From 30c52bb0e3dee7231dc8c74de58a9c1ad5cc034f Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 8 May 2019 13:59:46 -0700 Subject: [PATCH 001/138] compare content --- .../compare-commercial-gov.md | 87 +++++++++++++++++++ 1 file changed, 87 insertions(+) create mode 100644 windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md diff --git a/windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md new file mode 100644 index 0000000000..bfa328616b --- /dev/null +++ b/windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md @@ -0,0 +1,87 @@ +--- +title: Compare commercial and government Microsoft Defender ATP +description: +keywords: +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: macapara +author: mjcaparas +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: conceptual +--- + + +# Compare commercial and government Microsoft Defender ATP + +**Applies to:** +- [Windows Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +Microsoft Defender ATP for government uses the same underlying techonologies as commercial Microsoft Defender ATP. The government SKU/version is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for the government version. + + + + + +## Threat & Vulnerability Management +Not supported + +## Attack surface reduction +Not supported + +## Next generation protection + + +## Endpoint detection and response +Not supported + + +## Automated investigation and remediation +Supported + +>[!NOTE] +>Response to Office 365 alerts are not supported. + +## Secure score + + +## Microsoft Threat Experts + + + +## Management and APIs +Not supported + +## Product integrations + +Integrations with the following products are not supported: +- Azure Security Center +- Azure Advanced Threat Protection +- Azure Information Protection +- Office 365 Advanced Threat Protection +- Microsoft Cloud App Security +- Skype +- Intune + + +## Endpoint versions +The following OS versions are supported: + +- Windows 10, version 1709 or later + + +The following OS versions are not supported: +- Windows Server +- Windows 7, 8, 8.1 +- Linux +- macOS +- iOS +- Android + + From 9fd778eb409c2844a4fd740f38ee5b1c04a82e64 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 8 May 2019 15:10:59 -0700 Subject: [PATCH 002/138] space --- .../windows-defender-atp/compare-commercial-gov.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md index bfa328616b..cbc2e19627 100644 --- a/windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/windows-defender-atp/compare-commercial-gov.md @@ -27,8 +27,6 @@ Microsoft Defender ATP for government uses the same underlying techonologies as - - ## Threat & Vulnerability Management Not supported From 48f4f907df03494411c734e38be6320c7d1c412d Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Tue, 21 May 2019 14:30:46 -0700 Subject: [PATCH 003/138] edit supported and not --- windows/security/threat-protection/TOC.md | 4 ++ .../microsoft-defender-atp/TOC.md | 3 ++ .../compare-commercial-gov.md | 47 +++++++------------ 3 files changed, 24 insertions(+), 30 deletions(-) diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index eb9c04d03f..6f2de5d8b7 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -114,6 +114,10 @@ #### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md) #### [Assign user access to the portal](microsoft-defender-atp/assign-portal-access.md) + +#### [Compare commercial and government Microsoft Defender ATP](microsoft-defender-atp/compare-commercial-gov.md) + + #### [Evaluate Microsoft Defender ATP](microsoft-defender-atp/evaluate-atp.md) #####Evaluate attack surface reduction ###### [Hardware-based isolation](windows-defender-application-guard/test-scenarios-wd-app-guard.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/TOC.md b/windows/security/threat-protection/microsoft-defender-atp/TOC.md index cb802c617a..9d2e3ae764 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/TOC.md +++ b/windows/security/threat-protection/microsoft-defender-atp/TOC.md @@ -118,6 +118,9 @@ ### [Data storage and privacy](data-storage-privacy.md) ### [Assign user access to the portal](assign-portal-access.md) +### [Compare commercial and government Microsoft Defender ATP](compare-commercial-gov.md) + + ### [Evaluate Microsoft Defender ATP](evaluate-atp.md) ####Evaluate attack surface reduction ##### [Hardware-based isolation](../windows-defender-application-guard/test-scenarios-wd-app-guard.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md index cbc2e19627..5afd63e71e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md @@ -21,40 +21,39 @@ ms.topic: conceptual # Compare commercial and government Microsoft Defender ATP **Applies to:** -- [Windows Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -Microsoft Defender ATP for government uses the same underlying techonologies as commercial Microsoft Defender ATP. The government SKU/version is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for the government version. +Microsoft Defender ATP for government uses the same underlying technologies as commercial Microsoft Defender ATP. The government SKU/version is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for the government version. +## Endpoint versions +The following OS versions are supported: + +- Windows 10, version 1709 or later + + +The following OS versions are not supported: +- Windows Server +- Windows 7, 8, 8.1 + ## Threat & Vulnerability Management Not supported -## Attack surface reduction -Not supported - -## Next generation protection - - -## Endpoint detection and response -Not supported - ## Automated investigation and remediation -Supported +Response to Office 365 alerts are not supported ->[!NOTE] ->Response to Office 365 alerts are not supported. - -## Secure score +## Live response +ADDED, BUT NOT SURE IF SUPPORTED. ## Microsoft Threat Experts - +Not supported ## Management and APIs -Not supported +NOT SURE WHAT IS SUPPORTED AND NOT. ## Product integrations @@ -68,18 +67,6 @@ Integrations with the following products are not supported: - Intune -## Endpoint versions -The following OS versions are supported: - -- Windows 10, version 1709 or later -The following OS versions are not supported: -- Windows Server -- Windows 7, 8, 8.1 -- Linux -- macOS -- iOS -- Android - From 968ddd4c5be83a4640f12e229cd824de91f16f98 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Tue, 21 May 2019 14:32:50 -0700 Subject: [PATCH 004/138] apis --- .../microsoft-defender-atp/compare-commercial-gov.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md index 5afd63e71e..8a28474cfa 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md @@ -46,14 +46,14 @@ Response to Office 365 alerts are not supported ## Live response -ADDED, BUT NOT SURE IF SUPPORTED. +NOTE: ADDED, BUT NEED TO CHECK IF SUPPORTED. ## Microsoft Threat Experts Not supported ## Management and APIs -NOT SURE WHAT IS SUPPORTED AND NOT. +NOTE: NOT SURE WHAT IS SUPPORTED AND NOT. Keeping here for now. ## Product integrations From bf7190ac4507fb26c39cbc94860efa249c3f2b7c Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 29 May 2019 16:49:51 -0700 Subject: [PATCH 005/138] added win 10 KB versions --- .../microsoft-defender-atp/compare-commercial-gov.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md index 8a28474cfa..204a5049c3 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md @@ -29,8 +29,12 @@ Microsoft Defender ATP for government uses the same underlying technologies as c ## Endpoint versions The following OS versions are supported: -- Windows 10, version 1709 or later +- Windows 10, version 1809 (OS Build 17763.404 with [KB4490481](https://support.microsoft.com/en-us/help/4490481)) +- Windows 10, version 1803 (OS Build 17134.799 with [KB4499183](https://support.microsoft.com/help/4499183)) +- Windows 10, version 1709 (OS Build 16299.1182 with [KB4499147](https://support.microsoft.com/help/4499147)) +>[!NOTE] +>If the patches are not implemented, telemetry is sent to the default public geolocation. If public IPs are blocked then the data will not be sent back to Microsoft Defender ATP. Detection and hunting experience will not be available. If public IPs are allowed, then data will reach non-compliant data centers and will then be forwarded to appropriate data centers. The following OS versions are not supported: - Windows Server From 049c903dec96463e0ba95d5ffa96efcf0366e39c Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Thu, 30 May 2019 15:40:53 -0700 Subject: [PATCH 006/138] update note fendpoint versions section --- .../microsoft-defender-atp/compare-commercial-gov.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md index 204a5049c3..dd5f412778 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md @@ -34,7 +34,7 @@ The following OS versions are supported: - Windows 10, version 1709 (OS Build 16299.1182 with [KB4499147](https://support.microsoft.com/help/4499147)) >[!NOTE] ->If the patches are not implemented, telemetry is sent to the default public geolocation. If public IPs are blocked then the data will not be sent back to Microsoft Defender ATP. Detection and hunting experience will not be available. If public IPs are allowed, then data will reach non-compliant data centers and will then be forwarded to appropriate data centers. +>If patches are not implemented after the machine onboarding, some Microsoft Defender ATP telemetry might be sent to the Microsoft Defender ATP Commercial Cloud. The following OS versions are not supported: - Windows Server From 7a80b7dee7be3ca9d2968d0dbb3b85bfb78ed2c8 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Mon, 1 Jul 2019 14:25:18 -0700 Subject: [PATCH 007/138] update to os, not available etc --- .../compare-commercial-gov.md | 50 ++++++++++++------- 1 file changed, 33 insertions(+), 17 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md index dd5f412778..882f7b7518 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md @@ -17,7 +17,6 @@ ms.collection: M365-security-compliance ms.topic: conceptual --- - # Compare commercial and government Microsoft Defender ATP **Applies to:** @@ -27,41 +26,49 @@ Microsoft Defender ATP for government uses the same underlying technologies as c ## Endpoint versions -The following OS versions are supported: +The following OS versions are available: +- Windows 10, version 1903 - Windows 10, version 1809 (OS Build 17763.404 with [KB4490481](https://support.microsoft.com/en-us/help/4490481)) - Windows 10, version 1803 (OS Build 17134.799 with [KB4499183](https://support.microsoft.com/help/4499183)) - Windows 10, version 1709 (OS Build 16299.1182 with [KB4499147](https://support.microsoft.com/help/4499147)) +- Windows Server, 2019 >[!NOTE] >If patches are not implemented after the machine onboarding, some Microsoft Defender ATP telemetry might be sent to the Microsoft Defender ATP Commercial Cloud. -The following OS versions are not supported: -- Windows Server -- Windows 7, 8, 8.1 +The following OS versions are not available: +- Windows Server 2008 R2 SP1 +- Windows Server 2012 R2 +- Windows Server 2016 +- Windows Server, version 1803 +- Windows 7 SP1 Enterprise +- Windows 7 SP1 Pro +- Windows 8 Pro +- Windows 8.1 Enterprise ## Threat & Vulnerability Management -Not supported +Not available. ## Automated investigation and remediation -Response to Office 365 alerts are not supported +The following capabilities are not available: +- Response to Office 365 alerts +- Live response -## Live response -NOTE: ADDED, BUT NEED TO CHECK IF SUPPORTED. - -## Microsoft Threat Experts -Not supported - ## Management and APIs -NOTE: NOT SURE WHAT IS SUPPORTED AND NOT. Keeping here for now. +The following capabilities are not available: -## Product integrations +- Threat protection report +- Machine health and compliance report +- Integration with third-party products -Integrations with the following products are not supported: + +## Microsoft Threat Protection +Integrations with the following products are not available: - Azure Security Center - Azure Advanced Threat Protection - Azure Information Protection @@ -70,7 +77,16 @@ Integrations with the following products are not supported: - Skype - Intune - +## Microsoft Threat Experts +Not available. + +## Required connectivity settings +You'll need to ensure that traffic from the following are allowed: + +Service location | DNS record +:---|:--- +Common URLs for all locations (Global location) | ```crl.microsoft.com```
```ctldl.windowsupdate.com```
```notify.windows.com``` +Microsoft Defender ATP GCC high specific | ```us4-v20.events.data.microsoft.com```
```winatp-gw-usgt.microsoft.com```
```winatp-gw-usgv.microsoft.com```
```*.blob.core.usgovcloudapi.net``` From 7954838203dc946b1b1f727074293bab82a1b4a4 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Mon, 1 Jul 2019 15:25:19 -0700 Subject: [PATCH 008/138] change to supported for OS versions --- .../microsoft-defender-atp/compare-commercial-gov.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md index 882f7b7518..c37fd9e251 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md @@ -26,7 +26,7 @@ Microsoft Defender ATP for government uses the same underlying technologies as c ## Endpoint versions -The following OS versions are available: +The following OS versions are supported: - Windows 10, version 1903 - Windows 10, version 1809 (OS Build 17763.404 with [KB4490481](https://support.microsoft.com/en-us/help/4490481)) @@ -37,7 +37,7 @@ The following OS versions are available: >[!NOTE] >If patches are not implemented after the machine onboarding, some Microsoft Defender ATP telemetry might be sent to the Microsoft Defender ATP Commercial Cloud. -The following OS versions are not available: +The following OS versions are not supported: - Windows Server 2008 R2 SP1 - Windows Server 2012 R2 - Windows Server 2016 From 6b025e3c860a3a560ad33984e1952f44647729af Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Tue, 2 Jul 2019 17:00:42 -0700 Subject: [PATCH 009/138] Added HoloLens 2 policies --- .../policy-configuration-service-provider.md | 67 ++++++++++++++++++- .../mdm/policy-csp-accounts.md | 14 ++-- .../mdm/policy-csp-applicationmanagement.md | 24 +++++-- .../mdm/policy-csp-authentication.md | 18 +++-- .../mdm/policy-csp-bluetooth.md | 41 +++++++----- .../mdm/policy-csp-browser.md | 45 ++++++++----- .../mdm/policy-csp-connectivity.md | 19 ++++-- .../mdm/policy-csp-devicelock.md | 46 +++++++++---- .../mdm/policy-csp-experience.md | 15 +++-- .../mdm/policy-csp-privacy.md | 23 ++++--- .../mdm/policy-csp-search.md | 14 ++-- .../mdm/policy-csp-security.md | 16 +++-- .../mdm/policy-csp-settings.md | 16 +++-- .../mdm/policy-csp-speech.md | 15 +++-- .../mdm/policy-csp-system.md | 22 ++++-- .../mdm/policy-csp-update.md | 29 ++++++-- .../client-management/mdm/policy-csp-wifi.md | 17 +++-- 17 files changed, 322 insertions(+), 119 deletions(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index e024166ef3..452ba711f4 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -9,7 +9,7 @@ ms.topic: article ms.prod: w10 ms.technology: windows author: manikadhiman -ms.date: 05/01/2019 +ms.date: 07/02/2019 --- # Policy CSP @@ -5157,8 +5157,69 @@ The following diagram shows the Policy configuration service provider in tree fo - [WirelessDisplay/AllowProjectionToPC](./policy-csp-wirelessdisplay.md#wirelessdisplay-allowprojectiontopc) - [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing) + +## Policies supported by HoloLens 2 Development Edition + +- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) +- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) +- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) +- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) +- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) +- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) +- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) +- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) +- [Browser/AllowAutoFill](#browser-allowautofill) +- [Browser/AllowCookies](#browser-allowcookies) +- [Browser/AllowDoNotTrack](#browser-allowdonottrack) +- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) +- [Browser/AllowPopups](#browser-allowpopups) +- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) +- [Browser/AllowSmartScreen](#browser-allowsmartscreen) +- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) +- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) +- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) +- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) +- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) +- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) +- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) +- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) +- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) +- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) +- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) +- [Experience/AllowCortana](#experience-allowcortana) +- [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) +- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) +- [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) +- [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) +- [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) +- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) +- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) +- [Settings/AllowDateTime](#settings-allowdatetime) +- [Settings/AllowVPN](#settings-allowvpn) +- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) +- [System/AllowBuildPreview](#system-allowbuildpreview) +- [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) +- [System/AllowLocation](#system-allowlocation) +- [System/AllowStorageCard](#system-allowstoragecard) +- [System/AllowTelemetry](#system-allowtelemetry) +- [Update/AllowAutoUpdate](#update-allowautoupdate) +- [Update/AllowUpdateService](#update-allowupdateservice) +- [Update/BranchReadinessLevel](#update-branchreadinesslevel) +- [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) +- [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) +- [Update/ManagePreviewBuilds](#update-managepreviewbuilds) +- [Update/PauseFeatureUpdates](#update-pausefeatureupdates) +- [Update/PauseQualityUpdates](#update-pausequalityupdates) +- [Update/ScheduledInstallDay](#update-scheduledinstallday) +- [Update/ScheduledInstallTime](#update-scheduledinstalltime) +- [Update/UpdateServiceUrl](#update-updateserviceurl) +- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) + + + -## Policies supported by Windows Holographic for Business +## Policies supported by HoloLens Commercial Suite - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) - [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) @@ -5207,7 +5268,7 @@ The following diagram shows the Policy configuration service provider in tree fo -## Policies supported by Windows Holographic +## Policies supported by HoloLens Development Edition - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) - [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) diff --git a/windows/client-management/mdm/policy-csp-accounts.md b/windows/client-management/mdm/policy-csp-accounts.md index 25e17cdd51..73cc3ba49a 100644 --- a/windows/client-management/mdm/policy-csp-accounts.md +++ b/windows/client-management/mdm/policy-csp-accounts.md @@ -197,18 +197,24 @@ The following list shows the supported values: - -## Accounts policies supported by Windows Holographic + +## Accounts policies supported by HoloLens 2 Development Edition - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) - + -## Accounts policies supported by Windows Holographic for Business +## Accounts policies supported by HoloLens Commercial Suite - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) + +## Accounts policies supported by HoloLens Development Edition + +- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) + +
Footnotes: diff --git a/windows/client-management/mdm/policy-csp-applicationmanagement.md b/windows/client-management/mdm/policy-csp-applicationmanagement.md index 29d419c3dd..2c824172cb 100644 --- a/windows/client-management/mdm/policy-csp-applicationmanagement.md +++ b/windows/client-management/mdm/policy-csp-applicationmanagement.md @@ -1042,22 +1042,32 @@ XSD: - -## ApplicationManagement policies supported by Windows Holographic + +## ApplicationManagement policies supported by HoloLens 2 Development Edition + +- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) - [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) - [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) -- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) - + + -## ApplicationManagement policies supported by Windows Holographic for Business +## ApplicationManagement policies supported by HoloLens Commercial Suite +- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) - [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) - [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) -- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) + +## ApplicationManagement policies supported by HoloLens Development Edition + +- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) +- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) +- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) + +
Footnotes: @@ -1067,4 +1077,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. -- 6 - Added in the next major release of Windows 10. +- 6 - Added in Windows 10, version 1903. diff --git a/windows/client-management/mdm/policy-csp-authentication.md b/windows/client-management/mdm/policy-csp-authentication.md index 71ca1629b3..6cdbe57b9f 100644 --- a/windows/client-management/mdm/policy-csp-authentication.md +++ b/windows/client-management/mdm/policy-csp-authentication.md @@ -498,18 +498,28 @@ Value type is string. - -## Authentication policies supported by Windows Holographic + + +## Authentication policies supported by HoloLens 2 Development Edition - [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) - +- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) + -## Authentication policies supported by Windows Holographic for Business +## Authentication policies supported by HoloLens Commercial Suite - [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) - [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) + + +## Authentication policies supported by HoloLens Development Edition + +- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) + + +
Footnotes: diff --git a/windows/client-management/mdm/policy-csp-bluetooth.md b/windows/client-management/mdm/policy-csp-bluetooth.md index 51c93e97d7..2f33b6d8b6 100644 --- a/windows/client-management/mdm/policy-csp-bluetooth.md +++ b/windows/client-management/mdm/policy-csp-bluetooth.md @@ -344,30 +344,31 @@ The default value is an empty string. For more information, see [ServicesAllowed + +## Bluetooth policies supported by HoloLens 2 Development Edition + +- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) +- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) + + + +## Bluetooth policies supported by HoloLens Commercial Suite + +- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) +- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) +- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) + + -## Bluetooth policies supported by Windows Holographic +## Bluetooth policies supported by HoloLens Development Edition - [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) - [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) - [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) - -## Bluetooth policies supported by Windows Holographic for Business - -- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) -- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) -- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) -
-Footnotes: - -- 1 - Added in Windows 10, version 1607. -- 2 - Added in Windows 10, version 1703. -- 3 - Added in Windows 10, version 1709. -- 4 - Added in Windows 10, version 1803. -- 5 - Added in Windows 10, version 1809. ## ServicesAllowedList usage guide @@ -481,3 +482,13 @@ Disabling file transfer shall have the following effects - Fsquirt shall not allow receiving of files - Fsquirt shall display error message informing user of policy preventing file transfer - 3rd-party apps shall not be permitted to send or receive files using MSFT Bluetooth API + +
+Footnotes: + +- 1 - Added in Windows 10, version 1607. +- 2 - Added in Windows 10, version 1703. +- 3 - Added in Windows 10, version 1709. +- 4 - Added in Windows 10, version 1803. +- 5 - Added in Windows 10, version 1809. +- 6 - Added in Windows 10, version 1903. \ No newline at end of file diff --git a/windows/client-management/mdm/policy-csp-browser.md b/windows/client-management/mdm/policy-csp-browser.md index b49fa49949..f717ed39d3 100644 --- a/windows/client-management/mdm/policy-csp-browser.md +++ b/windows/client-management/mdm/policy-csp-browser.md @@ -13,10 +13,6 @@ manager: dansimp # Policy CSP - Browser -> [!WARNING] -> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here. - -
@@ -3968,28 +3964,40 @@ Most restricted value: 0 - -## Browser policies supported by Windows Holographic - -- [Browser/AllowDoNotTrack](#browser-allowdonottrack) -- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) -- [Browser/AllowPopups](#browser-allowpopups) -- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) -- [Browser/AllowSmartScreen](#browser-allowsmartscreen) -- [Browser/AllowCookies](#browser-allowcookies) - - - -## Browser policies supported by Windows Holographic for Business + +## Browser policies supported by HoloLens 2 Development Edition - [Browser/AllowAutofill](#browser-allowautofill) +- [Browser/AllowCookies](#browser-allowcookies) - [Browser/AllowDoNotTrack](#browser-allowdonottrack) - [Browser/AllowPasswordManager](#browser-allowpasswordmanager) - [Browser/AllowPopups](#browser-allowpopups) - [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) - [Browser/AllowSmartScreen](#browser-allowsmartscreen) + + + +## Browser policies supported by HoloLens Commercial Suite + +- [Browser/AllowAutofill](#browser-allowautofill) - [Browser/AllowCookies](#browser-allowcookies) - +- [Browser/AllowDoNotTrack](#browser-allowdonottrack) +- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) +- [Browser/AllowPopups](#browser-allowpopups) +- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) +- [Browser/AllowSmartScreen](#browser-allowsmartscreen) + + + +## Browser policies supported by HoloLens Development Edition + +- [Browser/AllowCookies](#browser-allowcookies) +- [Browser/AllowDoNotTrack](#browser-allowdonottrack) +- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) +- [Browser/AllowPopups](#browser-allowpopups) +- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) +- [Browser/AllowSmartScreen](#browser-allowsmartscreen) +
@@ -4000,3 +4008,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. +- 6 - Added in Windows 10, version 1903. diff --git a/windows/client-management/mdm/policy-csp-connectivity.md b/windows/client-management/mdm/policy-csp-connectivity.md index f1fc3f9445..9653e03624 100644 --- a/windows/client-management/mdm/policy-csp-connectivity.md +++ b/windows/client-management/mdm/policy-csp-connectivity.md @@ -966,20 +966,27 @@ ADMX Info: - -## Connectivity policies supported by Windows Holographic + +## Connectivity policies supported by HoloLens 2 Development Edition - [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) - [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) - + -## Connectivity policies supported by Windows Holographic for Business +## Connectivity policies supported by HoloLens Commercial Suite - [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) - [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) + +## Connectivity policies supported by HoloLens Development Edition + +- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) +- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) + +
Footnotes: @@ -989,6 +996,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. - - - +- 6 - Added in Windows 10, version 1903. \ No newline at end of file diff --git a/windows/client-management/mdm/policy-csp-devicelock.md b/windows/client-management/mdm/policy-csp-devicelock.md index 78f0468640..445c12272c 100644 --- a/windows/client-management/mdm/policy-csp-devicelock.md +++ b/windows/client-management/mdm/policy-csp-devicelock.md @@ -1210,34 +1210,51 @@ Most restricted value is 0. - -## DeviceLock policies supported by Windows Holographic + +## DeviceLock policies supported by HoloLens 2 Development Edition +- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) - [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) +- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) +- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) +- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) - [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) - [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) -- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) -- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) -- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) - [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) -- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) -- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) - +- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) + + -## DeviceLock policies supported by Windows Holographic for Business +## DeviceLock policies supported by HoloLens Commercial Suite +- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) - [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) +- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) +- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) - [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) - [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) -- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) -- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) -- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) - [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) -- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) -- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) + +## DeviceLock policies supported by HoloLens Development Edition + +- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) +- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) +- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) +- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) +- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) +- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) +- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) +- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) + + +
Footnotes: @@ -1247,3 +1264,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. +- 6 - Added in Windows 10, version 1903. diff --git a/windows/client-management/mdm/policy-csp-experience.md b/windows/client-management/mdm/policy-csp-experience.md index a342fd84c7..a0ee1d7bf0 100644 --- a/windows/client-management/mdm/policy-csp-experience.md +++ b/windows/client-management/mdm/policy-csp-experience.md @@ -1642,18 +1642,25 @@ Supported values: - -## Experience policies supported by Windows Holographic + +## Experience policies supported by HoloLens 2 Development Edition - [Experience/AllowCortana](#experience-allowcortana) - +- [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) + -## Experience policies supported by Windows Holographic for Business +## Experience policies supported by HoloLens Commercial Suite - [Experience/AllowCortana](#experience-allowcortana) + +## Experience policies supported by HoloLens Development Edition + +- [Experience/AllowCortana](#experience-allowcortana) + +
Footnotes: diff --git a/windows/client-management/mdm/policy-csp-privacy.md b/windows/client-management/mdm/policy-csp-privacy.md index 3395ba9cee..df7adff044 100644 --- a/windows/client-management/mdm/policy-csp-privacy.md +++ b/windows/client-management/mdm/policy-csp-privacy.md @@ -13,10 +13,6 @@ manager: dansimp # Policy CSP - Privacy -> [!WARNING] -> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here. - -
@@ -4856,18 +4852,27 @@ ADMX Info: - -## Privacy policies supported by Windows Holographic + +## Privacy policies supported by HoloLens 2 Development Edition - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) - +- [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) +- [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) +- [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) + -## Privacy policies supported by Windows Holographic for Business +## Privacy policies supported by HoloLens Commercial Suite - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) + +## Privacy policies supported by HoloLens Development Edition + +- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) + +
Footnotes: @@ -4877,4 +4882,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. -- 6 - Added in the next major release of Windows 10. +- 6 - Added in Windows 10, version 1903. diff --git a/windows/client-management/mdm/policy-csp-search.md b/windows/client-management/mdm/policy-csp-search.md index d5903f1493..ea2a4752bd 100644 --- a/windows/client-management/mdm/policy-csp-search.md +++ b/windows/client-management/mdm/policy-csp-search.md @@ -921,18 +921,24 @@ The following list shows the supported values: - -## Search policies supported by Windows Holographic + +## Search policies supported by HoloLens 2 Development Edition - [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) - + -## Search policies supported by Windows Holographic for Business +## Search policies supported by HoloLens Commercial Suite - [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) + +## Search policies supported by HoloLens Development Edition + +- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) + +
Footnotes: diff --git a/windows/client-management/mdm/policy-csp-security.md b/windows/client-management/mdm/policy-csp-security.md index 4467309f6d..1d8f50371c 100644 --- a/windows/client-management/mdm/policy-csp-security.md +++ b/windows/client-management/mdm/policy-csp-security.md @@ -744,18 +744,24 @@ The following list shows the supported values: - -## Security policies supported by Windows Holographic + +## Security policies supported by HoloLens 2 Development Edition - [Security/RequireDeviceEncryption](#security-requiredeviceencryption) - + -## Security policies supported by Windows Holographic for Business +## Security policies supported by HoloLens Commercial Suite - [Security/RequireDeviceEncryption](#security-requiredeviceencryption) + +## Security policies supported by HoloLens Development Edition + +- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) + +
Footnotes: @@ -765,4 +771,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. -- 6 - Added in the next major release of Windows 10. +- 6 - Added in Windows 10, version 1903. diff --git a/windows/client-management/mdm/policy-csp-settings.md b/windows/client-management/mdm/policy-csp-settings.md index cecaec5871..2752f5a0bb 100644 --- a/windows/client-management/mdm/policy-csp-settings.md +++ b/windows/client-management/mdm/policy-csp-settings.md @@ -844,20 +844,27 @@ To validate on Desktop, do the following: - -## Settings policies supported by Windows Holographic + +## Settings policies supported by HoloLens 2 Development Edition - [Settings/AllowDateTime](#settings-allowdatetime) - [Settings/AllowVPN](#settings-allowvpn) - + -## Settings policies supported by Windows Holographic for Business +## Settings policies supported by HoloLens Commercial Suite - [Settings/AllowDateTime](#settings-allowdatetime) - [Settings/AllowVPN](#settings-allowvpn) + +## Settings policies supported by HoloLens Development Edition + +- [Settings/AllowDateTime](#settings-allowdatetime) +- [Settings/AllowVPN](#settings-allowvpn) + +
Footnotes: @@ -867,3 +874,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. +- 6 - Added in Windows 10, version 1903. diff --git a/windows/client-management/mdm/policy-csp-speech.md b/windows/client-management/mdm/policy-csp-speech.md index 9d1d87faa3..cdf2f3ceef 100644 --- a/windows/client-management/mdm/policy-csp-speech.md +++ b/windows/client-management/mdm/policy-csp-speech.md @@ -87,18 +87,24 @@ The following list shows the supported values: - -## Speech policies supported by Windows Holographic + +## Speech policies supported by HoloLens 2 Development Edition - [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) - + -## Speech policies supported by Windows Holographic for Business +## Speech policies supported by HoloLens Commercial Suite - [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) + +## Speech policies supported by HoloLens Development Edition + +- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) + +
Footnotes: @@ -108,3 +114,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. +- 6 - Added in Windows 10, version 1903. diff --git a/windows/client-management/mdm/policy-csp-system.md b/windows/client-management/mdm/policy-csp-system.md index 99b3c5e4f3..7eb242134e 100644 --- a/windows/client-management/mdm/policy-csp-system.md +++ b/windows/client-management/mdm/policy-csp-system.md @@ -1581,20 +1581,30 @@ The following list shows the supported values: - -## System policies supported by Windows Holographic + +## System policies supported by HoloLens 2 Development Edition -- [System/AllowTelemetry](#system-allowtelemetry) +- [System/AllowBuildPreview](#system-allowbuildpreview) +- [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) - [System/AllowLocation](#system-allowlocation) - +- [System/AllowStorageCard](#system-allowstoragecard) +- [System/AllowTelemetry](#system-allowtelemetry) + -## System policies supported by Windows Holographic for Business +## System policies supported by HoloLens Commercial Suite -- [System/AllowTelemetry](#system-allowtelemetry) - [System/AllowLocation](#system-allowlocation) +- [System/AllowTelemetry](#system-allowtelemetry) + +## System policies supported by HoloLens Development Edition + +- [System/AllowLocation](#system-allowlocation) +- [System/AllowTelemetry](#system-allowtelemetry) + +
Footnotes: diff --git a/windows/client-management/mdm/policy-csp-update.md b/windows/client-management/mdm/policy-csp-update.md index e4c57fa46a..60efe0b047 100644 --- a/windows/client-management/mdm/policy-csp-update.md +++ b/windows/client-management/mdm/policy-csp-update.md @@ -3958,21 +3958,25 @@ ADMX Info: - -## Update policies supported by Windows Holographic + +## Update policies supported by HoloLens 2 Development Edition - [Update/AllowAutoUpdate](#update-allowautoupdate) - [Update/AllowUpdateService](#update-allowupdateservice) -- [Update/RequireDeferUpgrade](#update-requiredeferupgrade) -- [Update/RequireUpdateApproval](#update-requireupdateapproval) +- [Update/BranchReadinessLevel](#update-branchreadinesslevel) +- [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) +- [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) +- [Update/ManagePreviewBuilds](#update-managepreviewbuilds) +- [Update/PauseFeatureUpdates](#update-pausefeatureupdates) +- [Update/PauseQualityUpdates](#update-pausequalityupdates) - [Update/ScheduledInstallDay](#update-scheduledinstallday) - [Update/ScheduledInstallTime](#update-scheduledinstalltime) - [Update/UpdateServiceUrl](#update-updateserviceurl) - + -## Update policies supported by Windows Holographic for Business +## Update policies supported by HoloLens Commercial Suite - [Update/AllowAutoUpdate](#update-allowautoupdate) - [Update/AllowUpdateService](#update-allowupdateservice) @@ -3984,6 +3988,19 @@ ADMX Info: + +## Update policies supported by HoloLens Development Edition + +- [Update/AllowAutoUpdate](#update-allowautoupdate) +- [Update/AllowUpdateService](#update-allowupdateservice) +- [Update/RequireDeferUpgrade](#update-requiredeferupgrade) +- [Update/RequireUpdateApproval](#update-requireupdateapproval) +- [Update/ScheduledInstallDay](#update-scheduledinstallday) +- [Update/ScheduledInstallTime](#update-scheduledinstalltime) +- [Update/UpdateServiceUrl](#update-updateserviceurl) + + + ## Update policies supported by IoT Core diff --git a/windows/client-management/mdm/policy-csp-wifi.md b/windows/client-management/mdm/policy-csp-wifi.md index ec997ee27b..26db9f4503 100644 --- a/windows/client-management/mdm/policy-csp-wifi.md +++ b/windows/client-management/mdm/policy-csp-wifi.md @@ -391,18 +391,24 @@ Supported operations are Add, Delete, Get, and Replace. - [Wifi/AllowWiFi](#wifi-allowwifi) - -## Wifi policies supported by Windows Holographic + +## Wifi policies supported by HoloLens 2 Development Edition - [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) - - + + -## Wifi policies supported by Windows Holographic for Business +## Wifi policies supported by HoloLens Commercial Suite - [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) + +## Wifi policies supported by HoloLens Development Edition + +- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) + + ## Wifi policies supported by IoT Core @@ -427,3 +433,4 @@ Footnotes: - 3 - Added in Windows 10, version 1709. - 4 - Added in Windows 10, version 1803. - 5 - Added in Windows 10, version 1809. +- 6 - Added in Windows 10, version 1903. From e2639c972cfeb8f8880eabae7a201103413021af Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 3 Jul 2019 08:02:34 -0700 Subject: [PATCH 010/138] update file name and other details --- ...re-commercial-gov.md => commercial-gov.md} | 21 ++++++++++--------- 1 file changed, 11 insertions(+), 10 deletions(-) rename windows/security/threat-protection/microsoft-defender-atp/{compare-commercial-gov.md => commercial-gov.md} (64%) diff --git a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md similarity index 64% rename from windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md rename to windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index c37fd9e251..341a8c2d5f 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/compare-commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -1,7 +1,7 @@ --- -title: Compare commercial and government Microsoft Defender ATP -description: -keywords: +title: Microsoft Defender ATP in Azure Government +description: Learn about the requirements and the available Microsoft Defender ATP capabilities in Azure Government +keywords: government, requirements, capabilities, azure, defender, defender atp, mdatp search.product: eADQiWindows 10XVcnh search.appverid: met150 ms.prod: w10 @@ -22,7 +22,7 @@ ms.topic: conceptual **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -Microsoft Defender ATP for government uses the same underlying technologies as commercial Microsoft Defender ATP. The government SKU/version is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for the government version. +Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) in Azure Government uses the same underlying technologies as commercial Microsoft Defender ATP. This offering is currently available to US GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Azure Government version. ## Endpoint versions @@ -32,7 +32,7 @@ The following OS versions are supported: - Windows 10, version 1809 (OS Build 17763.404 with [KB4490481](https://support.microsoft.com/en-us/help/4490481)) - Windows 10, version 1803 (OS Build 17134.799 with [KB4499183](https://support.microsoft.com/help/4499183)) - Windows 10, version 1709 (OS Build 16299.1182 with [KB4499147](https://support.microsoft.com/help/4499147)) -- Windows Server, 2019 +- Windows Server, 2019 (with [KB4490481](https://support.microsoft.com/en-us/help/4490481)) >[!NOTE] >If patches are not implemented after the machine onboarding, some Microsoft Defender ATP telemetry might be sent to the Microsoft Defender ATP Commercial Cloud. @@ -47,13 +47,14 @@ The following OS versions are not supported: - Windows 8 Pro - Windows 8.1 Enterprise +The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our Azure Government environment, there are some capabilities not yet available that we’d like to highlight. These are the known gaps as of August 2019: ## Threat & Vulnerability Management -Not available. +Not currently available. ## Automated investigation and remediation -The following capabilities are not available: +The following capabilities are not currently available: - Response to Office 365 alerts - Live response @@ -67,8 +68,8 @@ The following capabilities are not available: - Integration with third-party products -## Microsoft Threat Protection -Integrations with the following products are not available: +## Integrations +Integrations with the following Microsoft products are not currently available: - Azure Security Center - Azure Advanced Threat Protection - Azure Information Protection @@ -78,7 +79,7 @@ Integrations with the following products are not available: - Intune ## Microsoft Threat Experts -Not available. +Not currently available. ## Required connectivity settings You'll need to ensure that traffic from the following are allowed: From 3c77dabb9d641648c7d3db5351bda25a6a49da4d Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 3 Jul 2019 08:05:49 -0700 Subject: [PATCH 011/138] update TOC --- windows/security/threat-protection/TOC.md | 2 +- .../security/threat-protection/microsoft-defender-atp/TOC.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index b75d914b47..87abacb1bf 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -117,7 +117,7 @@ #### [Assign user access to the portal](microsoft-defender-atp/assign-portal-access.md) -#### [Compare commercial and government Microsoft Defender ATP](microsoft-defender-atp/compare-commercial-gov.md) +#### [Microsoft Defender ATP in Azure Government ](microsoft-defender-atp/commercial-gov.md) #### [Evaluate Microsoft Defender ATP](microsoft-defender-atp/evaluate-atp.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/TOC.md b/windows/security/threat-protection/microsoft-defender-atp/TOC.md index 78996ebff7..4224dfcfad 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/TOC.md +++ b/windows/security/threat-protection/microsoft-defender-atp/TOC.md @@ -119,7 +119,7 @@ ### [Data storage and privacy](data-storage-privacy.md) ### [Assign user access to the portal](assign-portal-access.md) -### [Compare commercial and government Microsoft Defender ATP](compare-commercial-gov.md) +### [Microsoft Defender ATP in Azure Government ](commercial-gov.md) ### [Evaluate Microsoft Defender ATP](evaluate-atp.md) From 4bc8d4f4010d8a5b474b1f9abf8464080458594f Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Wed, 3 Jul 2019 10:32:51 -0700 Subject: [PATCH 012/138] Added updates for HoloLens 2 --- .../mdm/configuration-service-provider-reference.md | 8 ++++---- .../mdm/new-in-windows-mdm-enrollment-management.md | 7 +++++++ 2 files changed, 11 insertions(+), 4 deletions(-) diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md index 06824c4c4a..9d4e5ce32b 100644 --- a/windows/client-management/mdm/configuration-service-provider-reference.md +++ b/windows/client-management/mdm/configuration-service-provider-reference.md @@ -23,7 +23,7 @@ For information about the bridge WMI provider classes that map to these CSPs, se Additional lists: -- [List of CSPs supported in Windows Holographic](#hololens) +- [List of CSPs supported in HoloLens devices](#hololens) - [List of CSPs supported in Microsoft Surface Hub](#surfacehubcspsupport) - [List of CSPs supported in Windows 10 IoT Core](#iotcoresupport) @@ -2681,12 +2681,12 @@ You can download the DDF files for various CSPs from the links below: - [Download all the DDF files for Windows 10, version 1607](https://download.microsoft.com/download/2/3/E/23E27D6B-6E23-4833-B143-915EDA3BDD44/Windows10_1607_DDF.zip) -## CSPs supported in Windows Holographic +## CSPs supported in HoloLens devices -The following list shows the configuration service providers supported in Windows Holographic editions. +The following list shows the CSPs supported in HoloLens devices. -| Configuration service provider | Windows Holographic edition | Windows Holographic for Business edition | +| Configuration service provider | HoloLens Development Edition | HoloLens Commercial Suite | |--------|--------|------------| | [AccountManagement CSP](accountmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | | [Accounts CSP](accounts-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) diff --git a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md index f224b4242c..96240a7bf1 100644 --- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md +++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md @@ -56,6 +56,7 @@ For details about Microsoft mobile device management protocols for Windows 10 s - [What is dmwappushsvc?](#what-is-dmwappushsvc) - **Change history in MDM documentation** + - [July 2019](#july-2019) - [June 2019](#june-2019) - [May 2019](#may-2019) - [April 2019](#april-2019) @@ -1880,6 +1881,12 @@ How do I turn if off? | The service can be stopped from the "Services" console o ## Change history in MDM documentation +### July 2019 + +|New or updated topic | Description| +|--- | ---| +|[Policy CSP](policy-configuration-service-provider.md)|Added the following list:
[Policies supported by HoloLens 2 Development Edition](policy-configuration-service-provider.md#policies-supported-by-hololens2-development-edition)| + ### June 2019 |New or updated topic | Description| From b0e3bce4a0c12a7079223738e535fd136aca0950 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Wed, 3 Jul 2019 11:00:21 -0700 Subject: [PATCH 013/138] Fixed bookmark issue --- .../mdm/new-in-windows-mdm-enrollment-management.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md index 96240a7bf1..6f059b374a 100644 --- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md +++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md @@ -1885,7 +1885,7 @@ How do I turn if off? | The service can be stopped from the "Services" console o |New or updated topic | Description| |--- | ---| -|[Policy CSP](policy-configuration-service-provider.md)|Added the following list:
[Policies supported by HoloLens 2 Development Edition](policy-configuration-service-provider.md#policies-supported-by-hololens2-development-edition)| +|[Policy CSP](policy-configuration-service-provider.md)|Added the following list:
Policies supported by HoloLens 2 Development Edition| ### June 2019 From 20a3b29dee69714c703e43a41987b70cb37c244e Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Wed, 3 Jul 2019 12:05:46 -0700 Subject: [PATCH 014/138] Updated HoloLens naming --- .../mdm/configuration-service-provider-reference.md | 2 +- .../mdm/new-in-windows-mdm-enrollment-management.md | 2 +- .../mdm/policy-configuration-service-provider.md | 6 +++--- windows/client-management/mdm/policy-csp-accounts.md | 6 +++--- .../mdm/policy-csp-applicationmanagement.md | 6 +++--- windows/client-management/mdm/policy-csp-authentication.md | 6 +++--- windows/client-management/mdm/policy-csp-bluetooth.md | 6 +++--- windows/client-management/mdm/policy-csp-browser.md | 6 +++--- windows/client-management/mdm/policy-csp-connectivity.md | 6 +++--- windows/client-management/mdm/policy-csp-devicelock.md | 6 +++--- windows/client-management/mdm/policy-csp-experience.md | 6 +++--- windows/client-management/mdm/policy-csp-privacy.md | 6 +++--- windows/client-management/mdm/policy-csp-search.md | 6 +++--- windows/client-management/mdm/policy-csp-security.md | 6 +++--- windows/client-management/mdm/policy-csp-settings.md | 6 +++--- windows/client-management/mdm/policy-csp-speech.md | 6 +++--- windows/client-management/mdm/policy-csp-system.md | 6 +++--- windows/client-management/mdm/policy-csp-update.md | 6 +++--- windows/client-management/mdm/policy-csp-wifi.md | 6 +++--- 19 files changed, 53 insertions(+), 53 deletions(-) diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md index 9d4e5ce32b..201e78e425 100644 --- a/windows/client-management/mdm/configuration-service-provider-reference.md +++ b/windows/client-management/mdm/configuration-service-provider-reference.md @@ -2686,7 +2686,7 @@ You can download the DDF files for various CSPs from the links below: The following list shows the CSPs supported in HoloLens devices. -| Configuration service provider | HoloLens Development Edition | HoloLens Commercial Suite | +| Configuration service provider | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | |--------|--------|------------| | [AccountManagement CSP](accountmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | | [Accounts CSP](accounts-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) diff --git a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md index 6f059b374a..edab03c5d1 100644 --- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md +++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md @@ -1885,7 +1885,7 @@ How do I turn if off? | The service can be stopped from the "Services" console o |New or updated topic | Description| |--- | ---| -|[Policy CSP](policy-configuration-service-provider.md)|Added the following list:
Policies supported by HoloLens 2 Development Edition| +|[Policy CSP](policy-configuration-service-provider.md)|Added the following list:
Policies supported by HoloLens 2| ### June 2019 diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 452ba711f4..eca33deb62 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5158,7 +5158,7 @@ The following diagram shows the Policy configuration service provider in tree fo - [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing) -## Policies supported by HoloLens 2 Development Edition +## Policies supported by HoloLens 2 - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) - [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) @@ -5219,7 +5219,7 @@ The following diagram shows the Policy configuration service provider in tree fo -## Policies supported by HoloLens Commercial Suite +## Policies supported by HoloLens (1st gen) Commercial Suite - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) - [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) @@ -5268,7 +5268,7 @@ The following diagram shows the Policy configuration service provider in tree fo -## Policies supported by HoloLens Development Edition +## Policies supported by HoloLens (1st gen) Development Edition - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) - [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) diff --git a/windows/client-management/mdm/policy-csp-accounts.md b/windows/client-management/mdm/policy-csp-accounts.md index 73cc3ba49a..871c434dca 100644 --- a/windows/client-management/mdm/policy-csp-accounts.md +++ b/windows/client-management/mdm/policy-csp-accounts.md @@ -198,19 +198,19 @@ The following list shows the supported values: -## Accounts policies supported by HoloLens 2 Development Edition +## Accounts policies supported by HoloLens 2 - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) -## Accounts policies supported by HoloLens Commercial Suite +## Accounts policies supported by HoloLens (1st gen) Commercial Suite - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) -## Accounts policies supported by HoloLens Development Edition +## Accounts policies supported by HoloLens (1st gen) Development Edition - [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) diff --git a/windows/client-management/mdm/policy-csp-applicationmanagement.md b/windows/client-management/mdm/policy-csp-applicationmanagement.md index 2c824172cb..f4a43274a8 100644 --- a/windows/client-management/mdm/policy-csp-applicationmanagement.md +++ b/windows/client-management/mdm/policy-csp-applicationmanagement.md @@ -1044,7 +1044,7 @@ XSD: -## ApplicationManagement policies supported by HoloLens 2 Development Edition +## ApplicationManagement policies supported by HoloLens 2 - [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) - [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) @@ -1053,7 +1053,7 @@ XSD: -## ApplicationManagement policies supported by HoloLens Commercial Suite +## ApplicationManagement policies supported by HoloLens (ist gen) Commercial Suite - [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) - [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) @@ -1061,7 +1061,7 @@ XSD: -## ApplicationManagement policies supported by HoloLens Development Edition +## ApplicationManagement policies supported by HoloLens (1st gen) Development Edition - [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) - [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) diff --git a/windows/client-management/mdm/policy-csp-authentication.md b/windows/client-management/mdm/policy-csp-authentication.md index 6cdbe57b9f..68c9bf9cd5 100644 --- a/windows/client-management/mdm/policy-csp-authentication.md +++ b/windows/client-management/mdm/policy-csp-authentication.md @@ -500,21 +500,21 @@ Value type is string. -## Authentication policies supported by HoloLens 2 Development Edition +## Authentication policies supported by HoloLens 2 - [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) - [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) -## Authentication policies supported by HoloLens Commercial Suite +## Authentication policies supported by HoloLens (1st gen) Commercial Suite - [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) - [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) -## Authentication policies supported by HoloLens Development Edition +## Authentication policies supported by HoloLens (1st gen) Development Edition - [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) diff --git a/windows/client-management/mdm/policy-csp-bluetooth.md b/windows/client-management/mdm/policy-csp-bluetooth.md index 2f33b6d8b6..0e6f121709 100644 --- a/windows/client-management/mdm/policy-csp-bluetooth.md +++ b/windows/client-management/mdm/policy-csp-bluetooth.md @@ -345,14 +345,14 @@ The default value is an empty string. For more information, see [ServicesAllowed -## Bluetooth policies supported by HoloLens 2 Development Edition +## Bluetooth policies supported by HoloLens 2 - [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) - [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) -## Bluetooth policies supported by HoloLens Commercial Suite +## Bluetooth policies supported by HoloLens (1st gen) Commercial Suite - [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) - [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) @@ -360,7 +360,7 @@ The default value is an empty string. For more information, see [ServicesAllowed -## Bluetooth policies supported by HoloLens Development Edition +## Bluetooth policies supported by HoloLens (1st gen) Development Edition - [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) - [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) diff --git a/windows/client-management/mdm/policy-csp-browser.md b/windows/client-management/mdm/policy-csp-browser.md index f717ed39d3..a397e2cdfa 100644 --- a/windows/client-management/mdm/policy-csp-browser.md +++ b/windows/client-management/mdm/policy-csp-browser.md @@ -3965,7 +3965,7 @@ Most restricted value: 0 -## Browser policies supported by HoloLens 2 Development Edition +## Browser policies supported by HoloLens 2 - [Browser/AllowAutofill](#browser-allowautofill) - [Browser/AllowCookies](#browser-allowcookies) @@ -3977,7 +3977,7 @@ Most restricted value: 0 -## Browser policies supported by HoloLens Commercial Suite +## Browser policies supported by HoloLens (1st gen) Commercial Suite - [Browser/AllowAutofill](#browser-allowautofill) - [Browser/AllowCookies](#browser-allowcookies) @@ -3989,7 +3989,7 @@ Most restricted value: 0 -## Browser policies supported by HoloLens Development Edition +## Browser policies supported by HoloLens (1st gen) Development Edition - [Browser/AllowCookies](#browser-allowcookies) - [Browser/AllowDoNotTrack](#browser-allowdonottrack) diff --git a/windows/client-management/mdm/policy-csp-connectivity.md b/windows/client-management/mdm/policy-csp-connectivity.md index 9653e03624..d86d214339 100644 --- a/windows/client-management/mdm/policy-csp-connectivity.md +++ b/windows/client-management/mdm/policy-csp-connectivity.md @@ -967,21 +967,21 @@ ADMX Info: -## Connectivity policies supported by HoloLens 2 Development Edition +## Connectivity policies supported by HoloLens 2 - [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) - [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) -## Connectivity policies supported by HoloLens Commercial Suite +## Connectivity policies supported by HoloLens (1st gen) Commercial Suite - [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) - [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) -## Connectivity policies supported by HoloLens Development Edition +## Connectivity policies supported by HoloLens (1st gen) Development Edition - [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) - [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) diff --git a/windows/client-management/mdm/policy-csp-devicelock.md b/windows/client-management/mdm/policy-csp-devicelock.md index 445c12272c..524745b05b 100644 --- a/windows/client-management/mdm/policy-csp-devicelock.md +++ b/windows/client-management/mdm/policy-csp-devicelock.md @@ -1211,7 +1211,7 @@ Most restricted value is 0. -## DeviceLock policies supported by HoloLens 2 Development Edition +## DeviceLock policies supported by HoloLens 2 - [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) - [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) @@ -1227,7 +1227,7 @@ Most restricted value is 0. -## DeviceLock policies supported by HoloLens Commercial Suite +## DeviceLock policies supported by HoloLens (1st gen) Commercial Suite - [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) - [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) @@ -1241,7 +1241,7 @@ Most restricted value is 0. -## DeviceLock policies supported by HoloLens Development Edition +## DeviceLock policies supported by HoloLens (1st gen) Development Edition - [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) - [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) diff --git a/windows/client-management/mdm/policy-csp-experience.md b/windows/client-management/mdm/policy-csp-experience.md index a0ee1d7bf0..a68ab2ae3e 100644 --- a/windows/client-management/mdm/policy-csp-experience.md +++ b/windows/client-management/mdm/policy-csp-experience.md @@ -1643,20 +1643,20 @@ Supported values: -## Experience policies supported by HoloLens 2 Development Edition +## Experience policies supported by HoloLens 2 - [Experience/AllowCortana](#experience-allowcortana) - [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) -## Experience policies supported by HoloLens Commercial Suite +## Experience policies supported by HoloLens (1st gen) Commercial Suite - [Experience/AllowCortana](#experience-allowcortana) -## Experience policies supported by HoloLens Development Edition +## Experience policies supported by HoloLens (1st gen) Development Edition - [Experience/AllowCortana](#experience-allowcortana) diff --git a/windows/client-management/mdm/policy-csp-privacy.md b/windows/client-management/mdm/policy-csp-privacy.md index df7adff044..851686a482 100644 --- a/windows/client-management/mdm/policy-csp-privacy.md +++ b/windows/client-management/mdm/policy-csp-privacy.md @@ -4853,7 +4853,7 @@ ADMX Info: -## Privacy policies supported by HoloLens 2 Development Edition +## Privacy policies supported by HoloLens 2 - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) - [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) @@ -4862,13 +4862,13 @@ ADMX Info: -## Privacy policies supported by HoloLens Commercial Suite +## Privacy policies supported by HoloLens (1st gen) Commercial Suite - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) -## Privacy policies supported by HoloLens Development Edition +## Privacy policies supported by HoloLens (1st gen) Development Edition - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) diff --git a/windows/client-management/mdm/policy-csp-search.md b/windows/client-management/mdm/policy-csp-search.md index ea2a4752bd..f551f810e3 100644 --- a/windows/client-management/mdm/policy-csp-search.md +++ b/windows/client-management/mdm/policy-csp-search.md @@ -922,19 +922,19 @@ The following list shows the supported values: -## Search policies supported by HoloLens 2 Development Edition +## Search policies supported by HoloLens 2 - [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) -## Search policies supported by HoloLens Commercial Suite +## Search policies supported by HoloLens (1st gen) Commercial Suite - [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) -## Search policies supported by HoloLens Development Edition +## Search policies supported by HoloLens (1st gen) Development Edition - [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) diff --git a/windows/client-management/mdm/policy-csp-security.md b/windows/client-management/mdm/policy-csp-security.md index 1d8f50371c..22bddbe478 100644 --- a/windows/client-management/mdm/policy-csp-security.md +++ b/windows/client-management/mdm/policy-csp-security.md @@ -745,19 +745,19 @@ The following list shows the supported values: -## Security policies supported by HoloLens 2 Development Edition +## Security policies supported by HoloLens 2 - [Security/RequireDeviceEncryption](#security-requiredeviceencryption) -## Security policies supported by HoloLens Commercial Suite +## Security policies supported by HoloLens (1st gen) Commercial Suite - [Security/RequireDeviceEncryption](#security-requiredeviceencryption) -## Security policies supported by HoloLens Development Edition +## Security policies supported by HoloLens (1st gen) Development Edition - [Security/RequireDeviceEncryption](#security-requiredeviceencryption) diff --git a/windows/client-management/mdm/policy-csp-settings.md b/windows/client-management/mdm/policy-csp-settings.md index 2752f5a0bb..81727ffef1 100644 --- a/windows/client-management/mdm/policy-csp-settings.md +++ b/windows/client-management/mdm/policy-csp-settings.md @@ -845,21 +845,21 @@ To validate on Desktop, do the following: -## Settings policies supported by HoloLens 2 Development Edition +## Settings policies supported by HoloLens 2 - [Settings/AllowDateTime](#settings-allowdatetime) - [Settings/AllowVPN](#settings-allowvpn) -## Settings policies supported by HoloLens Commercial Suite +## Settings policies supported by HoloLens (1st gen) Commercial Suite - [Settings/AllowDateTime](#settings-allowdatetime) - [Settings/AllowVPN](#settings-allowvpn) -## Settings policies supported by HoloLens Development Edition +## Settings policies supported by HoloLens (1st gen) Development Edition - [Settings/AllowDateTime](#settings-allowdatetime) - [Settings/AllowVPN](#settings-allowvpn) diff --git a/windows/client-management/mdm/policy-csp-speech.md b/windows/client-management/mdm/policy-csp-speech.md index cdf2f3ceef..0f385479cb 100644 --- a/windows/client-management/mdm/policy-csp-speech.md +++ b/windows/client-management/mdm/policy-csp-speech.md @@ -88,19 +88,19 @@ The following list shows the supported values: -## Speech policies supported by HoloLens 2 Development Edition +## Speech policies supported by HoloLens 2 - [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) -## Speech policies supported by HoloLens Commercial Suite +## Speech policies supported by HoloLens (1st gen) Commercial Suite - [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) -## Speech policies supported by HoloLens Development Edition +## Speech policies supported by HoloLens (1st gen) Development Edition - [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) diff --git a/windows/client-management/mdm/policy-csp-system.md b/windows/client-management/mdm/policy-csp-system.md index 7eb242134e..8043fbf5d0 100644 --- a/windows/client-management/mdm/policy-csp-system.md +++ b/windows/client-management/mdm/policy-csp-system.md @@ -1582,7 +1582,7 @@ The following list shows the supported values: -## System policies supported by HoloLens 2 Development Edition +## System policies supported by HoloLens 2 - [System/AllowBuildPreview](#system-allowbuildpreview) - [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) @@ -1592,14 +1592,14 @@ The following list shows the supported values: -## System policies supported by HoloLens Commercial Suite +## System policies supported by HoloLens (1st gen) Commercial Suite - [System/AllowLocation](#system-allowlocation) - [System/AllowTelemetry](#system-allowtelemetry) -## System policies supported by HoloLens Development Edition +## System policies supported by HoloLens (1st gen) Development Edition - [System/AllowLocation](#system-allowlocation) - [System/AllowTelemetry](#system-allowtelemetry) diff --git a/windows/client-management/mdm/policy-csp-update.md b/windows/client-management/mdm/policy-csp-update.md index 60efe0b047..92367a4c2e 100644 --- a/windows/client-management/mdm/policy-csp-update.md +++ b/windows/client-management/mdm/policy-csp-update.md @@ -3959,7 +3959,7 @@ ADMX Info: -## Update policies supported by HoloLens 2 Development Edition +## Update policies supported by HoloLens 2 - [Update/AllowAutoUpdate](#update-allowautoupdate) - [Update/AllowUpdateService](#update-allowupdateservice) @@ -3976,7 +3976,7 @@ ADMX Info: -## Update policies supported by HoloLens Commercial Suite +## Update policies supported by HoloLens (1st gen) Commercial Suite - [Update/AllowAutoUpdate](#update-allowautoupdate) - [Update/AllowUpdateService](#update-allowupdateservice) @@ -3989,7 +3989,7 @@ ADMX Info: -## Update policies supported by HoloLens Development Edition +## Update policies supported by HoloLens (1st gen) Development Edition - [Update/AllowAutoUpdate](#update-allowautoupdate) - [Update/AllowUpdateService](#update-allowupdateservice) diff --git a/windows/client-management/mdm/policy-csp-wifi.md b/windows/client-management/mdm/policy-csp-wifi.md index 26db9f4503..9bc832c1ff 100644 --- a/windows/client-management/mdm/policy-csp-wifi.md +++ b/windows/client-management/mdm/policy-csp-wifi.md @@ -392,19 +392,19 @@ Supported operations are Add, Delete, Get, and Replace. -## Wifi policies supported by HoloLens 2 Development Edition +## Wifi policies supported by HoloLens 2 - [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) -## Wifi policies supported by HoloLens Commercial Suite +## Wifi policies supported by HoloLens (1st gen) Commercial Suite - [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) -## Wifi policies supported by HoloLens Development Edition +## Wifi policies supported by HoloLens (1st gen) Development Edition - [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) From e2ec87542a10372d0fcf05dfaa49e16b356d88ab Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 5 Jul 2019 11:51:27 -0700 Subject: [PATCH 015/138] Updated date --- .../mdm/policy-configuration-service-provider.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index eca33deb62..023cf63505 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -9,7 +9,7 @@ ms.topic: article ms.prod: w10 ms.technology: windows author: manikadhiman -ms.date: 07/02/2019 +ms.date: 07/05/2019 --- # Policy CSP From 84a26ffe1330a11faf81c088a0491dd23e1f79d7 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Thu, 11 Jul 2019 14:57:55 -0700 Subject: [PATCH 016/138] updates --- .../microsoft-defender-atp/commercial-gov.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index 341a8c2d5f..ceeb77e4c4 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -17,12 +17,12 @@ ms.collection: M365-security-compliance ms.topic: conceptual --- -# Compare commercial and government Microsoft Defender ATP +# Microsoft Defender ATP in Azure Government **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) in Azure Government uses the same underlying technologies as commercial Microsoft Defender ATP. This offering is currently available to US GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Azure Government version. +Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) in Azure Government uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Azure Government version. ## Endpoint versions @@ -75,8 +75,8 @@ Integrations with the following Microsoft products are not currently available: - Azure Information Protection - Office 365 Advanced Threat Protection - Microsoft Cloud App Security -- Skype -- Intune +- Skype for Business +- Microsoft Intune ## Microsoft Threat Experts Not currently available. From 2f7c536370e09f676dfd1c8699ea0177cc462747 Mon Sep 17 00:00:00 2001 From: jcaparas Date: Fri, 12 Jul 2019 09:41:38 -0700 Subject: [PATCH 017/138] Update commercial-gov.md --- .../threat-protection/microsoft-defender-atp/commercial-gov.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index ceeb77e4c4..4fe0a45583 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -47,7 +47,7 @@ The following OS versions are not supported: - Windows 8 Pro - Windows 8.1 Enterprise -The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our Azure Government environment, there are some capabilities not yet available that we’d like to highlight. These are the known gaps as of August 2019: +The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our Azure Government environment, there are some capabilities not yet available that we'd like to highlight. These are the known gaps as of August 2019: ## Threat & Vulnerability Management Not currently available. From 0834144994707835913e6184d37caaaa2efe9933 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Mon, 15 Jul 2019 18:27:52 -0700 Subject: [PATCH 018/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ponents-to-microsoft-services-using-MDM.md | 159 +++++++++--------- 1 file changed, 78 insertions(+), 81 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 843d0975aa..3ac0f19c82 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -40,83 +40,84 @@ The following table lists management options for each setting. For Windows 10, the following MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). -| Setting | MDM Policy | Description | -| --- | --- | --- | -| 1. Automatic Root Certificates Update | There is intentionally no MDM available for Automatic Root Certificate Update. | This MDM does not exist since it would prevent the operation and management of MDM management of devices. -| 2. Cortana and Search | [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana) | Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** -| | [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation) | Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)** -| 3. Date & Time | [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime)| Allows the user to change date and time settings. **Set to 0 (zero)** -| 4. Device metadata retrieval | [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork) | Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled** -| 5. Find My Device | [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice)| This policy turns on Find My Device. **Set to 0 (zero)** -| 6. Font streaming | [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders) | Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** -| 7. Insider Preview builds | [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview) | This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)** -| 8. Internet Explorer | The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) | -| | [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites) | Recommends websites based on the user’s browsing activity. **Set to Disabled** -| | [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter) | Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled** -| | [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature) | Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled** -| | [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange) | Determines whether users can change the default Home Page or not. **Set to Enabled** -| | [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard) | Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** -| 9. Live Tiles | [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications)| This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled** -| 10. Mail synchronization | [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection) | Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** -| 11. Microsoft Account | [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant) | Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** -| 12. Microsoft Edge | | The following Microsoft Edge MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). For a complete list of the Microsoft Edge policies, see [Available policies for Microsoft Edge](https://docs.microsoft.com/microsoft-edge/deploy/available-policies). -| | [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill) | Choose whether employees can use autofill on websites. **Set to 0 (zero)** -| | [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack) | Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** -| | [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist) | Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** -| | [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager) | Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** -| | [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar) | Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** -| | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** -| 13. Network Connection Status Indicator | [Connectivity/DisallowNetworkConnectivityActiveTests](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-connectivity#connectivity-disallownetworkconnectivityactivetests) | Note: After you apply this policy you must restart the device for the policy setting to take effect. **Set to 1 (one)** -| 14. Offline maps | [AllowOfflineMapsDownloadOverMeteredConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps)|Allows the download and update of map data over metered connections.
**Set to 0 (zero)** -| | [EnableOfflineMapsAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps#maps-enableofflinemapsautoupdate)|Disables the automatic download and update of map data. **Set to 0 (zero)** -| 15. OneDrive | [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync)| Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** -| 15.1 Injest the ADMX | To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. | The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). -| 15.2 Prevent Network Traffic before User SignIn | PreventNetworkTrafficPreUserSignIn | The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn -| 16. Preinstalled apps | N/A | N/A -| 17. Privacy settings | | Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. -| 17.1 General | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection) | This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)** -| 17.2 Location | [System/AllowLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowlocation) | Specifies whether to allow app access to the Location service. **Set to 0 (zero)** -| 17.3 Camera | [Camera/AllowCamera](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-camera#camera-allowcamera) | Disables or enables the camera. **Set to 0 (zero)** -| 17.4 Microphone | [Privacy/LetAppsAccessMicrophone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmicrophone) | Specifies whether Windows apps can access the microphone. **Set to 2 (two)** -| 17.5 Notifications | [Privacy/LetAppsAccessNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessnotifications) | Specifies whether Windows apps can access notifications. **Set to 2 (two)** -| | [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips) | Enables or disables the retrieval of online tips and help for the Settings app. **Set to Disabled** -| 17.6 Speech, Inking, & Typing | [Privacy/AllowInputPersonalization](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-allowinputpersonalization) | This policy specifies whether users on the device have the option to enable online speech recognition. **Set to 0 (zero)** -| | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection)| This policy setting controls the ability to send inking and typing data to Microsoft **Set to 0 (zero)** -| 17.7 Account info | [Privacy/LetAppsAccessAccountInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessaccountinfo) | Specifies whether Windows apps can access account information. **Set to 2 (two)** -| 17.8 Contacts | [Privacy/LetAppsAccessContacts](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscontacts) | Specifies whether Windows apps can access contacts. **Set to 2 (two)** -| 17.9 Calendar | [Privacy/LetAppsAccessCalendar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscalendar) | Specifies whether Windows apps can access the calendar. **Set to 2 (two)** -| 17.10 Call history | [Privacy/LetAppsAccessCallHistory](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscallhistory) | Specifies whether Windows apps can access account information. **Set to 2 (two)** -| 17.11 Email | [Privacy/LetAppsAccessEmail](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessemail) | Specifies whether Windows apps can access email. **Set to 2 (two)** -| 17.12 Messaging | [Privacy/LetAppsAccessMessaging](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmessaging) | Specifies whether Windows apps can read or send messages (text or MMS). **Set to 2 (two)** -| 17.13 Phone calls | [Privacy/LetAppsAccessPhone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessphone) | Specifies whether Windows apps can make phone calls. **Set to 2 (two)** -| 17.14 Radios | [Privacy/LetAppsAccessRadios](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessradios) | Specifies whether Windows apps have access to control radios. **Set to 2 (two)** -| 17.15 Other devices | [Privacy/LetAppsSyncWithDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappssyncwithdevices) | Specifies whether Windows apps can sync with devices. **Set to 2 (two)** -| | [Privacy/LetAppsAccessTrustedDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstrusteddevices) | Specifies whether Windows apps can access trusted devices. **Set to 2 (two)** -| 17.16 Feedback & diagnostics | [System/AllowTelemetry](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowtelemetry) | Allow the device to send diagnostic and usage telemetry data, such as Watson. **Set to 0 (zero)** -| | [Experience/DoNotShowFeedbackNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-donotshowfeedbacknotifications)| Prevents devices from showing feedback questions from Microsoft. **Set to 1 (one)** -| 17.17 Background apps | [Privacy/LetAppsRunInBackground](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsruninbackground) | Specifies whether Windows apps can run in the background. **Set to 2 (two)** -| 17.18 Motion | [Privacy/LetAppsAccessMotion](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmotion) | Specifies whether Windows apps can access motion data. **Set to 2 (two)** -| 17.19 Tasks | [Privacy/LetAppsAccessTasks](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstasks) | Turn off the ability to choose which apps have access to tasks. **Set to 2 (two)** -| 17.20 App Diagnostics | [Privacy/LetAppsGetDiagnosticInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsgetdiagnosticinfo) | Force allow, force deny or give user control of apps that can get diagnostic information about other running apps. **Set to 2 (two)** -| 18. Software Protection Platform | [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation) | Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** -| 19. Storage Health | [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates) | Allows disk health model updates. **Set to 0 (zero)** -| 20. Sync your settings | [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings) | Control whether your settings are synchronized. **Set to 0 (zero)** -| 21. Teredo | No MDM needed | Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. -| 22. Wi-Fi Sense | No MDM needed | Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. -| 23. Windows Defender | [Defender/AllowCloudProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-allowcloudprotection) | Disconnect from the Microsoft Antimalware Protection Service. **Set to 0 (zero)** -| | [Defender/SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent) | Stop sending file samples back to Microsoft. **Set to 2 (two)** -| 23.1 Windows Defender Smartscreen | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Disable Windows Defender Smartscreen. **Set to 0 (zero)** -| 23.2 Windows Defender Smartscreen EnableAppInstallControl | [SmartScreen/EnableAppInstallControl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-smartscreen#smartscreen-enableappinstallcontrol) | Controls whether users are allowed to install apps from places other than the Microsoft Store. **Set to 0 (zero)** -| 23.3 Windows Defender Potentially Unwanted Applications(PUA) Protection | [Defender/PUAProtection](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-defender#defender-puaprotection) | Specifies the level of detection for potentially unwanted applications (PUAs). **Set to 1 (one)** -| 24. Windows Spotlight | [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight) | Disable Windows Spotlight. **Set to 0 (zero)** -| 25. Microsoft Store | [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps)| Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** -| | [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate)| Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** -| 25.1 Apps for websites | [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers) | This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** -| 26. Windows Update Delivery Optimization | | The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). -| | [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode)| Lets you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** -| 27. Windows Update | [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate) | Control automatic updates. **Set to 5 (five)** -| 27.1 Windows Update Allow Update Service | [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice) | Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)** -| 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value: +> [!div class="mx-tdBreakAll"] +> | Setting | MDM Policy | Description | +> | --- | --- | --- | +> | 1. Automatic Root Certificates Update | There is intentionally no MDM available for Automatic Root Certificate Update. | This MDM does not exist since it would prevent the operation and management of MDM management of devices.| +> | 2. Cortana and Search | [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana) | Choose whether to let Cortana install and run on the device. **Set to 0 (zero)**| +> | | [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation) | Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)**| +> | 3. Date & Time | [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime)| Allows the user to change date and time settings. **Set to 0 (zero)**| +> | 4. Device metadata retrieval | [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork) | Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled**| +> | 5. Find My Device | [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice)| This policy turns on Find My Device. **Set to 0 (zero)** | +> | 6. Font streaming | [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders) | Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** | +> | 7. Insider Preview builds | [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview) | This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)**| +> | 8. Internet Explorer | The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) | | +> | | [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites) | Recommends websites based on the user’s browsing activity. **Set to Disabled**| +> | | [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter) | Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled**| +> | | [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature) | Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled**| +> | | [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange) | Determines whether users can change the default Home Page or not. **Set to Enabled**| +> | | [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard) | Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled**| +> | 9. Live Tiles | [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications)| This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled**| +> | 10. Mail synchronization | [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection) | Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** | +> | 11. Microsoft Account | [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant) | Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** | +> | 12. Microsoft Edge | | The following Microsoft Edge MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). For a complete list of the Microsoft Edge policies, see [Available policies for Microsoft Edge](https://docs.microsoft.com/microsoft-edge/deploy/available-policies). | +> | | [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill) | Choose whether employees can use autofill on websites. **Set to 0 (zero)** | +> | | [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack) | Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** | +> | | [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist) | Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** | +> | | [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager) | Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** | +> | | [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar) | Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** | +> | | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** | +> | 13. Network Connection Status Indicator | [Connectivity/DisallowNetworkConnectivityActiveTests](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-connectivity#connectivity-disallownetworkconnectivityactivetests) | Note: After you apply this policy you must restart the device for the policy setting to take effect. **Set to 1 (one)** | +> | 14. Offline maps | [AllowOfflineMapsDownloadOverMeteredConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps)|Allows the download and update of map data over metered connections.
**Set to 0 (zero)** | +> | | [EnableOfflineMapsAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps#maps-enableofflinemapsautoupdate)|Disables the automatic download and update of map data. **Set to 0 (zero)** | +> | 15. OneDrive | [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync)| Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** | +> | 15.1 Injest the ADMX | To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. | The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). | +> | 15.2 Prevent Network Traffic before User SignIn | PreventNetworkTrafficPreUserSignIn | The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn| +> | 16. Preinstalled apps | N/A | N/A | +> | 17. Privacy settings | | Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. | +> | 17.1 General | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection) | This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)**| +> | 17.2 Location | [System/AllowLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowlocation) | Specifies whether to allow app access to the Location service. **Set to 0 (zero)**| +> | 17.3 Camera | [Camera/AllowCamera](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-camera#camera-allowcamera) | Disables or enables the camera. **Set to 0 (zero)**| +> | 17.4 Microphone | [Privacy/LetAppsAccessMicrophone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmicrophone) | Specifies whether Windows apps can access the microphone. **Set to 2 (two)** | +> | 17.5 Notifications | [Privacy/LetAppsAccessNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessnotifications) | Specifies whether Windows apps can access notifications. **Set to 2 (two)**| +> | | [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips) | Enables or disables the retrieval of online tips and help for the Settings app. **Set to Disabled**| +> | 17.6 Speech, Inking, & Typing | [Privacy/AllowInputPersonalization](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-allowinputpersonalization) | This policy specifies whether users on the device have the option to enable online speech recognition. **Set to 0 (zero)** | +> | | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection)| This policy setting controls the ability to send inking and typing data to Microsoft **Set to 0 (zero)** | +> | 17.7 Account info | [Privacy/LetAppsAccessAccountInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessaccountinfo) | Specifies whether Windows apps can access account information. **Set to 2 (two)** | +> | 17.8 Contacts | [Privacy/LetAppsAccessContacts](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscontacts) | Specifies whether Windows apps can access contacts. **Set to 2 (two)** | +> | 17.9 Calendar | [Privacy/LetAppsAccessCalendar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscalendar) | Specifies whether Windows apps can access the calendar. **Set to 2 (two)** | +> | 17.10 Call history | [Privacy/LetAppsAccessCallHistory](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscallhistory) | Specifies whether Windows apps can access account information. **Set to 2 (two)** | +> | 17.11 Email | [Privacy/LetAppsAccessEmail](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessemail) | Specifies whether Windows apps can access email. **Set to 2 (two)** | +> | 17.12 Messaging | [Privacy/LetAppsAccessMessaging](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmessaging) | Specifies whether Windows apps can read or send messages (text or MMS). **Set to 2 (two)** | +> | 17.13 Phone calls | [Privacy/LetAppsAccessPhone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessphone) | Specifies whether Windows apps can make phone calls. **Set to 2 (two)** | +> | 17.14 Radios | [Privacy/LetAppsAccessRadios](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessradios) | Specifies whether Windows apps have access to control radios. **Set to 2 (two)** | +> | 17.15 Other devices | [Privacy/LetAppsSyncWithDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappssyncwithdevices) | Specifies whether Windows apps can sync with devices. **Set to 2 (two)** | +> | | [Privacy/LetAppsAccessTrustedDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstrusteddevices) | Specifies whether Windows apps can access trusted devices. **Set to 2 (two)** | +> | 17.16 Feedback & diagnostics | [System/AllowTelemetry](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowtelemetry) | Allow the device to send diagnostic and usage telemetry data, such as Watson. **Set to 0 (zero)** | +> | | [Experience/DoNotShowFeedbackNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-donotshowfeedbacknotifications)| Prevents devices from showing feedback questions from Microsoft. **Set to 1 (one)** | +> | 17.17 Background apps | [Privacy/LetAppsRunInBackground](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsruninbackground) | Specifies whether Windows apps can run in the background. **Set to 2 (two)** | +> | 17.18 Motion | [Privacy/LetAppsAccessMotion](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmotion) | Specifies whether Windows apps can access motion data. **Set to 2 (two)** | +> | 17.19 Tasks | [Privacy/LetAppsAccessTasks](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstasks) | Turn off the ability to choose which apps have access to tasks. **Set to 2 (two)** | +> | 17.20 App Diagnostics | [Privacy/LetAppsGetDiagnosticInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsgetdiagnosticinfo) | Force allow, force deny or give user control of apps that can get diagnostic information about other running apps. **Set to 2 (two)** | +> | 18. Software Protection Platform | [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation) | Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** | +> | 19. Storage Health | [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates) | Allows disk health model updates. **Set to 0 (zero)** | +> | 20. Sync your settings | [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings) | Control whether your settings are synchronized. **Set to 0 (zero)** | +> | 21. Teredo | No MDM needed | Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. | +> | 22. Wi-Fi Sense | No MDM needed | Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. | +> | 23. Windows Defender | [Defender/AllowCloudProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-allowcloudprotection) | Disconnect from the Microsoft Antimalware Protection Service. **Set to 0 (zero)** | +> | | [Defender/SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent) | Stop sending file samples back to Microsoft. **Set to 2 (two)** | +> | 23.1 Windows Defender Smartscreen | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Disable Windows Defender Smartscreen. **Set to 0 (zero)** | +> | 23.2 Windows Defender Smartscreen EnableAppInstallControl | [SmartScreen/EnableAppInstallControl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-smartscreen#smartscreen-enableappinstallcontrol) | Controls whether users are allowed to install apps from places other than the Microsoft Store. **Set to 0 (zero)** | +> | 23.3 Windows Defender Potentially Unwanted Applications(PUA) Protection | [Defender/PUAProtection](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-defender#defender-puaprotection) | Specifies the level of detection for potentially unwanted applications (PUAs). **Set to 1 (one)** | +> | 24. Windows Spotlight | [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight) | Disable Windows Spotlight. **Set to 0 (zero)** | +> | 25. Microsoft Store | [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps)| Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** | +> | | [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate)| Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** | +> | 25.1 Apps for websites | [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers) | This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** | +> | 26. Windows Update Delivery Optimization | | The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). | +> | | [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode)| Lets you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** | +> | 27. Windows Update | [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate) | Control automatic updates. **Set to 5 (five)**| +> | 27.1 Windows Update Allow Update Service | [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice) | Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)**| +> | 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value:| $CmdID$ @@ -132,7 +133,6 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt - ### Allowed traffic ("Whitelisted traffic") for Microsoft InTune / MDM configurations |**Allowed traffic endpoints** | @@ -148,6 +148,3 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt |*microsoft.com/pkiops/crl/**| |activation-v2.sls.microsoft.com/*| |ocsp.digicert.com/*| - - - From cfc02ec4c52c92b32b03a39e1b93416b82e815f8 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Mon, 15 Jul 2019 18:52:07 -0700 Subject: [PATCH 019/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...erating-system-components-to-microsoft-services-using-MDM.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 3ac0f19c82..11dd710c4c 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -40,7 +40,7 @@ The following table lists management options for each setting. For Windows 10, the following MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). -> [!div class="mx-tdBreakAll"] +> [!div class="mx-tdCol3BreakAll"] > | Setting | MDM Policy | Description | > | --- | --- | --- | > | 1. Automatic Root Certificates Update | There is intentionally no MDM available for Automatic Root Certificate Update. | This MDM does not exist since it would prevent the operation and management of MDM management of devices.| From c97f7b838af9ec915d9d414ef96e6e6e087354c4 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Mon, 15 Jul 2019 18:57:28 -0700 Subject: [PATCH 020/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ting-system-components-to-microsoft-services-using-MDM.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 11dd710c4c..be109f6f04 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -117,8 +117,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt > | | [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode)| Lets you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** | > | 27. Windows Update | [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate) | Control automatic updates. **Set to 5 (five)**| > | 27.1 Windows Update Allow Update Service | [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice) | Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)**| -> | 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value:| - +> | 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value: $CmdID$ @@ -132,6 +131,8 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt http://abcd-srv:8530 +| + ### Allowed traffic ("Whitelisted traffic") for Microsoft InTune / MDM configurations From fa34c823613d94cec88cb78c45628c2887b15e74 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Thu, 18 Jul 2019 13:25:44 -0700 Subject: [PATCH 021/138] Added privacy policies --- ...ew-in-windows-mdm-enrollment-management.md | 3 - .../policy-configuration-service-provider.md | 24 +- .../mdm/policy-csp-privacy.md | 277 +++++++++++++++++- 3 files changed, 294 insertions(+), 10 deletions(-) diff --git a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md index 562a0b3853..e62a042bf3 100644 --- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md +++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md @@ -1891,14 +1891,11 @@ How do I turn if off? | The service can be stopped from the "Services" console o |New or updated topic | Description| |--- | ---| -<<<<<<< HEAD |[Policy CSP](policy-configuration-service-provider.md)|Added the following list:
Policies supported by HoloLens 2| -======= |[ApplicationControl CSP](applicationcontrol-csp.md)|Added new CSP in Windows 10, version 1903.| |[Policy CSP - Privacy](policy-csp-privacy.md)|Added the following new policies:
LetAppsActivateWithVoice, LetAppsActivateWithVoiceAboveLock| |Create a custom configuration service provider|Deleted the following documents from the CSP reference because extensibility via CSPs is not currently supported:
Create a custom configuration service provider
Design a custom configuration service provider
IConfigServiceProvider2
IConfigServiceProvider2::ConfigManagerNotification
IConfigServiceProvider2::GetNode
ICSPNode
ICSPNode::Add
ICSPNode::Clear
ICSPNode::Copy
ICSPNode::DeleteChild
ICSPNode::DeleteProperty
ICSPNode::Execute
ICSPNode::GetChildNodeNames
ICSPNode::GetProperty
ICSPNode::GetPropertyIdentifiers
ICSPNode::GetValue
ICSPNode::Move
ICSPNode::SetProperty
ICSPNode::SetValue
ICSPNodeTransactioning
ICSPValidate
Samples for writing a custom configuration service provider| ->>>>>>> master ### June 2019 diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 196da4b264..d00f5530d4 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -9,11 +9,7 @@ ms.topic: article ms.prod: w10 ms.technology: windows author: manikadhiman -<<<<<<< HEAD -ms.date: 07/05/2019 -======= ms.date: 07/09/2019 ->>>>>>> master --- # Policy CSP @@ -2567,6 +2563,18 @@ The following diagram shows the Policy configuration service provider in tree fo
Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception +
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps +
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps +
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps +
Privacy/LetAppsAccessCalendar
@@ -5200,6 +5208,14 @@ The following diagram shows the Policy configuration service provider in tree fo - [Experience/AllowCortana](#experience-allowcortana) - [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) +- [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) +- [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) +- [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) +- [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) +- [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) +- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) +- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) +- [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) - [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) - [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) - [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) diff --git a/windows/client-management/mdm/policy-csp-privacy.md b/windows/client-management/mdm/policy-csp-privacy.md index 47a68b79f4..65dea5a83d 100644 --- a/windows/client-management/mdm/policy-csp-privacy.md +++ b/windows/client-management/mdm/policy-csp-privacy.md @@ -49,6 +49,18 @@ manager: dansimp
Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception +
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps +
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps +
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps +
Privacy/LetAppsAccessCalendar
@@ -863,6 +875,260 @@ ADMX Info:
+ +**Privacy/LetAppsAccessBackgroundSpatialPerception** + + + + + + + + + + + + + + + + + + + + + +
HomeProBusinessEnterpriseEducationMobileMobile Enterprise
cross markcross markcross markcross markcross markcross markcross mark
+ + + +[Scope](./policy-configuration-service-provider.md#policy-scope): + +> [!div class = "checklist"] +> * Device + +
+ + + +Added in Windows 10, version 1903. +> [!NOTE] +> Currently, this policy is supported only in HoloLens 2. + +Specifies whether Windows apps can access the movement of the user's head, hands, motion controllers, and other tracked objects, while the apps are running in the background. + +Value type is integer. + + + +ADMX Info: +- GP English name: Let Windows apps access background spatial perception +- GP name: LetAppsAccessBackgroundSpatialPerception +- GP element: LetAppsAccessBackgroundSpatialPerception_Enum +- GP path: Windows Components/App Privacy +- GP ADMX file name: AppPrivacy.admx + + + + +The following list shows the supported values: + +- 0 (default) – User in control. +- 1 – Force allow. +- 2 - Force deny. + + + + +
+ + +**Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps** + + + + + + + + + + + + + + + + + + + + + +
HomeProBusinessEnterpriseEducationMobileMobile Enterprise
cross markcross markcross markcross markcross markcross markcross mark
+ + + +[Scope](./policy-configuration-service-provider.md#policy-scope): + +> [!div class = "checklist"] +> * Device + +
+ + + +Added in Windows 10, version 1903. +> [!NOTE] +> Currently, this policy is supported only in HoloLens 2. + +List of semi-colon delimited Package Family Names of Windows Store Apps. Listed apps are allowed access to the user's movements while the apps are running in the background. This setting overrides the default LetAppsAccessBackgroundSpatialPerception policy setting for the specified apps. + +Value type is chr. + + + +ADMX Info: +- GP English name: Let Windows apps access background spatial perception +- GP name: LetAppsAccessBackgroundSpatialPerception +- GP element: LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps_List +- GP path: Windows Components/App Privacy +- GP ADMX file name: AppPrivacy.admx + + + + + + + + +
+ + +**Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps** + + + + + + + + + + + + + + + + + + + + + +
HomeProBusinessEnterpriseEducationMobileMobile Enterprise
cross markcross markcross markcross markcross markcross markcross mark
+ + + +[Scope](./policy-configuration-service-provider.md#policy-scope): + +> [!div class = "checklist"] +> * Device + +
+ + + +Added in Windows 10, version 1903. +> [!NOTE] +> Currently, this policy is supported only in HoloLens 2. + +List of semi-colon delimited Package Family Names of Windows Store Apps. Listed apps are denied access to the user's movements while the apps are running in the background. This setting overrides the default LetAppsAccessBackgroundSpatialPerception policy setting for the specified apps. + +Value type is chr. + + + +ADMX Info: +- GP English name: Let Windows apps access background spatial perception +- GP name: LetAppsAccessBackgroundSpatialPerception +- GP element: LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps_List +- GP path: Windows Components/App Privacy +- GP ADMX file name: AppPrivacy.admx + + + + + + +
+ + + +
+ + +**Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps** + + + + + + + + + + + + + + + + + + + + + +
HomeProBusinessEnterpriseEducationMobileMobile Enterprise
cross markcross markcross markcross markcross markcross markcross mark
+ + + +[Scope](./policy-configuration-service-provider.md#policy-scope): + +> [!div class = "checklist"] +> * Device + +
+ + + +Added in Windows 10, version 1903. +> [!NOTE] +> Currently, this policy is supported only in HoloLens 2. + +List of semi-colon delimited Package Family Names of Windows Store Apps. +The user is able to control the user movements privacy setting for the listed apps. This setting overrides the default LetAppsAccessBackgroundSpatialPerception policy setting for the specified apps. + +Value type is chr. + + + +ADMX Info: +- GP English name: Let Windows apps access background spatial perception +- GP name: LetAppsAccessBackgroundSpatialPerception +- GP element: LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps_List +- GP path: Windows Components/App Privacy +- GP ADMX file name: AppPrivacy.admx + + + + + + +
+ **Privacy/LetAppsAccessCalendar** @@ -4982,6 +5248,14 @@ ADMX Info: ## Privacy policies supported by HoloLens 2 - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) +- [LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) +- [LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) +- [LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) +- [LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) +- [LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) +- [LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) +- [LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) +- [LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) - [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) - [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) - [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) @@ -4993,13 +5267,11 @@ ADMX Info: - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) -<<<<<<< HEAD ## Privacy policies supported by HoloLens (1st gen) Development Edition - [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) -======= ## Privacy policies supported by Windows 10 IoT Core - [Privacy/LetAppsActivateWithVoice](#privacy-letappsactivatewithvoice) @@ -5011,7 +5283,6 @@ ADMX Info: - [Privacy/LetAppsActivateWithVoice](#privacy-letappsactivatewithvoice) - [Privacy/LetAppsActivateWithVoiceAboveLock](#privacy-letappsactivatewithvoiceabovelock) ->>>>>>> master
From 8ec14fd5fb82f178ac291f5bd55564b2f6c9f606 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Thu, 18 Jul 2019 13:30:01 -0700 Subject: [PATCH 022/138] Resolved warning --- .../mdm/policy-configuration-service-provider.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index d00f5530d4..6ea99d492c 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -9,7 +9,7 @@ ms.topic: article ms.prod: w10 ms.technology: windows author: manikadhiman -ms.date: 07/09/2019 +ms.date: 07/18/2019 --- # Policy CSP From 61a42c13937feeb1711f8fd1585b602f306f9afe Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Thu, 18 Jul 2019 15:07:31 -0700 Subject: [PATCH 023/138] add gov topic --- windows/security/threat-protection/TOC.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index 4e7cc95c8e..cd29847664 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -124,8 +124,12 @@ ### [Validate licensing and complete setup](microsoft-defender-atp/licensing.md) ### [Preview features](microsoft-defender-atp/preview.md) ### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md) +### [Microsoft Defender ATP in Azure Government ](microsoft-defender-atp/commercial-gov.md) ### [Assign user access to the portal](microsoft-defender-atp/assign-portal-access.md) + + + ### [Evaluate Microsoft Defender ATP]() #### [Attack surface reduction and next-generation capability evaluation]() ##### [Attack surface reduction and nex-generation evaluation overview](microsoft-defender-atp/evaluate-atp.md) From d885551ae3d0616266bd054d1e380cf1433bb126 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Thu, 18 Jul 2019 15:10:50 -0700 Subject: [PATCH 024/138] note update --- .../threat-protection/microsoft-defender-atp/commercial-gov.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index 4fe0a45583..d598e63b2b 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -35,7 +35,7 @@ The following OS versions are supported: - Windows Server, 2019 (with [KB4490481](https://support.microsoft.com/en-us/help/4490481)) >[!NOTE] ->If patches are not implemented after the machine onboarding, some Microsoft Defender ATP telemetry might be sent to the Microsoft Defender ATP Commercial Cloud. +>A patch must be deployed before machine onboarding in order to configure Microsoft Defender ATP to the correct environment. The following OS versions are not supported: - Windows Server 2008 R2 SP1 From 7d69eadb10dc627175fde0d8736958da0b41d419 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Thu, 18 Jul 2019 16:45:53 -0700 Subject: [PATCH 025/138] Added HoloLens 2 CSPs --- ...onfiguration-service-provider-reference.md | 54 ++++++++++--------- 1 file changed, 28 insertions(+), 26 deletions(-) diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md index 8cc9291360..5f0cf879ee 100644 --- a/windows/client-management/mdm/configuration-service-provider-reference.md +++ b/windows/client-management/mdm/configuration-service-provider-reference.md @@ -2714,32 +2714,34 @@ You can download the DDF files for various CSPs from the links below: The following list shows the CSPs supported in HoloLens devices. -| Configuration service provider | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | -|--------|--------|------------| -| [AccountManagement CSP](accountmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | -| [Accounts CSP](accounts-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) -| [AppLocker CSP](applocker-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [AssignedAccess CSP](assignedaccess-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | -| [CertificateStore CSP](certificatestore-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)| -| [ClientCertificateInstall CSP](clientcertificateinstall-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [DevDetail CSP](devdetail-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeveloperSetup CSP](developersetup-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)2 (runtime provisioning via provisioning packages only; no MDM support)| -| [DeviceStatus CSP](devicestatus-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [DevInfo CSP](devinfo-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DiagnosticLog CSP](diagnosticlog-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [DMAcc CSP](dmacc-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DMClient CSP](dmclient-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [EnterpriseModernAppManagement CSP](enterprisemodernappmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [NodeCache CSP](nodecache-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -[PassportForWork CSP](passportforwork-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Policy CSP](policy-configuration-service-provider.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [RemoteFind CSP](remotefind-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | -| [RemoteWipe CSP](remotewipe-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | -| [RootCATrustedCertificates CSP](rootcacertificates-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update CSP](update-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [VPN2 CSP](vpnv2-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [WiFi CSP](wifi-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [WindowsLicensing CSP](windowslicensing-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| Configuration service provider | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | +|--------|--------|------------|--------------| +| [AccountManagement CSP](accountmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) +| [Accounts CSP](accounts-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationControl CSP](applicationcontrol-csp.md) | | | ![check mark](images/checkmark.png) | +| [AppLocker CSP](applocker-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [AssignedAccess CSP](assignedaccess-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | +| [CertificateStore CSP](certificatestore-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)| ![check mark](images/checkmark.png) | +| [ClientCertificateInstall CSP](clientcertificateinstall-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DevDetail CSP](devdetail-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeveloperSetup CSP](developersetup-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)2 (runtime provisioning via provisioning packages only; no MDM support)| ![check mark](images/checkmark.png) | +| [DeviceStatus CSP](devicestatus-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DevInfo CSP](devinfo-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DiagnosticLog CSP](diagnosticlog-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DMAcc CSP](dmacc-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DMClient CSP](dmclient-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [EnterpriseModernAppManagement CSP](enterprisemodernappmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [NetworkProxy CSP](networkproxy-csp.md) | | | ![check mark](images/checkmark.png) | +| [NodeCache CSP](nodecache-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +[PassportForWork CSP](passportforwork-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Policy CSP](policy-configuration-service-provider.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [RemoteFind CSP](remotefind-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | +| [RemoteWipe CSP](remotewipe-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | +| [RootCATrustedCertificates CSP](rootcacertificates-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update CSP](update-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [VPN2 CSP](vpnv2-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [WiFi CSP](wifi-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [WindowsLicensing CSP](windowslicensing-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | ## CSPs supported in Microsoft Surface Hub From 359fd53d1c2f78562d8650a378b3591d12e5f3c5 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Thu, 18 Jul 2019 16:46:52 -0700 Subject: [PATCH 026/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ting-system-components-to-microsoft-services-using-MDM.md | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index be109f6f04..0a98e36716 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -40,7 +40,6 @@ The following table lists management options for each setting. For Windows 10, the following MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). -> [!div class="mx-tdCol3BreakAll"] > | Setting | MDM Policy | Description | > | --- | --- | --- | > | 1. Automatic Root Certificates Update | There is intentionally no MDM available for Automatic Root Certificate Update. | This MDM does not exist since it would prevent the operation and management of MDM management of devices.| @@ -117,7 +116,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt > | | [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode)| Lets you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** | > | 27. Windows Update | [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate) | Control automatic updates. **Set to 5 (five)**| > | 27.1 Windows Update Allow Update Service | [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice) | Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)**| -> | 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value: +> | 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value:| $CmdID$ @@ -131,8 +130,6 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt http://abcd-srv:8530 -| - ### Allowed traffic ("Whitelisted traffic") for Microsoft InTune / MDM configurations From 7b0c9dbee1ed84c6b2078022323b8dca69e05298 Mon Sep 17 00:00:00 2001 From: DocsPreview <49669258+DocsPreview@users.noreply.github.com> Date: Fri, 19 Jul 2019 10:56:45 -0700 Subject: [PATCH 027/138] New announcement added july (#729) (#730) * New Announcement added * Fixed date --- windows/release-information/windows-message-center.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index 31946a06a8..f2219f04cd 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -50,6 +50,7 @@ sections: text: " + From a420dc1d825ac52d590806c78d54c282a6c9cbc3 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 19 Jul 2019 13:42:17 -0700 Subject: [PATCH 028/138] Updated HoloLens2 list --- .../mdm/configuration-service-provider-reference.md | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md index 5f0cf879ee..2ab8294f0e 100644 --- a/windows/client-management/mdm/configuration-service-provider-reference.md +++ b/windows/client-management/mdm/configuration-service-provider-reference.md @@ -2718,20 +2718,21 @@ The following list shows the CSPs supported in HoloLens devices. |--------|--------|------------|--------------| | [AccountManagement CSP](accountmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | [Accounts CSP](accounts-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationControl CSP](applicationcontrol-csp.md) | | | ![check mark](images/checkmark.png) | +| [ApplicationControl CSP](applicationcontrol-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | | [AppLocker CSP](applocker-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | | [AssignedAccess CSP](assignedaccess-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | | [CertificateStore CSP](certificatestore-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)| ![check mark](images/checkmark.png) | | [ClientCertificateInstall CSP](clientcertificateinstall-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [DevDetail CSP](devdetail-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [DeveloperSetup CSP](developersetup-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)2 (runtime provisioning via provisioning packages only; no MDM support)| ![check mark](images/checkmark.png) | +| [DeviceManageability CSP](devicemanageability-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | | [DeviceStatus CSP](devicestatus-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [DevInfo CSP](devinfo-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [DiagnosticLog CSP](diagnosticlog-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [DMAcc CSP](dmacc-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [DMClient CSP](dmclient-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [EnterpriseModernAppManagement CSP](enterprisemodernappmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [NetworkProxy CSP](networkproxy-csp.md) | | | ![check mark](images/checkmark.png) | +| [NetworkProxy CSP](networkproxy-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | | [NodeCache CSP](nodecache-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | [PassportForWork CSP](passportforwork-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [Policy CSP](policy-configuration-service-provider.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | @@ -2739,7 +2740,7 @@ The following list shows the CSPs supported in HoloLens devices. | [RemoteWipe CSP](remotewipe-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | | [RootCATrustedCertificates CSP](rootcacertificates-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [Update CSP](update-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [VPN2 CSP](vpnv2-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [VPNv2 CSP](vpnv2-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [WiFi CSP](wifi-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [WindowsLicensing CSP](windowslicensing-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | From d51e22e47505888592947e15e1b4c722e6058ad1 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 19 Jul 2019 14:27:05 -0700 Subject: [PATCH 029/138] Updated HoloLens 2 list --- .../mdm/policy-configuration-service-provider.md | 1 - windows/client-management/mdm/policy-csp-system.md | 1 - 2 files changed, 2 deletions(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 6ea99d492c..cca756a963 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5224,7 +5224,6 @@ The following diagram shows the Policy configuration service provider in tree fo - [Settings/AllowDateTime](#settings-allowdatetime) - [Settings/AllowVPN](#settings-allowvpn) - [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) -- [System/AllowBuildPreview](#system-allowbuildpreview) - [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) - [System/AllowLocation](#system-allowlocation) - [System/AllowStorageCard](#system-allowstoragecard) diff --git a/windows/client-management/mdm/policy-csp-system.md b/windows/client-management/mdm/policy-csp-system.md index 8043fbf5d0..af2069854f 100644 --- a/windows/client-management/mdm/policy-csp-system.md +++ b/windows/client-management/mdm/policy-csp-system.md @@ -1584,7 +1584,6 @@ The following list shows the supported values: ## System policies supported by HoloLens 2 -- [System/AllowBuildPreview](#system-allowbuildpreview) - [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) - [System/AllowLocation](#system-allowlocation) - [System/AllowStorageCard](#system-allowstoragecard) From 2d9ca2d58f0ae108f8a564e4ac9c898e13f976cb Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 19 Jul 2019 16:19:43 -0700 Subject: [PATCH 030/138] Updated HoloLens table --- ...onfiguration-service-provider-reference.md | 2 +- .../policy-configuration-service-provider.md | 74 +++++++++++++++++++ 2 files changed, 75 insertions(+), 1 deletion(-) diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md index 2ab8294f0e..e663aaf71d 100644 --- a/windows/client-management/mdm/configuration-service-provider-reference.md +++ b/windows/client-management/mdm/configuration-service-provider-reference.md @@ -2712,7 +2712,7 @@ You can download the DDF files for various CSPs from the links below: ## CSPs supported in HoloLens devices -The following list shows the CSPs supported in HoloLens devices. +The following list shows the CSPs supported in HoloLens devices: | Configuration service provider | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | |--------|--------|------------|--------------| diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index cca756a963..4b4a4f884d 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5175,6 +5175,80 @@ The following diagram shows the Policy configuration service provider in tree fo - [WirelessDisplay/AllowProjectionToPC](./policy-csp-wirelessdisplay.md#wirelessdisplay-allowprojectiontopc) - [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing) + +## Policies supported in HoloLens devices + + +The following list shows the Policies supported in HoloLens devices: + +| Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | +|--------|--------|------------|--------------| +| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) +| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowAutoFill](#browser-allowautofill) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Settings/AllowDateTime](#settings-allowdatetime) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Settings/AllowVPN](#settings-allowvpn) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowLocation](#system-allowlocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowStorageCard](#system-allowstoragecard) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowTelemetry](#system-allowtelemetry) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/AllowAutoUpdate](#update-allowautoupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/AllowUpdateService](#update-allowupdateservice) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | + ## Policies supported by HoloLens 2 From 8e36ac5ec12c6dfcfbb0ba46f1d725aed47848ad Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 19 Jul 2019 16:19:57 -0700 Subject: [PATCH 031/138] Update policy-configuration-service-provider.md --- .../policy-configuration-service-provider.md | 163 ------------------ 1 file changed, 163 deletions(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 4b4a4f884d..99c22d12a3 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5249,169 +5249,6 @@ The following list shows the Policies supported in HoloLens devices: | [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | - -## Policies supported by HoloLens 2 - -- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) -- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) -- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) -- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) -- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) -- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) -- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) -- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) -- [Browser/AllowAutoFill](#browser-allowautofill) -- [Browser/AllowCookies](#browser-allowcookies) -- [Browser/AllowDoNotTrack](#browser-allowdonottrack) -- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) -- [Browser/AllowPopups](#browser-allowpopups) -- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) -- [Browser/AllowSmartScreen](#browser-allowsmartscreen) -- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) -- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) -- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) -- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) -- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) -- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) -- [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) -- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) -- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) -- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) -- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) -- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) -- [Experience/AllowCortana](#experience-allowcortana) -- [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) -- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) -- [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) -- [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) -- [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) -- [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) -- [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) -- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) -- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) -- [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) -- [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) -- [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) -- [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) -- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) -- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) -- [Settings/AllowDateTime](#settings-allowdatetime) -- [Settings/AllowVPN](#settings-allowvpn) -- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) -- [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) -- [System/AllowLocation](#system-allowlocation) -- [System/AllowStorageCard](#system-allowstoragecard) -- [System/AllowTelemetry](#system-allowtelemetry) -- [Update/AllowAutoUpdate](#update-allowautoupdate) -- [Update/AllowUpdateService](#update-allowupdateservice) -- [Update/BranchReadinessLevel](#update-branchreadinesslevel) -- [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) -- [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) -- [Update/ManagePreviewBuilds](#update-managepreviewbuilds) -- [Update/PauseFeatureUpdates](#update-pausefeatureupdates) -- [Update/PauseQualityUpdates](#update-pausequalityupdates) -- [Update/ScheduledInstallDay](#update-scheduledinstallday) -- [Update/ScheduledInstallTime](#update-scheduledinstalltime) -- [Update/UpdateServiceUrl](#update-updateserviceurl) -- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) - - - - -## Policies supported by HoloLens (1st gen) Commercial Suite - -- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) -- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) -- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) -- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) -- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) -- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) -- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) -- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) -- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) -- [Browser/AllowAutofill](#browser-allowautofill) -- [Browser/AllowCookies](#browser-allowcookies) -- [Browser/AllowDoNotTrack](#browser-allowdonottrack) -- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) -- [Browser/AllowPopups](#browser-allowpopups) -- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) -- [Browser/AllowSmartScreen](#browser-allowsmartscreen) -- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) -- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) -- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) -- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) -- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) -- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) -- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) -- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) -- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) -- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) -- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) -- [Experience/AllowCortana](#experience-allowcortana) -- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) -- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) -- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) -- [Settings/AllowDateTime](#settings-allowdatetime) -- [Settings/AllowVPN](#settings-allowvpn) -- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) -- [System/AllowLocation](#system-allowlocation) -- [System/AllowTelemetry](#system-allowtelemetry) -- [Update/AllowAutoUpdate](#update-allowautoupdate) -- [Update/AllowUpdateService](#update-allowupdateservice) -- [Update/RequireDeferUpgrade](#update-requiredeferupgrade) -- [Update/RequireUpdateApproval](#update-requireupdateapproval) -- [Update/ScheduledInstallDay](#update-scheduledinstallday) -- [Update/ScheduledInstallTime](#update-scheduledinstalltime) -- [Update/UpdateServiceUrl](#update-updateserviceurl) -- [Wifi/AllowManualWiFiConfiguration](policy-csp-wifi.md#wifi-allowmanualwificonfiguration) - - - -## Policies supported by HoloLens (1st gen) Development Edition - -- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) -- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) -- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) -- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) -- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) -- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) -- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) -- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) -- [Browser/AllowDoNotTrack](#browser-allowdonottrack) -- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) -- [Browser/AllowPopups](#browser-allowpopups) -- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) -- [Browser/AllowSmartScreen](#browser-allowsmartscreen) -- [Browser/AllowCookies](#browser-allowcookies) -- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) -- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) -- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) -- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) -- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) -- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) -- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) -- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) -- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) -- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) -- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) -- [Experience/AllowCortana](#experience-allowcortana) -- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) -- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) -- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) -- [Settings/AllowDateTime](#settings-allowdatetime) -- [Settings/AllowVPN](#settings-allowvpn) -- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) -- [System/AllowTelemetry](#system-allowtelemetry) -- [System/AllowLocation](#system-allowlocation) -- [Update/AllowAutoUpdate](#update-allowautoupdate) -- [Update/AllowUpdateService](#update-allowupdateservice) -- [Update/RequireUpdateApproval](#update-requireupdateapproval) -- [Update/ScheduledInstallDay](#update-scheduledinstallday) -- [Update/ScheduledInstallTime](#update-scheduledinstalltime) -- [Update/UpdateServiceUrl](#update-updateserviceurl) -- [Update/RequireDeferUpgrade](#update-requiredeferupgrade) -- [Wifi/AllowManualWiFiConfiguration](policy-csp-wifi.md#wifi-allowmanualwificonfiguration) - ## Policies supported by Microsoft Surface Hub From fdd5c2a8ecc4487e32c81dbd4550dbb7bb36e2c8 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 19 Jul 2019 16:38:47 -0700 Subject: [PATCH 032/138] Updated table columsn --- .../mdm/configuration-service-provider-reference.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md index e663aaf71d..62b6a957ad 100644 --- a/windows/client-management/mdm/configuration-service-provider-reference.md +++ b/windows/client-management/mdm/configuration-service-provider-reference.md @@ -2715,7 +2715,7 @@ You can download the DDF files for various CSPs from the links below: The following list shows the CSPs supported in HoloLens devices: | Configuration service provider | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | -|--------|--------|------------|--------------| +|--------|--------|--------|--------| | [AccountManagement CSP](accountmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | [Accounts CSP](accounts-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [ApplicationControl CSP](applicationcontrol-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | From 6e2530c7ee8539462b7059be9a35aff3cf9b3c1a Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 19 Jul 2019 16:39:20 -0700 Subject: [PATCH 033/138] Updated column width --- .../mdm/configuration-service-provider-reference.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md index 62b6a957ad..6889f31898 100644 --- a/windows/client-management/mdm/configuration-service-provider-reference.md +++ b/windows/client-management/mdm/configuration-service-provider-reference.md @@ -2715,7 +2715,7 @@ You can download the DDF files for various CSPs from the links below: The following list shows the CSPs supported in HoloLens devices: | Configuration service provider | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | -|--------|--------|--------|--------| +|------|--------|--------|--------| | [AccountManagement CSP](accountmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)4 | ![check mark](images/checkmark.png) | [Accounts CSP](accounts-csp.md) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [ApplicationControl CSP](applicationcontrol-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | From e46a8222c8940c9a942debfc7250b29e1d642263 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Fri, 19 Jul 2019 16:58:49 -0700 Subject: [PATCH 034/138] Adjusted column width --- .../mdm/policy-configuration-service-provider.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 99c22d12a3..cf8beb53b2 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5182,7 +5182,7 @@ The following diagram shows the Policy configuration service provider in tree fo The following list shows the Policies supported in HoloLens devices: | Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | -|--------|--------|------------|--------------| +| ----- | -------- | -------- | -------- | | [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | | [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | From f3cdf6366bac7dcce7ad302562e4dd92416ec5e7 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Fri, 19 Jul 2019 20:46:57 -0700 Subject: [PATCH 035/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...erating-system-components-to-microsoft-services-using-MDM.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 0a98e36716..f02e88097b 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -70,7 +70,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt > | 14. Offline maps | [AllowOfflineMapsDownloadOverMeteredConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps)|Allows the download and update of map data over metered connections.
**Set to 0 (zero)** | > | | [EnableOfflineMapsAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps#maps-enableofflinemapsautoupdate)|Disables the automatic download and update of map data. **Set to 0 (zero)** | > | 15. OneDrive | [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync)| Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** | -> | 15.1 Injest the ADMX | To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. | The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). | +> | 15.1 Ingest the ADMX | To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. | The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). There is a folder named "adm" which contains the admx and adml policy definition files. | > | 15.2 Prevent Network Traffic before User SignIn | PreventNetworkTrafficPreUserSignIn | The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn| > | 16. Preinstalled apps | N/A | N/A | > | 17. Privacy settings | | Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. | From de8640615423883f95523a724689513de9bb6ab7 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Fri, 19 Jul 2019 21:18:37 -0700 Subject: [PATCH 036/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ystem-components-to-microsoft-services-using-MDM.md | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index f02e88097b..b022cf4bcd 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -40,6 +40,16 @@ The following table lists management options for each setting. For Windows 10, the following MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). +1. **Automatic Root Certificates Update** + 1. **MDM Policy:** There is intentionally no MDM available for Automatic Root Certificate Update. + 1. **Description:** This MDM does not exist since it would prevent the operation and management of MDM management of devices. + +1. **Cortana and Search** + 1. **MDM Policy:** [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana) + 1. **Description:** Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** +1. (fin) + + > | Setting | MDM Policy | Description | > | --- | --- | --- | > | 1. Automatic Root Certificates Update | There is intentionally no MDM available for Automatic Root Certificate Update. | This MDM does not exist since it would prevent the operation and management of MDM management of devices.| From e2d69823ac97736e01d310eb3533ebcbd7fb3c25 Mon Sep 17 00:00:00 2001 From: Sarah Date: Mon, 22 Jul 2019 10:51:42 -0700 Subject: [PATCH 037/138] fixed an image --- devices/hololens/index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/devices/hololens/index.md b/devices/hololens/index.md index 3320efb458..abb50c076e 100644 --- a/devices/hololens/index.md +++ b/devices/hololens/index.md @@ -18,7 +18,7 @@ ms.date: 07/14/2019

Now, with the introduction of HoloLens 2, every device provides commercial ready management enhanced by the reliability, security, and scalability of cloud and AI services from Microsoft.

- +
MessageDate
Plan for change: Microsoft Silverlight will reach end of support on 12 October 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
10:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
Windows 10, version 1903 available by selecting “Check for updates”
Windows 10, version 1903 is now available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel.
