetid: 6A9EB85E-1F3A-40AC-9A47-F44C4A2B55E2 +search.product: eADQiWindows 10XVcnh +ms.pagetype: security ms.prod: w10 ms.mktglfcycl: manage ms.sitesec: library From b4c59be5f24119834933a0a2ad41ff796f0a6bb4 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 15:53:59 -0700 Subject: [PATCH 11/23] waas-wipfb-aad added and toc changed --- windows/update/TOC.md | 1 + .../update/images/waas-wipfb-work-account.jpg | Bin 0 -> 57317 bytes .../waas-windows-insider-for-business-aad.md | 71 ++++++++++++++++++ .../waas-windows-insider-for-business.md | 8 +- 4 files changed, 76 insertions(+), 4 deletions(-) create mode 100644 windows/update/images/waas-wipfb-work-account.jpg create mode 100644 windows/update/waas-windows-insider-for-business-aad.md diff --git a/windows/update/TOC.md b/windows/update/TOC.md index 8858588f2b..41a0c401db 100644 --- a/windows/update/TOC.md +++ b/windows/update/TOC.md @@ -20,5 +20,6 @@ ## [Manage Windows 10 updates using System Center Configuration Manager](waas-manage-updates-configuration-manager.md) ## [Manage device restarts after updates](waas-restart.md) ## [Windows Insider Program for Business](waas-windows-insider-for-business.md) +### [Windows Insider Program for Business using Azure Active Directory](waas-windows-insider-for-business-aad.md) ## [Change history for Update Windows 10](change-history-for-update-windows-10.md) diff --git a/windows/update/images/waas-wipfb-work-account.jpg b/windows/update/images/waas-wipfb-work-account.jpg new file mode 100644 index 0000000000000000000000000000000000000000..4b34385b188003f5705353f280241af0281b5c83 GIT binary patch literal 57317 zcmeFZ1yozzn>QNV-JJq0P^@^75@?H+Qlz*RDHehi2~KHohXO4W_hQ8zid&($1WhPz z2}J?~xOwLrS^sy|x^ri~`PRDkt~tqGixW=Hex7IVJoft~cMEsx0Lm9C>M8&%EG)n> z<^i}{0z3oYU}OLF#2mPoCmtal9xg5(F#!QSAt^B_DG4zN2^l#xB^fytISC0RJtY+l zEgc;lDFp)~JuM?OEgkJ&H^IWeyayML2oH~lmW+gq_CI~x{QyuAVy)nC;b3tAu&J$ zPgDt?M#qYP%biy2eNrAF_tTngI^9VGkGQo*C=oF|10xgj{Rg~!{0}80rKBIr$Ub|n ztfH!>{^GTszJZ~Uv5AfCTRVFPN2hn5UfwWjWBA+9!-L@I1&-2r+CV8K`Po|b6(?mIx=}s* zFeSJH(3r193JJN`wRW1@s5>%lIv;?KxBzb0xekhq>?ORc$$smGW{;YU%dh$F0P6zi zcy)MEmF4q%HLY0T8Qocpb4G%4~C~IJh<0VW&Ho8s@!zd^*8^M+f6Z&(;HLX~B( zjBjK(?U@GP`0mO0nn5i6jyhvbPjgx;+2~_zgEo8O=0?iKi>pp%_h+;1|J@v_Xi?W6 zu2($lWSF@mIMAA}CxT?|05+yeJG)@`FD8(7du7>RsbfuX-WzJQ)ciC#wdc;LPqJX` z1jc0^nWvZO9Bl2jjSOOIyBP*q4jHOZ)tjx;RqUY1_$=?l=Qirxgz98}@L>sKC-1+b zBkFU!1B2@#P6~o=8JpInZ>TBoG3LskxP6d-vR(^WJ5`fsxdVhc08trpjvGd_7s~cT7TD?1JU1w)wPodk-h`qP6Q(* z4{3D{c~>I-61D#h0E-F237+IcxZV=wVs@az9Uxo?g|XQ458Yj;2OsVLQPmFl362T} zPrd?E*+u?iEBhs-`8x8WpA=qyKX<#;gLM6m-T!Ta|Bv1O`IG)X`~83X%>VeAe~L{1U-a+x zrZZbpp64weUbfBt)&(@wh(?iX>1@dg6I{=J$%A~mHtM{7G8pES#r~wIb2?zISUv%E zvwXA&eCa;-uQBu8e|yXnh(+w}nVija@U(8861kR*f=M3@0`%haAIU_f%$)I7{!55_ zT>T#g;93;0%1PlKB5q~8%zJ)bd%txydVD8xKp^nd9-$IpuB|Gyu=}`}FV8&qKN%bA z0+d~Sz4DhU!;2;S`$>3w;;2U=bv{@>ckN)Y0fp!{)`2~pWwZY!nwR`Ny8gSgX$AET zNqqsgsN>0mPgd41aQk|0x{8_J0VGXFTU0!CotHqDx~2FAs^hMGBaGRIt5eSVm_7Y|(y3l7e{G z(1$usW%Jqa{jV>#u@&*v<*}kqT~XFKA3071$L;_h7y==)w0C6+~;Kzo9xTW^E=t8 zGU#h?FD;t$4v=T(ie_2~Mvees(Lt2K6Lr$Jq(@z-O_%01!RXqLhr1lNYW)ZmdtM)1 zhO_iL02hP+O;d8Knm~UCSdazYuvos^Yt_tdu@XwXX*D+)4xLmJBf@jI<@4TGQWPYCi*v*g3_aHXN{=ZUI?h1eSfR4KnCrzR~G0b|iw zo;Jg#ZGt0bqm2Pir_lwiHkR`L2ZotT9wJ?FMpAC{Jkz2f`@~ZA?RO-5fg_CqK#(ii zOPPmnoYubDoIcF(<@HWBHZe9YO!~5zq0Sa%tu6>M ziRJ@*lbwsPfeT5Q19h8B+xTC6;Y^X^A?^Zzjr&uf)}f{rcKXREG3zVy{KHh5j{f@NfkhQyI0 zgY8~YVLWZJ@e6U4sJfrlFZdM+Ai*1RmE<+H*$<`!ttVV?&wo`qh-;KR1AAdLsnXO_ zwJNd3NyHYb>L&G=Xcnewfve*yC6;ocn18pbBuG{@m4WEzG~C_UGpI?(DXoyAI1|HqsZ9W6ziEq(Pu&);p;K!`RMHg4H#LdoU1FSU{?UGuM40B}C}=Qucz_ zXM#9Uf~X!%l|c5Zt<}8^?YMgX$DHl%@{!3E;{9TmF7HNKLv3D$1e#5AC6bi#7Hf3^ zv-pxsy_sH3fB5wRwQkUqZSF( z{uJ{`6`Gr=Aas)*pjw=X3J{0oh&*qfL`y&ivg{BpbHYMZM;T|V>Rc65pOWd{i7q`d zkNrvXgJ6EI`;%DWh>8*$nUL?VAHkSvxrb`qS1@f2*(CXTt&K30AQ7Rw!XxZ{-4~tRg z9e{qfFxF-w18{k}1iy%$KF^OB)ZJ&WM3f!3D+7B8>l=Nf$~}^ZXtasRC&mKV`ioCw z>6mscbs?BmgLL>UJ<40tr(d?7S>bc7AeZqoaSZ`h9-aKq6Scv7PCTqtHxf0T3R|Gd(zE#_drD61LXXpfrCM_n7;d=3(Z zBt9!fy*m2!I{akIr$0NTYK)ZXd2Jmjzd`&hp7#&Zg`pKij^`-p4a2Z@FnNto`CjV_ zN6N~vV>FN7{iB4*l-fXl_5*`l(7K>X;C^Vh~H$RK_xrsbE`c5G{vj?%oZsg=?ny# zraQK+ubHVA{2i(k881WLh+E|31?V9RqwB|n0;J(9#HhWA?^6YJU14zp+#->mq>R3m zSp$ZMJ@Cl@9;=);CL zYw#s=h6Dvkloo7k?#tV6=Bukt8DCwWq^0NWrkfP~Mm~^!@!e#Q`_jf^bBH7v-$OYd z;rhvgCW?b?*Idg07ldj!xPH_>OS-R>z75v=a!y)Bo&H3w?*5)_d$@}5NWLO0q?h=# z5oK8dp|AbK1^qxenFRKS_37U0wZ@QaPUJo8$jfZ}uq6W`ubhmVQC68hQ< zXLu%xL7%G*j|puHqK@tk;%5`HIfOk%NHN>J9^kW8tz?@8cy z0;CH7rmwe^bQ2aQJ9Y{?WJqOPP~F3ZpD@v{S+vL_j_tWd{F3z(%5o_x&`Q_OAq>5; zBH>;vW3P@>k&@q59j@NSr+fL7u09{CZV`mVZT&DX@5?1gWTDGj2gU_api+zX8T`o0 zc&hUo$6ocEjQh(i(L;@hDodWH$%m*d=Sq=_TNoGZGjsHIEs^xQqwe@t~ z3`?q>tG33#5~4gSfpES*?T#BlT;p0~kXoDDxWM9~RtY~n0MeBQM{wfzW#JbeQ65f$ zMg0x&pal-%JaMg?F8>EHq+4^A)X(xQhw}$H!G%)!-&x*Ztv7wC_mP|qn#fRSfQy8z zQPo$I3s%EPj>-4vp?*Kyxy_!`$1uKLNaG}4M~fqS*U!2R=HCXiuEsd7Uz<}o^GrQR z!c7c|7?l!o4sw-vGx+;(Sqs2ALEw+%-spONOTD_2md!ucRaZQh-<+kC z2?|lQ`@O~2dR?7$ZSg(lfg(>af7LbzwpnNIF68FDsGngmk@J%#{bX_Z!m zAnA+O`%OrR^H$-6;^jS`lfDvsC08(OGA;qPuXYRLIB0u~2~sPv82_g~TND+%p-Iu7 z%{(iwvjqymYEF}>PS*=kf#mr8w0(2v`cQr3@oRR-K@dAC^C`mePzRaO+i#e5 z1&nMMoI3Ud#l7%~a;+~tD2N$t5>z>Uxakt}?SwQpY1{#aWrMeWjbu4M!=Jxy7-SRC$9ZNwk^i7;t#N&rvnHE-`)f(0om6E5_u_v*>vO;@BK zc+hJGHJN3UaeZh&74J_!FHd%QLr;b=u|Ed&ngE}LRU7HK@keV<83BLe4+_( zfux)lpuAvlt_D-ZGYy(AHdKQ}^wXbBNRqu;d*y6f*>^sn&iYcW{E@&i@!pwMi~`wY zCwq1L5n8=OdHo_(?(^jZckq6av2}#!c#9amY)_Wb`Q5$!GnxMlHqnL)fg(j&JKMDigk@lruO6{kv{hEL zpI-B%KQ19sLg0`~V`t`V#@eCV;P#tCdlJc*q`bpV>_Tb@?; z3K6Jye-ImTE)P-Oo6Rxf9H0bm33ywuPp|FRL?qvMo_0YZv@-3?Yinsoqhf}5ndd8r z=MsQ(2T1O|eipp2f=RfGHDyDd^!ztw`F~Xm|K&{IuhQ4>0E681lZ)+a#agf z9f|UG%Zn`3d77jI92rA>l46F&KSTRJr&+7=B>PrkDn5c91uVp1@3jnAUIaGA+v{E1 zczJKi*}6g1Rkx-T_r$3x22s}?#4=wpFOfj#AZyU15U}!M^kq297x8(|=)CyAF)vze z0-*}D0Kzb`U5UP<90F9DIU8!c^vl}%f;-P2|2g&3_dypYOZor_L`1@ahRnWIx=DFu z$?B^pNw6$Sam-hAxU!t@X;pGGV7pxtaom$FF%7OirbOAO&eva?`O;@(eKe#}4go;p z3q=5)Y+;~XKl8MRl5VRK<8CV(m$rM24N*4HlBfFG0QR0r9YtC%FvTk*Uc0taMqpJD z?rYU|tcGqC-;xKqHxlu2@eQy(c;RC6H+8a4H3%8LniW1Bm8;ay6k}l-&Q;Br8EWGZ zm0{8xJ;^Gxbpt((1`HupKb&%~>_%uJ>7z44=Pt zd2JOjGO#A%I@-iI$k?x1iUKOlNi4Bpu+`_&)t=WxTp3eS@F^LtCP>$;go6rYG5!>Q zyHUUzv&8AaVVxu?{m=TwU}SjhYAkMZEH6K<;_PpO*K!70qxrDo<|2yMoYG{o#&baK zr3*y#Qzu6H#ZA-z9;y~5#cn-Ts;{J{eGb2SPeES&jn=| zZ<+XC_o{?6{Rm=0-hA>7;zb;#z~$7I{7m=eM9ozy_vn>5nOE{dL=OYla*c(P8?V?i zv3FVGzjD>bDW`2dTzy4wbW-@Ci3vBl$vuDf!mlX1=t*2XG!E0lX!xC2u8BR|^i$76 zEU)o_qWq!RDV=vTU=#fe(bOFzJSTJp_UVx&Z}_&f{w%Q6G4YqY(QdnvlCb)AdE1pn_9Z*quc(~xeg~YXJ&+)x9u%iA zC0;CfJ?iWHhx&P*R9sc_9tF(E@*ledjXAd(pMdAWz}wXO0MpxF$h8~%QxP=1#vNdA z=WnN|O89;?F6z0Hfd|xdWd7VB9Dd0J3wzKK&ye&wAXKvTMbT4T? zNhkqo0%q=uEX3bYB*qb_;rx!L@-9>rC6ux8LEXvy zxO%X$WNHUJNq)V1;5T(r3peQVY>PEMhGjDV?T2u94q|&CJ)0L%RZ{LmKc#%Xv#8Xx zvbGPmoK>2d>z=lnFrDIK`3yk%HE=Nalx3m|VT=K^IST&qv|ND*c@q(zH$zrIv$$;Z z@?LXeGbAf9m6UuZYvMQiSfUaxj&WKSgT($Aty7YtUy8}{$oJh6XSoKcH@|(ke_jR| zEhc1crUKFi$N@tCsK?*ciqB!pzBZc{JnbTN%J{_KE!`w0?_pZdD_K8Gn@H!YM{np% zk6UF-oTmG;zJ4v9l7nIa)Y_R@>X8#fh!cRdP%O~~*}q0NrU*_;%2p^EPoD%8)DrJ(B}YI_u%>*w$gv93C_&mBOi z1CtWqCEo#%SHQo&aKM*K4*W+m|IO-EJ<))TJHX%H`2X)ajmcg_*8^E0_G+`3JaI|W zXgOS}(c}5<=5w<*Ul={yml`Y@ko4u}Y`iAP@Kuc`DiG`2u@hnq%GA&h7WdI&kM&q9 zj<9|`WC=ReG6HzK$8n{l$aeEjzQ-^nXo_8K4$T3xB;UWQRXOy2}ov7sT1=m)apkmTOqX;d6*zP7Ve>O0GD}>C>&3KjL{;teyzw<$7 zSE$jf^ssK_NL6uhl|#mRdfaWIdVnkT=*xL{#9>?^io3scHKJhAk-4vvqZZS? zGLS8a%$+KHn*o%1EVz-R-u$&cqL*>wa)aH@C~Vad%7t-yCVhUcJ-gKAe zy`H?j7Mp?!H2+MSz^8h7=!T5DmcrA2Xx#mVkf2e=f(kJY*Xqlmyq(OU3J|YwxRO_( znJoD3z$~Pb4PSg4?QK9PWcbsOSoq8lkie*mPT}pVj^d#57MMmN=k(qzoa(i4-zVTXw5+26y6v9thxAy5zg{XHDCtl#P*5|#}GM|{@&yoW|8FU z4)THH&FZ+?MiXVQ#0&|dYimsl3cl749hCko4bomsLE6K$&=1!LO;Jhp7*LE&(u;+~ zbeo28tf8U*r`wZXE8rfWgp7rPzD-gz;IOnhr(NmVZ1;-20r^4m4)8I^w+JEBP@hKb zf?d@i-#dC@B}d-VB*fO@nn}L=K9-H`^?3+VXe$rCg$V9FM!l$aC0J$=vP10cgC#E1 zsYl)MK0bJG{Y<5*K&+m4+`H^C55PZ+>$}%TV($zyGKK@nywSf#*)9WH!$-MGjoC%D^QD00QdM5}vC(UN7BOActKjvlEqD~?6MluS<>wX9aQzfgKFGj9>dA6U2Vq}Q zYiUFdh6xKEc!C|hh+GoRJ6awkBcGP>-7`FM!`|d(2~P^BwB?s}mU2`I44ut_u#6S9 zs-N(1DeD@Wb1t(FyfT-h4VnX;4&aQai4x|AS z^O=K@P(X?v3dD9CX*UmU;IC-VYE< zu3vp>qFmvLdQ059HBei85#eaeHszygGmIs5$XDnX+#|A)aK$bZj8Mrzdnf!&&k4Lt ziirIZC+7PHvhUUFcU&s7Y#O2;Z$N~1um3A?SyPQK%Y~O{QR~BO!1x)Z+b|s$U~ZeVIlqp6E5qR0smuj`_LLv{C&lN zFb3q{4F!D{id*YePLZvjt``Fj{ofjsz+Ktx|8*i6U#*0Vmsx|s)s|X+7>Vp6gZ_-( zaz+3J*fU!&dkNR$KbE+o5GAfOam1aYHF;1e%&i$Cq0N`V2tY3k^I)ZX{YpA7xuJFW zu!}r+Z3cLnjam7B+|8=?>tx=p^bQ$wb#O?7QV~6DHim<>y9}Ovb9(O1Pnf587n;aE3iG zd3WbyB!1>MhhR#yR|%w~m*L85Ak*Edc!y(gYK5of(s^ohd-y|r(^XMI+ApQ(k;x!z zNb%lrk5sk<@&r}V8${h2eyv#_qkesVWu=c#mq^6^&*vAfz0s`$w9%`&J&B&7=3oxC0e;~|8 zGf*0;FqZQ@us|#P7mLsBAJ>$wZ`UChlv?;%ui_P;48q$2J1-BP;dY57?3WLf3-{KTRx#5I@6evi#2FVIsls!u= z>MSo7^u;F(9DZ#WbCMHF4CDW1J=7YV|sc2&<|+qC~H?IU|tf zno}x|mVu^zda>VkE6m6^TbU)#Ue6=%gf_tf6|oNDh+LxxP=>LbOzvLIWhrC|@UF($ z#ujg0Fb!Q`x4z)R+0Nuxq$h--tX<_bCC}!=j$A|}%d!_l&QGT;220x>kzMDVqpZJD zdGL43Y*DK)rmftx%v!BDVJT(mwKVol0!hU6M?oW!bcxzcU7*ECES2b3 zLYp8fzyPJ=zESyC#GhzLMQq2mi%T3A@4Ys;sltzj^!d>L>FtmnfZ4dF&VG3Q@liKH zO6IwH$6S4f$F?Q%1t#{*OUAM2bGEsBRf zhIgCn_sBk;$`6N+|6X3QkkAxd_39bnzQ6L_K+?L@CQ!KV|Acwv7@(kL;u+3Oz7jhI2Gf?1OV3Z1m2!NJVLb} zOaaH+oUKZCtuh^T3Dxxq#J<)vru^y>S7jBeCL1{A7riUeP|hay=T$>nYy9fAPF7_l zmv^rgSKrAeOI_}0l`H;Sl7C|g>D8M%4fdIsHx?C}tNL4cWZOzpel3hy_^_;v2j$BT zA^z7})DxVjl2GlMsI}@YADRGwJq3(&eAo8+x;n6bGYPz=L^);P!an!&&LB@x8X1 zq@JT?tv5s!YXp#AuaI+@KEXv_Oh~{_|GZ2Y*DM)tY))P^qtHZ3QMi9lWcfEmFw`f* zCooLjk=qayweGsY*&V>pPDOpH@C#R zsGAFzwOo19Fg>1F+vK5H|J9rEESEg~pU{(s@iA3KkOa*H?P+0nXKi9@A)@iOb%oA% zf7qvlo)8foWo0jqH19ey^&DXyM;07jfb9fsy@Bcnw2sY20^v?J_cUo-@jm?{C;DQ2 z=oY_?F^$`S_xGX7|9bNOUrX@kzs;xqy`Oq4Zw?;=cFW?8*L;(Yvd2CpNafIQ5)QyLkyDjt@yJ8!|2Hd(RWwe##Bpbhi0z ztcD2c=)aj2Jjyq=Y72E(L^nWw8{l=d5pxT}#NFh%-V`TR_L?$awKuMOIKE)qsKWQtzcw8b$u+Jlj)&7<*FJ}Rx*^OZ zD*aE^Oai|;Wg%Mn$cPYwwdY~3k}PC~nseMWzR#^sO)Ppn=B_h0Uvu^7(O>#dCF84| zG7lglV(Nckqr8tz=Xf0ig&M<8;EuLFc7#a-(Ij$hwcqkXjXwj3B(VNy^$p!V3eZmJ zLpaC=N7v_&m^*r(s2A+JIVLt|iBy_^OkdN!|NTcu_t11Kebg?IFG*?W!!s0pnsheq zoNxf0RL$EG$T(=j>RsNVNu1QG=0hW#B~!sFu8%8(Ja2KOzqD$8b*T=R2;!Fs?igDbf$kAZwdn2X}dvqa1`0;u5BR<{n-lfSJTRfj;(KVx2&y!6gpFtf<-Mc z26l3KV;+kQ`Xn?__jK;bHMZ7%YlmK7@^30lFXRiV_0hIpkr`!}1PaE2oOndr(3Ccu zHut!SSxKn)*V%m?)nmrtaPmWo-Le29#H%>TPtv!KCY;}Ps_`^v#Jyk~>-nh`R)E)O zbTot*1iFH+jaK{1FNGsJOB z0I!4zc?X;*ZxTLT?M3D{HM6=qA@uc!x|LrO>D-?quPFHC?84DV>`-8NABHCu(aS-& z)DDe^_vEbEGq`%$!}gS)tfOy=R{4`az}NC*Q%0&5py%AzE(Wwf!S2*5>O-F&`Fj^( zm%M1xN((C1DBOH$a9;?a;QRD%^u)fo2M6U+P>k zTRB$$;*W*tz)>7O7+Htzv>RKZrOM$%Sax5^3l*W5do5AQQgyH=B5GaJ$EPHwa?+7b zx6b%-TTNoPnLnf0C34ad61}4s6H3s^NSkg2Dh=s*d8^!=eSaKtlZM+OQZ9(%aFX<+ z<&byH?qd$9lmQch56)H{^Jg8v=XGDu%~g^lg`v`JaStZO6?v`YY$lCP@k8XL`#DGg z%*%s@gJ=+Tm2`7ua3fcFxtlyz!%CiETG`64bsyZD#p|`Xw-h~AjjfVFnawDsZ$<&0 zX+{z;ZDhpLMpG{Ga=rz-X;m3PS-1v0rq8oVR2w3P>4uVd63EjDSVk$kp6>+Hw6np% z>Jm2`{eBP1gU(}u8XHYw#b3HRw5=BmNIHXv{X zDty6oRRwAJ@TW~Dgg1H0J2m?9hnm!op6gBk$9gag8i+hkh3{M9?UlnMn&&G$e~~Om z;BTlmv?aV0<&PcVj+f5v*;9<{QxPt}<)o-vlLW@B;!T1NN@nEkVb_czdC~AW(=1)W zDM%5IDi`&_TX1FQ1`=oeXFO4aTiRM4r@cRG$xUfoE*fyj z(HmU%E4I3w;+xh@%!8DTObioWAt86wY#9$Eq;G0SQ{f>%#X6EM%Jmpl?pc8c*34JJV`1uqQk8#x|@u!mb@u5-}sPVGu3 z?_YfqhAI@$sNRN^kiFFKEy5M!i#Pq;)H>Soywjc$D2y=^gw8SX7;Ol*eP%2AsIb^{FEX8Sqopb4{wenrjc!Sh#?9vZi9Y z6To`hJDbdZyH_OoN~^D$e5duJ2wm818A#~2iCz=&JT~K|s6?jfeV;cj17bf6D((Q3 zXdw`Ms9i)l$}_TE<6(G$ivLd7MrhG{%A?gFZLL=!*)v$k>M#Wg)Tx=4TQ3_SZaD8GCLl4#hvXq*A;m?f_!w!tE{gdaOTP zQSD^#(dvY>TV4hFj_=8APM5A;rUG(&hi|8XYmc}?M&C8BytH^tBklkdybzJNFktr{UKik@8uB4XN-|R4 zzb9Gyh*ZI9h6>vHiv}{?drMRodfX?wnw7g`CKJ!!AW(WZrAjzOhc|@#QPtUx|4Ath zJOTBZU4C9-#nR`4mnQWe)5%d`w1IcRi^Jp8yhUt7DhG!?UOdRx8APOeSUXr z7|bMp??Gn8Xd$Ga7utWDRiscg=e|!Va`iY?t+wq*!R$G$f+LHfn;-M!i~=77sEWkv zd|!$xfBt>G zzI;lMs6ye1ynDgtIhbuSgYn=``6>N@^IsF};8+2Y&LVd`CCer+Nr`!&_gE+&!ad>-rrg8n2c4JeAp_) zK(j0xs=dE4sMz5~4p|&gmBLW#m)YEF(M*?PLG>=jz%HrfZPwFr*^+)&JcoBC&&nWO zO4FNd@l4?4ecf4XC3TOeAleXd=zh=OqkVFB?t6l{=e z?ufsKTT%Kn`KR1asg~lUWji7B`5Ik2oo|I>hGtjHDgT+KE^bRrO@eM%ack5}t2#CQ z^4=rhK-yzpv2V{C=c#*6#J>W%T7*(2*!^C+ zbc#ZV2Yb_kI9rg_5tXMb!zL_XU2|Q$#tdaaChDix#^G~A1aT!#$N-R%gG?BZE`S^1 zl2Qoi>hVh}f`6%~&ouVB_6|#O?r&T;{3;RB)A-gxDoz?-_<{MDM4m!sm8A}r@B^U|NT(bSuK*=vxFHJHAgLON^<$rB_x!Gkyz56m_< z_Ij-OO(Ri?$p=i9{CM0Kn6cu3t_D^Z63&f&ZSEUUFxyVh zQDje7c8l0h{pgwX$Q+f>x5|My+CAouH3vO%_H1gAI)aU2B`)EJ=-DqUM^7Uu`bF?j zDkrPcW=Ok;f)z7Gmplx-t`p9XOi3j6unt=f5M(t-Fcl&jEkHdu$j&;0*6@WbJqdo< zI)5-d)-sjX9(R;$nZ5;izg)0op>})!jIQZF#i9DI^P}d&y}IZi35xL}4$cxQkH-S< zkM(hRC2zQ{Qx{j2{)KN#-y?7*pdDJE46?oNEN-OE7QuNDj zE$&H_q>3cr4nT4*A&o(Lzs9!QAB|kchAoelhiPw(at?Y}F>HMU8S&T-)4= zaAvLEz!$%in`&kQp123I{R+35vX`P+A_A|{NRNJD#cAQuH*KZ{WTa^Rr z;x%jxpW8U3t_QK|sB){AZaSuM*-$54G_sYH4l2z|{->7dpJ;LJ9E|NG{z!sumEM;v zq4S1yGlE|J1Z`x$CC7?p3`Kd`d`}khiTi9r`a;zDz0b6a<^<)R6q)b&Ri1Tb7DJy; zn^{=AsCh=}BsPB3ho>!@?5@ZTgjX`a4f{yQ*e|pZO%bPU$7K5k(2lA^d8PYfot2IJ z8_6bNnZXg{j^VO*S+<-pG z`5p7Ix2X)<0v=#Q&lTsLUo_eY6$F(x`HpOgxC7MwZUf=9-%dr0NOL{-)Z6Bb8!BPH zH1CuWs|W4s4<_CPlDW1ANM@Qp>uF5$uw;AMW1Ask^YS-0PD8wsw)jPJE(KsJ*p7qN zG(Zg58TO7n^+Cb6fX5L%vi`nBY5bE7*feqqMjvbd*{?<1e9WyCA}jK^8gK$ zzyAgs2FjQIIe0{BhE#*cGf< z*0Q2aXNY38I}*CJ#k+)#Sf{vkKctF(EQz0keBDbkmbZHm#67V-?*&qGIXvC*;=_Ef zlt=1~p;Pzng?3K1v69bVt!F>FN%cCWh6wjQ{hqElX?F`n#?AIG^B$S*)MGKJPdL9et}@!poI661 zt-w%sIICo>T?9$fv--HX^FwbZ_f*4Tg&Kp-Zd1+p#P9DcJv6bO+{9Omyd^L-4CGI5 z5Y3F|5*f&H+B5S|9o;4XTB?uMNLwzCoQ)LvBP+tTqN>Y>v$Yl;T>C2$EeZ>??lo+h zvTtif*cHGQSPnhR50f`^I-3dKrux*csFV*ru5S&GOsFH>094l82Pd=zL_#7*zODKc=1F`L(@mACE;}j$e$s4 zlhJIL{0<<)&58b*t(O_HTT?eNPf{H;&5k!!jTUPR;+Z(p6xW~S&}^MqpS60lK;`(( zE&hOrz_(HKeNyr=O{_KngGksR+WcC_Y0gjiRN8{Q!PJrpG-;~76_{xnO(b|Y_39hj z`Xh~|@Ml&eRM-8IV@{TJhH+?PMB8(O@@7tiCk2M7!0(@H?3Ct{ta(!;kyh?XBkTLn z>ftRy)%?bB#hn<9bGS5oHw zlnwjd9kgugAJkg!ZoXu%37JyEFQ^MNBq9EyrTI62lK8a;@Cx=u+pYZ*m0q&SIzY z0VDa|^0JAWQN#s1U|?V^WyDcAeqE810rPBsPO3Y59&?}I_9xZzALtL%X#_sc_7&NU zi-X1$1Q16B4;sMqF=b{B3Ow=rv)lS5^y8;N~hK z=SL;D^O0lclll4^uH}x~^0Ll!uxPWnl<}dU5Z6gof#%V$y}(enA(0M_ zJ)C5Psb16P>8xkvQZ`Ly25u;!Mv!BZR_hU^|s) z^?XZ*j7)PL=!{9BrG0~gjjFyN5pLJ#To3W2*sTy5%SHe7;HXXl$(zOsXD=g3h;kqF z{nw7!Pm?uzbx-y18=wQvaaeeKYgv9Sv-lwF`=>3P*g3ArW28R#Zh%}FFdPic`x`e6 zx&k|{^5IP?&5xwC9-0_CPCMLwKpVvy0tKp4!oi$Et+=-AgvlDpjc}2nf=p3DS$w142MrfItwX zHvs`f0qN2^p#+fLq&EpQROtx_gcg72oAsNy_bapRcfYx_)~q%22a83*A?NJ#a^Ah4 z{XEYmS|l@Qb^fTuBUajT=Zk#)=lC5XKy=FXs|Fg+Hss6fFbaDNMmN`jd5GrcgR)%3 zM}D}ttDW5E>Hqw;22icwtXiojvYWCju<8*~B`^K?>Pibu)aZ!fA5iYK`}PqPKeh8E zqcS0e&}>a8<#PZrZ0U z&W7qzx^N4DLd0D@Dl~KPZF8?`Xq@8K*e}Br4#&m3Ts=$MVBwTF>MIk5N47E`u@bn~ zR5V+Lu6xWMz@Ce0Gjf0x)d`Mf@1p>AV7+x)KPMpv^s5H;?6f5P^ymu1DK`gK}Q$ z^(jHG!fsHSYJ1V_g^=!9JzbO>bsNX7PmAPQ$o=vj%$WFg=)QiBWGJZ=DQ}Dm{wz(>3_p9$%-|@0jYK{ggb}C44+ir! z;WQo4Wn%37QBho{M18eh*lF@E++4?(l0w-5vfU$WWQAa`g1?i#XdI&FB+SX*pBdhRh-R z8>Tt$n|gLzl&hkZNO!7QD7+Ayj4(2%BA4l8T=V153(dH^NxNkIFzX@uZ+2o9YoI2= zX6D6KfYE>ex+MfYWnv@WJwHq=f7Zm>MApTe*}9uA;#`7_DaRUXd|sK}3hL}f39CHC zsjmd7oEVG;v%468eXY4CY6C^@|%CCe|w*bf{z4*+zW;v|!pesBSu|{Q*6lsH0%Ne8k_>P2?x; z#MP*Y9}Gd4J#~a7&3%UA8H;yK#?4V zJJCSCM}cx*i~we_;qE)5P{<0Ot)myISN3|Ov@$f$-X*h6MCoEf1Ea$R=liVa zQCgs!JC$bSt?U3eN>gV}^th@0QRxN`adJeWPEI%5SqRAh9lpXfVDT;1?>k-)nLeS8 z4UZ^VP;r6ehtKFot80744k*2P$Cf5K>TY?=V4;ay#T;1IPKnhXutR;%XS5O8&1ZYZ z8XR(_mhY3a+AE{ybeWfLc`Ds1Prwx5N0u2YmiG*G5!2#g<635x|@Tqx0Sh3m8!&jvPX}*%BV~oZ^gN>Rj<9fYgS(wjWb79!R`3o#j}5X&pYsaZvg$ilF#qjBQHJN1O}k4BPKVifHLIZE+n_{*T(nUysxZ}beiLZ!4>I&(0zWt4@Fr6hBbkiPm~1jlZ9OO zYT9g9q=BY#Mm>Dj6#U7d1e#?uD$V9_blLOHj7-f3e2vlo{UMvMh&Xm8e-Y+`^C~E- zvBDj6rj~dSndsM|@&tLqjeX)(`5KL#=WlGKD5O-$cIn-m!&Os}4X)_$E7I!9s^&@W z+HSQ!TcvTIe_cE@kyG^xz*K=ng?payOa;_vsEDPnZNiuLFR+i z#)ZRhk1mX%kX4hoirOpMqfVXt4zbpLAzbJkAMLPE8_@z8mx#fz${*zp!{hJ10oz;^ z=Jb28Fs86O$akB$>~{jeBHK=p)bwO9Y64iqw_?0VoEi2yspR`vQj!D9yO|v!Hl>`T zI3Vkmug_fVG{=9gnET$&`&p++`<=3y5+CWU_{_SN|5WMyuOcMJ=7$x34SiVY#kKO7 zLHRd2hHCfp%qI_$!03tE7*8qu6ASsRNRh9%{S)5~Yx+DV@45-v5iGw3iP7_NwF~+R zmFrRv8LQaiZmFH}PPXUDyhHtv;i%j$_??fzbn`h#u#^*k#dR=o8*d>+EVfoISKfo* zDM{MlvF4n&qaqePVw#g*buhI4< z%Ia7(TptS;J0Am~&79co{1cfz?pF;fDzV&vT4l|1Cefg`*uqj(cutRfHcmDrT-7d= zQf}FanB^;(x3Mmua@R4`o7hZD>ex6G%wv?L>zYs-{@mp>==t4(a!5km%6ds{3{2fD!Gt z4fe1Q+vb|^9x6}MOmQqL&P3hfH1PgZ`JS7fjinUL26#1+Vj$j+j_YPa=e_5AkLN-1 zwvf*Ri>2laudwm2YW&iJZfsTYt_e853nQonKqa88g)l+m_d7d` z&nIbJ7#Y1R`*}OMjb$W%u=4(-*2=V_7~^)h+OcN^wa>H?UfEgx#2Qrsef8 zc+Q)T$z`i8yD0{OknZ58g0Om~y9l!PD&*{6zwG%fGsTO}bu-~P-4vF(StBCFd~^i5 zXm$+Ewew5sW%M0Z84vjeYE$!&v=p(7k{LgRe-lT_JLEuZp6J*ZPJXSQ$a5aQbA;3y zr{*#3SZlt=L-1HY-XvpNv3BXLcN-(v*KivJ#o+U^waYAA!Co!)G(UK}Ns4tD{A%ih zmEs!6X+hEoJUGR!nbzAFy{K9e?-meq5>Q-bbv`TkyAAlViFOcw(6sMNq}8(~u1FG3@!QJTih8#f9sQ6}wG zd;*A8SdbK7w;7F1@OLIe_r-4`8s4$A+X(sHf$-cN$kAFZmZZKFN}p^_2YZ59lc}0- zt$?icf78xa8%!1Vqj|4M02IugD|Op{-$PR#ddzd+#Yz@;2ca@8hc`eEi9=5hDm6*NChJHNToY)iBU7HCqY zL2P%3f>lV-n+ALE=3jk%B%*Kw|1WYn-0r$SM%xqDI@AsICz74P5+Q$@t{jf~l zYUe)pesJ_$8u11RSt-UQAQZpq@zhi1zk2gsB<4%UGGz8=UJK9luA?_2-}QHd zpH+h%Srzu$fR@0r4^!HrUpWB0BW6xl*^kyQKQh?$oF3iKawCQkm3x{siT9Qf8ezjr z@--jTvcA&aqAGAv28i}3z2F)t&0B$9UsMu9Uy}+DXnrLRl0=)tcvHQ}6vVV97omPa z<1dV-0fo~?C+L`6)09B-lOtuus93{SV#QkbM4Ibk&*lN1MuNz1IIR`Ql-OM`dshDlE_17MM@<=wX&)@^@BS1Ui_&P}Fcyp_Pkq zkDLiq<}vTRYGep|UhPi&cfy9)@?FmGw%UkLfc$V{t_xDJ6=2t!J?Gk#k4%fH(F->{ zm6VF5m*5eJw7=yZ_okf)MAG^YCO8u;0A*60_&sFKCQkixzC`A0^H-~63vDOgUm)93 z?#54J@YbqO&tyxn#b>5S&)^Cho@Tg&)Q#%yHz-~(zwlrB|0D*R1FSy z<2lqJ&$Cu%Ixnmg$Yx=NcDE$wwZW|SAW|c=#7UgOY+ccL_mpK{yp3gTL374(kYZ2r z>N(i3YM;s$9(`?#d*x0P>Iy6VWcRWwl4VN!4!1VQLsyWn>+<=97%rmQ{4|DnJ0K`N zqf8*`cD$-M&l733Acgxe>b2JhQ9rCy$ita=t9pZ+01_!Qw>R?|mMO{`LiMY&lmF}q zt9vfrK5WM!%8G2RyLJ=W>+ncdgQGI#eMa6|i^c_Wp};cdPfh|VqJHZ!Y(c!fX|vV* z`~z~hQTxGPwDRr*8!gZ@+EFunn}R9)K0;%9X*z+lD1tkb-g7;#uf%l94PeQd*_>(g zKhE$Ue|+@l99DB|P=%3)L(y?EGtcW+TAbHH<96R z{SWAs2qOEbpngwZUPko|jx#i8xPlmvN_T&h{>)kZi-Rql&&`G8*i0TXRm^E?X4 z?Ut_=_c-Z}hIix*V=?mJ8C4K$rwm6U?|-4?V%!w850iy}ZRarm z-PNsOxafOT#s<1CAZc)w0drUtk6;WYpC*p@Z4pG)eu`(BsAGS)0Y)8a?me63OX8vR zzem8@H+Cag6tQu&Xt9M7BphgEgKGEOyL^VViA9<@i)SqFFOlOz+{i6gL5Q&s0q4Gth7Jh^6Twc@2 z1Ffqsc;22x^6DvRHg>f^6(nX4wZI;H{EWHuWvxYwca;(Kz@CWY0D_iwO^c4KPV34F zxFLlrBeNAo^|(9eGTN0tAl>ntQF->Vt$>Vfq{MK6_Qw_5L0bMT{aRfsCGy#2TGx!^ zjzwO;rO0RH%6eLqR?tlli#Vz2Dxa~;v%T-skFQL z{CmNoJBz_*&wOzjsP33zy~|uC_)j_(YCl`tR-u+@fNs8wjlKJzpDWOTp5TZ$w#{jY z?NSGmU;nwx6le1!Ssl|d627}UzQ3N1x)@3N(cDx^y7r{R{vP#_ggxio!*)0r*NkR? zIV}5o59$c9KU;Sf-RBBBHmj|V)>t>uv}=fBU-cGZ@o3=l%_J>H0Xq)uV7nrn7}5tI z*ICAqbuDsDA_;Q0SPSZke~jiiYR6eUjpjkjdDdCFTUADIalV&f$_3Pg4s#b&EH>?a z8#}?bnx?)^+fF%Rb&gwxO2;g^5>u;esFz4W>uer=(hxtf&y&H~R(rSz}BsNkbCTsPHfA}p?!2F#`UCikf*prPb zo3V>gD^A#3X(!mO=}NIofvZ`_-5(s&DmBi}BDe=%Qh8k{!hixR%nqYAr=F}_Gmg~p zaTP!Lti&T>`BZyPLaT96=>-Ar9y1}xwk19qglks4O1pgShRN#on1|Z_zzrdJ&>4zq z4gO_|&f=wR)c519y4374=)(cX_`NPc`S{LqL32Lzt^SPOJGbLK1x3zz*Mn?T(dyQ0 z=kwR?mN>v(e zQ6*w@Z+HfC0w7&)M*v|a;kI#joLD(glOU@YpzlPPS2iJuHiZ^Xr$ zVmHX$6`vX?aY|SO54Q4PMgX{${!)IdPL%(mQ$cj>)$bs6<4IPHicUZ&MS;bb^vK}(#&-Air6kdhBzwG|Wny{ha716S$R1x~jN|t~(auDH zk1B$Mwpkx9*69g0mndOmCAdIz{>Z!Ih-%}w^0G4bT?hXs^@oxl*Szhml3rr;89BvN zzAXD^rd>RO7C^2;V{|9iN6}N_c(yql2XS3Ps%h6~OxMw;bOwjGE=-j^>2*`soQmui zu)v3{xd4MVy}MYq;dJlLvh9HL?Q`AA^p>Hp;rD6@4t5(w@k~d$7iMHie?ZNNEPk^3 zk5u$xdKB*9{8ud4N)piv!8Y|IxAw;G#pPTb=BCuMQ+Qt~N_lvoNaY#CgjZ z&M1`-Ib+Q?A+NHc{YdiZczN9At3;dIyopOXb^4J4a#Oj91bwt>?Z!_l#y{v2XF=!M zS%-_ToShu}<8iT-v*7g91b>LXTt|m6qBeOrwiMF%e)i3J#@8s)MVaL@#i%w1H?J;h zVhl&5bd2zwOIb9V6{~u<*_dNXJ#s=Umpk|84w+2mFDo;913@84o2O$+95l-bAx-fy ztKt;Uq?O^`r;Rm}fH**zb8l|J(JbA9d5`C%mv{7jyDcd0+qIAzx|&7HHgAIO;e2v0 z<=uo19)C8$Al@CjQM67@1Z7&3l(amwhY8)d7gm$ziLUMsd987N^S@r)|Bnm<{I^%2kAs@$q;Mj6U3A>W3pc0&eepT zC+it7;%Jtg-Xf_p7_T<<+7oc=|7&SrEzAZJztd$c1*ZpdJj61+tz+@VdC!H7p(obk zp*cxr)Rj$jAHyl+zZ9_$Ipu?(2?=<4pfrSCUxCo#G;85B?dU79O(SH()FsuoU#W?u zG*Stqfib{Tfcy@Ly?B9}ovyWxt<@DQSexC`a_C&gd2fVIRxJKO^SE^2gW8KZPp9m{ zPekAB68*%|Szec_JtlH`YdxgIaqmL;(zzLDPzvSfVE5|eV6L0lFaO#w4KrrjtzQu& zFTTMavtcW9xNvR=X>*~X#JQD=`p5;Dm^`#h4=N}ua}Kc6E{r@K9H?DeP)RDaNpHG4fw!dw;x?{pJF& zIk*EeB=wVZCTp{5lo2wtdD{1mw6$)dY?EZ4Rm-4nhxPX{o7mLebXkuyF*sS)LT=zMi>*`a^w7h3AG>3|sL>yAb7PBO@ zqZ7R??2|q)Foojt3Tt?5TXw69y7g7DL8p;5)m7@AJWmi>`vaC}MnK7m-N1ZOJmZ8y zVY}b!$P;PB^vFY>66mI-ouuQ|OD@?En8}AC<_0a(g_$Ir#%B3ug&LhI;9L5a8=4>A znJ5Y+4r>c4G&^)TLC9WD9*rJ!quJUL&%SLjFEM$ehz8;6RUu58?+ft-j}?CEGq9fD zc{`8IsY{Qx$b|1vpS_j}H0Pqcx-k0kK&PT^2{V39(LJ3~Xo`b(HKn$FQ~jnPrEPKj z!idUFipH{6W|NfdPD5I8o$8?cA)CtRLC2~@pMVL;JKQrqMaREkjM#k zTbYZg6!~U<`O2~sM(lyp*}D*qItW%)bF%f8Ic`P^sJKnX%gb^b5uxK#VL#sV5j=&| z=3et?KiTbc7otxb_zBoZaZJ}<-Kh-{HlMD`P}BaoI{M0O)wK`bD;T|%XU7%xOcpu= z|5O(nRauXIw!;akof~-@px(KoqxRA*zu(D|VKM)jRZL^qrrD{L>Y+#pZ}ih>87I#< zM64|?@Witj<8xe4l?`p#gQ=4@eRM7Q{d288b@6=V&icFWr45IR^oO4;-9X`#q(p@I zNE{Z>uem1hg_nDaUU$S#V{f7oD$V-o)y!`5B0lkaW7GQ(pFP~+7n+lBDdqUaNy2=G zRi+KSpsNiioE|9})flC#wl*?OABoL4+}ZeYccJCpkw;`oD`1@Vu3%sM z1~k-laIi&G1bv}wWm&>vEgX6`YV$z@*?KB1;2D>8(G<~TQ!_LZml~wf6)ci;(S?=C zM7ig?74{Ozs10BtxB1zJko_XyP1v%;HIdh;yUqldkdg<7AeTq@2t8)zPVn$}%z&^|>`)A+h6!T! zrqdu^^hG|<(=v$DE74bFpQawiPtQyG-*fPLHNPa;I5K3_{cjT&{`=&G|NlF~n^m2F z&CVt*EAvtak5<)+zD7II3C}oUCmxp%j4qkCIX-MVC(|dE1mppRrhh=0j5eoxKyaEA z(Jro>M;(LstF}KNCQBb%mrQ;u@vd{mShpW>#blxU6mK{`L@(SM_R}XWfOkwzD{h9R zU0uNOVoi#KxPgnV^miC5b@!-S7QIQOl&^_>73$V~=3s(S5e4hZdc|U&@k_q6`wbASfv|_TNyc6hVAB!i7_9O%` z%zO5S%(3L!625r*_UGHhhBg$FcIJ^PCSy1K`E(2Vil@sMm5RtWo2&a#gX+DN&GJIu z9Kw$-D<^khi46G*p3;A*f=eufE^^*n{HeLpYyo^1^D2*-RBMGQi0A-%Ik?-EUs zgSV?IEoH9BtSBk;e_LyaW{ToXq}gywEV+Aq4*ZJBFw8DNNzVm0TPGep;c6|`Fd;2! zJJai1wgT9T*FKCrnb8kxU=2{N?ml4-0bGod9?*v;+X<&SeV}NgbH>w7mn+b@nj5uI zLw?8c^pKyIEoRFg#kh{VU2!S1_P14U_}0hO3qF^qX3w6drYil<3Y`B})2V+gUHadU zKMMcVzlDjNrC+!B86$v#Rips^kLDrrp?H+`;GO00eODHHV6u*i($WQ*Y*NKkv3V;l~C02{inkF?Syvybr3f?$_6`bMy3pc!}0ZSkCPq zIzro_2y&Te9v&|8)iRJF;GkZ{fzl{HZocxFJteIpLYO=bkx95MIKzHMbTr)}fL6Z@ zF9%TFr9U7?^A*>6oWUOucS+m%DX{IPhCI^xFE(8Mi|O(|`}HrIGy7Q!VavmoV>HBk z7L4bf#;+I3=l5M-|g5zUKV34HB#n!=0f4CUlzWSei0^v}K|U^7OnXCfAh~%yb@y zNaiv^G^xktmKMmO?4vC282b>tT|3w7HJb4GB(+3>>X%&DYGs>{8eF0s^zrl}pD{^~ zr4_~clgT|kaUynre&xD_}U`wbuBkb%o zqVrb>-n-}-Z*{!a<8@?`eR&txFCK#w&eJRfo4hq|Xlj{ow;%s~5micbf=D*kz`Kw0 zs6ko2`}P^L2$X>WG8hh})Akrvtz^+*J#{(YMUMLMOKHr6F1C9if6`B)UjYjnH-EC| zu1{ax(RVSBJkT0!!%JR1#yZ7I9T06TVdB83AD%l=-(1pU{OIQ7Q<)g=<+hW2VskCq z{86A%l@h)&d*tyjtrsAj<+dwQ!>pv59$=;roo;enJe|*Gf56B2@e`WYta$snS@w+f zQL^gmVI=LJzAN~Ov|f)DdSsd#x4yZX#d*gNPhfSM&<^YNrRcnt}<`d zYt?my-_PYH`(%zVtfCR0ARdrc=63E0@=5e}Bs#ud zmQ+O_cJhLPBvm~WZ@@f#R@=xIEnQgS%J79w0n=#)kMk_Io|$XVaQ3I8&hb*!B1y0<0-_CW;(XK8Zn#_~0%TuBa3B79bn02ehi2@7hj}zX3p`TlOE& z2r2wv$0QWq+1N@C`~;^49P7N{mo5P1K(-_6>|llSk}}~BD9$)@4)E1cFu@Z8UC%G@ zStO8Rs0d}@0L8^Z0_{@rIpoIuEdhx9-pp6(Cm)NWf#c)jg!&Ix!{ z{#{HS)yv{x6_x(QBtNkwXvIGu zUxmD!R-lynyLbVrv%kKaIXn2~01(YTpbLHc5IXCe#R$0RaQtqNrYa2a55lGRH`i0& z11thyb9@81pk-fu?o|9OQ3PcCe?V71&y%9hAb%IHzh5|RaeqKr!azI$8zz+t*>LzT z2VmKf0;g03Sd1Pn{cXtp!FBz=b?|@RIw)S+Wy)Rctm*)sd0BH)3!I;<`0Z+jmGWg4aM#-->? zmY3DMuIhW)r%s|Y;#FuvB+&Z!OEN>}4R%ienpIo%~ z?r9F}e!c7GKB+wwt7Nle>kHMmsM`AaX4iZ6=8L!Y2S0l}|FkfR(q#TpPn_!<%rOCz zF02brb7F}5toNutoF+_SNO(y2%3PB@p_z3oC*%P=PJ8*+Z;L%{n4E2s+evIDXJb9- zp?2Zd4}4Xe^Vj?<6}NJY)1r}dUvaDII^x#jWp&ylYi4%QXvuYrHlNXBHTF*$Jda#o zM}rQnyiQy&?#(N3ax0zOtwHo2nbxG#FK^X4GLDO)JqNJLHJPm6eiS`6!>=;G{yyJq zZzIGd46sIo{hkX;&~am7>LbbNE3&CUd&pO^gjmNkR>h|8{`yL(wTc#h>yCWUD)hP2 z+&hz-GU=-2E62-3CR?pQ7KUK`HFv@grIid|+as9=%cNUoa#jZ^jJc2Mf)Pta1-~h<*z!#f*1N6LAfcgjL)~t$3Uuv<=CW6}+uv00 z|6`8gzk3~4hZ(^Gd+5sP)fylrRW3F}oI&XYJ=UISngfCYOLs|CcM|k_iRJ79Zd_FX32x-EtO- z%_8pIh+pAn@fyt&IiJJJeioZI0OU&f^}=MxXB&R=4`}W4rSkdK()oj(BiWCuK^f|M zn|b_rfpN+Oy}DJALh+8Z`{|Q+G4IBWU1)Ry2OU#}NARpXE1Xy4z^Q}E+Hea2y}O%O z^=<&xR?7#MZx`Sf*%YPecCqT=i@6V;5NAstQ3Mw50?7wYebpb(i=#iFT-sLGa7kD% z&6k&3#$Ce(5TkYe%!FL0!#LJtA6mDpr_i*nbG^6T+GTc@lcK*{Bz_W#PEEX19lUOk zJXu5il~R)nq%)oEz3APILhpWelRs)N z_gW2qQ{v(qOf&U6gYQy#k!@yqT1-kKQ!444A>3Ib;fGMT2Fg2w5D+K}_TA@+!zC13 z!L%Ye0y1XaTxtg{e`eQ$?3LX-?6g1C0!$Qy&C{0T?+y6J77fySl+y8>JD-dM_T}xZ)^wiPTfXe#UsR*I$gg)W5MZeYd`*gUYgaB@K%OJH+M(O=I^& zOiA~7R+vv4o$Eu6BEDWhqnOB!GKDm9CySXm+ZbwW3^Q`RsJta>2DeXPm zPMyX|L~{$Gu3=I@X4+FnsKio>$N#BkXs{zqxA3x8z04zmiug9P(dDxy!177DuKOfo z^#$spy%@FS=HB$qux#L`I{(+1*fQD(#J!%X8)0ZA<&Yl>){U5@&WG)|mnGmV67k*N z2UNJyd6)V$)KeW_V;!Nx`2nLEsh^EWBd|}eKG3?q_#8q!Sr_BF$}V=)lb#l4`{}dU z#P16$-4#xeFjFz!hIoF8(WL1ba!R$a%$!!`zZf7yYv$k(qHx#Mv7Bw=nKa`jSF;Rj zu)Xm!=^HIRDFa1^EC%u+7kWv=Y1Sne&JG!rdd~=(>qE{r$Kuy<<`hX$-J2)rM#a6)fzQOoq)j^1NyEnta}LM)d^uATawn=CA6c8@WsCF?jJqywh=07eRC%!g3MWp4#rKC?vD z??Hn2)5mL+tgd&2nEg=qqRoU1PC*mUtrft4)FZS7yZhqVrMCNYoIfqNZ4T~CQyMB9 zq{f$GzRzoNvr8LaDZKxkKSUue=}EY3lA2N6V@JpPAj-V-?--_pTB;~K)%c|$I!;yE zir6q_xDNTmp0ZKsbvfZ3BI@TMT%ja4kcbt=m{ltJ;31UkJE=b)s*3PS)fH`R9Y*}{ zqKb5D3{j-Q>?i80$uNgFGrc8eOyJB%XiW$H4kkWgRq@7-0?FI1lcwnkNXf7B_{6U* z_^jMIR9{+>Xib!&KbZ?c@K`f4+N zpMNs9sW$0cdyfn(Ot0^cWr`R%baYOc3FzgT<3AAnuFzV3gEN7Hr~wlZ12eeM#y%W{ zmK!Xga9mj=wU84>4gQJ~h(>JtzV zo$P4M0xvg`x5FPh-NR;FYLag$U1M^e!nV;|(&64<=DsW3#Z0wkKvo{fS!164-0VE5 zj$$*YzF8#FJ{vRSMPEvWO?C-6R0Rb+T2_qBq{Af!`Mk`vUg#~FQ{zw5nW`NulfXRD zCCVZDwwjnb!q$;8!ZN}zXOaLGFS^tP$YWUys^}Jr&UAr@-#a*p>AIV9mezx>UtHsj z@O-b9L;J&$-&7UhOUlvt*IEc6CdsP#ohuZklU$S;CZzfZ?0urqxI!90gvCmO%;5Dya8Y&0YabF#QicjMP)~>mi zFwEYL4S>tfE#Y3v-B0!XY#2xWG$L37nlZEfQ~TOuP|+{f@gn2Ssm|u-aiQ_IQ@O1_ zl+zoTnA|g)8}#(N-ASZjpQK62Ku?~e_u{&G!M03OYnEG(gS?-ypMl8e2%WnoO^DDy zU?_=nSVn~##aYT;khYY8DtFj_oA~ma-OI8XvzXvt>|z+>N~ZB+;>Y**(GR~6q<`z~ z|JH3)rKNReK)0U>K+6;V+Yt;Z$}_KE+WDQ|wh-602W;E<^p)gHij{Fy};KTa<7 zx=q@b(UF}x9iAQf;6lf&>iD88Ao=W=Zvx;Fr;aQfZ^WhWv;rA!7O9HPVquFT?!@w5 z`w_YKyKhxflIIFTJQVAhnQ~+m2;ap5ZKt+)e5&HPgw_>t*V8Pq!3Mp1-7oKA!ZZw% zpBZQtuI<95Jj7`?%_?YLU`#I^v}y~5wIsfLF|P?I*gby4bYVP!4_hDxh9d!4URZ#5 zyIh|b>@lng9N-qk*eLGc{J!dJCRE*E&)N_u>p1ahqAGY`F0D_+(ZpM?SHV1r9pfd> z8ya0&pW-Kns(&!tqA>sPt6Nia+-k&evQGFBM~}te#W#^xXqKdvjmNi~C1X>03HrZD z+0cNk`RW48cnoW%+!BAdNq^XqAO_Lq74h8XTAeqM#olC0c!sIZm(DwFvd;P@b!srz zF(GB&dAnOY^=r*_Uv>f>?zRXX#V*vE`AK0e{>VI{Q+@B=!k`_+RBiY&Ni6rLYkfRI zfP1{HfyQsn&d|dZ!&CE=x?|O!6ex)4u7eg*%@s31t#%&) zxvQYdOqVJo?3&IVUxmK9xxsR2=zD_7i0jFjNnXkuD-tP3OUP6TBvKPVxdb;t9@Uq~ z-EugzJ^k=gJ=2Y9J5N&oxxkHL&1ma}!NcN(E|yc_<}gYP*!$oOBf^=+9O6MX%rGw^t@C5Yzlq zIZe~7XqW**wUT2>8NOph%5!b=<>SV=V2L~rH9%fLVJ3}9}H)NN5nImimQ-od2gH-o6n*3z++=u9Tz9$iU9yEsHUq~>AAVGm{3@Z=wd#WG>wOcaH zLHTpmR%{f~izj4*b3yO-6ksp<8y${P7~Oe|uO|?cSZmhF%&_VyT5<4L`P*9f9N{~! zvNl6>=l!n-52Y>!!zE)k$&@%MRQ-pmiquP><#nePbSRUa~laH%{D-J{<1>AcsYId~Iv z93b574X4G0I&s-ww9tsZak;5yss`1*aSN=9;{^kX>ryp=T+ zqM3=4SR4eC4YT+raw}QzR1HJFQat>NC;ZvO2|y@FbX|d5C8THJ-&_x3vUwQX&3Pya z)A<9cIs#ziQLc)Ih>I!Ci@-zmpX+Uhw|@jV{{d}1Q;5ll79LZ${~tAA{%7z1Gc9XQ zJn0-Ta@Gt}f^P>(gnZf=ht)XIi4|CS31AQm^e>Xzua{?MTWEU_g@On35{u>C@Ai4# z&TM3spH|Pv`H#C=d;q~SVm1l+KN{YOW z*83^Vw#K#{Z~qeV?U!2O4 zcueyFLMT)@s_~6yMt%pZ>+bE=)ST!q#-b~B%qT$XzvCXoH&JD3dAsw0)@hS=3F^uM zQsFfMbTNvzTNxrcQPOF15b41WHHr4V@eBx1zv5>u`Q5j8s{OIF4aQF%wQkPJK*k2C!o<;avgX*$52L`ub|18ku66?Lj?6RZx@=_l%8ap->@^1`V_QFUByk*m zC?xwWL5Sq<7KU0cvF8q)>)TBM<;~~Yb|Q#R3xjRyGh@H!CREyMMOBQFdpIbY14X^_ zPNp#mG15I>+h)I#N2fCQG8Ej`6c*~372d!cn z*vpYWIeF~KkLkn|=J^tVmOvc_P84Htv7jhJ>G6)wsa(Ku%WUCE(AGnDh)H1CL$j-G ze1@n!?9|B%=!hCO6~-!}1*-B%r)E<5D5n5&((}t(kJrNSCCclPX_}-JVUSef&^X z+V0O;#I04iKOp~BWZ|=9tK@c*gs<8wtEFw>V#A1&4di^gsr44;#$E!Mj@-FbWYq==^D>E~ff`AJ5F^b%d4Ti7FtGmS+a_$5w^T z!>dVtbQVkpaB@HK81`m}M8_xvE1@+jm@2L27}EW)WGN zQW)b+M4b4n47V3vEys90A#j(KBmi)DhE3ZlaoUwVS7CU2aM0z5I$5}>17G0668_rZ z-WpH>da`H#gU$x=pba^I$^HT1#o<3`M}QH>vnFG~A{a-&Nm0~$FQDU*TE7DwiMI#?%w6jW)=gC64#Q4A8i%K#Vk{pbjXalrcR%Pin{Hys%oIaEQAuNDRIzF4hk2z z9exr3r*Gk0|A1iD08)&tghn^q(H%{Kje{#>_ME(a@1BabZ;o{u#fv3~SLTwcz4k+b zyEUZ;rhokw$2kK2(QUu)px{gWa9r`sD4r50+i86I9-L0j_g0r^=+pL0{gP ztr2l|g#T9W=0j9BYG_m<23VcRi_;O?GbbP_hl53Th3?UuQ<6sIr zWTd@LOpYzAVPm^lm{OQHP=H6m4+?;G@8}qeCl?oh-k2!0t4o=&lSl=$7Y`Js&~QL! zS*LhKtibvQw8WGJw7+-Zs4V>3EDHER4Df`sd8AI9_HtXO)?gf|uc`XKca#XX?@W2cG|rOe0+t?P69qidmpgzeGM;3`~&)W z&WU3KZkt}NV8s_;hx?lg<@~#|Dpx!^7H`Ir{2z3*u-p^ORYF8|rkvoKO|6zwx@KV# znD_OyeJ5WL-6?$u=uOb_O^n`u5SrZo5gE?yHTW-u2>gvdpnoo^|C2)(-H?*Gvr9qs zOPW=oM|`bg?A0Ql9`w)O@bACe(QWm@_g?)4hIxRQ!Q+5&Ppd|Mx9}7i0ItMj>j91% zU#^aS`wPAd0kRW?*qr}&@c$J7`+Lal+25^^ZMY-VyG1^nDw>nV3|D^e6ghPq6ufE* zmP$*^zGk{Y1pAf8-Z%dOqb{9Ln*!5$ASjh`YPB06(J?x3_{xFBwrDa#U3Y-i?V=3P zWHn+3WU(`f^8W}O`e$BKOdt81q34``g9d`G@P8+-tXuz^A?Gc||87Rpzu{B=%o+Tj z^gI7jG_tX|-F~es6PI%2tUrR8D*wOszB;O{x6cz=T8b5lJG8jFTMI=~pin$WDNYE1 z770#EaVuV+K#LTI0tqgqxVr@p?g<+7x0%`5bKaeuJ-hqPJLk;VGymN@xhMDL$<4jr z@AI)KPrHdT(kB|&hqa3U-f+cFL&uaQ6J)5_>w!i)2GgkGk$*j(qnOOqmbzGfJL{mz z^4jv%TgA!SG}XrN!RUjSODR!4JBt)5Ls3PGapp2%T$PoP$ch`)LQEXN8Ro{=A%FLv zaCWbc(HW8pgfgWgI7}?Yoj5}?I1C5b--`ZX4!2Z5>Jot3h?{i_omq(eWq!7VRk{5F z$*P#QWaSDI4|qf}3Kp%qnz9p0;Zl2pY0v3#)?1(YzpO)%w5CS?TmofuS9+f_iD^tU zS1C*`0sEK5V~V1xde~~3aPF<8@)pK7-sX$P6RQ;WtSK<)p#lpFhpZV>y}`stlOrzS z7vlOa_v13hpU*u_8(^>GYl0x_KAz=}SwW3E1L^!Ikh;WHn%-bgiChoJhw+yt-l%*; z*_fRzaW$U5I4FfR!JI21kQ{T=<5USvGK=m&1VwRJa0&>i)wE{#N#|C#0jJ5A#2;<^ zbcZE8B;#F?8Gep+y(b79wWLII#Y!9zn>!=y(@SS}`+k}rv;(sPzccqU)P6yI_iVb90joXB51_`xW z1ihZ{H=C$U0~LW5m1VI!n$;!O+h4&8DIzeNUq1egA}ZLbwLM3sK^pLT&^g4_O{`A<@Wk z7HsZi-u`^YzU)N<}?dW;+}| z$#Qh&Z&|9iOrIj?OvkyGZ%XBS*`fX9s>z{1tJQLzYkRa{$RIvsxcQhD&=%eL=ogwD zOYuOvMnfvpJ*kp*#+TJ<@{e=n^(eWXX4xu#zdh)n8^Q)6@82Si@KuqNsM@U6o;oxn zoOR5TPr<>ssX<%NAoW~5RfhSY-|Xxzc~zV)Yhn(RKv4(sr;X5GuN0(2BTw?P{ijlx z9a=3G>{ID%tlv|_Zqz6lV~UJ@XO}*!9%}Q<$JMmeAN-xvZR}1F3cPzV2ZvBNBdk8# z(05nncQ$7KV0>q7?I!_C{4@`J#v;Z(hpm{>;l0-yExQDrLJYA(7<@~Ud8oFp60 z(Yf?AEI^_e5R|7@dvOJu8U2-k;NthvD&}|j%JDkvQV~)hFZLaQ0e1KrMcdFM*!@JP zI^bE_XjV&)K8qa$Na8RiB`pPuV-bY^BNLP_1AWn1NqECI_QnJq9^tV}yrciBcEG2^ zyzB{`iHHGlCrKwCqaXbaXe(!)8Em;UvvQL`Ql54GtBuU#1OzEEZ)s_cKL<7ACt#C( z{XRnqaQs+42C_rnAj4u1bs;yJ1<;&Vro=+t`Ag~_=rwRSXn#n*eIzY^tl$h`fKF&( zb;C_r-e&38kewy&^+f4`FXLKOT>UcF!+Ge+c+yT?N(`4SrX4w19j$?>DZ}KwL{0zr zzT@5_?`!L_^8h|6B-g_4l9D2-B$ooPUcEy`GlPIGa7y01pis zwK;}d%bWC1;C;#Ksn!)<9jmi5squ_fq7j(cUqxb>%o_D*Cp1fB*`cfWR!vP*KM(ta z>n5qKbtLCS(@OT6~0M?*j2N-dzmHabqMvR!`5F$?wfiKBt-RknO%4A$Nc3 z02ygjLT5x-b189@r~eL89gU6VZsqsa7!wbQK!k_DTJT?tAGz2}cwEbTTO6#jO{a(2 z4q7$5`i|(SDeA@E5IZ1ImSVTL5=wYZ?wHoK-vFtOA+B!v&lyzkyoF^8EAiqg#VO+c zFE7EfUugL4pKIJF#yzv3!X795#uE+cQhIQzpucQB?YVu>Y*=Z62{%Rs#D<@jrFzZO zy#`8@(Ga4NZx{ShRQe4_3gR@ctX3VO#E(l&3 zXQzIcGXVJ@R;7{Km>+^?`;je%G0xX$iW0XQTDr3QsoA}F*ZT_lTkxNOu$d7S%ohh* z7J^`ED+xA_;pur!Qtb0{j7U@ z#tN2!l+$b-!%Lk>LI5ZZc(wY7@?uKK)ZAWd{*s8FTU#B5f5-T#Xa2#aXIe5ZiHA)f z05WA#*b3p;J~Z{^^2at}sWpL&Q#0=SpQZxwFhpjk*6`K&91^pN_#Z>(*euA!rTZXG zS~0fn{tmZdD3V_%v$Q_L0N6{&OSWA>DFK@Emdf> za=+&Lb{oMd3o)j8dg)rPy0LB27W~*Rnh46-(vXORvL0tK^uA$@;d2|H-%x+C-}pG> zCkCimHFoO95Fn;i6)JGxa$xhMi`ZGXs6-kEH-@kc8{zslY|H=1?Z20K(cfl!bSaS& z5_Hb#xO}BT;tJhsufptg(p!Yp1U*5Ox%F{$hjDNtlGlr3?QvpJyqD<_8y4x__bBl0 z*Ty++;&tz_GBV}U2SA0oh31fIsMtP?936H2%xXextXE zE=Kk|F^zWHZ7lo(r_)t_$!MKI;wuGs)_L|Azwe~kN5imVva)uY{)N$*>gWv_BJ>lj4Diu(m{-_7T!NUv7sz#^PY`|x@&=wr6jOOeFyC-rfT_seseo%hbaj#og$ zfl8#?7lBV3rw_z;PNzN@MB1mG%SEn*ruRP5UmEvWAK{IvH*zqPYGy&7&v!0K*P#N2 z!#xY2A2}xlDi79E*a4>HHZ_^JGm+F9mERLgY;eA`n^56k0W)kV+=k$}TWG7xj4(cG*1`OiReEPHI^8Okc&NeXq&j14k+$_%u*$F*k;JyVUQdJN}%L z7CYA^Exk-5a;;tR$!0LWOj5>ul1>>^){o;=g~ME@>fh&iZLNzGV76X4V9=O^ms-40 z`Gmx+1TF!~D}MN#yQi0%PC4k8m8Cx=;tP3(@ zbjYXO>y4LvN?xlXnmBg;wopz7H>Xnxb~f_KcDnpVZ^dts{6wc_;wTWTwgdvX z0|?7mYor6T4vuq6pEToW;5X@+2GUM#%-kpy?ur3>oCGHMc)}Qx>t7@!)EZn`XsiqG zKH4!${y$i`zGtC2l8A=f+m*ayi87TKdM=pb!2Y7moqdpvLImf)q=QBv?%p)4xDn2# zEoU*?U#_b4twh3)FY94=rPC7UIC9b>bJmlA0PyHgU_n;Ih&8$t7Kj^1(Dzb zns(OFyX=8IGBu9ZMe;wsS65<>fc9?9NUV_UFms}qvI|!G#DQ629n}`I&J6w{5<`7q zgH&OgwD}r|&*$QJ2#XesOtns>%L~jjtt*^G;c3z3Hw2zYI`*$U)IZMq44kI-aNY6_ zI7#-nPaoKj1dCW6om)r^uPI0Y6^9XWGNygxmzT=kl_`r)zP1%FV{@lFY1FAHsllO!PDQu<1br zEY;nTt^APr+)M3tOVL^lk9t>wOQwuO|IdYyUxYlbzXg8SR{hw!2GDd{)T+H~OrYOO zR}tQixHfD;1EX6{OG)=J{bg%(b3D?^{W}&{%R1+NOe_fUSZ=M?P44=ab4@}35Muj^ zGwK9u;Y6Ky$a2roOMmy*4xr>xD&E0cIBmbw#zV4C7<>(QG+E`c5%$Q1{&FedmvBo1C-GPWC|nVNb699XM9BFSpaWi}3MQP>VuW z29G=cg)^W143I7%l^ zA|`juiazX@1i_|MtSuOSo?61lW}Q)K?oY&V`^Qt?y4344wh`2PA+)X%T)wM3SV{PP z9aA||1JJo%9=)=Ry4=znvqdeXuRcY-S!2k0wx$RQ`fHcdKq(tN@i8e32qG4}E{65J|q*_pB z8j4#2=lwwCiQr0|RmN`Z{GHvKBM@R{0#KV6*b)z!kl>c^qlE}Gk36$(ke|)w>~`<3 zCsul*mR9_t%<251wp#@vi?1um75OVb@3);|=Y1_r-60XC5Sp5&EFqI!8N0 zK^fPv+sAt$J?%o!D<@l~fsZ~o@NGFj-NH_urLYJ2^~UCW1fy0SmT>!3sJW~4_9DaX z*jKy09m}s5T>9pd0;?`6WG}3_Y%v>i@&g*@!VwLhKWIu&uQpx^P)zNCmQ_nzlB!Op z3@1FfB|v%~z?(k6C8ec5Xi3AUy8abLJDtbE>TIkbmUOov$dnw@X-NLGP8%4>^jJD| zdUM6>YdSwUs)tODS*&#nOFeIwrz(+U3G>882U!eIm))_2Eh&hZB`OK-Zq8$s--slJ z4-Ish*3{!snhaiF9^I!aYs}#iD`^bck(#jZ<=dH2G5$KawPBEBb<2y`DKrNAItS3G z`ok+hvi;ldEumj9*)yHT%Z}K^B%GG0A%W$6Wy654pDB16h^ue9qGAI2Pvc|i&Zn2; zP~!B-i2m&p^&*BM@i*@+&Dnuc0(D1pFBHN91I;G~_>&zTomgdN+TB#?Pgr=@X{$31 zi+A-EebjOj4#B%wgZ5wQ09;L zQHP3xQs>!u#d8+wWv_Na-Ipa}GGsg#H5%@t)B)pPn0oY*u zAy1wmUtd@cn~xnE-e4ZrY5WbF_W8=psw@66_GyKlg?j(-^+3(`Uc@R47y8K9oTpby zi|}83r?%&xss1LY2yw#p9u%ui7l z=kBoan|ojh`vA7iH2Tv!4!|P$`qB8IiMSE^_hEslHH-%wrW{u?_e#cW$!hLIH4MPF zXW?L8ji!{ESRO&raz!7cRqHak>u?ULiB>WS|D1~TdSr8a4yHY$$GTi9(%d{oUHp*? zO?#R1Iz8>>uTlK@LahBx9zxTT{bknoG|pp-LCs;B;1?Y7PADa1Ol)QJ5v7IIp09_K zX#0-^aexzU#x%e*T}!Qo2{pu<;zVdS@PHVXIZ_qJ2j0`p09N_qO;4SN93gjho|s!e zSXnGQpOF*-iH^9AB|I|bd&VOm+B*`=F398B`oM9f@$@Pm@w5DCCa@Y!WS0K!xOEYH z?|JoKIHijxJ&e{fUdvyo2mub`+}}xAr`oWj0Ft0TxIdx344^E_W!3RBCdJ|I^NU_U zep5t#q3cFiyLXLOT+o*c=DXD3y{3Bc z4j@c>zs1Rz0-dDWIHkzE44f;NA34vI!JoA`;W7jiWo6Oe^OqDjd?%K$&9Z85^NieJ$F@Fc!``zrGw?}`T zQV?X#6$uA5*)>||T)e5frs^90=0#UFbDvJ^rNQ~8g2n*Q<-oEF72)=IT^wEA~1 zAf;A|i&mCH%rmOctr!@fp_Q-wJEDe3th0OBsI9|R^_)ESRlH`~Xdc^-M}OgHt&MbK zL5xt7M%1#3KMJAUV6oS5GPLr$Gpyv65w1h32Re=rj9R%B7xo7_`n)?YEOq(TumoR z!%RR+y#eu}cQ$t5o-`d^48_uo28vNCL-&)og4`>wv2ux~AjRorH;n@$x{!zM*Xg{E zu4+ZwUhW>15xHTHyG%Iq-lHM}rM-vszp?+_zu|RZXv0%=}TYAa`Ma zXbztIN*&QP@hBwqKC@PXP3js)ahT6!w&rDm3xp zepBOTe(_{Z^s!r!9FyW6<7cm`;uyRnokx!rkEJrV4wXeW4W+Fwoaqc@>I;BD9E%(? z!$Cxl%FMjF%>DVD4ZEdV(xRfubWf%5JD$cMTHW_T^OlKBcHY39%DXJQ1fAL{ zh8*cqR?^3_e_V~83(MFjMYcX!m^Z-`z*?xUN5cQqrkO!fkCSeH(XaWJo_uf*4H3Bb z^?Za&>^4(*M|RIjNW2mLv#!k=D<(3oaSoXn>1&PLD=1&M(kb1g53NnIQP|i=BM{HS zH0{$r<#O+8Dm=gfo*!1Mo-9C@vA~&B;Tx&6@fQlU8T*{ojs;}OuKowvCi>AEE{mIj z2W{OS1n@?1!jY%OY-s}0o z<8&%?GgXBH>@^vj?{ACxPN(?% zg%f=WsfAkodF^QC^2H43eC6NgT)Qa-xu-$EDT@0#uSmMf#}6ab>Ao$QGfQuomxsCH z;~T5kGuF|U>oXg-GuHyTWFDH)vGqJD`B1~~n9|LlRQa%wuW9*gMrYB}iHWKz#c{Yl zN3?qWbi(ph{MD6mLn`LuPZsLB@VDWwn_FX3<Gw+pge@Yvw7yY%6WyYt z+H4~#6K`UP@pj+NU^)-6m6syY1w&&Qe1_cS?Dcy#pK1u**l9kf%IJoKjLl*?UQh2g zOO9d1U4MK)AFy_AwMSL70)rKg1GmyQ*RM8f!ybNi)}pe%qnwU(zTUeOBUmf#|K^}Y zgml_nimuH`KfGf=KgfxKF)&%_+WYbKejcqU);BoqRp8TVHHCyL@-&Ry$btMG=h+b} zGS`Oag1{1o_P<)mwd`y=(Gi^O!I9?RKPw5J7$$D+e_z;9qV(KLo^WV@H`C~Amo6ik zX+&hQw1AhPQ425Ckf8=XAX@!E=WlBFVmWw}%MSts<}T*%2&+u|1DxYTviK|!%Z&$Z zH~1f>wsWIUBX0jY()hn;{Qrh$tr2W&E;4P0!bNGoB8`nn7E)334Tx!q^ zehDV3l}*IiLX_+29PknLUtp;{Uk0zONOw|wyRea_IpD{IzC~$Lk!0k9MZ!Na=~y3s zf^p{-_YD~J>FJHJ=0@>q{WBZrcRh+UtfKj4<0;}{reJMZg#Yw_j2mi?S>2J}qzqgh8Uo*u1y|A1;wn{c)rW&`Kg!7p3naojKxXV`z?mu~= zhih+dkHh;(^BJr(8+{fdn-&TYs1OIllXX1Ro~BOBe{E*ce_3CJ#&LX-y}~NEM_G-o$cOA+`*4|Y(yxE zX=SzfN^3KA#(Z~fopul0$+twmci_obcQC#U@L}|e(m4E{UaKztUQ!BdgtsO=vK_>W z9-+WMI=z|MCi%;ol@z+NW};!`F3te?XH<2OVCq-J0oRkimjxG|^vbMYIpPof`8d{~ zVtQ4my7M=)OUnyZdtEc!gh+QiGY_ZV6vIk0U_hd^abgCe2o*>Bj zo1V$@-KhLq&pX>DFYneRhtXJhr)O&8yuFu*&@dg@6@67tynQ2?yo9Q(lHcEKWA5JG z86tz8G*ci+$^3O-lg~z%90fc{o&mL$r{!2nAx!-WBU$Vr2e`o}!UZj2uwhmofvp0eFf(_hlO&qd25^5%?}H>zk)(7tx!5_q%$ zF*2S3$qr}a?q_2$Tv0Qpt)Q2FKwbL&D)A_ew^~1}lj7%39GDlpCL zbJba1&_Z2X;811F)OM3+&FB?wWqF#r)Dw~)>8p__2-n=rv5>( z9b|XyfavzR1WFxti#{Hg?hYvJ-@hYkmNFASj|%*S1GDPN=vvBiLrQx8$~roK$bQ1W z|0{4m$dBVg#uRG#qbu8OmL2Nb5(9uqM}ex$wkF{%-v^Ih4^Cbf@p?<+iCNdhX?sJsxe6hi4J8(8$E&zk8t?GsU5 z{GeT5`z2jCs{>u{2rJq1X~5U~FWrfG(!+)(?luiJ44|2=hCeY52GoP6fr8)>=$~Lv8dADTphB7(GnIa+F=S-ucr=~6`q&S z6~L|OUenr^Q0vc2Z*kFyqiM|*r27kG)AnJwY1Kf$@-OjtI>KB4p6ZGne z>_|T2*~YXH+z6oKl6+R14&JDP0lE{XSilNHOQsDbVm=z3d$X8TdwO&!UJ*cAxTj}n#y|1&m%W!2CsN}A zwSjwS8b*K<_n{XbpB0$8OH0e2q|Wf<3tcd~`^c`6EJ}#i+P6Qbrom4F9NOB10+hI zN!nu&*u30c??HtpPX>|3vP{Ypy)u4be~iy*kNyKoU_^Sp-ZSd>qay2+qmcr)APRr( ztK|s!CncN_8T~tE-x772o;k6_9{h|o_xXH}S}igHUx}NQ{DF^p_#M%%(G_^#Y%{ZR z!TDY{0N8hWI`PDl#%JyQY9EQB7ERah?(yBY9B<4QTzCg4DPHhjhzHD=)yN43H~h_-?=;Z800JefC`M6a{j z&{8E9lZp(%v)PeX}v5B$=14Vn2F=teTSRS%u{5i%Y2=3B4FB%@V zd_b@%n_~aKScbJk%+^ca&p2Z{5VxTj?fn^2h#I_dP0N2#+=<#nMD3D?=j_ij%4t4j z{haK%#`KYD7^=Gxh_wguEM?dO$bq%i{`k7ag5CK_Kc{kUndb2~@P_;HuoWqwEldBb z(!clQzjm6|_V(i#JoC%e>UuY!XK>iGH_meoth39VJ+pX&G>UX8G+UZo0`9%mEk^9v z!LC0itFuq=Kd-`%p~j1=r}AsRg;5Sb|m^aF?qux=P<3s98%y3m_?k?X_3@!Xu(mUVb7wU?1_4u<(qw%||PhRSR9 zk}Yp<{_P~jfZv#C7(4gjSXS8RH#@#Ob8?CGuc`vd!Xp{>vz8>YgSMs z5`l67uk6g-%DJqmwpf1!&%%~d*~3hUL@id(*TXf(X_Yae`@u_7Sw3jKm+(oL2KDih zpMViVWbR~My^3q@v*3-BxL3i%-c(z@BOL+WT}!NW(*>y8ipYD5I|PDhTU}36?g)Gh;AQG``S3x>hG8ge?a#u6yO z8U0370-CuVJyH&eNg9xMG?3Tpu2ME;B`YhkBYfVTUQZ{ng%E0Ia%BnkJ^c-3`)o@18Tx$b9$L8HJaVoHTN z7_uaJAc8ik>8t6;en~eKN_Ly75-T!!g%YbpD8QilSG?(6S2HN`w2#ANu>D{?LYDf{ z`$rO+`~3$E!(tnHH*{!o5uk;p?O5JGX@_7^!6E`l+1TuqkWv`>rTY!xEa5Cs`-Vz~ zwc8XAmwv8x>)tg2xDKBOy7KGrQRtK!?9?XiW36V(?;zTztvzk#&}i+tnvC^jGnk$h zc)({H|J&nbKK2#GLt$OBa>yD9$MIOe9;n#O86{7he^Aejp zC~y55G!gK5t3%jYH4QpaP^H(?u;!YK;oIY%gByz<5sJ==#i1Ln60WBKGy{Q|Z4LO-X!AZ_@b0a#vucV^7J`K{kVdyF5TAA>be5=QWrmD$6ym(8D4(qP?u&g@vi=( z#YW`e8VUW6j#Rw$2dtlTUm1V9p~5(nU=)v+!0-5A4HKvE@kHaMS}4cse$B{dp$x8X zSo^(6I^V8mge|X1>^XZG)6g5{XZmA7TdkvwD#-)N0fy^ZGey}LQmu4rx2jU<#yWs~ zIo6wfX0QlZrC&h6YXtE)`nf#Qzf}Z49uU%=Ub0VnVAduzs9()!Jm{1D9kaEyE9+3M zAg`O(R}w2C0py&F+c%B=EXLI4w>}I#>Y+Nhh`M`%S-Sp1j}>{ptub3vEhXX>ILfUv zvCB9{8aU~U4~9vFJG0@?nMmV=SuUNdX8*KL-9`MF6T&Xfmqo|+GVHG!5^Ys@9a^-w zX&jm9J_wDv6ZLL0JceBD{P^ZxU#zqO2YCc|1FrUpcc=q-$2=b$WzQJ@Y5Fzl&fF&6K9QsLaX7d_Zcmyl9+k zR$)pBuB)EV-+?nJCaUNa2TDA`C*L70a8wOIUqKeE)H1$|@o`#mdvO5q`TUwB=n1aQ=W@$VF1b zSP1!?*0i)7fH&+4f!hHDAJzo!4bBtALUe)`${_gZp7fU`>!10OP9CzZF}XRRF_kYf z`p=IQ-nAd_ny-nx8Z3?Iu zx6w=K-ssqc${k-r1{(juQTn~S_jTZdtWu7{omJ#snx!=AAQnbLLw}zBprtd=MYPX{ zK0oqHQ*zQL(dWH~PPKtDqn@Nx%TVWKgW5Fn>PXJ)AzOwiD=+CowS@$1^2ib4i4xHb zTO)i1?0N+I!SQ3vlbc;z*@P>>RnRr@67bdddO&i_=3KF!Gq>+K2H@;sT&=Ax2m*UC!r z-M$XWtV>DX_0Us=7FPeGVZVR+yuTOvJHEfFbVL2-jw~nbdFPsvtzi`s9i_q?`@plWTF8}qY-hb`& zFZ1(XGx0yJl>ZzvA*wO%ILEH);Y#?cSK`v*UtOpFInMDP_$&kCUzwK{_{_Fj}nXLbspa0LV z4@I2YvY_>yR?(o@tun0XmB*wp589^33I$W-g${IES>Ivlte>OJny2o%HZR*8u3sJr WrL{R9&bKkt#;i#*VQE)?&HXnxXZT_O literal 0 HcmV?d00001 diff --git a/windows/update/waas-windows-insider-for-business-aad.md b/windows/update/waas-windows-insider-for-business-aad.md new file mode 100644 index 0000000000..04755feeaf --- /dev/null +++ b/windows/update/waas-windows-insider-for-business-aad.md @@ -0,0 +1,71 @@ +--- +title: Windows Insider Program for Business using Azure Active Directory +description: Benefits and configuration of corporate accounts in the Windows Insider Program +ms.prod: w10 +ms.mktglfcycl: manage +ms.sitesec: library +author: DaniHalfin +localizationpriority: high +--- + +# Windows Insider Program for Business using Azure Active Directory + + +**Applies to** + +- Windows 10 + +> **Looking for consumer information?** See [Windows Update: FAQ](https://support.microsoft.com/help/12373/windows-update-faq) + +We recently added features and benefits to better support the IT Professionals and business users in our Insider community. This includes the option to download Windows 10 Insider Preview builds using your corporate credentials in Azure Active Directory (AAD). By enrolling devices in AAD, you increase the visibility of feedback submitted by users in your organization – especially on features that support your specific business needs. + +>[!NOTE] +>At this point, the Windows Insider Program for Business only supports Azure Active Directory (and not Active Directory on premises) as a corporate authentication method. + +>[!TIP] +>New to Azure Active Directory? Go here for [an introduction to AAD](https://docs.microsoft.com/azure/active-directory/connect/active-directory-aadconnect), including guidance for [adding users](https://docs.microsoft.com/azure/active-directory/active-directory-users-create-azure-portal), [device registration](https://docs.microsoft.com/azure/active-directory/active-directory-device-registration-overview) and [integrating your on-premises directories with Azure AD](https://docs.microsoft.com/azure/active-directory/connect/active-directory-aadconnect). +> +>If your company is currently not using AAD – but has a paid subscription to Office 365, Microsoft Dynamics CRM Online, Enterprise Mobility Suite, or other Microsoft services – you have a free subscription to Microsoft Azure Active Directory. This subscription can be used to create users for enrollment in the Windows Insider Program for Business. + +In order to get the most benefit out of the Windows Insider Program for Business, organizations should not use a test tenant of AAD. There will be no modifications to the AAD tenant to support the Windows Insider Program as it will only be used as an authentication method. + +## Check if a device is connected to your company’s Azure Active Directory subscription +Simply go to **Settings > Accounts > Access work or school**. If a corporate account is on Azure Active Directory and it is connected to the device, you will see the account listed as highlighted in the image below. + +![Device connected to Work Account](images/waas-wipfb-work-account.jpg) + +## Enroll a device with an Azure Active Directory account +1. Visit [insider.windows.com](insider.windows.com). Sign-in with your corporate account in AAD and follow the on-screen registration directions. +2. On your Windows 10 device, go to **Settings > Updates & Security > Windows Insider Program**. + +>[!NOTE] +>Make sure that you have administrator rights to the machine and that it has latest Windows updates. + +3. Enter the AAD account that you used to register and follow the on-screen directions. + +## Switch device enrollment from your Microsoft account to your AAD account +1. Visit [insider.windows.com](insider.windows.com) to register your AAD account. If you are signed in with your Microsoft account, sign out, then sign back in with your corporate AAD account. +2. Click **Get started**, read and accept the privacy statement and program terms and click **Submit**. +3. On your Windows 10 PC, go to **Settings > Updates & Security > Windows Insider Program**. +4. Under Windows Insider account, click your Microsoft account, then **Change** to open a Sign In box. +5. Select your corporate account and click Continue to change your account. + +![Change Windows Insider account](images/waas-wipfb-change-user.png) + +>[!NOTE] +>Your device must be connected to your corporate account in AAD for the account to appear in the account list. + +## Frequently Asked Questions + +### Will my test machines be affected by automatic registration? +All devices enrolled in the Windows Insider Program (physical or virtual) will receive Windows 10 Insider Preview builds (regardless of registration with MSA or AAD). + +### Once I register with my corporate account in AAD, do I need to keep my Microsoft account for the Windows Insider Program? +No, once you set up your device using AAD credentials – all feedback and flighting on that machine will be under your AAD account. You may need MSA for other machines that aren’t being used on your corporate network or to get Windows store app updates. + +### How do I stop receiving updates? +You can simply “unlink” your account by going to **Settings > Updates & Security > Windows Insider Program**, select Windows Insider Account and click **Unlink**. + + +## Related Topics +- [Windows Insider Program for Business](waas-windows-insider-for-business.md) diff --git a/windows/update/waas-windows-insider-for-business.md b/windows/update/waas-windows-insider-for-business.md index df57384134..feef083952 100644 --- a/windows/update/waas-windows-insider-for-business.md +++ b/windows/update/waas-windows-insider-for-business.md @@ -1,6 +1,6 @@ --- title: Windows Insider Program for Business -description: In Windows 10, Microsoft has streamlined servicing to make operating system updates simpler to test, manage, and deploy. +description: Overview of the Windows Insider Program for Business ms.prod: w10 ms.mktglfcycl: manage ms.sitesec: library @@ -57,7 +57,7 @@ Best for Insiders who enjoy getting early access to updates for the Current Bran Insiders on this level receive builds of Windows just before Microsoft releases them for CB. Although these builds aren’t final, they are the most complete and stable builds available to Windows Insider Program participants. This level provides the best testing platform for organizations that conduct early application compatibility testing on Windows Insider PCs. * The Release Preview Ring will only be visible when your Windows build version is the same as the Current Branch -* The easiest way to go between the Development Branch to the Current Branch is to use the Media Creation Tool (for PC) or Windows Device Recovery Tool (for Mobile) to reinstall Windows +* The easiest way to go between the Development Branch to the Current Branch is to use the [Media Creation Tool](http://go.microsoft.com/fwlink/?LinkId=691209) (for PC) or [Windows Device Recovery Tool](http://go.microsoft.com/fwlink/p/?LinkId=522381) (for Mobile) to reinstall Windows Ring ### Slow @@ -74,7 +74,7 @@ Best for Insiders who enjoy being the first to get access to builds and feature * Windows Insiders with devices in the Fast Ring should be prepared for more issues that may block key activities that are important to you or may require significant workarounds. * Because we are also validating a build on a smaller set of devices before going to Fast, there is also a chance that some features may work on some devices but may fail in other device configurations. -* Windows Insiders should be ready to reinstall Windows using the Media Creation Tool or Windows Device Recovery Tool when you are significantly blocked. • Please remember to report any issue to us through the Windows Insider Feedback Hub or the Windows Insider community Forum +* Windows Insiders should be ready to reinstall Windows using the [Media Creation Tool](http://go.microsoft.com/fwlink/?LinkId=691209) or [Windows Device Recovery Tool](http://go.microsoft.com/fwlink/p/?LinkId=522381) when you are significantly blocked. • Please remember to report any issue to us through the Windows Insider Feedback Hub or the Windows Insider community Forum >[!NOTE] >Once your machine is updated to Windows 10 and you select your desired flight ring, the process known as "Compatibility check" will need to run in the background. There is no manual way to force this process to run. This process allows for the discovery of your OS type (32-bit, 64-bit), build edition (Home, Pro, Enterprise), country and language settings, and other required information. Once this process is complete, your machine will be auto-targeted for the next available flight for your selected ring. For the first build on any given machine, this may take up to 24 hours to complete. @@ -151,7 +151,7 @@ After you’ve tried the latest Insider Preview builds, you may want to opt out. * [**Windows Insider Preview community forum**](https://answers.microsoft.com/en-us/insider/forum/insider_wintp) - Answers is Microsoft’s forum platform and there is an entire area dedicated to the Windows Insider Program. Insiders can filter between PC, Office, Edge, and many others. ## Learn More -- [AAD Stub]() +- [Windows Insider Program for Business using Azure Active Directory](waas-windows-insider-for-business-aad.md) - [WIPfB FAQ Stub]() From b902571245873bbfd6c71c4685b2f14a40cff5d6 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 16:24:29 -0700 Subject: [PATCH 12/23] added waas-wipfb-faq and updated toc again --- windows/update/TOC.md | 1 + .../waas-windows-insider-for-business-aad.md | 5 +- .../waas-windows-insider-for-business-faq.md | 90 +++++++++++++++++++ .../waas-windows-insider-for-business.md | 4 +- 4 files changed, 96 insertions(+), 4 deletions(-) create mode 100644 windows/update/waas-windows-insider-for-business-faq.md diff --git a/windows/update/TOC.md b/windows/update/TOC.md index 41a0c401db..b16ed8c89e 100644 --- a/windows/update/TOC.md +++ b/windows/update/TOC.md @@ -21,5 +21,6 @@ ## [Manage device restarts after updates](waas-restart.md) ## [Windows Insider Program for Business](waas-windows-insider-for-business.md) ### [Windows Insider Program for Business using Azure Active Directory](waas-windows-insider-for-business-aad.md) +### [Windows Insider Program for Business Frequently Asked Questions](waas-windows-insider-for-business-faq.md) ## [Change history for Update Windows 10](change-history-for-update-windows-10.md) diff --git a/windows/update/waas-windows-insider-for-business-aad.md b/windows/update/waas-windows-insider-for-business-aad.md index 04755feeaf..f749ef1c36 100644 --- a/windows/update/waas-windows-insider-for-business-aad.md +++ b/windows/update/waas-windows-insider-for-business-aad.md @@ -35,7 +35,7 @@ Simply go to **Settings > Accounts > Access work or school**. If a corporate acc ![Device connected to Work Account](images/waas-wipfb-work-account.jpg) ## Enroll a device with an Azure Active Directory account -1. Visit [insider.windows.com](insider.windows.com). Sign-in with your corporate account in AAD and follow the on-screen registration directions. +1. Visit [insider.windows.com](https://insider.windows.com). Sign-in with your corporate account in AAD and follow the on-screen registration directions. 