June 06, 2019
06:00 PM PT
![Hololens](images/hololens2-side-render.png)
HoloLens 2 side view
## Guides in this section From ff1b3c656df1e43685b584bafe72184e7750f1d4 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Mon, 22 Jul 2019 10:55:40 -0700 Subject: [PATCH 038/138] Adjusted table --- .../policy-configuration-service-provider.md | 134 +++++++++--------- 1 file changed, 67 insertions(+), 67 deletions(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index cf8beb53b2..bbf49af22e 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5181,73 +5181,73 @@ The following diagram shows the Policy configuration service provider in tree fo The following list shows the Policies supported in HoloLens devices: -| Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | -| ----- | -------- | -------- | -------- | -| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) -| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowAutoFill](#browser-allowautofill) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Settings/AllowDateTime](#settings-allowdatetime) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Settings/AllowVPN](#settings-allowvpn) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowLocation](#system-allowlocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowStorageCard](#system-allowstoragecard) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowTelemetry](#system-allowtelemetry) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/AllowAutoUpdate](#update-allowautoupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/AllowUpdateService](#update-allowupdateservice) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | +| -------- | -------- | -------- | -------- | +| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) +| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowAutoFill](#browser-allowautofill) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | +| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Settings/AllowDateTime](#settings-allowdatetime) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Settings/AllowVPN](#settings-allowvpn) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowLocation](#system-allowlocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowStorageCard](#system-allowstoragecard) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowTelemetry](#system-allowtelemetry) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/AllowAutoUpdate](#update-allowautoupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/AllowUpdateService](#update-allowupdateservice) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | +| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | From ea80b70de90d9802e18e62764c7a157c03f9724a Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Mon, 22 Jul 2019 12:58:41 -0700 Subject: [PATCH 039/138] Updated HoloLens tables --- .../policy-configuration-service-provider.md | 214 ++++++++++++------ 1 file changed, 142 insertions(+), 72 deletions(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index bbf49af22e..8ac34d7d5f 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5175,80 +5175,150 @@ The following diagram shows the Policy configuration service provider in tree fo - [WirelessDisplay/AllowProjectionToPC](./policy-csp-wirelessdisplay.md#wirelessdisplay-allowprojectiontopc) - [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing) - -## Policies supported in HoloLens devices + +## Policies supported by HoloLens 2 +The following table shows the Policies supported in HoloLens 2 devices: +| Policy | HoloLens 2 | +| -------- | -------- | +| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) +| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | +| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | +| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![check mark](images/checkmark.png) | +| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![cross mark](images/crossmark.png) | +| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | +| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | +| [Browser/AllowAutofill](#browser-allowautofill) | ![check mark](images/checkmark.png) | +| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | +| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | +| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | +| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | +| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | +| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | +| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | +| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | +| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![check mark](images/checkmark.png) | +| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![check mark](images/checkmark.png) | +| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) | ![check mark](images/checkmark.png) | +| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) | ![check mark](images/checkmark.png) | +| [Settings/AllowDateTime](#settings-allowdatetime) | ![check mark](images/checkmark.png) | +| [Settings/AllowVPN](#settings-allowvpn) | ![check mark](images/checkmark.png) | +| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) | ![check mark](images/checkmark.png) | +| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) | ![check mark](images/checkmark.png) | +| [System/AllowLocation](#system-allowlocation) | ![check mark](images/checkmark.png) | +| [System/AllowStorageCard](#system-allowstoragecard) | ![check mark](images/checkmark.png) | +| [System/AllowTelemetry](#system-allowtelemetry) | ![check mark](images/checkmark.png) | +| [Update/AllowAutoUpdate](#update-allowautoupdate) | ![check mark](images/checkmark.png) | +| [Update/AllowUpdateService](#update-allowupdateservice) | ![check mark](images/checkmark.png) | +| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![check mark](images/checkmark.png) | +| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![check mark](images/checkmark.png) | +| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![check mark](images/checkmark.png) | +| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![check mark](images/checkmark.png) | +| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![check mark](images/checkmark.png) | +| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![check mark](images/checkmark.png) | +| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![cross mark](images/crossmark.png) | +| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![cross mark](images/crossmark.png) | +| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | +| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | +| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | +| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | + -The following list shows the Policies supported in HoloLens devices: - -| Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 | -| -------- | -------- | -------- | -------- | -| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) -| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowAutoFill](#browser-allowautofill) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| ![check mark](images/checkmark.png) | -| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Settings/AllowDateTime](#settings-allowdatetime) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Settings/AllowVPN](#settings-allowvpn) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowLocation](#system-allowlocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowStorageCard](#system-allowstoragecard) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowTelemetry](#system-allowtelemetry) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/AllowAutoUpdate](#update-allowautoupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/AllowUpdateService](#update-allowupdateservice) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![cross mark](images/crossmark.png) | -| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | - + +## Policies supported by HoloLens (1st gen) +The following table shows the Policies supported in HoloLens (1st gen) devices: +| Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | +| -------- | -------- | -------- | +| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowAutofill](#browser-allowautofill) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Settings/AllowDateTime](#settings-allowdatetime) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Settings/AllowVPN](#settings-allowvpn) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [System/AllowLocation](#system-allowlocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [System/AllowStorageCard](#system-allowstoragecard) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [System/AllowTelemetry](#system-allowtelemetry) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/AllowAutoUpdate](#update-allowautoupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/AllowUpdateService](#update-allowupdateservice) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | +| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | +| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | + ## Policies supported by Microsoft Surface Hub From 377782306a45c9c539ff66ac0074331708e3ce73 Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Mon, 22 Jul 2019 13:10:10 -0700 Subject: [PATCH 040/138] formatted table --- .../mdm/policy-configuration-service-provider.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 8ac34d7d5f..585bde3d59 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5179,6 +5179,7 @@ The following diagram shows the Policy configuration service provider in tree fo ## Policies supported by HoloLens 2 The following table shows the Policies supported in HoloLens 2 devices: + | Policy | HoloLens 2 | | -------- | -------- | | [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) @@ -5251,6 +5252,7 @@ The following table shows the Policies supported in HoloLens 2 devices: ## Policies supported by HoloLens (1st gen) The following table shows the Policies supported in HoloLens (1st gen) devices: + | Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | | -------- | -------- | -------- | | [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | From 4a8505ea642a4ef29bdb89be1c3468e7934ca65b Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Mon, 22 Jul 2019 13:23:42 -0700 Subject: [PATCH 041/138] Formatted table --- .../mdm/policy-configuration-service-provider.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 585bde3d59..2a4878284e 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5291,9 +5291,9 @@ The following table shows the Policies supported in HoloLens (1st gen) devices: | [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| | [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| | [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/ LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/ LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| +| [Privacy/ LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| | [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| | [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| | [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| From 6cb3eec7883d92cb6a099b3059535f8fc31b4df8 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Mon, 22 Jul 2019 13:55:29 -0700 Subject: [PATCH 042/138] update topic title and sections --- windows/security/threat-protection/TOC.md | 3 +-- .../microsoft-defender-atp/commercial-gov.md | 4 ++-- 2 files changed, 3 insertions(+), 4 deletions(-) diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index 935138e41b..cd28df105d 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -116,7 +116,7 @@ ### [Microsoft Threat Experts](microsoft-defender-atp/microsoft-threat-experts.md) ### [Portal overview](microsoft-defender-atp/portal-overview.md) - +### [Microsoft Defender ATP for US Government customers](microsoft-defender-atp/commercial-gov.md) ## [Get started]() ### [What's new in Microsoft Defender ATP](microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md) @@ -124,7 +124,6 @@ ### [Validate licensing and complete setup](microsoft-defender-atp/licensing.md) ### [Preview features](microsoft-defender-atp/preview.md) ### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md) -### [Microsoft Defender ATP in Azure Government ](microsoft-defender-atp/commercial-gov.md) ### [Assign user access to the portal](microsoft-defender-atp/assign-portal-access.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index d598e63b2b..f364c1ba2e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -17,12 +17,12 @@ ms.collection: M365-security-compliance ms.topic: conceptual --- -# Microsoft Defender ATP in Azure Government +# Microsoft Defender ATP for US Government customers **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) in Azure Government uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Azure Government version. +Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) in Azure Government uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Office 365 GCC High customers. ## Endpoint versions From 0d8f5f11e863723740c73f00295abb56f91fede8 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Mon, 22 Jul 2019 13:59:20 -0700 Subject: [PATCH 043/138] add device sharing for intune details --- .../microsoft-defender-atp/commercial-gov.md | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index f364c1ba2e..5b520ffe75 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -22,7 +22,9 @@ ms.topic: conceptual **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) in Azure Government uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Office 365 GCC High customers. +Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for US Government customers uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. + +This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Office 365 GCC High customers. ## Endpoint versions @@ -76,7 +78,7 @@ Integrations with the following Microsoft products are not currently available: - Office 365 Advanced Threat Protection - Microsoft Cloud App Security - Skype for Business -- Microsoft Intune +- Microsoft Intune (sharing of device information and enhanced policy enforcement) ## Microsoft Threat Experts Not currently available. From 3de806d87bbe2b130c2707c69e95119191a65c80 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Mon, 22 Jul 2019 14:13:14 -0700 Subject: [PATCH 044/138] add macos in not supported --- .../threat-protection/microsoft-defender-atp/commercial-gov.md | 1 + 1 file changed, 1 insertion(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index 5b520ffe75..26de307f2e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -48,6 +48,7 @@ The following OS versions are not supported: - Windows 7 SP1 Pro - Windows 8 Pro - Windows 8.1 Enterprise +- macOS The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our Azure Government environment, there are some capabilities not yet available that we'd like to highlight. These are the known gaps as of August 2019: From 1a92f55589bd9b51f07944d0561ae298194e2c4c Mon Sep 17 00:00:00 2001 From: ManikaDhiman Date: Tue, 23 Jul 2019 10:17:07 -0700 Subject: [PATCH 045/138] Reverted to HoloLens individual lists --- .../policy-configuration-service-provider.md | 298 +++++++++--------- 1 file changed, 157 insertions(+), 141 deletions(-) diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md index 2a4878284e..ffbe41d342 100644 --- a/windows/client-management/mdm/policy-configuration-service-provider.md +++ b/windows/client-management/mdm/policy-configuration-service-provider.md @@ -5175,152 +5175,168 @@ The following diagram shows the Policy configuration service provider in tree fo - [WirelessDisplay/AllowProjectionToPC](./policy-csp-wirelessdisplay.md#wirelessdisplay-allowprojectiontopc) - [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing) - -## Policies supported by HoloLens 2 +## Policies supported by HoloLens 2 -The following table shows the Policies supported in HoloLens 2 devices: +- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) +- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) +- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) +- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) +- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) +- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) +- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) +- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) +- [Browser/AllowAutofill](#browser-allowautofill) +- [Browser/AllowCookies](#browser-allowcookies) +- [Browser/AllowDoNotTrack](#browser-allowdonottrack) +- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) +- [Browser/AllowPopups](#browser-allowpopups) +- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) +- [Browser/AllowSmartScreen](#browser-allowsmartscreen) +- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) +- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) +- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) +- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) +- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) +- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) +- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) +- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) +- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) +- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) +- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) +- [Experience/AllowCortana](#experience-allowcortana) +- [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) +- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) +- [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) +- [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) +- [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) +- [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) +- [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) +- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) +- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) +- [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) +- [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) +- [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) +- [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) +- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) +- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) +- [Settings/AllowDateTime](#settings-allowdatetime) +- [Settings/AllowVPN](#settings-allowvpn) +- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) +- [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) +- [System/AllowLocation](#system-allowlocation) +- [System/AllowStorageCard](#system-allowstoragecard) +- [System/AllowTelemetry](#system-allowtelemetry) +- [Update/AllowAutoUpdate](#update-allowautoupdate) +- [Update/AllowUpdateService](#update-allowupdateservice) +- [Update/BranchReadinessLevel](#update-branchreadinesslevel) +- [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) +- [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) +- [Update/ManagePreviewBuilds](#update-managepreviewbuilds) +- [Update/PauseFeatureUpdates](#update-pausefeatureupdates) +- [Update/PauseQualityUpdates](#update-pausequalityupdates) +- [Update/ScheduledInstallDay](#update-scheduledinstallday) +- [Update/ScheduledInstallTime](#update-scheduledinstalltime) +- [Update/UpdateServiceUrl](#update-updateserviceurl) +- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) -| Policy | HoloLens 2 | -| -------- | -------- | -| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) -| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | -| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | -| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![check mark](images/checkmark.png) | -| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![cross mark](images/crossmark.png) | -| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | -| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | -| [Browser/AllowAutofill](#browser-allowautofill) | ![check mark](images/checkmark.png) | -| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | -| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | -| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | -| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | -| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | -| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | -| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | -| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | -| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![check mark](images/checkmark.png) | -| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![check mark](images/checkmark.png) | -| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) | ![check mark](images/checkmark.png) | -| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) | ![check mark](images/checkmark.png) | -| [Settings/AllowDateTime](#settings-allowdatetime) | ![check mark](images/checkmark.png) | -| [Settings/AllowVPN](#settings-allowvpn) | ![check mark](images/checkmark.png) | -| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) | ![check mark](images/checkmark.png) | -| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) | ![check mark](images/checkmark.png) | -| [System/AllowLocation](#system-allowlocation) | ![check mark](images/checkmark.png) | -| [System/AllowStorageCard](#system-allowstoragecard) | ![check mark](images/checkmark.png) | -| [System/AllowTelemetry](#system-allowtelemetry) | ![check mark](images/checkmark.png) | -| [Update/AllowAutoUpdate](#update-allowautoupdate) | ![check mark](images/checkmark.png) | -| [Update/AllowUpdateService](#update-allowupdateservice) | ![check mark](images/checkmark.png) | -| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![check mark](images/checkmark.png) | -| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![check mark](images/checkmark.png) | -| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![check mark](images/checkmark.png) | -| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![check mark](images/checkmark.png) | -| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![check mark](images/checkmark.png) | -| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![check mark](images/checkmark.png) | -| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![cross mark](images/crossmark.png) | -| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![cross mark](images/crossmark.png) | -| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | -| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | -| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | -| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | - -## Policies supported by HoloLens (1st gen) -The following table shows the Policies supported in HoloLens (1st gen) devices: + +## Policies supported by HoloLens (1st gen) Commercial Suite -| Policy | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | -| -------- | -------- | -------- | -| [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowAutofill](#browser-allowautofill) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowCookies](#browser-allowcookies) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowDoNotTrack](#browser-allowdonottrack) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowPasswordManager](#browser-allowpasswordmanager) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowPopups](#browser-allowpopups) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Browser/AllowSmartScreen](#browser-allowsmartscreen) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Experience/AllowCortana](#experience-allowcortana) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/ LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/ LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/ LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)| -| [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Security/RequireDeviceEncryption](#security-requiredeviceencryption) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Settings/AllowDateTime](#settings-allowdatetime) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Settings/AllowVPN](#settings-allowvpn) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [System/AllowLocation](#system-allowlocation) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [System/AllowStorageCard](#system-allowstoragecard) |![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [System/AllowTelemetry](#system-allowtelemetry) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/AllowAutoUpdate](#update-allowautoupdate) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/AllowUpdateService](#update-allowupdateservice) |![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/BranchReadinessLevel](#update-branchreadinesslevel) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [Update/ManagePreviewBuilds](#update-managepreviewbuilds) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [Update/PauseFeatureUpdates](#update-pausefeatureupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [Update/PauseQualityUpdates](#update-pausequalityupdates) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | -| [Update/RequireDeferUpgrade](#update-requiredeferupgrade) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/RequireUpdateApproval](#update-requireupdateapproval) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/ScheduledInstallDay](#update-scheduledinstallday) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/ScheduledInstallTime](#update-scheduledinstalltime) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Update/UpdateServiceUrl](#update-updateserviceurl) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | -| [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | - +- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) +- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) +- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) +- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) +- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) +- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname) +- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) +- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) +- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) +- [Browser/AllowAutofill](#browser-allowautofill) +- [Browser/AllowCookies](#browser-allowcookies) +- [Browser/AllowDoNotTrack](#browser-allowdonottrack) +- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) +- [Browser/AllowPopups](#browser-allowpopups) +- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) +- [Browser/AllowSmartScreen](#browser-allowsmartscreen) +- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) +- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) +- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) +- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) +- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) +- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) +- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) +- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) +- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) +- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) +- [Experience/AllowCortana](#experience-allowcortana) +- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) +- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) +- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) +- [Settings/AllowDateTime](#settings-allowdatetime) +- [Settings/AllowVPN](#settings-allowvpn) +- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) +- [System/AllowLocation](#system-allowlocation) +- [System/AllowTelemetry](#system-allowtelemetry) +- [Update/AllowAutoUpdate](#update-allowautoupdate) +- [Update/AllowUpdateService](#update-allowupdateservice) +- [Update/RequireDeferUpgrade](#update-requiredeferupgrade) +- [Update/RequireUpdateApproval](#update-requireupdateapproval) +- [Update/ScheduledInstallDay](#update-scheduledinstallday) +- [Update/ScheduledInstallTime](#update-scheduledinstalltime) +- [Update/UpdateServiceUrl](#update-updateserviceurl) +- [Wifi/AllowManualWiFiConfiguration](policy-csp-wifi.md#wifi-allowmanualwificonfiguration) + + + +## Policies supported by HoloLens (1st gen) Development Edition + +- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection) +- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate) +- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock) +- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps) +- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect) +- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising) +- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode) +- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename) +- [Browser/AllowDoNotTrack](#browser-allowdonottrack) +- [Browser/AllowPasswordManager](#browser-allowpasswordmanager) +- [Browser/AllowPopups](#browser-allowpopups) +- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar) +- [Browser/AllowSmartScreen](#browser-allowsmartscreen) +- [Browser/AllowCookies](#browser-allowcookies) +- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth) +- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection) +- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword) +- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts) +- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock) +- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength) +- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory) +- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired) +- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters) +- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword) +- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled) +- [Experience/AllowCortana](#experience-allowcortana) +- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization) +- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation) +- [Security/RequireDeviceEncryption](#security-requiredeviceencryption) +- [Settings/AllowDateTime](#settings-allowdatetime) +- [Settings/AllowVPN](#settings-allowvpn) +- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate) +- [System/AllowTelemetry](#system-allowtelemetry) +- [System/AllowLocation](#system-allowlocation) +- [Update/AllowAutoUpdate](#update-allowautoupdate) +- [Update/AllowUpdateService](#update-allowupdateservice) +- [Update/RequireUpdateApproval](#update-requireupdateapproval) +- [Update/ScheduledInstallDay](#update-scheduledinstallday) +- [Update/ScheduledInstallTime](#update-scheduledinstalltime) +- [Update/UpdateServiceUrl](#update-updateserviceurl) +- [Update/RequireDeferUpgrade](#update-requiredeferupgrade) +- [Wifi/AllowManualWiFiConfiguration](policy-csp-wifi.md#wifi-allowmanualwificonfiguration) + ## Policies supported by Microsoft Surface Hub From 7fdb83ede0f67c5cce850fc36ad1108ec1363c15 Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Tue, 23 Jul 2019 16:48:23 -0700 Subject: [PATCH 046/138] Updated with note and TVM references --- .../microsoft-defender-atp/overview-secure-score.md | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md index cb57adc063..e0b8251596 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md +++ b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md @@ -21,6 +21,9 @@ ms.topic: conceptual **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) +>[!NOTE] +> Secure score is now part of Threat & Vulnerability Management as Configuration score. The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + The Secure score dashboard expands your visibility into the overall security posture of your organization. From this dashboard, you'll be able to quickly assess the security posture of your organization, see machines that require attention, as well as recommendations for actions to further reduce the attack surface in your organization - all in one place. From there you can take action based on the recommended configuration baselines. >[!IMPORTANT] @@ -77,5 +80,14 @@ Within the tile, you can click on each control to see the recommended optimizati Clicking the link under the **Misconfigured machines** column opens up the **Machines list** with filters applied to show only the list of machines where the recommendation is applicable. You can export the list in Excel to create a target collection and apply relevant policies using a management solution of your choice. ## Related topic +- [Configuration score](configuration-score.md) +- [Risk-based Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) +- [Threat & Vulnerability Management dashboard overview](tvm-dashboard-insights.md) +- [Exposure score](tvm-exposure-score.md) +- [Security recommendations](tvm-security-recommendation.md) +- [Remediation](tvm-remediation.md) +- [Software inventory](tvm-software-inventory.md) +- [Weaknesses](tvm-weaknesses.md) +- [Scenarios](threat-and-vuln-mgt-scenarios.md) - [Threat analytics](threat-analytics.md) From a1569acf31b26ed933fb97b249aad436423bbe05 Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Tue, 23 Jul 2019 16:50:25 -0700 Subject: [PATCH 047/138] Update overview-secure-score.md --- .../microsoft-defender-atp/overview-secure-score.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md index e0b8251596..a2c2292416 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md +++ b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md @@ -22,7 +22,7 @@ ms.topic: conceptual - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) >[!NOTE] -> Secure score is now part of Threat & Vulnerability Management as Configuration score. The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. +> Secure score is now part of Threat & Vulnerability Management as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. The Secure score dashboard expands your visibility into the overall security posture of your organization. From this dashboard, you'll be able to quickly assess the security posture of your organization, see machines that require attention, as well as recommendations for actions to further reduce the attack surface in your organization - all in one place. From there you can take action based on the recommended configuration baselines. From 27bfacfb3d0006566030586bbde53162b36185eb Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Tue, 23 Jul 2019 16:51:24 -0700 Subject: [PATCH 048/138] Update overview-secure-score.md --- .../microsoft-defender-atp/overview-secure-score.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md index a2c2292416..9fdae040ab 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md +++ b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md @@ -40,7 +40,7 @@ The **Secure score dashboard** displays a snapshot of: ![Secure score dashboard](images/new-secure-score-dashboard.png) ## Microsoft secure score -The Microsoft secure score tile is reflective of the sum of all the Windows Defender security controls that are configured according to the recommended baseline and Office 365 controls. It allows you to drill down into each portal for further analysis. You can also improve this score by taking the steps in configuring each of the security controls in the optimal settings. +The Microsoft secure score tile is reflective of the sum of all the Microsoft Defender security controls that are configured according to the recommended baseline and Office 365 controls. It allows you to drill down into each portal for further analysis. You can also improve this score by taking the steps in configuring each of the security controls in the optimal settings. ![Image of Microsoft secure score tile](images/mss.png) From 03fbb33d7dac0bd8461642562713b50187a7a963 Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Tue, 23 Jul 2019 16:56:07 -0700 Subject: [PATCH 049/138] Updated links --- .../microsoft-defender-atp/overview-secure-score.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md index 9fdae040ab..bdce0881eb 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md +++ b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md @@ -22,7 +22,7 @@ ms.topic: conceptual - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) >[!NOTE] -> Secure score is now part of Threat & Vulnerability Management as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. +> Secure score is now part of [Risk-based Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. The Secure score dashboard expands your visibility into the overall security posture of your organization. From this dashboard, you'll be able to quickly assess the security posture of your organization, see machines that require attention, as well as recommendations for actions to further reduce the attack surface in your organization - all in one place. From there you can take action based on the recommended configuration baselines. @@ -44,7 +44,7 @@ The Microsoft secure score tile is reflective of the sum of all the Microsoft De ![Image of Microsoft secure score tile](images/mss.png) -Each Windows Defender security control contributes 100 points to the score. The total number is reflective of the score potential and calculated by multiplying the number of supported security controls (Microsoft Defender security controls pillars) by the maximum points that each pillar contributes (maximum of 100 points for each pillar). +Each Windows Defender security control contributes 100 points to the score. The total number is reflective of the score potential and calculated by multiplying the number of supported security controls (Windows Defender security controls pillars) by the maximum points that each pillar contributes (maximum of 100 points for each pillar). The Office 365 Secure Score looks at your settings and activities and compares them to a baseline established by Microsoft. For more information, see [Introducing the Office 365 Secure Score](https://support.office.com/en-us/article/introducing-the-office-365-secure-score-c9e7160f-2c34-4bd0-a548-5ddcc862eaef#howtoaccess). From 1e162aee1fe13af8d9f764589b9c77a718bb7f6a Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Tue, 23 Jul 2019 16:59:19 -0700 Subject: [PATCH 050/138] Update overview-secure-score.md --- .../microsoft-defender-atp/overview-secure-score.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md index bdce0881eb..1d466fca97 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md +++ b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md @@ -22,7 +22,7 @@ ms.topic: conceptual - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) >[!NOTE] -> Secure score is now part of [Risk-based Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. +> Secure score is now part of [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. The Secure score dashboard expands your visibility into the overall security posture of your organization. From this dashboard, you'll be able to quickly assess the security posture of your organization, see machines that require attention, as well as recommendations for actions to further reduce the attack surface in your organization - all in one place. From there you can take action based on the recommended configuration baselines. @@ -80,10 +80,10 @@ Within the tile, you can click on each control to see the recommended optimizati Clicking the link under the **Misconfigured machines** column opens up the **Machines list** with filters applied to show only the list of machines where the recommendation is applicable. You can export the list in Excel to create a target collection and apply relevant policies using a management solution of your choice. ## Related topic -- [Configuration score](configuration-score.md) -- [Risk-based Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) +- [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) - [Threat & Vulnerability Management dashboard overview](tvm-dashboard-insights.md) - [Exposure score](tvm-exposure-score.md) +- [Configuration score](configuration-score.md) - [Security recommendations](tvm-security-recommendation.md) - [Remediation](tvm-remediation.md) - [Software inventory](tvm-software-inventory.md) From 0b994d8e69c7887de408bab57592d677fa67c9e3 Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Tue, 23 Jul 2019 17:08:42 -0700 Subject: [PATCH 051/138] Updated TVM topics and added SecureScore note --- windows/security/threat-protection/index.md | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md index 8ef02bab91..da60a14421 100644 --- a/windows/security/threat-protection/index.md +++ b/windows/security/threat-protection/index.md @@ -39,9 +39,15 @@ ms.localizationpriority: medium **[Threat & Vulnerability Management](microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md)**
This built-in capability uses a game-changing risk-based approach to the discovery, prioritization, and remediation of endpoint vulnerabilities and misconfigurations. + - [Risk-based Threat & Vulnerability Management](microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md) - [What's in the dashboard and what it means for my organization](microsoft-defender-atp/tvm-dashboard-insights.md) +- [Exposure score](microsoft-defender-atp/tvm-exposure-score.md) - [Configuration score](microsoft-defender-atp/configuration-score.md) +- [Security recommendations](microsoft-defender-atp/tvm-security-recommendation.md) +- [Remediation](microsoft-defender-atp/tvm-remediation.md) +- [Software inventory](microsoft-defender-atp/tvm-software-inventory.md) +- [Weaknesses](microsoft-defender-atp/tvm-weaknesses.md) - [Scenarios](microsoft-defender-atp/threat-and-vuln-mgt-scenarios.md) @@ -97,6 +103,9 @@ In conjunction with being able to quickly respond to advanced attacks, Microsoft **[Secure score](microsoft-defender-atp/overview-secure-score.md)**
+>[!NOTE] +> Secure score is now part of [Threat & Vulnerability Management](microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md) as [Configuration score](microsoft-defender-atp/configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + Microsoft Defender ATP includes a secure score to help you dynamically assess the security state of your enterprise network, identify unprotected systems, and take recommended actions to improve the overall security of your organization. - [Asset inventory](microsoft-defender-atp/secure-score-dashboard.md) - [Recommended improvement actions](microsoft-defender-atp/secure-score-dashboard.md) From c2a8a3798fa7bb205b9b61b4f4edd4780e3083e3 Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Tue, 23 Jul 2019 17:23:47 -0700 Subject: [PATCH 052/138] Added deprecation note and TVM topic links --- .../secure-score-dashboard.md | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md index ad43e002b8..b98230426d 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md +++ b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md @@ -20,6 +20,9 @@ ms.topic: article **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) +>[!NOTE] +> Secure score is now part of [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + Each security control lists recommendations that you can take to increase the security posture of your organization. ### Endpoint detection and response (EDR) optimization @@ -281,6 +284,16 @@ For more information, see [Manage Windows Defender Credential Guard](https://doc ## Related topics - [Overview of Secure score](overview-secure-score.md) +- [Risk-based Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) +- [Threat & Vulnerability Management dashboard overview](tvm-dashboard-insights.md) +- [Exposure score](tvm-exposure-score.md) +- [Configuration score](configuration-score.md) +- [Security recommendations](tvm-security-recommendation.md) +- [Remediation](tvm-remediation.md) +- [Software inventory](tvm-software-inventory.md) +- [Weaknesses](tvm-weaknesses.md) +- [Scenarios](threat-and-vuln-mgt-scenarios.md) + From 71f805192d5f072ad4e43243c064ddb4b7463cbe Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Tue, 23 Jul 2019 17:24:27 -0700 Subject: [PATCH 053/138] updates from pms --- .../microsoft-defender-atp/commercial-gov.md | 17 ++++++++--------- .../overview-secure-score.md | 2 +- 2 files changed, 9 insertions(+), 10 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index 26de307f2e..b31826876f 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -1,7 +1,7 @@ --- -title: Microsoft Defender ATP in Azure Government -description: Learn about the requirements and the available Microsoft Defender ATP capabilities in Azure Government -keywords: government, requirements, capabilities, azure, defender, defender atp, mdatp +title: Microsoft Defender ATP for US Government CCC High customers +description: Learn about the requirements and the available Microsoft Defender ATP capabilities for US Government CCC High customers +keywords: government, gcc, high, requirements, capabilities, defender, defender atp, mdatp search.product: eADQiWindows 10XVcnh search.appverid: met150 ms.prod: w10 @@ -17,14 +17,14 @@ ms.collection: M365-security-compliance ms.topic: conceptual --- -# Microsoft Defender ATP for US Government customers +# Microsoft Defender ATP for US Government CCC High customers **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for US Government customers uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. +Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for US Government GCC High customers, built in the US Azure Government environment, uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. -This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for Office 365 GCC High customers. +This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for this offering. ## Endpoint versions @@ -50,8 +50,7 @@ The following OS versions are not supported: - Windows 8.1 Enterprise - macOS -The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our Azure Government environment, there are some capabilities not yet available that we'd like to highlight. These are the known gaps as of August 2019: - +The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our Office 365 GCC High customers, there are some capabilities not yet available that we'd like to highlight. These are the known gaps for US GCC High customers as of August 2019: ## Threat & Vulnerability Management Not currently available. @@ -64,7 +63,7 @@ The following capabilities are not currently available: ## Management and APIs -The following capabilities are not available: +The following capabilities are not currently available: - Threat protection report - Machine health and compliance report diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md index cb57adc063..2dd209c645 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md +++ b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md @@ -43,7 +43,7 @@ The Microsoft secure score tile is reflective of the sum of all the Windows Defe Each Windows Defender security control contributes 100 points to the score. The total number is reflective of the score potential and calculated by multiplying the number of supported security controls (Microsoft Defender security controls pillars) by the maximum points that each pillar contributes (maximum of 100 points for each pillar). -The Office 365 Secure Score looks at your settings and activities and compares them to a baseline established by Microsoft. For more information, see [Introducing the Office 365 Secure Score](https://support.office.com/en-us/article/introducing-the-office-365-secure-score-c9e7160f-2c34-4bd0-a548-5ddcc862eaef#howtoaccess). +The Office 365 Secure Score looks at your settings and activities and compares them to a baseline established by Microsoft. For more information, see [Introducing the Office 365 Secure Score](https://support.office.com/article/introducing-the-office-365-secure-score-c9e7160f-2c34-4bd0-a548-5ddcc862eaef#howtoaccess). In the example image, the total points for the Windows security controls and Office 365 add up to 602 points. From 5422988bf93d5680a44e012a87c75ccd1154d58a Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Tue, 23 Jul 2019 18:44:36 -0700 Subject: [PATCH 054/138] add new issues (#745) --- .../resolved-issues-windows-10-1607.yml | 14 ++------------ ...ues-windows-10-1809-and-windows-server-2019.yml | 2 -- ...tus-windows-10-1607-and-windows-server-2016.yml | 6 ++---- .../release-information/status-windows-10-1703.yml | 2 -- .../release-information/status-windows-10-1709.yml | 2 -- .../release-information/status-windows-10-1803.yml | 2 -- ...tus-windows-10-1809-and-windows-server-2019.yml | 6 ------ .../release-information/status-windows-10-1903.yml | 1 - ...us-windows-7-and-windows-server-2008-r2-sp1.yml | 12 ------------ ...atus-windows-8.1-and-windows-server-2012-r2.yml | 12 ------------ .../status-windows-server-2008-sp2.yml | 10 ---------- .../status-windows-server-2012.yml | 14 -------------- .../release-information/windows-message-center.yml | 2 +- 13 files changed, 5 insertions(+), 80 deletions(-) diff --git a/windows/release-information/resolved-issues-windows-10-1607.yml b/windows/release-information/resolved-issues-windows-10-1607.yml index f7a7113111..f39eb6c19d 100644 --- a/windows/release-information/resolved-issues-windows-10-1607.yml +++ b/windows/release-information/resolved-issues-windows-10-1607.yml @@ -32,6 +32,7 @@ sections: - type: markdown text: " + @@ -54,8 +55,6 @@ sections: - -
SummaryOriginating updateStatusDate resolved
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

See details >		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 14393.2969

May 14, 2019
KB4494440		Resolved
KB4507460		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		June 27, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Resolved
KB4487026		February 12, 2019
10:00 AM PT
Instant search in Microsoft Outlook fails on Windows Server 2016
Instant search in Microsoft Outlook clients fail with the error, \"Outlook cannot perform the search\" on Windows Server 2016.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4487026		February 12, 2019
10:00 AM PT
SqlConnection instantiation exception on .NET 4.6 and later
Instantiation of SqlConnection can throw an exception after certain updates have been installed.

See details >		OS Build 14393.2457

August 30, 2018
KB4343884		Resolved
KB4480977		January 17, 2019
02:00 PM PT
Unable to access hotspots with third-party applications
Third-party applications may have difficulty authenticating hotspots.

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Resolved
KB4480977		January 17, 2019
02:00 PM PT
" @@ -132,7 +131,6 @@ sections:
MSXML6 may cause applications to stop responding
After installing KB4480961, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493470.

Back to topOS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480977, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487006.

Back to topOS Build 14393.2759

January 17, 2019
KB4480977Resolved
KB4487006Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 17, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, “Unrecognized Database Format”.

Affected platforms:
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4487026.

Back to topOS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4487026Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT -
Unable to access hotspots with third-party applications
After installing KB4480961, third-party applications may have difficulty authenticating hotspots.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4480977.

Back to topOS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4480977Resolved:
January 17, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT " @@ -141,15 +139,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
Instant search in Microsoft Outlook fails on Windows Server 2016
After installing KB4467684 on Windows Server 2016, instant search in Microsoft Outlook clients fail with the error, \"Outlook cannot perform the search\".

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue is resolved in KB4487026.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4487026		Resolved:
February 12, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
" - -- title: August 2018 -- items: - - type: markdown - text: " - - -
DetailsOriginating updateStatusHistory
SqlConnection instantiation exception on .NET 4.6 and later
After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception.

For more information about this issue, see the following article in the Microsoft Knowledge Base: 4470809, SqlConnection instantiation exception on .NET 4.6 and later after August-September 2018 .NET Framework updates.

Affected platforms:
  • Client: Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue is resolved in KB4480977.

Back to top		OS Build 14393.2457

August 30, 2018
KB4343884		Resolved
KB4480977		Resolved:
January 17, 2019
02:00 PM PT

Opened:
August 30, 2018
05:00 PM PT
- " diff --git a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml index c3b5e984d1..50ed0c88b7 100644 --- a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml @@ -62,7 +62,6 @@ sections:
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4487044February 12, 2019
10:00 AM PT
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Upgrade block: Devices utilizing AMD Radeon HD2000 or HD4000 series video cards may experience issues with the lock screen and Microsoft Edge tabs.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4487044February 12, 2019
10:00 AM PT
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro identified a compatibility issue with the Trend Micro business endpoint security solutions OfficeScan and Worry-Free Business Security.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
February 01, 2019
09:00 AM PT -
Unable to access hotspots with third-party applications
Third-party applications may have difficulty authenticating hotspots.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4476976January 22, 2019
02:00 PM PT " @@ -142,7 +141,6 @@ sections:
MSXML6 may cause applications to stop responding
After installing KB4480116, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().
 
The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493509

Back to topOS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Global DNS outage affects Windows Update customers
Windows Update customers were affected by a network infrastructure event on January 29, 2019 (21:00 UTC), caused by an external DNS service provider's global outage. A software update to the external provider's DNS servers resulted in the distribution of corrupted DNS records that affected connectivity to the Windows Update service. The DNS records were restored by January 30, 2019 (00:10 UTC), and the majority of local Internet Service Providers (ISP) have refreshed their DNS servers and customer services have been restored. 
 
Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
While this was not an issue with Microsoft's services, we take any service disruption for our customers seriously. We will work with partners to better understand this so we can provide higher quality service in the future even across diverse global network providers. 
 
If you are still unable to connect to Windows Update services due to this problem, please contact your local ISP or network administrator. You can also refer to our new KB4493784 for more information to determine if your network is affected, and to provide your local ISP or network administrator with additional information to assist you. 

Back to topN/A

Resolved
Resolved:
March 08, 2019
11:15 AM PT

Opened:
January 29, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
After installing KB4480116, some Microsoft Edge users report that they:
  • Cannot load web pages using a local IP address. 
  • Cannot load web pages on the Internet using a VPN connection.
Browsing fails or the web page may become unresponsive.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709
Resolution: This issue is resolved in KB4487020

Back to topOS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4487044Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT -
Unable to access hotspots with third-party applications
After installing KB4480116, third-party applications may have difficulty authenticating hotspots. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4476976

Back to topOS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4476976Resolved:
January 22, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT " diff --git a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml index 02443f7e42..004468483a 100644 --- a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml +++ b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml @@ -62,13 +62,12 @@ sections: - + -
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
July 10, 2019
07:09 PM PT
Cluster service may fail if the minimum password length is set to greater than 14
The cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the Group Policy “Minimum Password Length” is configured with greater than 14 characters.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Mitigated
April 25, 2019
02:00 PM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

See details >		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
February 19, 2019
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

See details >		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 14393.2969

May 14, 2019
KB4494440		Resolved
KB4507460		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		June 27, 2019
02:00 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Resolved
KB4503294		June 18, 2019
02:00 PM PT
" @@ -95,7 +94,6 @@ sections: -
DetailsOriginating updateStatusHistory
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016) after installation of KB4493473 on the server. Applications that may exhibit this behavior use an IFRAME during non-interactive authentication requests and receive X-Frame Options set to DENY.

Affected platforms:
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
June 04, 2019
05:55 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499177. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509475.

Back to top		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		Resolved:
June 27, 2019
02:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503294.

Back to top		OS Build 14393.3025

June 11, 2019
KB4503267		Resolved
KB4503294		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" @@ -123,7 +121,7 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Cluster service may fail if the minimum password length is set to greater than 14
After installing KB4467684, the cluster service may fail to start with the error \"2245 (NERR_PasswordTooShort)\" if the Group Policy \"Minimum Password Length\" is configured with greater than 14 characters.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Set the domain default \"Minimum Password Length\" policy to less than or equal to 14 characters.

Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround:
Run mofcomp on the following mof files on the affected host:
  • Scvmmswitchportsettings.mof
  • VMMDHCPSvr.mof
Follow the best practices while patching to avoid a stop error in vfpext.sys in an SDN v2 environment (NC managed hosts).

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
After installing KB4467691, Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart.

If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled.

Next steps: Lenovo and Fujitsu are aware of this issue. Please contact your OEM to ask if there is a firmware update available for your device.

Back to top		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
Last updated:
February 19, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
" diff --git a/windows/release-information/status-windows-10-1703.yml b/windows/release-information/status-windows-10-1703.yml index 7bc0807985..a45bf5b15b 100644 --- a/windows/release-information/status-windows-10-1703.yml +++ b/windows/release-information/status-windows-10-1703.yml @@ -63,7 +63,6 @@ sections:
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 15063.1563

January 08, 2019
KB4480973Mitigated
April 25, 2019
02:00 PM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >OS Build 15063.1805

May 14, 2019
KB4499181Resolved
KB4507450July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 15063.1839

May 28, 2019
KB4499162Resolved
KB4509476June 26, 2019
04:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 15063.1868

June 11, 2019
KB4503279Resolved
KB4503289June 18, 2019
02:00 PM PT " @@ -80,7 +79,6 @@ sections: text: " -
DetailsOriginating updateStatusHistory
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499162. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509476.

Back to top		OS Build 15063.1839

May 28, 2019
KB4499162		Resolved
KB4509476		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503289.

Back to top		OS Build 15063.1868

June 11, 2019
KB4503279		Resolved
KB4503289		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" diff --git a/windows/release-information/status-windows-10-1709.yml b/windows/release-information/status-windows-10-1709.yml index 181bfbf128..301dd17335 100644 --- a/windows/release-information/status-windows-10-1709.yml +++ b/windows/release-information/status-windows-10-1709.yml @@ -63,7 +63,6 @@ sections:
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >OS Build 16299.1217

June 11, 2019
KB4503284Mitigated
July 10, 2019
07:09 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 16299.904

January 08, 2019
KB4480978Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 16299.1182

May 28, 2019
KB4499147Resolved
KB4509477June 26, 2019
04:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 16299.1217

June 11, 2019
KB4503284Resolved
KB4503281June 18, 2019
02:00 PM PT " @@ -89,7 +88,6 @@ sections: text: " -
DetailsOriginating updateStatusHistory
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499147. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509477.

Back to top		OS Build 16299.1182

May 28, 2019
KB4499147		Resolved
KB4509477		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503281.

Back to top		OS Build 16299.1217

June 11, 2019
KB4503284		Resolved
KB4503281		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" diff --git a/windows/release-information/status-windows-10-1803.yml b/windows/release-information/status-windows-10-1803.yml index 1f39a3eeff..e9e62c1dce 100644 --- a/windows/release-information/status-windows-10-1803.yml +++ b/windows/release-information/status-windows-10-1803.yml @@ -64,7 +64,6 @@ sections:
Startup to a black screen after installing updates
Your device may startup to a black screen during the first logon after installing updates.

See details >OS Build 17134.829

June 11, 2019
KB4503286Mitigated
June 14, 2019
04:41 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 17134.523

January 08, 2019
KB4480966Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 17134.799

May 21, 2019
KB4499183Resolved
KB4509478June 26, 2019
04:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 17134.829

June 11, 2019
KB4503286Resolved
KB4503288June 18, 2019
02:00 PM PT " @@ -91,7 +90,6 @@ sections: -
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499183. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509478.

Back to top		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503288.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Resolved
KB4503288		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" diff --git a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml index ef9a99126b..5613d45790 100644 --- a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml @@ -70,9 +70,6 @@ sections:
Devices with some Asian language packs installed may receive an error
After installing the KB4493509 devices with some Asian language packs installed may receive the error, \"0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_F

See details >OS Build 17763.437

April 09, 2019
KB4493509Mitigated
May 03, 2019
10:59 AM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 17763.253

January 08, 2019
KB4480116Mitigated
April 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 17763.529

May 21, 2019
KB4497934Resolved
KB4509479June 26, 2019
04:00 PM PT -
Devices with Realtek Bluetooth radios drivers may not pair or connect as expected
Devices with some Realtek Bluetooth radios drivers, in some circumstances, may have issues pairing or connecting to devices.

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
KB4501371June 18, 2019
02:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 17763.557

June 11, 2019
KB4503327Resolved
KB4501371June 18, 2019
02:00 PM PT -
Printing from Microsoft Edge or other UWP apps may result in the error 0x80070007
Attempting to print from Microsoft Edge or other Universal Windows Platform (UWP) apps, you may receive an error.

See details >OS Build 17763.379

March 12, 2019
KB4489899Resolved
KB4501371June 18, 2019
02:00 PM PT " @@ -99,8 +96,6 @@ sections: - -
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4497934. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509479.

Back to top		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Devices with Realtek Bluetooth radios drivers may not pair or connect as expected
In some circumstances, devices with Realtek Bluetooth radios may have issues pairing or connecting to Bluetooth devices due to a driver issue.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server 2019
Resolution: This issue was resolved in KB4501371.

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 14, 2019
05:45 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4501371.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" @@ -110,7 +105,6 @@ sections: text: " -
DetailsOriginating updateStatusHistory
Devices with some Asian language packs installed may receive an error
After installing the April 2019 Cumulative Update (KB4493509), devices with some Asian language packs installed may receive the error, \"0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND.\"

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Workaround:
  1. Uninstall and reinstall any recently added language packs. For instructions, see \"Manage the input and display language settings in Windows 10\".
  2. Click Check for Updates and install the April 2019 Cumulative Update. For instructions, see \"Update Windows 10\".
Note: If reinstalling the language pack does not mitigate the issue, reset your PC as follows:
  1. Go to Settings app -> Recovery.
  2. Click on Get Started under \"Reset this PC\" recovery option.
  3. Select \"Keep my Files\".
Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.437

April 09, 2019
KB4493509		Mitigated
Last updated:
May 03, 2019
10:59 AM PT

Opened:
May 02, 2019
04:36 PM PT
Printing from Microsoft Edge or other UWP apps may result in the error 0x80070007
When attempting to print from Microsoft Edge or other Universal Windows Platform (UWP) applications you may receive the error, \"Your printer has experienced an unexpected configuration problem. 0x80070007e.\"
 
Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4501371

Back to top		OS Build 17763.379

March 12, 2019
KB4489899		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
May 02, 2019
04:47 PM PT
" diff --git a/windows/release-information/status-windows-10-1903.yml b/windows/release-information/status-windows-10-1903.yml index 88fff57f7a..29dfcd9330 100644 --- a/windows/release-information/status-windows-10-1903.yml +++ b/windows/release-information/status-windows-10-1903.yml @@ -23,7 +23,6 @@ sections:
Current status as of July 16, 2019:
We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
-
" diff --git a/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml b/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml index bd47291e52..23ba82cf44 100644 --- a/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml +++ b/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml @@ -62,8 +62,6 @@ sections: - -
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		June 11, 2019
KB4503292		Mitigated
July 10, 2019
02:59 PM PT
System may be unresponsive after restart with certain McAfee antivirus products
Devices with McAfee Endpoint Security Threat Prevention 10.x, Host Intrusion Prevention 8.0, or VirusScan Enterprise 8.8 may be slow or unresponsive at startup.

See details >		April 09, 2019
KB4493472		Mitigated
April 25, 2019
02:00 PM PT
IE11 may stop working when loading or interacting with Power BI reports
Power BI reports that contain line charts with markers may cause Internet Explorer 11 to stop working.

See details >		May 14, 2019
KB4499164		Resolved
KB4503277		June 20, 2019
02:00 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		June 11, 2019
KB4503292		Resolved
KB4503277		June 20, 2019
02:00 PM PT
" @@ -83,16 +81,6 @@ sections: " -- title: June 2019 -- items: - - type: markdown - text: " - - - -
DetailsOriginating updateStatusHistory
IE11 may stop working when loading or interacting with Power BI reports
Internet Explorer 11 may stop working when loading or interacting with Power BI reports that have line charts with markers. This issue may also occur when viewing other content that contains Scalable Vector Graphics (SVG) markers.


Affected platforms:
  • Client: Windows 7 SP1; Windows 8.1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2

Resolution: This issue was resolved in Preview Rollup KB4503277. If you are using the Internet Explorer cumulative updates, this issue was resolved in KB4508646.

Back to top		May 14, 2019
KB4499164		Resolved
KB4503277		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 07, 2019
02:57 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503277. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503292		Resolved
KB4503277		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " - - title: April 2019 - items: - type: markdown diff --git a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml index 70d40a6d5e..883499827b 100644 --- a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml +++ b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml @@ -64,8 +64,6 @@ sections:
Japanese IME doesn't show the new Japanese Era name as a text input option
If previous dictionary updates are installed, the Japanese input method editor (IME) doesn't show the new Japanese Era name as a text input option.

See details >April 25, 2019
KB4493443Mitigated
May 15, 2019
05:53 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >January 08, 2019
KB4480963Mitigated
April 25, 2019
02:00 PM PT
System may be unresponsive after restart with certain McAfee antivirus products
Devices with McAfee Endpoint Security Threat Prevention 10.x, Host Intrusion Prevention 8.0, or VirusScan Enterprise 8.8 may be slow or unresponsive at startup.

See details >April 09, 2019
KB4493446Mitigated
April 18, 2019
05:00 PM PT -
IE11 may stop working when loading or interacting with Power BI reports
Power BI reports that contain line charts with markers may cause Internet Explorer 11 to stop working.

See details >May 14, 2019
KB4499151Resolved
KB4503283June 20, 2019
02:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >June 11, 2019
KB4503276Resolved
KB4503283June 20, 2019
02:00 PM PT " @@ -85,16 +83,6 @@ sections: " -- title: June 2019 -- items: - - type: markdown - text: " - - - -
DetailsOriginating updateStatusHistory
IE11 may stop working when loading or interacting with Power BI reports
Internet Explorer 11 may stop working when loading or interacting with Power BI reports that have line charts with markers. This issue may also occur when viewing other content that contains Scalable Vector Graphics (SVG) markers.


Affected platforms:
  • Client: Windows 7 SP1; Windows 8.1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2

Resolution: This issue was resolved in Preview Rollup KB4503283. If you are using the Internet Explorer cumulative updates, this issue was resolved in KB4508646.

Back to top		May 14, 2019
KB4499151		Resolved
KB4503283		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 07, 2019
02:57 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503283. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503276		Resolved
KB4503283		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " - - title: May 2019 - items: - type: markdown diff --git a/windows/release-information/status-windows-server-2008-sp2.yml b/windows/release-information/status-windows-server-2008-sp2.yml index c8ea355938..f3d9d5d69b 100644 --- a/windows/release-information/status-windows-server-2008-sp2.yml +++ b/windows/release-information/status-windows-server-2008-sp2.yml @@ -61,7 +61,6 @@ sections: text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

-
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		June 11, 2019
KB4503273		Mitigated
July 10, 2019
02:59 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		June 11, 2019
KB4503273		Resolved
KB4503271		June 20, 2019
02:00 PM PT
" @@ -80,12 +79,3 @@ sections:
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503273 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server, set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.

Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  2. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to topJune 11, 2019
KB4503273Mitigated
Last updated:
July 10, 2019
02:59 PM PT

Opened:
July 10, 2019
02:51 PM PT " - -- title: June 2019 -- items: - - type: markdown - text: " - - -
DetailsOriginating updateStatusHistory
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503271. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503273		Resolved
KB4503271		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " diff --git a/windows/release-information/status-windows-server-2012.yml b/windows/release-information/status-windows-server-2012.yml index ee7242d18a..55b84c6427 100644 --- a/windows/release-information/status-windows-server-2012.yml +++ b/windows/release-information/status-windows-server-2012.yml @@ -63,9 +63,6 @@ sections:
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >June 11, 2019
KB4503285Mitigated
July 10, 2019
07:09 PM PT
Japanese IME doesn't show the new Japanese Era name as a text input option
If previous dictionary updates are installed, the Japanese input method editor (IME) doesn't show the new Japanese Era name as a text input option.

See details >April 25, 2019
KB4493462Mitigated
May 15, 2019
05:53 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >January 08, 2019
KB4480975Mitigated
April 25, 2019
02:00 PM PT -
Some devices and generation 2 Hyper-V VMs may have issues installing updates
Some devices and generation 2 Hyper-V virtual machines (VMs) may have issues installing some updates when Secure Boot is enabled.

See details >June 11, 2019
KB4503285Resolved
KB4503295June 21, 2019
02:00 PM PT -
IE11 may stop working when loading or interacting with Power BI reports
Power BI reports that contain line charts with markers may cause Internet Explorer 11 to stop working.

See details >May 14, 2019
KB4499171Resolved
KB4503295June 21, 2019
02:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >June 11, 2019
KB4503285Resolved
KB4503295June 20, 2019
02:00 PM PT " @@ -85,17 +82,6 @@ sections: " -- title: June 2019 -- items: - - type: markdown - text: " - - - - -
DetailsOriginating updateStatusHistory
Some devices and generation 2 Hyper-V VMs may have issues installing updates
Some devices and generation 2 Hyper-V virtual machines (VMs) may have issues installing KB4503285 or later updates when Secure Boot is enabled.

Affected platforms:
  • Server: Windows Server 2012
Resolution: This issue was resolved in KB4503295. If your device is using Security Only updates, this issue was resolved in KB4508776.

Back to top		June 11, 2019
KB4503285		Resolved
KB4503295		Resolved:
June 21, 2019
02:00 PM PT

Opened:
June 19, 2019
04:57 PM PT
IE11 may stop working when loading or interacting with Power BI reports
Internet Explorer 11 may stop working when loading or interacting with Power BI reports that have line charts with markers. This issue may also occur when viewing other content that contains Scalable Vector Graphics (SVG) markers.


Affected platforms:
  • Client: Windows 7 SP1; Windows 8.1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2

Resolution: This issue was resolved in Preview Rollup KB4503295. If you are using the Internet Explorer cumulative updates, this issue was resolved in KB4508646.

Back to top		May 14, 2019
KB4499171		Resolved
KB4503295		Resolved:
June 21, 2019
02:00 PM PT

Opened:
June 07, 2019
02:57 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503295. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503285		Resolved
KB4503295		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " - - title: May 2019 - items: - type: markdown diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index f2219f04cd..8c72153bd3 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -50,7 +50,7 @@ sections: text: " - + From 948b07f7107860c36fb4a8adb6be5073571ba7d4 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Tue, 23 Jul 2019 18:57:02 -0700 Subject: [PATCH 055/138] add new issues (#745) (#746) --- .../resolved-issues-windows-10-1607.yml | 14 ++------------ ...ues-windows-10-1809-and-windows-server-2019.yml | 2 -- ...tus-windows-10-1607-and-windows-server-2016.yml | 6 ++---- .../release-information/status-windows-10-1703.yml | 2 -- .../release-information/status-windows-10-1709.yml | 2 -- .../release-information/status-windows-10-1803.yml | 2 -- ...tus-windows-10-1809-and-windows-server-2019.yml | 6 ------ .../release-information/status-windows-10-1903.yml | 1 - ...us-windows-7-and-windows-server-2008-r2-sp1.yml | 12 ------------ ...atus-windows-8.1-and-windows-server-2012-r2.yml | 12 ------------ .../status-windows-server-2008-sp2.yml | 10 ---------- .../status-windows-server-2012.yml | 14 -------------- .../release-information/windows-message-center.yml | 2 +- 13 files changed, 5 insertions(+), 80 deletions(-) diff --git a/windows/release-information/resolved-issues-windows-10-1607.yml b/windows/release-information/resolved-issues-windows-10-1607.yml index f7a7113111..f39eb6c19d 100644 --- a/windows/release-information/resolved-issues-windows-10-1607.yml +++ b/windows/release-information/resolved-issues-windows-10-1607.yml @@ -32,6 +32,7 @@ sections: - type: markdown text: "
MessageDate
Plan for change: Microsoft Silverlight will reach end of support on 12 October 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
10:00 AM PT
Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
12:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
Windows 10, version 1903 available by selecting “Check for updates”
Windows 10, version 1903 is now available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel.
June 06, 2019
06:00 PM PT
+ @@ -54,8 +55,6 @@ sections: - -
SummaryOriginating updateStatusDate resolved
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

See details >		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 14393.2969

May 14, 2019
KB4494440		Resolved
KB4507460		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		June 27, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Resolved
KB4487026		February 12, 2019
10:00 AM PT
Instant search in Microsoft Outlook fails on Windows Server 2016
Instant search in Microsoft Outlook clients fail with the error, \"Outlook cannot perform the search\" on Windows Server 2016.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4487026		February 12, 2019
10:00 AM PT
SqlConnection instantiation exception on .NET 4.6 and later
Instantiation of SqlConnection can throw an exception after certain updates have been installed.

See details >		OS Build 14393.2457

August 30, 2018
KB4343884		Resolved
KB4480977		January 17, 2019
02:00 PM PT
Unable to access hotspots with third-party applications
Third-party applications may have difficulty authenticating hotspots.

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Resolved
KB4480977		January 17, 2019
02:00 PM PT
" @@ -132,7 +131,6 @@ sections:
MSXML6 may cause applications to stop responding
After installing KB4480961, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493470.

Back to topOS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480977, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487006.

Back to topOS Build 14393.2759

January 17, 2019
KB4480977Resolved
KB4487006Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 17, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, “Unrecognized Database Format”.

Affected platforms:
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4487026.

Back to topOS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4487026Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT -
Unable to access hotspots with third-party applications
After installing KB4480961, third-party applications may have difficulty authenticating hotspots.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4480977.

Back to topOS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4480977Resolved:
January 17, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT " @@ -141,15 +139,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
Instant search in Microsoft Outlook fails on Windows Server 2016
After installing KB4467684 on Windows Server 2016, instant search in Microsoft Outlook clients fail with the error, \"Outlook cannot perform the search\".

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue is resolved in KB4487026.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4487026		Resolved:
February 12, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
" - -- title: August 2018 -- items: - - type: markdown - text: " - - -
DetailsOriginating updateStatusHistory
SqlConnection instantiation exception on .NET 4.6 and later
After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception.

For more information about this issue, see the following article in the Microsoft Knowledge Base: 4470809, SqlConnection instantiation exception on .NET 4.6 and later after August-September 2018 .NET Framework updates.

Affected platforms:
  • Client: Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue is resolved in KB4480977.

Back to top		OS Build 14393.2457

August 30, 2018
KB4343884		Resolved
KB4480977		Resolved:
January 17, 2019
02:00 PM PT

Opened:
August 30, 2018
05:00 PM PT
- " diff --git a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml index c3b5e984d1..50ed0c88b7 100644 --- a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml @@ -62,7 +62,6 @@ sections:
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4487044February 12, 2019
10:00 AM PT
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Upgrade block: Devices utilizing AMD Radeon HD2000 or HD4000 series video cards may experience issues with the lock screen and Microsoft Edge tabs.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4487044February 12, 2019
10:00 AM PT
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro identified a compatibility issue with the Trend Micro business endpoint security solutions OfficeScan and Worry-Free Business Security.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
February 01, 2019
09:00 AM PT -
Unable to access hotspots with third-party applications
Third-party applications may have difficulty authenticating hotspots.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4476976January 22, 2019
02:00 PM PT " @@ -142,7 +141,6 @@ sections:
MSXML6 may cause applications to stop responding
After installing KB4480116, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().
 
The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493509

Back to topOS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Global DNS outage affects Windows Update customers
Windows Update customers were affected by a network infrastructure event on January 29, 2019 (21:00 UTC), caused by an external DNS service provider's global outage. A software update to the external provider's DNS servers resulted in the distribution of corrupted DNS records that affected connectivity to the Windows Update service. The DNS records were restored by January 30, 2019 (00:10 UTC), and the majority of local Internet Service Providers (ISP) have refreshed their DNS servers and customer services have been restored. 
 
Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
While this was not an issue with Microsoft's services, we take any service disruption for our customers seriously. We will work with partners to better understand this so we can provide higher quality service in the future even across diverse global network providers. 
 
If you are still unable to connect to Windows Update services due to this problem, please contact your local ISP or network administrator. You can also refer to our new KB4493784 for more information to determine if your network is affected, and to provide your local ISP or network administrator with additional information to assist you. 

Back to topN/A

Resolved
Resolved:
March 08, 2019
11:15 AM PT

Opened:
January 29, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
After installing KB4480116, some Microsoft Edge users report that they:
  • Cannot load web pages using a local IP address. 
  • Cannot load web pages on the Internet using a VPN connection.
Browsing fails or the web page may become unresponsive.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709
Resolution: This issue is resolved in KB4487020

Back to topOS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4487044Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT -
Unable to access hotspots with third-party applications
After installing KB4480116, third-party applications may have difficulty authenticating hotspots. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4476976

Back to topOS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4476976Resolved:
January 22, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT " diff --git a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml index 02443f7e42..004468483a 100644 --- a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml +++ b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml @@ -62,13 +62,12 @@ sections: - + -
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
July 10, 2019
07:09 PM PT
Cluster service may fail if the minimum password length is set to greater than 14
The cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the Group Policy “Minimum Password Length” is configured with greater than 14 characters.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Mitigated
April 25, 2019
02:00 PM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

See details >		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
February 19, 2019
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

See details >		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 14393.2969

May 14, 2019
KB4494440		Resolved
KB4507460		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		June 27, 2019
02:00 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Resolved
KB4503294		June 18, 2019
02:00 PM PT
" @@ -95,7 +94,6 @@ sections: -
DetailsOriginating updateStatusHistory
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016) after installation of KB4493473 on the server. Applications that may exhibit this behavior use an IFRAME during non-interactive authentication requests and receive X-Frame Options set to DENY.

Affected platforms:
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
June 04, 2019
05:55 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499177. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509475.

Back to top		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		Resolved:
June 27, 2019
02:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503294.

Back to top		OS Build 14393.3025

June 11, 2019
KB4503267		Resolved
KB4503294		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" @@ -123,7 +121,7 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Cluster service may fail if the minimum password length is set to greater than 14
After installing KB4467684, the cluster service may fail to start with the error \"2245 (NERR_PasswordTooShort)\" if the Group Policy \"Minimum Password Length\" is configured with greater than 14 characters.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Set the domain default \"Minimum Password Length\" policy to less than or equal to 14 characters.

Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround:
Run mofcomp on the following mof files on the affected host:
  • Scvmmswitchportsettings.mof
  • VMMDHCPSvr.mof
Follow the best practices while patching to avoid a stop error in vfpext.sys in an SDN v2 environment (NC managed hosts).

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
After installing KB4467691, Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart.

If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled.

Next steps: Lenovo and Fujitsu are aware of this issue. Please contact your OEM to ask if there is a firmware update available for your device.

Back to top		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
Last updated:
February 19, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
" diff --git a/windows/release-information/status-windows-10-1703.yml b/windows/release-information/status-windows-10-1703.yml index 7bc0807985..a45bf5b15b 100644 --- a/windows/release-information/status-windows-10-1703.yml +++ b/windows/release-information/status-windows-10-1703.yml @@ -63,7 +63,6 @@ sections:
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 15063.1563

January 08, 2019
KB4480973Mitigated
April 25, 2019
02:00 PM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >OS Build 15063.1805

May 14, 2019
KB4499181Resolved
KB4507450July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 15063.1839

May 28, 2019
KB4499162Resolved
KB4509476June 26, 2019
04:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 15063.1868

June 11, 2019
KB4503279Resolved
KB4503289June 18, 2019
02:00 PM PT " @@ -80,7 +79,6 @@ sections: text: " -
DetailsOriginating updateStatusHistory
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499162. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509476.

Back to top		OS Build 15063.1839

May 28, 2019
KB4499162		Resolved
KB4509476		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503289.

Back to top		OS Build 15063.1868

June 11, 2019
KB4503279		Resolved
KB4503289		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" diff --git a/windows/release-information/status-windows-10-1709.yml b/windows/release-information/status-windows-10-1709.yml index 181bfbf128..301dd17335 100644 --- a/windows/release-information/status-windows-10-1709.yml +++ b/windows/release-information/status-windows-10-1709.yml @@ -63,7 +63,6 @@ sections:
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >OS Build 16299.1217

June 11, 2019
KB4503284Mitigated
July 10, 2019
07:09 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 16299.904

January 08, 2019
KB4480978Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 16299.1182

May 28, 2019
KB4499147Resolved
KB4509477June 26, 2019
04:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 16299.1217

June 11, 2019
KB4503284Resolved
KB4503281June 18, 2019
02:00 PM PT " @@ -89,7 +88,6 @@ sections: text: " -
DetailsOriginating updateStatusHistory
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499147. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509477.

Back to top		OS Build 16299.1182

May 28, 2019
KB4499147		Resolved
KB4509477		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503281.

Back to top		OS Build 16299.1217

June 11, 2019
KB4503284		Resolved
KB4503281		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" diff --git a/windows/release-information/status-windows-10-1803.yml b/windows/release-information/status-windows-10-1803.yml index 1f39a3eeff..e9e62c1dce 100644 --- a/windows/release-information/status-windows-10-1803.yml +++ b/windows/release-information/status-windows-10-1803.yml @@ -64,7 +64,6 @@ sections:
Startup to a black screen after installing updates
Your device may startup to a black screen during the first logon after installing updates.

See details >OS Build 17134.829

June 11, 2019
KB4503286Mitigated
June 14, 2019
04:41 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 17134.523

January 08, 2019
KB4480966Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 17134.799

May 21, 2019
KB4499183Resolved
KB4509478June 26, 2019
04:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 17134.829

June 11, 2019
KB4503286Resolved
KB4503288June 18, 2019
02:00 PM PT " @@ -91,7 +90,6 @@ sections: -
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499183. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509478.

Back to top		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503288.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Resolved
KB4503288		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" diff --git a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml index ef9a99126b..5613d45790 100644 --- a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml @@ -70,9 +70,6 @@ sections:
Devices with some Asian language packs installed may receive an error
After installing the KB4493509 devices with some Asian language packs installed may receive the error, \"0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_F

See details >OS Build 17763.437

April 09, 2019
KB4493509Mitigated
May 03, 2019
10:59 AM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >OS Build 17763.253

January 08, 2019
KB4480116Mitigated
April 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >OS Build 17763.529

May 21, 2019
KB4497934Resolved
KB4509479June 26, 2019
04:00 PM PT -
Devices with Realtek Bluetooth radios drivers may not pair or connect as expected
Devices with some Realtek Bluetooth radios drivers, in some circumstances, may have issues pairing or connecting to devices.

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
KB4501371June 18, 2019
02:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >OS Build 17763.557

June 11, 2019
KB4503327Resolved
KB4501371June 18, 2019
02:00 PM PT -
Printing from Microsoft Edge or other UWP apps may result in the error 0x80070007
Attempting to print from Microsoft Edge or other Universal Windows Platform (UWP) apps, you may receive an error.

See details >OS Build 17763.379

March 12, 2019
KB4489899Resolved
KB4501371June 18, 2019
02:00 PM PT " @@ -99,8 +96,6 @@ sections: - -
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4497934. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509479.

Back to top		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Devices with Realtek Bluetooth radios drivers may not pair or connect as expected
In some circumstances, devices with Realtek Bluetooth radios may have issues pairing or connecting to Bluetooth devices due to a driver issue.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server 2019
Resolution: This issue was resolved in KB4501371.

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 14, 2019
05:45 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4501371.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
" @@ -110,7 +105,6 @@ sections: text: " -
DetailsOriginating updateStatusHistory
Devices with some Asian language packs installed may receive an error
After installing the April 2019 Cumulative Update (KB4493509), devices with some Asian language packs installed may receive the error, \"0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND.\"

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Workaround:
  1. Uninstall and reinstall any recently added language packs. For instructions, see \"Manage the input and display language settings in Windows 10\".
  2. Click Check for Updates and install the April 2019 Cumulative Update. For instructions, see \"Update Windows 10\".
Note: If reinstalling the language pack does not mitigate the issue, reset your PC as follows:
  1. Go to Settings app -> Recovery.
  2. Click on Get Started under \"Reset this PC\" recovery option.
  3. Select \"Keep my Files\".
Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.437

April 09, 2019
KB4493509		Mitigated
Last updated:
May 03, 2019
10:59 AM PT

Opened:
May 02, 2019
04:36 PM PT
Printing from Microsoft Edge or other UWP apps may result in the error 0x80070007
When attempting to print from Microsoft Edge or other Universal Windows Platform (UWP) applications you may receive the error, \"Your printer has experienced an unexpected configuration problem. 0x80070007e.\"
 
Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4501371

Back to top		OS Build 17763.379

March 12, 2019
KB4489899		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
May 02, 2019
04:47 PM PT
" diff --git a/windows/release-information/status-windows-10-1903.yml b/windows/release-information/status-windows-10-1903.yml index 88fff57f7a..29dfcd9330 100644 --- a/windows/release-information/status-windows-10-1903.yml +++ b/windows/release-information/status-windows-10-1903.yml @@ -23,7 +23,6 @@ sections:
Current status as of July 16, 2019:
We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
-
" diff --git a/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml b/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml index bd47291e52..23ba82cf44 100644 --- a/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml +++ b/windows/release-information/status-windows-7-and-windows-server-2008-r2-sp1.yml @@ -62,8 +62,6 @@ sections: - -
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		June 11, 2019
KB4503292		Mitigated
July 10, 2019
02:59 PM PT
System may be unresponsive after restart with certain McAfee antivirus products
Devices with McAfee Endpoint Security Threat Prevention 10.x, Host Intrusion Prevention 8.0, or VirusScan Enterprise 8.8 may be slow or unresponsive at startup.

See details >		April 09, 2019
KB4493472		Mitigated
April 25, 2019
02:00 PM PT
IE11 may stop working when loading or interacting with Power BI reports
Power BI reports that contain line charts with markers may cause Internet Explorer 11 to stop working.

See details >		May 14, 2019
KB4499164		Resolved
KB4503277		June 20, 2019
02:00 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		June 11, 2019
KB4503292		Resolved
KB4503277		June 20, 2019
02:00 PM PT
" @@ -83,16 +81,6 @@ sections: " -- title: June 2019 -- items: - - type: markdown - text: " - - - -
DetailsOriginating updateStatusHistory
IE11 may stop working when loading or interacting with Power BI reports
Internet Explorer 11 may stop working when loading or interacting with Power BI reports that have line charts with markers. This issue may also occur when viewing other content that contains Scalable Vector Graphics (SVG) markers.


Affected platforms:
  • Client: Windows 7 SP1; Windows 8.1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2

Resolution: This issue was resolved in Preview Rollup KB4503277. If you are using the Internet Explorer cumulative updates, this issue was resolved in KB4508646.

Back to top		May 14, 2019
KB4499164		Resolved
KB4503277		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 07, 2019
02:57 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503277. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503292		Resolved
KB4503277		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " - - title: April 2019 - items: - type: markdown diff --git a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml index 70d40a6d5e..883499827b 100644 --- a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml +++ b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml @@ -64,8 +64,6 @@ sections:
Japanese IME doesn't show the new Japanese Era name as a text input option
If previous dictionary updates are installed, the Japanese input method editor (IME) doesn't show the new Japanese Era name as a text input option.

See details >April 25, 2019
KB4493443Mitigated
May 15, 2019
05:53 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >January 08, 2019
KB4480963Mitigated
April 25, 2019
02:00 PM PT
System may be unresponsive after restart with certain McAfee antivirus products
Devices with McAfee Endpoint Security Threat Prevention 10.x, Host Intrusion Prevention 8.0, or VirusScan Enterprise 8.8 may be slow or unresponsive at startup.

See details >April 09, 2019
KB4493446Mitigated
April 18, 2019
05:00 PM PT -
IE11 may stop working when loading or interacting with Power BI reports
Power BI reports that contain line charts with markers may cause Internet Explorer 11 to stop working.

See details >May 14, 2019
KB4499151Resolved
KB4503283June 20, 2019
02:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >June 11, 2019
KB4503276Resolved
KB4503283June 20, 2019
02:00 PM PT " @@ -85,16 +83,6 @@ sections: " -- title: June 2019 -- items: - - type: markdown - text: " - - - -
DetailsOriginating updateStatusHistory
IE11 may stop working when loading or interacting with Power BI reports
Internet Explorer 11 may stop working when loading or interacting with Power BI reports that have line charts with markers. This issue may also occur when viewing other content that contains Scalable Vector Graphics (SVG) markers.


Affected platforms:
  • Client: Windows 7 SP1; Windows 8.1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2

Resolution: This issue was resolved in Preview Rollup KB4503283. If you are using the Internet Explorer cumulative updates, this issue was resolved in KB4508646.

Back to top		May 14, 2019
KB4499151		Resolved
KB4503283		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 07, 2019
02:57 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503283. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503276		Resolved
KB4503283		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " - - title: May 2019 - items: - type: markdown diff --git a/windows/release-information/status-windows-server-2008-sp2.yml b/windows/release-information/status-windows-server-2008-sp2.yml index c8ea355938..f3d9d5d69b 100644 --- a/windows/release-information/status-windows-server-2008-sp2.yml +++ b/windows/release-information/status-windows-server-2008-sp2.yml @@ -61,7 +61,6 @@ sections: text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

-
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		June 11, 2019
KB4503273		Mitigated
July 10, 2019
02:59 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		June 11, 2019
KB4503273		Resolved
KB4503271		June 20, 2019
02:00 PM PT
" @@ -80,12 +79,3 @@ sections:
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503273 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server, set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.

Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  2. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to topJune 11, 2019
KB4503273Mitigated
Last updated:
July 10, 2019
02:59 PM PT

Opened:
July 10, 2019
02:51 PM PT " - -- title: June 2019 -- items: - - type: markdown - text: " - - -
DetailsOriginating updateStatusHistory
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503271. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503273		Resolved
KB4503271		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " diff --git a/windows/release-information/status-windows-server-2012.yml b/windows/release-information/status-windows-server-2012.yml index ee7242d18a..55b84c6427 100644 --- a/windows/release-information/status-windows-server-2012.yml +++ b/windows/release-information/status-windows-server-2012.yml @@ -63,9 +63,6 @@ sections:
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >June 11, 2019
KB4503285Mitigated
July 10, 2019
07:09 PM PT
Japanese IME doesn't show the new Japanese Era name as a text input option
If previous dictionary updates are installed, the Japanese input method editor (IME) doesn't show the new Japanese Era name as a text input option.

See details >April 25, 2019
KB4493462Mitigated
May 15, 2019
05:53 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >January 08, 2019
KB4480975Mitigated
April 25, 2019
02:00 PM PT -
Some devices and generation 2 Hyper-V VMs may have issues installing updates
Some devices and generation 2 Hyper-V virtual machines (VMs) may have issues installing some updates when Secure Boot is enabled.

See details >June 11, 2019
KB4503285Resolved
KB4503295June 21, 2019
02:00 PM PT -
IE11 may stop working when loading or interacting with Power BI reports
Power BI reports that contain line charts with markers may cause Internet Explorer 11 to stop working.

See details >May 14, 2019
KB4499171Resolved
KB4503295June 21, 2019
02:00 PM PT -
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >June 11, 2019
KB4503285Resolved
KB4503295June 20, 2019
02:00 PM PT " @@ -85,17 +82,6 @@ sections: " -- title: June 2019 -- items: - - type: markdown - text: " - - - - -
DetailsOriginating updateStatusHistory
Some devices and generation 2 Hyper-V VMs may have issues installing updates
Some devices and generation 2 Hyper-V virtual machines (VMs) may have issues installing KB4503285 or later updates when Secure Boot is enabled.

Affected platforms:
  • Server: Windows Server 2012
Resolution: This issue was resolved in KB4503295. If your device is using Security Only updates, this issue was resolved in KB4508776.

Back to top		June 11, 2019
KB4503285		Resolved
KB4503295		Resolved:
June 21, 2019
02:00 PM PT

Opened:
June 19, 2019
04:57 PM PT
IE11 may stop working when loading or interacting with Power BI reports
Internet Explorer 11 may stop working when loading or interacting with Power BI reports that have line charts with markers. This issue may also occur when viewing other content that contains Scalable Vector Graphics (SVG) markers.


Affected platforms:
  • Client: Windows 7 SP1; Windows 8.1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2

Resolution: This issue was resolved in Preview Rollup KB4503295. If you are using the Internet Explorer cumulative updates, this issue was resolved in KB4508646.

Back to top		May 14, 2019
KB4499171		Resolved
KB4503295		Resolved:
June 21, 2019
02:00 PM PT

Opened:
June 07, 2019
02:57 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4503295. If you are using Security Only updates, see KB4508640 for resolving KB for your platform.

Back to top		June 11, 2019
KB4503285		Resolved
KB4503295		Resolved:
June 20, 2019
02:00 PM PT

Opened:
June 12, 2019
11:11 AM PT
- " - - title: May 2019 - items: - type: markdown diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index f2219f04cd..8c72153bd3 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -50,7 +50,7 @@ sections: text: " - + From f902255611965926c78816ae5f71afcc47a826ef Mon Sep 17 00:00:00 2001 From: Katya Goldenshlach Date: Wed, 24 Jul 2019 13:41:32 +0300 Subject: [PATCH 056/138] Added proxy investigation details --- .../configure-proxy-internet.md | 50 ++++++++++++++++++ .../images/atp-proxy-investigation-ah.png | Bin 0 -> 128106 bytes .../images/atp-proxy-investigation-event.png | Bin 0 -> 43730 bytes .../images/atp-proxy-investigation.png | Bin 0 -> 52996 bytes 4 files changed, 50 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/atp-proxy-investigation-ah.png create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/atp-proxy-investigation-event.png create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/atp-proxy-investigation.png diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md index b9ff87202a..763ecfb2dd 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md @@ -175,6 +175,56 @@ However, if the connectivity check results indicate a failure, an HTTP error is > The Connectivity Analyzer tool is not compatible with ASR rule [Block process creations originating from PSExec and WMI commands](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/attack-surface-reduction-exploit-guard#attack-surface-reduction-rules). You will need to temporarily disable this rule to run the connectivity tool. > When the TelemetryProxyServer is set, in Registry or via Group Policy, Microsoft Defender ATP will fall back to direct if it can't access the defined proxy. +## Conduct investigations with Microsoft Defender ATP behind a proxy +Microsoft Defender ATP supports network connection monitoring from different levels of the operating system network stack. A challenging case is when the network uses a forward proxy as a gateway to the internet. +The proxy acts as if it was the target endpoint. In these cases, simple network connection monitors will audit the connections with the proxy which is correct but has lower investigation value. Microsoft Defender ATP supports advanced HTTP level sensor. +By enabling this sensor, Microsoft Defender ATP will expose a new type of events that surfaces the real target domain names.

+ +**Investigation Impact** +In machine's timeline the IP address will keep representing the proxy, while the real target address shows up. +![Image of network events on machine's timeline](images/atp-proxy-investigation.png)
+ +Additional events triggered by the Network Protection layer are now available to surface the real domain names even behind a proxy.
+Event's information: +![Image of single network event](images/atp-proxy-investigation-event.png)
+ +Advanced Hunting
+All new connection events are available for you to hunt on through advanced hunting as well. Since these events are connection events, you can find them under the NetworkCommunicationEvents table under the â€ConnecionSuccess’ action type.
+Using this simple query will show you all the relevant events: + +``` +NetworkCommunicationEvents +| where ActionType == "ConnectionSuccess" +| take 10 +``` +![Image of advanced hunting query](images/atp-proxy-investigation-ah.png) + +You can also filter out the events that are related to connection to the proxy itself. Use the following query to filter out the connections to the proxy: +``` +NetworkCommunicationEvents +| where ActionType == "ConnectionSuccess" and RemoteIP != "ProxyIP" +| take 10 +``` + +**How to enable the advanced network connection sensor** +Monitoring network connection behind forward proxy is possible due to additional Network Events that originate from Network Protection. To see them in machine’s timeline you need to turn Network Protection on at least in audit mode.

+ +Network protection is a feature in Windows Defender Exploit Guard that protects employees using any app from accessing phishing scams, exploit-hosting sites, and malicious content on the Internet. This includes preventing third-party browsers from connecting to dangerous sites. Its behavior can be controlled by the following options: Block and Audit.
+If you turn this policy on in "Block" mode, users/apps will be blocked from connecting to dangerous domains. You will be able to see this activity in Windows Defender Security Center.
+ +If you turn this policy on in "Audit" mode, users/apps will not be blocked from connecting to dangerous domains. However, you will still see this activity in Microsoft Defender Security Center.
+ +If you turn this policy off, users/apps will not be blocked from connecting to dangerous domains. You will not see any network activity in Microsoft Defender Security Center.
+ +If you do not configure this policy, network blocking will be disabled by default.

+ +> [!NOTE] +> In order to enable Monitoring network connection behind forward proxy and see the domains you will need to enable network protection at least in audit mode. + +Additional documentation: +- [Applying network protection with GP – policy CSP](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-defender#defender-enablenetworkprotection) +- [Windows Defender Exploit Guard Documentation](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet) + ## Related topics - [Onboard Windows 10 machines](configure-endpoints.md) - [Troubleshoot Microsoft Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/atp-proxy-investigation-ah.png b/windows/security/threat-protection/microsoft-defender-atp/images/atp-proxy-investigation-ah.png new file mode 100644 index 0000000000000000000000000000000000000000..890817a70b17372e1b36ccc3ecbaad0d2f08fd6d GIT binary patch literal 128106 zcmX`Sby!pX|2}RbAfO_kl1fPk3c~1A>1K2&Dc#LBB?Sbe8>HEQQIdmA>F$QnJz&&` z!QhLp_viO}T-UB$=lpT5=Xu8cxbOS%IAQ9la%3dWNp9S@L8c)8Uh~F{Tj@7$+%&v@ z>-x?KcbEC~-%U47Ihh;qe!9);i#yiRD$+M@R78_re7<{qP3$bM?{?z`dCR}w%?_s` ziyJqt@)h1oYkQk)6Nu`JJ3QveOf{c;fX!5L&xFq|rwYx}va8Kacs>zzvFGBcSYci(1p|yTbKm$6m>w(Z+pBIYrMfBeM|aA>J|Uf-c0=} zD;2}5lo7`a5hd+a)A}66OinB9w{Tewc=t1)r*`$P_`)Y|H;ta$0=`D}yili-k)~De z|Bxupv{MvbXsK;E>rMJEB9xw3%Wb9hg`H7^bJGB!zZ8Xm;ZL8amddOT76vipcy@6> zIjQC%Pqm8<^hPftpE=#zNN4^)e6zxcR&tK&|DHj1{fwV4jdtulMs7SZpc0Jy9yh$F zy)gB21Mz(1=bf&h!K=SVP9&eAlU0awe|KCWM!1pzyk%Bs8 zzj~SQU;TJU&NiAn4;>qP=uHAv(hn!^FxWgde-kKm%e-@aOCwj?7eNP^%O&$#6t{VIykF<;dPMWoT_%V_ zt|n^+Btbv-PSm!~nki>cN0Vz1KmQSwSjDDk<}7|dZRcXW(CccM5^;Ii<@WG$H!Pzt z6yonclf*DDf4a1sW@8*7ULPv8q@?DET3pQlh*z5}!pFUT&6?#KJg6_w?RJ_Q?Xe_h zr`$Z2yCb4D!A3^>$@k6Wr_a~nQXvhuXf>Ldi$pwQx%HN~y$bv(ogONyGN_>lHFm*? z&iky5%=;3SC*b&%-{Oo&@L@;U%wCwCE@UfpRno6-IIG@sst|6B)0!x~>Y^0{9W~&p z7tJS}P8XZ+h(DG9?`&luJMmI!*Kz|4PcM?nqTUxa| z4kG$Pg6lanE8^v&YZJ1W!Nbt^Vx>o{AqCE9sPP zZt`_djvjc|xS9Vq)0vNkHiX)%=C=Oq@3mIvuQ(eP_xW5OpFD}}O+YCiZ_KIJ2siZX z98>Ua94&0*)uWE?MK(NRFH81ZB8>dnt7)(?_Ta~3tR9T3VBl%04Thm9;v&6UgwM^d zLDu)He7CHA8w)PKNB73X^s1v@GsnC|Ga_>jWdT_Hs0WvoLr-lF?H=o@vj%)?^X-JY zvm=Fmb!v(^&ng{e#kL=WcA-l(zw4c;%VqO#y!)BA3(1^^q`n(HzA+Iw!uG;U$aDUL zLx75Pe|M3{eks)FOdLL1^8>F|3%_hFx$OY}jG`rsy!=Xbk7IfqF_5bg)n+Q^osw@2 zhGrhM?ORqdU4z0uX0*JNAZQ1WM=kj%dale|;p*#K52p`ZhRcS&yol-ubuU`J{kHCaKgh$Adt>FDW5@N|?k(q43veCmGTG|flpBt>o~ zGamXM$_0NV=2nf$Q-LawE<||+N`RlF?+~qWjwvp1R@?o?ivk)?!_vmb(7&%LXBq?? z2Dbd?f7BEg0*u6Qr$hw;#)8#Nj=p8&acNs@jP?Ep`#psW2s7Jdsu5av`rO6kvq)=N z6vTkigS{0iNBe<4l{an51W?SC<0Hcu&6o~eiHj4wn#LXO>dy!~2DOwLkpNjA_!D4= z#*`+|x##B-w^Qhc6x?)}b@$=f#onGXTU?h_)xLLnt9QzO>Q8Mth((3HnnF9i*>!7)1e z?^6QGP_{ZPVFyU>v?u<1?evW4zYn+4 zPK?AYuZRli8hxi1iwhYMw$EoF7ceN<^5jMqhIDdP?HRM#@J{xUkEq7vYQ7lXC~0+4#}-(cLBi- zB?Bz@s7!elm_zK3!bT^oyb{LtWziuuZi{ zWae;H#_Ru*rx(SkMa#w;%n9VDVHpExlPHChbQ){)kP(!=p%n-TC#Bw{ylyuq*mf9w9K64(1@RN9xe+G(6-GWQ%0HFH>egsdJXXS1|O|dnZ|3y>7e9EEk<@1kPaD(mGE_tN?lz=}Zds8Vd+1(lL3grJjjq}z%-x7avm}0l z;xw}$)n`eC+*eRc;^hJTxdflhOqrPXL7}6=@N~@o?O131<8E(q2y_lH@|hiy{+v_IqI8XGmeNz>S#LQ z;jys~R(^h>ut5cGc7b6Qi$`xDYxa}V)69WWN1kHHg%{= zMQzvB+}vDU;=sa8FlCU^_H%d@D=r6Sp=f#aMTfB4R|PpW0aq43!-ccaB$n?OVMyC^JdWAC$d$Ao!3rG!&O&@ivUrmHu zu0z(M`b+#VhVud30Eg+LRbI%Mo$2{=%Dqu7wVml|494^dKR7rjeljcjTA##~>BfVK zhg-X71S90aMb(G<)*5z9*VIz_7hPpigpk8cy)3t9DZL`cVi$WY?}C7F>}pnkcK&OO8~wXuqGyMl$H>yaTcQ!Dqv?I%+iGDrvUc^<+R68mn+XA;m3cXx zE<5nM7(sEy?7;BIQlLSYq6JC5wev#@6if2CVTr8AO$BY{ zSGA%+8#R>w2x-`+9~hq+TeJ`bXoZG?K-`7(bIPtXSubnOJ4aHw3h3d_^d`>ZbV<_QLM|h5cuL0 z?KQ7*nRU^XHG7?OM+()FiiN9s66m#r=UqPLGFSf~w@5Mgr{fy=gL-gxG4V4&qj6m< zD`+SjF%E;e{zR5QiSD6aM>)E`W| zIg57(fyBjb^(`;HVES_DmUT|2GV&^@S>cvizd*Foa@Bx@sMoI1???YqNqI|Y?Hqn7 zg4cCDC}HnP=FW`<>C26wTx&nAiP_}W#ZCISG=S6TXw77MUj8~i zifRz`+p=P~>g+{Bs+~82AK@Yao{d8(=Udy6Rfry~aj)4*x1$&*9SlhVC^ zA)N>2R@A`Yb}wo={S*x~&mvO<=ql84)(b~QBq^4E)}1y3Po6&iX1Ih+lQ=+jH8G}5 z?}s@#q}A6?muf#ww5;R=ZYP~lu35cPh+}@j6@B9+WZ@f8=S4FOa&HDjm{Dg7yiXbT z$qaeg#@mePonpM&XJiy{m)|ggZ}uwYNd@|Ur+!<<=y08REjXMrCo9Z}PQZ^o@yY)o zC|^`s_8{?NWtThim#+)O$mx1t_7U)9S0Vt9DAz2)w)M#_y65bx2PJgEY9u|KTHiB= z=X-bG_cT3I zJ-bGJcK8Hjj|lRI_-paB)8(2|O?7n)N7CC-SDgh|h~Ij+_rNu3`K)KmPW^(oOdHMo zBJO`UixG63Jq17x0cw(jckgc-x@oafR(?&U<~6wpg`9?}Yg%lleGTb94s=a@9!FKp zTnOG-b70KyKO&5X@}|vYqc|jrs~inNF9nik&M{W+Oy3?3LVOE$<^}WN7aa(vX^D%r zw$cd)HF1fe0(u~%spzUFt?3Ha-8Im+iE>2YSI8nHkE?Yd>-~Lko*~g*#np;v7a`n9 z8NGLjlK3DD+30%8YwFm9P!Jz3y>$6IsH@X{xs~6Zg<4xR%{rRKD0m!ZF62%);uj*X z#U-J2OltM~HIzR%^^I_e;y?9ELJ@Cjlbw3(lj%rBJelim(v&1qaEkvf;lMGn5v_VFPm|-2P>vNcee#E<_~E3w)}DyUatR|@<6T!SU3gF@w0S4% z93My_aes4RM;Q3&wla&wkt}+Y%hptf5UNlt>2tVCp(g5y8_i`*pK@RQ5z=E_Gmahx z0;+NyyDJ*H{3M0Vdw9{+ghHp8vkF76ChS_D2fz{E+N7d8@4He7B`Ryk)khtI{4is+ z?@YuGHwMH9&%$PCc@T~mwSnoAQsXVti8b)n^ePJ6@vRtHxs~MP(6Gfd1NPJ$u`b9w z?F5`$9+V_f`1|Z&XD1F4$hL-V;z+AJK^p}-jLEJG%(VihZ;SJH*V-EleKEUq#cBSP zjvr}sKo`^1RW($;9rIcf5I~K=sIKA1#O!ZO^`2>@JX&8K|A=Dw`99=#IWND8%y4IC za%`fU!i_r?39V*t>r#Xf$J2Hx>`{->n}vK_9_Ge3yow*#==u?mo&7@L)6+tk$Gs_& z?aXGcLYtwT7uh#yz3*5FKmVTbpOGhdzcpz|K5YMDwsC(>O&s^ctJL~sZwmkVVkl$C z#0L{f8=la@Hj2U#d@<07rfq-eV%5&6`L5BC!j0?)XKw_eS?UbKCD%3hYz*$-b%@V_ z)z+TW%sBcjM*`|L;wVIK_>3hsXezzS5{Ggnz+oU^93va=*=V1kgdpyZT;cZB~XwO)`(#^pdnGeL&TYY*nh{TaWcnxG7}p2fl&!#2BO|hmIt|6bKl(=z5`hDLqEi zn9h)*z8JXVag5(R46+G(042L7dd_Dm=a(msPb4M14gvx8mkTP0GGzAUh!+_Wo7x_& zvU9c92V%^e#bqn7O9(+1`Mo^+Kd0e&2Ob#tphKePJXa2ELg96*r{|7#@U$T#ubHj} z#68?!GplQ}haTUBNt~?|Z?F64zEi~4k}X-+ADFEyiC0fslsv=>--`V-xJupsYT|L@ zg9a8B#y&o-uL3WKnF7i4w120BtZ3}cS8@;Xx+xnJ4DN}XeG$x;SMs=6n?1> zuW7PBVR{4GThGYIP!rn^8vOQ~>(~80v)fXO`lt(4W|#cqJJ-9^ds%Bl5Mn=_d16|- z%5FUhac_^I=(k61Cn6gRiFnflPQRrXOA1#nQjU;Ayr*M|3jhz{bXN{SGF*$@n?Y;E zg#r*~gXPddLFeVG&QWv5Oz;9>WWrR!t#5S%Fwr-u0dRnzf9HCPq+$wcHs)&=U%e@X zI<_zN6zm}E@lhu#GwxHrOR;G{$kc12!89CT&B>t{QQfp#bKGEPh$)zWZ0+K+PS=WS z?Y9N^ASWrdxiO}7t-tX#J=PAewCYmFwYi3r&@HR$V@jS|yV-NXy|mVl z(s6yGD6N9V1Z9th_XuDB%J-AhME%cjGZF$GJ?yB9<_ru%D0t%#IHl3{8@6#W`uab) z#3O#~ow}(oYQdDC`NG$hXdif9Knb!`Ly!bvF4dIh4`b3ijm4ptm1#2=wv%!6ETm24 z+N8@qV+PPcuJRHax^`Bw7M92-5PsCKO8ESEF&*tZ8b(#(tUY|0`0!i0=S;Tf3s~q;e53V0ReBB5ToAY zvniuhPV+gOh*4se=VhuUSH*D?gzk78>Ye2>uj&;3P|Ne;;@a>{sa&VI)=6hwehODh zE5@jIJ~L&?bNFHa<}0|lOm*%O%kFem-9-yFKbW3RuEYb_%Py+z)~|L|4ki6sdZOX> z44qtr-FxFn;feoS3m)J<(=R-s`4fk-RW54Nl}Y_v%tNRwYF*o0mA(gh+o!ri!|!m5 zN%+}Vst!9JrL5r-RSWiz@mKFO-j=oOH;SwkT{*YqzDH4OVjex7RZ7F0d)VYcF{1RP^HF)V9(;Y74+& zEwE`_4qRfyeIeM==JQN)pwia=>N#xJqKWGpNnCfBPw=1yr_PwzbI=Ad2X^!1^s(2{ zE2$A!>WDP38^8ZR8b!wdOyVqe)YgEsXENQ&=DaKNB)2Z$O^U%i;^~r)#Pr^;V4PmA z+nmlhQnA_+B+tm{fS~)YqILgQ6{@@AQj=$*`5~0lEx(9ZNNYIB^wpSGC9Lyn(>uQ;oY(_l7?I zxf8|k7-d{U1zx|ww$ey@v&dE$-!zkYx)b=H%^FS7e=Lp*NAl|`MJ-3Q^QSasaRqf* zh$Q^5<|me6i&M1bZ%wg(nH5IqEpP2AVsY)Mr5N#@Tgk5;1X-Ab*2P8B(8=_Av>yo5 zrz>-3DXh55uW5GKf0W4!FQ5#v;ECzXe;5H1%00XFnVX~{ow8@$_BP++EQXKt^tl~( zY;9wEaxThF` zhj@uTcaiq+NJ}Dd0$;JTFIkx;cy@!TqaVSa~IX$FFQhNyPXM-}X-*WIqNS!JoFp zOzPi-zJ$3)Xk2(ox2jT9lMERCGFJADpr;J@-;~p@5Pg9>)l6bUtrqmFnBJdLKaVCS z2$owNb)SZAglpVaV`b3_pyq1gIFltxJ~*lqOwVMNRu&Owg0#Pp?hPU~!_vJR=fMmx zs6P1d;mOhZ4ck6CM*aUQs-`|wT`W<^5S6I-*^n0&j2^gIUiykLE@JX|f9~By{zViZ ztQ>~AC&w);`RO6BTKY)sJLKmZ>8d+t?w3Kz#0QVAMq2Jvc#-3k?rOs_8NTQTh~Z%} z_hIB9wCnU2&tOQwPp~?Ay=nsj-yuIA)HA{=%sZu68xzY}66c1H>*mcM1KftuV8Sbu&D>1AXY zrwUZuE_D&>PO8(9SlxX3ZRiah+58W=@cbAvAp_3n_z330rR?yiuJ_2AHbC{=F>Q4T zaS7uC`lWc?ZYsqnElwfU!iUu9d)jm>m5w|EzrEo!L7$;|W(NH`T(AC{8=9A{^|RMv z=H%M;u^B12u2z4;p08nllUAc{e@en~F@Ft6chwt|WGJkZev3_-m8yq7r|+jZ;LOr$ z$-Rrp!+&%W&$Y2=kkj1s-?YF!tsQ>Pwy~v@=i25i(o4-5n0ppeCwr+kTq-#}#Q*b^ z4sc%GmRq+sNt;c*6)kI1TjKidxylpG`pRW!dhQYjZvu(UXcy4@t@Rh~Bu}MW{j2xb zhaIG*&`S%jkYOiq48E*_h_3Zy9TtaP$g5ijeI#wm(`sh1zu(Q7@|rBlieFVA^Vkh8 zGCWwZE;ZuJEt$IahAokVPxV<^MdI(}k>Hn2ukM8VySh4hd}3LrqVm|hOA;C~oRX)e zRG++V)ofIdeMF& zDD#4l>dP4U!jaEUqt=nPImiBx_JA$>a;j7Q&dU37k7pJYXqWJ_VyPIXCK@bTkd!K* zVEgK&Et*s{!6UNFAH_N06f47lQE8mTQo+Ik;~B1x+ah~vaMjV&W-o4SdY7AZ6$o(E zkl|Q>!m*4lF(o3f_;Km0ItQJE)eoM0RR)q`Fa=TV%?cTN7F{0L-%ATq)5bz;?l|6| zt46~eM#cP*Z*iRYA*5kQZUIJp@kDL#sGO!tuZz3s!{azhFYaCnKfK%lUG?X#f{-Q^$KKMl zVwgIP(y>xKec${RDTy+{*2V z*=bZ&wa@C`U6nqVG!j@77}UP zUlr)XM1`P(L8PAB$yGksiyaf|-9I_TDwycU0JvzS-+q5cWJh|OaDsLQV%oDG9T4Ig z?d81K?@(4Ub9vBk`>=*FxyqqK33J>xH(KWpIZVYHDK$cz*8d>m91Nd(^-hhJFLs8} z_ifg+PV4Go^%_+ywFNYcC7oJQ0plW|sF?)p+!)g1*mpFFVGCk^Ae&}lFj9MB0iDS& z1**N)cnjPi)saNlpWD&OZJo~m0HqKYV9S>83L$DXypTG2jDl&TDYw+lnl_fqj$))N zPE>U;H-t`XN|$~F4kK~luQX?kEx zc;}4&@SQdCP;N`pfSWp$xpQK6zDAK1Kj=BU>bO<&U;uTPGI<=e?6kdMjIP_v&PQ|6 zCe4c%TDOE9d-NHa8kBvc`r++8v@3h)>0TlVb|1>Dj^<^UnHec}zd}ybZi5{7&-MwR zO?)=~Omsr5rpVF~l+E$>WG*S&EkSpT!RarkN-OkU^y@jq%AD>=<8LsAvPaP0X)#eQ zY1`Yit)E?Y8|*uVTp!;BJE{ym#Li5PR=Pt7vkpY-4zyD<)lU7?br*XFO}RLbZHcdc zUv{n?1u!(CEmNjK9MDkcw>;8w(%1kUUbOeNeZ~fjbA+m_o2PX{RR&6!RMuc}*REfk z-^q3)GXhcm(?pDab1}2;HDP8t#4CeE&co*@$Dwb?LycRwKHH@qU6wvMRpWS>xYopO z>SqRiSnO!@yBdrc+Lq!$C+VY{(Xmscp)*8BchR~DC1t#r|FK#gk8~%^(4OGYRfM~f z;oW=PQCA70dZ6{=BpnM35kS1*bfw$;(5mrGWj*3DvZ+mn*VEa(XSxk=?qoFtTbnYRw`;5sfy?%M@w6LGnvEGjkGep%cbd|T?o8+cIfsR;3(1=uZ*;99F z&)&Hpsf&e$)Q&_tUvoJEM$}Ur1zu)W@)U0>aM{f?FT>7WwjO|Z;cB}(4hD^7E<gZScJCPPMwZd#UUoG62Ci|v?s#0j#Z^z&J^YaxQLN+ydyOo&xzlW9NHX=*Fw zg}1D&0p+GA06d^CCY9jR&Td(v2}Z-(Pokv*evUq#gOWAH_23zoRhVYMu*+}rmRJu% zT}K8C0|Vqtyhu;;KX6!axs*4S_`2gW_veq4si~<%R?-E3E{tT8+diINIjZK^$+Y~% zMmO*IT)^B8yBDfqd9sq3;78Pgw4IL`5^$^8nV(GFJ!DMBZ&XBfm^Pl|uQ|L`5*{UyL*;0B+BP8jk*Ce?SN}m2aKGWJ}YYrwYjXvsY3!=Xro_)Jg0IBsTqwxotQ(w06IWHoXC$< zd^em%N5Z8iPPQXtWars5n$O7&6Ga(mnEG50V8&_2lG$`v&y0y4rs2j;&x^0e)bA(0 zFJO+?tGPQflA(I|ZEn@AR^)B9?cbr_dF=5_@#i zajm7BLV{wkc^|XraV5Zu_qQB=|( zs$~eEmoCxN7SE`6H^Qa&4)?j|7(w>lD``1#K6)qM`Hs%1$I3`$1qkE@U-|r}r0VWC zBNfm$7Q1Jz3b?~R9ci#HZ_+FP+l$$%EP2&aN|tUh>Hz(+;`W}r^WrmBWzyH&%-MR{ z`9drfT0^!L`|Wu@G`Uzao9DTQwke;yukAbCX9`L3M^@d;-=23C>lKM~80kV~6v)_n za`!bkiw~k)4>;p=pcVp2KxE-;KzK*y zeoHCz_oRT1)a%!tkt?8lvnbAZ;esMPcq-YEA1Q%YlD;V0{VgRdFSio;{70~=#;QM6 z56r@3CXT0QH~W@c`Z%0L*hW`4dyC$4nS(Gfu|%BETU4PJT(N-KIj06-w*I&!fk}>Lxa9yyfaO^sW}}# z#J!{IwM0-T9s`{;JQ~JoWL(stH6=4iTz{d17v+Tw!+&pF7z0}@$1uRqTLPNeAk_*< z%A@?oAtRefjuR@*rrG614>hs|+dt4BE5*)-pI*wlJaGnMzhqmthRH5!sLDZ}Kkugj zYOR0a8I7Oi*ZKNGOCkj5yJXU=>ypaA<^EuOg?)?MlgyJPLmN1>tB!nfGA3Umluk@+ ze&$+G@-f}jX_&qi@X)(0U`Op#tebEITusntR1gn8HFMv2Fy2ZL8dMDtpyozS_M z8?+0j+1dg$MRmEV9+Dn7f0+Rn>#Ng=EPxoO62p>lM>q zCkj7~=}h2EDUT}7!OJY-!>UmJ8|{(^*hLQHXvg=CDk1ePY5P4|`|`gb z{GnzWUca*@D}9!Cjn`MjJ$ww&Ups17J?^ZQ{a&2s;>1G7=brwMpex$FWdxr-NErIw zgCLQPra2OpxEKkPSzPwC%U3ur7eyVs=ZD|D*K-$e%R+#7LSwDbz?n^;0Rn}8cj;&`O z#Ts^LM!z(KE5nO6&ZS<8CLSI!t%%7$#AN$F@gK z;ww@GNc@!Ead5Z)CWoZ`<|da^m!d~>do0+dci+u2Su~DAhiK%?UGGJq-8<=*I`N*M3vuDenVzgydsBrAKCQLX;`%I}?%K2mVyhodI1`Cj1%DlS}n`33rR@Zbm;jvTWk*LD$}w zJ!(6!sg3WXb`35^*fDk8t%3OxeI)(Ns=vov`AkX3B+9RFS^5Rk0{%4q!vClI8q@R( z-N*)*Taaiul2SIsS&ma*wKZZjcIl-U-}W)Znp@QK$h-MDB1ZF5Q;&MAM)%aSJ1x;8 zx6E_Fe>KE3xdf@z#gl-{=9ga-DKDHk<=2XHiRUSRf?5iNicpJ~@GlYUE#9d!^;WYn z?#Z}Oy#}!-6m_|70ux?G%E3~;LXU>|`=5cBgT+IqJsHJZPEQq-`z)HZIq7J7I?V7d zdt+=YSVRSNI@f#9=(l0dJ}FWXdwpUemvg03Wg`s>l9edwVh)qZF1cbcc_c&jNYuTk zqRfdqrMqxgl?N+Z?68A2DiAh{Y#SDDl6_O5bw7J5z>tn!DMnT#gS3I@h!>xq;mp12 zj*E_svNn3+%_@-E8_nWMU{;_Zp-7NEW=$~+rz>Fr;k?GkVx z-`(Uh4(dZ!eBLb)Rsly9yQY|xNa_dw)C|6GcHLJhi}b)je{Hkz3m1tcEDHTpEl5`u z%<9kkD3`DvYOzKlp}UY?2#FjUo0#4GOZU6U&bsAqQ|Z36E)~#qkdzO$1)DoQ-F+=b zDQm)G5``1)!=W8I@J;cYs~%5xx;A+OXn?kz13!YMhRn?Vpc`$m1qpspyH4xfbhI8? zZwZ_=Nz(15Qe%O4SD{BmSeBkMch;k^1u4N8PTvn`4gw7PAuZ1|ltTMv;_BK~@wYmP zRSLF%sJT%)(ut-ceE5_Tx6+T*Y1$bthdH!!k#qu3Fp+-y`AZE>=f(UFsO`iS|Cn@G zS@(7G&XamJ3XjN;dcK<}m*kH4;O%6$FB38Jw4Tv8)=s%k=Xm41+tWP7qw=X=?=cXm zl5h3qJl~<6x#lMQDu_-R0<=PTK_?Ffa$fMC9Sswf`?CQ8fpT+mM-y`R1A6$jE)?51fN_pzGXV7PTwL!8j%amQVK)J` zKG}8I;_w-pJTW)X6OC_aXpmQOu9m?6)ct?{2g;zFk>JT$ykF?JJu^G`6! z^poE2_!sj1NaX|pKWf;S8Y0Zcm}gRt9mIy~%5IDF7AB;vkDDx6%}>+X z?J&^F`_5u#@RYBObB&p&ETnPmbd$oXcF1|R-#hB&x^^8>hePdsJ-WN-x@ts)u=1)P zk1^77aX7OeF{VG0%581O1a&r8Lod5yd}!irvpk$YB#1R@joJ}waQr(Rg6=4u>dt;m z1mH!FdTz9S!u*-FUibGJza8I>FjMiP)onyJrt<_VU6KYw7yaxwdq+(WR?_ zS(JP=WH@>bw|A-HH%uUIhSm2ZXl;s3kE16uX!{)us~tuvRk}59v)`j0Fqti{m8Kf~ zG_$aERt(^tQtwYRM_1q?CK#uUDKr4J>3R+JxTuVC{5j?9CHv z`eB<{*W7=l39$N)$jDN?3bU(A0#*c?#^^U-!PnB#(q$3b;G}z(QB_)jqfFa_i$oLk z8K2>Rt_UdPgK7#gIL|xGX`rkZVc*0Cw zS)p8AuaIp6Vj%y+g7#8Fk>g$cv)Kp)HTSHb_2nYYa8~Vsx zF~mUA#v2HJKEsI;$@0&+oQd6Cqeu@7fX8UmZTplfTFm!g@6pnlxSuZa*cW0xLP{aw z?mlx2EbDWcb@86lDr1~3$0mfDey=9u_4nL$c7q^!jp+`_;qwUB<6+I-&>u4=wY@$| zz+rZZY98-3+~4+HU>VO;BNqH)nUqcrZSFQWCj7SpS@^~ zD07@@DApUr(yzEuCCVO6`>`f*S@I!&iu^DcCzAPJpYtsM?z$&eHTB)*b;G64#I>>Q zTWx?7ixw5h>vtqQ%ass3Ne*0F)(WJYhg`zTDD{FpYEYJBIsO)?7*;FqVjhB*`mHOq6k{ zsAuhNsc!aVq5+#mFS}xdiD9+Had#WElXY=Mj?sL?3*D`UMxwd%3((0T*;sC zUk=|JQ`KqL9P>sQNvI`j^S~{O-iA5YFIUH`q7Rpqzv@~3PPbKYNU3s|X{47{o2;x) z_|-ldbr&(-*a)5?Ev9g^ovc_>w|zyo>C&AIK3kMm!kY6AAkHh+bsc9=hZ|uuG$j|i z{8gsNM4z5YG*X*X+dEiv}!=lwg>aw(2bt>+wC9RPMp&G)j3_ubBQ z>*p9Ce1Eig-E>RH-C`sspHo-w=we%-j5qCk#g5SNV$-roP7UsDslfVZ80tK_BQaZH zJw{G=RwK3QtEFV3cVo(n(Q&5o`oo>y4x9MCh;eR+<;`1MR=oC;F5ioNY5<<=k^Cp6 zXr$w=t2I;D!ESCwnb@(bfMIs`myXWH^|h^cO3Y=Bi2d;~H{BhBDz`d^@4XIOHORfm zL)AGfBZGd0ZwtnaMxgpQuX1rv9vpAyTM*x;Tcs+TfU8n{`zo3dtM~YSjIPn`i@j}% zh(mjBw784JoK|RaM|=Bq1Fx^IuMwfonZSd1l0jZU5&0qCS8li#ebt%W4)-rw+Wbjs zWX7WJ*=WsBcQrX4Sq8y=yJRNPL0-g4iZw!Zrss0yPD%`_y>=QBo6eiPZO3R2@rE<5 zEpMsf0lcP7HdC++JAiMOj0CAqQOxJi;;VoOof>+KgZN~<%h33;Xc~Zb3hCCi8&e}R zdO59ixK&Hf_=R4@-Ez*`R-zRfNnOj0{?^+)F(J4kTmfp^%^t5v1ntl{9~>hT5oPTfUh@q)lrT9<#j< zUkurOl#F24__F;>d|KGs>B@N z?Kl#vyY4RVn>&;6@n&XFO0LU3J4o@Fx$Dne(#aBgI>e!KcZ%MPKG zh_;q{UJBgkXR*(9=v9h7?#!U5VYD%Aa_-B~rKX<+cShD@5=*kqFJ_m|pD&5;w;-bI z^(%rWpLs;>h=ZLmf9uP7MO}YacsYMrPRtl+I^Fu)@*1oG8IZ_$%|6nm43F(f;)c%r zWBKV0U&M#N6X+8jgT^EO#*3&o0NizF2%XLM5bF(O?1SSbIDUn*a)P<+G|1OnW z)H$aNPQSdP&ylIxM%j`p%PvPWLkeBggE(2SP-AGh>%snCRxIo~VhFg3Y;U&A$Vj%4 zF#o^A9Urw`muB?!v7g_IGfyd(+znFnIBs>VSLD!!CQD9cbhZU#!{2vQWFCE263OBg zq~E052&c&W!8kYK?ry4N_C`&^Pu9s=3zf!c-ElD@3x3y0c4}ubKiF8TVmTVqN2X+I zGzFaRs1^V`dEk{Nk{0Tx%0|gSsGW%$(p`+p3}{rN$PGT&e6jlkEmME~UTtJ??JqpL zRlTw-H>+dvMpIwL+q{q}!Zl$aV@DYHcHkd(W%n+0#ndck)a!jal2`jNoJmQbk2LNJ zRihJiPUn~TB#B1A$}n-o1#-$N_BytivGmR z{u*Qq^0f0)Wg%$cG-jO1l!0E+7o~IQW!3nsg#!RsnC-Yl!F7&hQ3%3k{j>&1&jfRtCT46Qx$NJ^%|A zL(Bv*@o`gcc3}Prka2q^%7sb_4`;tjDtTBMZn2Of(U`kQY z_&{uIKFgKvE@qw2l275G{KM`K392E5p~^4qOR%$u)lNMchvH*q5PgR)A&8Tu8?0j) zm*1-QR4ruC=Q$hKM$gHeX+dcSZuj?_RI+Cndl5R?F5!CD4Gi{{h2}S`Su~{m;c0gl z4ZjU<+P?5ZZ%5WF(h-iN_kTGw-m~$g=QK;5nFwSZYIPZjC91Mjo~5r-Hye$!78+@; zw6<$z8gjcdbT@2jBNwPw&s|e~FdWNdZ#Pgq4hw2oR6)wgb*{>U|JIvR6P?o&5r32V zluk)z@mXQI3k*sZ2UN5OS5A51p$e(gb146N?N@lOJLhGe`9(`sf9g8$${4-f2xehM zu@aTJ*+C3FLq|0}e*OT-_v7AVL)+?dORnhLYwVV)5HaG8jBlw32N-lmg+MEq#N$;u z=#t)~cjY%eev(N#D$n+`i#ogabD@Z~dJFRMEHyjlIS&*r^TuctrNpmOV%5#Ln9#uo z#(t{IZ$jw}NmeP!Tiq%vGUFI1e)Xk&ALkG&x2>?Q#4*}_z@kc#Vw7LyX5lVmdK90u z{$1UfFX1r&8zXb=Z|c^kbNVMZ!oP#|P_xRPonfbFMsh68UEnQ+K{^9py)vVfi*+@;M zPlipBxlb$XrQ}z7(wl@neaMdIe8O)s#Q|)Dfk_MG?f_ic1=}Nbq11%oi1<8q?DJV{iG6wMHRbT z`@NB=m~>jNfN$@?Z#F&2^YBZ-f0d!UhMUUNGn)BvJ|4rs9o4fvb?)p@bv?)DQDhCD zO`zK9pry8ntTb`PfT0U|*n6bjD`103I^ZrxNQW?5L{zb8T+AHTfC`+1~C z1{teB)fCWep-4wFt9~`=FQV>(dQ1VV%rj)qBQU;FJ?AtYl)P1j>e=PGFTuDW^%9dI zoL8SJ7b)`LuD(o)J}L)dEm0K9#J*$85bW~8{Jv18mzLvCGR23^%|p@UywRAAW~=(O zS^O>)@CD~-^bL*%%T-;E`$9>tRCcT%Jo%fH8y2t(d`iPuFhIS@GvPi^yk+Va3HG8V zJjl`-Gm`(c6qNiiyM_4e&9#<$27ehQ>Fo%LEH@D5e{9~G-Kog>+Q{-I)*!Yl;k^j4 zb7?s)NJ_%$9B;jcW45_PTnqDi`(h<`0EH;LW#jsEU0JXD-UoT(C*2ydCjb$_M>&BS zcV}Eb6PpYqUHhZ10hRy2H;~MUhU9bprT1a3nm7Q`6@Co_93FJm-rlF3G0fNQ%N7PZ@>RGE)qmwHm}h3 zx{`Vs#}L8V;D;YCo0**l#44TN28F$EW{fy*33C?Gdfp2>rypA{$_%g#FJ#O>Im;;- z>Oj}N4GD8il+9OM^%F6qiD4Xt3huMJEW2~1+GTrohV{5-r}rnxdw*!_(;S|yj}a4J z>n1g~L~9m2jL%_wq-u0}PZ>)9B%yHIn9Q(ij`?tYkO0O8+c+cJ$Q4dD$OVdG- zDmdOpm|0W}dz2gOR2H7ctxO%HKR%e&S9h%OdL-?&q+pG$ED&R$WOy5FXp8UOl#j-~ zLgdr;1r_1&wBi;7dP0xRmYXHKfoZL%vd+}>U0*02VAM~?MeNM2jb8-M9&Kb>=Z zH%49*_%PkpFH;b%Hk?TJUZTZqIB{cjb+G=MSm(87|D!d{@Xw!#Z)jH*8iIqr$4+f* z=t45<@nD=^mNu7V6u$a>FK6B31$jSInHAlSob!I`JPLg}X$}^BnE$+!;Wg>*iirij zVoddlAH#lu8*P#p?$}%3=j%!@VJpt3-VquP)9XF>sLv6l2NEMxA+OmX`xR*59)^Tj zpZ(^Af+L5RPH_o8+5_%mgZAI?<+i3rX$e7VDm&COjU;wCqI)^BZWY`N`Bq4(wSunx zb#9QHSVac3t#_$~(LtnGHlPL3zBu!dvt?#2Y^!O?p(iB^kuf#uKq;-iM*2)_9!CzA zDGZ6cOD8y#kdu)^QoyzJ_VS%sxUgDE?flPv;u^R8Zfdo6kaPa`%A0*t)=TXg@b%f& zaFWF70P+3RF_YS5^n^)OQ+~V0A=L4+@Y63;zC6L!2c;t8cz@ie6G_|G z@GJinmj6uS7CpP8Iu~;Nqg-B}<1zjh6JZ8Oldgs*-DNxj%4>`!5uv~1ns524_meK}ZPvnn#|LTh zWP0nDvCr&9VU}dBJ4r{*fA<&4@i{ZwC+%p8PIZ^zIjV{*PUVcq<~DWj!a{s?fcn6w z7N&4OiNsbFXZt7S7lRMz*Qvngb5IS3verDNUwLyt@iyxDzFL4%|5)x+S=Rih(q~m& zC330l3T2Y^_@g*Ob1#w9s5zfOZM|+Hg452fcG&-{YLT!hF^{He(Ui`P^deDz&z-T1 zw^zSMVNkaxAybaKZ{fP}b4t5dje){je@HqRD z_C|m5U5&#@l--|#7t;;F8#+lm{)e$cYIz)GryWURU(SA@qPP7y77-y(>9o#qhfv}4 zPAiMu4pGGmxlQTTKJ8&YU7UrRe?#Q4@@SlxP!$twp^?Rm-Iwv8QpA9~Hw|=)Yp+KF6%g;7$llH$op~z=t zo^IiBwVB?UcRNSDH|Ty*x3r=_aGzQ6x2-8*Fu(y#1x` z+T~#GHU3*prE=}v34i^U)5!Xuhs=B0kU@o65x)W_Mm~92-Xslb@&C>z&h73<G~WQjg5^!iQ9`8FWz-`&$5(%d`eW%d@a@=n`is0`OBm1#6qyry9u5C z9QqXe0CWXBI`Ng6<=M3#tNxqz50Bi|UyeIcLT3_vGu|v;(N0_^4ZXa7Yt;E!{Q?)S z(rRhbzGOBF`z_S$-Ti0>=WD`4LwPSL?pAu*;lE7j#n$;bz;a% z+U75RYj~+$&$_bjp#cw4k$OjmckiU{wQr`frKn)8MrFyS?3zLH)q^UKWyZnZli&Pf z|4|^D^9lwqKrGl!SWF}|Ywf_9?xMGMm&ezleG(Z~CFvyJf7M(fpPgr34S7&^M3+c!ejB zcgh-PCT@g5X~*}X_?IHKeDUG%#EK>giL9%V^T4)L<;X@|;Y@B^TV+%BCm74VS6rj? zG@S}8+-mu>^DbK3Ur6U~QSj}L&nLl}!Jc&=`mBDOs{p=mBgdNRf7(C(lTJjV;#nkk zJvTFy>66#yx^nj??PY2zgf8)I^htB5wpLmI0m|V1&({o;>68;_`52q152KFR;wLxx zq)j=xQ=`LJw7%uz9OUmpIWjn{)WprX{q8=QUb4O)=g`ybH}e7O*3^z=a5UW5hf$7k z9gCC5MIZBncHQHrU+n9)Di- z(O$R+T(sxh99CYY%KTw^13Ac z?u)xb+>Xj(DPm67Y`3d?A`jroX{if7R3q-#_0=X!IYKEniS+Ry^vnawtFMVJ5?m@uR zhEdi4rh)(B?mz3ibHfG_4tJf4ahvPf*R5Z{w-3KP;#8PqBCDLN``GQ3(t>Llvz%_t zs7nlp+usvUU6cuxUg#djZs>OW?-QB5A2iOO@08c?N%B=6*OG+$@@=C?3!@br#p1k10ODNbTVu}z;6U(D%_#LN5b zzB%ICPQf?Q|M4<6w1;>!Cg0V>-we28Nq0gzr!w#FBIuE-V5QxWaUCp*B9_#?hjO0ODS;+pUN+PD+UFo4tl~T*&IR0>J`vV^j3q?dV zON!=;QkL`$Ps}ZmjAhM4>5Bw!8b^WUXO#ws`sE1JTLj&HcKYunx{xE+93hnD2}oI+ zsB+|E$=cETV7@5lk#!BT^d3L@?@clB-soe#{3Lbp=LSEDGVV$0KkoI&!NK_X`FU>R zHs`gk4^|95{~0lMJU_xqao^vI0O8^4_@|xHum4`AO?k!?5DkqF^>AwEvr!NDG%iR4 z1BvK=iY2&staLdtoCS|Mc^v+yT7ZmPh~8$y>i_=7*Ix4~5t{r{E|kdgDPdoK9I z%RSgB{wMV{T(@+|NVw6jQ?7IfTI{2%3YuR$d(?lJ^ys>ECE(@h;DH+|r$Z6fvJD;-J^0ABSx;F1l>p(|3>?s`i+{u7j}BtcXfKO!R|hfd|r z*{JmIpPjw>Y`UrgILX@oGJL-APR$(tE>+VY?vQvgAS#~=lm_vTG;rbqN7sa7DT)<+ zQ^8C6&+oDk+#-H<;pXCz`j^bx{rRJl_=Bqin;k%9qQ^iI{LnRo*6tr|xqtul_tEza ze_FlmF&+_c`N!uIK=Q5b#XmoL#nH6nEJ_=_pfq6BsLLVupO*stXXdZm@twu41MdKD z@0O~nsxM!@+`2%7g@vI|Y3>L)yYWPANi&Boacm<@Q z$%WUgV*;I>aTE~h-@JKKZ`iyW%UamJ=hEQ5(U+M?2Cfkn6@`ymY$Y85HEr#G|MsuU zNp+a;ki}~Pgr-3`ls0$vyOBI+yY+i<1uuWX6K{7jR(W`*<}1D=-Pm-Xs@TL`*hxF< z&DIdz^X1_f@esv8`gXoUWwGlHEnA z5MZ+W=gsplB)~P{9;jFIz)zkQUwNJM&7X7yt2wwZ1|Keff%-2Vfq#Gh=ef4@km~(^ zKiL2O-vGOETKV7~GYOJ?|8yh&aRuJaxhbGaX|j=k6L4BpwO$rv%5uvlv1Ju~%Ktn5 z8aN*b@xSi?&#oWZEjNwT7V&_bBIVzGVLZ%REm0zS`b=+*3`Rj(C8AB2WCd0$M$EHY zQ4wv^5HMas#0)~y(uc*&@f`?G4h%ZVl$dh3I~+Wqk&7a?iCIHy)4jw_G#fWkoUg#1 zs?7(QI~-P@#jx(SCu6FiN*ZQXNT+AQq+kpE_m$xGA}rz}SD_IFbYDSAl+6%;GXP;a z@Gk@>3!y0#w#xUR$>}q+U41t^>sRQ2Nw9#bx@BcKlxyaHY7%0D+*Nij$ zX!P%MCQ4(6!owZ*;TA2-mMloc6kC(hP#rjjCMV{E0AU^>a%pA+JiFY9cxc4SUx$3F z!Hftx4V}EG@-2tOW{(PbAy-FcFgnX`z>9Us5`YIOiFEPihQOrIPfQf;qkLDMpB_=G z8EP=&lx(1wtEs3ecS7tx6nxG<@t~Mtl>KOq0i9E}#KZ`X`4(oLDPghY7hQ^~gGT2e zGrVF%mLX{ZX6lDn)jW0BY|=Q>0@d8imcK)%oPNH@B_z<9ky$9`sSu5;!H^B3OeLex za=Jk9)U;8}IF${*z>aAUu!|xoPCl@};X}AxW<1m4i8LGNF7S%MXQG zb-IBkDG4l>2L&&5R9MmtU=T@|ANZZTCYJC}2|70GimubENPl=ag#oxi0Z1jMGA-Nx zqE9E99x0pW$y9rC6q-+X#k!<;kB)2r&HS z5!okyq*qW>;gFA{w1+%qwfKp8IJI!D;)mBTTftHj2ZkMtXJ?r_Rml-BM}>+>_SjjJ zx^d`wUZz?{jZ01-RALWQGFC*P9^~@Hsxl$NP#{X_nksW+7O4c5@;Jz_7)a|p(E!No zyOdS!oS;-9g)s+`E(J>^2`;o*z~whJC1onLA#H0iV#!Fhl$VtRJ;U+<+C>o|@mw5- zPL>R*0|gdeY)h93it1-ZuB*AQ$0o=GeeoC^0aNE8Kjq~^iI_Tttt(s&>V=U^##F8^ zIq%Atk{oC?u+L3worob1QeUNeb>zvm;kX8fv058XdFIbn5Cln&7wdV%af`AHrg-=A0F z2!K#_KhPu15{?qaNT67S+^B|t1j7L(c+3h@Fgo2_d`p6YiA%P4ubDk+Mm!uFbWTkA1 zULr6bvZaXU>bN4qR#8y$pUYyB3o)k$~3f++!@^a=5 z#RcIlOp9WiFY3=6EjC-K_}EY4UEMf1ycq{W$9h8MF+Zg0r z4qJ#P2c>-PIRO=GJV3e_*5tVrW_Fe|6HOIRFdllPMe^hO{^8->p?;qY<0uCzCnl!Pi+;;Nc<`SB?bdw)F};{=NG z(?5h7aM^ZBasvrl-=F8-BzWz<0wHay(*l%a9pEgyeYjk3svq1R7~u~?1!8}5@h8{8PwTDip^})I^o6?F_-`VJ95-qRd*1&6NM$FhU$mSk*-BmpQ4~tz@Ft07 zZSlT4P$8j_2%^pbb|#8par?5MpZ2Ky4ViHu1Pc10okH!ccEohAvu!2CNP&o9dha)H z^2jl9ejwVX209lHQt;dUJL-Pqyn8x%dg$ISPw(6`r9g+@etWu=(8z&CDzsPk3bNvbd|CrhxP(rum}>F|rP}Y2&%BNlL_Y5+`~IY7 z)ZXs5qHkdlmcZ!m0l?1eG%~(uPpP#06ypS8TF{gtjgP_Ttlj?1cxg%?Ewjg7!5gSR zen!L1tF>EoYwN9t>$Pt&Yd#C63ubS*6&&s~4#>N2XzdZBcVS-3LFN zTto~`{+o%@;z0%~5l^j=Tt#ohm1MT_FLx3Xg|?9*oT60P-C_}XnxFb5{)Mj)Be+to z;hy$v&gB9Wv5SN6HD>?~Rq%dWp^BkK&4Hy8^@ zt{=^B`p6;pItP&=7d=Y=g($3ijY#tL)Q27O#~t7qdP0Aj93cn76^^wFO}oEcGVt_1Cx`JDL%P%BKVfzXavegC`3W4N-bu<;1Ib@#_^Y$O5axtrD7)E`xlQp}KdRWwh)8)0L)d zQp}6cB1{sOwXX$B7DN0HRgDF<~bHRHalI#do_U@n{_oDh9&Y zc1G!ax^jCGL>X&ubTz!?QVh70cpQFO*Bvn0{4;eiI&%dqvDTBl2~!Z4e8~;ZPS|VE z`viZR3g}A`zWoW#J@S_m7vGIlE#EX7CXG0HRCu+!vTk$)J%2vYwTRJh#TaLL`&WQk z7tDxgf!#qC{CHk8e7qSZ5}d4rcg=4ik-8#v`WC|csh`TV9g(Uq@JwlZnOx7ux7&Wy3?N^ z$*SFn9GPq2)kh8st|a?NWsZx^&$Y5tJu(x4jO8FII6q4cis8T!pNMeVJB$R`@~`Ks zfasPtKi-~=^OoVhycyH~8ip`{ILb#ujZr;_G4h4_eEUoui64R~FBIM*t1^5*cl@0Nb6NmMl;3vWah+!^RMy{&&dthbNP=vN#|i9BS4 zPZDs1s~RoOUU;!+MkwiScMblQiLobULL7@V^vox1Ahz0Fj0U~i8|Zf&khYDR@`P>w zM!n`=n6vWz^Z7*lHBAvKJ!B8 z)CUq?EEa{?f;h?wZVDd7H}y}K-AzcKfICU{O37_i{`V-~DKxLXl_iPC(O%(P0}>lG z@%S`C8W6PK@P*zWuDoF;1(f$~$wgsh69#qp8&y9%4WtBsGbnST*8W%H=|aO} zXJ!0U|1SzkIOl-GSOKO`-0%R6$I0-fPB?lE zhyk z--ZFv5jbTHK4aAll{#tP!h@}2;Dn4&Xv8>P{a$Ji|5Y-6X4_2NT^=Bten&Q((=#nv z$KTAN#wE+?9U^uSxg%w_BZr6QIKhOLEK}wBd?MG9)Dncw`(aRV zd51)~j)hm8hgE z;pE2|x(C9yQ7;nSeE`oBaKd#U1sm&8;GdZHF$ehaUZ4^lJI(+$1(nX|Y>MJHAd_c~ zI{uAtiQ@`S5ZUY9K3pX)zI7saUjHZOik1Ds=*qv>KJ5fs%N>vD0(c%3MOvR|I%lEb@7@y-?}}dabh=I3mddu&w2<5?dsX ziW{_ILj?PQ(*}DeBI69$mKp2Zuo*1mi3&bcS5~s*VBD#T`;JN0nSLfyB14PLLq^A= zA1#;sOMM`W0TpflS2ndYM8v70eA*;tRfjxMmuGVcxc}a&RPQ$Ux!ZTq(_9;B1y46@y;h$X0O*-5Wk5kmh0m zsFuKHvgxSAa_YfP=3nm3D;~@S`Xo&zs2^zw;_MBz7v}pNX^X&^t{9BJDw|<{@B27) z3H3IcM!{t0sE+RnB)vC3SF3bpVroXxg&z+UX)J{YIjBHUr>k02z6N68x%8c)VIb(t zfHgUNkwEH>mZ@NzJq9K#EAZ_Zn^=X&X{S|#pBqt2*l?6I=xPSYH7KUWLK+FO4W`&k zgC8zES9-x{IUxGA+1ayc8GJr-0#HRrioh2c1U{vOtHeMhWZDYF52@L014dT<%;ECP zd{AhZo^9ztSwp+%EK?&zGJ!JE%7R>TPV0BO6-fa|Hg%LRvWI-iKci+tQ%~9C>>L}u zv=AAGzLvh8vGwseekh~-5wtIaV*n>TP+4;O8$}I2O8yJsTTj)fISMX*=0(^PI~?yQ zDgr*f(I0&vf(ad@mqg-|4^`zyM4Kp`aem%(p;9-V1|WI(x7*t188cmz(hlaVOOBun zRcx-D(rPP{q9`VZ7xgM^_)3DSO{>z8poBx`>rJ5y+!w`$wUT~|^4wbmWHOAR4p%|mX%RX+hU8c-~Y=jBOJHn9>}nz0F@w;P$lhRBLe{ySRoyO9AZY!r-` zt_dN&cuCI?rEC|~#C;NfU~-|;00|{*kr6>fL^lJ$rtz2qOti@n9xR?}B>J3lk=>~g zQgwTTZY;}=dK7& z%neT+$B{gvAv8V^_9zKHynHTIodVYu21a)Qz_-w-a%Rh(GJCR0)=*FDIs+>bZQY+z z2dJRnAkOlwR5CGdGQ~sz1yeZKvXiR^fx+Rd0@E|3TrL}%!%M+d*Lnq{RD?GnID`Op zqNC6|AjkYI)eVnDu!Is4P-HqCGf2*>a@VLVU(8V>O;OZ*w`=B7j|PD)V20Gt`c|4D z77E!JCcWfzlrI^LEZmY4I4#d=88V!;H%skr-DZIY`=)U_LhRF^+nCBg>mMW`?vKQh zKGLkIOpT|un*uwj;9(?>Rz{Zk7$kqSl*MXN{*bwh7Isob5(_YCf=W8$L4n6oaoZS5 zb_wJTF-LUPiT;+6MZ}8eI2E$3HO|-yxk66I$i}wvl?ypE!-v6rkNEROl3Xv9TWkgf2QkY5cFd-0Mo{L}Ps1PhBOk{3|t`j0=%SIxMb zbs`s@y68X@Ls3xfq(NJ$AyCHR)`)Ge zWR>4h&`qPM_fzP3jiGHdE^Ikv=#!743~eXeG7H5Zrjm#muCL&%ojVkgYlTYEdVHFULJb92l@=@1xz~9~C08k;HR!I# zYhrN6eI^S_37nGG6@tz|%fOC^WTl4C$(wKh>~}CeG7@u8X31MdYynP64L2%V>cM%D ztR7lj)>%cg&^HqQkQ(lCCMcLJMNeExIL=3^WR;ezTB)iZBgyMX_YDIsC1M>$WIYt& zFXY9MBk7ovn3e=*AH>m-OV9Im2}>;A1NP?fMdD3X`#1gU7HoaCjy95^{vPnq>f_p+ zw=dz42dVXoHb9^cq7I=W_+~H4q8`=aKcI#k852)}A7e~X#W0nt>M!u9;EffLGw>r> zQi4b2BF1)Wen5wUS(uZOGzP9^eAFbn%9eDtdT|nFgzwPF63ZVT5ofPEJLHL6tB5BT zl{rw5N*~>6mGQTekQlM2-LiH>v64NNNAXBr>G*H1k!r#=6W0}FZix2#E9*cP4d!ma zDzfeIx$N)ZeE4%;38#dSaf(gL)ZnawkQ^wz4h)PU-taF3IpDui6qu+x}9WHi=dWXE~@jiFct=h2F?3s zoVnVqf(>c!{ zxw!I9Lt0VFDobxOxUgOMlwTt-1Myc9(_6!Khhq4MaReIKk)ZpG{gQdyb{?3;zL9h4 zowpm{bL8cw;Q=*d!c0a(qVfbmB1mYuvI(~Gx0q9__-m3)Gemx9Z*(@DFjLy?J9Iav zd3@JgW?AXiQxSs@%h^awN1DXmgZCqwU&0I-P7rogrotx5+VO}!Ad=yq8y`6)qdwPCVXfyibgIkC5e5iF)boHVaQI${Ej8u^TX_R zfL{^EK-%`M^u^^a{^j5w}oL(6>zO0Rxc%wsavxn^^#zznty;eO@ja2*2Q3 zqO@zD+{~SvIPaCOV&UTlAJa-;cm%5rmNM4XOba!b_X&I%YU-4eaRZV{DUlsZA`cG_IGKL# zH+i#q?_a+V5~?@pID00gUnJ2%+ zP{?f+AX6=ge4rM=*mQXt5CFtl0H}&36Y;*Gz8)XZ>Nah0WPRB32-q$+SQuzgGa4$M z+0`v&I=d}xgy;=>N{cvL9aAu*lAVyksciD%v2C@ptyca3`T9g^kuc(Qi(y&*1B`Xm zzuc14JlOJ?xM|{0D3OD9dls-MXOCzfQHaKebpakMZPZ0pxbnaw_)gabY_Wq}Kl#uJL z`#+y^-gF&u)_3*6n_GQPR>kb5sOS4Lxs3aRP~cgf8IQ zC1rIxK!nev82DyL(EZKyUrkkED%BH8!`@QS2l?5XFn(z;_bO+0-b>6JJayX}E7AIC zL3q4Oa%At|!%mjD?PLRJ;D_k_?`FW#+xMw~s6DiIr9JVvx5%L|UFO*4V7$_nal4!( z0vC58Mmv4J_-#BHx7BeYUN0cQKV5v+=tmcb2Hj?Zd9ic!k+@blK|wFDqm(S0vfot} z_ER)R4O`#_0$k=nEl4=YC{oC!p@a!N133$cbf`%?e?vY{m1V%nRSU@Y(lX_Swu)nQ zGHg$!{Xl3W2v(<9Fflg|2HGEtWH;KD|LNGH9f~>K$zEAn8db_6w2KiD@YrXO8WdXf zL%yC=FN-m>3;>z$M%BfmC90DjtQ+Oy@yMut6jsB?>!*H2Tyzg`;WuC#4wZT1pGf%b zKd=dcRKj*po~5dP!tdj)8DZaO3UrW2mwte!c?WvFB%n}%)+TRhl6tl%2q|n%3wxbi zwmxilW}@KbQZM)z;&74f5`OCmuviUk$F>DRY?Pi}yuP8Lb;-Z$AE@!X{JhBUofE!U z7BqaU9x)_vxd{LkgTK4gRxg@{st0Wnb(oysfq1wd=t{hff>*sp#@(C^Vq`ppk2eT} zzx@h+deFr8;^6(!Gqytf7xV%5CQmQovxNvl_@1S|W(sOJt$H*8u?kX@G@OI_ccK4o z4j`hBbBdAI1Ov{2B+-(g8!uep%LWZ$!e(?3eH%r;!qnN$c!y%6(xL;L_j64A!r#A; zoHNJ8yUU{`HiH~6?j{zaG-3hiC_J>5B%TMuU_R#+<@js7J|xxXE?=Z#s(dt^ zsNf!zb&70rQDlC+yme;9bpr!TQO_5{a>=#@4H1gPp@E6-*tX@ROe+ih?UdF7VY8D} zzC1knFKWIU7aKkZnC%foy|=Lk+9^;-smsHl`#6jflWkHVfmVVXA2We@S#HUbI<3RG z5!qv)J!rcIHccg-jQmx$GM?9OGXMB^)Slbi0<=l~ll;Ar(BFn=+Hr0fmpx2+ z1|rm0gcg=yB1{xmL4zlZ4#|iQb3VH(j_QT0N3WEvat~7)Ml13nxy1MvEW5sco&?)t z>MZ9|0g`YT+Vw;|bD+#`!!wF_Prlcav1lA2J|d1l;%lT$Ka@WDwSmzHQwRhzGdces zK^Zq}1g4dOnPP#-`Pv!S^AK_q;0hbiE}cyjZ$qk7sUJg8(h{jcb+-9EfcajP8HS(K zBko5Vh$Q!cSl#WF@9*`LGKQAH+0yi8B-*H!7NQqHDH{rmK9ItRByBRJaG1o6G=ai3_m9yTPYdSfRvhi0{R)`F}13bl~Ri;0ze@_4H>=y{w(5R{a<3XUpiO+> z)A{`-hi20r^`IgQ4n|28bm{@G2U)!i>*_T73^EXGO=9$)*)R#x#KR)5H~LHmQiw{T zUdjQ(V3YD09_bxG2*5g=p2}OB+}Msn57dQ?x8y#&zPG360okc>QK?!P+7i$1rymZq z{>)RD)!HH>r_QECwjB$JwN~F*8Ctero||IN@>D{I*f|SnXeS3FVsdP%Rx{%&oOy+T zsGzgeuJ=~YQ@8i1JA`M`1$SZ!Y-?58CB&e^?1L(bl=hLk2^g(Y&u?ZcL#mJtvXL@L z7>rJtJ2XaZ+Ff2%)81ny^cL8B#t*j>daMm8r12hEA~_a(qd--yoH4=PO5|EKhP)!) z4O7T@_+I5BohXbLI~hjkD&3T6uh?wCV^#%pi&NJ}y`Y9rhw%sK`KzeXf0nbN&`BRD zOjm6oq*CNeE!2d0oQBn;Gqp`Om)nSG%H|FtD2|ltfXB<`d8tOQYU-x6!GLy>sY(!Q zY~pSaHidB;#+W=P8HU=Eo08>%Gf_4I*%~rmP=9&LA}={lRJY%R(d0Ztw~BSP_HkrW zG<>k&Qj}6p z<~R&$@}1Da-D}1z;xq=#q$n-k76Psq!1)p=8me$sk>0YuEh$M#G$%*eN0x<Qw{-~!DyeKf#_#g$`>r_xJt?a7HyU?9?uGRe)Q+OYW83?ABY@hC#f?II@J1Pd@l zyFn3Ok1~q4Bz2%)!6|X%<3Z4Z9=cbFdEfjqQn6M%dES#}khl9w=nq7rXM_=x<@fl6 zS!te`ZZ?>3MFy>tn$-7TSss)Ak~VPfr=QaoAS)E6j>`|rdSfEN79c+EAZn3>DH;&O zK8EhP{wg%F>@OLgsq$Z>ZUT!!ywvl`K$23`1R)zF1+bbHZuu{v(1Mg2G_5*G;}=q~ zF)8L3LoR~1ZfGtcQ5c|{bNs8%zir5(lqBgUNXn5piPLi8g20Ip!o-d#WS&w{I|Ki; znT^bilGqqRL#i{{23}C0`*=L_ZBt${fe7Vs6W}q_fdj8}z)1tb<^zfgLDEv~MH@`q zWvWOJM9JCoI7n)$q)3J6EMpSejAu%46~ne%35W$#fH-Z4L)l*zv$0&u$s@>OH!^2a zizQ|WW|mEeh%_*PZH&j4V*_1!3vHI%%|%hcvrI{$Hnfn8SlVdHBuFDhaJjs^Buvxb z+#Y#kjb<4EtKr>_?$=|*20>?dGp*tNcH{+{?6TUKd}{H6Q1*(Ci}YA>pkgw;^f*gN zj#Qak1EZ3UI3#Li#E7%o)6^no!qg8IUvUU;%K`r(pNo$y92!>rhe-K3I>cw-6)M!iT#bNDEWEF&sRmLlcJ=y48=tln7;N;z6zZ+O28Lur};X(FW<4vn&zR72THpx z(EfotF0xsy>%PL(ncW}@ofHZ0VULhvgc!|OGF`N2)#}cxFk*CBVSM64F%#Jy+twWm zBDMA?3^JI0tS?pm$nmNcju4H@h4Y~Oqs)s`uDGlMYo1(hNuRkW`{G8lzUYi7QU7>(S{m{IxUY;7wjJCY)jXUK|(oQ&ulgChz!8s+X1L!OS3 zDH?@zw8UX)rZm9-`i%<&fky@` zOJt2uv zp(XTW5BU(e(gYN2)ixbnah}-hTQ$Qt#dKSg6UEb zbIO=<17^o1!U4^)3td`787WRH_>4yUT*hHOe>oN;Q3(b79YJraMyGb71d%DUJT%|d zUY~ZxHkYimDct^38-tkR9+G=hWdfz{_!c4->%IU^twVEZE!N?T{;{J$IbH2Kd)ATg zE#y-vx&irQ9(qkJbp?cv1aIdkFoq;E^7HASWif{h`QZXr6}HE*mL9H)yq**3;7fbQ z*Lp*RT(M;#pb9M_FA6<;Kw7TqEUYa2-UmzNY(%Cf{Y@OLpqgxFGWKc}K z1W)gjk2J62^+<09RU5TKEaP)i)yCb>#MEnzKEB4#Wh-dPZ?x{YFqHRrvb<~pgD~py zg9ob>sHJLyqO$qXn;BSC3J53y^mo9dj!ZyTU35L$-(L`%X1T_VMuK35P0CLCmlUCB zhO14u%w)KBx_FLn$ZQ)3-BC}b3C>1h4C>Sm25)=up9=3#0D3X$T;gC7lDwTL=?k&K zm#Dkp2D`RM`#=3^(O_eN#bXU&Y%}i~{H}W&_|2rZ(Gwi&i#ly}h zgvsyub6UkviREQ1<{Q`tMYRk#c?DI-_iL`$s?-HTWTG&NzA}$y@rR1eUk&c(TY&n` zl#y>wI6!oWw(*wUar0jS6R~Y-`gU@h_`PvX?3?smEAp{3bP|Qzh;-YB?@O@Ogod%vvN8Wrp8D46Y@eSd!}21}|s!cnP=FQuJBUY}Io#CND^DGAwr>vO=J*dYv6O zDk1@>cz6@SvzDhMI0U~cV+4>V1DF}gxC$wg$;ja#yciDp*(wb^I0;g!;VX?&x&rNZ z0jm&{3i6Fr+rS*yAPa^kSx&gd29@dLW$n!jAaWAnG?WjUy?s_Bgmy=naj;8(Csf{a>1JvCond)m}daZkFvZ ztLZY~3lOV1jpz8$rP@)r$HkfLY1q6Q6IDkgR37ZgD84f4B~*I%8JKN)|Mm+Y}Vehqya{Tfb8prC~fBPhn) z9&Vn(2IlEJsd8jn;qszQd9^1sd^I^GMHYH=T-%0_c0neYnwxqf`=FSAiG*bgIFk5i zbB^y_R5XnpPd|qB+Wj%u2WMw3*U8}}p{3jitLF<_wrge*BN5>1;H-_1VDFu>bvr1g zY`fb_wl_DYWvhxHjon%LV;rRs^dT!+;fpLXIr;ecf!c_fHrxb~d9e%Yc&-p`-x5iB zTe$`nhfo@Ea7^n}czD&`WC4n4b5^SgGXNJk~mEqHSY5asv6 zMhy5bRtUa$@=*ok^h`Q%;F=2QVF}-PdHwi+HY#^=Lzd3}fx|c zXKn3zt+afHux;l+lf`rn4qD=H7{}fi?O4I|k9;9l?Bln!ht-bq8N@H=H*e!+Ptp`n zb9rAdX3FI*5k0{1?qZery(R?YR%Wo7tI7|IyT=j?b+d>i#RE19saKfu3&-Dv?kV(Z zo{ITmQK8Tc;y@2Rgc5lv##bTr_ec#e$#SH8CwI@4q#ARed5;11?lkc2FZ~#CrcH`% zoqshnER`3^S?($jcrl8?vA?^@*$}|oYh?3c%$7uRU@SdQFlOlmcqBz2-tdgjdIwt( z`3f5kg}&$Ox>l`Xe9UMj-&DlnZ^9ZyX=nNbNaKDI)^K;6zc>&;Jo+YY^kc6t!*2FF zaHJFzqPN#=+zWs(8LHZjNu8rRP&J~Z7*v>rVv#*9shS(tPUK}$%HWZbUOMeZcUUTw z+mAT9&;J2K6WqNYzej}VJ*Jxz+v4}B7Y<2kn$DpYhO^t6Wy|*DH{r6S7RZOq`pm2y zz608r85Zt4G;DRTv|iUNOtnAZttc+ZUsdxL>ylO31y#xttBU#?d_du+)Y z4TCJz5FN94Oarz@2pxX`_Qd<^lOiEES~V_{_J)cIRHkQDGw9(Coi5NF5G_ZVR|#aE zP0OFwg6?-G^Rl=M!_*Cb!iRtws+#!8wa2SZe6Jj3U(v(C!L#K`1E8l7rle<4adGIQ z|IJ3U{znu4i~X6~^F5}CLPuxk@>f8cCX|Oh2<6Mb8%Q+5ge3eX$F9)wl&Q<_bQ6%V ztOc!o04wF#TK>>F;Nr+f8Ovd5n|M}6QBo`%6`wn2w(n#bH&FBwyaJjuB^T$&@@w-2 zkdxc`j#+ZB4PY&0=c%AY26n9bpK51sk{Qp^xh(M79X%-<>P5}H)oZIEa?*9>kN`<& ztu3rV0-F-NG9LG{%Q!}BDY@QjRj6m`8doQR`(^q&qEe_~WN%aqr$TS4Q-h3+^K>wE zU(|E3lj3Ej)>+oR81cP{3=)Fxaj46aGDzF!VSkx*gB_9oI8|dik?N@LSsrt-6Vnl(#0d>*ef@z~$S7U+k>9{;VT5O)GoR0Rf40E_D0f zaPhXI(F$~%R7GEEhqyNAbx(XW_rs6NkTw{-sVJvo8Ixjp>6z|hUTbvgUX2!`lH1mp ztXi*ViQ3#BcgXpkNyJB>qVr$OGG{{&GtB)(3bD#GJaIC@K64d$&aJ zER36y_kbGF#f%F>q?#f!vP@I{>PKs2c{=Vka?U1K$sp;&#LJ4{o6v|mmm47NF{M~Q zXlb8FC$Ty=C(C*|Xrg1GCQn^8ag3rq*t{+dh~I5*PR#PL)rl!?ov4Ld0o3E_su|IZ zI0uxmJ+;pG6Qc&Dd8~#)_)4_99!W{Q_6koe$g0wP?dv!|A%_IW|4RhDyO_pXS_92 z>>J;n{(Wl@{;gis4itOm}_7oq0Q=U9-O*~y>2|ZqZ`eWYsu$}9| z+IDgPqK^HF#%dQ|TBeMtM_W^wyG8R8%~%lUjVs;%0WCq&z8$QOr8~#G*hs}4ROPX1 zDF_SI(5>hf-Ya9}QfuDZJ(AzplUvf9T5v2iXJ7xqy;)dO5rqunQe_qTrgV;}mtpZxf*U2*x( zTvqqVk9_DC|J|qm<4rf-kxCZfqp+wyJ zKb+k+m_8cw2P&G^x#hs+`s`E*f|B~)%KDpT@0|Sd=9jj&93Sx#WqtUl==TS>@pG(! z_B5%(U1Sk3?LC2U(PsJK93T-~2m1x~Wgp315wKiY&ul;#0dFJZ4PYfnLo^8E8Q5rW z0r_Ma!bTgr01ZNCoZw+7@)4tT8j?c*hiqg>kRzuDya!FA2LbdOQ_nNCpEFXY19(Zi z27Zc1SR7BpDBv-1L%3Q>xfxKzu*x4#gr^xh{57M7F!v`Y8IQyDLSDB7Oc;-dk!I`= zpcWI%eBkfMq&l<0=;J_Xnv($|i-V&Tgn2}U@$KsBVg+#7A`=2&su*b49mmHsAcOrD z=K-t)CWt-2(r0p624ph+uoOFu36j$;yG8QJ`P$dMMuH0^6Ac5wH&8pY^sR4w3rd3s zxxC835qd)ss$-F`*x+Lp4;A5KF8Yu<)uCQi3)MGl*uZs`OzQsIzx^8(A!d|A)o?S% zL8?&1K><31k8iy3MotDC2skUiZIB{-2_3TGCr_TtB^Y2Bdbsb(pLoCNrkkjaFJefsIApGE-A{^mEoiNK5*Gtfystw5`EXYJax z#1B365PXk?^oRp1luUCt8df#q028xKNT8fIvT&buy58cUqHre<2kJk0IL=}rr$RW28*4eEs$C7ifv-#35kcmDbR{hOI<_ry2s7~Hy}C!W-=ffMw~)9<5a zRAr8Bu4AkEx^|5uT1Wl(i1LS{7w}7EUzm@7qm|O}w6ne^KEHWvX}de; zSo+27Juh!<-Fjkpq$F=zhoutCq2IR8hib%8{f=r*sNE;Sx}W@i>aP5yx+_03f5mpa z@JnSkKK37e`ByHh`{)&y|J+qq{`^mV{5L-Q!C$Pa`@~nie6wa`LRB9=N>$$t6RBL^ zaQwu;VB=_Si=Q5av*AEU{n&77Yx~IBmcfnfqbKs!bo3f~MCv6~_MM>o*xJUgJ-7YK zk1T(5^^qf^T=SJ%f!=b_Ckb2~a|DU*{W3E8W&8IC%n9BDkN_|R%Tnl;rH(U!3vld0 z4HQ8lJj&lx<$lQK;-Jr+5YA@VLlzu-Aqe&kTNN43xX9p<*i)2p!QjY?vtqULNQ~dW zaUqF**o50-WAvB%@dgyZU*vQ8Cyh?3Q$RZf}i3tM6bB+aHoN)p?N$M z6id$`Z)l!@U_=-@#5mDV1^>>d!PyKwk9Z{`%Q?U^DppcCSR2<7!{?&Wxa>#nJnO|A_R%$tW0WgP=Nlq?!(ZS3bk{+zzmijF}GoS z0Zfk#tZf!KhZ1;q>eQ*2#K^$^Ks%2>s*2 z(21*JtQbJFp@D%y9_7FHd%wpcUBgsHfRh9Vh2Q`E-$(hEzx-u{8C&|uhJyRqES!gE znu%jx7Bb5fA`R;d4K!gKlhQkPyf^vzj@u)ra^thib@8mX;f`HSy|VvHuR{^ ze(RZk|K~G4^9SGlZ+|^w+Yx8YmfoFv1`Me~meo>TNL?iw`i?F;d2nHGkVhdq9!VKf7&uWabu zJ&@}u>h}v6Fny+g)GL8kQjf1|`o;@8zx~Ymdl&9*%d4?azb~LkU4Jg2pyNuw#hof_ zNPUTamq|TZ6K8<9eSl98F*pK0&k+;%4y~|5@ejBZ+z2}hPXaZN$qph1uut&@tY>P8 z1{efwY!gb^K`;e7k?jd1!0YglTuSj#Y$99=@^CiWoVv(!Xut-J?Ce3j4ZOy#;aEUE zRoFgqkH;!3Byrww&PW~5Pdd!N;aTV^UK<9btK3fDcpMXBgg3-9a#rF72H%s<5HQ44 zk(WUj4hEfJWgzhExJcA8qxeTy85w2^cZpkJxJfV{T-T_=!Hu@?xePR#nJvbbkwp)~ zDt|tic2S6b=NN@!r3&5($@4tuKjz>l#)NXPWjnEpSTJlwCITKM&F0~dC;NdI%$qk4 zT4GMANX!(oS|DuMif}n=NvMwH#5#e}m{3lQuoSm#s<0YiK^PHvF04qxvhsF2#KziS zEkSRb36O;IU^tc;wz0Qy5X79v$>co2R)-g1I5e=sQ42A%`T-7*dwDd-x;Ajx=gD8VJso%`>18eZ?q zC5GHgGDznOBVJ+Da~-!(b{!Sy`){aUey{WnHZ0t;?A{Hp-L-c1Q-Ahf{>N2ypS-&6 z-`)7FDfyho-ISa9;XY^ev5{3xxpf_--~OAapZfiO`ONSC%m4d-Z&0flA;#j%V zkjicCORhVaUf2+Sb^q|Q8(Uu4)VSls&}j7W@}hfr>^?Mqr~+%5@P!fuZ0I_6{3UE|8RR!zN}U$h{OjY)mKv zd3G*2=%fj_jOwT&hezxohb;-y5hE!tFrR;%OH$|l&5$t=I2Q=joUP~{ndIQza50P* zX{eMmqaYp%0T`DA?hFq?T_JVc2WqLve4v&QWI$nb#*2Ie5XRZjE@MhvoGE(H&)myo z3#n5o4UwjlOs1blCXCpU`gsHM!dw7m0aAx?*>bQ2i-8@;EJI^VF4H8!#LPa&uL-Ak zHXf2D6NTpbNRg~P4sh&q$z=13PF9q>3;;|HG3Ui7Prs}u2|&}x$jfNxhx|xz^dyr7 zOsNP&vTy$W6q)i!>j;y^PRRr!z>=ezwV7B2uvu~pBwx~)itAxmP$+tc$u~CRWh4Q_ zFoeZ^Vi`|?q}fffF93rk!^KeG(MZrPy)YDR66X^7MdVX2!t)e;nXOo@!0UyIzON^J zCsxRg6|(X{xqN=acVl7Tg#ja=zmcXtC|8DnN8F+P1IJf&A6nJlaPZZ~pPTxfJ8qf$ z-No}4luAxH`leZTCU_cFPIwP5+cfiq`FGD={P62b8+t~Mv~>@Rrjj|AbtBZp z(PI3Aa!z-q?@+vFe{$$(I?lXsJ_*OE0G3lv9p!#yEX&}62))U{F_VA6jJbbjdSAXSVy6MgvZ@8WKrW^10&bMdGeq{-(hJ~+<)Mp?rCHX=S&$%Pn{7@k~T5&ly z=!KOnacC%Zq`c;&)0r)em9>SA{*pcoRP@i?1f?~{hhE>`KYxGs`bK^7NEM@x3XYRF zD?|b_^d5guj-}3emRNFFjVyZz6{i6OK&7}8oC$OT0duaUl!Ga27+xTat7l=e?8$^R z@E-Ua#Ha;LK<6Y7fRd;p!l*(sbtw{FBaLz>oS1eICXF7%*hr|hHXQFBAGQLNyvgBEo6@{vq?g7 zP=Y)QhL{}I6~dhAs7?Y&GMQ*uZ#<%q1P}v6fNd$6NMZ&F%zz!m24q-)W}VP9Yg;O^ z(j)=d;}@cGy-F)_Y6+Xk)kRaNPVN^mQWmXfni+x2Rxr5pV)+p8j})o`LbeW7HP;?=JMfzYSQNW_`*QU>&lIYZtBA zM6yK9QYU6V$|K8I7QAd#QAMWkj_h<|^4Wc|0ZE(cz*Lk+5@NY*5E8^@k4w(^#JMDO z(@DTU^GJVWAn3F4aRM_FKzuG>P$VG`85u7#-!fa$R;>~81W^%c(O2TX&nNuLEhhRg~S zwNSD=8W_W5&9K!ahlJ>twv1*`D4XAa$J)M_9f7Gb4(LR`XqN30mA^^1R57-hp_pK; zRLRWbu{r$Mm4TF-tEU*I6%~(aRLTh#>CP1IXpb~oJB3Zf_h??gjV<%t3D>3K< zrj~JJH9)p#!BhmIUzF1y0pPF#X@rn;RD>ReoNyH`govgXo>WqL4SomGFZfj^M3Rj_)%Mt z0b=8L&_nZXBC_nvpi~wuFx!MovzXa*vX+cbkbJWRc$Bo+Zc+C5W35{-csrBGXM;#X z=s|->8VgNDlXKp1E=e6s7=qJB1eYPc+YBgRph0a8U@S}ydSt{IJBE^?TFpF?Z>EGM zD3!?*@Mz?tmfzBl#rXvD0#z`HFdS3?A#w2qY)B?iW)_&8APLz#!jv+763cEB2we%% z>9nCbB!!$v(7NG5as~zl3?<8p=fJES5*TR=pgOT>g(B0s$z<)3DNRc$N{m9Wxfb+D zs28w+rHb4b1hoPNST6gBG(#tuY88z?YB2^! z>2rW^cGVB7niPG=zO0MT2*2u}f3IG@|IaiKI4p4NFn3?C;D*s(XffmO`dr=1)S?Sf z(BBK7N!{qFz+>86SRRk7F#r_o9fYz(drlEu^GN+2&0?2 z9!qivv>QFKU?hxB&3g!ji&-Exj}sDRc{5E&nnyj((HN)H)mi zMdTw4#EjMSy)bf9(wi5WPSsquQiq)q>UsU@IDs*74;^pL|y znVB%72F$qECf;r|rJ}T0tHk1bLS~1FX6F#INQhY*W_ife)J~$jHV$MBz{k{OqM1q& zCa0DWfuZnPP^EV52}Pk(gw2w8yR{LEzM4UTDze@%{`50}d`3hdjzH2hC#-LJO21%A zNt;HgB4Z+tU}$Ja7Olj<99)blvpXcmXcPA&gds)PV}vojmZxb{MirUbeI%Vdw?Orq z6C7Dpq48o#{z@Bh;Q6joAcU@0@&nh=KMfXC{OH=9FH{}B?CEb@F(d>=vCO?z|Lm)) za=!9{u&O^H524Z5iV7Vr=koJxn%$&rA_&-vXc#bPfKEr$IR01KxE!O3dpT|CzZ3^S zYud!%@t=r;{Hn_599RzX(T~gO=5(OxQk9N`0d!fAKj;$ZTfY9?m{QTJU}?$MANkWS zbeF1?kp2h7FwnR0isPk1eKZL;lmx5@-{W?!U!RZoSptS|Uk^(~frV2u(Oseb z^MqU~?zy=zBtJ({Dw8Z$ysR^pDEFg7 z~;gVt`V1imYL(07=V&H%f#u zWKZD`B;V+fD$zLGLn`mVxg=b zS*wyZD+H3^M|eQy%wmqP(`q!~&F~it6&&c*#Uw zKCWMDp%`Oi#40JGgA5mXOsN1Fawsx`DUxRd%FhaDgUIz~&A69F7f&w1FeI!gTn;0a z@;VfA1w!b;Upf6IyO(ugct6kO)$>caT;%O^0F8TI04X|tkoSw3Fz8MWC%m-2-Ew=*WmP;`P3NHYWWgT|OJfz4 zsHj3%t`vNg&Z<;Cp9zvqC0nTE{YpVoeia*`TaE;tTlC$c{#&t})$}L#b7ePE^s_YO z1%AP=I<(-cY@kD-q~FZWxdq3~2foYFuN2&3!E<2h(8W-?>|~O;to||r_iQ?m2`YqK zSaw7GLS|UVab}=ly2H{sg@O)#o^!)^S_cggV>|;V8)Q>KHXX2Z3mgr?T%nZ3F#Y%H zmFpFYZoXPbC}&7HBXGY|f0r=6EY1X3V0yts%dB>xN)ZsrcK~}tcA3aa^;%GbW+0_f zg-2qk0z|_Fi*rWmbd^{S*r_3lvd2#};yZwNBFTI^;9{6vkr55Vdeug6bqJVF0Wv&J zD8&Y;ivan=VwlL2Pg*QA0;Da@0~mIuz|0OD1DFD4goz_zrbEQYCoMNu60(q39>j>r zBQhj}0^w8^14X2z2w`cIYpAG|)j~oD7?3YT6JCf0sFmgf#zNAlCBc%Wb*e+Cvb-gq zrlT6V6-gi?nFw&mF!?B?NYv6g=7})^839U3Q$$Qf#tKRFkd`AzZ54sZ!78d#MIHeS zk%KnVHPLKrrV5%F4XGun5SI58=r2v55lEgD)ZB_V^;6j#8i94__A?p*uj1E4h0{!VbI_l)3zXF$Wb4foJ{c#tbV_|Yc zB}Y{@#SxFzSreSRMyhJGSj`4SR+Y**DwhwulC+ias%cjfA@p3VD(>!iC*XdrUvfZ0 zE>p~=i@9XzCZpRkhY{#sQ6=T7gs+kuMEo%8vD&z}=i$+E-U+h~i#A`#g@LEPS?&j% zRZ+-2JMWh=VJTfK=1S$D80tR{@4E`Z&g(1w4-UOfIU}$F12;NGaLfsVu$n4VlLbYb zbpmu2b7LyoU(F8sdHqGrcMs#s;xvpeuNp``lg~zw?M9|vyAh=HbRZ@ee?A3rP%=Re z`K*6p(qtM31)@q9D9)PH^>CgE6h&jDor1)YpbZklA|tVQ3PzCmh$`vJH;-fj9%~(| zQ~}hIiW7i<$ro*s2DNEpN$sOapv2<*K!#m#`g8zhll35ywKGU2+g{Q}9${9_1htY$ zf`xR(CP>3fC>(#T`NSEZIu$1fKzruujB?RGprsFFiF~HjT>oLoKFL0G(7nC(v(bSE}QT zuHWO;q#i)gu6|j0LeSUHQ@{qs6JTl(c#f0H=d-y?Hk-~6NRXkATZIs+a=Ee>ie4cM zINs!S(0B9b6>z{USbxCYcL*8RP35wgbkfZxD;^ho{n|j5OR`svIpx7@Fp}}odFtd# z5l?FkUNP?$(>X7ebVd_}c-q&D?v|r=L+-w;+LDti=d&dz>&vSPUeWO?c@64=Z%UXLw45c&WgNBzphjUBmdYI1RG! z#vjhK=?o}kcZ=BR7#BJds0GF!B237kI=eu2glM}kaV|-ny(L2+ehSnMfpHV0CG(6h zbp<>EGqO=r6DOuN2T9~Rx5(a2Mm`Rtn-lbI38n%P#U^00`gL#u4NE5&;Cuv9?Ddmwn zH&xJp9&<9lJYi7zc?Muq32TZZb>$JD6B%fG!pa1+g2M5K8vX{-iWpDtYH8j;6iQ5U zV!UZZMv}T_3W#O!(I#n;6y<1OJjp*N7$^1Uj!r_}Q|Hnxpdq^UCIV<3#xKD-f&NsO zzFlzwB@r zp)c7*Uxj|PsQ<*fQx4r?1%+Oq1M?7Y(+>So*(+C_as`tM98)kg8hK_muZjibx%!X3 zdKLY7K>d+)-9k}kaof)7FX7|a0@~8u`2kTZRosgHv3C-5M1NQ>babc7#h|PT75#-b z0s=mMwH%hpel*(eBF2}+Y0%>vtxSPDz5~YPPQ!Td4+geCEo!TawhI&IjMQZl%KjIR zAi|O+7S~B8`;bTR3-Tz!fNhHlmNWuXVVV)ho%)>+s*q`9C_+q{ko`{%KtP-wAX6?b zq!AORhNM4Z?<6NE^yAsGVz>Q^{clsX`nT>PKc78LCSw z#5_u=yrE8xD2IcEBVkrq1A^MiItoP<0wP0Y{4$1Hxy0VqK~`J{=lkW+;;Etvuu!Unm2n?~hj z0GgA20g8B}(b~EI0rJlYG!qi!nogopg$3z?{`+J4{b---G*?(cp6hrRx?vg045F8~ zsS$l8tgL^lRdb!M{|bv{L1Mb>a4d=bEXnwnu<0ig87+>thVlQS55uD-Qs#z1s+fy& zAFt}a8l#s0fl{=Ta3eXtnl7ol{)u?MpaRYi5w)MvX3|jt&HBe==$@~t7>7MtlRg~i zE-P(6*$g|ui9T_!rD?F>r_1GR^kMmk&IA3$^I}j6ihiJcNS?C+&Q%{8n8(ui=lOp? zpr2uhMy9HNL9gPdN?wKOlFzwTFAMCX?-FDH&qn+J%Stn!<%Y${kt(&XU<=vP zguEV(ewGRegy= zGz4pkax~PgYRr%`jg*Q>RHxB_fdQ#5O&F_0o+3KVBdzc#K&=cE&50V zMSp0A^vURN8PhrfXN0bQR-gt!^Rp&(G+-5U?w5*gDTK)N&&dT*2;EE=KKPcsk6>gYr6{=Htuj&X@3XcjcF_ct!v+3~%twetVjnT?hi<}Ru5O68_wpoRH zs#ge4eJ`wBE#ym~{*|_>(!VjM|L}>QQ$BPEwR7h!b3q?hD$uP!x4M()V6urBR^75L zf~Xx;x2Z8NX%TzN)XzR zD*N~EfAYyE7cE*OkIz2)?2a8fWCQ_S@mkojZ3@QD}A3rcJNE{yLgj0$B!Q;^RdSsV@DBQy1J@< z-Lvn_yYk8_7c5wyzNp!@ZQIpXU)`rqpIy6l!NXZA8zks;aw}G>=-00w1#GBs&6_t* zzj7-(LqzL@2@?>$a^*@cnVl9%%*Q~q;Bbg8K+5E@@w9zqTR4-fPsM5yk*Y+P<8a#I zdMutyC2$WmSeBhci@M-0@B_|;^JzBL>^B8MB#0W5XQ*HlW@RL#65+b-(5)c~C~Ipa zD1*dgB;F88)TMK*b+~qaAV}xzJLK5Wn%aEsP&RoWA1XG9I{O`NpdHSfd#Mb9EU63I zi+#JD{Q=WFD&ZFBMkkiog4_LZtx1=fi-C}8mP;xqz_`A zyn`Wj?%at*$lBx=CAh8bH={^NBsCHlxsUu#xU9tUQJf zAAbJ%=MyQ^FmP1T@6WP&fD?mb6Zi)X9Qc>N{DtQ9f->BC_St8L4I9StmnMS-4MG~N zSeKwbiyA?2(GpCZmx^$bLgCnaE|W z4q%K>r!H%XBZ+NQH5nk75l!q(W%s4Chb%y4D@>N{XM^1l2d`Ce5O@?dJ${ep zLx;+i&6wKn*{Aw;e{$K}DfQ(=_QARRHPVEYk*sJaUAt}7sD+cBUo@fbo>g;Fm0)3m z$%IX^(fxLe#q~hy5wh=n1%_E!tUE-A|_R9QspMJE7!0!8QPIfl>zFAs7RO{ z)wx-()Xm-8u)a7_mb8x?4(Bq<_7=T7Z_Nu6*Y}@yXyS(C!o6mFnb}>Rtw<)L!RvEg zFEQM3(!O-Z=40xbDd-foW9!aSP zC!?VQP;r#Uw9^|Wo8Vg_rjj{g-iaUFfH?(|h$|)wTx7DCQ!N1%Jj@y(O5xE*A7z!+ zqel-msUt>=0Cj*>pc=%z^Ugc*A8?CR8p5x+<{IFZSq7NzzWZ+W;s{~;E}3A}$dMyK zXuJ^wz3sN!*xcWL|NR6o=nfd;GsppPA)E~f_!z#8Ki_lDJrvM{PT7~ULBHUF3jlbu zLK+K*r=EHWB`>+;68wthu;FR+`_MxV?ccwjOI8~!3s8@~9)J9CMta?K*P-g=mtRi9 zYp=a_=FFK|G~98=9T#165wSo}s9&0Z+^9s1FmU{qZ~)zjFF+c7fP4naA_mFa#SX~4 z^wLYodSE}R3ff{fm{ z|JQVvhqL({+w@2(Q5TQYC8O2xa7n0kZ%z50+KS>xU0pJqiZ)jfRR6(drx!YLO|Ge>JEFz1t_` zR-br0TUl}Hm%s4clivT054`h_Kl+YotT0LYL^_+}TxU|n(L>9xIrA%*pZdkW{Oqew z+$Uo>o~vJ+vANQiqI`<;GgGI1;(yQk^r<(0@|O=^ z^2C~6^V2WQES<9XFc~xC)(yu(Xh%%YuG&O*_kZ-_K@b0_-vhs!GvE%B+GR3_Odhn0 zXPaJai|`{xYjYw?lRbn55O_>=&BK_IDP$BrFjFfNIA2prTi zFt2S}Qfq=bwqUfFhQX7|u&_AhV|Py8A=7b*5Vjh~fk8UR6*Lp%N3b7e?2cljY3BP) zvHM$|Yz}LQz;cKgCsY7+5Qv##a+y|ekpevWBMY<1nWY{e$20-AY<$_8pK-<+U@#y} zC8!McfPc(5A<8}ybbsN67ih@VlS(+5YtR%VqY_L7=}~|(8+zan+`>-)Il%Sdhadj+ zuYV2raTg6iJ36Hamk>)pnDIsc6<4Qg7yx)+51c~>9FI*cGSLLLyycc#G!PsQHVP;v zH6Z+)v7qe(4?Muy7YT$3x*a}z82MaM2JFc)43jZF^UO0e*Y5?h?qLPPT`E~Fu*#tl zOM>4N&>2e-VgN9)cH@mVl5WV{?Aif)HvQ;^K>%rla0wBZSc5G%=dNA5QiI))z>0?v zJ@UvSH{5Uo3bVLjwZSYfcXkY|LH0}P1>1D{m+VYBnobJT5641>8fyS`jzi(vxzDt6;7gSy4vjEP6HWyR-z?_0n5&ySz>iIcAR<&RBmvD;lYG$cw=xw3p>Z?0lh z=f9ou*k4b%<&Qt>_4r+Ydaj|wq#AS4I{QT3{_qI{YXQ_NGTCB4J)Qv6)9IxBpnkgA zB#PtZYa0(O1JqN=(s;HJP%n*{XGbpYGOp~tLHoK*-nQGA?YUT~G2Q3Q|MZ!ceeRq` zzVQ2=SNACCx6-^gKQwl8-Cp+bCS!M$$3SGqST1Fas{aEFeSsb-ExDxdcjxCb9~_1rInvD6tNPjkbg# ziw1ZKe*{^Yw;8o2sDq%GkD+2CvJcB2Mu^GS8(|c37CaaZE0FBid0-=$sUdySmKqF4 zL+#p`DiSOCh-n~+&&!GcnmmONF|+YfkXHP0S4UCiU4MV3sB)0?4)r;3LqSnU_YF&;aYgkl~-N~$dTSi z6JQw513a^67%^hRfddDCGcGs2L-@#OB`D|)m`6SqK>qmg z<5{dAgl!7z51Qb~G-0c)5MzT*=uyy`gSJE;DzVQ-2z>$D^p0Yju_0>()Zi`|4QZGZ zO~{7S&?Bkvsi&S|u&BfY!LK<&eyb2J5tJNk*zcufGqFrcpO34Fhszpk57ty3sI6qn zULUJZH6AvN4%8!cfO<5UisUV*vss(BueRsBO?G+y(Xx06Y#Ap{p-o!{ceX2-|W!gdO$r?Ve<7^)6kf&%+OVOf8(CH_y6uY z*Pim(i+=HquJ>JMqU9zIG)D7@2KR_Q?LnQs1nL}gU71Ojq|;^bqyzP|eWahNGl{ZT z`G&fZRaJ*p$D#*gnFj1zT%UM;^zz3>6y5vsz8B`~I|$4hQ({cFS#v+}>x)nP-&;R* z=ChYRy|3pI(|d7j%C0E4SlJvSsH0unt}0R`sj`&=I$hBB{f~zb}~Qy38<6vNhWwQsUEin^{M0%SOF=x3r-U_ zY##7=81Q7`l$APIK(Lb#2vY8H3s_;b4T>XB+YfG$tPn!_qB}qYA=DFhLNNjdQR~L>(1c1G zUG3DWDSC~K%Gt*@>K*Ehx*k|DcO&&TRBar-*ecsdhvKOS0{Gs_Rw zjb5{F$f|v#HdigEw$I+z#7t4n6sO`P$#{7xS)aEbK4%JXBXt*0P_moqXgrjPhwAq3 zyy1+~fBCTw|LmmqKk(=CGG+VI@#>6w1+DvZT6z7xh0k7h)&qb1@$DC$(dX$0@{Q&8 z^KNp-8CID$*Oqu_GtB%+KP>dcnP2$ z&ZWx3$%%`1JL>xXo^Y|hAsO=iEzm9dnupIES;=F8YW zOf-EXzwJperLv-%GeAJz09gd#EVw!2(qJPB7isnZLb(%X`Gyd#kZ6Uw${9ow3(*n1do?7Jevfh$FB2YlsdwE%k|tjN zLP7z~exwqD8eS7fcg1;>eAv7ZJQ00C$&InOF-6#47K0Rq>K%SH@yc)(sfJdHomL^N zNoP890EBGTbqLxUVv*W#V@;@`-oExMoCw!vWA>}#`E>}CqdDWx&9zah7~ zA-BE36lDzQ=1|_Sq^dFbnq00vZ@(bUVBk;t4JZE{nNJJq_KJU*%+94t_AOqpXW`tE zb*q5tbSj!Q>2NlZwK5t^vZQ3)w5pA>cdwpZw0({JxP6u*p3k96E^B|)JV0~~Av#l$ zwqJnDHJE(Zz48T=bbY2wHk^x>nM_qOj>>i1Oyumx&i7WuwpW`iHKr(LKjn_mIVjKC zQZ|2Ibmq?3+G?{Ou#cOHoc&+{P3+7a12LJgT#DJRHR+P-eG5W|mQ?MTlc?Qja^>!e zZP*p9n?CuUe$zl5^LcmmK956cS+7f$s&Y}CJ$WDY!7c|bjAeuuhLS)^%URXH;88|* zIs14-2gs);IA1I7+JIUO)V<*}80=MOdd5b*AE7VEteUMt6GL1|lt?_@teB58ljO}x zcmA$sf*M-Esk!7#eRC@p_R>zRMND6d#4Y@RsR5;!3j%{P&cm6gV2;ECX1!bFWPwv_#q@q8a!eX!Jrx+2=wI< zTB*tlDJ0A&!&3GS1Kv0x4&`3!02l4I)f4tdO~TQL{b`f9eLpK3bobHs;FD+)!eHV# zi|!oJyais27;;bMImio`LzN)9MN<)t?U+=wwee^wYk#htQo`5|vL#I-noA{VLND=j zCe3CzkD(e&w#t58E(c7rmu0^jOD4kEToQS9X+lR%D-H+hXq#oXn{bWM1U;?t^l88C zmdK|udqXyZtDto}mX6afkvEO`Jkx^{N3*87!M@mzhKz+u)^2dqtTt~VIs3x9Na$EW zH;2L?qcc*i$yX8$c7twev-!rfK?nN-?SY8__0*dN>X4$3Gf6rp2 zhj4rN<@Q9GV+mkOY=oNx5(0_^VY78J*EMX&lmyD~h+lU_UL}zvw=uOEs5AJW)I_qf z5)*ed6O5m;H-}ounm)%tZWe-d08M!o8Kbq%886nvcR+X{S~p z*||A!i|J5BpCwdkRWYo2){fHlG-8^qlwpn6d*RAUqpBpoI+U`q=R=ktwdE>r~qQ&kq)}c z*%vsYp$eWzRfpU=A!w_H(v40FA1bH-Ne6V39GOCTQsY-zT>AYAL|MY$I3b0OQHZlY zsPsoVYZX8-Oe$)KM59Se0}?tOaMAulST2(QS=|mf88_*qtB8`bu`lx>98KjdsJs1m zK{vsbwMGg^b)q>%bLqNd)V4wsyVrKRZ@BU%7O#(`suP*&e6}&44%yGUF?*SKHlLwk zD3M?yX~@~N2tb|1g8OCi;01Wdq>4#!FOLDHBk{!HOs*ks65(hAx9msL&0+hB8`u$q zL}_DJ9jU0PiJG#6sRGk&57cw_STdPLkIuAAC8~2-ma6r2q2frUK4#w;YmH_d$TB&N zF<+Cp+Mc|(c9bn-L7!P*hDVj2Q<1N-I`y~I zi`PWv_FY3Q&S*Qm5n_T~i)3vrs0E+Qh$f3O47PniylFKJ`3dzA#f&3Om*V%#5M`P) zpIpB;#YM$WjhqMXh1^Z+FxEkxpU_329GJQ5HB=KgsbMT~bz!`3k2U+Fg82mJNB%z0Zze2x+5iq1kKdFASx5``94ME&FO4+0l{ubfeQ?n+`|(53kgt z$7l?JWJn?^l(gTtx5BulPuQ#s_};v~sWZ#o>*Ta55DVV({r=nfOj90^$HFEbre4iG z1I*Ou5(iVH_>83H5Invk1t6DV7Qq0i%&o#8Rk_XRm_Z%=TBP81JGIlX5T1kI`)FxS z9$knZxtZdGGnX_Z)C)sPkX9I7{tTP$QYdT!sm8YwNw~^lpa73YIKa;%sIM%fLV;ur zF(Xz3;S9k;4QEwSfUPipsbAlbFQ_>MOr!!NYoH7bAzv?&9ekx{P#50RzTWo*QR9aI zgDT%R(TzU}$!gycfl`ct13j=2XV(yHci;KWMcu=2<{}fwwA)ZdXJ4fX+`4zh+e>@c zCLm|<=kKg-LS_fYIpTD5qzeS8SG$OyZ8C3R82q-tYdP$;ntIkup{!}hn1+-IrA##C zUifP7H~nUfJ={m)b-(~y(txA(NZDU_v0qE`2UEge?6j#Pt9aTjT(S+uercX1AgbCs zcFgd|G;T-DcsXou(qGLvyLAn!r+Ntn6A!w! zv!*o!oRGhS=p9bbi&iv8K9y2TW#J!04QDFF>C4g|Ari|iNwaMnkM9mqDCuv}kV}1F-Krc`w49a>Uj%Gh_E1M>jlFW%N>G(SQfwSO(4pGG=sG= z*~A0+4kiWa_CY#_RRzgHLdjWR<>RPEd3|GC? z-6>$@(~-3#WqZ$lZ!O+rJ^Qv9VhNd?n~bdXM||UWP%zK!^akjdK|N^KjDnzSr*`_g z1ZF@K@EK)rQFAX6Cj_ntazL`i#zw(2Z9M>RrYs3uM%>?7IO}OM1sFKPgEWMwI}lV* zN0}OWlqxJ6@|9a|mSwyjRmF*>$w z+qOEkZKGnNW81m)-}`bOYK-$zqcG~!IeV}9t!WLgr}=b|2z)qZuufJ+Kw}j{eC!B8 zA>mKMdJ4G`k=CO=;Nc;1S=7Iv1<%l#Q9TGx8;F>i=1 zItM+=Z4vH4vj#sY>SVrAN*ISejEpDJ9#~=O%{&&DK;KPEE)WROplBhlU<=tC0Nrf2G zk?(P;0ZYntEZ{Ktn5lolhlSqtko+6yoQ6lyg9j9dz_((}YZ|)wg{@YZJ6^QVvz=Nr zg!D}Xq>4|I#gE{`)N_T;K-ib!vlT0&AO79um|oX0Xy4%9fIfY)vfj*3#qr7T3Rg zV3efL6EL%|of#o`km=v+NCFk%L)6r3Xv#TyAse|wq(H)TJekzKO&yuMp36QZw zp*AVW=P&d;X5b4iOx$9EbSJh|)f4D8VEuO?*ypcyhW88GAb}8 zj%aU@2;({YpeBy_eUgcL8y+*6nTb20rcyd8a;^+6-4NaoTEXJxQ-a%|y#i7prY?x} zb4lqf{Ma3Rt68c-jwMIl^j@;1v3#4&n)sKbDn0Zd{c4mIFOt$4<;Q^pdW|YFvc@=X zzFAx@n~St+PJxvNT!QGPStzgoCVLoU8yqF*`Tj|s=O_pK zW-M*`SgS{VNO8hE zIJedg_%h43U^M}_J|SU}yzn04*QP35&o%4 zNtjk@`?RBQb$*0j2}%{e0YJsQ8fnOZDCvX8Aqu@kf{tdX2sM@z!$#X)K_9^0dMEf6w~{urDfGq^ z&*I=3l7uy(j9!AM&`J71pT~rnIlaUPeU_aa&T6ToQEGor?1&HH^muU0$d4Z!Gx#m= zVd1W6(bVxNjb6`{TSJ`nkl701>fyN-U{9P{Rn0o~?-{&iQ7WuTZg-7fkH6jx-A%Yn z!E{?y4z8eg|88L)TAcl=s`;GTB}_ zyUi^ync+(01kdg73=++p&WQwnRwvHtN~E9VfP8%a1T_t>HV71+5lOdX1lOB74waJCRq2V<|EZ>< zv8u)k{!&Ujycse!HjjA?<7CWdT>&8=A{L#y%%Y4_?7wS!ry0hk?SEIE;wnTgPy~OX zaB--zP}vE9>eCp+-Y;IaD|{w{zAlgZwqSE$+n1+D=W(&p@83O>^OKCde2#}wKY>~Y zK8O7wL_Cg%%MG{lZ4C_xY@i3ZAeZoXHV=6f=DNQZxK$1G9r%nVQjF!X z{aFAiqy0@XkqPm5PY3$4`?BVd>b>=7HPGaRH; z%#|wxN`e7EL59BvIh}qFJ|d9n*#UwA60MH^CV=^L&=S z*+l=&DOUu^PK6}CNH{gvrOA>T)1>+sAkP(%fgFMy#*g}81vx#{Jy$fpK!QU<%Bodn z#0tSLt&boP_p@K%GzzB)|JZ!IqCcd0J-^AYgAkh^I*K@leQjNk`_IbSW z=zx@Z`^k5r8utF)`Z=Jp-9R!%gqs;+aEs012L0GlZH!)4ZHG2lg8hS9s9S4mi&CRg zBoI_nLLDP@X250ChGYk8<5d5@H4(3JtNARUBPcI8%L=fut+^&oz=x+^hLjjKv0cj5 z1d*ZDW`hG5Uo4=Unx(w&IlTbWbg3DY$U`}f;20KpDN!JNQODn&=b>I&s=C1Mkt%bC zJs`cAl9JLyfjF=GLESQi+L;9Goud9%fIyQN*kM(sL2lM1PO1-{6v#|T;0^gLBw&wg zzRU2q{+_rQfRoAhc2bmo01PdpO{JyBk$rE#=Wu_Nw)aJYjeY(njJqCd2ZnVwNwhU> zfw(YJ=YR@yz7>7H&;Rne3vfpR4iS4P;!8Wfcf6iRjeG$m9-|?c8#E>_V583|r2l`p z;cxF-agex{|8N!d{{lF|kPYHITzq7GFuGgsR7igwCWH>rIKi)%Y;Gr%@;vmR@mqTo zT=%bGM&Ew4;NK^xFU2H@|8hoi7}JkP7c#TA!9fof^!1Jm6fk-x*Sc}m>q=Kg9j z5@)xZc)$KjV;#w|>&Zw7BZMN}0}4HcEh5h~$b%>OiM{;~K~UE>RebaN+RpIsMC#o| zA(E%Wajod2{w21-)#CqVfX6gaoAx-k-FTjcep9=_96;?ZbyZ9TU#v z*fzA%>jCLD($AAue-?%GQJ+D(>R?AN zSPOxh)T|ZO0>eg-*MgfCJ8n8@OflN3gzP1-PF&_c(Mu^0w-d3)S5t4(r74myG3zAG z&|*kBov9JmVq9DRSBp5xJeWe9!26$|skdazNxc_QcABX9TQL`T@Cv5n35mp~_uF*T zgVcE%9?n&wki{&E1nZsT_oDRm6w(M=EeaAs;pp)lg>$L28g!iRQ3U z7a~R!*i}G7i>|1nn)YKK#~;W*oGGY8P_t5qIml2@V-AXR1hc7$Y?=rrr}XsA2^0U@ zVyYjjHpIfGXt0~6Nb$4Y;6KR4DxkrQ#x;b(pGe)IHi%j1Pzp0FfagY5t`4c~-iaJF z2>8=3_>`H83;RpIm}&&spB*~0mH~g}fZM|)MKERSwSHwvhp~7PO+6P(e>jG~HGaeP@r=?|VgOM&S7F@0aJG{IS080nYJn*CV3Zp4(fU&gic0 z_qI+?`BQ$o^C|v6%}SCCgxbELXWBWC?@5 zwB36*xohwv+ssyDdDsZwgFs=RKHJ$yhG_1|qx-R7j_>8H;@2djBKLhk>@!6XJEf+M zeyi#G)1RVI0Rb1+xLYT$SzT6}kILaeP1_5;KaV>dvmFn^>Y9SRXURMKPbt^GAC~O$ z+|F>)kbZF3-p^E9aWLxl82U~G2dr7lID2~T&dzkab_#Z%rXBOS%=`oQb(;2Xv_11W zgN*yQNlW{>fCuah`#Ob9<*sW zF15PM7DM%*kt7!p>4+E1=iUh4&lIXE>Id!#FFtl=UvXIz7^Iog(a^2xMF)&Dbdgce{dnZBr#(A z2zUTdOO}Yngu%~7K_HAsjK~4!&lwxQ3wrYckkDivr_6H4Nmq`9F zbGSjvP@WYt8WL2eFy=OM)b?0H8v$cDtD!^C{*$VqL2o?qyh6 zC`Vx{%mk`L&-0F|*Za;3=&_&m{`4x-``qY+&U3hq*WVF*nCFHrRm(U{ zF&iPdAJ^C2*fTD3ei>8T{+<>@_@&F?VQw@~Gt}|(z09@qQoIn7xn)EhlQ$IU!gZpL zArJ5Eq0Ec_E&?>iZ}Wbym*4S|pURc%b?fP6=z3OQwr78uE&U?kQfCy|{k3K9fapx% znVe~XY_(XvzzN*mS)$@KUyfi?{#LP_vJ@|?fWDof}Xn?WS{EEC?9jiEKaBK z!_%nIRKRt$;)>=dn)%o38`AZQL>ThtQSq$)X9yAh+o`_mo1Zz~-QKk>U~fy`S0^k< zV6|Y7ir4wY5r`ppnujqupD`-3z{LO)9(`t|{_!c52YjYvxUA z99=|RUI=`>_jddX$`iPb((ip3LjHJ;u=^gO+Wu-$?0LTIenZ6P^x8{5b;7P$)54KV zr;*P(&6@anwtN1({)e3Haj!Zlo3ylEVT@@u4(qEbr9ir$_`}elRtE&sH+BQP3_~lZ z!C+YPcqZqsq`z3?XU1{6lY`kW&5v2AFr<*JWh5vP zw6>tsH)IeeIQ*V$Ml^ESTnTNVc?!~W3)Pnu>_olB#5Y-dkS0bNP|>jEB%jO*{3oUP z&^{PUI5_A!O2~rfgIF;#Ra1IY3jziK0XHLahwRG&zMArqhcqa-gtmsxiDWI5(#)Lp zfwyw7H9}4c=zN}zQjv#=?dD*seKbK*X1vW9SPj&`6aGdA&wI9V;%B>YnTZmvFdde?ml0jq~lD!RpX+`LS zQ?%VUWg`Dz^8c?}IbL=jl1YM#JA~lLrgck#qkz7Mn3GxPrCnT~F6al0gfXH#5N?j9 zfl*W;ff9o;3^dY0COE+!AA(;ts0cu+BuTPV`IUBv_tTgsRqWSXJkET~b_OrNw|LPQ zS#bF^B)5A2afy;>I(VY!(K?r|JcuW*o9zpJhyR#%hwC7X>ia4A`{QU<@MC`v|>kYjaPv_v|LGEbl=uEp`nf&tq(=lI{KO z$@JoB_8+m*g?i`036sbcTYO%N-AhqPK`xUI^rGW#KF9HkJ*$>Ye&_M;&DHNt&KUm3 z862XwbxeZo_avn2*O3jumy&H!Nyguu&cn3u%Qia6_1EF@4cT1Zcbz=hFM~+}-z&&| zU+dp*J2Uz(HfeU>|4wH=A2N}MJ~YCRsC*tSsk~o<-F&Yul zE0=>v@Cyg43qlD(e=saT5;R|phXS{c< zUC3}YXSb!bWLGi=f#Ays>^Fe9?8RXP9&X& zn`L^>CrFa@c1&ZyP!`KH8HmF}8R5#p50d>rEJQ&5Nwe-C{txDM*QE`v+8;RQq^gT6 zIbfqDBg4E&C`l2NProfInyFgkL%%hTpYlV%G!fpdgz6CvkqZaRl~|_$jYo+F3X}Ly z6k`{V|AS0=Xsc;bcSH)*s+_xJA&DO0n!)dbzvjLVNrGSfn!v)=S>NNPq_2a~yq8*{T;Iz)LOi!4@E|`=$=Wcp3tW9m zi3{nNRb1}dFu&8A06Q11TQ4I1SLC2H{OopK9uGx#7YbU)BoM$F*P$E~?_nkKbsk^a zd&cbc_gY$~ck_<1zTa!bjI`w<>vPi_4y*%z>!6**JwSp z>-!w{V_S`6wrk?{$_y z!NB}00G+4n@_>NHyG1l?*5%};1bv&M@;E9(>1PIW5LL|=ur2!ii!tXb!Y+Hm_~fJR zaZ`>``_Ek%EHSaEm+8f%VCSx=KL7jT4%hJ(mG_qu(d*{7*K_CBeGWk=0zQ-1-T;o% z5rckXPXo!+kfzzxfS$U!?)&bw-L>O(wcK$Z`vLNFyW4MH{re ztiM0Z5G7&kv8pt#vIxkdgK+`EhF~E$2Jt2gj-?i0K-#G;n+^gmK!|~~X)REN5*FnY zhAK>n)p!JfYn&-L08b=EpKUMF zNvvBf<_m)m<4Hc(OoS1fMj9MA!thVs9|m#ahnQckzf#=MwuTbPrl+R4(oYL6koK1f zHGWIgYe}*Gzw}TYyH&pGi;=0*%?+img5_7C!_4}T3HW(UUseB z+HQ1QlnrZ*qub{5`d*&q&m~|n0u1~P8j;K9$NmyyvA#=qyUT%Yr9UqJx&BMJ!F;9X z^BpN{1w&k-hMKUx#`ogw&9Jcr0l(Y+B;BJMD)wgum#(H?TcNX`s7(cdINL<}F~d5G z$wOp-F~<{b%b$;dOaa#CnBVF=&Q~qiP>SbUeup<{VKI1o2J3Uajgm;|JjHfvxdfC} zej!f=>PABk>SX4%*BmD6mHa7Hj{6bz9NJdj)CT%Ad4mLDbia5__DWHmRuF&i`7Yet zHoiS)t<^rqYA&l2Fz~wH2zhw?p-UO@+1pf4BkV9(jEB^Do7Rd6myk0Q96auMdZG;A z$=xLz7KI{I$VX+5#7Hgc7%nN)x-Bfzm9)3^2ajdDv1mjG1vp1c!z8 zJ+FA}N<=m+@%;l2Re&HRNr9%7CL1ttV#{hdJ$fy$j>BgvQ4%1G@q?A4P)_)9Ro01E zNAnn6R8jpw>$pA2*#pZ zxcI|(f|GEDu3pgA;Q9&D=0ZutFz18HAm47etq`sKauAa2ZEkD^CAf%AfvhpETyhkz zH>JeHXr%Lk-XGNN=zk=LO-R=y;UFQak`si_ zrx9JBAHL#KUs^oXbM5m!*xTF`JiOkf%t_=<>#!xc-w@+Wl6R+4O~Q<>(a;( z2JDq_4I5D7O-u0}O?goM@;kz_#g5ud!y0w-cH%R?qMIcc;6;bJ?Pgkl%K$={Jy^#d zuRm)@%|{H0ubD8qid3*Bgqj{5jtLZVk@0T9{shn}3q+DI2K$R6!m*KO`v9b*-_#K! z3lh0DqJNr-=$d1((8Hf0tfj8-2M*tWXD#?O_^ zrK?S{MTnGL%Kzcx!O<%-#{}7J@5$>96*u847H`6W|MH2YJ6|x2h<)=|>Jq#9Zr zJ##jYRpSC1!+Px@Ro`3(-If+GwY}FGQ3t_OjLor7=HO^ z-DFej9Q4aN`X6cz`Cx*lb3xHtG!4AD(yFU56;)6K%if?JX}Q;q8OJ{+z>Cz7_`knB zbZ#k(+R*l1w)k1HaAFy~w031x<^8whk*fhoo-k{~;#wk@%2Me{ip<9P>rmF#D^xtjqj};EuLUr4viDA)bjLbs{Oxi$ducP63Am zG7aXCMVna*xLcy`mLbAGqWOX|fbadl94l&U2;ao&eVFdulQW;ka^Z^L;;Pz4`~BY5 zka$U?7M!(m>$-(4-MV{R%-R^qc4MWrKCHs!I=7J@s#0ehGRzkEQnlhYtQPoc+T;OM zNESvVPU0m1|Bc4Agw;-6Na!^DD=h1FAVaCZh2DiWTEodC#t~<8u}*GmgzsThoX(!# zT<|bou(!6Ytj)q5Tkcov+(ms8-iTEX8@xAK2@w&~?}EV+ESp{EtX)Q} zT~eHnSADuXDj_M&W+m&;wuw`=!T7GM9?xorwS%qdt{!T$Lr}v&s%*`RZGu&1&8=VM zCWLxo0dfZVu}^f-#T;bA00?vIB!408o{`?k!hR0#R%+#%6js=?80$l4$%WiKt!VE* zo%`)_{!QY8E^W;6dPdXRh&n%ClFYBxJ2|m<`)*TZdIr)gE6$$FG_eji_0WyIAO zPU@7}cKUedU!J!5nP>4+A`KfG zDy~14Aez?H82$<_lJ=08Vf)SHT9$QCb>`t#B421$_P z+7UG!efKpmNVk_T#|Y>AJVHn&sQhjefZh(6%jqrv=IImd{^vqWkyRZ0|Ao{4OHjxJ z;3bs*DincA_|?3qlM?vHb%;V>mvC-1PQ}uOYSiD_bcElxHIKGcf83Gxws>xi#JO7f zl4(4KvVE%&ChN3=X5@LcV74yNxd56*`gQL%mp9vnA#eCnz;w()pHr* zv<+50s{>9|Kck|$>2HGdh>up^bj`J)%^_+snUVQohSw2=}EcQ6+`(BR6N>JPm zH3!jyRAWi2@%*MB1k=kr7^#XWChVfN>WCB;Jyu(3b^%Ar_BIX6pkd0XHxmvZ4!ho~(S)&8vf+hr@TfL+q_Cy?@}LP#7sJ{(#{d7>yTYsFOQGh;5~R5Bk+{*C zoMic!lJ=MW`~1c2SPnEw=F?>*ghC937a!zk5v7IW2>Dk6=-91sDf9xA@*noaCgSrW z!kro}j9WaU8ujZ#XU*@B&G@?kgEa4-PDpTV8Z*A3gInObMF}IKVX_*RYfL6Pl>+Rw z(d;Sb@(r6Nm8_-8`A9!>@)uccu)wS2xx3*`>0qG4{{9n#?{7!Rx$N1x-OzC+VE1@7 zzI-ZS7;ssE0)495dN>DhdB4JKIlxCvqS@+nKdCdfy?Q-iKY-@%@f-C{`pZHV4{~56kmQw{-vxX$j){^}s#RDbm$b)OjlZ%T0>0dCu!6@jkjrfRng5 z&O8=%$3Ea#oS9tc1n<8fHO-u-iKbva)KViL>C%SbpZ#lY6M zEKWOypFcC1jYlR@XcOw3PZxlqw!e!u8!i2Ue-?^?$+k++J0cLq03sajFR7(F2!Kvg zEXLncI9mpDotq>O8k(A{D0*lA?h)eW9U@qO@8sXrNDLmZvqTXQ=>wQ+lfZ?Th5_jc zCOE)G(;xI{^V!_#lM|nTVAyh-5FVXsV9-iZ`>WX!NRRv|Yin}{av=6BmgGw5+)k7S zfjHx<0VKqJz-dlkd{}Y^>_@S`+UnGF7%C=42cOB}jFa`0>>gOTJ;Q8Az^b;`FN3wL zmJ&uvyhVYEiXgV*p+<`sHa<1^nbZ`QLdJ|PZ({7)niG-btlna2x>ow-r6Hi#VQPPO zgNtrARYu1mzLro((0LCu{<$pv%I6tRM^zdmq~a!Eh;w+ zm$Yh?I6Us`F(oEKi7HRUib(Pv)BYANZDz!7?dOzH<&`4Gd3sn$jkRazSeS{4VqTNT1 zPA7R`%8;a(aPDZ}!Lp)dqwj@X&2$^|o{B)U`7c!%h#OUYA3#6Xgbz=uJU#E@X}_q6 z|E)Y&qCrP4J8z)OoyeEv%d%$DzO&>({SQA<1xpD2yyJ&9318&@lopw zfL~h=1&-6;aJZ6R0HGU2P`m^W96V9IMza_>iQEOedt@SkDGQn;4@3X4`KAzgyHzSG zmC{_k5d3w=H0#1YMT}w&^{;+oew81O3m;b3{~&D ze!G8}_`;T}rMS`Z4ayPZE+}ETKq>5cyAu_c*iREnFpUOnhBAFPzmtNnT|XdRk>`CU zoejF{4Q%VkbKi$8Y^tn0>$;x-$9R9b^qOX0IVr=f>3;fU=Djx%!sfjj03GkQVbi*2 z_d=NN3DggswT=_{Jj^TP@X+hDT#Vq^L7)ckXKwnwU%rVq1CgbfO!mK;wZDPkAD?`w zVx9sbEffVRgQCEz$>!tN`!zJneAooAmn6@1{SQn*wARSo06Zh#$IYMt6?^`56k`v} za^bzYrrz+JR#Ba2zT076^klVuZx8VN*?q<_&juB=+yOQ<6iLJw(Juf2s5dYRx9e?r zY>VMGCa^p01m~;G*KMzB(>=!(J-7Z5`s4!a2k*0rGJ{T_`cVsg_xnHYWljNcYD|oH zF~EVT%GV$_G+jKih(ozliX?{w;xS!J93K#w5QtBnM4G}w{2|N$s+&` z^e*oR&&nN%S!!nLK07y2%@~5Dz;>I{vf#r^U>*rJv8z!vQj90ZWAc4tP1L2cNxC+g zl;GaCc0mrh| z3IbrQy9h&iN5CX<1TDh)W{hCf1bR>eq{_Z8(36g3LN2vvqGxl&H)M-_s$MQ)O|#3? zIK!PBfC6FaC zlnmH~topbycMR9}1lx|3hk?=$z4;5ABgzN)AcwfoNypr@u#}}Vlt(bxjkovgl0>v5 zUbP7KtIQ=<>0jxh`HyfM3s@w#V8T2xZ8G47WMR+xAt8H5!KehHFHKYody|FxxsQkw z$tQxl-fXoJiAnq5#gv``G0FjXKOesY!Xh0z1!}ZrL!5V2-v6M5KV^0RxxJW5W7065 zo2hxn+m28O@A_v73vThhS{tMIQ8p^uW>s3WO89H{|DU^zWpKQCHK#y5a;EhvMix5}Bc<{F4Bz+q?3}Py}ayZx+=2;)wHn71U z?%`rhRmbFKKkEmgGVsSnaDqhY3v_ViLmB+nhh-792&DH2KuWpoV_9I#55B?#KZIXm zqQE|YHCV(w5Lbaa*uULLz9Qt7Ar5gjQ(8`fiq1w2ZzVLS+;)68Z>IJ^2>PrUP$##9 zgP>5!5Fq#jzCZ2_zZUbpg1>{F$3PE2&7PL&bS0vH1jtyx80-L_g^-;BUCq$83nm9T zXdK5cA&G#_>)$U1;bof%G>rzyTnvhYxgbxd`VC`hGNF$Bms5`P!wh^e=ye#R0?)nl zW+XjhEG%eTFf;D${Mba9IS7IFEC6f>F7BX9fdv;@vkpLO$kuF&1Lnham1v#+U*BDs z8@;dfab+4uEn%bMY2s_t3jI!3(rfG}t~`TUtJP(HN+VLWPMyv8raJu5Y$mteQ5VIc z*=(zY&3C0`%Ei8q)$*mM=~8U9*V84ves7KURko-q zW%5+cpTv1@zC?aFz$KXn{8>bsOJlJY?aWnTX2gB!tX`+n$3jdL^76H8#%FVL$v-dA ze_0~XsircTl2MwO?iJ&JdIYJG!Gy6r3uA2#6{EyvDN&BQvYGTw_qDUr#v{9}`ZV14 z{WtH@r?~)dJdI?#Um88WzYm^<>$lD;m#cE_jJ~PtE>~Y`!g#m8ZthI8{^Cxx>`R$0 zMC-Si?iW_0V_W~~Zni$pT`yd4pYLhlKTo^(&2Dqu;gO{|#j++f^F@a^Ka&0n!bPta zHrP0xSxv*NkADn&7m`;fJGeXVbG~jurp0pCSy>r%Ci+wDV)JC5 z4fzln+Lm>HB>1Ns|D|X)Xc!d9=`#_dQ_SN)P}nP>LE4*fJlEArnqO40QtuwqA^Dr5 z5QIsJE~8toX%95`L&Z_aXF`ZD{_aXA;G=<^%ty}I|ENOH`VnyTYYR;ynCToG48>~h zk-%*;0K)lvtCJIPPwWoZ{1!u54RaPU{fH3*l%u4REr5*&_lqp4hXE^M@%~z!lexHz z+v{;)&a87Ttj_kBR!*!S>2TbYLXy=GEIoI4*$RGN?Bw{JX=A%yemjnR^`}>ROiu;q zUANz?#Ob{sXMH<9tq44?J$FBgUVo37_uO3)UGZvV&x+mGHw5905N!i^n{Q7KKf;i@ zy|+qpR~T_#=K4Ul2tAJ~Vig6qPUmMhbG)u<1)majyidS2zn)tc#ep*|&1=!`b=vuz zLi{$46=FkQ^b5Wi)9K2pM_)HhJD(@5*xuJw@I-_x#vh?RPAgS;ynYi46`yHwUPmdX zj8)lyEwSfJHPfGZIz$Y#)vL-lxcGi2Xy$pWVefqZi|aYRr|NnBi|mZs zWN^91eE}@)d8YP?Jpok z=|k5s ztx3VMsM?n^Cxgt2NvBSkxYkg{=5ALKL*fu^{Llh{9>KqkW@LDuTr80n%^z-}jwG02 zF6Ihll8%Lzt%-JVg?QY$Y?<^3?5~m25vqlu!Ywpq!Ve&&HHg}gDFe!vX22~470zPn zkMe`npbvzj;=fii`d8{TaF@+J_8b*M`?k`kE|7<<~l!ej2@#8VX%DXW{R*J+~i3d7jJ23cdMGy#dOdsL*SZ zR9)`hh`pcNWNA4*)9q!xm#ldn*RWLG--CId6K=i>D2Cd3Z0#LqdX1Bu4+^#(ph|*s z&yh>BzuWV727TTI{oGp1h)%Z8Pp^EgdQTb}zku{Z&P#u<&n0bX2Nu(89kv}TK#xR6 zeFFp~Ca3x3T<~>TQ}Ok3#m}d|ntwD-TffPDGPXq4oH1v?>ok0nQ|_$8@k5nT)#MKI zbZRd%v=DswJPMg1POWyD3aO4tav*bhL*QM1=Vddk_ca&U=P*D)k!fF!$F`xqL{;*^ z`!G~l&n{>CGuDG~o8vqrEDbTs^YnBj8?Xm&cYc%c-1Xdv?2^-DA!~V9IAIv|Q^4U) zoXUHz_4;$FcJ}2SJf}m>y>2mFfgrEvIYr5d;z}KxRKAgbTq0b6sV;gNTvBeJuoxr(BrP0FI}xwimaT29TMr&_OO~ ztUERF65-*a8_wc^b&gVFqA1sQ7e=liFaVbx+M<hC|s(260x(Fo*8^{gCH+EMpDN0!c+~JL8YQ_)p zfcVwNO$t|TuneLs5;z7BAXH%Quhq()hww9?2&3xjn*xh(LPHL|-XoN2(umKeSsbMx z9MHpZ@~6lNln^7x6*Bel>HeuK9VOcUf(UBeg?em4FGX<$cR>PLNPi=N_=qALJ0QlT zK+RZ~2rPWZ*AnM?+dVtPU@LGt1mAWi05|8d-)|Zl3aBWiFPzH@4rFhW&0vSaC51~i zjaEyXIXq4ej5oXxi+nNcas3m2Lqj17HWR?f)J;W! zekMA5GOSKG*pPiWpKpGw7M*lQa5^PG)MG}gwzL6G37M$I27wbmh2EUu4W14MvR34| zae-a-{I#)g+bU1!uoJ_nf0M-e^>E-++x5P7#m;@y(SImY_Rw+tw3G93$liPHeoFLx zo|Fe{8{!A@gZ1CfG2b+`uC?}x_zYWo)h43ftEs=oA>*#D-5x8=YjZb_6Vl##oi`Tw zYuxLsMkVt)|8)@0kSW1MAI}LGhJ@T1l!67 zNB!3KM0dWIh^~Ei#}llViP{<$4>Uh(?kNPXUdo7^yKmh}J%LWJOx@Kl-R}1!uzX*L z6_+mQ;4pWk6;WNjJcFTt2;C2&v{E6Vz3w40JgaYPel(b?X)x@Q;Rt(cTV=}d-9sz~ zF$xh7<3i*M;u~0-GgK*el~5suj(oC-U`!jsd??sp%yO}Gr!>z@CwOQmpKy#?kB$FI zj_~LP;&dfelM2fF-wJZHlJcLLrUWu~M9?f6X zqW|!X(h(W;(H$ve2mu`eWq>jMi98J@A_hZ9bkjdn4K3goPkB`!m9zhJ5LWO&_8uJo zVmy18lJTD$Hdohmf=n$!EVM^ip+C)GYKW0EboQSadRR#!{%#bKcn0dZ2_0B7X{c{% zDMKkfE$K8k#39QUsS)P|;ggyCp(+^~e+W-8XgyMhY4y+(1-)-4F&!}v*ksgL&v=z! z!d}+Gx3f$sQ~9cOUr7+9TInpFx^&RBm7bMlyNoVVjk0D|!fdYn{&%9D*JsU5ha=2q zenDT6=08)JgOol7w{?bn^hs*m;^*>-#=K^ijS+#3*%1 z+sga6;{IXVP+?6uyt!*rWX`~SJ;Ceiy^Sf@c^Ip3uoAtd!tFNL@^8}IE}QozB_hXd z`l7?dj1zsss6qVHTASKo*Zxx?pK7UXf!y`z5_vp>;=I-S)9>qfa_7B2t>?b`*z>VI zb%JUk#tWN#FOhcecG~V{DHW zS$+-G*LEcJTHkxt@9UyA@1vhPZSxjj%!uGuwb5suceZ}eBKX*I+fOjA# z126dlV+_NdZw_=v6vK3RqAH?21fNG7y)M*+8c?yzmGykV}^-#b3Gln17|8f zHJXtiq$LAsnas$$q=_egY+%X-pkOmfso;a$Gvxe8zsFRh)^|LitCAWg)HW6q@GiAdhTMbh|%IRvXeM1Y2sm!98zA?4gLIL%Rswu8(M#m+kvf)~ z1szXxuvFXjkd=G`7xtP-1D?E54tLk8S~c@+L#Vfz{(^PIq!!t7*;J2;s*5!AeNyR)hD4{dkRTU8+AD^nN-aU{DGty#DyL}f(qm@JKGCH8y{ z20Gr|FpcSYdMplLzF8d3ma}Nrl@-pml^b&Fze8REzkziK5Z_vFL^BW)VmLzyYkYQW zTgP7kU=FoefoA_brm5Suq60UkrCtlUA*a7gsg<7H(Ykk$-64HRWyD1(b&U&~DG5O1 zl}M%jKJgzZzuR1Ur;LMVT2IqMC7o&)o6sF4+V?X(<5_V3bj0%0bBYBayUg0^<3;mK zVg3g~MB9<=buU+xVwmUrj^0L$-lq`5b|0wbt5@rQmp=#3j zLC}jSy}gkgxM2qi3|IXFH!ht&V6ChQ5NjH-LdRAPZ8e(79YE-Ior>2y4lu&KwlLWK zdss>IUjheheSwF(wiwQf|9uVAZ9aUkid=AjB!ADQks&KNxQ|AiddmMH>#f4#Xaa3* zY;bpX26y+t0t9ymB)GdQ7lolMT^}ejSX4`+yH-0l&6hC%)O7{9Zjk7>0XdwGe*oQmYE` z0n8R>1^uz4Ag$U3f;j5s_ZL-;b6|{O|95=$%5JQxmK6xK(F@m+QT!QZV`k@hNFw)w z7i6{i(nofAp~y>&s|aL)jEb^kaht+Rx)e^di~?gV1lcWAM{;XNCmtbxAX^vLf(G-G z-hNAPr%Dq9fkK6WuAXv@ZekuVlMN*KYzj8UxSKEO^e12cG8~r@f!cmy1Gl1=)McRm zU1Hxg=KTIGvqk69{@839PzjhRJ1oEQE|@jprIXR>9{5}N-^m1)mN9=({#qX@=#-p) zp_~y)xnF%k4V*JoX7behLOF;v?B1TCbmVG42JQZl^Bf=1#ga{cp$clvv&!=PPc1xR zF0>Qutp|H7!8*$R)@jh_B~;+9z#)INplaJ74B#A)_{`+&brhZo;!@GI7kOEH3Jjg{28578DiVhx785SNv<^U^DOMbS^rI zKB4;-h$HuZwF?dVDghnVqxoMz@FppRtc&s%%>PXM+aq9o$U5*2YmhEslc~h581KUX z4LJa7cmG4s$#*rUu4zU&{%OQ1m`jKz6p1uJx$vW(dP@$asGEjyh(KY+iFYUp=+WB6_}e0lv{rP|K0U(pnPTd zFaHwl|1)ORdlOp&GGE;U0)d}=TgySmSg(aq@*V8@U97%r0H&CMQYA}~$JC^@;dNR2 zA)3u2b4RQ=Eh-aEc93@A9@cdeuiTY~aqwM9Wv8Po^w zY^NQb`k%VI|L0)*cSin*4R*)^CK~wN@g$sg0+3xAWPOX-i?7PGmD$=++0~%W48f`4HizsmIB|2fpWRUV*!#S!{CqLfM zW63Z;xl^ZhQ0|;`;{Yk*H>vLXBfMVi4lU{E=xDH$|CIoFBTBobTGt|t;FK>JEGBrT z!>VGG(W>q&^a+g;bjR;1Bo%#>zxqPuS1v1GhxB%sDnSWi!z%3RRmAZw#jaARbJ-ef zTBTJjD1er<8vGo9WK8Es%DY5#^JgRIFD4+9m(LfZeu33uKr=yZr}Mw_PvJ$hJl_#6 zNg{t$?7>o(mBpJ260lc}^5Vg(oc$oxfqT|xAe210>c^gM+gD63)ZXf~)f`eqpXQjA zQ@LrfkP22al@QHwt;^;X?Gy>P`Pu8aebOgxe-YX8Z>P1Zuy^8P$=>EGzd*N67 z)nnl{-l_*Y;lZA(W>rd+Gk!{2V%D-F5QSs8lRIqIq^GZ&{)ySC((A*6Q`vY^^KhqL zQVVaK{cnGTW`19ik%->TN&WHqA-w(m_TYIuCm~*Xw?b*4Y#bKB;6?Rk9LVHn;~^qL z&m?52s^CoUV8sWNVBZZ>T26?W9lFOMWPaAP zVyQ0TI*6bj!n0s=go&xL&fjiJz2L#YbTJc>5)<1ai zkBt{*;A&EvNtqqWg*Y6;&7Mv5i8G$VYDJSqHIu^_MyVX(C7tc_CoQco0;OyLEb@*; zpef|Q3-?=e^zM8eZ7d;YaCd3j`~{$X-JLE!j&F9jTFzv5{OA$z1LzMCo9w9eo9)gK zFETPdEG~Vr0PO+3=Y?