2. On your Windows 10 device, go to **Settings > Updates & Security > Windows Insider Program**. >[!NOTE] @@ -44,7 +44,7 @@ Simply go to **Settings > Accounts > Access work or school**. If a corporate acc 3. Enter the AAD account that you used to register and follow the on-screen directions. ## Switch device enrollment from your Microsoft account to your AAD account -1. Visit [insider.windows.com](insider.windows.com) to register your AAD account. If you are signed in with your Microsoft account, sign out, then sign back in with your corporate AAD account. +1. Visit [insider.windows.com](https://insider.windows.com) to register your AAD account. If you are signed in with your Microsoft account, sign out, then sign back in with your corporate AAD account. 2. Click **Get started**, read and accept the privacy statement and program terms and click **Submit**. 3. On your Windows 10 PC, go to **Settings > Updates & Security > Windows Insider Program**. 4. Under Windows Insider account, click your Microsoft account, then **Change** to open a Sign In box. @@ -69,3 +69,4 @@ You can simply “unlink” your account by going to **Settings > Updates & Secu ## Related Topics - [Windows Insider Program for Business](waas-windows-insider-for-business.md) +- [Windows Insider Program for Business Frequently Asked Questions](waas-windows-insider-for-business-faq.md) diff --git a/windows/update/waas-windows-insider-for-business-faq.md b/windows/update/waas-windows-insider-for-business-faq.md new file mode 100644 index 0000000000..653d6d5c93 --- /dev/null +++ b/windows/update/waas-windows-insider-for-business-faq.md @@ -0,0 +1,90 @@ +--- +title: Windows Insider Program for Business Frequently Asked Questions +description: Frequently Asked Questions and answers about the Windows Insider Program +ms.prod: w10 +ms.mktglfcycl: manage +ms.sitesec: library +author: DaniHalfin +localizationpriority: high +--- + +# Windows Insider Program for Business Frequently Asked Questions + + +**Applies to** + +- Windows 10 + +> **Looking for consumer information?** See [Windows Update: FAQ](https://support.microsoft.com/help/12373/windows-update-faq) + +### Are the Windows Insider Program and Windows Insider Program for Business separate programs? +No, in fact just the opposite. The Windows Insider Program was created in 2014 to help Microsoft engage with Windows Fans worldwide. Windows Insiders are the first to be able to try new Windows features that we introduce through Windows 10 Insider Preview Builds. At the same time, they can provide feedback through the Feedback Hub App which helps create even better versions of Windows for all users. The Windows Insider Program for Business enables you to incorporate Insider Preview builds into your deployment plans using your corporate credentials, deepen connections with the IT Pro community, collect feedback within your organization, and increase the visibility of your organization’s feedback – especially on features that support productivity and business needs. Together we can resolve blocking or critical issues to better support your organization’s needs sooner. Incorporating the Windows Insider Program for Business into your deployment plans enables you to prepare your organization for the next update of Windows 10, to deploy new services and tools more quickly, to help secure your applications, and to increase productivity and confidence in the stability of your environment. Windows Insider Program for Business participants collaborate with the Windows team to build and document features, infuse innovation, and plan for what’s around the bend. We’ve architected some great features together, received amazing feedback, and we’re not done. + +### What Languages are available? +Insider Preview builds are available in the following languages: English (United States), English (United Kingdom), Chinese (Simplified), Chinese (Traditional), Portuguese (Brazilian), Japanese,Russian, German, French, French (Canada), Korean, Italian, Spanish, Spanish (Latin America), Swedish, Finnish, Turkish, Arabic, Dutch, Czech, Polish, Thai, Catalan, Hindi, and Vietnamese. + +If your Windows build is not in one of the available base languages, you will not receive Insider Preview builds. + +Hindi, Catalan, and Vietnamese can only be installed as a language pack over [supported base languages](https://support.microsoft.com/help/14236/language-packs). + +>[!NOTE] +> To learn how to install a language pack, see [How to add an input language to your PC Additional](https://support.microsoft.com/instantanswers/60f32ff8-8697-4452-af7d-647439c38433/how-to-add-and-switch-input-languages-on-your-pc). + +### How do I register for the Windows Insider Program for Business? +To register for the Windows Insider Program for Business, follow the steps below using your corporate account in Azure Active Directory (AAD). This account is the same account \that you use for Office 365 and other Microsoft services. + +1. Visit https://insider.windows.com and click **Get Started**. +2. Sign-in with your corporate account in AAD (username/password) and follow the on-screen registration directions. +3. Enroll your Windows 10 PC to get the latest Windows 10 Insider Preview builds. Go to **Settings > Updates & Security > Windows Insider Program**. Click **Get Started**, enter your corporate credentials that you used to register, then follow the on-screen directions. +>[!NOTE] +>Make sure that you have administrator rights to your machine and that it has latest Windows updates. + +### How can I find out if my corporate account is on Azure Active Directory? +On your PC, go to **Settings > Accounts > Access work or school**. If your organization has set up your corporate account in Azure Active Directory and it is connected to your PC, you will see the account listed. + +### I have more than one Azure Active Directory account. Which should I use? +Register for Windows Insider Program for Business with the same active account that you use to access your corporate email in Office 365 and other Microsoft services. To ensure you get the most benefit out of the Windows Insider Program for Business and that your company is fully represented, do not set up a separate tenant for testing activities. There will be no modifications to the AAD tenant to support Windows Insider Program for Business, and it will only be used as an authentication method. + +### My account is listed in Active Directory but not Azure Active Directory. Can I still register using my Active Directory credentials? +No. At this point, we are only supporting Azure Active Directory as a corporate authentication method. If you’d like to suggest or upvote another authentication method, please visit this [forum](https://answers.microsoft.com/en-us/insider/forum/insider_wintp). + +### I just want to participate as a Windows Insider. Do I still need to register with my corporate account in Azure Active Directory? +No. You can join using your Microsoft account (MSA) by following the steps below. However, please note that if you want to access the benefits of the Windows Insider Program for Business, you will need to sign-up using your corporate account in Azure Active Directory. + +1. Visit https://insider.windows.com and click Get Started. +2. Register with your Microsoft account and follow the on-screen registration directions. +3. Enroll your Windows 10 PC to get the latest Windows 10 Insider Preview builds by going to **Settings > Updates & Security > Windows Insider Program** and entering your Microsoft account that you used to register. Now follow the on-screen directions. + +>[!NOTE] +>Make sure that you have administrator rights to your machine and that it has latest Windows updates. + +### I am already a Windows Insider. I want to switch my account from my Microsoft account to my corporate account in Azure Active Directory. How do I do this? +In just a few steps, you can switch your existing program registration from your Microsoft account to your corporate account in Azure Active Directory. + +1. Visit https://insider.windows.com. If you are signed in with your Microsoft account, sign out then sign back in to register with your corporate account in AAD. +2. On your Windows 10 PC, go to **Settings > Updates & Security > Windows Insider Program**. +3. In your account Under Windows Insider account, click **Change** to open a pop-up box. +4. Select your corporate account and click Continue to change your account. + +>[!NOTE] +>Your corporate account must be connected to the device for it to appear in the account list. + +### How do I sign into the Feedback Hub with my corporate credentials? +Sign in to the Feedback Hub using the same AAD account you are using to flight builds. + +### Am I going to lose all the feedback I submitted and badges I earned with my MSA? +No. However, your feedback will not be transferred from your MSA to your AAD account. You can switch back to your MSA account in the Feedback Hub to access feedback you’ve submitted and badge you’ve earned. + +### How is licensing handled for Windows 10 Insider builds? +All PCs need to have a valid Windows 10 license. This requirement applies whether the device is joined to the Windows Insider Program using a Microsoft account or an Azure Active Directory account. + +### Can I use the Software in a live operating environment? +The software is a pre-release version, and we do not recommend that organizations run Windows Insider Preview builds outside of their test environments. This software may not work the way a final version of the software will. We may change it for the final, commercial version. We also may not release a commercial version. + +### Can a single MSA or AAD account be used to register more than one PC in the program? +Yes. If each PC has a valid Windows 10 or Windows 10 Mobile license you can use your MSA on as many devices as you’d like. However, the main concern would be that within the feedback it all looks like it comes from a single user. If multiple devices are experiencing problems with a build, you’d want the ability to submit the same feedback from multiple people (or upvote the same piece of feedback). + + +## Related Topics +- [Windows Insider Program for Business](waas-windows-insider-for-business.md) +- [Windows Insider Program for Business using Azure Active Directory](waas-windows-insider-for-business-aad.md) \ No newline at end of file diff --git a/windows/update/waas-windows-insider-for-business.md b/windows/update/waas-windows-insider-for-business.md index feef083952..b25fa5f18b 100644 --- a/windows/update/waas-windows-insider-for-business.md +++ b/windows/update/waas-windows-insider-for-business.md @@ -33,7 +33,7 @@ The Windows Insider Program isn’t intended to replace CB deployments in an org To get started with the Windows Insider Program for Business, you will need to follow a few simple steps: -1. Navigate to [insider.windows.com](insider.windows.com) and go to **Get Started**. +1. Navigate to [insider.windows.com](https://insider.windows.com) and go to **Get Started**. 2. Sign-in with you desired account. It can be either a Microsoft Account or your organizational Azure Active Directory Account. ![Account Types](images/waas-wipfb-accounts.png) @@ -152,7 +152,7 @@ After you’ve tried the latest Insider Preview builds, you may want to opt out. ## Learn More - [Windows Insider Program for Business using Azure Active Directory](waas-windows-insider-for-business-aad.md) -- [WIPfB FAQ Stub]() +- [Windows Insider Program for Business Frequently Asked Questions](waas-windows-insider-for-business-faq.md) ## Related Topics From a050d85e5e89ef1ab250f1fc0d0af26b8ba8a5b5 Mon Sep 17 00:00:00 2001 From: jamiejdt Date: Thu, 30 Mar 2017 16:30:55 -0700 Subject: [PATCH 13/23] Update link from MDOP web page to newly released MDOP ADMX templates --- ...to-download-and-deploy-mdop-group-policy--admx--templates.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mdop/solutions/how-to-download-and-deploy-mdop-group-policy--admx--templates.md b/mdop/solutions/how-to-download-and-deploy-mdop-group-policy--admx--templates.md index fa6a813093..5c94f5c77b 100644 --- a/mdop/solutions/how-to-download-and-deploy-mdop-group-policy--admx--templates.md +++ b/mdop/solutions/how-to-download-and-deploy-mdop-group-policy--admx--templates.md @@ -20,7 +20,7 @@ You can manage the feature settings of certain Microsoft Desktop Optimization Pa **How to download and deploy the MDOP Group Policy templates** -1. Download the MDOP Group Policy templates from . +1. Download the latest [MDOP Group Policy templates](https://www.microsoft.com/en-us/download/details.aspx?id=54957) 2. Run the downloaded file to extract the template folders. From 5f5fb833694b8dce8de943351810ef3b4457e114 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 16:40:20 -0700 Subject: [PATCH 14/23] what's new - added wipfb --- windows/whats-new/whats-new-windows-10-version-1703.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/windows/whats-new/whats-new-windows-10-version-1703.md b/windows/whats-new/whats-new-windows-10-version-1703.md index 1467a5bff1..ed03eaead1 100644 --- a/windows/whats-new/whats-new-windows-10-version-1703.md +++ b/windows/whats-new/whats-new-windows-10-version-1703.md @@ -164,6 +164,10 @@ The pause feature has been changed, and now requires a start date to set up. Use Windows Update for Business managed devices are now able to defer feature update installation by up to 365 days (it used to be 180 days). In settings, users are able to select their branch readiness level and update deferal periods. See [Configure devices for Current Branch (CB) or Current Branch for Business (CBB)](../update/waas-configure-wufb.md#configure-devices-for-current-branch-or-current-branch-for-business), [Configure when devices receive Feature Updates](../update/waas-configure-wufb.md#configure-when-devices-receive-feature-updates) and [Configure when devices receive Quality Updates](../update/waas-configure-wufb.md#configure-when-devices-receive-quality-updates) for details. +### Windows Insider for Business + +We recently the option to download Windows 10 Insider Preview builds using your corporate credentials in Azure Active Directory (AAD). By enrolling devices in AAD, you increase the visibility of feedback submitted by users in your organization – especially on features that support your specific business needs. For details, see [Windows Insider Program for Business](waas-windows-insider-for-business.md). + ### Optimize update delivery [Express updates](../update/waas-optimize-windows-10-updates.md#express-update-delivery) are now supported on System Center Configuration Manager, starting with version 1702 of Configuration Manager, in addition to current Express support on Windows Update, Windows Update for Business and WSUS. From d20fe8e45e02b5a5f18158aa99049b3c66443afb Mon Sep 17 00:00:00 2001 From: Jason Gerend Date: Thu, 30 Mar 2017 16:46:27 -0700 Subject: [PATCH 15/23] Added mention of GPO equivalent MDM CSPs --- windows/whats-new/whats-new-windows-10-version-1703.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/windows/whats-new/whats-new-windows-10-version-1703.md b/windows/whats-new/whats-new-windows-10-version-1703.md index 1467a5bff1..3cb7875601 100644 --- a/windows/whats-new/whats-new-windows-10-version-1703.md +++ b/windows/whats-new/whats-new-windows-10-version-1703.md @@ -187,7 +187,9 @@ When upgrading to Windows 10, version 1703, in-box apps that were uninstalled by ### New MDM capabilities -Windows 10, version 1703 adds several new [configuration service providers (CSPs)](../configure/how-it-pros-can-use-configuration-service-providers.md) that provide new capabilities for managing Windows 10 devices using MDM or provisioning packages. Some of the new CSPs are: +Windows 10, version 1703 adds many new [configuration service providers (CSPs)](../configure/how-it-pros-can-use-configuration-service-providers.md) that provide new capabilities for managing Windows 10 devices using MDM or provisioning packages. Among other things, these CSPs enable you to configure a few hundred of the most useful Group Policy settings via MDM - see [Policy CSP - ADMX-backed policies](https://msdn.microsoft.com/windows/hardware/commercialize/customize/mdm/policy-admx-backed). + +Some of the other new CSPs are: - The [DynamicManagement CSP](https://msdn.microsoft.com/windows/hardware/commercialize/customize/mdm/dynamicmanagement-csp) allows you to manage devices differently depending on location, network, or time. For example, managed devices can have cameras disabled when at a work location, the cellular service can be disabled when outside the country to avoid roaming charges, or the wireless network can be disabled when the device is not within the corporate building or campus. Once configured, these settings will be enforced even if the device can’t reach the management server when the location or network changes. The Dynamic Management CSP enables configuration of policies that change how the device is managed in addition to setting the conditions on which the change occurs. @@ -201,6 +203,7 @@ Windows 10, version 1703 adds several new [configuration service providers (CSPs - The [EnterpriseAppVManagement CSP](https://msdn.microsoft.com/windows/hardware/commercialize/customize/mdm/enterpriseappvmanagement-csp) is used to manage virtual applications in Windows 10 PCs (Enterprise and Education editions) and enables App-V sequenced apps to be streamed to PCs even when managed by MDM. + [Learn more about new MDM capabilities.](https://msdn.microsoft.com/windows/hardware/commercialize/customize/mdm/new-in-windows-mdm-enrollment-management#whatsnew10) ### Mobile application management support for Windows 10 From 2430b71d39b8d972322b447ae180096e6f5e6805 Mon Sep 17 00:00:00 2001 From: John Tobin Date: Thu, 30 Mar 2017 16:52:26 -0700 Subject: [PATCH 16/23] Fix TOC hierarchy in cred guard not-protected topic --- .../keep-secure/credential-guard-not-protected-scenarios.md | 6 +++--- windows/keep-secure/credential-guard-requirements.md | 2 +- windows/keep-secure/credential-guard-scripts.md | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/windows/keep-secure/credential-guard-not-protected-scenarios.md b/windows/keep-secure/credential-guard-not-protected-scenarios.md index 5f7dba289d..6206dbe532 100644 --- a/windows/keep-secure/credential-guard-not-protected-scenarios.md +++ b/windows/keep-secure/credential-guard-not-protected-scenarios.md @@ -41,7 +41,7 @@ Credential Guard can provide mitigations against attacks on derived credentials Credential theft attacks allow the attacker to steal secrets from one device and use them from another device. If a user can sign on to multiple devices then any device could be used to steal credentials. How do you ensure that users only sign on using devices that have Credential Guard enabled? By deploying authentication policies that restrict them to specific domain-joined devices that have been configured with Credential Guard. For the domain controller to know what device a user is signing on from, Kerberos armoring must be used. -#### Kerberos armoring +### Kerberos armoring Kerberos armoring is part of RFC 6113. When a device supports Kerberos armoring, its TGT is used to protect the user's proof of possession which can mitigate offline dictionary attacks. Kerberos armoring also provides the additional benefit of signed KDC errors this mitigates tampering which can result in things such as downgrade attacks. @@ -51,7 +51,7 @@ Kerberos armoring is part of RFC 6113. When a device supports Kerberos armoring, - All the domain controllers in these domains must be configured to support Kerberos armoring. Set the **KDC support for claims, compound authentication, and Kerberos armoring** Group Policy setting to either **Supported** or **Always provide claims**. - All the devices with Credential Guard that the users will be restricted to must be configured to support Kerberos armoring. Enable the **Kerberos client support for claims, compound authentication and Kerberos armoring** Group Policy settings under **Computer Configuration** -> **Administrative Templates** -> **System** -> **Kerberos**. -#### Protecting domain-joined device secrets +### Protecting domain-joined device secrets Since domain-joined devices also use shared secrets for authentication, attackers can steal those secrets as well. By deploying device certificates with Credential Guard, the private key can be protected. Then authentication policies can require that users sign on devices that authenticate using those certificates. This prevents shared secrets stolen from the device to be used with stolen user credentials to sign on as the user. @@ -117,7 +117,7 @@ Beginning with the Windows Server 2008 R2 domain functional level, domain contro .\set-IssuancePolicyToGroupLink.ps1 –IssuancePolicyName:"" –groupOU:"" –groupName:”" ``` -#### Restricting user sign on +### Restricting user sign on So we now have completed the following: diff --git a/windows/keep-secure/credential-guard-requirements.md b/windows/keep-secure/credential-guard-requirements.md index c2f3f0fc73..e87463063e 100644 --- a/windows/keep-secure/credential-guard-requirements.md +++ b/windows/keep-secure/credential-guard-requirements.md @@ -9,7 +9,7 @@ localizationpriority: high author: brianlic-msft --- -# Requirements +# Credential Guard: Requirements **Applies to** - Windows 10 diff --git a/windows/keep-secure/credential-guard-scripts.md b/windows/keep-secure/credential-guard-scripts.md index 1eca33e2e6..991d0010f2 100644 --- a/windows/keep-secure/credential-guard-scripts.md +++ b/windows/keep-secure/credential-guard-scripts.md @@ -205,7 +205,7 @@ write-host "There are no issuance policies which are not mapped to groups" > [!NOTE] > If you're having trouble running this script, try replacing the single quote after the ConvertFrom-StringData parameter.   -### Link an issuance policy to a group +## Link an issuance policy to a group Save the script file as set-IssuancePolicyToGroupLink.ps1. From 2605c2c8d7605a9eb086d777666237b963ea8f0d Mon Sep 17 00:00:00 2001 From: Iaan D'Souza-Wiltshire Date: Thu, 30 Mar 2017 17:08:25 -0700 Subject: [PATCH 17/23] vdi --- ...le-exclusions-windows-defender-antivirus.md | 8 ++++---- ...eployment-vdi-windows-defender-antivirus.md | 18 +++++++----------- 2 files changed, 11 insertions(+), 15 deletions(-) diff --git a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md index 48dcf3df40..e1043e17fc 100644 --- a/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md +++ b/windows/keep-secure/configure-process-opened-file-exclusions-windows-defender-antivirus.md @@ -40,9 +40,9 @@ This topic describes how to configure exclusion lists for the following: Exclusion | Example ---|--- -Any file on the machine that is opened by any process with a specific file name | Specifying "*test.exe*" would exclude files opened by:
  • *c:\sample\test.exe*
  • *d:\internal\files\test.exe*
-Any file on the machine that is opened by any process under a specific folder | Specifying "*c:\test\sample\\**" would exclude files opened by:
  • *c:\test\sample\test.exe*
  • *c:\test\sample\test2.exe*
  • *c:\test\sample\utility.exe*
-Any file on the machine that is opened by a specific process in a specific folder | Specifying "*c:\test\process.exe*" would exclude files only opened by *c:\test\process.exe* +Any file on the machine that is opened by any process with a specific file name | Specifying "test.exe" would exclude files opened by:
  • c:\sample\test.exe
  • d:\internal\files\test.exe
+Any file on the machine that is opened by any process under a specific folder | Specifying "c:\test\sample\\*" would exclude files opened by:
  • c:\test\sample\test.exe
  • c:\test\sample\test2.exe
  • c:\test\sample\utility.exe
+Any file on the machine that is opened by a specific process in a specific folder | Specifying "c:\test\process.exe" would exclude files only opened by c:\test\process.exe When you add a process to the process exclusion list, Windows Defender AV will not scan files opened by that process, no matter where the files are located. The process itself, however, will be scanned unless it has also been added to the [file exclusion list](configure-extension-file-exclusions-windows-defender-antivirus.md). @@ -162,7 +162,7 @@ The following table describes how the wildcards can be used in the process exclu Wildcard | Use | Example use | Example matches ---|---|---|--- -\* (asterisk) | Replaces any number of characters |
  • C:\MyData\\*
|
  • Any file opened by *C:\MyData\file.exe*
+\* (asterisk) | Replaces any number of characters |
  • C:\MyData\\*
|
  • Any file opened by C:\MyData\file.exe
? (question mark) | Not available | \- | \- Environment variables | The defined variable will be populated as a path when the exclusion is evaluated |
  • %ALLUSERSPROFILE%\CustomLogFiles\file.exe
|
  • Any file opened by C:\ProgramData\CustomLogFiles\file.exe
diff --git a/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md b/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md index 54535d3ef1..7af1a0688c 100644 --- a/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md +++ b/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md @@ -86,9 +86,7 @@ After creating the image, you should ensure it is fully updated. See [Configure ### Seal the base image When the base image is fully updated, you should run a quick scan on the image. This “sealing” or “locking” of the image helps Windows Defender AV build a cache of known-good files and avoid scanning them again on your VMs. In turn, this can help ensure performance on the VM is not impacted. - >[!NOTE] >Quick scan versus full scan @@ -115,7 +113,7 @@ The following references provide ways you can create and deploy the base image a ## Manage your VMs and base image How you manage your VDI will affect the performance impact of Windows Defender AV on your VMs and infrastructure. -Because Windows Defender AV downloads protection updates every day, or based on your protection update settings, network bandwidth can be a problem if multiple VMs attempt to download updates at the same time. +Because Windows Defender AV downloads protection updates every day, or [based on your protection update settings](manage-protection-updates-windows-defender-antivirus.md), network bandwidth can be a problem if multiple VMs attempt to download updates at the same time. Following the guidelines in this means the VMs will only need to download “delta” updates, which are the differences between an existing definition set and the next one. Delta updates are typically much smaller (a few kilobytes) than a full definition download (which can average around 150 mb). @@ -125,9 +123,9 @@ Following the guidelines in this means the VMs will only need to download “del If you are using a persistent VDI, you should update the base image monthly, and set up protection updates to be delivered daily via a file share, as follows: 1. Create a dedicated file share location on your network that can be accessed by your VMs and your VM host (or other, persistent machine, such as a dedicated admin console that you use to manage your VMs). 2. Set up a scheduled task on your VM host to automatically download updates from the MMPC website or Microsoft Update and save them to the file share (the [SignatureDownloadCustomTask PowerShell script](https://www.powershellgallery.com/packages/SignatureDownloadCustomTask/1.4/DisplayScript) can help with this). -3. Configure the VMs to pull protection updates from the file share. +3. [Configure the VMs to pull protection updates from the file share](manage-protection-updates-windows-defender-antivirus.md). 4. Disable or delay automatic Microsoft updates on your VMs. See [Update Windows 10 in the enterprise](https://technet.microsoft.com/en-us/itpro/windows/manage/waas-update-windows-10) for information on managing operating system updates with WSUS, SCCM, and others. -5. On or just after each Patch Tuesday (the second Tuesday of each month), update your base image with the latest protection updates from the MMPC website, WSUS, or Microsoft Update. Also apply all other Windows patches and fixes that were delivered on the Patch Tuesday. You can automate this by following the instructions in [Orchestrated offline VM Patching using Service Management Automation](https://blogs.technet.microsoft.com/privatecloud/2013/12/06/orchestrated-offline-vm-patching-using-service-management-automation/). +5. On or just after each Patch Tuesday (the second Tuesday of each month), [update your base image with the latest protection updates from the MMPC website, WSUS, or Microsoft Update](manage-protection-updates-windows-defender-antivirus.md) Also apply all other Windows patches and fixes that were delivered on the Patch Tuesday. You can automate this by following the instructions in [Orchestrated offline VM Patching using Service Management Automation](https://blogs.technet.microsoft.com/privatecloud/2013/12/06/orchestrated-offline-vm-patching-using-service-management-automation/). 5. [Run a quick scan](run-scan-windows-defender-antivirus.md) on your base image before deploying it to your VMs. A benefit to aligning your image update to the monthly Microsoft Update is that you ensure your VMs will have the latest Windows security patches and other important Microsoft updates without each VM needing to individually download them. @@ -138,8 +136,8 @@ A benefit to aligning your image update to the monthly Microsoft Update is that If you are using a non-persistent VDI, you can update the base image daily (or nightly) and directly apply the latest updates to the image. An example: -1. Every night or other time when you can safely take your VMs offline, update your base image with the latest protection updates from the MMPC website, WSUS, or Microsoft Update. -2. Run a quick scan on your base image before deploying it to your VMs. +1. Every night or other time when you can safely take your VMs offline, update your base image with the latest [protection updates from the MMPC website, WSUS, or Microsoft Update](manage-protection-updates-windows-defender-antivirus.md). +2. [Run a quick scan](run-scan-windows-defender-antivirus.md) on your base image before deploying it to your VMs. @@ -161,7 +159,7 @@ These settings can be configured as part of creating your base image, or as a da Windows Defender AV supports the randomization of scheduled scans and signature updates. This can be extremely helpful in reducing boot storms (especially when used in conjuction with [Disable scans from occuring after every update](#disable-scans-after-an-update) and [Scan out-of-date machines or machines that have been offline for a while](#scan-vms-that-have-been-offline). -Scheduled scans run in addition to real-time protection and scanning. +Scheduled scans run in addition to [real-time protection and scanning](configure-real-time-protection-windows-defender-antivirus.md). The start time of the scan itself is still based on the scheduled scan policy – ScheduleDay, ScheduleTime, ScheduleQuickScanTime. @@ -183,7 +181,7 @@ The start time of the scan itself is still based on the scheduled scan policy See [How to create and deploy antimalware policies: Advanced settings]( https://docs.microsoft.com/en-us/sccm/protect/deploy-use/endpoint-antimalware-policies#advanced-settings) for details on configuring System Center Configuration Manager (current branch). - +See [Schedule scans](scheduled-catch-up-scans-windows-defender-antivirus.md) for other configuration options available for scheduled scans. ### Use quick scans @@ -205,9 +203,7 @@ Quick scans are the preferred approach as they are designed to look in all place See [How to create and deploy antimalware policies: Scheduled scans settings]( https://docs.microsoft.com/en-us/sccm/protect/deploy-use/endpoint-antimalware-policies#scheduled-scans-settings) for details on configuring System Center Configuration Manager (current branch). - ### Prevent notifications From 4a046e799b42147f3ccde838930fe3a72c5c2c53 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 17:35:37 -0700 Subject: [PATCH 18/23] whfb-pin added forgot pin content --- .../hello-why-pin-is-better-than-password.md | 32 ++++++++++++++++-- .../images/whfb-intune-reset-pin.jpg | Bin 0 -> 75162 bytes .../whfb-pin-reset-phone-notification.png | Bin 0 -> 131278 bytes .../images/whfb-reset-pin-prompt.jpg | Bin 0 -> 51065 bytes .../images/whfb-reset-pin-settings.jpg | Bin 0 -> 83276 bytes 5 files changed, 29 insertions(+), 3 deletions(-) create mode 100644 windows/keep-secure/images/whfb-intune-reset-pin.jpg create mode 100644 windows/keep-secure/images/whfb-pin-reset-phone-notification.png create mode 100644 windows/keep-secure/images/whfb-reset-pin-prompt.jpg create mode 100644 windows/keep-secure/images/whfb-reset-pin-settings.jpg diff --git a/windows/keep-secure/hello-why-pin-is-better-than-password.md b/windows/keep-secure/hello-why-pin-is-better-than-password.md index 9c24738397..9166df5000 100644 --- a/windows/keep-secure/hello-why-pin-is-better-than-password.md +++ b/windows/keep-secure/hello-why-pin-is-better-than-password.md @@ -54,17 +54,43 @@ You can provide additional protection for laptops that don't have TPM by enablng **Configure BitLocker without TPM** 1. Use the Local Group Policy Editor (gpedit.msc) to enable the following policy: - **Computer Configuration** > **Administrative Templates** > **Windows Components** > **BitLocker Drive Encryption** > **Operating System Drives** > **Require additional authentication at startup** + **Computer Configuration > Administrative Templates > Windows Components > BitLocker Drive Encryption > Operating System Drives > Require additional authentication at startup** 2. In the policy option, select **Allow BitLocker without a compatible TPM**, and then click **OK.** -3. Go to Control Panel > **System and Security** > **BitLocker Drive Encryption** and select the operating system drive to protect. +3. Go to Control Panel > **System and Security > BitLocker Drive Encryption** and select the operating system drive to protect. **Set account lockout threshold** 1. Use the Local Group Policy Editor (gpedit.msc) to enable the following policy: - **Computer Configuration** >**Windows Settings** ?**Security Settings** >**Account Policies** > **Account Lockout Policy** > **Account lockout threshold** + **Computer Configuration > Windows Settings > Security Settings > Account Policies > Account Lockout Policy > Account lockout threshold** 2. Set the number of invalid logon attempts to allow, and then click OK. +## What if I forget my PIN? + +Starting with Windows 10, version 1703, devices managed by [Microsoft Intune](https://www.microsoft.com/cloud-platform/microsoft-intune), are be able to reset a forgotten PIN without deleting company managed data or apps. + +### Reset forgotten PIN on Windows Phone + +To reset a forgotten pin on a Windows Phone, you will need to locate the device in the Intune portal. Once you've selected the device, click on **More > New passcode** to generate a new PIN. + +![Intune reset PIN drop-down menu](images/whfb-intune-reset-pin.jpg) + +Once you've done that, the device will receive a notification to unlock the device and you will have to provide them with the generated PIN in order to unlock the device. With the device unlocked, they user can now reset the PIN. + +![Phone unlock notification](images/whfb-pin-reset-phone-notification.png) + +### Reset forgotten PIN on desktop + +Users can reset a forgotten PIN from any Intune managed desktop device. They will need to unlock the device by other means (Password \ Smart Card \ Biometric). + +Once the device is unlocked, go to **Settings > Accounts > Sign-in options** and under **PIN** select **I forgot my PIN**. + +![Forgot my PIN in settings](images/whfb-reset-pin-settings.jpg) + +After signing-in, you will be prompted to change your PIN. + +![Reset PIN prompt](images/whfb-reset-pin-prompt.jpg) + ## Why do you need a PIN to use biometrics? Windows Hello enables biometric sign-in for Windows 10: fingerprint, iris, or facial recognition. When you set up Windows Hello, you're asked to create a PIN first. This PIN enables you to sign in using the PIN when you can’t use your preferred biometric because of an injury or because the sensor is unavailable or not working properly. diff --git a/windows/keep-secure/images/whfb-intune-reset-pin.jpg b/windows/keep-secure/images/whfb-intune-reset-pin.jpg new file mode 100644 index 0000000000000000000000000000000000000000..0eae3a4546cf180dfac656eee5b7c713db723e3f GIT binary patch literal 75162 zcmeFa2UJwq)-JjUl9S|I2nZ@UNh&B20TBrbihznp&RH^rAcEu|83`g_A}BfMEICTf z8OcyUg}br4&pF+F#(3@j?z>~WaVe-`*JiFTzxl1X)?RDvxiKS{X@KIEqOu}@g@pw? z0e=9@%tZ|aS922pP*nx4002M${tyG$;1L)2#T|DDcmu zgaw7fr36K!L8E00sy=SoIge`=dVTJ{_9vPD)Q$sj*vJ2 zL`D7kI1TIHBcOkeVhBY~O?5Vk`M;8|XG)(TaE8Dc0%r)EA@DB*{up@(OR@=xfx`|d zF$v(modWF{z4i}te!tw(D58$3ZM|nX=4v*@N0Y1Auwea)E zbOMg+U+QS?_HJ>CJazCTB%-CGXJEX@#eM1W6;ZLP;u4Zl@;4L|m2N8E($u5@h&qf`~8QHUkeJ0ic3n% z%Ig~%o0?l%+uHm32L^|RN4}5F%+Ad(EG{jttZwh@?(H8OB94wv^*Yt_kJoRC{Y9_y zpkCOxxH!1@r+Q&wyMS+;^SI|O2;ou6-N84or(zd=PC$JzZCnoUZVgB4i;!Uobvz-IB4$K^SQ=&&u2P0$p`}w<=JML z9a1nvtK^U3xfaQf$y66&k=#eKyyhR{6L*9Y6v-n$sOI`|=#V8C7ruY0nuttGc5Hcg zkcJ=3LXdwaYlM!UI{Q1FUE6eI*qbZE2Y4|U;94gP17O|tAzvruK|fD~qp>p~BaGT8 z98nB_Ja-Eq^Uvfb?AzOIg>0{;&M3?JX9PBjeu7lj?EFZbWE}v;ayXQV3uEEy!8l)3 zp49rmGVhlZ^kx#9QCp=d#xM19p#|*Iml1^aq6D22%!;%;vRRPonRHF_fa!h{pjXhpr_y^tm9h6ag{+4WLo0s&)GmHs4*bb72G}F~f&pqz4GZKs zr<>!cI59qo3Wy^Oc4A<9aO^>p1)6}&^JH&?%FtS}n03;x+6;@czmoTMq)bd+M=9(F z(A?iG@jms&)<>wB(@3!7G=byT$~6Y}A4zXl#Mdaz?WoP!aX!fNm0yn06-$v=sUtur1_zHPt zD03U~sCWM6X5poDVQg*TC?XRS&%V7XGIpPi~l6;YT;}r(D z1h1c}#sFy#A%|OF3Y^)EtuE0d`xN!fKS^cJ?jt0mw0;v}LsWU<;l=_G*at$b3Lu$Dl>Q9z{m~mr(pfsZX+C$Bw z{?^Q5e_vQVX36P-{h$wO@%la;{9-G;q!GvK~{%_wL9K58l9wS$0GVf_EjUA)Z z-}v+1Fe~>=N~jr0;a;6&xo=&eB38mZwT7mKKXr{LHQ5?v`FIU`3@6#a%iTMx@VJ@j zsP%w8b)E$kKKtl926$n@U)J*7>&u#|7kOi!GF3@{(vM*?{eooHH*Nn`@7# z8fPztR?1Xfc`-h8^b}7TO+Az0`dZ}t%=;s5Kg(pz)2e`?@CYk+NZ_n6%~oIW;l%FP zlC2v4!f}5_Z>1^~kHE`*o)9YQWydw8A;GCGqL&xFd@mQOQ@M!)2+woTj)vdiK_iQt16SVwR$V+QYTo7zR|?Uo$0ndf36vZ|Gbn%u%}k zIfE-=e~>sNIIq@+d?CnTm4E(R8E(q>y%ULq6L&xKus!Hg)aPOK;YH){Zp|a|t&H!D z`VZp0a_7+QsjYB-h-E1TNXg!T%qSHEdObBN9;TA1=ec<+y0!LGKL+>&*~~+~;9-nZ zUUt?@h-f5g zGR-9o|9$B$bpcn`G(0s^_1ZbmD+pkKgYM%V9NQ=6b3|#ZZi@w)N|zo4?mT?*!{IyR zRZjXHg$E0tu4~5hG^8u)xfKVNz=YPiADe5+-+V`@WKCHri3@CR`u*utxP{+pAE$5MgC*@Jg5=P_wxd9JbHUgH zz6F$y^YvZte<;doD08P;yc-R^gu61F%^5}~Lq3!?;1t)*T&+K1Gya3)lCaQP@?ga? zs@kadg>bvBHeq@%1wc9918oxOH?=DYSg~S&gp4PL$WDL>zh=>FLEZH8eDqa8j3LEl`%BJzmhF}t zK>gyly$BCpd$OHKqNX$BKIt&TsRt)5!8Gt@+Vf?_E4ruN>Jtqf21o|Ev45C`KR(`K zZqwgU@pMjFQJotyRFJXFl`0@FcqH#gMfT3adC^DU`=o*wl``4J$0oG}j>!9$fVVzG zmw@-#7~no^N*_g_f&B>2@)@Ccl&h=>R&BS8*C#RFyfK$iXNm@Ho9;NA;SdkB_xCjX zM`Mp4J|uiP5IZSoN29nty_aes7wlMWle@*d^(?V~q}XkC7;D?b>>ViA*5x&19yj5ZdSa?W=UbnOyJ zo=ZMhxkmegg|sl<7|Oa&v#}qVR9h0I7|P+j>AD#qveAYkJL|)H)N5nBOXuJ^`YMx#RJ3qK`4a6b$7q#C9~OWw8)E)M#nQzxUUcRD)5=)Rl$(dp9p%k?trgK5 z3&^ZOVbMUHh;$M~@-NL6w>p2=(mC6`ji?U-q_qV}GlbjtUpeW>?MsaLjqe`Tq-Fw& z_nWK?oO^TM+KKbSUcB!jImeFWKgsC~6!HMSXdG>qSYNMLs91(g1m@CXU+D zjjt7n$|l!!ui@+tkYj**s+L(}I;}?jf=iOzQw(S=pArRtS_4Z1-hly71?WO79twQ6 z-DQz`Pm6u&bua2%{kjgjywY7#mTj-67c<|N^G@N~;msiB`T~+And3v$C3Jh?_-Dpt zn!RUB+4_%tBRV01?l9Dj*)Bdf)SBY*A^-DNY6)(7+a}fjK=)$5u%0x>+w)yZ5;)r* zudQakJK%KRuu+2UAKPCewi%7;rY}qBjqrWQ#&)=J6x8?o@F57`;lDcYP0qh52|Mk> z{L=PZh+z>R?Ttu7|= zxP}x+y?f%L69%-^e(d~mU>$LO3Y=>;SdPBo^9w~McUc48S{DC<<2T=WKLj{1QlUE7{heP3l zG!^Gd>1#~dku7pTK$PwJ{bJSSW;)*01;T}b=rxf1-Bt2$q(%s;$6N*N#Ob&tp{z$~ zgm3jOzYCMtRwsGBStu2Av!@v^E3KEs))P7zzoSyU%A8I}p7n9X*jGiuF{BQt@6S zi@FBt%4b16;Z5Jkp4_WHu1UE&r4eSlkVk(c(1cCQ9cv}ToqPZWA_jlL()Bk=B zG#sXsXpA1Mc!GCPy;$AmyC`rwaXs>56W?3P21hF>$-xqGF|o%o)jZPw8#}M}x*_wA zwuzSX7W{nK!rDQfoB8iwN6meZ=w7*d_cxdR)`x+AiZ3Sql0it~x4ymQy)j8^{}E@; z>E|WpGU~c6eT}6PS(GDf7oL=V4$QhXV<%D91rt(N(YdQ&__4h`m&u&C6(_=VQ%*79 z4FtKT-xV$eJ6f)J!$$twUsfmhZZBL4!2J^Kv#NZU)s6oAvujPmSEcMeAG%vOC-IRu zqq%g<#TDSd>5{4Nehp;b3~AjsNJ?WUvDUG}YEm_STI|-i+ZGu<*;c`fg}Q`2@so|z zfVM>Q1YM`Fg|M|EN&3J>?G;y6pQW8NT$jRKn#R%RIuF*rvyIw`8sLtUtudu?e`^elYp{-H3qEgb%d8)V@n;dK|?6qnp^8>m%BmrW(D3;{NBr zOIjn=Y-_+=i7l2h(lJ1zL3Z!>v{MZNNVQ)onP=UXByvqNT2*H5>$xD^*MkKz8NAwA zZ8-s{nojf|!zM7r<&@j9|`_Ng(yp{=!mtAU+>5Wk=R0EM~Q8GtL2PHaz& zP0ej&xHl_mxY^8&WVp4(R0UP-yT=-o?_-!3b1%xCe zB?Sb91%!q9KnXraHybAdS3Vm@j^8u5VeDw=U~cDRZfnDKnxVl{TW2R3c4udEBPkOD z6S1d8Mq+$V4MdFigoKO?_za9hg!qg^M2y76gd~Jbgr2hhUc8avze=}rcCh+cwvnNL zv6Zp4v5k`>h=z~=yTEUi{@+z52+_X^{jczYI)XA%@(#uZPR2LDx9sU8EuWwWpRlCX z9}~CWlCwBe;4gCjPG{?&Wov6C`;S(n|0A29@ z@LTbk#`gd3SYu@_`yUJKzbOfx`|SYC9i%WgZ44Fo&w~Gs#LqJzgTZwF;yajz5Gt zCE+u6ox$}>2>g=p8N1Hl`XvN@N%)LiXK?)z0>31D#;!BCehGnJ5^g(%mk{_R;WKuf!SzcB{F3k)yUyVHB?Nv+_>5g= zaQzYjza)Idt~0oP34vb{K4aGzT)%|CFA1Nq>kO`6Lg1H#&)D^U9Ik)gGh=K6-YDY& z-VyUNnhg#%_USM9!UccN5uC<_IY)$#k4Hd4L_$JLL`+OdMoB?RcAkuwn1Yt#JQXz! z4Gjr79X%~IJtZ}G-_L0@8yqkV?m5D9=Lo4uiAkw{`SmlJ4c28GMI0>lvuHLz(f{wG z*_<$;Sr$&fXfr*&@Ga-}@Erxn)}{a$r2+kd3Iq7%$YX#gp5@VuoK@I&Mg{P;-MGcz z2dr=bX&39eH@j!l*6%BUH~MaE!oDAsyAopn9^C*8z2a+S}3%il@V7Q3Zy+{7x;QhD( zZr)(M_SjO9EEW)Cq!LoP;{Xoc^oEN8rq{q2B=bQB2bJ5{#jvkV^>%7_?@%=x0acPV zmDfPkU)_&uLEU%<3c2&ww{C4BT;jl>4;bJ&AqJ=$O2+_g)bNJNnm?)MaH13lTc*hb zvu{^ND`gce1=30OIZYe}^e@_V1z?_eMYMkcxvxI0h0088hQkl zZ{xtf@!SS63<0a7au7}d@8MAazn<1kVMK?O>2IbE|2yR+OZYGFEc{syrN3l* zYIoazWcRYaD)Q%y|Mvm}L2#$8qX{5eK41e`1se!x2eMsMYB#d=UoB6&_>JDZ;sMbU zj|tf>`aCYdSA2Po74M&~Om%9^puaA4e1B(e191m5e^=_?km3<&f^4Zz`MASh?(3C8 z@xRVa_UUB6H-dNW#nAhGLl5qgK6M>K-#~ewE5QBc)bg=H|+jZXXd;)J zW;nH|0Jep@aaayCQpHnkNUQyA81a|AE_?>rk+##U*iPF6`v1X`>~At5@Ag1(Of4Nh zJdCB|#Z|V!`Eu7zpW!4!2F^RIY3s-`Sm~%ZmJuoc$&dlp2+|I=VOiI|HMRfZqz*%Q znsl$0@kW}L=ftM-8Va!F)Zc0q35j?Y!K41n4D^{x>VIz|e|JxBk#%FKYD%J^?0J&N z_ovD9|536-r`Ec?cjnjUc23cF1OF$$zA_(_;|{w2n%@=b;1!Sqwg6A?cH_S|@&DGc z_mtxWCXd|r58jLO z<+>85pG^EO9ok)SB-QYN_v31;-}|%busmtR!nSY!bhh8@u+3+q0nfEHOM;Cd0}27& z=kg-SGg>x=KI$wI5}-D_ptHxHI%TZUN!f$PL3RN73Y-kGH0pyKzPl84YxN zVj*3e9;xO`3wh&)Znd_}PdH=);#)Gn#5YqD7d^G{i0yJjj@Ie0C zPf5AfG+s)VsU$0X<$AJFx>btL{k+rZ?d{|zXsz6TYNOZ$ZRif(P3F{&9D#U|5XztQ z|7Se*oZmkL!`rCq+DCY#rgffja^;_KQa!npb3y6D3feVu7mSfI*!>GFA&BZSa3CYI z(q32olS1&nxyj4qNUH7wZ+y@Zm;63Z%5Z!vb8-XSQ(S|+?nLb2g}2+3a%r1oYQ)Kl zs9la~yj7^QAmZ730mf**j$B1yx%WEEaY$*9Q4`^aYijmUu;P7^aAbU@{wXPtVAOzm z?9-7Q2G~&$@T;*1_44LfM&lr&xB7Nxy0Y_>IF=7pKPtS}nIBx{V z<)!616MIPwc?6fm4vpdpcZjaja9k7q_RSRllx2JtLlx3@H~&%3R^+Na3-gD1kTzD+ zZ*xV@-pu)a*R)UIZN+(7-1m-5EM>r)jD3?6tJ&d3k7>2^ooCYj)IC+!wU8d&-DKcM z4!1aM>iz$usn-ay2Ef!TK3USLeBes9nRz5PW9eVSkDGPz$>$TP4U%?|5aZw67U~~T zB&Bl6SK{N^r|-%it|pgg6sJYxH0Zkdbv_u0$kmi2x|NSl-yS)7>h!?~d4CyS{THWy z%%|rtkBwj2Bz2m^;U6Wr8g#0E$3M}3^wOzEg&#tJ{WG<6_p0XtDU zttse$UfQBkYnCU`Z15?ma13y<7Xy$?oxtF|Rmf{#R1s$gS|zXK`wQ1L4w$ZOBCy<$ z-_0P=by}fW0fY$#_A15I_IC+IR1(~Du@$U~2jY2a^RrbLGEUz%fV6fV1;!z&czJW}bf}T)-m+e^l{j}d zQ580A8k$yUWu?q9phAY{h>q|$85BSm=e^Y5yHRP10ldNM7nuHA>40jl%i?72+sUUT zFTs(*!wmw*?2kpjpe(0u7?Oczu$+lQoflvLL%Ez@IE4={hfUjIb@xTP&L{gwEwO_j z!KA@1A-0+U-b=ZiiaH*EAy60d);qSI?^lrWAI{j+WIUX5OOYGos(!Bj^oJFd{fLJP z%`ul`9uX?7-=#79B^Xn2o>O-1stAdp1jPSzcu9{6l_e8bCwPXBz8+Vd00v+isM%_U zzww?O$@-AXUO4N!4-yAHx9bWU`5;S3oUmdJUckKNXJ1gZE_^ z;5pHu{VA#vFeFvOG>%}m&)4{qoX@MI-MOUAuviD2a-fw%`)Qq=$$EzLt2zmMAcg$0 z;Z~}0%>;awI$U>~WSw>H-Xg=D=d%(FYRga6uBTZYKK-T>k2QJjB@3jfnyaU<&BZMC zvN^Ba%kfyp){DYpY2B^QY4HhrJtqYP@$FhHlEbPB5Q8k_a$mM4Q(|?EKhr*YuYCS` zg&gPnmmd%IdEGdpEY_4t4eeTvFaRU4GsWuarybWaRE{<5Opdow68llKQ@6eOaz;fJ z*X;(*XpXlVTKBc;>BjAlPvgK#;KH~UP?cG_zQVE;v=B|>2RLa{UPL_&*EQ`f%4RGQ zoDN0~!wW$XYWpqqBhIP{Swlq|dXM^>zQx5JtFG1aZDc-07@N&1GqXJ-_$qzwNKKqw zcmZA?8Kiy=>$hoNN$V=vVjN zrj4DQ&N_-$V&q@Y8c72_W&?Ita+9{6cB}U)1|FkxJkm11X$zT`aE-JOgiWh`!J`N; z;-{wg=J1hj;5F7(K#R-drT(c~L%hx^`V{8HvC;aWWkd zo`wS+Ig-2lFvwGZT9M;ONfPIVzEYnj zk9Ef5wUUTV-V*nw?ok`A_zzcZs8F&`lSkg80}gqWIinvw4&QRPvDNKMX>GB4eH#+s z)V)45AgY`Zp~}ShRLeMpR+(m$6P_SU(8|GmiAcArYSuO&g|lZ*t9%e?Bj)yPN8RmQ zh^nzA0qVp?9y`V8#ZJv7K3`?6bZ>s;*`}?=a^tM*nNI#=mjSK;=Rl5EM*UB&@3d04 z>d++Dv94gxtCTqqh?RWwgcJ|v(wciJA;F|U66kFy5PpGn|i4cAGgvj z5uJ0oDofN4Mk%G>$^$No>N>eUq@51uBDmK<;m6S7=`%lfUdcz+x|YG422nO6z+`cp z_2#W*;%U?MWv?_q{(MWa-AF!b_=k*T7*05R(a zqq^pb1iM})#c`BX^C7k6e(cQ}7c{6ZTThw{t`~&|Y+2}<_p!aPDpdJYmg_8S)*u@9 ziK8%_A)@#W!^jVM$%knpm70Y$#FOK$?Q@M%4Y~=|b5R{CB_$>iayWvfF$pnn53Z3N zp#B9BL)lZTL4`wn>59cv)yLGPkms4>GG=k?pc>Z{~r=e0i#kq1JlGF($N`tzLmWSKrC;qS6Vwy+&T?yQ^PEC>J!)-$P$ zW+kl9ujP8mY?{V=y+P-fz3ZfAJFoZBZ%-uKm0eL9D` z`F@1n8m;}L5{a)_!~T8zG}(Z3mL{tfoBZZ4%{1o~2k+4XSkIdP*CBte56iNUJ^>qO zaMB1;n!{|3narp4{G+)T;tFY>$jHKwa6v;Kiyv{bd=@7vubyu6g^qT^t*zpQv;`k4 zQ`oIe$CLyKsts~1a9@00+vHvs;FC6^#H6)>v-3{RD}(73_b1kxCCGdaexmMLHCyr3 z{_3~Kc?oXsM=oZ_F@8?DncRGIZ=y2ZH<^NLvm!E@B|K2<(JcnW@L8PP3BFh5rNQkl zyrO1U7!0H}7k2UE{f*AOoM_j^9e(d-nrr7(0Z)NT;j-~dtdf_oPQ1ryFM=~!4AWkf ziiynxgLEHfetS8&v#M2mbNXiO?VCOAX{}@9HkvWb^e)SrMLCMywO0>!9_fkof9A1& zuM;jy9s1^8wx$m~?#09Ng$_4s*(+%L<8XYipx6#>b6f#F`D+`=yJ+v%SW9%1oI#S- zhG4MTg`C0+Ti)I^y_|;+zvapW*2FEm@p}`51JU%;`TclhBqhy7L9qv9{rM;3q<^=tHC_sQn_`IG&fyRB3Bg z4<+3yOKv^Zju)7}l+k5sIDftn5LYD5XCcH%DH=I4O;LKdojROi3A@qrGL*V@Le&Gh zlaN(jMz{#(cDf;*0p6Suu>q5SKIkoUw< zYW5r8sPjCi`kE%=lv|rjV2cgB+agli#;r@u3~O+)rjV|VMf$)O;R1Uh_UQWN?ZU)a zo@lZ7yGNlVSTE;5r*LcUqb2sZeYiVt1aFWf+KOA}nO2$5Ym|izZdQuh629zKEWN2E z+T|h7G`2E5r#ZT5l5BXdo6L2%S(dHu-PU@w{ya&&88pxmOx;!;YXW?DkwX zy{!05%_viodp7bSU7~*A?9g7BXrQyDt(2w8Ne=DRsvybGdOh81k*d^G(64$0U0RJb z5)1+dLjHcFnb)WNT4a5|*zzm#*LCdF5>ORNcTHMW;cd|HtzH3 zwvX;^Fsd|oxS_+gM`C@yYdcju+qj;0@}=+tx2UzZuxl`y;sm9ngaCai;p1E=$486u zuH=Jf!5DyGVekGL=jGx{F=_1gopy3VLS_i@4{cLFA!EnM)(x}Wp|N#L)u~Iv$36Jn z$Jwu-rZX&$8yX4_Z#Q)-w_|cj4rDVNjjd7*5{xI_8&GoIzflsQ!q`z3{(3q}*s=r> z>XqBJO;uaY8khIb?3woLvBywhv9Gxi#pl}}v&_Z?cxxjFuXKjlDQQfe3$kTan6(VO zb-e1~p~Gjjo+*S%?Ehvg-0H*Tu(6QVQDOb4?kb+$1l0|_@Vv+F2VlteR&NSK+cxpz z{B6>O%|>$EXCKv@ablr@E| zLU;90!>z>_XG_ne#z~Pu(J?GHmvgnD272$;`T4l65eo;#unfB3o#UiAz>oHC#+rl7 zDMe{tv?IIfD{%}@F~g~oJ+I7H)4U1c%A4IU8xpYMbtYezFe$pa$xs|9^9@q2lX7WX z^wvW0O!JnWrFL~oXc^>jJnC{V;r&P1fN4kyy!+w)+S*3yGW^h>Mj^& zFz;LVnBzhG5R~cUk(qV2xvpm)Qidsq_Q)to`W1gpMr1<$*A$#wLHCdYnq!BKX#Gpb zXBfcO9br0`*EpfxT#~{)P#8R+a6xBdVw!4OnVP_w67>-8 zORj4(;2MXsHU5o~vMuMMs)C@-i=kYmLa{mw6Q!(o=jbK4YVLb;JbI%teHg@#ZS4_C zw1BK+RnaTP$LEgLzu1BSa1*wCzxg8_bD%m*gVyPH8)QVftq$_ato9J=>uE)|{pm#H^$WjHi9w~+TXrg#>BbYBc zdFSTFq9VohdXAGO>nTD+M~mzgzj`SxeM%><>r?lKf8>x=&3x*RF|jRB%1#JTzf|xN z>r#v|30tjFh;Yfp>SR}!b7Rj-vRNcrSX0sE(2VX0$+Z?p+!4wG&oeU%sfGxBi-0K) z!AtZS6JHk0@M&wP(Dq+=V9jqeUwm`kpIwf_M){oplZcHS^b5W0qq_+I+2C+mSN!Jt z<=Rb>NYfc<9vRr3)W%4K?EJ#lkI@ITi9Gf;cb+P|PS+QfNlz%gdCtpuK6TSRIgyc~ zMWSw1D2zN$-SH?9IC5y2%?@@J2#Fo#WtH7p?wu~r_iZ1(Ka_JJ^>P1v@$>nrpmX_L zi^|ZppsLDkg@_Lep<(*ji0`wc`t@*%cY~tV9dP^?KiazwOp?}DNBtAquGTdine{1$ zI2I&_EKN}g2m2^`r=mYv)N7|bcHe>tEOqz!$Qs%PGiHWJy^s=be7(*6+;Bj2gdghN zqtk|ZeQ~$x8~X!xy}J}G=DSeS_7nZ?Qmg{;Mpg+gy4ja+_+#b_;WHj!?C@2?Ll9 ze@LyAO`UnHvqg@!5J!dShNJt_NcF>1pUJXLWcs7JVqC-)Q*BC$9q1PVW!5j<`KH`dhF1DS6ZTq0g^MGkaVuOZ)B` z*0S#Y0^7s(Dnq-CaYqw-8$&DG)@t_F=TOa=k^tu%i_QC0ebzq&HhGy;$`TGCSHH(o zF+7}0CQsTV!Ab;Xt-PgGNfhTAWf{wQ*6+H6S$?NomAD?r8FLGjHH!DtGy6W%wTJ2B zW2F-ak8OTimWOZEbkz@D8BiFSwQ&*Zxuh{u)D9jX)Mr)-B?~>? z=k4=JnHwae4>;>pyvFV23>^6IdN|&? z=!B-mz`oIm^?G8{WTs89oAg+A0!RFKZKJ~C3x|qgN@;N%y1gl1G;Qx(4DXWxzJ!g8 zuasGN9*ZqDAuQ}+>e5bTpEHPF0K!7PW;pCqvxDD8<6drb=KAtFyGGU&#pyo#5_|vk z+cDj7Vy_Y^1Ld8u4!+d5XG2%yw+-*5)^EAKg34Hf zdr8}M(5f^3Ms~|!T`k?gIz#qJgs6~P65Es2&pDJI?g|r#Vm;?>vVJUc2Pw_{azj06 z@`v<;4Ju8;r^`Ks&GL2zBgIGJAM>;ug8izI1O+P%+>xxoA7asMtex+DC_qv!6hr`DV zCu^(gv-2kT%4oFi!v|I4gd)0=iiU}l?Sx8qu}H{qDI{s8Aw@-lnc=UhS=GH}$q@?H z+9z^)4|dtY*XKV2j#5y#_;|x*ZaBTz-o4PbBRUOMp&Uv?yk^GFA`g6k@o&n8Eu1?Z z$HM{Wo&*@BH-o=~l|?+%FPw|rt#w@n>>Z)7*-g4Nx>yCVSNiMjVqF=`R}btnEH+pM zB6TZ%TyHN>e7~TH8;48tDHYq(I2Tc@5<7s@d~2C6_S#YGP1q-z!NKH!_hwO}I7DH1 z--+{Ec*nK#?Ccb^lV{Wj_88V`SNcmbSrdpRT5IcMt0dA$1<2k^vh{W648YVYrC9fW z)K_vhR3iLtbIzka@*Y+)TBn;Xnvu>%wpNpRj(S|dt0b2$d0gu+vZ7yK3YW2Ndr&dfbyntfj* z#L#FIrVgJeMU#Wuh+1H1;#?SFf*UCgsV76TC&S03<}g5D-Zzm8qe>jxAFOh0oQX@V zbJ!DC7flGM1wXh%hAU{`Da-mLe&4box`O;MvDedSA7;Q+W&lxjhN;1R&$;RMoFQA| za01w}A-E^#+%N=bQ%!ICU4OQ&A6`iAXImMXba2$`mgJ7=JShmX4?#n<<1J|E7$2=4 zxZLTqcELGv82gsVsn|Wi7Dno*G2>Z4d1N-^U|FD~U~{=s@Zg~Ewe9@6cj8Y_*g#N% zeg{P#VFLrNJobdZ=^x*PxYt~EP==$^`5F6zAui0+(F`? zoLby?>*@+Ag7T?aBCVH}$FgKsT?M59=1Fg$+Yp zb{bJKe=peSuNFbpk9(0XDb6j!rQrV)%cmokPcu+DPI``Z^TzregU!E@I|Ec^8r%#> z;`oO)!;7@1rHY?g@$YnR`bqbif3tn|H?~h9_`x-*KasuWf504g*K3ih;GPzb?KQNQ z8Hk%5tQ+(YkA$W`;5YvQd>~l)=s#Ivc#(BS%9j-D)w;d<@5V2iOC3>Kne!e`C7=Oy zB&1$K&m2OK3N8?Gw4|%)?8|W3Pcxqq#E9u_7zY>3ba`*mJP47%&&ZSAKO(nhqllhj zEjom(6JCg(Mi;81@E0LR0=D|nDRw^~y!9s*cdaKNN|E-o+#*d^#GXbK$d-dMlpke# zN>;$G#~}$W%gImrNU0-kWq|9Ie8=!m$X1LJ===1* z1q#L`atJzaczX@er-85h?_x60l;E=PQm}XG+`|cKtiFHg02`!=vt|@%LAJ-S385r7GyZUgBg8 zU`_77wg-uYu?}E$fy1X+uvMWbzkm;*W2ph>0hN&a0$@kk%L75&0T)BJX+R883N`RS z7fT%60(K6!TF}(s6b2I9L|a-3#{f4z!)KIiF+iiXk^HqW099S<$ zH^Zr*)-%!@@^vdSV|<*Cj-uK=DmdjWHq+tT5P?s=V%)zXC>6650vavLem{-u8bbRH zG`5(VJ8C0^41enwO9{!I7;u;a-z>%evzB?_L%1%bkx8j&Z+Qw^9w+BFWtq!w4Bu5` zX>X$EZv-lnahkLO4weuwc3-H1EI9}IBG_*$sBeE!LSC+6rNo2hi(w^`gpA#k$m`&f zHHl7f9M18|BcCtz?4yd&5$)H5kT*&Waq}c|C|>E5L8%YqA#BKB@YX2>W^(6}hO8lb z+h?hGV&m|;Y##j{RQcN=o?XAap0`2Z z(@TE+jg_6RKyUeB9BuY4CG>0|o=eGjXzHAv) z%T$!8z;M1e<4>Q{GCvvxHtohx?-E-eh z6`GD{w&=nSZo8X6>J{)u<@a|*!jk+c1Ewt>3YC#`L}Ii9$l_k1GyJr2Wll zUT+yVwKOI(b>i@Q5~uo+_<2nyHu{M4!ld+>rM^avy96Y+(YGy2B)S~ldDFZ)aYsJv zFRTHwpIaO2h3egpm9*i&g>VtXOYn8$w!X*Dw@EhLU9YC$h&PBmKT()x^X7-Qf4ti3 zuSk`qPdpX+TVIaQokcFpru%$h@yEy7Sr$_SP8;G4+J{5O`vb?BFM|zoAL?~x@;qfZ}FbwIosO3OGDG|HMyy1)3!He;oCWvBp) zUDx7j#77$~^Q(bI-`*qYu1s&VHhGuCtI%{Z7({=a+Jdpw@rqPh?n75kYSA41+G^t7 zkbw=nceBzEsowsL+asf2<~`@eZkUO-As0el-E&A1 zrjAg&*{lU_sIY((lD(c34%aCvA83B#{9e_~IkWEVgAo-QladtL82%YsVKvIxQ*+r%}`Lc8_ zw59D)4-y09z*qxr=f_iTY}9ZBsS{X!eWWv*75qVFa3<0^XQ)q}bAcgNHMoSY@DpB( zYPLk(hxskKS8ogYe@r!$e;u{B`;Jx|ul)|ocz7xwyLIU^D`vngPiv^gOoh~;qba)M z-8ff?J#_AGiBgZyjgh$D&8qw{@T#x$>VwS@yi- zoE<7&rdTIGJYV9<4z*cOoM};WchojQSk5jN1&YRP6&IGj+fI1<)mqj-G*Bd#KwE+y zdZKM`A~D%%zdhG594FE(x^eMaw~+PD55ZeH9TaM_%91i;$%j3C=nDvL)uMi!Ya zL}%VS!>({2Pc=F%TZEEWX!+f^0rHWHO=*NRhuOA2&<{&GL$EqYry*2|PHB@YgK;Mh zOw}fgFP)fZ3GP(ur!KH!Jyw6|NyJ$_6y$4};^g zHF0die_Vlj07ryu?8@7I_13%v53@deu$0Pr$uTPa?CtGnq?*MB2~m1bzE@(Y1Y&Rl<%uwDRDL~DhE zPne>8iWjMcryxT8v*)eBoVk~y$72enQJ42$d~vhhm@pJ5O7bVUd2c?%1~SPo20oW6 zxRN8w{F(0U!sj(sPW3ADo+!zCD7usC@#nL!Cmlz@n{%3*&F1$B|YwA~@ZXZ~P*5ISyad$N9 zr}wJ#n^?ubr5^7p@Z;FB^X)2ex`;Jn>UaJ1vT-f+A(QJ9?Yzf$=H&t}_G>8RoUcY^ ztTKMS|B-cO-P$PmdbR}r9krfkCEVe!kD1-YU&#vTSw6-t$S)`_?Jwf&<#WZ&kz;igVAm{wR`< z-{@T;2jRqWvK zRX@OJo3>z9+AvoPUB#bz(0SEt_Jl7=j#s$V(2#?nRnRJgI^5#s_|ix6@cZzw``VwK z{Ybo}VHY|(AF*m$Ps7jan|-yU z9VN@Qf2TzC?fAvByH(}QnSPQHr0H@>kG>z>lnr3i)+gB?3$=FYq*5J#$_uX?i1(4o zwk?bgY+>(y5IW>J%->`3pzB5?#(B;cZ zlUScV0tZ!uNZrVY)Y@R0sV~8LH7Xk$lzZr~uQCf{A@~e95BPWB^t~rOju0 zqj?7fN0f(P;*vi<>IAij0kmrCc5Z!HI-DXvY8uYylUafr2(>l8TXyx1a?nAI)Jbq7TNd zmk%=CtsMBw@9esi;I!rt-QcM&PR!KW8g;?JGb)Fnjj3YDYq&|3_Ln(X$nZOQ+9`xvMKuk}p31hfe8%4nH6OHC zas?B;FAckt9B1!bZ(@8@96ODyBRAa^TYs z?u6ux)A~BF&tV|bmF|H`Nn!o+#nm*WZ6gB6o%(5Ues z*Mmwb@t3|5IuwtfpX+=k>YuQUOSYrFVTEvnd^2V>RoWGIg%ZUH6eGiB29Y?kw&W|H z-dj|&3>J3a+0&O-evP6JPM&f3>Z2w{-=)l~xrt^*6x^yTD6HOUE;4rUs9Dc{Xui|J zd4i|^^sDa(E>&0pYtbfz8hsI*J|Rb6b`9H^*!MEjE=^JvUMac2o*yP{Qc~L9$}+0> z?E>BWHQ)cm-g|~cwQOsnjU+{a1j$iQKtLpC8bp!^EjfddgXA0=L2?EG$s#$6(BzzR zPLgSIlqT6=)86S`XP(miWd)u^gjqsDm0Te|YYUgA3;{(PRs z9g@ruXOJd@T)Bf_!y}l}!)saExTm#Ql(Pb7*~9KaSOZMvW65poNB8^iJg;Mtxwlz4)PbATP5)klIwe3{ z`SYH<#zti+D+5BSXILxf&R>%Vx2(k?Ong|AAE!joG+`5 zdcB!EvJg^Rk~(SM-di0BR%O68Rn7jG;M~y&#Yav~^{tYKE0)=iizdx=eLvKBFf;41 zz%{u-xx$oWmy_jVS9E8{D+WhMK)uiO_14&nK?xtUSm^W@W%*>-;;yF$>cMr#>@QGN zNRr=8RiJ;zrN`L`sSn-9(OanQOCxU=J@84nxbe*w{%oYIz}S%~(E@hprRxebDZ?vW zaK~Ow$aRd)wgxE%XGcjRCSW6K`eED6LF&!*KDT_kxy+r1A7EwXkp>T}1&D6f9Qw0* zJ|2>p;-?5zZB%|d=y?bmk(YxtrO|{}y#HGKHQAIH!g+s4gem;>4uOSLz#dwD4L*FR-JoeWY@*iSi?dt|C&;EjmJqas|`xIY{#<;el z3k|HRn5r7ANO;&9V%DBweLfD$&AmMrpdxE14-b9s@C5c~xr__lWa?&J<{2^si5Y}z zc`+ul3YI!g^e=ugiwlh$R$LSj;Q|}dzonF_j&(zO zYfc6IqA8V+u!hH!cW{=9JH{kRet`neWC#Ajrp{@8C{gMTH$EHqz$Q#9ke74XpHRzsu5;_Le7o#+;(Xgy>xf&LRAIo+8VSPuaJ{gYRLBr3un%Ll86@_hX~Q!9Il9E|RHF za;?oBd~z$^nN@+~ssad3>oencab6Ae-a5ykt;9j8OrgX~*J<=W!X7Nx^_E`_9A+}d zGq==5V6b2%{_Ms(#(ZsmXN=X($G0>8zQA2Y#l4DIUROug1L1}h!Q(pNBboKph>hvC zubU^mHEB8FmgIJYFBAFS_GosS3)wB7Zeou3MgGKG9I`%1F%I-xpn@arcRR~%;72jm zVG+*<68N40dwx@?abGH-keVN}FdEqj0kPYa6`vJYc$Ww6@LZW_f5XcYM;$d}#*7nk z>~hazRr@l`-OU{KmF8j1f=(O(>d)ALF?YAX!EC#b9{CJ|VHdyEfS2O7yW)5zPf1v*y1;f3R zbv`{`f$I9kIfw5glk11=XKOI4O=~*JFALvfm6wAO=dipy4(ER2BW=6PNbTtUg$GZff&BCdhC{roK=^?OtI5N`B z;nDmi%4*_y%$l7|P|2raD>4{46oP$nj04D$n@1+M7`Lved%} zcZ$1Nwse2)#Sch{b-cBZ;OXmUC(OeeTa+S_KA2~&s^34_A8#=aQe1wRY`(iLCep0# za(Sb7`cwNfHwNB23~Pa*#*3Go_=yw9Utty8cbwYj<77uJfi>(4eLp#0+UhnoJ4{0n7X#q|Uh9 zN*F;~kI3)?&#Cgg5ZW)QkoH+ZKFZIO>1Bu`gx_eVX(YcPQz@arHg;}2ODGc_xT`a_ zO83?^lR~d$8YNM(N8$baMAoCwMqAIXCZZa@=kef=XUp+n=9DS!Ta51_>JUQhE;em= zZR-@{ObL&o51DEe9_lQxeQtaguI2I$_Ug+H(wn-JwSCdLAXXK6-}VSD+xpWHfqC~) zV}GEM6GgIJbbXXOOJvP65tDCY+Mh^}4jUnf8w5(vzK++Ft7|4|OqtH;<_Nay={H9c zdk{S3#g3=aX@3aXNT9kaoA2v31E#aM?s^q48` zOZFf~%}$)uTPTKWUhPSF8Ln0!_ifIC~0TPA(t<2WU|a%M9hjMMzc z%iXRl0wa*u%I+2&Ml&}x)HW%53{^*LujsqE1<#n)>14c5))`BsNtVM?xi7_kYqlH_ z?;4)9jADXwqz~y67wx;(4q1IKXxHsbg)9j6cgr*1UgK@005FC0P&jTMt+h)m-nab} z)h@q+g#kE+C!;MJz1Pu@oNw<+-(ae=c~nU%8Q(2RZkZBaT0=GYRFol{!>6>AxX{LB zQKHPQxV_+6;9LD8?OVEJig>;AremOpg~E12j#pWGjB^6z-13c$wawWw)oD!DoL_Et zzxC*y#0X;=EDaVTl+&r=zqgEg8F~^M*7^Y2Nn;95hhC;0nx;M}r!vdJiZ77H8@4B7 zi!ff{=b-v_T8;B;C37!}BmU$^SI)Yh_wgA7L0FNd+%r69_vr;!)`0nk6nBEnt2HXh zfx6KJ%8VyZVRQb4fZZIt6A>RwrmAo&;`hO_e@%qk8xE-WZ2DiIdB6wp3#7Qx#!*u% zCO_Gx;V%d{B&ZPIZvwah!)WHgY2C}8xqHSXj^;O+hTfI^sKRKwBX;Wvv_%4s<<4Y; z0{ZG&)mSDK+T0d@rt9#t@hZEHOjXvO%>NSj1NuLccuN1kXt(`=(O$CYLVP_w@o&n? zex3abBnzWA0W*@iU94$3}fuR{}XgONx64f0V>UH5tkGinq8Hy|HkaEUIu zSW8_!ro0+h7|;r(fk}wFD~aCGbbSUAwn|qrR?}b^~{vtjRCJ&4;UA`tL}iJ zHi9A+!0QqIgwXMVRV05iu=|7M)em6`*AHft-GGO~PVC>1=TpZkdsVM%-jw-sJxRZ0 zK)yWIqYHexeOr7D)ayHvKJa7IcJRBv-SQXLK8r))PmU`no6kmnZYDKueLRIy-$(+U z9(E*Px_*`pU7G~fr5K>q`06Jv=wP7hI`VgZf#@pq#8s2tEGE&4MfxR(+MKl78M4ik z0*DTszJSxw}xKkPB`) z6aobqs%U|J%ynqn=eVFiQx>l6+~C;(d=pAzXfb&d52R!4nhdb8qCH_w1B$-jtL*;z5dE+$Y1+`;jeOp9u(X~`waoMil>0fhG%t*p&Qlo z)($w$J0pYEk8SzqmmE#0^IkBu8f-AT`84D${79&j4o!`hi7zU+8a5kNs=Y zw6FI77xaHfqWKR=gh-EKpk%QU=lxCoeMeXW&S5eAZ~q~Ue^x;J8uNn8l(G0{VWl`j z=f8gn;BGN|s@+zdvW_U`E8(2q|D`pQe>fw>a4#1nuq>P=s`dVwld@+|?z zI~@fj{mgavf0^&Oe`~JNjdO>sjk7l3l>0qU?7Mr%Y zmo!?gzvbLE{U3uiTpSvf54aY9A(l!>UG|A|Nd zGlSt%Z~tRG?|;nNKWe~b&$so3?%L7S|wMl|;V$C$%~GNLvVcq$)+#Cp2;_!JywXT5+hFKCIc2R(oV8Lt2Kf z^Cz{c^=k3?HzGnf@33}V*_76<&XP!%dmllp$~id|tK&XI^}y&o88lHIbMCD2-TV#y z*>cykze)7(j}{`UAE@2M3)C*=m=KZbRm49&&L!H6N27rhAb#d}p}x=i)Gr1K;5OQ! zpxtkU(c6f2yFv+*vM=J`w#tbL(y7d>5K*EY{2T3S|6);q3V0O26Rg0-+D)+(Mg8 zvs>;0GN|MFI2B5j)_K}#>$QQe?JWMbj8}w~bbKzz6LKknl=Zr8E&j+QW+7>Z;flI- zjA?Xt>uGjv^zm2(96ymbT_Y&h>~rkMR-%PIR^`hWtIBEen{a<3A>7Uk?@YPf>{)eL z?~hpzyG$O7W<()QGWa5L6`!eTOKj&fHtOr^TAEwvOgCumJM#4?X~1Imo7%27f#|Qf z9S&{N^9D(sTHvkN=>{xkk`&n=fNRTKG-;{B)d{eU_Zy=Ootxy~5+X-(quCr#z$ayM z(OL>=I0d3>VA{{!j88K4p<}^2=x2au6)-uy-(N)ga)VDPet{?qieg39Vv7L4vD$05 zeK4M6F$4hdz#bn@%>1tcukHd?`M(z^Z{W1F@$OpfwKuIFE>iVEA@nles81Vkt z&aod)bfmXB=m!1s?|<)$f{8s;(eEq_8eveIS+x4U7LQ;oWJ~UMmg_v3pIUXNnZ|z+ zA9!7~7FgNuj-i5ofqLfHYrLV4e`k@OdBCs$Yx}Sd*h>F=2cW9`sp}e)e~a*Uo_`A6 zx)9k&Acx?Zo!oxpyPkKaE&yU7nbgo&&p-$aLW{*1NrxM(Id9Q9Y;T*4vRGSeBb_jj zms(V1+%)V!H-nA-Ge-O3uQWXdH|k;wjaCq>N|b6N#f_&l5DYn6TRRI5gl;O2Lk~KM zZpdLUsotXs%Wh**afWpQiz$UUU(L_E3*`%?`tz&%#M1m7*(PLiuk~GSrkztY zmOyUwzCtQprhPO(u6C{vg&cHw>sa~9Q}P;Px3*y0%`bJ{5AZcB`^d{WG#}ve8f z)=p5z+L?S>o1nr&^|W5@yf4 zl1`7`7a7o!V+@)g6E|Wbj<-)XMZr<7t9W}r+?PkAAD{#aC=qbMB17xbghm~KI-+vve=exsfR*G?n`>`G?!*VV*U!#7G|EI)@F_o;#6`G#_QGo?4K~vXqUP!Ws zm8-_tX{yDO)}IZL>zQ=H?yK)uOSGXVF5JlJt`$i9b|Q|2m$G>_i7qKAD7cf&%w7@R z%7BtU?LX2eq;GjlpRimlC5@_3!&Vr|5Zw#uGZcGJ1^rX{DmDMco9 z^}O2i=buupC@$Q;wV#STIHE+Z`@Lq$14G5yuDG>cK^cgc2Iknxy{pM%%7MLC zOFS`xZqb?XcR8IlJm^9^#{iLe!jTZTWNU6O@UlDlj7;XG@9HFZNtjXFa#Yce)qE_N zDEbRj@;V2T&4CBwNM<{KQ5Q|unyo&5SaDo)Rg<0y*JY`ye{A+HY(Q>dxB);OOn$;S z%C!@X0NF1HP8I#%{15(!C-jqmIr1*}TV3|W`RX;^YykiRq9@SJ!T{cS<~uijLg>H` zULmzr6Z`|D*dCgkj=bI%!Z$=)24gYJG9^}e&r=p2X4aNV)So?qdExb&(pDK@CProW zs3J($k7Bzssp*7N>l^92+&N!2yH7Ti=3K!? zon5yK4Gh{J@N|%hFt;#svIIZexkoM&m_SHG7I6NC?d?W_ zn3*5D_?B>=@9PcB?6d2Lvj+YYV^SM;5ND(L*MZXHenta@Xoh6@PY-nYrb(K!=IQB9 zjt+LUQoJog)dsaE$X6`u6R2+*8s4@AO5+rh(yTZ_~RlFXC@16VM9MARf0k1IAJg4FG z3T}Jm;K8S|uaZwWQg1=O?t?n|Ua?^o&iJaE=k7Ne2KUD)74elhg9INf`JFIy!MX8}kw()OrA@Z!5)vwbO=7Ke3OY8#+JH$E|car*WGZ5M@2l=MgEVp*f?{86S2YlC-|5~TaSrolFBGw6BWV=63GyVJVqAJf`ssYm zVpu!T*on_u$1Al}V(xaAvdR>t~x#c!nLMy8OT)5 zI0`_+-p-Zhk9BJ5hdia!A#PKdW`tH7;)a1YF#(lst~vYq zP6f2RZD0FlK~y&+RDUszeMA;Sf1#weqtx^ZQ~^On8otZc@_nrC1!8C!+~YlgkgPPVP{heDG%}QXW1B43ZB|Q$#eAH_D=%X-fHL&XKB;7$ z-bUER=OOE4rckT`=X%{gV(Q@g!rivKb_P#)=MM%jBd&#%2Yi~Ap&gRcN#-wXvu(j` zIY9`_XNVs`zCuoALg7hAT(wtO${S5Q7I?RUDAfbKc4k|4TqJcHB(A-+-+4C4&NM5n z|7_vyTjxrSbaR{tZVR!x`-ud{v=gTT6m$k97Wi%>`I2HB|F*qvSm(nW2!@B&Mm%#FXo&g~jx?v~N zElCmjVuopk>r>#F@(lOGucw>uTL*H}ge^w5oXeuJJM*6Ih$rWtaA-GIP1V}W+CqyA zmRZB|o+k)bysg+)tY8Yp5U>0Y&t#ezwHe=#ROQhcf{3X7Dj~YsXGGmN$91mbE0Z@= zX7IeatFX_H)IgDj-OVjZ5S}mndcK2phjxk|%78TOPB4(kLnbOrZw6vGiMxAL4Nv6Y z4IUSD2Y2C&J-f~Ppm|3D$>);~CduTQ(qqjJulI6DWtxAHIoFm{YLvw1&iLJ)@W2pWis!BteT)ejY3cp; z_t2)}ZR@7Hwb%YRW&7SgLJwWpEMkNOq|16I;!gS=dzC%QGf$Q^*R;T_QSgd10PVc+BZ>zwi=--%s%WkPR6{%!HSaxt3znc5*W{XpsB-e6N=up^K zy1Xa5h90V`p0_WL8z3!hS7>)*Kh3Zgv)x~<9tI|&c?Qm^?8MgOX6+28>9jpJ!_n#oEE9xg4_Axhmc?*joFh&az`t<}Fa>zWbqr zqaHNIJgphAElGp42R1}#(!fRS~xb=6pJ9ZeSX>e;J?b`}iCEw@s0^E!CCL6sc z-oD|Yea~-K=*_)G z*SMPqlITY{531<(F6b5ecJu(~++RpeG3u1fmcE_u>8$?s`@eC9j^k8*@WgbW8+p(^ zG*Q2gyDRb?IcxkkO47eEonjPjf}P7mug!vbJ-=V8H^)eTZ~VO7et}4J|25MpP}nzs z$PafKpT2>0AHrXH#|Q^Bh9So@mv46SH&WKWa+yj|Z%YO^HVkz97(0-PigJlxt(!Y5 zi>>htLch~9M&tj3dRKA+PIQfJ4gG`VcNfz_;Bh_cqfDLbe=H6aTN033fCTElyo6j`<73I5c*B?Qnzrn9g~}_$Q{N(iG285wO7apO1w&xL!-_ zH3iam`OnYmSnyT|vWl=ZUu-Z$gWS$%)u-JGRi$p1*1UEtXe95m@gu`{v8q^8^HVfpia>LL zN9A(_i0w~l6hUe?F7Uwnt~C)_)E2WndtVL!0?#zS-?5^Yy(>SIO!_6iDjC+We6uel zj4F*fkyvRRk42_fAG%-Iy?~&3r064tarHRp?8T+C(^aOVE~wv!o}XfqVZby5Vy|!v zW6O7T;wAKG z-x&Qk7AbRHd9@{k##REX8rr27Tk}_Q9|n!BHiQ8Oo8Rq`2WxCpn2XF2N8oj$$+n#j ztH}F+xA49^is@P#b(;PQbPEWCf|nTaa_Qzk%~WQ$RYdp zU|9H92>}Y^d+-Y&7)2errqPDdWH5|94gKBtkN@+w^!?EmCoe!yWM)7~+SY%s%HMiv z&J>k%lL+1xZvNeJ-rpwUn!i`%uYGh-g?@z|$UgfYc8Ti6{4Wq2)NJhPe=Omm>%%{K zu}@@un_*FKm3N1$cRjn&N84M%_Q_P2mY~pG{=1JGe}TN=a&)(Mbz&}xupQ@0N(T62 zjd4Sh>7Q`Llo``N`?D*dbMJvjO|DXa%L}mOKKKnhHX{AKxR(*G|DD~d=LCWZZzTGs zJ*)^+0X0AdtwZtmu!=V49t>j8AEI@Xr$Ya zGErX|$~!r@hbeoH~L#3sethb=^y3imqShZ94+_uHDO+F8bN3%vFMr2B<; z<-IHYN_DLx?=&}tOhb4Vdv=74dF6yP3@%K(F-CmnJ|Q8!3;qr3Bc!?r!t#7+bL#>b z+snIja>rD!9^CzyW4yJK=ML2=-7yLZZEe&Hgz>oTl$ zdFyJ`d_{bf+kN?`OJ>7{aF6m1VMlt@iLkh3x$j1?wIut=Y)kn!!PMe?t!wvS^31~h z+5^{KC68vQgjBA<{?jfR9?uQ)1ljj-+MWX1$`dHlVo$A&kru=oKOv=A%PI5sM&Aa+ z4<6G9y2h_qis?r5@$ooyaoDwU;!bh#Rw%9!7ET?gXf5#>OL`8;Ayk6Ri>=dCa^bk+ zb6PdY@JrXWY5Uo4M|mV4n~M|H`xdaU$_Vj&R<{3)mIe<;=^PEPBv@n2{5Oi}f2XYe=XbsF+Cg)ZRs0O}o(?_Q+T;t5 zS_*7Q7onArkmd;Y&f9r6Hut7ANLbRVj})aR~Y0FopZd z?IFzh?uZVB9S=;}NvhBs*24RMK77d#b`dQJIjv+-;DF+ z8$u8#Zj;T*qe*_s1!X1mnyC$)6$_u@Nk(QlS&t#&(^7?itey{U4=PiWToPlP#;$%; zrdI&446;l~_yHuSI~HGyddXY1XTCx7y<ONO4jm+WOFC9Qtkm;(muqtVBgp@h- zF%xG*fg;he?7&tGA+8ZozQzgVV!;Yw+aB;9`IPTj*X@A0tXox^W=y)TN1sw={R1&{ zIdo8r_FQH)H?wfZdu|E3uY4?pQDro-#&CsW1f82AY(QhRqi`8Q#kb>Ve$0(q*H#-W zzxcA)8KTHyACX%u(4&O#9x-i8qr0o$2&?A#Ua#=r`RiXGw-4eG-A-8YrCvIS^DVm~3(FGpDJ0dY`lVE$sP$S2T z*OW3s|AtA^3oDLi@?)&!xUZ5aTuCcyRBqT|OBugNO^2oZAsx}fSF9NxD(} z-j0D8G;t+vG<_JC^4i;dg#Ps!NU_%`VvW=HO$CHL#cOlksH4Pd$e~bS$Ow+@{jb!+yc_%ln>;7~;MxnOHfk$GW+UneU(C z=3nK;5E4OtfwZpAAekNLi-OO=>G@Yxr$m z2K%zmt8}R>p@X_cW++BHNj^(bC%e&1%yC)j6Oo=4J};pxm*p;nkVl$C+1zEDX^Sh4 zl@P~U`_MRrAN$@H0y+O_Z~C+C>7UnBXhy(pO_&QTWT(*GM-6~}1@ILZ|FHdpz(obP zFi&cO(Q+FYS3+^i5u4?keI12#aSBM`in> zjSIasyMqn&Yn=(5C0a^1pb-qjtuw!^NI%dlh>FVfSc(Ot^WE&bdyV$R67Mn@ly&Lh zY|L&y<*!v6C3wS>Q#*7UEiLd?}I1!bNC~I`WrLZs8IuhnpZkjgT9ztaT zle_CquMSRS<~Uq9Xb}G-LwtA*juGdB+bO9}o%FW*wY>fD}G+^mCn^=~mvAbv%ewjrF!G)2fq!$S;(xmIonl(LCvU{H+X?rg^*dQ?| zYAzBzNotIQbf;NV=2E?x7S}BtTZ`wFug_mP<o`sba*Kw++G3hYQ$dvM+-QF z&YCFsF|60oTjsVX1Mp&S@HMn}uO_fs!imMOEoOo`7M!tPe$w{@{& z;bnUhM=t_$eM@`a9A5+rvq!oTnXY^i666CQfx+feWx2d#g1ydRVnil z^bSeBS$lDPxYd($aL9rn>@_D$5guhMkiS&!xL^KrQt#nXnJxpXcNN}qFcr$Mz&4Gc zI|tr&9|-p0h@o-H@pPWkNV{!WWou=arzBvPVlxSwOJ&aeILnJE$4p50s^QWyL-=3} za&irTZ+v?;vYP$tE0dbN;FZiei13u2YglaefwBdquh@D$%=(k!kxVBO@qF=Vg-INh z_%}V)Z;b|D!`>NuC-Z%V&<;Q;7L7eBE;iU*C4hw=UldVqEyHLeUc7ocGelyhlVO#gB4+3N5rj*!bu60EJePR(phlZ4!;vEb-2Rzt|Md=I%nDt)Y5!pxN_7uE%u2U+!NmRH*S z?i_G%Xc~DaQSe2%|K*t)($=Y1iJ)gXrB!p7$fQ)DrHPbQCEP{wLHI2m4QxWtQ)Fq6 zR+i zj<}Q}ITl)KOYl|*GP=kXApUodWZD&d)KIFNCruGr`NaMr+I`0_N=S&p$>>F$xp~5@ zppx0rZr*cxd8v>67u?^vUNttI)K>GOnJ3+jxGoe4(*TP!3jzcS9g3JJ8 z;w~R^qtiITy82l@l&}evk@b(jus=&`Vj9ja`B|`n7sFL6)^&HB z?#A_~(A`lFeCp`=J;JUnieG62bWnQ@i|!43kYHLY;~e{z`Q>*PHnC?FvqPlsf)b4- zI*N=AjEHB9J17LRz==I+8_USFjdt(+s367Q^3T!bM=QGPgvW7xR3AT>7%5&dzm56Y zN~++icmnAF6XlE_yNVf_>P(aGPeNHt6>6Ik^aI6HUNf7VEYOGYWq^Rga`<*fgy7om zVcGW-KkcC(O?*;pS-xStr)&KHZ? z7>hNJ<;T1AGjU;*vqLW%9$5OJt#$jvb7=} zfPynOa96MjcbmQjI8j4BSlo|b_>U7cgzdse2l7^WT&of@aCoXPg~3T)g&mrc&7=+p zD`^MY{M|<5@B+8G>TuJD+on@x;kP5l*=X4=F=1{DSm$23C(fRsYSHT5k`LWxVUL8D z${)u*zU6%sK}^dmkvqnc@M<($7Xg3`n?=g48|BL31l&q9ut#^y-+1|usV`N%{v;RG zk+JzM7&j4u(2nsHSrenI^i`^~Zl$kImd5v>E?;t=Xns#ZtlN+MC2!58PjZ%D<8F(d312u@bK!$|8U`K0-T zbj4u?{nRFldYb<`slf={#l=hwkN)aitPp*L=tCl+lud*0w=o8i<T5G_P@=y{8nW_13SrsnCj2#y-VrYu$qjA;ioT}9AS2?DzVdiDvFSk6G%{z86M zO5XF5)72FN7A-{SJq&BgU{C^%%XF-&v4HK0aBX%6nj8TQ^JgAdiw%E;bUxXeT{W)_ zv)SVe8&n(JW{qEvgVmYhv%C-rUi%`j>g(G)^Q6tvqov_%41wL^i`2usq?~BhpXN>c z=Is`m1Q~IZ0S%zFSA64dB{`5Bn&a@uZ6!{7J>F1jE7cNEZkLsfYq3(<^k7TmQFQpVYWCMN@=zF|Xn|Ac;bg3s%kX+qC zT^6%rq*okJy9X5x`IW5d?alIl9yT zcd5^6(nLF)N^?_V^hK#6rHL@jIO!Q)WRE1>7ldW#1s9EGu)XWZGk{j`bt1M|^mHkq zCoRKSk8f|aXPqLFYs2CGNGa6Dvt$Jg#vdqQ`EHM}b{FcLg|GE9Cw+E@zzoET-dCIq z77j_jBr2u2o9z;Xk%hXv=(VAVq_I;r;gcnUvujxmhgHI+PY&Wc=)x`pPVrkG)dzKW zq(%C^JjwO6;W8broBWK-bYorMv3Q=Gz4$iViN-6Kl{oWThhcx{-3#bD7^Ofg&aTJh z_^SS*p-zYRtNphlZq)oXgVp2~ri@rP55rkV6QyYAbvNq1u+DzuS`@FNPrdPPd+8=1 zK^8DD_xV=O+2E<*<$`x0q5PgM8uMYzVy7bOk@DP4ce%uWv3av$>g!F|!EPksy{9}} zWqVcAH_o?z;9}8t<7?k_J6Y@wp)(pJBGn%x-OFrDa6E^I{Xr?YREa)jfbgi| zc?tWw(DmFT=@_r{vMwVg#Wl`H@C2XCDn}^Z%?%6TsvjKFllRA zhj`4%K0zUXL~ho+zk>y_ls5M{j*1uwQHX)>ue+AsuWyu#fos+&PjUEdna0R?;07tj zc8c=rIm}ZiO!dS;`StH=5Igi@+V%2%pRKj}gg2=p%^BZ+(#H~C`arDcp=MPQE-mJ} zE4QJ=st()fuEAA>`q%y7s{V4!h1c&p96SuPeP*U6CZs@lYQ@P5Z$W8Un?8F z$hi5*urP^E{*3~fXdB{3k(FMaki0%Wf+WdHXQ4)nkC*6;p4NRW|E9^C?gfu_J+5&BeR0@K>veaoQITU%0+HUxn6C}4dT{7ce ze+E2^0$T%TB(F`*>b&Hs9tUj+=#duBtol!95d&vmtTWuR5%eC-G>3DkD6`1BSd~6W z7x%YJdol+-PUgFN%y15#+<+(5~_kd zP=i&~d?eDhM1(i8?E5YazD)UQ+Io;z3#^8|nW+$P$+b~>xS1f)o6Z&8DKI=)6ZO?A zP^QU)DO7H7#|r#apgd^=R$C5lQP(=T$-g+dfn|^y=ooSgVUdsHGzPl5pO(WDI8V$- zYme8Xaf^4o0iHWCI1u5@Xz5gNq)IrCd4sM z`Q(BTUcNF2Ozjg`Ww5{ux-WsvjZROiT3^YUr6y+URcwvd$ms}mLj2cb){I+SV~=i< z9X_8V?h0l-uBwMMPUcK-ug&p;>lVjs9azdOhNv=MK=2ewo0~W&XCln-Z9N$-og{IP zg&y#J2VXFhU{Wtf$e(_+_;wH^VnT~%LXugF2luhb+hg-Fk-O4a^OQmllG93IPAYl- zY83wEw?EF*`MF)=DOg?Z{4a3I*oy>77`X?^6Y)Br@5x%%j{aTV6Y+8tN( zcSP!aOU(@sjc>P`;zKQ~t=JcmVL0>}%!i04jBisRM+Ka`rL$X94bHiyt((W z?Ck@*Db4`6?A0>4xLFFwA|F`pWj^;lM^nt@HP(F@&T9uxf9$s zK$vrheP3>DM=u=0(qgg;eAVk?Xe<&t;~T24^Z`5wu|cd*;^7Q^4Ug6c!9oW z^6B>EF&)RVMnTejH6@!kC9eiD{R+#a7(Gpze4TO3`g-HE0I|#9bgV3w`S|M}M{_|j zA3hTl2ZL2S0iw9VzG#ZxNh^d^qkVqSND;&ZKX9hJAZG0FJIUbbU?OFzd^XiE)iIWV%TIvDoUAfyOiWzHMpvlZWOYkdZD`mRz5fiK2vJk+{gZ57F&iK|RTM+;6Tw zg;7O0Pev6sw=%;mOcWo611tMxqTV@BzAEV5`2Y*xH#*=z6H9>6Bo+uzo$-;26{r9B z=rB13Q=&<+m^P;e35cb{EUpA+h75yLriqq)r~Vg6qyW}n-tl@l<}f~1W(?2?Fi4*p zy#BF?>W;cL1%AhCM_2{`Lxf89ZORYPo-cJK12>7~D|>};7)y5fv7YAyabhNoFW4~o zWX4~gpp)zh^%dQ?TI%N$jE$7N__$ejk}W)3#AA-~_{)qEmmhJEOp;d6Ja`m;h%C8?LuAfpv}M z=J4Iv)%RBq%mS`hMX1JPvP2kmXfMhDWK+I4#k!%Ao)z`c;rf&0{zW}47B<7BBkWY^ zw~mCi;nU4d@Yqln{V_NqZ+})uD}|3VM|TJ-`LqLbiC-r{`%H$#IRLOhc0E9~f$@nn zG#+}s&4?m}$S&|085aAG>oJ5JIY8@NN7SD+*9jio&&t2FVrf)dkR}W3b>Nad&Gty! z)rfkkHb_uOfO4JmHK{$y*`qEfO3+tw5!BW ztc!thS!y(e7S-#@TO4u9-)}6^mo73|o&P3_PhLC1KXLVyLj^LlS@k%0J~mY&phHT6 z$QTHWCodZV0Z;|rGjuE9>Xv@7eL)m4tCv-iCea#ODp5Xi(VL3%g*o!jc}beKQuG$f z8BP~gk)o7P4k&FE>3O{1pGW;PqOR;-2tk8y{iw6V07EdNXmY$}fVkypLD}v;z@DCm zi0DMjg&m<7)+J008q#Py%Q!bP^XlCc(3%gWP5W3uE-1r;v#GV%E^v@BHJaGaa|m7+ z!?}e_uY|aP7cPj1BYj%HZ!6-i98)P`KM3RJIX?x#)3oo8P3GAhWDsBEM1oi0nw||Jkp^WCCo_YCm@W7EAybtPb7xU7>9U^p)ct-CgU^MI}Qvi zQCzEp`p9rsvE&&}2Sch2pJnpXl?Ambud?_hMZ6y7_xL@Ukp!{vry0)43^gesDESRQ zS*GTyg%#~x-{kiUi+;75Lo7x|-^$Sv{7El(Hfp{?EcgU6%7!_YRQE*wg&Qxp(X&tT zW8vh#BO}BFcQc$~OhXS=AOP?Tyk>mCfj)Aj|L@KDR+yDGY&L8d)(J1-ddHX_KZr^; z4PZb2xWkVDjI%p}iHqvhU?sr0O>K-+-Ryos5m4!2r*GPNJ9b<)Z3k3n3MK z^sM)l?%aP|G0^1q6F+txOV#Gfeo&9zaASFG_D#CEAB(%3t<~35rq+?4o$eXo9z`qN z*sKp=ZS8>fWzuA-X2eow^0lq@)OYL;ajc7W3)T-$mnapYI3SW!pr}ttfp!?~t>7^4 ztQ?<5sn*z~HheaT-}IZ`bvwzB1X?%}8pKGx(%^a1zd7xQJbP7Fo5?iY42BcP0q5k{ z$tCv+Z=^=rlM?YhE6Jg%7rD~Gh#!0T1!i*eu(*eI@h;n0Pi@Ox4+dP%IugXA-LvU|(;dc3P;58s=-vO}v8r}9xGzt~`jyDctok~{|Rcm;3jtyH?< zWYTqu+NV3QaAAMo{hAyj{+#ZEom8u-$g5A7Q9EEcB+RO|)=^*Q!24okn$(D0hmpii z5%1|+Ud9ee`dr$?v;zvA?Cvb8y6GCRFuRc@c79$XDGTK?z7ScrG2EZ4nU6nu*BlL( zyXbj^(3ej?bgz?R4fiMATX{6iz3peL`Q^(DmUW4>Rzf#dW#?-X<%#NwO;s8%l~mP; z(h3ySl&@mB@&0vkd9i^F-(q=7O@Hl#WLBgogdsug-pE&-iNsM}Q+!de<4WL2AiX?) zikex0Y6ri|tLT>e|VI+x-0lc=R55N4wG8)UgDpI)DBzKxJ*)TA=$-XNpy z8>>2H#Q4B7Z$ZX4Oo251*}_RYYKtvr{~%snXXQ{##{3PW~`N2!*+RJ1@4gtNHnk zO#6ASW@vIK{{12II&xaSNxqgUL6Vqr;L9gx@cbkCZFkud~Qh z)^n4d{-5w{Sa?RtR3QWtJ@Rc{am_?;%2DN*NSRA`Vcqiy6u~mn&bBqi*_^JCP!nlZ zDnUlRN>pl`I^UVyelKgi^L!#@m{?9XjFH0ckV05IbD6s*+DGT4uxrG}VBGF=^YrbPD@P3LpH@kifoZ9IUDBFNWrs`-Cw@2!L4Xxnw)L4r$=-~@su!Gk*q zK?Z^*!7cbO!QGwU8X!oJ;DLbzcXxur5C$JCID-!Qp8nRZb?SRpt#6;b_C8go_O9~> zHAB-iPd_wtKYicV^}D3$3{=o#Qle*hq6@2S zMN>o0zDOQNO}K$71m+%-!E--tYqqk}E)?U1X^>B_*!eGnepVoxR}unpt;g zrT6J?r_>YN-9=Lw67V7FYn%PiOcea978n60O{ex)7m?8eJy4`91purnk^2c>0Z;9( zdubz1F7#l=x*XPx3!7I_Esjjj4~OU8GYu?>NJ?v(pgm2eg%{}e46%>zW^}eLb`4W; zR)(KR%GYaTJ9tw*iC4S9+=_b*(Z6L^W{cm|Am0;h{=N(TE>a*nA6u-@a3eArgBPWh z&#uSvOq`pbLD+g=jU)xQ`qZa9S~@k{HPD-4_jFtS5z%P&F0AvzMH!Bh65)W+@iHxX z&;9Ywbf>&fIiP(F<$t+ zvV*7$4%{{|SVHVN_rffMYoAFfv9iTinBbl!ed8^{vJ4TB8w*%p3yie)^AUdLNVU?P zmVW8;wLMdq!lhb6$VG8rSY)#HL+r_5SMe7dvG?@V(iEKpJsLB#Majl0F;ja5s-!{E5gN-vwWm~_jWc@?A=s3CcWM5N#a&u7s zGcU9m4K6dDg;dp^vqx})ZG>x2$BCz84vpC|XmzoOABu~w zPi9IrG_;Ak#{1m7Yw&bQAf67i?x^-t1XfPX2e*tBCQC*JE4$Qm31K>hYo3%^1=2-x z2rR>Lp_kp&!&(_XoSapmH&S~Z*Cu5QCeNn1d5b%y&lzQ=-%M_YD*sGFtd9MvS491= zW{Z+4VaY5wC$rtLa}M7xPm~mcOyTe{iu+j2H<{ zCTO5J8-9wBRNU9^;xql{TjIaVPX5*F|AZVxdFg2$E}(|Ppht~5O?x$HnMS1}2(Dg@ z@h}|>F1R2y1Z{D1zDRR5`>gU+98~z(!*=-*L(iY=~RyJ8wOizuRX7plob43H=6% zji{s=Qwl?UdSjWxy6WW>^_>Q*-)lQsqgGLw z{?ji}Qs=$f4gpgRJ4ECwQW0D;%>6xBDiReE~0=gE0G(H`pEmCnRtVmYnxgt zTczF1NJeY%dR-gNU290|=uThyksC>yjNDa-7NW)4vSubxK2ocP!w&0!;%@wo1CL*a zKv8Wfi)6pzkp3%hkofP>hIXzkQ+hvf6kkj$Jxa!2=cdmG5I}?{PMg=K-DpJb!%}P0 z$>nVrqG^}kxo)mS*S`bxU5XBnq1#o76=jJQ(bYZOe7*(cYR(_ZmrMrC?Ae#K+0*E^ z9Bb(vh5GlN$8BEv?P@Z;t?klf7WBYSbVcNl_~?%4IH423?P!0g=8hOC2c4Hpzp24< zXL6Bq8+YFzgc40rAXAnrfJVe%w`{i9?^wEa^VJo-l{f%Y{{L@9=6|N()ZvWl*wC2k z*y|3wqnd5_kEL8qOf={H>m}U#R^Tyj5}@YA{9PcWiKQpvRcUh5Ik9WPF(WLQ28JEg z_Dx&WS?=aU!c^BT)%3wrjcYZ?iX^s0qXsm%5=s1L#S zfk$7<8eWFD4DfEGMVCd*-g2u{f1gc=NFyhziiLNr%s?%yT{jZ@ppW<7J24=!;%-r zC~UsG!)S2`FfCSt7<+}PRX5Z(HnxS}@fx#+fY~&wTN24Mw~6!;L9}CDdh!=uR$GhrLdkZ7_8Rv>U9*$H>F&D(dX}F4wp-+>;|&d{Ac@%-0AH! zzhdrb8LRu^)-Q1>7wJ7s3BaU&ZQg<}#wsS|!~RHCuPgw%YdZ7P<+;bCDQa<>qC1W$ zj>&|gY^ekm6TC*YnDxAtpCw1%TH z!IeAB8xOx$s}?T}xRh$hsZfN@RpsZAU=1*Vkf;biWYtw(ne_mkUJP+Iyo&{I@O(Wr z#vyJ46XB_~S~%=CsF+gu5jV}XzOV2~?lFx~gY)v%j*L*JXiy9|vX^8RsH?|+`?>)5|qdyVWS<$O* zZfmLu*`=+7>FXeAHgvpHc{i6ahBsUUXBZ}(q@wp$p=f)VC&mz;_^+I|?4)#k7UdA@ z-LWy^DXHVuSC)d@$r>&z-U3^}ArG+{Zlt`}Ze@>&5TXe4CbC^>^6z9iR zd=V)2=p-@>zv^y&|8S?*|%j`q^?rfDR^Kqo?wi?_San=7f`U#wJSygYFHApIT# zfL$;a>|ZzB-s=ahvI4FugjDbB(E7Cf^l&d3Dd(NZ43>ksy0ipA?E@SCTpa*lGs1U^ z9S9)&=Fc6kZmWUwrv$JIYl%8osQO8s!D!cU8^tdEfs}01zL9|eZ_-TBctBo`M?%f+ z%ITFAKr04HQ3JM^?L}*bj22o`d{rMPj3I*3quE)D-rB8d6e1X1^lZ)%V=wT!K=Ayq z2DWWn*3-w!vl@Rp%zvA~X8Jv*EHHyS!km|j5*AhJf#c}6Y7I=?oi-TFr$_fbv!;I^ z_3wui#OsZ1<|xGw8k}?=SOsK$+pSma0o6#G*^cd#k-tC~O#eV8Uicf{2Xc2DlL7V0 z0}w<@zvKVppWCMO(S8@XxDHw58h3@Vd3EU>WYC}T+MR6hN!wyT{~K=ef3_5fQGtK0 z`*}|nyjm4y@&qmnW7VGdcy27Qyxf1IKD9j~RTSHi^>GhVu%GZnyB_w(yZx%iRhgYA z&$w2}RYRI{QgUds&8Pjs&o3GKVcw4_G&pF&NuPk~u^6zjpNZv>;xtU$IY|QXRjFXmZ-`wF z4=1CspZ?9NSxp-;BX6Uk`O;}459u+>-kz*4y0s~e>rLAW6B2&m`{k;J35(u z?aVp&789J!kdhpyh)S&~(kUXjd`p$3N6ni(eZ;`GMe-8mR&gXlGrfTe-Lx=L z`GV^RVb6WVD`Qg@s(To;@rqLm;&>VOLC+Gg?SJ+8kH4Sc5z3;^+S@_a*3?Cn z8MI0l$9m5|L@5WV*ir6u5-&z5qiOiX6&V=fn`kZv_TG@@y0uC6XPU&>yB0uw;LYx; z8E5_tnGQwPLTf@=-kvhX8`W>LIips7**K!nR=5O@>`mm$fA7XvAURO6?WAh2uCSZ+ zJCYB+YGc?YNZv2Yh>%$K!g|92xKF7E?PaFiZgZLMeH zC;Kw%8Y_2S~8>8MV3j=W>z6lR(b=5OHeoD6Iv>Vj04F1w% zeH=y}kTL52TE>t6?7Jv}vFIY-#$UMA#d!YcMhXU(Ud0)hA$p5h6>=-d6z0cM{0GIj z2YCqK{8k()R$|Bl=>})`sMS#CztTnKMjc&C47(WM7ca&iqqsK?pT<&ys+Pqt%70SA zjYnHRNz>7C-c~VC44A?Ec^HagA+(fmMRwof(%~J)U!cX{EgC0H8wVekXAXv*pX|TY z0i~m0UbYOX>)mr<+Q+zLP26Sl1^m32sZk-A^BYgAv`)tT$gZ@#KlW5gdkbM~7zBK+ z_`YKhmb4pcWKWL7v&<;LYk02M_t~;^kTpXF#rPYj7Z9zrDzreqD&FtEQ24^to zsKu%9N=%pjtIq9z+Oc&+2Y?-|jiS{4(+W(Qa{onomr_|qV z%CP2tV~||`JA)*Mx=Z$i6!;>7eqG^P`-J4D)r8_-%D*OwDXCUY)a>O2{ z^b1>}I{!54;}=K2_uuty<>69FmC!VqCzDcGCCkJz#IFo}eT`MrWd4jli57X!*Gkgy zJQW+%Wzb%Ja&PXMawg?E4rEYTdFA#Td-Zf*SB86XM?uQw)vN?xcY>>5KUGP_8^hnl z8+Z8jg^6e9p1vvN6dLH%}Oq=k+D}i*d5fISeuefouv1Q6KzUdzXO=k_vDyZ113!bG$PVn zb|g3&zUxB`h{It^DSH7TZ4GG~ZNK6z8|v=1FVaLLh5-Wp>-U6po^+I9GU|I)J4m?%*uyz-`jmBQN6(9&K^#5}QK4+^cHtr__6G@$*BBK9_sb zx7P%Uv6Y~00A2BOeZu)(jT&nx(0ZYKNxsKtf1uY#DYDjMmh{4T%1?_gvM&?w+bOf} zyakxyX!*v}S&P|d_37iz0?Z78@HZri;M-jlx&M(?(Le9w#8eAfIu-A;%j$wV=p~Z}=nQFt#n^I9t4!6ieKdRX z#F>-vyTr!V7GNO1U`L#kf?Kgk;eN(*f!%U3>HUHy=*G&oi&E$sA>-euwn1LSHb%TCqBiJH&Z23inXT{H|VM6}X zY1ZuA3hPf}4G8aZBPXwZyrU~0-DeeE$}55oTNaXOLTAp8`n|^_HZtX0baEf_S=B|T zCJ^G4xaoMo{{ngGuqM(E(+*Vr1O7n>U%wB}z0Lj$bl_eFv_X+`GyIv`GWg86XVV0D$yRnAY*_<0Ph=4Iq-0 z^Ol+Q-uwPD27v$gr_TqVvFAYNH6M_LaLV2o+XZ$5&zreBO1I2d|Nq|qhy6~nJE(2u z><>T2hryTK)E=WeTWGOu=pVSZq5WCbD z6i@>{-3uz@;UQeL5pL*3;>;bbu0;axVIUzb@-{u-1X7F84c@DU#?r5~AeWcvE-M*Y z#Id>am-tXI>_c`3gT=V~$bRS8xis0%@kkk#xpNJwJv!ntxNw#v;hlzR@)Z$<8crd* z1jOC-Bu39%t=HS?dYdPLbq7isy-YYOWP9!_OZCUo;9WYGW%|UfrWCPLFLs!if3YIl z2iKIG)O_!CHC**(UnmT!QQrjC#)*KIPQsNG-Ch-jHYL%9oIe5o5i}L`I$b^NKn0rS zzMHvy=*CE)JtHLPyF`9+IJ2l>4;AiNG#c4ZnRH4~q6_y(Aq(xNe0$ar7Wfc}df&1~ zwXTz(hSEuOruxY~V|etD2Ue1Bp#8+`by znDl<2a5C&mcRcH_<8xg?lz9)>_03aB6?L`cv37}#swC0)YyPTTro{F_JSJTq>j=5Z z^MxjdtCjqYBnK~JLO)Xo)@G3qP;UD zE3Z%{+x~=A&07mJIyYrvJ$;bsTL1FWe@ss7OCaP3XUWt~(||r^peAlZ-jTgx)QQS= z?Foy1Y^kR*e>JyN5WBn%PQ=~f-l`U?#UsWg%51))T?XtqqlF3RlY z;JV-uGcF5vJN?@yAp>enQw1oTN(4pn1cYrN5~h*OakmiZw}^ucI_!ax#RKqZw1N!` zs=Yh0i^xeW1AAYr)akb>B;IA%XHbIagJ5(g&W#MIACjNfV))^%AEDJ9>pbfTnvIWy(n9L#M(M`&*`qAiW7Aj7b;qC8 z*b%C08LUv%$Rd2U(n2O)ZR)L8!?AK*i=nucmN=uRT!p&h&G>3~b6DD3rr-5v=K+G& z_IKJn6qxx}_S5+wn;_TFApJr=vxeF85r5u5;=Rn*)yDN-+2(c}Hw~BY44etSY?=3c z(_Bk@;kPS_BWVZg=!_GH&%J9;hIB23jZ_p^5X544T z@|gHD;^&MBG@+JJOE`d0op%ImTAlpya1vd^(dyXy8tYodPnF(wc-E{n`~1lHWAK2FQ@zi5E%0aZeu9XOL?V`O_SjiuQ{_3Og+ zKi?z^SMFg-uU_t)wDY2$^~kUV%9wlcm@!2~!0UJ< zMS5a`V}e)HWr+ium9pb1{{N*YAlH?L!sWTdXg<@~{a)+C9`(lNus1~od<-A=8ZirF zOV^!NbD*DQ?>X!O3C^ET$5*+PkBT7sp^d^k98;=l$*)lbuTWs2(5=$~#7+0Mli8OC zZKQn?M30{y-{UKu6n3P zccTrzzs)#W1+&*CjDlrd68jibx|P>m`tU8taTY0g_+OmyA!NHVZ>e3s8yPA=9?VSD zs6w5xU{kbgacm(FvK7leiv7%MbCOA)ji&?n(joSWNo9Kyz3DZ5BqVQ zsRkJ>f~n`}%T2r>jnA1A?Px3eN__~`^;Xk&Xfgy5VyC%ebeAJeZ#$5D|3<5z_ocXY zlVmfhSCZXSd z@RU-l-smRPF^TwE1Nx4 z$$=a@z#wK(uqT>RS(kbd^CiPy@igJ{+{-*a8AswhYF!j+0uZu;^%f4$zHcU)%c&I~$>xx{B>-f7@Mt?#PkFKT#KUMMe%XbW75 zwA^fWXvr~b$IHA>D?vNZSCQ;c8$=X&TR?mrl9i}_Pi<+@2}b1b_knMM`@u~7v}QMf z33MDumBzL*tfYWZLWJ1gn-y#~?AJKC!Gh<&ksV#G;?xg?y zFyP|_>>uQP_1xlxWkO<=?E@+u-ATiR?l@MSnH_9p3@6be_rWoNiA?IXsFWLlqgyrD z?xloZb>t!6gFNs2WMME*;k-lnW__opnGCq+7xk`k^NMR(P-E?7u^H)}Dtq!SG5P7DV7#HHRsqEMPo`R0E@5ku zL3bkS@Jo+(nt9nE!QkK8m z-U^%iF52-1cqr}m)|js)(83!o3p85@95)=lB?jCA(FHd+3->|A?rwhySxiXa>}d4=|KO0l#q-p6r>s6TOgq~cx zn}=|rg|AY^-T@!NMktgzAj~47Hn_C?l5@Fsfi-av`AA0H_xH0&GE4a~X*{p7hNBM- z`f5xuax6vm81(kbf&$DTK_g6YX%haGWo33LcBd=yC4YeY91Fz4tH~i(52oReajaj- zV1|81;S1gw$wXYA8PoVzE4>DspLqR9kujzZ?Iw*hsIvDgM;SC*3E7fW8Wfou8x^s| z$7sEsC^x}3lFhK&i{&R&i1LL$-TmhuDPs)3iW{-ThND=N8B+^}6N^HAm^1n?;;yx~ zF~tjYP~rqJh;@R((B~@leUaTSGJS^!2zx)&FTs-#89#=j%V*tLT20eC!UH{@wFpz2;FVwU1e11 z!pG_Mr4L(_?kBf9h^0)u-`?je&MANgQ0M1z$m`THJc#q`B4-CX2{b`iy zDZ?H=r)L{cR`J_T8N!a_$>BX#&$8iO+x)3Jviy$dpFlkYUB%{&Tqi+kmJ$MwFk zu|X;AMn2_Nb)(;h9Ey|^@)sC9!NF<$8cfc|1%}6mZ8AlxvSfN*KJ`w8v2hb>lPpBk2nEPl;P zc6#Bwm@*{iHlwA${9kF~l9lF{<~;zaF&ME`IAZIknHV&&Rh>}ZT$>GtJ5%2^BG^m`RO(apy>`yu*?Alc)sA9Xjq zHjIt^8XxBZNMgBWHnS#9PPrA{@G>E^bv=Kc%XSAwlA^e}JP`YcH`i>_U^Yh!smbBV zYJs<>oY>B}Ms)ixNByRcEqYBPk4>X_qzKD?qpf|PZk!%EaJw5{s#HI(M*a?d&h!<0 zN~Vahos?T-antI?pv$B1NTlHBlEUyi?1iPVn{{q?hj`#;7#B~LFBscM&%4kknyxl`RZ;;O|B4l5;{}$5vG$r6sh7LA?aeV?mmXYVD`=`)cVuxGT zQahfaJ$z4O%YlqH_Y<%6Tuoz^(F1M%sfN#Nww6&zv0pqCh~xD(Y0s6uxHJ{Z*b0F?0$JW5xRE zp~+wb<2@02bDfFW;14wzT4-npT!BpY=)TA3bL3b+Jtl;JOaA`PbWoz|@WX6UeisrQ z);|f-8gG)aEr}9N`=kw>#_+D^Vr~i1;Xo^aiLA^ktH&9FcwA82Qwl+ZFY+!hm~W8?6R22t`ZscO~lhOaH4 z`r+B_#{IIJS@;AmHtzOGvbD^lITqg5wKg_|5Jnc~%=UVc^{-`8Kd0de@{-h7C$+|H z)7Zk8i@sX#@kx(%Go@aEHXo*xBjgaLFU#U&y0>f(UqPHZ8}KP@4U`RRt4oL*yl`p6 zbS7@~E4|$81WmlEd$jAPgx0b7$E6%z zZ$%ZJI-Gp7!Pr=cJ;2^rXO&6i%WfQ_XSg^M6F$9Y%3A~&kGb~W`C=-iq>Fbif3nYp zrC*9dKVD1W@id6c5!raz8-Y}@FtFm<}N-h7bL6uT!3T`wS zN^KT7eeT_^o5*zVjOE9oBFQyCAP%wOmfQTKiN}#sL1W2~V6fH>REIr$cs4HzoWGBj zF0U91MU^eRSz|TKc>PLj@gUCc$Cu{?PF+J|&?ckcanldV|G4b_s}}Zu+>S{&@<-@K zztX`|E7{6`>nICmQ(7L{w{es(>_hcZAI9!0eC)P>+X*kmcS#*00P z9Xt^T?<9yO6c_`6C{j$`q5$&Yc(mIM#E;Vk8N(TY*j0rVPPyA!CLg@Edcw~t2a*iM zcfjg9;U`!Dq+4FCvphn3I?c_E@$h+>+v&#FCeA}*17b{X-^|pN6Vt1uYt8W4?+c;d z`ZajI<#twVbs19!ZC66KI~Z(z5+do5IG=xd#puSX>N_A?z;%*h2e)PB^N>ePEYIR+ zt;svVevjN~mpJp#*Gur}PJ_1k+%h`^PI@5Y>}ZyunzI+>!Vm*Rt2)t?khX;6v%6JR z4^d`H41{ff*zsjlf$rq_sN{P^qW2Y*>t95s@_*JPyc#CG>4De#bsfqQpd4u+2PjVc zn77key$Jud%Ft50%w?`o4(ld9d^wk&gWeB9)}ds{uwbJNE%c2hYO*<3cc!-d?8H>P z+L%H!tsBW|T{yrN^#U=F@unqq(mQ&I-l3C*>D73d!GZ=h`8b2?B9)%G4aVjZ)rSS* z=9Cn{3xMvZLf`g6&}3yv-pY#LFl`H|5dXB_InCVZf!}7S;a++U_3`ZZCwo6**+^uD zH9Sk7+T4v}OiLE1q2|0ATqt^X67=bpKs>cA5IEFF{g^GKQ{r;~!_VxUn399(BgFOP z&4+BW536Zp%pW7LYg-buUpOn1>b?lhAvLmSb2Z5AW5W5gK9nh9FLfX$*hE1k&*r_ z)lM`|2_*Q)Aq}p6y2tOQ49D4PMGT@fBozBtxp^)QKXj*r#%FZpkqoHM?$`N>9qv2i zx7MXdas>Ajm>r0*#^)uJ3R{esNN$%n%paXq<;bovp*&z~mu*cQDC6Q1NU>gwdqWOV za9jFrc&uM0Su9MEzcZ*vU1o=HotU-H$4CpJGlw{POj`%%O*)K~$SHC8AadLa%7RR7 zt}jm$cm2lvjwdz|2c*MrFbHzTE%G!)09{l(0Ab$_IQQ2-2igH0R+h{A>ra4)^{rap zl7Lv5?c|8wEyDx=o&&u75-}OVaOL&16YvOa>ZAAad`nEuq{GxDP2(;xwPe|+nLsWs z&}Ge2IJ!G0{R_lUaHF$+A57hGIU{@PlE`jl`39kud+|9l1R>XO(p!IGjMtfp)czGY zI#X)nLYa-Z@0+7XMl>(0)5$%*yZi8-nd_;dPbRI4a_&$QQg=zJs^iwK5eXoff&6)s> zSM2LT)&hyD4zhp9fYzVCJfKB>`uBO}5q-5-s|vq;S-cEElti5QYpAz2-dOd0-Hg@l zlkOzIuB<2&ye-&b&cQ9VJ4{(!qJGIQl2r(~c1wIc@fz+?Mm4x}JD`BTnYFnZj)x6x zXV(1d34*N9j=*4kwEn*SYd~1@pKJDmBT-!m_gI~iMTTUleuW23Y^TO7mCIKZKxf@B z;TjuAy<5=)l-k3xf1d@GO7!U8XY#i*79>MyYi3fwG=kS;iJ zvHK&w6-4#FER7wDdBj7B!Ib8; z9eZFr8r<)blT#;5i9wwFi zylge~4Y}_k#BDOgiL@1?O}TfNpAL%?pCl#e9JM;H!9;uE0rYJsk`ySCe&&?tEThUI ze%D>H{|}Oo-HvRPT`Ta^nM*CpEXVqjj!OSzaXgGpJ--u{l0rr4 z>Ocqk3RoZJhZXKW9{@2V4T8=pj>!Ftjzxpd*`@(}jV$ROx|n_rRW-wRAqewWWzuRT z;*gi1b;cIm@qnijZZPPD8M*+b^ufZt*vJ%0mm5*ZRplyV^tytd=DNdI@{CGFrQ0)tA9tK=E`rK7{?PCG%a9*-RF|5g z7DB30o&tkJ8nnh;p=VsR8)W@l6q@MNHDa#rivYGZlzI$wZK3+xica!9TWxlB>iiS? zsziDaMYgknPea7nS66Vl3P2CwkylB4-j+H;HiU(3HcY_J9Q5w7&qD!I88j2pI^lSF zm9z(67+>g%u>ULS`suAXhxOWq1{c~wZ}!AZITHeoZSz;bwP~89-t(V~PzP2tX87S?ZI~`z9*#UA5 z^=60OdBoy?65EAl&H|~u_Ih)qj*nub_;YBc*d{pbHMD1`7@0I@U`1_wgvPw*x@1O% zx4R7Gh5CvJ5VpVM+W13A0LSFPIS-R&-K^VQ?3XHTYjA!FcF6mQM5mXu=QvF*vhjf= z?mU8;Gxk#cYcb`-;#yS>`EdIjF3kY~E2kSxiq0Y0Dq8gWa)SYOcn6ZvW4&hw_)pqx zu8gu+yW)h>-vsWX)4VYRto3@7oTXeI#Y*xgVUXk<+~T7+a=-1q^>XZaEb&+h?fnfM z@Vlq1VcrOmKriHs$cnK|qQ88KuSERZez7--60=9zw>yyhmUaE8KCoK=>Ce=gYw_D5 zu$u2%^NHu-e8-4Ig9p6dXBGMF2O758rrSH^^iG-UG>PB%OQKr+ZtnCh8&>#wJ^b@Kol)ALPE;5xp1Z0Ahv8NtvC0@PxQDd z^48tcoigoOIw8U>Au_YFx;b-MmHq5Q!PhwwPWnuTS=DT4TjZ_N{3l>#$0?8EO+ngA z^PTytOzZr#@q+L6yJxce=`;3x#`?T7L?Q%l-_D-iaQarExUUqV3%^bcTWD=52kYpq zV3+kgV_pprJFALor|N-u>2~^E` zj%Zaxa>_x|Nl6HH`Ca5@CAhGTHFK=zwhzb?HBZ&of5{M?&v|`>CI>Q(-g^h^060j4 zCdK}0BN#z1-^VG3H>(UejRSjtk{uS9cVCNIE=-~(p1#sPpwyngw5PPEtkuL)f51uG zFRS9|tfg`P-M~!NWt;JOz3us0^INu?YJa7(629fYsx!(Uk4eQzRRs{o|MQEe<1~|s zrU(ky`_cdRy%EsBtL=qrxcbjEHA$1!DF;Wh)559BxXqFy25whxM;e#B0~ac#{#7|P zvJebd=2J|L*i^9rqua&H@hi#*a_3WqAi0g;+bf_22i)wjn0f-Je;fw{TYUR-?4Pb) z9Vt)5!zzxDZT+PxAgxLcW=ly{gIobYJPE(<>wpCYb+XqO-qFx)Le?3 z`n~HvlISYzmm1fb?!623>We3+ZU3}d>`WDX3u3k;%e(12gc`Mv&;y58@=hpZhm|5%%}e*3=Qoa42Va?Z4!NzOsLI8Qs+#o8V? s4g=1?%L^B3yRYTbpjC{6=v2THR|kY||0^T!KW|t37V#}e_OJQ>3y>X44*&oF literal 0 HcmV?d00001 diff --git a/windows/keep-secure/images/whfb-pin-reset-phone-notification.png b/windows/keep-secure/images/whfb-pin-reset-phone-notification.png new file mode 100644 index 0000000000000000000000000000000000000000..f86101b1e81d1abf217d86e2b5be5097be0db077 GIT binary patch literal 131278 zcmV(^K-IsAP)1^@s6`v;oW00001b5ch_0Itp) z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGxh5!H^h5=oo6M+B#03mcmSad^jWnpw_ zZ*Cw|X>DZyGB7bWIxsUjGcX`AF*-3hIx#TZ`rqmR0RMPNL_t(|UhKUGxOGdqm9_tK zy6?pRiXxdC0O5j)3c@9M36jKs88M@xhzU%Om{5ZH2r34U2SF5!m=&{_MKNc^gb6WV zM8(^E{&O7f7~iN_bMCeO(6?LYe&*PF&Z_!yeO0q&t-01-`_-#&`CUKxOyn92rc{#kan|64k8Bufs3B$6X-J@5MQiUAB4C1 zwJ>_fgy0I)D|WR{Y;)=<0_?9aK9SD&^$8`6i%uynBxC6uK*DU<#21-VcIP}8n>7Po z)#&v3>0=Cx3@65?2Hd8y1z>+-Xe?n;pz;YKqffu=W(D#H2z+o7fdZhl9&EX?VI7YY zf%=mC9awpMfaFft#wOWNAJP=4HLB;)oe?9Apc>$8Pjr$tJ~Mu4EV+yF^;-Mn<1()} zJb_mqRBoFKN(%G-lNtX=B#HpZlf%FUbej2tbZw@->y@)hfOGqmCXwfl>nT0G7B-s< z<{IA!XWkcw?3$M+gr8W^4VJ#yGlxgwknK6;p@j@|CK0X8sYKittLVfauDNzF*BWHO zXF)%Q?QP{?k7|uEIh*=p90uA4aO#KP+2IR*2w)EvRq+tHkc@`f(IU&CVOJV3cY6;& z3?CqH^}8XL6+MaPT*;f!IDL$rx2d)7$F&qxgnNfMbu)G-HZu;@@wC4~38sz$a8->V z`#SOZdX52P-e8h!M#f_W#=PV3^@Fj{cC6f{5gC;$R5k2-8{mo=HoaQHCO?I59s2oT z%|$u~Q&jjhEW8qraF;ChC1bQiZ#8Jrwy4I0x_(@m`SiMVa}F~fT<;k=_IXOn5>=uk ztPUS-9iMpZh%G$OpO5w9u^2wIMgb~sl#DoauNgyfyCNa_+EFfN{53t z)#V4%OGtS2^ew(?WDiZln<^8pWzb}11AQnnoz6J(-PvW16Ln}Lci@Z(mx~~?yUOyj zn=YKN;{rYS=%Pc+p%{{>yDLhznXyH2X6zM8e5hnFR7SoEQ?|JwLnKDKD2KV}kNDW6 z{G|3&Uz{o0AA-y0z*s$K+jw|UZGTR7RjNr}nVyS0BE5#r zI)FAnF|`hNQ3-=2tyth_OxJaF*f{&I&gki=*imcFYU_&f1>2ls3io*viO`849Pq0{(erDg8LFOVCL)sI*fu?TpR$=oYxsmgm9p5w>TpYDo7#&^n~^$RHp>I< zsjkVcvWgdwn|*`jIHtKmlLT~V%*XP0;}MZJ8EwN_GVQ%tly7i{DW=tS#iMY zP_R-7Q{Xl3zNd8mNzNLhlNFo}PrvF%H(SK-jhKGiW+UQ$2F{C`AG0~}q{ob8G-GOc;z42H`t+-@Amgg~&S*F;462CN$hHnT zex;q}FBs9K0h@*n_Eh$5rb_#!9(zvTz6Pk`&8c%;nenH7IuEs#iZH!XGaJcpazCK1 z(gL#W9I5AwLxe1A0af7JCv(F*h?5U^gyWm}^3Ew(nl4o9a+TA;S=p%jW? zkwbrX4QMa%RwhK7qfhdqObuU5^Ci)ZYzJG6ZT{D#ByA}+tVwOZEd}dly1}&8%Ug1A z>hI=Dc3V+(>7~jueA88IVNmW2fSls9;lEL_j&n(xd^Kj?ED&0{kkTQD~lYqcJ>ZSOg_#$ z#=X}ZsD&NJ+_1Z;cx)l~hA6vb+RtLn+N63X`DyVkt(XM?V{4+Iik*((@I28}G&b=q zH#$dN4jJI>24wRwqq1!1=DB5zwYu{#RD7Zp!mN5mLI;I!cvI)NfZXpJkZx#wX{&9^ zbbaz%FZc#acibEp0tF)OcE+aT-Hp(mgNg%Ej)~J{xe1hE^nF^q1Y3pUW` zbsnw_sD3_ZvL}wiwvN^XnmvQqr#*txKldA3KNbS?rE9{mA&HR?Yu+Bo7}ApP;>80a>H`2^J`KP*t}+K8J`w~CZ6o_V;}kVtao9Ehe8@ZFMCPvd=a*-L@ zBq6xaWX7*lq&H){AwG686kr-^ZV571xhxh0pNS=Are64lWO{5K%Euhv&8M{)>3mtj zw5Q=ZW%#a|vBBnYon~>YA!_@2^-NP7c!#_pG2CT&QA2q?S5b1m8?UKIO zwL$63*yV;Lw7-;|?}uJ%-9R6>+74zLk%o{bOKs?Ip8`iZCSBL5;L6X zP!O!}9^M8{Lfj<-R#HWQdzO_m4dfj&F48)7Wf*ih-129OEG>G3Yny>_xw6;xOjsnCWf_w{zhM$ci-7 zBW|EN>csmR86WD4)$QtWa zMBAK(Mq?&~apH}_n{;3FOM)iW z_Sv>5Z4V^t?!tCc2DM#U+n~Cu=wQ&0&(j9ptgTH<<$Gag*+haf@t|Plsy#+@Q#*hT zSTrVx{CSb3p9oY4#MJ@kBGqn;Uy5V-;zC@T2_z2(OJ>TWwmW@{=enZNm<_a38FBy* zf`s~n+Nc5ABa^qFl#}Yf@O)8THDRjq&X6H*sF-8*L!2_6Yr4q?W~O?=jA=tDVkVfn zo5(#dldkP^X;*$Up1TZC8^b5t&{TM?tHL#HKEx?IASS8e{>KOzAfCm3hEU;O9A}KM zg?-Ow^&x`MGAU!uxE}q+4tWQM&1W&p*m)jjsL zf~%uSo#X6PlqL=|JT8K5KB5Ocm<=00dwi>|U*~0ygF43m@=l^%8l`hK7w{+Y#}(HX z5esUvLCdC%di0T6`mEWz6ZeTesPJHE41FPtFJx>-eZwyHZA)#hX^DaU)m*P5;5szh z=j8xI|5~>90)sZk4lzs4#+g!mk}cj<_eVZ-I2XKY>0crwzO=10c0frJ`t&cf^a2oY ziXxohtH6(|>PR>1jzeT}75~IXJ$j5BGH6yGI9|7>kM2up0UY{H4PX-Ap<%B`|DmTA zq)myU=rIt9R85ESF%2tVhbSo3#sa!lpuLysyQ?I2=%%T}wl~BaBS)#v9Tv~|gv|-|GuUW+O?BC8eKCso(gymwTscCN_d!?~(o$;0bTvHlr{2lb00_u| zZL`a;P;5AzWrCBG*c4Nby3eVLe!TUe!f~Cn)l%CewH*`H zSu|<~wk4~Z#j361OsghkI{8dT4Z9I%<>g3Suqz;I`NQU0u{O{(WCLo(`4JQ6w%%@g ztO!R|Y;DG4wLt~C(TbRnxA@g&o*?KZr^x25ROQEuhG6;Vyb;TRWL3{5EF`Nl#;M3t z8O2LJ5|eF~o$!K}>Ki(vlC@oc_JhH^?Uzjx&aV>Ru!2;K0>FZY0PLVZ-qP z_uQWa+(G70y(#a#3$v!H=yGRU&bN-?=QM4Ow; z&UkIskz;r$H?vgNk}iHn&=7rNT_V7tiv6Zh+npyfw>^*Kgs~t89d<)%&Mo{)Y@4&O zcV>gD3N2{a$fh)P)&y^GMDk{qYQxu&s%j^L2&1Qhx$cKjideMVDF8b3O|bKW#%42{ z#4>Z9FjlGn>6&o1Ip74XeA(;NJ1V)KVUtY`O)rjY~CjhPR?HfBsBGzv>3l}bdUF_l)~$`*&6 zYIqJt%M{{tE*3TDXQZ>~t~`V}Ag!jf+pgrYsT`BuWI95<&-rFWo07z+&S5!7Dz*2^ z$2%b7Co+~W-!;(~b9g%Y8pJzfo#z#KdJ%*x!0OQBWZBc9PFc!zDhNY+^ciS$q3Lk2 zR7b|~P#4{yyA$#{H-0l(itb6|m{Ei*!q|$88n!XS#S`3#jbKBgzubhs{A}Xx|Hyg> zv9<95BF@DQ*)qo6NC{;Kwmkw(64>oqMg;Sd3vfuQ=KdcOHq+reftS4OxDP7NPnKo4 zeLyiL!rNosVEZ-^>%PE+rucJ19Y69req78`2Z?w-jc6n`l(04=7p(bVYbjlI?+$c) zuJq-g^tK0XiYL8Dkgeku(TnI9GjURNX}WKMqYcj;u7FDFVar^S@4STaZdiF}ol-`| zwEa4LwK}m1rr_5%^Po}z%R>UfGY(#KsrL)MQr=Co(0q2sn9c-(Z%tH+DM{`^l zYn=-a+wRY!!)#OF&%Y`e1F zl&L(2?aMY}!Q7A-bNbldRK6tK+;8I6qLhxuY=S-R;5*r2# zNe>%vEk!E=z8UF6*~3gYwx4l z6G!#Cfi^nNW+=h>$~-V)==R)k^4u3ZzLv{1&FAB3rx&{FysihH4Vc&Auw20x`LPkl zXZI55MjBiAQQzZ%FFbRxUh{T zG~dQ>v}47Y!?LccWi!JBantS&rhnE`Ne-}SBTzCA_&v`T1j0WMxiP2THl|JD+7O*w ztggae^vVgU`)6$CppAlL`B9azgOwMo@d+(^V8w|LGR{Bk`1WSlHdKm$MJvgE-*K}p zGVow^^NcDFIibm=O}Q(fTSRg#hm$S_@pFB0lvRMkBPG&pE?A`DM@4$t!Hl#<${9GmnF z_BHf?s+~)s z;me9~8|9FWNQ>X%CRFnzU=XZf^=Ee{dWY0u9T$0}I?Zk%GIcFtg^M>&#JP|27bFGQk;4cobz0noOPDgw@tg7gm51oHK^s5YXyZ|G!F zTHOq@Mti=DrzwazeH}pG1F&+cMO0^ejMn0}%|tEbu2qvC54dDvS~6Zt1|BnUD5(zr z*ocYD*rI7yq7SQ2+v8@ud!9*FHuHo!!5x>d548HB3p+$a4}7v`F?zyWcs@A0$dTbO@#feP9M9A!Nkt0(mMb?H*q?Vs3N6a7FON1aO$ zv>nuZc!Arp*^3jL`UBeilcE~48#610%yP~E&C5-9H}O93MD8C|dQ3J;ZQCz(6?OS2 zjfhhCq{FMIgt%zP!?Fb(oa-IKY^aOSUPkqI?13c)Te-Sb=~x$I*P9MnPIa$nYG`bn z7DQ-@_s&nCo!iXylk5e)v~f2fWQIea9z53%)PwY|*J02;XWkq}_FU}9LM`4DHl`q5m>?31y5_9?Am>id z-hI3P*|#o!re4^d&ct@udLHX>4IJ0SLP7~7wwhc1y!7pI288Q+IYMCt&-8+&htJs% zb>o#NYXA{$tV7%ESz7x0lg!|u!%dGXAdU58SH7S9ap4PnDC>yu&Dc$)HSmQgP&oHT zF8ha%t~2iQW71(PV0f`{cI0MeU6lNh4;ThC@rc1hu7iWiTyu^}nz`Z4Ynq-D%#D6i z2RP4%v_U_HvpBMU-9#VXX2d!uE1eG`M~iT{6cUHVZRJLE&x46OsuE;;v(CC%Lj%@a z)=*rTH*yFqv8j+fHmdX;!Fw! z**~rWR;WU0S0J;??OE6XZTgB-Os=v7}_{KdotoK7SbrCLBh#7opxlVaWNbp@J4Uf1#Me$%%p%bcY4@rG6*kn^7L@=2>?3wuVtbUKi7MOu z!!$r`#lFdpxnS%50qHmf9Wj!_CTdUcVsscoYx-MiQ;>yfZ8;tx?mrb1Iu2C4TYlem_ybda~L88^!*meMaA_Ml59H;{hG<08yV&c zqROZUuYFzegqlKEo9cX~+UP|U>qefgi!~zqQ{_kSQ}jsyDz%jBow8SoqdNh4_h!W* z;NQ*wbfQZ-Bd{SS$T34daRIX8lk&S<*DK)&?J@q z!DvbHjj1zHSZhtez$PP}Unrw%5_W{yH)h{5G$H!a=(<2#^4_bOj<2uyUY5023y$78 z>Cms~bYyjaKVKa~mVu55nOhy(_+T|v!Iui(1i%WuC8z>`PP;S|I|0hOmXY;YBzN?* zsojCjF`Rw?O3X!>RwjP^Rl<;-7k8Cxq9cclq$Y38b^1bG zCFvlCj&1lZ)ZY8-v@!6SOiW7VjTxL%8|^n^@3Ym?$i{;z{McJJt2LR`E>DNMlV(cy z<=`Re{%aAbn0>qx5>skpc;Rg2EC;UsI7^05+z#^O1BwoKh}4A8#lORbP;wG02U$wG zkgY$Yg)N`U&D}O*mMfbx#jl4dUrgq>-Hl$lv(IpPx9Plsv;+K z%!twTb>WH*RVcvL?_dUE3B=PVyYxIWVm;jIZ7_ptRJ@KgVN4vcGI|96mYd{4$N5nS z;(&^NXKoJ*^o3l;`5iF26lk2ZXp~VOs~aUyt2fcO5mjc(OUsPfk>^A6ptsyN(4agO zu~oY#S)5Wwh~sR-aG0FNKVp!{r*kd(lqWwm%^Xx&@*`CAj4@c)ui9hNEYYqT=*Hss zxE}T6kGjlG(Rt|_|G)*=3~3w~6CF)eceU2hJN0516qJ!EObry*sSl>5$bLCC^O@?y zLhF$G-zSmITB?~oaUy`Ia}g2KNdfBybORYzJ<2|8d#(}l^|Ng9;|-O3Sx+@&bfQUb z(8nq54w?6MQ!*BO)C0wjUw`uS(Fh{zr|Rlg`|oi{fG3Q(1tbm{+M?JOM>vU>dU!j0 zHN|B>FlxKM=B8f_#eEcxb#LrWl~z(5dN#@f_1%2V{+-e?aHw-4h^fmKPus~w_6UyH zJT}n&+_c*H<3MYP$2b$W2sQ%G3K$z(+M}X}ih0q`8mWU$*tX!#Lrc@JqA=GS_Y=hX z&WPiC`ik%2B8q#KMMDreRTUP|nYvpcq;MxB_wi>{g{NaFO^}tTK_QRChrb{iqLzsc z*l%R`upR0;sF8H?;0V`6q!t2mMI6?ySPq4&ROy2I70>C8YQy%RLF9OL!