$bOM?k$s=Q36PReJ1qvoIoP>JuDv3s!A>YM?Uv_`GmqRCfH zWKszZP-&xy4~ht1m^RgKuoUQYQAkMGX;q^V)-HcgGfoQFu2dHwWxP%>*CEbekO~AQ z0eA~3B2xXjL40x3#48XA{v2GFT8G&GEO9H<`tPb%W*^+QO%1KMY&8@6EsDX2T%Aysp=8?leAX$5*Wj zh#I!6nK472HKjfao%-kVT0Zy9JsgQYKb0IAy1WSnthbrRzoPM;jw_6}zs4B|ed@NI z9$-yIwz)s zxKQ7HIi~%g?N};WtFQ}ZI)hZ|7SRduCU!Cq% zT*T=-p~)~PJcP&TTy6P)&Q6I*^*l}LA_@k}JIl99(v`@eD)nru{Zg(`R+Nn{*1vfK zz#YL1Q;Z-mE+(Dxi`NyjpizGyJ)rdi6$~SF&kujZ-Hug7pfxYoTh4&y1X)7ZS)lD; z9soVa8Mke^pfo8aPqKBP_UH21uWtcTB7kzIra-EOb;{W8@%;s;`v!5uyr%;|KJUEY z$4>Y2X%%pL9O1yQ2rSGrP^8aZ6#dmUaQiBD)en0NAz<%)r0!8@06KVb{O*B1wA%Bf zipBkS@ok_BB5VI0(Bj$Jt~`<$FMoV122NTZ8ZLVZ?*pvR{bqnz+x`CbLNvBF5?$AM z%A^?v-8L+q=Y2@Da}T&?N@O4B|A9)Xp$NIm&!xKiSDGwU-~h$H2NjxQRNx<1VtpI< zfu7sm^bO$$XLWu4qcKFA3yx#hZZTN{*x_Tvr2w2|7zGRNpyq=06+fE`&;E{W7KgHB68&wS+PfU#Q8FjkbIM1lh4>%1k;mMe-WNwJjt> z^@z6m3f-oM3x5}V{HZ*VQp(JE#KG27xAZyx|!$SDgiB)XSvz0 zEM#O|O0Il~3gH-+Us`NmuSCyY(*Ka>q1SMR+i4iz@YbN5CelXcHV3fFX=Q4Ly~07j zW?b@@d_h7v&V?FrP$FN%Ii1hvsUV+~@9^^_e-4Ts_&>7Ff83sP6^pM(z|S#5-CTg> zsJSw;X-3DS-F;d&wbG&7OZ##(1Cv8)?l)_k>FN7;f}$3dnyZPy+qVo4T%gV{g`>(f zs=j?{wafG%G1I*?!M#Bj1eq)bj^nd_l9n_xl<74>kz}(dg1Y6Bhq10!%+%(wyh(`p zn$Z!Bd2eQB6RL`V;TN>&CJIEl>q(zDk~yJ~SSI~Je5Z*Ru-N5gihT^FNdF)xrFAk3 zFwx_|tDI+^u}~aFTEdQm84k3nX&TT9URW9HWhxZ)HV0#gpT6y~_G4W0SxjXBKoIY@ zzfZ+Y|JWyy<^@pU)<}qw``rDsV-pU94Ue$xGkfuVB990TyE6YaGPJu9Hmww*>Q4YG zqK&k}HVG5_4&YA$-vP4;selt@Tf#V9XQHY@`!4+bFjOVqV!ENf;LNB8=^f6SPQoNS%8EZ@kt_UZ2HC1XbcF#>JkUGx zEfub(59kJwlX8vuuT1>4!uR3QDr|;>!(#>iR?@+wn-G(R<7;;gIZ%@0F#sYkk_yEX z%bgjG*XxQzh@}A9tppd^0*ZPPHTRy zN~p`Y6<;RQ&n;z9lRdoo!sQ75X+}fw8kfZ>vo&}ecFt?2mmZIYlZVk~)!8H89RKyq zqwMRhMSt(nf>*kZn3p+{_nS-uzQkE+W(B^BujWhJN>a=ZN=kgS{7)vP=-)+zE%==9 z303E9D&ArI;)ATPrZeP%d8Mb!Y?StuUl#5j{gauvGoQQVeN{bYG57BA>VF`fR?}Q} zK6D?6I{I#GC=2X{0`r>b^k4aXKzg_5xF`eW<0JjdcounaAYp|%!la(4TnJ9c&U?zW zE?)To8x%BZV%V)*JWLJ4j)gQG62j9kS0tO`L0THjtz?EOl(Za*4U9OT(bB=xV2-hx zD9uZB0OA@&U$XPqOg1M@2wXiUPQT#SN2g0JWo(MHk;?+AsoT%UQ+DM{e@vTYa~tx$N6u=`e0A5b!o{eCS}gJuH~4BESD{l zOJDDB@6XUm{R3KEd`nFf3QekzD4LD39Tb0T)h$8&5^VC`Z*?}MpUx1nJWbJSS>`+9 z3-S@NH^j?B<;DG(QsYprn_2$LWP#ErXM%$!4?&884R>N`C} z)~}|oPx&`Gqu({H*$7M=p}*`tuMiT|i`!GslF~FR8)NYSPd`#!j(crtNr*3p0dCt* z@~m?S!lZj7O9=FPS${C06BS$_iAgAzGaMYt=gt)FOHr#iO6>zgXuWm?Y)Wb)u+yrY zQ*^hs7I_Z2XaN9$K41dNv1WMeU4xu4s3RFDMj^mz;B_;lkNX} zVl{S}@R?T-24Y@>8VBRWu`_!-^tt};6!+{>d}%VIBRZVH>26u4XgrpGd$rBc5F4%s zs<~f;Of6m!DuXoir2vUMvaN{2Q(h<^9EaRr1TXL{nOkw4>uY{`0|(nPj04g9KNrYb z;nYMR3@oiNCnjzE98jJoKgWA#cdVD#AC+`G#cBb)k3qy0dLFM`?TAQm9uJm-Bm;=4 zB3Lv|tY}nlG^NS(Fc%EcFs1RxxmDJi^$qq{iTpSco-%2XtQekR(*oKNX>iii=t4(z zSWisYxLM5$mwv3gW|jesui*W!G2zC?vG3I&Mc-jlzFCVVg9Dc*O{Qru3zATVTk2~= zS{-ZSJvmUENbNi5G9alhJP4h1nl(S_D9U84o(Y%0Ien~foz z!w(>C62ei{Rtz^tFd)15qk>@Vkw^zbc;RS{Lrg54*^g)K;OSN zHqenMj{}ammG*Q&IdF0S9_}t~(Z$75kI+=-l$k8lLGtu=5HbtxXg)6|sBC0^N(w~F zZD$Trq?iG;KnPTn{1Q`!w`E5^E^L(mJOiQ)H8g^0t#Q8Kv5f4P*}^rlJp9%PF#@H@ zH9|Iy&OyvC>g;Jzd&Us^cD86(AKAEoB)FU1LN6K;D-I0vgsI4O5QfosBiVZ~iZm9% z(%A{jdJ;-GoUB@g7EDLr;SQ(YZa-Y)0)j1BeI8YMYHEX%v9x9($>2#k9_n%2S4Cv{ zi3D3HQ`C_wy=W^GWrBR*bi<8?g~Mhi%u7Ws0z-7OFikk>9U$mRgzWffce=e!>1+(9 z%;Djc6E)O&`+1bV<_IufKINm+QSW;3;70*8vX18z>#5b68rTarwq+|9;}`ooyU5TK z5GD7C8y`;WkE9AzS?WwsZZhM`ceaY=3-(m_WmcOX8oS*uW}PoDKBF*oz8BSgBuWd# zP@WGt9$5mcL0jz`!y!2XG$lW!nqw_vWpsI}w=^4fI+kJU^u+f{r@6`bqb@q^%-2PO z+J<)XR#1bqzOW`w@X`#bvFOh{_7^fr$1TB$V{jh>!{C zv_@#ljO&0x_z3#QrEmRI@0jze33HU{n23?8Nc5Sd!!OPybQB;>s(|62GB6qtkML7*ZABw_u?mh$orIm}7R>Iy;!=rSeho2a`7C=9xAbvOx^y78=`ye@o=k zRk$Xb3!w%|VJ5%MJR&hw!2eK{U=|qtQ$Fnmd4KlbT)oc|hhFb9&dO*BcgVo8HqBH3GemKIClL+YUgr_0mbm5W%vLmc`} z?bWib%hvv^JFm5Mha{euvB8#?wR4QSeRG{LGev^W7+?F-x5nP*Y_>n(xy0H_9SEyk zMMLK^fHcl`YgMx(y=UtWCvDrlh`+Q}@rUKpLcrQwmrmSiyTd3qxIs9*X66`N{kKT^ zkL;&Dwj?5FdJAdpv)3B)h5R_7FD2c==V#EGs!jYs2UB6vsKH=6j4KrgLODEEJrtA# z+R#zjj2DYsH5zR?6gNopXdfSJB8BLpA)ncbOtkWFwc{QNtE%Lh!C2MN2_{RNXqPF6 zIl$HZP@jSjKR0Zd+gfZ2?~ZGqh&WvQ)~yR&L{`CLTM|<&OWRcPt9t{U|kgphTJ3WAd%K{42z#aG|5&5T%g1~Vc{c% z*p@yaq;o{ef4yhrp`^2|u-Xp2xwjL?{Q)si3~7hP7h0&CoR49v?hx(kZOi>ilU=;p;f zmXf4Mu0rxz|@!J{L;siL)MWiB;8s1JXa{ht1bz#wL%DD{(8#L(N0z-d~jPn2w2QT--`jZ^or)z+<3zgU00 zPHvEG?9*7R$Meq;4^_u9{)n-k_wu$lYg^jFX>A%fyGW0)5cF)>qWKJ8-+_isgiWK? zw~zMvH?uG`VWzDoO8J+q7qSV_EmB$Bo5?aEq3X7Z}ok@R4%Kj}Vee5+o zTm$|mEmeKUz=elTbkgBxTt#mjwILgofQqLw&r?~clpzi>$;KVMZedbaF7scQIG%mU zrGVjB+BB$B*ect_Qs0qtovhQ&AD4rp){bu)I-6kA%hlu5!7vU>ceq%?A!`54%RwCB zk*UiXF=Z2T{lqXEkOEukY?P5Ff2xF93BQtHztj|wH$@-F>|uG&c=(_sACjqm3OvA& z=xm6@ehlxkOLTi+DAcwh3rq&l0W_8?kI74@<*na^P)kK?J4aJ@p3V=HTQ{91GZJ0Q zt3G65zl+#VCY3{_Z1t}qD7&8uf=KCIRMzjz27^0g-Qv%Jwu(D6TcrfzaNA{sd!TJv za(poL>%QZb1NYM(T!d493o=bIe~n$G+_EogW3nEl5`-j}8{{H=jQh*lz)Qbnue`}1 zkZ@AJ=}*+NGh|rHyxaK#5p^Q>q;Pf=I{(qPc)SERpcH}kt-tsMqK9)&;lBFO>sJ1z zlrC7x8R%gxMvvcWXc+ttz0Ok}Yg_Hpyo7)+=`y=^L&V_2AW)XsFd2 z1lIIb2)FWEmZ8gQ1kB|LyIgKO6H=Y>I665_)p&qT0q$$or~g7+hI8MZWrFA!jO9z> z6;+mSvOB-q`D`SLy`Nv|n?#Qi3C;%_HiY5+ZN72b2wbW|u2lP=`m+=C}p6Sf6Cel(|HiWWvZju9P)#trgx4wy{&DgJHUM(_IM!U>&)vEC?E?uf8^2d1+J;io=`1&Y5N(C#H)XlrAX<4SKNFQla~uiU~YS14rxYhj($ zNcSM~EPambs(h&XEfLwN?dcY@p8Fn~kmrUNn@d&uZ&fKHJU27-m?z}re!iUOEhhoSJ%q`VXl~ygpJT3s0$!t)DVA z-<&v>NSO#xaFdk>&fGyFY$ak$qB+>`^Wwyj$te}yd0W92#);EO6G`ayi-8qS|cXRLa{ur>P7~8vh5UzTw1CIloYd?AFd=Z<1j-PC*lz$ zwNerpyIYSdh$%p|&yjlhH#aVfsPpw#WUh@=$d79UU&mfIY0YKOZ1QWS*lhDtJO7h* z6>m1B`^78$2T@jD$eabZN;Lq!)o*|nYZkpiejgVL3r_T`F#%a?m(YX>zn8>TyQ^-| zRF3O%B$;rL+v8+{&+|`%%!a)WiC;Ob>;ni`iR4#nc<=M^hGO`#tlT?YJWobDe07vW znvGo^`>B)H?bU@FTWnkF2pi4T|BJS~-E4F)5z{+x%0Y@9#co+6EmgK~F-|fR)5uXu z871-jaK`t8*rVa&6+>;#^LM1v)rc8E!WLvVtGov8JF4WWj}fgDn?l~Ng#`TUXKFo` z#ZiuwCtP~djF_w7&>s^>4V0hvS6xJ8s!SWqSDi3U4n+^j2??AD{QoN1eFM#KyjTTe zBJM^0K>15htPSf9e{xY`hU_iCUM$I-cqhhiR$M`U;D6RF}iU$;>9?g=51q&pAP^(oH(Jp;s6%L)E+Q$I2~ zDe%UOA+X%Ir>ptS1Y{u}5vu{tgxhGP4{@XwdD%n)PCNM$Az%ETek0+4IX)zzX4hM% z>4S^8+#17PhrCD4H1L;9u}Tl(xM##(Gz|Y<{OEIfW$c@|WNs36M>%B_^=wmG5PX?= zaAVNxbpNm0`1{elA%BnT+UPvEX?b`hb2K#>Vf*^#Kb;4^!)LlC-!juK=VpVf5_Q^~ zsP_2jMb1X*b5D(i*SiS*rBv3sD&2G?z`pcY8W#|HO!_0a9^-Xi$!a)rs4}@Bz(9_i zZyXzEyVGByPOs=vPvm5K8ikyDO-HdecicufsGpCjTaAj6$<2|q=-QYKr6stp9!ca8 zBb5H7zf2vJ?qB`8CsgvGR2YN;V?9U*l0mby8CKK})qoxP9`1 zv&jXR;IafurUt7C00Z8Fa4Es(fF{|6gyi*CkX?S8bmvI3dcRhN@J_5B?c5-)ZSBaY zBBzAc44~Wsko0YUQfkow2ph8^|Di4l0fAwlh2H&SA*^*)?1iP{4QTsRN1WH5lkxuh zc+F$b=PxSU4Zs;4m&(;{xm*vYx-L6yf!y!a&No_^x!~CR&3qt|94~rLm`%d(@J}B3 z)AO*cLn;c0EkogGArh~EtbvMYyeY8-bP^R?VW0JLP(``|yO1q|z3drl! z`2q}ZpDsfuSr*Uh?Xo=oPK`2U0Lz+bgl#Pqj#{t`M8L)ft%KM3x4mepG6A+bSM$Hy z@cUq)bEyKAJTU+bE}(xJM<%S^KOWR0{HNO$(8fdY;3aT9%@wJ!&UT;1%zi4wB5o97 zq&oeJtKrZqF9}KY-Spb6ab11^*vU&qIN{trw^oNBGQurjV!uk_7D%ZIeMm~8hDl~i zKy8TWXCd?srJ2idR?6fG)6?kY-p57$-uJD1lq}HlVTR}hh4rL7iZ^RCd_(#Df{5Z} zc2W87LCLSD21Y?UNzM#z>jxc|uX8{uD@&0gPTGshoHbfK5crlV}m~#CdC;UR-Y3R{Z=j2R{`7_}gKJ*dqh=R@J&(h=;BMBU% zzTAB;?E8Ul!LH~NZdL>kd7L`l3YTP&dYhH#CfV&ams1*M@GsjbzT|*Kk5h81p6|O< z)q0+nnZcgk{1B^_A4$WL&n*QIWoreQYxqdJBpL4rAxsE5(c6kMT%@-_Qf>8 z{yjz7g$(*e@|*=S^EBK8rK~x2Yb>>omuAg?1UE36c{v(K7EQe5I*wfQ#M1_Jx04*R zVlBeOaQ3wi2ZK)|8iJ1VpK#l0J_{3Y9{zx0@M$nTbDwN48)7{0R~YpT9e z8Jq^#j7A*Ms22tuC^rRst5e$gH4x9Gq414X`y!+>!qB4oKmHHGk|7QCY{mtF<{V;= zJwV*REx|(+TLN}gi{b>G>8B=NjWOs(4OdP$H`H{;k(w>j(*vgZ z=e6Y?`q4p*xT^x81oQ)h-(aNGQvveH8Kn<~7!l0{Bw0>h+RTONvTr1SHwQb1+4O}) zqlp zHz-8HOv~pl!NQIeBxTEdSgdUT-op)w+aTYVWzd;9R$PZM{;Mh>7lXjr{8u@GpEzWZ zNMtEIqkLTuK@MZF+7X;Zc@5ku4{O4dKaTVMGzftW45P%Uc*h8M90IB}py)9XAtq^z zf%;xB(Sm_QvtI#4+X;RUBS-+2VJwX}(p<*}P(}9Tc+6g+X?7h08IlIn>YD=I-;BuF zBG4J47;vTJQ~Che1BY%+xCZ%EM@ctnx7pF)BHV;9shXui?-@AdY0G4C?(z1h z-wRYY_SttPvxyI4Ja2D5=tWkRLvbopr54P_Ut@lNNiYF#CY}86g0J1Tb2D@!8%JcT zJT&UP+Xs`1UU~AQpW2)@TbDKXS;@3IZ41V=H)a>jlX;pq{AP&WH!iG`E0y@qCztFe z!|z{h0hGOpy;W5ugSsdv5Q#i(EFYD8gfEE;YW6UJOX|ab*N!#?jeo4!Q&FM?G(>&YfmH$blOn zL&B@PD39hSeQqXSnj9@Iw$RE_XOzC1G##p$qE{%<6dZT#-Fzqr&UNZ52hM>l&qLh5 z{#3rlPt-}g8bgYlvcssZ6U9xqG__9Ts!Ee$v<$RH@DUk|`6#kJK(M_3P?p>qj?XCd zGdmT+Io3Fohy!e3kP3u20m&%j!_FR1AQI);*cFBYC&S_daLqlT%k9!T;2QchGuG7i z<*X!${z3&xs1_Gc^}-d;XMaq9hm)Z!j}m?bszYeZDG~B4ixi;+d4`kA6f?j@#u*uqMneW-Qn~=g2Cd&e00aY4vnl6?VsYqf!1Lk7 zg@r%@Hc^u5t5)E^%?_lfG@&-ZBwu0B%ypSy)V=9Es}0HPpoHfHUq$7zAnFqJhpe}4 z`<&6G8%Wk;QgX~ODtOq1B}JA*bI%CClHCeIVI@~(ywXRuN>m^%QHg|(o8xa5d7@k> zGJrHkq$2%94k#Y1+NRe+>l$Ob+8961vSaAVR*DNWw0TwRKM`-&KIgAfu8jAYyL{q(pU_rHfaJ72dud9UWNfJ1EBy8{SLJVlpqq>5>*_$B%|T%cGzt^_bH zp%-9lKaDlzLWrO1`^yC5zA^Yn^yoWugdM{1iNQ}DB;w5(RK$sa z{nSKOrV$*r-9R29i7tnQemnzlSOjK{@kki!4Dcx5iL7YMz)oyl9~lSB@1be=*m6*#b;qF%4u` zF_+9U*B(HTCdkV~y2B33Dp5NS2i~VxBW~EYjMFN@@0d4{&#be@!=8?7(!$#58#wZK zf8|P0W0e2Or`G55Io8;eemK`J?Ln zO=tZJL5KMEnabmjxsL}DqUJ5)H^I8$j`X24zrV~3B^1Wq3x@t~bTxmUx4bgnA960A(*{4qOrlI){%^ zWeWO|@Ll05>{y$t04h!u7UK=o1&jER{4!S21s4m=qns5>A`=2WqRhUPylr4FLn4%> zb3#|f(helcb_<$W>cVO!1KxRImy4CTP&zPRp9T_$3AtD3O_QAKK^_B6SM?dxA>1kx zG}+eCCC&Jz)Ey{LPWQ}Ec1lSl*iXPqhefK>svI0<(`2!Y%?YB~Qaytd%jbTGp<)KD z#((e{>cTz#jcef{1TXdLT&wR1hqRBLqk7ibC{c}2 zL>#V@)SW%3W7d0jf-csKn04=euPd3+z9lwh)t~;hcT{SNS1m9j%Vk*1#?sS5k=Vj! zT6;L|z|z}sNFpVj5lAB-`?8#^pcBt4U?3&iTTwbj5tntg!Zj}6?~bSgEe2X{N6tVl zh2o#M$1SIyb(OC?!bg-OqAWwjmcVT<#zwUmKyIAFEbOOCosh!}8|3OA_`J$cPYD%% z90|iqi93#li*pM(u8{nnOke_%P;g7IeoSp7UZhRvmFgU2SY2yLl@6VK4=e6&fcVH_ zA|Km83r+ES*ODq4R|^@tBB|yeINZaAWN>GdVv_srn-J?EpxH!WP9rYTD!15_1>mS3 zVCR0aPp(*_MI+)e1K!$!J#6`1%zWvfCHiMdYRV7nc{w)x2^kab)?{>2C;X43_{305 z53M?ZKZ4s#ouCTecYiyXU(SCpvU@lty@y{maZy+-V~k0;OuDplXFqVG%_Lr{I@oAD!@X;# zxBvd(2kQq~qgIoOgL)!S0i*nFHjVN!DiRv>*q=F@%ug)($ztahpVbPhn@fe2tBTxg zGsjQ`kTRjggHo1dfC2?RI&VWHZgLq3u|wt#&62r^WFc%O30&mKY#OCs)9_ZBG*4r2 z2=dO@kuYH&TcQ8yOlD*%jRLUy=hMz9yCR%7gNFtS#ZE~g<13rkpcW8q_)cMzD!jTL z>YOd(qVkW_3|=t7Lh;V)FjVRzQgMf^Gxo*_tBP3XYe}mT9v+^SmKL6QD&EVaWGdRY z7n3~~XENeZkt~EPpkUaT4565DwE~6xbGz$aJ}kP9M_aH3eqPqI2cFVbg8}FrXH`}G zHxOv@<2TqDL6%yw5q67)(*PY@`JmvUoiF_#@2WQ1nY)&Z@-EP$kBz$fbReLlkRc5t zqSg47mFzObZZ9CPCDGD4q<5Lbe}r2 z@AH5R#A~TgOj^Tf#j(WUKe642t2;S{zs<8b$Y9_?PzZ00yHuP|P>-?|Twd_S&zoFM zB-?tDwCY0}WvE;n@{$$qg1_kI#8&5aE$uBmek~AZ60UaT=OqSTvc1` zl=M}8Nb?GkH6uFB{O9{W6L)*y>ms{rKYI}mcF`HUqmgy`qjhVud(S|tA5vb_QnJ0* zAZ&o+UOR-9YUAwo-%hRl89p3{xl+=nr8$u2Wty@5Gh_hmh-u<)ik8aS@4KBS7RE4c zbGok?;~dzMK?+Qakp^8f=~r|3*nR8@Szg)r+GwYK&+4&ERLjk1K+F3}7b+f8wXxCC z@d6Ib14!J(`MEVW>nEuU2kA)2iIxTfg$-LCF=2L~htMVMca8pYMYINJwZH>f6CCTt z^%GXbn}|bcIqbp5a5lzdHrB7j|Bd>CM3Sf0Hibp`ZpFv(FgJx+aYefB&ESe6{1Jlk-EyMYc~oeS z;!L22($4fA`o^QyU+Av5pZS4zdDL0S@+n`wM1MNpySqIb!7o&#(!1D51A?6efki}| zb_MQEpN&|y)QJkWo75=XUOyw}lET3icO_^HB(WK5>@qMN1TiQeEVnIQmrC+GB@-#) z0NQ~x+J9%nz&|-Hc-#TMPgZS*X>)27qg~CyGZ&ehpo@&@F>zY&ydP+tPpcYS#=|5K z`r`MS=}Lw8B;PI_q}29__F8`?U-IBPnLAGvg9xeoQdNA>qd?YT;>Q-B9L>4Os<^Z$ zWwR+5JkkKDU8RROC#MIk`>%J#Ct9&zLWb9}4+u^2`zPXa+9odF=8NrSO|bYPVbV39 zeY$WwtK^q8w566`8uJmzL+6Ck!{V=(SFS(pEyNYn0IkVeXni0PyN?6VhRIJnB69bG z$C&#OIQ~o>AntTrfhwe7R-(_SOOXTPVv-!VNjVG;nF2_fK)N5h{PwOkndS^ut99`j zY&Vmsm!F>*oFUL1{L$i@51ZC~^0Km{)=iULQ3EBOdPV<|IYc0=A6DEs!=A!pW95>O z^QihoHyhS{>-TxVmS~QLEESBrO+VDY_g3|-ymG9MJxa@%ZFCScJ0uIC-7!jo?EAPQ zGl6>syOMBHiLg&ktpXw*S!ts>Jf-%_JIe3mpHH={Tjo|AIu|-hpM@>jbIqc zYnWt~oOH|`tbL3;N>Sbj|8z0ap1!htWKNa2^4-Hmx>$lAW`W?Ec|fpl7>dpwB@4b}xf3iy$qPL?b-p5})zF$h z&YJG)Lx2Bm_X&E{H4u_*BvspMhmDl&1u2lr3~;6FEG}>b`FA zkLCF(lx1dOtkU@E?VQ<|fwUtfAJfCo=BHUXQfog0?(KyDvVppM5cv5fP!6Z4(UDHr z#9>*XG5yckMn&xSY)UBv2l?q)QoW=%9kH)}+jS2(T0$qJD3P9(5S}mQ%B^(qozC=H$mRvJEV6%trz>;m5RNAmoJOn0~7@1VeeX3dh z)9$1~@zt^dD>}qU@5R+=X@ppbMY_)nTqP-F!-b`(wEFOKjn&cJl*SaLq%nIwlRJd^ zw=;9LB46?GLcSh@X`fR1SeDnie>3?+G3)c8#KsL3iE zs%2)wt+0jlAmpPh#RO<#Q~9GK@L6(d1&_r<6W5lB`jn3DKW{ z)X7_+fCzY8aSa5L0-n8s4*CbeYzu=u`7(NR2o}_meuwtrd1{sJZ0r?kR*v$Ee^lO3 ztqKx4sF7b;%s@dy_AW}m9X_uql8*XZeqCdR#pzV~<=%!Z&F2?maq&>eVT^)BSU4`N z#&AhqRDNYn95<(DmQPS@0;&r?tMy6-fk384Wa!?!+WhaFh^9kgYeY37Y z$wf)}AkESOLpR_N-rTJDdr+Bb*5KzY3MfHVgW`RUpdERis-w2=ma7NE!(gZaodara zu5lNS(Y*ZPf)u6q*|#Qp+Kxva2a9(*{Pc6{P3~-okAy3+5Ay(It%^RgSIaih2WUz^ zxd3TS1S(Of^o`rG!Izs-26fuQYaT(q)bp93c)twUIrpQHUnRl*9aKegza(=CG~5I{ zzv_R!a1t~)jZjOxj429X#Z$Km;gwLOnYYa+#2wmIW%zB_Nkz$PXBmV={o#ejU{sKa z))il(C(#u(A`_YQ)>@DzVF>`68Cs?*a4YRP75UbE&KU>F4^-K{=l?*Q{CNH+PIV@0(j&KwTB{Dj3$jkPhK+pN#i0N_ZdFqx?B6o;7GK#UGImAxpk`PC9oI3 z{LKmFXO?cw_|h5;$;WV;_AnSk8^!OcT)*b#j6AR0j0p(GvsB4EK{Kl5_w`Y{8STDX zUzl(e=q9P<@o^*c)EW#NxM+mtnT&ryjfpIzgh=ivfP7jM1;&3lix`A;#efF&8E~*X ztl03p5W?HTG@R4(uWFTXS_&0oi5ET=(C)Dr7xwR>k|^z{1%XXMc8al+;7;Z&{we)G z;$OJrkcqL)XF|)vr&Spv_3SDSQ2VB&iO5-I=q#rbyhNPGFDH(;*m^E__+^nEKDP_` zjxT*{auQpwu#b!~4Ti!#Oy?Gpf~F6GL6^0Q(#mrLZ-rA1J8b06+8ci~@R}<5oRPJd6``2^nuN&E@ zMtG8DVN=ll7Q)6R0_1J z?S$f8kmiXpPNkFh$wdAFSeuA-!@=bD{JNB{r~Rg3v!$c+b!}2(PpbO}+O_C%!I1Ss z=Tr6PXxxY-1d~IfiF2gitz>bRRSLMvG8oHzD^1h!5j6Abn$<$vW7PXjoxSB>A5PsK zjr_KHN1gOU^azlDVv_W8mjSMz|TGF^{z(kqw;vxIxk#D7$}1(WYF7I-e~7*zklDXw``TBCH-Koh-4~%P{~!w8Sl3s&+pit(In6DbLQ$j z<0@J5ffDmdekLq60mE1(2vK&>9Yyrw4ioF(_1A+-wd8sd(E0HyAUbEFNAcdPP6Cs7 zgQY1zC%abVM9eT3+7a|#{uj~tr|ZHumVTlI)?ambj$6TBm4wM0vCBDlG0nS!D~8_` znJq0=y5LZ=GX-oigav>$sfCZI{vAUd)Qxp)>mdd#= ze||o3A7y?A=4U}k1!&^IK<$*8Bi<8O^zjzjgjPvEEy<*4|;v?q$=M)*+>_PX}XA>-YhEtD}a2csDDz?5FOhZw!5-Ny%Vci zaL14j#l%?#HA^T9i-1nbYqNCBIaH=d(qS~-Jao5wttf^&S=MM5wIy|DP;B>*g{Dwi zZ760r(EapkNdDl}wi_?X@3Ry7WXI2ZRupA+UrXZn{9FcLne*On-~CUxEd%~cmIb_^ z9KGKhOwPRgZhYELXV2{P`*8{@BaFk@x-`C^+Wb9c49oJ zV|NXBiuLYLkOVmXcQTEy`26*$tI(FuxKet~!$sZK!~Hyg6Vtr^1G7O)zW(G#KKuDW z6Q+)sy=csWmFo{yl_l~;q2#u*+NrCz4w$!L;NopPrmgHebZY0ps;z5Mi>ul((mmz~q;@jJ$h8}#zvKI6xaJ@wSnK77(A zKK`-KeEg%Ixw8dkyIG?vp;;;k_R^@l&7g*>^xH z7S7a{ub)5Rf4=eQQ-1u-FaO}X-~aOkXLjuT<6AoY>9L+Y=Wm$4t9;VNJ!iq3W^|zOBLFNS`E}S0FoUURyCA;&Qc9VB)b(C7YpEtTN0McN5YlWNGp_O zFU%whQjd^BhYopBF#D&Y?WOJ_Gr=)^CoH)3|PnP;9sf`X7%ojP^W@3>HZ z?X}m!Ougi+Teoib@ZlRbZhZ2|Cnryyym#;3(W6H{`skw+=>491?&;mTw>rWTo`3#% zkP@#zrI%lR*>!HU2cx0g|xl$$}2~X9LX@zgy#C4LvM2eXVIcXcinXty-PCo^tnm# z+ggOhpx~lu2|^8L%*8;kL!Ul<7|z&nBl`{NK5^=>^6E06Jd&_qa0Afo!}wh2z~+VX zCJ&f5ZRFG`lX~Mw&Z*IN%noqv-9bZ4`z5o63_xdr6S-1VhrhK!uHZ0Uqqljba# zw0_;JL;IG8E7#8+)8&$LzVU}&|JONZegD1(uA4k{`0x<}r%ju3^2tBw(BWP0e8>Ac zba-#m@g8d4_O^Gt9eU?GmabZdw&_q+qHIV1PB#wdbi>p4T>ap!*W7s1E$3cz)w!45 zva>4Qkg_96H6AuOR(>3j-h+B~c*nasyz~7XKJc*~z5Cmb8stJ-S5Eulr{DGEul>in zKJ$_PJpI?dc<`xH9(?X=m*4l)tXHNT3=dnod&=g0Wf}Vig-Fi+hz-*g;QEot|Hot@ z!KG`?#226dWZ;=xdjAxG0)(W>gs>8VI8`ZR!M&*|^gxjUpTH4Vz@RAhM7`wue(A!? zQFcNyBnfRstp@7So3u+t)8(#RyRaJ2PL@$#Sh{rSmMvRIf}|=^9;t2X)~zhYfnjO@ zdomPB6CRQa1|r{W+O+AFS6*TA4jeeJYSk*vT3(UL$xS2|YIg422`BtChleKclg&|P z#flYl$7CRuR7fv$N+;h)OpFW)$ybc(+@WKmkzx{SR3O33c zHf+EjfHVN|-h1z*Q(%%s!~FU4sr>Vw|BPGWGjwss9d`iptR%R5@ZiC#ufBT5j2Y+y zoTCrxhOuMEe)-E^#(w}F{Wco$KV`}kn&X_;TyqV#Q1X^rZh7dThiC|0s3rNTEBtgAL%lxX zd`E{49p3%U4}boPy~a%LJz;jwN%I%(DKE~N11YnvEHr4r#xB!0K0SY5rwMCscxn6< zPxZT@TkmH^jGei9^{i!c<}8@FcJ0)nUGr)WE?hLZ>z$YV@UlOA>)dm`cklhzjvhOp z-+&iJjUM*>@Bi>!?|k1$Cw}T}9X{ZW_r0yd32%Sfd*1PmcUgMRyB927X-%IFnVP*r zI^Wv=p{rkf@P=nQ-Fx#bxBc<5>o2(R{)1urw{Xi7t2Md0ME!wixZHyJ`#vC0f9}QJ znRML5E0@k3{OON$_~KVT`oXV%_VeeR_k)g4eErTRzjpl-Pc7Orz0wTZR5EF6aZ$$p zSwTPW@T$M8)4>rJ_K%FtL z(kEMC1xAI5!BNh@Ho1n>Ov06cFyGp>YpLf_uuASAHxa-zA%l>4wFtmQn05X7^~&-) zcI*J)X-kr&Ja67SDmjzUm{b8gNt0=&3xpsL;HO{MSUS)bt;nsUdw`!#(U!fD-<`Bm z8xY=4yeUYST*8tGf(Rkzj=3Prm_F{p1K~N~E04}fvs6N$CUA}e zvj_kYaTxpu%)9m0Tk%!k8E*t!*}LC#(@m%We6poxt7CI*#0BXL;HPWi0`=z1nZp`_VN%Aby?gg&)k_pp z!$9=+3vEYGMuk=+3+YXuPCO5?~M6l0rhAqSJ#k@ zMNK;9zF?KADc`ev?V>S@=Zu*+VO;kfL+*OyU+6zzoV*HqUimR5FMT+)?t8rX* zf5~(#7b-1XH)H$EzUwAFe_-vDOr$88C8vcZ_r3q2i%)srvR~bF!7sk^#gBa8y&c~9 zz7yX6sn7HpJ8j^MB`?ogv%I+eK-%n#nAN4BmzVB%c+$ql=j?xQ;>KGB&bg`A_&a(H z?=oWC*o6zGvl3o7e&3!Y^;N5?_s?7~zSA9-eEZy=fBbJ3{p_*Mw@sWfc=Xtp$Br9$ z+G(f1_k@$)-r@Zxy!)f>`0xqu`Ote$IPrb&`+%hrKe%$;#&jl^kJdyFZXEpB4bR{9 zm+tpm(dB_VF1q;AKV5mtRUNx+Dhbuvj~?2sx=Gi7>x|;1zAwJ*11ENP=Lb5R_#ZC~ zc-a~_->`i4&~JbBLtp&nCrCc%Yzm%OD1+R1BgjI(2q$9@To5(%jwtO>X@w{n(hFtK zhX|q}$W^#SX&Y+Izo}ysatGF7JdB@|&6sD-oXH5u3yfU*V{E~&F+EmbO0X%J0wXeb znqY2rTAY}bvq0CjXD>9AtJZ{Y{&L0^EFhQ{_=!Fgpa8Xcl4=g>^v=AeGU z8i`MQ4HSDgb+nvgWl3Dvj zxRSKF_~9<6Ty?{*Zo1`~E>BgPWIS18;)hIPkEvR08Wx!NylnX}Q#ZMxbZTSmDr2hZ z(uWT=R%0V}h4x!pxrnLVXKHumDmR&MvE7~82lL^4^_KDtlOhLJ*6m-jY1QlvYnN=; z^2+AD`%6N};&66bWwTvW7t?&TrtZ4JJq64!+W>&&X zE;p}a%^sGI#vC%HBxfqq_6a;b)bs=%MAz~6KwTcf*@HT%o&-(-hha-V_>=aDO@fz2 zDgeYKK1?9s&)mh~iA`dPkb$3M0s~&n>K|yp`NCJM|2Zli5F zQ_rMuW};ayvsq_0nKjUnhWG-(xgfF8_q+30cl_@muz;~F(YBX zfC2c-(4j-wAL9>1?A>?Y%`H5K8gPzF78w91yI6LII3ATqCR4C2W>tY};YENbmnZ}D zvI;>yh=|+Im@$L4NXG4H1p~t*af}=}60ZYRA#?+D88W&7%%lVS8ENdQk<4(wQI?)W z5Nz7+vo-~ou?fo;)+k6Iad3&z=!L%UWK=~fhys^XLhNp_2~AkCAcR#2D-yINi1haY zu#*uX1hZf+h_2}oeY$k%g0{EbdMiRu#?G9}o<|j0fpV|cw~e@b@=e{qRdAN#PLL*?uzJ z9(j%ilaDn0)~fyPI9+g9@wTr_@ZIrT+!owl{%ybckZZ`|6;U)q6Z`pn4k_sm=zugNN8IPw2Ip|%?7`wd2a6uN?okWb ziuM-N-KXf0_S!`1@V>{=pI9S&h+j4aY!L}w2zMn#P)SG{lPR?D{ zsiY3ptfUuq-UI>(fwm+fqK1&?OfJ&1WO%f0AX3OJ1P)ywpMGg5fv7|c&1u3JPU)$q z&TUDp2I{)Yut^FKb|fil0vI;d1lM6BoxuY!C71v^VpeiAQ$hhl1MMI^4PizCIbDxF zFe_rYi@8B=ny}jjtr1H-bIDo(X~?7oY2-feo*L;ucUma0>mr?zi;+XlrA#GqIJZ+9 z5bG-D6h~*4S>X{6U^y!`opBpxN^4v1R1j0COTURn2q332;fGiXOfHV0N;N?g%Lwk` zT{sUD%_aO=?^7dw&LE}S03kSrLXk?!6lgC0!6${*lxfbHdbE<8;pb9bOB0mjQksM7 z5M{bX2zdc!3fxjwq5w0wgI1J@1td!v4$m1vf(kT5TRMe7cEF_}3S6p{Y(*2oK~3n9 zekqf8I79TsSh&S_r2|BnR_KXh*vdx-R+40$TZdi))T8kj3EqPGlu7;BsE-;kY|N-( zqec!IY(LpoQ(eXGFdhzN647)VG!kn1!+zr&smyWq)sU&%j3;ToNS;oZRLms9*-T@` zL_n>)MYif}wkBgPy`}SM=imL~vv0onp+Qw?3r=`g%)Q|SnO0?Npo0sY|KVZz@Dt{j zGe@AU8+tQlTWx=?hIIiw+L|WS14wl3sAgR5QMQ9d5IXG+7`Q>TlO{IxCovpUx@#I* ztupo%I`OPk%r)nKnA{bho;2~8(O2WCj%Mwr1aQ2N?E=w`jb%#S;yUne+3X8+{E;(R zq%?KSL78f+gVnGJ)SZ;(q<}3f;JWxHXid&1{|kC3kn@2IVv{qKL?Td)!@~(i;O#60 zhzQVq>C&adGVnym089V}mGF=OU=VE6iZ~*0XhpuFN4A2j24JH**k}%flWkywhrZwe zTxc#mm73a;S`E~dp0r;l83`;!BnWaM_M(hU$*LqQm6eq!EB#TRxiS|SLFXk7?DaO#q?cL3Z8pW)I&BMrS7x;;BghA% zCoVAy^^(wvbd*4;n#!cZ(FoAKXW!nj6DRZ=G_e26gZd2U-?x9i0Rsk1nKZe&qB0eW zhU#iLr&CNc<3(Y66u^0a89G!}C7WpWno0Zo9-vA@vZ+ue7fIW>6|;Lyhi6zenHPeoLxftr-T5Dr+E{HJ3^L-3Dw z9CWVXHbJ%6Z597fuR%J7Bgc`VOq6j5+cXOMFP*n9yVdC2j@emC9nd6W(r6+TfbG2f z`v6De2&a`p#%B8t}7oN;gA4l%9*QR&6fR+S=&0zoKnNtwJP#GwpqQ}A7&0MQ}WrGQKll$WMJYfEZ1 zP%q50kW#8FB9aN<^meBJY0R7<%mFF6kR=7`)T;>vwNgP-MFBR zs|f|pQi(ISsBfn>Ags*{YMLMl7+)d8+2e{h{ar5A3c|Ih6eneXlS&vQkQ%~CHL&3c zl;MP*8Z}2UM8QjTeFj7gXKv9}xA1Kh)R#p0eXRhSO4w)x1B86a)Ke&Yet?Ets(0O$ zOqJ1Gt>_xDbV^5*83>hH1nUt3a@0h20GqiB38bl12*9l2P(T{|oV9#`88)p*WHB*N zNkL|pa0)PUi?S!gwiX2v9dSw5C_|4FF!Jivs~0(%H*enj`SX`9Ub11$+E^%@OQoZY zA^ReeG}aRsyb8{B93k#GTyZ?PwB48{IDqzeHW^Fj5?T8u`9v;N7il+oF9WggG(6w^NxoktCzC1?3$VX@ajjiYm~KdZ)Qt)ybNQu^ zxFCFkwWB2i;g({c5I1IB;I8DgWFRdxNl-)iwySK^YO(kx+%|hV%wiC!EzI=g*CrV- zh=t==1`_2`a@o+Jfx5;fTXUo@W=%pw2=UuohRM}Aov9}$ zhrIqOSH{=+jD$m;4f2kS4$b8dw_ZcY_o8(~6~wLAmO_zkJ$XYxUK$zXNdBM@K-3WJ z$cmC0$)K8wdRi`)q9Ej!D@VV2SS#mB!ifl6<~V4>GUXk61Lqhsso#^Dk`c@tBSCOG zmBtLTZtpnbpbEb~r!r|MN1uJUhRnpyvIKV!i>tkN-8dSMC9%!dr6yCMUs^+>=Cowh zlH@u47#nP^f)b{UG_clsM`6m`uhH1w!f`O$5Wx(aYtC#qhK6Nu9Xpzv1pdK9LX7cX z1Q4AaVa3|9hiFVBZ3XH<|DdUGe;lz^_IQBJ0oxP_v$m#Nf6lfeODAzb_#Q6Jj8mvg zqvC@^tyYk>ty+wJ)d)%ur6tc=po&5*Ade|*Ia$AZk2}t zvC6AZK}|-Nwk=u)WE0>>d9F+Wu*Y=BNthjGs+m(0N3AA~t6Yya?RqQP=ihAL!o)vc`FiQG2~ zT$K#QjWxswfMwA=v3J@wwnS8898v{uwxSws*g!}rC9}EE-KBnV`Zt_l39|Yn9;)H7 zcspxE9t+{#6jGvEuF6wo4f+W=lIfisW(p-=S4cb}y5K5lkZ-7EMMgT%#Pd)h9S}(Q zGNZvfscYDt7^)v0K#vLg)mHD2Wu@1=O`_m{bA~gKIgPPb(bOQ_G+Q zN9?Krzwx@nNR)I-vH`Y`ctM`UXYt`7f^p6BaGzMbJmh3xoK>NTa^K|UkG&a`` zhQ*Ry600Q`@LEDJrBND}y%tui5AM8^>|1VIPK5JJ+4HZGgJ{ z7%NtS+1)NqngSV+UL7?|VYAfmj1LklKI6%}rHOP4kDL~drG!PZg6K`fkFHM)9f%BT4nAFs+`{8V0b?wc=`6h2E2J?%>prq)y;z+@nRH`| zonkacCD&LoO|0WHM#p9q*aBQ9Z#4}Tbhh7^1Jv_&wMX=g?n#aBzmZHV3P==JlG8^$ zy2ty*>GDfS(#m8T$t<-0a8Pf!hbh>2?uA1#J7VzbOH=08IOUM?!ffRgN#yyEHs#24 zl}2Kad@@>n%4>bm1-0T)Lu%C*x75-XDzS*XlFNqvX;5#pTY@w^hQWYkIL4!l225Vz zj9Zu)v&N6@Xii2|DufvxA4JH=`eZz_pDN8?^Hn_JCj-Ik^TbNc3f-xYT6$b6A*4lv zNSG9}gDb2eKZ6hx$D}}V4^1?r38I_~t#s@E`lY4l<){|YpUUtz?+=J|H6{v@a4mAK zxA*sVh5y783=a{;$O0NTd1@txj_8_O@`JuE5H2E* za2p`V!YH}MNiB>>c6O(8GN23-O>O@MfLT`x-7y=r!vI97h2;vUQO$#z@L_>cob*%! z_AzW$B4){U6ChZe7OMcZgLb6UQulp2GlDCu#&t`;WF@AemalS6i%H0p68D=j_DwJt z%2BBj!)ZY6wIU(E@jK|IpJ5+Hx8H%SMQO;Db8T5*nS_O;R*h>xzT&oY%myiDHxYA2 zFE~&yq}9;vA?(ZO%oloK8E1{8Zl4uMYUQMEC+S+P7)AJGC63DMTG%WX}Q(Nz`+O$$l>p>hK+-3@&akyR!*fNG*jlL9%MK zE+m9P^-goG2(IvuflU&$f?%T@l4SU4uKcp0K?8NFG#IgYq683S*s=)5VuY%aQPdU& zSp=d)Hia-H{JseWf{h>rKULgPD036z;HNLCq3$3uGAnG9Q=(RoXQM|lOC=jyiw2Km zc@gGiE|^LIm?zkn8W9txB_wLj(+X!03WB(PTA}8Sv;#m6S8nN4<+_DDjzU6Z2;tiN z!Hb|GhF?%L{=YwUtLDZhc3PKYT;J9M?sH@(>--u$fat7y8r>4C0q!@_F6T z(2MQq>G7(t|6#NvoU=h2^tO($PWrhGGaaX5?yUXK}fQ{vV$2(=$<`u zSWkdWJCG)6s1&8e0+3@1n^U$u`vrkOf7CZ&j2aZnM)h8B#hwko)&J#brE*M+pi|5R zWP;LFIOAFYfUKqD<8o+!LN2jsfSFB$wW5D8(S9xtc>rtxz@_z4z+@!(a)o^cO_bb_ z?2~V@_gY|xo*1GBq5D1G$BZokOxiWwUN zb>yUx@Q8+Ie2`%A8Bfk%jBpZGM6=U=7_m0BK)g(@Dsl0Kp?`pIb-$osrZ458=Ddg! z)PQJ$sAdLJeOb|9eo)TG8VLI$eMuV)Ab5PnPYKeNY)GMJ_5>R}{@q@ro~T)fFQ<@v ziU&L$<;Gq>)fsK63KM!x_6zEcg1j*5A^gb!_-r`TvDv=|p7aB@3a=4;^ zm{kjwOLDvWjX{r*e(_U?GQJ}+18@{hx|1}>4~JgVqlg_0!0fjR+Rz|PJTPl$>eris zj4b9!*bg;ti6A6PF=P&C!X|)PBvVdz%21AQh!SoGg&NVkiBzD31vxuc4BpVdo@N^u z*oV9T^~hc)S98y)-MQWVVHnzAALdJskVB?}gKZ^9`r@=FNqfrm&M+-;ng*XsVM?Y5 zuwtBgnh)cA*^s^rJX&9vD;tFEslC;WeB&u=7}bHSzCy8zCDN$M^v30UCFdR>*ioMZ z1M;Pgje^5*;J!u2&Vyb7-XN}Xc8|iKm`kIIJ{%q;F^4{s!Ijz56=})*kkGJR2hQ_p zwQR?9j`e|UA=p3YJu~i4{W^Km+&zJ32%L=BAZC*Y2P=hPwpOoDo{y@9B*v=>2_oAp zB{`%qxNyL(&G{EU>XM{aUwWzZewMRiWoa}cP zCOeBTt>Jd;k=ui`y~1|HENHI;s4^^cv+iM=XtuWr^tFmzXCQ@KuOBwVt6l zFCkh)y814-_2EKQ%|r=nR)Ion>W;R)L~@oS*TXWR!31?5q!^woLdJ(A!h~!M5nL2# z#7P8{p_QQ!Qi&H%TSaXM3#yQi1W7D%C{&dsP(l@2`F^QYUYsfU+_PU?J%b>1la0X|P@b3yKm+ z&=rB+IOwM3N$-@SKY0)Kp4eV!`!ay&1!hL-^)ZVK2Ki|238c`oYg7ciIpG!JAfE(f zJC;&rNR!q%kpqo3eQv<^XZeVOcCKh3$4EQc(f~w{@_kj>MD{7}Y$07xO*=|yH}Hxr z7(AzMQlEijn&mJ~kM5)nB}pN!b=2$gE9Li@khI=sZ-fmhNd=|UEAwbO3ZRv%gL5_- z2I`f_t|-ElM72E+aNtY7Ik$(XxHqwqB+LZ4S~Ot-I9zwTj6bPU%elT}y8=@)Ef<+o z+bNXUDb!JdO#m*!Y9WzF4vHq$9*Yr#^Fg`IWr|7NUhnG8=-D)yo+dNXS{Ll}Lo1}0 z-L$ZCs+arhrL(c^LeRgvnD!;uT4?S^o0R7G+{SEl48AR>a>Z> z##qlMN6rxD5lf>6k6UhdFK$dB8I~uGt%W>*;At-RLgf5ft%9d!`Knb$jiH`~se12&aN0z3*a zDuj?mrvx>sntK^=D}i2BPl$r8MazJ&HnRyxKuj5V=1yxy3qWjSxb^eypNe;Nb$R5b zp&myIrToKikPOMl^!OxK0T(?q%KaeLHk``S3OUN702-3R@gi%OCh;pCT@M*3$SV8Z-_a0Y7slRH+29SU?u`U3hCyGAPveFd4>h(LAZwIGS?;uGmY=<6IJSSBq`sTw68Y#c8-+ z4x-*9?25zQDB`q<<=rS~UQ6G5?X5emz5f0ihCeuT*xeVNKlYldMqPFFm`9&v7Q2JK zzFOO~u22?6Y%6KRxH#yC&Q=`nenKe{@DiUy1Q?jIQQh zdj6rOAHU(5C$4_=*&EYjT3Vi+mKMGL;`lqRzWVO#uDx~Wl|wH+_nIp%xctgX?zw+N zWRK46g==gKQHXOYm_2sfvv-Yn_@4V7d*PMI759g4!r}{4+HQJe;@wZYbnED+Uz@h@ ztyzoSn!ezbDYMVNdicfH-F4CM`|f;l(#RKQ-|@oS+g@C7`moVMF1+!|^RB#P$dwmg zam6{8U3k`zvoF8=f;)y?@z@R5KY8tqPYxaa$k3Zc-gx_+ca6OD(J{9?^V}s5K6~DX z@k2(AyX5XiuDa{KM<+~ppum-gxHaDeu2Lv;FzWizd7>^@gFtZ@BoeOO1zm|@BebHGL-hSDox14|GxnoD&@b-)M&Uo{IX>UIM<|{A0{`%DCU!ODl{-;m4 zde{lWZai_=183jz^yMR8xa^*%ue$3oPVKCal0Ei^h{GL98)8mgn{>B?`+;PVpC!ToX$dM!Uv27T@xl1p-blkXc z@4x^4Ew|iq)>&s=a>*sGE2~|&aN%vY-S*sb&s}uUMewjWK*EI=UWmiYnKS47^Ur_a zfd_CcCc3Sy?a@acMFCu8(V|78MvamLN`P>h-+%x8`h5We-gx7U==sPakBH5a{FCO_ zUw{3yY17C*|NQe0J@k+ptNANEOo{@}Jo5}ToHc6}c92!EJo7@6 zE3dqgQIkh`W`rt@Lf1hcmY03}Z850FAbK1Xldvx=_XH*2d~UvbMqkH_T<7d^Z(FrD zUtCl!%qtZZ6^otaN{+Zq9~E@vpz!cK5r- zjKhiq?Cu3qF2C@wlaJc$w4*k@`HH=3JrmRNl(h4`5m#RDt8c9Jqc5(p&T1=vVa3d6 zK9>3Psw@BDPn*r0Kewk)AnMtt=>Q(Kp{3f1r(W>8O}E>0i=8jO>b6|bo;bG`(^H0x z`0YL?Y_{J?o9ubyg||F-&B({Ez5l5pw>|i|@BH$U-}w0|-`e>12b_1v6^|Y~^vNwx zyDRhM4Kta~eLS;LCbQylE3K4SX}Qb_na{1d^7>!-!hf%^=C42dAOHR7HP`>tn(M6b z<+Z=L?l*q<%WwX1`?a z?i*{bwECvs{7(BzFB5!$#m-v&oqTCxTi>`@eMg>m`*NT9?n*0uX_e(y+;@i!hhK8g zRcG&U-Ni>$r5Y#`6JP_cAIJxpT3~_^a;sdq0kVAbk%6r#^$a^^=T%Cmj`Dg=q_Xb&5 z5&o98^rc(LlzdldOV4*SfY79oTP8GUpw94E{6vSzlP6;!q8s54$b_DJ@=3157pmsY zo%{03FB89rp;M+zfu8_}O^Gj|4>JKI?>sgZ8*H$_#EBExhJuuwaNm9RoqY1i7zd!;amO7|iH3Xawb!Yqp2~3k@P|JzQq-eI)HwX`!;d=ZC}4ZP z{q{q>V~#n7G1B#j5hG4N{d6SI5!S{Up#HVjUQ0*p9(LJf7ws^pWjO3_7&T+T+Ik_s zf)@kf>I2zFC6-q|qAQ@sX`N#_pxzsnJA>l*@d?X@@m+FILx7ey*zjUWGcrmTMljf&BdiA+K`s_+S`rIde`h`#bXw4PZ`gG=#pIm;6 zZMW6|om2|#(LuIkA16Ql&<`h>pxw5>CN^x|0yPr7i!kfRb#=777_~-w$_IGPj zrllbfGM*b%$1Pm=Mv%UeO^>_u!OZgOWHSG;a%Q>1cK_Yzn~uBw{M~Q4;+ShM9dhmU z_g;M6!@t_;ubDN!nptD*%-WlN^2d9Bebb}9^6P!q-DL0gI_r9RkA2*PLk`!K`iqt% z;=q6mk%Sn+-j^@}`m*`7gcU6Z1}5-f)+y13wko97aoKZ0dAIbhZs50ir_^a6el=x<)}eKX7Gdt{Tdx{2UsPN5^fUXHl zrdgU2Iw@op>2CP&;qScj4t9r=eig_B;Y*U5w`j14dBoj?RqU~tCZ>-mV0Hj?=Bs(% z&E!%7M3F!3w9}YeS^=o+%qWDwY@7is1Rz=DxETnFpIm+Q)tpfACGe6A%M3aCDRB<9 zG^9Ir2^8WCoOFS6fbD<-4glIYzEcHqUvb41NZV(heb@n9cG+b|AAK}#1KLr=J_A1o zU%^z`q6XKSZn}xgo_p?zN}TNRVT9j)`|X!patULk33(K_{PN3jJkHZPe4`{K;4Zk% zMuE))x9nHwmxhl$_83h#sZ&LUPW2puy#>c;bVk&cTW(3oU3c9@6P6f5)+Pf8M+Y#T zu7P}ZIcSbbvMN2&iZycm_1EinU@;nFzxn2y_0zP}A`M$xA9pzv_sk*RG=_pnEs-eBx-~M!53Wl71 z-nZBI&u_1~`VUuI?dzG$dMhsfl@&4v9dd9-Q0AmQyF6pe8~5G+!X0;wyZzyppE~Zs z%l1F(#&Xi`D+)N2{&=?JunP?RCHPy^S_pZ`<9!w$q89`Qx$wvE@-~{%)@?Z@B$# z$DDD=wb!3=`f+ERc)(hp&8(iue0`P7KAV2|_H%X|cEV=&owLo@GdCN3`WDxovCBml z9&_pKH(vG7W9Qs7@`#f!`RW?q{QAnD-{>pf%)k9!S}N7jq%DcY&tLe&oUZZn%O_lZ zUuNZRerlC3t(?j1we2r%xNyH4FWUE}%a6U}yfZGoblBOK-@d^%duKlPrObbRGqd`S zGvCF{on6BxxLmKrJea?X`oJ71BsU;#ROc}gCz$uyp+XG2|)uuVRZl~ z90-Xd5ZiqMzRq~SKWl+AA!`#f0h=gf(+nFY0h)7V!%bVn0xs0Df`|shD^Q<+)7#ri z9z+ASh#~Y#6Y{XJgo#UR?rFs_1FV54@w)`S!&o*nXrPW|F)N`83?_qdbr2^mfW9z* zy9`@w97MPhqq(IVdodrx4s1aaA{vt+LxA^8fNhZC7=Bt|M_RGNLb7-WtV|W*2C?+c z#sVH<5R%b{DjWj*Ap8-OF*>+TEJGBtNE2ohfi{K~{p$%wXYR;w6{0g!QT?r& zsT720cg%?s58#es2FNX~qrh(Intt8`O8_IE+#ZMs{3ow`- z;bHdxX0t_Lbe!68;KL3(jI{$B47e`)+I{!km$ut)zdbIEa0Y^^7=gn#ZSieP#O7eg zkRcq8e66#T^p@gcB?>td*An|U z*Zp^mKJYIG?6%EL2k*M)L4V$5kFB=aWvf5lb@y#k=S+>$pr_jY_RQB_egC=Fr@j2r z_Mo#u}hr z3LhH%*pWw`c+BxS%!Idb%b z9rrr=PrDzp=Vm`ZP_21gYm&F zW&upXbJ+YbeIN&0X)Ob;_y9-=@USKUOU{}sSDJHp1@Ks<_!#F)&L67Vw zD8#~8k6R)d!pXBDcHez>^ha9;hz0b3flUc9PTOcY^)zTFb%>b$K~N9ls2FkvFZBkc zo}knfTI!6Ha=l4szTQZ|*h^a6x7mpEwX~9pa@~b`*#9l?1SO+fzPs+e)m>wi z*NTaKf-NXS+1P#C+dkUHaMHB9T;()sk5)|@S_HMQH!9B$D)Z8q?Nr`Aw`boAuT}HK zAX{*s&<~Pov0AQJ6D9Ya9Qz=9Qj5a`fUlIJN;UB>yrZMOB<%{)?m|>31~pFgsEVg2 zre7gWImPzY(vo{XP0Gh?!weLZd2 zIrh1Z@^LL_JkqY&ug=>S=gMhPNTa@b+~c@<)AGW4eqLB?4?_D+IdL$b*1D@jd&f?( zudlZwiS4WZ2q}kYAxd-g#;4z54x(}r=F&KuhMo37dYanj>Vq(id*YxovA5pz)J-3n zbX3ybic=X=A&yaSRdN&NMnxjO6l#8Yrwl6&P#~TI3ha+rQ#dvyLLVTRD_{&juw*F2 zlL;~`K(L0k1Q}{s+AIXt3kwP%G-n0TmY_k9VSxZHta`8m{Du>ZW5vPA!l4|TqJ%{X zz94}seG$`GcOac$1%{xi6Qq+0 zwPctTq9kZ7b08D*Q9=+=M8@10ktt!D#?FXx<_rd`#?&GNe)DXOa-op;z}(pfde1}W^mN8m;|{WV%b~Zz~u2sHXLe*r>PJI zVgwmTPNhPX;Bt~PW5x`Iz^;N;QeJydh_FIKGAM%@$VWr*5D3`OI<6G=#>vUxlgdak z7GpWEabbXp5$K@7A`oU)ggjhVNa~@IGK>WyXzX-{5SbKy76Q^3phnHwfsIjMcFcl& zx~AOI0F3`g#88?*olBJ1J6<@f=R!-_$WotDT*?QzYLt&^l>|sk?5paA0``420NSkP z;5G`&JxS2(K9U8Z$EC2CEB95Cvio*=6xOTds93TWq1bC=NF^XJs8_;z9MH$u0wQ_ zL2F6G*kM3R3b8&6JyF^n)Qk32?*;_AZ=s_MDX=0c;ARr+tuOdzS5nJ{L9J9VxJ3eT zXi!0BY##)xR!XM4y^NN|)#iHA5(1Wbw z`f{H-phxmcp(Q~bG{Lc1M64`47Ia`~gTdSaw=7`}b=>0KI5sOCX9k#nVVVFvEGs}A z_XYxJ4&<|PVW6$BoI-*U(TV0XVM9Q$f`JT8U=w~(!YxaiAOIwB%W~!x#PMr?8Pj0? zO`S1dXaWR=g9OYFVHzSHk*A#SM4m7KGf|jZg*GAuB~&RuL(CsC6(8Xz;vf_Gs#Tz& zN^y!V2wSekNSbifEfLC_7*1S-hV)49Ds0g*Bj$o-!(_2+w3%c1u_RbvAQRKXyl4%R zX`WLdAO3)o2v-PLG<21zAP~tyTu5%?@sfGxs-Qrp-am0dc_7lzO@$EtBPT&gl@LS_ zqORpRAAIHjPCLkn*tUR)poXMvzHWGe3kt)bPCw8d-2(4C;_R0AHw-^VLSm2A29l%QM)p zTuA}|HL3^h?JMYsRu0SE2|EXz*Av64dcwgnLZD;9eDaxt|KN?EUcS3WKoJTj|vZlKOT zW}g&cgAmEUZJfZOaXG>`&OS+4E%a4OSVrwhl{Dx}!(1&Y2T?U2#@Q&z#po7yWxJ!8 zElZSC*$~+G)LD^5_eTU0y&{|uA>4+L?=$%hlFfLI!Cpq&zf&PYE2(6yWDcL~A}9F! z-h~Is30V#}1M5)>8F$5$a$tpb$`w6uW?UL{hk;w=Rqmaf1wvaSs{~9TPjdw#h(!l+ z%R-P?Sv4RZQf$OM9dKI4Zp>Y&TFEnyksfCQ*hxJMD#STcxIby9VQ2Wp zBrLA8?`6BgE>=cd!H&!c8x9(wls_f+CTUN?PNZH*WBdC;ShP0iQY)o(cce}#jYe>D zHNC5#x$S7!OaP+xx*7h*SNjt@VVE$R#7PIeKpu7g#ly(Gna+;yrZNKt^teG8Cn2`C z*hW?6TauWfD!ZmA!EhQG`Et3+-i5KUKCpmGb&~xR!ihp44#!~1_7(2HektF#SNcHq z?-1_cS0cm`faE-^K4p9u@yh{HE3WY9go%^8nno3bW81DV4E=(IM{HVs;#4mz5IA+) z+!53)kRgk0nbDwuI-~L<5qT3RuM8uk&>Q{32!2fIE#;dJAjyZ#M;TgSYsy)HWFY$T zwas#rr!6!<^A`O}3CrWManuPl<5Qsj?qoJPIL)ulK5~D*bY)GcWD?qvO z?C!bB4^h5ZEAO1X3rJB3@|=)2h$q^5_ofzUTvg@CH-Qsnnk8UZXX(aUI~t|^lQM{e z@Mf9ZE|m-#u^$E_NMa02?tpHk?DYY1uBDnwNv#ZM0Uza{R^kZfpeU)=0J9)0VR-tn z&gfQ&J9{*rRx5F(QVJveIXhoV^Ffp~gll3(Sy={|0C}NU&E?DBnHR?K!3HE|W+1e; zx^jm^Jea=imsn!`+6w1b13K(Zxl8O*7$IY+IOqqiIW!jy+LNGv;7+5Y#<83YN;PI* z<6ehnTDm%Wbm0;!0w>{W=k>-QP(^zkhuOqr>jXV;Xw+~+t%a3*nCnghba0O-un!Ha zjs4s`W3RC1azkcXRKv|;6Ob57SYa&eTH+epr4K4*5*tnhFG3_|snqNqALf3(98bn$ zA=VdeW7Fi`IiqVcr-)Ta70iwMeo`>`N4jn%M2TP)k#E#36B;y7Zyp0g30G%W+p4H! z08#EotEi_uWF~R(NOLfNn1kk!4Izq|BeUehd>HA(uU0KuW~3RHS73bRkwYXCs&&;o z;{$xA*%JUKVWB3GRxl&MRepd#V#>8Ro5@aH{ZlVM75SsKCz|`N2cWXX;&%hy_avE4 zVOy#LdtwJ5;D;E31d3=bIS7%rt7{Dzf*%_;t0&@C>T$|%wjqW7)@Rh?0Q;cQ0GY6% z478*rKO&(A3HggvRnbxtonvEQhby+>)*fwJQJCbbwR|Nh6oY)Wl*<+izzy|{c7WF6 z0WoAiDM&aT13^>+cA>p_)?~T@fWH#vqI#}opHyRuP)-PD2?odhNu>(XHY7JEQ^zIn zom(hoD`DFX_w?H~A2Ab2qT?DTZ2RI~pZk+`kSp|-q6#BHO|}*eUcq|~=yr%k)tdX< zpS44Mjh&2jLlM%|kex$Ni;DHIOiDve=WGJlKiE;b9>wKig$-~e;s96Fvh%0fOos;{ULz6keI4rY)fm4EAipxng zZy#B(zm*_?zKvj~Q<6zo8sQ!vaFTw)A?3qDnWg%3Gx4(k+XE z4C@GfbwQ6bSHG0|yw~dg3k~MucSwWuV}=x%Aj%c~WEvGhGAIqXQswzY3Qr=c5Td*! zs4ta>D3@6&mrNBR*>|CmB{gi(G9XzS`$Hy zhQn_HybiR25a?Z6UbFrpzhOeSO8ynZ%#r8<%QP2py0s6%HK!P4 zW^T~3krKcu3aUvZa6d&_PRZD3w@6Ht{X81jXlM0CFKi>-Br+VA=peMusW~uYs8*KC zRt<%XA7m|swLYM|ZV&n$kOQ$O;uvUG2^yQchWx~J>LigUapW*J=0IFVJNhZJN2r$K zxM(kv=loqSMOC(yQNl?arvQm4NZp#8^HL)M6GlzEf>^jKf0VFeRT#KtHP<1bUuWC=A=FaZN52MLv5iqe(80HY{7R8-%0s?<+0Z`? z>ge}j)ZkcxsPZEuFZ+7(7KgBu4{FT<2~UcNy7g5yMNMsGXb}@5HW-xQ>SLL4xF*U_ zPHl^p0m;(#k@vS46>cIh zBOu?8#r9rTmkMb;7uT3hSO6SwK5!@E#&csAwLt+V#a%7Kg&{fgp$v(OJ2z0T+jqa=!(uGmHTPG2+>$GLm~L@3z)6By<0En0;wo_%l{nDXW02VW zIxW16ACuaK!7;i&7TE94q-jUaegsZtpgdo)zw47I#85#oYahz9jY!3I22s6Kw4Ys1 zl2R101+mY-RU`YoHAIKF74{D>7bB1|cyftk9}7s?eA%>A3Y{1UM0dE($d&@?ZU?dy z!Ys|CR-Rxm-)-7}x<*SO)qWWLBRs4Qfy@6|8Z=PH(Abm#vodwdl@dY*E~1d35{O!v z1`TaEp4}N}3MS5Ur$=Y9WMhmGa~v7+`~kywpRQGD!1#3&`u~ zM@)Eoxb@v#YQcxCL7i8KYKIGVq&JBL%pBo3vbkJ*~v%ka}Fq$lI6o{wC zQsO>8Zy(u<@KP!{HV3x9CKrIc+K|ZcmZ6}o4M;#fE z{SCrKg&g;}JS8_5uH5vJ{C^PCJ>ifLQ|$fcZVV|%4OYiYi5SSJ*5(tX z{}fww|4sc#?MAT=b@+!iBZR^39BEXfZw+nPddl_vviQ-w?> zjP6{wi=S}9?B&DLqGdpuEHW~?sQH!&vSru5J~^$@L}ykCJ$`cqcsx8qFgJ4U88tlq zqiv$@?rt5F@dU{clr}f?PNj^F!Yc8EFR5QLXfEFqzxTrd4-dFfr3}4ur7ilCk)G-W z_0Sv!f9rX;syPk0h5R=^A-^Y}i64$Kf@d-`mz^mm!xbgr$GkL0Ah+7(SmS>3BZ41h zNze=q3Q0KBxbH6^gGwkPLx~s&z-hm&t_QpB+{cWPKy(I)u2{;B=KRNvgLh!hzEExu zVz3A9*XjW&;mBH#!6>@41a9fWWTZNPSJemQ9DLH;hHT$z2h#wo2E}QROJh#e_ygOW z#!0=xE&#TEeK4MFBREyZk=@hUGz7LogLVg*oSyA>U~AUO=8cvd{Hu2OMRcy7_67F# z89R>H^ZULqX|GhkrC=YbgH5&^?YdaPEI&_~ur0+tMuur682k=xi3`>e?rAl0?CY5}U5A6i+EMSNF zv{ZK9TP;@#S@)qpZb{VBw`oV`W*hgcVo5Tdr4i-LL{GdRE>APR8?WqgS;#CKJR1g_vTh5FQ+B9}*2&`24PZ!5GD z$twovz%9&Ro`6nlNPVSgjN)}TlRq&9kKJQy(rn`a!J zhG%?`oL?96#wDrUJ#>P=nKn*xKgO*f*8cKzY@csOcN*6Y~8(4uAb&m z!Tu1AAEBqNs2S$dgtIK*mrY8Y*ET*(7rEoHeVpFCp#>~o z7^Q7#%F%m4J#9-&Q5qV5&+IhrvENCvQ#>k{($cInnn?>ocee|P*+#g(JJ228iN?4l z8Ri~MWFNM3roY{xPLS)Rd8tL^eRoz(zsB*%)#ZB@sHGC`WF*ha^Gl(ufC_P%V1O|mm00!X$t&74Yq57Z%U z<=zkuEW#(bZE!fArINgt)e6DiDD9U|3AL;RNYY><&jO@eJW!*}|5o~^LH!>gtRf{3;Ta|55f%u+X7LVXzhWH2=Pr+OD~e?=UTV)%N2c=yh<^ziT+#-(TjK> z52c9pg(BG07Cq@j9YJ2Q2p%N(5?VpZBb-*vV%bs*&`RXD8e$ff(-u3B0kfr~-Z%@P zt&6=zQVgR}NZ$7jv2~CHNRqwGK_kZD6Vn8o+c7z*BvGjr72=?~QdpGhS&;4SDCPRX zVyViRoUM|58WB)zn2n=otrB$4=$SgcF!hmO>WI=C*A!m4DF5cLzBv;d%=Oq?+*3fe zuN)a@25CM_gQ`2)c12NpCGH6A@8@=sw!g!3zUP$RU9WZ4K@ zAARh(@z1>V+Dq@eGGXHATc64-oTZnwAXU;nlpLlxIU5}5rbK+y8)3BIE z_TZsbX)AY4?VkH)rFUi$^c2hBa@rZC6DD_!n_PQsLHfjN#XBFIG-m9Z6UMzZVa(I7 zjT=99#E4fXjE}>pqqoT3V*KOeu9nKX6FCRG?<{ymcz}jC z-E`A)&pk&8w^v+o1quL!cieHuv(G+@?@5_gUU>xuB(ouS_0?C&a}=f=Y`gW=TStu= zHGB4K@^q))0U9@M+*@zGB|w!&X(vGm8tQM}Q>ILTjSS;LGQ)ZL>8Ck}Pn$OFvdbALdNb}b z&pZRan$MUq0|m$<|NZyhM=brm{PN3aiv;~R`kQaQ$=D}Mn1JLFBSv5l#*X!11MKI` zn;<8W^env zLQi)kS1e`2Qck~=5|zWG%Hfq`Z$V51{@I_cvf9Sm{N>^|=BKlx^xaB2ZeISLm*2m0;-n|uo;A5W-_0REP3O&D z_^ox;ULlkD%*vTtuDv*oaL(R1J7?3MuKU$bf9yY3%KYkw-(ECxa$4!Fl{>oTy*26i z(JwrC_w32f2c?c`Qep02pWSiBwGZui%Ke9(|J<*)J^y2?{&K|?zrE_mzp`@X6Q9a_ z>~qVn{FiNa(Z zGiMF~lyF9j=9ZX9fFrOjSg?Q~3xpGK2rfi4?5=m;cXf4PI~eBApU?CVXox0?AT*(n zc!V@D>!&FoWD;SqIGH!zc!MUGn{wo!0Q|&F0v0h>6O3ZdKmR-d4uRwezVrnTc{KDB z*`j|nu_Od<%sVp(k})Y0Cr;%0?z``TE+C3HSzyc^Q*-v&XJ6z9X6AaEZMG3?KlRj8 zFyH|A%n?T%0g}D*&O1jPb=39OUr#OQh0Jr$J@>!^55(mF%VUo{7C!;4&pGED(2@PY zC6`=szySx~GiZX$PqemZe%rSTo0?`M^+<*W50attmETpfq&N>V4+GwMV z&;d4Z5#Od$G=ZP%?z`{);)^fhlP8{dA_`E2WXe%#uf6s{nIS`lTyVh!tQ3G52K}z! z#TQ?U4(FeLK06q|`>wn0q7b*I)4%@puk=EvJM6FnBc*)rz4t!#)Kjs^h8u2(WK@M% zG6x@gFhb5d@4O?AJQ5=ufBf;tr|nf&U4=4uJ2Z0S$TQA3gAEXcjOETd?>yy{Q?!pk z0v2H5fcsk>&vE z)nc)b3v>BuzF5tdNlCF{=k2(Z#$8j#-}dO$2TZtO_t$UQ`tkF=JNo#~J$Tml#@%yr z8W1!(qROm#!jZVURGnWkPv?tM` zI9L=_X%1#bci(#J+F$z0kJejn!(aStn=O97->zHzWwW1Nee!;3ZdNTfC#?f#K`|(? zIm*@3nccZp-=FpB)ERTS`Z$yW4n(51D4kiVPtBI+ltT6zoxp9HzL%tb9X|TVJIC!c z^wD1)dHLEq9P`a>5C8FBj^FMt`yThl?+)AQTPOc$tsPeV_-~ibY_wA5oE?9Xd*hzB zAG_}T7oON@vpqla$sd2>QyXr%%SAJD>AYI{UNs#vy=U0iSFe2FnUT-G{q`dBOY|vL zgSEc;#gAn&AJ1g2z2eMTX+at+Ds@c#{g1x0)+bh2bH&X1-}q9cXMz1SA?_@6O`iPP z!{f&cfBUsDxxP7Jo!w9R`rPiLhm1Jrf(a)Mowm_VS7ko_i%jO*pZnB$Yp(R=udMQg z)ia;ked}E~h8F|-p}Dh$Ke75xcK-HeM}6xThpqbMEi)@`u>30jwc@JZpWk5*;d4d* z`99$~*M9;j@e_eMAp)lb8o&r`;{Oq%Ic>oXq6e)6Rg_amXcA^~#o<8*7A(QRZ)E9l zFrEKjLxTzGEdEK8Ch5nlFcy)T^^egxaP;)_U`lrVl()6D5eflUA`T!;?8AISOoA5? z3ZUgE)7jYxKYIdf$~gmp*j*8sE47qA@x&9@m-7mT5`+*miSN*Z4?YMp;SXtaqzQwE z(2Q;z*Er7+vzRB^a^zAtZqeWp)3;Ot^Y8&?mgNCvfFH~Yz{bj9qCt9qQ{PO3fh$gR z*kOl}IrGdjnSIvbNhh5I+t8syfhz!v#R){6cG_w1uvcIQfHaQaz&ZYQ$RUS-lvLqq zKpItq0GPo)s#wogUwt*cM+uvTgAO`KKeq}e-JuWAPA?BX{4mnk3b4r0`OrfT1rgaJ zZnoKG;4A!SIBeLkOE0~Y-ob28^SbMTdHNs%& z0w8Cktd#xs+m91GNAulw+f6?Ui}IYXaa5KGtA<`MAe$2K7=dKA+ip8XciU~Zp$50? zKghEX7!`jldIPEhM|fBc?XPv0r0hhO*5QMW#`_tlU7>hLSSw(U{h*ye~I?RM-| zyX}4CpT2wbcHcc|gKzA-#wwexWT1ZLR^RWQc;h<{T{ZiqC-&QJpS9Nb*=Iict3T~{ z`n2wJc92f5q)$xkxqi&6SKt54sAu02sI!^qt5&}9)h{l$T;}5|WNsXKft}Qo&Y)-Z zhTmQHYb&ktrIl9xuWx)U*FHNcEv$ue3%!#jPr85HW7oX#()~T%(*SiOyfM4)hzmv> zbm0pp44w7s9fxLC_+=)u?x$B;Z`I5f*ZA0)pId&7UANv7Q12_Hol$z)4NtE2(_Pm6 z<1ydc=;+nIwk@EZ`NaCmeRAD7i)u@Nx=(+L2px@FKM~m3cXB)T_x(m3oitBfl?T7 zKT23{ASggi6&}U09<=7%jAwFY<$TOiCx7zECj-NPG{;%smXd3(xrUQHCt!B2>;Uj; zfFDQQeDlr8gNQrsxFgWci60k*0e=Hcf&bt9<~JO*M~oOj?+_Z|x@1t8!!$!94-6xX zlQ&U@4FqUSUpO{u5G*)(lZTDH0(g%;z%vAXqkx7+*RZi?MNd4RtuuQ9Y{edzT?Oi4 zGzzf{o{t>Hg+Nvu8yD2O@x~j`hYb_GV-~8oGFYhxvA8fS8RC>qGlN5fJD=P|pk9cB z-k{W0=$q5mIlH%GPOfV~sjsWVNxd56!>|;E?iWJr#b@?vwrpCS@&0qSK6c~bPhGdy z#Orn%bKWmU9=FaN$N%`faW|x4M_TWR3Ukr~811zWji=cl=}Xc|n8x`enBUhoy`ytp zuG|;et5oXty{&wb_Qag;>+K=n7ZIR2!^L;seed_b|HJQn@4G+#$q#<_`(Ny^)kb^& z>E}0|`PW*<|Rf21nD7{-Fw*85AS}#h+iCd;o4gsvi9ctuDA7p8*aJH;amULd0Vf$|M$MI z@k*JWXEGbDk~wXw^`}32#heLuOnzqco?GtnxlgY1iBEig%biYmdqI`qP0gnhX7t@V zaq^u{y*BpMsc$dnZLiqxzs>1rU+25u$}E@p)F(6754#|?{YP(p(X`Efyun&4e0ufF z@;_hiyWR7rxgoT5EqdwsXNCjn({jr+vTKD2c9?am)l+VvDG&E z_$Pn(*-wA>Q<*ha``8*QXI9#N^BuC;n1u}t4!LLi=YPKar@p_{mw&kHN}u~(W~Cox zR{HLz*I576Neikm!NE=aKaA+jq%%4hP=g&Rn2KYADa7_S-+YtJE9;K!I1!$8N`^uZ z0Y7Ia&FUcF(+Y&5Injg2z%4LASb(2(q$bZk`z$Mw64o76;646NTNVXXEI%G>BvXzBB@BnGxU_0$JGwGGFY#m@iJ5EF_jFgao#6@G~`+ zUw%2L!wD51)3Fi>AQ?D>zp>^KpgkvJ4F&0e6 z=-3CK6`_smcH3>|x5W%f%VZgx)XQN|46E6o+*2-e6tk8}xvok9m@kxy)pEssHYSeT zXDe&=8WS|k20ia}y+5}1y-}t2?kc^0UGBw8x?UXCIeA=K>jU*`l{SZ1xv<&+^oF%; zoPsZLxgPga${odWcO@y<``Q}cPzQo*X?K!#arlgDxiGRX=1iY9`?g!}!ce0h8uiTh zvCoZvWZZ}w-k&f!jk@hK@FBQfDh7FXQm=JZtMjrsQg6ae5VZpdt-Wze<_^Zz! zKlFlUue)%@*qhScw|gf)ouBjWi%(6wh^>k)2eQQx=()`@C z&Psc^4x(e7ava`t%MI7xaMg|1UpjN@>v7Od&uO{yrAHpU|GJy*xcZuh?!GfB_SU1m zTCk|pH>Gp_iwkB>C}-bKlkRf0fc}e$>DV_GKJr#>;_P(P#JN}AI`*bJ9=Y@O`)|H( z_&qlbA9ee!&p!P`5LDXpImR_^^7LV2pSktvH|~CH>Mi%aecOmPuDfO24Y!ObR_r4X zZmOXVfO@|Rd?*nO2>Uki?l0eZrps=dDgc57#X4m@vLZkVmK7@$0EP`$XF1@>AT%dQ z4i79tVhBr#E9;b1KxE)}KtrMgGFh;!XgnXtAT)8y$(veV^a(YY-1ON9>$6Jh{9Ntp;AH>IEuZP2CPi9k0becVHWs%`FO}2@XlWFw3L3m1Cnn-bjXWJRg}zhEv;0YN;ZF0%Yh&J6iJW zV(F9&ocO;u8NMjViRFgas%AVp6V*MJiE?a0NkD83sfR&hFR*Ln#tz zg6NlkNWZK&OvG3y)RKe-IYKFxD>-U_dbLsrEa~^ub73VLRqU5QN;xnlvX`jW?F(u3 zgcRA|W$h2gDW~6PK^o1mFMWkm(`Z($cb5ADc`>z@n{uY-nBU8ak81@^>h?Wx_agFA zQZFWULI-i&yIbswW_9<{7ndm~_T9H;J*~%D*ysKT-D}r!XF1QlA*j~vi`Z;S4N6_& zmVFQnxb`KrtbIxzai(@uufYjVckI4A=l;sh2|n+h)nn*-eqI{2rD2zSYn&8zq~&>O z+>us0(}Zy`9i}$SoR4YFm9|_-6e3)`(@|val;sY+irJo7Y;o$9&NL_zXK~XMxU80n zxz4)%Bps-OxJ$`y`euAvDaEk^Wy7g##scsL;>55#-%d|Z^(O&nlVvidlnvy@oWI4#SW z$bfIN1ONi^tPvI?%Yl^(tPoXb$l?W_sYQ+!3o(RSq68%f0Y~Ts$t)j)BZTIxAoazv zB7-I@C8}6Bl0(>GsiGtb`!&04XfQz?A`%g^fM+s|BIdQPk7*!Oft^Gmwmb}&U_>OM z%AW%mKQVlv_+H-7Vyv`8QAEBPH940 zEbft}MT1CKb*ZEYWdU#~$MsnQZ0tZ3e1^qCA=9U+WOCt`d*CWgYJ-?HWyA>^R}~_k ziI&f(TrdWy(0doYr;LIH8TI7}QMzhh=ohEhfKRRv3L`;05WRR8rE98Co-4QNg<9Pr zhZ3}fP*oDtR+>Y2FC?e+h2oKVh*CL1tj-Nk9cfnq$>z#K(qFBliLU7Bg+Qz|u6{0> zjngb`(22gPVZe#J$g-}KL3f`D)nc~PTM7*(07b!J37lZm)zHQOLPV9c)Mu|k3jx~h z#`mWa4$tV1!HaQBdtIqirHZc&0;8?Dp9DNwJn z`7tfxE=0 znXfv#TKX`evAh~mNLL0YX93D@i5@H>IOWgewe|`Av}M)ErD4|EryQ?F2u-NcdXXqf z-~mL0COEujU`1$~&U%5gxVR!8kb(!XFldc5FQ{ckg9hsQTmS=>K_PE1ohK+~w5syc zBZ8-qb3`q2pvJvh=duxoR+Vf`7noALU{;7iRr%%=N+osb%bRI{0xkOJgh`i5s$~{% z33)v8!VEHxEJDan5VHoq=2SCC6}J>J@6EWPrAw`s57C4*rb$OQw_GKheyKu8Ge7H7 zy+AlKi__QAki0~Z@odso8bY+vh$!(p2@!p9rCdT-2*^~4Rre1;Ju2dm_v^*iq9nFb zo-3~I&9!946U^$4D+5Wb|q{F|6G*b*2^P&ud9h4~+^TkTG z9Opw+Fi14?!Zaifj@&YGhS7Ly8&^H*CE0slD2i)!unpx6l7Se9-&W_j>ULDeG%(mh zc-I4_v%_UjtyRD%DmdXAaSiG~TA2+5hh{@hgkU58npi7xirC9o?blH1oS4~3m`tGB zUd0M*GZYg`ug2*_JIt%NH`$nk5Tva2xo^M~ttzS2!&*=U{ZWPeK*ZR4<20ApU+(Fe zTM~_(0tjYgh>5C|JSQCo_l&FY8*yo^3~ZYMSjZV7ELQP@v;yiE-LAsMTa4>jwwERl z10xV_PR&8RMh{T~q3hNs)+^g@z1WYt*@)cG?4@)@HS5bPphPQM5p=7ulUXX+q&Sa- z@CU6U5#FeE#OhFqAOJ`5UM<3@v=ID;UQ0~=EC@rgU%dFdR<1}2z<^lRf`r2ZKN2X% zVZ47#P2U+n@vfh8n1 z5o{Wl2S~b>1UVim`4c}4rHsx2kYq|94b6Az;}@hs$(Sk;wY9bR@B~SY2JY7y>Ule> z3X+Bp&C%1_obmx(d~~AkM)&ZCo>A?Y9O*?FN)`sfo(u0L_2tfs)0L@>laQ9 zgKggJJ#qb_m27VMH6hsr9cqDn4KFI#55@v=5gNr|rDm_Vvu2!uDbLeiF-$wFAbA|v z$NJohWWa2ON^htb_f_KdV$xZ*S~u{;T`38DHDty>!a|G)7wD`-`LNuX*dHdMC^i7L zMP}^cWrI*nE1#S})Us|+C%$cV~gYp$Mrpn;IUEhPC|VdmBcZrP5j zGJXO?&9O=4ObpFc*rLHDruf513f*B;kmC4nF`pNa204ldyB+M7(L+It@+M55m=ps%V1R3Ox)#?xz(2 zgXGJNrFmy(r&LlG>f&HoX~zjEiz;S(7=2rx?G9u zr&;I}1`yc&G^sgqf8t{A!3!())2k#9Jq+wOVi^n?k>CJ8gF+hgrAZXj(;oLHb3ne5 zmWt?OBJ30mbCR$l#9?|WQ4hV8!Cx~~ki?;V2*B-NI7V}xX8#d|h(S+Af_8RlcXmQh ziS0_EV$az1i}d!F3hW41nZ1Pj=~a&NVSp^Nj-9}*_W)>yhw&mK!<;LE1<*RtOmXePuz9Ib7 zY6-ATRR}X}{VjRF*ddksWdgxKo)ReugRffl^iP92+AozbR*PEnk5I#t{xQ&p|LbehEM}hejpGfo@c4xO|5tahY;8h+)u73 z27&G8yY*LYSBSw#Scq}E1oqi8ZFk22niC~Ky0y zxdcNHmg0o)4UcPe!=dOcVQ3WzqB0G(OGVXXB>6~mQb@xjs<)9Wa)r}F* ztdZi#DkL0;SF&3p@E7E^KNzW(Mk7}XKqsK6{gs?KWpdaXF}n>$CHGHPnmH#_f(_+e zs#W7swt~_e!BuPgKxI?_@?-aFr}?;+kBilMg;PGe3VTKXpA8?3?6#B?%pg{1f7r%4 zzFM!rE0`}Fb%8h2{2QPC_8GG z+*9<1O=@VarxEtC15WKRBXX#34+$EG&J4uGILO!SkMw2t_+5yO8b&r^CEMJz=p)fT z4eE`Rw*)Dmw5Ub@Gjc$)6yngy6$YI(aarZ{w2geheM*HqQ56QEFKlGMemw`nKjEPj zM8?HmySgP{r`K5Y&sSJSwETOdx|ia|WwLI@NO zSIUv2KOZ!2Tr@OlVdDy?5LW`ZMO)Y?fq{I{ecV@8k}0^#0+I=j&x!8v_oY)g<9u2uG}-wgukC{D`%mPxVj&mkPw~=9iSlB15Eg-7nC$mx-QL3VGa2SFAiBe5 zyn&-Q()7T;x9;Aw;{e-gE7gL1$iSWzP-0UMhdtTsf=XB@28A%L^zT?)S4grwfit%w z^=aKMWne~tzX)EjHDMJ@W9B;*j`HVv<0arcwl32Iaj!}~vV0*Qx=FY%ndL^ME% z2R6VAQr_d1Z>w4wQmBp~@;)PUr^+`$J!Mqr$E91Y&E%9a0#@N60n|r}rXsEG>)JyZ|{&nPjea(KZ&48LiVicCczD>w9SZ)6?o)RZ>_e-jFMrZ#LRqO}p-5(8LE!h+LLM`oah>nFx_9yv%n_H%y7NVpt zw(s}bH~?__79VqJ*0HT>xmfzZXC_EZ*@g$S=p)defqJ95MJ@V!gtrJn1QHET><7FC z(}xgEJjOTU5QQc8L2fdhK}4Q&F!KGa2Y6)!V3gCGt8iTm5Dj5)3fhNdnm=yo<)8^y zr~W|wX(c^j=E|+giEc1c$njcosFHB59JnQlDs)p7c|@TbU8|OIGF*{Nl`qsSoRUmA znrl!QBqu_LYJ(|VCcwK%C(!=NIIVSIOlb%%Wq>dZ-BHebkB zklDT{XP=@2#F#SslQ}YN2hh+Ac;$HPs-h%sU(1fOao8JG``nk*5oqvfdjN;%hO36R z_NRZn=%$*axpLf>Wsb{s1~-k;a@m1;KQ^jYYhn)`O7^%LGn5NKF=wyEwO#`E9z7z^~>dIt}jo&7?7Po-5vkKa;cEZ_x2UgN(gVQ zSU&o^T&3Xy}W3#ab=jFhbN9#(mW&TZnpdac?ojp!U*u z9o|XyT{r8qVadhGE{$D?-L&YV(LW99Eo#w6CqWLt23CoLBEl6xjz}kCh`^-S1ko0@ z-rioFcLg@85+O?9C$VHGY=&X-0yz;KHNzEZSX{HGkM?E>%4sNmsYixF|NS(SRG}v? zii}9N&EyL;3P=M)CK-*$^LY6(k@C_?nv=;p(il~xQBcdRSKC@TA}?uPIC+$j1kr$T zsjtS(pb)}*>i^$x#bBUbuG_oWvr(ltEcZnfQX!~tcIV*h@Yq4Wj;bX4Gi?-C3Q4u7 zyg$E^YKeUaT$~OO4cgh&I4t3;YNH}Kl((F1c=|ydFk(_dFf+i@;DUp4@HMyiv-6h%l7THUe3Y}*Q@jv_11&=Np+oN zR22W?w(0H;De00%Lb^MoYbohYrIrrqRJuF9bT<+b3j)&J-7F2y`1`+p_T8MBGrKcq zCqLJH-L^WK2aP>w3!tY$&ZEPzNr?6`?We)Rd@bbxh$c2Yi)EHe@&WG1e_9v#{A5Q< zLza1KVtS*TOe%2J`aix1IK*6O6tkjSdu@2ZpJ8mBmCX&4uJFs*P2w2W_vj#;d_JJC zikT*zCrUe|f8u`^I)7?`Rcx0r5st}M6pz0pDiMiu#r`Ni3wKMzZvTD>mOK!73el2G zr^CHyP$i;+(w6N5^jc~bF4qOkc0}MC)qPI8sj{@x4ikq1!%U3k$SkNn^^P1xU{lvb zI`xggC;sWT1b5>th_bMa8|S;NbS?AD3iCIv<7IoCPl0t;lp8cd(Fl=}U+CI2P8+wr zi;F3v@bk^GKd-Qy`$|AysykmfE8n5|h|Iwx^Sgz}j9iz$fkWQQ4!d>`L4T#z)XtKo zwr{z4YmPDuN_J`0i9wO_vwg!r0&;DdBg5Lljv?p@f~Z##T?Ui4H&7|8Pvhl5=uGrR zYDcalA$;MMMLCqUi`|Hja*B1=Bvy?oF~UrhcLh@N=mkap>1BY}##Q>`kQ(R5ptVc> zAVW*Fr_;$LuiokfP^m>61b6?)EnjE6G&MMt%RB2e+v-4Wbcu006dIXrQJ&Uh3~O!s z)U2pE`xSl3n&tTH~qOe~kSU z2{xJt2w8i15Th#2He1p*d|ooplp7r7!Yr(B3KRUJ@Y~5D*vQ}{nf)>MU#hvX3pkl} zAUwn1QAfBSve7^{#ZnR?%8I4O-Kv2O-0rggZ!iFH7RtqUzr8+{DyK`fZD4ME1IBv) zxo_j*;s6-q98g&S=Gqp7-#0RwF{C^jRKi|t-!|R=^vZ8HRX0%T;{IVjH&?{BSv=a} zu0STb*VX{G07V*;mteH}@u(6-4pzv2FWtICB~x}2@b0ero{Nwqz%bI|*wGfvznD^o zp%bx*OYM@9yQ$ z-G!kOPnXx`GAHcTA$=;_xf7b$+1oEnqDZ>k-z%~LKO4sczw@=g=@MpXK@JQ1`y5Q& z!^zetvv^j-sC)c-{wl0UD~?4%%QF{|=jQY@YqiV8r`UV*>AxPI-EYM2T94NN!PVW2 z1?8b0=degR^45(mRFnRo2B9m9T+nfE^a19F@(igv@tV)@h_RQjOUJ2~*y&EgTINkn zcHN97f%iP@V&jV81myfIqswJ;d~s&&+g)1}{+XZ0O~SAo=w{8{JFOk0a(sRI`GCuq zgnKb}>KNKfdR|UO0DqL#G%!}v{s<6xYXM{IYGTj>ZxbH~`P zxzt&}Q7g?nl|Llm`oGS{xMdFC%lzbZzl~Pw8sX!|!Z)8$h;T0WK-5CcgcH2^Q&Gs@ zU^1m6Ct&wirChFn$I0nr_nWHVdg`3`#>1eEft=S>KZKORpJK2UWvb+`G5z{O=fU*E z$K|WQ7c9TWOIL-!*gxf75K`TfhaZJ4i(cyulU-LYhdx0P#YwrwC*K%HRpJz9wrw=B z(&}w*PHxh5MR_-imUG114jPbiZ#QzlU1swl91CCeKYK4;-Wz+1dhJuhwFWFmIXXfq zyB`KUfZM1^vda^$k0M?-goRk5*J;&I!P7foO4o7HdC{k%EVrqfMZ~0s44l z_r?RTBJe)*7hKJ+9{@QC-?np0>CF8o$Y+!G^k)&U*5WI)(L4O(9TB7pu({$`B_kz# z!v4$XRcO@+C)oips}ay1;2=iM{$c}vf3NsHIYEv|jzBtwA*nxxOxmtJ1T^l!_%%?D zo}G*>$(LQ>X9hD)zy|7L5JDbq9-=eTuyts?&qs8Xn)ag#fO&obT+|Vy<7ZCsw*D7N5E0>DVZnF{Y` zxvL895U*H!b7z--1`Kkf-vr4(2W?^RFT1j5vCOmeT^^grbHfaBrrpfG-` zvi1*}$B+M}2XkL<7~2;0t+Sf|5nOT*Qy+WFf_XF`tAqmFq`>R_HZyFhH-L))ur#q{ z*X!dk=^;Q%M~O0t(>!wS04TO+X|`8?kX+omHURhx9+kHcc#QH!2!1)B=7R`qW5l@h zqcUQUawBM21u|xP;Bm(9{bM_2W%n*N2ksWFa}Ax^cE@=pi-rL@d;=gaEu(B#>q=mr z_JO?skexy|Q&LUe(@|=w*lMbTYeK{$5$4-iwqN5<(w&<+40Zy$nV7~|Jk$=2c?FmG z8>W}jEIS4s+Ds*Crav>KDGds+w3RjoTD8`Czh3jKb)KK@J7vE?e^v*)X8#4e&z9Uz z=k1>j{?l?FN0+joUWA-6-!?J=EjWAo#~+O^nsYRZHI={}576{oo!^$CO`~Y`9usGZ z(eGAV`@reh{rq-p2UaPcMI7_qhzi9r&-+i!xIwF2*N2!qV{aQ4m2c0*-fj`%*&6y zsF+Vl^y6os+)K;jXRagr){P|rPkE%2=sEa=mx$&xJDZ#1{=C7AwhcmlCSvNeiwLfK!q1g?=s z$SXLK<9~T;Q3KUCE{CZYLvfW8)kbLDY~AxT8UeR#Se=&nOKrgga%b2KHa!GaOa)E5?52Jlu$>Im&0I!?GL zN+cxq$Sy{!=!Her1)HV>g~vTh!p@Ge z{JuEV&3ReSCSA=BOC7}AFjR22G%d*&yO~8;{JCRV z-_ds6xA=tTb4fSP_3AvR`+SbIx#KwLt@|nIT+H`;&(=kkEDqCmr~w{jR3wIO!vnkQ zhr;bArfKXW;d6I&t2Q<8QF5+6b8`Ak|MlPZKXaN(4=;$HYJ8YG?~5Nf;;3#P#NORz zi&4B@S7Vd7K{n&Ft_FXXf?rcbz+Oiztl6*We0L+3XTlC4jZbOcPFqweyZsNE3g_3) z=Wd~tb$6c5U8myNQj>;lH^1+QW54;%p}Tij{~!~aZ_fMgV)5-+)2fXS2*0##&Kui< zg8X-ndl09NpOu8BZG4uvYPiogC7+W2nkssCp<@p3E0Sk< z-GV87CtFl~p$(ZvIr^@d%6sutpu_ld!ho)4>yMDCs|Jvhj}~9udQsn(NuS4;zi~p_ znfpdPeVZ-S&#NIk_715J3u?MAM^vTb4g1&70CF0iEm1wwb(g27yc#AI3=JeIBFl~9 zJZ7cL)i%FW&+pD5RS0NysJM-A(x#?ub%cSipWyV%5E;to;l+EUSg&yK79K;sd=(v$ zgb6wzw&l&wqP)Fh)**F~#jnu2O=%b}msDF&zWt&U^6=3!TqxlAYgLRss;sn{19G?M z!%nguW(c=IZ5jqmxS4ycsd=FGmaxM@27_M21TNA1c;7gU)Kye!C=1zpglpU!puDVF zVE+&Cm6;SQOh7xe+Sf3-coS4VraVClDe)eLE}0O;@q5jvL({~K>=_lNkOh z)o|eZcP%!6y}lVS*~|;UdVkg%F2O_-zXx!R9}V$Ont|JHQ|o3FtvcrtkUsWw5mOD9 zcg+dy3|=0jr_3pD%^0>P`ZV?V+59}FJMM5XPB68*x$M6ds#&FCMZVmj6W%HGg*YNF z$TzzoLvJ>}x9(~kH*M4AuonHAkZnDL?_veRKuBdv1O|#d}FW14(*ZQR=;Pu60 zG4DAa?9pnpC8cD#6;?KdBOT%;A$6w=Nxv z%fdWfsIw46cB9{bmy*Wr%y84eN00ENv6+Ye#EBAU8VjSqhU^l`KrPaWWI08#+xUKR z=m*B7BB>;7kp*f2Q$BizuXgdj)>j12jjRS@9SbcZR7`22eq`5#g$Vt0m>79NawxPHs;o`Q2X?7g2aW1itH6}loI-<#KTB7=t%m8 zRz6*g(2`^bKvrC$@$*o56stmEAw-z(Ndq}z%liLt30$Mt)N%gQPkWD#98miwT<)I6 z>LT-+m3ml#>;k?{&(@&~`_qNEX$<|ZG%RHJ?-!&3K)H~c7d-X*ix^&~baNPoj??CW z4i`ZmvyYr^JMwX*f$z%{Y+#6Cl`ISJ)F*IB+4kR!r|y0it{d4bVlOzj10qlinp4bY z?Z8bi7KIQ2BSOsYjSFeg8#?%!!hbO5AG|^Slx7DkJ(Qb%{$NuYIxFj5l0MxlfzqLW zZg+gPIG_eXWKl}WNf5ub&a@}^l?^TL2b0%MqTKW!AhRVaI2w4&q`V-Bl|++86(grG zM_}#KZfY+xGSGbT-D~Zebu%pqrtp-s8uJ1@&bFzAG@FPO0)>MYa$*|N(O~V8@o2~~ z6n{6Y`&-*t+rwGdu7ljvvTimAV^6nYG0$8~*$$+FOn90#uRYPT%I|wpkZxhs!)LXA z3T{~=7VUxBRf1ebnKfvRP4euhI+bSp+Uhx#g^q1MRDDV2Ws*tFGuba%ORT2!S~<)G z9WR3(kG#QMeNna1b(p8+}%iG@kxKR{y*FmU2_RpK7c=Hu3vZVw_a3LRi9=Ff^{T~fE zN^ZF|dUzC_GX-wLiHVH)&H8GH3A^~$o`sn6(zv0CeHr(tf623s@Z;0MVsqJI8P`>YK_ zs!qqoTHoFIo~~Y>-1pw>wpDZt{bQX2t}_eI$Tvj`Kx22>AD6chn!4)-4M1-%=lrXc zU0pW2w|?wm>|$W^y3;ndxn}0w#;Kg4ZKCE=pTi0AY}Y5N()h<+2yxZ*i^$x|T%6c5 zqBzr#cvg^U7mUK#Aa43?4G{)f8Pw@yVbIb`d z7@Jg@DN}n%)Z_>RGHxzq)H&qlI$AfTzF)KN6ZE3;4^g7=Q_|(@Xpn=l*nhI8^qsB1 zk#J5iC(C`3(MFTNs$nOS?x#vq{7GhNu@$IS5;!=t;`+r+u>a@~{aEgpD4^ym0m`T} zkGDWn&Tws-Y%JLzdyXvO#3kC*()A_=3?q8#DctT?#7M*|n(wN+By0wGxPm*0FxbDs z10{LQ^y|kE?hk_}VEtj8ZDg1v;F|6kb7H(VmBdB2%}KW>Yc=FOrtqonnHk~TXo-eP zm@ElxhNXU*B5qE%3c)2x&Es?s%~99J zidLZuEOx`3Vx%nruLB~AX3#Y{Ko*IG-~H0)YO1iUBSqbm^E??e$W)MM{V)Je=|Z2r+b?Ml8klD+zK*hJDDbcnoPeNj+qQZ5=(aOq)6FduZoFIcSu%-Q9+Pl3 z+K-7_=j45KJU>IVaNjTjH787lL$5iY{7*HI#*UBK9eHpoX^Wet#bgWyDRcXSf74y7 zML=U)MA^2FM%IVfyxCC|h-rFD4bO6#XUW6^RjVy^~1xt&C+#?dA8^Jg@8L3!2HnBKR90b;{D729U zX?oHL64Y*y1|HQ0k6}SLGy-?sT>vVoc2woZChupqV_HFlM-whTQJYSJ5kVLkqKq2$ zGe@Tuw}MxD!N8T2E{#3Vg!_a9MQqm`42Vz=Vq;GHkczA)aW2gA|=EsxXE6@YJ_KLhw*y+x%&@kpMFg;OYWE| zf6&dR2#sKpawnNZ>t}6!|IXG;Fm;`EMCq_6z^ib2m+_}nvhsHs~oEJb{5yFV=WC7Ex)KnNx?D%RZ75(L|!>+ z^zyp$e*DGF#1n4t3wOF(RHY)6rj+-o?V9=n{h6>nwMu$nBfOX+-U$_(#?Q2$DQk46 zH6_J4yuH_tcF-?QowU^)%JvP@OP##>33EczK5ErVwvmyEC$}7D`{ROz^CwCd{Mcu# z6p3BknDA~H6D7Ff>DBW}9!uJ4mpq-J@7d1w!bv5xvzmvyE(b+qTO1|T$eM^Nu7evb zees8lWJ-P1*>Ca$rkVcesfR!$?~>h9?cO2=IkQQZO=z8IJweqG$y#NyXJcFP^e7Dy zT%O;XBt@IBSIp3Pi~5_{@h1L8@zzU2f(5}~IoXCK zhcH($HzUs0-}F-0*^cy^Wy6^f;8mfRvyuKp#qx;78VMyensI|_nEy|yi$cpEfx)e( z816)wAB-425G*=vCb6UmMXqEnMzzyCr>?ET{mckPB8csWyQ)~?^t&)n7f)lO@hU+#DggOw`8w&y%)u-VH7Vxr1C}cdh2uya z4;9(M&z%>QNPL~m?;C@ua_6n!-cPos{6N$L;X$-XM_;g{;B3R*&7ok7SbqENj-#+` z2jP?@C6%PQsY+wlZe`tN`3qq>YdY5%fCTh*EvGhzz2|3U2tTg!@NHpjf@d!WLqrAq=C#1DrQK#_NiB^+hR|bwOCP&jWO7E z$KV$5o+wwIhCdFP_!9bNQ_?<#-SXBT>>}wc;-lPoee~Ho>Sa|VpK^C|=PW z_lkhBR-D%Pcaalwgbmu&iBx%o+Nvv74!SY3A$mdgXPv1utxd-f9@Xu|EG&kdd`pdN zdOm!P*I4%lO$kYtQlqtvHji`9>dCqMvekaVM0xOli{Uu0v+g&v_~KwBR(~kmA@$Jny)8X||~y*>kWh5`;5tL`g>xQ5}XI z;rXmgHIr{!kR{0ntHs-ZlCLusZeT`;l_#m#iU{RxYa~4TPL+O7i8q1{p;<@sE=cv+ z*P&J+q&JED?=L@YK`Iq7!rW+=28L~I6euXX^X{8KF)BAR0r^fyG{+w|^>}W$d0C?~ zY;8-^3kJNMW1^s=6dLque|BSWrrzoudq#w)egzOzr(-Rbk~EC`an6rW!-8b&&Yhy5#cg z+*_{3+b6f;BCa!!ZUEax$!7fH?DqT$yf@o{X?Y%?wng^!boQijNsgc_oUf54DBA-v z$M~V4*(lzs%q``>^FLQ$geOl4CtN@cN89~TL!ftgXMQyVXD_WCX3=TmHt$juq%=K~ zvbpv8rf!a6Fl+SNH$vk=cWA%-OOcyHWRN}kSENOWO3g4fvpKlkB(`V``KYv>;E=Q= z-N2@ec~R2a;CHFLC!Ts%|IkBPeHOk7!`T9$T-<{Q20dgqbRB(z22G!i-TSdeYP?Ym za~cz-gn*B60Q-kgo=28BW4VMwc~Cy}=$0M5{lVwYvBH`I&ZOD`_pbgy84R%k6PWWz zAumy#<)z{Bj1w7U!8;f6ESGu~H3aQy{>#_a7I_Ow_2hQ=!jChwB<6~|mIlS`r}M+I zjs<_iUh>H%{P7xvk(6W^*63ODiJv6%VsUK)$x&O~2Z{)h81<`vLt|A^4!4`-(oByh zJGy^aWtpIC!FImxNKhbI99uj8kt-o8YdLs>-{jnA=WjC=Bsb)i^cXdyyah)PjHZ&! z8qv`iWZmzZ_BzG%@u0bBAyYFag2p#L<71Z96}?rJi=*(?!*S$RQuHxPBBrvq9xt^= z-|z}F77dT3JT&f9tFdsU=XFyYQMe`7sbD7kCEtAkL^WtC?)E6EcVa6}c^xjsZn1v4 zI+_h1A-zM6JY_ScmrPTj=Vw}buy)?(xQDa_O&eq>q%SuPYd^^;%tIO2oarJCFrP^9 zrSa|m7Q`z9Lva8tA|~0}jB)|J$2=smTLHER3D&#Fs=jm{+H&y9`PPRJlA(9B&nIuY zF^P<4W0CZl*r->g1iffG(X=rR^rzzvPlv(^ywjgTGYT$S`9{geX`2NiAO2F2%>uX6 zlS!fgrnFTpEVB~xC2I%y+P_PXkoiG2i7%hBOf|DTf;Y7$?tRCI=5YXqx3@^KQj^ta z+zF`1WFy|;7hjz%5#)4yT%PI$HC8MpETB)-n?L?kM*BTA2lkr84858%iRuy1HZDl8 z9O5z*Ows{RcA%ze4dpkmS?hFIyRQlzVi{7HcSqiwgv|%*IVY1fR9UC(zSz$Z^um!W zZQ*qAYPs(o^^Z7$8em(fGBSQs*kksyC>YdgVdDonUk*2h_;jf&p*Ov{DOsjunZIyb zd_CgJJ&~JO#UXowSs#VbHB7>0ur*i7V&aWjQ5y!E7M;28op6T^TPlY{e)b1{FD^Ky z5R4-$;UOp3@#ts$ z^W=o50!#}xaK^e-Wa~lVA2|mKjqzpkIXV-$j9T2kO_D*H`+!f`U-WQlMj=|Of&DBe+ z-n%k6>cZ?I#3N7D{L>8|cJ}2VxD{S6&-~$$5+5+Pn|7IocKs?!*qr@#x*)03s*dDj zdn{~Sg_}WLkZb%3xxo|#<8{4ApRB(%F%q8e1H;((tTTt{S64SQ!D}daXc`p8=#eR% zn;|q?iZ6D|Hdy(q(Y)4T;Aym@P-0<(_C>C*dd;lL= z!<77s+P2}1SjimnuEA^p(aRg{K!dDK5nPfwDvTa?`6z|W>0~oQ???EqlbkoQyu)VL zegfSY>UdAQMRDF_C4D=_TLE@ABSe>~1jQQYUTT=_l7`x8EEip=_+a6+IiHc*8TfHm zi;B)RicXccROxU(RGfDoBAw3}219p;^@KriC@TVY-N=K zO8scw(stIgfD(~z$X1fn3+2Xg4a~phc`9HBonG~`>#1;}zloWnYlhX)8(TK~wz`h( z@bRyDkk`>5DAge_jY%q@!3;p2o5Z_h#!}Kgfj_bs+<=n_t}^8j^MYQhl{1JweJ9N#Uy8mq@s zl+jlADbP4RNsui@rZuN+l)7-0xfhq^igBq12}K@@uh!z5;85IVh<7O@7bkL+cmFOr z%MJ3`q3qPX>2e=6n#Z#TsapGL>O>KEGkPLvdU0H%x9XFXaimwt;g53S{7UtU7R7s+ z0S+sorZS*n9svnV`y#?U^@uFq-yjGHH@c!u4_ZX-AP6RX=0$tAzqO~t=*X;`w}10K zbB9ee1?8G-7CZJs-xPKb6vptBxhV8TjE19A!fU%lTeCd3?_ndR@eeQEQ?6acOTNFYR008h-Mp|420DzST0N^x`V4+u} zzb3gu4=_$DQlfy0G2(sb3B0+8f(QUm6@&U@hyXoDc97O`0szpv|Ndb5?TbtRfD&^V zagi_X`p3`D_QX=DyAda()yY{m7-Yzil8E1946i&5g;^$a4R2K}4D>xGvzLW2VV5$& z8m)gUWik^@h~q|$+eV@(Z?~m`89g@23;N%UOILfXP6b6H-JZppM)Pn9XHBZSt=DyO zE_AK6HR71?$#nN2XJac3FC#Cl29v`78W{+s&I}##2IHm-j`*F!Lp7zLeFuad@)5`p z0f6jUVF>gj9xs#_0Qfcq8w&>jeAXrdL9fZ8ilYMn!cvQkFXrYIuP0ffORgRc&%5^e zuNhjFME^7xt8#pv@q60p4tc#3$~^cnCh}L>75p!U{@16u*Yo!0r_tBr*Spu3`}62M z;=ckrPV#W=x`(Gud2^lqQKThOl}B_y1<@J(uR>qBV^O36t84W#0tR3JfCWyjc6}a7 zoali8to@bZgZWpJxh432G!I#bW_VT&p~U{@EYHUNWOgwk>mQLMrfK9-&L^z@zEyO! zPb>xR6(aJ#_wp&or7SX*|70bK{Z-aEUNMYVgtwtBDexcVo#WBNiL2V?1^&7FzcGxZ z|6c`Z82^u~`Cn?Jhu?GxemvRe4k02Ux;SOP<%)YOl}OGe0b`p#QdrvJKPCn`EJ@rEtEmjNeX)-AGB*+ULIx z8j{Y}=C-EH;o|0Cn{Q)1d{BgG8Q+q$eMx{DM~gx`1zrXX(*M#gM^j*IWH09879(i{}Mv^uz0$J+Mf+LzOHVjt< zS`P2Z#AT@9tPgqmCZY*4ODe6j&Rg)8acg^)*nAVO0K4C<$1s-*aFsR*LzYY;$ZuEO z){Z;Wh8Sin%uoKitQc-03|hr~=Pk(D#NhafRbJhCLav5*MU}Ia_ruoD<2L|cg9fhAbTFHkp6i4Uo!3uM$Uw(%v2e@As39ogOwg7JOL$FEF&_wu z7uD(?-8OH8i<$M3eb2qTLP8{OeC#*fT{yjK^TE0q&*uv@k9X?R(|MKY21D@R{_Fhv zZtU^n4KHPrjXL@VZFvSzj8#pZ7~-Eshnw)s>u4v-C9uz`Dw$Ud%Wr0DBBkDJu09RUP&z*Y{-!pgyJx zuXz8nR$l5bS{d)7N;^XL2!E_K!;8t@eZ%R2?)c7e+~W;SvGSJPb>ofgcnx#rK>C^1 z_@aN=?#Py>t>MlrE3UwmZ@hpdWmh1gHv6N~#NA$eneof3VZ8lmW?)Z#w3xa#qN*ETNT>9&yx?JJGYqaf z&m8=&f9my~owVUXj1wo^;@+k0`TiTh%b`slwJ-}c2-BC{J_FCk z8(uftwi`v$)3d#MHPvqxonlhzURE{Z@?%Uh@#lRH7fr=JUIi9*>>FcPUQOEVqtI^i@&N7S-=2bcL!w4! z0svOtk}*EnkBwkwSMO7>?CeR>~kcZBEONlz|N_L+4q zb-=a)%nrUy8N57U0lVyPn!6f6NIQ12ea>qI`3~r3jX89kUMAahD;sOP3jR#CVUM17 z3@taJl?~kufEeme8HC!$2 z#Uau0H-TGon%<@m#H5j#orr0#5c9+?*f)M-r4#(TH8@8ba}stLH^#2>WqvdTst9&H z{+wb)-ZT2{TlKb%mpkVIBjlN6tO-`1>9alaVtY%0{~ zj?A?W=b=~jVC0|u_PTI)^4XSjdAT~Wjzhfeb@RfhXcM9`b74JjZ>zmB3@V`L95>|E z8#^KJxUAR040OU2EH0=F#!gwG-`Pa7QHHR^O8jG={mb@q1>5t0Y4hlI&>7-Gb32Ke z4~fl@v+fU7!7lM#ZE1Kk^Bt#1>{ZHL$Vk zEK=MWN4QYRUi3%zHuPvO%rhLMSXj{Vep?(cam62iBb%ppdA#3G8fRP`Uy8;^fMlYu zM~E{`?O$W`N%?{(TlhF_xLB33-z=Z6{B8n2XkBkErtBy6U#+fvhNMa)vn;`r*t@1S zYQL#kOS}0GV=cKCT@1H-`@BvJycm=ES+XrLXcOsa2Is*c^* z>qbxm=y5Z(S-xC)OBgk-2%q=d2)=UNUi1<3>PI(dr6e{amBffd7f1uUCShCPOf@(o zrmz_8G);yNH0>Mz=!%7oJe%!Ag!gXvkRX5c!{8bFjIG_6n<$0xHP>+_&b9eL*u>Vh z5r^IZfi&@iT8%(Yh`;Y5|MSI&(OIilD`K1%-3S9t6SZ}c-|t-rqtEX$gAZ=Q$O|?z z_-U=3i2~GfLcZJk8--N*X-$m|#+DxC6?WT_n=O?tU414$ zPL9`p1Tp%-To1<>tO;ERwcTZDr$tdV-kZN}_z`-(T({fMIYE9pR_I-zcjl+W`V^`O zuFWIc>mo=Q{;B*J#ne>rfi*emgrUwkkW#VaN$fL@9pPQ|?oUZH>9k#8$idDO(TQt3 zC2;BK>`!dK;|+0o!}vh4k=#M12ggNtPcqLh`+ama+UucasD;`bDNZW@5 zdSB%GJev1%cH$jUS(bf?nXC+{LfsKno%Ydd|C#>7G93LY7n_F%=gkk*9a!z71Y;+k z{bQM*{>E9&TS9*V1_f}<@FLPv+xGAGxRcO#)&$8Gjv)E7MSOI<6l>pil}_|hvmMd< zxSZ=e0>g%X#Vn^!f2wD=@tV%8_xOG*P#(VGw&r6Vm`~g8dHBlp6r$>PK5ynC$M7n# z9TWWeTx^gs3tN8&izE1%4Q4aUz4jBXh7Rqz1c$vy-Yx?e0}whumJe;^+f zG>ZFugfymfV(&d2yD{t*w){zaU6MU^3&vUL0dl@~bL8ur`}1Z=|9nDE&IQ%oc`KPH zaOaWN!+P|yGeD?f^h6Hh3*o-nz*39xre^qU_IYO+f%@9Hxt5uMNi>Y0l83=`Q_5Wg z?BK=7A9)=F9Is5Cu$chroB>?P_vG=VS7F7{nN%=r`kaTBY1Hm((k~iUZ7O%LVKz<=$7Zp(6iIP%QtEW%AcDkXq zm*rM9HbNFxtV{N7o)Y+~zTOx2u$j}3G|t#aGNF zY~qyEbVZ3wDW$j}#5#^NZl$BB)4{){<2mTU%flQ4D)6g7Qg3S8{w8uY2p1PuWC_mY zJbqzti0>7uP}Jkamhm_SG}3sMJE`tR1AOkyL_b!U!oyxOY*Eli;{u*{HgQS@ z5#L?Gvt0bP+=c-xryy{|kGjXNpr9dI&1?vdN9Ic+(~pglV#_6$vVTr)g` zR(-es=7dPd_{G_>?WQv}z_@VSB(q}V%~g@ar5h-vko)#0KLgzsku~?YBAA!^QbmV+ z{%1(^g4#9y7pW5ZgVR!QljBZr)gthfulD6UcHd+7^_ZRc1n4jq?Xd^<%7diXdzEal zNzZtYYQA#{d19gg1-$pj52uC`mktlSJdd|zG2ibQDBdvR z%x2w=k_x)dT@_DU_E8IM3%TfRX}e?+mI{@m@mRl3#Vh_0W3M?EXxc==COy08v3cfT z4b;dC_mZu3`X>wMM)>icZEwGt7s+$Gi>fy@+Nk6DU2Y#6Ja6~6H$UfR9b+2kzaT5Y zw7sWmd-Bt>V@q1zB*of;lW4ydYg1j{pVTnJ-@vz_xBgS_JS{8e2} zBV?-&Yd`(2)b_R>_Id7Sos@F&7{=aHANHln8($1j=kcsX-Am?@q7mQv4;g^+P~yoE z=vbr%HnbBgyf}&oVfLH+(Z}81#AHCu-a_+XeE3e-sj}^bx$&|;u-?>1)t-NnIdT9@ zSTOK*b8K!@*wsGxy%~6e(koR%aVMG|ISj9KWHGXuCBHp4THSOL z=4CH;gTOs{!%3m9%T|5rh3LnBImn$$1Vm(^_|qt&(0)Z&oVuEPs%CuObv1k=KnPt6 zU;Vnt78<^5BTA_$YZ@pnooLc9rQm8$WcJH>`J-t)==8AY{0!mALRX4OU4uz8&`>(a z7@%-4esvo=YxV7Gu`d(9ybM7qF%4MCY-3EukVQg6TsZifWX@BLE=zaZQQ0~@LXvScjnQabsGSX zK@rX)EzOrc;-8$W7E8a3nhFER$VETzF)wWmhT$LT&6ydM$xz6UsE)5B5IBuSLvYuA2kIHs>r*jqA(y;9{DDmlYp* zLlel3{K2_<>tX82@bNn3JPvh(+ZpLaee%~m)`aE`1s|}?Kmf#W=NY{@`7qjWjBoxI zQkk(`R5~xme)%$;`)Fkc6LXU3H|bl$m{rT3_%M|phhTsSGFes;yZ!m_Gz5h@*s`t- zpQOGQwO8tCR_o*RrH(GGBtP?7V}z|dAZ`tE^X+b*axtRmp%&`AcCLwg)1AN7l-Te$ zw@`wFen=THB$N^YCMrfL-7Z$v2afCDH1$W#V(1$p#~O5~tReY4Y&*TEHcXn+wSyhL zt}Rqy*zNlEvkh-OjB@wWl!au4Zec_^>fLHhdb!~XfsbWvd>tP;&QvSM4lC6wnA=7x zsRb@2l=-4&G=5AoPvjPANXd!Yfd+M-tCK>=y;Zgu6SPe=k4aP-Ii2F zXIj&}+IFlxOSdfonf-1F)@9E65{k`xG(r&&5Hs^^W4*5SVkcAdf>v12-!e_!etP^K zIBpxUvNd|GgI~~}$$PgG)yoYRo42-ZLg$|H(V&AspxtUN)7$6KY-Wl(i7L3Cnc9yn zHkxUy^=d@5($`_j2y(MkH@t;#uy6-O=`QWpIIYn}&2C~Kt+MWyFUJuf{h1%qnwpXy zJ`@ymq!_7>2`~#bB(BXZsc>+V#9)&)V%S~IXLs4hUHtKWAvrO#D_blZJ-IcIuxC^$ z9QxFb)BKjpK4T&6A=zEu7lWmPTuN&9acjI#v0(*HX`+4r)0W?Ck>u=izR_n1yRD(C z9H$5R*^P$Cd8Svga|Q5h!|kDPx>z$_jkn$AT|VLX7o!Fs&WTV%s#ivhtJ&Jb(N8T_ zhSA6)IsNc5<_{I=uQpN4ba;Um-sY(tq+@@ac2L`6`V6o-^s)d;{tC`H)57=^{NYyiDG+EvFMa z1Y@P)>v6Ly^PO47+_T49_-9cA9%W|?ndd-m(h`mG8NvtLBes3!wZg8fb_7$f6X_p| zD)X^6qMbKbE;sHjjBc5&9+!6$fA)y(huQza8NZfGIlOpsDsms$+564uK}N)xAAGjG zS>l@l$&;dCN5$hMm`=mnDG4<*i^6CX6QR?ARj0Gn^_@NF{MgHH=_rqdG3a6rO)#>b+^TX7h1q3~~{R0#r2=Id3O^AV=%#)c zzl@_$x@piG^T+=!@ekgv{dlJsk|W7?9UgaGDm8OV;4}ZL>K|xMVEfd-949H8*8o|f5>kCoI&Kbf4uyFt`3F&3*3HlOIKj!1z+Vrv*2G{v}_cv~AX$Gm+!TNF&d4mW0?t{){ zy}LF=T{=dgIbD**43a8?SNp})f~C(i6NxpC<|BQ6c+WW(U%h!{Dmqr$TVCkyUa+EX zLG(gM8i!}=*!ixB^Xhg8uPqtp7i2q%tihOchgYGE|N%QJo?vXW~^_rX;uD}OJJ)gE4j zya2b1lcUS{?8+f-R<3-gZrnTPcHX-2eqOMg02h}FOO ztnhTgKYN)gc}qt$$HlD{iWDnD8r)(H_v<-4bxl+S>(iGFhZ}ZFtr{6G^E0)wug##Q zghKiTG7tiPNhK38@J=_nk;~fJ$z!Jjd}rqu;H-EXI<+7lS4iK^lYu-}ycK01F+@Sf zYlfp`4>TX27D9Gw0Be*`B{iLS#6D0?? z5@R?1GkrIlnAF$9E$_a-9cKb5+VTb5$h&q6f9WL%$n<<@!seEcxS4*rVm*7`hyOH< zs6Q|#5xua{PP4bZhBkq;BS<+SRELG{m*+)PTga~52zC#xluqUp>|#?9DQpwEx_1~~ z0lY(*H2E3()>R}r1!Rh#qNk_Dk$+eA?%~&lj_ke0S(oeJ(p~;+8ugPFrY>m&tood} z&qRbn_P`i^oH%(Q<*0)9_4pLKxh2+*$elFnQ;i$5@j>{US-h& zk8VY!xT;_`BVzivejN_%@Mr>wIh`??k-~e2pPTU?ozf=W?OrMo_+f&MpR2+!PKM~s zI3#Y`@|uz+S-$(_X0*E8USK>SD3zQzmvS}qTffg>cvNI4*X7+StsD%8{gBwRYI-x> zo8qwN9*QFNS+Pt`SJh>Lc^#6VPem|+9&d0?&u#W3y5o%>Dk(W)OXA>$*29 z`ot&J-l1N2kLwZdRam`Unx?jx-}jfptId1lyXuXXl$Fx()I`r!lhb!;Wn~N%r4a|L zGxL?yOm83!bzpZ$2l)Jw!x_tG&#VyBYK_wP?djqjlFhceT*9DdDd;<2XDXGkv=e?y z8f^9bMcAjMA*;@6+ZgXDy2`ny?lC&1aU>w#bl`{;mfHjZv0&vf29NLeFh6?L_=Z{4 z9NnB?O3&1=*lt{OJrIpJ(kAM+xY?upqo?;pW6!N}3~Y@-(gCzv#bUgN{A*O9$J7|D zp~vCG=g=Kdmunyn+n;@R{4!Kh5R1-n9I*n~R(sCl zlRtpf{&UJ8Hy1)y7(u>!k~_U`l?Ox+$+w;CO&sv;0(o{sh$ZAB#Kv(W5x9J0Wmm8i z-QyCH&*DkRU?xo9$8TJSju9bF?*#leoNYM&Ql9&%^xyp z8zm}T5t=2t6E!-hT1fYP1Rx>DJg-WIH1J-u$Kt;y__J^ILxynlDW=e^%(gQ~A^5R$ z=!Xj7`4*dQh9BMb(F$Z@f8x|GFVOU-Sgk@VACZvJ!G8TfmCw13NG$&uIWHBcCr>Jd z_f8OpZMLrcZl@#3yEXiLI{ux91UdBtbfZg=?qZ;Y&*E=?o+))fW);EIyU_{i-xXn> zyW>*N-0%l6in9IPifV92^atwuWZFvM;t{{NxR^T&Aa~4(?Mz zeO}g7g%V6&VYGIoV0Vl0FE48nHilIF3O!O^>HBp`J9!u7i+lcw04=^6B6M2`e)E&OXWHO)eD7C|}#P zC;em&I*qVrc@NSz>r~QsC`_L6FA#`TMT~1EC*8!zzH-XM^Btpn(n+5vmEs0vRa{}L z)?zth6_FMuF_Gd|Wm1T4Up!KGy~AD{e^^n7RrSmH_!=Bp3%u=Dz&!tUcK9~0P=DLF z>M1p0MxZG-iy<5u_}-`RXWcyK(+l!5iJ5i30+NibS73OZYi=Q5%ALzLXzj12TN1Vy zU2=k$F+<$e7hXpeJ284r$33igZyjr%`X^>u51!?y^RXs`&ttQqb`A*p9`Vt`15%=o z+nkb^UdWsrbrj&4+xe(G6#}wLsQr@J_?^#dA`X!7D`72FA$K>1S6^#BbUzi+PmkLW z-MLE(>FxVj*l9sD4cLWhrV#a|cO?`rAEE3KxAsT9;WaJOA{Mp9;>z8#nk|YG<*JbD zI-R8GHtUdhH>aCZ2!tRL8YkiDzJwF)uM_;VWWMF%nP*wQMjG26wbFJQP?>ChgdDmE zju=c4Yu_o)Wxp`?=Ip{D&gzqaVM!reZ)nvhv{u};h?92Xo7(*TJ z-HSSU&%NAVuj#QmKMNxTX^+-6AU%XH33%Zm^!-Gyv;xn;ntAFcv!k6ejlPj@&bm1- z%zebRt6rtdcKgu59+amFzdHXw_R>9RP4&T|3c5E!%zh2$xETUox4rYDNMNEigBQjq zyc&UGA?J2Blo!zH2aeYB=M=j#|gDC2IW)zuW;bn3ue(kuoZC6VO&s}se ze!33QZA354e%Kv(E%+GcX$Uuh(4Ea2%5AkP^`yJ;rg}P1iTqV}IECm;OWE_n-|lLo zpJpz-wfJSwF+O(2V;<*{trko1p?t8PCvTqj-8C~)2FF-Y9=&^rT!Z+D%=69m){TNd z^Xm9qo+O%~4*yR(j_;q`_I4i3cSnX9ZhTI&?`lQ$%Ql44tzNV%N6!AV`>M3vZ|*A- z2@KB6Vq<%!^1FQ1-?n@u<+dUvR=@X*L9877;T88PN_H)E?s5M{(6GCGMjihnwiJU% zTu$(wAA{D{ISoc~L&`r~U?|hSkf7l;!NtOs|F}Ls?LKen6J9v%{4hwdoJv zgzDlv5ow`pxZmthkf@J3Bx}g)i{W7{cN|=Ku3ZyutA%C%#-q2=w$DlHSqJ-Hir#X5 zg66a#8Hgks?EZAt+negaVrzW7^R#h>T&!Q10EYo(!7VVA_oSl3#U29E4!M~#p3akf zSw{KgaRjNSwrWA^f9Y+1#r%us{iWB{%l!vbhX^J9*(9kOy#j-T zjS?a%D4VfEcrtiEYxK<0bhj( zq3qLdBL9*bYi)EOcO~oc$vSD*^T>y@;ccz7pF&J*ta6wt{IpSRMiWVQ*m##I(x%y{ zN;EBTqEtY~7x`oIR8SEY)z2x!^s+4H$z5)~?rgnenE$Rinpz2q7x zC>-)DfzwzP>Q`?inENK_pzTzuGZ2*`rNuXQKhaTy`v&6|r>^wSmq+N{Ss<%j#kC7V zU>{SnS)l)9n+o#+skmz@Ua^gyk?Wm1fg?NMgO=Yl3DYii*A7gA<}OYCYJxSHf~b_v z5XQC<#hT_R2kAP1k^*HV&Bez`LT5^Z8^~GWpyb2faL&?@D>YdavK(Fl%FCnL0mpJp zN7R+SR8(|cN{}pj4_q9YTts}Sr^{H8qH64LLRNWLy6YdcnNmYNsKo6&h1iIbDw$CV z<-w7}+Ofq81U5Xq(nJ*k_FI8YF`sI?4cI#S&vvU>p|>$QxNgojn^j38t2LBkgxhmwRa3DV>;-i0PvmK@w!2)5;Ju+Enyh z%_FSr{M9oQ);N+lU?|a;Uf#|BK^YbVc<`yB&XUJszqHhZq9)646rLbu9Tb?b$I9JM zaw$q4l@QxTkvdJkYhViL-Fei97jU^#znTbwp?A=6`Hb({hOM}yU5vM-zL{Yp6(P zW4nP2W_b9h#Yxz$#6wKIim}<7a30*NrPBB>63vfTM|Xe4h@A8+6sZHJ-@yJcIUJ%Z zK-QCEd?d?NU;TI(rISYJXD6*nmmc=SA{=p0yO_=|Z#(vIni>cDTUQm;=Et)J?E083 zsjw+qqSM1qmJfFnKLV&EJ6zZ1FW|Nt-h_@kfTHk!5lzLfY$;i(aR#p_9P0bz49N}R z)s&k!#dEe;hr5;vb$l^n5zo1NL$??%=MQINHOCNP9ISB96mjAek|ETk-By28nkMhj z@ks#frkdBRS}zW)9E89}2L8pOGUG{}b=>&zA|Ty@mDsgCX6dE}JGzh|eR022-`cJz zWMNYP$f($PG`hd|gtE)>$(>&gm96&)gFLB=v?X-m5bEDgIxUf|cw?LVOWLwHK>=|3bh6i~A9-wY{GfvW#dks`|QvW~<6Gm66 zvXj)|YnIhSGP>^2k17!0DUrgilxtBy$+dVytbK*iVU{aAS_vw9Gr86TWm|EP zCu*Ws$nk1i&5|T&o7zepNo|u(W}AWxM2i(tCh*N2`}y0HjA^jQkZ_7Fna_&#(;^mE z60q)QgNO?f5j2~zxS)7szK$^udamxZDd4nw_>dvDSTn3Mb}TpNZsv`XzE7e`dj-5u zpc0}&zX;(TM1S~dMS|3?8n-X49HC4vP9=q=joPACYezq&t~@*uEH|m2r)EIkb~>OW zp#I0OX*d!=gR+ci1@CRK_=mn0!4>AznGHkk6x^EO0Ks(F`b=Y0rp^vjf}1Fw`ACU$9z@ zB~FO$pcMws%$D*dXZ2m>&@`==>$awujREnPy91k7 zQQD$BLR#wOu16n8(2hnF+EI%iO!-7PEGO$W-vM*O@LWsL%so@&n}|gYnFa-iOxy8I z@&ZX=P90p69HT36)!h_+2}CaC&W>30nf_ zP9BnIm~X2sCD1{i+i-^ky1672i4!-ylQ?p&!4?-Xt3O_1D9 z3IGMYk0+UvT(Aq&or8-Mm|XAXfNLN6SDLR`%09qT_^nI>-;FR9X|ts}I+Y~1Kkgm1 z1TBD^UBjl?3Zc%}Id~*jQg34zLw}@mt2Q-*Z`K2z7W)`k+O~x#eq`aI#Iz^9nVC+x zEL)-nw6IxZsu2oXm3@2fAbFoa+tg24-qa(P12>ntN0o+h5fs-Kx{7*zkj~>Z*ED{BfhRO0d>JiK+7Xi{LWmeWG~8<`enTMBT9rU@^zX3InLp5-xNO>jYwl}_hJ1o5-qL5x}rmB?Gt#+PiCE%Uz&`VX1yuSu^c#eQ*%5ddezP~ttW-0ZL!gTW&SKr@^;`jvq4g!nWLg-LhT3G!-DGG-E&T6 zR85DZCxh6?vqKk&CC*$b4{oV0k_b`;&rnGWU2?D;a8^=sA^6m`A$8{yr&oj%&!P|) zM4R-tTicB8>XFwub+^3{ZumBEO(&uo>P$(?-n7&mSR(mRQ0*sUGK=1)FF|iH4fXP> zVTu8I6S>ZriMFiNUql+wJWB{wvgWYaC2kDLRZ70JJL`;^XrQvZma>;$I!YDgWE+^M zyU6l(WPk+J#vGg~(&D!yRiX|GgLDE|=ZyzU<)!55!M{$BTFQr{VG`S%y5DzXO5t`p z*0eC&1ZBAO1ud4nz61UigBme`WzT6H3D$?0&E!hyU7&9`58Kt_xBP(E2zB5mSao6W zz~JZiP-Cs=z6(;jrEQWYU~(Cmz1OC;=~tT%r0y!fL#xR(u8lnM)N&QyMGRP%TF^n2 zS4M35R#e1iWTV1(;Crqfc91#@>GE9EnJ7oK?kYXg#1hL{_t|*!>0E(tQgHJU zGqMGmuBBv0scW>pr#}#s>6L}!60&R*%}yb;n=zER4qrZkz83z~LP7;I5CcUfjD{Ff z{D5X8WtInx61J2o`X}qC1d|$71~zAW)KM#4H|4b`{NC@@_kk?Y_`${?3ieh*dU&m~ zF&)%8t%@RU0u6$#H`{mKg%Jw%p1C;=rbXej#I8Nt)O5i<=Xm^`=iQCkBJ`b_xY2at z=tns3n)E4&u1K0Xd9zrggG8p`>v+(V6Ikf9R75_jtT$2UPz}itg~4)obd|E{2Dc#% z??&qw@{IM|MiQmaE!}SutOgR=mTWfXl`v}*e!(r_tNVP3wO~?8anX5<)9xl(sVk@! z-x70~Cr0D=+0-?JFYvp1ktTRRf@>QZSzdpg!a1H={KpWzm?Ll~hP;kpJ#jG=t*$x2 z=G~QHJhBz7XeABd0hwl+Q;N;U&j{qI^wBja=27csCA_$S!`X#7SfL6z&pgBt*6qHv zKGP=D4w=o^(cgwrKq#QTU6nOp;I{Af^3L8!$QVvo z0YVC+L({P^jCJ7+eQ z$n@iiEo|yyf0t*={tnQr_>Rf6aKK$$!D!-^yT<4L1n(7>u18OWCVTkY=cF-_OV}nB6LC$+@#ZM1$XVh|T(&(1|CKBMptw|Rp;t3T{yye)Bh4tFxh7h3lH)&>$1rJlPH@!$9>uh#yp-(SDPCR5K&*^=L8 z@BXb06vmFMMjm-HarqZ9$wpS0B?CPp{2eD!0kMY$o_Y|$EI&gd-`+B`H+4|3&_wX%N>&6uIJ@3%SSFd zUoH8>wYx}n6jTbb(0^}zg7GKc`a=2e#9=7vfUQRJ3(R7?W&Ee12H2h*MvQ8dLIDo# zQU{PDRF~H3;#5mGRVU`@XVl1&E$d}gQO2#})Ip?5eHbYf3ABEuw8lhgZD>xo*)>Zq zqkSo3$u1QZAHLb@6AfTi}?gq)TAC;B*Hb6N^j{o|j&_OpPh4D-F z&DVgGCQ&wa42|S~mMl+C7#5MN?lw0*o80Sh2UIc_g95vh*${+9wQyw|;HXjp1bdlxVaR+mBaJLxJzdXt@;)