`y5%AExbe zfqtbE9%ww-jm~+i(N&y9)pdl2mWqx-^^z!k;iTdX^d{Pi8SWXS)Ch&@ZCY(ArGqV3 zY0{=bOO>utVA&B`x17+rCh$Jy&#~D%VK*K$uQ5H=OsKQSfZ+x-|^>hE?2sQ4x? z-ZB_DTlC37Lr~rEMCK*iJB})CQa|1-tno!mI*?9%Nr35l>L9wQL#0|v zmKsrSQUrHr1X6_HINa3vdQI;bR^)3TLXB}X64 zyI{s`OC%D&QYJO8)WWsAur59OJ-ird=6j!2Dp|zEkLw;Le4~fG*bQnF5$LQ%7$fFk zj1CW%{4^Q1B~@BI_C{K=*pfDSi#G27*9KJ^La6x(TvuPP&xp~Nu8>E!J71Z*u6Uyb z`=hX)UaJMoAN%0P0nEcDFium9GJr5Sw_WE#(YV7Q17aB|_jNS{uOsBf3Bq^A1iLO0 z43h4v;k^Ox8qnvEY*gfiLw{V>nUn3`lpd#)p-(yfR+}HonBuu@TYhJVO|t0tQrUO! zJ#U<3wUJkb&8Mwac%y?2a)6G3t_lyJV0~9~C}6tdxsZOjfTi?dB69_Xa`W`A_I>byb&>CY=Xp`4rPP!DtV4tmGWPDR+Yhol1DsTZ^3t zU0~KQUCiuF>({N*rba(10DX8(X+;BCwMKmtTI4oVI=(3ZeMv3(qGfTFw5eZF1+bZ3 zu^04v!T}N62q)AKh_RaWb-%NK+T{n9jNn5Thh&U#OmVRZOmf}^i-C|1vzSwIW}XO( zr~011mevuxu_H(>@I&YriJ}UnM{jR+jd5}9H^kvT&xy6?c#gvdQE?;LjlqXT{4tz` zT(o5lS@Ei}2hGVhg6F<-En}1QO!dxFwU;l;Jl8dOhsAedeD>1J!amoTZ({MgRP6iW zhwEj=e61;+C#~;&vwZ4De~!L@^al-ke=HVRPh3Ul^m@b^hzflcFij&Qq|o3HxASwF zD}=Z|jK2WlmyH>Q;#C@^$GsJtv1kIAqO#mdW1cDYC%;`wdo($ z>ob}iezeuruiL(v=x}G~?9?4R#-Kw}0pBGje5)kH4usvrm*H53Zkw8f!?HUt?MEo9 zqJ_;(37(rGk=!8F=MFfqqE60Dw07J3&CNEZwp#{!%cH@nHLAWjYuxCk^>Kez4?IxB zA}Pm;G=h(WgCib5Ymaw>lH1Q?0#9rObb2u%P>apP;BbaW(?Eb@4~zE6b>`H{m{TqV z_o;XxR_lfr{c)r!>k(<%Le9Kt+jEKwM!un$UY|5h!c#6mr+%>qm5ToeoHtx1Ii|>l zcdf2*-|agu67tOh;i~}LJs(yW$p6&hS5U=qoK1`$Va=&4b|23p2)6Nj0PBlw8SYpM z=rjoy5X3iW<83iUo3n+LW92922Z`71b=rI~kX0ucb#FkN+@+fFT!~X4y;k7wf(C(> z4_$aRAqURG1D<`U4|9WUUYP|iVl(TQr&h2tqDyBH6Aw-wIIFp?K@pk8QlQk~IekRW{9T*Z@!KcT6}K4!8$eeO^Kri~l$Ye$ zmggj73fsUo6*o4X=tH8$FAR}SV9mTZb7ZJPYn{STVmRCy- z{b^_A72gwzpj@XS+4Lbg_@y2Jcq+VP}1n`?VP!gbr@0Cbg8 z+bUZPCg<3h3gdSLJX4W#9%v^E)=|IhcVJspTFQfITSg$}!d0C@N>C6qkX zruAS0{T!$sgJaaP13e?V_z|G+g)^$|5WlpjsBC6A=%_bf)G1z%i|{cQUX}rOdN!}& z=}cm|ICLJ30}m!tDYmy^mwe2_zVhM`xY|vOUHA`uB5J;&rk-IFZv-jUt06-a7RuVQ z&&~MNeZeTh#Fl>%uK$;TRPYx02jl-d7lP#y2W)HYrYFo3u6)<)kA~{Z9gpb)pU;5q zRaP{c6ivx@Y>ow)@cbe{G}1r90)iB2cTBIFQR~+f^gisNH*x5>KFRJ~Ik)5?00cRtIS5nq=sS<)! zIO(vd#zmWaFy69L^GDciHJ@+Fs}32+jWt1K+#z?R)EN^1S^4!-)Xn7X5yVpH;05m+ zY5}Oe+n?}rr#YTDQ#wY)-ly~i&L@C9F5Vah$1Madf}5hpPu$Uml?_%1jiEri(-JGT zWE;9tC=KZ{CjkqqH@mTEyNFRBW_lsRW5Vn1$T7W;u?@zewgqU*zog1ZDCA2ltq+b{ zEj}L57n?pKr%LRHW^*e0(E-bij9n}6l!^yBZLdK|_)MqB=%CmEn}=|eY@pc~zNW4F z8Xj5FVuCRz|LWyt#QvHC33`1~d;b!G#!`@(=;7ND3_Z2J1GZaOa^m?C*FhYy;bt%u z3iGBx$*uZmyXJmk$7LAy6*-lztF`m>lPCA8xtNb{Aj2H<4P1vEQfFS#MocF<08e1f z@taP;=j7TPlLZ$#QJNJyub#f*d#Y)T1J)Zw1A?c{i>NdmZc-Q3+yk zeHi6TSWD36us-#ncVbwcgNb2^uqq3lc>4-H;el3nt&RQ6T6hfQOL;*gmah0Os74MP%87*bIc{Uc>c*7QUc9+z zLk&(1VK)tLH)#`8h-V1iG-cCwj%}}l>P;13%c}s5)E%EyeNqt{q{}iEo_Qu(UhKi+ z1QA3hP`zqLB^Voq>Ul+6Lg4Gaz6ql0h=PgpWUCEd$(QS8V<utNctpmFeJx_Z8XbF6&omd zz#-^pxsXQ2u!{PX-HLro0-(`oshD`jz~8<#_R zapZ}Zsx-A;E8Xq^SPblzujF>-P6T_kr(7QAQc?) zzCicbipHG;3#ucw(fh(+i4>Nb5^VLFFv|DbZ2T2we3?&-d)m*+?QW8>R$q7v-|^`e zUdWLHt+#DLeGBeih4yljx#F1^l_~7!1>NRQU9<+W9CW#`zPKJE9gfdewW#E1=o`Fn zc5FOfG*=puMECBQ{4Bgp;9@&ULvu_)YKOen0b#v0F0#k{w27s<)xmbNUl_f8vlxxo zis(>Q2SMb`7s;XEYfTJ+cq)#hbf5X@co3TSd@Uhh&Mm%4HB|jD8XuMywmvgfX(5ly z!JD8>ULW_8n6C?H%a?#!)mv`t##weN5!)KehAPz21G}vaYaTB9C?7b#n8W0Z*_ubG z(h4P4J@D7j$!0SY9Fos5a@!dDiR;YO&XyBUx#X$Su&DP(DS%hmNx`66a8-9FDL3OI z;*CCQzkZ1~AAM0KHBX3rkGr|5^+z!sSPtx?Pr5;@9(DoKa@{wn>u@}iKdkval|eb7 z^MIem-C@Z1Ng)OXY9Iqmu-#(hym1`)U6qoyLr^7t$eYgE_(DH?!+|Hl$l;V1cJBYk z(brYyq&B%Io%l>Apz_p|8Dk2!>C*@E7J*|F*qZUl0W^GQGy#cBcyEt4SVgl5-Y+RI<^fagM`ra}ZB{bufqX z;(-{f%Q0CIQ zeEDna3S`i!Qo5pQ6fKCZn*<$rVhIiqrpq|6P59Wwj>%{ae;m@HUYmx9y=Rr~#Z5kv zR&=3`K2&VcLF&vjcV(=~BR9A@t}B++bj7i0V8DA#kOnBnQr8 zEQG3lNzV1triNd5(4ztTIUZWFIo8iW7Z5}JVnpquk4I=L)D(kp8a2na1Pfy3#$H39 zazpcltSY%a0XDRqPS|R9E*ngQ1vVN{@C8GB11=`(k}qpBA0}zFXH^=aqv|wqI^-4( z(*g_xY(SX&8k-_^mu#?VsyHQd&cs6|I?`?K7NApX@ljS}*oJjg_F@+z#GdDGEA8v7VE;+c!ukiv&YTC-}Y0dI^ z396R5edvet4$nK(Ne3*{ZBCUn&|8PG0eP<4d-MD4%EkE z1N|n@qjBhPsOZoDroZG7h+?a{x)0PAHmYX@(E{J@*t z@D9YsVMy(5!rSg#4-1}K0Y03?wT`FQuZ<~I zbZvu-@|$q@GWNV;$N^4Ua84DkH@f2WkN$w~C3A16YD>`k?dLEvHv30L9zwER&%0LR ze)nNE`Mcz_b72}=H#a)4(W!Kt1lyk+aBuLH<6zWh6`AM4s9=$*^KXVE6*L>=`YsJ! zx5o(-I!JD9PIOrAD{23Ldysy7A;b@$%-7;!zw0WRwwRQtx#Trgeeo8V){%)FQc3M& z;#QqMM(h)64m2`deUeR$vaV70Q?_kUCy$qfRac3$KLSPxo!D?RvQez<W^wpV^9ynBWc7Bk}pnDq6YQQ{MW|leRT}gfN zpX|(HAdIIsU?eDxE9L;PaG}nI{aOdMusf<5+w|`tQ@P6ULSfk%g(U>`n8M#B+)p(; z>{I9D3mrP@6{f6Q6(3^v31$G~#BX=4ivbJJT%BPCAJGly*lU49*uQj{`r!IzxsP2G+qYq=4^ z26fxUM>-S<&PDoPj0IOtewJ+=)P3E>{@iX=J15O+f=(1ZX%2@Im@Z1J?66|0JLI?5 z!6U>5H--G^QY;T@l0#wUsnEnu^(YMY1UV7*_+lb0(!jcQ`lGR3k%pC3ANGn1IojRL z2#t3#w!qCl+nD@-$f&MW-;2K)tHeb@&M$*YDZw0Zb5H zsxNuI;DICB6z#;-nA*;T_}+NJFY26f^vgar&z&b~cbuqdOs_8_9&V;!F;rq=d`#>yPn;_^cjC_}Q%R8>zOj<$Fe(BUnHs$*It zt|!%%8#cqP>%6`~FU++0MM+q)y9uN2eju-scx;kWW}(+k`-HM@prIkL*Wo4)ff%{z5-jaez~I3CX{uar$=TZ& zr0P+aHo;G|zNntC2PgRL(KTQ*C6`kgRMTMt774Ro>UCm#^(+<8I)8}-lQ6!11fmr zrkwZ3OZioQF{(Uz3dtpMZ}h`>>W68bh-e+L!fidE{mB2`!=3~aX-MA1F;R~^bZ)4v z>ZEo+UyxT+Gd~hjqO6;@qT@PaoAVXS18#s@09)vOC{{%i<`72AW!DtiRmltsCGqP_ z(w99tuEsv05Wm6>bnHB}GdCgUdiVWfWcUoIH%hce-zJzR6F{#3+FJyJ@IbnT#B-@l zEbI~C-oW+ZHI6XU@7zr3a)nZWrsbH!LCeRe0ZBE7E{J$=TFV8o`o!4klJ{nJ1z@S@ zZ05-od5Q|Tjy!$J)nmsC-s}kWvqJ_N5)z(YBT{$NYzlPm>`ErW>@gZWq;UE_S348#F^NJq|iILp#8EACuB|OS_ z)d8FtDRk3O$0Ohc1bGddDWkj1>0DUU5jA1jG2ymjkTer|sxydHJ_d);_QZx)8^sKC z26W(HHvJPMOCa=%iQu~IIdZ)DYbOEhwMiEX|Ij#wY^?fDObbzP<{b0` zq9i$zRjJ>+08llFRGU61zG=rOGB4%fO?W|1K2Mub@`5bBh>v_gnh=bdB9*0AraV^! zWMrQ{dh(WT;oa!PMa7E66odJtxUM44@sbhfmt2UH1yl4zmoaC3dDozjt$y;Uez}%m{CpSRtR)sYOtWQP# z6D{pw4vy$Xwv;`m)U9^by<%3-1DJr+5?t!NT*1}_qhh;KW}G`CNW<}AgtlP%;4ttU z_RWo;;ZUzS4@C1Dkk(|S5hBdyV$&G=~? zg!a1|X#22ZbP^5{b_b1mL=8`23E3A48xJ_Hp(C1;nnws5;@3_ACgr$&rszFz2P(T; zuGzkj@|=M=`oK0-($8A+JQ#t>QCQzC^+W_V)Xs$_faOHw{@^tS8h%`ljz#q2r`2k) z2k~5jtyB2PhiL+KSDlmnF)dY*KVQRCRcO1&-f?{gHMEY2_dA35hsQh^>+S>fX^-9% zff`;9kSk+Ks}7jXCR;25-NO+tIUyWq-9YyRj$Z_foaHSjNsiffaNq0ar0vUfO6AiZ z=XkB|K={Z!`kpwTG3Ny(2nz5BZ1H1k!V$Sopmok$Qp2o7%`n=U+`b^FhI)dNG(9sP zd)VQZ9+-dDbPKwLD4|eE>BUD)%aMQ?37hlFB?3}swQ&yzh&~%Su6h-6M88bgc+47-C^m`rk2FpHpbWW!8x)aS~x0^aM@aIfXDcutLKJoyLeZ@YZOSR2qvUeCbr%ne%Z=Hz8xsHxOXO<8P7I2QNIw#Fb=yD#dq z?>*$qxXrkJuYK}(to+DU%?;^f@U1{;kB7Dl5W8<;ikWf?iNzBF=YZO7LpYdcY<3LV zrp0Dw4tdC1f%4-RpoVAJl>=zZcw*IW!(cqtV~Dd{a?AmSk3IKUWyh}b(qqQ)62`x4 zo(KwU%LnE>f2nVD$Ef3>X@ob~6Apg>pL=_UyI_``55WNqT|rFW&+lYZE^R|i6OcDF zT2hJZ*?%O)hHL229Niali`?k>_iQ)$m0yp)3Bg_$Y(c7!qcOB8uUH!|qXQ$nq;w8z zA-M>c%X_=k{mCcO#OB3oYNl`$oRZ_<>=x=yv4(J#vRI9dArGPEWMg#698eJabOQ~~ zn?X<;Q?7TUG=>+C8zf_AD&0ZalAh`+2mLq%*vFXf%zlJ!R6)&A^W~=b%*M%2oI7W| zW+0azV7}mSL2uli;^G9cJR!L`5lnM7+{G|_uNCrcb!J3Drd{O?*zwvWu8RE$?gBE? zu9d|$Z^kla#MAv;0@zw|LirsMCZeA}hwA>JN9bN>#BdxsSmUyHnen$0{nr^jg2-b# z29L{KDR+JR+OCC(dyf%C^+SZ_F&<<>O*YfeU-Q6IZRTx8lXmpbNCpM$P>N^TYO{vs z=MWym?G|gsFfAbl+#zmN)VoopASTy2bmDX0{_OV<;hK(~8ZPmn!%wGuol$2)4P8Q% zYWuU%A9n){8D5@9$3yG@`Zm=>uG8YZ`gULI8Yd4bQ6VwOsA2>-N+?X!F?1A?ePPP# zV%+s4Tp@0}RS{ZOXJ(TJ1=KVh$o0XAWT-f)tD&QMh8q4*zsgP~gNdhpk;7xAg4i%@ zlK@dbuD_<0L!z&)V-35sHH;n<1|U2iHV&|7#xi}zbrx1SnhO}W0S1>z?5ZO%#P>pO zIcD&tjX~VNYh8MkIOXPqC49#6G3_f*1Mpi1m|~KjVpIDx1}LzzJZLudLc2#TY(j^n+nPELbA_SGY$+};( z`h673fjwXC+ck#({~;&F$ciwWY*AM<0LsW@%Gr#Ivx#ogE71mYkz%ho;xHQ48a8@?foW0Zw(=`6sNU809#JrdD z5qDZtLT^eN(THq#nR5bSpkf$SW8bin*ZryOUYgDNJi)9rS!jQD9F)fAD`PB)wyu%b zC~f)I{P1U&qw2POABIIf=M&T#wQO#OH?d;iv`L@xG+u|1!{4F4N=RH$d)SSXhE=6LwTo=?q zdOaZ;vkaIHP3a1c{)p%hlyk(qe-Y7jc!=ph0a??ik4JL#=qcL6s>!`jI)xv1{r4q0SH_XSfkQwSJq(3Vdl(MwWIkZRRf|H6yLk z;>-sf&_(R`WfL!D;$+**#v1wb!=(t>pYbAr4K({QKB6l_;<2I5M|QPorqe7cbc*W* zJ^b2B>|!Tj`xIc~=_|8=M#_`KRT&}yV<>R9rmPXQ5t$J~e2G!5m|)VPTS;zG29x*` zHe<%#W>7LL0kztq&XGa1*3K?W(}^p?qQo%$Hmab~{Ar)qhf#OMeNu@H4=$w+=pLkL z`{Gn#pRtkNsD79f(y*vt(=K)PtmBXkoXhU|OIv^+#?h0(9SDYOo9?n}OYbCm0&)*{ z`045qQ?egf-@I8NcQsgcrV4%N9AF{?+lryg$tZX#(iiKPEivXTjhPF+fG;tMQE^~7 z$2U~xX&IdI+Ag3&yXHYO#kFqoK5wWGmk_AypzgLn=+rm!X^QZmTXBMo<4WM1W%+`z zth4m+>9dP1^rkzmB8bw#QQ}TbAQc2Fv==w zANc9XTpx@|kwsr^jtL_Y%nX%^zb~kqkugtoK{Vz8q_XSTCgF>D?M1Ltp^cBT@EJ=i zn?JzD^E_h1Uu(453WgLMG5Hkc6m>hPI9ZHa&PAo)1z41P)lnTM#7Wr=bm4CtfhXC1 z)WiBUQ&IR+4dCvP18Z!+v7L$|o@_Cnyb**oKWiR@=$x(33}0Y7`ZZVL)Ma$p1N(Tj zZosD5K2^UEFCrBL*#se)^-)~K*LlE3$g$c#1w3@Q;(E6lTM-!9%qvK__lnF~xvn#` zgSGw$Ru=>7cI#_L5+m%?)`Vcq@e7?Qv}Icrix1Jd$a+zuB&N{aYsqjMu^)^KFX~(i z#AEUt>WA+;$(ZwFKVw%kPUb;xz{)FYk~5t*X`JndW(M-e*=uOiMFaiJEW@up7sj}d zBJo?_#%Sdjv7xD@-&Co~=E|KWy=Nsfe2uJ55g{+JL6cg}X@?LhgySY05^!ERcFtAk zF`!fXKjU(+TPv(EU=S#Ea>oV)-5Wi8vs7^mR(JtN&R1@vLf`4>x)8-Wzwm;n!m-<# z(fQ#R3hY%xbhBjZxX7VYVG}ftClrUAC}x*KIdpzK$A-81q;@(15rW5u`>D~m0qm8Q zv1_yhqMH?a>5Kf@M`C6%si98o16>=Np4yIm{CEQ(`yFG%yoc4YRGgsEU z5#h*7z|AuLTed!e&XLNo@eEwY=-4K8TG$Y*deG=YH+=5TtXb$~1IJBKv{47429T=} zG$0n0F&OyM;Njcb z3vY}jpNL2vx?{s3aX8lKXa0;VzQ&%{4NnY|)Ax%4ThV}rWRh%DIVP{xj9 zpfNVq^`JU`L>eapHJjg+0~1kHuS$aEgLCvbLvah0$)i2xls zjV0VN7yL03QzS(^cu<4mwWLg&wo6rb5{<@dZ>D8Sho4}7{E^a%FV*Q7b^Atn`jlV8 zeRTt`Jb_lri!wTs6kixB`5kHD7!Uxt`6#@JGt%)Z|BBi;^z3j-imh(pR85u(`b#`~ z20FwPuGuh!PwA5ruR3-tBusx++x?XQ^r@z#qC$1+FO1?8#+tReAaxzgUi$#*0DUlt z#qA@R(HJxzyh1`idYLZR5Z{xA*7Svz3E?lmZ2y4TYlBzWr5DsPh|kRcG0p@?nhseL zHaoxqi_8;h zIuXMfTgrXm-yj|4=|PK5Wx;VhU0}2Hsd1|xzMBX`4{eLrqT+4i03BAK>&7yi@SM^s z{GLnqbqq|dPIFCTx#pDRRQ5tZoH;T9}JQ< z{8bo5J23Gv9`MM}(U0-E2ctS$7t)>4h-^*Obx>=E&9kv9cHUd~b+kKFy&KGU)eqw= z?3+5q(Dg|p63u9&gVy(KAAD@M5LD|xGS;SNOgv{SE51n7{ZS7Iu_;Lyg{vdlEThba})e)phSswts5vf*0bS54!1#mo#4?!XM%M}?bV+j*828H|2 zb->Ri3VJz(G{ymR{Saq2oy*R|mOQDg!ngL2)y}m#YPr4ykBsL5G-j@5G7S?{sN}yT z)+VP&AHcVlLFzhsiEZ6Yf5u)qIPnoXJY;0YB??0P3L}qS_fI64BtQVAWREVJ$5Rt>r3+P*p>qcNd0Zm{MM+emb9o3VXD^biVd-Y`&tOoRBrj*WT4SDukn0iq^fCHyg!HvtC->|H-`mBDA z5f|=+D~fj*#`7_WIbw*M#{@CC^2aoY+1Ej6M$Jq(&KJDpOH`_(Hl{JI(=~=GHXF-G zXq}_9O9|96p%UuPsJX4UA`e7ypQuBnO(}wfcg%bq#$n^R=*}}rknh}wZxDywaIDq|0( z+d6PVvAYmqG=kv~{UJteSL#F)=6YI2cCpeD+CvcUJlm7iW1R!-3!A>WDYB7^G*Xn| zA6Yt3&C(9(L;DK)IC2%)OE7iEIrV+>x#0P%e(s%6IVzb7Tl)>^5=OZ5&KD9Swawam z%rNaw%1;~U$`zP(Me?${E<>mt1N2n7&z%MlQZW_aSR#il`&#zfq-A3v>=>4->T5qA z9kKK$P$}8i%{eKEvhR7G@WZ2D=BEw4mOK-&C4y<(cU_6CKA>}b4iF!%iDu*G;Q@PT zsDc?8udFw*HW`{l;oA;vSyLtQ88GS@8@SVk?GrQ|GtU+eACTg}wCK+DW}##xJrzVF zWN1D(DFmXRzkI`o$5uZRna-{l?za%D@kv1YSWtwHP5Pv&?ON2ZwoaaEmy#vGJRSWi zzZ_n*pI(c|`pD;`Uuz>x+A5!1I@Djts?86xh&DHFIrprK&F+<%S*~@dUo0 zEIvB4PpJz%z1L|ZXoiJDQD<2PHHZCEYkR&|EqXe8VvFv?4L4ERt6MDU@^r>8)Yh#l) zcW(l3YKPF3S%AV#Zx?+NRxGO6r5l`v)6KIXnqQD2temLYK4hjQvByRUS)JD%Gjgd{ z5dq{bWkDNkv{acR;#r>GV~l*OP-nXC^t11E-8hHsYOW<$)_Jry(NPdqe;3aBs|l`R zhneSXA+|%LzHh?VPy^GXyQaOs)1~zfKu7@s+ZugXsnctD$Q~%~0p7qe;1`uE%`bG> zfQq1B_jfk`z)Qt6+Q&D!d%SLs*34DI^GOY-FLKRg#TSl*IiKXdUx9}|N9)FvU~H_9 ztUQ42>^^G-rfSK;5OF*l7bIh1e`bH?@R3CjJ6_7wcS23-StCY%65V`QL4e8}Hy0Zw z%7!XDsG}X1*i{?biZ}9#LKSRUe%8>HDrmG<7YIt;u#c_k;eV6q!xB#${Ar@V$5uYt zKut6e@r8{JzhyDQ*?uUH!x8xmFAq!8@6`t#_)Oa;)zfG4>TkM`PwtEScSJ0B15C+} z=>BRyjy0y@dSGaYW`5)yx9aPKR%KlWSeAYKs>*JNHa+Cp!2{b%zlRTh>W)vxN3_N8 zCYn+Q8))yVT=GO3|5zp{?5nNG<97m0{mSo?NUxYd+WR@#O*AH+u~Teu@2Io<2z4-U z^+7yhR4Ux(GL<0t0d49k)%k4LX_ls9hevGcW9u230|Vg`;R2jpar6Ut%G#$+Vq_>r z!VA9+(M$%+u3?)f1%IcZV@EcxsLW&%EM-n=lZOy=9z!m6qX({853+z7lUG;mZ{Vvy zQk2Wa29t?kv*n1!7OIoljORJeUI1ldS(eCLhi5b-^A1nTk8^S?P`NPFaPGNq9vLkT zdn*{{9(_~e-*mSE+8i#tR2+nd*p+uMIy0J^h%L##=lV5#(H7r?9iq4&TP$k~1;)3V zlM`a8PdGgPGLa9+Zr&N9o+5z+hcq>eNM1GwC!{RqJED_w=4pg8Uy_?*tiBltJ<3bR zkc0Y?IOYxTNHzx{82L641Ro5Dao5{{=`)(CeI*v_!%HD`+ z807k^MEeSUkUtBuO zO1}0SS8b)5I##A&|hxNj<~B4fic-84F+IQ#^3 zkonvkAM1_VI>n{ppI|I5QDT1TEdK@ED@WHQv3Mzc>2okYx*-ZyF@^YNVzjY zHQIgzWOmEQ>S%&ZQg*!1brd$8UDdiGEHRiPcp>eijM>vQ9$OSz!Mq1Z1zK$bnG zk@2FeU)vRY5ezq=whicpXd@li76Soh1RRW|CwLB;rC6N@{pyJ3$=HU8X9pw<@2u(CE?VEo{lVzWTDdi9 z^buB&uKKBglG0SYhz!k4rOklrQEaQoEWA<$H>D$%r;n<$mJLR}o9BW1N&pnNM9iW( zF&Mfwy-=6@3{Y$HkOf(y;hlYgol?6e+9DFiaISNTIbw(?k&1ad)tP;b2gf*H4GErm zy3x!v@a)Ct825D~T4i0@E+LGLe!AkgK5K=sRZp0%Fa}r*j+qFK+&)W$4h)a+Lp}A4 zWr)_dn6GGG`b3fTwLhSIHqc!gq4}P|rbRp?d6HyVsW%N2@Y=g0iff-hY1j4xU=DWE zQN)dM`?$}~ApOd&r)~*Yti~Z%8LSgl2&$YfwQ@iL9Fu}-vQ?kWWjF_o(ogo8*tLzR zF^jzdc04>_3U7KUeFCA4uU=mumSIjTn|<4cE*#fjW{yqR;9)GP>Yp6+UBJ{gheGu^ z>dtL7%$rbv+d5$acM54SmyBp!=4EkEC#ilh=p4;Bc`?3>PiR49t3G{ zzo6?>8Dh4WeEJDAe9@4vECTrQ0S#GLlU%z{wfr2%JPnRjg^Hg5vsp!Q7#<;l6xKr) ztck>*y&hvZetq8jpgL+4WDj%R$csW9Y349booT<840S(+hR^0&0p%$)Pp8>TvuBzI zlK$m{0h~}`{j0wZLlWi*gfdZGQ0i6VU62k2N1cn5+Qi}Nc%dGl7l9~!Ty-k8v6VnV zOsVu$$K0$IdehqIuVunimDbj3xQZ4f;G8-0)?G`#C3x;J@v=@WA1xN5}EmhZ8* z1O_G#4`bunAr0Ma%s{j{r|^Q2X%m)#yok=@K{6cH5`2!XTK0*Jk<}v5(RcbPMq5~Q zPHS}_w{Xy${4Z1{y3tcXxmZJ7C7{0Jp!Zt=p3BZ+I`HBlcmwC!h8YVp#+1`AQ^weh zO)d!B^Iqi|j}t@`Kl#A)7%$x1qd8;&@`r9TE4^7+ydCZ?wu!G2r7aBa`Wa|I-?nQZ zTAZOZ0UIX2NnCWZVC!%UV|wb~*g(@DmlvBt#;rD}PmZj#VMvzJ=^Qy!4$wgr-K_Bgy|f`EYnHem^y6GybNhn6$s3QV z(~=FNH~g%{u&bUfEV=X~b$)4fv$5m(MbllIiNlN?04fP)OsKhO22o(@mi}l;wtvLN_ zs*#vdD}1R8{86jXcYEYKhqy<(nFt&;716Na&18L%D;UmQ`Ztz5XHBx8=xV~VO`Tvv zn8H}4D%lodRo>J_2j5;7py{Vi)TbMwiZ404MMsBOI^h>B>@bJjcgse|Hr&C~p^u2f z8NbjG!-)0dBq7jWH!Vb=X<|?^XLwP~cBJz)Y}M?9oXet}m5)sk;8S-Q+hbZ4q-b&N ziL0vrcu-Q_B&+;L*Q1|6Yghk~c(i%?{8`ERyQBF-LqC<~L8CI{z;pQX(em-?>8tn% zhtsNKpejLyf=~t}L8jb!sU2tdu19nvV#5{`P&zLV6m@3^sBXQsH!uoUx@A+Pe#9-z zh+y6{lJ4Oassl_%dGg?Psw>Wx@LGQnR!miB)(+4L<#+6;W|oK!G5lswORUWH*09tZTwO)0vqeV~mzq}m%7C)-{;%MdJg zv^P#Q4lG&uQ{CY$hk|T}3lLCYdC`|VJYiHK7ny?wM8D>0DGTVFZTF!$@97Xt>B`*PY3nEUts$I)Klr;$ zbf4n|zQ}&!&RAiO_z|tiDfcJ9mKnG`W7&AfPi0js_=Q9UFg8`)*skNUSUlO|bF1Th zt$N1+dq|Z|Y2Aq#Zr&A(ob5<=-J5_&FK(cVIs%weJ)hAn5y)>CCKCt0 zj(5cqJZseyDw$HMpd1=DZG&B&?=k!Yu#vS3`_~+!&TUdZnU|S$lQu+LVG}3`>-s=c zsOy}Npq~EmQ@d`%)DfH77Mdmr#uPjFx4~}XBWrQ=q8J|v+O^36&+GbPtuZ2v9k(gX z)NcyQAG{oVraOJ76qY+t(D+&ad87aYJ6e3`g*$Z{U`=YVR`4_T`H zNds`P#K!M7XLg+8ppWhUMZPV|Gp1Q}la^jD+&r#slIYkQXEBX0e#76@GH*K`I$-W4 zT5KYzE>r+ub@aWIJ*RiEiY;x4GWyz_}Yj0r_P??RyMh1I*Lq)?HAs5X~6)7oDh|Ky<>0xcD zeQzYUcuFKY$^-PR_ocpFUlrfr_G=h1!c8;d<#FW~>Ik^R7PDk*`wWjGbLVIm)qe@% z6Yp%0EgthrjhOqikbe3e&_2km`>JO1a*WE@9N3N~qis;vPv>UA?Q>H(hRcZx(A-2K zKYGM+@@YnJijO%WIL>jBE1EO+j4d!#Yo{A&_d!2vV?F+j6-%0DNXPuqLry>0R7Sy3 zs2?3s_ZDNY6Gn=LICI8plIuA})M~j#CSq01gP|JtBd-YB3AAP0KBkFP z&fYjq{`m>gF5iFL<{l--Zp--x1g`k2wX|hAACZ{R@kxA@kwIWqO!`4!f(uwpGxDp> z{R5f$V~vmv$A^G_qtlLCFw&eo`eMPQhs;}VSp9>{I1`X3ueC)xVfu7JB-po*A+Cqm z_9j{mKdbVyqPgVr(JDXl5vBb4;z3t-bmD0?e|-4r)mMFgVm$mIkqAbqL*%ME&U~}n z;Q9&=IZw7}wu0jY(aKL+9wXk75&R19NS<+}xn0ZE9^Y=15@hn%M<--jGNf}RK%^=s zAA=6242JV2`^jCt+2Y6#)Ael8*fO?k|z>{$O65G;LIrGS)${+&wD6SO-v$OuLa|9wqN{LoaPEpvD}HZyEfGK zHCE&t;Qvt!@L%ASk|>XBz}HN#EzG;~iDGTiM%m*l^gmEq4t?at1hf@z%p9O?s3M!x&c!}4)H|*A+G)asv{fQI%b@TEK6c8IT4m#g(neJt}Lj0+n;BUvyS4C zKe6N|6q#um16rqgx}v}f^CvG5taW6q3$)uxqu!*ci%P%BQN3Q+m$ z3j%ny*R&&hc4-{T{uw}8Fj&#MQC-BweiMUKnH> z=!)$#;jQK%SaVdV4U}k7A0+kIIM!SA5kz-wf^ARzvyZW%6Q%u8i7U~FUB4s8-f(Sh zMIc9(r*6BUSKn5N1v5-Hqh$HvzrUgzy){S0s7>6A~JUx zk)_^=h^TqZjukSYKrifYLwg7o@zJTfDF#E(sgpI_v(yM}IC$-QF1*rr`P56X+!8w` zbZO^sAr8S+otDA{QgrwTO2#<{qm$3AhBU_J*r9y6KjK?tCM;x?iCuh)Fe6j~e2bQ` zxZ0#W{wT`Fa79h$qyw5abj$~N)CA?i@|b(vEgYG2c#vE!iUTio=$t;7&e(1e;#7&} zBBa4?e;ANr@(g0L0dg@0*WB39hFF#I3H|-W+z6iM*P9?d9oh3bAdd%4^T4K{$u@ah z8(nfbHg;J5LVJkGDWTA8cg8FRMmEs6TAUKJGuua z=fh4~FQYQYjRDH8;kHf=hXcQ&CT`~J#lD(NAM@DPO5P_darHTXk*6KlJDl$_!agnp zwQZn{d2tJtiIJn&v0kLZSi)*Dc2hUseHGo}60V--jw(yvgF)p$oz`IErwxzeqVguR z7soYzZBy@=S(efpM90kUY#bm+G#lG9A22>4#UAy7n_|9g#4Y`#LzzK|CDDMik&4D{ z>3uNyt=XdPiVNTUpSkAmt<_q!=dF1HUUOCLhC0M4)$Zj8ViD#pNWBVMti9F?HP@4N zH)o7!j@SchYS0=vCaR%XDO=q@J55lx>&t&6x?gYhKXv3~&l_Xf>mpCFUa$!48Jx2O zW2rSWCbWI80?iK$v16x*NC>%+v78VsUd)7=bSOA%m=`~}RZXa>S;?0Xxf< zOH5QuW+_{BY<%e0^@}|_@oB;9uYSAFf;dj4GFQRv+2lC=;V?y%H(q!vSR7j zKmuv0ZGu|xO)O{1(aWMiT_rbZ!Hbd)E(3TfyV>%SY&*B?VJ}5uRYT>taNV!;rPIYQ zm;^*=6{~y*j7hIo_6gI5MY_^ba|i}?a5y@~`7PMZoTSmOy`3&$a@w0o^Sa+$7SLM(yJza*}rJ9g9PPTpQrnSQ!!#J&Tfyt^dZF zM=fWyH7D1&0Z6pBap_!H*v-VmG{dm1$^i0IAEGyJ_2IMUe3blR7~(;hd;f@VT{HWgNPk8`Kc6cEX1%IqX{N!x6%?nbf3IVJ13KmS9@RxYf_Q+@b5TX1dM?FZHt1>m)OVHv>N+S8 zR@`rM+eJT0s}VRSI=0P|p`4vIe#l(rSvVZXS?W2M7dCUz9o04DW!sES&N)?tsEmM# zj4f>)&SjOSge{+?0;>t3RcDugTB)LP7x^}U%h7WoLV0d8xA#2ifWMc>G}rAKFfYi* zSX>(woh`?y3Ilk6vQIz(+*z~5__`4~icr+#G^mXIu_(+C2(zflm zjm@!#{N_6SE&(A?)}*2y@@{tr?QXDl-gMyv=X_)M{%KWlAdijR&I!aZEUKv!(;`Pi z#(Zs!{UYy1lz@hGox^I2BKDDU8vN>K<@&&`37z_+!f*&W$dA9%S?Cyy>9ku{c#d$| z(N#rY`X9P8zG>*tib8$(CIeMsPqTXbyBzzT?P^29p256=Z@MaSy4&W2P1}G5v2|6J zy`47w0-;3)yU_C@H-1&g2?4-<0SZP`$@M;0sl|9AA7`;`vE?7o=FE#|wjTWJZ$1P4 z89o!Oq+=8Re5B(yuz`N{)nAttA(|>wanjojn{(Nli$%tvgRpKAlDkR_TE;XL+*C%% zA`sD$Z2tAIn#gL=b2)l*N_(z)YGLVY`p5u!4GBPY$U_j%UEo!@eoP%!HkGl*k1eKS zp;NUlVaSH+eU+utkj6HUPm6bExz&BI@-Kz5x^@~#{@*2;m{cLHYP z;$B${+946Zldj|3FgcE=o(3YWTs3|-mbCI6N6CT}Qqm@8*dH0gtg-5PHqrbc1Rvb@ z1u>;ns3Ryl86GszcSEKmh2Zc;iBsShu%Vnr#YjH6`5v-;%f5b=IjiH9uM^~gW$Pi1 zbH}gxCuDI--9Xv41jIQl_9h3oE&$GTpjLHa^|coZMl!f0=9oM~;&ceRPG}}MZVLtD zdPhxE(dnv+jey-w>WPbHVs4Cwl-d@BV#!S+@`v;R{~_y%9A79i-Gf*<5c@mU*p2QI zcfENIk$IWT8VB>#Walxokz40Pp0=>(*$EV^%RtaiL8nY{=_0c>*bt{4)4|kTsDx~F z5ugFDSEDeaF@QGht>{znSDu6N8P%g4bZlN6BmG?Qa06Z6c z%JmO6fIF>2x?U!y(#tP4Q^Lv;M5B>&166%u2t_}lJ#b-QdK(qXN0jp@EmUjA9>Fe; zRWP)4C}?$cXxh-H?l=@QKkftVsTbyAm*AJ4=$xFJ!xfs2!Q;TXOio6^aU=s-Ly?1K zQlReibI6TlB@LJ^73V%!nZ)K?1ITcG_9VK9zyX=?Jh3f}uh;Wze;jk23B-k6&oTXY z4c8hU-3k(DB#RHY4|I|VT_YOG<{~uT69~g2AevtEsSVE*Ge=g}pT`kd428(abe9!I z%_Q;FPxD28~gT5Q|?~r9UtS`FdP$g3?#XwI2A37k2 z#Gt}D)RHq~l3&?Op*t#lM$1u)K6a61E)b(_fb=PG*|>gE11TjFwc(zGkoiaqf1LUCAJLC*|8>+o(ALJF1FH$a7t7QIzvyh63A9ImF4*LOFHZgD z`-c%f3wQ&mI~}pOeKC_Zr$xc&vRjOrkXn)y*f%5NzLK~LPdJ|B9lkiHebBJsSW(+9 z=))S){yVR$WIFiqSC#$FTIx@u#KhCdQQse*nfrpzh) zP2Xp{3`oQ!h4o|}JC>nAyVcRReF(#+qcx{v!g362lS$v5XqC+exCT+W0aJus9$M`f)Tb@Eu+-;F zh{41)^&>z)eqt**Y%a|j)6yS%ksWJMQ&W{$V3HSs?{Y?nL!{ICBO2zifeq1{Nz9n8 z%08E%Q^K2e2roebBz`ji)>CFMHgY45U}g$qtsKmlR?ekJZE{Rc$IUJXcIQZL%0P9y zfL4`aR~@X_B)bo7=`$h^;g1+dFHhjqyUr80IOPVKhA=$q73dRKOsp7*CpYEHoKba` z(f@F+_sk1%CEpETUqq(|X05K*bK4+V2io^Db&GkS{FcbXa-uHk?c!-~PLPLh)!iRN z)K3j)H=fSlbQ_+pp@>?pYn4eu_vV(mWL=bLUCJs5xS_7&n65LH@@pS)zT~Kn+eIpT zeJo+n9*Q#eu!FLpYVv1~qwZx(Hqi-b>h#624Q2G#zM*YP1nK%=*cR2#*s!=y)ae_4 zz{dA*7nUIwNIESJi;zue{eejRU`kGnaRAwe`RXfiOx`0SdD}8&^{dy1fsWddP)WtP zD5ZMP;D??Kv{q&(wKl27iEWw{TT$CL!_|Sy9H~4!=IrRILkBN3DyG?z@mP$k3hp%)osdyn6Z$KOh;fB!-gk&_>M$Hxq|`utrBfto3I=QB2Dm z_M9s6PS0e^7rK2*Hlw5iTH7=?C!2^duW*zKpM%+KktqrbAAG*kFG{sL{N@0dwVe2e zOEHW`B}aXzu9(f4KBWa`ACLn`fzZZIiG$VLyIS-HA9qtSk&^GwL}dKnJ+iSm%w(g- zOc^GX${7bsRUf~?al_x>hV&MXKsLvYM>f}3r%s5*+O(91zKy!f^kA%+$KoO1G4%ho zm#sC2IK{uaF=WuiWsk%2a^??c->XPgjOs3IhAk6&=zCMmm9F1f32NhN>p(4a105Xl znVlW0%@6VtTO0eTE+oEfTE^^Q`T@`xL$2a?t`D25a^#ZIM0c1CFEy^=b6~wrR(~i_ zfrhBrV{?q!O{$UY&8_G^Ljeeu4Y_sGcSihq>e=35WBKA_e$_?U=1wHkW)2cV~X+I+`KjVAFe}=^>%+nH!sEwh`?MrC*o@SCKUN&oN)QFpT&&Mrx ztj(N~+6_hZceL-6MRfr_{IQPKyUxfKPX`?Vt|4n};IHp7wf|9G!8*y$=E`tCBySTs zW_h@ZoxqGOsC5L-I%z=<7o>DwhI8PEH6Wr`H+p?9yPK}6z7NTS*Saxf+06~T%;sYV zVq>;_uSXh`R%K2h)G@Yz0FyOO6*eKCkaH%>DB6eW%a<^$qY{xtsAT(S*Hm|+gOW#m zIoR7AYIyEVJxm=_1#V8GBJQXd-N21bFQ9<>*jlA%4ES7FkssbQMxB=38O$_NtO|Op z+A3pL2PAk_qk~u)qKhL25c|c*(Z`)^+D_O2naS*2rrqw$e4(aaF{!t0(4enQs%oA} z=la+<7UJRKPrx;(MPnLym5#v1^}JI?6r?Bgnz^c5%mJ!MY|gC%P_v?zi9E05iOo+6 zO(QV%$(w4``GR!%VtPZRGA#}YLupj#y%5s)L>Aix`6Sw^<_Sq$2m#YSy@7%TU4V$a7NkdQpImAe6bE-i^U9KM9yfv7~b@j8Fd>Q7aVD|Qpt zVLaCsobchCgQGu@pKC?zHQ(SZKWdS?m-175~R=T z9gxQ8;8Q#UI{4c*H#B?gB@coM%hhBtZBjH-X!KP~nZAb!&G~fBC^<&PPNw}1Xu7)b z${b9|Z=WJxH_^-gII5j1YOh$i5Y}g+1wXY%j<#I2TdwmXU%l>X&+En5>&ASykDNF8 z>Vxgc)_P%}AAV1m?u?t&rs*mvn0O6ha~BS;_Ni8{>L4?rb^tmtM%nrfXk(*FD-gGW z;q{LdiR4(H6i3(jky}${Xr3w-zZwRmp|r)PYBn*0QNyo&&YW2ozI9Y@?h&z7+d_Be zjRDn*j`7uYn|abMg7+fNvFC=lZcP=(y2St!$LOyRRFQ~dn|^aX9^A}<|K3Q2e9tm6 z8GEa{z=Ik~o%sSyX9-{e7HdD&d_NH*apI%8sw2-2lhaDW+Tx{c-O(ZJ<`-Mo0NKz+ z%%ZM`X&%*K5((g2I6^{_*fjIu%P$`l>N`})l_RpGzkQ>!rs>eh;_#70pRhG%sGBct z(>}%0fk0mzal&563z_fm14FLn0%V9S5407do7GiSrK(`nhmh#htej3J=~R2|nKwUF zkhRc(r9TH*JBg{WYzJP{M+ub!B$rZj>G+l2QbcmcqKb*iWA%yF>1zwX|Aup ziV2tIP9F@)>Qe8^>r)-Aj$jDP*GviklWSeno;D9pj`S^!ocPA9EHaAQa zKlWnIv3S(jdK3mB^T%^z`u7+c6aD?gz=~?G1IZcAL@+lQ=VFK*2as_>KFsv)xYe$) zs%__q_-V^d#0QP%T5f;@cCr&E_(et;Q?^S5WV3c3SJcMUS$esssyICmIA$&a_s`cD z2ZU+~Hs@2~Gk?m$b58`%+vF^$V9MtEjTjpXZc`!us(ba0y=$C(m!K|>j{zxg%$zPV zp`pN5eOacTxJzMVg+qddN*Kt23IQ8P)ws4VNEc+=^Q_m4iK$Qjmv6y*{rcZZPYip? zUc%moWn*&U7m9GnFZn>0nB<@9Y2R$Gc_8H4z-kCjC2j?gUW$hwY&?n{1Ig@WT(}nv!`tYgyp~Tu) zD{zg0O~ZpmeIfk_N5GE8h4FSOIYBNhE#+kF4+VG)=Lf;VoI&&TB{u4QVJU`W9+9GG)3dyECVFa5O$3!{; zQ9|wyMdGq~){NDs$(NgXSq2=g%J|TMsU*nuIJHX_I1172JZ%RZIm-%;k&=_`P8}KZ zCT0$PT#phT1qmG*{h$&z(E4Hy&^Ax=4?f3-Idu>#J@D$ zDtO=lpNz%03dY7UKqK1k_=9TW0W3M?jvAc79P2(y)Wcs@u9F!VGD{1t-)eF@(401R_Uo^xd3e2DGf6H%<`B0E%MN)|1Vv4}i+Z9Y84) z;<&+AL7+d|LS+yOu#Xy(%-*+cLCdK=Rx>DpnRO@#6#z_^W5c!AZC5`T-_dalYR`XX zdxTjI#+_`f;D9OC^Chaz#*lqdP?)<)u#@8j~F<%)o>+Jd5!YB{d?)$>WMH z3lsmQsC??SH+_gDlom)Wx7+Xrvw@zdq=6l<$r#W>nrAh|gl&o3deuA*o2fvpt{ruYz*#7OwxjZchJJKG@r~_nK z6K7i-PI!2h*)ii_s7_4#h7`;ac3NgK=OSkF_*LUDzdN&pjz<9ilvS+$K7dtq;vNMy z)7^A7KNP-gbu;7f4I(FyBkuErCb39XN>DXf+-SmN*0I{JB`oYNo}M62s2&e|rD=`M zktCN=$0X5m!zRvsQ|6D(Xngv8%VM9>h6yV}9QulHfbZrZy0LY>ZwGmyB6;$xdgm!& zQ(@W3J1c_MAR#J}ln?sO&(Q@G#xZfkWqd-` z+Dt?HXk8^+Ye*oae5t~V5kA_Hx<=P}kL&K zR_IgGF4V^KN)=dkJZw~^1Y%4M7EnfBv70VTvJF`R!1S!e810QYBT65yws+XK)FkDjng zWU+*D$Za?q3o7XOpCWTamCCzpe=b0D#4|S~x9Tva|IBCMxDkcVJ4gBWQDl$2fzn&H zK1JgMo}0>#9pF=KIGXFYq28S1VT`o@Q(cJY0otW) zbmw2-n$L^hbiscdrM_imFb~4x2H($VQfE^{J?vv$N-AR0J|ySWM{PEpha~C<99WxM z^|>2Vm-=BtWSQx#KaK(2I~EZRvkUeMWBA^rD9?@`qG+i31p{W0Ye;dkko76iI}&Zk zJ0d0m>5i*I-{ZHsH5;tmJQ}p(JlQI(ut#IrKk+X(gi;5zRnLY}4dQ^Ts$T#ywxiRp z5v1*$&03E9)vImTFqN@E-ECcG>g@V#yna}Ff#*-EhQ}V1hDnn!6u+5IC$(WiQ54fR zVy2zGC7YXBHxiOs`8Clm#40Fwj)Vy}a|c}$9g%-YJ_9I}0 zT3Uh#!wQppSztEHkkno>_{N@V(A6eJ>Ks-O4?6K_JdUT|k+BWwK*O%Z81tb+^tWeu zy^9PET+*Jy|MbOlR@ST^OesFkjOGX4Ad92&Q_wiXa4zMKHs9qOY4zN7o3t(dRX2HM zZXWO65vMR6b+{^RTji&9`gHx-SAg`Zr|*;vv<(Ot2gl$Hp-}VSsD?rV0P>nAvrt-6 zq@H03Cy0%0xJ(q(HDJU*KabTk2@^B%*vmw`w##h)jNj#yj@T z;~*fXD&u4+Z!Dr_R~AEiFT=J-a;w71snNxyB!aPdhmVV|T?E zc{D10!fwtnjwBmcN_=bnSl4qgGAn|~(R6pgRBje4UkG?`X0GbwYfAN)*y>|UYKa1( zXyYq#Ffp{FnZww|ZrAY(x!q*(T;qDZ$M`(kewWqMI{?;ZI?VA*uX?f$nyuJL#U#58i<(TdslsF%j!IDFj< z4aEGB@@YG-({MlK$S+i&s!10&)2ge#ZivCJ`>}%-2k~P$S}#NFz4tquQTI0*(ISE% zA%ct&B%-&`iJB&pL=bhfAbRg+2vMRFy%SyZ-UWl`y&HA(GDaDu9nbT=-*evc7o1|Wg}=FMku^`HbksL zBFxR$pX6Z3?lSchb*kmBMD?-F6|D)bugDo3H4&l6WD$2!tFAv~M( z)$+Z?*8TKAHt*9h%nK<;j*mSIOaA$dYnlu7%+jAn&-1v!h3a7u$-e2|HAFz(3S1aK zNo@1!^Sn9!YHCkOx6%aKwYoQW#W6Re3+pQMnlrOS_#(C9f>8?%Y53>1IoH_XeeJx3 z=>{PmIj&a@_nhoad*E|UW7!x?Wg072e`NHeIVh17U!&T>+*7O-o&+SzF%=0?xvF$W zk*9OKWaNw182tYETB=J}>Scae7M(jZ8(4q3zLDHoLe1z$zO83L`tW_h9nJ&DyS6ep z_Pt*iu9Z_W7VlX}%DzD$g&5Ub#WRT9ze#!F@W2_!3}brW;kS0HebaRNS}IxlowE1E zwg8&I;PcsG0?{MPier%YHp6qLrh1s-kNt1S)CE)*zS7G{kg*V1WQ@RGdnIh7yfl#X zMZ<4VEE8|$m&w2>JQTa#IQ8wK_o4tZQMfbe4 z2SJx+SpInaKqj?uiPdSbfJ{YgI-Lx^nBQ-zY8}s`dSkPAe;lV9`1kcou@QHYdNZvp zbH&ETMZS z%~Mojlhx-%w9M0=!{RWGL%KhOjCcDL@2bv6q(1NZSbFMB#AWW?pEyV_oNB@HYN=#3 zTX}})Y;mg zj)&!PR}^K|ZzI+GI-=KSr+dDr?VUs7Gy6WD}A2Bl5 z%A#6e;@lTbuw=bpovwQOx^?{6E?0U(%q~fbu4sl~?~KTncbP4Y-a-CJKx61jtlOm4 z@_r<)WaR}IYp*?-G^_cufHRXMyc7W=!^E2OX;rGU2E83(m?}rk3$ezu-E zm38DWIJFWIvHy7(KKst>+9~Q`n~MO$@2H))a_~Qme4~H2D^oa_y!3v}KP{Bj-s&h| zlVQ-A<1V@*oE&M`ycK^R@kTXW0Nq^qX|t7GDH$;zbjr7zGHGM>TDe(UXF8XYrgFB` zGSRJ`wRVY&tN5x#kh6(Y7#91-zUzE1+V0Mrr9A8|eo zujW|RtDhxVrLunKB=}bMpvjHuVU?eccH#Q#8Ev81OLei|`=jKOiEDy|@G+HD?@gBh z+1{-*@i`&XJZ0;B?c*O1)3WmbD&gNN6!VM3$4IRSTM}D;h5X>-E7MctPXW2Jhm`k3 zZK!rSqFeLyQWfr#G@ z%Ibf~IO7lQME-EsE>+3atUH*-Kk`h7W3_9D);5+qxF?nRtC-)AN?(e6q<&;>%e_bK z+R!2U+$QKRowC_1c=K#JV{BY_)%tsS=|8iY=f9VvA-+eEao7^uk#TY8X5`vS&h3b+ zIaK^%F7JhK*DVl(Fmrd5#)j)>1|3q6>JFH$?3vj5&WdOW4Z5Igd1 zlf1C*zI2mz`4f9X<8TAON_Z`i0PoqitaUct>JE1%@$XFf;vKa}u@G}PM%O7Gt!dO5 zB~y%d;qXKB?%~5tne>{OmOmR})2=vaP_9!(jDo#m=&kTN_AhD*OjKVq0cjxw+iYRE z?wD`+A~uhnYoyl;vr5}p)8yq9P0x3QWW8Ef@Ddq3KSwg9bR&cr*TXO7bt)%gNcm^u zty6z(jPm{=Mz$gPqgDG__l1v}$fOcI&X+x})oIK)CX!$Ics#xebbrNUVdtymbzfNl zH?L`^fc!-#37Ry@-wN7A{kv)`RUg!I44smBb)A1V)+zL0&7*CVzJ!i?o0Cz6)H&)R z*Hb=B4e;AoK+I-$TSzaz-{8Z%qibT>HYG{g9jY%gL_A8@G=OF^+F?*huUf9J*^J<= z3Yorm#|W6YU$IH#TooK%~AUl^b%<<<0HP)6H~agxivlMadQTCSG%`_&cJ21z;1|Yn!hxDAdX{E z`weLHXKr4*suOZt-zTh$4HoGAg8aukH4rq;xCdr z>L)YH9|N{(a-9od8WBZ?u5)sWBa`XC!LX+@;0ySIyd-=B^ zE@#V1ElofZ*m5^;tugsmvOtdkar5n$NLl!VSh|iPH9N17b1r1t<<}6gQ(xJ%kd}|O z)8Og5p;piSc;yaP`*${(Ku%-NUn6x?sT0&KS~J1>4}M#Ji;N$5Lg;&4UhG#J6g@1mir~H>-+BZ4Kx)34?namt#MZjoz#(wqo9D|7Z~C4;{#rn)hbjA?VdZ^l=lnoJ z$Jr$kv%fKo+qcfC*SMPl1u_IUy9!jmfV`Z%LYrM{F_*r!3ce9RQ}eUt0U0$RENe@d zuJ!x1xH%d-lO7DY#p0>?)w${I&`xg(IUWrWZZ4J}ULBmZUG@A&e1m`FvbYU- zXQ%rQ-_tHSnpe&4t=XyPch3KndAZk~wOW|(&`O1IQud))@vUtt0zH-k5?uL8Vey${UQhORLm}U~KihsIJ)xzsb zmbzMv_*Y&&AH8)e4d8d0gTgUMUB8l7h zWYxsmw_NO5!@X3&LAVH3rYdNT@O1CWh-QV!Dp6*d&~r_>o2(8ehMmO+eWkmxmeoZk z-^u%=9{zySvSXJQVglQ$27a()31@GVgbMZfo~O5T3ak01D4Qc*!R<_6P?>DI@AW^k z>R9ikw&H0HZKHS*@-u|DUWgwv@R*X;FV_y{GIdOOWb6LMAE2N4MyWz2>CxV5?D!fj zrY@T4^V<_CYeAYxb+ErC2tZG%gNjHUGvcL@hCX{~GpA#9@lrKB?71~CvV7;{bHU>h zMVi=|x0mW4fCs=m^3C{$A`MjJ(av#WvS(nCL>gZMQD$_e)5JXLTW8%kBd0K(&RIV5 zzQya_jpS7TQqBSVQJwkGBLc6!UW&Zf?Ve3=?|lh5u?1r%z)@rCCDLuhs4bxg!lqSJ&R+LzYZ1 zNL;iBl(SZDBOiAFX@^8(TaW_Qfpi}l_=imCoW4+jGR)GV-d)=Au)*;~#$~2WuUcPH zMYNg_7iT)=3RU1cGF0Y+wX_;W$@$1=&_i-PoSm=cRA#AR16TGv-9 z3>O1;7Z^Z??HUY_^C z3}}84YuvuxO)Kd0*#w;<41LYdi{14fHg%j(T!>`*6TjtsP`ApIC~f)tRaJMoe<3}FMJs7M zdUzy-lV(a&aZvnjfKh6ZwTQ7Hs^sL>S)CMojivuq89$(1B4d+tkd5I1aP3juYm)Fs zEC`N*i{`BLaLD_`>X^^2a{0Y|bksGDFJ;H81;qcF^NR?xR8yYLo_?<0y2%i#naa&0 zdmSNcwmSm)9JA>8GfVdB^%_Z7$P6b}lT)lyP!uP<@!RI}FYOi+gD)PsW&pL2;eyw} zLO%ul(J(Ec>!Kc@dk8|26s74wATMZwhenj4Q@H!o>eId&r}cw;hW@=f2R@16mxvkO zu%{sm+EY=CwT|Chz??A)DL!~G;D@N}4)=Z5PR5h(U&^m@93jdIjES0RKjLc7c(Tm? z+q)4$jdJ}2wtW$Q_DlKF&Q=Vbc%EHU-u|b#E*kHdZL$MQt|$Gv*j`*b^2iEuP8xxd z@qRH&TskTxOg10Y{j#d*fvP)(qier2BHHUV($f2Blv#-ti|e0-K#YjVt7*TP^|j$* zbe8tfTz~az1cmcnZt?dhLSD|B751+igX&MPPKqh#eSFWR-ToCsKDydymfaqtQ8t%Q zvOZC~3m((?8LHtcaXg%NXbN)8eA0pVfU6TInB5~~w(vFSH`H8&+FE7ts+v1&VVFCg zyk8VrPhv46KA6oA)+lxV6J&KIB=aOnnWNI$LSk%6sJy!Q2kFDjpZ+R+w_bk{Ea#S%>ipPrn;CZb1r>uB9FV#H%Lx58MTXkEY8cG_jzTy6mWmI_*z+)9dykB|tSgj`rWfTp@`J#dd0yv@80EcPJ`WObKv=>vq%G z#3%7DpPPRNPSA5TISR88b_2QgZBG;Eul&VD#IkRqJe$dsBiU3cYz_mlHCc%XpBV%8 zi82{~uCby7HvHQ|sJw9L>`}vO5u~&OOd5JyT`va(LYx()zqDBa()Juo!1h#w{|rBz(0HZlE%r!Hslw} z28m4QoYmPSda;jmaZ`t9diJKm+I9#$CX~^KJ;z!~g6KNOZ>}(5!tRArq;ovU3CGvh z8R?>sFr8CFo=X9BNv%PV`fJ@;YV&J2msU6+?kb&vvWcx-OQ}+7_;C3?VA5NLg7zON2^49A}caz3anEv*WbL#DclNT)w z-`fP*NuDedMjvJIrW0%7s%T!(H@Nsu&HY9FlM8Ws9;>h!!4K8Xzgyh$i)YvA?a2OH zWXNHrsmoM6eCl#Ze8yZ>%RfeL;s%7%eT!mc%*Xf*A^Jm!~sF~0G~ zPV238K$x#C>MQ>N0^cS7i_xo9Cxy|+%XA15Xpx1`JT`k*ZN_Zy=jHHqi_ zepO#)52_MMlsiPW;LT^i5R0-aHQ856YmZ6p ziTTYX&DUT!eoSI)IBlj;eMkS8NXWepUO0ZQ1w>pM3j_FKsO9j?NFKT@RQv zNLrXN$*`_wZ7lzw{hC+vHC4dZ*C7vo=T0mKB}R&o6MoLR4aN~CWYSkz`i11u89EpM znNmAljII+k4qhJI*YSO-G}zJ!>sJ@^m!It+p^k;k?V6@ZV-ZeFxjVhJU|D|&Zp(6G zAC7oEEA_O5ck!&!EPaM@x7&adDDt*LMGUhSfrG>+W5|?12P^7lm&3XpU%O`yPL^k)%@~(mygo=@ z$t>%HtK&a9&=rF}`}7(pwik{b#%l@l0$by!fO9712^ ztXaNqsYgyA?Qx^>>25kLLe}!6=;I)j_C9tlhM(NS*lEvf{3g{5TssugugvSMGG7Go z>(9eD9EhbPs~~d%eJ_oUKR3RD7sri8OLFF&$9>II7%~$b+J?-tp=y(P239)t^xb%^ ziTiRL6+X#7Qg)qxgc3^$xQSYdY;{csr+5|2^{X3U!`K)=0bU;+{A}O2H)o3gj#mL; zY(s8=SoH;@vz;j=#+T!&##ca>`%3xcXo6Ic42kWY%1>+-k(LFgH5qk8`SX#c7^DoE zjV_K!rngEx@ME!PXy3lhVyP0ofLCV8L#Mn4HT5Y>a<)@=3BDCFPtR?WNO8^KI92+J zD&0JeiZt&@nN;P`@84bPrXezX%BmtH4e{ob8t-cjvnK5M#GXy!T@S(>?lJEkO3EG) z?^205I@2%}gpZyFqyrzz^jACkQ;?~Wa%J{{I?s13HjOlc-zge%;;W?bZ#JJ{SsbIF7HqJ7 zL#y8B9k0*x(!FeyY{c4YUDmSpro%k4uWO&&@2D{aEsLO3K#@Ig}A_l@p?H{Z2? zpe4^!?`7;eZN8I12h;ETjEZ%pGtM_ZLeQu_Af-G#$y1Wi;4PH5pT5;)vu^uz`myu7 z0brBDUpEFmn85|5e+k{}Klatu`8qy3F4^1m$6gZiQZADxEC#2VcUNu+J?U{zfl~JC zFuqf8k7M`y%hvOv@r{N(_L=zdc1>K{s>8Lo1+GTRV*Zr<6ymxC#QYn{N7^j93(>LO%^FSF-GJHR9 ztY4LBFwV*^Jfu4aj(fwbDYm%tg{Hj{ntr=>B{JjNO#-|k$I=}gF|x|u#>!ruvPUrR zOfYA?Y2?B>?+vM_76h>`bzZ0baCZ%=rR zsisHPNeB&2?craiirhnapCZXHGiFZQK%v@9uxnz6n`nUwnS}Q@NriY!MDLy5OVJv6 zWKmF?gZ!ti_!--G^G~5~+;)6}lk_=^BYgR#+^;^=*+?#1x?pt=6OsQcLk2_v8I_tp z!VFtYH)=}!o)W#PzZEWdzKCn=>woHnQAsmNG5K?@@GRCP^C|Sg3?bRx&#b-~{ps{9 zpy;#n?vKZ<^?vG-onfZl_38^xE32v|6Yc0@Ws*;%sa5$|A86brsA$l5apSV}bRSB^LJkipuji{l|GdmW5 zB!gO*9w+}>QUpR`*GfN4z_RnR%ntvJ{Z$&(`ZBY08eAr7RQXx^@)ndytIzfJ*$b-g z=UVlgWYxu*Vt^cwU!>62l5&}bNr(7_0?3(1583YdBS-$mdZ6rn^kZSuGn8#-nyiPC zkQ|ar0@1nYI@!l^IEg21-?^uMnKIW;MQrjB_A4MxMml(1+W(+B;e|l`%I$Tlthhtt zI;RaKyWWBCoqvD*Si9vrc$Y8xNzFHX?dC$pR*tGJy)1HO?G-ikhsPn&6dU&__kJ5R zy}2XJHS-ISgSfu)=+1ksggGt?+U1G~k^{iswU&X`(xO3jEh=BP)a|~wXbSTQ&WW9_ zrxbk2S8pGg}{^N&Gxx)52sHfiOY=A;Ib;}66T}0l&XfXfIqJq*H{uW z%?xcGRm!%#Us*kDG9v0Ao*10F0YsCd`L}?*!YYv2U7Y0Q-gmN=w_AIR{$n4~gjlT( zmoFZWD$AA!-U5GPcXT@WixuK+mthu5dQom~Ivv%a5<7#=^6COa{Ha)EU9^uS7gI$M zlYTS{P*%Z=acj9EG6^61Ljc!le5d3-S97WoRnT8q2BEblD%^B{~`=KsR zu?^qlg)aERUu49=&&|8Sr*)sigxd$X`)Kn3LRF_g{n)AIDh_2`asDW;UhqEA`B&(p z*yJrM{>|Ke6Z?qu4Fk81@+3Q$6fk)$Iඬmpqi*w~fRK1dz=B{hxGgEH!U)}eP zRi_Gn%{Fh?T#OAw^0p={rsmtSHn>qdX}oMRdzY-9;iS1-FZbb-P_$;^ogv;P;Rdyl^?v-+bG}zUSf1|d6pDEL zMIF4BTfSJ5p$q0meXM)=t%MB*W2vb254HNvb?dFvbq9~I#ySo0v|5D&g)=b7{8 zvp-A2Xhp19tdC557Ve6Q^UIi0PSGpt4W&;mXe_JggOFu>Rv=;8((j6{x@j!V$=p6> zz0C=TNgKoseP|e4{^0w(l>$-Ies%Ga2CKmU#;+A-%44U<5$y4;y>b?(qte+ZVe+(d z%OD)>9pTmhSV&)*_)nfm*8I8nVmG@=)=j-rGQITZ-{>3}i*J)-IitR1e{E{4Y~vI# zvA#DaV!c@hCh>tw8%Yp)k5sMc_$bx$Qlli}w?om;XWK9mCSKOSsMv0rj(B3OnA*?y+bVKife2Q>iYI+XsF}5) zaSO{0+(=bLYuBG>T!d5U zM00W6p{!r!LnL|5cXR5sy!OevR(_xIOZFMY*ED#xcA8wVYn%YT1ut>_{2{>OoBvj4 zw`N6dOK)1JXyZlGh^<|hfkKqp-kS+&Hc)Ds+tXD{`n+0ehl#urs7j|GXp$K1t?%8nyHu$kC3@2EyyKBM#p&=BD3^Xmy!UUGz|A`f?Ft z&Ic=6uPLu|UJiOkl<2pOQFME`aYC=c{~7E0UZ0XapL0=|DKNvQUKmC7vriQwBi`i0 zZO0YyyHD0`ar^e?OU%5|Vk4Ra?Uo!W+ObIZ!HI~^ZF5>}z?!vz_QzIxslS049;JSB zeRBX6qNx1VB5JUsLdGi}T{zZrOAic?DLTrol76_UssKZDH`dcKe>6Dn{gj%P(RJ#w zHcqznu!SEooD@AdX{}Q7NyKi@!ECc?)vHE5!q=I z24?B;t7M{s5=3U~@UxFjO^6q>p5E9^4Ux2YK{IL_{3$ZrfH=i)u7?3+|2!-ecU$?$ z;pZ5QO9|%A9!uEI{TJsWZUpv>KSFu87#gEum9hc{7~z28;RYR9KlIw9`U1@Dc8%cATIUJ9n1JW;5)Vrrh8y;(oaSeGco=Hn6}~X< zcrznz7gUN&=`myq`tQEdikM*}Ha89&liZ#sbtBy!_>%H6h%E6_hjufpkVKZ~X&1?- zUSAM;%;>vDH{yebO#>yTxK+KbML9`M(5=0&Prb!59?}<7XC=x!E3s9gZ-kNjRpRDyQtPNWgOJ_8-kd?tX~gc>bLEFmv%GRX zBFmG%n%L{jxk2svQJuN9yCEnxd?W1rdF5>R_qhd%>o%k8ztvRD=82kI`hZ6@GD>W(MBkS$#+f{f0#Q-S_6w;($ zyKg$paw`bXp)7I*6}u2n;blUJvPNJ7G+_$N(>H-|jSD6XyZ!uXt4@s!D^rF(uN#Ib z+V5#kRa7A*COb-z|J_SB)1gP{u<^M5xM1z5_B~&Ch=Qe{#@pS_thkz+bGPa&^k4Yj zdTrEv8olco_Q9Zq=?fv?bk4Tw*`wtcHyMfICI_WH$TvyB4gCN~${uAq=E3(GmCz^B zf~#Dm=B&(-oCQWnA>CDS&V7^aqMzW4KlXRSs`?~;YPE1+MfW<+*Htv@Yyh}`J{mtc zueX0cIGfnuZz|5M|Be&^Eiz3gY?lkRzQzr9fljwcv^@ZO`5aLUHsuflf zQ4M^|>kj|3-plx%+0%^<>_$zWZ?LYYt}I^nPH-H}gEsy;yAH`M?{S*!iikzmZ{eKR zD}Wp;d2d9sp>AqDP~z|J3BJi52JZXyWBp|P^O4SpHWY0;YL4`oA72bNm%A-_wAB{r zjyNS0xTNltVtFZc`-Gp6ni@v?W45r~`C4+qTbVzpfc%$xyE1-+Z+d4$#tH~8HiNw& z&|dlbji0e^#U=PDC01_Rg%?+&-dF47v(nX;6(&Dt+!B3<_^f-vjaem~Zzz`QDW8(` zz$n(Lwx7JmJt$Jzd$>o+H(gUf`J{trmyM}~Uj*HJy0f41k61SnIrxU0=0NS)?8-RfLgwIF9# z`y)Q)yVK3)Nv4$0Hh??pp3Tb9hehEJ z%Rj<3AoKTq4R`(Bt2H*(^RV#;5A*a}9F&#~a0eP_JALghcC-t#ma?oZ8NhX_@1|~% zU?G0bMCY}S$pufGBogJ!qY)dHf4f}k76z(-T z3(hhy>G}kp;1|Sg2-;s@^4k}(WGA1i8FX!ZryCA!y%RO6u00;VbuFQJW+$l{QqR#X z%`38pfA5lxbmY!@iO6HHjheszR*#uOV$gSsS)WrvVW74)>`&q7&%scN@l)CTy?-~k(*@H^-PoPAfFQaIK<%}YFCO!x_ zAni<<{a)c29l$-~d#vzSzJlgfHnoTngCjNNLMEgt!_eUVrR&GYy(oe#2}a_63cWm}}ae;T`a5BH~2<-MSBgE9%T z)vvbM9|# zMZCP>O}b02Pl|)(w0-2V81gH4*I}N#jgC=pm$0>%j=c_Tgm2JW$^5a112dBRR)loC2 zn($Z_jc&cz@MUF4uY6;DWDyyowmI$GU>EVHabZ_Og}M1}AIos{WOfldx@Ot1^WaLM z!)E8ZHY#(yz-mW(rn;Q0t^MzDdzOsz-Fo+(dfQJVbBWEC=Jr=}7&q80LwjzSzP1zx z?elV(6#yV`ie#1gugIddJZYZLPPVu?afi&nFCOXZSt4_K^{>Cyy!Zs;8eZm9))EYl zYSp_SrVZFDwQKsw+o5SC$0csObD!$8knNlLE>E*{&Fg{@?s#JHhrt?F-J2ep)5hI* z)9I!1Y6Wv{s!G^0f1-!+23PK85yy;o2^@dlobTkpV_hWvnRjQBnkHSKqr@4X16H#= zmTn)&O@w8=aBvv-8T8&yzewVlU~SEEo_eo(@D5Z zoz|R8pOkxx<{HUl4b2*0q*%z=?T%yyfAWN^wX-@*J|~3JUWz|y9c)D#AgDcG(|CUa z54r3ZI*!(ivSOCd2B+wz9fh=LWweG@X0ro)EbQXP9-9-cAiWhHvlqnSu68jW-VgvmN-|ZU+=S?sb%HwgT?#ECq}l&dh8-(2wl- zzrVV9V30@IWVIh)@Xb7U<>9ITd;%DEwzr}P|4%Rf>qF$dtjYlV0{D>X3=a(b-vj*j zl_%v9)!F~i+i`#ovETnRyJ_#U`v30eNh5IV|7hPz{{J`sU*d{n{{NTm|54umFVqI; z<%>o3fdGDIvC*>?V48DSq@aM1hfH+JBzOqD84uD1OIksTSB)I(edVi03k5Is@i3-K zvTK;bgmKr^S>cV1>EjbSwk92r`d9`~$GpQu+A^??8SH92BI1$KJ@gfE#<)NHYgnWY zh=;+^yFkJ))Fmn3uWIAJeRla?R|{f9M!Bf>F1fGYl2^1J^?jShoJ~$zLbh}i+ODe| z#5V=yv2emAp^Y0s4)9$axNcVj$n*lQ)!_Z%yOD5D^mzw>m~_A_;_L0fmc?8A}La#n#Wu2Ef#@RIHED-jXfFa<|!Xe{=-q#BiIK2kw zRs}Wzq;S!PpDTo4H{ky)wrJ3Y@p{ibLmjYRIJ&>)!@q%_IG)3zq8KHEU`>b z*d*Xw9rqDL=p!JZ_b!(^5h={X;oBf=m;!Q_hp?H2JzH*H^zgYpuuRBj?)Zo#U=;|X zQ`KzCH?s-#J34Z?4yT-@ZkLw$ z6ewb{0pkuoYLn<7%o5I_a=6#fiL6Z?8t4+>vQG|Y0-Xa~oH^k12{V%+0Ei^r|3H?Y zgfBugt4TrHX#*7{7)B)qm_>&Z);m1)y1@7(!WM|INVw?G*dJc~Yg#i5YeMTP>|0)i zi2=x){x_KVBKg*N%lGZN5=^x z_15mL$CV)@sqh%h+OZ)c_XEL!*;T+5f?lAT6fU=~X0-^M(L*_=qf|XeK_5 zfavhLW+uQo#(jeRgUP5c!IZvITX!$()(yiukKb4UZ?qoCRTF?W$WlV}1w+TdXN(#z80X>G8#Tsz7yOUk zVFVmep&|vv+JDQhV%kADR}rFM9uzs22-UJBm$FaCzncxjQ_$-Ekm@87xQ`RU#ZhG4Lb7Q7Gd{Qrix;8GN~)iT{tL z_+Hm_T+GVjXb9belQRVzh%h-xxbDDL;H7_i;BGEhY15#QxH$e^LAb5}OB4R1u+-;L z=+usXhhB;yl3_{5GB~P^HQ>E%+(!(H4|ZyR_F{la${KQVNp-bNDQmL2sELkRMr55b zo2FsM$ZhF(BrcOLkC~y&7s&aJ$E8lksNgt8Z->WyKq9$z=Wtn|#UA{Anoi8*#kS%0 zU0m77;wj8i>q6sn==p*Bk-Jf>GVIU~cIQM`0DFkKleS3%h*-wlgpvcjdi2~3Ev4Jx zG5dGq&Z=s_dFU>{tib*f@BwCNEgR%;`^ti)!fYaW#Vv9vfV#b6c6r;3-sa%Q!UUS7$A;1`P!eZrOmn+5DF>*@w_3bP0(XnWta27$y30I-dx zxgL~ZKEY2ZoP+$XagYx9@vgpK=|(DM7GDQF+)cv9fltqF`XlsDHlP{c>lrJgCITYx z0U~f)KP3#NdV~+WndOPXA(|W?0PSp-R);eVeM3m2(i{7G74Xr74Ttm>oAF*Rp;xjT zsBkBU*pmomAg}!UUfEn4=r9;HE9sF?SYi95F-k_Q1Lr_ktgxYE9-=wDq=a+{p45#Y zeMmOvlTSycv(P;FFnkCTeD|ghcY??1<&8TbTuuIG4ZGXzW1vY*XLk%7%E)^t(M9v4 z_<03Pq)Vt&Ut}8e(_gq%<%*Et-F3_*0SASfVctS_1^uq=AZc*K{5gT!ao7dR4($i5 z+w8UYCLOPP!0#faE6@)+)_4EwsR{{u9oH4DkXx{Tbb6w!Nmm83!$>Vb$oY9l`@5%UHC=%>@Z9`b-m}y#L?P)ON ziO}Dsl7OOV2y2BtT~I85(AR#{_&#~GOlS5S!F(G1`Np7xT!_37M1996GFWPxmC1%1 zq{ey3Z8Hg8Urfk;9Wj`-mI#g*2V95XbK1+3$^D%W0O$$%#f>k)fh(Z+m-4!!Ulv1g zKEBb%RqMSY3fIy2JP>pme6FK=q_M9&zJGsSVLcknDGT@7nZ`RoF*gDr%xsJ-46+z! z8etkMnp%a};m{!fs_)+Az@;fd>%4L_iS(fMcGhN^)L{Bma|NbZoIEsX|0oN~Ll`LR zSaU!#rza)NFc}#O=|KBwuGsDWV=)ScJ`BS`#SGX+C5*!$=h!j@I zJ=2o`XIm~;>2g+cM+%mGwmTVo?4hvXdRh(=cR59Tl+3zR4LSu zLAH}JKw%Aprk~-^sT`}Kcm~-6;fg^w3r3jriATzHY+tficiu+bpa*n|*r#;5Eq9?z0|1l&CtT8O4FIVTyLlQ0dl}sM3Ud>FL}Kej0iXKHNVuJi*}GJ1QJnqwQZUk)$+Wfr>_+tyEZX!i^RYmiG(r z?VfNdF`$tIt*ztA`Jz95=SD*=fRa zY=i{)ni6B6lhS0KCVv4VP5{p{)2n9f8hKGmPsg(YuWnf8IW5yQ>V~aBO93ox6cI9l ztt++c<^oQ3*xIa%$(3Dc5?duGHkyEp`kLi1D}HHs5(qt^xsdZ~P<}V0U;a^|$bneU zsvnbQbEUy-WhB;VW+>1&avig-aZ?8Lh<5cqhQdyuZ*(}-Xb)QiwmYKZFrXlv6W$0N zGntD~CDc!pjBm(srNpQ|Wi`R#lFKomdKE`WxM2&nsG-Qza4T^7U3)ULTbMYk0>{P$eKG2Sfx zCe~Fotogew%YT?3M6vSA<3Kp^h9q4%$S=y$zYunzZ~LwxC-}2+ICzux0%`IRL9yP_ zGdzdYfKI|UnFrsp*-IpE9(lX;A)sdfociS5#(C_2*xq3ip&VsHo@SIeak$!xcx$GX z<@vXLBLr6oxG1Y2ZCba`HpuE3gZ~$lv+OdxctVAnFBly)*I?+PjtG8`eFgAvL=$lm zH9Fg8yh1wk&`6P%;D*9}^7Ur~Y~H~ojSY)}UI1=did^qV;|w}s(UINlUKXfcN-o$% z^U8h3{Y^L2(teD%JNZ5(7<4glt^r;{(o~hFSxRUa@SHWU75vvUSuVGkv-Tgq<7<^% zD?T6TUJ-|!h=Wn$kiG<|llo|$TN0jUO=*?~a?OdJk9yAsaN+P!IM`H*a?*=%Pe=Q1Uczdb0+NETiv*|qzEUIaJJ>U1q9hYnzN{Zq3az;1%HKZ zjl&{;gnB%+t}y7dw~MDd^Dq_~wog5F`8n z5X2=7uCQ8y!r_;fR9wa=mGrsIT^hlA7Y@lp(Cr(7biJH(Ns4dGIRtLOQI}Xb0OH}v zuh`bZ)m@o0^;JZTLfD$!!G8SSN_Icci!cJelEJ*@HdBFmb@jx8kW&$ZgCP&0e@@nFHHo;fGDcK9W#xjK;1c4$jZzPvOG8xK8wMPlpf z8H=1~tPE(AKR12vf{X8fZ(m;d*=9u>R6Sp%kn@By&X&0hIc3%|L@dri4ri}l_PXUM z-)miN2b16I7LX3Ieig^(ZRs?orkq#H?Ta2Ve^}1~hlRabzI%-{9?_^(4sid_ke#J) z`4tTnkCs*4v^y7ky5dHK$m|wx-Hr*7#E#3@C~sJ1Ru??59r7#;9!4(u+s$y#(3SHz z&)bAaH3UX~u7Xt}ZX=!{*+*M9ujk<}Z%3Caj4?VBdK8eL^e4Bl{~==gNDJK8p zpUqnvUW%d5ol|!0`)?2pY@Uh?(u4kU5;SJ^$P3-palSAuY zDiy0gs$4XGGY;4+7~&X3WUnInhL5h@*WWtTD583{9|Qf^Gry09p1ONcGN6*0nC!Q~$;y8WnW zy`WnoQ3~uBzm7s>08jqA)Aqo7Eqs?l?437b{DR`to4N2UZDk^rRcE zbHPbcUp&%T|4L1dT3pfdqc}dLr9M@R^7^NxXeJuq0K0e$@CtxQ*92-j1T@WU>Bi4> z9tnzg>J3n`n^y>aIT;>ife$4hQm@qb1pR`D70zrr$ifna1=G^~4u~!)I~*dsya&8H zlMhaZ_%l^%OxBuTl$#Av-jOiEv_c2CtDM@LGjM~1(+=6GRn$3c)TLoy*sk}eiA&#& zZ(q4^d#qa?4nUbfB7kM2`+`l&m}{#)78z@z3!7g%GCh9|s{>LBb+Eh8>#QT6XH~9I zwB%;pu*8t3y>7O*ZY-MmHz0w?_VfH0DmGo+CCCONc=Z+^H<|ixyQ!(X`G{TpiBvyQ zKGSw+0Eb_X^qNHjdVBQx!XF=z&)(>Ly~3YuPJx~qst-S-rB;+}P0j_}fRHZS9V*l4 zaXMCk%{q&R#8s%4|6vAu`VK&Yh=rPx`!SkU3;=;4+@H7hY)g&s+LTq(H5V<+`rq7t zRDq)`hpzq(0#*!+4B4y(vJO5!u6~e&-vx1b-5phZColOW=2G>F`7VQ${n6%j^ZiQy zs-n|h5U6xlZfgVhHpp4G72sE&f_I9abAUx)&h3O56zqjCh?HUeEUi|1drFB%w#^sA zOvYw?N@$6b86Kw^Vc!QpAV2~`3Y_x@OOsNw#UPksJTlX(W4AbYNug*|)6h%b1JM4! z3#8-5QWs?;u9W>sd3=4mg{ao+yVl9?FsbTM=F@I{OzVDUynsDJbh!+IL`24us7hgA z8?itox60k(Kyr7%fc~UWtsFZFOjd?oWZ^7tA|A_-2KcaFJ|TMjrcU0Ia)$s^P#Nfe z$gBt93zx0gU5}odv%T>_w_3__Fo-KVW4`ew`%Eud|LA?#ol37|AVd~zoM9f>_)k>O zb8jHnfn0Ft;wB{xKF#fAp1~2dPq`vUvhtM*;ySt}Z3zL-ep|PcC**?9!e{y(5JBk! zGa3RIAKE%rm<_f5Uxa;USW`jQExk*E2mwK=0ut#;?}$i|BGROTfJm3#LI)>*S=_7=R|r1C$G;rnPsu}_+_ zccnJ*g^Vi9;u#Hou9r$|w@m<%vu% z#@uPCVT0>wL1jJix;9`PbY)F_D-EO681p<*KZhU>%${AgW=kn`-x^r~>GzHI=G$+E|*acWZAN&Rj%-)Mv$wcZ^+6s}~@a(sp!u-8vC=v_uB z(JjEl2F<&uB^^7Q@S|k>A*8)y(}}?ud*_?(F=$ha-kr`C+DCh_E1@1!u9HpMQ779; zI=Y1+6*Hsu$E1=9oK&dq-Td(BdUXZo?6lq%8GQR(_= z`B_zvAL7-z4?addP^_-=1v)C=n9sxLYzK>F*RmKk$R8Q^Z3)#tc69)M<<{Sl@QPP(D9q8hB;`5m3Az2bKq8G(Co zp7l$A`;J5&I2ndiUNB}Cx-Lq>jc7+tG3?2R5KdcKhdx_u1XRwcEN_N1@218aD?hAnX0U2EZFWU^pK~ ziwYjPms7+<7$AwNV9?~P!H_aKX}I+GA~=r82_1o^+vKs8alX^t+EqL2>l70D6w7ru zE|#l2P?5#gE5>(C;hYUZM?Yq1IjsI+;xvrAcDDE!EanI*o{?t4@Noj$2%S zM)(reg)PqXolV8RM9HvVoiywsD`b>jSblaQ_kdvyzQ6VOYV?Iud-6E7&c;R2pWeZ( z0&?lQn{C1_X`AYSO&sIw>v+TL;hIHmw+Z0s)gYu8U)rR~Ty;)&(QSviu7-X6JgwfK#}BJWA4QRc!rbv3gBVbs z&z%XE$)jE8Hmep3C(NQ@@DKx1tX=v@OJG&#|UoLMoE4ZA9A(59O+VC4nAOMOj7bZMelhFNOQfy|@}uCwJ`Q-hQe zyGqILaj2kT*q&=|F8o@>zw$^>U18=zu;`sWweP8cQL@gz6(8 zG>OEZAB6sv5YLbF{&!h%LWQJqwR0b&3E@1x!{kgq7kP6K0vgmiHjIY42EJlK z86h`5(Qkh_)l(N}&KVzSChoH2q#oJ{?kX^Sy6$H@54{iFgqAVyCdxGucljj*eNiT0 zEt{)Q_k^2l9$fP)U-%_`mkQk9vFY664#V6yFxKrXl1!?(oeNXRUj7*8enxcVV@9N3 zZmk2rt>4xw7po!s$zreDoDvitKH2-|5${yfv|IYtD>Hdj3ZUVDf;!Z;i~dps=pcMcnKaGd7#bt&5| zCJy|ZE^o#WnOP?99u)c)ScXZJvAR8FdwMT}|Lu&~*Hm>&E^&KpN=PAXlm*qbG z&QO;;?OOdHfgY;L3Ef(AOBrZW57H@m!x`RTqM^j}#j}{WYHNm-nb|9D8|*qijgeXLkyI1=rA_t?Z!|*o8h5kGFe+Md3nVj_O7UE{{xnAK z*w3mziFA?&0|#bj=hk4{4-(ExDonc%5s$mkLv>2q(~=r8@*_iJ@=|^@app*9{0BURRPlkzS#z08`$$*YpN{<&>wS- zLOHkn>m_y=NDN4PB;O51Qu|759r-+M$YTl3+P(cVi}XVbsi(G@&T<$yAVzM^oB-x0 zHV6XGOONjnCUh3$l;=&*MaLptsh+BxN1bm*Fz@&)C6*@Io=xmMu*3(|osySfh#dT< z8|EfTiY)g3#;`!~_`tI|k;H*^qlgD5u*)Ig;^3%@_aAea(0~M&iBW%KCd zMvZv~1GITYQMrJ=}6g_p3_rHE1<1nxi&!h&iqcsHe9aRUfch$QqT%xd`?)47BoIQrC)2 z#6YNPK1TUxHX0VtHC{)M8f+Ig zN>sc51m(^jbXjDJ)n>x!?-&EeCj;hiyn^mLG(*v33YtT^w~gJsHgj zeXk=$4dE+3NsdJ}G~45OI?rV+b%Ii&7#g zApIu7*~<6jA-LtHwpOysXL3IlHFpkjBDXw5j&mG=Ce1PWN1p?9Kan%_?}eF9jV*?y za~afI&vbxty?^NPk>Fx-0V%@rP5yT~ayaRxRgQQLam22vqh8YrfYm>WJtiSInx>A= z=xjXRH%2RA2JGenmQrN?!aI91%7vrZeZA#i3Xzg?zn8Pj*0y51xLMQPjul6krW&TB z=B+f7G3Cw#R7{f#2Nt0^n!LG9bdm}0On1!Nc9`EwXXK5e0j~tGiE4QSA!n7x1fk$ja14`c3=mC2^S|Jou+OUMJlwdQNl%@s(yGGt&aIe&7?x$HXA&qGhf9y7m2=B!93u{=0G%(XrbNBosA=*m+^smyUa!X#6` zy_Pw==K!pA5rUO8w7kMzTb_%G2B>p6GrT>$gs+}iz!BsEq;-J1!SLH-q<>DRcKtPl zyUW=csIw`J0{%AGtSW2L1pE&3=xK-O+{KgOBe4l@bqUq%>)%C=-UEk%4b+mpO^+tF z;?V$wM4;3%gkU3$eEv2DUlKNN`nV#bL(~afp9@{(#8exjG~MdQR5ws?AsBDtO5IL=z9S(+R973Sp(}W_< z-ywx8w9c2GfL}k+&EFaZyQwCgKeMw-{pE4#p%9QaD0Y=4WSWRQff24KhpuRVg>idE zpra)FRSsS`YjxO5!(=?QY$KwFd|6*=3rEkK%kf-0-?_h)&WmlU+NI1CYyamK6ob#- z3!h(99VQiBq^u4bKxua|CK=KfAP{Gs~EHeIe zix_QNNUFHB@y<`4w~iQYiV)r%3&PardWJ8xP=1>D7xq+UPNsbJ`?M#jt$*>K!*~>R zdxFRltbF6s3a=~a-g*#%E6=LMF4HPGPPAxs#dmBrsPcl9BS;VFC%nQ#RjxO6jJmzTSwhQl!G7tY$Hwf~BAoUCVZ(v)hv-iU+%08ao zCdKlamTyh}%u_|C5_nBG0H~khv*U|DO8eUGcvxjI8?fjgqZI-~JiKHS2w~jeWZnp> z*;(yk4{fyq#~0lv(i~1P9GA*GwI&ah+O1;>m7iQWknJMl1_=~NEK*ddF`a&8GLIlu z`xpg%7w%{ zVg|1Z;dOF{?~>ZHr^jC+K0lqcx++>IPHCBZntIa=WRpD6xHP({DgTMm;WIooB6d0c zNf6o&Idmlb6^&1b433g)z&$^%y2wH)GW;ypmibM6uGl`4LXr|wl86hgkAs{QWGKrs ztimOMneU zlWI@M-GWQm^IzeqwM`^*cH0G`8Hz|x4hPQDYpvRgg%5<=S!z|T+t3sfpPlZl=j0Wa z&GkkhK3!&`JrI&_dligSk-*7K^n;-Gd`u~4f`o5@SB_(~`j^xY@`(MmSsdfaD^yj+JHd4+;-XL#?7w{=H(?v~Kz;jCpIX0jAks=zE)OO+W#s zx#H2MS}VEfFxhnI=&a%aqPT>*_eL^jIIj5`AsVQ)0w?@E0>-KCuq(fMIxkg1hnhn) z?1M>TaZ33Hs8{u_m&bF`XHevd^TwMYZFWl?{?wYJpX3)tgVDKIEr zD55&#ddJk1=xk93WFOr~Vu{)7jC@$Rqoi2gpRj3Bgz=E@5F(mZS7!d(*CrIvAe%P2 z#mFnFU%xP<@>hMcOS)ZxCoXHF5zfX;oF*fyiY|bBj63ZJo*XVcx}hm{{nX0P?Fg9Q z%QJ(R59R|LN&~k1#47>EYs1n7^= zlb-#8QPj&Qoxs<&QeB z@Bex8i7`L!`@9NMq2|}0QShM9-+yB%Z>CBSA{9L85wC%I_Z_n9#F+qe?@O4ee=oZ* z63V$7t}|{UeVUfuMw%gx3==1KN~EiM1KcFB$(q#59Cp+G*;F7kDLvQuhM`m#rh5-g z5G-9b?e`(n@1T(9fM6=r?B&8nOpPV@KE^VsO1ZUQTp8bXi{=|NvpT?4$MiANNtkm8 zGl%;1=cFfAqajI>XFW)hg$ldV-wb$+x34+f7gI>VYf$y-?!Jh3#c}R)b$m&v$pzH-C@+;FAJ~)UBC7!@ z5`y;3sf}G(b=teQLQC`5*c!l64*mIysccD^+SZ&ZsFf?)zgJa~5EKL@syP`}F?RsH zpYb3GnQ@d3dlSGSx!Y>?B!$1p?iE7?dFA36!X0WCw^!USkxyzm{Wr5E|E3g*U43OA zjz$e<_9Q3k*e;DpeqliUIjocPNM9~>g)1$NE;<=CaF?I8MKEQHWk1B#s@|cg~ zMLgx2KIT80w|L!J5LfFSU8ie+=MXNfv}|dW)1<#rBB|XF?P4@ZjY@&+q?DRgwwkR{ za)3~Y=u&SVO8=?=ulOYA;U5}hV)%@$KB8_Z@t(0t48D_31a=i$ML%Cjh2uvQl^wfM ziCc8#wkEu4BjX?^`k?DKXZNb8J9=C{1n-fH2sPj8uT^?F@B&$a+w5bNoAVYvF_BS8aW!n=A6Oct0&8ZAqe$# zws!ydb%2gLoZN5^i{N-!lid=m9{@QceOSgM-dy}VLq-Y0d6}kWm;Wpm^1c0eSuQ>B zL7u4uGz^lmpWUo3Xd{Vhn4fh|n&)tDr+)1@Gp0UF`kHzND*d}CL9k4?86o{fY|5jw zU7J_ur$7BDr^AB7l)AFS@!8q=i=rt-3{WqJ_gzd_+08^(z&X`ax3_7y|9g*Vr$)-Z$x&mAi5dTSr*o|c$sK2Cy#_QLSMhr`c)G4yp^{AkmmtdHbe7Qq z{h6Qjd9VnJX?pxKnAizkebjbWh2wzzgU&VFJc$Z`-*OM-%r?zmq9jiL03KAXZh*fNIz_COKh2O9wN(eu z=Eh*_wp3?ta|rcRsqIYDGdy9DK4jzLZQU1a4|d~pLh{=XkxyDr7+i>h|J`n5?~(Z} zrERET48$=rJ2tHnJw4kZODbY;YO7A$2gE*-5dMkm{YpLN z7VxX_D<-|)l?u*n1v%UPWo;2HhQQu`^bHQd4|2XXXD=)^l);t`2F3tCW8YRhy_PTh zmskIF#6=7+=E!f)aQXd?&)r49-6|{yAFVEnMD#-5tT&T5obh@#N5T7B+Yzlu2JFi+ zRt$f8c$D1Orih%StIc+O6?ofuhwfZ`vAPBIcS&jrY9!ROWVFhO!cJUKVkOZQ<{YdgCpn zNyx7#lgBc5$IN#EM&5suX!FO!-th6~kawSEV%Q`>(F%PKW8@*CtJzs;&3-lAuHu)A z49SG7Pd1iFq#y<`F*t6*q z*p{KNhAGNPux+@oM*H5MyW_86hZPdm+v{2;y!EYSC1n+=E4Ik#>*&BM3NIq2rq{3zb3 z=Kp)QK0e6tQ6BSkp3l#f&fC4tab?_e8jsLr8_9KgahrNfg7i*;ZiRfU`??(#^CRZ@ zC6B*qFgm)I8P*HAYHwxEWlaRW3-ovR8)`4Xs%Qs`o3m)fb>b*3(^|K~r>uC#jFN-$WRtCSZbJp8rd}d`l z>E*srzvw;CF^ES+=B(GWnZ1$*$FzPe>xSL^G(UrYvs&jl-@AJVnrEtTC6rFTfzJ#j zPPCZ_f4%s?;@_*|@Tu|mpy6&mx#OOeUfDrKdGJ}*LCq4ul(sFjq0W}+;yd?Y!c*{# zj-fYawHie$B)8o?h#Wi=F{h7Isd)c3b@_s>0!Qg&N_V$c2rFY zR13KsjJp|JotD8&yWfVHUWR?z9;x8k*_PA~f?+BSuPc1UsCPXYTNf`;l%Xgcy@EOR zTp^ZKN1DHsn|c^YMrBTGV8{HJ<4+oQ@eN`>7;!Osf-q6*8{G-|w%0ON@}kU_LCm5H zSL2?4%r2eoP)?CH(t+9b2F^2(J{rA`@m5J8Hz)kWE&+oPeqYvZW&<#@$Eb&zdZGS@ zzRSLsU*axF+EHJLWxOrPoXGW)ZT7j?Pl6ey)Y?M3%9RhqHM1-Ik#;(Nevb*Jl8{6+ z95WprGYx|)Gue>X&~jIC4ZHKO#md(o^IfzqV-od<_Vn6!bxI>TI-aioyCB(jZTTQS z)=#SiT zt&qb`nSJ2} z!)MBEOQ3|ac>5Q5`V>{ad8WF~O_JbK=%9VL2YY1uB(4cLl6vzk;QDWCC%U!l-c<57 zXEZoE==VrzM+@`7d`Cg2 zO(`r2G-&bq8|z4O*%0))|4v<)CH0wl-D1032Jdp*jOR{xc)@%LBaXF_U)1C*+r4}z zYv?_sY9i?OR}b=I{HZCyC-|dykk_Bu>>up@>p%GXcZRDQh7V#r+X~?PWK!q79(0@7 z1>oA<7*TqBT>+<}O$wK1{TZ#jnbfn@#7u6=qg+~*O1zx|&MQY*=~1;Hf>i7tAJadr zZ-Ok{)d`CJb*~nu_n4iDkl$rQKodv2n45?A`8xC6Wp&7yInGsNonU<+3p2etHw7?XxG;-I9=OCYWMiqgL1=^=QV3gJgh<=!JwuLw zH4cD=&s4(mV&3(uiGU6!Nh`c<&KWD)%h;r=83fa5dsi`CH7P#xo@F zx<}@w=V93<3siDfEAD%S73iMYHZ!`KSwiwOZ6dMi#g?n|mg@uJ#-HZd{W_YIMqIeJ z&0pm8^@*%Bm~R5^4)1mt8|$rNZ`gs8$=m1=S^W?8=54&IKj-4spE+a-#EH^bZcc7V zpKHswU;bjoXvF{$*&VExW}A=l#vwNY0e<^iQYog8=4&ond46{0Xfd5vo~?+*y6q|o z0-NsgTh*+|Wjek2b@H;4whXaQa@^q!TMb|Mlwe+#^cqzhoypzxtdp-mLyB{rY-?Hb z7h*zN@%~8Zt zazNQ8@&5wmUa!w*jPPzPe$flxyv}3n9z1+p>YgqCrL7ozipqV1KR8r$^k%>fpP+9u zJlU`xwK(^#u#qKOobsLzO>ZmpC-=e#b$m4@H8xkd=koTc79d2Fs=E(FqPE<^;QGalB}b_aLf}z6bD~>j`JR>0(Yq zh|w^0-?Ng>5};>$P%~`ee6juyCecWD6IfyShuggxU#x9u%>R0Dkmx1w$AKY z0j2RIx`n`xu{%8isx&=iP?j=3MNy@Gr97p&M1wzpIu^et$uZfoze&wrRE;M89>~!b8RwSOfr-GP5L~mX%Y29 z%*aOYFf}!VXW z+-Mqg-OwR&FoYQkT4fg2nJy+}<-F=YHO*ReCA|QN6#m89tN(L@V_8lxGaFy^0b)rE1wsSaQcXn-@_zR+<;kHOxORn)9SuqLTe|o`@Rs z>QmI~DrNe6{%>FDFg|#M5ShwP4!>txHtX(U4qJ?fyWNiall6EX__~AvzV&l*scDX< z$@!=8cwRuwcY~Wr04DzA^(_z&cv}Y5-(GQKL2j#dY^eV3Y(9FbAExwiy?gDQOU?Q- zcjtMll$h=($VmPs+1yIk#;-?IJL>l71vRLbK2s!TL?f5tlEi%%-u8nKEeYkGk4eNl&7k13*!*!&G+)c}*kU@^3t5DZbnc4ECvF23xE+wTUK{p7G!kfLlFv+7XW5y;Ixzc$c?i|#z zFCXRi&QNisG^$|OwA^nkM_@H;`6_EBd63=vuezK}gWur=JUx*5y z1DPV4O@oVI^gpynQxzHSw%sz1GwxiYLBFtW)!xBFa=OqrriJbN95|lGuP=<~ek|?M zv-UHD9wJdphck@wQq$Ih_}*Q7=F=VIyg&6~_KJe9xSxBTz4kR0o$1(aVc{xv+HK(l z8Vs%kCtZct635kpD6Gic)aks;IFC` zB&2vo;!8q!I<7!$*!bTj{qHUbScyXNMZC~9@}+ZrEvhUMDh(X>ONx`6nzx&h z*0Jg`>oZ&E!O_8&scH|t1oO!H45^k=3eK}dSKzItDSKs`5DB9OQ_Lc8rU7$x{?%3IK9YT`vcC{@~%3 z@|Joa0+NF!RS_K0D-|T3BR;G2srCk8gt}~0kGIZ8Bk4eFgn%F4Y#!jbc9pKSRpd7K zPf~i|A5Y%~3J3AWYHG1e=6UH;TrT+ht({<=c;hT5*O}SV$8Zi)@Q^jl^Fw0?cN06f z2R=0QN?y{pnxJU%5rX1j5I7}}<;}vWw2HyZqsJ@Vi9SU!XP(t0MU~XoY?dkxRu<1p z8fwIC_%?wZ4@MVMZ=|4^LO-WP0+aS1W@r!>rU|Z4k~n)NNTd+DD`szMay(;uV85y_ zygUivKOBjR%9u`5a@`f>B>X4~EJh?yEVy~)vRaBn;KuY%MB*Cx?EFY~){`5skumS$ z`30$htJ3Mu=ZG*@dEh-tiU6gYO@=UK76 zfAOtG9>0u3n#jd*20!={9}C_w%RARq7&k{*z@@oPrcUa8ve`EqMs2?iHu1T))c8Y5 zLk(A1_!FyeB)4bDFG#5C^9Oizm}Ct(tI9*9(taZtck@vPxaa&i`<~j;g|(=l&&NG` zd8yA0TryJbOk~kzI*(lj8afsY8$#gUKa_WWetVq!HhcbmA7lgj1wCcyXDyf}!|nV8Y(%!8IAbh>8z#Z`b1M;FTvN{s=)wBR zh9dD617?O*@GA9Oae6Nn2TuG&!R_t(7HthWr-2e~@=@J;ZS7+2b!wM=P^Q55dVeSe z_lUgqxfwaK?q3EvS6e!NcoBhovfxpKtXe~TSh{W++rU-BDPxRM{RPu>d9%c@qwG8^wC;3PX;SGdL9~4pVtjHZY=VY#Rj)rXk5Dp_eoh)gzfakEd^(P!_tX zn8mB98EC5hHy}tm>LbMfeNY1NDhRIsz2Vba{I9&TpH=9Q%c%)?R@$x7It+|haP zr1g=_kdT$BLr8>0^PmwSCbK0&Vex#O7m@j~b!0cYrebEj)YnX{xK+PCUdvrRb3cY? z*CEMS^q&hI991=X8JN&j?gdFTxW6+|2PMjNt`HfGvb^In9L$qM3y<71Rdkd^@3D4i zKLw{wkBEU~@$m`tjtPB6ljR~R4cB2f^@}Urg+|nqCHp`Ls=4G}8b4t;EeW`%YAJn! ztIc!D2GCQ}XCr`}S6&}&p&4CTUl6!L%ZMyT*(tCeI-CzsGDJG>l6^k{z{$=~>KmCfSIZPTZ&Hxg}EX>`H5uZ{+uXRQfg6eb`IK~k5r2Biq zpQ{nKwb4GOB<4q&I!Oq|YbHZe;UBs+#}iA&X5CA?%dKMo7Nf)}BIsMTDlNx4go@H# zE?hF;_gKsGGf->bopzt&fWg#n@~A|#$KRIGY~j|7mcvFmehz-&2S#&~%v2<{BkmV8 zxIUcg114jv5>{C(KHPcFc4=~CuYM~oGoI*z_o|E;h~T<0e4G+8>6jid9$AHeA5D%w zLcabCxV#tSEJ2s3!eaX3a$N7o=g&NnaHFKcCuk-qtJk}9c+IWan5p{EDJvyjE}Q