Ds%|UQf0{u<0}FA~Zaa0bRf17zKU-}~ixZ%;e~`cM zgQ*VBq_dEb*(bKK)ID0!4M~?dq-2b0k%4GxL`)od=;p9Q8>>4il>0WpVNYlC1()n& zlIc%!e6y+dDEAuDv0J80KQ1XcFp2|hm+U}EZ3~*zK2Gtf#Y}1H7tAarMpmjk!8SjF zX$Cm*P-5Y-1?t_E#*kw$-=~TK1unNIx_9*mTo;$c22oQFvcT*a(B9e*CD$@G+C9D)O zsI)7=G!3-@N~{mrciEl5E^+~BgiQtlRODDxadHQ~+|Q9>zdj+k z6Qh{0y^Ddjt4%SYP0*|X`ouJ+fAIf`QDP!+z8&QS{tNpo8K+@n?#Wl`{Nm7B{h2zW z7AvQH$S1yFx>5YVk{ad{PBvymnVp;*`3U6g>=}v|n-WbX7uY zYpt%b*~hQ6K3KM=QJqH6bU}i%JzG)sCIns_{TtUp!2qpgN>-LDVV?%YmXS(aGc{bdwqX8U5;ij=)13Uu#sCHpaD)bBCq9=-QT6Q# zaa#j_|K_Bh=FO;^L!=RS2U1B}W>h0n;yuqe-}BlYR`YHlh64Mw^dS1ezFno!c87y# zEhV_vW!@+M)8e3Jtz}c*PoQCTiUg||XJi1&=UQ5j+Ya@P#z;HX5P_da{{8s#1?sd0 zX&{yap(Pg(m7g=+;NDw**PO{Fc&_OEGRF^2rb;#qLEhA=4u!*!mr3c&E1Z$#pZL%5 zIE<>jc$dibQYa;jlDw+MN=GF>iylNJMwpk+Kcx<86#*xkOAgJw*yrvhj;e<+Ulz2V z0y=QyfM(%g;e9xOuV0~5RB6Q-;<2I#f0u!xf#=eBcM+5{17BfY$fu#fgyt8^g5Xwf z=aOYam@zYqgqfJ!RlPRgf!xRjw%)0Z1Ym)yu!^XQ{vZT#2rnqKAjpt@J|Ke4+yD{30PV zmSFNoVzG@V%)hAL!^^}*#0Ou@mShgz%WF(xnp|9~>;~9r@aE;mU%=Jms#ii|6k3>v z;*S$%1ia57`AMUWppFTgorcG29jH4F^JheI8Nme7$_4-aMGi_{QUS{pt4lM&1JH7hb8qQDLHYXB#c|>WV?z&9jm!zBHmI^sSr}X z@tFEKHZP0)i7gHDlf>75Q3SfU3>VA_JBvV>fe%D6o`%at8Q7)Gyu0v%aDX@8p?n{6 z=^Pu2DpvNwZ_w&v-Z*O!hfp!-M00$g>X-=KohF8&3al17m7@=e64;*s!uQYunOwQ=k)JX1 zovb{~gFYk2lwe8Y9HukvmvQ0)EfqErY|f+_{yH3dGO1W zZITwyu|6>tKrH|lmi}cW5CF{%fM;6Jxy|3bF94ZLR#-aNjzD1dpO0Al_{Geu@%Q5$ z<$(X2X~bCqQh({+0G(dQ6GM^lvbRirug9l9n&U^_LHqmLoWx0|l+=AdJ}<8Id$3Wn zPi|x6Os7fkdjJcdmhvwyuFhPUP6(|CBm*r|hYw4W$eV@20N^_2#G}n!3QzV-UHp~D z&vrDNqp_NB`7Yz8-YdeNjttYseTlHC=CtnD!AmWPG%!{zVJd&aH7tsg6w90Z@1q&R z{${oe9^@PlHV-9#0SmMBWHYXVm^6dBn=aV z3rot!Hvlw%PAj!}p<`!!w5g0tv??D}dIfE(zKV?M>Reqjt~MTJ8UZu1vaaO8S2i&; zze@pbGd85!t9@T%GT{Oi} zb$;T%-(FIO776UMk&E?Rga>>Nq;U->x9i$|EKP> zBX^pIN}-f+Ud>Wt(RPATa$~7kDMYVWWab(G7Ax6vhD*qG-e~YfqmSUJja4*|2&8YA$rkR-DWYlSfd{ zE%#LU+j<4rObIovnsSNwA<_pnTpe2}Wyml$CiIs)gHGva4AT6&9cNK^suxodHta1s z!e<1a6hW`7hsV&G-`nwrR%c*IyWiKVOd>j6eMwuNCHvuwRIb0MbFBYZJ zkw3(RX0xKk0ou=55jc}+S$NhKr z^FLns|NF20S2#TXi!A0phxe2R&o%fw^!^+X=5;-W9+6y~K=V-JfYx)CI5}9TfAe%F zG)a+dX@#rg(jn8s<8H88+pZ&^7PeF2YoejE)?Q%v(C*d7&D7N6u#)<4nuI#Gn3Ji1zQwaRNO*DhtYCxGIZSQ?9<{A3Gaq*aWm|JJtCn5o8 znf+?*;ScYWZl5PC->8LQ2dkyC<4uMEC*$KK?qUiIZ$Eu}^uvXN#UiE@H&5oZ};QE0pV` z=V0)@ekhN(ht1DKLzFLhzM&|fDe7yp?RtK68Re+R-B1_~NPVVz`!g-R{ThZX&(3=m zT}(#GAJZDXX^zn?r_c0f3&PssDSOjQ7ccQYN{z$0Etxnw-Ro5U_ zZSCXL*EF>jsB8WuJ)mM7gt_w`SRd)cqVNzeJdel5@D-NWnV8+JIkqOzetqycQObKK z?|!6NfTk}!c=U=48CO98F+rtUO$(ky)+0$WvF@!c#DObrt<41PX~%=`F&L*QfSVn^ z&G(-X7*X2~==9Y>n84O^n$qYYzvo_~hK==|4PCMxnn%eq<}=ASob?hSkZ+F)fmAqJ z`HJ$Q#E11tCZ%x$`f4Tbdtg;3bKOlB!I3?kH@jHT)3lvXa=Id>PvKnvYefOwWzDc$M-COG46It7B|HJA`v3On9L-h+i0$c0}6S)8q(VvF|O-Z_u6`d6vzxShBMWjT2 zd7dMsFTY^88O507p`Hlazaf1%6(Srw-IwazY0(h962ao3R>7Kh$gi>d{gn|bXZMZV0s&Sr za3N}i=gyzripp~TSLh)wJUZ;doqM^adxt!e^dB`fV za?*t7;!fFSE8&IW{_ifv69_R@$2A>73A4#Y{0o>`91P&E3^nD6)8)rBRLm&A2*1R< zD3M*iPPz3cED!qBz&1|@yB0!4vKPbyNzWOX-RDA;-!MXjHhzdAATrW;%&(>4R_sqcVbRyVXeC&*D+5wf{++LsmdcDfx^1$OJMaV0Y$m`-N zFK^MrT+&J(PU`J^9u(@B76nA}Q|up=@`gjiH7f>bq?wP4rC*Jw*`hUv*(zonhU8kj z+%A^-_sedcFhVD?d-(|T=DjZ~pHt4*7}?(koD|jD>|HF>1hbZw>m_@hx!(I8c$?jw z3aOIkPEuM}`H=xK63@M4tI6TEtCpl;gVgj=wW*KQ4@Mh#P+1FuhvhDT+L!nJi|X@O zP%1JX8;!7UeRi4ibDDU2=Z~Aa9Xp&TZrAwA_x&XnHrDG|)qfS3h1NR@r$uJN%l}nBQddCXm(lqz2GLl`Q$-W zWVWlGCxMh490uA0CCkU%7(kcON)DS4Xi-UNsgM;f$$;vjf-!nS(!TQ6#224H7jWSvhGf+;e5+Px^8tZja{u#R>IDTfMbVP z=xQC?!XVRoC&03&$@h8#W@4e(%+JH`#q>@<2yt0`4CP4u%jXcAuf^|iYtmH!i4A)( z)1;%%i{j0F_EJWgUhP@xzEb){XFqx0Mh$9khad0!*og_z_`v&-_1h|X1VKFz<;OTu`Spn zgK4*t0#YE@AUts=r(wL&`J(EVQ9Wy`aX4b6Q!~7iMq>bVs(pu(Y*EYRcz(0T^B(ij zIMqOH56urv#G~?5xAwPW%`3bcK8=DOD7-m|{MhHPoi`;;unb>xVg2{954uX`1uzuKvxjrD7GFs-%`?IPQ>!R7Wi9Zox$`18_^pVOnE*QOF|eIee@ z3d&!*-+)UNg%pw={#eizYMsala*BPBjmvB^>bZsmf1YGm$_`C3v=QAC+l; z-s!kzsF)$>bu&1Jt$N#A;L)Bx(~~LU?2jL%DBM(XsSVV374|f;Bt$#sF+i!S*9%@6 zk^zI?jDfX(V=XL_0=hbTq0NwQ8 zr?wP#Ru~d;2@E5;DCs$@81y#9rgbio^QfX89c{hx-M=;vd5Tp#KT$c271d8Ydpju` zM*ta>mgmd0A6*-B>UO8#pnPeFp`8`OWww?*Kn5os|8!}34|oUe^u3VtPGEZpob}U0 z=rc*f8c{yh!M~IRI1RMlDhz*lG5!VpGe{_piZ^=!?f@I1hKG~-# zrv|JfD|aQM#HHS7eVJkLSMgs8BHJ@wp3>KE+2NQGl#`}#Pj^g{fb6&Joclo*rz{0Z zn#$kDdEeFve(filvp4^;Hl`Yw!m3~k z+i=VI8V$FrW)$p}Nu;F%_fWmSKv)xH%W=-AYF%PBqd1qtviry!+P_LM4=1npVbkWgX6;3J8{Eisr zONK;a!h+KqZ6Bh!!EVyq9%qsQ_*#?{#@K7t3y8#6^%TO0+2D`ui@){j^$Z2Me9fVA zQ*{X_s;g6V$eF%ofNF0V8Ydr%${v5Vp?d^F(Hlm@ciobEQrC<%vL!lqX68IV6t$zY zGhhbqU(c-}sO(KkgTzwWjp+21&Mx8J$Ucxa5^Mw*BDv-m{$Dp_tApstu|l&42;pBh zKlLUt(GBxok2L9dTpH6jLOGQ5+V<|XpjsmjO(Y~h9c`?JBxa!TH9K=ojmJ8(WVEgW zCAj00e{Gk*$d!+n{EKvM!(#CQ*m5u8V&{vPhGqdP5G<<2g4xpPGKx34f_4eucZqeYc z`1Q}1ddy&Di}bqBini*)gM)RfirJ+^%~RZ~pFVVeZ*3hBg5o${n!Ti3nEN8-GfLgH zO~dI!=7ACM5#-EcNY}*8?p)-vBs_<#Xs^yTteK?ae%vK^NKnV>x(#G(e^^glj2!!R zR;N}M&|NlnWO)C`fgu~o-WNn1W)cFWr2A|l^VTo%-csG#iivYwE^De}xa1%FO9O-x zMjW#r-e>DMXc`>|F_G90D$BH|@j8C7|4P>fk(A*5S6vGmKha7m_XI>C@uG)7gnjxe zlVdyoXN&v?_v}|_f40c7w&=&m0s_)sR9wu{68tWk*tBVB3~Y0kdi`c*qG86fMQaQh zc7vP{D(qc`KdbG!hcuMFdGxr^Cd#PI(S(N}$zU-0_P0jJ8kNfH*tuGS^XEYCSU=|~ zM9tsSl?CA*K@80qU#w^RtN!a7OhCcI8WNHBtO@I!>gg~HLfPl8G~1FuC%K87Bk|?F z%xE;w)^_`7%8WXjkVW>b@7tk&pVqrdrjH_sF?-s+w~5{hrQX@a-l3U(p?2rf^FNS7 zkLn6F%SzzO=uFFpI-esM@oI5BGeRS3=T@_~n}}8gtOXSJzgTlMiW$uCwYeGg^pOP& z`+laWVS2Xx9LRJ-ra0MfIcUQgu8)(B=03n~aGH6SjJlX#745ccIv#J}GZ3=()tIZl zSAwDSoF=SYBzC!mw^ zwF*XRw}k+K%FjSV8WUb7Vx+lknnRddBYth+AH+#}>p02{4+6q#svFL^%R5(fc%cR# z^9c^L1Q78Ukl#8{&jO$I8qgo)Nr7WI;!1?%3aw8z1fJ`@_rxfcl`{Gy*4lRx{9QHE zXj100Ipol;c}=EtQAWD9JR!p(lX0S0xSrMT*^l~FbVQC4HOU9s&&Z2cg;k9P4Hw^t zN3y!FE`tx>J(k=%`){#qpA0$&Vx~L=}fne6T@#8)(KMr`eGZ=_(} znps3H0;h!XB#DR*;~O?-BLJIcFvEVx6gD`l>l3Jh{@@`Ao9|I3HET#)qGGVmH^!3$ zl3SyQ=wDLBpztfa+PbG*vQZ7!F+!zZX6%v^aKMStK~F`gXH+!@)j9BY=-8h^16&~i z9HcWgqJCy+PI{N(PM!_F%t$FMF(4vTe#oIeH(m{%@PE3 zY{Qc6r;ugH8aiJQwNE+mFo=$rnNr7ulY+(qcWL&6^E-^kbtw;UQFVS0hG1w{l006| zv&ll?ksn>raaaY{uu> z81Ft4>0F0#y7(1!OL>j!rgJiXLznxcM)M^!L~=?S_+!M13manHm27jEQv2@=nS{;t zsv0QJ#n9rPh3HkpzOu&4);eLk6codyoP3T=xc<4I)6-v$I`WlJQcTr0IL|?L7F|B5 zI|n24m=U|xM12&=ov|lHrckURy#C$FuNSEl>SpH}vikuGn7+}084IjV;#C6;-nN2c z8&~e+Ha$|KmxY#}#Xqr5Tl)L5l5%a|(3|lm@f9&9y9>AS$cEpL1En z^pfy|h=^|VjAUFZ5iVRj6ZECxq!&l%bFWE$W=M=d-aOvP@`9*@(jpo)D%Ix-5c6NF zG-V20-epypgeoU^Q43_)yES;T#x2SBH;`m*Uc&Dze^G6695ZCJ65H@f=mj^y}J%)a})#+@*hqGlr+ zW4vZv#PE47JjzBFzK#DH2$t~(Pw`6Gbg;>IPWa>Gu&AS6;FXf#P0apC{Gq?dOJo{A zKhr2n%b{{EC*nI!+f6B{yRNO7<>B+vg>G{H(0|7B+bPgNS<17Cse;LsKN=ay>boy; zH`W26hw{H3|DG=)#Z+;9*7WxUiXV+AlqOcc%U|5TdJ3@kgfTL4gXKtBWPn=d5UX1< z7mK>a=Giv#Q)Cr8!7O?K+t+#0V*bxa<^Sah=@Z`k{|~=3vog8)Js)q^93XXnkRtjw zlM)O-YV%wWU09o0nwFbSi>mQjj4ybiKiyuO(fq!RSD!4he=j*+Ggm_eYdG(BUp`r8 z=n*KNtYTlstL85q zoY7iT>wR%zwN>rM21#kJ!h^!%h(f@0Ftlk+jT%HxHOWQrES>NwWk=JrKUN?X=-TnK z$C;$RqLmhochYlB(@HT7sZfKMALlC}o>_nwAtimR&@kqgfCPHCmZuJe#@CHC-$|fc zHDJJF>X!RMq{u-_^_iZqrTDfg7owOQE0e7~l+suF1uqVjK>Js~m-V{_@H)xOMs|(B zq$O}#-YccN$3sqCWv2cymWhcqz_=EP!HmFjBgwNtTb_&ujrZM?=i0N*r%5?1F+g!- zRHI@iPw_1RWfI;+q<^MDs=tYW4wVlhyW(A;NB?@=klSQ9^q=n)Fc86hKlZO`LG&)|EFX~x$d zZj~wBsO4zsI$aHXA>=eB#YB`zRE$2@Is0-6fO3$u`6e)zgwKmB8(0bklw_DB+?pqf_ol0sCe1 zs%d0c?GB;G2i{@-q9HoF4^|-SUcw2OL7&baP(nOR$IE!cp$ES?uk-#EA)c)*d0iOM zX*&fAx0JBW1w@uLslC(A7o!TJHc4!^xIFL3!yKJVL5lEKEang?4VW$kcrx&Pf&h)# z(-4C{0Fd`Lk5S8D=9{fpOb6h>VnK{qV7H9ImFv*?$H%3ML^;EqXtBnWqdUR)bZNG@ zA$pg8iqcw!67M(zrk|XgzX6W>|6$bs{|kFso=?nzUIojbT#LKW#Yr4p^pSyg6-Sej z?g|$Xa1~#dv-M+i+XM|jZOsO4+?*GOOH*!4HTAoD16%n$Y-MSP0{u6=!RQZHG0x*Yc&OttPhct7&{juV6_4nzTII;FUrm&^t0izwQ;i zGV85Up>Zxc?{0%*Lx2OUg!~c%NlaFV=fiM-v;Rx$@v83{H~kh4>xY_}#E%){$vJ^IOZ;PODcuB;qgB(UdUIRtsAbQ!tCt zzf0w0x#<4%34oIs+tOP>ZW=O<+f@Z>902UTwpq%Q(+D~+?E#6+{vTM~_Wm5US7dTt z9HzF(~5^-C6S zd+dB1M{!Him#`BGn&)OuM<+#v_5v(^@+TB=G?mtK3wuOr(g}}pP7$x${g~qX=fjhy z*)*dvwe4L2MSO?a>V{0`de81{LQALD6)o8aTw;Wc_Z_;v@qK?7ana6M=Xz3G7AP+B z8fttIEzNvj#~F}n+u~}rq-)Q$7|FR45NrWPmMRv<6P6*d9EAz9Mqs# z2ya{~iNZ5V^&i?t)$%$Nvu1aa*!~{hoVRATn6v{8HDQ%e6S7IIu*0ch2Lof!;7z5Y zne_^(OO^7yd`IgEXJ*+H84rLDXmJ0_?{!wlBfx)tr)TE`VCMa{uX#O4Q@ECebrv2L z3jR4aL>9yH{jN+5F8g#1bXK$jANxCaM=FDE+fyT1@eH?3Xaty;amr{>Aa)4ssMpnI z4Bngi8(-QFS_|B^@;dI;;Thf*!v8fUqUw~!`FPHse%6KdU1kW^*Oqk1BoX|ox z6=i++L^}|{bg$?~ej>YEn2{qO5ZJnU(k9(s?GB+UWM2P~&?PhUIc-o*<2Cg0@;vVv zk^nICpYGVzYqZODnKIXIzbHl<>Nwq;cSp{h6sT=NQ{w_|4#F!UMVg}D9C`fh#-6H( z94}`}J?eS-0#0Xcs9br}i^nYByRusbBu^cfX}gaOUEbB?`n)Tf z35j=0ibvx6W#*l8%gGm?o&CYJmwRi=tM^;A{oLh>=;$r|9NLD0zk=J&Tio4z0P4WP zR4OJ^$g5X@*|(;(&VB7SKwLap+|b!QTk$d!Y-y-Ac--ts!7nlnVv{P*@bY!H++6}X zycbhJRQO3nrY0Bnu$WcYKuM$o)oA|EM#}R}V46cg#~$wr0m+=3mWvGZBi5~Z4Ntux z%j_nazRr?msh@=XeoCuO;a-L@YCy*`gs&C_7GS~GUKT2fX1hRPwk^jgQ&1b^Cg+pp z1r%q;1!^T$EyU9M>~@XMkDf+*d`DxfvEE|}&t;X#jPk+T{(%S89%nQMVAX@Rr4Q^I z(YH*6Po%`sxBM{^=4#=fBqr&>?-IV??vR9WowIhwi<6U`8cyuapE{xHPW{pn@lV`W;Tyb6p{WqNwois}g8L<2FV}oKB zL)?u`G`3}Ynog!n7IJmeH-NbAwW}5!3q9lC3XEmQio4-ktgIDr?@RqW*F4xvybm0U zRaWVg&c%*TmH=lA)ree1^bw3kOhE+8_z1QnJi>c6Nm9$kI>=i76pyG|6yRDpe>3&; zboGm;629&X#KyO|xu4G>b5BFPYIoC;+^w(NTV$pia3_crk)hM0-!ct~V|qm3ZQ*Tq zNVsX zM&NZ9Ia{aUdL{?c2Q)I_oXEk!0Iwz}$zjQ$Ci9Rf|CX}8^=cmet=`M-9N;KqJ6M3z zuS`b}LLg?cLIM^LX6eQLxrsLi@YLALfhk z2v~^X&&E0PHGFnDesS|THaGqaVG&QI?*6`E>b|)-lazm5;-V-|+%}x~nTB*GX<4J? zb8v+oGZqxG%x#Uov~><}t$nZ$?58(@bZ2KIl@}W-X%p^LL7at#hAt#@(|=8~CvIv8 z&1K6}39HBw)+r&?BtwK7Df>(s*7~g1Ew5w}FLQGET1DO-wyxH1&EYG0=Lk2q;_^I< zh&)Urbfaz)Bjn{MTKs!r_f_bBOzc)iJeb}M6wsmRGcr$`PcW$ z5mr^4GPdFLrfYd1uHMsH9F9@ApM_5#f4_EGmR*^gNn+E#i|DA2y!vMtlNWkXh3_6) zY&0pfx%poK^qQzx6mHAT(IDvb*?pvIj;Z8w*CsPPBa7U3`%RJ!CD;qC)j)qqtD;4f z!UfXWzg~HRc3mVa(^}+Vs`bhVA&! z&PbN(ibL7d(G=@rd<*{>lKSARU-O*1`#QBcb-UN>Z2X#W1f;>ELfH`7B|@?cm7Uw| z+`GHhepkPB;AUCtKqsQ>V7u5dSiA4Gx**E1$oA-o%8&d3wmp-w7zd1n5{Sb-su(lA zU#HsAbUuuuW7>);igs4r_u5I<`N?Ns72}omoW2Ie?&jbuGBObGWJ6a^OtBCYb>nWp+${%aVR%`GZgUsjMKtz6g=Df zEa6v?L-9TWo~vK6ZB5%23QCUl$>!X2aC0yhYA%m=<{YWK8rOZ%|5?XIQrHG{O8P*= zn@$Mv;Tg%W9hlzUBS$(m2=m5guxzD~>vkUAPPRQ@)A+V`LQYIWy{AX2Ctrk{Q#SPr zpS-aclS(<(%Os0JmJCfmvPh`g%dgjl<(dl}|+4kCz znTE;}@igO%PC;?n**ig)u}bh*PEf6SXrhzteJ6|-(9bw~rR!{8t48&0oDZKW>7OsS z8Cy+w%5p+|J|X*BJ3Qcq=>ZLV5~{%aT!!zF5gCT|T%?V;sKqIZHj??kX3VEBIMR=v zILnZ;)zp2XCRtD@VECC5-i_LSTU)$P&@=XZ%ufd`yr1u^DQ3JQByICnRFwStl$;pZ zPZAPZ>IunV-u>At@&e!R#QJiXoc)zf&56t?EHAC7P*aRL$lj5afk%9FQaqdnjmH8b zmYAXwWFkq6$_qtqscgD|K~YXSkwRR1{Ln9M_sdJWMC&74;d%;3yWtLog=6SJ!F!p+ zD`X*y-&@@*Gm9ATKyD(jN3a+=Z$$z>U<2*iW<#A+g3 zXKbV2`RJW&!Q@25E@AiXjNq4XU7Ghd!+P0$n2}AJ?NWBu>W{-xvvkuHq#&u3+g7&+ z6u>ET|JUP;o;E?m+rvdwq`8<)iHM z>n?i#2y|>(NYbm+-*dg#W_-MR^g8yd%`$kL>GZp@sCk93EqS94ue;Q#ux}sPW@D|G zA}g<8JtccN+qMm4?3F*y@8!zr3`ZBW__>SNvLXdJZ^j+Hx`7<)_we}RKl~o}eq#%Kdd2Owk5Dx|Btm5B@j6LgH^j6@Zmry z_-WatXGw+uKLqAFz6Ac2hs60Wk!}Zq>(}76JCB1h+?r|{-`nZ)q&Dx*8lKPh#``t> z-s^{}*rdy&4>&BB$ot-mmeP}Y-)xXIU+UH%B3K4L%Y^+qKWE5+>1}|w3=25%Z(d;& zC9>6vuLQ>_#G#9TXx3$bP0sM3j86xT94rl#ubfE+;gCKd53q%S;-+vWU2T(V*ruyw z#ZtkALxudpoI#eq+A{n}UV3OKWDH)+9i8De>uX@eMqx~XJTA_k>x%Cc95z6%qvdq> z+w3&YH(+mW$t(`>_*2i?Qc66iasM)|jLh7HJgI#um2hfdI$x&R?l$`8;pdudt8!C| z1;2J}Z}OqJRw%&SC}2ODZ?XuNLP zRo*`~eZ|g;>bM8ivTZ#QA5}%Tc{K~Sqg}6N4{vpRv+gtyZqR@);FSk^ z4OVwoHFe-9W2VIR8>6tGlt7G*H6ecyk zO{k7aB98EAFkUXgdwZLhKAPfQ*N)v^LYiu7?B%5K^{C34 z5JOInzYI$_q@si2XOe&%JyFW+?j{o>CmuQy(=*(Vh!-ChQ9jJ-nd2FEy3H!7#)Kbq z`M!Mk!ZO3AJ7})6o_{1Nn@kxq@SkvG5YEw)VKn9-7QmY{F1jI=R{iVC5(f*o+E{=S z+IPi@-TxhZ=%X*kL=H}n1=tt6*M{&!8X=Z)ORZlNwW!Q4OwTk}(@Bh#p3o+{f9$Wz zr)Ea=GATItcI`{g1ZD5ipgH60q?dshXX3MM+4pfkJ|hEyWO&%AVsrdty~!Zng6oG3 zh8h2DG*f|_(vFNwf>mby%`)zgh7LH0hg!%zxMLCjn6#wY%_@-s3JZFNfC{~7`DC4J znH_o7>R=tqjlh3XS#XhGWh|_9JYywlUC0I_{FHf21Tphvz%GJA0ffRCxtnA7SGpFUB<+=4L z#b}Bg_Q7ld#yQikr*tVB!oBrp!-(74XI^@?l!l8dYQA*TvkG8fK&+3Ij+4$$4I$3{ zr9{L1d;k+Px9DXk?J=EFmzG1(q7G7`2a6R0P?#qe%8xLbHv-S_1cGd=sEpbAkUbE# z>0Wx%BFhA7G61FWw^wp#@h?Rlfe?ip`0SkRVU2y}Q2|(g(aAqL@`bIlYkXS3z9{3Mnnv`FFrz4iyZv;q?-+0xYA;~b z&KYr(k3+1oTb0;Btm?%sEi4~9{5!TRgmOuPQpAIv1G||z(^-gkq;yaGmuhK4INwZ3 z!kSLU{xML$(+bo>wJEwUR2g?dcFR^-dT;Y)LmC+0RFl(z;2iPa#npefWNsMtIZhqZ z+BO2nNWDceG*Q_+FB~M{yC|GI!qv5M*e|y5xnfK{GS@JN(%Y&ts*pFy42VpHv|6@dbo_~;MW17lV*i5Ty!-IWeq|_|TYo9kx2N3Jq+jkvr4dw~m+Sqo4c#4( zI~hSlsC#Y>j_C_!3VTxC^6DM|5#QWv?KEpdP4)N4R?yvIiYCn*fB`9K1+~sv)(!iW z*EDorj}(>nXSUvau+XKnvHh5&j50H*F=s!%u+-2|p?(@o;j`LJ8YSd0SY}@o9_e7*8LV@Q9qp6*ud3|^&^xP z;!;wjQX)jUl$Qjw055YI6z7fc)3JlsNWk7Li{a^YLmv*uJ6U`&7k2^}73` zV2>`~P4&Xn7f-qa$FKi}_#5K_4_rJ!vMZNMg>c3o572<%TWZ1bin~ z4TCrf*ASISp+tk2_TnP!25O&qgEpQOmU@Hd?u2E7LDxZO$1+~fE(mm zhclF;MFGJ88=p`mfUQj}RpI`-`S#@C?2nz(fb%_wq+2Ex8y$Z}FW1Dq{Bv#xvK~b+ zD7#V$J$54X?LW@<7v%qPz8mARAM@e#nd-oB=Hwx9YPV?}P2ug|dd})u9N4;W8RfuNHX{_H_x1XJPYC zs>sQ`T=f4y%%qAYjbfC4F0V`u7Qexdv*w@B_)h%IC`TTNrp8o~&(GE=P>@P<*`EM! zN{O3~8fe(-ex^+deaKa0b}&%zzqP;{M^7p`f;qBN+2$G@UZXL{8Z4N)EEr#ku`UIr zi@mhh!JDAPzs==2t`5ommFj&1`B7_JZ5=ZnEriiZ_K2M&FvOx-W=ERHI_@y~r=-#1qO z6i9Ov?<2HXi6K#%MUTCRomSPFi0&dV7pC@3BBhkQ{l&1R+v$WJJeRw|$UfVBj%#L2 zM9LwCd|oBwJX@(t814M#9sXlN0))O2oNGbNuh$Rnps@=RwcrV+ul!Akv&k2@5b++% znMF4yxPynfhZ+N9_%)8BP~!JyLyXl&xHn5e{K$S8F35pLgO3u2MVW7m%}S#~xUzFK zB*v`G@98Oh3hd{|#0Ei|c9>XS4~VSNN$k-Oei;9@0B4c)4Fe|mEN=3*SxM|k&$@#? z0wcDc|38V=Kv@6x3i$u_(lEdEZ=6QlN|s%egeNDvRp`8JT4qwo5Nhq57zHqLTc*}& zlmGdJqp23%wTm_>Q=CJqvI2;6Y^J~de#+%x)3Czl*da|o2t=EHEhseW2&`!TjwIn~ zGp??YG79K(!FbqpBX$*#4Hhr|$=>p*b;{iCc;kaDcLM+=L5lX7Mm5uAZt9CEufNy6 zwhz_2jCTED2HYO%e=w6QPnNK62BF{jTu{R#^-*KefeAQ@i5C19;jL$_8$rsa+Tn)g zv~OYt5M!9IlVPA3uT%JNbH<>Lu*23snMxZqF8|V)qB8 zr341M4g;v3P;kynP=NGgqNDDsdD!e##-7)j-qVXn1yB9mAy>>@I&oKV*nDN+`H8i`P-# zBFv|5$m7v$<>Rwtz`$z15kJPlULS4&)>v@Y)*%Op{12rdZcU{5CaH_SFyZW3JA=ad<_EwHk)yJ4o~JPj7pvN}dgH8(^r% z%THOV3hZaptiNGOIbe zUWjz&0x5r_kJ!%+*8DR?Umw~D29jPh$5U)p!|r#z(^ z&4E;s=w+Y3QzxNCO}X5x&vU|)s^#A??Ar}waiYD%N&-yBqgPEZ7MXffao4Wa zEaPP|);PjXJ?^A0^sISj*IV&FIyth7kQrvcS=W zO#%Js$S|{8QP6yYeUN51LVnutk$-2(5S}?brv-0S5vU5g+u(T_u%a@9sdXe~Ck4?d zXI}GBHk@%fDMr1feAPSGAFrL)n83jHO;};0OTbLK2MOQX15}CqVgrKL9dPw+`ReP2 z!0=w{FkEDlAgM64kOJ|6$7)i5bw73^`b3J0qoR=sn_@U4HerxK z20z|mIkM1gzt`(F7{O%k2oy>0sEl37Da7i=XY2tHm#OeTb5M#vu5$XA?RJEF2%yc# zWISA>?O(Nb1Yys3rTKmq+c+eU+&54aOlql{Z*?j4l3-F*2#sZ+RB!;w!4?TAk@T~` zk&%k!afL0$_@ZWx0f@P|JmKosrJWqymIU1q2OTY`s5XH_NStYKZ|?!7@LegA84sVk zd&!PMWrhATrLM0d@DJz|RPKHsV(3F=D1NDn)n^2BY(znOv$fw4APDq69l$oWUi^bR z**xgD;%Ir=7KFdUXsw`nYy&iafig{2=eDfML*oiLWyPP5tH164zb)YW&o?@q3djH0 z?wHK;xPem2xP1aM3HvyvwbSzlA8v%-hwuMzLXpWxgigom&1sNu-Jg7UU$#2s+{;RJ;&qCNd%|4lNCFlNH@_Y7_?!_HuWYIA9$-oBmwQ4NKr)#wh5nd*_EXC$29wQAOBStGoXxK$-AIk{96;I*P zRMmbG>;c}4VjZ4GX`k%1#Akq^`+XcXWx)#=Gm$zLhVl0$lnRMC1JSE;!}4{pl)Ywy)oz`ucdvuOyg%3EyL7yRG0}3k#g+DT zgK|9*7%Lpq3Kl!`YIVj$rTi@>fy$Z=GAA^?PdlbB1ky@iiJjn9oNpxy*V{8V5F92m zcr}k&{KM?Ppjrz(T^qq=`d5|E$q z1E;zmwiH}blnzR1wV%tU2adBu{y&x7c@jSu=r3FB{)m9l`q z6Ly3E;;VCJ zMvDn2NV%i2n5rt;PlN%i_i^i$<(pq56yBB!DZt84L^-y$Yi}8QcjYaq<1-0Zg3b4y zt8iCnEr)Q^&##%OGf@D4-(SuMqRSPh$x`3FY>&|)v#FW2R{Afm%g+X>jJCl?M#_;aa3ad?>n%~ zu~Z49#iInufpdtB$2#6``+t}UNP#y1Y>{Q_8 z5PT^83dT-JrQC+Pc!ld5J-}!n_Vz}ORS8Fh1bfYH^pe_XFhM9zPG5z}z@;&VR?)tM z91FDI8P%t4cczdpK74EPE>f_*B-f%k*M)Cp;b3)&CRJ8@gA*1KnV}$#|2{1Yl05!8 zuu{8*GKRz#qla4zXlm1AJ{OJ~DD)4#fUud1h;h)x3Weg+$5OyYxj;j?zRu_OU9RkUwuWJfqzZK6)fiQTE0UE|Ln-*Rp(c7 z=)w>Fz7kgmk8J88&=dT{@iR90a}3h3(a-=cNOT8MZqJ$U9jdPUVV2iSt;&p{5aH{C zIdExBvd&O&@SmMOQM|y+ho;UCBXHN0B@9r;__Y-!P=O;Jgu6zkV}TqotIwk45fMJH z0q@)YUMmBd^!0^9sA=m3S*`N17sI-nKGq2l`SsLbs4)<9Tp`~wVIDL<<@E`yk&%gR zrr0JYHVJTo3@0KkKLHfBL(XkZ&?V)gIc0&!6rOKoM@Vh~|!R0GN^JQoGH`KuC>l*{tE?V_QoOM>rKj|jW z4bc4q>MDe%F2{*#%%SRhL=#*JfhI9lph36eM>_u(TvC;z}aU%3v#SBjWM&Th-&q(qP%j2xC<&I2)A8Un%cpX zO8KLmUOS>`hn&BPTj#I{##kqmRMk`)Jvf-MLt)hy14(r7+Z(l%+f>}$kNcLoA=#O~ zFDKXt0z3{ihp;1jil#rFLZLi>DK|KrkIs=w+1!X1{*d$6b5wl^SofDSL~)m$qHZn1TNf|`H@{W?Z6p{9k2Ar=BfPqKlMc?_IB@+5GiS`-0+$6-i z$?geKjsuZ5$GArv3dD;XqX!AG4KdC(JSphBrPMm)8}W8`V7B+<@-c%j{M?3G-kfmC zMjMq_N_OQ6M=B1m#5^NJ(J}~2xG2!gBrImk2*fZZX;?N5P(!MwzmGP*TdPQK-D10v zD&^LdIK+A3%HCm8d?`d;u2Y;EqVU9uFG6EAqfHb?tA*fmt}@d9dNYu=+$mHJXbI5{ zdA!dJzejiK_a-&@W!)6d=i*PdfyDX@1swKE`BDrxJ%9+R>-fLcJO4YlEH{1>doe7f zrlxi+e!%&=m>h%Lc<$o)^owy65~-2R4!624){=Dt6dC@Iodk62CU9Gl>gyY>C`vzr{XFB z6AT+n!O^gmW1Jo@T$)^ooWxmAC1KbzMV75<4*fK;m>(fr|9P0x} z6um*KCqk~RMMmllV0}Ib0q&!5Or0R-ZJl}cKj8F^Q#+eVTYGPh-y_3MnQ*-`k z-E{F=v=yMD0!LX6ca{CgJGg_74M7yznrY8X>xuNku@z>?+?iNDwqJ>{DfJ3tW!M`< zJ|W9ukfyZMil~8-8jZ&+{UoXq+sATj<`hIZ@w4V!@X|FDFr%a}Ku@nn;ir-Qovp-L z+>cj)wSzi?&I$D$rleXoK7)s6;`^ME&z`%oIeSnmRmHlVZ4#d4Eeb6i;S#Qb+@Pd+V`}lx)DB?$eRdai>z?cdqI^!YtNwZ=D2VBo}Z-;hhAnF!)sDP*z#UAzg zDsfu>fP(8GaJSx8st43pws`Cii-tPQ>{>k|DZG?|$prg)#TMRK4q*by!&i*`;hPGl!7e`CDqPb!%(Um#YAF=&cRz^G>bHGxaI|ff`q~QifN#hj+z-4 zw_cmX%1Z~)DDB{SEA^r!TCP^fM&RR@#V5T{6J%WljLsvMFAR{A>uI8Aw7C#?;!kR7 zQb>0AQ;JC|6!p$sF0O(Np1%X*Bv7l<--XD}BauG5@`R7#%40m8(;1;j1U~=hL#M^^-I5K;w(mtv?~T z^bYFeC@qk$X8B9Xm~dZfjwi*<5x^?xGMod0;V*V&&vUoF8y%nM2nWdTw7hDc(I0e3G6`)xN)ZSHNHRcISqGKdbqNXc&af zs}o!FN*1lv68vi-z@*HorqN_BO161m))!BCr0@v!sed>?XZqCz;)T`iL=W`|%FPh6 zc*yB?#$D@S9{+hA{mI4xS-q(kY-PaSt>EpR31*qV3mup5!JAFrS1YG)Vy?6zC?GPW zr)a+edio|B|0zwcES>YeROkKXo{0K@N^{t!_Fzyq!I$A{1Xvx|e>MiYb>-ff*_$kPMv>QGn!Bbr6D}>ZGz-&3_j8V)c|l^o+bKS)r$F6t$w7el-K0^*G5af zmI@O^b?R;gzh}nY#iy@svf>@=m9z8vZ&~@ws?oC^)U#Z4D^sefT=InLa?g^!$PmEBXZy6y^#?MGr(uM=C$3nPAq8?LRx%L zk?y46F%hY`pC3ki)vt1$#x03&j*y9q7Iqv1fA6Z{#Hs9%mM2cLCJ?Gf%6_&okq5aZ zo8%wz0+%iQ3@AQR_sJC*42i%@k12e`ewva}NzVH!Wkn369x9!|yGzPF5t8xs`9~kc zNOxl^UWb^JIiDkKe!O8Ap0QI0?|;5+w~^(x5C`CuKj9~y0-_yY-EwHFeJ>q>9$ zai434%=#n!a9Z!98e0#4Pg+qbB^4nGGh!k$3YS1)?DJVJwvz>#R#n{OK%B6TxVymZ zEzIxb2%|hYE$tD9^z9Rdme1U?+R=UT2rkK#ajng_+64Vay3uy*qkMI}y_25PRlm$< zv_5#+HMuQp=bA*5r?IleMXLpw@P|Qm9%NG&H@ub~ZS(!~1*494nF^mF`!c6)IKV6v z#loNlR~m{0Gu~4EoT27*yh`C5stqD8qcPsyQsySVwFaSaf>~`{lS+1@#oH0ME*RZ_5QS@7{>_pIE+r=MhzrC1WKFS+SNxW~uzhsK=xiw56 zlCp(8bi=&!F%`XMow@y*6hJwtxV`(!7^rA)d;xC2ASELCwh_t0aTgsP85=EQts*G{#~?TXUyUp zObeCnn^AU;AXzwQ!W2czxXbe0#q)-nsB35MQgK_WHbKUbCa!p#vm{!LLq{(m^l$-g zsT}MW6T^rSbC1fgD`#t@wc=V(>hLpJl%s1BA_^~ECnJ`$?}($%eW}qa!wfwx{dKsU zF};f6$62xO1g2=wgIGnQ%RNPw%7Wr`8y5m}!>ZZbmh4*xB2rQ;it>s@Q6>@Q4Es0r$Gwhn!fcC60*oo!T@rrtoILe>Hu;cgqvPo~cpoJrY6bfw zGz!V{79odx(0N!HXkdizAoi^-Ehp8y+x>EfJ8;xFc;Pa?j`}VOf-lb4l8rgwf+0Y1 z1}Tx3-sii$0#XiX>}hB;w@_2CL$)H#=^$5y0HcFjAQKE;54DJk%wG2rmnXEQzvqRc zg{da4qo^OT=EnwItv-{#%6U8&^57j2{&Z5yz%2F2jE zx8Zo5%OVbCtUQE;YJ$LXs4k4b{S0}H*bJ}x_8O zt_ox+tE0%Q%PBhwn$3X6ADXU&X|`0K$|*3-`~hMrghN>17vX$vvyd$l0M{=jVU>v% zdxk9#vXAn<$Lg5#u9Y1$vYj<%%EK45v@!{VM57L0z4mXjjq99@0)9kD7h2d%beEh{(8l^ z1+5xU*Qm8~F=G-@f1V^%S~&Eor_6ClS7==rjT&6+m3+@G6&sH4{<8%G(4lN9nuBgB z3!9K9BK`gJ>N>f2c!_kGP_QCI7hy^u&9sk*{b{qd=wc(Hjd`a#5D@#)^QFcfIZ3JH ze<8sr7H7E->X3o*)i zhhjPQRDpt7zQ9flf;i!yiA-PybA3(IO?iu5MO)^uD1&|us+>1}S_7c8jbJ7)ce5Fy zU6)%^ucp?X@%J0yrh>3_WIj8hQ3*h7x*Lr(F8M7J#GxrDZ=?AD6z46|pn&ySY+=Uj zz#ZH-Zp%?FHvi>6Z{le&_N1rP^CjEx_`lME~jN-NE(3IKaxuYHnr z^}iao|2rZBVEhv4{$qn<&blSwgMNFtVUzI^+eIQyR&MwL977?L0`eg0|NGah>p}mS zECEX$aSl>;xNQFhI=qcy|MiE)OLvGU^9II3cmn+k_O?&T$S!|cSiCu1%l8g(tCO$? zfftzIlgMC+bSdo9VS;IS8&6=+-c;auXA3q^<^luQl?%i$@$X=E$DS9n!+|kImpcQ5 z;OuJY2mNWPFyl^^_0XX^`%r|^MhTsSx&dmm9KFh_h^A;^__JLFl~FUYXK}&LPJNTk z&qv8%BLN%Mi@_^`tTq5iTj8|9Uzm@^&Wd()yq_?9g|QB@X5f*_+%LIU&b%GVH3&(Ki-NcE!FR#V zk*o;Pgz1g~?e}dWRnx7WFXNleS7xO`GTVes?D<<;{rGmxxZT<@Z??;~W+Wuq50)k7^G zWl1Ce_Z7NFU;8yPvh%S^n5Zf#Gv}l2sQ}8&m;?lkmLgTtJ!S&ZMqnFm?$`!~wZF!j zBi%hkyY!k-2B!Dxe-6Q0_mZF7r^szfycZ1g^bXbwpPKYX$Q%C(oGg979cg}#_Q_Cf zlmB18v0P-jR7W!oPP&LPFX$AMN00rl8nf-nrZH8G8C#c`2{+@8AnKNbpmKWgPQU8? zGug8|gU6Bpvwl}IQ?CMpX8GQm5Sk)Lf{J}920;Z7C*V}k4^ls`7$8>$E+)5%^kkx* zL(t9#@STVzo;lj6chfX6A!JUFOt+qH`|&BY$)ZJ$!BrE(FMHhRP)tiq>OB`{bYQF$ z^EVBqyP{#+sF&X(LfdhC556wce&*|Qt(RFQXOh&q=^5z-)(38X$6ai1&K<)Zi)D91 zhvsR@)d={Vgn2IEpwsIh`UKjR3_12tWv}yF<%UpLI|*m0P(tN1Qj2~XBKxZeAU|Yz zn``=svgkHXD|HJ;ya3>lY~&?#Q7$d%K>DPC&mI4IW4nD)iRCtJXuJgPU~5K&*%$iS zHQ!`OjNZgU8e>-py!@f|JGq$%Xk0;fjrh;$RasxV!g3EbEsKyJ4tHfCGKp;owx`tj znY*1yGTS*fRD%+U$fPm>2!3#WP(61(oM>E(2;5^%Xz~UG24APS3&uCWU+d%uqD*wq zU&O#!5Qa-sC>8VGKtb7m=-TSMpuG=eK^=*PPcHF-q|$}5=@76c!Q*~i7PqjNR$BKd zzjBuzc`+{>&#DSCU|x;El6L4ok-&=G8Y$#u|5sM$b3qHTx;^}%!DnWD*=Lq|!aG?> zCz$1v=ehH|lbrHz<+^ltc!XGPmktsLzA?VIxAuU4Ebg(7wb25}jWmSQaz zcvvhb;bc$taSOtbKZ{xlnioE_IYWzexlvSAT!BZuk{w?(E5GEwtwuOny)$OHBUva z5*NS9E_+YKnu}Lp8?$+u{$qPyu8?J-_774pCh+3kEEo(Ot=e7}PE~VB=%@pS6`3V> zhH5QLP(~Cy8{=X=S*Wxj(7ps~o7JN+FMs3{RmF*B_ZECqOjm3qyy{hXq?hzePIPE` zYnbt?YbVyxHaI$y`PYpkM(4^q2PFNaweMol_^Ej%Emesy<8V}ow*e}$CoW6lAr_@+ z8;t78DG*2ybLSCXx5H01Z$iLdhAt`X$$e?ah#+8I3%dXHh^=pf{q58zj_5SCQxKg< zl!0hY^8l93y0KOmOogU#6LeSRmSnG$Y1EaZ?4WL})u+?6BSz z^_HooyWI%IeeqDi47}pPIa)SJqZYp{b_?&%i1Swz?mK@&Xbv8$eIvARGA|^~@ku3K zCPNX>&lh?nqZ2n#Fg9OsK};n&A^Tdm>`%U9E(}^nRL( z(cV%B{7cdWLu;Eatx>BpFgBZnvq5{F1@jfZ<*W=%tv*??f~r-*N~xZx3N|u_v(@9r zzrL&HcEd|%VOiH5s$gDPVBZD?{mkasX5X)h?hida($SIEUz@aI^f9AHN=e@{okVK5 z?d$mnjt=6xYCHkv>2;;!`GXCe=M*i;9|19-RtzHZI?Orbv4A18=}3m6q&Y_{zj@$i z%`8pkT%x@a;_XSmi(V zpAY%mu!H~rM_RxA>_LOy-2(u6)AX)ixf^6hWH7LzLum_#XvSZ~s8Ni(Q`Hw*P+kB> z^IFc}>ijD}p=&(1=S$Zu6sOxkYku#ax{nQ+SR8D)_s(|APe0kvoO4V@r}mxYtkv!f znFa@!{M>SBY@__Ppk=b7MOsHH|H;R1xB|4XzKY01Fs^P>H7!_+3e^gn99ZDps9Nh$ zUr+_7Nf?Lg&67%NCPO4oMErjB;K^UV@aKEnfBpacE?(yUmm7=GcUjZ)scQ#MR$dN< zNdGh+L<%@_ve!k<) z=o1xa!ePj9fP=4t(dl1{ui%8xP8}o213t`rfb0Bvg)2W{OZ!5PJK$maBbC@+gkxlS z*z2oE!-Ahw#AkBjV5?Entn~u1$iRu+*7bNMv0~a9@zDo3LfP%7e2H(W^CBuBW#eH&yZu9E8x)eCV+fEvDH_yw6Y;>JW-7TQrr$ zoS%wdkwkZ(ry8jp=$63op!=%r}=Gf@-D#T^Xx)q4ooAnlBZ;!(7j2R z#q4lmecMOW>>r7Qgua5=ih!><({cJpPAaQSt@<7#vqCn`{bK3tR;DaeX`Bj&Nl5^gLokbN`eVbH3sj%eoWJCPVjOB{!&? zVAk~~Dii&3(-bY5_jV6!_qy^$tN6%xMuMA>me?u_x8%R69Q^KiI;WhSfLv2}^92Zv zf4VG`8UbTWO!F@6tc3%^mL^RkQRj5huzhgu6y{F!kWO4mOZND#S5W!bakOzu!P{Mv zF@DWJ)!m>B=uFi`M09xYF5UPE>n>>Thd)0Fem))R{{LdVQAE7RW@B!nCWQX1ScUNw z70~llR}%*ne4wK@zKo(YhOS&4981H>3Ug*RF=ShL`qa>sy)5P39U|*O*zCTAk?U1K z5UbrgjK9`N)6C`P%i?i?JM=i+Lg*0eOBpU6I;vc!*f!O)%JhLX@15Ai_R2ulp%ShEUaxM+GVh0eWn-vG9w6-nwXBMzT~ z(4zVx0~zi5Kj;oy8eM02cpl{i+5i!IUVl8^FDHQA`|sjmfVO)ccU_|`b*}R;F^NP9 zHJb~^h?i*1R>T`ep&IF6TSy2c<7-D3Q%ew8J6wDp6Iw zwrQR7{w5g%UB+ZPQ6mGebAUPP!AW3cg-)<}1#~#4Uw<088g^!Ph}6EeU>udPsxA`G zn#0FOXhF->v*^W9W+5{;BWQX)?9vTe#xg1Z1w?fB7RD=yWOH538%c0MBxTwy2;ma) zHusZX#klvgNyTJGE^AQ}eX7U&RH!!FANaF)uJHvtClM;=C5+oulW%J6{9!mxNR2ZI zzc4o_2=t3~j?X-@FvJu$u0kmySXkH4l?^%Q6d%yn!`XUi?3HQ4O81=P*OF@k2SCl0 z3;`T~GeDa1BJ(&o4N!CJv|JflgXCx1I|^Gi!a2M#f*Co^tsuxB_B9l1zBkI z+yted=-NSx7P)m@LTk5gDDH1BB5xEehiI5IGB-L7$`v#rBI4D@c2~D= z_n%lz4*{hQ1bWOUFwKd;;6(;a!Ug@H%6MMjQLHd>#nWYMAa&T)(Q;}`DPsbjRaJ5U z>aXtRz2qx!*7FuJ1IQqerq7ZYD{*XIwQpqCper79NSmr0q3ymyx5#C8`=ycY#-{}u z9U0CW@*->{8b@X{OJ`PmP(omysg1z{gwht@-&8fDzAfBruiX)ty(=`xa(~%Tc^|G~ zyUtP*Voqb+T2MRvvPB}tSo0~Sld5pa_+{2)3J)j@BJY%ATA@E>+Ru*p6Akr0np;Sd23{!;qsbFJzlF^i>ED7~U7 zjtld-W%*Vemn*_wEgPTBhf5cE9(8Maw-odWNUNW}Id0IPk$CX}`0_AWZ;24(&G4VP zYONdBdVgp?nY2vl*vgph4>gXEeD3*L@f|OOw$_VYtF-rBvrLl6*>laJV~z%6s3f|6 ziYLdTfkkMX+FG)!5o*IKXpxMPq+m7(mHoGz=YtR&*H`x~*b8H{I6t%eF9*I{{Y5=PQu8^hMV-HTz{pCqTr ztUGy`(E~4}F%z4C^2MLAgqn+4VJsLJTQv1&4Y2UQCdSK%)7M@Q zT_OqSIWqM#GPrLo-vtj}y<5Bbd2u~aOkGejY$0tuU32)HbNboi7qyp(U-#rK-Z4=& zF?0Ih-(8+H{Mr!@+^TOjlSWRshe;!(5|*ORAf2U-3_%Iial%n)XZDj>47p|M`S`Ji zrCduLa7Fq=qg8LMLRYLmG|s={Z7eTV!q-K8C#P_l;?Rr$hHZ-3qy3b3`6)#?JMTYaL0>L7X(R}lsdq$F^ zQQgfhAq<&?YoL=rop5h~4Wc(dK-}$mpTjNZp8=Y@(KW)BK5P2!b`fjMdAhJkqScML z)iB+Z4L!9x^vtb=M>zhh!l-)eMQzWsS$A+bOCe^aS>k3jQp-wYq3Y&6S=3_T`LX0@ zB3ScZnw4Eu@!nqkwBsS#zjv zLm{&U&+=8zm?hYB#pJc4<{^S^{Z~=1sCQMyq)=W)9%on_kN^j8PPoS)nS;mq7+1Jm)vk z8b@f`UXh@!N_Ae@WVKc9!FuR3^Xeq9QHFEuVp>7N{p4yLZDa2sVVMi2`^n&mZKd1h z!m4tUsgvbqYtUZy?%ECu+A0ofndP6BFxIp-;zF{d)M;~lJz8a-npAAF#!IlPaIcNG zMR9Jii&pN9YNC3^Up8Bc;`wkHbS0?EG%0 zn@&&QCE4&_ap#p%U2v)Pk9a=sPZH5ND(m0@=EBVbOvT;DTH$Ay$*@?~08bVd4qDFk zp)$K)ieN$k!rNE2A2ps>Y~xLmmAv4tb$%mQlV8*{|NhLCV>h|##j`g{4QQq4S2UX( zZfo8evrHv&&0#XlrNBI&8!RMYUvsr1J5=7BdV!%%@LN;1@uD@Dx0GFzsP0VVD~VQt z&OY-QLa+k%XC7Q@@*Q{6Fq2%Esl9PV=VlZLn7;=g-Ubs?nc~iE{beF@!^347x5{OA z)LdmVgB8_jO%g2!G=opsR8g|@KWKaK zI6JF)Sjeioyr%WI_WgV_JCg!f@BJCbpN#lywv~uthqeb;vr}73tuXS-4C>X-?e0dW zza>oj{`${^DHRIZb~#vG0t^B zX2O0K8Kp|u)Tuq0Qo1(Mcw=QkNZXT3?$voukR`4-yh)l-r{>jY11dc`xpQh^tiFcR ztou~fHCic>b9$`7=NHGL6fPmA4uN-PN|vaFqgm~VQh!w_4I(H}-A80xc8**;z+0=x zp4kETG&s};<$T6Uy`oG!&`SvO39h1%98Bu#d{VRe5gzICJ_+(pmSq(>=kiG8uI?AWes&Z|g@pZhItq-=iJNjjC_D#(8yhD(TTVsx#@%^@i$K3UfM6 zimver;@~>Pci6U(VL-reL&AlL{F-W!PgqO2uZ+6dauhGN0H$pd#ScnWFCRXSQ_nD@ z)iQmDmFC9~v6jfh`ejk)6>)OK#%|T%5)kw>*YgJSNEIW45;~Dp9zU;+b)TL&tr2DQ z0QXm*2yVf3s_d}FlsqXK7T2=*w+x{=>4n@-H-CV;%4}TH$X`g= zt8!pg*n!eY`CIC|iU@><0VhSrG{@Vb+@jdqVE!+?sdLL2In6tV76Xub+`Pk7K>>Rt z<#$#v4M!uzdeFa>vh5=vRVWlWgnz&?T5Baj>(?xBbEcmA{fmXJC1tmr``UKb^LYpg zW0FIqwj0JBBbJp7`r^R@$-|#|Yb zyi&`7(sSNn?b1b7>SOyFVUL#@Zs!A4rP|;WJm9^*xDSZE@DK1$P@I75TMy!B6Hg6w zvDvvm&~un;DYckq1={?~lWQWtdZwV-T8P(Veqj`7+E znUu>E)DVxKRVdp84FhMGKz6v}H(wT__MPF;m3rCEok3>@$*Yu5!!fka#>>zniw%5U zSqbR!zKe$gMW49*ttZ&+VqNE3tPt)P_cu1ei%NO}+HQf)^sd?2Zw0W zR<0U4B`Fy+-N(o{Jed=B#{+#H?-RIp_`3n=xmKU-mB1iF)zhPgn()jkZ7XGMY^?!U zW)R}E&p-Z@i^Z$P?;h9?&-|`9ZA1bRH=Xoqj|<&s=~d~IOQ3`)|Hg?;F_LNhy@^Ci zUehj34!>%1!zsv(F_e48-K@g30nNzhlyS%nR@IB1Yt|}e=d%!<E`Mtbc85?Y zFbJa{JRJ-;*y`}@`fzle?a@FrDhxuI#xyi#?Ff$|c-EYiaC#>`8^AAtr9FO%Vk&gV z|9Bh#i1}vmDwQE)yG3!=i9%a277BWPw_=$Rwbo=uJjeES=hBkDg%Llli{Jd{$S3p!JhTCe9&fB-+nz_d^T%GJy$yeJ2~Yc(4v5tt?Axz zRk5*Q+uWaze6X7NwFACI8$Yi1$w36ti|Pq@fWbl=JUsaH`0pqakl)3sfyVUqd5+S}u!FMY7xN+olqX`@+%sCJU@zmKsriQ1lw|?g zZ0>j{QF1!8a~Ti7bN(lDI@7QUX?-EP&@vXPAuMoY+p;Q$P@>!Vs3=@*w@7zPt65;y z&fm0lngy*MGl6KTZ}-U_Vy!&lF9bbwfA}xScs^tAPxpR;-vUJV6hkkru4hrHl~up+ za(#+Hmm3P`if649u4|f_#e^=dzTbFImGed(5jf#y==pHyuYbN~3q`{($q8FwBvcL) zE+L9)D#VHuxfP9e2wN#F@kOB6#zzce87OSqjm7L=ze+Dx_;B;%e}qPrcG={w!DcUsH6u3lqg}85TQMb=_uA{&U81f zNy~;}zsAX0ULG=fc=RbY0t<=HmBe;ieMWUr$9vNm+#WEb%0#FA@u^ho`EC$tGAOb# z`IoEsw|#zQgUem|zX+oBW&{VUzAcGes9XFuxhA&BkHIe7B!VSt0$KRI#Hp#=cQy(qi)L*e>A*z~{s%ZH%p z%)rS*U=+D~y<-{q1lOA#9la-EHyQfCU;qFx*kd37c=(E#%5N#V_hHn3h(qdF@WUWd zto>ac0pc|s^985ldfnF!0E*Lz7aakB;b$(r(Z&3GUi18vRwsNf01IFzTFD(q7`Zz5 zwSa6VC*b{sWcL<;fyi2O%&>X1lO^fYvNk}V<)=nmiUNF)XPfYcc_&yaSq?F;FAcByL0RZ=HVTk%I1vBXTNO`cL)~ifn8Q?bCBXc9vx_`7mP4dW>AJBWFgf8V^# z_+G7e8D~#lA)VadnY#^I(nZDSs%#D6Rr!TEUi4t2go`}s^;Te}B1reSW*;4WPNZ*@ z;^o(E^-1^)^x_*&2PukX%&>LzsWkqD6E${HWS?4pwEy%cNN?GK=t11t2!9-&kyH(8 zs?EnKc*U+X@g3$XYZm#nz3xo{zPWo19(@IbQtKX2qfR0OR#r2&+t29wBo#Y&lA|hD zt8^mHwF3B1h-0jBB0q`9c71D^Y%#+cFah%6a*^QvUd5@M_hr_&q38^yIOirg|G4}r zh0mT|jG5}=(F)g@Cop~X3Oqux>cW&&T3FDXweF>j^(VHWEgSqROc2dkDHW^lTIB6F_nSqHq|@jq^JVYEmqtj3+Vov(!>Xq0=(ncDD8mYnRjC zv+f15;uXE0v2N!N8w$Cpx>wt4XG6D=eOTDZviAG8Ye_SFKDg+rxHV2SaOjAZ+1G85 zd8Bnb9sQG;A7(7uXw~^J!|9)%CQS+8aNNPDuk{YbUElpRf$OVf?3ZMDZ;3ddLCznN zuAT^D+#|Keqv`Q@<2zGE!3=1=p20oD5zEBj*Rd~Um1OLCO5$hbgJ#LNo@*_V(<{@< z=}}K5)|fscbj)f-zic?fxR$Vr?k3K>nWME%)D)kk{O%MW&y(4H?b`S-56|#9chOr# z+NS=y&%}-DFaJ54^9&h#I`~FEJ#i$<@>H~Js108rC|GZzsou&c&aJ8;M09`J* z)VVunE;IZm8bJCq!>+Z06vg87sRuUHnng)WZAiYqR5yikXy~o=(k&7F*=#5gdy(V|it7VaeS^oBV zS@*nV$^vZsnz}Vt#dvWM36=R-nVPr!3(w8s1-FDwG%~2 z6&N$&2F`jgoI7b}0CGl4CqO+u4FnF$s3na5k)`alblUx8z1Wedr??33Yu2uKr4U#G zC3Py>1U>n<;ZF!H*$0a#Iix-S*9`sytma2(Lh2QA^&d~@E9KhkmZdAPimi^WHrDQI zBs=9CV59C~)blKhH*$gY$0(X##dxK?nk+C4iXb>{iTG&eHN4MA2|Xh`*W(7@%u`0c ztm?c|uv#@V9JYl#|I0=}e%h!T1_o%jVH{4!eaCEdCENFFaA;tulDEGNGA8DuS_gc! z2oh&BULJ;fk4f!Usi+5jP)iL_B~&&bU-yOa(Ry6_;1o&;?*#1aj=}bl1SKMBj>^ds zVI01aW8?l*6afig?atqKyx!@(CK3%N$ zTBGy}^~_5krqP5P`Pt4U?hy{{A{xp#HaEsc%I_#`E3KIi^!&6G;(0f_d+n_ZrfT3- z5q5+|-MaF~vn7=>qFy%Xq2@GDn_64eXPSZCC|N4$I2T=ljKYZ{imRvOp}2%O1#}^# zsP9#pOUyteN3cIMS2V<6CEyW%5fO~{RK$(?!?eI;z|5o%2ilGA-7yY18nQxiT!`g~;BRt9YKp~;2f1vwI8T<{iME#= ztK8SAo|ersP-jC~Sdg>$Z3r&Ouz8o(I@E-24)R?n+Z@4ACtW&nM9^E|FV0`F#p{LjaDzZu6D|CmPbD6!oQHQQUlAYx#~W%iy119HmVBJ=krg3 z*LsV1sbzrNjqBHAY8g&^(Me9(X8!toZ-zJ?+Fq=gz4f9bCHzDW%g9Ng$HExNQ|PB> zr_ieavfTob@k9r*670bW*q9_jSEZ!82HP&mc2hY?E z4VNYM&J5PHrpoUNx87XHQWGlxrUXr@$aM?kxkqgh`mmI+g7cf=3kdW0fN_02ts5|9 zqG&(Lq;(S3P}sAG(9fw-2#QrJrwEqQXVNVG)X!+x zw2Zkn&D`#ct2QG0?%1YeDj^zx59X6LE+~McmqFOEtvhB)Fw1}yq5jKi#_yQe`7QVF z4rqO8Wa(}#^|9E&K&?gL(9K)hk9j6dN+m-Fjs0cisILQF&s5SdRHQg37}RHh_6;WNYir33TXy`}`_PB}u=Pm>95 zt$S`;o%b|&5NYnNS){ol(0dpR&uubPp+`S>4*Uq8e5+#n2fwCk!Wq=i-p}^G9~;@{ zRUsXH)>(P3=ea5>cF2L0*Y+e^0inkEQ8@pIBDjKxa~yu+6e}f=sLKC}_(|$r1^MRk zi($k&h?hBom2A1}KAN!0c zsH*F9WkLH`!R6dAwYWkXA@Dh7Uz|uB`Q>(C*2|D#kUl=`Z=EXp3hW*pZSAPSn@;V% zh8T?~3hZAJ5=<1INt%cArUhj(KlLP3#3aOyX5$+2BY=yv<^Gu!u?ZBmg{?gvn8g8k zQi(y|ID zZ1X#8wQDUkGAJEosFk0oC$_{S_P_O6XqWyn1ng(03&yLpm%=vJTc>*}`XVa&vJRtp zrUU|3M|edynYZ5dpSySDC9@c5JeoX3W_fyz&DHl}4g|;mNiMEOB2?aWoKHi!6yIB^ zyyO|XB{~^rn$auf*@-)!qnYx2YJzU0rK$?%5^w*c8*If!VrCUDcsK@^<&Fuml$uhUEQW<~`1?Ea zf8uTnuWrSgCq|oKQvyXSh;AD4A#cubrngQTF*N#Xzd-o3LV)7$h_ykUd{2k|x&umi zr=1i#r2gp@r&M5q1)@I~;*W7!dd(M8&t0vNU|{KO_1NySl03*P`t}=yooZaHpxDtk ze{Nj*=u!c#U~GzzMAFrI`nA2n3%9csoDY*sXKT_>fX!>QU_-5>#roOPF+zPd6Z@*9 zcXaFyaI;|;$mJV!t)?Sq0-B^zWRBLl1@^t~OvZ$|LW;|;XsHT3r6(yg!xEH#44T8(>0Wp*^Q^iEJCbhG>i zBry$kufW}OT+Ypmo{XKH6PbNyGSg+r>c4TGowR?xd@(L3aH{BQPZK#cwak6Mr9(<& zK}HXHl(EwlY7vsPNGAdYR?oo1Of3!ZOXYrP6io|fY7Krs6Yq*&D9?oY=DrzU`xSx9 z5u7&&TYgOs3o@`-Df^axBWwxh>ddkW%Yw4o{rTSZ1O*$vWg;1^d0s%EEMjGrRU&WprmqKcA^|;mTXN(c~w$g|uuxRMD|f zFCN$z>z6AVEgyH*v+RiR7?AKMi#~kd|BfG;x2j&e{GxM~91Uu)@>8TQF?~o2d^vf3 zOlQ8X)<`R|^YbF-#kzrHl?$cjMvAe5o=_wC8^@tW>A=`aB&(*WSo0Ty z2w04hm5Ai147MIus*0eqes_v3iE6{>14CgeZ)7~hdv+|_YU?brm+5cp zo8j~{dL_tSINCcDzkCK3dt>xx{p_WRv*twvf`hPC|5&BTWo4hGcTM6m8{rhM3HYjl zd$h#?a#?wC{z`M>H3CxD-2dgF0foS*nYQYJPRDalLy62)+@k>erJ`B??B!}N(Lsh? za)Ml0U-V+h(yOg!(sH9RGoq$IHL`vgG*ecW+F2PyFR|xS3MMJ`aPmYoHE6Dd=jRlm zTloWshtRV^gH{VpUbUY_2b_c)Jf*rK9$5l;5Y`=<7u7yJMy8plx{|eThVW448jsn) zUgju9sAa#qRo+pR+q8UZ#D0x8(adQ`hxlbd=1wBzx(oApSrPXVyI>Cv9=4H*4VEp< zC2`T@Q5Qn<1ICDreC=-u+JQ~yLRPIE*M>q{u0g@N`spILC#P2zGziwR`L36WMf$l) zm>iF?Scwb{mgDE+h5Ov=x3sPg(y=Tb8zOZn2eY_W*4}Ba?zNg`*(5@c1R+^(Hg6$( zw6_x0xTQhxyE4{HVWzK8Y1hWGw}w=3KPsr5jX<#s{5_*+WIyd-f3|Y%?GS;E)AuzG zz1%)n-#B=>fRuz6*O9QdGMfPjI*EYbMz)80G?lV%?Oe~G1r2nl8ovoK=wUX~T9(++ za2n+=qJeN{r@hUMXZ=eyA12!^PX}jM+#K2`5UXEhkJFaS6UIG@5l zJEPzjx}3Y%CQUEt#p70=raj#91yS<-LDZB~z0pcJVC<7zg9&e5^p>8=$D-MMWa0xS z!9|S2U6{ArS|cfrZmeLh9v(UpYEK2-FRGvt4+RRZHCsvp&nnvVyyBekOW=C1&gatd zf$znE5c2za1)Wsvi}uN=hD|L?->W?qjOy~#&#}Na+%`Zn7kiPMa8i9&N@{tMffR1M z~OooANwP*O)&@n?8ISd=2Tu7rD`BdU<`x+C<( zh$+-=^56l37)3%5M0MDhtUn$%?@wA(Tp%60OZHwe3BCv_u8gmD0YzdAppNXKhP}@x z?Nnf+dB@S^-@0coO5y#%7OCcc^2#_BDj5f59I8&#PP_R2!bQZw#|Hi!^3Yq0xyBJ& zSxsT@CMSF4td;IgY{_mn??2ZMyNwTq)&lCaaac4ML%X=6a03k*4 zFYSar9EjsvTn;JnORj{M5h?=>Hj~L2(ykdu`k&6e@<0++vv9Tw?YP8713p|$P%_(k z+;XbTnq2{%kQ!iDQI-BxMa?A7EQYp-*+9?1`|0JX$5xwZ9MhB7#qi;10Kd#HqY&(@ zsc61!$#d*YxX{>5q0bwEw$-~ZLF2B$NFVfx>`{2KpSaH5O!GL&R+VQ{iC|ZV)wyNC z*{{sM^u8fooC`Qq2%fQ!UUAduh7`M$@0#$f{yY8O)qhE4D%=pON%(4sZW62Dlx>o+ z)3}dc1+ZYBHFJ0hUM=o>6Z90vvcL2KtWWTZ&TW64rTDGBdvuOxpojF~Wbn@Er|gP0 zAE*UT%sUAcEJ5C zFI~dnWH(|L8QP7NVj(1UQz}2cFuoqT--O+q1xSu;Y`q71!+nAc)i&7I-e%Iaa|5XX`WIO)> zZ_%wg_K20|Ud>k^^-KJnyjW90h=?1(_b=l9Z*x8mV;M6q8}67HOl1JS7x|Sq_Bael zbw}(0SePfP$d=pv_E7VedPBOxykrL9`)gC#aNk4F710xO*|yCaG|!>Ox;rmUqFl0t zXHRkf@>?z$vY`e4durd=^W|s3F84_)HpTvr0O;H`IroKmHgEZUpk=KAsTTo&<=;rB z0L6!Y(uiS$J0ITu0C@kmBPVS5`v0IgEuO0oZMVN;f6J#pEkWo%u6}jmC7rr@-}EOM zMo>c7ABJrfun$6EirreNMF#=5S~9-l@cY^73IKfL?2(_G{kJ|j4skBP<-`BZc0&w& zQawnoc4c6~adzHAx7Aho%WC#slTx8#-XFmJ{%@$!QGzzW;@HoPoc>k?+PXS1UH&*@ zC@X!G>x;m`*BuYfQG+S?o+0$;F@ABCiGU9lvN%g z9UHet82icX@)qK9Z&d6Ax!HroqtwEkX)(4dL#o8jZzx8Z#OIifZg7K5Y6|TN>Po*B z1g4``Af!X4JH~oy%d`HOnarm<1By;I#vDJ?^q<@UMX?*s^R+n$e&hy5W0V^}5^GT% z2#y$YGMqZvo7$+iqH5+o=21b}?Vq?1;Ibs1EpppGx~$6Ai#?l^E_w*G)QKA`7%k;; zKi17Y=s=7VW)RJ8?r+;N3=hN%54^yL@z2&w zCQluR^NtXz+^`m^d$wquh}6}ql5MW@iqG2`rq6G2gEOm9O-7jpYF^=^M%)3Zd;dF; zTIH%RcvzbDIRthS+A-81jZiF%+QfJpahA(=ET(RJ^HkqD=(xUZ^z%K@Y&-hXrc{3I3mJ^u z5@Wh#1EtwV-EbXVJGy^bbC?NriB2ddJ(2_~nG+y8iey*kJG$da2q+|DO zK=?P4k-!A9QYyC{ycWzh)pJR;?E$3V_@@F*?vsO!>=Q69_NKVv1oc~Mmxh@>AJY4q zc3c$@eNnNG3o+u---R^7HyON;xlXZ0ae*6|Rzbwwx>|wXJHew8=ri2xCZ6vqKN=UD zKt2Ts`sst+1qqd3Sw4_J`$EB<#lPr=9J4)LpF6(RL5^`~kWDt3 z>kh-#)lBXiIFMxt?^E(J!ZV+`$d}Q29*h`$13(KtakOQCci)D5xG#38UX>qv!%9>Y z;4tJB#istfkrd=R1`7S#`@h;*$1FPTu=`)zx!91qRIEK~2}HUKw0p@9a4?m^M(jyd z{ps1te|WZtpRn+~BWXO}j^I3EJ6`=O%u$yeN;K;t@Jy#95CAaySZ*Nj(Eme&?Dt5d zqw!P7AApW8zmmjj-(eb#4=o8b7KGr>@6G~)PVZ+Ay7X<(#|DY-gSLJQ`qf2{ruB2s z)r2+HXjEiyyVAZr4h@!-hdACF1yP+Uo2`yU!}$;3q7h;TYgR*yw@U)o4z9td;7ID~ z7=Ii*VBmb2-EXx%f8)PGf8)Pm@5*>MNjIIm)BYW%H=y@4Perv_tYiH*2x2S zsF^b^8ediYB3LRAwXC)uVEfBo|F3{k<4qGb zu8M^x`obof?;po)7)624&0ZM@*10a@ZK<@jE5+>$jqTy9aZ$!Bu3xX18kDH6I!9l3 zgxFClt$UxSf(Fd_G-RL)jUs&;q?l+(sa^5@mrXo5Wi77R9gz7-0}?itfH(fuDowkpgK%vG){so5L(33f+i10SiE8$lO7OD*88_O@&0 zc)ztdLGUvSF$(B=Gp?ex<>N(~$7ZPVY^|kw-e2)2`7}3bo#I`A=*4!(uiQIM&MQEMrQ|1WM_@4rA zFFKv6LEKFW!G0Q1y*6+Hxw+U_HGLUd!YE})F?&v-EcK*PeyXDV}pt*17Y z8ml(`q*m!Xl{%8qURi41d+@=)$UfKl%mReIE+$*eio(nYF`<%LgRRDmk}}HD)#i4dc{aQr5VC510iFv zpvHXLtNHN1jD+Cj{E~le)jw@t34#{Xg|-bw>C^S!pdLHi&B+fUbeW zWz@?SF2j@yc@Xw*sq5#U2g(6RInr!k9(QNqrlzDsfl>udG$ zBTatSy4uBx*!}v2+6fu_Ztd2xiXlG6+vvdT&G=)g5UQ!;+G8fLKb8D8%XuykidmwA zLPWaN2Ul4-jRbsfbIff$%<1{@TL>YsoYASY)&V+q%xRG*PWa5EJlGl=y6*RPdyn9E zOTBOsct-@HsA4CSN3^bh|3G)Tv%vzV7(!~s54#d^p z`C;ID@+;yf9r6jjDk=ufLUR6p2Xc8%Mi=z{Wxz-Acq1mJ{_4#O^|0%tYan#vQ1!DM zG1smGakNKQxOf@sw*)1J%yL6U?i;*_>%9HyP3-TCh7b1l@DKD?_L_hf=-q=#cyUw@ zkStVaP7NH3pQXJol8OjpDd9!1N+wsxn1ys7WHJ=u7YI=|B{(` zgH*p_FI39LID5}EUOQg1LQ;$u<#IQ?fiAV?R^v?ekQitWIQ9#-DN_nLUfE6pQ(p z_@Txfx1qP6Fwqq+S-HAz(3)ZaliQbr`qd~)r0Gww=8>}M1QAJvfTnY}fT^mn-b3@d z_+Fkxb=k5No3{&*Wxz2N3yibtk%r$1$$2K^wC287vtL*Ts3TPLKzN+975bJt2%c)U zy3f=KDmFwXLf?PXON=XnOAwp1aYY&_^=$%^>75^=Ewkc@s;5hgcf`!nxAkBMsKcy0 z&SulFifTUbv)jeUZ-DNDj?2WjO--RsZg zf8x<#bFZ57#HbNp^1k_&!fnTy+~BH{Z}}jxJ$rA<>Ub)YbsrD_jaPE2oL!jCwHe8S zejY@byB zt0&D7vl7!tjc)4L-844xhR-@c3@D9;rfD!`QC04 znHupI8UwnU1A5M81@^{><#=0F5C<{fqB*R~L2VUPq)I%wS`)1Am5JjCWf2Q6A+lv+ zhljr?5Vo-PJW2{U^c$b6lxM(+6-g)c+*l8iV#ORX{%l!gon&^q^3m1!?3Me=cg0es z{6~W!^+Ko3?F5l`u*2n(iY11!F8-tx7j*L<+?Aw=B`sT{Y(8yoJNPkVT#3<>P_6Ap zKGekCG6|k1TH9YV=IhIKueH^^OO>pLAZ!{yQz_^M93&LuMu@ur&FJls*yqk=>YAr) zOddykyhdvdwSPwKbcKyhk)bChi|%HRg_`#i5on4={-uNN^I5mhKx%YA@v%{PBGh0C zIS^`|A#Ut%M~2JRgVIM1U{sLwN-qdDxmL8F%m%2Q@nWlk{YP6tlGNaza9vN>9sr(Q zAXoSL2sbjAOaQB=h=Yym1>7h~J`KJLa)^@Akk)=~iAjL>I9Fx>p4LrC4L^^~1KS{U zDio?UXg%(W%f-I7r$P3R$77npUPUUI*6*oOD@3Q;)%f{YU*Np;R@ieFh;iFx0eh1+5cjiuIO)mLd0 z@&+ypp%oUSXeR5WDAZ*TD@D_D83_hLndMI`d)=EreRTn9IJ5>7+)MqgQAq!~YT`um zxdM{9Z>|*P8WD{G zyK^mesK-TuY$HFtvg{#_`Dxxx!@jgfy~#|+Y5+sJ^)YLevP+dEf~!p@vj|{pyt~^# zR6Q)T@*F$nD-QBE*xKTlPE;%9%2wa?Q6{a(O|MiSS~gmhA~V(4%|MM>ukOo7^lef!4nf3VKcnAQTU_u z0^KVWH==zR`y6@AW#5CE_Pa0h@}n>_)i&cvoXrLr6XlyAkACRq0g6e8x;@elm?7hJ zR)>liWJCUG!+KpFn@hm**(5dDEwDEB0Ht;;xg5{D^(iQo)T_mR36#zDXLw?5Qts?m zsxMe*km+jRYe^n_ONc!BF;TYl95G*_jY>U%raJ71>aQqKFI?b-|bPWg0a8RjIiHT%zQS zRxenLmu?o49t?_I9Sr8ojq_(JuNLyWBwdcrVGt=;`EQ=B;{~XPkXWKpGPw@QjaSGA z3F-HYGbHc=603z>=LS4UmV?JJU2MpJfJ_}97Kn2#D~$L2JvyYD)Z;SLaju|7p~Tvs zWbV>8*z4T@u{v58>}wXHwR|#Ubz^1dyNqr_$0Go?NGe>a;|y$ zPK790A+4!{Xmb{FOD$!w?(%0GYIm60TLwIyYZMSZgn#jw68L-qS+fjz)0Rdb(vXOq z9S0Ydbq-y_X6LJGjX_#oDMXChzuf(QxO?xgCew9qn;AzL1wmz`7b{pO(xqF*fCzHnUGD+22gKGtpIVFbc6mAe__J+=|KktLmsh5SKY#pEL_d>kmu8hLw#RVA3XmSuWzf&9?SI-31P&MK#$ z4}VG7e8@s+=#Vq#j~L={JGF$ksaXHrb|T83X3ms#na-KCyOC$A+LQ=ARMG`V1Hxc% z>+Oi*))yUL0(ThOIo*{94}Cm7eVwEk)!;!=R-r%C!cKoqVW+^441*XiyDm)K4@9lY z{4S}Sp+~PQ#xdpA(~iYK&T1m9e5pRq@#Lrmfd6+uqYVRCw(cBxF*w`^MmG{&PAj53 zm-)q*lI7?y=>DSFJu@m@p(201y4qfAQ0+EIZ6b#Rx~~^q&J>=8zlf74eIC@f0zQ;8 z4#9wjRY)a$75cmg?$$OmzWfY3w}g`(%2+i+hBJNFPH?ZnC{&P`=^LOCvb?p>BYZSa zMID`veU#lmh}mQ`)G*&=Y7CWoHevUhGM%47_$(@PK{*&~vJ1 z@z6#S(^ScvSieX#`~?^Mh_+T-vVKc3_3(K;{NPHz z=h;g$O__XGXl!qoB)*c_g_B zOpS~m+a?N2fk?($^s7=Zvc>^_s~1JA4DjL+fuPN?fp;A3@-&N zt4i7FNjJW7H#sRyeNNOC0dE=L<-g-pc0_0!=3c<#;bR9QB$G`S&sM)j#@1%?dD~x_ zdy|ody~i-Q4WJ~t(B4bL>V!%^sT~{!(y{ka5&5Om>d-m2ULvhjw2u5-8VXuYaOs-p zOkpH&*uO95q^v!JHOP5pNPf)l@8b2p6$ECmCHnzjt5zdlB7~P8PsXsSjBWEn<>DJ7u(us*U9cY`{ z0I{QRQ*z{ebd@9bmQ&rcXO^jtFq#>Qwiny2fG8Kh5%FHnr-kETf)=beYra|VS{)D7;b5H_M0Ylw6TQ!Kg75o^2H-uYR2;s_}SehO6D=A?}>B-&9|o zEjYR~__H%U@mk32a9M0D0zIrNT{~61jHu0AI`H~o`1d+1a1m@xAt2Wa8lNj?cHw?2 zrM@hQW}vvx$l0X4w!-#;wI%lXc+$EBHF?#(p{w!5ZOx_mj}B3!fF1o@51=`02Ls4- z;E_+;DD5t1x_2K7+h4}RgGoJ?a)O8P$j@X$0V$i@EJ;VSd^d4Wo%o--AoPm-?QQd& zsRVLS{NgcV-I6gpll*HGgcCUu9Ktd8yQ;HPLr|X3kPURw#g=*K)WM#@SbbtdK7dzP z?)c0Lp#}W$w0?E>?*JPL*8sl#_HW{k*jMrA{`W5_kQ^Nbr2I@td^qn(I;9A{z9f1q zXdlWNQ$m@U$V1^fFclGW6#EyV)W&}n|12Did@Oo=tU8#Q=x}I%t7q!X^sn;eiEm~9zxrprA3LWWi(%07%F9NoX6- zzJ~$3dCVVvJAHW&&=%XYuTG%oh7EQt34qgP-}%OV+Tw)813Q_O_eSIZtF6;P>tFS|LQ-FN^ z--56IC7A_)IPB4uzwmQTcpA_1Z)g6Wyu;ozom0aSqrp|`QGigZ`Cpv{Q&qI4p#2`j zy6b#G5{lA4Ivr}~;Os})&`Lo40$=I5!!)o|`r)7Y0D%E@o9Q8El#&RHoj<&iU?7os zrDEXvUjD$HkTVb26BJ-LAE5^#=Aby+Sm@xd08mf!X|J77R& zoJ{hsnre6kCQi9_rMK}-^=7LEaJl|7owg3|2~?Xuo?WG!`|!4dzKNJAT?>WCme)yn z-TD$pnWJu{XOd^Au&FR92AXoCqpLsP&ArY}toK*~6Nlgg4+IzJZ6j!`F@06t~$v z@!zmB^ISn_T2Y>Rx9`ZAsEe!9s$wMp3UQD<2kWmbFNjC&pJBp8qZ9yibUAgpQM6sN zPD|nU`_^Nfx}aCX8w=63XS|O!sb9`5-T9z@3*ob|*y$p8UKb1s0C)L~bW7SMg=7C& ziaokeW(_B6W*!cS_xz)4s`c^g!B($`$)UA-Zw9Wxl=~U$rIS5ab$D%S$m}n9n-8A< zh$%+zO(l3cq{yk?EW|#G|0#`2s~iJVxPmmy(9oKIUfJbCfQ_|@Uei7Uv7cE?-u{84 z$`g7U>-N!i26gh(ka-!|M~4CqZ{vA=%rXI>g984`P8)QvW7BJWE&A7IL&-pz@GTT) zdql}kHe!9<^RBmo0nsnP3WWh^M{ANK}bUVnT({|l|X1w$bSe+SY^jau`r&9~Z5!I?TE=Z%0IXEZpn&QM&2?i)eEjAlLgqVxhNxDAzD~di9Bz_V-ypxj~ULo!&+!uaC!)*hdD7e9KIpv z`U4DZ3P|ex@<+z2g=xLfceDj&V;Aq+k-}2`AQ_KkD<}mZ$QY?VcU(Vh$i;!u39DC^ z7K3zX9PO@U#IgM7A;Aw4*nL_V?wN6Ol9wA9s%O*1hpK5hm-M`Ks7KmEKBD}3meY1@ zYedH-#I7r4V)R$$RD9Mg-~894@*iZ=8(kR_$pmoZh(6p+c-&*REJZwp;HUz6_v&&_ z)0(oOQBwQ$hJ{xUlOYHE)A{`IOabZ@dPy83qobyJYlyU6D{)LC;^IPczAwt!+$!4L zAn4=}q`OTnDnG!a-IaEFYEBzUj`|Imu^fF>J7btRIGLcX#;f2LWv%dUx~50qln1lW zSGMKL)<-Ox*}js0?vekVSY8$D>LvcdT+8iS6YRw<;;SehJTx9bz^76%l*;m9cOD6# zI)q7(^;DeoN-qA8ZekJlV!hmbRq&_w=DCQL+0K9)V*`!EW-w&E_#m*~3t1}&81Nq* zedR}@H^l}zm`8^y&5(tna5t7=1ev-wY4+k^FWt{@XhKsje@l4 zu6Ygj>E&IC=>|sWp=>{+^=QL`)l=KL4Tl8?c^;V;YxC09l!2H(yGo_v=*r^t6uVi; zD(l{$S7_DIH4_J+k_JZ3AWCIs9dLo7V~~{6jYfJ_=FIH+hgOAogZ92!$heVQ7prix zB6?)cEQ+jy5&hakKO0y^oJZcILxB&oLkh=i_hNXj4`7M`T$#!vq8n~WCH_S%{LavK zo%M#$Ds$DG;M*39&U;G+!jQ6qU$37afiOrc+I0W1Eyt_~U zLML7S$ve>*0bYTWYWH^%r8sBlJ@(sO1RY4azv~7phc=DCe5ny3^Ql2^)%^_YJw*f$ zlVoNaofOJKcV#~hn3R_mAH#(BzdCQYaK~DqpkUlY&AWGNjHrxpFjTVb?30nqW>)7O ztKh-$@@n^v%hR*{{f>+)a|EU)rB*NUP0Y~_V+n@sTq$D&YSRn576K$t4-!@r#%poL z4v^M<)nc#}25a(Cc=%fAw52$9_8?bBvk{W^vHl9Df=(QTiFk8;`I^S_J7)5G_(`WJ zB3mM8l=z-vcoxHs<-MsB=cq5uEZ!|JH6F}x zYieqaXQoCY>!3KGj$^5cU-D{aeg5KPi2O{yC4QM*2TJWp%s99L)DQzYJ%Yw5&Fb{1 zPt7+?Wel@9`)d-~=e_8KJM3^DC9Q=1eONi#9d7gb2e9%jF??E^1R1Y4hsnXM8%opB z?E#|*xP154?%-{&t~`NzaAtLw+U_B2(r@4ID6MaI)FIh?u&ylLU8oufCvkGlXQY)` zow&b!=p25j{aw-+xO1ven=X12Bu9Id10#>X{%{90Q>2den`U*0j|r z922$7?GD`Lj89KjLq_j@YKtBg>TaJ)1OdTJLn5Bsu`Q#Wmz`>Z41B>S_fV78%m+AO zxFdw4hBG1cEmvzx)dg?iD!$}*h6bKS%a~_?vU;9j}F86TPavV~UV zH_gw~ma0=0jgjLku4HC9c54jUG_Q-AAC#xB?69W&iCx_ZF2&umr8tiCRmKi1VOBkN zTG_!Or{ODheYrK}DYt#ZZPvd@H`1wcL>uS@BXJQSO;(K?T)WY%pZLUJEopy>EpSStWptiHN|&dX-Rb7+32ug#mUxbOod)1feIOE)K5`luQ3YM&~pYW zOJ1gq=SyR?hKHpK|IRJ`oVj>pae&^`Eg|!(QXt+QsV`YG-~Q<#z8;(_jI*zV@Wll5 z+K)ps5Q>T1l@)&B(>0jMr1j|$utRRMI-Yr-{yuD$tJt+U?e}f(KQT35H^Om62wk%ojzy zH83~)xYNvlgS#h)!u!jL5q=oueGGW zK}dOau_@9vgycl;n(~aW4RETzWNgzBNU79li0kiiNRZ;3S9{+rRIrZFLVh#awJ|`q zJNFOXx5Fmd_zd0O*8aG^9LH#vUNW`Irb+j8%LLjl5c1&nI@Ou}@y8a>@Tg=ZW`i&d zpIQhtC{$CSF$YrSm8Yh)Y(xBJ59SRy4>hn|Z?9ap^B80{H20AX11$hwlzSI24T6fQm;34 zYzv}OqAA65Xa%T3L!kmxFGN$A<{b%ao?6}oRMf$g_K+1RxOS*W6Hz&Du>E8nQX(1* z62W2JKo-ppqpc3L!K!!`MSkDv`xC{Z!||xPR&DErs*{Ba6w93&4wr1dSix&6c69=( zz=8%PM9SIj2=U!L<$U<*!KluA+BT(?0ubaAZM<*)IxM*=L$;ysbPJS0VHRTS*-4ot z%q>Cn!yw9F?{KC&7&~+EgRBIpwC*`3sB{Z1I(EK4sSMPP9e>$gHUDUAeP&?PQYj2Y zKbr3{jHyij)9{lHm#*+g*YmKgvs>yC)TTdx-oN?0@tHE@fW1|>*0V6uRCK4LR)^?d z5;vg1{gNn%PQSd2#VwH9v~SMg?5b!8NJ;^<>gI9TLXCnYN-rA=5 zN>2bBY^d#*RI^`|_pRjh@wiTsin)rfb#m1sX(etxS|il$ER^_O$9bP;>^hzPGAkP)sa^H$MrIfXM5CrtLmKZ5#f1- z0NSok8@06>**@A7L-{YeC$VC}Q&rJY_x+3l4t6a+u(cgDDEwgeRP_Zui7;>c31pY% zE&sFool2P(DshTqL-A?1ED3FI7?^u&$rWtgjR> z_f)+sFH7M~zI}H>aSuaH8&*c3JN0aVuM1ccFzuT#SvyU=CRhqBgPGN|!IZc=KKx%GjvHYb{}yrdYxoj5W}#;x`^rwq6AXHjR0Sb_)4`3f%ujtYr9^i{S} zB4-txi?>6_Qp!)bjidRheNpUP*Ji_g42AI!JFxuGj-;!`?3|L3EmukemaH{X* z?v5O8SpPlbAwnlV``E!jDu;JBKEkDB_8vK7Li=6S3qvJuCkHE-At4HaEV>5wWYfb( zi0{fYoUL#kI*hf)ON`C@gJ-J+8D+2(jgu3uX2>y2OY2^QhmX9T1zF`n%Tjw=o-(+& zCv2Nxc8{TI-c@J&!sWX89Wm_1=&MGB;KLLr>t(VTeen;OGe!B}3-Lbh>F_{LmlC0{ z7mNZ_kW2Lj7n5llZ=<6JMM{Xn5qYoAF%VJfS~sIMMIjWc+vm$T6>W+rpK!0SzajU~cJD z&O+B8k8&CTVkps`r;rl0QpBKeWOhCg51T4syzEf+7C=nLqBuIOX2|qKWN#+RHdSCF z0&PqdHu5Oo>u=TJ9t2{^|I6DFy;1+*`_>HGh@B!@Hr5_nJR$+D?!Mf}aq7JW=LqE_Ghs7G z_Oj42y9;s^qw7-yaUagO)U{S_x3rcwa|m}d2>8vd?NWI}SY3%m1i&U`cgcFktoHlq z79egY9kuG^vK|aHdaHhkHsvw>6N14yFU;4YHnJEm=&Qy0+Gi{uExa8$;eU|le-af$TSfB+_6H4ILqkO1USrXCAQ!R_h_U|< zRYwXGblHAsF#0|u?z1t2Ww~cApWEi57gPD+oq8GLc44r@Ir%}yTdOO)lqr-aCM4VZ9v3AoZ9JH}fzl_jFGI73*Li zZLEMd`t$y?AszZ!t!IIsh7X+pG|R(y=i9kqdA|Nm8co&E6l{>`I0pP`hhy(~(`xs{ z9bq4al+j$xbUQd1qdZ7Yl$t7rKT}n%>bDu&vQn>ocnPx-MCSXJc>ns9)Fxbf^H&QB z_^(2$S^*RbjOl{*u>_dG`qdb9^h4Ky1m(&y-S#x%gkhSk%p%e1=}9w*!^IkzoX=W5 z)4*RC1>MyCA@l2{A?|u;K7wX$mo&C_uT6ldxpYlEQky#ouQir~8OTkkH~1(%J9*8Q zyZ-D&FfhwRqQ3Fo(XTO~|3VA|(j@Yqxpg|<|7grlnP!g5HfSKisl{40t;JX!pLa=w z+`IL4_+NzC49RC-c*EI;ytjS*lz;j1|15wJG|_y`kD>a5S5x}grXoZHG)ij7XdGx5 zO2Ijbj;Ln^ecqW&*b4AjLoS=l7yEUVz`wA|0E#Bk zQBK`u?;Bh_@Iz}6pmKj{!J0@Vd{&tJD0oaUNfhM_mfk1$BTxnip6IiX^VrN1%M|6| z-~(Wtk+nzR+kfN<+Fb+`FCc1RBk%d25ARax%HI&5KNGbs3kE5MF;HW0ASHw3&HFaD!z<$vQvNC-SoRkC{Z$t%V| znG{1EC91>6UwD3qC50V9b0fdf3yZze1SRT#foJkR@+4DIv>F0F#drlQvC{oZW(eGau#@ETIw*u+^~|-A^6t;T7>3a-ri}8KQqj8qhGX}y z&RY&}TZm-+RCDD78u&~+&J+K6x+}3KEunt8LWb8Y&b1GNpEj{+#+HU7CTs>k`lI<= zW?A=qfq==>m)f=4^nHc-en0Cl1&aXi4Et4=3g3<_}5(@pI~@HJkF34WNzA zIw@GYE%n9@VwJ`^9pgR?z1o>d?fu?nI>!%IgOaZ`>kdeV`)Ev5IsN7&T^!{zlBP(| z;GXEi_}fA)XrAc?6pgdiRJXcm8Lmzi`-Kwq3Jz%ahAwp9_1U@z!d9oJ)@OCIqWp~C{~U`G!abL;n06ie_#SFJ?I?Nz%}b#* z69aBTFPG)L+J`jn@8~OwGyDe~Whnu>E>5ak0^^Ws=wMK3stQ7-p^w%ZbbAxJP0f6TzG!JE({ata;(TRGtHg3`d036zMK80_*KUds4n zGdHq(WPO&(KQ~;ZB&o&BF?DSC)ob)mom6vk7Xmqz2m3jw6=H;rxCp(7r-p^)gM}ZD zCQD)`PRhE1V}v37*esz1wbmsHq-}iBSq3?{`z( zPt9!HesGGZ6`&YAUeOYuK*wmwLW`Fjg1#WCNKN6#<2W6n1sU_Ug{})&;Sv|aNK0gq;kmeAy$jIwng-pki5)vo_Cw-GMvI8dkdQCX z<|sKB+&GL~IW-Wp6c1QkO#MQ@ibM`83MJ!j!_QEac_#mQSmA9z{*2?RC;P3Cm=`e` zC8^v3P_ALkGs)$ScT#hjhT{^o#v_$>xot&J%i?9wS_y$!&AbW-R>dy$^SC}3#D|1l z?i|^pw+#uc$bs;Qflo^Nku!Tp)VVVRoVUZ*8-xBvD_O)aP&rjdbV)bJBg0C*VM^&-AM*G%2L(Xk(UH1Uzgf&cIhmMkG{7_(7U(+aYBP*y! z3!f3R&lU%EIO(};Azo)cRKgI32a3NZRVep!Qoi@q0nLM54^s#o`vP@r=AC#jfM6bA zS)gTSgb3UdChMXTmTpk%AeNjPkh&_8CBNybnsnVFiWY48s&$W`k8Fo3i*vPxL^MUv zYKt~oPJ;T9=TjkjqP@8iMyND|JbSuA@tsW03NR()=J-PZUD{;|noJ|DzV+v>-5WN* z%hXvt-v8@@>WErz_}GNv(+kA>ImwiXRqJ;(11^2WaeU2bC5An1vs!UFE-va?3sc7F zyllTtbv2eYoUk*ER4WBZ4J^TB8AEHCs_4v<9t)T1*BDR_YO%zW-T)!lYaLy>oiyUp zJ7XZmLa`a67up(`q_Db@?Hm)|<#pHbgfGO9;#7@pM6U<#i9TmiVRQ}M01p4KX{wEt zh`38pMSMqCuTVwr=P4!pSn1{HNINA@k`Lu?uIfJ=*0F%Kf9$*1%y3rdHn@7F)9n{* zj<=3?1YiU^BoAprMeYyPuTa2b>(Aa&fxU|@Q=m>z`td`|fwdV1$7-yz*THlmlH{N& zxV`j2MQEwJ^nr|ePSedf%{th5+?OsOwyRD?2^$_7!w~eNmM07}J%09HAJO{I%qdOx zs=QGLw|M1>qB%}#%pkS2OG-JgU{xC`2T}t!tL68~(w>?MhBp^35L+(~k;M0xpY#wW z)Y@wud}jz2Nt*J_%kZ?S$T8#Y;hg9?4xKJcT()UFHU%bFD1aHsdB?#(08ryx+Sy~C zKJplw_1VSKK|?wsTOsaJ4hFxsU^F=s!A#X@vZyD8(+%+{s@DKv=Tm&QC*R(o4fSd# zj!Q7!OU|{{E?l1#FMRq1_)TtaIOA-a+jARiFKN0|v;b&7Icv%&Kgp#p{W&YO1LGf# z=;g7M2;ElWfrt*)=RU6M#cqzGq5KqG8*0*6xjG~|IIlY>MeWw|obFxBzY+Yo=> zEfDb0LD&%j>7}tgumAnn;SD$A2eHGEK%tR=u@9Z%Kr1xD-+fhAFJKme#j;~kF0=Y>JSPJ}n#n?qe}ClPwP?m+HsK$oAUMbq2n$-g8Z z`coTJk*)h-Io&R9(;ND#X+3x?Fd%3;EgSD&Vkm2AI9Jsmgoj-K%j5Mu7-W}|a{P`ItJ`U-P_lRj zwu}rlq&t9j^wTHivZ!Vf?U?*B1j8ZDlw>k(-O`bKV#;zbL}|Qc{CR0WsG8>>9V)H2 z?Ti_$RQ~=(I&q$}PR7|ldHz6tc~D&kyijh0AKYi`j_J~}_q3R}Bv^TAB{UeYc8z$BOq9Oc(if+&2-9}a`+^%l8>}{yt?DybIK^<7| zzWPb2prsYBkFCd>M5Gs@;(>KH&Rso-dd!vn;Px7n9*W3FwDbig8o7jh=u{6}I{~+J zK)%SDRz+qW#lKk>oGqJ+&gDwtE2CcYl1~D2E2I0smd{xf&W-!AvQl6z6LL^kiA9j2 zPndGOdhC6X3SF7Ppwc7x|DMNsk^c(*v2j!)&6OT2w&lEsvDz)Eihgcz3xAF`9Y{!F zy<9&gvSG3&Xcw?AvJWQ{CQzr2^g~cBPhaSY$`Nt62%oq5``)=|&#pC{9gSGkZ&V7d z4-}$3qZmleehDd?<6uMGJ=g7r{AjZ%>xP@iW3+kwExjf+H>P!0JF*OwcJ%w!yz>w_ zRh}*{&)5FYY`&@4aKY{183men^42V%@!icaQSb!08X|K0Qg@SK&8y3t=fE(uI_7dB zGd3nTwO)n6%0=dLUY6Q}L(pZ`&P8Y;IVNK|NiTFqO6??=jV1AFfGX^w1CF&(^yF0O z0UK$=sz5*^Mo*B;w3VT^=A2@mNiQ{CX$c7`nYvAxS1h9(hSoUQgtN_{t_B~Tb6SZ6 zmQ7u{>do4v_sDDdm4kuN%0j)>6Iw6E)sP3rbEf4voG}hJK}FVhxErJ$ByHx;Oh7V| zF6+*viEY}4l>Ahxc^kT8*OS}V?U9~thRAn%#f{Bv$nZUN+Ot` z^oIHt-~4YltTn#l-a5QfEBjRau1`@AQ^5yvl&>epkJa6%{;Q^EITnA~kim z8kjKeLk7&@(aA?bFdj`$V~A07U|qG4%j>k+gB0Ag%+YywQBkz(Ef-3o^g!r+s5%J;KEsnK6B8N|FbeqnNcIs6}-iX$uK=jlMIR}$9 zw4L}W(g=Z+4ETl-9mF0>0PAlse?qYxICIFRKv9C6OfvIgjDYArtF1eCV3M zxW!C5lD`V;iIz$oX;cz54gIjRNK>Q_EsXmx2BG06LLzD*U95pxEoQk-$I`PA>e{T# z#?$KGOe4m+6Rh}eD0}`}e0gK-n*X=>@~<`K*;?tHg13hYR9Dy%GYkIa=XV-7S%rq5A4 zN6L|4vTQ)9_s-2(L4UhIc5SH)F!dLsA)HuIE9bA2=DWAGbR`p_-stAlKcfYmQ7oCs zY?+*GZc8O-Rago|22&iawI-Eat@ajQ)h-bNxblUX>M8lxfOR-^pkklmSl`>DiUNgD zAvxTsuDo^?)T{uhE_^!p3GzZ3(i4ULJ&^j@;7i44`N7C1ZNLKn$ku z(4}7QMNTyq7%runSEg9tFdpzUDpcB~Zg`)!fQ*12(doB|mYyIrpFY9gr;^b42fjKk zZ*MWKK20N)*@IAs=_|cqsSyp+5;}Rtwcg$hY!^bBb}>6oGANa_p&SzFAX)p<)|soK zfZOjufy;YZ1oQ`JO$+WPhm^kefublF%*B*I9GAJ&Qt-cSude3OLw`0j?cVKM5~Fpb z!FNdyMCF}nfO|x2gZ)KcCDf3<+N%d4UEEypR9ihYE~I@STTjl&>TEN|jF#s1ez`ZU z(qs|SW*P^kJl(v8LcnBm+S1?SLi#>+aSz3DH9xX z&bq;?=r{0TT4=L}jBRgVZg^{q3UZH97URIS47($kfN8Fwm2ql=#)=brg~L8loH#32 zcPgr^|0F`p!Q@4Lq5M;)h}7V7>C^1ivP7o#d0PDmy1AXbsRLXfmjaQh+AfQ{GB*df z0tZ_w=xLZGEcaukDKJ2AGEb>vwoYKtl2V4HC^*$Hm5=shxI;4!gFU0Bm}%R`Gh%%t z7VkfY*j%4E9;6WG&m@#pIB6`&0Hd?zQqOmX<)tl>A+P9HF~et&igCBc_ab^UQ4tRi zx?R3SHZ*d4Ad!Bj1h;Qx(bD`7*M8yyGLZ!w*7QctR4x?n6h9E;WkK|hhbr5euW{&}(a&aJVq$V_8%Z^@}vy*mRwzZR1>9U8;0)v);QHgSM+e!8G0xw2u zezzaGN7~>w{g9SWu1U!ClqJCf2_&B&R6*&WjvxvC`)L&svVpVfEY(flkXCNx*auHb zcVKGdH0#ff@Wy%{c~9}3jild6Ss!1y3PpQ&>RCh^muHY(>K^Q!tQ`z=g3LmjJ~{>> zuX(0&ywSJ`|GM;6_WgTeC$o*{VBLMR8|J_uDjU zzl@G|Qg>ROkWvYps4g&F?R(&ILa-$aYT7z?g`EPb{i%uAhkbLrr*Eo0iSCo~(ef(o z>fR5S!!gPjmoU@5tJvd2InuI*=j{^XP%M@0P{RoNr6QMoIETWi(_-n)QAE|M|QK4K7QC1b}vSz2j6>A>tWS?3ZHGL$}&w&)q7Tfq;-y}X3WR9d>uQ&nB z3zqrnqPA>T{(q2B`?B?=cTOK8y27pF6ilSt$<|o(wF;bvMFZ}rP8$q}9R#7f#eivG zUEwuLWAhZ>2aNUdI)Tc-`8Rqu=`sdGgE$37i>s*OThU+cSpBKWd_6iFthiHj7hul#pHbpLKv%0g-TCLH-sLvm9`?=1Vh3>=L`e?{MF9~Fc-yOhoAe*)&X-TF4i z?d$M2_stB$vwt3irz@6~S_*i@?TL2Q?tZ{PM(w!VPB;K&;Xipu*B=5ReQgW7Wrn2` zb*jw@8zymAp=qHl%YyP7qrokYedZdhY*C-EQAWaA)50N#6sY__AZdmChW=z{^)K`% z;6jbC24^+a@7CC6+|Nf!%TV&|TI`x?sf2SkEw2AG1lKT`pagp$p*Y-52Qtw)fFrR{ z_y>RwKjkJ6)mkL<*K|y^qi}8Usx7i^YOg3gA#vMoLmLxTxIK3#!FJQMl}ru)%Ug(==&jh9`%t^sT8d^*Cb=l2kZsPT5PNz}QBxwrCWZk`%Qv`@m4sOAsl*BK=3^$e z>r3U`r7u*5QF3iCr|}WE21_4g@!gsC6bp#m1uSLJqIvNgI^BDfxBD62t{(wYV2o%~ zT%L1gm~AgCl?y6X*!T;RFqcM@qT08U`A_}xLu$ofR^I2x$&qqz#OV@E^J-AG2U>yz7bxOwW;tx;QHQHi_#ONu< zv^-gFwNpZ|DqI?3WVP=+RD{DFF9+Hal&_i9_gONJ7rG1J%Uw>OhncmW=kzGIeKIGh zXSeyF9OBD-L$~lUG+(;2Kktk*>5s~>TQ;FIGL;BVNdL%7w~Poo7|;DT_`4kTrk>z$lP* zCqWe;TYmWwE(ZXv!`}uvfk9g=e|T1K z0Bj9+1g5L{jUEJMg8o_@Ub%f->cX!t!i_t_e|=%r29);db-xazum1{W-veD0JR6er z^tZ)-4?x=yKVts>KYFoumA2@7((7*>QjNHG+j+!)bW#E_Yk;}#srr>xr2^gv*8c25xN>C9#EUI}z5g{*yjf+lt?B)rdqhxj^tlwm zxuUNz(;5#GHQzoOu|IY#By+HSnq4e(7P)=17fWrUS*mMGi@%{g&mFTeBLF;3e-}$r zHU_4?-u0&ubW2|t*tOK}_N+$4XL3YOT(_{t`TPtIJPzEfudh8t`C2t{#|(`44L@Jv z2maYB;9+w^>U)BL@@9g8@?Rfs&$Xm>8ZS7P)AG5awaHw|8sRc9YMe+zj5l zXfJYvO3Ft|eUVVkFtf%QZ&?z`x;xxjGy3xPqYUpqTz!hd>{>4qFljLI(P?4>GxUsM zU0rpVZpH8n<(ia{j2cs&6U3Q6u+hpT997?<(sTd3Lf9J#Wu8|%5`bq=5#N8&6Q+jd z6W>D6vQK_r6-E(7haD{#Au3=5)gHkhyEM0X?LDr3u|;0mpMot7!K@x=d8C3iZK8+| zLk7#B$B;uM6bSo8iD~yt7rwv<9uHf1K1Ed^yi=P56zu3%aa8`cy`-&DM##RQT87>zcBJ88{rWIYY^2WJ;pA<2YmNFu0%xRqt8V|^V*9i}a4%jEq&h3w8Y z9n-;M=Dl);9D4D6W`|0K!-ba{kNJlOP|sWSH@0#$3iWKJ*MbX9D#RT6_UC7f+(~tS z?n(=oT(8p&@%3=1UKyzAp6mD49!f5*(3iz6KZMnbYf7@mA|`CVw7PKGlk`>cNYeUt zP$(~Qyw^ZBWBWq$=$NF&QZ)1l-8WD^&xaM{@4ZzD806UBO|w3xcEVvZFZd92q5X-E zGB;@2D;3Ww)hAjg8H#k+H2bJ#%%-V=SCGrQAcWVJM%%w;j=W73!Cs;U&TsZSTFh;~ zppgk%hU)KP*(03>I5+Bg+$hBG%cp2#&KXqDm~JC-LH@P*-{O)N%4#Ix+K&8PQTq!z zdoPl%>}^s@c~>Ru1iFCW);eJk(dSGpNyqau`9c%5q+PYh(%3~MYxr%=^&Cf*P`#$->D#&_{i9T^1fx4PHIpjd?uQx;rs5HD+Ilxr z4f9|#w>-?OZJe#U-*+8W(2VT&^WZ+!G_OZxtN{D*rs8Ei!XOMtsX=a})PxEErv%ot zD8^S&{?1Z_2P{)tsnw_cM7Yf|8{3nX(o${xpbhhgw%E*Hv#2{G6WjbC->6?lFqPHJ z_2C!G)LxtVw9{wyQq62lTDZ+0^bbxR3Z6}m)lAadmeEe}OVzB3(57@+TJTs>%5qMG zvvk~A2_cVp@dG_zT{L%ma5y8<)9OC_X*y7I|L}X&k(dB)f!mChYe4^}pRGugE?qKc z_O2H<3OQOm>;TDUv>bM5TIh0kW%SRoE?EDG%StkLpYl;at%#>z2|6YdCzAs14=9)9t`=DwnhKg8?Q6iztZDSGU7J?zvI$*ljH|Ty+^*=gF&L!b zrN}w&GYlc~_G_^{E7_d>HbuF0OK=4+UzVkqR&COGoqn$mLf}Ir*$zEc8Rw7(ZJa+~ z5O1fFn*|EA2T&>mv2e$0-RZn$4P5P1?Sb3GT`Tw13{d^L9^ZcWjv6*7eIKji@QQ<- ziUv{!lp@On?UD${h~k9@NlE(?GeWuGv6K^edg*XA!pIx=Ag!ZYCa?P}S0`^BpR;=i zv4x)F845AQm>jY*1+9w?1~@6g(XI~GG7!pZb$9$x9nY;`PQZbjI_jsQh;v0S_rK_#K**4Whzkf;gxjqk zT6#+NagO}_9YmT6a!O~CdZuRBUp;-}#LORP?Ne&Y41sGeon>U!H(DytICbO3B?(=3x zxjQHShQJ{{FI83$GR5T_U~Kh2{u6L~_VM5cU4*dUE^ixyi_^gYFlU$1dRU#X*dA+E11sOUw3%dka^oLH)Vk(7wt zTsbiK7cj*S73aI41+S;OwX?2ENXwRZP=jYEP)=8k89qg;B-9j>h*!Ei9cv&*uH$$!TV%-*5EVjHc8Yjb!YOAIvxIvoe7Nxr12=iH_4ugvL&520=nz=flH(InBGIjmr=N9BBQAvMScm4Ie zx@EBDql3UC9N5E#%rD_8=`qc-cpJ%Fjy2&dOD8;YdViMvdqXz+?qU5SFGCYqmd^W~ zL^wM&8Va&?cU?3}Ck45_7rgrHZ^LuLLvHl`UmKpwxlzI>zKT@Dh1aT)E}52qzzpg) zSq!|;99YPFY&h;X)~as-1>vy;Sn+ImOrx}YYFartgs^CLA%-Mb*j=m-2PY_BA_#o! zUwRfesa!_cI&2Bj2^wpLzc^Z_ON|Z5IQjohYJNlt?_Zi42G6J$1J?7Yjz|(Voiff!oY1G3i`Y{seQ-+7_keko8~$j zdll*WE;RTh2l-ICH%IKUv40t{3tdm7d*=UO!meKlZ-W8z_?-Bkg)y;(tGaVNt22rt zZ_OJd?rcP}1ze2yeUn{pa{<`(LAeUoTe1*_|2Wt`$6HTT3;ab}*3BbY#Rfc6G@AN? zl;$&iU@B5;cva*mdWMAyNtQU1sg)jg^~L(-Om`!Ziz!(Osbw++l?Bi;l;R0E`M(3T zt6mxkCj_28j4#}pFCSO`5QjVh0hHuNh!5m|rj}N>_u*yMz8~_1VQpC@F+!x``%sq( z1*V}$#%`=br(@Z*8A5?)+kwhJo>zP{U&$TiOTB_-D^$axM`DbrrPJ|>ZH28hdBx%S zK>Qq#P7O?;+48&f+B!=zaj+h+S&0-F z)!Dx`KqQ>wlJ%Eb|E4M)yx5ti^l`t1R5acwPz0SB6YN86h8Grt<F9S3vi+<6U|(?X8N(8?otvRSh^R@J;)9?Ho$>d#A|U8kV?$9Qe|}J zT3~g4vXa0

mUmDQAb>dg2Fk{F-YDnVgqwaZS>z?(q@S*cze{LVrHHdT8ELkw$0?IMX{&qdvmx zkq(Z?STUs))Jm#HufTIYs?J9SXo=Ma5W5M-jAwdiNi~_th^3W1_%_zFqu8knrTQth z`eq_FzFZxgY#;D6I3ErS;uRz>$Y!{wv#!%GG&qoRO2v=@?UpYshv5oTS;%)SwzX4) z>+yHFTR^=E(4~M&xOszh7oEQk_jf#IJd%Nkzp6bOIhyd@s%{?Hw5m^)YNh6176^-1 za3GV{dkhZP^V{H)TE#NmY!Uyby7P={BH!CSdv+}=Dy{{P7Ey$?0HPE_T~t7%sephq z1(6y8hR{P?8zN0nAan&JAWZ}kI!cu;gdQLQnwW%uKtdoP$uj}m-E)rnJm-Gy&;8=g z3ttRQW-{}i`Oo~W-}SxrkG=)WT1!BzPtij`Q0e(Ng2xYE6d!Jz`3Ghsp*hasqu@lQ zqr3p5U~`J%VTIKK@VL!Z;tBZcpcF{`&QgWFo;TjPfh^knZwU7ThJ5&Ws(C*clg~v0 zf~GS0<<6ttwghj-azq0G9I--~J;b zI?8a*eEY5L2;&-4aEKBknJF;$VKHd>jjVQ^kD6HM!jJQ9bsr@D~P#{2uavpHJK ziQTT+DM$MfGNEzY$G&mgzV3H$oY+8RuWbu+q7g=dq>k@!- z7K(QGHC||20A((sWm87!a&M%PE~K?NCHU6}!3*W~nZlN;3CA0pSpNl^^_lryUzY6O zc`+2k(?i-r{|x6+E@;uP=K@eroH4@pxDSj?*^l&fHZ#|b+b0}2O>1U#!D#DCM zG68NWVc=V)pSs+O3s-Ip-5mf#UXSaRhKiw6nI9Bnsd}~+fM-9l`-ZKsK4jJJhoM=h zND_@}op{4Hbx@@x?oIz$W4nR@^3$qdp{rDh_gTo%K2v41|pCpEgTL1Oz~YGNeLygE|ueAk)K@;VZ2O*lFI%}@6CAw zr1$PF?N>qZ(|eDUh5_llP<6D>Q`;_t(F9VD)Ia1+A)>Dac>9Lh__v2KG4%6(z8@Rz4 zsIuMpsvcW(0-hw7$sJv^in51Xj8#R4bd(Zrxp#*69!_)pfL^g2IaQAHCIL=f6~!v5 zUN4NWEu?s2j}#?D<7(ebg@S~y&fL4;`Apg57xBLrk$5+do(i7R*mrBez5Thx%xd26 zZ}Wlg6|4!3_*r7dIIGSgc{&YcD;u4dJnN!?8hl2dCyPL4_qbxBC`i2ugUDaq3|U+8OSli1$XDF z=U7uQIqyhZc!?GqbcLt;{L(1aowJRMabHy1Z*bVM*vod$o=Tbh`KCyUy2c8HZa79x z#{F*y+%5f1pxfUH?n(nGa%o8YpI@KjgPvajFS=X)WHAFA44(?dBgACj8$~%Cd8!`p zTJp{LT(brn>9riC_~Q_h?o)fa6eLj&e@5?fjl4P0B9>S z-IV#godn>Kt1K&MHO~%q#c+GXroTkyuI0Px^{nN)9{+aBURk@)0E+V_py0Ns>2uzJ zo4Z4x;E`Sm;JUgO;JC(cj#_6p|IvFMF7Q^F@0ofj4J{cCe^@fLLsY=}a0dYB9o)3R zVYXT4Fn>!#Jo(2efX(Wu&PDUOeK_XL&PtSi-$K`K0@f-WCjq+eV7yB=fA^jXeLF&_ zCqXHbZ~uh+u5b^^3Apj?YqpQKY+Z3pwk@tz-r82Db`cHV11LJ_zo`LAJ! z04#Vm+NW+*taaseiTDQ35->jwuLDW1{WUJsJqh=Q7v}>={pKZn(`94t$ORioy$m}F z_K=I0dWH4hOK|jm1O^=%^C2Ic_(`NRnBO%pYWL%Mm%w|CuaSSNZ=!I50nOJI1RTwJ}kKUctedtxI{0NjPRQtC|uVfdw-&zZ#n(->k zc3M>_pkui9CK=FvZ!6s_yoC1_VVu6&OsN4E;-y=Poa0)7F6wKzQ3&4O#Qi{ZNkLm$ zKUU7sQfD098+fHe9cr5LrW>%aCkWpC+YQ=xxzCyJwx7N-^-@1yM8m+T=IUK5oTq6@ z@L_jITA7kvTyp*R^bS*w4AjOu8JcSk(MIN!uG?VASSyBCwBx(MHl+->mr~d%_(KMc;ZGrmb+_bp z6Jac`_o>2}y7Im!_0?}|oFTv>D1GnZQ6Mg*X~UF(JBc=eRj5EcC7zZYOwO`g8GLKn z)|y-5BG;0?_`tXEF<27YoLdMe?c;`|+Wq4>WQb#|uVmhiTQ1KGf)__v`=XT4o=#V{ zQ*1T{Sm4d=XSTk$EFgf7_=d#3X_^Qf&v}re`rLWqZi`)EY;#RgMM{ zW7A`q;wE4xZqu6A@>!o!3Lj>?iJ@|jAK@ycDcdJ|UndeFVSS2;or(86xOjgHr>|o z0C6-5Tj4%H&#)P+*5Dp_tVe1X$5(Ddkk z3@+CE9=O~K9e?Xp-B*xCQep^C%N_z35yA-CB_Ka2tSs>J}bINcq87=(SU1YxtE-<3x` zVD+D`-6=5xB83tH*fNIHemRime=TEm*XPCuqPqv~qObb3HRK@Ro9#${weTX!LcG9|1v$*8V26ua|```p}J6ud$6cv(;IAG5%}My}?6#+QC}mADyXG#KGnx(Qdl zhBX##SjQTF?IdqTE5vEz{5|RIDg8FnSf#i5kQYTpj%k}&4wMgdCh1ECp{2I9WJxlF zM<;Xlbh$QI>6FN6%G5gs9td4yAJD=Kj;6l_9&b0#o+OInFi(ALBMalx6 zWsN%nwGvW}P(vKPyUJz`mGTAii1jZ3PssV-Yg4B#f4aN+jaqNwtQ_4hM zX}9Ne1+ASP0f3PgN$0TgeM@DGavK0+@Prn?|v)EG-NI-N+uTtDgTs3J`RtvCjQH9In zFrNoeTt!OXvzIK3A#fqGa=cry3V9L*LOTZXnt*^pre!jYnXwvNaYQL=s4aEYJJwQxYu%NCykZi)DyOwgYiZ^6V#}6> z$cYlG3?T#Wnv+2Np)R-%kyTK|39q0`j-!+ilI;a{DJk+vCZdcQ6hTaCiS<6&wf2*!atObiPs`u%+rgU)(> zA@LJUi$_;tXoSp?Pt!0>xX=2A$h{0h=Nm1B{FK(pD#08sOTrVgh$v{4d)IWK9ZM>? z;5q$yN{w{JD__$Mi?|w#)pnezJXJQX+x-hH`h0qh;-l~nDYVKoI&3pgRL^+k-10mx zYi2HTt{>ZoQr=XOmgZLpyQTF#8Zyj8Vw>EJ3{hNH-NBZ#qq(ZkQ$}2t^=_k->IIvq zvyi{QOZBh&&a78>L^qqK35bpAql_xO9A z?@ZB1N+h*3WV}6;u!IO2o7h9IIW|<8<~mA;RL$0;w_J3&@(7kxY37HKZcZtEitupg z9y>Ipm1E;cVP9CWB|xWxEMkiT>f6T8&YXVb*A?_)G5IvD@~Ipo{H#~KhgptJAEs^2 zyED7{l|8w(M7_sSCO%y!{hY_lUY7k`bLz2(7elZ3a|4ND3Gt zY~FQHu@qI%7kMdP1UcUP{OTuvr+xUPA2Rb|yXCew!E7SgqtYb*~g|mS~@|lNnlpO#BWz!}N?Ks3m82 zJ}M)0RRB4DgVKd&mq;wl05*IuIGKKV%RX!&6k9wROm+^dqL1NP@wBou`EgFAs((k! zUdS6?&RY0y^@wNH;r))$5%JHUt(RVwLwXpO5VOD|HNa9fw5rn^#Fz|q4Z_^2?`j3? zFx1-8Cp%o`Up*_Xp}MISF16-!?Jk|9dbjgc<3g}~atq;CXK%D0C+>l$NB(fUrSQ`b)D2DaGmDy7xV)%Ai&TerJ_vz6M6clK&Z9~6 z7qbK@lO4q|5kQM)=&jcH$*19IKvCH)}$OE#!R&9FMsuX3>&oJiL?1wglNAF&c_6>l1n@>AvhAs`dK)LT# z`J0!pnXGALMS+Ne$Go^wkYF+kMQ|CjlPH(}oOj=`(g$ecYj&vHu2*`ovuwoHPWX#n zHm%XR*fitSX@A|Z{ug-H9dNNUwV@oTWNt(dz77X@O^dkEehVi?M=2{q6r7a>7t({t zr&Wo2!Xv9BsbWPcr30rVVIu@${9<-dF<1V*f0|huwhgLB8q2?gk8A1hWaSwHzS!xO zQ&s`G5F>5G>?@iVh*|#5t_QNgS*8u+X$hGV8Cnvvngx8&G6UbS+sd((X1x;{aFOH} zK1_gv&a+dwzxs51X&P|0Bp$&lvf*6SaX_2ll)9US%URUW#qtb`vx4n9f`DdBT7*%JOr`yg}ot;iKf@d^wJt;#IS+^Ju$u5W|&yFxoz%SA;B{%Rf z2B-8bwg0HQuE*f)ybSa0CDNnxy}Ey+eGmzFpdRyUkBVdXmuL;=3>5ux29Q11XzVKXvIo9IbRk7#bxUF_$k8D)Bjy>U@VS0DEHo9?aP+#GeF1$6i=T9FE`J|ywh%B<9W4iri19v`?q_s-sC z+7i?3qm`75>$YvYM6`yyO|QsTwly+Wk5-u|vn2YZ)yJu#%#%b#rzlb%U}lCe&jdtf#(a?G5#RV|FfA%tHz}TC1RFy!BP_LtSn6zQE)u}NVOsqI`$865k=-^p69wN_U0_$ikBX8LO11pL>T zVrGQlu@a9g|F1BSJj0O8lgQ@bfz1p6ACA@ZR7h;85wYqE+KfncjMp;Pp!qwPH`*&c zN@rgIaAoOVFB0&*aW`AxlMmTJu{0Y+516>@Ipx#Q??7a+jys~+Cam@fOpbe18e6E9 z%v~DGWk$Zp?{t^W^R&b^JvX7I_LqMcBV~xz%{RxZ=cv5O=d=kbZ!!hRAuJ>nsc81g zhrKIzA3}5l-Nh}FHr?vtS4h{MZ+EQW&QF<(-CdA{v`R#6b_zP4oEecv7R^^e0OOH{{ zN>~sVr5EC*y5bd11?_d}`WzxWUQx;ASdw*7rL7_55-4^ve4i)auxw92$EZLG@#c9W zj+p!j!n3qbYA&(fXme5&zm^lYijkaT)z1|DSm+SyV>Z0fDip8;?Fhb9-}|#b*8Fzz zf9Q+_@8}fYvx>W5tui2fbn*Do4+6*6@>p}u|FcF%dovihFnF_c38w8SAaM5mss7NR zm_N8@-`uQv6V|;#+af>gB_sn((u#{~9$OVXb!sz?c~7T;b@6l-(*@{1Lol{9)S_`5 zpt_lJmX#EdGZ(l|lst?9cFQsBg&pyUm?@DC{R zoHB3gL7=XDKYC55JJJY5nYDZbu&L=QnledezZG*IW36Y-Hd)Va2Fzq{J=W|%e^<-h z2UJ^Ee@|X0MAfM|cQ-4?B|ta-1K1%u&DVfFroHhzA_LndVEiLs#u^s>^urnM$Y-D! zeMKwqnb7{VQnb`bU=0BU2cTSh`rO1{nnj8nH-XMO?2Jd#b0&3 z;J*J3;Dyu29~R}iuQopGrTYgTAD=+?`v3f3U5VlUZKH-ReHuW{mf8OgZf1dwGh?=& z`YHS#I2vPgVm-QaZSU4qitX>DO>n7U%45Fd!;^31sj$gQY6@3he)s1kzXBt^1{4V* z{V8ygb-jZQsE@eCN(}e*EX%-vOVXG~X;Jeec8Z1)!-*vFEWY+a?x0Cp5&H zg-`alp2&67VZ@_ITr_98Xd+ZQlxc+At34m0@d{fMaF4(P)$I-_CY>fH!tt2O2#+Z)%DMftyNL+SV_ zT$v0t?YVXl+J@5Rxt(6tRk{;!&uokp@AIiCpdlbO?C{vU4x%!2F}S*mY{gX{vv|g= z8+ZI!XSwazBs`BWXTLj)Cm0Jf5Kl|OSn&ppFOb}KKDZ%lk7kC!_m3qPn2%57Vs9AN zGlBz`2MIe9Ii_ZHG*$GLb}9;YEU+|0>fMI1_n-GP2zIsK`69FnrC_nY8dN)H!>h=3 z=GIAt(aZ4-2Gg!;VH$QT$ZGjjMk$$%fH z512t2#K2E5mpc6g1IheQ9;+86tAy4dQ&C#*0z9lof4P*WtL=Q5JNe!+F?%CWDj@w*kmu-(LGk>fv?L+k)XNd*<+B?)mZ)xfAkdZYTAzX5uuFg)qDD{+1MS20{?g#_Bp<7_G3I)`hG zYD*ocA<{2OYRu~mxc(Mq)koV3s)ZlYj0D%7{Lbyhozq1oH98_Gv7@=YVDRn-`z~zmrXtiw?Y1LxVIX2Xo<+xmXkft*Eu>?1XRs=3)R#tdp2I7Ts1Bi2G zC7P_mj_nDzN)J<(cm&{Q-her{XcYIAty)7YcRHXUONUmRRGsc!ewCZYXZN`k^hnb`yG`Om>%O+oE>T^w%V)>Hy{(9ja+(h z-C^EDm#@J#t_z9#|1%RSa0#A-c1DVbNFNhDc#o%}mf?I`c~r%be>e^GOwSdaxpwFO E0O_e2)&Kwi literal 0 HcmV?d00001 From 4ce7197f94d34dbd4d8678229518b1d1793aaded Mon Sep 17 00:00:00 2001 From: Katya Goldenshlach Date: Wed, 24 Jul 2019 14:37:38 +0300 Subject: [PATCH 057/138] Fixed line breaks --- .../microsoft-defender-atp/configure-proxy-internet.md | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md index 763ecfb2dd..84bd3f8d8a 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet.md @@ -180,15 +180,15 @@ Microsoft Defender ATP supports network connection monitoring from different lev The proxy acts as if it was the target endpoint. In these cases, simple network connection monitors will audit the connections with the proxy which is correct but has lower investigation value. Microsoft Defender ATP supports advanced HTTP level sensor. By enabling this sensor, Microsoft Defender ATP will expose a new type of events that surfaces the real target domain names.

-**Investigation Impact** +**Investigation Impact**
In machine's timeline the IP address will keep representing the proxy, while the real target address shows up. ![Image of network events on machine's timeline](images/atp-proxy-investigation.png)
Additional events triggered by the Network Protection layer are now available to surface the real domain names even behind a proxy.
Event's information: -![Image of single network event](images/atp-proxy-investigation-event.png)
+![Image of single network event](images/atp-proxy-investigation-event.png)
-Advanced Hunting
+**Advanced Hunting**
All new connection events are available for you to hunt on through advanced hunting as well. Since these events are connection events, you can find them under the NetworkCommunicationEvents table under the â€ConnecionSuccess’ action type.
Using this simple query will show you all the relevant events: @@ -206,8 +206,8 @@ NetworkCommunicationEvents | take 10 ``` -**How to enable the advanced network connection sensor** -Monitoring network connection behind forward proxy is possible due to additional Network Events that originate from Network Protection. To see them in machine’s timeline you need to turn Network Protection on at least in audit mode.

+**How to enable the advanced network connection sensor**
+Monitoring network connection behind forward proxy is possible due to additional Network Events that originate from Network Protection. To see them in machine’s timeline you need to turn Network Protection on at least in audit mode.
Network protection is a feature in Windows Defender Exploit Guard that protects employees using any app from accessing phishing scams, exploit-hosting sites, and malicious content on the Internet. This includes preventing third-party browsers from connecting to dangerous sites. Its behavior can be controlled by the following options: Block and Audit.
If you turn this policy on in "Block" mode, users/apps will be blocked from connecting to dangerous domains. You will be able to see this activity in Windows Defender Security Center.
From ec9b70e68ab3c4710e3b650d3f9dd4251e5dec80 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 24 Jul 2019 10:15:40 -0700 Subject: [PATCH 058/138] initial release line --- .../threat-protection/microsoft-defender-atp/commercial-gov.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index b31826876f..9da9f189ee 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -50,7 +50,8 @@ The following OS versions are not supported: - Windows 8.1 Enterprise - macOS -The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our Office 365 GCC High customers, there are some capabilities not yet available that we'd like to highlight. These are the known gaps for US GCC High customers as of August 2019: +The initial release of Microsoft Defender ATP will not have immediate parity with the commercial offering. While our goal is to deliver all commercial features and functionality to our US Government (GCC High) customers, there are some capabilities not yet available that we'd like to highlight. These are the known gaps as of August 2019: + ## Threat & Vulnerability Management Not currently available. From 78f85d1e5e4ed1116d1eace3eb915f721def8990 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 24 Jul 2019 10:18:22 -0700 Subject: [PATCH 059/138] update title --- .../microsoft-defender-atp/commercial-gov.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index 9da9f189ee..bc995f094e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -1,5 +1,5 @@ --- -title: Microsoft Defender ATP for US Government CCC High customers +title: Microsoft Defender ATP for US Government GCC High customers description: Learn about the requirements and the available Microsoft Defender ATP capabilities for US Government CCC High customers keywords: government, gcc, high, requirements, capabilities, defender, defender atp, mdatp search.product: eADQiWindows 10XVcnh @@ -17,14 +17,14 @@ ms.collection: M365-security-compliance ms.topic: conceptual --- -# Microsoft Defender ATP for US Government CCC High customers +# Microsoft Defender ATP for US Government GCC High customers **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for US Government GCC High customers, built in the US Azure Government environment, uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. -This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for this offering. +This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for this offering. ## Endpoint versions From a52a8fefc27dbcbcc6f3280b5a1862f685d83c6f Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 24 Jul 2019 10:19:35 -0700 Subject: [PATCH 060/138] typo --- .../threat-protection/microsoft-defender-atp/commercial-gov.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index bc995f094e..9e64eb5d76 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -90,7 +90,7 @@ You'll need to ensure that traffic from the following are allowed: Service location | DNS record :---|:--- Common URLs for all locations (Global location) | ```crl.microsoft.com```
```ctldl.windowsupdate.com```
```notify.windows.com``` -Microsoft Defender ATP GCC high specific | ```us4-v20.events.data.microsoft.com```
```winatp-gw-usgt.microsoft.com```
```winatp-gw-usgv.microsoft.com```
```*.blob.core.usgovcloudapi.net``` +Microsoft Defender ATP GCC High specific | ```us4-v20.events.data.microsoft.com```
```winatp-gw-usgt.microsoft.com```
```winatp-gw-usgv.microsoft.com```
```*.blob.core.usgovcloudapi.net``` From 5124fbebd0fdaea1b6d9b9f914cce161db7180c5 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Wed, 24 Jul 2019 10:21:26 -0700 Subject: [PATCH 061/138] add an announcement message (#749) --- windows/release-information/windows-message-center.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index 8c72153bd3..99c1d54059 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -50,6 +50,7 @@ sections: text: "

MessageDate
Plan for change: Microsoft Silverlight will reach end of support on 12 October 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
10:00 AM PT
Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
12:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
Windows 10, version 1903 available by selecting “Check for updates”
Windows 10, version 1903 is now available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel.
June 06, 2019
06:00 PM PT
+ From 966fb91a29ef33a4c044b28a5981eb3a38783807 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Wed, 24 Jul 2019 10:57:02 -0700 Subject: [PATCH 062/138] New announcement change july (#751) * Change in announcement links * Fixed quote issue --- windows/release-information/windows-message-center.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index 99c1d54059..3f7b5e16c5 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -50,7 +50,7 @@ sections: text: "
MessageDate
Status update: Windows 10, version 1903 “D” release
The optional monthly “D” release for Windows 10, version 1903 will be available in the near term. Follow @WindowsUpdate for the latest on the availability of this release.
July 24, 2019
12:00 AM PT
Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
12:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
- + From 2d48a3aba105f68c3d062eda6895f98135fec227 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 24 Jul 2019 11:04:10 -0700 Subject: [PATCH 063/138] remove pdf - not supported --- .../information-protection-in-windows-config.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md index 95b79f587e..03aede1a25 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md +++ b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md @@ -59,7 +59,7 @@ After completing these steps Microsoft Defender ATP will automatically identify ## Configure auto labeling -Windows automatically detects when an Office file, PDF, CSV or TXT files are being created on a device and inspects it based on context to identify sensitive information types. +Windows automatically detects when an Office file, CSV or TXT files are being created on a device and inspects it based on context to identify sensitive information types. Those information types are evaluated against the auto-labeling policy. If a match is found, it is processed in the same way as if the file was labeled; the file is protected with Endpoint data loss prevention. From 9d3045c58bc94a9086cc93e5b62a97016d770d87 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 24 Jul 2019 11:15:13 -0700 Subject: [PATCH 064/138] update author --- .../information-protection-in-windows-config.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md index 03aede1a25..ed15d4feef 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md +++ b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md @@ -8,7 +8,7 @@ ms.prod: w10 ms.mktglfcycl: deploy ms.sitesec: library ms.pagetype: security -ms.author: mjcaparas +ms.author: macapara author: mjcaparas ms.localizationpriority: medium manager: dansimp From 2885e5405a930ac997292fd748d7794a2000bf1b Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Wed, 24 Jul 2019 11:22:56 -0700 Subject: [PATCH 065/138] acrolinx --- ...nformation-protection-in-windows-config.md | 22 ++++++++++--------- 1 file changed, 12 insertions(+), 10 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md index ed15d4feef..507fe16a4d 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md +++ b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md @@ -1,7 +1,7 @@ --- title: Configure information protection in Windows ms.reviewer: -description: Learn how to expand the coverage of WIP to protect files based on their label, regardless of their origin. +description: Learn how to expand the coverage of Windows Information Protection (WIP) to protect files based on their label, regardless of their origin. keywords: information, protection, data, loss, prevention, wip, policy, scc, compliance, labels, dlp search.product: eADQiWindows 10XVcnh ms.prod: w10 @@ -34,34 +34,36 @@ If a file meets the criteria set in the policy settings and endpoint data loss p ## Prerequisites - Endpoints need to be on Windows 10, version 1809 or later -- You'll need the appropriate license to leverage the Microsoft Defender ATP and Azure Information Protection integration -- Your tenant needs to be onboarded to Azure Information Protection analytics, for more information see, [Configure a Log Analytics workspace for the reports](https://docs.microsoft.com/azure/information-protection/reports-aip#configure-a-log-analytics-workspace-for-the-reports) +- You need the appropriate license to use the Microsoft Defender ATP and Azure Information Protection integration +- Your tenant needs to be onboarded to Azure Information Protection analytics, for more information, see [Configure a Log Analytics workspace for the reports](https://docs.microsoft.com/azure/information-protection/reports-aip#configure-a-log-analytics-workspace-for-the-reports) ## Configure endpoint data loss prevention +Complete the following steps so that Microsoft Defender ATP can automatically identify labeled documents stored on the device and enable WIP on them. + +>[!NOTE] +>- The Microsoft Defender ATP configuration is pulled every 15 minutes. Allow up to 30 minutes for the new policy to take effect and ensure that the endpoint is online. Otherwise, it will not receive the policy. +>- Data forwarded to Azure Information Protection is stored in the same location as your other Azure Information Protection data. + 1. Define a WIP policy and assign it to the relevant devices. For more information, see [Protect your enterprise data using Windows Information Protection (WIP)](https://docs.microsoft.com/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip). If WIP is already configured on the relevant devices, skip this step. 2. Define which labels need to get WIP protection in Office 365 Security and Compliance. 1. Go to: **Classifications > Labels**. - 2. Create a new label or edit an existing one. + 2. Create a label or edit an existing one. 3. In the configuration wizard, go to 'Data loss prevention' tab and enable WIP. ![Image of Office 365 Security and Compliance sensitivity label](images/endpoint-data-loss-protection.png) 4. Repeat for every label that you want to get WIP applied to in Windows. -After completing these steps Microsoft Defender ATP will automatically identify labeled documents stored on the device and enable WIP on them. ->[!NOTE] ->- The Microsoft Defender ATP configuration is pulled every 15 minutes. Allow up to 30 minutes for the new policy to take effect and ensure that the endpoint is online. Otherwise, it will not receive the policy. ->- Data forwarded to Azure Information Protection is stored in the same location as your other Azure Information Protection data. ## Configure auto labeling -Windows automatically detects when an Office file, CSV or TXT files are being created on a device and inspects it based on context to identify sensitive information types. +Windows automatically detects when an Office file, CSV, or TXT files are being created on a device and inspects it based on context to identify sensitive information types. -Those information types are evaluated against the auto-labeling policy. If a match is found, it is processed in the same way as if the file was labeled; the file is protected with Endpoint data loss prevention. +Those information types are evaluated against the auto-labeling policy. If a match is found, it is processed in the same way as if the file was labeled. The file is protected with Endpoint data loss prevention. >[!NOTE] > Auto-labeling requires Windows 10, version 1903. From fc6d9eafb9ae22ca796707a2205b86a93a443d0c Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Wed, 24 Jul 2019 11:36:04 -0700 Subject: [PATCH 066/138] Updated with SecureScore note --- .../microsoft-defender-advanced-threat-protection.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md index c72919ffb8..70561d13b0 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md @@ -99,6 +99,9 @@ In conjunction with being able to quickly respond to advanced attacks, Microsoft **[Secure score](overview-secure-score.md)**
+>[!NOTE] +> Secure score is now part of [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + Microsoft Defender ATP includes a secure score to help you dynamically assess the security state of your enterprise network, identify unprotected systems, and take recommended actions to improve the overall security of your organization. From a664929305ee93cce975e04eee41a9282ef794e2 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Wed, 24 Jul 2019 11:41:27 -0700 Subject: [PATCH 067/138] remove an announcement message (#754) --- windows/release-information/windows-message-center.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index 3f7b5e16c5..a62dca6a89 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -49,8 +49,6 @@ sections: - type: markdown text: "
MessageDate
Status update: Windows 10, version 1903 “D” release
The optional monthly “D” release for Windows 10, version 1903 will be available in the near term. Follow @WindowsUpdate for the latest on the availability of this release.
July 24, 2019
12:00 AM PT
Status update: Windows 10, version 1903 “D” release
The optional monthly “D” release for Windows 10, version 1903 will be available in the near term. Follow @WindowsUpdate for the latest on the availability of this release.
July 24, 2019
12:00 AM PT
Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
12:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
- - From 6bd3ed801ab65d7ccc7d43a825a677631220e4a0 Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Wed, 24 Jul 2019 11:56:08 -0700 Subject: [PATCH 068/138] Added manager and author --- windows/security/threat-protection/index.md | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md index da60a14421..d85f33b6b5 100644 --- a/windows/security/threat-protection/index.md +++ b/windows/security/threat-protection/index.md @@ -7,8 +7,13 @@ ms.prod: w10 ms.mktglfcycl: deploy ms.sitesec: library ms.pagetype: security -author: dansimp +ms.author: dolmont +author: DulceMontemayor ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: conceptual --- # Threat Protection From 0035f23705cff437de014837198313c8fe2ee2ab Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Wed, 24 Jul 2019 11:57:56 -0700 Subject: [PATCH 069/138] Added author manager and audience --- .../microsoft-defender-atp/secure-score-dashboard.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md index b98230426d..447334546e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md +++ b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md @@ -8,12 +8,13 @@ ms.prod: w10 ms.mktglfcycl: deploy ms.sitesec: library ms.pagetype: security -author: mjcaparas +ms.author: dolmont +author: DulceMontemayor ms.localizationpriority: medium manager: dansimp audience: ITPro ms.collection: M365-security-compliance -ms.topic: article +ms.topic: conceptual --- # Configure the security controls in Secure score From 780d436534ce0b48d108158c63ac83f15b029986 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Wed, 24 Jul 2019 12:22:56 -0700 Subject: [PATCH 070/138] Quickfix2 (#758) * New announcement added july (#729) (#730) * New Announcement added * Fixed date * add new issues (#745) (#746) * add new message --- windows/release-information/windows-message-center.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index a62dca6a89..03fb917e6b 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -49,6 +49,7 @@ sections: - type: markdown text: "
MessageDate
Status update: Windows 10, version 1903 “D” release
The optional monthly “D” release for Windows 10, version 1903 will be available in the near term. Follow @WindowsUpdate for the latest on the availability of this release.
July 24, 2019
12:00 AM PT
Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
12:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
+ From fc3bc30603bc09f1b49561627bab1f2336de2427 Mon Sep 17 00:00:00 2001 From: martyav Date: Wed, 24 Jul 2019 15:39:02 -0400 Subject: [PATCH 071/138] adapted page to list tables, not columns --- .../advanced-hunting-reference.md | 115 ++++-------------- 1 file changed, 22 insertions(+), 93 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index 0233da71e9..3b8081addb 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -15,7 +15,7 @@ manager: dansimp audience: ITPro ms.collection: M365-security-compliance ms.topic: article -ms.date: 06/01/2018 +ms.date: 07/24/2019 --- # Advanced hunting reference in Microsoft Defender ATP @@ -26,100 +26,29 @@ ms.date: 06/01/2018 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -## Advanced hunting column reference -To effectively build queries that span multiple tables, you need to understand the columns in the Advanced hunting schema. The following table lists all the available columns, along with their data types and descriptions. This information is also available in the schema representation in the Advanced hunting screen. +## Advanced hunting table reference -| Column name | Data type | Description -:---|:--- |:--- -| AccountDomain | string | Domain of the account | -| AccountName | string | User name of the account | -| AccountSid | string | Security Identifier (SID) of the account | -| ActionType | string | Type of activity that triggered the event | -| AdditionalFields | string | Additional information about the event in JSON array format | -| AlertId | string | Unique identifier for the alert | -| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | -| Category | string | Type of threat indicator or breach activity identified by the alert | -| ClientVersion | string | Version of the endpoint agent or sensor running on the machine | -| ComputerName | string | Fully qualified domain name (FQDN) of the machine | -| ConnectedNetworks | string | Networks that the adapter is connected to. Each JSON array contains the network name, category (public, private or domain), a description, and a flag indicating if it’s connected publicly to the internet. | -| DefaultGateways | string | Default gateway addresses in JSON array format | -| DnsAddresses | string | DNS server addresses in JSON array format | -| EventTime | datetime | Date and time when the event was recorded | -| FileName | string | Name of the file that the recorded action was applied to | -| FileOriginIp | string | IP address where the file was downloaded from | -| FileOriginReferrerUrl | string | URL of the web page that links to the downloaded file | -| FileOriginUrl | string | URL where the file was downloaded from | -| FolderPath | string | Folder containing the file that the recorded action was applied to | -| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | -| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | -| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | -| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | -| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | -| InitiatingProcessFileName | string | Name of the process that initiated the event | -| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | -| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | -| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet download. These integrity levels influence permissions to resources. | -| InitiatingProcessLogonId | string | Identifier for a logon session of the process that initiated the event. This identifier is unique on the same machine only between restarts. | -| InitiatingProcessMd5 | string | MD5 hash of the process (image file) that initiated the event | -| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | -| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | -| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | -| InitiatingProcessSha1 | string | SHA-1 of the process (image file) that initiated the event | -| InitiatingProcessSha256 | string | SHA-256 of the process (image file) that initiated the event. This field is usually not populated—use the SHA1 column when available. | -| InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | -| IPAddresses | string | JSON array containing all the IP addresses assigned to the adapter, along with their respective subnet prefix and IP address space, such as public, private, or link-local | -| Ipv4Dhcp | string | IPv4 address of DHCP server | -| Ipv6Dhcp | string | IPv6 address of DHCP server | -| IsAzureADJoined | boolean | Boolean indicator of whether machine is joined to the Azure Active Directory | -| IsAzureInfoProtectionApplied | boolean | Indicates whether the file is encrypted by Azure Information Protection | -| LocalIP | string | IP address assigned to the local machine used during communication | -| LocalPort | int | TCP port on the local machine used during communication | -| LocalIPType | string | Type of IP address, for example Public, Private, Reserved, Loopback, Teredo, FourToSixMapping, and Broadcast | -| LogonId | string | Identifier for a logon session. This identifier is unique on the same machine only between restarts. | -| LoggedOnUsers | string | List of all users that are logged on the machine at the time of the event in JSON array format | -| LogonType | string | Type of logon session, specifically:

- **Interactive** - User physically interacts with the machine using the local keyboard and screen

- **Remote interactive (RDP) logons** - User interacts with the machine remotely using Remote Desktop, Terminal Services, Remote Assistance, or other RDP clients

- **Network** - Session initiated when the machine is accessed using PsExec or when shared resources on the machine, such as printers and shared folders, are accessed

- **Batch** - Session initiated by scheduled tasks

- **Service** - Session initiated by services as they start
-| MacAddress | string | MAC address of the network adapter | -| MachineGroup | string | Machine group of the machine. This group is used by role-based access control to determine access to the machine. | -| MachineId | string | Unique identifier for the machine in the service | -| MD5 | string | MD5 hash of the file that the recorded action was applied to | -| NetworkAdapterName | string | Name of the network adapter | -| NetworkAdapterStatus | string | Operational status of the network adapter. For the possible values, refer to [this enumeration](https://docs.microsoft.com/dotnet/api/system.net.networkinformation.operationalstatus?view=netframework-4.7.2). | -| NetworkAdapterType | string | Network adapter type. For the possible values, refer to [this enumeration](https://docs.microsoft.com/dotnet/api/system.net.networkinformation.networkinterfacetype?view=netframework-4.7.2). | -| OSArchitecture | string | Architecture of the operating system running on the machine | -| OSBuild | string | Build version of the operating system running on the machine | -| OSPlatform | string | Platform of the operating system running on the machine. This indicates specific operating systems, including variations within the same family, such as Windows 10 and Windows 7. | -| OsVersion | string | Version of the operating system running on the machine | -| PreviousRegistryKey | string | Original registry key of the registry value before it was modified | -| PreviousRegistryValueData | string | Original data of the registry value before it was modified | -| PreviousRegistryValueName | string | Original name of the registry value before it was modified | -| PreviousRegistryValueType | string | Original data type of the registry value before it was modified | -| ProcessCommandline | string | Command line used to create the new process | -| ProcessCreationTime | datetime | Date and time the process was created | -| ProcessId | int | Process ID (PID) of the newly created process | -| ProcessIntegrityLevel | string | Integrity level of the newly created process. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet downloaded. These integrity levels influence permissions to resources. | -| ProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the newly created process | -| Protocol | string | IP protocol used, whether TCP or UDP | -| PublicIP | string | Public IP address used by the onboarded machine to connect to the Microsoft Defender ATP service. This could be the IP address of the machine itself, a NAT device, or a proxy. | -| RegistryKey | string | Registry key that the recorded action was applied to | -| RegistryValueData | string | Data of the registry value that the recorded action was applied to | -| RegistryValueName | string | Name of the registry value that the recorded action was applied to | -| RegistryValueType | string | Data type, such as binary or string, of the registry value that the recorded action was applied to | -| RemoteComputerName | string | Name of the machine that performed a remote operation on the affected machine. Depending on the event being reported, this name could be a fully-qualified domain name (FQDN), a NetBIOS name, or a host name without domain information. | -| RemoteIP | string | IP address that was being connected to | -| RemoteIPType | string | Type of IP address, for example Public, Private, Reserved, Loopback, Teredo, FourToSixMapping, and Broadcast | -| RemotePort | int | TCP port on the remote device that was being connected to | -| RemoteUrl | string | URL or fully qualified domain name (FQDN) that was being connected to | -| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns. | -| Severity | string | Indicates the potential impact (high, medium, or low) of the threat indicator or breach activity identified by the alert | -| SensitivityLabel | string | Label applied to an email, file, or other content to classify it for information protection | -| SensitivitySubLabel | string | Sublabel applied to an email, file, or other content to classify it for information protection; sensitivity sublabels are grouped under sensitivity labels but are treated independently | -| SHA1 | string | SHA-1 of the file that the recorded action was applied to | -| SHA256 | string | SHA-256 of the file that the recorded action was applied to. This field is usually not populated—use the SHA1 column when available. | -| RegistryMachineTag | string | Machine tag added through the registry | -| Table | string | Table that contains the details of the event | -| TunnelingType | string | Tunneling protocol, if the interface is used for this purpose, for example 6to4, Teredo, ISATAP, PPTP, SSTP, and SSH | +The advanced hunting schema comprise multiple tables that provide either event information or information about certain entities. ->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-belowfoldlink) +To effectively build queries that span multiple tables, you need to understand the columns, or fields, in the Advanced hunting schema. The following reference lists all tables used by Advanced hunting. It also links to pages describing the tables' contents, including official column names. + + all the available columns, along with their data types and descriptions. This information is also available in the schema representation in the Advanced hunting screen. + +| Table name | Description | +|------------|-------------| +| **[AlertEvents]()** | Alerts on Microsoft Defender Security Center | +| **[MachineInfo]()** | Machine information, including OS information | +| **[MachineNetworkInfo]()** | Network properties of machines, including adapters, IP and MAC addresses, as well as connected networks and domains | +| **[ProcessCreationEvents]()** | Process creation and related events | +| **[NetworkCommunicationEvents]()** | Network connection and related events | +| **[FileCreationEvents]()** | File creation, modification, and other file system events | +| **[RegistryEvents]()** | Creation and modification of registry entries | +| **[LogonEvents]()** | Sign-ins and other authentication events | +| **[ImageLoadEvents]()** | DLL loading events | +| **[MiscEvents]()** | Multiple event types, including events triggered by security controls such as Windows Defender Antivirus and exploit protection | +| **[SoftwareVulnerabilityInfo]()** | Information about software in use, including version information as well as known vulnerabilities | + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-belowfoldlink) ## Related topics - [Query data using Advanced hunting](advanced-hunting.md) From 27894e16c3acd5ddd384d09233782145b6b0a18e Mon Sep 17 00:00:00 2001 From: martyav Date: Wed, 24 Jul 2019 15:40:23 -0400 Subject: [PATCH 072/138] amended sentence that was cut off --- .../microsoft-defender-atp/advanced-hunting-reference.md | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index 3b8081addb..554c80e95f 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -30,9 +30,7 @@ ms.date: 07/24/2019 The advanced hunting schema comprise multiple tables that provide either event information or information about certain entities. -To effectively build queries that span multiple tables, you need to understand the columns, or fields, in the Advanced hunting schema. The following reference lists all tables used by Advanced hunting. It also links to pages describing the tables' contents, including official column names. - - all the available columns, along with their data types and descriptions. This information is also available in the schema representation in the Advanced hunting screen. +To effectively build queries that span multiple tables, you need to understand the columns, or fields, in the Advanced hunting schema. The following reference lists all tables used by Advanced hunting. It also links to pages describing the tables' contents, including official column names. This information is also available in the schema representation in the Advanced hunting screen. | Table name | Description | |------------|-------------| From cd4f7c47809f2d8820cd643124166df8cc6fada3 Mon Sep 17 00:00:00 2001 From: Dani Halfin Date: Wed, 24 Jul 2019 13:31:21 -0700 Subject: [PATCH 073/138] Master to live (#762) * Updated with note and TVM references * Update overview-secure-score.md * Update overview-secure-score.md * Updated links * Update overview-secure-score.md * Updated TVM topics and added SecureScore note * Added deprecation note and TVM topic links * add new issues (#745) * add an announcement message (#749) * New announcement change july (#751) * Change in announcement links * Fixed quote issue * remove pdf - not supported * update author * acrolinx * Updated with SecureScore note * remove an announcement message (#754) * Quickfix2 (#758) * New announcement added july (#729) (#730) * New Announcement added * Fixed date * add new issues (#745) (#746) * add new message --- .../windows-message-center.yml | 3 ++- windows/security/threat-protection/index.md | 9 +++++++ ...nformation-protection-in-windows-config.md | 24 ++++++++++--------- ...oft-defender-advanced-threat-protection.md | 3 +++ .../overview-secure-score.md | 16 +++++++++++-- .../secure-score-dashboard.md | 13 ++++++++++ 6 files changed, 54 insertions(+), 14 deletions(-) diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index 8c72153bd3..9d2980d85a 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -49,7 +49,8 @@ sections: - type: markdown text: "
MessageDate
Status update: Windows 10, version 1903 “D” release
The optional monthly “D” release for Windows 10, version 1903 will be available in the near term. Follow @WindowsUpdate for the latest on the availability of this release.
July 24, 2019
12:00 AM PT
Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
12:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
- + + diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md index 8ef02bab91..da60a14421 100644 --- a/windows/security/threat-protection/index.md +++ b/windows/security/threat-protection/index.md @@ -39,9 +39,15 @@ ms.localizationpriority: medium **[Threat & Vulnerability Management](microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md)**
This built-in capability uses a game-changing risk-based approach to the discovery, prioritization, and remediation of endpoint vulnerabilities and misconfigurations. + - [Risk-based Threat & Vulnerability Management](microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md) - [What's in the dashboard and what it means for my organization](microsoft-defender-atp/tvm-dashboard-insights.md) +- [Exposure score](microsoft-defender-atp/tvm-exposure-score.md) - [Configuration score](microsoft-defender-atp/configuration-score.md) +- [Security recommendations](microsoft-defender-atp/tvm-security-recommendation.md) +- [Remediation](microsoft-defender-atp/tvm-remediation.md) +- [Software inventory](microsoft-defender-atp/tvm-software-inventory.md) +- [Weaknesses](microsoft-defender-atp/tvm-weaknesses.md) - [Scenarios](microsoft-defender-atp/threat-and-vuln-mgt-scenarios.md) @@ -97,6 +103,9 @@ In conjunction with being able to quickly respond to advanced attacks, Microsoft **[Secure score](microsoft-defender-atp/overview-secure-score.md)**
+>[!NOTE] +> Secure score is now part of [Threat & Vulnerability Management](microsoft-defender-atp/next-gen-threat-and-vuln-mgt.md) as [Configuration score](microsoft-defender-atp/configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + Microsoft Defender ATP includes a secure score to help you dynamically assess the security state of your enterprise network, identify unprotected systems, and take recommended actions to improve the overall security of your organization. - [Asset inventory](microsoft-defender-atp/secure-score-dashboard.md) - [Recommended improvement actions](microsoft-defender-atp/secure-score-dashboard.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md index 95b79f587e..507fe16a4d 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md +++ b/windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md @@ -1,14 +1,14 @@ --- title: Configure information protection in Windows ms.reviewer: -description: Learn how to expand the coverage of WIP to protect files based on their label, regardless of their origin. +description: Learn how to expand the coverage of Windows Information Protection (WIP) to protect files based on their label, regardless of their origin. keywords: information, protection, data, loss, prevention, wip, policy, scc, compliance, labels, dlp search.product: eADQiWindows 10XVcnh ms.prod: w10 ms.mktglfcycl: deploy ms.sitesec: library ms.pagetype: security -ms.author: mjcaparas +ms.author: macapara author: mjcaparas ms.localizationpriority: medium manager: dansimp @@ -34,34 +34,36 @@ If a file meets the criteria set in the policy settings and endpoint data loss p ## Prerequisites - Endpoints need to be on Windows 10, version 1809 or later -- You'll need the appropriate license to leverage the Microsoft Defender ATP and Azure Information Protection integration -- Your tenant needs to be onboarded to Azure Information Protection analytics, for more information see, [Configure a Log Analytics workspace for the reports](https://docs.microsoft.com/azure/information-protection/reports-aip#configure-a-log-analytics-workspace-for-the-reports) +- You need the appropriate license to use the Microsoft Defender ATP and Azure Information Protection integration +- Your tenant needs to be onboarded to Azure Information Protection analytics, for more information, see [Configure a Log Analytics workspace for the reports](https://docs.microsoft.com/azure/information-protection/reports-aip#configure-a-log-analytics-workspace-for-the-reports) ## Configure endpoint data loss prevention +Complete the following steps so that Microsoft Defender ATP can automatically identify labeled documents stored on the device and enable WIP on them. + +>[!NOTE] +>- The Microsoft Defender ATP configuration is pulled every 15 minutes. Allow up to 30 minutes for the new policy to take effect and ensure that the endpoint is online. Otherwise, it will not receive the policy. +>- Data forwarded to Azure Information Protection is stored in the same location as your other Azure Information Protection data. + 1. Define a WIP policy and assign it to the relevant devices. For more information, see [Protect your enterprise data using Windows Information Protection (WIP)](https://docs.microsoft.com/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip). If WIP is already configured on the relevant devices, skip this step. 2. Define which labels need to get WIP protection in Office 365 Security and Compliance. 1. Go to: **Classifications > Labels**. - 2. Create a new label or edit an existing one. + 2. Create a label or edit an existing one. 3. In the configuration wizard, go to 'Data loss prevention' tab and enable WIP. ![Image of Office 365 Security and Compliance sensitivity label](images/endpoint-data-loss-protection.png) 4. Repeat for every label that you want to get WIP applied to in Windows. -After completing these steps Microsoft Defender ATP will automatically identify labeled documents stored on the device and enable WIP on them. ->[!NOTE] ->- The Microsoft Defender ATP configuration is pulled every 15 minutes. Allow up to 30 minutes for the new policy to take effect and ensure that the endpoint is online. Otherwise, it will not receive the policy. ->- Data forwarded to Azure Information Protection is stored in the same location as your other Azure Information Protection data. ## Configure auto labeling -Windows automatically detects when an Office file, PDF, CSV or TXT files are being created on a device and inspects it based on context to identify sensitive information types. +Windows automatically detects when an Office file, CSV, or TXT files are being created on a device and inspects it based on context to identify sensitive information types. -Those information types are evaluated against the auto-labeling policy. If a match is found, it is processed in the same way as if the file was labeled; the file is protected with Endpoint data loss prevention. +Those information types are evaluated against the auto-labeling policy. If a match is found, it is processed in the same way as if the file was labeled. The file is protected with Endpoint data loss prevention. >[!NOTE] > Auto-labeling requires Windows 10, version 1903. diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md index c72919ffb8..70561d13b0 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md @@ -99,6 +99,9 @@ In conjunction with being able to quickly respond to advanced attacks, Microsoft **[Secure score](overview-secure-score.md)**
+>[!NOTE] +> Secure score is now part of [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + Microsoft Defender ATP includes a secure score to help you dynamically assess the security state of your enterprise network, identify unprotected systems, and take recommended actions to improve the overall security of your organization. diff --git a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md index cb57adc063..1d466fca97 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md +++ b/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score.md @@ -21,6 +21,9 @@ ms.topic: conceptual **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) +>[!NOTE] +> Secure score is now part of [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + The Secure score dashboard expands your visibility into the overall security posture of your organization. From this dashboard, you'll be able to quickly assess the security posture of your organization, see machines that require attention, as well as recommendations for actions to further reduce the attack surface in your organization - all in one place. From there you can take action based on the recommended configuration baselines. >[!IMPORTANT] @@ -37,11 +40,11 @@ The **Secure score dashboard** displays a snapshot of: ![Secure score dashboard](images/new-secure-score-dashboard.png) ## Microsoft secure score -The Microsoft secure score tile is reflective of the sum of all the Windows Defender security controls that are configured according to the recommended baseline and Office 365 controls. It allows you to drill down into each portal for further analysis. You can also improve this score by taking the steps in configuring each of the security controls in the optimal settings. +The Microsoft secure score tile is reflective of the sum of all the Microsoft Defender security controls that are configured according to the recommended baseline and Office 365 controls. It allows you to drill down into each portal for further analysis. You can also improve this score by taking the steps in configuring each of the security controls in the optimal settings. ![Image of Microsoft secure score tile](images/mss.png) -Each Windows Defender security control contributes 100 points to the score. The total number is reflective of the score potential and calculated by multiplying the number of supported security controls (Microsoft Defender security controls pillars) by the maximum points that each pillar contributes (maximum of 100 points for each pillar). +Each Windows Defender security control contributes 100 points to the score. The total number is reflective of the score potential and calculated by multiplying the number of supported security controls (Windows Defender security controls pillars) by the maximum points that each pillar contributes (maximum of 100 points for each pillar). The Office 365 Secure Score looks at your settings and activities and compares them to a baseline established by Microsoft. For more information, see [Introducing the Office 365 Secure Score](https://support.office.com/en-us/article/introducing-the-office-365-secure-score-c9e7160f-2c34-4bd0-a548-5ddcc862eaef#howtoaccess). @@ -77,5 +80,14 @@ Within the tile, you can click on each control to see the recommended optimizati Clicking the link under the **Misconfigured machines** column opens up the **Machines list** with filters applied to show only the list of machines where the recommendation is applicable. You can export the list in Excel to create a target collection and apply relevant policies using a management solution of your choice. ## Related topic +- [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) +- [Threat & Vulnerability Management dashboard overview](tvm-dashboard-insights.md) +- [Exposure score](tvm-exposure-score.md) +- [Configuration score](configuration-score.md) +- [Security recommendations](tvm-security-recommendation.md) +- [Remediation](tvm-remediation.md) +- [Software inventory](tvm-software-inventory.md) +- [Weaknesses](tvm-weaknesses.md) +- [Scenarios](threat-and-vuln-mgt-scenarios.md) - [Threat analytics](threat-analytics.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md index ad43e002b8..b98230426d 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md +++ b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md @@ -20,6 +20,9 @@ ms.topic: article **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) +>[!NOTE] +> Secure score is now part of [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) as [Configuration score](configuration-score.md). The secure score page will be available for a few weeks. View the [Secure score](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/overview-secure-score) page. + Each security control lists recommendations that you can take to increase the security posture of your organization. ### Endpoint detection and response (EDR) optimization @@ -281,6 +284,16 @@ For more information, see [Manage Windows Defender Credential Guard](https://doc ## Related topics - [Overview of Secure score](overview-secure-score.md) +- [Risk-based Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) +- [Threat & Vulnerability Management dashboard overview](tvm-dashboard-insights.md) +- [Exposure score](tvm-exposure-score.md) +- [Configuration score](configuration-score.md) +- [Security recommendations](tvm-security-recommendation.md) +- [Remediation](tvm-remediation.md) +- [Software inventory](tvm-software-inventory.md) +- [Weaknesses](tvm-weaknesses.md) +- [Scenarios](threat-and-vuln-mgt-scenarios.md) + From 8c1623c655f4da0c51eb0e6970a6be743ce540ab Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Wed, 24 Jul 2019 16:52:55 -0700 Subject: [PATCH 074/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ponents-to-microsoft-services-using-MDM.md | 33 ++++++++++++++++--- 1 file changed, 28 insertions(+), 5 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index b022cf4bcd..d58ff1558b 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -41,13 +41,36 @@ The following table lists management options for each setting. For Windows 10, the following MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). 1. **Automatic Root Certificates Update** - 1. **MDM Policy:** There is intentionally no MDM available for Automatic Root Certificate Update. - 1. **Description:** This MDM does not exist since it would prevent the operation and management of MDM management of devices. + 1. **MDM Policy:** There is intentionally no MDM available for Automatic Root Certificate Update. This MDM does not exist since it would prevent the operation and management of MDM management of devices. 1. **Cortana and Search** - 1. **MDM Policy:** [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana) - 1. **Description:** Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** -1. (fin) + 1. **MDM Policy:** [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana). Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** + 1. **MDM Policy:** [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation). Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)** + +1. **Date & Time** + 1. **MDM Policy:** [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime). Allows the user to change date and time settings. **Set to 0 (zero)** + +1. **Device metadata retrieval** + 1. **MDM Policy:** [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork). Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled** + +1. **Find My Device ** + 1. **MDM Policy:** [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice). This policy turns on Find My Device. **Set to 0 (zero)** + +1. **Font streaming** + 1. **MDM Policy:** [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders). Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** +1. **Insider Preview builds** + 1. **MDM Policy:** [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview). This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)** + +1. **Internet Explorer** + 1. The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) + 1. **MDM Policy:** [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites). Recommends websites based on the user’s browsing activity. **Set to Disabled** + 1. **MDM Policy:** [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter). Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled** + 1. **MDM Policy** [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature). Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled** + 1. **MDM Policy** [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange). Determines whether users can change the default Home Page or not. **Set to Enabled** + 1. **MDM Policy** [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard) | Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** + + + > | Setting | MDM Policy | Description | From 9868ee3bc437805395069273f7d6fe46bc21e287 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Wed, 24 Jul 2019 16:53:56 -0700 Subject: [PATCH 075/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...rating-system-components-to-microsoft-services-using-MDM.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index d58ff1558b..a05b3d4aaa 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -61,8 +61,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. **Insider Preview builds** 1. **MDM Policy:** [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview). This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)** -1. **Internet Explorer** - 1. The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) +1. **Internet Explorer** The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) 1. **MDM Policy:** [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites). Recommends websites based on the user’s browsing activity. **Set to Disabled** 1. **MDM Policy:** [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter). Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled** 1. **MDM Policy** [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature). Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled** From 8a054736558d6fe1d3cf191469d9d86994796f72 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Wed, 24 Jul 2019 17:05:18 -0700 Subject: [PATCH 076/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ponents-to-microsoft-services-using-MDM.md | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index a05b3d4aaa..744cb55fbe 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -68,6 +68,25 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. **MDM Policy** [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange). Determines whether users can change the default Home Page or not. **Set to Enabled** 1. **MDM Policy** [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard) | Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** +1. **Live Tiles** + 1. **MDM Policy:** [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications). This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled** + +1. **Mail synchronization** + 1. **MDM Policy:** [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection). Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** + +1. **Microsoft Account** + 1. **MDM Policy:** [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant). Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** + +1. **Microsoft Edge** The following Microsoft Edge MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). For a complete list of the Microsoft Edge policies, see [Available policies for Microsoft Edge](https://docs.microsoft.com/microsoft-edge/deploy/available-policies). + 1. **MDM Policy:** [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill). Choose whether employees can use autofill on websites. **Set to 0 (zero)** + 1. **MDM Policy:** [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack). Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** + 1. **MDM Policy:** [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist). Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** + 1. **MDM Policy:** [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager). Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** + 1. **MDM Policy:** [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar). Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** + + 1. **MDM Policy:** [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen). Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** + + From f2e9280d3659056ae546127c4d982436923394cf Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 10:42:00 -0400 Subject: [PATCH 077/138] revised language --- .../advanced-hunting-reference.md | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index 554c80e95f..db6c6acd5e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -28,9 +28,11 @@ ms.date: 07/24/2019 ## Advanced hunting table reference -The advanced hunting schema comprise multiple tables that provide either event information or information about certain entities. +The Advanced hunting schema is made up of multiple tables, which provide either event information or information about certain entities. Table and column names are used for calling information about specific events or entities in queries. -To effectively build queries that span multiple tables, you need to understand the columns, or fields, in the Advanced hunting schema. The following reference lists all tables used by Advanced hunting. It also links to pages describing the tables' contents, including official column names. This information is also available in the schema representation in the Advanced hunting screen. +The following reference lists all the tables in the Advanced hunting schema. Each table name links to a page describing the column names for that table. + +Table and column names are also listed within the Security center, in the schema representation on the Advanced hunting screen. | Table name | Description | |------------|-------------| @@ -46,8 +48,6 @@ To effectively build queries that span multiple tables, you need to understand t | **[MiscEvents]()** | Multiple event types, including events triggered by security controls such as Windows Defender Antivirus and exploit protection | | **[SoftwareVulnerabilityInfo]()** | Information about software in use, including version information as well as known vulnerabilities | ->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-belowfoldlink) - ## Related topics - [Query data using Advanced hunting](advanced-hunting.md) -- [Advanced hunting query language best practices](advanced-hunting-best-practices.md) \ No newline at end of file +- [Best practices for Advanced hunting query-writing](advanced-hunting-best-practices.md) \ No newline at end of file From 450b8def3d37822cc4995be090ff3d32c2289721 Mon Sep 17 00:00:00 2001 From: lomayor Date: Thu, 25 Jul 2019 07:49:54 -0700 Subject: [PATCH 078/138] Update configure-machines-security-baseline.md --- .../configure-machines-security-baseline.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md index 14dbc385d6..defa48fd67 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md @@ -46,7 +46,10 @@ Both baselines are maintained so that they complement one another and have ident ## Get permissions to manage security baselines in Intune -By default, only users who have been assigned the Global Administrator or the Intune Service Administrator role on Azure AD can manage security baseline profiles. If you haven’t been assigned either role, work with a Global Administrator or an Intune Service Administrator to [create a custom role in Intune](https://docs.microsoft.com/intune/create-custom-role#to-create-a-custom-role) with full permissions to security baselines and then assign that role to your Azure AD group. +By default, only users who have been assigned the Global Administrator or the Intune Service Administrator role on Azure AD can manage security baseline profiles. If you haven’t been assigned either role, work with a Global Administrator or an Intune Service Administrator to [create and assign a custom role in Intune](https://docs.microsoft.com/intune/create-custom-role#to-create-a-custom-role) with: + +* Read permissions to the organization +* Full permissions to security baselines ![Security baseline permissions on Intune](images/secconmgmt_baseline_permissions.png) From f6afb7952c35a0da417b97ced879a5913416e7c0 Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 11:00:59 -0400 Subject: [PATCH 079/138] alertevents-table created & filled out --- .../alertevents-table.md | 55 +++++++++++++++++++ 1 file changed, 55 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/alertevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/alertevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/alertevents-table.md new file mode 100644 index 0000000000..37e742b7b1 --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/alertevents-table.md @@ -0,0 +1,55 @@ +--- +title: AlertEvents +description: Learn about Advanced hunting table AlertEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, alertevent +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# AlertEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +## Table description + +AlertEvents is a table in the Advanced hunting schema, which contains information about events on Microsoft Defender Security Center. You can use the reference below to construct queries that return information from this table. + +## Advanced hunting column reference + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| AlertId | string | Unique identifier for the alert | +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| Severity | string | Indicates the potential impact (high, medium, or low) of the threat indicator or breach activity identified by the alert | +| Category | string | Type of threat indicator or breach activity identified by the alert | +| Title | string | Title of the alert | +| FileName | string | Name of the file that the recorded action was applied to | +| SHA1 | string | SHA-1 of the file that the recorded action was applied to | +| RemoteUrl | string | URL or fully qualified domain name (FQDN) that was being connected to | +| RemoteIP | string | IP address that was being connected to | +|ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| Table | string | Table that contains the details of the event | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From a36b5b4639b5eb7ae117813780e8893525355855 Mon Sep 17 00:00:00 2001 From: lomayor Date: Thu, 25 Jul 2019 09:20:12 -0700 Subject: [PATCH 080/138] Config-mgmt --- .../configure-machines-security-baseline.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md index defa48fd67..9ef47de4a4 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md @@ -107,7 +107,7 @@ Machine configuration management monitors baseline compliance only of Windows 10 *Saving and deploying the security baseline profile on Intune* >[!TIP] ->To learn more about Intune security baselines and assigning them, read [Create a Windows 10 security baseline in Intune](https://docs.microsoft.com/intune/security-baselines). +>Security baselines on Intune provide a convenient way to comprehensively secure and protect your machines. [Learn more about security baselines on Intune](https://docs.microsoft.com/intune/security-baselines). >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-onboardconfigure-belowfoldlink) From 79147e50040bf6185e8e5d2cdbf53d907713a43d Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Thu, 25 Jul 2019 09:37:06 -0700 Subject: [PATCH 081/138] Rebranded product names and fixed g errors --- .../secure-score-dashboard.md | 92 +++++++++---------- 1 file changed, 46 insertions(+), 46 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md index 447334546e..baef63a3f7 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md +++ b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md @@ -27,7 +27,7 @@ ms.topic: conceptual Each security control lists recommendations that you can take to increase the security posture of your organization. ### Endpoint detection and response (EDR) optimization -For an machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for your Endpoint detection and response tool. +For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for your Endpoint detection and response tool. >[!IMPORTANT] >This feature is available for machines on Windows 10, version 1607 or later. @@ -45,18 +45,18 @@ You can take the following actions to increase the overall security score of you For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). -### Windows Defender Antivirus (Windows Defender AV) optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Windows Defender AV is fulfilled. +### Microsoft Defender Antivirus (Microsoft Defender AV) optimization +For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender AV is fulfilled. >[!IMPORTANT] >This feature is available for machines on Windows 10, version 1607 or later. -#### Minimum baseline configuration setting for Windows Defender AV: -Machines are considered "well configured" for Windows Defender AV if the following requirements are met: +#### Minimum baseline configuration setting for Microsoft Defender AV: +Machines are considered "well configured" for Microsoft Defender AV if the following requirements are met: -- Windows Defender AV is reporting correctly -- Windows Defender AV is turned on -- Security intelligence is up to date +- Microsoft Defender AV is reporting correctly +- Microsoft Defender AV is turned on +- Security intelligence is up-to-date - Real-time protection is on - Potentially Unwanted Application (PUA) protection is enabled @@ -64,16 +64,16 @@ Machines are considered "well configured" for Windows Defender AV if the followi You can take the following actions to increase the overall security score of your organization: >[!NOTE] -> For the Windows Defender Antivirus properties to show, you'll need to ensure that the Windows Defender Antivirus Cloud-based protection is properly configured on the machine. +> For the Microsoft Defender Antivirus properties to show, you'll need to ensure that the Microsoft Defender Antivirus Cloud-based protection is properly configured on the machine. - Fix antivirus reporting - - This recommendation is displayed when the Windows Defender Antivirus is not properly configured to report its health state. For more information on fixing the reporting, see [Configure and validate network connections](../windows-defender-antivirus/configure-network-connections-windows-defender-antivirus.md). + - This recommendation is displayed when the Microsoft Defender Antivirus is not properly configured to report its health state. For more information on fixing the reporting, see [Configure and validate network connections](../windows-defender-antivirus/configure-network-connections-windows-defender-antivirus.md). - Turn on antivirus - Update antivirus Security intelligence - Turn on real-time protection - Turn on PUA protection -For more information, see [Configure Windows Defender Antivirus](../windows-defender-antivirus/configure-windows-defender-antivirus-features.md). +For more information, see [Configure Microsoft Defender Antivirus](../windows-defender-antivirus/configure-windows-defender-antivirus-features.md). ### OS security updates optimization @@ -90,15 +90,15 @@ You can take the following actions to increase the overall security score of you For more information, see [Windows Update Troubleshooter](https://support.microsoft.com/help/4027322/windows-windows-update-troubleshooter). -### Windows Defender Exploit Guard (Windows Defender EG) optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on machines so that the minimum baseline configuration setting for Windows Defender EG is fulfilled. When endpoints are configured according to the baseline you'll be able to see Windows Defender EG events on the Microsoft Defender ATP Machine timeline. +### Microsoft Defender Exploit Guard (Microsoft Defender EG) optimization +For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on machines so that the minimum baseline configuration setting for Microsoft Defender EG is fulfilled. When endpoints are configured according to the baseline you'll be able to see Microsoft Defender EG events on the Microsoft Defender ATP Machine timeline. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. -#### Minimum baseline configuration setting for Windows Defender EG: -Machines are considered "well configured" for Windows Defender EG if the following requirements are met: +#### Minimum baseline configuration setting for Microsoft Defender EG: +Machines are considered "well configured" for Microsoft Defender EG if the following requirements are met: - System level protection settings are configured correctly - Attack Surface Reduction rules are configured correctly @@ -148,21 +148,21 @@ You can take the following actions to increase the overall security score of you - Turn on all system-level Exploit Protection settings - Set all ASR rules to enabled or audit mode - Turn on Controlled Folder Access -- Turn on Windows Defender Antivirus on compatible machines +- Turn on Microsoft Defender Antivirus on compatible machines -For more information, see [Windows Defender Exploit Guard](../windows-defender-exploit-guard/windows-defender-exploit-guard.md). +For more information, see [Microsoft Defender Exploit Guard](../windows-defender-exploit-guard/windows-defender-exploit-guard.md). -### Windows Defender Application Guard (Windows Defender AG) optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Windows Defender AG is fulfilled. When endpoints are configured according to the baseline you'll be able to see Windows Defender AG events on the Microsoft Defender ATP Machine timeline. +### Microsoft Defender Application Guard (Microsoft Defender AG) optimization +For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender AG is fulfilled. When endpoints are configured according to the baseline you'll be able to see Microsoft Defender AG events on the Microsoft Defender ATP Machine timeline. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. -#### Minimum baseline configuration setting for Windows Defender AG: -Machines are considered "well configured" for Windows Defender AG if the following requirements are met: +#### Minimum baseline configuration setting for Microsoft Defender AG: +Machines are considered "well configured" for Microsoft Defender AG if the following requirements are met: - Hardware and software prerequisites are met -- Windows Defender AG is turned on compatible machines +- Microsoft Defender AG is turned on compatible machines - Managed mode is turned on ##### Recommended actions: @@ -170,26 +170,26 @@ You can take the following actions to increase the overall security score of you - Ensure hardware and software prerequisites are met >[!NOTE] - >This improvement item does not contribute to the security score in itself because it's not a prerequisite for Windows Defender AG. It gives an indication of a potential reason why Windows Defender AG is not turned on. + >This improvement item does not contribute to the security score in itself because it's not a prerequisite for Microsoft Defender AG. It gives an indication of a potential reason why Microsoft Defender AG is not turned on. -- Turn on Windows Defender AG on compatible machines +- Turn on Microsoft Defender AG on compatible machines - Turn on managed mode -For more information, see [Windows Defender Application Guard overview](../windows-defender-application-guard/wd-app-guard-overview.md). +For more information, see [Microsoft Defender Application Guard overview](../windows-defender-application-guard/wd-app-guard-overview.md). -### Windows Defender SmartScreen optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Windows Defender SmartScreen is fulfilled. +### Microsoft Defender SmartScreen optimization +For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender SmartScreen is fulfilled. >[!WARNING] -> Data collected by Windows Defender SmartScreen might be stored and processed outside of the storage location you have selected for your Microsoft Defender ATP data. +> Data collected by Microsoft Defender SmartScreen might be stored and processed outside of the storage location you have selected for your Microsoft Defender ATP data. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. -#### Minimum baseline configuration setting for Windows Defender SmartScreen: +#### Minimum baseline configuration setting for Microsoft Defender SmartScreen: The following settings must be configured with the following settings: - Check apps and files: **Warn** or **Block** - SmartScreen for Microsoft Edge: **Warn** or **Block** @@ -201,27 +201,27 @@ You can take the following actions to increase the overall security score of you - Set **SmartScreen for Microsoft Edge** to **Warn** or **Block** - Set **SmartScreen for Microsoft store apps** to **Warn** or **Off** -For more information, see [Windows Defender SmartScreen](../windows-defender-smartscreen/windows-defender-smartscreen-overview.md). +For more information, see [Microsoft Defender SmartScreen](../windows-defender-smartscreen/windows-defender-smartscreen-overview.md). -### Windows Defender Firewall optimization -For a machine to be considered "well configured", Windows Defender Firewall must be turned on and enabled for all profiles and inbound connections are blocked by default. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Windows Defender Firewall is fulfilled. +### Microsoft Defender Firewall optimization +For a machine to be considered "well configured", Microsoft Defender Firewall must be turned on and enabled for all profiles and inbound connections are blocked by default. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender Firewall is fulfilled. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. -#### Minimum baseline configuration setting for Windows Defender Firewall +#### Minimum baseline configuration setting for Microsoft Defender Firewall -- Windows Defender Firewall is turned on for all network connections -- Secure domain profile by enabling Windows Defender Firewall and ensure that Inbound connections is set to Blocked -- Secure private profile by enabling Windows Defender Firewall and ensure that Inbound connections is set to Blocked -- Secure public profile is configured by enabling Windows Defender Firewall and ensure that Inbound connections is set to Blocked +- Microsoft Defender Firewall is turned on for all network connections +- Secure domain profile by enabling Microsoft Defender Firewall and ensure that Inbound connections are set to Blocked +- Secure private profile by enabling Microsoft Defender Firewall and ensure that Inbound connections are set to Blocked +- Secure public profile is configured by enabling Microsoft Defender Firewall and ensure that Inbound connections are set to Blocked -For more information on Windows Defender Firewall settings, see [Planning settings for a basic firewall policy](https://docs.microsoft.com/windows/security/identity-protection/windows-firewall/planning-settings-for-a-basic-firewall-policy). +For more information on Microsoft Defender Firewall settings, see [Planning settings for a basic firewall policy](https://docs.microsoft.com/windows/security/identity-protection/windows-firewall/planning-settings-for-a-basic-firewall-policy). >[!NOTE] -> If Windows Defender Firewall is not your primary firewall, consider excluding it from the security score calculations and make sure that your third-party firewall is configured in a securely. +> If Microsoft Defender Firewall is not your primary firewall, consider excluding it from the security score calculations and make sure that your third-party firewall is configured in a securely. ##### Recommended actions: @@ -234,7 +234,7 @@ You can take the following actions to increase the overall security score of you - Fix sensor data collection - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. Therefore, it's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). -For more information, see [Windows Defender Firewall with Advanced Security](https://docs.microsoft.com/windows/security/identity-protection/windows-firewall/windows-firewall-with-advanced-security). +For more information, see [Microsoft Defender Firewall with Advanced Security](https://docs.microsoft.com/windows/security/identity-protection/windows-firewall/windows-firewall-with-advanced-security). ### BitLocker optimization For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for BitLocker is fulfilled. @@ -258,17 +258,17 @@ You can take the following actions to increase the overall security score of you For more information, see [Bitlocker](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-overview). -### Windows Defender Credential Guard optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Windows Defender Credential Guard is fulfilled. +### Microsoft Defender Credential Guard optimization +For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender Credential Guard is fulfilled. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. -#### Minimum baseline configuration setting for Windows Defender Credential Guard: -Machines are considered "well configured" for Windows Defender Credential Guard if the following requirements are met: +#### Minimum baseline configuration setting for Microsoft Defender Credential Guard: +Machines are considered "well configured" for Microsoft Defender Credential Guard if the following requirements are met: - Hardware and software prerequisites are met -- Windows Defender Credential Guard is turned on compatible machines +- Microsoft Defender Credential Guard is turned on compatible machines ##### Recommended actions: @@ -279,7 +279,7 @@ You can take the following actions to increase the overall security score of you - Fix sensor data collection - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. Therefore, it's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). -For more information, see [Manage Windows Defender Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-manage). +For more information, see [Manage Microsoft Defender Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-manage). >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-sadashboard-belowfoldlink) From 7ad16e8c9da6a99d7a4ca20c367e82ae685f890e Mon Sep 17 00:00:00 2001 From: Dulce Montemayor Date: Thu, 25 Jul 2019 10:11:42 -0700 Subject: [PATCH 082/138] Reduced verbosity --- .../secure-score-dashboard.md | 28 +++++++++---------- 1 file changed, 14 insertions(+), 14 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md index baef63a3f7..b0ae432a26 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md +++ b/windows/security/threat-protection/microsoft-defender-atp/secure-score-dashboard.md @@ -27,7 +27,7 @@ ms.topic: conceptual Each security control lists recommendations that you can take to increase the security posture of your organization. ### Endpoint detection and response (EDR) optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for your Endpoint detection and response tool. +A well-configured machine complies to a minimum baseline configuration setting. This tile shows you a list of actions to apply on endpoints to meet the minimum baseline configuration setting for your Endpoint detection and response tool. >[!IMPORTANT] >This feature is available for machines on Windows 10, version 1607 or later. @@ -46,7 +46,7 @@ You can take the following actions to increase the overall security score of you For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). ### Microsoft Defender Antivirus (Microsoft Defender AV) optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender AV is fulfilled. +A well-configured machine complies to a minimum baseline configuration setting. This tile shows you a list of actions to apply on endpoints to meet the minimum baseline configuration setting for Microsoft Defender AV. >[!IMPORTANT] >This feature is available for machines on Windows 10, version 1607 or later. @@ -77,7 +77,7 @@ For more information, see [Configure Microsoft Defender Antivirus](../windows-de ### OS security updates optimization -This tile shows you the exact number of machines that require the latest security updates. It also shows machines that are running on the latest Windows Insider preview build and serves as a reminder to ensure that users should run the latest builds. +This tile shows you the number of machines that require the latest security updates. It also shows machines that are running on the latest Windows Insider preview build and serves as a reminder to ensure that users should run the latest builds. >[!IMPORTANT] >This feature is available for machines on Windows 10, version 1607 or later. @@ -85,13 +85,13 @@ This tile shows you the exact number of machines that require the latest securit You can take the following actions to increase the overall security score of your organization: - Install the latest security updates - Fix sensor data collection - - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. Therefore, it's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). + - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. It's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). For more information, see [Windows Update Troubleshooter](https://support.microsoft.com/help/4027322/windows-windows-update-troubleshooter). ### Microsoft Defender Exploit Guard (Microsoft Defender EG) optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on machines so that the minimum baseline configuration setting for Microsoft Defender EG is fulfilled. When endpoints are configured according to the baseline you'll be able to see Microsoft Defender EG events on the Microsoft Defender ATP Machine timeline. +A well-configured machine complies to a minimum baseline configuration setting. This tile shows you a list of actions to apply on machines to meet the minimum baseline configuration setting for Microsoft Defender EG. When endpoints are configured according to the baseline the Microsoft Defender EG events shows on the Microsoft Defender ATP Machine timeline. >[!IMPORTANT] @@ -153,7 +153,7 @@ You can take the following actions to increase the overall security score of you For more information, see [Microsoft Defender Exploit Guard](../windows-defender-exploit-guard/windows-defender-exploit-guard.md). ### Microsoft Defender Application Guard (Microsoft Defender AG) optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender AG is fulfilled. When endpoints are configured according to the baseline you'll be able to see Microsoft Defender AG events on the Microsoft Defender ATP Machine timeline. +A well-configured machine complies to a minimum baseline configuration setting. This tile shows you a list of actions to apply on endpoints to meet the minimum baseline configuration setting for Microsoft Defender AG. When endpoints are configured according to the baseline, Microsoft Defender AG events shows on the Microsoft Defender ATP Machine timeline. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. @@ -180,7 +180,7 @@ For more information, see [Microsoft Defender Application Guard overview](../win ### Microsoft Defender SmartScreen optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender SmartScreen is fulfilled. +A well-configured machine complies to a minimum baseline configuration setting. This tile shows you a list of actions to apply on endpoints to meet the minimum baseline configuration setting for Microsoft Defender SmartScreen. >[!WARNING] > Data collected by Microsoft Defender SmartScreen might be stored and processed outside of the storage location you have selected for your Microsoft Defender ATP data. @@ -206,7 +206,7 @@ For more information, see [Microsoft Defender SmartScreen](../windows-defender-s ### Microsoft Defender Firewall optimization -For a machine to be considered "well configured", Microsoft Defender Firewall must be turned on and enabled for all profiles and inbound connections are blocked by default. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender Firewall is fulfilled. +A well-configured machine must have Microsoft Defender Firewall turned on and enabled for all profiles so that inbound connections are blocked by default. This tile shows you a list of actions to apply on endpoints to meet the minimum baseline configuration setting for Microsoft Defender Firewall. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. @@ -232,12 +232,12 @@ You can take the following actions to increase the overall security score of you - Secure public profile - Verify secure configuration of third-party firewall - Fix sensor data collection - - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. Therefore, it's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). + - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. It's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). For more information, see [Microsoft Defender Firewall with Advanced Security](https://docs.microsoft.com/windows/security/identity-protection/windows-firewall/windows-firewall-with-advanced-security). ### BitLocker optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for BitLocker is fulfilled. +A well-configured machine complies to the minimum baseline configuration setting. This tile shows you a list of actions to apply on endpoints to meet the minimum baseline configuration setting for BitLocker. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1803 or later. @@ -254,18 +254,18 @@ You can take the following actions to increase the overall security score of you - Resume protection on all drives - Ensure drive compatibility - Fix sensor data collection - - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. Therefore, it's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). + - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. It's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). For more information, see [Bitlocker](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-overview). ### Microsoft Defender Credential Guard optimization -For a machine to be considered "well configured", it must comply to a minimum baseline configuration setting. This tile shows you a specific list of actions you must apply on endpoints so that the minimum baseline configuration setting for Microsoft Defender Credential Guard is fulfilled. +A well-configured machine complies to the minimum baseline configuration setting. This tile shows you a list of actions to apply on endpoints to meet the minimum baseline configuration setting for Microsoft Defender Credential Guard. >[!IMPORTANT] >This security control is only applicable for machines with Windows 10, version 1709 or later. #### Minimum baseline configuration setting for Microsoft Defender Credential Guard: -Machines are considered "well configured" for Microsoft Defender Credential Guard if the following requirements are met: +Well-configured machines for Microsoft Defender Credential Guard meets the following requirements: - Hardware and software prerequisites are met - Microsoft Defender Credential Guard is turned on compatible machines @@ -277,7 +277,7 @@ You can take the following actions to increase the overall security score of you - Ensure hardware and software prerequisites are met - Turn on Credential Guard - Fix sensor data collection - - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. Therefore, it's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). + - The Microsoft Defender ATP service relies on sensor data collection to determine the security state of a machine. The service will not be able to determine the security state of machines that are not reporting sensor data properly. It's important to ensure that sensor data collection is working properly. For more information, see [Fix unhealthy sensors](fix-unhealthy-sensors.md). For more information, see [Manage Microsoft Defender Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-manage). From 21450ce7b23cac2b1f621e93243ea9805bb06f8c Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 13:37:34 -0400 Subject: [PATCH 083/138] added machineinfo, changed last page's name --- ... => advanced-hunting-alertevents-table.md} | 8 ++- .../advanced-hunting-machineinfo-table.md | 54 +++++++++++++++++++ 2 files changed, 57 insertions(+), 5 deletions(-) rename windows/security/threat-protection/microsoft-defender-atp/{alertevents-table.md => advanced-hunting-alertevents-table.md} (80%) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/alertevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md similarity index 80% rename from windows/security/threat-protection/microsoft-defender-atp/alertevents-table.md rename to windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md index 37e742b7b1..b233cdf455 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/alertevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md @@ -26,11 +26,9 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -## Table description +AlertEvents is a table in the Advanced hunting schema. It contains information about alerts on Microsoft Defender Security Center. You can use the reference below to construct queries that return information from this table. -AlertEvents is a table in the Advanced hunting schema, which contains information about events on Microsoft Defender Security Center. You can use the reference below to construct queries that return information from this table. - -## Advanced hunting column reference +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. | Column name | Data type | Description | |-------------|-----------|-------------| @@ -45,7 +43,7 @@ AlertEvents is a table in the Advanced hunting schema, which contains informatio | SHA1 | string | SHA-1 of the file that the recorded action was applied to | | RemoteUrl | string | URL or fully qualified domain name (FQDN) that was being connected to | | RemoteIP | string | IP address that was being connected to | -|ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | | Table | string | Table that contains the details of the event | ## Related topics diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md new file mode 100644 index 0000000000..5b29c9be66 --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md @@ -0,0 +1,54 @@ +--- +title: MachineInfo +description: Learn about Advanced hunting table MachineInfo, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, machineinfo +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# MachineInfo + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +MachineInfo is a table in the Advanced hunting schema. It contains information about machines in the organization, including OS information. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ClientVersion | string | Version of the endpoint agent or sensor running on the machine | +| PublicIP | string | Public IP address used by the onboarded machine to connect to the Microsoft Defender ATP service. This could be the IP address of the machine itself, a NAT device, or a proxy | +| OSArchitecture | string | Architecture of the operating system running on the machine | +| OSPlatform | string | Platform of the operating system running on the machine. This indicates specific operating systems, including variations within the same family, such as Windows 10 and Windows 7 | +| OSBuild | string | Build version of the operating system running on the machine | +| IsAzureADJoined | boolean | Boolean indicator of whether machine is joined to the Azure Active Directory | +| LoggedOnUsers | string | List of all users that are logged on the machine at the time of the event in JSON array format | +| RegistryMachineTag | string | Machine tag added through the registry | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| OSVersion | string | Version of the operating system running on the machine | +| MachineGroup | string | Machine group of the machine. This group is used by role-based access control to determine access to the machine | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 8844050610427eb474ea4b5f0170eb03e8b0ae8a Mon Sep 17 00:00:00 2001 From: denisebmsft Date: Thu, 25 Jul 2019 10:51:32 -0700 Subject: [PATCH 084/138] Update index.md --- windows/security/threat-protection/index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/index.md b/windows/security/threat-protection/index.md index 8ef02bab91..1f0dbd9f9e 100644 --- a/windows/security/threat-protection/index.md +++ b/windows/security/threat-protection/index.md @@ -56,7 +56,7 @@ The attack surface reduction set of capabilities provide the first line of defen - [Network protection](windows-defender-exploit-guard/network-protection-exploit-guard.md) - [Controlled folder access](windows-defender-exploit-guard/controlled-folders-exploit-guard.md) - [Network firewall](windows-firewall/windows-firewall-with-advanced-security.md) -- [Attack surface reduction controls](windows-defender-exploit-guard/attack-surface-reduction-exploit-guard.md) +- [Attack surface reduction rules](windows-defender-exploit-guard/attack-surface-reduction-exploit-guard.md) From d441e94c256f7cfb2203a10bfd4b47e3c612954e Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 14:22:03 -0400 Subject: [PATCH 085/138] added machinenetworkinfo --- ...vanced-hunting-machinenetworkinfo-table.md | 55 +++++++++++++++++++ 1 file changed, 55 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md new file mode 100644 index 0000000000..c66389a339 --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md @@ -0,0 +1,55 @@ +--- +title: MachineNetworkInfo +description: Learn about Advanced hunting table MachineNetworkInfo, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, machinenetworkinfo +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# MachineNetworkInfo + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +MachineNetworkInfo is a table in the Advanced hunting schema. It contains information about network properties of machines, including adapters, IP and MAC addresses, as well as connected networks and domains. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| NetworkAdapterName | string | Name of the network adapter | +| MacAddress | string | MAC address of the network adapter | +| NetworkAdapterType | string | Network adapter type. For the possible values, refer to [this enumeration](https://docs.microsoft.com/dotnet/api/system.net.networkinformation.networkinterfacetype?view=netframework-4.7.2) | +| NetworkAdapterStatus | string | Operational status of the network adapter. For the possible values, refer to [this enumeration](https://docs.microsoft.com/dotnet/api/system.net.networkinformation.operationalstatus?view=netframework-4.7.2) | +| TunnelType | string | Tunneling protocol, if the interface is used for this purpose, for example 6to4, Teredo, ISATAP, PPTP, SSTP, and SSH | +| ConnectedNetworks | string | Networks that the adapter is connected to. Each JSON array contains the network name, category (public, private or domain), a description, and a flag indicating if it's connected publicly to the internet | +| DnsAddresses | string | DNS server addresses in JSON array format | +| IPv4Dhcp | string | IPv4 address of DHCP server | +| IPv6Dhcp | string | IPv6 address of DHCP server | +| DefaultGateways | string | Default gateway addresses in JSON array format | +| IPAddresses | string | JSON array containing all the IP addresses assigned to the adapter, along with their respective subnet prefix and IP address space, such as public, private, or link-local | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 15b4ca81d94e74bf86c41b1ff609e83e8a92c006 Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 15:12:38 -0400 Subject: [PATCH 086/138] added processcreationevents --- ...ced-hunting-processcreationevents-table.md | 77 +++++++++++++++++++ 1 file changed, 77 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md new file mode 100644 index 0000000000..2ce2287fec --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md @@ -0,0 +1,77 @@ +--- +title: ProcessCreationEvents +description: Learn about Advanced hunting table ProcessCreationEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, processcreationevents +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# ProcessCreationEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +ProcessCreationEvents is a table in the Advanced hunting schema. It contains information about process creation and related events. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ActionType | string | Type of activity that triggered the event | +| FileName | string | Name of the file that the recorded action was applied to | +| FolderPath | string | Folder containing the file that the recorded action was applied to | +| SHA1 | string | SHA-1 of the file that the recorded action was applied to | +| SHA256 | string | SHA-256 of the file that the recorded action was applied to. This field is usually not populated—use the SHA1 column when available. | +| MD5 | string | MD5 hash of the file that the recorded action was applied to | +| ProcessId | int | Process ID (PID) of the newly created process | +| ProcessCommandLine | string | Command line used to create the new process | +| ProcessIntegrityLevel | string | Integrity level of the newly created process. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet downloaded. These integrity levels influence permissions to resources | +| ProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the newly created process | +| ProcessCreationTime | datetime | Date and time the process was created | +| AccountDomain | string | Domain of the account | +| AccountName | string | User name of the account | +| AccountSid | string | Security Identifier (SID) of the account | +| LogonId | string | Identifier for a logon session. This identifier is unique on the same machine only between restarts | +| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | +| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | +| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | +| InitiatingProcessLogonId | string | Identifier for a logon session of the process that initiated the event. This identifier is unique on the same machine only between restarts. | +| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet download. These integrity levels influence permissions to resources | +| InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | +| InitiatingProcessSHA1 | string | SHA-1 of the process (image file) that initiated the event | +| InitiatingProcessSHA256 | string | SHA-256 of the process (image file) that initiated the event. This field is usually not populated—use the SHA1 column when available | +| InitiatingProcessMD5 | string | MD5 hash of the process (image file) that initiated the event | +| InitiatingProcessFileName | string | Name of the process that initiated the event | +| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | +| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | +| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | +| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | +| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From ba1ea3fac5d23625e459c553290bd979dcc4c5a1 Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 16:33:56 -0400 Subject: [PATCH 087/138] added networkcommunicationevents --- ...unting-networkcommunicationevents-table.md | 69 +++++++++++++++++++ 1 file changed, 69 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md new file mode 100644 index 0000000000..52e46b633a --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md @@ -0,0 +1,69 @@ +--- +title: NetworkCommunicationEvents +description: Learn about Advanced hunting table NetworkCommunicationEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, networkcommunicationevents +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# NetworkCommunicationEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +NetworkCommunicationEvents is a table in the Advanced hunting schema. It contains information about network connections and related events. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ActionType | string | Type of activity that triggered the event | +| RemoteIP | string | IP address that was being connected to | +| RemotePort | int | TCP port on the remote device that was being connected to | +| RemoteUrl | string | URL or fully qualified domain name (FQDN) that was being connected to | +| LocalIP | string | IP address assigned to the local machine used during communication | +| LocalPort | int | TCP port on the local machine used during communication | +| Protocol | string | IP protocol used, whether TCP or UDP | +| LocalIPType | string | Type of IP address, for example Public, Private, Reserved, Loopback, Teredo, FourToSixMapping, and Broadcast | +| RemoteIPType | string | Type of IP address, for example Public, Private, Reserved, Loopback, Teredo, FourToSixMapping, and Broadcast | +| InitiatingProcessSHA1 | string | SHA-1 of the process (image file) that initiated the event | +| InitiatingProcessMD5 | string | MD5 hash of the process (image file) that initiated the event | +| InitiatingProcessFileName | string | Name of the process that initiated the event | +| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | +| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | +| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | +| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | +| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | +| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | +| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | +| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | +| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet download. These integrity levels influence permissions to resources | +| InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 5254c2c2908405e9f2780b06c56fdedfeb16bdf3 Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 16:52:18 -0400 Subject: [PATCH 088/138] added filecreationevents --- ...vanced-hunting-filecreationevents-table.md | 74 +++++++++++++++++++ 1 file changed, 74 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md new file mode 100644 index 0000000000..f27d1f5445 --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md @@ -0,0 +1,74 @@ +--- +title: FileCreationEvents +description: Learn about Advanced hunting table FileCreationEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, filecreationevents +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# FileCreationEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +FileCreationEvents is a table in the Advanced hunting schema. It contains information about file creation, modification, and other file system events. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ActionType | string | Type of activity that triggered the event | +| FileName | string | Name of the file that the recorded action was applied to | +| FolderPath | string | Folder containing the file that the recorded action was applied to | +| SHA1 | string SHA-1 of the file that the recorded action was applied to | +| SHA256 | string | SHA-256 of the file that the recorded action was applied to. This field is usually not populated—use the SHA1 column when available | +| MD5 | string | MD5 hash of the file that the recorded action was applied to | +| FileOriginUrl | string | URL where the file was downloaded from | +| FileOriginReferrerUrl | string | URL of the web page that links to the downloaded file | +| FileOriginIP | string | IP address where the file was downloaded from | +| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | +| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | +| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | +| InitiatingProcessMD5 | string | MD5 hash of the process (image file) that initiated the event | +| InitiatingProcessSHA1 | string | SHA-1 of the process (image file) that initiated the event | +| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | +| InitiatingProcessFileName | string | Name of the process that initiated the event | +| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | +| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | +| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | +| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet download. These integrity levels influence permissions to resources | +| InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | +| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | +| SensitivityLabel | string | Label applied to an email, file, or other content to classify it for information protection | +| SensitivitySubLabel | string | Sublabel applied to an email, file, or other content to classify it for information protection; sensitivity sublabels are grouped under sensitivity labels but are treated independently | +| IsWindowsInfoProtectionApplied | N/A | N/A | +| IsAzureInfoProtectionApplied | boolean | Indicates whether the file is encrypted by Azure Information Protection | + + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 644ddb309013d692fcd0508013ada2ff5a9e3b0a Mon Sep 17 00:00:00 2001 From: martyav Date: Thu, 25 Jul 2019 17:23:01 -0400 Subject: [PATCH 089/138] added registryevents --- ...vanced-hunting-filecreationevents-table.md | 1 - .../advanced-hunting-registryevents-table.md | 67 +++++++++++++++++++ 2 files changed, 67 insertions(+), 1 deletion(-) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md index f27d1f5445..fb65ba4ecc 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md @@ -66,7 +66,6 @@ For information on other tables in the Advanced hunting schema, see our [Advance | IsWindowsInfoProtectionApplied | N/A | N/A | | IsAzureInfoProtectionApplied | boolean | Indicates whether the file is encrypted by Azure Information Protection | - ## Related topics - [All Advanced hunting tables](advanced-hunting-reference.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md new file mode 100644 index 0000000000..6472ef185c --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md @@ -0,0 +1,67 @@ +--- +title: RegistryEvents +description: Learn about Advanced hunting table RegistryEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, registryevents +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# RegistryEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +RegistryEvents is a table in the Advanced hunting schema. It contains information about the creation and modification of registry entries. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ActionType | string | Type of activity that triggered the event | +| RegistryKey | string | Registry key that the recorded action was applied to | +| RegistryValueType | string | Data type, such as binary or string, of the registry value that the recorded action was applied to | +| RegistryValueName | string | Name of the registry value that the recorded action was applied to | +| RegistryValueData | string | Data of the registry value that the recorded action was applied to | +| PreviousRegistryValueName | string | Original name of the registry value before it was modified | +| PreviousRegistryValueData | string | Original data of the registry value before it was modified | +| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | +| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | +| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | +| InitiatingProcessSHA1 | string | SHA-1 of the process (image file) that initiated the event | +| InitiatingProcessMD5 | string | MD5 hash of the process (image file) that initiated the event | +| InitiatingProcessFileName | string | Name of the process that initiated the event | +| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | +| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | +| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | +| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | +| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | +| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an | internet download. These integrity levels influence permissions to resources | +| InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 1e4abe4bfcec3baece7b2bdcffd3f9868fe78b6c Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Thu, 25 Jul 2019 14:54:38 -0700 Subject: [PATCH 090/138] delete wdatp folder --- .../overview-secure-score.md | 82 ------------------- 1 file changed, 82 deletions(-) delete mode 100644 windows/security/threat-protection/windows-defender-atp/overview-secure-score.md diff --git a/windows/security/threat-protection/windows-defender-atp/overview-secure-score.md b/windows/security/threat-protection/windows-defender-atp/overview-secure-score.md deleted file mode 100644 index 7eed1f912d..0000000000 --- a/windows/security/threat-protection/windows-defender-atp/overview-secure-score.md +++ /dev/null @@ -1,82 +0,0 @@ ---- -title: Overview of Secure score in Windows Defender Security Center -description: Expand your visibility into the overall security posture of your organization -keywords: secure score, security controls, improvement opportunities, security score over time, score, posture, baseline -search.product: eADQiWindows 10XVcnh -search.appverid: met150 -ms.prod: w10 -ms.mktglfcycl: deploy -ms.sitesec: library -ms.pagetype: security -ms.author: macapara -author: mjcaparas -ms.localizationpriority: medium -manager: dansimp -audience: ITPro -ms.collection: M365-security-compliance -ms.topic: conceptual -ms.date: 09/03/2018 ---- - -# Overview of Secure score in Windows Defender Security Center -**Applies to:** -- [Windows Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) - -The Secure score dashboard expands your visibility into the overall security posture of your organization. From this dashboard, you'll be able to quickly assess the security posture of your organization, see machines that require attention, as well as recommendations for actions to further reduce the attack surface in your organization - all in one place. From there you can take action based on the recommended configuration baselines. - ->[!IMPORTANT] -> This feature is available for machines on Windows 10, version 1703 or later. - - -The **Secure score dashboard** displays a snapshot of: -- Microsoft secure score -- Secure score over time -- Top recommendations -- Improvement opportunities - - -![Secure score dashboard](images/new-secure-score-dashboard.png) - -## Microsoft secure score -The Microsoft secure score tile is reflective of the sum of all the Windows Defender security controls that are configured according to the recommended baseline and Office 365 controls. It allows you to drill down into each portal for further analysis. You can also improve this score by taking the steps in configuring each of the security controls in the optimal settings. - -![Image of Microsoft secure score tile](images/mss.png) - -Each Windows Defender security control contributes 100 points to the score. The total number is reflective of the score potential and calculated by multiplying the number of supported security controls (Windows Defender security controls pillars) by the maximum points that each pillar contributes (maximum of 100 points for each pillar). - -The Office 365 Secure Score looks at your settings and activities and compares them to a baseline established by Microsoft. For more information, see [Introducing the Office 365 Secure Score](https://support.office.com/en-us/article/introducing-the-office-365-secure-score-c9e7160f-2c34-4bd0-a548-5ddcc862eaef#howtoaccess). - -In the example image, the total points for the Windows security controls and Office 365 add up to 602 points. - -You can set the baselines for calculating the score of Windows Defender security controls on the Secure score dashboard through the **Settings**. For more information, see [Enable Secure score security controls](enable-secure-score-windows-defender-advanced-threat-protection.md). - -## Secure score over time -You can track the progression of your organizational security posture over time using this tile. It displays the overall score in a historical trend line enabling you to see how taking the recommended actions increase your overall security posture. The expected update schedule for Secure Score is about 24 hours. In some cases, depending of the size of the organization, number of computers and other factors, this update can take up to 72 hours. - -![Image of the security score over time tile](images/new-ssot.png) - -You can mouse over specific date points to see the total score for that security control is on a specific date. - - -## Top recommendations -Reflects specific actions you can take to significantly increase the security stance of your organization and how many points will be added to the secure score if you take the recommended action. - -![Top recommendations tile](images/top-recommendations.png) - -## Improvement opportunities -Improve your score by taking the recommended improvement actions listed on this tile. The goal is to reduce the gap between the perfect score and the current score for each control. - -Clicking on the affected machines link at the top of the table takes you to the Machines list. The list is filtered to reflect the list of machines where improvements can be made. - - - -![Improvement opportunities](images/io.png) - - -Within the tile, you can click on each control to see the recommended optimizations. - -Clicking the link under the Misconfigured machines column opens up the **Machines list** with filters applied to show only the list of machines where the recommendation is applicable. You can export the list in Excel to create a target collection and apply relevant policies using a management solution of your choice. - -## Related topic -- [Threat analytics](threat-analytics-dashboard-windows-defender-advanced-threat-protection.md) -- [Threat analytics for Spectre and Meltdown](threat-analytics-dashboard-windows-defender-advanced-threat-protection.md) From 8093bcad70c7631f5574f295d6416c08cea2eb9e Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Thu, 25 Jul 2019 14:57:19 -0700 Subject: [PATCH 091/138] update note on mcas --- .../microsoft-defender-atp/advanced-features.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md index edf9758501..38d679e8fa 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-features.md @@ -130,7 +130,7 @@ Out of the two Microsoft Threat Expert components, targeted attack notification Enabling this setting forwards Microsoft Defender ATP signals to Microsoft Cloud App Security to provide deeper visibility into cloud application usage. Forwarded data is stored and processed in the same location as your Cloud App Security data. >[!NOTE] ->This feature is available with an E5 license for [Enterprise Mobility + Security](https://www.microsoft.com/cloud-platform/enterprise-mobility-security) on machines running Windows 10 version 1809 or later. +>This feature will be available with an E5 license for [Enterprise Mobility + Security](https://www.microsoft.com/cloud-platform/enterprise-mobility-security) on machines running Windows 10, version 1709 (OS Build 16299.1085 with [KB4493441](https://support.microsoft.com/help/4493441)), Windows 10, version 1803 (OS Build 17134.704 with [KB4493464](https://support.microsoft.com/help/4493464)), Windows 10, version 1809 (OS Build 17763.379 with [KB4489899](https://support.microsoft.com/help/4489899)) or later Windows 10 versions. ## Azure Information Protection From e1b6742a2db436927808fe6bf06d32e1c00422b9 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Thu, 25 Jul 2019 15:45:40 -0700 Subject: [PATCH 092/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md --- ...ndows-operating-system-components-to-microsoft-services.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md index fe82aa66b7..12549f9740 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md @@ -418,7 +418,9 @@ To turn off Insider Preview builds for Windows 10: ### 8. Internet Explorer > [!NOTE] -> The following Group Policies and Registry Keys are for user interactive scenarios rather than the typical idle traffic scenario. Find the Internet Explorer Group Policy objects under **Computer Configuration > Administrative Templates > Windows Components > Internet Explorer** and make these settings: +>When attempting to use Internet Explorer on any edition of Windows Server be aware there are restrictions enforced by [Enhanced Security Configuration (ESC)](https://support.microsoft.com/en-us/help/815141/ie-enhanced-security-configuration-changes-browsing-experience). +> +>The following Group Policies and Registry Keys are for user interactive scenarios rather than the typical idle traffic scenario. Find the Internet Explorer Group Policy objects under **Computer Configuration > Administrative Templates > Windows Components > Internet Explorer** and make these settings: | Policy | Description | |------------------------------------------------------|-----------------------------------------------------------------------------------------------------| From 5c73ea49d49523efa78029a5a4774c67b11243d5 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Thu, 25 Jul 2019 15:51:10 -0700 Subject: [PATCH 093/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md --- ...ndows-operating-system-components-to-microsoft-services.md | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md index 12549f9740..03023c8970 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md @@ -418,9 +418,7 @@ To turn off Insider Preview builds for Windows 10: ### 8. Internet Explorer > [!NOTE] ->When attempting to use Internet Explorer on any edition of Windows Server be aware there are restrictions enforced by [Enhanced Security Configuration (ESC)](https://support.microsoft.com/en-us/help/815141/ie-enhanced-security-configuration-changes-browsing-experience). -> ->The following Group Policies and Registry Keys are for user interactive scenarios rather than the typical idle traffic scenario. Find the Internet Explorer Group Policy objects under **Computer Configuration > Administrative Templates > Windows Components > Internet Explorer** and make these settings: +>When attempting to use Internet Explorer on any edition of Windows Server be aware there are restrictions enforced by [Enhanced Security Configuration (ESC)](https://support.microsoft.com/en-us/help/815141/ie-enhanced-security-configuration-changes-browsing-experience). The following Group Policies and Registry Keys are for user interactive scenarios rather than the typical idle traffic scenario. Find the Internet Explorer Group Policy objects under **Computer Configuration > Administrative Templates > Windows Components > Internet Explorer** and make these settings: | Policy | Description | |------------------------------------------------------|-----------------------------------------------------------------------------------------------------| From 41f4a071e087ef98e48188c4ee5be9e1239af7f3 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Thu, 25 Jul 2019 18:30:57 -0700 Subject: [PATCH 094/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ponents-to-microsoft-services-using-MDM.md | 192 ++++++++---------- 1 file changed, 80 insertions(+), 112 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index d2407c560b..50d850835b 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -41,141 +41,109 @@ The following table lists management options for each setting. For Windows 10, the following MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). 1. **Automatic Root Certificates Update** - 1. **MDM Policy:** There is intentionally no MDM available for Automatic Root Certificate Update. This MDM does not exist since it would prevent the operation and management of MDM management of devices. + 1. MDM Policy: There is intentionally no MDM available for Automatic Root Certificate Update. This MDM does not exist since it would prevent the operation and management of MDM management of devices. 1. **Cortana and Search** - 1. **MDM Policy:** [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana). Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** - 1. **MDM Policy:** [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation). Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)** + 1. MDM Policy: [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana). Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** + 1. MDM Policy: [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation). Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)** 1. **Date & Time** - 1. **MDM Policy:** [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime). Allows the user to change date and time settings. **Set to 0 (zero)** + 1. MDM Policy: [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime). Allows the user to change date and time settings. **Set to 0 (zero)** 1. **Device metadata retrieval** - 1. **MDM Policy:** [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork). Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled** + 1. MDM Policy: [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork). Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled** 1. **Find My Device ** - 1. **MDM Policy:** [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice). This policy turns on Find My Device. **Set to 0 (zero)** + 1. MDM Policy: [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice). This policy turns on Find My Device. **Set to 0 (zero)** 1. **Font streaming** - 1. **MDM Policy:** [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders). Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** + 1. MDM Policy: [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders). Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** 1. **Insider Preview builds** - 1. **MDM Policy:** [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview). This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)** + 1. MDM Policy: [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview). This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)** 1. **Internet Explorer** The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) - 1. **MDM Policy:** [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites). Recommends websites based on the user’s browsing activity. **Set to Disabled** - 1. **MDM Policy:** [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter). Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled** - 1. **MDM Policy** [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature). Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled** - 1. **MDM Policy** [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange). Determines whether users can change the default Home Page or not. **Set to Enabled** - 1. **MDM Policy** [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard) | Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** + 1. MDM Policy: [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites). Recommends websites based on the user’s browsing activity. **Set to Disabled** + 1. MDM Policy: [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter). Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled** + 1. MDM Policy: [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature). Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled** + 1. MDM Policy: [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange). Determines whether users can change the default Home Page or not. **Set to Enabled** + 1. MDM Policy: [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard). Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** 1. **Live Tiles** - 1. **MDM Policy:** [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications). This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled** + 1. MDM Policy: [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications). This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled** 1. **Mail synchronization** - 1. **MDM Policy:** [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection). Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** + 1. MDM Policy: [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection). Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** 1. **Microsoft Account** - 1. **MDM Policy:** [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant). Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** + 1. MDM Policy: [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant). Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** 1. **Microsoft Edge** The following Microsoft Edge MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). For a complete list of the Microsoft Edge policies, see [Available policies for Microsoft Edge](https://docs.microsoft.com/microsoft-edge/deploy/available-policies). - 1. **MDM Policy:** [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill). Choose whether employees can use autofill on websites. **Set to 0 (zero)** - 1. **MDM Policy:** [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack). Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** - 1. **MDM Policy:** [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist). Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** - 1. **MDM Policy:** [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager). Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** - 1. **MDM Policy:** [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar). Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill). Choose whether employees can use autofill on websites. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack). Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist). Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager). Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar). Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen). Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** - 1. **MDM Policy:** [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen). Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** +1. **Network Connection Status Indicator** + 1. [Connectivity/DisallowNetworkConnectivityActiveTests](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-connectivity#connectivity-disallownetworkconnectivityactivetests). Note: After you apply this policy you must restart the device for the policy setting to take effect. **Set to 1 (one)** -> | Setting | MDM Policy | Description | -> | --- | --- | --- | -> | 1. Automatic Root Certificates Update | There is intentionally no MDM available for Automatic Root Certificate Update. | This MDM does not exist since it would prevent the operation and management of MDM management of devices.| -> | 2. Cortana and Search | [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana) | Choose whether to let Cortana install and run on the device. **Set to 0 (zero)**| -> | | [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation) | Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)**| -> | 3. Date & Time | [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime)| Allows the user to change date and time settings. **Set to 0 (zero)**| -> | 4. Device metadata retrieval | [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork) | Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled**| -> | 5. Find My Device | [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice)| This policy turns on Find My Device. **Set to 0 (zero)** | -> | 6. Font streaming | [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders) | Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** | -> | 7. Insider Preview builds | [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview) | This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)**| -> | 8. Internet Explorer | The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) | | -> | | [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites) | Recommends websites based on the user’s browsing activity. **Set to Disabled**| -> | | [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter) | Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled**| -> | | [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature) | Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled**| -> | | [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange) | Determines whether users can change the default Home Page or not. **Set to Enabled**| -> | | [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard) | Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled**| -> | 9. Live Tiles | [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications)| This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled**| -> | 10. Mail synchronization | [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection) | Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** | -> | 11. Microsoft Account | [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant) | Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** | -> | 12. Microsoft Edge | | The following Microsoft Edge MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). For a complete list of the Microsoft Edge policies, see [Available policies for Microsoft Edge](https://docs.microsoft.com/microsoft-edge/deploy/available-policies). | -> | | [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill) | Choose whether employees can use autofill on websites. **Set to 0 (zero)** | -> | | [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack) | Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** | -> | | [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist) | Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** | -> | | [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager) | Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** | -> | | [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar) | Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** | -> | | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** | -> | 13. Network Connection Status Indicator | [Connectivity/DisallowNetworkConnectivityActiveTests](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-connectivity#connectivity-disallownetworkconnectivityactivetests) | Note: After you apply this policy you must restart the device for the policy setting to take effect. **Set to 1 (one)** | -> | 14. Offline maps | [AllowOfflineMapsDownloadOverMeteredConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps)|Allows the download and update of map data over metered connections.