Va%k29$Be>mQ^wk`~i+eAoX4Au(G|zrrws?c>C)2HYSh}2-#OlXNvH6p{yK4FV zaxEs<>KK{YBus@H0AzDR_95SJ)P3qn-0^UK<$Z#qIpK(&5ZwJEhKxmAELa(EP>iFQ z02VdyIOi6XYMrn~_9~Uv9eZpaIFaig2xzaxJQY7JO8`3VifeqQs5!c>p1sHPLoO8xFx1H;|xi5dZSlMDL`a~f}htd#r%?~bB=p*3sPf(Dc( zXJL6I^=_1e^d2_1d!xTuHmIKn)x$TUP&wBr6Yy%&P4*G$ZxAF&Q*G%Jn03EU?V3Dt zvCdp{203RxjuloPJ|N15FdujT2&Y)DXYiIVO;Af{dYgd6j2^zP4oN-z7U;(UN|l$fxkzZ+<0f{$uUk);-n)9SO53%Nb(a z%IwR{)f^qqx9T*$I?{E@x?La98&pBfo$kZgb0#o2Phn6CVZ&$5tvxv5RT&TSIquhg zSo&ziO6o&DAqhx1R0@>;wbqn$%fqRC0Fq=uNP+tm5_JbRomiT?|1(9-L`JKB zj+(6*SBxmdL>1kyh~3-sYP*gZa>!!A^);Zi!83_^DV@?4I*QzA;Tcj8D0G+BvK$Xd zz?j7{jH;i@zPjFh@qwgJt)Wffp}z5&j$u)&-$lOPwMT>uhl_3{Rk|G*CqV|R$?2Ps zaI&*pFq&{!*02=MOOOOF7^O`b?s2@H5CpQ#bB-Gd;B+;GZcA78A_B7F8|~s9ITmyx zhdOp~@Ag&syzaqEY5WP&JC+ZK8vg!Hp$L+oB5@!D=%4#qD?7DMJZkEhB4>A{i{J_g zZZLJPUGAU1pYLsR(Q+IiEZvE~-6&%U3~ymcoAsB35s1LJYE%;`%|{8{$!)1;~`O7 zNTN<`b6~d^H8;NGzK%gAX)2>W?w(UEt}W-``I?_urwfvBU+~TRQRRgp5Bw$^3DAR98I?~U!b9%sYF2> z%H+uOxa$X!M=#UOu=t%G+IITB<=UBC{&~XA9+s4?R#RaqZG3*@OauOd6=n5?#dn9j z?o&l5edM|1rvgu%o_+sw4ICem^_d61KSaEmQ{*CA3R0IkLlXJtyqcN}h%Sj}=re}HTWB&wPBN{smRRgx0c>0HXI>* z4DLJuiz@}b3M6ETHmq;-q-jOs|9<3v^U>z_d5up$Gf1m5h7f~DJFWV{; zNn>M2KPcL~5{1ql!2WTde3DudX2S|veg9^epiF+vZ7TIW@>fOor@BGeDzfG;uKrO9 zNg#0!{D=6$34jEivH-X1cJ3%4!X2wS=E@J2`K)6U*KN|}OMp>u$Dl+AUE~A@Xn*2K z++~kUBl~>oNaUgsi3ANl?w_8}eW!9ADP23&6`8C|`>U1Y*}3D$7rVFtby9E^he~P3 zo|nUqB~5h@iTBxd*8wCZZEI1tvaRKH>{UmfU_Kg>4#6`G@Bc11+!+vpm`F6wD;yd+ zS+)~m)BOy}Hx<|k%P?)NDIH1%1zt(?$1KsOn%1NoXG&-19H54eN8@HU&T`5vq!I0V z69KoUI<%bRmWmEy7C&;@p)du++?ZV8o{XEKIIyj(^7|_|iBrn<0PW2g!1SQVCE4%o z9pQO5nIIIWW}O<7G^e}0;(Pk-6; z-Fj_(u^dWS%}s8!=;}*|TVNJwAzza8oZ|rpPltS%h2~%FHjExZ{mH(JLe*1qx~}h1 zX>F}(jU4>*C%aFWUa#(^blFu7uc^UUdPA`~)R%oPyIK0o-l1{mFVl*5OWX(mp^ZKu z{sh`GL$%=-0;j9w1V{IE)t^8YW?Jj_zB&;>Xe2iR?w|rfNF8pXD|%LcsxR+<%(Os{SOAS`9^#`^wQn znf@*406K9&?Mf9mICp2tFXi6hF@syw&M@U_1dRidn*!vGx6SQF?){G^xbbhz46=0K zjR=#Vz^^7>(d2#e8iY0Yf~;CQ-YPQsL0Xp-1VI#60=?zdb!J0>Knw zd9$b-1pth*@{w3>wB8AFURicJo&yMohaUx%f+Wp4V`>w@=U;OTKriZWhuiv@3FP4K zrP`XGsh{+!ya)~;g+^18jBeETQyf^ZB$jjAjG||o950SmT2L(rX&505Xz&bqE46nf zwcCt+b9jCf?^ga>kmziJ|L952Vk~*9Ip_K_?~VLSVMGe4Z`xDp21^`E2JdzCshXDj zd(K-8IhIr{PlezQKn(U#r4mm$5$a=0E-P{=y&oSTPX_;9&`~lj-8@P}KjIij7v0I+ zBZy!^S-Gf2&fKe5N{jwD3N2+xHP^7w_k1x?PPbOu_H(sSwMmKtl6VTpsiXka?22Bdy+IY*&`VgZQTGgEH?N$zv6PPfsh~Mc zU=Ue=(Ut37wi~PL%q|U>pW=w3H}Tv^6L0v7DBUI1yJ87l68+!m~#m-QCh6ns(B~Y(9-jbsmyP06ToCW2M`-cDFZX z<|fIxq>{Alffl>OuJoxqbh*Im6%RTW+jddZdt@LfTmvarrexS~mMBnAgj|pMy7ch9mihOOYmr{$nX6#!{+|eD`4&X;9>K zzNzk_Hg9NSg?%wrxOJrA4Yg=RkzoPR_Qgh6OJ3~9sL`iMpoNJo;Po?Wd(*YOx@bj2 zeNloHr{z#4H}!Cwuv*$miiC<0-DJbyKnpoeckceqz?n|}Q#jC+A9|G}+>wI(y&p@h zwDg=20>ftBS|%XaP6!Jh3mjyL$)=2bFY%I@eI+(GP<|qOPDM^@~3ICGP zG5Afi?4DD%B%r8(`OK2!Sktk$IitakdpHAeLh_X)Vxil*QxM}+6yIM8Dt2?6+PW6Z zw;w+fRejIpIrjz3fcB7%luDOR(R=tCS=**0zV7$m4+_!GSn)9tz(=Zc)zLAt(|aDV2W*DGOb z=0KM24&m(YO8l!1poNZ*%A4UzBXm`sKoK>Z+t*;;a3t$~1MN)8xmOm*S0_eb(`W#% zPRzz^f<7|_Tra8F6Db5(Kk}*ZaRMK5RkR29?-K*lsS@W;M-f!JszDn5yV~cFPnFUP zmX2gtsnr$%NvhgDEPJ%}&6iiNITi^IsjUFdo$k*aAc6gv>YENpjrfu$-{O9^miia< zV%0TW0IGCXA`^5E(#nLP&n{qG*egcMn4rqvvQ>|n-u357z45{eTsT)H^8NYymzL3D zdPjz$|B;1Z)mxomJ^$5v8C(26lwYYry%|eq93?(1PMxqGXp*q>er?K8w(AmWjJ#8{ zfDJoV3O3JqMEgx=7b}8btZ3eR*lzWKMk$Wz(PBZ)G@?M5DjMi<)bnfq9+pYO3YUIl zpA~XqwO9{VuWDt`wF7m>;W6#^^QlrRTmKJxXBE|E_eS{^4enMPic68=4#mB=Ln&6= zp*RF7P@u(&yF0}_xI>}11b6oWoj2b%cKx4OGi%M78*W0f@}84p&;IRwPFkR?9fz%9 zFkbf41Pp=u_v4YN(w||<&lxEo?HJ5N8DHf>!~OTd!vIEWBDt&k@MMRI?2@Mm21g}H zuAxn}i6}*`}eD#~1@C;cnvmDz#$cCkj&_PVSN(1apWSDXWigK6wzR>9dp;=ThytLmtJZ+x$Az~13P%Mz3wUYBWW%ZBBJ;M3OSZFU2M zOJ!4nj5{xrYQ(%Wdf)X3z~NLC@N}5$e>G^|M_jj71JG}xn-*_;7S3n^s0gC^G^2_k z258{|!ne&63WWj)Ky~x;H6&qLy7#&?tta|bBUG6p&pFNy0lDdsvtHWM*>j4 zx{14y&c_j`PsgrLy%F5YO~5A7f5wz`!2}8S9So0#V{Pm@_3Zp(v;CQ`ZG)g{@?5B6 zQ^;+3Wa(;T{r6J{<)i8T!ic>?3&2Y?lK2CCU=mqne_?Y*0c+TWE}*!O#qTWnN0<)> zTek#)-oK#RJl~9+H zWEf35$>9cbq{74aI?lgB2y_ff7;!E31S zb>4ao$mb5pyX}d0Q_4EXa;?%LM+-I8_VYH<8>Lp}xyj)r zLDo(@bXbZ6U|E!LftNpqz;hDk`M2B2CY63}%gkFC$N*0Ax8TWBSWXLG6z?V8FWG=A zS*!`4)yu2JLYM}goTbxok@(pmW)*S+za0NxOuVIHdNSX0< zDHPC@Zt?qJ`Vq$IedcNN)iKIacfQ2p-@Vvp>pK7-IZKpuYo=ubP`<2IX@0tsrIiy8 z2#~d4mk5E8EiADKSl*BIs(lx5^(VMwu98vg;{a$R7TU5$SYjLvk=4aLHc|0(rv>Y$B zcl{ft!`Lr#4epu2kKTBSHP+AEcI z^35>4x8Odor`KIv!c^`b*2(wgs_gNv;&)ZFyPMDg)rQUi+_mh$dR7{7zZ1asczt^q ze1k7~KaLFZB~V?y`FruEl&I%N$ihDe5-_I)6r<%EbG(~Cr679W*!gtqPU@X{Hq~ly zV;R*kIwAJ=5emaW!W|z99X~Y;6~e80Q031^>1^39kfM8_29p!1Ao^66T($?-cMSNn zg+D-G7BjwIW=+2`PF}mR^D+f2N+seQM?|r*A9XyAbQ;=|Jls5x!hAUHr z0nk-fIdUvSScYUA0tBE3rBYDN8H~`u&1Fg!TDu?r7Z-x-hT&SwnZ{kZh(12R@DI@Z zjNmz3F=Yibn!V0u&ct6l$- z-M7`W;xxK7F2PQ&09+v-fduB#)@Vu`M2I*G42@E<7{kK%4 z7A&2a;-Zf4i%@s9@QRFfP`Ri&-%fgXLwzS>86B)e=x%kJ}E)N0A=9j9Z?B-7Y+ z&xIGxniV1T7aOq5K{p@&Mj~$!P~g$R6Ks#6J_&yjL{gTNf=6`yPiXXm*7NF?J7OQ?#kk)!k>Rrhr;Ep3ChK}YGzSUoPl_V zKz-jyWWUMGinC(`dUg8COn*dVk$4}Ji7w^|m_6Hr*E$rnyWZqDe|d1g@#(kYe){Z4 z2B>%j*+z06fn8x|i68rgE_vQjputQ&P5@|~@>-pe?h=NICOO4&OzwUW+@jfoZBNsN zIACn*cI9o(34TMqQ;tll#Ibf0UB*#H;Yy85OlE~Fh#zFuRVwIHp=ycvsu&9_sy!Oy z^3n0iw{_Yfhn+FXm;(}h$;|M8;yzx=xD@mP8toym_#mp}-yCQzU3>SV>i&m@apPgO zk^i5@fYt}Sf<$3wonTKdBD=hK`L#6w%X=AEQ=J|Ael^?iJvihi+W{p*}4V&mz(7>)cAsoS&ETl^ON}A}*0}&;HPv5$rtL_ID`XkaJk5)DliRlF1g*9yp^ipAYqrG( zC*$~rGnEIB1kPYl3(VWjzfYcRwLZ-2-5=S1?{1>{#ftnz^cnY@zP&AFB_?W?f?p;u zYgJkCHs}|ALfnK(Q9ewbs~~Q&{CU#r=Iu{OW8MY77<*@em0A5YIPr(FsVbXKJWkI- z<6s)kJWDh-M9QW7!VdZQkJco`C=Nf=4RxX`(jKKO(5W|nyp#)%Hu&7vk!O1-M5yaG z{%~N?`flV?>Jx<{cqRj6RQ|dhIG2#?lzYd^pfnoVsU;oxAWR$gz?;=^8ByudP`-#&VDZI1k3DC>rYR$^r#|!sRTCO9eId}68&n!K*r8&PSYTA zg;_JU)3LL0UMLQ3tQ40aELb@Cq#Iq90oW6+m`IlXgJDlC=Sho!3V_nCC)wYB{p$Jw@EmD%{qJ1r0zyJkH5_&pTA(i^0{z&&GKwV zFs}$DvCdll;(cTeT)L=DM0wjZz}6;sra3*wMwGU6ZFZ!Wv4(ZzzP1)sONHKGL|}-1 z?1BCP4dqN<{sdhQIJ~D2FD;#y7ZNS=;%s0q&WDU>?00D+Iw)T>U}_7d_Ih0+VAZCN zRp$+O1y0g%W&*Mr&Du1%@p$B(Vqnsxa7qH$FF^cn$Cb3%g&O zg^L+l9#zpF6VL-?&eFy*+oMCRuxf*s9~h1b#79Cg9OI!uqQ)Zq$DZtj^UoSYctvms z*28Vu+}_m*UaAA3vL=l}dL-iU~QNU zJlhxh9TscFQBWMPKD6SscePd;dM+m2;5KAZF~$#kEzI;io4Uz@5@*r& zp{2lH`;P&l`^Y6qAN_V+)*%H@@CD^{{*mMd1b@fXVt_HEqS*`!wKgAB&Hz?Vnf3Lb zpSl$2eSXZLXm@?=IUGan=)OMrL%9nS;@Nz1hC#!P9p z;IXCKKg1@o7(PELTLUb-jYp=LxmT!Y{tX;%7V6s=H%( zcEt>Q!BV?_#jaiPA7BH1GdY*cvA=ZLxN?L~h}%Tk9m?f27pcRTiAnvr)p;2>BjW?} zgvc6ZS6TW&1(9n?gaYUo+3M=D`;|mG^78m=&|BdnWZ}`eqw5dzbE~r!RC41w#W)@~ z`L^#7Ze%o&l-lelUt9?Xbsqe*OrZ0jMREK!6!WFS*a{hRcrD1Y`bH>#*zF{fFY?TE zrFQ8T$oFV=s{*0xPdv_5PN(>bRcDd4T@~Z`fR;+b39Y7TDET@a)w$^A3aZIS_T#R7 zs7Jq1bZ}Kbt)r)2T5e?%$A&U>*TJ4jV?#QId#8>?ca3q*P{!Ma!is}|t7P{j;XTEp zFT0x}f!Jf=!A%C9%zD4IUvRUN5&L`+<^%kZLju&|$z3|ZJ1{HPAsZ&l1j92}y8-5i zuI^J{Gcho)-E&mF#6h5kU#51db%A7xIhbV14=w@K8k+s)_VF}aY`YYGb*1uh?B9o_ zJ8?ueUYF}6_eH`SkT<*6#yWR^aRRNvpY!~N@@O4zqC8mZUeo)%f75P8uP}a-9i1b2 zITB5M-2;{#`MNU6q?oYodS>F~gCXzdn{NcC_sdnDUZYYzWKg)zxipW&; zmmIH&jKC7B^S3H1bFIaWpC*kD99{s)cF_#*?mE6(vi|vtnA?VqK{+be;8M0TZF2Tp z>ow4+R^y$NZaJFeL7eLOFIA781+`lrEy5Yn;||j|+^0DMM%U*3@cr?z_bIVch=+pI zKU_Z0r2zz2hz|SB=ALo2kwFPsI?QkO03tMxg$;uJ9bm2vLg@^U0d&{2a>}Ou8iQb@;M}j}m2F%T}qdZS!8K`}G~nY;kNi$1o zu0*x0Vv*=XQZ9U{XV$S3EnAS(K16h1JJ9FK`bl&-jTt!CY*5mc5y3nwJo zv&CY4)VX}j=6|8%xLNF}8c(Rbit~DBJrgG#NZSYvy@5jp4fi^ z=5s1u0qwe#j+2ekq$Ui~{qs>TLn31=9(Nf&JO#C((w}gs!e77K*b#Wb1;ji5Cdji!Uoq*CMf=(VS1I-0b` zB4=A_`$d-I7YbG%?63TkBq(? z)15KD)Nh}NIXxTWIe?;Eu`D6x*#y6M2XQPY#Q9rIOygCY$~2?_)UVc)A9Da#l+7+6 z>%?G3NO@pee%K$B(EvGKM7`go$@CbKHD+v#w?PAJ*mx>r-oKpgURK3O9FXB>qanG| zGsd7lE1@e%KD}EBF`yTs$3ptBJPTw63BZe)jWX~*YTk{|Pkt~W7DD{1#Jq(f0*&j( z1=wuXsE|9BfIGn1XU4TO)GIX)mRJrn!6%|&;C5E`0PS5mB%QvgVfK@wQUV0nPCEgdN+vzS9xC{N!QWMoWy(_tCAeEC!-X!)EH$IhFR7v#mwdV(mm!o2mO^OR<}?--{ini+Rh(Kefr1QUWA4=xl^m3|Exd;!{BCe{RQbmB70mFSj>0OQ_6ybEtyi+ENGMjD#slITub|b}|G4Yx z*3PBCJM}$y*KJ`@I{Va0m)BCpMWJf{1P;`hz+Q~*wynE+&2Qqfnb8WGCd`Dz1-SB> z0gvHgq@w$Znrfr*ZG{9m$tPnvHSb&L{^&P4CxIT8~o6g6J zI_-#mUn2pH-?pFnu>naIz-#FyH?_$bcyRT%|3R|F|Fw=y;U4{h#}H;d5L2N!PilVi zZvaUOH>l@42p%~sZRN-k5=vy;ByHq2B@F>$1%%qR*&In$0X;xI7MPa=T*84yK zD8p!z*Ub5y?o`I+0Rh2(V{a-C0=VE!$j6!y-9H1ya9gkG_{P&w&f}`zLN?hjpXva-8(UDO?C0)~0Jp zVNfVmKofY%BAC(Ooo>z!8ztqH1Z6%OWz%24->23Ng>TjJsm6&u4;R|lPWPJ=Zo8`i zYWonFnH~$~iw=i`V`1qSxochiB%AiQp4Ayyc{&A>P=Kw}{28pU4S7286iYo<%jdL0 zTZM;>ke93QekWXO@MAS=@a?GJDOuqS90*X7W;l5KqUyVG_AuA!-%aUo@_DWmbL|Xc zjbr)wrqQu5s_lNvkpgBdN7pg-E389k7Fsu(#TItzKp}&U6a!ol*Rg#FMT*-*P^k z+)v2uqP=J_I_Kd5bYnfZ@9`9J)1|2!eHSG(*k89phmkt>jYjC z{x@~uZ~oN2AqDb5I%ICnqOF9b{(Sq>J}z?CdAAW24nx}Xk7264cRMGTjT+H_>uk-D z&df)q6Yd$17M~!n8a~E^_qglprn=zg@5ycNJV4OX3-;3uAvVi3^MBwB0W>HE*%QP^ z_@izxOIefM2;=-^v=4}dxfA3{J;Jbt<$+Eidj|1*#?Abg%Ns7#D-$iJBFhJsjwC>Z3}u zhhGA8hZxXsH?GO16OlJXev3u&SU@;JXK}r$NhELP@YUa9T!G zPqXT)X)unG{lh)IkV82EZ_iOYJBL9MlKBnVKVd~Fb=U}&qQ^$nf}=utdQ*TbK?SZw zjgD(YeQeuTcKl=&(%@abi2OCM1HH$j!7-JUTcZ@jwE!eSqaV_%7GYlvDH z^vRm(lJHq}{>$hHjI6Vfw(&Jn;BU>k703nxnIg}Q`#GY2+fk2BfWh{&PGU*mM!}1Y z?b>)35bQHQ+af#uomT;>qJPN$iEA3wgInVM=WTagSdU%*NNl6nYOt&eJ*?H2SOm{Q zS&v_?)L2@|)_=N{qr;yj8sBz73#)0yf8(x8y(xF7T3U+cIBlQUvHLeWsxH=ajmz=p z9)ZbiD=?>DiBnNZK_RaL#fKrDN8XjkxaF(0a7Ja5Sblp_KLx*HuQ*PKPiV(Z+(l1J z3Z(`m9^LP@sUm@$J9Ks99Hx0paCRS$9Rpf7=-GfUqyIV>>tfe`I#NDEDMf|%B(SED z<@o(!GN`Eb1)zur+{IztV>e3``_Drt3JG@alfn&FFOnef0Bz*KyH^%au74@ufZ&W^ z6?50Q^<8mm2PSTY!5(?4^xRlNx5{^$C0qyKSOft9;Z)3b*VDgfl?uQs+NA$93DAsQ zz9d-H`+ByF_RxPM3p)*47fk8I82ZOTyP!fm=D3GgxFZ&`yo{a z`lU;N8B(RBGu!r_^*7V5Tm#f|`K-MYZvY4?Pc*xcA+oDmj{^HTv<94EL2p9e_~u-Z z-TU&Le$5OKALqqgh2!!J2TE))*d~t1FA=t3N$HCLE1gVRXq{(h7ISH-uJG)|#=th_ zcwc&Pf2;Q!A4WLk*}-1DaS$xF>juMaZI7Vm+I`N54+a1YoB?yoM=xMmEfg68bnVWc z#}JRBFaDdPYsKx;K$3+wH~Ce}9&YA>%K503sH@ioURIN|SD0}`1=deicu%`GLCr!} z!oqhEvcezkVBD1D4}Y&%_r7z!fJ;7zIprVS?WLZ&g;Os?AW3W-t_{x5L8`qL*^2~} z4N3rw*v*+7?eRq?*=ecMTQ_h&kaKk;+Nv6eze zECXfBHMq*JB1p|L>Z$BHp%{*nIv||8^Twn2&7I|SL;awC_jN!b*_iQU=Qdo>qf*7y z&3fQ_3)@Mr(Fhbphyl+JRM3vX)C749Gclw%7(IwKy^| z=Fq1#i4Dwr?FRviMvVuKhRaq~QCB>=S5jBWL93FjIre0rvE~lsPeuXGe>qys6kBbO zuHL9)?wRCRdw%k%L*f@&f$JuV5_b)=)%05O=1r?9cpuUc-6}|~x3kN-!K(U9c%$L3 z(%`cZpcj9by6bsT*?0=U15G&dJKcsG{@8i+piYla-xdGLwOyC76SRhxp_N|r&A)K{ z!tOHIiP_mr(wiZ43##wB%{Akzku19p;x> zi|pAWyWS5JG|7(sp;OQhs=gopH&rMOM}=eWf+vy0jiToq=K{4t=?~+uKdNtZ!!ldG7zUT{{$@aQ)Mfpll0JIW zZWNCor)L^#81F-5$aKRfdz`Y+m~f(Bp))yiGU1gZAJ(p@9)#7(+uC{AX`YX^e`_D~vmmh^6bXvmqEFpi5#L(x+ML5Z% zu|@q2a~Mg^L%RIL8A$fdCvio)r=$6sm)Isq**mB{4Cn=>mBpZ=IwFiDd8HRPe0a;^ zNuaxz#-8Gv^mm9oH7!;-dvBV$#Y^Vn@8KGi5C!eiw@Qo7m@!=GUp|$UFl5)R9B`40 z?O;Z7=y;B=PZtX#+cfMot0G#JX?$aC$;xmozEhx-UGUgv+;#oTAbsjKU8MLR{pmvd zu=w0tsG&ZTj`7ZE4wE)AXM>17{H3ghG6(v;v4qkZxwTHPZY&UP&#oZQQ> z&$;BToq^trwkd0=&wiJkYF=@+Gq{*3O68e;7Vf%dHQ@XzpZ4p0MtrTD0g=DT55@Nl zy&!F3&v(Mxau``>W}G6yZztf$RvJ`d)07;GITZg~yxVjC-G_FiupqfmU^}Z0_C8(0 zg!F}Dq3f)0pf|Se^`8AG3xi(kVBwaY`^VK&fI4#~eBV)lT}^X*io7@9SyV+chJ;Y7 zrKe06mG_l^ZU<*8SYeJvIW;W?vQVDD>{A?eWRq(g)0@y}S9vH8gP&Z~6I{~$fO0^LpW-h~j`zs9 zF$`Q<7VlL!2fh9%<>gj_xQ?dRKBRBUfG1O@c`Zq>Iy0gye-&iL!znUyFIv5eY2BRi z!kS(sB~jV(9u?0t|K$r_3xVh2iof#C;TIE&*_EYic^ZqsY7`cO(1O6r0r#EQxm7}( zhUAi0U(ES12V%%$Swj)YRdBfnoXUC8o%6?Jy|#9wPW+)xy9Q+FX2QSRujV=0cpr{` ze)PEF+VOq+BVGX2)7<|H@|;b)Xi=@MY#(*jwjW7;8H>pj68bOzA4%#g2PsKaC@3y$ zmfWV;my9-LcPBFLew~iF5qH~;F|T9Y>_h7)Y1^G#b$vY?`0(74{>gwm{#IT!LAk0h zxFeibTH*uyJ_d-Cko>Sb+HJIE9owAODuq*q`^35Sbs2wZe*&+M9JlAnXtuSnz` z_g{yB1ec0@CfMXtNy)-RhPKNfg5!unX(49MEBOt<$x%>peWD*O4h4FwADlBsW>Hww zBOG;#TJB*)CCbtxfh7pA42%hdaF-spKs|TxnhwfI$G8XxWA_#@b@aIa>bI`o@9q0aPfe&UP ztdPMfc|W>;IRmSuWY)2N^VUy3HOG>+_Oh<1$3pEvaaTJw!-V1nhqWrq}RT76a8hZLRoml6KA?%UHuJLo=Q3^S;_6%Qf;BntGQA7_WkE^0ne!fiu zG64Az_L9O#H_sj#!(UV^2)A1?%xs?~oW>~8{cz%}LYvNZ8y(dVCyRq77Uo^lBOzeF zS9sqbSY^l>_Dyv0TNV;TK}AtORGkpjF)8a}I*om&VBAUZ-aK;?s{1kD09WCsP|Bm3 zO4*PH@iV>bx6EN3>{L;lAm&um5>L<=(&prNRD33f452d|RnES@U;`~g$-AY{*C9b~5sFl|c~0y1Sd8$IcVXbKTQt5i zD+j|BS?a6T4P--cZ?8HMMqY4FFLf<>aor{oZoA?v;{^ORYY`M}V?(fJf4lv2x_3(q z>Bq@y$Ktp&b=;RSpYUHa_rAVjV5C!VmJ26?w;dGLOpaHgKuJ%xH2Pp~{-6Cp38>C}sYt_BvYteC%I3%J+z7XK zwCNis5xn9eX5)#X4&OPTuP^AiU%8m%kh_G*)O`q(c9G)>4rc$f^`iArQHPxEiFQvb zz@`{io8oN1F)3pMMJq?^$vmXvxsYE2`bk0YA!yKn`-_P(8939DIi$L%svwT%Nh099 zK^!rbJ6&n2f_`~JILab49C1@gDyMShdkDAY=?A?O(8Qg=5ibbWIh$fL!gv?ao?h7b zT#RYdVkma+NuE-cuIeqBA`jzSc`MC?2H&ii3OWh4eTwrsKdMHw7V#d$UXk)zN#94a zXsr0X|Av>caK_Saxwq({1iYZ;I})Q0Z=_T5>Fnwk)4y$o?G=$p3zwku_`TzgdXHdI+-Ux=s~ zl*fc9_oEgaOU;tU^Q}`bM;cs(zgt}DRf@9n`#C1za6dFuq8|Z2C^kdX&v^v5bVJt4 z=jg2zOTPAcf5k2SO*R#(5U$^5>RZLp6X`T#s5bUA^NVd1EmqN;2}r!j2ka zPfofzSjF1~8AUzzLem+_K*ph6W=J!|s(^z8wIt4oZ;giU`-*Zn)m>aq>0eZ_z78!>SuQ>vb}_YkxuTfJS2mc26-czLdg2 zzBhf$nW^{7`zkSzyS7T~El!T&{&oh#8R~6x)qNOK&_Z8nRV5$@Y=plXD>Ez8nJcK;`%$a|7g4BSL`PIHfn&)6Q>>n~Ri`a4jIjUm&x1({q#UviE~OMjkFB{|_wCVeb?zbPMINM&TXT;K>!;usJ%)iM^c${p95GN?#&{PZ@ryHckw zzY4Tb3?2x=%&v{RVx+`K@1@+|bYza5WZLvn;k%f-aphv#5Ub>i5)RZ zQ_Uu<+zQHJoDM&mn3v)F1of@se5b-WH;H9j zUa1)?y>O4IPOwNfqt$3|NH1-Mmt?Oado$u+b422dW5tEI$Bn%_qBle5ph=-%vRJg8 zKE!&Mc|%}1rdXhAsjRb4>wq}sol-ZPF}|66Rix4>h!(35AI+7%-}XK@_UP-pGw%+X zrUb?)X**uVx*nqOuCj7vQr_G50eRsFjwwIS5#VT2)lQP9ih&d_m3k8NK#qIu+Q` zOOEWMG=Ik{0=P4+V(hRr4?olaM=9}+9F*~~6?f{_CPdHJ^#sOvJqv|7Ub&d^U*6+6 z4|Gmvmu?^+=EryP4;UAW7(IfJpZ40CC;FCzb#znqh5d{949iB{BemUe_4l1e*IZ_3 zWS!^;UcO6)%68t=06g z;fl7Pf{L(5rM*FRa$yinMCh4?b>Wg|N5PZK=d$qICuF7kX+-)s`u$w^fKgLrvBpd( zhUrAL{GZQfdFBI=^Kf>ximV*J&BRI8%R{5G;{;IPNA)vw+RGU89*G4xetBSmY*DVu zKvwTUZDU+H6cU?DguAU}mdPxVn1u%LsmyH_R2_aH>cyRr{oTS68F0aJALS}KvZ;f@ zMd{r#%^+ zj+C5)R3I=I$BmFWdJz}4PdEvECH7x0X$R^?p_)3Q&|6yFM=f!W>s0e0760S(2J5qioawS`EaJKOZ!!-jZ78coXd!>_rvTJK zL^{vu#s{>K1f*#R0X9x>tLgOkG#r@c;l01)*Ozboq#TAwnO`;c&>^~z+AtCzQqPX( zy~4+Lcr6^>k?>&Hr=!2@5$S959L+Igk>tt@)+s3z6PpeVj5dva?wO>-e1cZDt_y?L z`Duv5vwiC(UE4rV-5wV*Jw2Jw=V1QAYH~O(s7_m=%u~G#-u?$xE6WWtL+#kucXY-9 zN7>o|dLlC79S?giOB&a@>O_>qF>`b!xq_Yd^rU6tI<(;~@cXAgr`B%c=2KHY15)Sn z0wzuB{)X#WH-VBy@piud`r(alHh!G4iCn-Tsg6VKYio#J@Lc6mwM>_IT8gI^rZelA zqQ3UY6U@*YCg+?i+cR}ndR8`8*b{J|p|g&Q2xi1D)UcG_n<0@i023UCi(Tlfci`82d-a$%;i|$Re@W3Z z%^9p?g@yd8Sl?$tp6MAvQSkvP>_(6jO}h8zlG)(?D`iF>R?#-)5BDGOF?VJ4-{$PN zOLoPyz}aEgvg0U3c{7$GoGts&H*wJ0&JxAxSr^w&f#yv9@>u2|JdKK8EEIr`gUnhBZw7a=a_!4ZkFlzj&vI zSwN3u7MPSiESVrmzD>+CVcwiN%Cy9)@!+g&RiF{+)~~Ki9isA)L@Z}=Sed(WO+Wz` zI{1omJBBt=(1iUR%NL_2ZwlES+VZ3mm+vL0Qe>c|3##wJ}SIrTa4glv*?kM>v=Oq@b`*snq4TT%tH z_~zpCUju9~k%_TrsP64$$rx=AUNKy=N{1r*y;n5ZRZvU^k0$FyiKiCz+kGHu8nXWKO$A}R z_Hz%W^qR(BTQlpLSf^=5$dE>fGl2kC0Lbs-iJDwRY1P@tO^j5Ew1H55qB+7ceBK7s zW%ak)RF1FhFKJw`Dma_0hYQXHFXjy>pqXyd^dXAhyZWYWkSdtVLWb+22S+;IqT|=* zi_hBY)+yxe=eME%6D>@Id}Ga;05;qI*v}|CH63ADRxX1 zip0YY?6`$oXFo>mJU!_SPJ|uO%|~6vuRP}v--IQa8NURIgQ}|*VoYg?Fm_2nip1(WBr}Y%^zbC7$=Gb6TF^_-FDRp6g=AK1gJ1sXX=tadjOp`=#b2QFrGE zJB?oTDWp4yE=2dsFs__b1OmZZ{JGz;pMUr)f7IVA zDd8XaoR+{lSC5c%ma{IklsnW+$K^(YAYy2$@|NsRo7~#yAoBATyFc@aLUPa0^f+yc zzzq8S*Lpl{MwELqedta@v>L$)aR7L2^vV#yIb1s3@)bWrppy7qEPrjyAo+Qr>4<_8 zs1c_>N6jwYbX(hOomaE)o1l~_UAoJ}r_(Rk);JMM4Urt?bo_{Gc={3@3s5z(2`PR{ z0)ZHN#MBBRQ2%>sj5%Y=9`?i@(eq!Oc?2>K>cVm1>yb{;rerQv4cdlt;Ey-2Xdid{ zH?bq7UUZxj3k3Q$Ka%@{yy3eNg7iV>?^zx5R}%h@^id8dQ#)#iP1S^!rkXD7-2w1Sn!hRW6I8?@Ell5y^LWVw;;m^>(63Vg0NdK zjc#X?pW`^;zPu>vM)}x>6}qsD<9*4*l3o}u&5>L;Zm+sU?}&AooV3|X;wS49QQSpIaeOG;7A zxytmpbYG7&ynaWm)fGiJTo`?gmz1EmS9Dox2!7l~lwmxein;inG@a1c?D&B6k%ZH1 z&&`Ecc36((4>}bz@Ik%RT8}zhzYoJtvt%RD?@>!kvg%^&m)mP=B*pN*5$mP7YRX0PdZWe&^0dPuoZHOKCCiL!k(fQi9*&8J>!p(xx{W zsG3psC0;XqKR&rsab8>P?1eoD+o?iKv$|8bzr)SJT4GlsLF28|g0N?L!3#!`a(>M{-fXT>;n9&Ly$V;9S>x(YF!Aw(87>hG! z?9t+vz>j5p?T_t=kgw}RmLO!4JFbA%!sr+z@2_}x6-5!csfJq?!4UJw5iY85XFaSM zg6HRXHErD;wm}pwADX|VmgAyU7&JYvpoqb%VnI%z{7q3BwK6}o#hR-T#zrzLwZT+q1n0Cmxsp7pxpKn27*Y^3p08sLA2XK4?<>8? z92*A07^27o7{dnfw*_43TPd2qu37B3rymrM3xG>s>dG90wqgWzmI;_j z(KiBYqitjaw5`4pQWVzHA}x|d6kXUkQAn6&KL3()Up=~rpw}1u++2`e=l@Wz`N;fG z{i_*HZpIUC6o(mKn_oMFXOidi*otM$w&_sHR{DgC+WBTdbEPLsv{G;Xzt%;A%vrTDw|#8E#(5 zM#m#Jbk_yWun*zdsGWM8^NM>I0}1e(3ZG~6GnNYjiTh{xVk8T^7onn0ToeT~nbq=Q zO=#`?%(-7(F~O-Z(<;wS{5t$Gw9=JVG6Iufbnm|Pb4Uf!ttpiCeBqzu3mu4l<4=>$ z$^Iz&!Y)?4N|@y@Sb4@QEbMYGEs{mW^(XIjsz<*$!m%2d=mbleq;^=CNjobX`#To; zZurh)aXuvHN;@*5vq5b+8u`*P68V;WYd)bt7fix32rg+31jlJ}5!z5859Cg&@r7lI z^z7Lprp|7X_8dK6N8`A7@5NN$mE*ep7XV^Foxi;5`V+&IAsk;B!Z9iZ?+DEd?UwlH5?Z=bS3i7K|+YR1qF`3-G7*8hWV^ z@`(fR*F!X!f(gtpkyB1+2VFc_;~ms{D2;8=FLMkGSfL+FJ5=Zq zW+^oK4{?lcFvbsHhN>`hz{7MdyOtjLuXqB|hx^JnD5^*^*BKgc!+k}URalYXx1+Zz zeXjzo{I);E+1xG)3>_6-PYX*-K`dmASVoVOeJgVscvVgX!*OhU0zH0ZgF*aK&zRx2 z6{f5srWhQ`zuHF)7IP}0jmZhArL8bm9I=yneiXxOWJgS z)asx)&orm&q)sTS$O|z|VJ0#Qd*xegr5acZhaZ(!J0D3ip)}!)pJpb1)MA>UtqT*X z4X0G{DD)65?n0#yo#`FZj9Dnv32lu3Fq9BY-KF*DP6jxwV;l;MvX-`jyOtC|@<;<< z#>86sbVFuBPg>%LLa+dYC=H5DrT+@6VwfnqEf6TqD`E0VMDZJXsW`=Vg`gE%;&0_6 z!kvWYIpqn6BeNt37u40lKT#t@t9Hnj^l8V$MCEA(55qp(0QU=oGqs66N#RCq0K2f# zmJ+4EwNZ3&Kw)2QQMGco0O?jjO5vv5O(o8ewokoOxEPYpg;2{wB_b3~m0rx_XUt|C zt1Y0Xx6AR!@-{e`b%6#IRG#)e(TAZL`*QFy`WLuwf_R@`1r=pZQbS)tA5O?)q4Ei; ztTKqj7?gK}lCYQaa5P;6W!a-rK#sCt{MC6=VU}}pm`jCwImlyWH{Hru0kYzk1CIXF zuDKtToKm}siZM(JP~}h_ImD3+MP&F5r?{5A#w7BJ(>RxqnI}3OYhUHc(l`4+5w51jms#OB@Zsl8^KtAm0!I?zIwjPYiF@8!OtXaY)ct zUOxX>ZR zwIG|rFbyRkTJ0;&D*&S77Zs8VsDlPM6~ zWH70q%y2_~np+Ant2&PhWWF;D6=t}L^q0FTuoT=|Se2eQWWJ_IX;{;FV|Kbgiyr|F z2zy!l8W`eFO+p19XSj_&4J4!`oT4SnF|U}1s?^IsgkJu`RalPs!a6D?{f7nRpRRE! zeS!(0jv3Ht#mli6S5mvEQRP+;R8YPa%P`9|!B3?nMUK?rzVyA%(pSh3CUHtRSG^Jg zlfKeKxrFiPk8&YowZ+jwZUKMt-{q6K$bO*W45Nd?``+%va9#||SI5A3o5Kf(*Svig z-gpg9S4X<3^YAaBOyOiYh*QxAI#-YpGgcbV!a(gIQl;mmLw?IoS;c(>7Rix z6B!2a)AE;O_)KQ`S6*8H3*_J@>7YqFlmmttr4l4JDB>o>=7cOai?mS?iY9*4utT-{ z$)^VJqCBrbPU1(2LLaJm(~5}5P+zN5#>Z3r${e#H`w4izo{@t%orLDe4v0>JK4HXplL0#o zv~eVKB_j7_m0>h*{8CQEy>XEhBsX^4A=3b6dzJKacqcxxzX4`atJjGAWSkYb)X3U!|ry`aL0>72#Gikg?Y#+ z!|UF5Tmp}pQ8-HhBz#6-T6H6VL5|Y|+YCmsjCyjFZgN+`c9MNqwxOwq)v{di*IJE? zBmGep%ZhahgS?`d%v8?A(~{o{__(5El#Ni$YaDSzrO0zoHjpDWE}A!i%UpR4rAV5- z90bxuXKM4;lZ45D* zegnuY%>E3eVF#4@Csj5(+91 z+?D$}S1V}e*kxp4MCKw@(J z^1L3xRmC@_N`q>v>4_&Qr_4wj!WM(J{6tixMJcSxmy(gDd4$l1hcw}cE}+q4r5`+! zmu9E9RVo2yVV_3nmNZbt9NQnHP$+GJaimT5q!9(-1}jwfNQ2HJZ6=%M1YQ-r{*uZ6 z1a*=&0UoMsdWb*jf$Gd8g~8bVLaU@qAx|-Ol#!17G!>(t0XQ$A{vsodh1yb}iKfI~F67+XOr8-8mb8$;Lv zZ4z@rB8|{u82y3FI8}6E6MDuXyl`NeLgZoJy`0p@9b^$qVXb8xZ<_x)2g;W|)ne0N z9M%kSInXUq>2IQ#^g5K&&Zs9>#L`)*Ea?oTSD^L~4mA0pI9Hx!+f+DEpoA6<)aNk6 zO&oN@9rl}$bs;J$QHC5d-B^v~(9svM+^3gCsO(Y!){08*79Cd-R4#FnWf6a5w{uE+ z;{sU%tg^ir4%B$MNOKnl>FP)EjJ7%wFTtzsWEm#7iysLpV}ddsep3u+^`!GShC8Y* zRkXeEpW%et^pxk+vj&TBPxxV`hnsPe&f+}%>ZB4wZX;DW>$G6ozB= z_p;>xfgWK~_JlF2X#0#wq4a>^sG=(IM;cq$Et}z=FtTrH8)xL{P#B*l74hMedW(Ki zE6Id$Nb10FUL6AX1vEsF7Z!J?*qIOCE5{zbb^eB^3Tpa!ehhqTX~KN>v>iRBsN7 zKh6|qgp&^nhEjV?6fFswjJAMPsYTM1(r8IcFvcK`XX2 zrxnOjunZ-ytu&;^t{waHK*bpU5;#{u=@38KXszR088}EAKbdSP1eGfm=$WB7Vita?yp>MeRN|IF@D;@xXL7Wp&x|od*(hGpfQ5drNhlVKh^mf2kyb5C zW?@n%Gsu7bwJ0Dobf?UF&*Irq@I-|)&j<$+db+=KhGl5Fh{( zsmou=Cq1ANY^d`E8v?E|kxW&ctRO@0Xl`@($XE*nr69X7IS@!3Gb~CespBdL3jw0s zX;^FFs{MqG+K?PXt7r~!Ar*Gndqagj&BI*;TtTI~9OHA#MYttisl~L)ZD_ctR$4+K zaAK|@xm38J3zPN~z%u}iHS&{2Qc6UqaGZC=@>~~gO=)E_l!UMFOzP6q4@)q3uvSZi?ov_3pW=Qly**IBn`JZ4_9%B&|6sHPG4m1^yC%$Y>`QmKxD!Z zH3k;P$z>x9NJ^$F^*BWV=B2P(jbd6udZw-@i}5e&F;lFhjB0^O5Q=m}-nsaooaDGN zjKYjU=@n*B?gK8SMsuJ6FQs|tAjLUrHdS%ZzZM8X3T-jybkxVK6ODwS%AylsGH_J< zlv3`|mxF+yWuK=-38EDENbjcCcLhd=%1)I>c^`ua&FGK8g+Y&4Ff5BW;%`oyI3#pd zq2VRsmj5ss<7?C{dJRmGcL}HQuVU!IEc{|T6~)|9xyirj%5X8xiOvwM0&fccG04@x zNPbA0Ca=*=g4bU0)7J?)ia!}sCv&B?)#E}gNzesIV1eL|t7%bszrTgD>rjsHFxALb%2ykV!YM(bs`~qAp^nh&d+^IdkY!jQqT)C5n|+3f zFY?e)18dRi7og0Pz)+#5F4JeaCs*p5xa)!#-N=9ZSLfq^yHY!#!our9du~*aErvKr z7im_e>AR?GK}b4!aH>rkX26>~wvjnZG(D;UP)P% ze*TJ)T%L5^R7=Qo9w?4DvT~ehS)szY-e3`F(1UcLuMc~iAD(j+`G8iC^@fU2HxGdr zB_a863d!R!>{&&=c_`j=!F!YS9^_DZ$8v;E+VncQP}%m5hj7XpEK)E&5{iAt`Dtk$ zu;UAQ2Xa4gShD|^2l03~?+WcfKBhg$S4dzEAvpwNJ{c;W!jR zai*sIQO}|D8n#FSi$W>FhiY{rcaaa21mq}1T^OqkpwID9W2Agymvus|pd*|S*@a1S zqKhMrq0m*^DnYc&Inp**PsD~}dY#4$(yX94&d}Hr9`IB4rC0VtpW(rh0Qz|J8|e%k zdG7znaZ5&1lfNzCFcfWAEBF=d@YrvM>qc~e+vr1RP%T51dF zDGoFuj;%hF-q2IFY0%7Y6iOax!~tHEuh3A}ScNLVzRsnB@;xcS45xJ7rG%w=XGUNC z0sVN+Pgw+|&12O#jhz@LfmVYB;YPmF6(`}2ytjc$3MxWWfcpwr;57~vL#`O{*E|%; zNM{y7sF}u*Vy~i9+6bdL*D)Gfnx{WpQSV{HiSmKyc$HhT*&r zWVL!60`d8w=b^g%avl%aq1aQ zV7`tOhFz#~U;a~3E2-l*FW|yWgd<(^NL?y@aW27}8YC>anG|M_ z;RT_QRhUc3g4$0wDmhEgg#rGXJz=*lzK|c4%M@eBlsCnrvohnae5J@tu9k(eKm`l zbAW!H<^^}np%Q~tc?{6D(=6_wvt9*Z=qkLCtAZ#_LMiE?;mG+&bsbc5EPtybRk}KB z#T_%GgkT1)_`{7RQT`&Vj3Z;nm|8<^W+=ceiw<2ENq`?3Pd+J}CQ{{j1hZyHB;+}Q zs#H)?%^;bIZLBw}s;JPD6Xhw6s~Ct<1C-%F;EiXw4Z22opKD7F%W3zr{Oy*6GIc~GACwHW* zrA}t@w*bD13T;v4q)s2HkS3@XvVdA>DOGn_38P*QUPUD?xDBVoQ5UY2P~6BJ#+kXK zGSZ@0h1$##H|4d0D{!kMkYCc8#xpQY8?se#DF0)CTgz!R6<);G!s49vrkZKz^-IWo zJ5LtR86!%SNx9MQl+Z?oFUo0WG>7SP9)eJGElwOn2GnoHx}!|{icDk{MwvhCQHv;9 z@q?1S8R|hQ{6@62EeR~xhnf0}RJC7(-%w$uF<+tNYN?2@st(kA6;S*~U6@ zCV`NgW*4#tIgYFxBLv_4@WJ8Y!$SzmY`F-bIrI{yLrCV07rX}t9n;r zUvIH!tH{@ekgU&5M_BA>=2ddF7a2VQxss%Mpk7eXFT$MRG)`6SSzmD?ck~+sH1ZHX zkxxDqjh@%k;g+%|TsbEQa@)@1pkow$x>ew`4eAuz3}XT_T!)UdC~eVJT3K==Z8fLL zZzw`U(GcadX!c`bnjHs>3f@%IQ+C;+(^IB8?3$(W)51(6e#ew-q2f$ev{rQFwG=Kg z@6&MxUWiZ5<0Sr5wxEt;ev1Or)(-t`O%0~RvIXj5Rt5=XL>Ncn%CjKm9K|21=Hg6G z{KT0G4TFyKxQrG+BqEwc8VRxm{I;+-kfwH;fyNIljzbfWBrMQa;#{k{J@}a!^;Dzc zNBL-O>o$5R+-(Vlbci}axmv7Lr85Fau>@E7$3JG+^M{^4?3m~^*|&HIS)s}0N!@TCUM zA9h(Dt!CsdqsOF@k)c)`qiH0hE{f83k~%UKx^$YJY1lfZUe@tL`O^V4>7kmJDaber zcX`p3Y2g=ZIf?Qvr)e9Y2{om8QIAip><4-lo~b~Bv7H3 zz`Ynr3%5~$5nYS2tSRq0%djVp851f!*AdE9+V{Tle37jtG9t?h9v9tZxWpIv%xG5- zxrl(WRFh0AHW5J=hbF=Hmj)5K%CU<8_XL*Ju?3PzRiV(+7OOqNyezQk&47F};7>GH z1gL>O>N-woms#e^3Sf1i>Gd5*7Dr?$ui*_pR)Z{OYCTNY7H|()RVWO7GiQ)<} zu@jQ~n;zsgRPSs|LqhVlW~(_;Sk+gi)Kb?PqrghS2okc8nIcs?2C98CX^U z{+V;aOxjRb(;gSxl?oRqT;zHD#gPD%RH6vQ{5;lc28d%BYT*f|agM^Dgl2^ir5y&C z$vgtceaG4M7{d>RZ-iEaS5|g;?=fG$WD!;L3~ z>v`ZVj@KSJK3s#)8|tbMg5SoTV^)t@Io9g&ac!?)6}eWMujcdAJg7%_5$+8!_US_; zQAWJ#4T0=fONUmKQDGj*$+ks9iLxYZ5{8v-jv>fNQ5_i$?#FSKvTrsh7OV=&Kz9|X zn24{&SSndUE|ndQFw2E5+Ew-|+C(8Cz6*CE{1Cqa)sN6QaS~=|@u|JhSO!x_k9lo%F?&NXi_$Eh?N4XZE>N zQy+|SZRM?g(-h=yxQK#J|C7p}@I}FrvF4{BTUq9W+swk#fdlXHkkKjjA`FytJT+4i z%>W=n{bGYY3tfZ0MxFq7gqj{QK_K&R)0|DI3TWK4sOFFO5nd+2OHEhDbRVi|7xaOG zXmQYqfM^&jS%K4bgD|e7;38c`6_8OJV?b{hX#vVSwawF%#>xvccj^=b8GmD$R=JG+ zGsrAY@|j1PMA=A75=c_j;Ame*D7y%!8D|KKZnBJGG;Qd@BCIt*RiQNJr6v7zeATr~ z2vyBUXFd4gH=1+&P9apF<-ST7S7RCJyxc=12(1p4hWz7S7XUa@S%;%I!7d*n#X%ff z8)W4G{}nu5I4!cwGrqAYM0uYVX7{-rD>^(xG7Pu8U>II~C9kpLmM0V4aSh(=+v8>P z_$kKH!KlSsMxdN1?d7iW*iiaZ@v8bM=1)3C*A-__H9VQhjUvcAp=8#1q_2bOD&SoDN<@R~$wiovx9W>&gkjp%aSXS$ z^Km>Va0kr~&hj+F#X8d-e!~sUq*wYlD-*mkCWbGCMJvE*Nbp0{R#cR9lNvS%t&& z8)Xy*==tbHt-eyK2!yvhJPhx2bIu7T+=atezV-O<#<%CEi%%RsIvfkBjIoMIkx?k) zBPG$wJ#_JSG5)Ph_PxK4<#9F$WwF{G)^TRY8o;vW^~n5KQ3Ga~<6zGxT9VuRx#g zFXnU686G*KeQ<*caJJ0t(A*K6#+5kf`*)5l;V2`PB3~p~3tlqMLx!1km0&Q{#bjQ`fCA(+ z?3D62Rbm1bUdT%gZJkwvfKk&tvuK}wNUP##$JXo8h(0xX%KVQJj^}x{HS`Q?am*yf ziApnhn;_6Ijf0A>_liEu71NlEDa`(BgQ|lTlsusiTb(ML^jEKxlvGB3Ikr5$_4@FR zKis#tGa;eLfj>;g82P~ko=J#Yk7N@@69FjDcCK^~PWYoCS9puwgRqcUS|~jIXCtD^ zkbHHW&M)V^u!7qhlv0iDPBeGrJdUMJXGGWxOL$g-yFk!l-#oI4OS;Cg3MDUOSEuoZ zLGP!u&23gt8jv6SWEEkG%Suc8;a_^d4X(?8^9)UcM=&~-4$ol`^+Bi4K``F;`W<^MmH$~RUjP#T{l{pYR+7?abCr&tTb+rY|M)$y^F*&6CvkoRQ-kBk3qP)Yg zTBP!u=oTY_z|@h0aI3Ma52yTK9{FFhvIDAW;??-ohu!R&K7->Y!|G#%ie<4ign0%o zrFIo;b-AXOG}Tbd?Oef1(^R0GQ)UV?9gKC?!b@%Z;->~Y`OH94H=UP9 z(!+=|wHEBdrN(n=E9yLq7($eGd1G~#Eeed6>2BOVjN=Sck)p-^5MiO$dC2rA!U#Vo z@~5#k9N`AL`o#2k2M^^+@_7e!yx_ciiv_Q3%e}{`rngv}kh+B)-otGA1T`NC;o-h~ z=r0uMXzAofxrvHG-k@Iik{)lAI2!eX(wFq~fZm`7^tAu@=)txJnf=EnhAUV>j^kTV z*9~DdXk{72TP)rl?pcApF4WPuAR=7iOW~RtXnle|&KXQqEn%+y67DckS))Q92mHi; zWFzt+f7D5osm4b#NgWVIXw^na;XmDnPX2RsIfX=YlShsUuj%m+ z>B;wuN0^vn8pdczL&l>staQxPXUt1=lxHF-L9uzqPmNK^QqWuk%@KrQh1!`;V2NRK z#0VQHl8)#n`Lr5S5&ALRVYegF{TTjuEK?MJQ9l$QWfli1+;r*8hJr;HG=V?L1^*2C44f|8vEE1i*~Axj5qR)8K>$o z%?an_Jrrrss!Lc@QE@CdKM{kL{EoDjrg~l4`m}P(%F}9f8kw}pH);8s0<~k^Q|GK zS-nxC$T7SOa8W)}kio6WWDGDh64ZoBFttn2)Bd4q4j`O-+P~F^G~?L}dM;s4;inG4 zB6O9wP}OcSoy6Ilhf3k3IhRq6eYnkfnBtcZg%PTq)ArME#5J#)7Pb#ru%avkzGh=CQqkBikzurK+$Hkd^jGpvIL@ z95q%&9{Za6+%bu=Hwdus^DZ@vDwgks)c!OEN7V!>96 z(CbxjsG|o$Najm=>^nZLw`1H8@f{6yW1O=h%L+96pn3l?+dWz;RS!&^)W3#0sT|u_ z_((+=tL8?3nLQj;#U!Jk6fO(A&zvb<&7*>2>G3ynyn=Mq{Kh|VkZ#&+jn8sa!L^L= zJ3)HGtsE~?MITU@s{rya#S>`{1DQ3W+RC8%50&{2i^k}+sRgiH0E0AC91%%|)rVPb z(%o`e=L*tW??49_l zS(bM*%zd%h@w=dxBL`iAh#ZZKbTVb8#X+c=9MxOWYD9_9&mz%zD9oDNl(H6l7IXTU zQp^#Bc`44Dr_fT4%)8MoL*<}{MRTzp`Hg&3iQ)-`dHj_Td5>{YiY%k(_E{)$tYYZA zrtc!}ORSZ1{Hgp}^h*i5a=SnVmV;xnYDQ{1=_`H-J`_eWF2_?r zuBLgyN7Ys-tOx={_!vghm!=iR3h=!eg&jW#{-bJ>EMpRu#K+(~qJ~MDlz<5Z)>P4Aw=lyae#fpDC%Ni}X%LN7=JAu+&)*z_ zBaSfF3LehoupLzp@t=*Z1H*C{Fd()tm(#gbe!@$%Cq2ZaF*H?v^dr)Pxym?yD_MFU zGJg@bl-x#ng*khV5texsTdKBiILhGyKKj8ba1)Z*TYO<#HP$LJ59ozZoC0!FJjkb4 zyd4k0I6pPb9%RC_6rW7J9`StHHe6ID}qa?Ut{1 zOU1`QQXwD@T4jFw_!bKu(qk3+goN!QQGTJ#hx9_veq-$`CjKZRRXqb&nDa*oA{3Wk z%)VjW=|s_1q73t%K;QaWxi^*M8NnCyqp__8lK>6WASwu>v}3G^@TWk9uEPXz_hHbs zP>bLl7iEjm2b`KY3cZSfla>_OH4lt)N=6vSZ8%<3SSBg#%azVkkD|OX9?{Y*TYfkX zm4bAZm7JFQpwn(dt?rW~j(vKQEe3-4ut7EN3wn+THIZs8Kow$~*C~$s04p;}Sflh5 zNZI2NJyvRmGTcg-D_@;G!D(13vl=*Qykn~P4+kV)E;&ereKh##JQUE7@j8aONOlP{ z3N%q^#g7u$j-g18lFt9N~9iK*ntsiTnj&G1Lw;c65!FihDkfDyiLmLW{w5R+t&g>`^SseK<^ZXB5EI5;ae4`Q4$zNEG z#?eXRyabCmWm3m#6Rp&nIm0ypavpIitrKc1IWyv93oX?n_|C8iD-~t24pobyRYOUr zwlJe@RNW~3YO7^8Ip0bJN(xcv!z|iT+T;msoh_g}f&7_FF>^W9j7zwQ|Age+2=MX_oR%y22Kj4gVsbi6T z8Vg>c&oQ~SC??@~5sY&TOZ`0mkY-o=GsTAAP$6$gDJI1ijvDAv(Z>;8(j8@& zghv%Z)-sAn${*oXkSTbC`;nYfxs9GBAAjK(VUMPK;e3jLv`^to}4F>j#y2lFmu1v%732)yV+_`L`f zmMDbcTZTDru0Y*_Bd>i!C=TKI!ch9SNE5tyra})1hFPVWQb0HzAJB^<0&;yIM2f8y zd>{m&_h@dhxblXBAt1MvW42XDI1XVsj#nNzo?9zI=|dq1#~~>5p%LDx%nEX@Qb&nI z8_1Q*ET3B9$YPHk$k-5x7fq;Rp&)* z-QdDTTR0d`Dv&zWIM&+kQV2P6NTOSw6U?`gZ70)Sij<|kr9KYCUHv+{Rm6cKoWxPF zM7nvaOZsmLe=-SY8F)Zi1U*j%OBw? zxY2+pc!&^#$as3sUx`TS5&TD?$Wz#LanOy%2?xTBR%XMjgcwm7ggD|awP{HFwYQFV z*(W6bI#0KSCOHZQuMsY{X9)*)8dymKl_>{=Azv*NrfhVTi4+6JbdIDOU8O~XRz9Pp zD=p!*^ts21f82+8OIL;#reR$1&%sBQdju&B`UqEXX8JUrkQbFl3nhNiTuyY7H5dM{ zlsWki2)4rFB+{*vhi4_V0&VF)wUj8t45gK;XyGc940G|J%QD3UX06OPuLR4IaPmCe zrkgCU7MD)aT&W2yZL8`SJB3O7&57K!c31Ioke~9FrezzX4)1AOE`msdUSSp5!(n`% z+cRMvAFhjuiH8XP^UCAH8?MO}C))3^2t})kT^OXJ(lVu8r#mCuOa5ku+96%RNjoLaRcYWMF6<)KSd?)08v2N21A(z`sf9k0p z%vGMD(dv3wYFs7FEie6K-g4b(BJ38p#{5=UWj3eMv^1cKB*3)JviyLyKIM_TD2b>x z;iM3}7>)=H#$9YWA)T0I_{=GpcEZJ+cFn3S3lFynq4JIww>ahF#PG^1hT%yOH%1!%`x?F)7eT~% z#*%ph@}TJBm(oyHL*WiR$2yl;{Df>AM)7xuvZIA5_Rb&aBP;@gD&y)=L8OmVw5E~f z(GQeG6n4Enek4qX((14L9G9?*P?qP|XPoHu6N)jCh-8*VnVNJu5n)W`%P{aOd4XdX^yQpo9fl;nyf&@c zUc`?d$i9So6tsln8g1&rUCZwlnxiTYff?u2A?YE`Ok0r`j9ezhK^Z{P>??7-`%qLJ zbjFJ)q4bd`B^pOdbB-OPC^T}DWtb_%Dt{+9FSbS|zcVlWDar4Ps|_DPw3_VTJ7N~a zn5s0(Kxq$HsGSn8EXikUH<6GEgF0xM@D=`au@bhpjl-B^+DGS)a%1c|6z(<8M=*Mb z5X;3$p8#8+N^Y}bq!>fTG|kl+_pl*-~S2)HTYDW^b?lu@Kn@z8Q`3gs=pOKRmI z@Q@8HfJlHC(EGf;dk%@k8eezchpNj=Qqw$T=R+^V7n^ z4dJ2b-S_&S(*~TCXoAE1l^2zF*l-kSj~`6xcBmSz46xEqJ1xUdDg)ew!YF@&#hQ{& z+_tmPSv#uiA`U4PPMQPSNvZUt#zqGusU6A`eVdjeOyX>gux)9f2{RD(e?WRb0&lCs zvV+tw=CQygch46?&yP+Y&lrlsKhYBZUwKjIpfT>eyD&H14(xX8KZ9 z+>{Heycm%8OdXmG4-5X#a;)@KUh{V~**5Z*#Tmw3wp*~hLR&84=YsRtkDQA48*3l( z`MlmOU+I?bLPi}NZhrp3;bw8v3Ul~79LK|9e>n0{VM=A8L^d*od_j*?un(9o=&|=$ z59r-^Vz`divmIjvc+ge})Kxd+r=)p6?`>_rF%RioaV?W~m|@S}EeO303Ll&U6_634Oh@l*Xm{YfPrDkc(+YCqu?C5KXx zan$h|S=)KoW!(`z`IK{hIU~?G zVx+-7X{L*M<-7SUr*V`W#tI{kWJ;2MfJipRgh%Yds)EpD6UT8?5^&T06uQ20Ola(49?lV4x9e*78SJZeH<~j8Hz) zT^tp5T7%+cI1$4|UlmP@yApsQonQXYPvtJ}RixEs!-II?#qr_I*M!}n@DdXhxuL7j z87Y;qyaToMNSB&&%X`*zrKTd@ikc1@m1EYvPDAN#%gkGaTka+zg^H%jbNI!mOh`Au zDQv0C2~q302>A~Mp;t36Gmadp4K}JAsGFuyo32w?hn{e{sua353$qL!57bE*pzYFu zzKq7`WgjQ}hhBXSM(^oxeDHV0IHwjLbysN{`&9g=&xClVY=wXNEhmwQ^2YH60 zvkcXGnqS;!+*?T(id^~@u=HhDW?RX8Wm+?c3}-wIg(k;7PMTT#s2-X_S%qG9nCmpd z29DWs!aN*hzesc;8ihbu61GFnn=RPhaEFVc|EhrKF9(MIxbnpC`l}CwV0mmfcH@mv zlyMAOZ52QYBrF1^AGExTE6~v~AAFY!hTC3zFvkq;ZAU!3TbNZ_J`c_Kq!r{a$9J~1 zta;@>lnxOf$1JG=6MmabILehi>NZ=KRQxcuV}&3~^Erll1l;h8IsQliLN4wxOMlE+ zaT0cfsVw7IQLA*xMV<=G(w|m)!!5-ky=;0g!Efa_Azn_&f%Ke4p5&sODWd`BL{RND z+?Su0lt#t1V3?HqK-v~mmS94;_u~ku!M2hkngNH!SSZ|Pg1v%`Fv>G^)%0BS=uVOH zlZMJ^{Ln1>6y@Bt9h70DR!+0b>W&&_w5y66{YYh?6|?fx%%(cY<05##LO#;1=Gio= z*Rny~5hI`$ajRl)#$Dz_3ddv|fBv8mQ%!ns~90iv4rwK?7Qsp3&m9D+U9Qg}9VQ`c_ z(xDabaDvKMAne*eiD~Ad!3l9RL5)9kBK_x4m4H@x~=c&;d0S zKAShCM#pU6fXnjP!Xf`EoK~LHP5f2cfgFHP8Atl1C30-;I8;I!q(DZ>V}@COB|K9E zC?E*5s1~Y@mHLs+q3S~?%}?`8lc-Z3EEF!yw(`eXI)1a;ie`}h7J7N42sb#h8?%L8dZ*v%S80MC_VzHXOqu;2qB`4v3gVxfJ- z*Yg?a)_90(;B3F=aI3YVe6oR{}lg)ynAZnsd5BA6-e@{@l#3MHK9ago}lwMZ)j*`+=HawRl$6ej;NBneT&t(^!C zU9inrlwX$FPN6>VIc{MJr8-iaEj9v%DXT(u0Y#6#ihem*l#k9GMiD8eRTA})7vQ(l zj_DkuC5no<;>~;)6+_FQ+R}o98MA^2@I96~UU5aK`0^?%s#rTo_BY{4Azct&*4-EGBR(A7$9JlWfiev>22cUK|xq*)2L5sW237 zDBMdRY<37i62P{ELmXiqUdeb(Hd1LV4TDML3?;h;T@h0zHa$IEw)l(MR*_(|=t<`J zP(m{c`pF}8kpK>%@?wCrMlMicm6IWwb_BdIfsyCPNHY~FkhhaS6 znB1IkWyE#yhRnNq-Gw#&|N zB#p9$DxV5PKWRf8{H3c2%s}~!KhDYw(ibhQnUTy0f>1KQnQmo~wu!}TQtZP^kD;0o zr|7jpod4=u>JuZ8GK9f)2AQtuZz{iVt#EMP0t^ELloTSWEVB1Vn2WfHKhq!&>5p_# z-{Gc&J`PxcvVn1^yyKRZ*i!-=X&ahwo9dFefZTRUPD4YLXF5W~iPA_php`Ad+>YsJ zew3UrP`cG9Ii^ECs)FLfD5a;r=mESaXYSmf=OH}K^*|ndBor&Zd_hkS=E+<^HaICA zb(ZahcAm$yUKp{$v+5~Nl(F!c#YDkDWGLiisoa8)iU;)c7Ko@LR;N=q&eyx45Ni3D z%hkN9?a0C5D&Bw0mI@xu3-y0ZKxS(N5A9)oMF__{#D^b*>T3z-*ntqX4-VJI#gByJ zr~?V(am;2FDUPxr-PMHDo}yeCXR_Djh^>{dP}yE6uQ+c7Lpf$yHhYQ%OC6iSek$;c zD^xESR$HX~;9g(cgNmT~79NZAvV`V#9W9BwVQZAFFa+t11L>4eE0anR#$l%q!9=|r zkNQ!4U>@}`fu6b`>)YoiFO&&m(vQOj=FMFl7ogtbKs31Jg!A$rzfECUED5OsY2adM zd>ws=$ySrzY#wHoPm6Z6n1`|8qa7D1Q;wB`rD>-a!b0U7g@fQrAu(p*K7VuEmnt_M z3~N|c6KBY1!KNxrB`WmMFJgd`X@EspmKg_99_A#10gP(R1U15*b9L|-7!eFq^@K$V zDxJL^A_xgU%4GbJ1N;ykgRF8Cw4ij`p3yl@G`NIW9pyCqp{LK+Kq@;Ts)*Ad(n_xJ zfL(^Ed`L60FK46sJ)jOd#V!oVd;k9;;MsrMVvy8sKC?0XKzB)qgwfsCa1UO`A@dUUYg^ z)2KK0J*vt`1NP|SNS#p+gqy;47&kSBqaznX^aq)UT;&UYA$+KOn!e0*@zDONZ`Pjz zC2gsbn{3>ep$~1O0h6ky@=MZayICh;hoex{x8;TmWN-pA!d07(Kde@gk;*H1)TG@- z#lTA*mCm3=F@XVzgceRXS3QsprMrPMWm^*xd24kaaWeiD)J^^6oEb;_5w4D5LwUvt zDWfkdnr1E`M}8uX2p&al@&Y=;BABs$$t#L5^fRTow7H*nqSq7G*1s%=Y?BDI95YVE zt0QKia83Ja_S7tUuGQwkaQr|B-kN9pHakLxv*Zlmlgtfdp#mF!GssiZDY% z7oslm!9mmnMrqs{oa&YEsqZLF>a%wCKHRpx++)Qu#rzKnQUPa!r1*O}Z+{w1rYS zHl_DNeN^H~MLi){hOU9G(%qA0z3Ds;73AcoPMU$*VQQCwE3BLAk!E0OC@E#wd(DX1+G#=clqvA*& zLqq2YD$ptLGy|E3KOO1Zk&?1OH+D)4m8NDJJw|q%rqe0S5yt2(j>Met=HQdH6JQh$ zvzVr%;%H8AlV1TMtd`FBLomZkPMI)>95?B!vaW(HR8}~m0q7rngorU|ryP`?E}#M< zoU78CK5dd_UWO7Ls}PD7eV;$YRc1jZG4ey608T)$zZ=SL{9%Nt8cq1g{G>i@IB%9S zvK(4DrB>ypaAg?{Sz$(7YUbmGP#2sUAMrBcx2QNIExcAwGHGQ>;2O~5IIcd+T+Xum z^B}gQS0<$o%5gdz)0`(6CvA<}yYGKH1cT$l(PMnbfVXfQ7~XI-fsAQbKSriCfq04AuOzq-{L&YPr&{9U#wt5(jGQ_Q9_QDT-qp)zL)wDQ<(E^#W z3NPavC$K1I*~jUEw{{|@p;R5@Bm8AL!-hoA{_-r_V|k47q0Nn};;nrU(il%UohLXf zGJg>66&+>N+AgPA@fielk&Z$&A)q1*W9^;Kv$PBHd`wiPU%JR$gq8JC5JuWaKLaOWSQ zrPIPQtXD-Jd+pm#Xb<#_H-=Ojb;$l<`huP#(D)tkG3k>i#!GzTIU;xvZ{fH_oJWNa zE)ViubwjQ$BS=$Eys8cN$Kt5TGs>RgCl^^wtv(feri)WuKw%u2l6{=ju_(8xOVU?T zc9cu+j|3e{Low+nXP~Z9hp+OP^LQvS6#p`pK3yps&H?*yzuihIL8{&fq9*q869vSo zw8oY(9MXn|77wT(7lj&+6e-K;Z!yBNKt|L~~vX zL^&)gX`_v`!j^F>1ImuYD(;ryirEUC-ok;l6J-68DvV{L1gBn6 z@e>NSG9*%>ia!MvD$6hQxWO(?)X<5%!sA?#5LlW?g+1vku#)>RKcQq;xt&va%cu&> znC?ht7E7EFKl=Eqvc*XHhU#4*ktYg1!p2+6kJ?E0$4Zv+rDV>+scu>bemyf(h+-25C_X&E^*Sv=}+IgHbCsX)3X@}6@J``!03->)lO|~>= z>KGc@P3V>V_#=!(@;uX>wy7eWti%%)3Ny-$k(|1S1MWCcKONH)rlFO8xyUfphN-Iv zLwAaBTISSK_)$Nq#D=PsXeBKIS(95pM1StPdNAWeKBkE0ZRBmHc-&^C)hX`b&X&UY5; zy~n6X5AQ$b>v_Dn;^I)Zx&So{w?2FzR2(lHhTCvFd}6re1t*4E>2uTg&-Wm+jYCif zV@c$1PFqzUWG3A9iys){J-sv{y)q!j;Ues*tE)p8*XN~KIoAH;dSEYeOC_2&=agK`qGdBzOGE3(Pnx^9apz@qb z?N_->eNTDks4W&sN4Sn7;{gxGsg7|$#ELid{BeOi9}nuBqtd4^Wt2z!L;+}A2>6vB z`6~};mxP&&!%PL%L1S)ZsN~~BDn^2)vUeuEzGtg>ggb{cgu?Cgr>Ipls#DxG~Wtag7aR*ugoXfIrbGn9ibg5)iK~|6HS#dPBV@< z*&1;-S`!=wp&0urxG^wk>ZJ6eWl-me6@xfSeQ%mJ6WMff92=`V^ok$z@h_00taa5j zhWLr2`Xz26!x|T9<8i8CCL+l*g(4LGL9IXs%@>O+I>FKD@m|}DiKe@jxOsEf72%kVOPd8Gbr3^R{4{aj_FYIs^kpCzI4MO3D zYOjYqw0fk9$?#N;Eoc#^+OAQ=c~(u-TWE-zNmUShOCr%1nMdft5qLe%s{jJrfRY;2)9x)g(X1LJ zvWBh7oH%hAvA0P26cM9b^Ha1Wj*!GjE4n0#3<<&}PIQjH(3Bs+3Hc38AOj&t0mF8;Gj%3K$&ah_X?*nWW!!Liv#e7Ff&S}V$wjl!1u zI4D$pG0*zJ4MJt6T_>T*50nr_K4`@ZaBz6lRm1SQt4<78Uw`9pA_UwUkMk&9YC0;WP@sD>UG3^w#G(jBGy2YbR zLgp!LQFusC=^oVLWm>)_=!;W3tLQSMI;(R^GV7)fsimm7*2ohlp*X~O^_vknY^jkO zP9qgmVo>re-CyM#ep7Jlh!cWT`KZlc76#HR0e1}ky$qm;@RRYj!b-xK^55dAHqy|9JuJf|) z)fWIHy8&KIN`CN=O;VI4ze{?vOqu`xK_oze0O2v@ApvM~qtRVer#!zo*NlkFb4~$+ z_VCKwJ65cFthnsRefG)Zr=dCc1w4ypyc#6r+eAWTuXBd-Nc4#c5S9TFoNPgKX$*7X z5te(J&5_<*gXm-2%|1kk89K}|-D?H?H6oNb=wtdneNFEWN5*8JI`(}wO=rsBIfxA} zc>yWw1%8jvQwD^&l322Cu;z@0#!~VVy{vzSwo%E8>A%7V$;}wSl#!WIiE;jn>%b^F zUOz;@5IhFv2_2{pfa5~RxqevYLx6_E@DUqi*&mD{0v>2Oyin|%oPZr)+Y-&}rLj2q zcmR6i0ax1@c0x<;PG4zZkMxurd64Xb_$vdD^Ze6e4yV(uu^m~DTa_HAM~P&?S(N7vir4~xuE4pxfJ!5obsdF1Rq_xu-5q2zHe zCcPI_Zg?Ei!$UU6ch(8LaVU85^w0m({b&WAFetFG(aW7TTAq+-;R6}f(*(%Z@)>+_ z2*yD}9JmLtD{k&G8f{~tRSrNqliCBdYNP6n05O>m8W-Qsd)OP35R}5&I*)d^Ud9WXeVb@)1M2E^O+~Iiu5*ZD$y!4!Sy)gh# zjPAm9czhv4EcCm^4YZZ_xG_LVn+hV_LVW<(*NdU#E(IyWXGN-@*>L>Z@AJ(8`6ncP zs`u}Had-LYmrwnCG&26C0NeJ-CRo@UqQ_Gj&#ORAkjp&L!D0y=Tjra(<@ECSgRXk# z9&&Wc70{H)H_$Yvg$Lt+jK!TZ`xTrq--8(dokxDAdF2rs@$>-;S71A%&Kd{oDV))G z&JjE$%Yl1-Fo*;TqcC?5AUYqIcHE*lsnla-ilbi(Ck|_Drz!}4toVGTGwTar-_uU0 zZu=6Qmg$r}a4qUV4XyfMOb8)Il-_)cj*d%YbYhRrM%N#9CwRIIy52gZCxj6JK;y(% zU-6l*L+$tFOi3hSuXMt>^PB6_)Ab$5%wg@Dop1172ANZT^09~>`y}Ma<%hp`fBDB> zJ-K}SO@4{+-JMF=_J7)so_!J%v2nsK4bj0b5q|caCyGOJS9CV+fB(z7%Qx?IaYSBr zyy6OH>X9o3o7XCc7=v#|cn${K#}adO0^m9`K7vl41mCR(z*56fEnL^GIf2Xx+8%p5 z-rBp4381dS@5pq_1H?)S0j`Sxa~iyJo4&J-*jQV@Uk?s~t#-h=pKjw95C=LV20S1o zF`^xT-wJ2@1HOJh^E{Ua*!G(?2B#E{0H$q(Oi4W-o})-K&Gs!MKVT2>@weBWg6o=$ zy!h*Dn-@aD= zKD2?(ut;aQV{C>X#^FTcP0d8pKg$EY0E-6O^F|PE25)edtpt*g#?Tl?rrjRDV+eHO zGCi)2@lT^7%iS{%bY;SpG$5%OM+ClPsS^o{JAA<7RCqRHB}!I;Q&TCd$_H!>*}r14 zSR-z4dLh;BNE~f*pqCLqw(w8872NvAjp4etZOKdjc)0cs)Lwn14LT^G>Ybd3r+l$l zZa+aY9brLBAohY7mtHp&PmWM zA2>wZ9&8GF7bd2N(O!h!U0!Jx{ktDPR-fp2{o+m=X#RBKatF)gDZ^f(KEW~?RiD}M6XBVyYiEH+M{~Gjv)&}|}pbWB2%(f33qTw7?NWleOY$*@j?r-3f z+rf+as1EMt47Z)CnzN?nyG6pO+Ag=(HOROE#CY55vZOtXpoO}<2wx}aHBgPf($gZ` zIPmX?sUN~f?sm1k73c+25;jB2ho{2wy(k#sH?lfq#-xv>>wjPr$u`>`Ob7|MjcHuy z1N8`}x$(t?4X<&G>#fO4`?^`X2a>tUzv>YqC#oKsTQg*ri=4e2_O3S5z_epby4kMj zjjOd0*Q*=o%39R58)K_3h^ZhV``>;}f6A(2c=cQx=$~J- zfzC6~+1{nMd+7ydgW(3psc9t07ykroUY^;CcHm$NPmHpw_ufF`F}TI6vIyH++Y}(a zB`le=D^P6P*dWOoTtI(Mdqy>R%PaK_7AZk&eDiWOoo%h$v6pSJGRCpCb7bpQi*_$! z<_V9fi9mFuj0;*8v%Uf=-E|K2dq%^|TYLc64;G!Nn5|=vZ+vb^zH1n3v1L)?>y9rc z$`qdN$V2Dx5H`uCi9o#1Ddmjc-9yITqm2Amwmls#?9^m~3+hwQud{@Um(3-c;nK4a z=7&78N#?8BLQ@M>8qe??d5$;~8YnW!X1@8^YK>=rV;mXxt*4b> z!s`!8-j=e=@)t*^3vloIB$L1XONOx^S-#Tp$&)|lr@XgH79v7n5uM0QvME=<`)73w zTN}GVEMWozbwe(xBP+o2=BFts0XV|PphL1Bx>T=~eHx|4oH5ww=^Ku@f(AMI6dtWO zKqf7QU5x-W`Bl$?tqZC3g923Bh1am7u`d>PI||7qb#%RPus5B86OSKRn4Tue^YIF2 z7MbdxM*nyM+VB8dkV10g@52_7-iZy{5p;8AlVNX=A#b1=?Z~J|+wI)6q6TDqfeFdu z0ULVtkqkI9J}twCvU8!bP2sr{JwiGlTg-6Q#@GQKw>C$M$F9KLg6`yhBGiio^`Z^) z)64(%19DAW8|Y`;fxh?=4!(LTuHq}(kDT2ey>hW3wh4F&z+~mdcmAf&Gf@*ka|9Tl z_BsE9Q;gYV7Z~n9HiEZOGpcnYZh*e(hZVrm?e80acT4q@qSVRl6HqsdJ8y<8guW~Y zNB;Cm#^EDId?`(GKXzP>3+HdmPqzn|>*y*Qh)sXsTQGj;4;@(^>=Ekl+_8pw3teyd z3vF!c$OrG)YzXCNq$#PJBLtk`$A;Q6((xk}@{L7I^ef=N85x9?=0TMof*pv@gbA5( z><@{mgOeRLmfai^EnSiy5@EBf(Wa7bp`c{?_R$MUItw}sY!S=p)7J;R9Baq|3prNq zj$@1sH1p~AUp=|}sW!W5TaLf`<>m6@U*285){gz%x7tAC2@`U>$EXO9xjUpc*57OM zOfo;Tfp(j85GCi?ul&w{Rx|^C-d8@e4!TnWqAmQN3y<0Oux+A<3^CDuu^4;T zkX&6uVl8MHxmJ5XB{?RZ2=<3ZYG*}fK2+saF|Q{8bet}3>j2FGvc6K+SiKbz+{=?- zRIebBWZgv|Dmsf%96j(`djh?sH!}|!J?ZBg@%?Eq%6WrvuTOF z@s4YTAd4vx(C~9YMgqv$a;^ebPCjBD^=Cq zK0qaQC$zT2$wJR%VEsAMDshS#WNHm;Pim;6;G=ZGq-}I_23TiaK=NBX(GGjqt{H%_aJ3PEXO;A0^9;p*g4JY0Kl6=~ z2Injqegwp{aoCR5fxUik0@~YKUW~?h=%m_~6{IZ|F*p`e0=_`Q*NZ#Q|IQm|Vt#UY zrSbf?YXeQYX;U{&k@FOp`nC$pMQQqzn%m$%5t)=+p~69clV~pvoeLh5Lswx@9h9L0 zP*R#V)ov=Y*leef!C3NAL(xkIdV{zf*mCj|I2UI>10Hh%oerDca0swxGISxRuI9^e zK3J$SbvW@UP!&CDvu;DG3juACMdXG8oH&(LAEfnDE^SDBEjCI5Sll~Lf9z3(WHT% zyUFEEsqs#qg99nYhj3pbFg$!U&h}T3i@u3vL7E{f8ox-G5tE_J{}J3>e(x2JaF8E( zfgk?-?(*X=_!U5Hpt%E0^s?o3%Ik;ftQnMcfNv*J$HRA^d4%IP-9YP=aL@UA3viNS z`rRYXb7afMD{??&1AF`-!-=lsuv=(1(41~75I9b|kATNRtmYj5o|6#Z>lL2tVG@U< zleP+w2Zo+KL7>-SQ*_E>bCO#kLfqj(yH*LjxddqfZlU_ijsP(Z>9XGMYv8$VrA4(E zb@+vA&Ndnf*ydbiXMvk<0@YAn~dBr0B4op zt1W>qzg7Lo|MI_gym(X6e!_m|z#i*}BH&>_bA4t}i}9S%_99++qms2DThsx7Q>e+) z`gI3RNyHu#Hw&uh5`pc_j->)IJ-%Sr<=EkM+7NgV9^A@+s_>Crcl($OK~)S*g8)2} zxp@GvH_lCOca#nY7rNT&e1s3h{`FeE^m5FHdh-Lm=mW4Y>Gn=eYuTV+<3X94!Q~6l zReouIq)3g$Xly8!h3<_ErUBR_0z_}iIheuqLX=>D>+VPrl-N za&t$qJst;%EbXsl>Xb;Pj#d&ny6z*vRM9jf_~f6`wZM`YyX6sg7Wl}lyY|2`vb8~p z7g!g`Bc8{6lB)tT-tYeY<`CB5MI-3G=_=G1c%1};81Br5FDL_das zJTKw)YknMJJwQD*$8IG336C*zrxl%jBkVp_0iTWX8-B@d@Z3G-@e1ikhVL-O7)u+i zfM*wqp}DX#(?E5yA1er-JeSXrzy@G&M2@B*;x);+ROUorzVt=}(Y_G=`>!vTfB795 zlVC?V&p`7C$JgJyy}WyyM>xE$Vb2?AO4;{G8qFo;vuBt8_-7wqzW>RczrUGBV7`6J z*Vx@%zG6%%hrOuNglGczK1*^_XpXL7w>aQS$4M|~HrSBbCnMG&?gd!pC@luuKZ0qR z;8te?dD(xh0(Kif&8Z4~N@W{9z$=ru$}u*lG2I|i&vWYG+d>;mzzzCL0=o4DAN)bz zg7Q<5ZdRto5g-=Ub&aKt%LAr$DzgS63s48njc+0A<+YE5l2~YKf%)#bdEs}YL<&od zg7`D8-4d&9KghcVvdwM4&-m_N!d(;1Ymm@$%r(_3g@Vx@(?s%sn<+tZvjTKc4c9tx zxFwXosZcnVYlj`pv&OMgn%MGxSGTfDD4eNA3J^vfHsKnYI}4~qxu7hoj3K-?77F^d z*$PFy%Q~ul^Izb!=stP&=l_RQG6^KC_M+lpU~8)R9b+lsNz}H>nVthi&2ZRQ^u-s# zf~wb=pq|uX(@?QpS~hCH;pqTb@dg1U-g-@v*0ZAEdfnTEPH7ZfV(KETm*bnkzG&^_ z>Kg$Xo!U{-g2@$a#g3in&}gqH0RHqR5k zd5RzjF)4XV|0IsX1c+#kS+ADB!jZ88vm0C|DPqxcY-~nGIHABCGIW2iLT@%HY_1Ha zOykuH-wQw`2RolmB{6!i#*!=0spAUXN6)l@{#-QrPPCUY@^^egz?b=93I5T*&!kJ% z3$&ETCAx`$169ccwH?S#>j9nu4l)@WF$3jU2deH&>dp9S>VV3-eTO1(IkpjS-^*`g z$(;au;yX_wIMz`Ks6V)n2rF&#EGiqEbx3Z_J@lLi)p_W^ZvjQ`m^D_G@aef$wzr3XXqulbpE{iBp)0_P zUDgHQ>yAhJwY!=Yl9o$l0>0iri`NMWoHj--6JQt~Fb58_{y~tfG3QJCa+KC)cI;NS zw_3m5FnbR$uUo*@bq3K@wkO`sZTt4R0mT0`kXt;WH*K9-`i^7kxE5wAXK2)OT6Bv{ zEW?pYVj5b-sgBN;wsvX~M5i`R?652tBZ8A!db#*bt1@<+WyXjgnY^(KGRoxv%JphcQ{51UfHcU{nObx)^2g#<1vJQH9!f zYN97Uz|kbz2g+L<3RsHIui+;YjPq7DC`BvX)^u_otWe^6PfAhHVMIwNIkF~_J_Fe3 zA_a`~)SV_y!kJiJXd`#E7*i4l<*>2iM>nXS`3FX?f4MM@yp04WU@sOb+XscZqdC)D z6QI#fzGCaIK2w{dN0={k{O!;0w1MWQyhT$x_zp?S>$M};KwS3SfeN#}MsT{za?Lv% zB>xw)WRiab{GR-Wmx9d-5}6$wz<3OZXgi3>c0X*nVS=1fjz~)CLX1yosFN#54wCPY z9Ua@DWW($R(@#3AcQh);jVCeA`hL- z9lYn%b$F93r2gzdmD7L9MiQWAaE^;+_K=gc8D{L5-e-?DkBuTz1l*hHkz@b(4p$hH zC)?DK_NqoD1Q+2*R~6!3;LY+7ET3^h#p4foH`+{)g{5q(d6hOcUCG$WoD(Km`k76% z5Y?aQ!|4k-`GeOy!m&Sy65HSEL+Veof&TTk%EN4+$sG-GJ9V*3m~BTL2=xZ~BWO6!qo=a*g%C>DLHqH2FZ4md zHo&JvFZ61U(_^w6I_5;SWY0hf&I5{A4P-GNJViDXRd1jG0>a64A``#|$R~Qn5!8_+ zjs7e%oG@=$$yg+|nnPbiN6nTLWA0EzryEfg*0aq^L8Ujnyrz%Jblf7j4NjuS4!v@a z4x0jOF-D+WebdJ@853xDBFQGtQ+Zep^sZOoU`1DLL!_Hr&e-~x4fN+4>!bft$A9_7 z-Q_1d18ox1&C=G(3`$Ny*saK4ARtAyU^?ws@nJLIJAb14;)(5%q3-cj*X?f;2HgdL zx-!i(Gz@nof|Y>?qQ$~Ef+&_3fffTX#wUDCBsb_>e#O#4fs)7a&W7q%*nNIcN;T?`QT!V2t_V zOsNCjJM|eY;Z6p3Ik+?2JIdK4=b!i9&LbDL!C||x;R}T@^Bn^%b|s~O$~jAjX;4AB zO@xRoNK?ghV>$3L39z-;^pGM)P-s8dm6(?q>jql}74c7K^oi9%Aj7l!^FFH{da|Mi{`}zy+C*`*S zO+X|4a;&X7pk%b(2P9`EKMJ*d4e~TjXx6^_4Dn$NpmF`Kt+S7t@Y1G~SF9Q@WI_%; zr|Y1@c31mk^3gpvaC(a!&Yu6R2rAW-P#;!6m9WO=Bgr_uod7+Wfi|g5%7gAh-WH8R z6~-q#)?3dXuf?n*V(9JR?{beNXs`{E_2yf&H)6cfe&BmAHOij<#eZTcLn4C0NpqGP z0S?8^B6<)2cUYuNpTZMFxF^d@$f~p8dErxqx&f2cuU8r-I|OV_hx}MUUOd=vvjL=S zv?P-CQE-=w;O|c!iUE^32~fb|v>y=?tJ7+-5!n{c(zJ(?U}QVl+c7oziQKSsQw^wt z(q8POZl^I5m|nI=I>hYU?OhHaqw0&|*jRuN{O~B;uaYHB8^Es$$4?a;rO}1xiyPry=WgoH%B^!NQ^E=&&x8&2DxIb2{? zhvZO4WvQV{Ij;~oiBB8Nk1Xaome2uu5uz2*PU*Qllnfods!d?J3)^w&13k3{rhsSC zO_!ca)$_f`_(CsV{pLyW*9MkB!o2!8uMc|$fhHo%`%&9 z`i`Lvjq!(UG8~|Hk~f_U$n5wW1wj}~{%(QzBj;+AM`w2|Y#OM%)SeS~=%MJ`-hjr5 z$CcD=LjvakqatsJo*KN`OjA0I(Yg)%pR-1ZEoNgr@ zsJ16w;fRy_@ng1d)~RlKuQtGvr%M;a-D;~F+o0vd=D{W4yd#Knj%9O<+;8j#LX|iY zjuBdY3b1fg7tn|MiuEu&rkfntqnf3)W(Icp^D&!Zj^uY68ipVXw*l{27-}v+jKHa_x)|b6nN@J7NF_T522eUsN4QlXYHfX^oL6!qJ=6wbU+Qr z^T(6C@sWz&qZ-Yvmphy~NM0y8Af>Ra!TfgQ9wZ3CQ|mkcW4G-E9FI^oe9PBB|IA+V z84RYtHaIi}=F~@Y104^c@fcMJiapT5z1WMu#Atjcw2ycpiwN;s7CX|dJxp3amP?&HPre*E%s`K#ZTp6IyX&-;J-b1v?=Yq_3*rgVd(ivc;O&E3S` zF5IXX^XGl+`dcip0Z%7>O^%W_v2o^Z zGDdw@*|~^~lz83kN7Q#51e4Z)@GR79epOYIsbzC39gRUY#=d(Y8h101%U$F-)OV)g zO$b?5)i&ay&SC?qLUOn%(QUEdi4gd z#Wiy-bZ{9kFcW>2GvhVpiA4vFwi%rKUV0`!^*X;&cJpPIB?|(Jl!Xc^L z&^b5IK`!sFO*!eK*ku{cf9dv-)oO$+$ zlWItteq`q!{I*D(TX)XDgyyE)03`a}i;aa$aLIbLbXo$+(e1d1QebUJRY1*$UsE`F z{PlAj?Ib5@l_C*px@?#y9n*&Hjj{PUX;5IB@kb76W_d2nqnx@9PFOWaaD`^~S+kz# z!~2t`&;7_9cc6d&p$+uLIl@}ga!9EN6>h^2pid8)PN@?ECXDIz zCw%$h)qIMFc49)_@Pu(?9O7jP>}n^L;*Q>c|v_E@Cf z(+2u_WTYRQyJJl3_m@w#WB&8c*s$T_X*STmcz^lnm)ZchSGf=>4#iZ@IgfAo$Oj9| zPrM5fkIxcGUme;yvA8%!2(~5qjQ=q^ph}G}2tkJ&le=v|KMa+!E_xGz`&G0NGoT)M z+8Tms5~3WEeRhm<26ej}tu8q0tI`OP*_59&z>_va`fHkTnFTN|WR>Ilz zDlg<2oHm7~QV7oTr+~=`` zsNzEff6(2x)8;_^>{)aT>AlB*kqS71479Olbb)dE9x?DSJZjEEziu+3ipU7#RGuW{ zE)xxMKHx}7G=C4ai17J~!AmyKuisz&lsEI~N4^97{_^E--YWOnJgbx5@o@)7Bng`; zm>}Lvn>qo8|yG^ICfP7ua$qpuwo)f=%tA5AqKIzE0n! z$k=&pxCa)fX5U++ZC<#1+{1(B29kO1Go6Z2e067!VQv8GD$ zu;nTk-$RFX=41FCaQjWc}O0IHL0Rhu{*ODbX=c5lEg<_L_QD2{i~>s*xDX?IYjix8~_#BL5!$3 zpU_n76akpd?mZWj2&GNJ-CMh1=QFL9U*D`zu&x?Jf<*7o+Y*VD3onk%k!+>9QC4b4 zH})2Qa!huyd%8DNeCW%&={iXv3lR|E%6P#VeTO*4J5Ct^OLf3;PF^<9_D#fo?i}9? z3->K`@)^2gv2RxegVeENa%_5q#A1p3{n)Mnz0rtE1BG?PgWgSoWtU79#8b1}|K<#D zSF~nLd@^FP`wv~woswjx?F?XJjF^_~47Rzj17RcQs{5UbJF=g?czXF)pX-{ei}+Jr zoVn}FucZCti`*?m*!lOsnT?XbHeFFPZj;8OZ3c1!4IRXm@D(_^wu7Mbwv>!J-Kw-{ zW{#}etaf>*mF*eiVtCM*Woai#;!Xo{bH7Y@!|uy;@%kXAw(6u zx$~H>b&Cl;tT>Mp9GngaJsA!r%7nlMfrXR<9x`wFsyESDJhLgz#@OFxfsTaVsLsOd zO*B00Leqf{Sjv9(_Uvr&4LHmu4EYN^eggf11~WHO{rwl0%Rli;gx|bXf4;rk%?8>=xLVp_eA81NGmQBU zY@pZoKu5*%FDu41-0tJ3=OWrx21Icf9LNBt-YuLmxBpc5kUmXy{;q5?5151X9~&8+ zyH5+qB6E1sp|L9QGzTXtjE|J-(8*^=(6||f=hFwG0OA040mob>fNAP2f#NlIoA@2% z5~H2GCenydD?xC!HnIov0XRdr2V(AZ6n}%uq<^6GgTzisGyT?Ssy>l`lkPfny{#yJ3foZ#NfXq2 zLj0F41@Kn#pJ>7Q-fQ*k^S}7(vGfSQO-2K9(r-Fg12Vp@!~zXM@+@|$?@wD3FsBuP z0;ECeSfpk=8IMAwQjQD^bzE8ARNG$sG91|~o04oC{stO2rbwpi8AzunxYcb=wQ;&O zasuMHT8zbLjBeL4$lTPqzyhIfTR?rDw3AA>fXxW^Sjb2iKn@`ZR82z8^XN9;yxo5C z=_Iy9Bm=vj43JN}Bj>tJJOH5~!q_n8=f&)qRyjD06YdCFfaq8p=uNuiKj zcn((NSvZU@!8ry7J@u$iN2l#DjESUAJYu5)V`O@Fuqu;g%lD42H#*o>n}{D8|A0qs zz{!i{RMH(B$Z|&+TIAWoC|^PtHuM`~v-UD*BOf5Qfh_77Q;g;|fw>IN&m4=y9c9x_9Uwp`ey+C?672;+v1_4u7t&vexl2X}yc z$B(yY8IPiioei{BXUV^m%5x1UZ=gTLNH@?=^da@h?`9cd-rNCv5{72K5iN4}sg5Wh#$+iE+j>k8X9VSKFt3=T&e&50Aj<--(vBGcg0V zVKS?cV*Z{z2z|$w;CHSbhPLAt7F`|Vb%J^bBFXQq(v_h}L?NLF6dN+CuWgCi&G@=* z$zz~Cu%F1r)Zt4!?=8ge7=v~g-Kc!JF|4)wrjkjRJ9GfM#Q-~g#&qt8>LML)ab zN>*VlaMEn zauVM7x1+#Sz6Nb8b0;3dp;WKhnC3Vkp~X-xN=6M#=m}l0ZM)>nKxBaEg-2wVuwa;R zITuVXoY0KV=n@=Fvo>v}6Sv<13v5W(G7T9gg)IKu1-8V@4;Dx09Ly_vfyK3Vhk0K7tz;>^F&5s(F4*L8 z-L)Jh6!t>7qg=Vm~acNteT&I7A zaf0K`t6Vqd0a0Z00q?#o`??1clz_IylT45O^%xSthwW};Uu+PK{|V^$iQf1Y&IX!c z%?GjPqP^7M`TV2H<&QtbKs;jmM_)X-{Pb5(dedx9x;xpD5k>uIz)s1*%pK=`b#2mXQPC3dUTO z&YXBYENk~fmp|a#low9^eZclZ643YnuXE6uMjD4oSY{~@rs)wt9^uubrlKLLu!IN1}}F+i!(RIg*ENCvUm!Jl&G4Ybyl z@8uDWY@oTQ>}Pxe33uQ?vk(v1hjiUqDr)XTaCWIbDY}E=Yk^ST8pnn$?UHvNtVbgr z1`FG?fH-PBx-8PRE52~X5gW*V{NkzaKtFpn^MMmQ&}q8~ zW3O#JVKsBe6lptoa?MnSEevpbRxMzkI@}ABLvS!3IwfxMpbG)G=#*??;QP@E5!eVX zzAo0zg9y~=I!eIZC?0+{NKq8xb$f^JZ?4e6=jJS~$~v1+;e6d2iz#0*malxv(9Gsp zIugo;StZ`BgVp4vnT~60CU>TTJ7O=x!pRDl0A2bVy@FZMFPS)@?LW24wrIN^u+$1B z;jr!*_t*;bj&3U9*{$IGOAEO}fS2PL9ojrB%NuUz82GWaAjQSnTg98W3&`xSQX_`_ z|0|IJ+?rDXP@S>aO#wXEsVXM;dU5?&8))I&fqtPu_}K#+Xnu*%-@@^R=bzvB&!_Jh z46w=V`51@lPyEP>`WTwp?+x^)y6B1U*d6G!FB=-0dIT)HQ+f~R)}|cUo&H*GVgl{D z6H246!B2Yt^=#x~ZI9C02SOtsw;Mj-)^5fXy44SC`{M(`=$*FDc2^6i?T%Xj->!19 zs7~%I!TnGl1k^gwJh#Whnjfa;0Q{{{Vs-{*B^XdZz0u~mF*22?4eF2PbIJlbj7IK| z`mb)LHYyfjT%=94nUUqj5cyD!==Z4J={oiP@~IZA?`h#$zeIQjWDpfa zTLy+@87Do2EZ{6y(Qe}?J=jD9U$#)67lB&NJxuH~Kw~<9z6%;t0{+rScmdTN!ze&m zcESr5JK4-Hf$c{pC!HR1kxgWi8q+#k7@QNGyyG^@c;vQk;hfs3=0P~&FmemSiuzP; zfDN=^7KL759fQyTS1_p0gpd6Lr)$yNK>}Zzivt@&Ktfw$s{Lx z*+6T`Scx}-Grpq}IK3>e{Dyid&2@YnQfX@H{Edji4h$#`;8|3J+aqcF%2ez=Uw;*GRd=P^dzcAddYg4SMH_0klRH@%-LzCx? z`2zaT*-XEa5pSGDgGb2$U<+%MWN_t9Ff6!^2VaRwGzGqMraUa1i$c~GPg5!RyWLeb zuh^<|G4en|ErIRfdvpmU2jm$l<2qs@u0Do0V?d6*1|o#wh+t@qd&Z{9j6(U47`jl` z###W)E-)ioj-YD_No%Ya7=ThhcW-z$j7ft_2*@SLhLQlt516t2EEyp2+&pmS+TU8E zP9P0zpkIjok`1)x*q?kPtG%cxA8eriX*SUB-oDisdFQ*(o~4aPDTMXpxS+~9T`gh}nAfUV}0F}-t)Wey-~fx~fZ|f;LMmqxrUCC{!KlwbEqD34&gGMjRufWz|gO9 zDqsFzGxQ$-=js^era? ztbO1x*%Zsfs&g{l@@$9e5uR|8ANfgp)do3N%|7}=L0N5_L4>gEGRETs%+K5>q=^ymW*T3Odvf6V5*wNc9P)sF05KoqQ;^mbq~(E_8ekVy7Y<5@f!euM zfHL_y&BGhQvc*WBtn3T??rp62u@?C}O##s#I%;~Q-3JUaeJ;CdAmvbn58X2`V`-Xj z4^~@Rx{p-xJ4&`rJ6xr&wmqwfx9nJbN4&|j87#bB-2e0wXqezTY%iDp`s>T(r(Y#@ zr&cd?8J(U!zJer|<0`?7qxuU-R|F<>Bv*dSc1X@ zhUiGD*#pEG`E{{VfjPi?0=?3hky8gIyb7f-(7Aed%r(ZWFU-y2N0f+2j`hMW9Dv?b z6f4p`M{UJR4v6FG0z6H$__Qaj4=u<>BT<|gx1<|JWSHx6#A6-r`AY^b#o;jvQDryK zFO-ANK7N1s6VEXP9JlMcBTZbH$?%Dr4dFCU{rDq zfP9sAqf__UnKZ(nNWu?^V%QP2MXuqHG9#K5Oi=}WI6;F5FP)vaUU#15=>Svcr| z+awomgDZ^9y+MhtB8-2XT&U`yp#!%bPS63->apek>j^4n7ZRj?Mi@RG$<70@3%plQ z>BGJyH)9%WthZig+)gw+J3#8dHQKO1^!ur53pOLy(g5mRw|m|7nuZT0hjDCoI(e;@ z0T;sc6VZ%8Z|dK@s02DLn<%+;y=4@ zQLX~80=1=afPiNZq_ipnp}aY6VS+b+A97LK3t?A?1b?|$&A#TqI^>_!d=K&#m1FQ-<_6Ni7fOP}SsbjjC0ZV=Wb4yXl zavMe{+nKm7FOG&A7bq%(H=ImTu|_<5HW-$ynCv2D@>b8^jgD8#0U zV**!+Nzq&gMt$i|N*5&6(M1Q$x@xbfs#M4H0oxco+rP2P6o*iH#}#$P+DpycKh%Z& z4?a?~ccSnCPQiTn_Q~aEU%tP5t=%DdtTy=;hxqCzcwjEquF{4qE7md%3N?nG`eq7Nl--A{qcrYwH$QpqzeiH;AA{MR#^T!sd1VIk~h zm`#ZPNe>?Q==FP%v4@`TJRmf!7TG7}l6?+zZn-d6NPReQ58Ggw*fh)q)NQQ3J8t-! zs3V3>-*r*Al`bS-_!ugRLep}f{x(?T+K6>17L1zLAbUwU#(7Ib^%bbIXY9NX`hQ8b z$nu2%ec*`1HcozpF4z)U%hxnJb#ItQ7F3q${``1 zvf!5piQ}0*96p!)OYLs?CBi@XRMPE7$^7saPqcy79Q#(|PaEirOKl0Tqe|M}HAEQ` z&Etp3qD^$}K*D{P1t_`)13Ddl`AfN+UiXZ|+0qdE= zsF_Xo5*8G1S$yo=gR#4s1(a5u+6E-YQoKlq%;^FX9zmWcuw&Hmi-e6(0u2+O-1DJ; zo_YsAC! z$2K;zY0j7;6#G?4if9nI$tIb4lww~vLeprob>uEFIKC}q2K7WUgj>Le70I#kXM?fP z3v6$MSa5Yze8m394|VM|shcbsXVj0*hL@Xh5TvOIN)$Y5$maRGucY_lU;njo5rb?D zW7p=4EnG%I;jHdsan#GfV4ogp@Pk{D6UWJu3TkHP-RU0aVmO|aIP&8p5T9bDWUQSo z$DpAb=5;qkyyB-n$B$jt1R|ePVYClyeBi70&==afo*5=W5Lsf<^yIh?W?wbLs-{1X5;hqxSi&FiaBw#cp5DSG zOLsz7!z|+oJo54Z&_a~_Pi-)u*{S$cg(Jz=p)t+jbwdpPRy;qiW}4cBoM_o3hsNT{ zhXV9nXDtw|_Vjiipy$y8K|qm>X5ym8BI`PDp^kq5j9fv_X$XMotPJiSL-pbzbXzc1 ziuod0S~jW`IBV6la|lOSkS7NSUO!ZHRP7`ePLn|Es3{-Wq?jW}{UKoVEhl<=Y?oAk zrKXpJUCdE3=Ewze=n)s!uoJt0Y%>Z`r#~p^s&$hBaGv7;lIgP34K(rbLn{7SL*dUw zfBEe0^7+S4E`R)y^nACP*`W>e&!1d=`sL;F>u*(irwz39-pwtw{E}(>_Agtjowoh# z^6&pl8|Y7F11&XvNae?0Y6HzP(5UO=%_k;_Pe*{pYh_@NANl zX_W|G=has1ffEhabGkozX5}Wd$p63qqb2U6K`# z(!T2DWRC=#3;PO6#im-+_1h8v?->`ifla+VP)B$*1Y8avCxPITgeJ-j6xDW+A#w(e z6 zW>0PQH1QyC|fsv@s>*73C110j^G^G^m!{ z1Vgj$cqg2finMi02{GVS~gOd34C zeNk{FdXH_^-2_-yZ2E<@3`lTw(z1=`Rd6rEr-vP~IQs38y z)Ia2Vpl35o5P$b`o`HUH`RZF;?BBhai}^d3S@RO$zFVqT7ufPIET4qP9iBa>oB{-QI;<4mBF;#!e4DMk?( zj*5!Aa1!x2vN}9eTuZ&V@(mE`RCGcPJWbSW(HJft9a>?0^dhBAwCd=Xs<(A1rQ}zH z2V&z22yQOMozJ)f*}Dy^3w4i!R{1Ib>KQ%k3b9QyCj7!&jb0hPo$1MWIP< z^`+?RgNlR_<@kc;x?qqLWQilv9a`A%*S}dxT;VuPjW)$T&3`Sz>lc^HN4m=M=`;OP zi6BpdMp00KHL`8ULf3-+HO!Sz{JQvAhXp zg1=?su2qf=aA^4sWcngs`6hWOs8}27Z1go^R50$iU=j;<9lwG?qJRz|ks&Yo^phE! zz@UK>8^pGX9J6h?0UQY!YRRK#gxfgPWdU$*Zou=UAU0csJwtBfMTU2-El7Y)DAt7L za*&Lj0HpG7q4Yh1PJj!X^v5iH0BQzUszg5x0+3O)d2EVWXI%3E#vjNR?MA=0o0x+Q z&6_ppY|-?1Zd$}=?go=R@~63?ywlf=1p5{4?^BnZZlGWBSDufb=!lQZFdpG}>PI+! z{muK!o40SIF9RB*+CuxUF8LKfi)Ma1Fwtq3AK`ep|A|nna|4YYce8tg!m2s~)MV#o z1D#FJhCL3iwSQ-bo2BX;g3$Z}n1g3m0W06a9X)RmEEZx)k^?Y_frCfOS;J@9GMpP| z(IZb;{u}2RtSf2VUDW3UCg>_x%VV zJZ@*c7?H`f!uuo$svuik4#xem?b9xut6epa60#Lf$$QQLM6Gj{2pq!>sQeWS(}e^g zqZn{{H2{!U1J(0?e}EAk7F8YmuN=|3Ei~Rn2}pn}5JzgK6hw0Cgho#!78H*KSfns@*=sxe}Ws$yCbckC?1A^2k96?JSZL4n&e`T{sL7f4zNp?;hnz1$(q4Rm8b zF=lP3%UI zi@x3>z~mi%V&F7#A|~%bV?gBE1{8zp{?Ar}1r5=GGHpjBE- zEfi2N_lt94vI^o+X#?;xVr#20aWP*s$#J30GsjOZFIDFmXnyE{1qnIKdD?0Lq@+dt zMLUlU#lU|o=f(HUiYaHv`73!aAn-^)PcJT7c?<*`eQk(UlFB?vfgX1gQqP^^e3ONF z*pt3D*_f3*r($%kAv&}-K%P*-y9qJvcDf@_lRUt4T9C@kqk23gys zHoCD%y{EvM6BszkE3mD+xJcZ}bbY{=KbXzSVllt+b3;x)YTj6$`dIIJcMDnnctz^8 zmY$&o{ULz=u-(9icxTiD69VbHS`NfOa(^gRn=Et0b!+anE+7-lL)dCPh`@KIh5K7A zDAo7K`_89SxHAkR8)w!l=Gs$jpx<9!YXklHM^F8~2IMUHy1V>H8|a_T2KwFI8y#wl zCI`Ugw$4(ag zq3ecxt>t^bZByB<^13rYq3S6{tU9loQUc$_6gb8+&X8$v+D)lkB4?a%Mx0ny`_UV^ z{T?yiLTy-IW$gi;lRD0^S6X7&!o>HO8~a#|5u8p0x!EByTsv3?(j5hi1^0LfLinR=M4>*-t1Dz8Jx5*2%ytaDnsmDK8}Y2hPC z={Z3eU2=-3KPS*NdS^CqXz^2-g)jo^Q%gdIQGC`)b` zK);vQQ5{$^j+;tK``FD;i7&hlgPNGBhnDYr#IG5)aoVTS#SRN*fm=w~P+@FJo;UU* z6*`as=Vzu#FZGv9I^oHr>=T9vy<}m-D^{%fO&I)UK6j=r zwR$ed-&A1-jUZOR)6>B>WcH7$YVno`sRzqt_A#jTLvRH4+n_EGSN>g9hwNDP`i@;GPaXNSQ8o>sL|dx;SGY`SLRs%`(rKTC5gjWVZtK8fG~imd znJ?UEQe_bPVmIJHtw;&ZV-nt2UmIZ6l_02|zaXw4FT#jlt11@s%T}Hon?IpyjA-HN zBOKp-{p|94`w@-|Apa?+DU$`JCb@$WCJz@P^!oj`0XdNcGwLdGNcGucaI~?cJ~pv4K6E zsN|$Gw$ifZW8E3965LU{^_!}4$R=EBu?onJ$Q4gNCkxFJT=-!0xhc#3O#XC&>C~H3 zgekzU`bpr8h!Jptn8k)uO9^-@F}%XUg%pqPMy$9z=%s6>-#V!+Od43KI!;}fNsaaC zJH&LlUU0FO{#=KsIr8Db;!?x{cE}ZSl*W;h2pegBB;|!Coh@4jznPUxD$&*$P$5H( z%N6R9k~$k=ev0_(cTX?hXan%|oA;OByuDn$Q5)GvbC;Tnyni4>Z$>n>4bXxtlmhPh z6Sf#&jAvf7W7g6%&I+{IgxGYfynx}{aqnD~lB7{XhMY#SF<=&fHQh*)gArIURoamd zqUboyNnU}_(gvWiz)5>ZZhBPKVy`lV$^y5#KsVailz^iHAEw?i3!cB`1P=yC1HM8a zirE8P!I>WL>SqL7OUFadw%!Dcc59yh%KA&y>6{*puj)O;-?rN0A7LgIvc3ITDFOpKXV`FW)Q9~GP#&=(6!RD^w3ABK9-$*k71sIZbh|f^=mO1C zAvbtH{0=}OzL=0N6X1wO%sPmrEwzo<$yH%PZCD~A!j&iCRGBFqOQhFy4k>x;$&sg) z>itJ<-++_=`jJs4DXC*fXX2#N`V9HR0uTEtS*|mhCT`nSq4qOpZGnV=5(kv)CVFiH z&fx-Jbu8FAV&$K_TiPvzo+txbDtj~#c_0Z_#zZ4|78vU;D7Q81kk47)*J2HwW56Fg zOwJ2iHmC976_4C`^~#N|e2tyRxdTmr*c~S*PGT`~wa`1mDp`2->hLY@j+3tKAPUcs zbVv>nfPMqL3(g$|78(Ym>%zRm$(YrgD16&^@(4_*kqSRc<2X}c5!zfGLo}|pf1z&E zHvC{Tg6%$= zS`R=$7WBk2sG*;x(>|=UUC241GiKEvLXPfDyd&EPvM$Nb;R8nhdeOzrVruMC7Z}%x zIE<)Z^X9)~lrMdcv#=LEA6TGUYSTG%^5Oc(S)00IfTt>BjtU&UL;00<(%d2Au5`bR z!oEF$qivu~LcQ@#A`Mfxge=b&z6Y7j^EYpw__@sA=wq!n*TT6=_Kj>)@;FBpUuJ+U z7$;VjXa5tEq~7zjdhpdju(~+VY0!a5zmTnN;6n-&>15OboaNujqDk56&Y!@>gi)zo zKy`CCadf~eA!~0C*_Lf8yz%7vi5Jc&i&qXt+Tzq`Cp zJU{q2UuEYtP%ql`5Bw70SC`9|{1f3@eYn#HJZ1u8-*-rHq*Ed%Hs*wyLY&$_|NCA|CNYhVEKW(PY(mmT-UNSi3!f|(1(jHnGBhXG@( zJF~8EI2}R|XBXfKdLmd=V~#!qTxDJ{576*_Cg>H6jx*cT%b>^I$Zj>Ahe%JkI_4qM zf8^8avl#H))i)&;I3Q7{8T|3kcHm>va_Ltp&;gGL%2aehc;tk3PiTS;vX^}Z&1(a( zsJVeG^ezfO%%y~{m&Z8u102SvRRuWJi>$h!_(?nAmY%v|fa>w2aU*hMkG^Hr?uPSeJ&HntOyUQmppI@H5;2CHe zY|=0@mIos^HV(Fk5zK6T+b%1&hxKziklyZO&CLAQ~{xOpMA}r=Z)0=-@$BM$Z?!p%uo=*dyN9 zFWBCpH0DjuA~!J%4LtFs;(m4T1?7TK3z)A$C%c$B(6W$frW1Z+A?J#&F(i8XH8tf| z388gdnA0ooy@7u5?CIt6kF}B3h2CN5&_34^u_kTV^-p07u;N8kRVXxV+_+rxLIoC( zz*wh4tIF+F-wXpUt&4#BUVSZ?x(AjRNz=+JDAYoT71YC*D}6CGiVDG0utk zq8Lr%1emGH2zC~jeD4QS0)!WAAZ>76<3?6D#^P;5e2q_|&TyGfvHsB1Mm=+FL34%x)vFCOzWo%T zbvd5uL+J}GcKn~g>*p6g|NMI|iMJVM1ATY-=~quKU%lZGj<-6*^IVw?hEDio#v#vU zgNXJ9`uHAb$$YDe-}x;Z#GE_cz-|ky&>n|#+yUp9IXBb5;~Qwk!szP&%UDPZ)EYsoaH z@?O&q9z)l|t);xd?wCZjvD&sVVrhm`Hw=QLZ-5LCKmCdiu0f6)n&~McqY>#3<-&da zzz1B7O$#y3BFtEwx20IeamnV^JR6~mg-x2i#Lmztxx2dlqEK1A&Yq!eYkGTgIV@sj z%&xJEK5+Dl8%VvSfbeW$RJNyq+Nqz7J_=O6Mhlks! z)r2-CT_?x8m*@p-A{QIc959VC(gq=w@&@m=gAG}dMo5r6c9UG3G0v~$_1R-$B_BM# z@#(9lmyfi0e)I0><@aClt7&(a|MvBh%Qv``e#R=_CZLNnA<(yS$hQl;(7{)9y^tV0 zp8I5iI+O{(cQ2F}FQoFzH)|Lqh=?B{^jP$;s0{1DKzLYFx*T;EVwda7I*GA+wiuWGoc0QYbz7EkvW< zfir@w107koU|69>-D3=~Ijd^aesqeAN+Hc1>u#^{5tk2*pIF>5L&~}?IbpM*Ws!>@ zV|A(TJXoZ3^(t+#>{m98)pueKareW=P4wE*#5tip}X9vv#(|E91exrY6+Bo z*!d6;;i(>+YhNl}i`Dj+t0c?^0wVs(4C*yyhwzY3!vC`21%r3Y;u2yz|Mx$W_bIB@9WqS zZ^1s3)B)*8z&{#exeNy9x2uL}vg+Op1s3AII8kpqFycO;5*lso1rl}3kDvbccVNfr zKBY@h;O?BM?gf?61x%MtH@%z-+xE06j??~oK-{vYhD`_yw#{j)DWx`+*sLxkZShj? z5)HB?4OO!6>0-=olTsCUTxbc8JIdT0V-w9Ll|TD_|D*T*@7w?S8=hlMoVq4o-j59; z;M+9Vh&K?@!nb&khu5mJp?(dn^2PJ_I-Z!%CL7r`mK3yO#fWTS&Uc)ZM11=5qlkQM z-8*f%nb_KAC{}(Dg=a>2zM4%n8wlum#u~dhVw1j5&2^7^*W4VT4#*|65L@hdmPnyf z=Wy1iEs>!mwwnQE$^ve`7;pwmoiQDAyDZO8z8IYloIHjUA2a}!ng%4|xh>*(@d46$ z#7~8QZ4!UQ5f#o2g|tf~^-u2z`8%jBo)=(QULy}=>W(qNtcJz|G~kdY4%d_U73-+s z))xTvEipK~&W{-u1)4T45LirqK|gZ$0Z6XU0}q8cp0yw&z+tGy^Mrlg7uqvzp!xA2 zzUAfr5nt8xl zzI+GzJDLkhuqfU@|ARK=JT3*~$0SgTU$mVnm^aXz+}>UOe+%&%a2o~^0~EDK@q20t z9(GOC09t4C(Jyv#ssVMf;q#8BuqBaA&ooQXVMK$YNvvhL;M6)}kp?&zou*O4w(CYy zfL9Nx1se_bOM%!=CdJqdP8s?B*V*?&? z;I^rn8;_%Ej~$0t-WVE+E99nmm^q7P=lMAX@dMo-d`0rwGvJN!%oFBh*RI4H9C!Xv zB0#u(Y!mUt1@Q<;E|=~C>KtS0v;iOr`yn_@2SjnKIuxtF(p6xYD??{Mh^kd;r`tPi zHHdw6Ltz-x8?KiI&|OZi5PyB04D>Jb+^qWiHIHy;1O581{zg8fYF{xxhXAcR5R6UI zJQk3TZ?%(!Q37SOO$VHT8XsMN4s)N2<~uR?1DrfL^@NKB$2sI%=zywetQ>9(3~T6# zeUfRL4A7xtUvj+&(!NNeX_6oTjQ9d@hPfAtNd&g`W_WiVK*}|PP}dX1=yT6 z0=0sTl1+0^(^(_s_KdxyhYw_>%!G0V%p7A5F40;{h;{U$6_FArjW}Y516`7(wZo8$ zCs5B3z;)~lBR+N~PwK*(eknla;8fg))V)y#SBVYQ7%rH;vn!l-=jXR2B*-UC?j}bb zH~e@C|K!J?Za#f^@qgd?p8&lf&1RX6YQ9Qv@`ZiTvFk+{qQH+|IB_D%7e6ojk@C-t zH+`VJyw(Qdwdmk4UvOv>FCOvmPmQShZngBi87B6&Lx%B*KfcvNWXJtZTLrJFW@EsU}>OjdLx_Q=I9)-o&h z+=z$K>mZ@vpkZsn9iYah%n=|Hb%8mXRvU$3-@=Y)8M=m&Wed5rMgopcBJ|I(cGTXj zP0!0A!DFq6Ifyq#2dGsEDo2`f*s{3nfsileP0a}yo5ynEc>7`Mci%`m;$?PRPEc$h z6p@&v^H-RbPqlI8(!^hPJ`v%MKE1nq^ny#3M~*n!K>zA;`Mp>U54-GDo8dl1oV(!x6tu=IRwZjF46RGVR&UCc?S*9^ ze}*;{3S`T z-jHW6nl&U`=L{1X`^FD&yY;f{!NNzr96)?u;PPRg_2wPVK!5x`cc5SWuYV(v>(;s> zP8x=Z1$&^=aanq1@npm>F$#&@a5mMrqPtp@g~oh%J6Sr$3 zo~ubp5ha3G?uZZ%Is+I{!u;IJB2)mJT1t8KD-fG)Uu`-yr+op@(LY{X#5=9qww0(i zzh;abDuFCm)fOK$szb7*+Ja1CJz-)!a@;#aUMvJGxDF*@KG>Gn;S7Wsob#?1!v@f} zx4B#tA?)#&S=l@#fD{1jM}pX)LH40j=;3o>Gs9e@?z;%^M+RWp;fEYR;b2jHOPn$0 zyT$yl3V%9gBg#JmX5*?-#;}1+PVo>(p9&!`{7uq{iA9{pGx&*YCz9Q(Gw{TZfbb0k zFSUDqu3hx&=X_(q6K}9zh{g|4JXala9@~l)7kH!#xqHASpXJ1hzL>sa%^^1_v!Nz( z|7w-_xk#)J8nQ?(oKNaWS(>AAwU78!189ZE1qT7oRHK$2@R02*ev`{MbUx7^ z`!Q#rzq0K^KjUt1163oT0Ho1f?16Sc!JALfEb6hurYm;93vTb&is_tdK4B+9-wZY_ zhPfU+M|K|J_(-1+KYf0={L#mEmzR7}lpes!_cLvvfA(u_puc&q&9BBX|0MAKT^{35 z>0E1|W^SV)AKHxLp1hzTIxGIRCcF8}}lvPnciRGTD#acIQ#jZa)6fR(q)=w)Nf${eAt z{ZwFCKGng4P@-R>9%Ga`5w*R-zk%>n(pI&ZwYMp#cw2qe@z=YYv*$gGQI2#wQAK0L z7kF>_8AcEK$#YF{F|QYoo<)A*1owPLeq>7rys5?>p8`%?)X>%d2nYy( zo8Sk)BSje0{hjOqKvx$y0{{Ri_@MxffuU32MIZqkKnR8jzz;wm@ke|Xf#fe?29Tzm zK;f4#B^VxwbOMNep$ACk)1Q4$1+V}Bt@AQFKmz^_(g1GYbr}0H7$ODFqvHsHBLt2R zI6~kEfg=R|uSCGe$<5Z?&zno%(cQYCwN#F=W!;AJvf-^M9ql9u@isfg=Qt5I92M2!THk_^ak2E-(Fy=J9WF z0B{ZP1#AEpzz*;NxBw%-3j7ahCZKLYK=_-kaU8U^oCJu$IM9MZ+e^UqNBAp&;BPdb zjpi7^@75ODsbj}}53>pVmZ_V+rvGl|0SNG4@uPqmKzjT*$#G&*5)u+JGE#C%1}aJl z3QATwdKw0flMqghlkDtVe4+weJi@%}?1JY`3yVugOG`rpqGFNcX6Kgt=>y*g(2@dgLCuPQ8#qQwKuAk~Zv`M=E{Q?Q)OX|5ZwJ9KLL%bh zB&1~I6d*yx39!V3gvW>oiHV6oGZR5D_&Y#EOH9Wtp?aL&z>0*&lR@%s;&W2o^QBFU zSNc$VQr2E!WaLcDEUYK_PYDQ~J|iu2_MEJoyxIkI4NWcWi&w81UN^d7Y+_?;XYb(X z$hd)6_r)*s%x5CTHD$? zI^TcjANc%baOmss2y%L6c5Z%QacLR7xwXBs`wg?V|Giw_%lZ59Yr+0jE?Tf$$B2js ziAcVei{O|acoNbQ5pzo%r&Bc`vGSznk-SUFa6a*QX%iW*)D;w?wO1cG6Q4AaAN{>( zzm)7hSFo`EPbK@KV1Jft1fV1&03RM9EdT|!>sj4=MI=OvH;RM4C8HCqD6pdrc0Th>6f(KBi z@jyF#6%Xu({LV`5@f{7wFdo=GgyDg^dN}DHIDKpx5y$o5f&AaHlJi$a3HF?Qk$)}8 z4}84EcjJD{=MRk1BFn9Q%;#S@v42#`q4^=7KeGB?rpSh$vr>9=tE=ztAAF3FT&Y1u zb?$zW5h{IExvHBTS`(lT9Gmt4pHp$kb+NVhxqG|F5h)%<>U<)INt)ZGDhKH&qE(PI zc}0lhUdB25?sm@W(cxY?Vr16J=^XldO@3>1Jo#uJjKJm^L`-;x=4vem{ zH&vgDFNN<|U=lF%25=bLzm|GkK5o8w#un-vsqp?*R!>%kWgwv2z`dFJSh43pV%^P~ z*p__H$%^X-0#SVSPo^E!_+EFOn7VgNQp0mB@=%b_Mk{IARgS;*R_!K2bTTzdb}ik3 zqb#Ogg_r>__?NFMoT@X*p9$bEj4e#ZH{NxfSKZWa2)er%98zE7Qy{;94c$Pj#KO*a zj=jWcnL}`jrnm+HJkVESw3vc~Mv(!w>A{Y!?K!n3yeK&ijAonL8`{c2JfS%G%??HuX{4eS{Um)_mi zJ%0iI@nKgQ+q~HZYmZ4;z_h}FScS1tE6nl!Z2Q}&RO*HsAzmu%>7G}#7K7AZkCCpo zsJtO5zkW|ZWIkfNr_%qWWt$P2_?cbU?IgLe;cP7WAytIH(A{(#13_)h#Kgp?S?as6 zTLg1Dv?NK?sz71~PB>H&Vv87o6V5Xm<*7Yk9hPjXNXcAxZ2zIVdct-Uobr>-?7u&fB=#TjjlRIsQN3!eJLij}Ccz{y`4_MOUfyJSMZ5@x)*5;TC5&tgOe@fr=kZL@@ zrLeI-J^3Ns?+lcVSrZSyneaeKG}vUid>OieetZ9nRwHi(-55VwDw%ntEtflOHtF_Q zX~&!d-9y(b`abWl;h7DZi&fMG!2!V>b=)(CzS`zlyd(=_$2AnF1HH8pM-uX2$8&_w zF3+X1@tjC1eD^;1>*^hcs(OQ(AsIHIuiS~ViK7bHrmzMg^>2g;wf7}5#svx9xX5om z=-|Dea@~Aoj(+~wly4)BJ|jGj9uuw~Z72ARa><=`v*Ck(Vre?Zv*Q6PLnEPFu{VYY z`P$_&oNSEF&eJhMeHOyu8-m#7?Z6iWf{(H#6~%KplVlnO&W=AOvWZKv>h;MYlc~RI zTwYgqz`*}Jg6qs#U(t^oW#QjcNPv@hrw|1lB88V!-aUkjMNtoO8sBV+Vo#EQyFCQ< zcGj*;BXLa(8ER&Q2A!^7gCd?2O(l#@mgHBcAJ!K~R7;(=q3xNA(2CX4xIszvcoqoE zs8j0C$UJ<~J~h4z~usk>s0R?_4n?o+Mc#Y}D1zrFtyN3H+Chid^&3ER!9BIM94vobWWK)GspgvV8(nXYH)>oq zWGzfrtEmZQU3V3CvMAt%&b3~8nk zrp*JbE!kVNn^WEiMHqbo(TbOc+0(*`2Bw#+Q|7EE-xH^jOZu~^&R|~GcSQO6+<0z! z``{|GHF2#gDYtOGY=@{s+(HH5&a;^7WOd3p`w%g?{ucE)OpTl9dNvH_tCXsdxuEdVbI}XqZ>+rM5f@X9>yq{Q#N4^bZNr!n z)qFZxvrX?coC+|)iUhmhf{S1q$)M)aJU9qj7#YCrL1(lQVMrGj%dIsRJP?$LF1dv2 z&Ocj*>{2@KYnWnZ-4y823cGlMjdr*$vGD#|#Cmq2e)IK3hAVvk=qM<1@IXf_Y^W8~EoGKz7+{?RukpZ8Vdg&BFHg!} zG%Eg7wRJ3|RN19ab%|!E65B}CsqzO-fh~Bz-s!nb{WS-wt+uVh&pQ^A7cZn)oQlpu zGtRoZy54F^6(419M+h#u3Cv^FnTWtV3RavF7%q7ET#SdATw9l3|UA~byLwNVAjr2Vo zJDHA==l88!1Ngtuwm5JEcgVc@r@BLMcN(%s<_O!_62L_#y?C*EdNmB}LH@3saM#f9 zJ-Oixe-h9`!h7hlt+WjN8yHm%J%eteO5 zB`6+Aj0No7xK=gJTg@BS&-ea|Ls`w|`6ta}Tou-5)p<9B8aF1>hpI3XxC_BjhaGsJ zcO+Dvv9?BQP|A+&o+3nnb$d+@*I$PRvVvgW4)8$Hwbk*iprSF$HHDr%6dd<`?6C6^ zHvm#(l7gc9{n{j!`_A*je1GbYCdlFUh?OgNz}W&1^u)oweZMYJe*hA^x`PLlCBS+D zjy5VFBdLh3ncv6_Y&jQUKP1rH&D+3Y!2E%Oi~Y~WBsD+M|Hz9;bv^P2`X71y|90+eMci=pY1iEY0q1z_osCjM}oe-j7;bpMMaRvCT8RO#)WH8WSawHq0SY_2vl zR!EN)1eyi9u>d}Zdei17!R^V&ST?r2V~&R55psmWdOKNE+>8g zjt7)nVH=~c_`imkfK3^iy%n%U4H?Bc{x$rDB=IGz$JFv*cXCGa&!Bp!V!RqIa0HZ< zN^sQr!-X)xtTSY5a0qu;h3WfC@aBJ55CS%tF=nPEsm3lL#yy5G@!b6b!`I(6*s`6T zJ%UNt5EJg&Otk^#K@Ak^Uv(IyhX-;jO8P{aE$PWm(=l*9B;feCX$smQrszK8MRoUH zrU)T?5>WvWbr<2&P6gKag7##aXI`;nk#D>nmyP1dy%ST)oB8nm%*rONd|@!()Kffy zg*L;qUuj`)I+Q=z;89_oZ+zX?{2OUDKuY&Od+?K&4bNZYt$KK9ja-zBdvGC=vx8ia z&`7J+WlhmcqI-#*TB6aKWbw?-_x|{M|M~lu0XQ0m7eMxxC-(`jJ^Vh{`bV?k1H+)* z_c58E5>s#aOOpyV!-84IqhDMb-u1aDdvFN5sCV`xge#V7*r%8F2s`3SUr&G7p`V2cX!4l0z(*T%TY!4G%1g!+sH4csZC-88j7uV*VKj zegWJ2W_hspJp*e}pm5iKa?pdT03c48xZoii4z~01zj_k_$_d}Lwle99vGgedA%U+r zGj^2zP1%wD3wn+Qzl(%EvEG`3$ZDpe%7;-cMep*PTjG4u-PU-{PyQ>V35j;2!#p<7dXOC|x93B~7k3tA&&=Jf_u5x`r%ba4P6t{K3)I)62U@=AP%t}AsKlM1(|Ui61$+Jt)+rVlndB+_ z@-b=DOS5NL%wsuU*DXK5oogvZ`6`*9G!{(9oCvM?)VLmmspykK3?As2h$@~%!aRvC zwNc*O7_IP2A$;E1w6vyKVIH}b?US%FICj63ML|l@@Iq8jq(Eq$a+5Yc}>_5i0 ze;f1uzi2UEx)>`SJ)DZ*`$aQ$P}uFt+*`*3&mgzJL1D(mUO%7mus7IJPHyF_r9!vH z!6q5_XH0a(b>pBHb*-7>lHPk)Q}rKp(=C<)>?A!T&$CDl-!9HR<(-DZ<9%SqFAK*l)1zP?}0`YH}kAbVBr|9JMNulIj_J3k?c7-KMxlv;=3hrw0RQudBMJ|6O7 zVs74|R<`cecA_@!u44XH9%2%r;$naz)ZfDjTvg=5Wo_r+7ec=?)5po@*1tpHS+id@lO-rv>3)y~I?%ir~uo435b63;K(<-zdx zXfYmTMK4=>`70MRexm@dlz4v2i=UsLsGpRmyO)EQgq)n5n7E{vq@)N)A>tk2=40hA z;^xi!8-ojW-ZoxN9zIU)Zd~6PT3NgM`Y7@E`a0Rl+gsVoSlimlh*(=m*@{R=*jkBL z*-A->*h)#+o|BP~m9&?z=K1aRwl;s<-NV=G)-U(AwGp$sW#?+==Hm^bAtA;i_G_m9 zyY2}>^v6yA6@IXcAdS45mz|Z5-39Pe{yxzvA}%E&C4Nofx5-ygaT!@fvA@y%naC;MA|8*k5n_Pb7Yc0VNnr_lLZLDY^a!97i|#DUgrgI)dw`5cnzL zBk4MV>!%R-DdHpPI)dw`5cnzLBk4MV>!%R-DdHpPI)dw`5cnzLBk4MV>!%R-DdHpP zI)dw`5cnzLBk4MV>!%R-DdHpPI)dw`5cnzLBk4MV>!%R-DdHpPI)dw`5cnzLBk4MV z>!%R-DdHpPI)dw`5cnzLBk4MV>!%R-DdHpPI)dw`5cnzLBk4MV>!%R-DdHpPI)dw` z5cnzLBk4MV>!%R-DdHpPI)dw`5cnzLBkB4d4%eUW%-FesFUt6VZ^ZoKk&f`#vG0H2 zK?MF0lYaN@ModmZa-5WsoRX4)oPvUin(hP@H7zv-#R;YpwDb&&jEs~t%q&a{EOZQv z48M4!BLveB5t9)UlQB?HP%-@U@ry?~0w_TjApy^kM>?S5e|wK~2fQs%WUv=@x@bBPXD9y}$G zBcicV(i^OC5H;l==6G~!=|i76vmS5Cfo2xdmOS zCH8I3kCz1_B?*e>vi3->qK~KM3!`Em$B)nIN8WqSeqO~qRA^q8+}7jdjdrhA0qQM_fh)Llvzm{d>OBLdU$cDv#F$@A=RPg1hj2)wR6g z;LiDmKC}%kk_Pnh@!JDb{(D3%62jr{K7Bk>^f}V~#FE9Sf$3*O7Au;|)!^D8*`?}W$3HUP@^`8Dr{TPm!mwT>5`yIyMeNyW{&;Dw%Wy~YkZZSpwPDt4(h*aN z2h<|(!B7uDZwPabAb*eWl{Pra^)lmr|!iaUQc#HoL877B_m=cd;z+bxK74n0?A zzwmsn5K(p#=JMxGUL6`36)JRFH}Yy`30r%w_!)Kxn=?j~O=6R4OAc7Ds-Sn%rz3sJ z&PKtXs;igYSCm;MMj#DG(ah7m+h`61E^T{crRVBSu_oyHYtsNHf(O2KxZ{Br!Dnk` zJ|8-}xI@(USdB0^18i7>4`w0nBOYJ`od!^<)9cuw&vuV$*Iuce*<5uCTIuYR8yWc8 z;}!aCGdQ#)dvSLy&IYnj!m8u}>~xdJp*LC(^e%x$_v=(&wfM;teY-o?*TA9aEA41j zC!f^eE9pk!txHr{H+9&r$;(?%fr&sL>$o>04HHz1wfj6V zN&RXeEqu83Y1P^p@<)?tY)kR2#|XF}YVfU$y>1Vs(@-8sHYXsyan^GHvM>NZn3nJW zgACgS{Za!T>Koh!lR9nc9%-_MP3c|QU4LReqnE4D`o@&c%j$+3Q$JI>E5WF+P)QZ$ zeQ;LC>lJx{HX4la#PMG1fgKJ@Q;8d0vpGF{eja3NBK^E?>8g}(7)Y|*pC3IFvmfg; zTwbaaxRoA9-y_$7@J^pkjcDw^Tw5bp(nJ!Uu}c_jL#h44&tvirq?gZ~+^sEok6alQ z8r3;;xqgSaM(et^jZ@b!ce!IXg@VnMxvjMwPD^*#muD`U~g0#v*vv+ zE=X=_FG$aMLIB3;ynj0zT&>=CY7RSy|bG z_R3uyUf#=n_tdR7S!TKv&Yne{4^v&d<_f?>9|GkDpzn|WhLaIKL$j)fQLnJXXe)!> zxJbVZ=N|a&ru3BUDd;^#z`Ek!bq8;?3t1OTI_=ivRaezl+}}Lbi8E|=H}4$nokBnI zVBu`L7I%UQ2a(KQ;3At)tu8sVhmUo-F?3de-%%J1iXo>D_=nuqeAw zM9^!ALu?jK4sYPJ$A=E%LbyP`&Y#wtV4!d3NA|cL*yiPR#HtON1ef9Nk_~Cvd**>- zK(r!GS^Hb!E}m;c9I$}iMz(ui44DLG7I`T%ayRe>S`N9WHHZ+G53u9%aE?{h;6^< zZ_d{(&O{nWXo(wg%0!b2BvxxApi+x8yo(;SD0 zw|J4VZ<28N9ZGf1R8T#VUFuf0f#>fm^^hc_0fIRhmszN*t>S2|E^Rz9&t<0#?_pVh zFO0r$BoNHCr}#WY+wR}o+>DM?zf2-Dp83xgjC2+{(A=yDR%$*%4eziB{4 zwtVvHYN@i;WAJZ)l2|Ma4HTX`sXMgM+SXhUO|DeULgYqCt$7jn79-TOQ!-Mkhw53A zfi$~XswI8+;Bv=`IXdLa0-5dz;?<5K7#K z0|)G>WM|so+BG)i_q(PV@47!lew?gwH*ELrxd?2Z5&Z66_rG>7LjJAC?FZe5fo;sE z!wfty`)nNcwPTv*P;p}D0yKO}9*I2-iw?Q81rH5eLqr!h@GjqevORIC@*SGNPDbac zm8*1?Q()k+)W)BE60^`s-X|XygG{dhRlzm zH|_Pg(^(-qg8U!`l>H-AI##-}4~rm{Nw2x%lvPrCZSF=IF-X*UTW0|9dKM1G&L1SY4&gz8(%Xl4v2e+6p1INvXS!a3F^`)h2N z%7gZGwU2Fl6cy|*$t9~h(b1qgKa<0R?cn3{yYo%L4QJG{hh<*mesj+^eNpgMIt&>q zxu-T~OrCyE?QXkrJ6dyf2DR00l9K##Igk(!I69@Aexd5?^wQi^YcTp7*Q1<=tU2u1 zBsUVzP9eu;JLyCK^((KSH`-Q1bR;#Xz_B`LC?>T8YS~=x<@AS!_`u$47Xy~<-Oqy~C z9VWlUg7MXaI0>&wJV;ZAw?O)#7xfCWdCF zUay0Bv-7>{sk8w1oJk839)+~dhsJL@=~%VI;vk4b6;5B|!7~>#4DZ2d49|d0<)Du) zOb?N9pj|h}*YCQ+Toqx$79fxyN8QYyWGQ6NClTt;=CTMM9zyEHDxbs*w4Ia0*l3~7 zg~|}(A$7NU%5oT?VmUn11f^DV&l`1d zP=8ZN_f`x2xP*~<&no4t(Rq$Zm*>};zBR6eaANsTh~_V#Kf-%nAErlKre91iZ{ntR zr*-pU?2TvrxPv;l9Dq`3g89jE#(XRnjJ|;ld!zF3Q^V7c3AQ0yVFG#AtwMvk$b(X| zJ*u^aOG62mTJtYr4XiNcw88Pr zl$ZUE-kM>+YfOG)>Lleh4aM@4%F^l4>!q<*Oqt~EpRzqj8q_4GJCV3DE9HplaZ-1NV$8|hl5OE#j-F7i)fVnx-7zRV}ys5 z@0jOn$G2~jH1wCwt{?p@Fe`3ltGfPLutP%6{?Wx$L3-3?py zXCzSJ=l5lo+JGR?pAtzl)GjmPw$AP89s^7tJI`jjSA4~eOXh?+&kP9>qg9U_htS3b zIR>hRQcjVcq;ae~$(i}C*5rn%utZrYf7&CJF>Su20KO#cQ`I8S-8&dq9>($lYON%4 za8jesw;atFk!y7IbyG;0bhEzSI`5s*udP{~ER7`>IDl=IEE+iWTs~H(;jj?u=vYTk z=x?b}3RBS9z&B8++fX*GS(R*9z4ff2 zx3`%)YSsQstqnnlA?tF$CxO@o$fB}*vTCqbqos1htCm71L_-oc@t6)zhrs%<-_477 zK*;WL00Y6+ivrY;7N-6{C&&*~{ElVV5@ULv)5n2s^ux)e>?gcf(FDd0SZaw)`yzsN zCzAo!p9v`P&PbB9x|1wF+0879U^g#tl4QHH%@I^Rvj;lI`#cqMK&Xde3eUw1-9WqM z#i~tHSxivqj3O1E=HBPPT_GATy}cLTsek#hm-zAPWhnQi2`^IZ=UFlJ2dqMCcx`j(*Hl