**Set to 0 (zero)** | -> | | [EnableOfflineMapsAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps#maps-enableofflinemapsautoupdate)|Disables the automatic download and update of map data. **Set to 0 (zero)** | -> | 15. OneDrive | [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync)| Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** | -> | 15.1 Ingest the ADMX | To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. | The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). There is a folder named "adm" which contains the admx and adml policy definition files. | -> | 15.2 Prevent Network Traffic before User SignIn | PreventNetworkTrafficPreUserSignIn | The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn| -> | 16. Preinstalled apps | N/A | N/A | -> | 17. Privacy settings | | Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. | -> | 17.1 General | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection) | This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)**| -> | 17.2 Location | [System/AllowLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowlocation) | Specifies whether to allow app access to the Location service. **Set to 0 (zero)**| -> | 17.3 Camera | [Camera/AllowCamera](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-camera#camera-allowcamera) | Disables or enables the camera. **Set to 0 (zero)**| -> | 17.4 Microphone | [Privacy/LetAppsAccessMicrophone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmicrophone) | Specifies whether Windows apps can access the microphone. **Set to 2 (two)** | -> | 17.5 Notifications | [Privacy/LetAppsAccessNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessnotifications) | Specifies whether Windows apps can access notifications. **Set to 2 (two)**| -> | | [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips) | Enables or disables the retrieval of online tips and help for the Settings app. **Set to Disabled**| -> | 17.6 Speech, Inking, & Typing | [Privacy/AllowInputPersonalization](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-allowinputpersonalization) | This policy specifies whether users on the device have the option to enable online speech recognition. **Set to 0 (zero)** | -> | | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection)| This policy setting controls the ability to send inking and typing data to Microsoft **Set to 0 (zero)** | -> | 17.7 Account info | [Privacy/LetAppsAccessAccountInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessaccountinfo) | Specifies whether Windows apps can access account information. **Set to 2 (two)** | -> | 17.8 Contacts | [Privacy/LetAppsAccessContacts](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscontacts) | Specifies whether Windows apps can access contacts. **Set to 2 (two)** | -> | 17.9 Calendar | [Privacy/LetAppsAccessCalendar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscalendar) | Specifies whether Windows apps can access the calendar. **Set to 2 (two)** | -> | 17.10 Call history | [Privacy/LetAppsAccessCallHistory](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscallhistory) | Specifies whether Windows apps can access account information. **Set to 2 (two)** | -> | 17.11 Email | [Privacy/LetAppsAccessEmail](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessemail) | Specifies whether Windows apps can access email. **Set to 2 (two)** | -> | 17.12 Messaging | [Privacy/LetAppsAccessMessaging](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmessaging) | Specifies whether Windows apps can read or send messages (text or MMS). **Set to 2 (two)** | -> | 17.13 Phone calls | [Privacy/LetAppsAccessPhone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessphone) | Specifies whether Windows apps can make phone calls. **Set to 2 (two)** | -> | 17.14 Radios | [Privacy/LetAppsAccessRadios](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessradios) | Specifies whether Windows apps have access to control radios. **Set to 2 (two)** | -> | 17.15 Other devices | [Privacy/LetAppsSyncWithDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappssyncwithdevices) | Specifies whether Windows apps can sync with devices. **Set to 2 (two)** | -> | | [Privacy/LetAppsAccessTrustedDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstrusteddevices) | Specifies whether Windows apps can access trusted devices. **Set to 2 (two)** | -> | 17.16 Feedback & diagnostics | [System/AllowTelemetry](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowtelemetry) | Allow the device to send diagnostic and usage telemetry data, such as Watson. **Set to 0 (zero)** | -> | | [Experience/DoNotShowFeedbackNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-donotshowfeedbacknotifications)| Prevents devices from showing feedback questions from Microsoft. **Set to 1 (one)** | -> | 17.17 Background apps | [Privacy/LetAppsRunInBackground](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsruninbackground) | Specifies whether Windows apps can run in the background. **Set to 2 (two)** | -> | 17.18 Motion | [Privacy/LetAppsAccessMotion](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmotion) | Specifies whether Windows apps can access motion data. **Set to 2 (two)** | -> | 17.19 Tasks | [Privacy/LetAppsAccessTasks](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstasks) | Turn off the ability to choose which apps have access to tasks. **Set to 2 (two)** | -> | 17.20 App Diagnostics | [Privacy/LetAppsGetDiagnosticInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsgetdiagnosticinfo) | Force allow, force deny or give user control of apps that can get diagnostic information about other running apps. **Set to 2 (two)** | -> | 18. Software Protection Platform | [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation) | Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** | -> | 19. Storage Health | [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates) | Allows disk health model updates. **Set to 0 (zero)** | -> | 20. Sync your settings | [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings) | Control whether your settings are synchronized. **Set to 0 (zero)** | -> | 21. Teredo | No MDM needed | Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. | -> | 22. Wi-Fi Sense | No MDM needed | Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. | -> | 23. Windows Defender | [Defender/AllowCloudProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-allowcloudprotection) | Disconnect from the Microsoft Antimalware Protection Service. **Set to 0 (zero)** | -> | | [Defender/SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent) | Stop sending file samples back to Microsoft. **Set to 2 (two)** | -> | 23.1 Windows Defender Smartscreen | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Disable Windows Defender Smartscreen. **Set to 0 (zero)** | -> | 23.2 Windows Defender Smartscreen EnableAppInstallControl | [SmartScreen/EnableAppInstallControl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-smartscreen#smartscreen-enableappinstallcontrol) | Controls whether users are allowed to install apps from places other than the Microsoft Store. **Set to 0 (zero)** | -> | 23.3 Windows Defender Potentially Unwanted Applications(PUA) Protection | [Defender/PUAProtection](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-defender#defender-puaprotection) | Specifies the level of detection for potentially unwanted applications (PUAs). **Set to 1 (one)** | -> | 24. Windows Spotlight | [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight) | Disable Windows Spotlight. **Set to 0 (zero)** | -> | 25. Microsoft Store | [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps)| Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** | -> | | [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate)| Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** | -> | 25.1 Apps for websites | [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers) | This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** | -> | 26. Windows Update Delivery Optimization | | The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). | -> | | [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode)| Lets you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** | -> | 27. Windows Update | [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate) | Control automatic updates. **Set to 5 (five)**| -> | 27.1 Windows Update Allow Update Service | [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice) | Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)**| -> | 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value:| - - $CmdID$ - - - chr - text/plain - - - ./Vendor/MSFT/Policy/Config/Update/UpdateServiceUrl - - http://abcd-srv:8530 - - +1. **Offline maps** + 1. MDM Policy: [AllowOfflineMapsDownloadOverMeteredConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps). Allows the download and update of map data over metered connections.
**Set to 0 (zero)** + 1. MDM Policy: [EnableOfflineMapsAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps#maps-enableofflinemapsautoupdate). Disables the automatic download and update of map data. **Set to 0 (zero)** + +1. **OneDrive** + 1. MDM Policy: [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync). Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** + 1. Ingest the ADMX - To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). There is a folder named "adm" which contains the admx and adml policy definition files. + 1. MDM Policy: Prevent Network Traffic before User SignIn. PreventNetworkTrafficPreUserSignIn. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn + +1. **Privacy settings** Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. + 1. General - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)** + 1. Location - [System/AllowLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowlocation). Specifies whether to allow app access to the Location service. **Set to 0 (zero)** + 1. Camera - [Camera/AllowCamera](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-camera#camera-allowcamera). Disables or enables the camera. **Set to 0 (zero)** + 1. Microphone - [Privacy/LetAppsAccessMicrophone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmicrophone). Specifies whether Windows apps can access the microphone. **Set to 2 (two)** + 1. Notifications - [Privacy/LetAppsAccessNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessnotifications). Specifies whether Windows apps can access notifications. **Set to 2 (two)** + 1. Notifications - [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips). Enables or disables the retrieval of online tips and help for the Settings app. **Set to Disabled** + 1. Speech, Inking, & Typing - [Privacy/AllowInputPersonalization](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-allowinputpersonalization). This policy specifies whether users on the device have the option to enable online speech recognition. **Set to 0 (zero)** + 1. Speech, Inking, & Typing - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft **Set to 0 (zero)** + 1. Account info - [Privacy/LetAppsAccessAccountInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessaccountinfo). Specifies whether Windows apps can access account information. **Set to 2 (two)** + 1. Contacts - [Privacy/LetAppsAccessContacts](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscontacts). Specifies whether Windows apps can access contacts. **Set to 2 (two)** + 1. Calendar - [Privacy/LetAppsAccessCalendar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscalendar). Specifies whether Windows apps can access the calendar. **Set to 2 (two)** + 1. Call history - [Privacy/LetAppsAccessCallHistory](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscallhistory). Specifies whether Windows apps can access account information. **Set to 2 (two)** + 1. Email - [Privacy/LetAppsAccessEmail](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessemail). Specifies whether Windows apps can access email. **Set to 2 (two)** + 1. Messaging - [Privacy/LetAppsAccessMessaging](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmessaging). Specifies whether Windows apps can read or send messages (text or MMS). **Set to 2 (two)** + 1. Phone calls - [Privacy/LetAppsAccessPhone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessphone). Specifies whether Windows apps can make phone calls. **Set to 2 (two)** + 1. Radios - [Privacy/LetAppsAccessRadios](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessradios). Specifies whether Windows apps have access to control radios. **Set to 2 (two)** + 1. Other devices - [Privacy/LetAppsSyncWithDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappssyncwithdevices). Specifies whether Windows apps can sync with devices. **Set to 2 (two)** + 1. Other devices - [Privacy/LetAppsAccessTrustedDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstrusteddevices). Specifies whether Windows apps can access trusted devices. **Set to 2 (two)** + 1. Feedback & diagnostics - [System/AllowTelemetry](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowtelemetry). Allow the device to send diagnostic and usage telemetry data, such as Watson. **Set to 0 (zero)** + 1. Feedback & diagnostics - [Experience/DoNotShowFeedbackNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-donotshowfeedbacknotifications). Prevents devices from showing feedback questions from Microsoft. **Set to 1 (one)** + 1. Background apps - [Privacy/LetAppsRunInBackground](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsruninbackground). Specifies whether Windows apps can run in the background. **Set to 2 (two)** + 1. Motion - [Privacy/LetAppsAccessMotion](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmotion). Specifies whether Windows apps can access motion data. **Set to 2 (two)** + 1. Tasks - [Privacy/LetAppsAccessTasks](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstasks). Turn off the ability to choose which apps have access to tasks. **Set to 2 (two)** + 1. App Diagnostics - [Privacy/LetAppsGetDiagnosticInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsgetdiagnosticinfo). Force allow, force deny or give user control of apps that can get diagnostic information about other running apps. **Set to 2 (two)** +1. Software Protection Platform - [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation). Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** +1. Storage Health - [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates). Allows disk health model updates. **Set to 0 (zero)** +1. Sync your settings - [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings). Control whether your settings are synchronized. **Set to 0 (zero)** +1. Teredo - No MDM needed. Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. +1. Wi-Fi Sense - No MDM needed. Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. +1. Windows Defender + 1. [Defender/AllowCloudProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-allowcloudprotection). Disconnect from the Microsoft Antimalware Protection Service. **Set to 0 (zero)** + 1. [Defender/SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent). Stop sending file samples back to Microsoft. **Set to 2 (two)** + 1. Windows Defender Smartscreen - [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen). Disable Windows Defender Smartscreen. **Set to 0 (zero)** + 1. Windows Defender Smartscreen EnableAppInstallControl - [SmartScreen/EnableAppInstallControl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-smartscreen#smartscreen-enableappinstallcontrol). Controls whether users are allowed to install apps from places other than the Microsoft Store. **Set to 0 (zero)** + 1. Windows Defender Potentially Unwanted Applications(PUA) Protection - [Defender/PUAProtection](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-defender#defender-puaprotection). Specifies the level of detection for potentially unwanted applications (PUAs). **Set to 1 (one)** +1. Windows Spotlight - [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight). Disable Windows Spotlight. **Set to 0 (zero)** +1. Microsoft Store + 1. [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps). Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** + 1. [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate). Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** +1 Apps for websites - [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers). This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** +1. Windows Update Delivery Optimization - The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). + 1. [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode). Let’s you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** +1. Windows Update + 1. [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate). Control automatic updates. **Set to 5 (five)** + 1. Windows Update Allow Update Service - [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice). Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)** + 1. Windows Update Service URL - [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl). Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value: $CmdID$ chr text/plain ./Vendor/MSFT/Policy/Config/Update/UpdateServiceUrl http://abcd-srv:8530 ### Allowed traffic ("Whitelisted traffic") for Microsoft InTune / MDM configurations From 8fabc6a46951ef1e049e795504df4787086bd05d Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Thu, 25 Jul 2019 18:39:40 -0700 Subject: [PATCH 095/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ponents-to-microsoft-services-using-MDM.md | 27 ++++++++++--------- 1 file changed, 14 insertions(+), 13 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 50d850835b..8c2ca337c4 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -53,7 +53,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. **Device metadata retrieval** 1. MDM Policy: [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork). Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled** -1. **Find My Device ** +1. **Find My Device** 1. MDM Policy: [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice). This policy turns on Find My Device. **Set to 0 (zero)** 1. **Font streaming** @@ -122,28 +122,29 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. Motion - [Privacy/LetAppsAccessMotion](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmotion). Specifies whether Windows apps can access motion data. **Set to 2 (two)** 1. Tasks - [Privacy/LetAppsAccessTasks](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstasks). Turn off the ability to choose which apps have access to tasks. **Set to 2 (two)** 1. App Diagnostics - [Privacy/LetAppsGetDiagnosticInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsgetdiagnosticinfo). Force allow, force deny or give user control of apps that can get diagnostic information about other running apps. **Set to 2 (two)** -1. Software Protection Platform - [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation). Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** -1. Storage Health - [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates). Allows disk health model updates. **Set to 0 (zero)** -1. Sync your settings - [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings). Control whether your settings are synchronized. **Set to 0 (zero)** -1. Teredo - No MDM needed. Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. -1. Wi-Fi Sense - No MDM needed. Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. -1. Windows Defender +1. **Software Protection Platform** - [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation). Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** +1. **Storage Health** - [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates). Allows disk health model updates. **Set to 0 (zero)** +1. **Sync your settings** - [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings). Control whether your settings are synchronized. **Set to 0 (zero)** +1. **Teredo** - No MDM needed. Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. +1. **Wi-Fi Sense** - No MDM needed. Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. +1. **Windows Defender** 1. [Defender/AllowCloudProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-allowcloudprotection). Disconnect from the Microsoft Antimalware Protection Service. **Set to 0 (zero)** 1. [Defender/SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent). Stop sending file samples back to Microsoft. **Set to 2 (two)** 1. Windows Defender Smartscreen - [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen). Disable Windows Defender Smartscreen. **Set to 0 (zero)** 1. Windows Defender Smartscreen EnableAppInstallControl - [SmartScreen/EnableAppInstallControl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-smartscreen#smartscreen-enableappinstallcontrol). Controls whether users are allowed to install apps from places other than the Microsoft Store. **Set to 0 (zero)** 1. Windows Defender Potentially Unwanted Applications(PUA) Protection - [Defender/PUAProtection](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-defender#defender-puaprotection). Specifies the level of detection for potentially unwanted applications (PUAs). **Set to 1 (one)** -1. Windows Spotlight - [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight). Disable Windows Spotlight. **Set to 0 (zero)** -1. Microsoft Store +1. **Windows Spotlight** - [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight). Disable Windows Spotlight. **Set to 0 (zero)** +1. **Microsoft Store** 1. [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps). Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** 1. [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate). Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** -1 Apps for websites - [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers). This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** -1. Windows Update Delivery Optimization - The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). +1 **Apps for websites** - [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers). This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** +1. **Windows Update Delivery Optimization** - The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). 1. [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode). Let’s you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** -1. Windows Update +1. **Windows Update** 1. [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate). Control automatic updates. **Set to 5 (five)** 1. Windows Update Allow Update Service - [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice). Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)** - 1. Windows Update Service URL - [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl). Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value: $CmdID$ chr text/plain ./Vendor/MSFT/Policy/Config/Update/UpdateServiceUrl http://abcd-srv:8530 + 1. Windows Update Service URL - [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl). Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with the Value next to item "a" below: + 1. \\$CmdID$\\\chr\text/plain\\ \./Vendor/MSFT/Policy/Config/Update/UpdateServiceUrl\\http://abcd-srv:8530\\ ### Allowed traffic ("Whitelisted traffic") for Microsoft InTune / MDM configurations From 09f27593ef18bdd4d5d220e7627153f4c9263d20 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Thu, 25 Jul 2019 18:57:31 -0700 Subject: [PATCH 096/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ing-system-components-to-microsoft-services-using-MDM.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 8c2ca337c4..e43cc160d7 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -69,7 +69,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. MDM Policy: [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard). Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** 1. **Live Tiles** - 1. MDM Policy: [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications). This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled** + 1. MDM Policy: [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications). This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Integer value 1** 1. **Mail synchronization** 1. MDM Policy: [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection). Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** @@ -95,7 +95,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. **OneDrive** 1. MDM Policy: [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync). Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** 1. Ingest the ADMX - To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). There is a folder named "adm" which contains the admx and adml policy definition files. - 1. MDM Policy: Prevent Network Traffic before User SignIn. PreventNetworkTrafficPreUserSignIn. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn + 1. MDM Policy: Prevent Network Traffic before User SignIn. PreventNetworkTrafficPreUserSignIn. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn, String, \ 1. **Privacy settings** Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. 1. General - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)** @@ -103,7 +103,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. Camera - [Camera/AllowCamera](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-camera#camera-allowcamera). Disables or enables the camera. **Set to 0 (zero)** 1. Microphone - [Privacy/LetAppsAccessMicrophone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmicrophone). Specifies whether Windows apps can access the microphone. **Set to 2 (two)** 1. Notifications - [Privacy/LetAppsAccessNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessnotifications). Specifies whether Windows apps can access notifications. **Set to 2 (two)** - 1. Notifications - [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips). Enables or disables the retrieval of online tips and help for the Settings app. **Set to Disabled** + 1. Notifications - [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips). Enables or disables the retrieval of online tips and help for the Settings app. **Integer value 0** 1. Speech, Inking, & Typing - [Privacy/AllowInputPersonalization](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-allowinputpersonalization). This policy specifies whether users on the device have the option to enable online speech recognition. **Set to 0 (zero)** 1. Speech, Inking, & Typing - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft **Set to 0 (zero)** 1. Account info - [Privacy/LetAppsAccessAccountInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessaccountinfo). Specifies whether Windows apps can access account information. **Set to 2 (two)** From ac0aab659cf626fa58e6c0db1683e02d8bcfe8d9 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Thu, 25 Jul 2019 19:10:14 -0700 Subject: [PATCH 097/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md --- ...ows-operating-system-components-to-microsoft-services.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md index 21e7f8f027..782dda6dcc 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md @@ -67,7 +67,7 @@ The following table lists management options for each setting, beginning with Wi | [9. License Manager](#bkmk-licmgr) | | | ![Check mark](images/checkmark.png) | | [10. Live Tiles](#live-tiles) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [11. Mail synchronization](#bkmk-mailsync) | ![Check mark](images/checkmark.png) | | ![Check mark](images/checkmark.png) | -| [12. Microsoft Account](#bkmk-microsoft-account) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [12. Microsoft Account](#bkmk-microsoft-account) | | | ![Check mark](images/checkmark.png) | | [13. Microsoft Edge](#bkmk-edge) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [14. Network Connection Status Indicator](#bkmk-ncsi) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [15. Offline maps](#bkmk-offlinemaps) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | @@ -125,7 +125,7 @@ See the following table for a summary of the management settings for Windows Ser | [7. Insider Preview builds](#bkmk-previewbuilds) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [8. Internet Explorer](#bkmk-ie) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [10. Live Tiles](#live-tiles) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -| [12. Microsoft Account](#bkmk-microsoft-account) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [12. Microsoft Account](#bkmk-microsoft-account) | | | ![Check mark](images/checkmark.png) | | [14. Network Connection Status Indicator](#bkmk-ncsi) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [16. OneDrive](#bkmk-onedrive) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [18. Settings > Privacy](#bkmk-settingssection) | | | | @@ -179,7 +179,7 @@ See the following table for a summary of the management settings for Windows Ser | [8. Internet Explorer](#bkmk-ie) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [10. Live Tiles](#live-tiles) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [11. Mail synchronization](#bkmk-mailsync) | ![Check mark](images/checkmark.png) | | ![Check mark](images/checkmark.png) | -| [12. Microsoft Account](#bkmk-microsoft-account) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [12. Microsoft Account](#bkmk-microsoft-account) | | | ![Check mark](images/checkmark.png) | | [13. Microsoft Edge](#bkmk-edge) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [14. Network Connection Status Indicator](#bkmk-ncsi) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [15. Offline maps](#bkmk-offlinemaps) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | From 8597aa8c7bb8290591047fc8df405712ea5bf409 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Thu, 25 Jul 2019 20:06:15 -0700 Subject: [PATCH 098/138] add new issues (#777) --- .../resolved-issues-windows-10-1507.yml | 20 ++++++------- .../resolved-issues-windows-10-1607.yml | 20 ++++++------- .../resolved-issues-windows-10-1703.yml | 10 +++---- .../resolved-issues-windows-10-1709.yml | 10 +++---- .../resolved-issues-windows-10-1803.yml | 16 +++++------ ...indows-10-1809-and-windows-server-2019.yml | 26 ++++++++--------- .../resolved-issues-windows-10-1903.yml | 8 +++--- ...ndows-7-and-windows-server-2008-r2-sp1.yml | 24 ++++++++-------- ...windows-8.1-and-windows-server-2012-r2.yml | 28 +++++++++---------- ...esolved-issues-windows-server-2008-sp2.yml | 8 +++--- .../resolved-issues-windows-server-2012.yml | 14 +++++----- .../status-windows-10-1507.yml | 2 +- ...indows-10-1607-and-windows-server-2016.yml | 14 ++++++---- .../status-windows-10-1703.yml | 12 +++++++- .../status-windows-10-1709.yml | 4 ++- .../status-windows-10-1803.yml | 6 ++-- ...indows-10-1809-and-windows-server-2019.yml | 9 +++--- .../status-windows-10-1903.yml | 26 +++++++++-------- ...windows-8.1-and-windows-server-2012-r2.yml | 2 +- 19 files changed, 140 insertions(+), 119 deletions(-) diff --git a/windows/release-information/resolved-issues-windows-10-1507.yml b/windows/release-information/resolved-issues-windows-10-1507.yml index fcb44369bb..048946f759 100644 --- a/windows/release-information/resolved-issues-windows-10-1507.yml +++ b/windows/release-information/resolved-issues-windows-10-1507.yml @@ -34,15 +34,15 @@ sections:
MessageDate
Status update: Windows 10, version 1903 “D” release
The optional monthly “D” release for Windows 10, version 1903 will be available in the near term. Follow @WindowsUpdate for the latest on the availability of this release.
July 24, 2019
12:00 AM PT
Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
July 19, 2019
12:00 AM PT
Evolving Windows 10 servicing and quality
Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
July 01, 2019
02:00 PM PT
Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
June 18, 2019
02:00 PM PT
- - - - - - - + + + + + + +
SummaryOriginating updateStatusDate resolved
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 10240.18244

June 11, 2019
KB4503291		Resolved
KB4507458		July 09, 2019
10:00 AM PT
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >		OS Build 10240.18215

May 14, 2019
KB4499154		Resolved
KB4505051		May 19, 2019
02:00 PM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >		OS Build 10240.18158

March 12, 2019
KB4489872		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
First character of Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4491101		February 21, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		February 12, 2019
10:00 AM PT
Unable to access hotspots with third-party applications
Third-party applications may have difficulty authenticating hotspots.

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		February 12, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4491101		February 21, 2019
02:00 PM PT
First character of Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >		OS Build 10240.18158

March 12, 2019
KB4489872		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
" @@ -86,10 +86,10 @@ sections: text: " - - + +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493475

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4493475		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487018, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
First character of Japanese era name not recognized
After installing KB4487018, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4487018, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4491101.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4491101		Resolved:
February 21, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
First character of Japanese era name not recognized
After installing KB4487018, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -98,8 +98,8 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
Unable to access hotspots with third-party applications
After installing KB4480962, third-party applications may have difficulty authenticating hotspots.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4487018.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
After installing KB4480962, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493475.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4493475		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, \"Unrecognized Database Format\".

Affected platforms:
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487018.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Unable to access hotspots with third-party applications
After installing KB4480962, third-party applications may have difficulty authenticating hotspots.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4487018.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1607.yml b/windows/release-information/resolved-issues-windows-10-1607.yml index f39eb6c19d..c20d9b33f0 100644 --- a/windows/release-information/resolved-issues-windows-10-1607.yml +++ b/windows/release-information/resolved-issues-windows-10-1607.yml @@ -43,17 +43,17 @@ sections:
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 14393.2969

May 14, 2019
KB4494440Resolved
KB4505052May 19, 2019
02:00 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 14393.2941

April 25, 2019
KB4493473Resolved
KB4494440May 14, 2019
10:00 AM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 14393.2941

April 25, 2019
KB4493473Resolved
KB4494440May 14, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 14393.2848

March 12, 2019
KB4489882Resolved
KB4493473April 25, 2019
02:00 PM PT -
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system will stop working and a blue screen may appear at startup.

See details >OS Build 14393.2879

March 19, 2019
KB4489889Resolved
KB4493470April 09, 2019
10:00 AM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT -
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4493470April 09, 2019
10:00 AM PT -
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off.

See details >OS Build 14393.2828

February 19, 2019
KB4487006Resolved
KB4489882March 12, 2019
10:00 AM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT +
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system will stop working and a blue screen may appear at startup.

See details >OS Build 14393.2879

March 19, 2019
KB4489889Resolved
KB4493470April 09, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4489882March 12, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4487006February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 14393.2759

January 17, 2019
KB4480977Resolved
KB4487006February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4487006February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 14393.2759

January 17, 2019
KB4480977Resolved
KB4487006February 19, 2019
02:00 PM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 14393.2848

March 12, 2019
KB4489882Resolved
KB4493473April 25, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4487026February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4487006February 19, 2019
02:00 PM PT +
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off.

See details >OS Build 14393.2828

February 19, 2019
KB4487006Resolved
KB4489882March 12, 2019
10:00 AM PT
Instant search in Microsoft Outlook fails on Windows Server 2016
Instant search in Microsoft Outlook clients fail with the error, \"Outlook cannot perform the search\" on Windows Server 2016.

See details >OS Build 14393.2639

November 27, 2018
KB4467684Resolved
KB4487026February 12, 2019
10:00 AM PT " @@ -104,8 +104,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Issue using PXE to start a device from WDS
After installing KB4489882, there may be issues using the Preboot Execution Environment (PXE) to start a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4503267.

Back to top		OS Build 14393.2848

March 12, 2019
KB4489882		Resolved
KB4503267		Resolved:
June 11, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489882, Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493473

Back to top		OS Build 14393.2848

March 12, 2019
KB4489882		Resolved
KB4493473		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system will stop working and a blue screen may appear at startup. This is not a common setting in non-Asian regions.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue was resolved in KB4493470.

Back to top		OS Build 14393.2879

March 19, 2019
KB4489889		Resolved
KB4493470		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 19, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489882, Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493473

Back to top		OS Build 14393.2848

March 12, 2019
KB4489882		Resolved
KB4493473		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -115,10 +115,10 @@ sections: text: " - - + +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493470

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4493470		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off. The faulting driver is win32kbase.sys.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue is resolved in KB4489882.

Back to top		OS Build 14393.2828

February 19, 2019
KB4487006		Resolved
KB4489882		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 19, 2019
02:00 PM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487026, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489882.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4489882		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487006.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4487026, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4487006.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487006.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off. The faulting driver is win32kbase.sys.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue is resolved in KB4489882.

Back to top		OS Build 14393.2828

February 19, 2019
KB4487006		Resolved
KB4489882		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 19, 2019
02:00 PM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1703.yml b/windows/release-information/resolved-issues-windows-10-1703.yml index 30427c2a53..b87928c05d 100644 --- a/windows/release-information/resolved-issues-windows-10-1703.yml +++ b/windows/release-information/resolved-issues-windows-10-1703.yml @@ -38,15 +38,15 @@ sections:
Opening Internet Explorer 11 may fail
Internet Explorer 11 may fail to open if Default Search Provider is not set or is malformed.

See details >OS Build 15063.1839

May 28, 2019
KB4499162Resolved
KB4503279June 11, 2019
10:00 AM PT
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 15063.1805

May 14, 2019
KB4499181Resolved
KB4505055May 19, 2019
02:00 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 15063.1784

April 25, 2019
KB4493436Resolved
KB4499181May 14, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 15063.1689

March 12, 2019
KB4489871Resolved
KB4493436April 25, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4493474April 09, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 15063.1716

March 19, 2019
KB4489888Resolved
KB4493474April 09, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 15063.1563

January 08, 2019
KB4480973Resolved
KB4493474April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4493474April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 15063.1659

February 19, 2019
KB4487011Resolved
KB4489871March 12, 2019
10:00 AM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 15063.1596

January 15, 2019
KB4480959Resolved
KB4487011February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4487011February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4487011February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 15063.1596

January 15, 2019
KB4480959Resolved
KB4487011February 19, 2019
02:00 PM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 15063.1689

March 12, 2019
KB4489871Resolved
KB4493436April 25, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >OS Build 15063.1563

January 08, 2019
KB4480973Resolved
KB4487020February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4487011February 19, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 15063.1563

January 08, 2019
KB4480973Resolved
KB4487020February 12, 2019
10:00 AM PT " @@ -85,8 +85,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Custom URI schemes may not start corresponding application
After installing KB4489871, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493436

Back to top		OS Build 15063.1689

March 12, 2019
KB4489871		Resolved
KB4493436		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup. This is not a common setting in non-Asian regions.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue was resolved in KB4493474.

Back to top		OS Build 15063.1716

March 19, 2019
KB4489888		Resolved
KB4493474		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 19, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489871, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493436

Back to top		OS Build 15063.1689

March 12, 2019
KB4489871		Resolved
KB4493436		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1709.yml b/windows/release-information/resolved-issues-windows-10-1709.yml index b80a28eec7..cd92b2d492 100644 --- a/windows/release-information/resolved-issues-windows-10-1709.yml +++ b/windows/release-information/resolved-issues-windows-10-1709.yml @@ -39,16 +39,16 @@ sections:
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 16299.1127

April 25, 2019
KB4493440Resolved
KB4499179May 14, 2019
10:00 AM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 16299.1127

April 25, 2019
KB4493440Resolved
KB4499179May 14, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 16299.1029

March 12, 2019
KB4489886Resolved
KB4493440April 25, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4493441April 09, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 16299.1059

March 19, 2019
KB4489890Resolved
KB4493441April 09, 2019
10:00 AM PT
MSXML6 causes applications to stop responding if an exception was thrown
MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 16299.904

January 08, 2019
KB4480978Resolved
KB4493441April 09, 2019
10:00 AM PT -
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 16299.1029

March 12, 2019
KB4489886Resolved
KB4493441April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4493441April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4489886March 12, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4487021February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 16299.936

January 15, 2019
KB4480967Resolved
KB4487021February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4487021February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 16299.936

January 15, 2019
KB4480967Resolved
KB4487021February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >OS Build 16299.904

January 08, 2019
KB4480978Resolved
KB4486996February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4487021February 19, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 16299.904

January 08, 2019
KB4480978Resolved
KB4486996February 12, 2019
10:00 AM PT +
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 16299.1029

March 12, 2019
KB4489886Resolved
KB4493441April 09, 2019
10:00 AM PT " @@ -107,8 +107,8 @@ sections: - +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493441

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4493441		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4486996, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489886.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4489886		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487021.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4487021		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4486996, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4487021.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4487021		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487021.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4487021		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1803.yml b/windows/release-information/resolved-issues-windows-10-1803.yml index 3353facc94..7174542746 100644 --- a/windows/release-information/resolved-issues-windows-10-1803.yml +++ b/windows/release-information/resolved-issues-windows-10-1803.yml @@ -38,17 +38,17 @@ sections:
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 17134.765

May 14, 2019
KB4499167Resolved
KB4505064May 19, 2019
02:00 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 17134.753

April 25, 2019
KB4493437Resolved
KB4499167May 14, 2019
10:00 AM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 17134.753

April 25, 2019
KB4493437Resolved
KB4499167May 14, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493437April 25, 2019
02:00 PM PT -
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17134.677

March 19, 2019
KB4489894Resolved
KB4493464April 09, 2019
10:00 AM PT -
First character of the Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 17134.556

January 15, 2019
KB4480976Resolved
KB4487029February 19, 2019
02:00 PM PT -
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4493464April 09, 2019
10:00 AM PT -
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493464April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 17134.590

February 12, 2019
KB4487017Resolved
KB4493464April 09, 2019
10:00 AM PT +
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17134.677

March 19, 2019
KB4489894Resolved
KB4493464April 09, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4493464April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 17134.590

February 12, 2019
KB4487017Resolved
KB4489868March 12, 2019
10:00 AM PT -
Cannot pin a web link on the Start menu or the taskbar
Some users cannot pin a web link on the Start menu or the taskbar.

See details >OS Build 17134.471

December 11, 2018
KB4471324Resolved
KB4487029February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 17134.590

February 12, 2019
KB4487017Resolved
KB4487029February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 17134.556

January 15, 2019
KB4480976Resolved
KB4487029February 19, 2019
02:00 PM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493437April 25, 2019
02:00 PM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4487017February 12, 2019
10:00 AM PT +
Cannot pin a web link on the Start menu or the taskbar
Some users cannot pin a web link on the Start menu or the taskbar.

See details >OS Build 17134.471

December 11, 2018
KB4471324Resolved
KB4487029February 19, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4487017February 12, 2019
10:00 AM PT +
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493464April 09, 2019
10:00 AM PT " @@ -94,8 +94,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Custom URI schemes may not start corresponding application
After installing KB4489868, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493437

Back to top		OS Build 17134.648

March 12, 2019
KB4489868		Resolved
KB4493437		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup. This is not a common setting in non-Asian regions. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue was resolved in KB4493464

Back to top		OS Build 17134.677

March 19, 2019
KB4489894		Resolved
KB4493464		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 19, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489868, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493437

Back to top		OS Build 17134.648

March 12, 2019
KB4489868		Resolved
KB4493437		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
Stop error when attempting to start SSH from WSL
After applying KB4489868, a stop error occurs when attempting to start the Secure Shell (SSH) client program from Windows Subsystem for Linux (WSL) with agent forwarding enabled using a command line switch (ssh -A) or a configuration setting.

Affected platforms:
  • Client: Windows 10, version 1803; Windows 10, version 1709
  • Server: Windows Server, version 1803; Windows Server, version 1709
Resolution: This issue was resolved in KB4493464.

Back to top		OS Build 17134.648

March 12, 2019
KB4489868		Resolved
KB4493464		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -116,8 +116,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
First character of the Japanese era name not recognized
After installing KB4480976, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487029

Back to top		OS Build 17134.556

January 15, 2019
KB4480976		Resolved
KB4487029		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
After installing KB4480966, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493464

Back to top		OS Build 17134.523

January 08, 2019
KB4480966		Resolved
KB4493464		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized
After installing KB4480976, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487029

Back to top		OS Build 17134.556

January 15, 2019
KB4480976		Resolved
KB4487029		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487017.

Back to top		OS Build 17134.523

January 08, 2019
KB4480966		Resolved
KB4487017		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Webpages become unresponsive in Microsoft Edge
After installing KB4480966, some Microsoft Edge users report that they: 
  • Cannot load web pages using a local IP address. 
  • Cannot load web pages on the Internet using a VPN connection.  
Browsing fails or the web page may become unresponsive. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709
Resolution: This issue is resolved in KB4487017

Back to top		OS Build 17134.523

January 08, 2019
KB4480966		Resolved
KB4487017		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
diff --git a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml index 50ed0c88b7..c8dd852476 100644 --- a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml @@ -40,28 +40,28 @@ sections:
Issue using PXE to start a device from WDS
Using PXE to start a device from a WDS server configured to use Variable Window Extension may cause the connection to the WDS server to terminate prematurely.

See details >OS Build 17763.379

March 12, 2019
KB4489899Resolved
KB4503327June 11, 2019
10:00 AM PT
Audio not working on monitors or TV connected to a PC via HDMI, USB, or DisplayPort
Upgrade block: Microsoft has identified issues with certain new Intel display drivers, which accidentally turn on unsupported features in Windows.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
May 21, 2019
07:42 AM PT
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
KB4505056May 19, 2019
02:00 PM PT -
Windows 10, version 1809 update history may show an update installed twice
Some customers are reporting that KB4494441 installed twice on their device

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
May 16, 2019
02:37 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 17763.475

May 03, 2019
KB4495667Resolved
KB4494441May 14, 2019
10:00 AM PT +
Windows 10, version 1809 update history may show an update installed twice
Some customers are reporting that KB4494441 installed twice on their device

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
May 16, 2019
02:37 PM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 17763.475

May 03, 2019
KB4495667Resolved
KB4494441May 14, 2019
10:00 AM PT
Latest cumulative update (KB 4495667) installs automatically
Reports that the optional cumulative update (KB 4495667) installs automatically.

See details >OS Build 17763.475

May 03, 2019
KB4495667Resolved
May 08, 2019
03:37 PM PT
System may be unresponsive after restart if ArcaBit antivirus software installed
After further investigation ArcaBit has confirmed this issue is not applicable to Windows 10, version 1809

See details >OS Build 17763.437

April 09, 2019
KB4493509Resolved
May 08, 2019
03:30 PM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 17763.379

March 12, 2019
KB4489899Resolved
KB4495667May 03, 2019
10:00 AM PT -
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17763.404

April 02, 2019
KB4490481Resolved
KB4493509April 09, 2019
10:00 AM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT -
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4493509April 09, 2019
10:00 AM PT -
Apps may stop working after selecting an audio output device other than the default
Users with multiple audio devices that select an audio output device different from the \"Default Audio Device\" may find certain applications stop working unexpectedly.

See details >OS Build 17763.348

March 01, 2019
KB4482887Resolved
KB4490481April 02, 2019
10:00 AM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT +
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17763.404

April 02, 2019
KB4490481Resolved
KB4493509April 09, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4489899March 12, 2019
10:00 AM PT -
Global DNS outage affects Windows Update customers
Windows Update customers were recently affected by a network infrastructure event caused by an external DNS service provider's global outage.

See details >N/A

Resolved
March 08, 2019
11:15 AM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 9 file format may randomly stop working.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT
First character of the Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 9 file format may randomly stop working.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT +
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Upgrade block: Devices utilizing AMD Radeon HD2000 or HD4000 series video cards may experience issues with the lock screen and Microsoft Edge tabs.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4487044February 12, 2019
10:00 AM PT +
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro identified a compatibility issue with the Trend Micro business endpoint security solutions OfficeScan and Worry-Free Business Security.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
February 01, 2019
09:00 AM PT
Shared albums may not sync with iCloud for Windows
Upgrade block: Apple has identified an incompatibility with iCloud for Windows (version 7.7.0.27) where users may experience issues updating or synching Shared Albums.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4482887March 01, 2019
10:00 AM PT
Intel Audio Display (intcdaud.sys) notification during Windows 10 Setup
Upgrade block: Users may see an Intel Audio Display (intcdaud.sys) notification during setup for devices with certain Intel Display Audio Drivers.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4482887March 01, 2019
10:00 AM PT
F5 VPN clients losing network connectivity
Upgrade block: After updating to Windows 10, version 1809, F5 VPN clients may lose network connectivity when the VPN service is in a split tunnel configuration.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4482887March 01, 2019
10:00 AM PT +
Global DNS outage affects Windows Update customers
Windows Update customers were recently affected by a network infrastructure event caused by an external DNS service provider's global outage.

See details >N/A

Resolved
March 08, 2019
11:15 AM PT +
Apps may stop working after selecting an audio output device other than the default
Users with multiple audio devices that select an audio output device different from the \"Default Audio Device\" may find certain applications stop working unexpectedly.

See details >OS Build 17763.348

March 01, 2019
KB4482887Resolved
KB4490481April 02, 2019
10:00 AM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4487044February 12, 2019
10:00 AM PT -
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Upgrade block: Devices utilizing AMD Radeon HD2000 or HD4000 series video cards may experience issues with the lock screen and Microsoft Edge tabs.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4487044February 12, 2019
10:00 AM PT -
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro identified a compatibility issue with the Trend Micro business endpoint security solutions OfficeScan and Worry-Free Business Security.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
February 01, 2019
09:00 AM PT " @@ -91,8 +91,8 @@ sections: - +
DetailsOriginating updateStatusHistory
Printing from Microsoft Edge or other UWP apps may result in the error 0x80070007
When attempting to print from Microsoft Edge or other Universal Windows Platform (UWP) applications you may receive the error, \"Your printer has experienced an unexpected configuration problem. 0x80070007e.\"
 
Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4501371

Back to top		OS Build 17763.379

March 12, 2019
KB4489899		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
May 02, 2019
04:47 PM PT
Unable to access some gov.uk websites
After installing the May 14, 2019 update, some gov.uk websites that don’t support HTTP Strict Transport Security (HSTS) may not be accessible through Internet Explorer 11 or Microsoft Edge.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10, version 1507; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolved: We have released an \"out-of-band\" update for Windows 10 (KB4505056) to resolve this issue.

  • UK customers: This update will be applied automatically to resolve this issue. You may be required to restart your device again. If you are affected by this issue, Check for updates to apply the update immediately.
  • Customers outside of the UK: This update will not be applied automatically. If you are affected by this issue, we recommend you apply this update by installing KB4505056 from Windows Update and then restarting your device.
To download and install this update, go to Settings > Update & Security > Windows Update and select Check for updates. To get the standalone package for KB4505056, search for it in the Microsoft Update Catalog.
 

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
KB4505056		Resolved:
May 19, 2019
02:00 PM PT

Opened:
May 16, 2019
01:57 PM PT
Windows 10, version 1809 update history may show an update installed twice
Affected platforms:
  • Client: Windows 10, version 1809
Cause:
In certain situations, installing an update requires multiple download and restart steps. In cases where two intermediate steps of the installation complete successfully, the View your Update history page will report that installation completed successfully twice. 

Resolution:
No action is required on your part. The update installation may take longer and may require more than one restart, but will install successfully after all intermediate installation steps have completed. We are working on improving this update experience to ensure the Update history correctly reflects the installation of the latest cumulative update (LCU).

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
Resolved:
May 16, 2019
02:37 PM PT

Opened:
May 14, 2019
02:56 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel. For example, the layout and cell size of Microsoft Excel sheets may change when using MS UI Gothic.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue has been resolved.

Back to top		OS Build 17763.475

May 03, 2019
KB4495667		Resolved
KB4494441		Resolved:
May 14, 2019
10:00 AM PT

Opened:
May 10, 2019
10:35 AM PT
Windows 10, version 1809 update history may show an update installed twice
Affected platforms:
  • Client: Windows 10, version 1809
Cause:
In certain situations, installing an update requires multiple download and restart steps. In cases where two intermediate steps of the installation complete successfully, the View your Update history page will report that installation completed successfully twice. 

Resolution:
No action is required on your part. The update installation may take longer and may require more than one restart, but will install successfully after all intermediate installation steps have completed. We are working on improving this update experience to ensure the Update history correctly reflects the installation of the latest cumulative update (LCU).

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
Resolved:
May 16, 2019
02:37 PM PT

Opened:
May 14, 2019
02:56 PM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail after installing KB4495667
 
Affected platforms:  
  • Client: Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016 
  • Server: Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016 
Resolution: This issue was resolved in KB4494441.

Back to top		OS Build 17763.475

May 03, 2019
KB4495667		Resolved
KB4494441		Resolved:
May 14, 2019
10:00 AM PT

Opened:
May 14, 2019
01:19 PM PT
Latest cumulative update (KB 4495667) installs automatically
Due to a servicing side issue some users were offered KB4495667 (optional update) automatically and rebooted devices. This issue has been mitigated.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution:: This issue has been mitigated on the servicing side to prevent auto installing of this update. Customers do not need to take any action.

Back to top		OS Build 17763.475

May 03, 2019
KB4495667		Resolved
Resolved:
May 08, 2019
03:37 PM PT

Opened:
May 05, 2019
12:01 PM PT
@@ -127,8 +127,8 @@ sections:
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1  
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2  
Resolution: This issue is resolved in KB4493509.  

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4493509Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487044, users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489899

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4489899Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4487044, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4482887.

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4482887.

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
First character of the Japanese era name not recognized
After installing KB4487044, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4482887

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4482887.

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT " @@ -150,10 +150,10 @@ sections: text: " + + - -
DetailsOriginating updateStatusHistory
Audio not working on monitors or TV connected to a PC via HDMI, USB, or DisplayPort
Upgrade block: Microsoft has identified issues with certain new Intel display drivers. Intel inadvertently released versions of its display driver (versions 24.20.100.6344, 24.20.100.6345) to OEMs that accidentally turned on unsupported features in Windows. 
 
As a result, after updating to Windows 10, version 1809, audio playback from a monitor or television connected to a PC via HDMI, USB-C, or a DisplayPort may not function correctly on devices with these drivers.
Note: This Intel display driver issue is different from the Intel Smart Sound Technology driver (version 09.21.00.3755) audio issue previously documented.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019 
Next steps: Intel has released updated drivers to OEM device manufacturers. OEMs need to make the updated driver available via Windows Update. For more information, see the Intel Customer Support article.

Resolution: Microsoft has removed the safeguard hold.



Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
Resolved:
May 21, 2019
07:42 AM PT

Opened:
November 13, 2018
10:00 AM PT
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Note: AMD no longer supports Radeon HD2000 and HD4000 series graphic processor units (GPUs).
 
Upgrade block: After updating to Windows 10, version 1809, Microsoft Edge tabs may stop working when a device is configured with AMD Radeon HD2000 or HD4000 series video cards. Customers may get the following error code: \"INVALID_POINTER_READ_c0000005_atidxx64.dll\". 
 
Some users may also experience performance issues with the lock screen or the ShellExperienceHost. (The lock screen hosts widgets, and the ShellExperienceHost is responsible for assorted shell functionality.) 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4487044, and the block was removed.

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4487044		Resolved:
February 12, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro have identified a compatibility issue with Trend Micro's OfficeScan and Worry-Free Business Security software when attempting to update to Windows 10, version 1809.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019 
Resolution: Trend Micro has released a new version of these products that resolves the issue. To download them, please visit the Trend Micro Business Support Portal.

Once you have updated your version of Trend Micro's OfficeScan or Worry-Free Business Security software, you will be offered Windows 10, version 1809 automatically. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
Resolved:
February 01, 2019
09:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Shared albums may not sync with iCloud for Windows
Upgrade block: Users who attempt to install iCloud for Windows (version 7.7.0.27) will see a message displayed that this version iCloud for Windows isn't supported and the install will fail.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
To ensure a seamless experience, Microsoft is blocking devices with iCloud for Windows (version 7.7.0.27) software installed from being offered Windows 10, version 1809 until this issue has been resolved. 

We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool from the Microsoft software download website until this issue is resolved. 
 
Resolution: Apple has released an updated version of iCloud for Windows (version 7.8.1) that resolves compatibility issues encountered when updating or synching Shared Albums after updating to Windows 10, version 1809. We recommend that you update your iCloud for Windows to version 7.8.1 when prompted before attempting to upgrade to Windows 10, version 1809. You can also manually download the latest version of iCloud for Windows by visiting https://support.apple.com/HT204283.

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4482887		Resolved:
March 01, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Intel Audio Display (intcdaud.sys) notification during Windows 10 Setup
Upgrade block: Microsoft and Intel have identified a compatibility issue with a range of Intel Display Audio device drivers (intcdaud.sys, versions 10.25.0.3 - 10.25.0.8) that may result in excessive processor demand and reduced battery life. As a result, the update process to the Windows 10 October 2018 Update (Windows 10, version 1809) will fail and affected devices will automatically revert to the previous working configuration. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
If you see a \"What needs your attention\" notification during installation of the October 2018 Update, you have one of these affected drivers on your system. On the notification, click Back to remain on your current version of Windows 10. 
 
To ensure a seamless experience, we are blocking devices from being offered the October 2018 Update until updated Intel device drivers are installed on your current operating system. We recommend that you do not attempt to manually update to Windows 10, version 1809, using the Update Now button or the Media Creation Tool from the Microsoft Software Download Center until newer Intel device drivers are available with the update. You can either wait for newer drivers to be installed automatically through Windows Update or check with your computer manufacturer for the latest device driver software availability and installation procedures. For more information about this issue, see Intel's customer support guidance.
 
Resolution: This issue was resolved in KB4482887 and the upgrade block removed. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4482887		Resolved:
March 01, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
F5 VPN clients losing network connectivity
Upgrade block: After updating to Windows 10, version 1809, F5 VPN clients may lose network connectivity when the VPN service is in a split tunnel configuration.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4482887 and the upgrade block removed. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4482887		Resolved:
March 01, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Note: AMD no longer supports Radeon HD2000 and HD4000 series graphic processor units (GPUs).
 
Upgrade block: After updating to Windows 10, version 1809, Microsoft Edge tabs may stop working when a device is configured with AMD Radeon HD2000 or HD4000 series video cards. Customers may get the following error code: \"INVALID_POINTER_READ_c0000005_atidxx64.dll\". 
 
Some users may also experience performance issues with the lock screen or the ShellExperienceHost. (The lock screen hosts widgets, and the ShellExperienceHost is responsible for assorted shell functionality.) 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4487044, and the block was removed.

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4487044		Resolved:
February 12, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro have identified a compatibility issue with Trend Micro's OfficeScan and Worry-Free Business Security software when attempting to update to Windows 10, version 1809.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019 
Resolution: Trend Micro has released a new version of these products that resolves the issue. To download them, please visit the Trend Micro Business Support Portal.

Once you have updated your version of Trend Micro's OfficeScan or Worry-Free Business Security software, you will be offered Windows 10, version 1809 automatically. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
Resolved:
February 01, 2019
09:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1903.yml b/windows/release-information/resolved-issues-windows-10-1903.yml index 6b4eeb59c5..e791545b58 100644 --- a/windows/release-information/resolved-issues-windows-10-1903.yml +++ b/windows/release-information/resolved-issues-windows-10-1903.yml @@ -33,13 +33,13 @@ sections: text: " - + - +
SummaryOriginating updateStatusDate resolved
Loss of functionality in Dynabook Smartphone Link app
After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
July 11, 2019
01:54 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Error attempting to update with external USB device or memory card attached
PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Resolved
KB4501375		June 27, 2019
10:00 AM PT
Duplicate folders and documents showing in user profile directory
If known folders (e.g. Desktop, Documents, or Pictures folders) are redirected, an empty folder with that same name may be created.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		May 29, 2019
02:00 PM PT
Older versions of BattlEye anti-cheat software incompatible
Microsoft and BattlEye have identified a compatibility issue with some games that use older versions of BattlEye anti-cheat software.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
June 07, 2019
04:26 PM PT
AMD RAID driver incompatibility
Installation process may stop when trying to install Windows 10, version 1903 update on computers that run certain versions of AMD RAID drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
June 06, 2019
11:06 AM PT
D3D applications and games may fail to enter full-screen mode on rotated displays
Some Direct3D (D3D) applications and games may fail to enter full-screen mode on rotated displays.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		May 29, 2019
02:00 PM PT
AMD RAID driver incompatibility
Installation process may stop when trying to install Windows 10, version 1903 update on computers that run certain versions of AMD RAID drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
June 06, 2019
11:06 AM PT
" @@ -65,11 +65,11 @@ sections: text: " - + - +
DetailsOriginating updateStatusHistory
Loss of functionality in Dynabook Smartphone Link app
Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:54 PM PT

Opened:
May 24, 2019
03:10 PM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Error attempting to update with external USB device or memory card attached
If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:38 AM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Duplicate folders and documents showing in user profile directory
If you have redirected known folders (e.g. Desktop, Documents, or Pictures folders) you may see an empty folder with the same name in your %userprofile% directories after updating to Windows 10, version 1903. This may occur if known folders were redirected when you chose to back up your content to OneDrive using the OneDrive wizard, or if you chose to back up your content during the Windows Out-of-Box-Experience (OOBE). This may also occur if you redirected your known folders manually through the Properties dialog box in File Explorer. ?This issue does not cause any user files to be deleted and a solution is in progress.

To safeguard your update experience, we have applied a quality hold on devices with redirected known folders from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue was resolved in KB4497935 and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.
(Posted June 11, 2019)

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		Resolved:
May 29, 2019
02:00 PM PT

Opened:
May 21, 2019
07:16 AM PT
Older versions of BattlEye anti-cheat software incompatible
Microsoft and BattlEye have identified a compatibility issue with some games that use older versions of BattlEye anti-cheat software. When launching a game that uses an older, impacted version of BattlEye anti-cheat software on a device running Windows 10, version 1903, the device may experience a system crash.

To safeguard your gaming experience, we have applied a compatibility hold on devices with the impacted versions of BattlEye software used by games installed on your PC. This will prevent Windows 10, version 1903 from being offered until the incompatible version of BattlEye software is no longer installed on the device. 

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Before updating your machine, we recommend you do one or more of the following:

  • Verify that your game is up to date with the latest available version of BattlEye software. Some game platforms allow you to validate your game files, which can confirm that your installation is fully up to date.
  • Restart your system and open the game again.
  • Uninstall BattlEye using https://www.battleye.com/downloads/UninstallBE.exe, and then reopen your game.
  • Uninstall and reinstall your game.
Resolution: This issue was resolved externally by BattlEye for all known impacted games. For a list of recent games that use BattlEye, go to https://www.battleye.com/. We recommend following the workaround before updating to Windows 10, version 1903, as games with incompatible versions of BattleEye may fail to open after updating Windows. If you have confirmed your game is up to date and you have any issues with opening games related to a BattlEye error, please see https://www.battleye.com/support/faq/.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
June 07, 2019
04:26 PM PT

Opened:
May 21, 2019
07:34 AM PT
AMD RAID driver incompatibility
Microsoft and AMD have identified an incompatibility with AMD RAID driver versions earlier than 9.2.0.105. When you attempt to install the Windows 10, version 1903 update on a Windows 10-based computer with an affected driver version, the installation process stops and you get a message like the following:

AMD Ryzen™ or AMD Ryzen™ Threadripper™ configured in SATA or NVMe RAID mode.

“A driver is installed that causes stability problems on Windows. This driver will be disabled. Check with your software/driver provider for an updated version that runs on this version of Windows.”

 
To safeguard your update experience, we have applied a compatibility hold on devices with these AMD drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue has been resolved externally by AMD. To resolve this issue, you will need to download the latest AMD RAID drivers directly from AMD at https://www.amd.com/en/support/chipsets/amd-socket-tr4/x399. The drivers must be version 9.2.0.105 or later. Install the drivers on the affected computer, and then restart the installation process for the Windows 10, version 1903 feature update.
 
Note The safeguard hold will remain in place on machines with the older AMD RAID drivers. We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
June 06, 2019
11:06 AM PT

Opened:
May 21, 2019
07:12 AM PT
D3D applications and games may fail to enter full-screen mode on rotated displays
Some Direct3D (D3D) applications and games (e.g., 3DMark) may fail to enter full-screen mode on displays where the display orientation has been changed from the default (e.g., a landscape display in portrait mode).

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Resolution: This issue was resolved in KB4497935

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		Resolved:
May 29, 2019
02:00 PM PT

Opened:
May 21, 2019
07:05 AM PT
AMD RAID driver incompatibility
Microsoft and AMD have identified an incompatibility with AMD RAID driver versions earlier than 9.2.0.105. When you attempt to install the Windows 10, version 1903 update on a Windows 10-based computer with an affected driver version, the installation process stops and you get a message like the following:

AMD Ryzen™ or AMD Ryzen™ Threadripper™ configured in SATA or NVMe RAID mode.

“A driver is installed that causes stability problems on Windows. This driver will be disabled. Check with your software/driver provider for an updated version that runs on this version of Windows.”

 
To safeguard your update experience, we have applied a compatibility hold on devices with these AMD drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue has been resolved externally by AMD. To resolve this issue, you will need to download the latest AMD RAID drivers directly from AMD at https://www.amd.com/en/support/chipsets/amd-socket-tr4/x399. The drivers must be version 9.2.0.105 or later. Install the drivers on the affected computer, and then restart the installation process for the Windows 10, version 1903 feature update.
 
Note The safeguard hold will remain in place on machines with the older AMD RAID drivers. We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
June 06, 2019
11:06 AM PT

Opened:
May 21, 2019
07:12 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml b/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml index 1f8c14cf98..8d0678c091 100644 --- a/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml +++ b/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml @@ -39,17 +39,17 @@ sections:
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493472Resolved
May 14, 2019
01:22 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493472Resolved
May 14, 2019
01:21 PM PT
Authentication may fail for services after the Kerberos ticket expires
Authentication may fail for services that require unconstrained delegation after the Kerberos ticket expires.

See details >March 12, 2019
KB4489878Resolved
KB4499164May 14, 2019
10:00 AM PT -
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493472Resolved
April 25, 2019
02:00 PM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480970Resolved
KB4493472April 09, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT -
NETDOM.EXE fails to run
NETDOM.EXE fails to run and the error, “The command failed to complete successfully.” appears on screen.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4486563Resolved
KB4493472April 09, 2019
10:00 AM PT +
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493472Resolved
April 25, 2019
02:00 PM PT +
NETDOM.EXE fails to run
NETDOM.EXE fails to run and the error, “The command failed to complete successfully.” appears on screen.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT +
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480955Resolved
KB4486565February 19, 2019
02:00 PM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480970Resolved
KB4493472April 09, 2019
10:00 AM PT +
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480970Resolved
KB4486563February 12, 2019
10:00 AM PT
Event Viewer may not show some event descriptions for network interface cards
The Event Viewer may not show some event descriptions for network interface cards (NIC).

See details >October 18, 2018
KB4462927Resolved
KB4489878March 12, 2019
10:00 AM PT
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480970Resolved
KB4490511February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480955Resolved
KB4486565February 19, 2019
02:00 PM PT -
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480970Resolved
KB4486563February 12, 2019
10:00 AM PT " @@ -97,8 +97,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Authentication may fail for services after the Kerberos ticket expires
After installing KB4489878, some customers report that authentication fails for services that require unconstrained delegation after the Kerberos ticket expires (the default is 10 hours). For example, the SQL server service fails.

Affected platforms: 
  • Client: Windows 7 SP1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4499164.

Back to top		March 12, 2019
KB4489878		Resolved
KB4499164		Resolved:
May 14, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489878, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493472.

Back to top		March 12, 2019
KB4489878		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
NETDOM.EXE fails to run
After installing KB4489878, NETDOM.EXE fails to run, and the on-screen error, “The command failed to complete successfully.” appears.

Affected platforms: 
  • Client: Windows 7 SP1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4493472.

Back to top		March 12, 2019
KB4489878		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489878, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493472.

Back to top		March 12, 2019
KB4489878		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -108,8 +108,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493472

Back to top		February 12, 2019
KB4486563		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4486563, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4486565.

Back to top		February 12, 2019
KB4486563		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4486565.

Back to top		February 12, 2019
KB4486563		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4486563, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4486565.

Back to top		February 12, 2019
KB4486563		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -118,10 +118,10 @@ sections: - type: markdown text: " - - + +
DetailsOriginating updateStatusHistory
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480970, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493472.

Back to top		January 08, 2019
KB4480970		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480970, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490511.

Back to top		January 08, 2019
KB4480970		Resolved
KB4490511		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480955, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4486565.

Back to top		January 17, 2019
KB4480955		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 17, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480970, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493472.

Back to top		January 08, 2019
KB4480970		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, “Unrecognized Database Format”.

Affected Platforms:
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 

Resolution: This issue is resolved in KB4486563.

Back to top		January 08, 2019
KB4480970		Resolved
KB4486563		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480970, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490511.

Back to top		January 08, 2019
KB4480970		Resolved
KB4490511		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml b/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml index a4428a3d64..dc386260cc 100644 --- a/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml +++ b/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml @@ -40,16 +40,16 @@ sections:
System may be unresponsive after restart if ArcaBit antivirus software installed
Devices with ArcaBit antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493446Resolved
May 14, 2019
01:22 PM PT
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493446Resolved
May 14, 2019
01:22 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493446Resolved
May 14, 2019
01:21 PM PT -
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493446Resolved
April 25, 2019
02:00 PM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT -
MSXML6 may cause applications to stop responding.
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489881Resolved
KB4493446April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487000Resolved
KB4493446April 09, 2019
10:00 AM PT -
Devices with winsock kernel client may receive error
Devices with a winsock kernel client may receive D1, FC, and other errors.

See details >March 12, 2019
KB4489881Resolved
KB4489893March 19, 2019
10:00 AM PT -
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 19, 2019
KB4487016Resolved
KB4489881March 12, 2019
10:00 AM PT -
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480963Resolved
KB4490512February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480969Resolved
KB4487016February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >February 12, 2019
KB4487000Resolved
KB4487016February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480969Resolved
KB4487016February 19, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487000Resolved
KB4493446April 09, 2019
10:00 AM PT +
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493446Resolved
April 25, 2019
02:00 PM PT +
Devices with winsock kernel client may receive error
Devices with a winsock kernel client may receive D1, FC, and other errors.

See details >March 12, 2019
KB4489881Resolved
KB4489893March 19, 2019
10:00 AM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489881Resolved
KB4493446April 09, 2019
10:00 AM PT +
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 19, 2019
KB4487016Resolved
KB4489881March 12, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding.
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT +
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480963Resolved
KB4490512February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480963Resolved
KB4487000February 12, 2019
10:00 AM PT " @@ -99,8 +99,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Issue using PXE to start a device from WDS
After installing KB4489881, there may be issues using the Preboot Execution Environment (PXE) to start a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012 
Resolution: This issue was resolved in KB4503276.

Back to top		March 12, 2019
KB4489881		Resolved
KB4503276		Resolved:
June 11, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489881, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493446.

Back to top		March 12, 2019
KB4489881		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Devices with winsock kernel client may receive error
After installing KB4489881, devices with a winsock kernel client may receive D1, FC, and other errors. Additionally, systems that run the Skype for Business or Lync Server Edge Transport role may be affected by this issue.

Affected platforms: 
  • Client: Windows 8.1 
  • Server: Windows Server 2012 R2 
Resolution: This issue is resolved in KB4489893.

Back to top		March 12, 2019
KB4489881		Resolved
KB4489893		Resolved:
March 19, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489881, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493446.

Back to top		March 12, 2019
KB4489881		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -109,9 +109,9 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
Internet Explorer may fail to load images
After installing KB4487000, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4487016.

Back to top		February 12, 2019
KB4487000		Resolved
KB4487016		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493446.

Back to top		February 12, 2019
KB4487000		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487016, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012 
Resolution: This issue is resolved in KB4489881.

Back to top		February 19, 2019
KB4487016		Resolved
KB4489881		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
After installing KB4487000, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4487016.

Back to top		February 12, 2019
KB4487000		Resolved
KB4487016		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -120,10 +120,10 @@ sections: - type: markdown text: " - - - + + +
DetailsOriginating updateStatusHistory
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480963, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding.
After installing KB4480963, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480963, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490512.

Back to top		January 08, 2019
KB4480963		Resolved
KB4490512		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480969, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4487016.

Back to top		January 15, 2019
KB4480969		Resolved
KB4487016		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 15, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding.
After installing KB4480963, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480963, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480963, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490512.

Back to top		January 08, 2019
KB4480963		Resolved
KB4490512		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, “Unrecognized Database Format”.

Affected platforms: 
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4487000.

Back to top		January 08, 2019
KB4480963		Resolved
KB4487000		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-server-2008-sp2.yml b/windows/release-information/resolved-issues-windows-server-2008-sp2.yml index 31be3e66fc..1a7ffb0d7a 100644 --- a/windows/release-information/resolved-issues-windows-server-2008-sp2.yml +++ b/windows/release-information/resolved-issues-windows-server-2008-sp2.yml @@ -36,11 +36,11 @@ sections:
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493471Resolved
May 14, 2019
01:21 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493471Resolved
May 14, 2019
01:19 PM PT
Authentication may fail for services after the Kerberos ticket expires
Authentication may fail for services that require unconstrained delegation after the Kerberos ticket expires.

See details >March 12, 2019
KB4489880Resolved
KB4499149May 14, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487023Resolved
KB4493471April 09, 2019
10:00 AM PT
NETDOM.EXE fails to run
NETDOM.EXE fails to run and the error, “The command failed to complete successfully.” appears on screen.

See details >March 12, 2019
KB4489880Resolved
KB4493471April 09, 2019
10:00 AM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480974Resolved
KB4489880March 12, 2019
10:00 AM PT -
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480968Resolved
KB4490514February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4487023Resolved
KB4487022February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480974Resolved
KB4489880March 12, 2019
10:00 AM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487023Resolved
KB4493471April 09, 2019
10:00 AM PT +
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480968Resolved
KB4490514February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480968Resolved
KB4487023February 12, 2019
10:00 AM PT " @@ -86,8 +86,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4493471.

Back to top		February 12, 2019
KB4487023		Resolved
KB4493471		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487022.

Back to top		February 12, 2019
KB4487023		Resolved
KB4487022		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4493471.

Back to top		February 12, 2019
KB4487023		Resolved
KB4493471		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-server-2012.yml b/windows/release-information/resolved-issues-windows-server-2012.yml index 678c8e0517..b46a4674bf 100644 --- a/windows/release-information/resolved-issues-windows-server-2012.yml +++ b/windows/release-information/resolved-issues-windows-server-2012.yml @@ -40,15 +40,15 @@ sections:
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >April 25, 2019
KB4493462Resolved
KB4499171May 14, 2019
10:00 AM PT
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493451Resolved
May 14, 2019
01:21 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493451Resolved
May 14, 2019
01:19 PM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4487025Resolved
KB4487024February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480971Resolved
KB4487024February 19, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487025Resolved
KB4493451April 09, 2019
10:00 AM PT +
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 12, 2019
KB4487025Resolved
KB4489891March 12, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480975Resolved
KB4493451April 09, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >January 08, 2019
KB4480975Resolved
KB4493451April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487025Resolved
KB4493451April 09, 2019
10:00 AM PT -
Event Viewer may not show some event descriptions for network interface cards
The Event Viewer may not show some event descriptions for network interface cards (NIC).

See details >September 11, 2018
KB4457135Resolved
KB4489891March 12, 2019
10:00 AM PT -
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 12, 2019
KB4487025Resolved
KB4489891March 12, 2019
10:00 AM PT
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480975Resolved
KB4490516February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480971Resolved
KB4487024February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4487025Resolved
KB4487024February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480975Resolved
KB4487025February 12, 2019
10:00 AM PT +
Event Viewer may not show some event descriptions for network interface cards
The Event Viewer may not show some event descriptions for network interface cards (NIC).

See details >September 11, 2018
KB4457135Resolved
KB4489891March 12, 2019
10:00 AM PT " @@ -104,9 +104,9 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		February 12, 2019
KB4487025		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493451.

Back to top		February 12, 2019
KB4487025		Resolved
KB4493451		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487025, users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489891.

Back to top		February 12, 2019
KB4487025		Resolved
KB4489891		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		February 12, 2019
KB4487025		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -115,10 +115,10 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480971, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		January 15, 2019
KB4480971		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 15, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480975, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493451.

Back to top		January 08, 2019
KB4480975		Resolved
KB4493451		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
After installing KB4480975, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4493451.

Back to top		January 08, 2019
KB4480975		Resolved
KB4493451		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480975, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, \"Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).\"

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490516.

Back to top		January 08, 2019
KB4480975		Resolved
KB4490516		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480971, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		January 15, 2019
KB4480971		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 15, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, \"Unrecognized Database Format\".

Affected platforms: 
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487025.

Back to top		January 08, 2019
KB4480975		Resolved
KB4487025		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/status-windows-10-1507.yml b/windows/release-information/status-windows-10-1507.yml index e81ad9523c..9f116c65f8 100644 --- a/windows/release-information/status-windows-10-1507.yml +++ b/windows/release-information/status-windows-10-1507.yml @@ -60,8 +60,8 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

- +
SummaryOriginating updateStatusLast updated
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Mitigated
April 25, 2019
02:00 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 10240.18244

June 11, 2019
KB4503291		Resolved
KB4507458		July 09, 2019
10:00 AM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Mitigated
April 25, 2019
02:00 PM PT
" diff --git a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml index 004468483a..31c6e06ec3 100644 --- a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml +++ b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml @@ -60,14 +60,15 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

- - - - + + + + +
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
July 10, 2019
07:09 PM PT
Cluster service may fail if the minimum password length is set to greater than 14
The cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the Group Policy “Minimum Password Length” is configured with greater than 14 characters.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Mitigated
April 25, 2019
02:00 PM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

See details >		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
February 19, 2019
10:00 AM PT
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 14393.3115

July 16, 2019
KB4507459		Investigating
July 25, 2019
06:10 PM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

See details >		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
July 10, 2019
07:09 PM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 14393.2969

May 14, 2019
KB4494440		Resolved
KB4507460		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		June 27, 2019
02:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Mitigated
April 25, 2019
02:00 PM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

See details >		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
February 19, 2019
10:00 AM PT
Cluster service may fail if the minimum password length is set to greater than 14
The cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the Group Policy “Minimum Password Length” is configured with greater than 14 characters.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
" @@ -83,6 +84,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507459. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507459. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 14393.3115

July 16, 2019
KB4507459		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503267 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" @@ -120,8 +122,8 @@ sections: - type: markdown text: " - - + +
DetailsOriginating updateStatusHistory
Cluster service may fail if the minimum password length is set to greater than 14
After installing KB4467684, the cluster service may fail to start with the error \"2245 (NERR_PasswordTooShort)\" if the Group Policy \"Minimum Password Length\" is configured with greater than 14 characters.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Set the domain default \"Minimum Password Length\" policy to less than or equal to 14 characters.

Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
After installing KB4467691, Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart.

If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled.

Next steps: Lenovo and Fujitsu are aware of this issue. Please contact your OEM to ask if there is a firmware update available for your device.

Back to top		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
Last updated:
February 19, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
After installing KB4467691, Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart.

If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled.

Next steps: Lenovo and Fujitsu are aware of this issue. Please contact your OEM to ask if there is a firmware update available for your device.

Back to top		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
Last updated:
February 19, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Cluster service may fail if the minimum password length is set to greater than 14
After installing KB4467684, the cluster service may fail to start with the error \"2245 (NERR_PasswordTooShort)\" if the Group Policy \"Minimum Password Length\" is configured with greater than 14 characters.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Set the domain default \"Minimum Password Length\" policy to less than or equal to 14 characters.

Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
" diff --git a/windows/release-information/status-windows-10-1703.yml b/windows/release-information/status-windows-10-1703.yml index a45bf5b15b..1055bb156e 100644 --- a/windows/release-information/status-windows-10-1703.yml +++ b/windows/release-information/status-windows-10-1703.yml @@ -60,9 +60,10 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

- + +
SummaryOriginating updateStatusLast updated
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 15063.1563

January 08, 2019
KB4480973		Mitigated
April 25, 2019
02:00 PM PT
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 15063.1955

July 16, 2019
KB4507467		Investigating
July 25, 2019
06:10 PM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 15063.1805

May 14, 2019
KB4499181		Resolved
KB4507450		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 15063.1839

May 28, 2019
KB4499162		Resolved
KB4509476		June 26, 2019
04:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 15063.1563

January 08, 2019
KB4480973		Mitigated
April 25, 2019
02:00 PM PT
" @@ -73,6 +74,15 @@ sections:
" +- title: July 2019 +- items: + - type: markdown + text: " + + +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507467. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507467. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 15063.1955

July 16, 2019
KB4507467		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
+ " + - title: June 2019 - items: - type: markdown diff --git a/windows/release-information/status-windows-10-1709.yml b/windows/release-information/status-windows-10-1709.yml index 301dd17335..4667f66e88 100644 --- a/windows/release-information/status-windows-10-1709.yml +++ b/windows/release-information/status-windows-10-1709.yml @@ -60,9 +60,10 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ - +
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 16299.1296

July 16, 2019
KB4507465		Investigating
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 16299.1217

June 11, 2019
KB4503284		Mitigated
July 10, 2019
07:09 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 16299.904

January 08, 2019
KB4480978		Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 16299.1182

May 28, 2019
KB4499147		Resolved
KB4509477		June 26, 2019
04:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 16299.904

January 08, 2019
KB4480978		Mitigated
April 25, 2019
02:00 PM PT
" @@ -78,6 +79,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507465. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507465. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 16299.1296

July 16, 2019
KB4507465		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503284 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 16299.1217

June 11, 2019
KB4503284		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" diff --git a/windows/release-information/status-windows-10-1803.yml b/windows/release-information/status-windows-10-1803.yml index e9e62c1dce..166d39fa83 100644 --- a/windows/release-information/status-windows-10-1803.yml +++ b/windows/release-information/status-windows-10-1803.yml @@ -60,10 +60,11 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ + -
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 17134.915

July 16, 2019
KB4507466		Investigating
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
July 10, 2019
07:09 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		June 26, 2019
04:00 PM PT
Startup to a black screen after installing updates
Your device may startup to a black screen during the first logon after installing updates.

See details >		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
June 14, 2019
04:41 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 17134.523

January 08, 2019
KB4480966		Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		June 26, 2019
04:00 PM PT
" @@ -79,6 +80,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507466. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507466. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 17134.915

July 16, 2019
KB4507466		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503286 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" @@ -88,8 +90,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499183. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509478.

Back to top		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
" diff --git a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml index 5613d45790..a8d6b78e6b 100644 --- a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml @@ -21,8 +21,7 @@ sections: Find information on known issues and the status of the rollout for Windows 10, version 1809 and Windows Server 2019. Looking for a specific issue? Press CTRL + F (or Command + F if you are using a Mac) and enter your search term(s). -
Current status:
- Windows 10, version 1809 is designated for broad deployment and available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel. +		Current status:
Windows 10, version 1809 is designated for broad deployment and available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel.
" @@ -65,11 +64,12 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ + -
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 17763.652

July 22, 2019
KB4505658		Investigating
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
July 10, 2019
07:09 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		June 26, 2019
04:00 PM PT
Startup to a black screen after installing updates
Your device may startup to a black screen during the first logon after installing updates.

See details >		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
June 14, 2019
04:41 PM PT
Devices with some Asian language packs installed may receive an error
After installing the KB4493509 devices with some Asian language packs installed may receive the error, \"0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_F

See details >		OS Build 17763.437

April 09, 2019
KB4493509		Mitigated
May 03, 2019
10:59 AM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 17763.253

January 08, 2019
KB4480116		Mitigated
April 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		June 26, 2019
04:00 PM PT
" @@ -85,6 +85,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4505658. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4505658. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 17763.652

July 22, 2019
KB4505658		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503327 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" @@ -94,8 +95,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4497934. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509479.

Back to top		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
" diff --git a/windows/release-information/status-windows-10-1903.yml b/windows/release-information/status-windows-10-1903.yml index 29dfcd9330..a1ebf8f433 100644 --- a/windows/release-information/status-windows-10-1903.yml +++ b/windows/release-information/status-windows-10-1903.yml @@ -22,7 +22,7 @@ sections:
Current status as of July 16, 2019:
-
We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
+
We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
" @@ -65,21 +65,23 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ + - - + + + + + + - - - -
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
July 25, 2019
06:10 PM PT
Issues updating when certain versions of Intel storage drivers are installed
Certain versions of Intel Rapid Storage Technology (Intel RST) drivers may cause updating to Windows 10, version 1903 to fail.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Mitigated External
July 25, 2019
06:10 PM PT
The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
Some apps or games that needs to perform graphics intensive operations may close or fail to open on Surface Book 2 devices with Nvidia dGPU.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
July 16, 2019
09:04 AM PT
Initiating a Remote Desktop connection may result in black screen
When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
July 12, 2019
04:42 PM PT
Windows Sandbox may fail to start with error code “0x80070002”
Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language was changed between updates

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Investigating
June 10, 2019
06:06 PM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
May 21, 2019
04:47 PM PT
Loss of functionality in Dynabook Smartphone Link app
After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
July 11, 2019
01:54 PM PT
Error attempting to update with external USB device or memory card attached
PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Mitigated
July 10, 2019
07:09 PM PT
RASMAN service may stop working and result in the error “0xc0000005”
The Remote Access Connection Manager (RASMAN) service may stop working and result in the error “0xc0000005” with VPN profiles configured as an Always On VPN connection.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Mitigated
July 01, 2019
05:04 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Resolved
KB4501375		June 27, 2019
10:00 AM PT
Windows Sandbox may fail to start with error code “0x80070002”
Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language was changed between updates

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Investigating
June 10, 2019
06:06 PM PT
Gamma ramps, color profiles, and night light settings do not apply in some cases
Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 24, 2019
11:02 AM PT
Unable to discover or connect to Bluetooth devices
Microsoft has identified compatibility issues with some versions of Realtek and Qualcomm Bluetooth radio drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:48 PM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
May 21, 2019
04:47 PM PT
Intel Audio displays an intcdaud.sys notification
Microsoft and Intel have identified an issue with a range of Intel Display Audio device drivers that may result in battery drain.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:47 PM PT
Cannot launch Camera app
Microsoft and Intel have identified an issue affecting Intel RealSense SR300 or Intel RealSense S200 camera apps.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:47 PM PT
Intermittent loss of Wi-Fi connectivity
Some older devices may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:46 PM PT
Loss of functionality in Dynabook Smartphone Link app
After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
July 11, 2019
01:54 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Error attempting to update with external USB device or memory card attached
PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Resolved
KB4501375		June 27, 2019
10:00 AM PT
" @@ -95,6 +97,8 @@ sections: - type: markdown text: " + + @@ -116,15 +120,15 @@ sections: - type: markdown text: "
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4497935. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4497935. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Issues updating when certain versions of Intel storage drivers are installed
Intel and Microsoft have found incompatibility issues with certain versions of the Intel Rapid Storage Technology (Intel RST) drivers and the Windows 10 May 2019 Update (Windows 10, version 1903).  

To safeguard your update experience, we have applied a compatibility hold on devices with Intel RST driver version between 15.1.0.1002 and 15.5.2.1053 installed from being offered Windows 10, version 1903 or Windows Server, version 1903 until the driver has been updated.

Versions 15.5.2.1054 or later are compatible, and a device that has these drivers installed can install the Windows 10 May 2019 Update. For affected devices, the recommended version is 15.9.6.1044.

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Next steps: To resolve this issue, you will need to update the Intel RST drivers for your device to version 15.5.2.1054 or a later.  Check with your device manufacturer (OEM) to see if an updated driver is available and install it. You can also download the latest Intel RST drivers directly from Intel at Intel® Rapid Storage Technology (Intel® RST) User Interface and Driver. Once your drivers are updated, you can restart the installation process for the May 2019 Update.

Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Mitigated External
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
Microsoft has identified a compatibility issue on some Surface Book 2 devices configured with Nvidia discrete graphics processing unit (dGPU). After updating to Windows 10, version 1903 (May 2019 Feature Update), some apps or games that needs to perform graphics intensive operations may close or fail to open.

To safeguard your update experience, we have applied a compatibility hold on Surface Book 2 devices with Nvidia dGPUs from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: To mitigate the issue if you are already on Windows 10, version 1903, you can restart the device or select the Scan for hardware changes button in the Action menu or on the toolbar in Device Manager.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
Last updated:
July 16, 2019
09:04 AM PT

Opened:
July 12, 2019
04:20 PM PT
Initiating a Remote Desktop connection may result in black screen
When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen. Any version of Windows may encounter this issue when initiating a Remote Desktop connection to a Windows 10, version 1903 device which is running an affected display driver, including the drivers for the Intel 4 series chipset integrated GPU (iGPU).

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Next steps: We are working on a resolution that will be made available in upcoming release.

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
Last updated:
July 12, 2019
04:42 PM PT

Opened:
July 12, 2019
04:42 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503293 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.175

June 11, 2019
KB4503293		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
+ + + - + - - -
DetailsOriginating updateStatusHistory
Loss of functionality in Dynabook Smartphone Link app
Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:54 PM PT

Opened:
May 24, 2019
03:10 PM PT
Error attempting to update with external USB device or memory card attached
If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:38 AM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Windows Sandbox may fail to start with error code “0x80070002”
Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language is changed during the update process when installing Windows 10, version 1903.

Affected platforms:
  • Client: Windows 10, version 1903
Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Investigating
Last updated:
June 10, 2019
06:06 PM PT

Opened:
May 24, 2019
04:20 PM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers. After updating to Windows 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change.

To safeguard your update experience, we have applied a compatibility hold on devices with certain Intel drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Restart your device to apply changes to brightness.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution that will be made available in upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:56 AM PT
Gamma ramps, color profiles, and night light settings do not apply in some cases
Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

Microsoft has identified some scenarios where night light settings may stop working, for example:
  • Connecting to (or disconnecting from) an external monitor, dock, or projector
  • Rotating the screen
  • Updating display drivers or making other display mode changes
  • Closing full screen applications
  • Applying custom color profiles
  • Running applications that rely on custom gamma ramps
Affected platforms:
  • Client: Windows 10, version 1903
Workaround: If you find that your night light has stopped working, try turning the night light off and on, or restarting your computer. For other color setting issues, restart your computer to correct the issue.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 24, 2019
11:02 AM PT

Opened:
May 21, 2019
07:28 AM PT
Unable to discover or connect to Bluetooth devices
Microsoft has identified compatibility issues with some driver versions for Bluetooth radios made by Realtek and Qualcomm. To safeguard your update experience, we have applied a compatibility hold on devices with affected driver versions for Realtek or Qualcomm Bluetooth radios from being offered Windows 10, version 1903 or Windows Server, version 1903 until the driver has been updated.

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Workaround: Check with your device manufacturer (OEM) to see if an updated driver is available and install it.

  • For Qualcomm drivers, you will need to install a driver version greater than 10.0.1.11.
  • For Realtek drivers, you will need to install a driver version greater than 1.5.1011.0.
Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

Next steps: Microsoft is working with Realtek and Qualcomm to release new drivers for all affected system via Windows Update.  


Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:48 PM PT

Opened:
May 21, 2019
07:29 AM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers. After updating to Windows 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change.

To safeguard your update experience, we have applied a compatibility hold on devices with certain Intel drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Restart your device to apply changes to brightness.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution that will be made available in upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:56 AM PT
Intel Audio displays an intcdaud.sys notification
Microsoft and Intel have identified an issue with a range of Intel Display Audio device drivers that may result in higher than normal battery drain. If you see an intcdaud.sys notification or “What needs your attention” notification when trying to update to Windows 10, version 1903, you have an affected Intel Audio Display device driver installed on your machine (intcdaud.sys, versions 10.25.0.3 through 10.25.0.8).
  
To safeguard your update experience, we have applied a compatibility hold on devices with drivers from being offered Windows 10, version 1903 until updated device drivers have been installed.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809
Workaround:
On the “What needs your attention\" notification, click the Back button to remain on your current version of Windows 10. (Do not click Confirm as this will proceed with the update and you may experience compatibility issues.) Affected devices will automatically revert to the previous working configuration.

For more information, see Intel's customer support guidance and the Microsoft knowledge base article KB4465877.

Note We recommend you do not attempt to update your devices until newer device drivers are installed.

Next steps: You can opt to wait for newer drivers to be installed automatically through Windows Update or check with the computer manufacturer for the latest device driver software availability and installation procedures.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:22 AM PT
Cannot launch Camera app
Microsoft and Intel have identified an issue affecting Intel RealSense SR300 and Intel RealSense S200 cameras when using the Camera app. After updating to the Windows 10 May 2019 Update and launching the Camera app, you may get an error message stating:

\"Close other apps, error code: 0XA00F4243.”


To safeguard your update experience, we have applied a protective hold on machines with Intel RealSense SR300 or Intel RealSense S200 cameras installed from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: To temporarily resolve this issue, perform one of the following:

  • Unplug your camera and plug it back in.

or

  • Disable and re-enable the driver in Device Manager. In the Search box, type \"Device Manager\" and press Enter. In the Device Manager dialog box, expand Cameras, then right-click on any RealSense driver listed and select Disable device. Right click on the driver again and select Enable device.

or

  • Restart the RealSense service. In the Search box, type \"Task Manager\" and hit Enter. In the Task Manager dialog box, click on the Services tab, right-click on RealSense, and select Restart
Note This workaround will only resolve the issue until your next system restart.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:20 AM PT
Intermittent loss of Wi-Fi connectivity
Some older computers may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver. An updated Wi-Fi driver should be available from your device manufacturer (OEM).

To safeguard your upgrade experience, we have applied a hold on devices with this Qualcomm driver from being offered Windows 10, version 1903, until the updated driver is installed.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Download and install an updated Wi-Fi driver from your device manufacturer (OEM).
 
Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:46 PM PT

Opened:
May 21, 2019
07:13 AM PT
Loss of functionality in Dynabook Smartphone Link app
Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:54 PM PT

Opened:
May 24, 2019
03:10 PM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Error attempting to update with external USB device or memory card attached
If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:38 AM PT
" diff --git a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml index 883499827b..36e559e6aa 100644 --- a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml +++ b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml @@ -62,8 +62,8 @@ sections: - +
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		June 11, 2019
KB4503276		Mitigated
July 10, 2019
07:09 PM PT
Japanese IME doesn't show the new Japanese Era name as a text input option
If previous dictionary updates are installed, the Japanese input method editor (IME) doesn't show the new Japanese Era name as a text input option.

See details >		April 25, 2019
KB4493443		Mitigated
May 15, 2019
05:53 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >		January 08, 2019
KB4480963		Mitigated
April 25, 2019
02:00 PM PT
System may be unresponsive after restart with certain McAfee antivirus products
Devices with McAfee Endpoint Security Threat Prevention 10.x, Host Intrusion Prevention 8.0, or VirusScan Enterprise 8.8 may be slow or unresponsive at startup.

See details >		April 09, 2019
KB4493446		Mitigated
April 18, 2019
05:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >		January 08, 2019
KB4480963		Mitigated
April 25, 2019
02:00 PM PT
" From 47ccd732a79958f96c48edd789805f5182091958 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Thu, 25 Jul 2019 20:34:44 -0700 Subject: [PATCH 099/138] add 2 new issues (#778) * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md * add new issues (#777) --- ...ponents-to-microsoft-services-using-MDM.md | 196 +++++++++--------- ...system-components-to-microsoft-services.md | 2 +- .../resolved-issues-windows-10-1507.yml | 20 +- .../resolved-issues-windows-10-1607.yml | 20 +- .../resolved-issues-windows-10-1703.yml | 10 +- .../resolved-issues-windows-10-1709.yml | 10 +- .../resolved-issues-windows-10-1803.yml | 16 +- ...indows-10-1809-and-windows-server-2019.yml | 26 +-- .../resolved-issues-windows-10-1903.yml | 8 +- ...ndows-7-and-windows-server-2008-r2-sp1.yml | 24 +-- ...windows-8.1-and-windows-server-2012-r2.yml | 28 +-- ...esolved-issues-windows-server-2008-sp2.yml | 8 +- .../resolved-issues-windows-server-2012.yml | 14 +- .../status-windows-10-1507.yml | 2 +- ...indows-10-1607-and-windows-server-2016.yml | 14 +- .../status-windows-10-1703.yml | 12 +- .../status-windows-10-1709.yml | 4 +- .../status-windows-10-1803.yml | 6 +- ...indows-10-1809-and-windows-server-2019.yml | 9 +- .../status-windows-10-1903.yml | 26 ++- ...windows-8.1-and-windows-server-2012-r2.yml | 2 +- 21 files changed, 244 insertions(+), 213 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 84112c5107..e43cc160d7 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -40,98 +40,111 @@ The following table lists management options for each setting. For Windows 10, the following MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). -| Setting | MDM Policy | Description | -| --- | --- | --- | -| 1. Automatic Root Certificates Update | There is intentionally no MDM available for Automatic Root Certificate Update. | This MDM does not exist since it would prevent the operation and management of MDM management of devices. -| 2. Cortana and Search | [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana) | Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** -| | [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation) | Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)** -| 3. Date & Time | [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime)| Allows the user to change date and time settings. **Set to 0 (zero)** -| 4. Device metadata retrieval | [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork) | Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled** -| 5. Find My Device | [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice)| This policy turns on Find My Device. **Set to 0 (zero)** -| 6. Font streaming | [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders) | Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** -| 7. Insider Preview builds | [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview) | This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)** -| 8. Internet Explorer | The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) | -| | [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites) | Recommends websites based on the user’s browsing activity. **Set to Disabled** -| | [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter) | Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled** -| | [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature) | Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled** -| | [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange) | Determines whether users can change the default Home Page or not. **Set to Enabled** -| | [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard) | Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** -| 9. Live Tiles | [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications)| This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Set to Enabled** -| 10. Mail synchronization | [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection) | Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** -| 11. Microsoft Account | [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant) | Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** -| 12. Microsoft Edge | | The following Microsoft Edge MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). For a complete list of the Microsoft Edge policies, see [Available policies for Microsoft Edge](https://docs.microsoft.com/microsoft-edge/deploy/available-policies). -| | [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill) | Choose whether employees can use autofill on websites. **Set to 0 (zero)** -| | [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack) | Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** -| | [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist) | Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** -| | [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager) | Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** -| | [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar) | Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** -| | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** -| 13. Network Connection Status Indicator | [Connectivity/DisallowNetworkConnectivityActiveTests](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-connectivity#connectivity-disallownetworkconnectivityactivetests) | Note: After you apply this policy you must restart the device for the policy setting to take effect. **Set to 1 (one)** -| 14. Offline maps | [AllowOfflineMapsDownloadOverMeteredConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps)|Allows the download and update of map data over metered connections.
**Set to 0 (zero)** -| | [EnableOfflineMapsAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps#maps-enableofflinemapsautoupdate)|Disables the automatic download and update of map data. **Set to 0 (zero)** -| 15. OneDrive | [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync)| Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** -| 15.1 Injest the ADMX | To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. | The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). -| 15.2 Prevent Network Traffic before User SignIn | PreventNetworkTrafficPreUserSignIn | The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn -| 16. Preinstalled apps | N/A | N/A -| 17. Privacy settings | | Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. -| 17.1 General | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection) | This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)** -| 17.2 Location | [System/AllowLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowlocation) | Specifies whether to allow app access to the Location service. **Set to 0 (zero)** -| 17.3 Camera | [Camera/AllowCamera](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-camera#camera-allowcamera) | Disables or enables the camera. **Set to 0 (zero)** -| 17.4 Microphone | [Privacy/LetAppsAccessMicrophone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmicrophone) | Specifies whether Windows apps can access the microphone. **Set to 2 (two)** -| 17.5 Notifications | [Privacy/LetAppsAccessNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessnotifications) | Specifies whether Windows apps can access notifications. **Set to 2 (two)** -| | [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips) | Enables or disables the retrieval of online tips and help for the Settings app. **Set to Disabled** -| 17.6 Speech, Inking, & Typing | [Privacy/AllowInputPersonalization](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-allowinputpersonalization) | This policy specifies whether users on the device have the option to enable online speech recognition. **Set to 0 (zero)** -| | [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection)| This policy setting controls the ability to send inking and typing data to Microsoft **Set to 0 (zero)** -| 17.7 Account info | [Privacy/LetAppsAccessAccountInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessaccountinfo) | Specifies whether Windows apps can access account information. **Set to 2 (two)** -| 17.8 Contacts | [Privacy/LetAppsAccessContacts](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscontacts) | Specifies whether Windows apps can access contacts. **Set to 2 (two)** -| 17.9 Calendar | [Privacy/LetAppsAccessCalendar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscalendar) | Specifies whether Windows apps can access the calendar. **Set to 2 (two)** -| 17.10 Call history | [Privacy/LetAppsAccessCallHistory](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscallhistory) | Specifies whether Windows apps can access account information. **Set to 2 (two)** -| 17.11 Email | [Privacy/LetAppsAccessEmail](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessemail) | Specifies whether Windows apps can access email. **Set to 2 (two)** -| 17.12 Messaging | [Privacy/LetAppsAccessMessaging](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmessaging) | Specifies whether Windows apps can read or send messages (text or MMS). **Set to 2 (two)** -| 17.13 Phone calls | [Privacy/LetAppsAccessPhone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessphone) | Specifies whether Windows apps can make phone calls. **Set to 2 (two)** -| 17.14 Radios | [Privacy/LetAppsAccessRadios](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessradios) | Specifies whether Windows apps have access to control radios. **Set to 2 (two)** -| 17.15 Other devices | [Privacy/LetAppsSyncWithDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappssyncwithdevices) | Specifies whether Windows apps can sync with devices. **Set to 2 (two)** -| | [Privacy/LetAppsAccessTrustedDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstrusteddevices) | Specifies whether Windows apps can access trusted devices. **Set to 2 (two)** -| 17.16 Feedback & diagnostics | [System/AllowTelemetry](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowtelemetry) | Allow the device to send diagnostic and usage telemetry data, such as Watson. **Set to 0 (zero)** -| | [Experience/DoNotShowFeedbackNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-donotshowfeedbacknotifications)| Prevents devices from showing feedback questions from Microsoft. **Set to 1 (one)** -| 17.17 Background apps | [Privacy/LetAppsRunInBackground](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsruninbackground) | Specifies whether Windows apps can run in the background. **Set to 2 (two)** -| 17.18 Motion | [Privacy/LetAppsAccessMotion](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmotion) | Specifies whether Windows apps can access motion data. **Set to 2 (two)** -| 17.19 Tasks | [Privacy/LetAppsAccessTasks](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstasks) | Turn off the ability to choose which apps have access to tasks. **Set to 2 (two)** -| 17.20 App Diagnostics | [Privacy/LetAppsGetDiagnosticInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsgetdiagnosticinfo) | Force allow, force deny or give user control of apps that can get diagnostic information about other running apps. **Set to 2 (two)** -| 18. Software Protection Platform | [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation) | Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** -| 19. Storage Health | [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates) | Allows disk health model updates. **Set to 0 (zero)** -| 20. Sync your settings | [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings) | Control whether your settings are synchronized. **Set to 0 (zero)** -| 21. Teredo | No MDM needed | Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. -| 22. Wi-Fi Sense | No MDM needed | Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. -| 23. Windows Defender | [Defender/AllowCloudProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-allowcloudprotection) | Disconnect from the Microsoft Antimalware Protection Service. **Set to 0 (zero)** -| | [Defender/SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent) | Stop sending file samples back to Microsoft. **Set to 2 (two)** -| 23.1 Windows Defender Smartscreen | [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen) | Disable Windows Defender Smartscreen. **Set to 0 (zero)** -| 23.2 Windows Defender Smartscreen EnableAppInstallControl | [SmartScreen/EnableAppInstallControl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-smartscreen#smartscreen-enableappinstallcontrol) | Controls whether users are allowed to install apps from places other than the Microsoft Store. **Set to 0 (zero)** -| 23.3 Windows Defender Potentially Unwanted Applications(PUA) Protection | [Defender/PUAProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-puaprotection) | Specifies the level of detection for potentially unwanted applications (PUAs). **Set to 1 (one)** -| 24. Windows Spotlight | [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight) | Disable Windows Spotlight. **Set to 0 (zero)** -| 25. Microsoft Store | [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps)| Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** -| | [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate)| Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** -| 25.1 Apps for websites | [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers) | This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** -| 26. Windows Update Delivery Optimization | | The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). -| | [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode)| Lets you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** -| 27. Windows Update | [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate) | Control automatic updates. **Set to 5 (five)** -| 27.1 Windows Update Allow Update Service | [Update/AllowUpdateService](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowupdateservice) | Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)** -| 27.2 Windows Update Service URL| [Update/UpdateServiceUrl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-updateserviceurl) | Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with this Value: +1. **Automatic Root Certificates Update** + 1. MDM Policy: There is intentionally no MDM available for Automatic Root Certificate Update. This MDM does not exist since it would prevent the operation and management of MDM management of devices. - - $CmdID$ - - - chr - text/plain - - - ./Vendor/MSFT/Policy/Config/Update/UpdateServiceUrl - - http://abcd-srv:8530 - - +1. **Cortana and Search** + 1. MDM Policy: [Experience/AllowCortana](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowcortana). Choose whether to let Cortana install and run on the device. **Set to 0 (zero)** + 1. MDM Policy: [Search/AllowSearchToUseLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-search#search-allowsearchtouselocation). Choose whether Cortana and Search can provide location-aware search results. **Set to 0 (zero)** +1. **Date & Time** + 1. MDM Policy: [Settings/AllowDateTime](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowdatetime). Allows the user to change date and time settings. **Set to 0 (zero)** + +1. **Device metadata retrieval** + 1. MDM Policy: [DeviceInstallation/PreventDeviceMetadataFromNetwork](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deviceinstallation#deviceinstallation-preventdevicemetadatafromnetwork). Choose whether to prevent Windows from retrieving device metadata from the Internet. **Set to Enabled** + +1. **Find My Device** + 1. MDM Policy: [Experience/AllowFindMyDevice](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowfindmydevice). This policy turns on Find My Device. **Set to 0 (zero)** + +1. **Font streaming** + 1. MDM Policy: [System/AllowFontProviders](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowfontproviders). Setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. **Set to 0 (zero)** +1. **Insider Preview builds** + 1. MDM Policy: [System/AllowBuildPreview](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowbuildpreview). This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. **Set to 0 (zero)** + +1. **Internet Explorer** The following Microsoft Internet Explorer MDM policies are available in the [Internet Explorer CSP](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer) + 1. MDM Policy: [InternetExplorer/AllowSuggestedSites](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-allowsuggestedsites). Recommends websites based on the user’s browsing activity. **Set to Disabled** + 1. MDM Policy: [InternetExplorer/PreventManagingSmartScreenFilter]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-preventmanagingsmartscreenfilter). Prevents the user from managing SmartScreen Filter, which warns the user if the website being visited is known for fraudulent attempts to gather personal information through "phishing," or is known to host malware. **Set to Enabled** + 1. MDM Policy: [InternetExplorer/DisableFlipAheadFeature]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disableflipaheadfeature). Determines whether a user can swipe across a screen or click Forward to go to the next pre-loaded page of a website. **Set to Enabled** + 1. MDM Policy: [InternetExplorer/DisableHomePageChange]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablehomepagechange). Determines whether users can change the default Home Page or not. **Set to Enabled** + 1. MDM Policy: [InternetExplorer/DisableFirstRunWizard]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-internetexplorer#internetexplorer-disablefirstrunwizard). Prevents Internet Explorer from running the First Run wizard the first time a user starts the browser after installing Internet Explorer or Windows. **Set to Enabled** + +1. **Live Tiles** + 1. MDM Policy: [Notifications/DisallowTileNotification](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-notifications). This policy setting turns off tile notifications. If you enable this policy setting applications and system features will not be able to update their tiles and tile badges in the Start screen. **Integer value 1** + +1. **Mail synchronization** + 1. MDM Policy: [Accounts/AllowMicrosoftAccountConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountconnection). Specifies whether the user is allowed to use an MSA account for non-email related connection authentication and services. **Set to 0 (zero)** + +1. **Microsoft Account** + 1. MDM Policy: [Accounts/AllowMicrosoftAccountSignInAssistant](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-accounts#accounts-allowmicrosoftaccountsigninassistant). Disable the Microsoft Account Sign-In Assistant. **Set to 0 (zero)** + +1. **Microsoft Edge** The following Microsoft Edge MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). For a complete list of the Microsoft Edge policies, see [Available policies for Microsoft Edge](https://docs.microsoft.com/microsoft-edge/deploy/available-policies). + 1. MDM Policy: [Browser/AllowAutoFill](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowautofill). Choose whether employees can use autofill on websites. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowDoNotTrack](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowdonottrack). Choose whether employees can send Do Not Track headers. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowMicrosoftCompatbilityList](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowmicrosoftcompatibilitylist). Specify the Microsoft compatibility list in Microsoft Edge. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowPasswordManager](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager). Choose whether employees can save passwords locally on their devices. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowSearchSuggestionsinAddressBar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsearchsuggestionsinaddressbar). Choose whether the Address Bar shows search suggestions. **Set to 0 (zero)** + 1. MDM Policy: [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen). Choose whether SmartScreen is turned on or off. **Set to 0 (zero)** + +1. **Network Connection Status Indicator** + 1. [Connectivity/DisallowNetworkConnectivityActiveTests](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-connectivity#connectivity-disallownetworkconnectivityactivetests). Note: After you apply this policy you must restart the device for the policy setting to take effect. **Set to 1 (one)** + +1. **Offline maps** + 1. MDM Policy: [AllowOfflineMapsDownloadOverMeteredConnection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps). Allows the download and update of map data over metered connections.