fHc7fbyy6v=erBE|Jum`wyq`Ef^)l|f8HcN z&{S&!iGpr#-7&HJx9)c_5*6ZL28|Fyi@krG!3-veN4w+N6<~)_P8EY0`737d2(V+$ z!J6WM(ge^|=%syE-;P)N{RK7KmWhlwnI%Z4V0KL7!tdI_iMTk=J%_!1bR2E+N+>LI zb4eZat`DABYjPYRxen=D3GddHl2^1F8#zdh#egpR|NBqsyP(f$oZ-_0B|Pw60kp7{ z!doHx0rf><|E5&?s9~T|#gOJyOzP}MCP7Afc9CaS!m@S@*M-|sRV1J_fTPfO_UMBr@qV6t)D+bt|+bf+Ma3bNd;R_*Y5S)1> zYa!RUkr@&gQn3}E+2PKCDZrgrp`sI`Hg=W=b#_Iy?E1CC!U0tm_xw*@+-cUvk8+cl zRvwKJ*yB!UC>c#h#{0sE{4Fo*icSm}pp}bY?m5PXS$o&tdrGwEa8cgSJb6F$ru*a9 zS)K?FU|qu$pn1I8qqpfjpd`4kEi9FoxN;a!@(jm?bw+PAo0D`@){J28w4R)RBL}8M z1oQ`17s@K$8E{2B&lq3l_fU&yDa;jr6kZ;f%QjU&p~xl)a&Vkk0~cZnu2GJqPG>JfPUWCd(IRQx$SAa~8%awBQPvPRW~&harnzRAu|$ zhS9>BEsHR23;G9SLN5G8&sHd6#k);tq}7<_#wLYo9AusQP#vv$Q4rKq|9&ddR!+(< zK>|o!xrF?J;&{(oO{OgUiAQ|! zdt{>%9j@INpHmZK{yew41?>Lt0ELX=h^&r`(n%oXKT-($^iI54|&GevS**6VgduOx}Y6f6O9qC!NVQCV;( z2i5QI-8wR}=;c(&G?4eDVM##Cfxdh-())aE_GW{nlmey=2xhCA=Q?%+M%oU`B&^g6 zNqerbI+GYT>$4!cP<0v87U0+3!|9*XY?9hC&f6TFbBJgiLHFmq8x)yKVsngm_Nn7B zEeFNha@OGo>_N53p1zxSfF-1F;%uL95ACqiNi~-%{#Uea6-yuJ5v`p2RAN>rq3t8G zo+U<{GWRf>@4huD@rN)fAXr6QmFvDmnpuWFMR*A^y8H@}`?5DlbWoAgk*{o-flabxn%|_PhG7Z)cJ^KN+uldMlgJ)W+RKNJsI7 zcGSV;#S^b#1!Es_2^Y&YAF$0SMS5RsaiRSjrb*b6D@4dlg0~^rXcdCYHoU57ccxW8S;4q9_0fYF6bD^jNEZ7 zSGwMzR#VNK$QOrx-Q1Q!qRs1=8D{XFpPHq>CyU1PpaWP)r-9+BE(dz+PKeW7+9nDO zbQr=u*?a3^8RZ9o1WCEL7Ww;P)dlVr+tv<>O5cerzlQ6LBoJ;JdTds}le`N@-fmYm z@I*L@omhcVV%Z8!mjjt2>vRiRe0M)7Nh_(fUe%VSW69eTUL8Iq9uPB^uW-*lUdu)R zfLu5nY&w+B&}t+h+DaH-oFSRN((;D4*fSw`Ylx%XWp12s+9;txAm|c?t=P$AJmGFO zCbhZd{wqJ^o^Y{)`O>KjehsKolmcA5@Cpka@IB~B(ZyKWqlXf9#ExUO8gIKYmS->z z6&Fi)6@(SqhpjgEkG!o(C!Ku%${Z zu`xP=^+-7EGHFlH)+mudmoanSo}=5ia`uGqgyETV`nU`Q&clM)$-6jNbje+1 z4$QHAt86oW9YeI?MAS&&NY7z*hVRaFhga$`^W44X-ZaVIC_=WNBEG#Ly(Wba)^ZVo z9T8qj)O^#nJ|?ck9jb7d zMs3l%KNSH&2Lu8EA1r)?aP&!dRQ1?Qfr*(0H+b zN7n5^yS>4|mq_s_Q?6PPqBSZsNqb3DFNV`SD$rJ$g_HiNMWpWAJ~7u*Nf?u}St%OG z;_EXX9PCA>`J;%gUolUkR#8swnCM{(MENhUC`XP&?BO;(1_tFQ;y6ls1{k-*;$Tkh zjK-jD?%XsrPM={ZO3_6Vcs%2G?Vr*s4cY>ED{Wh>(1yu79kFW{! zW+3$PmoA@K9=#~;=FhdO2ruC+mXARd^u$}78B{b3$ng)H)Y#mC&}$>dnXfd&7;_)% z|MKFqXuf*lrA8h0UcNInU0n8dM2VLVW{lz#IbM(XJD7!^|147rJ>ehHRzbn0?Yg#J zSiu&~{Fp1?S$5j(i@B_}B-RbbZ->%kk)SfN@PJ>Ed`R#ehdj}NMZJTp%$Bi3s5}Z5 zlgX*5J@rg&`dM+ZRla!-GMM+mXX&r&SJb7ARmw1IdfQZ`EFrikw0 zoD3DeQF5M|R7vv|dZS~jv8f~)VK+&!m^#6Mp?Kv_(tJ*tbFlnS!m_P_7p|76UDZ(T zD)(qA#fdlG{bQ=7!y{wG-V8PEYBJ(2VJzeorlk=Nl%>m4fm;t+#z-HEnSGWvjb@4J z-xNEY$Oqto*ALvH8*wB-R-w`a-z>TPPF%B*VfNO>FF&cI>7r5Id!^2l{&5y2ybg$d$R&AzpY z5q=HQM!CI07F{-t680r+_3E-m@&n@TkD|D|NZj>Q&8Zmgc6(TeVzil~>I@;#s>enxtJzhlg(n+D$YW8$M=_g%6LaRg|J0hOiC#B1o1w z!MU!9F2nx3Fqbr*cV~u9Lr0#couZR3j5F79XS>TPw{uaD@M93`fimV!V*%1Ce{zK$ zPQ5IjlJB&;QmUZCzjbkdEWLOS*m_Fh;l@xV(H)3@_|xlQ;*n|6<`-RR?TmTfRWy`7 z?W!q#7a!iDNUch~xXj{VSXvQ&+D?gsfnbh#vaB+>#2?mH$;pl8L`<7&wpI$|jjsfT zkK~PAk4<{h{6>|X^m*D?reK*Ab}lT-1P`#)$-LB?Rw8VbKb}0}ho&m3Z_D4U3Ky03 z^{upFV{w3Ad7#N9{QUE4x;*(TK4?k*b~m70y|JwPm~bbHCNqRBavP7IOTAaAF-_wzeRZJ* zm7gn2?{rbY^wAvU(R>1SU*_si7sajR)V069R17P4_vS+eO!e@ws}GFGnUks({VmqF zhum^x+|+C-Fml&xFW$4ROG=L_-Mc(*JiYosinWg0`x2+@P{lHx!%UyA6-Aaeh7|Rt z#h90$6yL{j*1Q|ct86i0vIqE1TzK7bC%*BRADvggD{0s;9#F5qwaB-Z75bMP2wbQ~ zEmPebwVrNY%97L+zfaooptAGs8)^!-F%QlBJ{3+oq~6`LA?$-b3M(57nAkRP3=Fm_ zl29#E+mbJ(Ip=;ofhfs=Hbs?hLuk!!@9nB?{kf@-@E88jW(&526$2LAm#8M?QlGh9r!&=Pp}a}m?A=bTqvWlE`8 zwT0eJp9gq}#BQoC$k2p&oQtgp_ESeYL}3MM#uD`koSrCFHV^Jzi&LM+?UM0@X+&Q+ zd&e(2DxO-ccx!Q6pCkh7aF}6>J{J*k>fHT`@sJNIZ6^(TMiixNeBG%M@?pDbl$Tfg z0!qtP@0w`}J02)|jHaLcw9u#nJ0X+sVuEW3EArB8@$3j^l~eXuW1=%tU%@o1P6w~X z`-RH|!ZhqLe7B(FMuXkP7n5!$hDpK>EuPh0DPywMyZSzhh6lcDhpG#qecFO>`x2kt zKnicv6?n#+wo9a;DyVFsh*b#sI@&YVt~!a1Y-ZDAu<(aneLGYEr}Ph3yKkza>!9TV zlPk(20}a^TYJ8Hs(gw;WrS7W>#cVic(MX^*o5+HUpT9^9KohpL=sjuIg9waw@4de}wh8;94lP`cD#JR<}s z8*I5*-`KjIS>~3UQyk?3&H<&Wrs`JImL|EduEkE6nwcGDYuQSw8~|SD>y*u6XePT! zcSZyWKWsyX7c@`}nW*(4^&y#hi8>lrk%;(KJ-1D>k&9MaMGKP@$BMb&r^MsV&KU=E zK^-^9S2Af88A-y+b$K=ec3f)hg99mE-h``5=rLr^&b1ba(#GkWgmym;j!}ac<)E$B z-*xs7#U)Tf^8gP{K8#eJ3k7nxJYG#7W&a9!pz&s)f`jP%TQ&Q|*SmQFF?1>xHx$e)*`O~_Zd#lpe;cS|70e46Z z)eY4x4R#s{)2Dp0LuE@qV-)$SGUF)buB(i>sY%U{uUes{g$sS*+xjk5%F8X*f`;zg zrq-b`+SjhBygYLw2okA|cAY57_0MTNsgW8S;;S%8ZPMlDbMQ2Ut8*bpL^{L@s8K(| z%hCF3;-DVfO=7D6diM!cYIu+WGPmxtZbD?CX3?mYE&O9Z|J?eq>P^(upg3{B_1#`s zlE=3DaH>XMMJAO64Lv4lv!zA8aHKdkXH3t1SBL45!}X|JcWo1a^fk%a&Zi7QFGV3= zLAjEv!Z1HK^*^V9`Y_?FYm>Lq(yITlzujJ{2wgwYag)>XDKGW$+bHT~bPqk2eh_P1 zq=PhvsG}?6kz_$vsmpiwEAw7((9v@2o9pqvHPz9)ky+GXf2z0W&65jE@KdH&WjZB>DD%+KsVozIL8c$B*Y^?gsS9&``S6+|Dmt34BpnIBqg&hI!)j z9ByFx)R<1k*k&_Z%VyI=`b_MJ^M1@mqI30^Jkcvx~&-)><`Km8QKlvbEI8Lj?+;~YS%Mr@?c!qr_BINj@ z#R+hZM9|p6`3kIAz$L)RX5nJwC!J>vR!>RK(U#k=!A@?QfHiUh>Hwwc0u6GQ<`#p& zawUhhKI%=Mt{;tzn4ShZb zbE(dEt4C|uZ8J^E{;?q9zobXC1VKoiwx3bS~e6h=tkT&5T56>$~fCN zS$?)rYdnH2mOXjN0i0cZg5^e~hmfF2TGyCFbgm8(S4B;WzzWS}K8>yKUr%4()Cx@c z=ntHUI}@P~Z0CThqntOu)lsyTGvC)4=(c2NXx@T@yReqb=~#l(z9{`{7}CcvM*xC? zx3ueFv1YqVOMBM^!0IB(%uo6H|UQ9P_?g?tq0C z0U@7Vl^?n)Kf)BhhOim&ZL^&t0# zrV;F@{B)y5JuLkYJZ!%Y0IlX^M3eh^uAt_LU1TV~wC~UHJ~7O5G%?+$6X%mNKkGn} z&)9?whN5khc{vg2%g)d{Nw7Y3;u}9pS+`bgVjR(SnEOF%}%pzkTh6YP^UxJD0PFj8tjR=yz#>>Y!@VR))Cyii`Nib z5&Q&459^aaMdC<{V3=_T>Jy9%vG^FH2F^)eM_}FH-Ux6OgGkQF59WmjBs&)NPC}ub zUtoXFnU*VA*bD9*Kjsw7xFza6zi|PFP z?4bDx9L>j-NK_taIIqHesxt(SGz-Q z<`UMXEFw%PO0O}43PUs1!@SraiW^63lR;pfbpyAUJYuUvs1=_uyQb^Onvg7xmfB*Y*Az;0rHd%0yr`V8oaXHMHMuPqZ(% z>kyUD+V#!ghq})FAI@@7O7NV)j!UU0YzyJYR`39yCD@LahPfXKRF?Eu zrF#z{^p-52Ls5E`dp!H#GC_LSl2XO#TTBgcyJGOk&GR^3*w?C;AnL*u8$4oE2OW+w*mBYT+^Xfw%blL# z4djbt{-?%z4oDF`l}k@k=4Hz68mHckFI3@8ce4nX8S+7}7@J{ymiO;HaAN8bE-f>^ z{5tlneJp*!|wvJ^fZszqjVi%v$~9F79E~ zz2}~N&fVwR;oJAq#@H)l<1Xf|;n>~M9!Cs@l%1zcV2J&=e<&e}UuV&;|9)+lbc?19 zV`D;S>EdavHx3VJcyxy^#fhv6O*e5~U*N{ZGxB5**ZYJ6B0Jp+iz-aLW+?UAJ<^2? zJ?}F|hO~Tcrr~X!b`QSmoZ-7d5jCSC)5gvrbL57mM5s%#*qd(i(mu!9kyE?c zU#)6vmqzt+VlVdCJ~QQIzcW<-kaMrw`@SmGLsv=JI5nL7`;6Gfa@iK8ZS(7czod%sg*8HB-5(6C??CYvZ~iBdf9eRG>n{OlT5u-TGazfCZCO8<5O5^ zzOZ~+xTd70&MZpixXtm>=AH?5Ul8g>~G!-0 z3qZ74^dOdug7zWG{8p!4YzNscf1ajxM$KMn6DJMb+$wej2{k}-QQ}XHuQJXX3J?cz z+C|n0`w&H|e3xC(MC)~x-E#GDiW531G2<<{oU5jO3!M%s%>(+h$;uDLeO+6m95BI< zEmR1clt4L-_Nk}B1wNUaDs)9@@6uo#V{57+^x|y{-DIvCOi>4;k#*efi+!a@L8quA zc=R<~5YSWK>`KpVJ|A>mvUxYqaS6=30Bb zlmdYLlN9po3U7Y^Bc%}2A&W+vmjSrV*z6}+LO`YMo*+&r?x`d^{VE1rZE-1Yjx8~6 zM&NI@uM~34UasMaL~=oX1U=Vh|47>W9AFj zdkbfjKJF=jWeoB>mrb~X?dU|MSym1kly4>MC92|NPd0}x6_7lpJt;#f&Q2Wz(&4Di zV&j|<6Xveh?fv#4r!YoDacwmGW6w6x4Czoc8Q^a8fw-X!FOO?9Tf~VrOq-Guxnsds zAE%Ycm$|WtXz*e5qbMVM$}qs=AIc7{>RK1_NJi5!W)g~5#G0sra-eB#7$mwm{y z833VKGXS=a!mG3p^v90c??W`&5Bfy>XP>?s=$O6vJcK2Ue+`$XD%NLpA9A+cupYg5 zacc89UKu`{g;(5%kXND!kFx>b7gU_vPLS#x3#RNP>TJD);w|m`(Hpl93=F@6@hB36 zsv3=UF4iA__~nBq$o*l2Klc_yJgqk&utzrr5d0=U@ZlOjG!`+xx6|cd42T}{CKZ@ z=j9`=%nQp#6_Ut8mII#(uQvz!8e%-<4S{jMhZByC_^yD*_7ETHQ@?mwN<>B}0Y(cv zXhwz(CYyJLMz+7=?1{uB=U)AzL(i!yD9KEHb;MZ5r=-4~spqxTQSMPrktGf!W)ly6 zQiDS3NpMW0hb^n_Vb(%lAWaMg1u$Gm)QIHE;xq#9Q5zIJ2&|3hK7^xZ246;eA|XJe z$^uGMcM;EX*SOeh9^QFnyO*D(Z+l}=$;F)W*FS=x84%svV3TbqA0vbqJkc1+VaCM5 z%=3*}_fdjYseyS; zd_hSZ1a(hU*(x|J3>E?J;-Xk8f2ZQFdMbDGzO)ZXRRxxVpCx*m;q}U)xjGF z{Z4RNi;^Y>M5d*c#o%SV)`6X*@Wol>$iQR9`s3)E;W1yPh5^^aoQ*Xk3O@N$_69c* zVGN&JlzFK45@|SBNB1}D|9{B?K&Nq+b>fEv<|E|qXtrqyV9z(kAomzPeR(v*+^`y+ zaq@_C9YSJ)$Zm|Md6%@lm*|9%;^3}uffXN~+Tg6_42G<&lDpoP$H)Ja>+1LZv{Uv| zyX<~DzVQ%^09(`2K$d6hcPA7ND@HPL`B0XM&+{tZ(tGC~SXeMW%HVaiaj@y7#sk~3p|;xkoQVK6m>ajjz?rY%?-N@FJE01@{1o87HGd3vLWwU3STf>SpJ-GjN{m=RHv^LBh7-HR*Cg>{lp84 z=;QqSaW_<0s%>p;g=*WmUq7=odHXoKQ~ycz)6TKDC>L|mPmZX=3%U%&=3dzavCqu2 zi{i-&tYI1cmrZ;WT#l0@Z7ko}0JL1^Anu@1%8*!zOD=r~ zl2ZYHb-N)t94?ZvgNco#^z*JELFoU+M;ttp-jwQT>RlWcXtxG1lXc zNhU`5E9*;ph+LS5aZrnXK+yW>%*WjtH<2+4rV~RYor?74M)jyBZ;E~xO|EjsIsf6G z2BKX!Z3P#W5r>w)NW6Gu4xtun2eA+uC+ZTflL(vPf)((;^mTH(#G6K;s8#CR7M2Yi7`Z-y;_ca{g{+PkH_U$NrZn z(uJ2L;*G%wJm~1#haAe+4u*VKhk;#O)&}h2WP*q_EjDui2lx))K$aa*xe!F|cs~M2Kvr%< zpz8q4fIDs}2OD)I*r(?_U`vfsv-@J;9)-42>qnkUO?@dtop@ z;@j|o-m9^aq%!-)m(c6x_sajHVCzD4z72m!?F?xwWapX5=~ymyCdsmL>NlHh3q~*k z8Qvq$wd}1lKhifGcPD>NfLv8%J=SNqwn4jpjl+>{;Iv>Tvnhz-_vQV&Cn}*si*xCMt}J!)0wK{ zgf|fqI(9j(ja|2J;XxC*Ce@-l?<+p_pX4ci9%6f+x(HK!-~1+o##@1RPJm)zz9-VSjY_YGe9_0tG5P}Xh#j3$jP#V};A=if_hKY$ zpjS`GbSC7(32`wJih}fj(DaUuKHvmtoeHF;zv!_38Msn_j^bSO9G~*_dJ62cxuNcl zjEf6n(l7QQQhU5pYK%9=F-XX0Wy$86r->S!OjXDEsXSgPP4+Z&sIJ=~_GAv8+fZ@l z0el+Z(lnx|z2SJh+x5YNM(8&wD=jy;9k;Z5KkGf=IuZUL%(<;PNAmE4%0tmw-+1?m z>gr&f0dcwa6bwAvZF0Y9)orXlWE@zttkUk*dwyb63Hzd`ieIn&(6zV4a&@=&lA98$ z#k)9}n?0cG5nc^D<}+QP3?VsRJRej>w3d8%Xm~O#h56W-LZ_qL9}Q(1V7^y66mhp3 zrJ=n}!Mf?<78IW7hEVRXI+hKPA?(56Kr=a^mIn z>DI;+PM?y`l^ju8()1J;VA}3+jzlLT1M81;zkz3YcW!A*=$|ma2Pun4loK_}Uk8*Y z$bIBYE{&&!*)MCiYTblDAfo=k!v;IfXjG);+iNtF^~tqH1Z2h=!O1Ye=F>ObQz9Mt zmolR6`X}DI+S7`AJ>erx!xH|8x>rH|;YM+|kQDb@XZR5tp}B!KEE8V3E$>{iHTo*b zpIH}k2YXDA748IT=9crGCj_kZ_=CEMtXzy zJqr0ZX5>P}AlpA?Mi##DVw{#o9Ju^{#f&^)NYdZUKccA>1Twk_xss+4&sxq z+LG;L%nJW(+u0YV+Kj#JIwMOy$U?$v)p)mEpk1u%9dud_SJov*u6Qqe2tCo-1$)vU zU57r~n~=xI^7yjsa!Q>;c>O-)c7L>r{0+$>ol?IkX6DPG*M-)I??G6>EoTcDP$|Q z#d&y5ipJWJ6RE7sqf~8U^n#w;*#U)ESSI9Hi;l7cd2a1Pq`$0Ly!0Vmx8;gh-b#YL zAj0)g#4565ft|o_-WW;}-ASHJiZoG?r%|tdFel#d%@D5oVuNXC+FqXSc6}^mT@k47 za`tbrn?L*apN;jH;6bSr_z$I04oadtmj0cYR<1mV;?NV}&k?})2Uwe6UJnfH|LNm@ zA%yQBeIA!h;H<)7ypYQ*lP7K0ou_6wnTEZ1vx)`r@gTCWh}ijNv`3Xsngqfjl(&g# zsO>AD7FN&C4aE1xAgMgWWei&Z{|clT4c!Za{&4PMui|pL#kxW6a%7c>lD4+w)5a31w}nT| z!YAosnHlarP+#C+&Cg{%%r+kGAj1aYM+f5jSz`Yl8T_H--RA<{XaS$Jz%aVUyJOl0 zl%7m1OWLJTZrFze0P9e_ivaM$lBF~tU3|Q~03~+mpMkibf0*6>12fHybnr!}%{376 zQ$7(n@M=vvGxZ^PuIci9P9b4|RMP7jffr|}->YX>Hze90K7L3o6{b!O;#~h=o*PbV z)v&rJA*2zi@jDtwGqxddVDNgwJiet;ZxI=?_pX70aHb%noBm^?=;%c$WXV@GeQ(!q zOJ3sS9gPu$2R7`}_FdBsUC^7SA*+aqhlqZGeaLzE?rHcB=j&mjcU}!xr@!f28Aq2z zOY-w&+~f2-Nj;z`%Y4|I-pogG6|al>MhVPOB(WL!!+G`T3#4Eh2*?E!h5kNK7Qbp) zJ$d=3FCHYGOD@}oK*3A=NQfF zC^rB~Z+%7YuxOKuxBlX__+FFXm-B-vCVUM+6Z!9jUNvMIJal&|$`#Uk65goNsyTN_ z`s<7KT+`+OJGo%gnQ{!^5xc`G8A|SbO;9b)Y)R*PomVa>{Dt^`r^6 z;+y?Ky9U~gUq5UPvtW30hMAX(Oleqi-sY$KZN)r~xP$Ba!lu?VM()Ws5vJNq?Cjl~ zoKg!*FFBo+?}9kUD(9%5uD>7ayYK zhftzaTfFzsoO^BrGJ7595yD0Lyb+_qn2~$~waxrQNh#H@!yjgWtyFkF#w5<3)Oka4 zP0p4aLfT1?!%6D*5xlaDEVg!5(o;o)&vx^lwPLy8=-Os)i%q*DGx$HVn)KfmyNdltwk;I!K0sv^CbwYt@_CsU(iu z`4$NmFDv$%Sv|?6GB_&{&{h$QRpMHos#=HTOka{V(;|CfeB<~;MHb#}qHRNRgzc83 zcf4E98O=!=2^qHWPJYVi%bZv9Dtmmc_(0x5ShEAp<7ki-h30qJc&d9g!UXTdsfEau zS5{j56g(iu8aOd366feIa!e^vD_XpPI}C3>g?g4Ega!$Az}9>9?Q?mu=6su%xnqK+ z<)eFNrW|jvW?_~5`BmoZ*JZ;*A@yaVO;DO!lV*d&c84SBTs>btRt^Vz6d4p`C;2I1 zgzJRzI9Zd#skQSrhIy!<69NGnRBldQ(w$$2C-}K)RkZqxyx)~opPgZ-H;*d9JiC-b z!Id-}EyD~gD<(vuX%4y2@*i0NT2d*xw~npMQ*@$3vQdJsGCBjZ7pGQvSe|;*tLA=7 zELX}6SjxA|?-@IPM}6dJJJ4y1)D5^CAq?VS26jnyDM?~o`aYyv-YD-h4Z&w)b!QVS zIazvdpMSolSR*!@@LVkfP!2I0APUP4%6P8#?^#7)^J4HJIEz!&U_Vf_>)LDhx$I}| z52&6u9w+JxlBPM(;d9F<^Ut(MyO>(|74goAMFU|_81Io07HFTZ7lFyJ57~=>{;K6t zu1-z{NG!#~m#A%^{Xc8`*wFEihx~Qua5Bi1ML&VcDrdHOiJ(yIrT!byTuc6Oz1n-k4jt?)SX2gspca+Inl~>{U1=b{iDw19 zt*2Oq=#yRI9`RZvbmj%mc%p*A<6m%<16rWAn5f+|O#mx1O%5bTX^kM(Dv=UKoDngA z1{CqvaRR*SVJYzNG$zuEt46a`6N&fq^|0Vgq*8HE> zHr*!pBKYjzby@o7S`ef(nq_M=`2LEcftB?E7=Pv!aBLB%H~iq|dc%z1y|02}pZ;BG z4H{t08+Xutgd?%1zc^dw-O7Ea>)$h^FNAH`%->$oVo(L=^bR(fh=58jQR!d^y%~xkAYDK}I!F^~QbUhOiS*uk zZw3-j2qc6T|L1@H=iKj}_ubETzjxpJ?qw&lGkdaT?^(aSW@fE5vuB@-pUeXn?x||1 z0z^baz!Sm;I9U+tRq?X31^_KBfFA&WbA%5CaE1`OMmX>xx&#mt;zWcGKqUHCdM1(B zA8}d&O*@hNA8|@Td@{riAo+tHIJcUb_A3{_2mlxDH(3EP!v6#sz>#qLigl9^J4Xno z+bII42%I8tiohuXrwIHXiGYEfqb0=Cl~czS;s)VVv9xo8xNwTz5WXQSdgF$usIaJ% zxQqnwAEOexAu26*LtIY$1}7mRCL<><2|RYUaIkXWG@r`68~Luxp?y}$zSou zu`z$diKWE>AU5_N@l2wBXh8qaV$Mtax>cuI%>R)Bd&=}F0;dR^B5;bpDFS~X@XwmZ z4LOM$a-uT8ze)pu$ACLv0XP6wfD6D07ywTRzXZ*Mpqmg8|EX)7C3sty0a8L5!Gm(K zpNQqJ_&5>YpELv?%^9MjQILqpvg?jS0{J;D>0MW_#$rNx0ICu6e*;&$a zWMpLL&z~cwq@|*yprB;BbeV>hjhTa;jhU5|lUtaV^Qs^hD=VM$b-^2=5)u*|yt0Zi zVhY0I5@NqjLUjK8c}faOMk*>su`8@s#D04_`2t)#2lNm$E21mFnTtfk7l}?<0S-bb zNeP~*U(TsNH=;AdB&27_&YdTxAP`htAaG1fe1?RWl$3{11>^B)xP+^w!zS zx=+cjI@5~1jLAC3b-S#Y?%@E6Tl|^JtMlaa42(?7JlA;nuJcPsN=eJe%H6rEqN=8@ zaqrP%J$(a1BV!9oD{C8DJ9}3*cMnf5Z=b-|LBSz!Lc?O?-o+;*zE4X2ke!p8m;bTg zQ+Y*YRW+=pw(e_7Yg;?wTSw>M(D2CU*!aZc!s62M%Iezs#wL1q@5j&m1I*#kFTQ^9 z`SA58qc+kIC`-8Lp7-O&gA93~Y9D0@d+=lyDlVzFQ~+8XqJMWss;H(L{vb>$#wb~B{7s|be5&8gLBz+eM-Cv->z4!= zW^nQ@EW4cjq|S>}f<=~Q*DtACXk}LKGtFDbZe-*s+V`Yq+xV~g#xBY>WLNF8A|;6I z|G`ipXu2`&T^xeqepmEcn_6OpGfr|SntMP#b^UWJN$lMoZrgRC@Sd6*&(3|_y%Cbp z$7&@6)yy#`v310&k?YM$tH{2&r(_M-Se!-V_xGQHzmdS?T6wpK=-tTfcuOm)%pViM z@kk#cX(CVQ`$3;6GWXEJ=Buz6!d8ZuEAA#OFIqo|uA+yf>xL1tAh*b#*f%cUoCsD? zGl#6I0m!qw_yqQUyiTe<_*^@t>(X}i!@o+1Wk??>%y;;GDr$c3;O@Sx;H(#Z=E5&p(N#K!0~-Rl)Fv9q(R zt+iBJsqV{ocR?wXNrB;&C>~z!t3e$&zBBjufDZxWf9x#F4$I!nZe%RpdBsP31t$x> z6jFBF^M(7cs9T$-L*e4^x7K6dV2(U5mzMjLm9Hc{rP`RxQWC5JZk}gTns4Vj)19o6 znkeElkRjTvf91{m$45s*DyuPeKEQjKRxP6O6;IXi&Qy>27yV~_GlGh*R41^6c*FXf z`F9_y^1SZ~Vw#VBXERl;1(H)KaB1mgi84J;&9NrZhdUp=7WIyZb&@Iq?d=%-`RnHk zth?cYHru!m=59Xb>;ne0orZG{yR$983 zd0r1`68$4{k?T50u>)YW2;R~a8p(;=71|P!^;ZmF?DY>%56RC3G#rG|7IZJ0LAz=k z(-0g7V>QZ=rdV3gT*e7-h685{{8Rj&qW|M$`)k3ZNzbU93?ouaHNN2R@R-c=&yA8h z#kvjmI%E~?n`M|XDQ&AlyXhIkOETDshuaiZ8m4m%7cYg_QiE2OxR{nCW-MB(k0e{v zoGHpx!v&-Ax7$6bzIe6(H1Bw9$9&-K{>L610q9Oi~5D3928u21Xpc2m@;K9WHEAmwl2`x1e?rYovWk1BHP4 zwj!DTo0jFAFlVfO=wi&pC2rhC4Qqr?SVW7DPoKR%asrO21GKO1G42)1S>P3;wYA}D z6FcG=aziHoQS=GGaPyo{No)F(gnlKdZLDaoqIgrr%G?Ri*8{^7!+!lwmgs*1C`-*@ zsONBI>}Dqb4magLFYk|b1H3&?fW1BN2@rrh0on%s-FydsWg`-*yhh>nrg||u_N@5B z{gTq(sKe0jdezZSvZIw^F&)k;Cq8b)JXdgjFQi`CtP3UeyCV~!Rb5PUA@mmO?HhepEmrHeY=(F(7h|Y zmd#hZ8J7xnhQ^P=fGEXBW|}XgYKAUqW??n2nRIg1=yv(a4ab>p0;APyefWR%o$wVTN$u_AX8oA^euhwoKKKrJ7Cwl{7VBjp~%_r8C^l;UAX zyza!nX;Dk!B>ROFOA($lf*+vosc9ZJP<+AhoC8BI7ihqDrfS(!to_xbUSwb}&r4b2 zROd}+jCGc+`_&ww)~7YioE#fJamTg5^UwAXodYwfIim9FON{ewYsvjg2t`{W+rN5r ze%VpA@aGS`9n}xZQYjG(J%tyz}hmFlgHD84g@xDr9#D|Ml{JO_1|sH8Lyb(3Z;2ShE_1Sw75vE4F5DQc-P?H*@v1P`Io2@XhWwfnZvD*g zLxh4R_d~&$&zb-F&M(?qWHp(WdTZFsErx*#oSGTGj zud!NuWCV_gQh(+|w@3|q;%jJ}%z-x90s-1&fRpPHr3Eb!cM}IJnOm*4p;Pr4bp@Tw zTFH&`hjlR-2#IPXj_RS+D0N5S=)?ibI46aR9bCLSK6@`y7Xz+_w@8&0eHt@}ElOCO z4z;8T(BS@oov`TG|4~pP!RRQQQ{zzIW=BN&(3FqF;$?)}&R7`mN}2LYWSl?r1Q4E< zFX-q@L#!<0GF^vKEw1H;w2Y!mG$=i#-@koj*cE%@9OJhyTN}d!?d`7y4k-Pm5gya1trzv)hN5RusKc4k>iyYpWnT?6D|9{_A} zM}xvymkl+%y11R&89zI}l3G*l3}CKnO7EygIz?E>#(1qcil@5E91UGIE{k>WN&qF# z*CEnZSnQ6yGRdk-^Z6?zzY{%vi||?^BU8S8eW$<>A%FA0DOBgoH&aWSeD)te$fGjK z7NpaP;dK@S$r>@b8CUSUN3OUE=u=&rEVya}$+Te%H#E|+RkK^w(j2n2aJv!6a?;!4aYPq0KT@nyE zf!kRb&R=v~12Zt^ai63|zF*XB8oNlXI#WdLa+7Q$mTXClJLBf#<)ceV**47WeeRcv z8rn6ZQ#Q7A(~P_6TQh^+-Bn*_aomRAqvdXX6t^xbDIj~pqBe5)m8XEE(@lk=fY&SdhR)=t_cCp>JXP~N9<43Q_C;CWEfbaRc`D%rRU3{UA7PAIU z568JJlrw2v?v2sd2$;91R^_usSKnrIJT&^Ee4P{J+g!l#sLVTouKsoB693EgMa7$h z^L}5hqhBxJ{G&CAQh%1h{_HH`_6yy8uZDz>E|AbmQs?GAW8meF!t(%)4F#Y{nW>Pv zjL+Z8r&8*6JM0u zoq%pSu0PFP;F_6KomlpK-6tae=Qi zxQ|`5SMBt_4iGekR${4r7BybRz7;ibYHv@Hq3=ti4<~uZxC1iXWtBgkjsA|kuOzg@ zg5PH-)jif;`-6&0i%a`%Bx%lFwF8%0t_Yj0uy{cs3+~(ohxkdSMzyT$r08_*k8|Ir zuBK2GskoSss*1VB{anVo!6)`#+&)fM%q$>=0D&=w9@*))`h-`K`PKh0A4G*D3vyAb zDIdFNmB7R21ygc%mmV7M#$|lbFP+paR_af3n>0BmrVSe{(XEh375u^X%an?l)G)jI zB;o3{C!!I%nNdq{_`M9Qakr_$*+-4y^~*8~p6=~({#=@|xA$EHU~ei{5@aG`cVfbb zmSviOxYQ`oDBtT{r5k-WUTg8bzsbpH>V8E{cT;VZ=AK{go&ARr>mSAcX59R7m;S|0 zz;Hq(e`9q2#`cY=*0O6$ag~&m!=VsLC-3u@&Xq;JUt)isH)SO&_3do@6CN?&ShjX$ z!N@=sU(vxL-}Fn}?c9P0ZX}a}#i6sxcxuWOGqE%bw`vh(roqpMfm{6Q-&NI?ZZaC14cf_}2B|W} z7i%K@`Yu>ac4vi)Ee#W;0=IyeJ?r?sH$}5*K?-OIWEJbq#gA|2e=>H)>_%_9ceDXA zb6)RT>g3NwB!S}Fl}uUF8(q#SWy`F_3iQz?AqO=Dpsa_>l>BdNiA`0+oC%|Bv9iN%}c8y;QUI^0DrPTMyDi~dX6 zia-HUl1M6Pe`4Snc~LJN3?O?*eb&cEhg5XYgrl5k&IS3<>~S!^nr`!QRI2|S?T}U< z=mu9|&F%*~Gb5*F0}@=Li?A+Q1%d75fe1+B8O5|3QQgOIVxnn zE3YSL_4Z6A%@h9^j-jkf@(fhm2BCUL6L;SzodY-IkN6z0)uD%3wazx$xw}$c*tU+< z4~LNmT*g2feOS@S!0_Li)zu`S1v^V_{-0kHc*lu4l)eUVMn5W#(WH1k#-@L#EOC?i z9L{dT*G7OJ;ZB@@&9Wp@z6X#VC-n-?%k(;PBF7GyK`>*#onwBES>fg5`NNQpKWTwE zB!#g5;QagsCvjHOq(ZEpoZ>9^2^i1TR6PPLO4 z;q`1owF{w7zMjdULN=SuM|mm4WtjW)lYV;^HG6I$)C0l%TJHz&gxvR^7=1XrEj$kc zmEBqG?m6&Si|~EyL#@6wm*qc|?JK!+rS;Rt?lb8*He7p*nUvLN-uSg7L7P~a3$?Ll z7-cAL@}DPJ)rk=rX6huQB8fS)HoBZ}WqfBZ}rDEs@8cJ|+IV{NA)1?16`2 zz|sylKaJ}my{VERndP_UZP~3}`Ne`e7R6jsh345Rj4iQAHp@SkhG>bdB~ceqC}qwU zkUf8@y0TVFOcvqiK5qLYTtiHB?*zDYllk4h@{$GJ;(U9ajV2dhBngaCyZ7&#e80*^ z?s=f37E9Sq;@P5EaYdEpp_jRH$C10l+dk!elb+gZ@5uP{7|Dp`y*6D$hf3{%9_o7$|eT-a~5H5(hU9{n?{&Z%O5S@WdBE_34~cTn*#A=kj8J z;KosR;$&n`L3skt%L&RN7Lo|(A*QvljpWfk4TYHZSH)QuR3DtRJyTVMV{m*ZB7MaZ ziWWm-Uh04ROS%6SZ8)Vx?w?MeM?AL#wV7n7b2Yx~{LG|mCYQkbK_eni@9Qk3xjhVL(T80=8eJqoKkwL1%3fGT$U4a6)td}gV z?V?j`;=OWv2J8P`5&qVozxr8nsn@3J7WaB?teA5{l*d}Nk4?2LvC{00KDJ`K;E6hA z5x{vx2|oK3`?HOwakPBwDNkkiHxg^DTutHtCuvqsM;xX5YQTlrEg@I(+}F>pSzZz^ z>x}YbR|b^D5r#H(Xi9OJs6nReYg#!}^*4K`Bd6C^er!xB0NO5-&*|d7* z{YFfzwqtro)H~3oT!W}dRbJX^B9RqkL-yr}B}Fpj_iM#~wuAS_4(P+hVV+tWJ*RvH zcJaRZ#C^~xG9L~9McyiFUn#y7!Ocw8d78Sp7nqtQ81zRb#U(R`;O#{jun;cS>1s^J z;Y&`N(xCC6KEXCuOpUN;zvI=iS zP=f)w_nxH2Dk??~23)H~i#Eh$zxpBnu}gURVy}GIdSyzeqtHyQZ#M_9G#McBr#14= zKHa~r_=iN_aVM&+_PPU}mRk%ET}I8nBjWz}g*77ojxNplslvjSfE6}JWiWt3`}{2n zj>P93%)8p18nUv>ad9T}^wyp9w-=oYMa)l#a;|mu)S}B@@Ssd`M8|cLfm*aIVd%jad7)= zj5_JvfVU4s5sS)lf-Uh0wmF=C_bmU5I!mZ9d776xQ$Tt1b8lohIs?RegRE9N_zb95 z@1)I894}$ehrV`THxm;h=&~3S&FnM30}_rkgWm6UNGk_Q80t8v(3;i?G;1a8r1?|X z9G+BgHuM=x+o>#u>sxFrYo&ZBgLzKmc`T4Q`l2n7~*0hA}T8@D{@0jL`+PGKq2Jn?dbN@OUTic z>(3M1wQ{v^v2${>gE(^jI^ol25O+7ltM2Z0mU7llttFpXT1pB%dn#@zBr0n8ROqRt zxTuh&xVWXXq^OLTwdk{}e_r0w;;*Yaxw}07z*dfKt^_nhMXrkct&_#=fN!GwH&$vYt@=l_E3^di3n@+n-WaQzkn zzeRj1U8ivU76QLTd@5b1aQzknzeRj1U8ivU76QLTd@5b1aQzknzeRj1U8ivU76QLT zd@5b1aQzknzeRj1U8ivU76QLTd@5b1aQzknzeRj1U8ivU76QLTd@5b1aQzknzeRj1 zU8ivU76QLTd@5b1aQzknzeRj1U8ivU76QLTd@5b1aQzknzeRj1U8ivU76QLTd@5b1 zaQzknzeRj1U8ivU76QLTd@5b1aQzknzeRj1UH{AB`o}XfR*r-RWjqN_#Qd?A9`Tto zzrKWxgzzOj_iI%;QgSk~v*#$uDJdz)DJZC@FI}LbzDP|$ae@BA#mlsGbaa$742<-& zjF)KXX#ZGCkC>2$g!DWq>3Lcz3M$&)-u_ri?~ETY8!^$<)3x+~s{it9>0t)L_(~`H zHi*1wEyo%#2K(+~U_9dq@D)_xCDO`%t$wsP$&HOyy{zUffB6Z3_}Lm$+F4ld=6t-t zvU&m-jCDa(P($rX6lGD^R`$zd5(2V3yRl0ThjL+&84gl2gZw4PPjezzA=8+)M+L%$ z-{$ipvh+=3V!BU&bEUVAGvLcjQ1KI>EK%zO82q@^2Y+pliSL`+1t}4hKpOALI{`Kx zyP-kbdm=1&qydh1yVG~%=uttzfx(8kG&*I`;0^T3VjsnNvUPE$m+FwA(HAsF*mLW; zve*q{$>3&a{Tq7OygjD)WbKqrE5nJVoh8KH#P?x?WCu7KRA3>^2Ygw#4xVCA6@7e7 zNJO=%0Tv7q=r-}F38s&`GiG4F39RwX|b4d9Pq+O-yD;e9*w0ZP#y8dQ}h;}-VAv(^W<%&%kJM@FL^ ziZy-nY#A1(zQ@t)HQ0_=VHH?DK$2~a=elZ}tY-Q#ar=QNksyWplV@{_dg!y++NyGj zsngsQE2SAI3rQ}Ss$IUr+Ow)UYa)d#u6LYE4p5W|TY_?-#c!iWa|D~ zn~z@9YhT$#sxlr8fwN^rs((HHEshUW)Mp8)r=i_j0v zzxpIuST+?u0+stAd1pYm-mrF#5Iip?W&vAFqmHJI&as`$O&w*%3; zHKSm4p(WUiLxDHCQa+Y(YBfr$90FOKGG;$_oUU+Zz6`Zx6Cu%6F@LPIbLZg^ZTNn% z9Hasa!e9>_8NPR6calt8{g4i`>zOp^l^GL{?fi(x6eLf8^J?!UMTjQ7xR9U;tcSON z3*3Hc6*|>4f-m(%9q%O9K*E$L$A%DF3p7;r%#^9{@0YV;c`2u`UGfJ4mmnr z4KMQAot~SNzvEWt9zTNf7!;W^;)aE(L?&Y5--CB%n%HaFt>^ zhlvVQel5uQ_dwSMy^SedfV{3YmPCZRzxm-Mnf8$CQoBKz2FX~Qt_>T$8qat&4})z5MW{BYLP0e64SUBAjfz-+L$ z_JcjWfV=CHF^^r7<4?WX!nU5*L1I#PdQe00O^)lPLOZQ?MNorJ)0?qgFq7(V{KYQi z5V_I}&wR;(SjBrP_Q6CIQlwbQI5I6OLw zP>bE&*V4Xk;-x=|RBG?+Vs3VOnU~nDcZ_v3>n!F~c7kP4&uOFl3cv*|i^Z2FMHjl} zf{$z_N`79e+v6V22Ei(;_n@O&t`f0Q$esgen|@pt2D~tWNm^t(yYsdDmc=~i{AReb zMUjS`CwoCbajSs4#|hwItzwnFsa2t}QVx4NmEy|ZPV|$?Ntva=#ve5|-xm!v%T*(p zOn8|I+8iC2$(9h)plXQa|MsbK%9C@Z>K%5>*BpYqjj_=~k9`4!va|Lhn`Vl(*qMhb zu>v|<9BB%pu03&ZCOPP`(lz@gN>p^9qywK2Pt9o6F^6WF&F#)Ib5jIu zM2eB0l@aw^;}E9c=m1GIuT1F`wxvGop7J`jcTrw*>ziABZRN3&H#stDb6+NTcIE`| z=I9a(Gw8lO=k3q~1!H+JYTAQPBG38KAUy2=PCEw^cNbpQH25P$Uh@rjp)PXUq*qTL z5@WKWKRt)k)4u3MgQ(`9@#BLEmZR?1RkDi?OBOtDFobznJb(p0N;WboS&Fr)+2h<> zHY;nnT8?1ou21O#esa+J4RKIIX%>YHR7a~01$TZF2#r0O%A4t;POadt6r0gv1+z5> zvK&7zDm&guS+Va&MI#`jUXxh;s-d5uR}=47YTcXP)Mua+3w;EU33GlmDk?Mx`BIA={Uu)D!6cZFQfIc!|MhgC)^Zxfi`#qU85J{`1c zzx2C;Nh-y>`r0W|Bq$jj3~OREIm}^y>=~=YqQ)9lyb7MGU)96b*DnSrs(r~|Y2ZMM z>!oP*yHmg#qedW0Av%L4MN}h&QX@4m>|NdC4{THZ-qb6H*@pzJX+3^#teGR^D+iMy zCeQ%mz9d5BFzJ`bQ#K4WSPHFL*UPhou0J0sEul&1A+ONjc7km$9r{^M{2(kN_&?Dl zxhh|DYt%Nz_%E7CtE7Cd>sd{5hgc{bH<=RviQfg#n$5}DU*S|Z?%L|; zX5~u_lGfEeh}S>)@LisgohLwXU8KpePv@78Rkiw^v0=IPVw>y@PoIP=cdGO>8wyiX zGgI}lHcI>YbXDsGy~mC{-u{S;S0?}!UdD^3RKbQV^@bfvawH=xGY!1$_8Bfcd8Ll* zz`owo7YU!uq)_H);x>XZVr=MP(jh`sSiKPmEa_0X-YXuv?d%}SzJ$5W$(!R-IK_e! zfVD}%?gTiy(Et6)ph$zk632yU$-JP2NP?XJS=O85a)czvEP;}8An_{D>_u%hO!T4} z?(&O;oi|Ve&uiHwGY*rtJA4()A1B7B73Vm08`Nu%tMFn?Ug|SVMJ=%M`p(%3oa^Ko|VTr)~3IguejG zX-T*0&Q0`4#Hq2UDRiBwsuu)vhu29(HZ;~Bh>d08pvQSaengo1h3y#cg?gm7f|>IR z`;3Va<`v#xHdGs{yuZ(odI$5i?TDwNb*b_R@ammcy?Q^~>R3&ESmbKB?&wdjFqPa) z%0ZlhPh{mF7^D&)qwZVK?x{uRQ zBAQZXxP(|tJD>gZARb}1uxRt8o+iw=swB&GagN2yw|HUqt`Y-UXf}y5LloS{ zD)_0Vk8o2@05%18nii2jKS?yWH-^3ul5Ho=Flgs`k4rN*N{nC~j84@bkCrejsUa0D zP$CP6mS}p=x|pe5)Af-ei2^V(@7cbFGemGITQ4%%8YE!f{;3}3PxaJqz@Hk~#Ds5y zGyF&~vjL59L1;F`eM?(?DkmeydT3_$@~pvdk(q-MgZJ87>B4;^{(#m-S}Z9Cmu)m%#RQ@pv0weEOLneQrhxFXu)4Y-dOLcV<@(A|?aiAk|9_Qn@ub-bn) zQjG00=J&HjxZF0g)m`^XlFe;hHkxS{*YGRheOREm_dt> zL#voj^~+)}Z5IO+cd&VZ8{*!iJZ{A{eG6u&&q2e#Vvs-QLP2E0INo_C8+FI3EjB-@d%mKU zPYQWv8k|cL*;iSTWx1zJY1$QUcP)V0w8y_;CiexbhKx@D?S{HK|C#W-!B{$Lf@PA| z4VUzpLpCq^^0xSwAGE5wE0#}h`RMhAmsi zN9?7%Fq^dm3fY&MTzk`Ck?-YR`QAOKA*#8=+IFeVs3B;!6D~DVcs$dxV~~I!FlTE* zl|*B&*d@n#C(41M+~g?=gTYhzCb9-Q{*~WGru?Q(fL$sK*9l-{(V~3xkf3+r%rS=y zEv1)in`j0Uq(5TT5J%r#Obxv}HDhJMrqm9$9eHD_Z;`_Y*7Y9Sr()Aw7*c$(^eiUv z)(~C@CldEX&br>4KJDoumApx`!Do|N<&hSbE>s%ia-0C9Bx4q1 z(7XLo&S+#2eIAuwBJUNXseLhweNVEw;B90P-4O@rhI^Y}j6ZtSG3FDRxtCA{y9*4_Uy>{Cb}Mc9mQ1+7QS|oOQ(`xg z`@ZjqmF}punO!GI`&w1Cy^=|_!{FDS&IJigUJLMJfhxoyeC9%)!BR}?8b`SXi=G=V zK)+qtGnQr6U{+4CM^x!0u9j+GY!G{|l7GuBxBW^pU=~_6bg#%vL`xnV3#ax0kCZh+Q{`96nyL0@sw12jb6T zQD;U`rU=yLNW6*9M8`*S4Xb*O9n4R=hKxphk1w4H;5;jV0WCzoVW$gh@!3vfYY&7d zR(0!3?P@s2R5gTiGwx1!e5!QVJ)TRbp_vSCg_BFnogcUJXZ#V|h)T#7keW~Sbi5JE~@O)mrZrYa()70)WNFBT)O;-2!{q^3AIw}1_ zGrhu31V7ap&ThVucaitCJBSkVY6yA6UTnW_P@QgpSpB+HHRd8#zIL3@W9b#LpdAF& zwONp7)4qq*f(J=bfVEX`Ig9xwES{T`u{<>NPSICoF>%@3Gk~Z7uI7p;_E5BP^CUc| zLCfMeD|7R6%8M>-IrWD1KD`+h0TCQ&q08W)0E;1bf#pgly#z?boWF;bs1t)-=nM9{ z?)7Y~Wmc%as6p+6DOk*Ku5I<&O7AGgj1_(tH`3z8yRU)KMeVd!r(YRpxW-{zVOH&# zoO?X_VL#(%3sOvD`2?6!torVzL)Mj1*%XqGN!iajPIgN(?wor#R9d2-330b^3+HxK zom6-kAK$b)_F{f+f@Xm?0IFfL$i~r3=y4s!DGmERg3Lfd(Z?@xTVn;4_j~jklL@OY z`dx#HqF`-1w?Y3m%P{MhoIUQzo&!s3^CY?rg4c(R(CCN+Hi@lke!vX1c=+t6 zv8F$Fp2_c_%-9>0Wmt`bPwMNJxGv0nZ$phOJZPHS2~iNOFx%}G_+&3VCKojAoY4@| zpT?H5tvH1wMFRe*;U3GxgH?cCk<+n!W2;*Rc``MhmAwmMZ8 z%>q(<~WX(lTy4nqWIup-A7JV!-8 zPC0kVwodV#pI%k`J55$y5iEaI)qj@L%5<$2a>(1ncLIDi8^ed%1MBOh>?oTrgwDl& zmZ~4J{R1Smx}^wPRNu=gMVP^kM2}n$WS2A-{ioh)|>!K?}*kb4buEul)T9B0m_H6 z&V)e#Lg7!#^S>QFC7SIg00mBTzK~%3nXlJ*j&J9n+1?59PV&ULY+Fz5iTk_T5>J2p zYuF&Uo6g0H7TDwujxU^W@OZZQb(><#nn(YIo&MeD{*{$ok@jEvbgIkKkIsoWdV13j zb{2Bi`=M1fhlz6kaszUq$PA>1nFE372$-Q~NKcV?g+35BL#} zJ=KdA1LKScoM>SyTBtf{zf{(+dUcO$vfh^X3NjT=p#knb= zoLwkfT!W*#OlpE&%IXAoX^`m^Zk}=n7K(HOtC=LIjaMH*;%lI_(>;PQnH(toc`%e? z39M#_5*>*OXG;t&Nj9>otVz}ofe%={v>YG!^tHwFsBzGDZ;uKt1#g9)-Sp#Y7~qDL z4gTy=>dC|EhZLK3P^I;*fP_`2Si^dl^e0PMMEdGitc-yTsK}xTh<=^Eu7N`0#{J?t z`Ji!BU4>u_40~@=uO3>}x4}VIR7FJ(b}ndMuiQHVFsX$w*5hrG8Wgs{_YTV^JZ#;)Nr4n5b$oI>I2CFlMLi z%n&T8$#KEX=W%kXoJWoj-YeeZU@AK)K3gA@$B=XS{YxAn5#bO{F%@ zuFk6(4y&r)P{J!yE(Tq?T;jf~huKrLFd_Xij4lr%NI@?b_8P~vz>;R7nexCSgQjHF zBUVb^j^$gl{qbDl>V`2K6^Th-GDBHc@B7@FweuL$XBaK~cyGYlRf3}-Oq^Nh) zymYpGXEF0!_NNMQCMo399<-}o`s**vPLX=A z<)N0VZHs2psIc`#d8>p?Z_98<*Fn6c*#x2gC}e0grk$h7VZTy4CP5{&B8ly)xBVG@ z0+gGWwm7qo2IX2ES{_P6Kh3!w7k3iPVWbiCc!?CFR{~Ub?$-^LBn)m--J&y89}vtC z9<@>yEZn1shrcdI+HVzhDv@`5+}!i(Yh?gKB#hfjVyCohYBOVHkWZpT)yMa^^z~KZ z><`n;k%e`Q=KmNx`1>HjzxrK+J}or0^O14jVm6yLy<^838-ZZaxQeK)U1Mq5K}(J7 zn9(_#U+IV7tO_*pH_5>YlFz@bSR@`KM`Q@_cIUe}7y5rmN-Qtk0WPqad_CHahA34z z7aQ9rUNZjN5KI@#aG~RdmF<#t;zcp!lR0lci0KIsk@2FLV_(AX1VG-~kccK|?w;`H zkGx$y$`0)$k<&05<|E$sJ+RCZzz!ZR*@Lsh&YmL-qkkZ10`@v&*?%8~FknGDe1W4X znwY#wzY2WR%1QIQUo+G+138%A%eI`^A^6%n^mhA@NV4`~@h^2`;dqKoPcj`;+a74s zkE1%U8>~Nfeiw-yEm3TTHdi0a6gS``x zYzvJq+6eC_!$I=AEDVMvlrJ{LOVqhrovO!CP9&3k3G;w2^v3xkm z=r7DgMykmax%(+j{aVlPnr7x=V&$JFt9KF2cz&BGB}w}efKJ(pBe3Pxh$I_L z8|bp65Q|Fe!TlOr;qNBhdy))Bbn%JyQ>MZTd(e>>tTgTl+B^_@-~NccBFmoHKLF3% zRn)T}KY>h^H;F4WRTJ~RB!-OZ2LBqpF8KL?8eN6 z>mv>`CdsSW-C+|Wc~iAd!Eg`d6zrT&-T+}<1P!_U5&ZQf5S3T`J=6&hUXoQl0M#wn zD5OsDcD=gFr`OOYYJ6umTjHrDp5E%P@EZXqveu*5CjgA78r56uqHrtMuFQ5yFc*SU zHDj`{s{V>UOwdkTnc0I@P2>C7FO2>KP3$d5CFQRB1kGmUV?tUkPa924YH%kEv?vI1 z)qUF5i+sEdS!e@%Xu|#NgalgrILLng>i;nfKESg~64Bj+njyUFKSoa=Nj^6J6 z_VmaA2GVK_|9*gWU2M#&od?l*MQfq`s?#|KewI?K@7hxcV-2r3Xe2BDq+)5=txPd+ zaGb7M@uR|6pjiwtB8xq?m}~n(ZOowd@KRR9f|&}mdRS+wgoV$HTmh7jDX`8g)9Gdt$-S%bn*y?iy&svn*84e_zEIlIeN`c_feLMe8K zb|P^5KC*Q}ErM#I#rFFQs|Fhs3ryD!CQVG*#};>4;N|c2CF30AHDHjQ10z4Alb<|V zwGgZ2kU>=mq4B!hmd;T*&|vU%(agjEZ5=9{#1`T4e9&9eJH^;22V92VaY5QC*|*nV zv==p$9Tc^{#@fOnQSe8jLU=Ay&~bcnr)CY(c%Ud*s~*}{i2%F9cA)j}$xIrLVI>8O zHR2J9G|QnNu|2_nxj259f+GfE19=X+Wcr|cPVj|gsGr%KL^%GZ1y1}pr^t`rKKZVX z@+$>9nvkkDv%b=826dLs8!+7PK|J7ij zM-wZ)upK1*vO%70q@H91tTds}BcWu|b+rS+p2ogYUnga({Zgt97DCYUv>#xsvTfbA1gFNv{S=qcy|3+yJcpJKi}D?qZQ6Dw;S16@et+f@;3@PO3bNm~&$Bb`UxCxM z+s~-sjsg{Ro7IMo3+Hesyk$oBUI%@=G^6D7P!L9JT5 z?O91tBa%Z-=3+#5!6l=70g;b zP9DRHD))7EkG|xU(VDFC&V$)Jp4fcTI2SRYuVLgVjVdw9iHSGBB-cboodC?0(P4yM z7=}m_6B0K>jlF45UYM%+sYPa9Z3qD;XnNXODw!yN2}5;NBT0Vxc%%!*MLg}6jxD^R zFTAvph8bk1#Dc1@ogB@WukWfCa?rLbE|%&pYvy)U|1^qZjVbNf6X~3?M}#V|*d`;s zp8)6~T@)x-iD$+u&KT8N_aw0$J}J!{{GpH)|5yq=E3Oq}$FVXA-%<_>kZuqmn5|%x zCcZ;!3?Efq(!RIfjT)~Wkp%NL<7Lp&fo>hkulCv|h2K`#4IFY84PLjSx66)(8M%u@CvFa{oz`q_}YDV%7-;C2<44R4}@)1WapG-bOeLjYR52Q4;)li{yo zGUol8+2j`<6rjS}>hdERq@PVHCfoT4OxsR2&2&+o0N@kg5vvQdm^ZnT;9E8Zj_O|!ny>5Q)>sBmQSB1eSjZp&!|b%Lc-+&Z+tS1M~v5`Iu*ek`@Diitl6J96Dy{(Ly;Xw8Kogw%YcJLb0 z{^+_N#(c!R@P$kqDdCMCbGW!)&ILFBmRlGKd?5Ugm*7`u-x{#Zq>&>y7XncX$7KGy z4+zeVNJ8&&TAcr_&@s)3B)EJn+F^Lg@&R{_YBRM(`RmEb6WRkVD`O-4Y8XVSF46E z-)%CJ+E~)JHiRT|RP^j3c#mpXwqd_Ito5P{>a7Gk&j3eBJL zwO*`JhI_o017Xe+U3m6Z!qKj|2AJ);rj0vKP6oIveYi3vt*B#-|1jnR@VGm};=5v< zN%e`ZC{5XT=%-1e>g144Regqb#&?)gi`=)-!S|!u!YZJ;DW1q`7^)72);U{6YanT} z!bOwUX%Uo2{x(i)v!bH@Z}98jdOv$$!?skm3WJ^p-&yF* zUFtIP7FOWN?@?fodo5L=#2suMeAjRU+71!*C>a6I3C~O=)b%i!2bwaxnw0-G*t>${ z##+7GZ_6>OPga&R=#E}Jw2XEG% zO(pgPyN?9V*`x$LFPTf(5dz#E|H~;Mrem+6PjfI^s`!!qQmXxQ$C6@&rOOEH){9V~ zRkNZ`bAoTb!I9ujTqV)q-zI}SQ(L64Q&2sUPV^C8sy3;9JFdMC5iB$Nump)6wDd2e zS|x1(Pd0xfcKl~vCu{eUAVNgLc+w2&oGAeWhUREnw>F0L&Y6lD0O5d!rYqxxR zH9-2~e^7kZj6)FG#2XnD?jmmvjCY&ok0tX=8dZ>a$6a^CO*$i~=fqt)i|ReLXMTC6 zUCggyqBAl22b$&ZhNMzSLq}mj@b_Zg2Er7hD|@+ChPu(@GWb2QPutdd^2y*``vj@6 zn9u~K0ZWydp!s*#S%TM>|1a*|Jeuu1{uegWnRdFUZWt8PR<&cDT4Jh}w#HUf-4eu- zX*ITpR9gfg(*;GtU@#c8wUbCKNlHjsYYDYSC6Y8zT1!YQ5fbVB&U3flJ?B2>-t*jZ z|9Q^goSd9Ue82fD@Aqr_fZ^dKhNt1cL8ZaNj`x8%k(4<-@VzB&&$6)PPPRu_b_`N? z`B?so%&3N1OoI~xI4k-2{-pnWpG_v9qf3!#924VTJ-jvK%0SC>00|CM*J)+L$IN?Q2{_m1jjwAgZ^gyU&fDPA%1vJIb-$4! z+FPCsZ64wT$J)02lc6(%GA^)$z^7{1*vTW`tfJnwxm}e~RoY9G(Uh*@)I^C?l&LBe=T$41#;ADedbyfUAW0Pt__(V0%Tx@)Ib<9alAKL=7 zVR$s#Wk9bG${&Y11+r>aJ)ij@bdHO|>3rONm>N0>fT*SPx;ZQ3TQ%@rK^J1jdX z5`)GfjXga?J*f#@mF~4L_qa&yR;F6Czt4cVMHVt^)*Zh%&;)da%IGIiDxzEuR#2Db zP9h;>i%^oXXv9*;JX_i_JQ`m&jzDKc9T9qeHaZ+_c-P=UAO)}$gs6!R1qo@DbDpud zfr=7Dh}{c&R^4pU_qaOvL43lUXY?4dqbATbJHq%ix}t~ZKzmg`X+FlXEaQ+rbo2;$`ca*$Tr(o-Gw840SQi6prjalzWIna^I}T<`FmFd>x~ zy)|xNbB*#2xeSG`R%C=W^qktbuYDg&3QDb`?M6>KNs}v-Oi4tQP@2jgR-C*WcVv*i zXuQ^>S$i4EU;Gi9NZTh3(jM~%t~ZhY>(ZoqXRJ=4azQ_1!|jLhXe1*cuxXvXZ%*fQ z(uj7zrH1j+CTjZD56gsHc#;6bIoeA-cL%bWlic6*jW|48BpKxAbsC?L+^dh#x-@P{ z*wy8NFI#%mNa92`)6*hnGxsk`h+mahbs3$|iKiIHT76)*+a2`O;+?6Td2i`}eo2+v zzLH7a*fg+{;Q;PNx`P(XNXo_8zjyPs!6C3iLx6V$0nJ*(ZgLllN38Otld{s3+&aAQBh`@LcAbvAGJWAu9J{OK&w+?p7p{BjitkcU8Jntzsj1mc!G478 z50z|j>Pq?BrdLT5djR0@ZDhdF+A1U%cX^(X0;;KzvuR*xEuWWEd_V+jto}Npx|HWo z_iv%D`wJ@_P)9NiT^L$Mq0NpV6-avYMgumcYR6}6ijFcyQO{~c}e6AkU~XNoXmF# z&%aY_d-zJy030sEGY-|w=b9$d)F`8CMb@UuAqPXYY$w=F3pYmv2fd~+(gIaB`K*1+ zseZcEvX*S@n~x#;Uwkyhv5-9}>$(RQxVqz(@779`7p$FA!=c=+tO3tO&EmpYqkHDA z+8yzw$j)a2vcXfKo!n);BJp&?cqX1My-C}b z++{`kxlvS+Rw-?m)6f&ER^*4bWUKj=(}pS0oOJ^Bdq5g2QhB^)uN>lbe6GdunVK36 z5sorA&9t22b+RFU*!?OZK5KR3^K>0h-%F|k%F!i!Nj=d4Q6=Rr_>AeTuqFwnWe=xU z!UEw1C=SbIsL|Zut5P+jE}M@WU}jV(-s|X(V4?-4M-Vjg)N}FoY~6fb(*OXs|pw5wHUzn0Xb=HZS znRyJbjO*(|Z<{gQfaLK#-YoCNoE%wOUM$+>ND&{6h0_Y-1$%8xv=D9Qoi$D7?p$l8 zScI~@3;wVRlp<0EOSf4v_OjrY2Qc`BqG_#x`w%AP;ue966ByffHu`;m;$FHp|Ae$H^AegI zOMC(2wD+;yV*2|R{5IawCkNYMyVl}01j7&F9lFS%k~?`_ZeIES07%weQ{{ z=hvVgx5w(V)r8<$x@9*bZsJy-|!Amhew5zXVm;6EvCM=JyNSubLBBGe}Qcc@{@a)>Dxx)+UX_3aQ z8;1rFdiShy>)Qu3$()I}e4iQi7y7G#DfN=ZsEmk^S`ZZhY9#jRRIu-(2?T!uHV2%5 zZCj}!4ve&&^O2tWXn!a;HV}tL>vqJ}WtLO&11h<5kkt#JJZ?J3ul}pj8^nvDH6LA- z4~4d-9;8vE&18_ww#;x}!ksL@DKP%y)cgK^UT6OR_YXUBnwXNJP?5rV%tAGj8so)! z(i>OB`%47BiH~koCP%tiWU&EGt#&E>z02iy-0SSkP{K+RW5ctn#lDjVPzJjbPA`NA zwBpSju*n5DPUU36@p=CfV|p~4>T^1|V4kZ+ff;||d?GUglSAta=a;{ipB6cHgb*u5 z$&Z^<_S#BDqgeX+-)FvN`JnP=YL?i|w2h5|sxS86DvqK(J(w0875-PH#3tl9X!7D# zd0k1VkAv!(!`+oxa7I|#>MyKG*}!?7lhf{jpCvxy79OfJszCS97Zx)y?p9<70io`h zH0_hFONLrpdpB^@*t#cLH}6o7&TJysa|Zg^#$8~lBiEoX7c0bpFRBm)rtJ$pGU3G) zNJ|oTlUV7~cK#werlGw^(TPq7ncPyB1F!aBP4z_Yvx;JvbylcZ=k1e&;@9qQeB~ZOiUu5J{`}ccQkHS+$!cZ^hFe z%6$l-*U^PHMl1l|*#W6Q;+W2al!Og)TqQ}s@}2Pc{UdHv5IRk7HZi<6gsi)2%;2}bY zMJYNJ9VD4LD+;;VT4EZMPnqFRqF72qnY}dmlGv)9W4(M)!E?7eSIhP=>{3TYS6$Gv zy6<3N)<5Dp8*|S|TpN>xsiK>E_VIQAbih}oAo?E(r$o!o))~tO=3}`9b-PP7HC?j?;cOB(>hn^~ z*415!a?1%D_c}DSy<`s&bD`F~N~-QXW@6(|wM}-o9|sSw-OkhQFQizp0%)ZCMr!n= zJ|u9n_P!)hq*Ek7W$1o;sof#izw4^jg*e*GPOc7l1oyqidtL!d|g^X5Q|*+tdhjXF0SOjWoAY9KV`2 zkF?gke7dgJ+WYh=WjC2Dm#nrfq z5pNTWhr%u0Z1;ML7rB}t>mC}u?^s#g6QI=|oz!{~{%Wm5^BvAn9u)%ToCx1amGMm< zS*mFGNNKBYS<1Xrq2zDU#F&l$}wr%&QoER!Hk@fUbAO^ zS?L~Z+em;8Q$z`mgZ3vL(Nrt?&iV&-S&w#EXv@7#eciRY>Kpddz>FF8N~0;~xk{Fu zx@#Tg`k38!!CMp0Y_7LNm46fheb&tkj|mfk9z9Eo@qJ=>!C5sVV>W&Uj%uZnn^Kty z9qD6l>Ej5|=o`D^;y~*D6bVrsYP()XjDS}m%tKG;4pS?Y5tfqcknt z<{F@L?r;;AEAoTltGJ}GYT%4|gN|7%fZSwIrOkoB-NfW|7ORsd>?{y;CCeXj)^rb| z>oJk{gNpS=G{-CQW)usdlCMfu+mXZy+Cj{jG=9+I?rh1RaPLB4iYbbCXc9S{CAb{E z^4uf$$D0Oa5i{iORD3@>zr}&ycC7Vsi!1~Z;OFBsI&o8Gyd>?yR4^M9DJU@Ch%3>o0Gi{5+qmX?qAZ zIvKWFUgF9$!h_ceb#&Y{HI`FbWB_d|W_g^b>2=3j)4hJ1!@jeL=|Y*<(%pTeRu@M3 z%$KC$2kc-{esTPjAMw+_(K06jdO_+N&-!Zc15^W&NeLgP>pW&R5l}Yi&DqYv3vx7Q*{PX0B>FZzHaigrMj9Y{cEQ52_uV_Sgf=r}&;Ul8gK#;Z&NX2RX$0 zNddB(8oj@cdl?%_3ZBG9T5Ra}D(ftpDq?Dl<8Resv_)#v7jv3+l^?PDL!npFG8U(-n(1>eCVu|l{~Ho zTh)L^u53nWCCroJeHA-IlcFL@(yrvS7yK$Ui)3fnK3D)Q03JMki%kN6C{ta-(_J2s zeC=;n!L+gP2e#Jn7q>=b)=Nu1E?l29*xyg@+y>Cge3}zrPJ6DRwq5Y4O*D}rclgLV z(jzd$K2?joQiQD{zYzG~qA$1M%3E+Kqq6)Bhgq9@n}2Rz6|z!m`fA2Iq#3`JyoCXD zO>l+=I$9RK+!gEm@WFO~TSJ}~y?_;0k>SO{AwI|4>uIrMYZ)4a`7rkMkFQZ4DKw>&^jUqCGaMACb3#pb63E$4$B_^IPf5lu%9o zeC5`SbA|U~vYcuLS1~-xD2xAKyuCVByku+lY0~Jr|7O_l-jh#|`nf zBE1!-%@_d7)P6EL8uU0wJ&P`u?Mn!7oyA6yr+O%|A=8c8QlNtS|htYM8Ft!!QPrKlcf;2H^e>%*Z`peBl5!nE!cj4 zw86YB2)5T16%n9Qsy&txCy6pF8OA zTIS5MkfrG5ZZkpYw!=-KuZYW54YjVT26ce0Ou1Gig#}-F%rClSOguE&dAJ7^s-Yfh zk=jrDodbvtIpf*4#MxJ9Z7J$b%oC$!<7LBzp1D6l#!Z-ki8mFi{qSfo(CWar291W{ z;Pw$aEonpdXggFdE98Wuh+9QD!#UYGaQ}YzOE6B;-ZU(%_V`z&!{KbXWjQcZdTs!< zpNj0TPz@UfJj#;G^k3~8_L-G`(6i4>`Pq1Qz{^lKIO_Oz zQGsVLK~B9-j@n*zjR2G|I!wQQLJO6*f5A$VQ`YDkqR!GA?wzruJ-=lZKaQMCbv=?% zDC3g4+&{KOyR5WcQzMNYME&#jk65;DV%gzjIE#07V~pD~>2ZE<~aR|o-`>+yoN5!!8Fa>Co3 z!P~_OZ7E2>>##dEfzhgVtif496YDJE9Uo0~4>4Lma7g;RdqWJe!O@Au2DB=7u^~t` zV|^hJV=qv)?_{?0TmK-!4EvC)E!T#3zeu+?38cV-@0;d-jtQ+kVQ!ksM#3;L3P!Rs zspL(95llTaCBmqQa5qB_67wxiJz(s?-&Jf@{M%t5jBw4-L7W7p|ItyKbAo{z zU=c6XBHzXwKewe*UEv;ZBrns~KfZ*)dey&hoX9HOEDhv*RWgzf=0)!oEdMZX{{vx> zc5*>sB7!B$VG)A4^};mRf%&gWlPo=fpeu~tINget51ug=9?J||!J>zHWh8I==(Laa zJEVEj6`A4_od;pTD?J4CSEUYC7jFHZEW5%8M5VU1YggHP=RV81DxeDNdu$) z+A)T4lwI`pMO$_ETz@6Tb_^go?0?VN8tfYl94k$l1$*fyZ{(>Fjy}ukjt0%Fd;+X+ zBqX|Ux@+(WCgz1SaD(5IcE@_D!eYSw1|{1qixv1`#D?qDCcD_4S!-^7@eE~Y2@aXH zGsb)?*3D>j6dOp|m)%oM4+U%L=LF{6ct<#z8$IE9sHrdjS;MdvvR^MLZ-mC%zon}h zE36m%&Bkobecbl%zSsiEe8AOjc@%GciA&IDV;5&3uXFPHvo}(;7>{h(0aI_ZqU@WJ zG5|p2GFeAw;<;$Hx(1Y1A#D#PbQi`&=fX^E+$D*S;7__|xNiriA_ zSM4`BaE8z;W7qg@h*x6pSE7B<@$$$n6Xz1 zm0JcQl%E0P^mQxGLfoNE&rgJ8Ifhu7jEB$;+#)0 zDT)p{>>8mwIJnXvd=o71LgnP-dqbNy6ZS6vzL9m69rO0e(<6~iLl0D>j!R7$2Vw4T z?QzNy_grF2x<-DW_lZr)Z``1NcxDaq4_TPqV%ndWbAoL%Z#6;!pWUTWII)cJMH1{`urdF;A0&MRJ1Sf~1J zuUW@Fb}4IMWwFRkGD?kR_(h_f+j&5feZ*#W48h;ugMW5LeCpZkge6)KSE05Q_rX!K zBfQJ=0mI@<-RxC@&MXVh_T+r|ze&vf|L47FSm}K+waf10xSj62_4A?fq1IS^+5YUx zw+5k5(>&zKo~@fWLnAhZsPA6iGc$0UIN-%ql}aKrj(pidZCOb_ z1?SEJX6H6>$EUjx3t@a;(ePSJs6QoVn>2_V^h0E-4$jasnaAx{UdrHo& zbfqs3l|f z(Ya8ibxlKDqm;l$Uex_=aA#$Uy{0njaD2fv$>5r2i((mwq`0qTwG7(k(Bo!mN|Y65 zXg9$iYerNg;*^COiTe+h)(PUTvrJ3}B4a3H*AAXRBOn5a*c&hSfi0o9{> zi~yxNspY0}u!sMJIdQ2akx*AgNkS9!Hp^B&!Sj9kabTZ*FuU3P9#EqIuDmz%Z5qVKqJE{igs!6XxtrFJ9tL_R1KlU@wv+LV4{Wx>qLkD zf#J0;7$1V)yynCQ_3L9=&Z6{c-47p;Z2cC}&0@Fj;gGLN8M(0adq4@hMJ}p_E@;M+ zgt$(tD9;G|kgrcm@6q~(BnU(|#yf6kXX1ZQ*8E46&HwVTYDv{Rq{Xh}eq4Nna(PY} z(qcn>e|^u9(DMBJ3=Y_T{nA1g>ttdsurLtjB+P<;UUl4xG#*1}k7Z-4)AfyI-Puxb z!iH#Qr%;u#z_k}mBnAePcn9Y+Ei&6F$~vX-NA}lSF!uB&p;|^(AT|*3^{S8kmaH+0ZNP9y=6Q+Mn@Q&-Lj8y60G0s4ek%?i2Z>)R7@ByVExo?Z(a`PcD6 zt^C3n@cek=f77S^FK5obSA1Jq>M>@CQl4j8+m*F|sw0Ce)C#gMe2&iw#O0oCZDY(L zkp#-UCH6)l^4fWwV-*PuoqeK2$wNFE)TgpnTI=4LgeW=Cb1-WIlH3m?ImVgHATn&D zF(c;4Kk0Jq-p3J5lcsNzm?NaI}tf018mp&AGDzj(gSate83EPIWO zUbV_w(?0Ueif0G!d-;_(prU2}HZI=*N(&GPT#eU@Zu?z%?-d^PWg_aAfsmv3ns9r~ zO_t9DWMV$hoVKT(7wsESk4Y#cxrRvbm;l|Ye0^+6gTQpm4$6cX>hn<)KXl}yGnq~s;`$`Y{xh}8S8wMkqFz!53B2T9r| z-dOpc9c{g3ODhkGtmHv2NZg(--fBd|kzN;oRD9#9fz^1P+?DExe;QQg~t*}Moz{5}wmpT#NgknWlI5+6a+m3s5B z`_R)}{=bYg*J3$nEP%Qn;*3|1dX!@89AQO;_&Ax1*Qr5{s8aP<$<$1 zG^X}L5OzO0&VdF_ha()bc2`91!&9N|SAZr&m?0zG7pQltq(I{-!rcP4injZ$N{l7l zdyTM188q;mnr>^*w-OiEte038{NY_6LCg90W)@~ZM#|tku%DCxG+I)ET8C)CZRil= zZN0nXuMt6WVT#?bNTmfG`;eO$%lqUf@Gd~0w&YYi5XpYQ?7 zItST&9B4n)p{ZC#aX1?QTPwys)!ay<={tz);?H$ApzWPR4|IPgjg;1tat&vZCR%fW zw2;ye8?sM14zl|g+^Y;Z&>Zzvl<-xl^Q+PU0_Nn$Hp6ap?)M`$_8*mZT+fQvVZBGN z=juvxZicrc1v7tSj?)(7^2=m>wWPLyE*@a8Z$;t#L!q<`n?@egxpMv&_Ixx%vi0l- zjezu}AIrU#9^s$Wel|oZcexQTN}?-``yXq0g=&Vev>(k`$Im7cU?G%<$tpjxFal+9 zuUB_zOqlt1xE~O7VWaM`{St$%2#(S$E{#T1d(?c<VkasF+arBA^H)XY@`p-8n)BDiiEPXIUi@bCS5$?zK zSw0<_Lfa(;us*)&%32EklNkKTYKzpB{vrZtF>zpVrQG{?roY+^P0G?_0;+J?{OV5A z#dSf4Abyu`(sUOw?G#-%~*+4V_OnTRpQhd6gn;KMC54*Slnrq~T4n=!A~WQpvJ1eCer+jFvvhY8wW zu*!=|ABTi>YHpK?;h5<7_y}xtS8%Z^wYE8Z91Pxs5Yf@?)*ep+$7eRLUbjE~WeY)&BsF0^6(4m{5n zZEKN4ho`&nZ^DGGYN}}u3iF@bb5#(R9#^+_M@1f#47gY*O32OcE{9{+x_4eu*K|A&;Sd%9T?n!Ub6yHATY$2my|wvui*?~fql`x}#!KatkW%*n(w!Ad zmsSQ(73Q^F+`6~!!pq;b5=tw`xXQW=c;w54ye;^MH;#(@RLl+jlnVfqVb1^`^ad{4 zUst3k-W*9J^I5|P3%WPq0-$xc>i6wR_xzIIYPRCZ7d6d@#OL>r? z<6a(uRmM;`T8@-a{HI4E=Ta!lU3n_&;)unSem15e-EmcKds@ZFdBIEph)DPAULIa+ zED!y;Y%VrT)5iKYYelK{Gs)dXi@UyTyuxoJ!|XDCL4PI?GDR8>h5aBuh4+%qzhAgy z#zs$S8pqoWn{AVz<3Q?G!t%z!n*Y8q4YC;Rpb6f$tqye|)=4k;3mnwdVWMdT>6iWq z`#H6t9jBEn<_wm#y+ zcGi5yu9v;eiH;v%@RWl;`l)x@skDhI2tkszJ@elnjrQtgW@;9L-r@0hswcv5C*+$( z_c1%2VCcjjOEwzStUg6}3#0vLm zjt+C7Ys5d8t6MLQDpYwE)&w3S9#5b5XkyiT$S@8l{t-i3J>gm!g_1-`V(H!64xOV? z9%NYVUKOG^f@^Bq(ZTxwg|`Wp%Bu%7IsHuT?Iw7E20sz%G1c9x2QcyD^Tm6mx_lL- zg^7aM?4THZQcNgW9hzQU;~%PS&Q1<=`II&5ts!XyS;dcUqM@}&nYG-0l&0}Px^wV6 zLS^pD>vo7%qYJZ`d%@VntG z%_~DkxstwE@PxY`EL0)&gO}`jXcN&}4klls6OCMw809LRl1;2I6;csz8d}TMe}Hd=AK{(>-u}<;&8(hHdyQF z_;1e!R+`d|KLvY7$#lDbZ5qK7WlOc*#_n&zoUuwVsY@8GbNKFt?_1?oo%@bqjfOp+ zUDydB2gd_k?flr@s5$yK81aejq0x^R&e5YC}8 zIJ20qN^!FUo(|^hkez<8D5UsUW7fP@++S^^V(u)$t=8wMVsU8dB16v%8R$3MKxY0c zLp-l*gQg0sI$^uI2vQKE+uIm&yXjL@4!*U zS0+JZA!%f;WCup0Oq#&^jWVL2`(F9BHii*XJHS zxl}`V0Mbzzv7oDkDvmcbt^gIeRvco1c&2b5eX93U9f$3SDmukEy0lrfV+M5;4ZBH^ z=E$zWdIj5o^Y86PRNd>TV^xZdZ~&E@C+vIq&jR}4 zdFWDkzynrNWjXdXEG_=}Ja;eKw$U`t;^4dbUW)KA(9ghE?I2Kkgs7(@+6t=LSrE9n zW_T8F@!9H7fl3VPHQZ|)kn9QmunVb|Ql{A%N^(OnHdPL;LwmkuRX(W^;Y#VHsazZrhC#X0m(efwO+I?w{{{5j6(-6 zBtwc%{vD!-yH#hL`x5y#I2ujkqM?{0Ek?Kw2w7FPNK8nzDU+@lNH!*RK?Q4{md&Z>j zglS$xXoErH@!q44XEG@U#HKIwMtaBgPS}A~e_f;#?7*COF1C|3zW%=4q&ysV?6=oh z0#{9U+Wop&2J!=y++EXB{JqqXPfXq^wzxAMP8YgS+jWzSU&A0 zt5Wn_MO_@-y?i7T%B&=!1AM*YTIy-?Q+$Mq0ZZcqRpuyc9t-q@2O11>ol)|0Pz{ir zXBo-ckCMa04p+x9feO%=1@3r9Cp0M!!FRW7fA0cBinL`h9h*arAu_BXNlx2S!!@;z zD`Y0;LooeY`9VJMn=iC|qfM$L(R*Cgg&MC(<9=TA>!go<&iX6t!mvKV>KWw?55~$E zT~sF5qgfPo9e~21p*J|ja?#}c#-Cms-Y8_VLU3}HS!GJ^#rq9 zS_qs1n3g7$9hO$eTbtrNFr>nLv% z_KpDBG3QI7!DOM`+ZS`7YB)S()~5L8Y3jA;bLJp>R@l(43;(Ay;{Va#pZqsl*R?3?|cV}cd>Jvi}hs>apKv(m87M zi$bTRUiK5Jb;R7?cQb9(lmo6&FCkTS7)Fj=U5L%6zRDPUJ<1m?l^f6dAUTr3Mq~Ov zOkk+ymBUUMmG(~o<<6*M4DlJwMr!^B8jn+ySNnV1in+te@|%OYFO`26m8y#CAAxop z@7T|r()+W9%-p0wdQOT&pVwy6^- zM*#RrAQnJlyN$zVwTc4T6(%G0^= zeY57L+K=Y-Xa@c9;O}*1@bb37SR4?=QSv}Qr)4nG`ntEKjbuav6TM9hHIN|+?)!gX~vr}1p4HjuLHJi_B-sn_2 z#=ztj$sO-7CrwjK=g4xFXHdDHXVuLoatF|`^0s2hhCJ7oK+DB1L}X4(psqDdwjxKsoPcY80|baZr+lay{oYcX1Twm!P-{FJ(Lwg+#P_|6#oEe4t-thGj}r0 zqpi@5`q*QvEF)^BsV(ayr5RZ>K-SQ@S8Fx{#wo=ns<)zPo{#V2qN# z)npGwe%k!y-TS_p1{W#?C`9sp(y4bur$3h6K;M>i!wx-gcVa+>@Nz9{JgZ!i6MytD zG4trNXv>xw@*D^dO@|~gGwwA^yhQ8vYv6GO+a_|s%r0w71JNv*@{tJ%I7YL-9qiO z0PRV_W|@_>c3T+_IZAV4@5|GPGrWwezjI?BHik}J_5J-*p(W1hbhE^^q(DhRv>Q@b zO6@y~kEc10l3ewv`4tD;PvSbGD9D4`0`^oBV&6{^Zqh4RF+wfivq&ws&9q4W? z5jc0Bl%m9^-nM9eFfB(wtp8fsi!e-MOzKk*9>zbVY6C$WBaH^#Jz;S)FofVu`xR|x zx+la=&+ob$;hbmY%lg!jK7n9q_P4-8PPz5nqvj?(Q&cMxCWjJIx%l~xusNZ-(g@C= zuWtc9&%4&T-KgE@R6hf5&vnztYL5s6>N|3_!|B%#quuvCo!8V*O#m1R!o!ig%hF!H zb|`aXzQ@z&?{HF##c9pccTi?xtE7x@F4u>=OeIB!vj^fzdC4JE)eHk;p_Rm@) zRG!#4m-;ZO%C2&JxE}fi1%6#K99DbPi_mZl2fv*0q{b|3fa4_Vn?1z4Uy5RGgJ!{VZs@2!#Jb|m^ThO;R5%-)mV$q!IK)M!HBWJACS1yLyHw3?0hf6#{Z8D&{JVNV&_O7!G(+%lwGV5cj@!eK8Q#fNp@ow9rjPAh#R!pF;&_ z_0x^dU2dWM>8!&ubMirdf`eBN8}Us04Ps6u_-MqP<>j)9l4qRl#y?wAdNRJ7v$A%l zhDNJTShxK-hW}~ALRPqGg7lD+aLDOE_-5nUW({IF-A<)(_<^!t z`h*pNa^K9SL(7$P6E{GanX*CxgG^o?2aJHh3v07^IPUr^>^sFNSFvXY5cf3@#vDR; zGC}vCr3SsIef^n@J8wsuWfTIWZwqObFu+j>Rt+%AROJ8^M_+)4rq0ECeZ>& z4CjaAQ30dNeirP?MTz?pXZovVZs29ymNq()Z_8?2&&u^*AUhUaD2(aYxs zqh|<-of2kUK;RQUcg@YaNpM+%tImu)?(|6YDMsJLj`6?#it%1}fiqc#&OT64J^A_J z+5q-u?%pGXSJJm;osfTav{*&~su6IEjEB2#jqMrye%{)yyr$^l%AkAwqjSyS>)Hk@ zeP@qlrgjfC4V(V+qr7%zY05ild#3-M`(ldZe(t-q){;wR@rDDprQ09#fDk?>;03> zQ+A_A4EJvmRw_4!Yn=hKH9thQr=+iMs}1!D8!^wz(ankB62#MQV=uSZnAW;Q-p6}s zd$>P#A6+uN(@NP)K$j+gg81WP;sE7-Kxq9ThPbvJCVCbEm8(z0<`!1hyIrUV$@9!R zWVW>W4JAoGCrTBLWURabHqKPrf4(aHl@V}b)BDTWjnV>fQIO;>k))(fs>W;|y~bQy zR@H0ls+wa(ewy2dIBX`bZ)X?Y69%skbh*D9T6O6*?G_Ovf2@SYM!l%;M>niGv}GxS z1ZR)A2rDyxS8QkIJ<*%XCdVt#?`Xk{xMU=eTt97AUQZ zi-vgB6~hkCZK-aP%R?fN5y;Q|Y5HI8tb9s$PuGYxm3iIr)B1PAmY;Ov&yK;>iP767 zlEnJg2+I~W^&R4c?w^fOD=c?*YMs?Ds&?J+DH2srkAE$_lixOq)CnB zKUqn~Tt3|ydr(`ecBYpaP&4JIWd>BXc_(J--aP2~?WJI`e@1;*h|2%Y8BT@|rJRod z9Gs%N6BEbR{#nQ$BW-{CRmqi{C7isK?n?NCgF1l&+0EU;njRK){`8J_OQZ~(I#Z|$ zoWqcu-Oh_WYZDpUhh4#W*;x)Jn95!2hnwO(+KYD&TYSM>D4nMO0oNw2t@+0r#|T7? zfW)TPIr)jS@u`K4mWeiiP>!Js_wtK8dtl!r=%MdBkY!Pgcr@br=pw-ZpYUK6$~YR* zoDYsRH|-xFw;fMa+SI)+y;M;72746k_V%li5|96$R6Pd~F^*A&geS)J0J1!=u_Zf- z#|6|e#C{%^cx{ZPJHLU|#rOyuN3;9@vF#g4i;-2J3()l5rFb@2oV!n58qf+y<;`wQ zG!CEFJ;ITnk^)}pJw5F@`{|a{-JC@5;pBUqek9ptZ;Zck$f z)R{nHBS6ZYm5TY;gJ?S6uB}XZ9c2pr`{Hnyq=F>78DewK1Nqr>;IR9iUX^^gUEtFA zDuLck{LvdN>ll?f@B=IPDo;cUke0gok7;S!CTDSrjs<%Oc0Y#eCH)9-OmZzNn4@3&-Fhn&S;NYesYbAzCI6xj;FLJDuZ6o$dn0lZ$PDOW@1vOxBZFh z9k{)g*5bICA019?sWp%}z5?<9K`Tq`tfkNHIh75~1>eUQ182>FfzuH|FR-$@3_pgaS-cvWP3^dx0ckKy^!9=(%u(M0*c)+o6p);Knax0DQD1IPd)A<%*xkDO zfT7I%5wka1fIHPyux3pnw^eW_+sUC4iDbn&w()XS!t$al=Y==LsgDZIL&OyUffk=T z==-Jg_5>}u)I0toV82?NTv~U`=w@2w-tHnSl@;@Yf(uZj_|gY#Z%h#_aCQ|WA5Y^C z?m@41`fE#lKDzt7xsMK1+3EkmH&o}iEb^ZM%-rvQ+2p&3{s~<={EB{(c70PJ4GuaY2iKm$EEgMwMgai}f45NmjQ;GI-Q?cuIlh$cGLDVb zX9CIhWlSIdki77*rxUkdTl)&JRyyk*-lx)Zo)$@$;MMm6mJ`p72;ej^E5`Qx);(al z5<3CdpD)hqM)^ z?B^7q5sXz0Tl#h#Rd4cwa)B&X?IOG|iho9=h?oIg4_rsjOrfB)8jk@4hOXdAL zA7U<8rJZaZIrJMP3rJ@{LdE&sISMZpN6j)b&)#5ZMEbKRVY-9jf1pvk>tX8!H3GkE zrJEEfm?T{$s`M-`fa*Uxgbgg!xObsw_M?@GxlKNKQZ_2@oeYq-mgw)+Ucn3 zktrq9q6dejb)2fhv>jB{=t&SIck38wq)LbinQ4oblEI)DRGr$!p$GPenp0)P6_iL}c*1h+>pJ)H!l^}jUB>DcX?{$4X?@uer@Y*E7_UbeD z&KgF3y~HQb+QYN#VDAr#75})YJ-Uh7lkRS-=tH^HRPk}vIbK+bthcH*u*~erCex$j`}Lpe3HiLiC#+3%&u1`%%EJ z#^$;D6W``?W}?^~qnnuXbCZcwR0rDNVHGK_xGRb?d7*2Y+7L8R={o zVn{f4I!DiQL1E@1!SD*i{K)1hHguWl-_8lrnNnTt1nXTGRZLn|t+5ir!dI za8cf(*4YJUR+Xx-V9{PcBIig^gtv?x_^YC46K@(Osqy~e>)ekj#dF~rwpuGriWao^_e zKF9C*YHoz-8~%Y~FerC;;SQ2>B))FuZYR%anhQBLpC8(0*5ljIwDgE!H^656Ug|QD znMgn49+<@c)^FIVF3h6t{`>3?P6p?T8fuWbu5s8@HJHbK{JXyRuEmA*2YAK>)$Zlu zl^0x*YQ-R{lWQ<0f-2!WTj9`FjK%q0Eb%+s6;#gJN{+MBC33?+r7lu8aKUiMH#N{V z<~f#%5 z7&q7Rs4+i1C!&)P8H30a!Z6JMeT3`b`R45!?s-sQ^^*v>o{<(+JhK{3iU`uBqaOMv zm1O+LG`~#Fe7~JRlX1OR!GXBJ<8HvT8 z1F9j^3qIP|$lwY?yrc9*bRGwree%Gn%As`Z960Gt*tneBGK<(IzZ^22d-tuiA$gM9 z@+0}3&l3Mljn^;R0xJVLw5 zah4PG1uoGeZ|Oqfhgh55Bur2Oi+Up_5bV-08HM7^2Y7VhN4&RafjBM^@5a3z^F}hu zA~HlQ`=!w$6_x%DeGt3_`J=6@tXyM(s6w4_X*a#~dEPLErTT|y6fq+2P=2f^;3o=VCJr?9yO7H|NBR(-6{#liY7k2^JOb?qf9 ztN3f#!UhdL1{pUWUNf4&`KEy7IK$Cg{=V_(Sl0q8d5o~{@WRK>`}7MRJq}R`Te7(! zEd+hkHiDXIJ|yV2^n&nAeS@e-0U0pOJv-aW=JXh>CF#_fIBpNA7;=4|Lr2;OyJ!PG zA|sJ>nR8IlLzJm2c46ijwNth$j3D3zt7lU&6y}Qg`lXVb^224Gt-oBJR4~d_lNAS$ z9DS+JgiEZ3uVNo%7w%L%~VI{pJIB+$k_)h?Fu%9S+*?MkIl1lG!UYw>Vq zNgzF(SO&<~^itBCEV!LF%D$q@zj4{lZ!js2s)#d7>V8sD~xca^8D^X&0zi+(My)S?u5MUiyA9q#FXyHxq0S zF4{C%97jQ=K!upK^a}|@TyhMCj?0~)@kRZ|v5W7F?ni1+%N`1#7k!M{%zW-NT8lIHg-7yD3OLj9Ebi zclO(t)293pFUSsYH&TOd7~%??h*0^X72 z^oi}i*Gd*+`2MWLYWffc3d|8hD-j3M>`flu4np$voIMEev25IneqsZIG`3bkxDTzs zxwKipUG9V5Mpar+K+eBdCw6+=e1ZRxJl2*xeL>cx2 zej1iZ9tgEEGKME4^%eoNK zgDV|#!F0wH?nv{G^dF=~7{1GnIX8}G+SRJs0n_}QK^f)Gkr`zINj($yDeXg?S)ja* zX`j_d1@7}E#ojvG3nzu{AMgv3Q!lScQm0<6AAR=p-G7;pTU7iXP^}mHfqeMivMluW zD%JkQ5xjEw|84~KcY~|HE5tS(E&iX`w*PSw2JY`pfFIp-Ebw2y`7fXR+aq^pBpm(M zAG-kmyJIO8{U^uz_x#-dc@C@7lB*lfR0T#N*(I^&w5^C}omYG~SK`+wgKfNOKD@!X zPFP|Evl-3a9}5H9P!mw89!CB^gTsF06cFFHy- zy4*{jHX{1{awLy!0q;LPy!s0x_Q*Z# zcG@57q#NlCaiDou{r$DhKPN~JOMkiT_Qx;3h83<)o@rfy~y5eP5$YSy{egA2jd0EDPdVoE;*M=Rbl&S}X>2`u%8oWNnJm?-)s z-{`bc1Ks@9lB|n(=#*9Zny1R)zD4RPykNw}5+DqQ%9cmTrz**sG_%3-@-X0ZIO`~I zPxmMUZRWAYXr5qWHs-?}*`XwjRHosw_ffe)n;C}b+02Y-8b?`MvM!B;3HKHaoO^+6 zh#qPQX{)M%?)ulJ->QMbYS!6dc4?c6`h|Y1vxA5DYxSx#<=usE8^Y6W*VJ}S!iH{a zaXfw)krVne%@cLP)io%lEo9oW;L7QiWx93X#Bk$~!Um@S-EPAOEjKI4-SM=+SAg}g zGC33We&3C3wa1Q{_|6zC0;F}#ZN37RV@25EM=yd1mL|J-hEC5SFaKqP=NA83MKq=o`y zG=(hjv9B>Ocjrspc*?dcatZ8hm{{K{?a&RceW5TQ9{E-xJ&tHwoL5M$mXl9Db- zy|5_jbIo^esjE8?P{9pe-9?7URA<9P1u>pIix@1HP& ztGIcKG9Fa~WlUF{i+X_+^_T{gdANF|XSs!%5MC#RJM4ydYm5_4f3 z?f@u>rhuYOPkg+*0ypJpq*sB)LUu`m)<>CqTMmn9T~&|Cs#z>UuhRV$T4Qd{a8YmX zmgI|Bt?P5lHA|a<0%XRkvB*T(XhDXc$g6;gCz%pVpkj?>$>zMH{1Vs6qhR0dW&7?* z>o1o+DH;eVyb&fL5&z9Zj}~HvzP(QDm-*-uwTY7bVPP0r)2&q&E>L-$eg30^?2p@h zYx#4!YlNoH-rM`JJ@)~^!pfxJO@Rx4ZJ7}-$&T)yUh-@`WIWcfbZE?R_mkD*+(wYW z1Y4tQAV)YgAd=;lEjjsx$H zk7wFip0KsFsj{7$RGe9<|DuF|E?UivClM2G;k73!Yoxo#1z4&VzkiZ0+~V5r=-^R~|u5W(^Cd zbVwvM*dOFGVwJEARWO)IO!8^##c8(Z?HB}93+AkPzDrGGUGhTvHTRLQeBVamWJ)@) zgs1zuu2I&b(D(`2ou*`>D8fN(DAXz`eu}F+%NW2O%fIQ-u~GQ-9Y-BtEDZMXl(ogu)?mj#GLGUZRsgcUgNGB&;cH#ZSs}CwnA=x@xTw~LOXhcQ>L5gzu<~rWASMC#lF89t2y<%xZjOPu!8!8%f&GoGf z+@I;2vUVqUtdm3)hCNli{j3o_A<5_uBPd$kJYrF zw(niban16`^2nTgs)~8m*ojHzd{31wVMK}Q_gfaHOFefVIx-4_npS4?&?5e1c}N7Z zm)#Aoj%>V?YoU0j1<|}=?XSgJJ+aGk2B=+ToSNwE<(fu+hSWqRHk^v_2Rz+GG+as2 zY0xg;B(q0)8;gs)cMgG&AdHgqWt2UmreE$FaKI?~yNUOKx^a#=;m%$45x}Su{t|Dn zQBsR|9Kz)U#vBlTt)ZQdjr4my$9w>L%NZi~l_v@IMpJ{O4ac`24*>NxH1~0Svtq%#xQ+h@bJu{u`zG68vEg;ivt&9edEKDXd3~dm+~gn zU-9Q6WJb8sGonn%<2++2gl}}g+TiW_pamo-zd53s@^QH%E5ejA|6Xms%`#z@HOU-W z?n$uHc_tN}tM9Y2D{`M(H|v5jP1#qNr*n{$>gt7LJ3ll4!3&R8J_*bJnBPK&&;bCj z=aGhYzG$kw9W{Z%d^ak!^TC;Om5a#9ykNTf2kc?@_IJm<|ekj z&VL-UW2gduHHtU)ybr(Y1&-N=HX|DU2(v?G26a$QKc8UsA9}~NkPS)9_HGhgVL~t3`D$z8VgW&k3kmmJ|Zl3xPtK~WIS?~?$ z23ZE&m!IMFC`%7n|FSrDO>C2PILo@bb*OUGha9(`@~$f`Qi~$k7$cbZ%C}0LDp80k zYO-88(htik5B1J$kzA@M#u(AsC8WgSICS|Ensw-}iGaZzIL|l{09~xSCR{!;JfuFQ z`2FG*ZF8#V(_K3OQDU0tw>9lRpa655mcjGHEDUSSbB|BDj&-f7$4%hyw#DuGwRap) z8kVn`w*VkjIWWcB{WCsp+iErj5JbQ~M#Os+JABQ|`0XiTcDRpS2vW9H8dLS(z3gN~ z{JbCweJ`yF2&qJ74CL6V2C1*^91XJk^CZdXMeY^s zW5bA`SGBTiJNGY2!*~F53;35@1@AqD^1DM=D0BDH+dCgUpuce(YtgpX9y6FF!)O7& zp)Njy*|)aaks7qXM%v2EKF)&exL%=jTzbKieRj^%Lr}i3=a)Vq6kYbI4*jYts3C5khniYjLfS*V z+5$r!^uJVAPD364$=W_)k!8y~@_Hou8%~WR*T1u$T|Uso5KR@MLT`_3@A`_x>I$y8 z9{ISO+F}1;V8%Uw2|67(HjGStgULTg^Cx&L#oaK#{_){P~Jqf+lV>O7!!R$IQLipWZLoAymM zPzC!$t9IJoe_$LghCZ7AMDLyG3zL=q;%xuDyz=Bzr@&AC%)|D6ZR50@g|^lZ{8m67 z;uummhx0U}Z!WdLD`RUDjm&|n(5aYQpJA3>NPO?-nrz*Fk>!Kn8>Bx~z4fdfdI0}( zZ;U4L(yYeDrwqW;sPl9}c{+Irk1tH!3^}0IOL8_5z|d7Bw5vb3s$YK(+fjoqFbFCAB$j+IR&*t*5}dhBA1`mq(=q2TloD-F&rx>##yxU>X0d^Z6}-14FT zG0JHgyJw#8t>ADh0Gzv68j%j5Y2icc1f}IpgV$D0vTHLM&?Nabv{Dlw6_u}G>*6Mw znGc7Ozyf1cccW%;n3r>FvF2!OPEhcgs|SgkKk@mut8ebQCF%_O)%UM>#?`z^?teSQ zmrU_I9{k?!cL05Rz+tk3ZVL^Ixt^0APEoSfPgr^wV~x`$Z0Y6~4`*BJYjWp14%SuI zC9Gj0(4MwcwKpdO+uze}EXvzBG*_z8ojl8p!rJK=jXCWfM7K!Tmq<7zz0@1oFqMn- z3qeUpT{xFqlyS4E-?Q9ob3dTH#&;h5k3qoy`9=M|Y@YtVC>Z{;WB=pAoX@Hcy*Ei? z#b-aCr;PyArXE@4kbm94inR$JR$hvL*Vy+lGDFbC4#p(I$7M7M6+7cv9q+>ZI2p<uFP)z4kww?>iurJ`_&m8(w}ARgRp zf8#0qmNUxgE}gx5G3HdlP+>jzKHN<3au8( zhu*h=(nm}gJGdUTcUOt|t^?R@y1$;&D^Kkvm=D%@bxk>MKMh6&jOGgTwuqR&!72g0}5RHv8Sn`MX-910b)_z{EfY&oG}|*8r*w z63^ldWG@cd4z^Ij6(=XR`%b-h`-VSH!A-f#2XBBtLjaOA(RI<5D~!cwnM)EsJRasH)06`B1b{vFe7%{LVg z8}rQtFFELFQDvLA=}@WIt0#_76^tbS&u?Gv!f`Zns*Lttc~5{c4{Tl<$1D%{gSbZ9wCL`=|P3dul5G6j(9U zGW-FmI28><KZ)jlO{6}7jyDX(hlhjQHUSW$aBWN%tK=NMw!bzF?_I!1X$;tioU*2+BMormBHQKa}d zL8u`~H9d<7(!EoTso6SE?!~$$9cW(bE z{g28YUTx%!i`Ww^TtJ(`Ktzq5YDCT8j}><#B|8E2-1)#AN3>pR;~jG$`;BQ3EvIX7 zdUGp?iq?{T<|UQ3RjMN)A|f>|458g&B*}UX@6lt=8&aH3I~aG8g1a> z%Dp#=$i#TU&h2XOilmp*!`YOqQbeG{Mr*J#;J4tCI5kw#6*ZaBpIx6L6EUVySuoq2 z)h=ou+2vQuEu?X-7S10faK42HQ9LhZcRT3D+`99w$^gV0N08lC4OY_|$f1fO8|h)- zDvgQ(eY~s4g4y*U#=~GMYh-9JNBN4q_os^)Kch?u(MW zC?dWQjl@hixzq%uo_jf?rr6(9pURpC6;C}|Cuo;|*y*7*s{USPSus5J{YU_d#5VNW)`}u?*8AXG+GP`cST6@V@?sJ>O&@RvB*9d4q;TrAn zct5`F*Ry>yCjzM>@NKoegJ_;@-4efnT1O0vDqwI!-NY{6E*+_(z}3HA9X!$WyK)&ABHj?e&cCoSzO!v&0B@5uzmus_OB^SCZ+yd&F!)x3A{HaYIh` zP4E4LaBg5)1R*`fuiW-G?H|O%$8?S9ykp|W4aQz`;c5+ksA(7#^_6FLeFvE8jwWl} zOVN{H|3h2y2@P$4%(veto%&~Rio@@_kvJBbc}nMzYhg-`BGN1nyJ`j?RjOWw0gi)pn8#9PxjQZU!46Oyhuv(&V+oI^`tg&uaT@W-6on8 zD>j&jXo22a$0U{G&mD;anNXuRovY&TL@-tKYmKEj-s~#_nM2)J6XS(Cs$Yt~7pv&6 z#Ugx8X36x%!IqlgAiC7bgP*&P7pMF!_B1Ih(`nJyv9Nv zPL==gyBQ^?0Vu`s4kwOwx*MjN zCVg#m;AD+MgME8;zlF^8la0#86Cu`K+>ax9ioYSolY7*-vsCSU)CMw21;(zxztgZ^ z%nlqH@?jqcwJ#%4?AD6Llo;x^NFxMKNPGa($V+=U9nLJtD)pY0eGGJ7^`yk+Yn1VW1U&&Rg!TCJ7rIpIO8Sv0Ax9Ov7M;Xl;G4-MWSEnWzs%I0+1>-y5Wf0v|LhM3TC=i^EjMSgF zP@%5>(;e!b(n;|aE})1d+8jfQrC2Lv9*rhi-#7VZ&kKZy`E0(&_ z?oilOYcW168u|0x&k)WeIG9@|aNji0pRVT>kH7P$D!S@(i#&A4x|Of%-Z@YAO>r=8 zo9_?y0s(#fm2WC{TmTomv`YzS_&|Hjmf^C6v2VR%npHA0wTED?fdvS@|5*1@7<1F7 zh|BVG0Gm4gMm+R6PG~cLA$4g?tGTIheRAd#>1s&-G=cIGz6P4M>aqadXEWLjie-;D% z@BaKys$ZOWs{OSj`ze2GeWF}9+il}(Pznjx!SbpN{3s~|*Dp$y9)xAJ%I}`4Vu24L z4g5!+=H_pJL8G`(vD?`|aW9;(xLnaIDCH8+gvmKkChiFlV-*ubOy09r>?k1F8#--lK;li{O{iG z6FWS@+lgR3m!-)uCP8pKWY0V{N?5H-i}UhUHcw&H5I`c=CQXFpyz5_1 zJXX0d*@myX2|%X|VY=xivK?NAogh9QMyPu7&02}EZCP50sNK?ihR1(-q4gYL(xK>+ zxnzvkAiAmZbVQb{iA9L^)HotIS%4!>=#~CDZ`vIcSh4Jc4jOhbG^zj2VQe;7^qWtz#ukx2YO>{Ew(TXNtX@(Ip^K(ZFlWLD>$o z-($~es&V_O0>h^Cs(L+ZWVJ)I@w-Gq_sk0;W|4vgqltv5HKXM@5-HmJnC7iJ-Y(nG zT19Ab@(k0AS;ob>58%;a*&BrFN>r1H#}L$J;Ko<%*(=C(=gH-}zT5X_ICU8DQct@A zns%wL*URqJYrR{G`@C=PiOfB(V^qY40ztUwX#yRY2ruped6uq2Rq9&QH<^b9)zU<#~o0h9H7bGq~q370c2 zj9*SH6^EDepI2HrmcT8T%QAaf;HR`(zgLd(k~|~2fWsMxh805BLOFuyUM1G%ekZ-h zy52h#$DC`fJ{LT4Ye2tNMbp9LY$qpxvt(WYZ1*S_=AqTG2?PYW4wZCMek*h?k;XM& z@pMvNt4J@1bMB}9+1oB_laU~qWH22q1IgLY7S;Q7UGa{p3F~vtbpw<4;W?mEdxY-( zG%QAV!fW%99nNgnhqGgR5L8X5O1k*mXZhbn%<7CK_K zXZ}8RJu=2&y&mMrWdyRqZgHbzT%+?0?b;kK^_B=YJ+VB{GA}*^gEo(iIADyp?ifOy z@7kKCoAPd;CK5$)X`+R*$*-jmlCa_0Co3+8+uza;+*@sBLLVON57P@281l%A`00^V zg9eu|YBxE;BzS`(AXSR5^4P6;r4tB^>p(~?l0(D?n+Aec5{ZYIrxP_F=`Jn+1I0v2 zk^8EF$?+**`f&Z#GD?*Qzc8CUmBUw2hl^sT5{p2t8RvNU0Yg&o`_8g*jBcV1zI?Gl zxUeD2Ambro7-;7GR(l$7|K_~+3^Chf7dQi+p3x&PSvuTq(LW^y7C4knsa{K5ln?Q< zy%VEkj<`bp_Ow~cgZK#w?B{+outcH4x&W5L%+(drGxI;#_?YHZ!O1SG*X9E zcUk|@Rbnj>g63<+TeaU`)2r zIndj9t4lFFT#*f0v%{ZVrEkgs*ExRGdlSlb9~&tsWaHk=n%|jLeln`Dvgd=$Cm50S zHxzbbA`*lKabbD!KuF^%#fnMI7M3=#(PcPiycUK>6nuN!s9h2TfBzxLvP1t}XD5pg zUTr?Pme~~51iIV8-(o_p(I26PmQ*%D-4gL?G{6r<;o!V>2qceqkIWHS>8 zc7{wwUzl*`Zi)eF7=4$oaiOi+o5fhc=Lb_QF-PmgjU(_~fj3ibG~8>g9L;bTW6)5p z?(z>j#8KntxO7u(dT^ud)w>7RYh@KUB+Db2) zeFQ3`FG}CwqTXDYGvFikc_aJg9z`Ox((hkK!Y(=L%>%)Waa&n+%%rYA0>q&~YYd>y zeWn}Q=(C=hny6!#ikP7=NpBh2isg#$FeheFULK#CC(Zl>Ig0wCR8u~cG~uER53<=N zj&D%~u7X?4VS*}-6Mguj{!FiXH|9Ajx`FLM=(``8(tg@B)VNw9aHR#xttV_BWRJAu znly7&{lyvSe9{x)at_Pu?C|$!UD?-ahyaG{=eZ*p48NqtcUSxuKVdTO#9|784>Q?n zj}PDWH-eU-{8X{jTgKN61Rgev!ZDi^ED94kbq@Qyts32sy>~GOH1i^J(iqY z8=3MOkp+R?kU!v~Ih9H{n%yAQAaeE0jpwr?Y6FHy+G>&pHJ_XwGmmJlhtbR8&kgWK zD$KC2C|>X=oWP&%?)Cxa6A(Cov{}-xO*O8xGqzYI0U{|{x<~YpDJ7jBGOLV_fr=E= zXEUj1HY)kh13l%Vy8V$T-SEpz%Yw;QFpTke9-0K{TDlRF`u|`C);&^)H1#@bdZpj2 zHsNJqWtX?f7o~5f%D*W6MC*}n4O&e&x*4o1yaPjwY4yl2O1}ymVEy01ph&S|ihPk)b>ZnSKUX%jTFh;SevLP29Q;9S)1>`7 z6PrXYzB^!dFnO56|2+T7(J+DL3P*P>S%_+Y6XKHU*=LQw3$6vc#3;xv?{g&Ql4jn! zjL&Y)1ed!0qT1imvks>MiO~&Z!#ijoOj=}3t-)(;Ao6Qqm2a7(p|{V@8u`SzIeVU? z4`>yp5i$=M4W6t`;CSM@>SN$ag69?6@hDL!?sDUKv-=yV4GhUPOm+9?XoevFrpzL( z2EYRPWKA>z6O_1qU9z90Tez+HBBFUsh@{{J!PmTCBMTQsrpp+9mhtHl*BruvoM931 z1m8qcfY_4n3}PA5H#{SYW*dW%1u_PDUR2(a(a_pK&Z2kg29+NYu z+YFc2Hr<@Ngg%Q3r=g;u=Nkv%oG}}&<-~lSqXf4atgK6Or8w5g%PG`{bZZ>st&M*4 z)~iFo2N~2N~ek@g?E~}mzoP-yy5X{2z)TOdwT!zbzAeHBo zM?Np6)w8>%vn%dLtB8}?PnSwOigpQ-ZLQrfshr@IKvoc0Davf$RLnOU1&v$95ZJ(S zkLoN{9k6y2!Cp2~!;4*{E}5GYrZSPw+!xH(`W6%f4(Y?tf{JMIOrPTasAvkjmBqNBLHnJ^Sxi16!pADS`Z;dv}Bv*H+Q}87Y!Bn zvx5}+o|xrR1>SbKh39DjNX_6GozC{}F*)xIyxZ-R_7V98bAls34OW_#n~`&`aF`zD zVUxKxEJF2bbZva_RSSPp55+zwgLFU?e6nbOT z2Wk}dkf|FA;}>FuGSxrsQQ=XTk{vj*niJvBC3Sd{XCNJwnFZMx)|2nU!~u`Zw6>sM zbwU0Z)`$k}j-*cp4X3PfXsu%`Mn47A{`6O3hX-K@t?3BMBM)m6wFvh0elq)y7Hdtwo2+?X|E4@GA?BG~S zRvY2$?JF<))L3`z-r{19Yo55=Pq{wB9Cpp0*+ub}ag9eRaa&szKZvhK>_&NiJA~hR zXxGbgW!@exy4_0{mc(Pqi?k?z-`Sn9=7#BJ0@w=lqtraAlG)=f8Y(QK@2<+`^0nsA z%Nomn3G{uHz|I6ubdMhMi_(A{``QTTQ8Re%)HnX3Yg`}2@JG6(44W^(e2f{DFlyIq zBAE0c>g1w4mmVRn1!jpzgq<|t4ILu774bz$M4Yw^e`uzh!D!S#{|VzF>j+JzIj#}! zKCWfagAEFvs{S5hC_gRD$lE66jU!a0yD>YVNtK@mmzzScPCpt>B%^R@=lwnOJTm+O zeOVOqB&x$-u#@Ogp6~${tv<1}H8*^*=iR^xE7x>p^^hIL`bLdANSvb{AGLr2cnu5` z?*kL7v2wrXI6n89G?JIU(_Pwk%SbRU54iDS^l*mThkR_s3#3)&l4qOll7++eROp`^ zCxc-2yE%x`g0A>;vT4swoN}A?iC+BWa?NS7mS+1NE9~Np$uuXePu#x&K!nNpvef82dl-9B01P6` z^}lu{Wcqe#>e3nMo?>$TN01w9kYwVKeXP*-Z%EU8;4z3=&2Iz=!qHsmzT5q5T&LDK zNswp3t{xEn8c z9v9Xcdb$^ZAtwA+^=86en~`h5a#v)I7Pc`wM9bILGhKBNfc56`P_r zX+;F8P&a(j`xNitTNCgnMHS5UHrt&>F^5r!SQCIe-S45bpYEaF(U4}b`{zGL%epo@O`*Y?eApNuHS1;M;Ym>Y@;F82 zIl0jTsy}tnNVR;2RFj7p<-R^4J^iMaedbwnh~C@wh}#3^Gn%3JZm*<@`z6Trr0xw$ zE)o-kRnVslupXeV7+Frr=o?pr!2xzax}~z zdE9(0wA-|^lfl_w;mhT&tL2fIZy@(e#|4#12Q}Iy_2MH5E4F(U%;_$piV%ZaWHkbWNLqdai%L*A@)mLbGmn^Hqch88GMKiaCn!Nh zq^;j#Oo!}A!Qv_gW3mAgaG@Mo?Iu1%)#hMe{yxxL6K=yXnyCm>AC`E3RXu!>uv3M^ z3Wh1>41!?@o?p@@I_5%N<+J~mi0c0uJN@@UtN*o+sWC%E3YS@=sHl#xnW?10dqlRS(t1Y1qKdlYUQOdLNMwbJG83#0U=xuQ%N{G!M(J3+I9tn~FRQd9ZO=mp zt!U}76q1}l`~7%wnt0-;VN*!#-4+-;l_|GhBviZdiD6ruwn0Y(kj6Dagfg@Xkay&^ zW=eOl``+U1rCCUk2&u*$&CYyeRt_I$&NQe!P9aaSUM{4h7pML>alY5YH1!>+FCy3v z_I8AB9;B@$8lqQll^Zd*n4Zwc=o{#L#Qc(W<#fymG83?cM*KV@va;-je6QDk;eFfc zWsb;jg>Fr6<7pmdFK+HqL$8tCrj?volD8@=^QHuBOTNY}21sv1TtlQIE+D zeeN7}z>VY2=D1`b_ZovhvZah)%*}-t0MD>RQ?#!c_y4yTX zwQ4IOE-V5HDhO5xRM}ctQnhR%QkMV$A+;DFgiBs!hmh0-5D+L>h`?w>RtX_x2@w(! zWfcRm2T33yARv3f5&{Y7T;Dl!&di)M@0snLIrCpmw%<+ey}#e{d!Fy}`EoqGL+riH zGL>hnJokW{C+nqvY$gC!Bx=8yUG=<+V%5ekl(w)^8W1URGrUl+EBef#N}rZ%mL$jD z9{PbKob*{2y-u#TW%>~w4zBJqSxEvjX@`%CRZ~N3Z7QN|TKHcNSc3fW)q?Ru!1>^> z4_!M|Kzo(X&V&s<3X8!|GuX>uweH#r#?bh#wyzkf<2rWR*iB#@{)lnzHqxq$8}Mr# zGsL3`bT&7?;kKKY=KzBRL@E|;q7gb4n4M^QDDg_YSfhw*j=J4mu$48MdSld(7w5Ah z&BMhY&k=_CzK&$g_i6@|B(cU#U=Iw*K_s^a_iYazzfqhLfu_>;8TQN*1GPM92-kxe znCsaQ6nZP&5pzs2pN~&?@-5P@^fg%fCfgz>bTanbh{m+&YJ;ZVHA5a%ijl-GeI3CF ziyMutFS^BTgYVSd^L*Rz~#(|UCV`sFam zk!*oJ+~=YzIIHs4p@J6?jkVhcgD7g^={Cv%DME5r1ifowtBxnlXiq(jkGfsfeBy<$ zAgedZY0B4;ciboOjImQat$lKlXK3Kg4Rb)h4c(Q9bpqq18=HBb#L|hkb&3vj&f^XQ zp3yQ{4jlhF+4r-CVU|Kw;Js;rbv+*b*DjRhMnkQuadT?g}>(M2@xq zOx}u>VD)>ebo#IM*)N#>(m-+FW`7e?cL)oRqVFwT8L(9;i{=A{IyP#xu9mOTgN9C# zjJW!V(L$JDvYKQ;gm(F|?z2#kgRR=sv|`15iu5A;dhg`WD%rJVAMXMNAE=ts@65c> zZ4g4TxYTjBjpwr{C;yH%sYtbkBLt>*;%gm^kJ|+3ZsTMiT^G50X#Yyk+ zsgrW*Gl!(mrPKM5AKsC`a1U?WUd?;9 zSN7(YN4vLVe#)BFh`kp5@@JZ&D}8pRFntHmzg3W3ly_3zno#HwUm-9CJ}29nEiXCCK3AYgCENJ@c35ii*EgURF za~snr4=f;I?Kwjl8fU4kio~3`9ckpLr5ZOQu3?HJzv?aTCR_`KL;AAmLuE=Y7%YY6 zrG40Q{S3>`zbwx{o4VDOTa4yDu$n{S!}i>H*Xu|!zeF#jJFgBQDk*SWSr!*jjsC<%E?=xzuk9=V8i927497E8B($doD4p-9Y1Rv{f{V}8 zXnhRGIOq!}J~ja2YUcrfv&flhbDn6ddxa`ZKjdc>u#x8uVbpQE8lc~99|@wItloNF ztGuKbG*y;!= zf4mv*)0k5XMpd!9!i%1@!MSuSN!ZM6g|o% z>?4h(zhV*Oxxb(U+`MP0rOknor^ht{V6qD?;Z-%}PA9#DpcM}!7i5-R@t6G=#6Qll zm~-Ft$$LGW915|J$lm>0L8_s&t^IGAz9@GV+aRVXJi@uXu!WXLzHcn%64v;@G6-EH}HY zIJ2N2QZuF_+GxzZWx+tM*0Yw(IAv=oYFY}3sEDC4 z0?!k&8TIyarh@!C8<1g?1Zo7Xq92NPPf@y%O0O<|CVYIDoM{L6iB z>tS2G7!sAat`~vEkF7W53w9{F^HiI=V&h^$7cBgX`EI3j3!q*LUKjwwj4x7W!RD?` z`~A|>V()Ia)J}tH4T{#JVJfW+UC6iy3vOljOvqSnVURkYSgvtsa9>NSb01B>=4}0r zy)aHul?q%3Ot9u-5Hr8(+F_yZPRWF4Ptm~5`t&hB%ZeUe`|g_aB!h1&4Lu_>b4ha- zPi}9s-zhiJRbmccjHJGzY2joiM|_?%%h?T+!3Y>IseH0SYL?&iF+2l{9+spFiP5{J85)>O0Yx>p`M!5Y!(4URNje3ws z7cQunnAnExtcgLAf;7{nO!~boJb0xUY_MK^r|*0U&&6cD6ln{BUJNfuuizx+0{x)`6dN>*Q;f#(hb zVC>cn_Y55c9qkjiqxp+sy0Qc*H6AD4hl-v$jQhq8wHSF077*N+kE)(l0P{e_nC$W- zLJ$)C$P_MU)rt~0oAcs+!SwqRn*w2Ew~H8nw1JZc`gfr zdPgk?6}_efA1Pe8hu6o+V` z_HeOk`;alck$XolKjaoCYQLU8&T7t3GvNTG(x@K>El96AGp0IDu)Pj(EqPSJmWCTI z7q`5%BwPdUm3O#f(W)&CNo}f0Ov|3*eT(D0kccB^6#Z8lvj&;n(UM2~=h=Jmi!$a} zv%KKCB?k4i5B8w+9#f@C>S-PwrBI(NDNr_hSlIX^xVzNpFEr(l5N7vevOO%JMCLTQ zHBF$eN34?7zG#vEBGQvX^b&B!q9?gPz+mk#nY{R9`fcv-8z7YF7FQtB7P%k7y;E3- z-RDPRI3Y#uudMi+ru3Ot`7(t-A%G>Q&kmkb36&=!Q>?t*>bBpGvI)5oN)2 zk?h|ej#mke-C5TAmXD4v=P1YbfJMs9IvEc%qUC`3>N>U%(Mk?$A%5l4(kDGHa1rf& z-rsFSh`4RCNt3%)0vZu%Yii!pCMEwj}Xg;h8qNgwhA{JvyHq-Fgx+3i1WisK)4p zV-TtXdg-fXvs}9Sz%7|Ue}^@@1&Au;xz$@+cNxhn^-}PG-D-TSkqG|)sDR?vI@c-RMW(XnCmSob@Y-s#jQFn zq_r;B|7CY@k9+x-HFrxHnEX&qo(n7z%$#5v{q~EEC7$A_3@V zZMHWMhZdCZXV-_WImMMaS(0m`R8$(8dPl5tx@h6QEnph!(P55M>D^*^q_o*zwAtTG z`!?TBd%%hnW5@b%%g4~G1eT&@-^1c3Fo<+T&C~|2^u@3C@Ih7pbl(hzxueJS^v&lp zGeTDt^UHro@9!nuMp1ZgLOtInJWmm@8xq~fvRp&2C}((~jYng@@I9+iO1MC0fjqtW zm-*M3Deni#9}~|79_h^FbsVn=3eA;h_eCyugArH6#ZB#X<#)mR2pV8;uM?3yePD2;Vw~KcYMTM{J zHL|AN&|AA&d*_C(R%FFo^{Fhdd*jtjc-2wo02*r3q1Iy09&r79r#LEA6vQ0q0GGrRzG;LIIaK$Vhtbu04$xh6z=OON4sATgd z{C+BAo3Ed~ka*bFt!&uIKi(qDX^(e8D+n0P>H5;S#zooOvCmY0gdVTjg!po)R`n3p znggstcSm1v7j31}c7Pn+h@geStYz1L)Q+uAwBcX^qeIJo1Y8{RgJs~vAoO;69e=)E zlH4GEJo15cpV2`jLB5ZQFM$NaMTbn~XLGBzo@vO)E0&!^GqJUuQ1348tTYf1+F^cp zd~T58Qdrj*7*i||xM7e{$g*HabOlWrW02XU_AzKO zHDiCY*C+2?_vJ>W$-4QNzzIE7zmb{EgzO@)Ws_qZcv$y_q=J2%%pmA`!J{lfI#%Mp zaZn1wfpg7+!ud_2`~+gy9xr)1^Z{DM=wki6;y%m}m=kT-yeVKKDi8?&9rU>PkILHr z3-8lvSWVMSEpvY4;ZT>E{rl<$x(zSX2L)5#fP$&JDt_#7vklEP#O4~|Po;CgqH?7k z@W3-ZOQwpa6<=EFi85yet7@MmQ;8LuA8lhMrbOha%)*(x8+p^o5ibpVp>FUTb)GgQ z*J9af$@I{==@cwrYrLFf4tn(BK{>rHDAzjY+AaSo82T^Abs%A{iZ$=8%4{+;qXS+0 z?FTF1D3EnrY1vxcZVrGZxsXC+kVO8DOC>FQbvt5RcPma?*5Hhu~kM?p_}z^ z;XuK_F*M3xl*Wdu*VTk>MD`ZSe-P0gGN3UOlxriL9y62?F^~&8fJ61AAanDr=F1b&`(2LrQggn>|N`h+#rgL2lQWU zL;<6+It(F-eOW}wV3itnR!S&$s|OOQ5p^Li>c)oN}Bq8x$U=4)TaLB4@%b=lFvfW#E5|50R#DL zg$_!f)$`mZoLLY~JHuVHSRYo(mDafA2qWC~jt||b;1yvEgE;OGoNwQm4ZJlUAk#G4 zIEtg9p-1+Hv)&#_;Sz54bQ0I?yvh*@*V4DQD{9Xv7Bg>$msVs&J{(q8H%eW#1Iunl zi1*fr`<%wZ>3wpiN)$n`4{L*ajNUxUbB_xpA*Z_xPB&{;peL*AJ`Dv^mh6E+4)&4= zM~avL`|dNNaWYtsqF4Cz>g+q^NX&xs!W3xTZYiT3Fge{WV~ul3a#w`22af*2N1A$( zc$uEHeA3iv5v@E^F^$NNVq2JiQYnSTbJbj102L<2vw67LST$|Mz$0UlH+5?9@#3N{|LK?@DNpZL#RwPH*v`e|de6#!V&+K}CxRDX=+s1% zmZ#J+a&Ux)TMG~WEE4)Z6mb6?O0r*GJzt~mbez=Ij5gj&byDnaG*;Zr!LJMPO|_q% z@9CC0u2MF4f>|Cx0_Y6{73zRZS6X1x6;4xbd^ts_6TGi6pp^YNlDH*BhzkF=KcDiQ zhnm*}%y|HSUFrMpFzo(Te&z4?+G7i)+N%MdjdY7Z6Wza>=l=DTOE)GhN|H9h% z_gr`X)_3o(Q^#db;kU`*<IEDX9-KUSCU^>i-qml7h`K1B! zH5S8XYUvqjQjE`F#L0!wfNYZ`$WmzKkpk3@A!2L7Su3Fq5F}YZ+PrM&euGh$wsqea zjBu%?L-(V#r;_7Nq*W|;pa9g(u*1*1J3)e<{>f}wOtAGCifFO2eg1^aDp>1LI2C>; z3v-Nbk*GP3OQp@M|1|blnVITg7 zmN;#{?q{z3i+?IX=U&plrZn$GsPu=AB36Q>9n6v(>85{$3cB>Ys?GT>RNKe5`i7&% zm@PDJDm56|wcQ-E*`s3okPu~tB8#IDihoBZ)9pSW)fva|}&(Ubc-j$U`khH=g5>``hI;3u2d zb$89|q2Gc2THY?|y;&8+r2!C~kygW|F;ZgGz0CML9blq=ap1e&sgzGY=IA~98f%AJ z$z*Pog;-F<+eW2kt-tw22Uyk*k-hnYyvx)edCRLnpTzVZk%Hx>J{K8nq!0)nLL9bG z)`1@JyU`kd*nWSaO+IxwJ8w$s=t^PMKJtq3p7KR*ls@E_=zQVc8j^LJV`7{dIGeH^ zlHC4SG4TKRwywX$8$(DKJ-#(6XuYwMCDbw7hYb=1Cf1H#0rM!#Y=3)73tjg0^*$1xC|X@OVi$4 z;oa$=-@d2DCx-TI8=J~_%LXzDQiA0qaUatlnk{UkwU73wgkPHlWkO{mR}M&wUt^C0x4xa+Q> zv)BslBbc=!H*q#2lJb); z7%LtB*G<{~;qgCPP<*zXI2dH-81#DepA9H3se&*3lYPa%HL3V_NJ#&m;`aaPW8MDe G@IL~NF9iJn literal 0 HcmV?d00001 From fd6eb7f5f0ba04bc13dfc087a7258a8b40e1a6b2 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 17:49:34 -0700 Subject: [PATCH 19/23] what's new - added PIN reset --- .../whats-new/whats-new-windows-10-version-1703.md | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/windows/whats-new/whats-new-windows-10-version-1703.md b/windows/whats-new/whats-new-windows-10-version-1703.md index f24b26ca0b..e4cf782d35 100644 --- a/windows/whats-new/whats-new-windows-10-version-1703.md +++ b/windows/whats-new/whats-new-windows-10-version-1703.md @@ -156,6 +156,16 @@ The security setting [**Interactive logon: Display user information when the ses A new security policy setting [**Interactive logon: Don't display username at sign-in**](../keep-secure/interactive-logon-dont-display-username-at-sign-in.md) has been introduced in Windows 10 version 1703. This security policy setting determines whether the username is displayed during sign in. It works in conjunction with the **Privacy** setting in **Settings** > **Accounts** > **Sign-in options**. The setting only affects the **Other user** tile. +### Windows Hello for Business + +You can now reset a forgotten PIN without deleting company managed data or apps on devices managed by [Microsoft Intune](https://www.microsoft.com/cloud-platform/microsoft-intune). + +For Windows Phone devices, an adminisrator is able to initiate a remote PIN reset through the Intune portal. + +For Windows desktops, users are able to reset a forgotten PIN through **Settings > Accounts > Sign-in options**. + +For more details, check out [What if I forget my PIN?](../keep-secure/hello-why-pin-is-better-than-password.md#what-if-i-forget-my-PIN?). + ## Update ### Windows Update for Business @@ -166,7 +176,7 @@ Windows Update for Business managed devices are now able to defer feature update ### Windows Insider for Business -We recently the option to download Windows 10 Insider Preview builds using your corporate credentials in Azure Active Directory (AAD). By enrolling devices in AAD, you increase the visibility of feedback submitted by users in your organization – especially on features that support your specific business needs. For details, see [Windows Insider Program for Business](waas-windows-insider-for-business.md). +We recently the option to download Windows 10 Insider Preview builds using your corporate credentials in Azure Active Directory (AAD). By enrolling devices in AAD, you increase the visibility of feedback submitted by users in your organization – especially on features that support your specific business needs. For details, see [Windows Insider Program for Business](../update/waas-windows-insider-for-business.md). ### Optimize update delivery From 442ffe86217df3cffc0fd71973e99c7295a321f4 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 18:02:11 -0700 Subject: [PATCH 20/23] fixed link to whfb pin reset heading --- windows/keep-secure/hello-why-pin-is-better-than-password.md | 1 + windows/whats-new/whats-new-windows-10-version-1703.md | 2 +- 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/windows/keep-secure/hello-why-pin-is-better-than-password.md b/windows/keep-secure/hello-why-pin-is-better-than-password.md index 9166df5000..516d264bef 100644 --- a/windows/keep-secure/hello-why-pin-is-better-than-password.md +++ b/windows/keep-secure/hello-why-pin-is-better-than-password.md @@ -65,6 +65,7 @@ You can provide additional protection for laptops that don't have TPM by enablng 2. Set the number of invalid logon attempts to allow, and then click OK. + ## What if I forget my PIN? Starting with Windows 10, version 1703, devices managed by [Microsoft Intune](https://www.microsoft.com/cloud-platform/microsoft-intune), are be able to reset a forgotten PIN without deleting company managed data or apps. diff --git a/windows/whats-new/whats-new-windows-10-version-1703.md b/windows/whats-new/whats-new-windows-10-version-1703.md index e4cf782d35..4e5cfa56aa 100644 --- a/windows/whats-new/whats-new-windows-10-version-1703.md +++ b/windows/whats-new/whats-new-windows-10-version-1703.md @@ -164,7 +164,7 @@ For Windows Phone devices, an adminisrator is able to initiate a remote PIN rese For Windows desktops, users are able to reset a forgotten PIN through **Settings > Accounts > Sign-in options**. -For more details, check out [What if I forget my PIN?](../keep-secure/hello-why-pin-is-better-than-password.md#what-if-i-forget-my-PIN?). +For more details, check out [What if I forget my PIN?](../keep-secure/hello-why-pin-is-better-than-password.md#what-if-i-forget-my-pin). ## Update From 45026f81b3b8aedffdfca0b0c42caf4e5c910cf9 Mon Sep 17 00:00:00 2001 From: Iaan D'Souza-Wiltshire Date: Thu, 30 Mar 2017 22:54:08 -0700 Subject: [PATCH 21/23] fix link error --- .../keep-secure/deployment-vdi-windows-defender-antivirus.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md b/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md index 7af1a0688c..6c2984299b 100644 --- a/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md +++ b/windows/keep-secure/deployment-vdi-windows-defender-antivirus.md @@ -203,7 +203,7 @@ Quick scans are the preferred approach as they are designed to look in all place See [How to create and deploy antimalware policies: Scheduled scans settings]( https://docs.microsoft.com/en-us/sccm/protect/deploy-use/endpoint-antimalware-policies#scheduled-scans-settings) for details on configuring System Center Configuration Manager (current branch). -See [Schedule scans](schedule-scans-windows-defender-antivirus.md) for other configuration options available for scheduled scans. +See [Schedule scans](scheduled-catch-up-scans-windows-defender-antivirus.md) for other configuration options available for scheduled scans. ### Prevent notifications From 60e987650ecd150c5b5c370e0b58b8d29227e147 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Thu, 30 Mar 2017 23:26:11 -0700 Subject: [PATCH 22/23] waas-configure-wufb review changes --- windows/update/waas-configure-wufb.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/update/waas-configure-wufb.md b/windows/update/waas-configure-wufb.md index f6029dff92..0bfbe6c026 100644 --- a/windows/update/waas-configure-wufb.md +++ b/windows/update/waas-configure-wufb.md @@ -90,7 +90,7 @@ Starting with version 1703, when configuring pause through policy, a start date In cases where the pause policy is first applied after the configured start date has passed, administrators will be able to extend the pause period up to a total of 60 days by configuring a later start date. -With version 1703, pause will provide a more consistent experience: +With version 1703, pausing through the settings app will provide a more consistent experience: - Any active restart notification are cleared or closed - Any pending restarts are canceled - Any pending update installations are canceled @@ -235,11 +235,11 @@ In the Windows Update for Business policies in version 1511, all the deferral ru +Enabling allows user to set deferral periods for upgrades and updates. It also puts the device on CBB (no ability to defer updates while on the CB branch).

**DeferUpgradePeriod**: *0 - 8 months*

**DeferUpdatePeriod**: *1 – 4 weeks*

**Pause**: *enable/disable*
   Enabling will pause both upgrades and updates for a max of 35 days
Group Policy keys
Version 1511 GPO keysVersion 1607 GPO keys
**DeferUpgrade**: *enable/disable*
    -Enabling allows user to set deferral periods for upgrades and updates. It also puts the device on CBB (no ability to defer updates while on the CB branch).

**DeferUpgradePeriod**: *0 - 8 months*

**DeferUpdatePeriod**: *1 – 4 weeks*

**Pause**: *enable/disable*
   Enabling will pause both upgrades and updates for a max of 35 days		**DeferFeatureUpdates**: *enable/disable*

**BranchReadinessLevel**
   Set device on CB or CBB

**DeferFeatureUpdatesPeriodinDays**: *1 - 180 days*

**PauseFeatureUpdates**: *enable/disable*
   Enabling will pause Feature updates for a max of 60 days

**DeferQualityUpdates**: *Enable/disable*

**DeferQualityUpdatesPeriodinDays**: *0 - 30 days*

**PauseQualityUpdates**: *enable/disable*
   Enabling will pause Quality updates for a max of 35 days

**ExcludeWUDrivers**: *enable/disable*
**DeferFeatureUpdates**: *enable/disable*

**BranchReadinessLevel**
   Set device on CB or CBB

**DeferFeatureUpdatesPeriodinDays**: *1 - 180 days*

**PauseFeatureUpdates**: *enable/disable*
   Enabling will pause Feature updates for a max of 60 days

**DeferQualityUpdates**: *Enable/disable*

**DeferQualityUpdatesPeriodinDays**: *0 - 35 days*

**PauseQualityUpdates**: *enable/disable*
   Enabling will pause Quality updates for a max of 35 days

**ExcludeWUDrivers**: *enable/disable*
- +
MDM keys
Version 1511 MDM keysVersion 1607 MDM keys
**RequireDeferUpgade**: *bool*
   Puts the device on CBB (no ability to defer updates while on the CB branch).

**DeferUpgradePeriod**: *0 - 8 months*

**DeferUpdatePeriod**: *1 – 4 weeks*

**PauseDeferrals**: *bool*
   Enabling will pause both upgrades and updates for a max of 35 days		**BranchReadinessLevel**
   Set system on CB or CBB

**DeferFeatureUpdatesPeriodinDays**: *1 - 180 days*

**PauseFeatureUpdates**: *enable/disable*
   Enabling will pause Feature updates for a max of 60 days

**DeferQualityUpdatesPeriodinDays**: *0 - 30 days*

**PauseQualityUpdates**: *enable/disable*
    Enabling will pause Quality updates for a max of 35 days

**ExcludeWUDriversInQualityUpdate**: *enable/disable<*/td>
**RequireDeferUpgade**: *bool*
   Puts the device on CBB (no ability to defer updates while on the CB branch).

**DeferUpgradePeriod**: *0 - 8 months*

**DeferUpdatePeriod**: *1 – 4 weeks*

**PauseDeferrals**: *bool*
   Enabling will pause both upgrades and updates for a max of 35 days		**BranchReadinessLevel**
   Set system on CB or CBB

**DeferFeatureUpdatesPeriodinDays**: *1 - 180 days*

**PauseFeatureUpdates**: *enable/disable*
   Enabling will pause Feature updates for a max of 60 days

**DeferQualityUpdatesPeriodinDays**: *0 - 35 days*

**PauseQualityUpdates**: *enable/disable*
    Enabling will pause Quality updates for a max of 35 days

**ExcludeWUDriversInQualityUpdate**: *enable/disable<*/td>
### Comparing the version 1607 keys to the version 1703 keys From af22f6adc7a548736c990203463a747b04e43df6 Mon Sep 17 00:00:00 2001 From: Jason Gerend Date: Fri, 31 Mar 2017 08:20:13 -0700 Subject: [PATCH 23/23] Fixed typo --- windows/whats-new/whats-new-windows-10-version-1703.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/whats-new/whats-new-windows-10-version-1703.md b/windows/whats-new/whats-new-windows-10-version-1703.md index 4e5cfa56aa..779b105a48 100644 --- a/windows/whats-new/whats-new-windows-10-version-1703.md +++ b/windows/whats-new/whats-new-windows-10-version-1703.md @@ -176,7 +176,7 @@ Windows Update for Business managed devices are now able to defer feature update ### Windows Insider for Business -We recently the option to download Windows 10 Insider Preview builds using your corporate credentials in Azure Active Directory (AAD). By enrolling devices in AAD, you increase the visibility of feedback submitted by users in your organization – especially on features that support your specific business needs. For details, see [Windows Insider Program for Business](../update/waas-windows-insider-for-business.md). +We recently added the option to download Windows 10 Insider Preview builds using your corporate credentials in Azure Active Directory (AAD). By enrolling devices in AAD, you increase the visibility of feedback submitted by users in your organization – especially on features that support your specific business needs. For details, see [Windows Insider Program for Business](../update/waas-windows-insider-for-business.md). ### Optimize update delivery