**Set to 0 (zero)** + 1. MDM Policy: [EnableOfflineMapsAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-maps#maps-enableofflinemapsautoupdate). Disables the automatic download and update of map data. **Set to 0 (zero)** + +1. **OneDrive** + 1. MDM Policy: [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync). Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** + 1. Ingest the ADMX - To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). There is a folder named "adm" which contains the admx and adml policy definition files. + 1. MDM Policy: Prevent Network Traffic before User SignIn. PreventNetworkTrafficPreUserSignIn. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn, String, \ + +1. **Privacy settings** Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. + 1. General - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)** + 1. Location - [System/AllowLocation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowlocation). Specifies whether to allow app access to the Location service. **Set to 0 (zero)** + 1. Camera - [Camera/AllowCamera](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-camera#camera-allowcamera). Disables or enables the camera. **Set to 0 (zero)** + 1. Microphone - [Privacy/LetAppsAccessMicrophone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmicrophone). Specifies whether Windows apps can access the microphone. **Set to 2 (two)** + 1. Notifications - [Privacy/LetAppsAccessNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessnotifications). Specifies whether Windows apps can access notifications. **Set to 2 (two)** + 1. Notifications - [Settings/AllowOnlineTips]( https://docs.microsoft.com/windows/client-management/mdm/policy-csp-settings#settings-allowonlinetips). Enables or disables the retrieval of online tips and help for the Settings app. **Integer value 0** + 1. Speech, Inking, & Typing - [Privacy/AllowInputPersonalization](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-allowinputpersonalization). This policy specifies whether users on the device have the option to enable online speech recognition. **Set to 0 (zero)** + 1. Speech, Inking, & Typing - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft **Set to 0 (zero)** + 1. Account info - [Privacy/LetAppsAccessAccountInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessaccountinfo). Specifies whether Windows apps can access account information. **Set to 2 (two)** + 1. Contacts - [Privacy/LetAppsAccessContacts](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscontacts). Specifies whether Windows apps can access contacts. **Set to 2 (two)** + 1. Calendar - [Privacy/LetAppsAccessCalendar](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscalendar). Specifies whether Windows apps can access the calendar. **Set to 2 (two)** + 1. Call history - [Privacy/LetAppsAccessCallHistory](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesscallhistory). Specifies whether Windows apps can access account information. **Set to 2 (two)** + 1. Email - [Privacy/LetAppsAccessEmail](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessemail). Specifies whether Windows apps can access email. **Set to 2 (two)** + 1. Messaging - [Privacy/LetAppsAccessMessaging](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmessaging). Specifies whether Windows apps can read or send messages (text or MMS). **Set to 2 (two)** + 1. Phone calls - [Privacy/LetAppsAccessPhone](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessphone). Specifies whether Windows apps can make phone calls. **Set to 2 (two)** + 1. Radios - [Privacy/LetAppsAccessRadios](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessradios). Specifies whether Windows apps have access to control radios. **Set to 2 (two)** + 1. Other devices - [Privacy/LetAppsSyncWithDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappssyncwithdevices). Specifies whether Windows apps can sync with devices. **Set to 2 (two)** + 1. Other devices - [Privacy/LetAppsAccessTrustedDevices](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstrusteddevices). Specifies whether Windows apps can access trusted devices. **Set to 2 (two)** + 1. Feedback & diagnostics - [System/AllowTelemetry](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-allowtelemetry). Allow the device to send diagnostic and usage telemetry data, such as Watson. **Set to 0 (zero)** + 1. Feedback & diagnostics - [Experience/DoNotShowFeedbackNotifications](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-donotshowfeedbacknotifications). Prevents devices from showing feedback questions from Microsoft. **Set to 1 (one)** + 1. Background apps - [Privacy/LetAppsRunInBackground](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsruninbackground). Specifies whether Windows apps can run in the background. **Set to 2 (two)** + 1. Motion - [Privacy/LetAppsAccessMotion](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccessmotion). Specifies whether Windows apps can access motion data. **Set to 2 (two)** + 1. Tasks - [Privacy/LetAppsAccessTasks](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsaccesstasks). Turn off the ability to choose which apps have access to tasks. **Set to 2 (two)** + 1. App Diagnostics - [Privacy/LetAppsGetDiagnosticInfo](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-privacy#privacy-letappsgetdiagnosticinfo). Force allow, force deny or give user control of apps that can get diagnostic information about other running apps. **Set to 2 (two)** +1. **Software Protection Platform** - [Licensing/DisallowKMSClientOnlineAVSValidation](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-licensing#licensing-disallowkmsclientonlineavsvalidation). Opt out of sending KMS client activation data to Microsoft automatically. **Set to 1 (one)** +1. **Storage Health** - [Storage/AllowDiskHealthModelUpdates](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-storage#storage-allowdiskhealthmodelupdates). Allows disk health model updates. **Set to 0 (zero)** +1. **Sync your settings** - [Experience/AllowSyncMySettings](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings). Control whether your settings are synchronized. **Set to 0 (zero)** +1. **Teredo** - No MDM needed. Teredo is **Off by default**. Delivery Optimization (DO) can turn on Teredo, but DO itself is turned Off via MDM. +1. **Wi-Fi Sense** - No MDM needed. Wi-Fi Sense is no longer available from Windows 10 version 1803 and newer. +1. **Windows Defender** + 1. [Defender/AllowCloudProtection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-allowcloudprotection). Disconnect from the Microsoft Antimalware Protection Service. **Set to 0 (zero)** + 1. [Defender/SubmitSamplesConsent](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-defender#defender-submitsamplesconsent). Stop sending file samples back to Microsoft. **Set to 2 (two)** + 1. Windows Defender Smartscreen - [Browser/AllowSmartScreen](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-browser#browser-allowsmartscreen). Disable Windows Defender Smartscreen. **Set to 0 (zero)** + 1. Windows Defender Smartscreen EnableAppInstallControl - [SmartScreen/EnableAppInstallControl](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-smartscreen#smartscreen-enableappinstallcontrol). Controls whether users are allowed to install apps from places other than the Microsoft Store. **Set to 0 (zero)** + 1. Windows Defender Potentially Unwanted Applications(PUA) Protection - [Defender/PUAProtection](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-defender#defender-puaprotection). Specifies the level of detection for potentially unwanted applications (PUAs). **Set to 1 (one)** +1. **Windows Spotlight** - [Experience/AllowWindowsSpotlight](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-experience#experience-allowwindowsspotlight). Disable Windows Spotlight. **Set to 0 (zero)** +1. **Microsoft Store** + 1. [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps). Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** + 1. [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate). Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** +1 **Apps for websites** - [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers). This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** +1. **Windows Update Delivery Optimization** - The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). + 1. [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode). Let’s you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** +1. **Windows Update** + 1. [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate). Control automatic updates. **Set to 5 (five)** + 1. Windows Update Allow Update Service - [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice). Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)** + 1. Windows Update Service URL - [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl). Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with the Value next to item "a" below: + 1. \\$CmdID$\\\chr\text/plain\\ \./Vendor/MSFT/Policy/Config/Update/UpdateServiceUrl\\http://abcd-srv:8530\\ ### Allowed traffic ("Whitelisted traffic") for Microsoft InTune / MDM configurations @@ -148,6 +161,3 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt |*microsoft.com/pkiops/crl/**| |activation-v2.sls.microsoft.com/*| |ocsp.digicert.com/*| - - - diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md index a53d72a967..21e7f8f027 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md @@ -418,7 +418,7 @@ To turn off Insider Preview builds for Windows 10: ### 8. Internet Explorer > [!NOTE] -> The following Group Policies and Registry Keys are for user interactive scenarios rather than the typical idle traffic scenario. Find the Internet Explorer Group Policy objects under **Computer Configuration > Administrative Templates > Windows Components > Internet Explorer** and make these settings: +>When attempting to use Internet Explorer on any edition of Windows Server be aware there are restrictions enforced by [Enhanced Security Configuration (ESC)](https://support.microsoft.com/en-us/help/815141/ie-enhanced-security-configuration-changes-browsing-experience). The following Group Policies and Registry Keys are for user interactive scenarios rather than the typical idle traffic scenario. Find the Internet Explorer Group Policy objects under **Computer Configuration > Administrative Templates > Windows Components > Internet Explorer** and make these settings: | Policy | Description | |------------------------------------------------------|-----------------------------------------------------------------------------------------------------| diff --git a/windows/release-information/resolved-issues-windows-10-1507.yml b/windows/release-information/resolved-issues-windows-10-1507.yml index fcb44369bb..048946f759 100644 --- a/windows/release-information/resolved-issues-windows-10-1507.yml +++ b/windows/release-information/resolved-issues-windows-10-1507.yml @@ -34,15 +34,15 @@ sections: - - - - - - - + + + + + + +
SummaryOriginating updateStatusDate resolved
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 10240.18244

June 11, 2019
KB4503291		Resolved
KB4507458		July 09, 2019
10:00 AM PT
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >		OS Build 10240.18215

May 14, 2019
KB4499154		Resolved
KB4505051		May 19, 2019
02:00 PM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >		OS Build 10240.18158

March 12, 2019
KB4489872		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
First character of Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4491101		February 21, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		February 12, 2019
10:00 AM PT
Unable to access hotspots with third-party applications
Third-party applications may have difficulty authenticating hotspots.

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		February 12, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4491101		February 21, 2019
02:00 PM PT
First character of Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >		OS Build 10240.18158

March 12, 2019
KB4489872		Resolved
KB4493475		April 09, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		March 12, 2019
10:00 AM PT
" @@ -86,10 +86,10 @@ sections: text: " - - + +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493475

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4493475		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487018, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
First character of Japanese era name not recognized
After installing KB4487018, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4487018, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4491101.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4491101		Resolved:
February 21, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
First character of Japanese era name not recognized
After installing KB4487018, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4489872.

Back to top		OS Build 10240.18132

February 12, 2019
KB4487018		Resolved
KB4489872		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -98,8 +98,8 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
Unable to access hotspots with third-party applications
After installing KB4480962, third-party applications may have difficulty authenticating hotspots.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4487018.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
After installing KB4480962, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493475.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4493475		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, \"Unrecognized Database Format\".

Affected platforms:
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487018.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Unable to access hotspots with third-party applications
After installing KB4480962, third-party applications may have difficulty authenticating hotspots.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4487018.

Back to top		OS Build 10240.18094

January 08, 2019
KB4480962		Resolved
KB4487018		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1607.yml b/windows/release-information/resolved-issues-windows-10-1607.yml index f39eb6c19d..c20d9b33f0 100644 --- a/windows/release-information/resolved-issues-windows-10-1607.yml +++ b/windows/release-information/resolved-issues-windows-10-1607.yml @@ -43,17 +43,17 @@ sections:
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 14393.2969

May 14, 2019
KB4494440Resolved
KB4505052May 19, 2019
02:00 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 14393.2941

April 25, 2019
KB4493473Resolved
KB4494440May 14, 2019
10:00 AM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 14393.2941

April 25, 2019
KB4493473Resolved
KB4494440May 14, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 14393.2848

March 12, 2019
KB4489882Resolved
KB4493473April 25, 2019
02:00 PM PT -
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system will stop working and a blue screen may appear at startup.

See details >OS Build 14393.2879

March 19, 2019
KB4489889Resolved
KB4493470April 09, 2019
10:00 AM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT -
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4493470April 09, 2019
10:00 AM PT -
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off.

See details >OS Build 14393.2828

February 19, 2019
KB4487006Resolved
KB4489882March 12, 2019
10:00 AM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT +
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system will stop working and a blue screen may appear at startup.

See details >OS Build 14393.2879

March 19, 2019
KB4489889Resolved
KB4493470April 09, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4493470April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4489882March 12, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4487006February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 14393.2759

January 17, 2019
KB4480977Resolved
KB4487006February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4487006February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 14393.2759

January 17, 2019
KB4480977Resolved
KB4487006February 19, 2019
02:00 PM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 14393.2848

March 12, 2019
KB4489882Resolved
KB4493473April 25, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >OS Build 14393.2724

January 08, 2019
KB4480961Resolved
KB4487026February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 14393.2791

February 12, 2019
KB4487026Resolved
KB4487006February 19, 2019
02:00 PM PT +
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off.

See details >OS Build 14393.2828

February 19, 2019
KB4487006Resolved
KB4489882March 12, 2019
10:00 AM PT
Instant search in Microsoft Outlook fails on Windows Server 2016
Instant search in Microsoft Outlook clients fail with the error, \"Outlook cannot perform the search\" on Windows Server 2016.

See details >OS Build 14393.2639

November 27, 2018
KB4467684Resolved
KB4487026February 12, 2019
10:00 AM PT " @@ -104,8 +104,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Issue using PXE to start a device from WDS
After installing KB4489882, there may be issues using the Preboot Execution Environment (PXE) to start a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4503267.

Back to top		OS Build 14393.2848

March 12, 2019
KB4489882		Resolved
KB4503267		Resolved:
June 11, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489882, Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493473

Back to top		OS Build 14393.2848

March 12, 2019
KB4489882		Resolved
KB4493473		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system will stop working and a blue screen may appear at startup. This is not a common setting in non-Asian regions.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue was resolved in KB4493470.

Back to top		OS Build 14393.2879

March 19, 2019
KB4489889		Resolved
KB4493470		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 19, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489882, Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493473

Back to top		OS Build 14393.2848

March 12, 2019
KB4489882		Resolved
KB4493473		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -115,10 +115,10 @@ sections: text: " - - + +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493470

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4493470		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off. The faulting driver is win32kbase.sys.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue is resolved in KB4489882.

Back to top		OS Build 14393.2828

February 19, 2019
KB4487006		Resolved
KB4489882		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 19, 2019
02:00 PM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487026, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489882.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4489882		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487006.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4487026, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4487006.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487006.

Back to top		OS Build 14393.2791

February 12, 2019
KB4487026		Resolved
KB4487006		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Issue hosting multiple terminal server sessions and a user logs off on Windows Server
In some cases, Windows Server will stop working and restart when hosting multiple terminal server sessions and a user logs off. The faulting driver is win32kbase.sys.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue is resolved in KB4489882.

Back to top		OS Build 14393.2828

February 19, 2019
KB4487006		Resolved
KB4489882		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 19, 2019
02:00 PM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1703.yml b/windows/release-information/resolved-issues-windows-10-1703.yml index 30427c2a53..b87928c05d 100644 --- a/windows/release-information/resolved-issues-windows-10-1703.yml +++ b/windows/release-information/resolved-issues-windows-10-1703.yml @@ -38,15 +38,15 @@ sections:
Opening Internet Explorer 11 may fail
Internet Explorer 11 may fail to open if Default Search Provider is not set or is malformed.

See details >OS Build 15063.1839

May 28, 2019
KB4499162Resolved
KB4503279June 11, 2019
10:00 AM PT
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 15063.1805

May 14, 2019
KB4499181Resolved
KB4505055May 19, 2019
02:00 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 15063.1784

April 25, 2019
KB4493436Resolved
KB4499181May 14, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 15063.1689

March 12, 2019
KB4489871Resolved
KB4493436April 25, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4493474April 09, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 15063.1716

March 19, 2019
KB4489888Resolved
KB4493474April 09, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 15063.1563

January 08, 2019
KB4480973Resolved
KB4493474April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4493474April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 15063.1659

February 19, 2019
KB4487011Resolved
KB4489871March 12, 2019
10:00 AM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 15063.1596

January 15, 2019
KB4480959Resolved
KB4487011February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4487011February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4487011February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 15063.1596

January 15, 2019
KB4480959Resolved
KB4487011February 19, 2019
02:00 PM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 15063.1689

March 12, 2019
KB4489871Resolved
KB4493436April 25, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >OS Build 15063.1563

January 08, 2019
KB4480973Resolved
KB4487020February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 15063.1631

February 12, 2019
KB4487020Resolved
KB4487011February 19, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 15063.1563

January 08, 2019
KB4480973Resolved
KB4487020February 12, 2019
10:00 AM PT " @@ -85,8 +85,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Custom URI schemes may not start corresponding application
After installing KB4489871, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493436

Back to top		OS Build 15063.1689

March 12, 2019
KB4489871		Resolved
KB4493436		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup. This is not a common setting in non-Asian regions.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue was resolved in KB4493474.

Back to top		OS Build 15063.1716

March 19, 2019
KB4489888		Resolved
KB4493474		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 19, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489871, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493436

Back to top		OS Build 15063.1689

March 12, 2019
KB4489871		Resolved
KB4493436		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1709.yml b/windows/release-information/resolved-issues-windows-10-1709.yml index b80a28eec7..cd92b2d492 100644 --- a/windows/release-information/resolved-issues-windows-10-1709.yml +++ b/windows/release-information/resolved-issues-windows-10-1709.yml @@ -39,16 +39,16 @@ sections:
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 16299.1127

April 25, 2019
KB4493440Resolved
KB4499179May 14, 2019
10:00 AM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 16299.1127

April 25, 2019
KB4493440Resolved
KB4499179May 14, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 16299.1029

March 12, 2019
KB4489886Resolved
KB4493440April 25, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4493441April 09, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 16299.1059

March 19, 2019
KB4489890Resolved
KB4493441April 09, 2019
10:00 AM PT
MSXML6 causes applications to stop responding if an exception was thrown
MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 16299.904

January 08, 2019
KB4480978Resolved
KB4493441April 09, 2019
10:00 AM PT -
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 16299.1029

March 12, 2019
KB4489886Resolved
KB4493441April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4493441April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4489886March 12, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4487021February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 16299.936

January 15, 2019
KB4480967Resolved
KB4487021February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4487021February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 16299.936

January 15, 2019
KB4480967Resolved
KB4487021February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >OS Build 16299.904

January 08, 2019
KB4480978Resolved
KB4486996February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 16299.967

February 12, 2019
KB4486996Resolved
KB4487021February 19, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 16299.904

January 08, 2019
KB4480978Resolved
KB4486996February 12, 2019
10:00 AM PT +
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 16299.1029

March 12, 2019
KB4489886Resolved
KB4493441April 09, 2019
10:00 AM PT " @@ -107,8 +107,8 @@ sections: - +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493441

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4493441		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4486996, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489886.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4489886		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487021.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4487021		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4486996, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4487021.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4487021		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487021.

Back to top		OS Build 16299.967

February 12, 2019
KB4486996		Resolved
KB4487021		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1803.yml b/windows/release-information/resolved-issues-windows-10-1803.yml index 3353facc94..7174542746 100644 --- a/windows/release-information/resolved-issues-windows-10-1803.yml +++ b/windows/release-information/resolved-issues-windows-10-1803.yml @@ -38,17 +38,17 @@ sections:
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 17134.765

May 14, 2019
KB4499167Resolved
KB4505064May 19, 2019
02:00 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 17134.753

April 25, 2019
KB4493437Resolved
KB4499167May 14, 2019
10:00 AM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 17134.753

April 25, 2019
KB4493437Resolved
KB4499167May 14, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493437April 25, 2019
02:00 PM PT -
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17134.677

March 19, 2019
KB4489894Resolved
KB4493464April 09, 2019
10:00 AM PT -
First character of the Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 17134.556

January 15, 2019
KB4480976Resolved
KB4487029February 19, 2019
02:00 PM PT -
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4493464April 09, 2019
10:00 AM PT -
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493464April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 17134.590

February 12, 2019
KB4487017Resolved
KB4493464April 09, 2019
10:00 AM PT +
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17134.677

March 19, 2019
KB4489894Resolved
KB4493464April 09, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4493464April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 17134.590

February 12, 2019
KB4487017Resolved
KB4489868March 12, 2019
10:00 AM PT -
Cannot pin a web link on the Start menu or the taskbar
Some users cannot pin a web link on the Start menu or the taskbar.

See details >OS Build 17134.471

December 11, 2018
KB4471324Resolved
KB4487029February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 17134.590

February 12, 2019
KB4487017Resolved
KB4487029February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 17134.556

January 15, 2019
KB4480976Resolved
KB4487029February 19, 2019
02:00 PM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493437April 25, 2019
02:00 PM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4487017February 12, 2019
10:00 AM PT +
Cannot pin a web link on the Start menu or the taskbar
Some users cannot pin a web link on the Start menu or the taskbar.

See details >OS Build 17134.471

December 11, 2018
KB4471324Resolved
KB4487029February 19, 2019
02:00 PM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 17134.523

January 08, 2019
KB4480966Resolved
KB4487017February 12, 2019
10:00 AM PT +
Stop error when attempting to start SSH from WSL
A stop error occurs when attempting to start Secure Shell from Windows Subsystem for Linux with agent forwarding using a command line switch (ssh –A) or a configuration setting.

See details >OS Build 17134.648

March 12, 2019
KB4489868Resolved
KB4493464April 09, 2019
10:00 AM PT " @@ -94,8 +94,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Custom URI schemes may not start corresponding application
After installing KB4489868, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493437

Back to top		OS Build 17134.648

March 12, 2019
KB4489868		Resolved
KB4493437		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup. This is not a common setting in non-Asian regions. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016
Resolution: This issue was resolved in KB4493464

Back to top		OS Build 17134.677

March 19, 2019
KB4489894		Resolved
KB4493464		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 19, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489868, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493437

Back to top		OS Build 17134.648

March 12, 2019
KB4489868		Resolved
KB4493437		Resolved:
April 25, 2019
02:00 PM PT

Opened:
March 12, 2019
10:00 AM PT
Stop error when attempting to start SSH from WSL
After applying KB4489868, a stop error occurs when attempting to start the Secure Shell (SSH) client program from Windows Subsystem for Linux (WSL) with agent forwarding enabled using a command line switch (ssh -A) or a configuration setting.

Affected platforms:
  • Client: Windows 10, version 1803; Windows 10, version 1709
  • Server: Windows Server, version 1803; Windows Server, version 1709
Resolution: This issue was resolved in KB4493464.

Back to top		OS Build 17134.648

March 12, 2019
KB4489868		Resolved
KB4493464		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -116,8 +116,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
First character of the Japanese era name not recognized
After installing KB4480976, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487029

Back to top		OS Build 17134.556

January 15, 2019
KB4480976		Resolved
KB4487029		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
After installing KB4480966, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue was resolved in KB4493464

Back to top		OS Build 17134.523

January 08, 2019
KB4480966		Resolved
KB4493464		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized
After installing KB4480976, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487029

Back to top		OS Build 17134.556

January 15, 2019
KB4480976		Resolved
KB4487029		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487017.

Back to top		OS Build 17134.523

January 08, 2019
KB4480966		Resolved
KB4487017		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Webpages become unresponsive in Microsoft Edge
After installing KB4480966, some Microsoft Edge users report that they: 
  • Cannot load web pages using a local IP address. 
  • Cannot load web pages on the Internet using a VPN connection.  
Browsing fails or the web page may become unresponsive. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709
Resolution: This issue is resolved in KB4487017

Back to top		OS Build 17134.523

January 08, 2019
KB4480966		Resolved
KB4487017		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
diff --git a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml index 50ed0c88b7..c8dd852476 100644 --- a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml @@ -40,28 +40,28 @@ sections:
Issue using PXE to start a device from WDS
Using PXE to start a device from a WDS server configured to use Variable Window Extension may cause the connection to the WDS server to terminate prematurely.

See details >OS Build 17763.379

March 12, 2019
KB4489899Resolved
KB4503327June 11, 2019
10:00 AM PT
Audio not working on monitors or TV connected to a PC via HDMI, USB, or DisplayPort
Upgrade block: Microsoft has identified issues with certain new Intel display drivers, which accidentally turn on unsupported features in Windows.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
May 21, 2019
07:42 AM PT
Unable to access some gov.uk websites
gov.uk websites that don’t support “HSTS” may not be accessible

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
KB4505056May 19, 2019
02:00 PM PT -
Windows 10, version 1809 update history may show an update installed twice
Some customers are reporting that KB4494441 installed twice on their device

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
May 16, 2019
02:37 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >OS Build 17763.475

May 03, 2019
KB4495667Resolved
KB4494441May 14, 2019
10:00 AM PT +
Windows 10, version 1809 update history may show an update installed twice
Some customers are reporting that KB4494441 installed twice on their device

See details >OS Build 17763.503

May 14, 2019
KB4494441Resolved
May 16, 2019
02:37 PM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail.

See details >OS Build 17763.475

May 03, 2019
KB4495667Resolved
KB4494441May 14, 2019
10:00 AM PT
Latest cumulative update (KB 4495667) installs automatically
Reports that the optional cumulative update (KB 4495667) installs automatically.

See details >OS Build 17763.475

May 03, 2019
KB4495667Resolved
May 08, 2019
03:37 PM PT
System may be unresponsive after restart if ArcaBit antivirus software installed
After further investigation ArcaBit has confirmed this issue is not applicable to Windows 10, version 1809

See details >OS Build 17763.437

April 09, 2019
KB4493509Resolved
May 08, 2019
03:30 PM PT
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >OS Build 17763.379

March 12, 2019
KB4489899Resolved
KB4495667May 03, 2019
10:00 AM PT -
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17763.404

April 02, 2019
KB4490481Resolved
KB4493509April 09, 2019
10:00 AM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT -
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4493509April 09, 2019
10:00 AM PT -
Apps may stop working after selecting an audio output device other than the default
Users with multiple audio devices that select an audio output device different from the \"Default Audio Device\" may find certain applications stop working unexpectedly.

See details >OS Build 17763.348

March 01, 2019
KB4482887Resolved
KB4490481April 02, 2019
10:00 AM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT +
End-user-defined characters (EUDC) may cause blue screen at startup
If you enable per font end-user-defined characters (EUDC), the system may stop working and a blue screen may appear at startup.

See details >OS Build 17763.404

April 02, 2019
KB4490481Resolved
KB4493509April 09, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4493509April 09, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4489899March 12, 2019
10:00 AM PT -
Global DNS outage affects Windows Update customers
Windows Update customers were recently affected by a network infrastructure event caused by an external DNS service provider's global outage.

See details >N/A

Resolved
March 08, 2019
11:15 AM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 9 file format may randomly stop working.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT
First character of the Japanese era name not recognized
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 9 file format may randomly stop working.

See details >OS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887March 01, 2019
10:00 AM PT +
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Upgrade block: Devices utilizing AMD Radeon HD2000 or HD4000 series video cards may experience issues with the lock screen and Microsoft Edge tabs.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4487044February 12, 2019
10:00 AM PT +
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro identified a compatibility issue with the Trend Micro business endpoint security solutions OfficeScan and Worry-Free Business Security.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
February 01, 2019
09:00 AM PT
Shared albums may not sync with iCloud for Windows
Upgrade block: Apple has identified an incompatibility with iCloud for Windows (version 7.7.0.27) where users may experience issues updating or synching Shared Albums.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4482887March 01, 2019
10:00 AM PT
Intel Audio Display (intcdaud.sys) notification during Windows 10 Setup
Upgrade block: Users may see an Intel Audio Display (intcdaud.sys) notification during setup for devices with certain Intel Display Audio Drivers.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4482887March 01, 2019
10:00 AM PT
F5 VPN clients losing network connectivity
Upgrade block: After updating to Windows 10, version 1809, F5 VPN clients may lose network connectivity when the VPN service is in a split tunnel configuration.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4482887March 01, 2019
10:00 AM PT +
Global DNS outage affects Windows Update customers
Windows Update customers were recently affected by a network infrastructure event caused by an external DNS service provider's global outage.

See details >N/A

Resolved
March 08, 2019
11:15 AM PT +
Apps may stop working after selecting an audio output device other than the default
Users with multiple audio devices that select an audio output device different from the \"Default Audio Device\" may find certain applications stop working unexpectedly.

See details >OS Build 17763.348

March 01, 2019
KB4482887Resolved
KB4490481April 02, 2019
10:00 AM PT
Webpages become unresponsive in Microsoft Edge
Microsoft Edge users report difficulty browsing and loading webpages.

See details >OS Build 17763.253

January 08, 2019
KB4480116Resolved
KB4487044February 12, 2019
10:00 AM PT -
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Upgrade block: Devices utilizing AMD Radeon HD2000 or HD4000 series video cards may experience issues with the lock screen and Microsoft Edge tabs.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
KB4487044February 12, 2019
10:00 AM PT -
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro identified a compatibility issue with the Trend Micro business endpoint security solutions OfficeScan and Worry-Free Business Security.

See details >OS Build 17763.134

November 13, 2018
KB4467708Resolved
February 01, 2019
09:00 AM PT " @@ -91,8 +91,8 @@ sections: - +
DetailsOriginating updateStatusHistory
Printing from Microsoft Edge or other UWP apps may result in the error 0x80070007
When attempting to print from Microsoft Edge or other Universal Windows Platform (UWP) applications you may receive the error, \"Your printer has experienced an unexpected configuration problem. 0x80070007e.\"
 
Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4501371

Back to top		OS Build 17763.379

March 12, 2019
KB4489899		Resolved
KB4501371		Resolved:
June 18, 2019
02:00 PM PT

Opened:
May 02, 2019
04:47 PM PT
Unable to access some gov.uk websites
After installing the May 14, 2019 update, some gov.uk websites that don’t support HTTP Strict Transport Security (HSTS) may not be accessible through Internet Explorer 11 or Microsoft Edge.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10, version 1507; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolved: We have released an \"out-of-band\" update for Windows 10 (KB4505056) to resolve this issue.

  • UK customers: This update will be applied automatically to resolve this issue. You may be required to restart your device again. If you are affected by this issue, Check for updates to apply the update immediately.
  • Customers outside of the UK: This update will not be applied automatically. If you are affected by this issue, we recommend you apply this update by installing KB4505056 from Windows Update and then restarting your device.
To download and install this update, go to Settings > Update & Security > Windows Update and select Check for updates. To get the standalone package for KB4505056, search for it in the Microsoft Update Catalog.
 

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
KB4505056		Resolved:
May 19, 2019
02:00 PM PT

Opened:
May 16, 2019
01:57 PM PT
Windows 10, version 1809 update history may show an update installed twice
Affected platforms:
  • Client: Windows 10, version 1809
Cause:
In certain situations, installing an update requires multiple download and restart steps. In cases where two intermediate steps of the installation complete successfully, the View your Update history page will report that installation completed successfully twice. 

Resolution:
No action is required on your part. The update installation may take longer and may require more than one restart, but will install successfully after all intermediate installation steps have completed. We are working on improving this update experience to ensure the Update history correctly reflects the installation of the latest cumulative update (LCU).

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
Resolved:
May 16, 2019
02:37 PM PT

Opened:
May 14, 2019
02:56 PM PT
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel. For example, the layout and cell size of Microsoft Excel sheets may change when using MS UI Gothic.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue has been resolved.

Back to top		OS Build 17763.475

May 03, 2019
KB4495667		Resolved
KB4494441		Resolved:
May 14, 2019
10:00 AM PT

Opened:
May 10, 2019
10:35 AM PT
Windows 10, version 1809 update history may show an update installed twice
Affected platforms:
  • Client: Windows 10, version 1809
Cause:
In certain situations, installing an update requires multiple download and restart steps. In cases where two intermediate steps of the installation complete successfully, the View your Update history page will report that installation completed successfully twice. 

Resolution:
No action is required on your part. The update installation may take longer and may require more than one restart, but will install successfully after all intermediate installation steps have completed. We are working on improving this update experience to ensure the Update history correctly reflects the installation of the latest cumulative update (LCU).

Back to top		OS Build 17763.503

May 14, 2019
KB4494441		Resolved
Resolved:
May 16, 2019
02:37 PM PT

Opened:
May 14, 2019
02:56 PM PT
Zone transfers over TCP may fail
Zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) may fail after installing KB4495667
 
Affected platforms:  
  • Client: Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016 
  • Server: Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016 
Resolution: This issue was resolved in KB4494441.

Back to top		OS Build 17763.475

May 03, 2019
KB4495667		Resolved
KB4494441		Resolved:
May 14, 2019
10:00 AM PT

Opened:
May 14, 2019
01:19 PM PT
Latest cumulative update (KB 4495667) installs automatically
Due to a servicing side issue some users were offered KB4495667 (optional update) automatically and rebooted devices. This issue has been mitigated.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution:: This issue has been mitigated on the servicing side to prevent auto installing of this update. Customers do not need to take any action.

Back to top		OS Build 17763.475

May 03, 2019
KB4495667		Resolved
Resolved:
May 08, 2019
03:37 PM PT

Opened:
May 05, 2019
12:01 PM PT
@@ -127,8 +127,8 @@ sections:
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1  
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2  
Resolution: This issue is resolved in KB4493509.  

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4493509Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487044, users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489899

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4489899Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4487044, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4482887.

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4482887.

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
First character of the Japanese era name not recognized
After installing KB4487044, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4482887

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4482887.

Back to topOS Build 17763.316

February 12, 2019
KB4487044Resolved
KB4482887Resolved:
March 01, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT " @@ -150,10 +150,10 @@ sections: text: " + + - -
DetailsOriginating updateStatusHistory
Audio not working on monitors or TV connected to a PC via HDMI, USB, or DisplayPort
Upgrade block: Microsoft has identified issues with certain new Intel display drivers. Intel inadvertently released versions of its display driver (versions 24.20.100.6344, 24.20.100.6345) to OEMs that accidentally turned on unsupported features in Windows. 
 
As a result, after updating to Windows 10, version 1809, audio playback from a monitor or television connected to a PC via HDMI, USB-C, or a DisplayPort may not function correctly on devices with these drivers.
Note: This Intel display driver issue is different from the Intel Smart Sound Technology driver (version 09.21.00.3755) audio issue previously documented.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019 
Next steps: Intel has released updated drivers to OEM device manufacturers. OEMs need to make the updated driver available via Windows Update. For more information, see the Intel Customer Support article.

Resolution: Microsoft has removed the safeguard hold.



Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
Resolved:
May 21, 2019
07:42 AM PT

Opened:
November 13, 2018
10:00 AM PT
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Note: AMD no longer supports Radeon HD2000 and HD4000 series graphic processor units (GPUs).
 
Upgrade block: After updating to Windows 10, version 1809, Microsoft Edge tabs may stop working when a device is configured with AMD Radeon HD2000 or HD4000 series video cards. Customers may get the following error code: \"INVALID_POINTER_READ_c0000005_atidxx64.dll\". 
 
Some users may also experience performance issues with the lock screen or the ShellExperienceHost. (The lock screen hosts widgets, and the ShellExperienceHost is responsible for assorted shell functionality.) 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4487044, and the block was removed.

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4487044		Resolved:
February 12, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro have identified a compatibility issue with Trend Micro's OfficeScan and Worry-Free Business Security software when attempting to update to Windows 10, version 1809.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019 
Resolution: Trend Micro has released a new version of these products that resolves the issue. To download them, please visit the Trend Micro Business Support Portal.

Once you have updated your version of Trend Micro's OfficeScan or Worry-Free Business Security software, you will be offered Windows 10, version 1809 automatically. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
Resolved:
February 01, 2019
09:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Shared albums may not sync with iCloud for Windows
Upgrade block: Users who attempt to install iCloud for Windows (version 7.7.0.27) will see a message displayed that this version iCloud for Windows isn't supported and the install will fail.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
To ensure a seamless experience, Microsoft is blocking devices with iCloud for Windows (version 7.7.0.27) software installed from being offered Windows 10, version 1809 until this issue has been resolved. 

We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool from the Microsoft software download website until this issue is resolved. 
 
Resolution: Apple has released an updated version of iCloud for Windows (version 7.8.1) that resolves compatibility issues encountered when updating or synching Shared Albums after updating to Windows 10, version 1809. We recommend that you update your iCloud for Windows to version 7.8.1 when prompted before attempting to upgrade to Windows 10, version 1809. You can also manually download the latest version of iCloud for Windows by visiting https://support.apple.com/HT204283.

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4482887		Resolved:
March 01, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Intel Audio Display (intcdaud.sys) notification during Windows 10 Setup
Upgrade block: Microsoft and Intel have identified a compatibility issue with a range of Intel Display Audio device drivers (intcdaud.sys, versions 10.25.0.3 - 10.25.0.8) that may result in excessive processor demand and reduced battery life. As a result, the update process to the Windows 10 October 2018 Update (Windows 10, version 1809) will fail and affected devices will automatically revert to the previous working configuration. 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
If you see a \"What needs your attention\" notification during installation of the October 2018 Update, you have one of these affected drivers on your system. On the notification, click Back to remain on your current version of Windows 10. 
 
To ensure a seamless experience, we are blocking devices from being offered the October 2018 Update until updated Intel device drivers are installed on your current operating system. We recommend that you do not attempt to manually update to Windows 10, version 1809, using the Update Now button or the Media Creation Tool from the Microsoft Software Download Center until newer Intel device drivers are available with the update. You can either wait for newer drivers to be installed automatically through Windows Update or check with your computer manufacturer for the latest device driver software availability and installation procedures. For more information about this issue, see Intel's customer support guidance.
 
Resolution: This issue was resolved in KB4482887 and the upgrade block removed. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4482887		Resolved:
March 01, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
F5 VPN clients losing network connectivity
Upgrade block: After updating to Windows 10, version 1809, F5 VPN clients may lose network connectivity when the VPN service is in a split tunnel configuration.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4482887 and the upgrade block removed. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4482887		Resolved:
March 01, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
Note: AMD no longer supports Radeon HD2000 and HD4000 series graphic processor units (GPUs).
 
Upgrade block: After updating to Windows 10, version 1809, Microsoft Edge tabs may stop working when a device is configured with AMD Radeon HD2000 or HD4000 series video cards. Customers may get the following error code: \"INVALID_POINTER_READ_c0000005_atidxx64.dll\". 
 
Some users may also experience performance issues with the lock screen or the ShellExperienceHost. (The lock screen hosts widgets, and the ShellExperienceHost is responsible for assorted shell functionality.) 

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019
Resolution: This issue was resolved in KB4487044, and the block was removed.

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
KB4487044		Resolved:
February 12, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
Upgrade block: Microsoft and Trend Micro have identified a compatibility issue with Trend Micro's OfficeScan and Worry-Free Business Security software when attempting to update to Windows 10, version 1809.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
  • Server: Windows Server, version 1809; Windows Server 2019 
Resolution: Trend Micro has released a new version of these products that resolves the issue. To download them, please visit the Trend Micro Business Support Portal.

Once you have updated your version of Trend Micro's OfficeScan or Worry-Free Business Security software, you will be offered Windows 10, version 1809 automatically. 

Back to top		OS Build 17763.134

November 13, 2018
KB4467708		Resolved
Resolved:
February 01, 2019
09:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-10-1903.yml b/windows/release-information/resolved-issues-windows-10-1903.yml index 6b4eeb59c5..e791545b58 100644 --- a/windows/release-information/resolved-issues-windows-10-1903.yml +++ b/windows/release-information/resolved-issues-windows-10-1903.yml @@ -33,13 +33,13 @@ sections: text: " - + - +
SummaryOriginating updateStatusDate resolved
Loss of functionality in Dynabook Smartphone Link app
After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
July 11, 2019
01:54 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Error attempting to update with external USB device or memory card attached
PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Resolved
KB4501375		June 27, 2019
10:00 AM PT
Duplicate folders and documents showing in user profile directory
If known folders (e.g. Desktop, Documents, or Pictures folders) are redirected, an empty folder with that same name may be created.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		May 29, 2019
02:00 PM PT
Older versions of BattlEye anti-cheat software incompatible
Microsoft and BattlEye have identified a compatibility issue with some games that use older versions of BattlEye anti-cheat software.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
June 07, 2019
04:26 PM PT
AMD RAID driver incompatibility
Installation process may stop when trying to install Windows 10, version 1903 update on computers that run certain versions of AMD RAID drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
June 06, 2019
11:06 AM PT
D3D applications and games may fail to enter full-screen mode on rotated displays
Some Direct3D (D3D) applications and games may fail to enter full-screen mode on rotated displays.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		May 29, 2019
02:00 PM PT
AMD RAID driver incompatibility
Installation process may stop when trying to install Windows 10, version 1903 update on computers that run certain versions of AMD RAID drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
June 06, 2019
11:06 AM PT
" @@ -65,11 +65,11 @@ sections: text: " - + - +
DetailsOriginating updateStatusHistory
Loss of functionality in Dynabook Smartphone Link app
Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:54 PM PT

Opened:
May 24, 2019
03:10 PM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Error attempting to update with external USB device or memory card attached
If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:38 AM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Duplicate folders and documents showing in user profile directory
If you have redirected known folders (e.g. Desktop, Documents, or Pictures folders) you may see an empty folder with the same name in your %userprofile% directories after updating to Windows 10, version 1903. This may occur if known folders were redirected when you chose to back up your content to OneDrive using the OneDrive wizard, or if you chose to back up your content during the Windows Out-of-Box-Experience (OOBE). This may also occur if you redirected your known folders manually through the Properties dialog box in File Explorer. ?This issue does not cause any user files to be deleted and a solution is in progress.

To safeguard your update experience, we have applied a quality hold on devices with redirected known folders from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue was resolved in KB4497935 and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.
(Posted June 11, 2019)

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		Resolved:
May 29, 2019
02:00 PM PT

Opened:
May 21, 2019
07:16 AM PT
Older versions of BattlEye anti-cheat software incompatible
Microsoft and BattlEye have identified a compatibility issue with some games that use older versions of BattlEye anti-cheat software. When launching a game that uses an older, impacted version of BattlEye anti-cheat software on a device running Windows 10, version 1903, the device may experience a system crash.

To safeguard your gaming experience, we have applied a compatibility hold on devices with the impacted versions of BattlEye software used by games installed on your PC. This will prevent Windows 10, version 1903 from being offered until the incompatible version of BattlEye software is no longer installed on the device. 

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Before updating your machine, we recommend you do one or more of the following:

  • Verify that your game is up to date with the latest available version of BattlEye software. Some game platforms allow you to validate your game files, which can confirm that your installation is fully up to date.
  • Restart your system and open the game again.
  • Uninstall BattlEye using https://www.battleye.com/downloads/UninstallBE.exe, and then reopen your game.
  • Uninstall and reinstall your game.
Resolution: This issue was resolved externally by BattlEye for all known impacted games. For a list of recent games that use BattlEye, go to https://www.battleye.com/. We recommend following the workaround before updating to Windows 10, version 1903, as games with incompatible versions of BattleEye may fail to open after updating Windows. If you have confirmed your game is up to date and you have any issues with opening games related to a BattlEye error, please see https://www.battleye.com/support/faq/.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
June 07, 2019
04:26 PM PT

Opened:
May 21, 2019
07:34 AM PT
AMD RAID driver incompatibility
Microsoft and AMD have identified an incompatibility with AMD RAID driver versions earlier than 9.2.0.105. When you attempt to install the Windows 10, version 1903 update on a Windows 10-based computer with an affected driver version, the installation process stops and you get a message like the following:

AMD Ryzen™ or AMD Ryzen™ Threadripper™ configured in SATA or NVMe RAID mode.

“A driver is installed that causes stability problems on Windows. This driver will be disabled. Check with your software/driver provider for an updated version that runs on this version of Windows.”

 
To safeguard your update experience, we have applied a compatibility hold on devices with these AMD drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue has been resolved externally by AMD. To resolve this issue, you will need to download the latest AMD RAID drivers directly from AMD at https://www.amd.com/en/support/chipsets/amd-socket-tr4/x399. The drivers must be version 9.2.0.105 or later. Install the drivers on the affected computer, and then restart the installation process for the Windows 10, version 1903 feature update.
 
Note The safeguard hold will remain in place on machines with the older AMD RAID drivers. We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
June 06, 2019
11:06 AM PT

Opened:
May 21, 2019
07:12 AM PT
D3D applications and games may fail to enter full-screen mode on rotated displays
Some Direct3D (D3D) applications and games (e.g., 3DMark) may fail to enter full-screen mode on displays where the display orientation has been changed from the default (e.g., a landscape display in portrait mode).

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Resolution: This issue was resolved in KB4497935

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
KB4497935		Resolved:
May 29, 2019
02:00 PM PT

Opened:
May 21, 2019
07:05 AM PT
AMD RAID driver incompatibility
Microsoft and AMD have identified an incompatibility with AMD RAID driver versions earlier than 9.2.0.105. When you attempt to install the Windows 10, version 1903 update on a Windows 10-based computer with an affected driver version, the installation process stops and you get a message like the following:

AMD Ryzen™ or AMD Ryzen™ Threadripper™ configured in SATA or NVMe RAID mode.

“A driver is installed that causes stability problems on Windows. This driver will be disabled. Check with your software/driver provider for an updated version that runs on this version of Windows.”

 
To safeguard your update experience, we have applied a compatibility hold on devices with these AMD drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue has been resolved externally by AMD. To resolve this issue, you will need to download the latest AMD RAID drivers directly from AMD at https://www.amd.com/en/support/chipsets/amd-socket-tr4/x399. The drivers must be version 9.2.0.105 or later. Install the drivers on the affected computer, and then restart the installation process for the Windows 10, version 1903 feature update.
 
Note The safeguard hold will remain in place on machines with the older AMD RAID drivers. We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
June 06, 2019
11:06 AM PT

Opened:
May 21, 2019
07:12 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml b/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml index 1f8c14cf98..8d0678c091 100644 --- a/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml +++ b/windows/release-information/resolved-issues-windows-7-and-windows-server-2008-r2-sp1.yml @@ -39,17 +39,17 @@ sections:
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493472Resolved
May 14, 2019
01:22 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493472Resolved
May 14, 2019
01:21 PM PT
Authentication may fail for services after the Kerberos ticket expires
Authentication may fail for services that require unconstrained delegation after the Kerberos ticket expires.

See details >March 12, 2019
KB4489878Resolved
KB4499164May 14, 2019
10:00 AM PT -
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493472Resolved
April 25, 2019
02:00 PM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480970Resolved
KB4493472April 09, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT -
NETDOM.EXE fails to run
NETDOM.EXE fails to run and the error, “The command failed to complete successfully.” appears on screen.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4486563Resolved
KB4493472April 09, 2019
10:00 AM PT +
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493472Resolved
April 25, 2019
02:00 PM PT +
NETDOM.EXE fails to run
NETDOM.EXE fails to run and the error, “The command failed to complete successfully.” appears on screen.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489878Resolved
KB4493472April 09, 2019
10:00 AM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT +
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480955Resolved
KB4486565February 19, 2019
02:00 PM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480970Resolved
KB4493472April 09, 2019
10:00 AM PT +
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480970Resolved
KB4486563February 12, 2019
10:00 AM PT
Event Viewer may not show some event descriptions for network interface cards
The Event Viewer may not show some event descriptions for network interface cards (NIC).

See details >October 18, 2018
KB4462927Resolved
KB4489878March 12, 2019
10:00 AM PT
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480970Resolved
KB4490511February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480955Resolved
KB4486565February 19, 2019
02:00 PM PT -
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4486563Resolved
KB4486565February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480970Resolved
KB4486563February 12, 2019
10:00 AM PT " @@ -97,8 +97,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Authentication may fail for services after the Kerberos ticket expires
After installing KB4489878, some customers report that authentication fails for services that require unconstrained delegation after the Kerberos ticket expires (the default is 10 hours). For example, the SQL server service fails.

Affected platforms: 
  • Client: Windows 7 SP1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue was resolved in KB4499164.

Back to top		March 12, 2019
KB4489878		Resolved
KB4499164		Resolved:
May 14, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489878, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493472.

Back to top		March 12, 2019
KB4489878		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
NETDOM.EXE fails to run
After installing KB4489878, NETDOM.EXE fails to run, and the on-screen error, “The command failed to complete successfully.” appears.

Affected platforms: 
  • Client: Windows 7 SP1
  • Server: Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4493472.

Back to top		March 12, 2019
KB4489878		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489878, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493472.

Back to top		March 12, 2019
KB4489878		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -108,8 +108,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly. 
 
For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color. 
 
Affected platforms:  
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493472

Back to top		February 12, 2019
KB4486563		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4486563, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4486565.

Back to top		February 12, 2019
KB4486563		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4486565.

Back to top		February 12, 2019
KB4486563		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Internet Explorer may fail to load images
After installing KB4486563, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4486565.

Back to top		February 12, 2019
KB4486563		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -118,10 +118,10 @@ sections: - type: markdown text: " - - + +
DetailsOriginating updateStatusHistory
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480970, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493472.

Back to top		January 08, 2019
KB4480970		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480970, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490511.

Back to top		January 08, 2019
KB4480970		Resolved
KB4490511		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480955, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4486565.

Back to top		January 17, 2019
KB4480955		Resolved
KB4486565		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 17, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480970, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493472.

Back to top		January 08, 2019
KB4480970		Resolved
KB4493472		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, “Unrecognized Database Format”.

Affected Platforms:
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 

Resolution: This issue is resolved in KB4486563.

Back to top		January 08, 2019
KB4480970		Resolved
KB4486563		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480970, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490511.

Back to top		January 08, 2019
KB4480970		Resolved
KB4490511		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml b/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml index a4428a3d64..dc386260cc 100644 --- a/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml +++ b/windows/release-information/resolved-issues-windows-8.1-and-windows-server-2012-r2.yml @@ -40,16 +40,16 @@ sections:
System may be unresponsive after restart if ArcaBit antivirus software installed
Devices with ArcaBit antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493446Resolved
May 14, 2019
01:22 PM PT
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493446Resolved
May 14, 2019
01:22 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493446Resolved
May 14, 2019
01:21 PM PT -
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493446Resolved
April 25, 2019
02:00 PM PT -
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT -
MSXML6 may cause applications to stop responding.
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT -
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489881Resolved
KB4493446April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487000Resolved
KB4493446April 09, 2019
10:00 AM PT -
Devices with winsock kernel client may receive error
Devices with a winsock kernel client may receive D1, FC, and other errors.

See details >March 12, 2019
KB4489881Resolved
KB4489893March 19, 2019
10:00 AM PT -
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 19, 2019
KB4487016Resolved
KB4489881March 12, 2019
10:00 AM PT -
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480963Resolved
KB4490512February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480969Resolved
KB4487016February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

See details >February 12, 2019
KB4487000Resolved
KB4487016February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480969Resolved
KB4487016February 19, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487000Resolved
KB4493446April 09, 2019
10:00 AM PT +
Devices may not respond at login or Welcome screen if running certain Avast software
Devices running Avast for Business, Avast CloudCare, and AVG Business Edition antivirus software may become unresponsive after restart.

See details >April 09, 2019
KB4493446Resolved
April 25, 2019
02:00 PM PT +
Devices with winsock kernel client may receive error
Devices with a winsock kernel client may receive D1, FC, and other errors.

See details >March 12, 2019
KB4489881Resolved
KB4489893March 19, 2019
10:00 AM PT +
Custom URI schemes may not start corresponding application
Custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites in Internet Explorer.

See details >March 12, 2019
KB4489881Resolved
KB4493446April 09, 2019
10:00 AM PT +
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 19, 2019
KB4487016Resolved
KB4489881March 12, 2019
10:00 AM PT +
MSXML6 may cause applications to stop responding.
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT +
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480963Resolved
KB4493446April 09, 2019
10:00 AM PT +
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480963Resolved
KB4490512February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480963Resolved
KB4487000February 12, 2019
10:00 AM PT " @@ -99,8 +99,8 @@ sections: text: " - +
DetailsOriginating updateStatusHistory
Issue using PXE to start a device from WDS
After installing KB4489881, there may be issues using the Preboot Execution Environment (PXE) to start a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012 
Resolution: This issue was resolved in KB4503276.

Back to top		March 12, 2019
KB4489881		Resolved
KB4503276		Resolved:
June 11, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489881, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493446.

Back to top		March 12, 2019
KB4489881		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Devices with winsock kernel client may receive error
After installing KB4489881, devices with a winsock kernel client may receive D1, FC, and other errors. Additionally, systems that run the Skype for Business or Lync Server Edge Transport role may be affected by this issue.

Affected platforms: 
  • Client: Windows 8.1 
  • Server: Windows Server 2012 R2 
Resolution: This issue is resolved in KB4489893.

Back to top		March 12, 2019
KB4489881		Resolved
KB4489893		Resolved:
March 19, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
Custom URI schemes may not start corresponding application
After installing KB4489881, custom URI schemes for application protocol handlers may not start the corresponding application for local intranet and trusted sites security zones on Internet Explorer.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4493446.

Back to top		March 12, 2019
KB4489881		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
March 12, 2019
10:00 AM PT
" @@ -109,9 +109,9 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
Internet Explorer may fail to load images
After installing KB4487000, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4487016.

Back to top		February 12, 2019
KB4487000		Resolved
KB4487016		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493446.

Back to top		February 12, 2019
KB4487000		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487016, users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012 
Resolution: This issue is resolved in KB4489881.

Back to top		February 19, 2019
KB4487016		Resolved
KB4489881		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 19, 2019
02:00 PM PT
Internet Explorer may fail to load images
After installing KB4487000, Internet Explorer may fail to load images with a backslash (\\) in their relative source path.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2008 R2 SP1 
Resolution: This issue is resolved in KB4487016.

Back to top		February 12, 2019
KB4487000		Resolved
KB4487016		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -120,10 +120,10 @@ sections: - type: markdown text: " - - - + + +
DetailsOriginating updateStatusHistory
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480963, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding.
After installing KB4480963, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480963, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490512.

Back to top		January 08, 2019
KB4480963		Resolved
KB4490512		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480969, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4487016.

Back to top		January 15, 2019
KB4480969		Resolved
KB4487016		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 15, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding.
After installing KB4480963, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480963, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493446.

Back to top		January 08, 2019
KB4480963		Resolved
KB4493446		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480963, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).”

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490512.

Back to top		January 08, 2019
KB4480963		Resolved
KB4490512		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, “Unrecognized Database Format”.

Affected platforms: 
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4487000.

Back to top		January 08, 2019
KB4480963		Resolved
KB4487000		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-server-2008-sp2.yml b/windows/release-information/resolved-issues-windows-server-2008-sp2.yml index 31be3e66fc..1a7ffb0d7a 100644 --- a/windows/release-information/resolved-issues-windows-server-2008-sp2.yml +++ b/windows/release-information/resolved-issues-windows-server-2008-sp2.yml @@ -36,11 +36,11 @@ sections:
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493471Resolved
May 14, 2019
01:21 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493471Resolved
May 14, 2019
01:19 PM PT
Authentication may fail for services after the Kerberos ticket expires
Authentication may fail for services that require unconstrained delegation after the Kerberos ticket expires.

See details >March 12, 2019
KB4489880Resolved
KB4499149May 14, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487023Resolved
KB4493471April 09, 2019
10:00 AM PT
NETDOM.EXE fails to run
NETDOM.EXE fails to run and the error, “The command failed to complete successfully.” appears on screen.

See details >March 12, 2019
KB4489880Resolved
KB4493471April 09, 2019
10:00 AM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480974Resolved
KB4489880March 12, 2019
10:00 AM PT -
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480968Resolved
KB4490514February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4487023Resolved
KB4487022February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 17, 2019
KB4480974Resolved
KB4489880March 12, 2019
10:00 AM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487023Resolved
KB4493471April 09, 2019
10:00 AM PT +
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480968Resolved
KB4490514February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480968Resolved
KB4487023February 12, 2019
10:00 AM PT " @@ -86,8 +86,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4493471.

Back to top		February 12, 2019
KB4487023		Resolved
KB4493471		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487022.

Back to top		February 12, 2019
KB4487023		Resolved
KB4487022		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4493471.

Back to top		February 12, 2019
KB4487023		Resolved
KB4493471		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
" diff --git a/windows/release-information/resolved-issues-windows-server-2012.yml b/windows/release-information/resolved-issues-windows-server-2012.yml index 678c8e0517..b46a4674bf 100644 --- a/windows/release-information/resolved-issues-windows-server-2012.yml +++ b/windows/release-information/resolved-issues-windows-server-2012.yml @@ -40,15 +40,15 @@ sections:
Layout and cell size of Excel sheets may change when using MS UI Gothic
When using the MS UI Gothic or MS PGothic fonts, the text, layout, or cell size may become narrower or wider than expected in Microsoft Excel.

See details >April 25, 2019
KB4493462Resolved
KB4499171May 14, 2019
10:00 AM PT
System unresponsive after restart if Sophos Endpoint Protection installed
Devices with Sophos Endpoint Protection installed and managed by Sophos Central or Sophos Enterprise Console (SEC) may become unresponsive upon restart.

See details >April 09, 2019
KB4493451Resolved
May 14, 2019
01:21 PM PT
System may be unresponsive after restart if Avira antivirus software installed
Devices with Avira antivirus software installed may become unresponsive upon restart.

See details >April 09, 2019
KB4493451Resolved
May 14, 2019
01:19 PM PT +
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4487025Resolved
KB4487024February 19, 2019
02:00 PM PT +
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480971Resolved
KB4487024February 19, 2019
02:00 PM PT +
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487025Resolved
KB4493451April 09, 2019
10:00 AM PT +
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 12, 2019
KB4487025Resolved
KB4489891March 12, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
Internet Explorer 11 users may encounter issues if two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine.

See details >January 08, 2019
KB4480975Resolved
KB4493451April 09, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
MSXML6 may cause applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

See details >January 08, 2019
KB4480975Resolved
KB4493451April 09, 2019
10:00 AM PT -
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

See details >February 12, 2019
KB4487025Resolved
KB4493451April 09, 2019
10:00 AM PT -
Event Viewer may not show some event descriptions for network interface cards
The Event Viewer may not show some event descriptions for network interface cards (NIC).

See details >September 11, 2018
KB4457135Resolved
KB4489891March 12, 2019
10:00 AM PT -
Error 1309 when installing/uninstalling MSI or MSP files
Users may receive “Error 1309” while installing or uninstalling certain types of MSI and MSP files.

See details >February 12, 2019
KB4487025Resolved
KB4489891March 12, 2019
10:00 AM PT
Virtual machines fail to restore
Virtual machines (VMs) may fail to restore successfully if the VM has been saved and restored once before.

See details >January 08, 2019
KB4480975Resolved
KB4490516February 19, 2019
02:00 PM PT -
First character of the Japanese era name not recognized as an abbreviation
The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

See details >January 15, 2019
KB4480971Resolved
KB4487024February 19, 2019
02:00 PM PT -
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

See details >February 12, 2019
KB4487025Resolved
KB4487024February 19, 2019
02:00 PM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if column names are greater than 32 characters.

See details >January 08, 2019
KB4480975Resolved
KB4487025February 12, 2019
10:00 AM PT +
Event Viewer may not show some event descriptions for network interface cards
The Event Viewer may not show some event descriptions for network interface cards (NIC).

See details >September 11, 2018
KB4457135Resolved
KB4489891March 12, 2019
10:00 AM PT " @@ -104,9 +104,9 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		February 12, 2019
KB4487025		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
Embedded objects may display incorrectly
Any compound document (OLE) server application that places embedded objects into the Windows Metafile (WMF) using the PatBlt API may display embedded objects incorrectly.

For example, if you paste a Microsoft Excel worksheet object into a Microsoft Word document, the cells may render with a different background color.

Affected platforms 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2 
Resolution: This issue is resolved in KB4493451.

Back to top		February 12, 2019
KB4487025		Resolved
KB4493451		Resolved:
April 09, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Error 1309 when installing/uninstalling MSI or MSP files
After installing KB4487025, users may receive \"Error 1309\" while installing or uninstalling certain types of MSI and MSP files.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4489891.

Back to top		February 12, 2019
KB4487025		Resolved
KB4489891		Resolved:
March 12, 2019
10:00 AM PT

Opened:
February 12, 2019
10:00 AM PT
Applications using Microsoft Jet database and Access 95 file format stop working
Applications that use a Microsoft Jet database with the Microsoft Access 95 file format may randomly stop working.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		February 12, 2019
KB4487025		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
February 12, 2019
10:00 AM PT
" @@ -115,10 +115,10 @@ sections: - type: markdown text: " + -
DetailsOriginating updateStatusHistory
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480971, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		January 15, 2019
KB4480971		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 15, 2019
10:00 AM PT
Internet Explorer 11 authentication issue with multiple concurrent logons
After installing KB4480975, Internet Explorer 11 and other applications that use WININET.DLL may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:
  • Cache size and location show zero or empty.
  • Keyboard shortcuts may not work properly.
  • Webpages may intermittently fail to load or render correctly.
  • Issues with credential prompts.
  • Issues when downloading files.
Affected platforms: 
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1
Resolution: This issue is resolved in KB4493451.

Back to top		January 08, 2019
KB4480975		Resolved
KB4493451		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
MSXML6 may cause applications to stop responding
After installing KB4480975, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

The Group Policy editor may stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 settings.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012
Resolution: This issue is resolved in KB4493451.

Back to top		January 08, 2019
KB4480975		Resolved
KB4493451		Resolved:
April 09, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
Virtual machines fail to restore
After installing KB4480975, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, \"Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).\"

This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures.

Affected platforms: 
  • Client: Windows 8.1; Windows 7 SP1 
  • Server: Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4490516.

Back to top		January 08, 2019
KB4480975		Resolved
KB4490516		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 08, 2019
10:00 AM PT
First character of the Japanese era name not recognized as an abbreviation
After installing KB4480971, the first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1
  • Server: Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487024.

Back to top		January 15, 2019
KB4480971		Resolved
KB4487024		Resolved:
February 19, 2019
02:00 PM PT

Opened:
January 15, 2019
10:00 AM PT
Applications using Microsoft Jet database fail to open
Applications that use a Microsoft Jet database with the Microsoft Access 97 file format may fail to open if the database has column names greater than 32 characters. The database will fail to open with the error, \"Unrecognized Database Format\".

Affected platforms: 
  • Client: Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10, version 1507; Windows 10 Enterprise LTSB 2015; Windows 8.1; Windows 7 SP1 
  • Server: Windows Server, version 1709; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
Resolution: This issue is resolved in KB4487025.

Back to top		January 08, 2019
KB4480975		Resolved
KB4487025		Resolved:
February 12, 2019
10:00 AM PT

Opened:
January 08, 2019
10:00 AM PT
" diff --git a/windows/release-information/status-windows-10-1507.yml b/windows/release-information/status-windows-10-1507.yml index e81ad9523c..9f116c65f8 100644 --- a/windows/release-information/status-windows-10-1507.yml +++ b/windows/release-information/status-windows-10-1507.yml @@ -60,8 +60,8 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

- +
SummaryOriginating updateStatusLast updated
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Mitigated
April 25, 2019
02:00 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 10240.18244

June 11, 2019
KB4503291		Resolved
KB4507458		July 09, 2019
10:00 AM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 10240.18094

January 08, 2019
KB4480962		Mitigated
April 25, 2019
02:00 PM PT
" diff --git a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml index 004468483a..31c6e06ec3 100644 --- a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml +++ b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml @@ -60,14 +60,15 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

- - - - + + + + +
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
July 10, 2019
07:09 PM PT
Cluster service may fail if the minimum password length is set to greater than 14
The cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the Group Policy “Minimum Password Length” is configured with greater than 14 characters.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Mitigated
April 25, 2019
02:00 PM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

See details >		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
February 19, 2019
10:00 AM PT
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 14393.3115

July 16, 2019
KB4507459		Investigating
July 25, 2019
06:10 PM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Some applications may fail to run as expected on clients of AD FS 2016
Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

See details >		OS Build 14393.2941

April 25, 2019
KB4493473		Resolved
KB4507459		July 16, 2019
10:00 AM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
July 10, 2019
07:09 PM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 14393.2969

May 14, 2019
KB4494440		Resolved
KB4507460		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 14393.2999

May 23, 2019
KB4499177		Resolved
KB4509475		June 27, 2019
02:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 14393.2724

January 08, 2019
KB4480961		Mitigated
April 25, 2019
02:00 PM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

See details >		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
February 19, 2019
10:00 AM PT
Cluster service may fail if the minimum password length is set to greater than 14
The cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the Group Policy “Minimum Password Length” is configured with greater than 14 characters.

See details >		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
April 25, 2019
02:00 PM PT
" @@ -83,6 +84,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507459. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507459. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 14393.3115

July 16, 2019
KB4507459		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503267 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.3025

June 11, 2019
KB4503267		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" @@ -120,8 +122,8 @@ sections: - type: markdown text: " - - + +
DetailsOriginating updateStatusHistory
Cluster service may fail if the minimum password length is set to greater than 14
After installing KB4467684, the cluster service may fail to start with the error \"2245 (NERR_PasswordTooShort)\" if the Group Policy \"Minimum Password Length\" is configured with greater than 14 characters.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Set the domain default \"Minimum Password Length\" policy to less than or equal to 14 characters.

Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
After installing KB4467691, Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart.

If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled.

Next steps: Lenovo and Fujitsu are aware of this issue. Please contact your OEM to ask if there is a firmware update available for your device.

Back to top		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
Last updated:
February 19, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
SCVMM cannot enumerate and manage logical switches deployed on the host
For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host after installing KB4467684.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Resolution: This issue was resolved in KB4507459.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Resolved
KB4507459		Resolved:
July 16, 2019
10:00 AM PT

Opened:
November 27, 2018
10:00 AM PT
Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
After installing KB4467691, Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart.

If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled.

Next steps: Lenovo and Fujitsu are aware of this issue. Please contact your OEM to ask if there is a firmware update available for your device.

Back to top		OS Build 14393.2608

November 13, 2018
KB4467691		Mitigated
Last updated:
February 19, 2019
10:00 AM PT

Opened:
November 13, 2018
10:00 AM PT
Cluster service may fail if the minimum password length is set to greater than 14
After installing KB4467684, the cluster service may fail to start with the error \"2245 (NERR_PasswordTooShort)\" if the Group Policy \"Minimum Password Length\" is configured with greater than 14 characters.

Affected platforms:
  • Client: Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2016
Workaround: Set the domain default \"Minimum Password Length\" policy to less than or equal to 14 characters.

Next steps: Microsoft is working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 14393.2639

November 27, 2018
KB4467684		Mitigated
Last updated:
April 25, 2019
02:00 PM PT

Opened:
November 27, 2018
10:00 AM PT
" diff --git a/windows/release-information/status-windows-10-1703.yml b/windows/release-information/status-windows-10-1703.yml index a45bf5b15b..1055bb156e 100644 --- a/windows/release-information/status-windows-10-1703.yml +++ b/windows/release-information/status-windows-10-1703.yml @@ -60,9 +60,10 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

- + +
SummaryOriginating updateStatusLast updated
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 15063.1563

January 08, 2019
KB4480973		Mitigated
April 25, 2019
02:00 PM PT
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 15063.1955

July 16, 2019
KB4507467		Investigating
July 25, 2019
06:10 PM PT
Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

See details >		OS Build 15063.1805

May 14, 2019
KB4499181		Resolved
KB4507450		July 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 15063.1839

May 28, 2019
KB4499162		Resolved
KB4509476		June 26, 2019
04:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 15063.1563

January 08, 2019
KB4480973		Mitigated
April 25, 2019
02:00 PM PT
" @@ -73,6 +74,15 @@ sections:
" +- title: July 2019 +- items: + - type: markdown + text: " + + +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507467. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507467. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 15063.1955

July 16, 2019
KB4507467		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
+ " + - title: June 2019 - items: - type: markdown diff --git a/windows/release-information/status-windows-10-1709.yml b/windows/release-information/status-windows-10-1709.yml index 301dd17335..4667f66e88 100644 --- a/windows/release-information/status-windows-10-1709.yml +++ b/windows/release-information/status-windows-10-1709.yml @@ -60,9 +60,10 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ - +
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 16299.1296

July 16, 2019
KB4507465		Investigating
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 16299.1217

June 11, 2019
KB4503284		Mitigated
July 10, 2019
07:09 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 16299.904

January 08, 2019
KB4480978		Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 16299.1182

May 28, 2019
KB4499147		Resolved
KB4509477		June 26, 2019
04:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 16299.904

January 08, 2019
KB4480978		Mitigated
April 25, 2019
02:00 PM PT
" @@ -78,6 +79,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507465. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507465. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 16299.1296

July 16, 2019
KB4507465		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503284 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 16299.1217

June 11, 2019
KB4503284		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" diff --git a/windows/release-information/status-windows-10-1803.yml b/windows/release-information/status-windows-10-1803.yml index e9e62c1dce..166d39fa83 100644 --- a/windows/release-information/status-windows-10-1803.yml +++ b/windows/release-information/status-windows-10-1803.yml @@ -60,10 +60,11 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ + -
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 17134.915

July 16, 2019
KB4507466		Investigating
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
July 10, 2019
07:09 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		June 26, 2019
04:00 PM PT
Startup to a black screen after installing updates
Your device may startup to a black screen during the first logon after installing updates.

See details >		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
June 14, 2019
04:41 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 17134.523

January 08, 2019
KB4480966		Mitigated
April 25, 2019
02:00 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		June 26, 2019
04:00 PM PT
" @@ -79,6 +80,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507466. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4507466. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 17134.915

July 16, 2019
KB4507466		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503286 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" @@ -88,8 +90,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499183. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509478.

Back to top		OS Build 17134.799

May 21, 2019
KB4499183		Resolved
KB4509478		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17134.829

June 11, 2019
KB4503286		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
" diff --git a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml index 5613d45790..a8d6b78e6b 100644 --- a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml @@ -21,8 +21,7 @@ sections: Find information on known issues and the status of the rollout for Windows 10, version 1809 and Windows Server 2019. Looking for a specific issue? Press CTRL + F (or Command + F if you are using a Mac) and enter your search term(s). -
Current status:
- Windows 10, version 1809 is designated for broad deployment and available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel. +		Current status:
Windows 10, version 1809 is designated for broad deployment and available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel.
" @@ -65,11 +64,12 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ + -
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 17763.652

July 22, 2019
KB4505658		Investigating
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
July 10, 2019
07:09 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		June 26, 2019
04:00 PM PT
Startup to a black screen after installing updates
Your device may startup to a black screen during the first logon after installing updates.

See details >		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
June 14, 2019
04:41 PM PT
Devices with some Asian language packs installed may receive an error
After installing the KB4493509 devices with some Asian language packs installed may receive the error, \"0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_F

See details >		OS Build 17763.437

April 09, 2019
KB4493509		Mitigated
May 03, 2019
10:59 AM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

See details >		OS Build 17763.253

January 08, 2019
KB4480116		Mitigated
April 09, 2019
10:00 AM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

See details >		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		June 26, 2019
04:00 PM PT
" @@ -85,6 +85,7 @@ sections: - type: markdown text: " +
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4505658. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4505658. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 17763.652

July 22, 2019
KB4505658		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503327 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
" @@ -94,8 +95,8 @@ sections: - type: markdown text: " - +
DetailsOriginating updateStatusHistory
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
Difficulty connecting to some iSCSI-based SANs
Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4497934. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
  • Server: Windows Server 2019; Windows Server 2016
Resolution: This issue was resolved in KB4509479.

Back to top		OS Build 17763.529

May 21, 2019
KB4497934		Resolved
KB4509479		Resolved:
June 26, 2019
04:00 PM PT

Opened:
June 20, 2019
04:46 PM PT
Startup to a black screen after installing updates
We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


Affected platforms:
  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019
Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 17763.557

June 11, 2019
KB4503327		Mitigated
Last updated:
June 14, 2019
04:41 PM PT

Opened:
June 14, 2019
04:41 PM PT
" diff --git a/windows/release-information/status-windows-10-1903.yml b/windows/release-information/status-windows-10-1903.yml index 29dfcd9330..a1ebf8f433 100644 --- a/windows/release-information/status-windows-10-1903.yml +++ b/windows/release-information/status-windows-10-1903.yml @@ -22,7 +22,7 @@ sections:
Current status as of July 16, 2019:
-
We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
+
We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
" @@ -65,21 +65,23 @@ sections: - type: markdown text: "
This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

+ + - - + + + + + + - - - -
SummaryOriginating updateStatusLast updated
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
July 25, 2019
06:10 PM PT
Issues updating when certain versions of Intel storage drivers are installed
Certain versions of Intel Rapid Storage Technology (Intel RST) drivers may cause updating to Windows 10, version 1903 to fail.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Mitigated External
July 25, 2019
06:10 PM PT
The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
Some apps or games that needs to perform graphics intensive operations may close or fail to open on Surface Book 2 devices with Nvidia dGPU.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
July 16, 2019
09:04 AM PT
Initiating a Remote Desktop connection may result in black screen
When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
July 12, 2019
04:42 PM PT
Windows Sandbox may fail to start with error code “0x80070002”
Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language was changed between updates

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Investigating
June 10, 2019
06:06 PM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
May 21, 2019
04:47 PM PT
Loss of functionality in Dynabook Smartphone Link app
After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
July 11, 2019
01:54 PM PT
Error attempting to update with external USB device or memory card attached
PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Mitigated
July 10, 2019
07:09 PM PT
RASMAN service may stop working and result in the error “0xc0000005”
The Remote Access Connection Manager (RASMAN) service may stop working and result in the error “0xc0000005” with VPN profiles configured as an Always On VPN connection.

See details >		OS Build 18362.145

May 29, 2019
KB4497935		Mitigated
July 01, 2019
05:04 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Resolved
KB4501375		June 27, 2019
10:00 AM PT
Windows Sandbox may fail to start with error code “0x80070002”
Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language was changed between updates

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Investigating
June 10, 2019
06:06 PM PT
Gamma ramps, color profiles, and night light settings do not apply in some cases
Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 24, 2019
11:02 AM PT
Unable to discover or connect to Bluetooth devices
Microsoft has identified compatibility issues with some versions of Realtek and Qualcomm Bluetooth radio drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:48 PM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
May 21, 2019
04:47 PM PT
Intel Audio displays an intcdaud.sys notification
Microsoft and Intel have identified an issue with a range of Intel Display Audio device drivers that may result in battery drain.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:47 PM PT
Cannot launch Camera app
Microsoft and Intel have identified an issue affecting Intel RealSense SR300 or Intel RealSense S200 camera apps.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:47 PM PT
Intermittent loss of Wi-Fi connectivity
Some older devices may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
May 21, 2019
04:46 PM PT
Loss of functionality in Dynabook Smartphone Link app
After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

See details >		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
July 11, 2019
01:54 PM PT
Audio not working with Dolby Atmos headphones and home theater
Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Error attempting to update with external USB device or memory card attached
PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

See details >		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
July 11, 2019
01:53 PM PT
Event Viewer may close or you may receive an error when using Custom Views
When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

See details >		OS Build 18362.175

June 11, 2019
KB4503293		Resolved
KB4501375		June 27, 2019
10:00 AM PT
" @@ -95,6 +97,8 @@ sections: - type: markdown text: " + + @@ -116,15 +120,15 @@ sections: - type: markdown text: "
DetailsOriginating updateStatusHistory
Domain connected devices that use MIT Kerberos realms may not start up
Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4497935. Devices that are domain controllers or domain members are both affected.

If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
  • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
Next steps: At this time, we suggest that devices in an affected environment do not install KB4497935. We are working on a resolution and estimate a solution will be available in mid-August.

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
Issues updating when certain versions of Intel storage drivers are installed
Intel and Microsoft have found incompatibility issues with certain versions of the Intel Rapid Storage Technology (Intel RST) drivers and the Windows 10 May 2019 Update (Windows 10, version 1903).  

To safeguard your update experience, we have applied a compatibility hold on devices with Intel RST driver version between 15.1.0.1002 and 15.5.2.1053 installed from being offered Windows 10, version 1903 or Windows Server, version 1903 until the driver has been updated.

Versions 15.5.2.1054 or later are compatible, and a device that has these drivers installed can install the Windows 10 May 2019 Update. For affected devices, the recommended version is 15.9.6.1044.

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Next steps: To resolve this issue, you will need to update the Intel RST drivers for your device to version 15.5.2.1054 or a later.  Check with your device manufacturer (OEM) to see if an updated driver is available and install it. You can also download the latest Intel RST drivers directly from Intel at Intel® Rapid Storage Technology (Intel® RST) User Interface and Driver. Once your drivers are updated, you can restart the installation process for the May 2019 Update.

Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Mitigated External
Last updated:
July 25, 2019
06:10 PM PT

Opened:
July 25, 2019
06:10 PM PT
The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
Microsoft has identified a compatibility issue on some Surface Book 2 devices configured with Nvidia discrete graphics processing unit (dGPU). After updating to Windows 10, version 1903 (May 2019 Feature Update), some apps or games that needs to perform graphics intensive operations may close or fail to open.

To safeguard your update experience, we have applied a compatibility hold on Surface Book 2 devices with Nvidia dGPUs from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: To mitigate the issue if you are already on Windows 10, version 1903, you can restart the device or select the Scan for hardware changes button in the Action menu or on the toolbar in Device Manager.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
Last updated:
July 16, 2019
09:04 AM PT

Opened:
July 12, 2019
04:20 PM PT
Initiating a Remote Desktop connection may result in black screen
When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen. Any version of Windows may encounter this issue when initiating a Remote Desktop connection to a Windows 10, version 1903 device which is running an affected display driver, including the drivers for the Intel 4 series chipset integrated GPU (iGPU).

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Next steps: We are working on a resolution that will be made available in upcoming release.

Back to top		OS Build 18362.145

May 29, 2019
KB4497935		Investigating
Last updated:
July 12, 2019
04:42 PM PT

Opened:
July 12, 2019
04:42 PM PT
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503293 on a WDS server.

Affected platforms:
  • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
Workaround:
To mitigate this issue on an SCCM server:
  1. Verify Variable Window Extension is enabled.
  2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

To mitigate this issue on a WDS server without SCCM:
  1. In WDS TFTP settings, verify Variable Window Extension is enabled.
  2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
  3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.175

June 11, 2019
KB4503293		Mitigated
Last updated:
July 10, 2019
07:09 PM PT

Opened:
July 10, 2019
02:51 PM PT
+ + + - + - - -
DetailsOriginating updateStatusHistory
Loss of functionality in Dynabook Smartphone Link app
Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:54 PM PT

Opened:
May 24, 2019
03:10 PM PT
Error attempting to update with external USB device or memory card attached
If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:38 AM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Windows Sandbox may fail to start with error code “0x80070002”
Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language is changed during the update process when installing Windows 10, version 1903.

Affected platforms:
  • Client: Windows 10, version 1903
Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Investigating
Last updated:
June 10, 2019
06:06 PM PT

Opened:
May 24, 2019
04:20 PM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers. After updating to Windows 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change.

To safeguard your update experience, we have applied a compatibility hold on devices with certain Intel drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Restart your device to apply changes to brightness.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution that will be made available in upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:56 AM PT
Gamma ramps, color profiles, and night light settings do not apply in some cases
Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

Microsoft has identified some scenarios where night light settings may stop working, for example:
  • Connecting to (or disconnecting from) an external monitor, dock, or projector
  • Rotating the screen
  • Updating display drivers or making other display mode changes
  • Closing full screen applications
  • Applying custom color profiles
  • Running applications that rely on custom gamma ramps
Affected platforms:
  • Client: Windows 10, version 1903
Workaround: If you find that your night light has stopped working, try turning the night light off and on, or restarting your computer. For other color setting issues, restart your computer to correct the issue.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 24, 2019
11:02 AM PT

Opened:
May 21, 2019
07:28 AM PT
Unable to discover or connect to Bluetooth devices
Microsoft has identified compatibility issues with some driver versions for Bluetooth radios made by Realtek and Qualcomm. To safeguard your update experience, we have applied a compatibility hold on devices with affected driver versions for Realtek or Qualcomm Bluetooth radios from being offered Windows 10, version 1903 or Windows Server, version 1903 until the driver has been updated.

Affected platforms:
  • Client: Windows 10, version 1903
  • Server: Windows Server, version 1903
Workaround: Check with your device manufacturer (OEM) to see if an updated driver is available and install it.

  • For Qualcomm drivers, you will need to install a driver version greater than 10.0.1.11.
  • For Realtek drivers, you will need to install a driver version greater than 1.5.1011.0.
Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

Next steps: Microsoft is working with Realtek and Qualcomm to release new drivers for all affected system via Windows Update.  


Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:48 PM PT

Opened:
May 21, 2019
07:29 AM PT
Display brightness may not respond to adjustments
Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers. After updating to Windows 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change.

To safeguard your update experience, we have applied a compatibility hold on devices with certain Intel drivers from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Restart your device to apply changes to brightness.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution that will be made available in upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Investigating
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:56 AM PT
Intel Audio displays an intcdaud.sys notification
Microsoft and Intel have identified an issue with a range of Intel Display Audio device drivers that may result in higher than normal battery drain. If you see an intcdaud.sys notification or “What needs your attention” notification when trying to update to Windows 10, version 1903, you have an affected Intel Audio Display device driver installed on your machine (intcdaud.sys, versions 10.25.0.3 through 10.25.0.8).
  
To safeguard your update experience, we have applied a compatibility hold on devices with drivers from being offered Windows 10, version 1903 until updated device drivers have been installed.

Affected platforms:
  • Client: Windows 10, version 1903; Windows 10, version 1809
Workaround:
On the “What needs your attention\" notification, click the Back button to remain on your current version of Windows 10. (Do not click Confirm as this will proceed with the update and you may experience compatibility issues.) Affected devices will automatically revert to the previous working configuration.

For more information, see Intel's customer support guidance and the Microsoft knowledge base article KB4465877.

Note We recommend you do not attempt to update your devices until newer device drivers are installed.

Next steps: You can opt to wait for newer drivers to be installed automatically through Windows Update or check with the computer manufacturer for the latest device driver software availability and installation procedures.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:22 AM PT
Cannot launch Camera app
Microsoft and Intel have identified an issue affecting Intel RealSense SR300 and Intel RealSense S200 cameras when using the Camera app. After updating to the Windows 10 May 2019 Update and launching the Camera app, you may get an error message stating:

\"Close other apps, error code: 0XA00F4243.”


To safeguard your update experience, we have applied a protective hold on machines with Intel RealSense SR300 or Intel RealSense S200 cameras installed from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: To temporarily resolve this issue, perform one of the following:

  • Unplug your camera and plug it back in.

or

  • Disable and re-enable the driver in Device Manager. In the Search box, type \"Device Manager\" and press Enter. In the Device Manager dialog box, expand Cameras, then right-click on any RealSense driver listed and select Disable device. Right click on the driver again and select Enable device.

or

  • Restart the RealSense service. In the Search box, type \"Task Manager\" and hit Enter. In the Task Manager dialog box, click on the Services tab, right-click on RealSense, and select Restart
Note This workaround will only resolve the issue until your next system restart.

Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

Next steps: We are working on a resolution and will provide an update in an upcoming release.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:47 PM PT

Opened:
May 21, 2019
07:20 AM PT
Intermittent loss of Wi-Fi connectivity
Some older computers may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver. An updated Wi-Fi driver should be available from your device manufacturer (OEM).

To safeguard your upgrade experience, we have applied a hold on devices with this Qualcomm driver from being offered Windows 10, version 1903, until the updated driver is installed.

Affected platforms:
  • Client: Windows 10, version 1903
Workaround: Download and install an updated Wi-Fi driver from your device manufacturer (OEM).
 
Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Mitigated
Last updated:
May 21, 2019
04:46 PM PT

Opened:
May 21, 2019
07:13 AM PT
Loss of functionality in Dynabook Smartphone Link app
Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 20, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:54 PM PT

Opened:
May 24, 2019
03:10 PM PT
Audio not working with Dolby Atmos headphones and home theater
After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
 
This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
 
To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:16 AM PT
Error attempting to update with external USB device or memory card attached
If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

Affected platforms:
  • Client: Windows 10, version 1903
Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

Back to top		OS Build 18362.116

May 21, 2019
KB4505057		Resolved
Resolved:
July 11, 2019
01:53 PM PT

Opened:
May 21, 2019
07:38 AM PT
" diff --git a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml index 883499827b..36e559e6aa 100644 --- a/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml +++ b/windows/release-information/status-windows-8.1-and-windows-server-2012-r2.yml @@ -62,8 +62,8 @@ sections: - +
SummaryOriginating updateStatusLast updated
Devices starting using PXE from a WDS or SCCM servers may fail to start
Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

See details >		June 11, 2019
KB4503276		Mitigated
July 10, 2019
07:09 PM PT
Japanese IME doesn't show the new Japanese Era name as a text input option
If previous dictionary updates are installed, the Japanese input method editor (IME) doesn't show the new Japanese Era name as a text input option.

See details >		April 25, 2019
KB4493443		Mitigated
May 15, 2019
05:53 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >		January 08, 2019
KB4480963		Mitigated
April 25, 2019
02:00 PM PT
System may be unresponsive after restart with certain McAfee antivirus products
Devices with McAfee Endpoint Security Threat Prevention 10.x, Host Intrusion Prevention 8.0, or VirusScan Enterprise 8.8 may be slow or unresponsive at startup.

See details >		April 09, 2019
KB4493446		Mitigated
April 18, 2019
05:00 PM PT
Certain operations performed on a Cluster Shared Volume may fail
Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.

See details >		January 08, 2019
KB4480963		Mitigated
April 25, 2019
02:00 PM PT
" From e8bfe0fd685423b60977f8b9bd0b01bb375d60de Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 11:19:19 -0400 Subject: [PATCH 100/138] added logon events --- .../advanced-hunting-logonevents-table.md | 73 +++++++++++++++++++ 1 file changed, 73 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md new file mode 100644 index 0000000000..7bb35627d0 --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md @@ -0,0 +1,73 @@ +--- +title: LogonEvents +description: Learn about Advanced hunting table LogonEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, logonevents +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# LogonEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +LogonEvents is a table in the Advanced hunting schema. It contains information about user logons and other authentication events. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ActionType | string |Type of activity that triggered the event | +| AccountDomain | string | Domain of the account | +| AccountName | string | User name of the account | +| AccountSid | string | Security Identifier (SID) of the account | +| LogonType | string | Type of logon session, specifically:

- **Interactive** - User physically interacts with the machine using the local keyboard and screen

- **Remote interactive (RDP) logons** - User interacts with the machine remotely using Remote Desktop, Terminal Services, Remote Assistance, or other RDP clients

- **Network** - Session initiated when the machine is accessed using PsExec or when shared resources on the machine, such as printers and shared folders, are accessed

- **Batch** - Session initiated by scheduled tasks

- **Service** - Session initiated by services as they start
| +| LogonId | string | Identifier for a logon session. This identifier is unique on the same machine only between restarts | +| RemoteComputerName | string | Name of the machine that performed a remote operation on the affected machine. Depending on the event being reported, this name could be a fully-qualified domain name (FQDN), a NetBIOS name or a host name without domain information | +| RemoteIP | string | IP address that was being connected to | +| RemoteIPType | string | Type of IP address, for example Public, Private, Reserved, Loopback, Teredo, FourToSixMapping, and Broadcast | +| RemotePort | int | TCP port on the remote device that was being connected to | +| AdditionalFields | string | Additional information about the event in JSON array format | +| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | +| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | +| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | +| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet download. These integrity levels influence permissions to resources | +| InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | +| InitiatingProcessSHA1 | string | SHA-1 of the process (image file) that initiated the event | +| InitiatingProcessSHA256 | string | SHA-256 of the process (image file) that initiated the event. This field is usually not populated—use the SHA1 column when available | +| InitiatingProcessMD5 | string | MD5 hash of the process (image file) that initiated the event | +| InitiatingProcessFileName | string | Name of the process that initiated the event | +| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | +| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | +| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | +| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | +| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | +| IsLocalAdmin | boolean | Boolean indicator of whether the user is a local administrator on the machine | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 94ff29a4d80cdef3014502a3777ca5a10ddb9a4a Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 11:29:14 -0400 Subject: [PATCH 101/138] added imageloadevents --- .../advanced-hunting=imageloadevents-table.md | 65 +++++++++++++++++++ 1 file changed, 65 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=imageloadevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=imageloadevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=imageloadevents-table.md new file mode 100644 index 0000000000..951b5f83ea --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=imageloadevents-table.md @@ -0,0 +1,65 @@ +--- +title: ImageLoadEvents +description: Learn about Advanced hunting table ImageLoadEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, imageloadevents +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# ImageLoadEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +ImageLoadEvents is a table in the Advanced hunting schema. It contains information about DLL loading events. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ActionType | string | Type of activity that triggered the event | +| FileName | string | Name of the file that the recorded action was applied to | +| FolderPath | string | Folder containing the file that the recorded action was applied to | +| SHA1 | string | SHA-1 of the file that the recorded action was applied to | +| MD5 | string | MD5 hash of the file that the recorded action was applied to | +| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | +| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | +| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | +| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet download. These integrity levels influence permissions to resources | +| InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | +| InitiatingProcessSHA1 | string | SHA-1 of the process (image file) that initiated the event | +| InitiatingProcessMD5 | string | MD5 hash of the process (image file) that initiated the event | +| InitiatingProcessFileName | string | Name of the process that initiated the event | +| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | +| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | +| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | +| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | +| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From d7858b469e359ccac0b40c67963ff418eb591338 Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 11:46:17 -0400 Subject: [PATCH 102/138] added miscevents --- .../advanced-hunting=miscevents-table.md | 86 +++++++++++++++++++ 1 file changed, 86 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=miscevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=miscevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=miscevents-table.md new file mode 100644 index 0000000000..acc1394b7d --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=miscevents-table.md @@ -0,0 +1,86 @@ +--- +title: MiscEvents +description: Learn about Advanced hunting table MiscEvents, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, miscEvents +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# MiscEvents + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +MiscEvents is a table in the Advanced hunting schema. It contains information about multiple event types, including events triggered by security controls, such as Windows Defender Antivirus and exploit protection. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| EventTime | datetime | Date and time when the event was recorded | +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| ActionType | string | Type of activity that triggered the event | +| FileName | string | Name of the file that the recorded action was applied to | +| FolderPath | string | Folder containing the file that the recorded action was applied to | +| SHA1 | string | SHA-1 of the file that the recorded action was applied to | +| SHA256 | string | SHA-256 of the file that the recorded action was applied to. This field is usually not populated—use the SHA1 column when available | +| MD5 | string | MD5 hash of the file that the recorded action was applied to | +| AccountDomain | string | Domain of the account | +| AccountName |string | User name of the account | +| AccountSid | string | Security Identifier (SID) of the account | +| RemoteUrl | string | URL or fully qualified domain name (FQDN) that was being connected to | +| RemoteComputerName | string | Name of the machine that performed a remote operation on the affected machine | Depending on the event being reported, this name could be a fully-qualified domain name (FQDN), a NetBIOS name, or a host name without domain information | +| ProcessId | int | Process ID (PID) of the newly created process | +| ProcessCommandLine | string | Command line used to create the new process | +| ProcessCreationTime | datetime | Date and time the process was created | +| ProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the newly created process | +| LogonId | string | Identifier for a logon session. This identifier is unique on the same machine only between restarts | +| RegistryKey | string | Registry key that the recorded action was applied to | +| RegistryValueName | string | Name of the registry value that the recorded action was applied to | +| RegistryValueData | string | Data of the registry value that the recorded action was applied to | +| RemoteIP | string | IP address that was being connected to | +| RemotePort | int | TCP port on the remote device that was being connected to | +| LocalIP | string | IP address assigned to the local machine used during communication | +| LocalPort | int | TCP port on the local machine used during communication | +| FileOriginUrl | string | URL where the file was downloaded from | +| FileOriginIP | string | IP address where the file was downloaded from | +| AdditionalFields | string | Additional information about the event in JSON array format | +| InitiatingProcessSHA1 | string | SHA-1 of the process (image file) that initiated the event | +| InitiatingProcessSHA256 | string | SHA-256 of the process (image file) that initiated the event. This field is usually not populated—use the SHA1 column when available | +| InitiatingProcessFileName | string | Name of the process that initiated the event | +| InitiatingProcessFolderPath | string | Folder containing the process (image file) that initiated the event | +| InitiatingProcessId | int | Process ID (PID) of the process that initiated the event | +| InitiatingProcessCommandLine | string | Command line used to run the process that initiated the event | +| InitiatingProcessCreationTime | datetime | Date and time when the process that initiated the event was started | +| InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | +| InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | +| InitiatingProcessMD5 | string | MD5 hash of the process (image file) that initiated the event | +| InitiatingProcessAccountDomain | string | Domain of the account that ran the process responsible for the event | +| InitiatingProcessAccountName | string | User name of the account that ran the process responsible for the event | +| InitiatingProcessAccountSid | string | Security Identifier (SID) of the account that ran the process responsible for the event | +| InitiatingProcessLogonId | string | Identifier for a logon session of the process that initiated the event. This identifier is unique on the same machine only between restarts | +| ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | +| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 160e3c475ee9499624a2b603c90bd3d253c3a282 Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 11:52:36 -0400 Subject: [PATCH 103/138] added softwarevulnerabilityinfo --- ...hunting-softwarevulnerabilityinfo-table.md | 52 +++++++++++++++++++ 1 file changed, 52 insertions(+) create mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md new file mode 100644 index 0000000000..a4a587aa1f --- /dev/null +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md @@ -0,0 +1,52 @@ +--- +title: SoftwareVulnerabilityInfo +description: Learn about Advanced hunting table SoftwareVulnerabilityInfo, such as column names, data types, and description +keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, softwarevulnerabilityinfo +search.product: eADQiWindows 10XVcnh +search.appverid: met150 +ms.prod: w10 +ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +ms.author: v-maave +author: martyav +ms.localizationpriority: medium +manager: dansimp +audience: ITPro +ms.collection: M365-security-compliance +ms.topic: article +ms.date: 07/24/2019 +--- + +# SoftwareVulnerabilityInfo + +**Applies to:** + +- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) + +>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) + +SoftwareVulnerabilityInfo is a table in the Advanced hunting schema. It contains information about software in use, including version number, as well as any known vulnerabilities. You can use the reference below to construct queries that return information from this table. + +For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. + +| Column name | Data type | Description | +|-------------|-----------|-------------| +| MachineId | string | Unique identifier for the machine in the service | +| ComputerName | string | Fully qualified domain name (FQDN) of the machine | +| OSPlatform | string | Platform of the operating system running on the machine. This indicates specific operating systems, including variations within the same family, such as Windows 10 and Windows 7 | +| OsVersion | string | Version of the operating system running on the machine | +| OSArchitecture | string | Architecture of the operating system running on the machine | +| SoftwareVendor | N/A | N/A | +| SoftwareName | N/A | N/A | +| SoftwareVersion | N/A | N/A | +| CveId | N/A | N/A | +| CvssScore | N/A | N/A | +| VulnerabilitySeverityLevel | N/A | N/A | +| IsExploitAvailable | N/A | | N/A | + +## Related topics + +- [All Advanced hunting tables](advanced-hunting-reference.md) +- [Advanced hunting query best practices](advanced-hunting-best-practices.md) +- [Query data using Advanced hunting](advanced-hunting.md) From 4d48a7a860f20e4334b6b9fb6be54bc94fc9d7df Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 12:06:13 -0400 Subject: [PATCH 104/138] updated ah reference table to link to new pages --- .../advanced-hunting-reference.md | 25 ++++++++++--------- 1 file changed, 13 insertions(+), 12 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index db6c6acd5e..6f10ab4b38 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -36,18 +36,19 @@ Table and column names are also listed within the Security center, in the schema | Table name | Description | |------------|-------------| -| **[AlertEvents]()** | Alerts on Microsoft Defender Security Center | -| **[MachineInfo]()** | Machine information, including OS information | -| **[MachineNetworkInfo]()** | Network properties of machines, including adapters, IP and MAC addresses, as well as connected networks and domains | -| **[ProcessCreationEvents]()** | Process creation and related events | -| **[NetworkCommunicationEvents]()** | Network connection and related events | -| **[FileCreationEvents]()** | File creation, modification, and other file system events | -| **[RegistryEvents]()** | Creation and modification of registry entries | -| **[LogonEvents]()** | Sign-ins and other authentication events | -| **[ImageLoadEvents]()** | DLL loading events | -| **[MiscEvents]()** | Multiple event types, including events triggered by security controls such as Windows Defender Antivirus and exploit protection | -| **[SoftwareVulnerabilityInfo]()** | Information about software in use, including version information as well as known vulnerabilities | +| **[AlertEvents](advanced-hunting-alertevents-table.md)** | Alerts on Microsoft Defender Security Center | +| **[MachineInfo](advanced-hunting-machineinfo-table.md)** | Machine information, including OS information | +| **[MachineNetworkInfo](advanced-hunting-machinenetworkinfo-table.md)** | Network properties of machines, including adapters, IP and MAC addresses, as well as connected networks and domains | +| **[ProcessCreationEvents](advanced-hunting-processcreationevents-table.md)** | Process creation and related events | +| **[NetworkCommunicationEvents](advanced-hunting-networkcommunication-table.md)** | Network connection and related events | +| **[FileCreationEvents](advanced-hunting-filecreationevents-table.md)** | File creation, modification, and other file system events | +| **[RegistryEvents](advanced-hunting-registryevents-table.md)** | Creation and modification of registry entries | +| **[LogonEvents](advanced-hunting-logonevents-table.md)** | Sign-ins and other authentication events | +| **[ImageLoadEvents](advanced-hunting-imageloadevents-table.md)** | DLL loading events | +| **[MiscEvents](advanced-hunting-miscevents-table.md)** | Multiple event types, including events triggered by security controls such as Windows Defender Antivirus and exploit protection | +| **[SoftwareVulnerabilityInfo](advanced-hunting-softwarevulnerabilityinfo-table.md)** | Information about software in use, including version information as well as known vulnerabilities | ## Related topics + - [Query data using Advanced hunting](advanced-hunting.md) -- [Best practices for Advanced hunting query-writing](advanced-hunting-best-practices.md) \ No newline at end of file +- [Best practices for Advanced hunting query-writing](advanced-hunting-best-practices.md) From 5c3aff3c7fe744c7c468dd7359e97974deebf050 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Fri, 26 Jul 2019 09:21:52 -0700 Subject: [PATCH 105/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...ing-system-components-to-microsoft-services-using-MDM.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index e43cc160d7..262e9a1641 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -95,7 +95,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. **OneDrive** 1. MDM Policy: [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync). Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** 1. Ingest the ADMX - To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). There is a folder named "adm" which contains the admx and adml policy definition files. - 1. MDM Policy: Prevent Network Traffic before User SignIn. PreventNetworkTrafficPreUserSignIn. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn, String, \ + 1. MDM Policy: Prevent Network Traffic before User SignIn. PreventNetworkTrafficPreUserSignIn. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn, **String, \** 1. **Privacy settings** Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. 1. General - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)** @@ -137,13 +137,13 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. **Microsoft Store** 1. [ApplicationManagement/DisableStoreOriginatedApps](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-disablestoreoriginatedapps). Boolean value that disables the launch of all apps from Microsoft Store that came pre-installed or were downloaded. **Set to 1 (one)** 1. [ApplicationManagement/AllowAppStoreAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationmanagement#applicationmanagement-allowappstoreautoupdate). Specifies whether automatic update of apps from Microsoft Store are allowed. **Set to 0 (zero)** -1 **Apps for websites** - [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers). This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** +1. **Apps for websites** - [ApplicationDefaults/EnableAppUriHandlers](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-applicationdefaults#applicationdefaults-enableappurihandlers). This policy setting determines whether Windows supports web-to-app linking with app URI handlers. **Set to 0 (zero)** 1. **Windows Update Delivery Optimization** - The following Delivery Optimization MDM policies are available in the [Policy CSP](https://msdn.microsoft.com/library/windows/hardware/dn904962.aspx). 1. [DeliveryOptimization/DODownloadMode](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-deliveryoptimization#deliveryoptimization-dodownloadmode). Let’s you choose where Delivery Optimization gets or sends updates and apps. **Set to 100 (one hundred)** 1. **Windows Update** 1. [Update/AllowAutoUpdate](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-update#update-allowautoupdate). Control automatic updates. **Set to 5 (five)** 1. Windows Update Allow Update Service - [Update/AllowUpdateService](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-allowupdateservice). Specifies whether the device could use Microsoft Update, Windows Server Update Services (WSUS), or Microsoft Store. **Set to 0 (zero)** - 1. Windows Update Service URL - [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl). Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with the Value next to item "a" below: + 1. Windows Update Service URL - [Update/UpdateServiceUrl](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-update#update-updateserviceurl). Allows the device to check for updates from a WSUS server instead of Microsoft Update. **Set to String** with the Value next to item below: 1. \\$CmdID$\\\chr\text/plain\\ \./Vendor/MSFT/Policy/Config/Update/UpdateServiceUrl\\http://abcd-srv:8530\\ ### Allowed traffic ("Whitelisted traffic") for Microsoft InTune / MDM configurations From bf5d849f38b9cb79639434f64f43d1b734ed31c3 Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 12:22:47 -0400 Subject: [PATCH 106/138] corrected bad links and page names --- ...vents-table.md => advanced-hunting-imageloadevents-table.md} | 0 ...miscevents-table.md => advanced-hunting-miscevents-table.md} | 0 .../microsoft-defender-atp/advanced-hunting-reference.md | 2 +- 3 files changed, 1 insertion(+), 1 deletion(-) rename windows/security/threat-protection/microsoft-defender-atp/{advanced-hunting=imageloadevents-table.md => advanced-hunting-imageloadevents-table.md} (100%) rename windows/security/threat-protection/microsoft-defender-atp/{advanced-hunting=miscevents-table.md => advanced-hunting-miscevents-table.md} (100%) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=imageloadevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md similarity index 100% rename from windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=imageloadevents-table.md rename to windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=miscevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md similarity index 100% rename from windows/security/threat-protection/microsoft-defender-atp/advanced-hunting=miscevents-table.md rename to windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index 6f10ab4b38..919bb40c3f 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -40,7 +40,7 @@ Table and column names are also listed within the Security center, in the schema | **[MachineInfo](advanced-hunting-machineinfo-table.md)** | Machine information, including OS information | | **[MachineNetworkInfo](advanced-hunting-machinenetworkinfo-table.md)** | Network properties of machines, including adapters, IP and MAC addresses, as well as connected networks and domains | | **[ProcessCreationEvents](advanced-hunting-processcreationevents-table.md)** | Process creation and related events | -| **[NetworkCommunicationEvents](advanced-hunting-networkcommunication-table.md)** | Network connection and related events | +| **[NetworkCommunicationEvents](advanced-hunting-networkcommunicationevents-table.md)** | Network connection and related events | | **[FileCreationEvents](advanced-hunting-filecreationevents-table.md)** | File creation, modification, and other file system events | | **[RegistryEvents](advanced-hunting-registryevents-table.md)** | Creation and modification of registry entries | | **[LogonEvents](advanced-hunting-logonevents-table.md)** | Sign-ins and other authentication events | From 5fcdd94062fa9b341f19a6c34c7e688316a30085 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Fri, 26 Jul 2019 09:22:52 -0700 Subject: [PATCH 107/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md --- ...erating-system-components-to-microsoft-services-using-MDM.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md index 262e9a1641..f370ebdc1b 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services-using-MDM.md @@ -95,7 +95,7 @@ For Windows 10, the following MDM policies are available in the [Policy CSP](htt 1. **OneDrive** 1. MDM Policy: [DisableOneDriveFileSync](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-system#system-disableonedrivefilesync). Allows IT Admins to prevent apps and features from working with files on OneDrive. **Set to 1 (one)** 1. Ingest the ADMX - To get the latest OneDrive ADMX file you need an up-to-date Windows 10 client. The ADMX files are located under the following path: %LocalAppData%\Microsoft\OneDrive\ there's a folder with the current OneDrive build (e.g. "18.162.0812.0001"). There is a folder named "adm" which contains the admx and adml policy definition files. - 1. MDM Policy: Prevent Network Traffic before User SignIn. PreventNetworkTrafficPreUserSignIn. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn, **String, \** + 1. MDM Policy: Prevent Network Traffic before User SignIn. **PreventNetworkTrafficPreUserSignIn**. The OMA-URI value is: ./Device/Vendor/MSFT/Policy/Config/OneDriveNGSC\~Policy\~OneDriveNGSC/PreventNetworkTrafficPreUserSignIn, **String, \** 1. **Privacy settings** Except for the Feedback & Diagnostics page, these settings must be configured for every user account that signs into the PC. 1. General - [TextInput/AllowLinguisticDataCollection](https://docs.microsoft.com/windows/client-management/mdm/policy-csp-textinput#textinput-allowlinguisticdatacollection). This policy setting controls the ability to send inking and typing data to Microsoft. **Set to 0 (zero)** From 2e2c6ece2ee1c00fea26da1f7435a287c38cd9d6 Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Fri, 26 Jul 2019 09:30:26 -0700 Subject: [PATCH 108/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md --- ...system-components-to-microsoft-services.md | 32 +++++++++---------- 1 file changed, 16 insertions(+), 16 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md index 782dda6dcc..9c0fbd1942 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md @@ -106,9 +106,9 @@ The following table lists management options for each setting, beginning with Wi |     [24.1 Windows Defender Smartscreen](#bkmk-defender-smartscreen) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [25. Windows Spotlight](#bkmk-spotlight) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [26. Microsoft Store](#bkmk-windowsstore) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -|     [26.1 Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -| [27. Windows Update Delivery Optimization](#bkmk-updates) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -| [28. Windows Update](#bkmk-wu) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [27. Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [28. Windows Update Delivery Optimization](#bkmk-updates) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [29. Windows Update](#bkmk-wu) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ### Settings for Windows Server 2016 with Desktop Experience @@ -134,8 +134,8 @@ See the following table for a summary of the management settings for Windows Ser | [22. Teredo](#bkmk-teredo) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [24. Windows Defender](#bkmk-defender) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [26. Microsoft Store](#bkmk-windowsstore) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -|     [26.1 Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -| [28. Windows Update](#bkmk-wu) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [27. Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [29. Windows Update](#bkmk-wu) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ### Settings for Windows Server 2016 Server Core @@ -150,7 +150,7 @@ See the following table for a summary of the management settings for Windows Ser | [19. Software Protection Platform](#bkmk-spp) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [22. Teredo](#bkmk-teredo) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [24. Windows Defender](#bkmk-defender) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -| [28. Windows Update](#bkmk-wu) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [29. Windows Update](#bkmk-wu) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ### Settings for Windows Server 2016 Nano Server @@ -161,7 +161,7 @@ See the following table for a summary of the management settings for Windows Ser | [1. Automatic Root Certificates Update](#automatic-root-certificates-update) | ![Check mark](images/checkmark.png) | | [3. Date & Time](#bkmk-datetime) | ![Check mark](images/checkmark.png) | | [22. Teredo](#bkmk-teredo) | ![Check mark](images/checkmark.png) | -| [28. Windows Update](#bkmk-wu) | ![Check mark](images/checkmark.png) | +| [29. Windows Update](#bkmk-wu) | ![Check mark](images/checkmark.png) | ### Settings for Windows Server 2019 @@ -218,9 +218,9 @@ See the following table for a summary of the management settings for Windows Ser |     [24.1 Windows Defender Smartscreen](#bkmk-defender-smartscreen) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [25. Windows Spotlight](#bkmk-spotlight) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [26. Microsoft Store](#bkmk-windowsstore) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -|     [26.1 Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) |![Check mark](images/checkmark.png) | -| [27. Windows Update Delivery Optimization](#bkmk-updates) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -| [28. Windows Update](#bkmk-wu) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [27. Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) |![Check mark](images/checkmark.png) | +| [28. Windows Update Delivery Optimization](#bkmk-updates) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | +| [29. Windows Update](#bkmk-wu) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ## How to configure each setting @@ -1783,7 +1783,7 @@ On Windows Server 2016, this will block Microsoft Store calls from Universal Win - Create a new REG_DWORD registry setting named **AutoDownload** in **HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\WindowsStore** with a value of 2 (two). -### 26.1 Apps for websites +### 27. Apps for websites You can turn off apps for websites, preventing customers who visit websites that are registered with their associated app from directly launching the app. @@ -1793,7 +1793,7 @@ You can turn off apps for websites, preventing customers who visit websites that - Create a new REG_DWORD registry setting named **EnableAppUriHandlers** in **HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\System** with a **value of 0 (zero)**. -### 27. Windows Update Delivery Optimization +### 28. Windows Update Delivery Optimization Windows Update Delivery Optimization lets you get Windows updates and Microsoft Store apps from sources in addition to Microsoft, which not only helps when you have a limited or unreliable Internet connection, but can also help you reduce the amount of bandwidth needed to keep all of your organization's PCs up-to-date. If you have Delivery Optimization turned on, PCs on your network may send and receive updates and apps to other PCs on your local network, if you choose, or to PCs on the Internet. @@ -1803,13 +1803,13 @@ Use the UI, Group Policy, or Registry Keys to set up Delivery Optimization. In Windows 10 version 1607 and above you can stop network traffic related to Windows Update Delivery Optimization by setting **Download Mode** to **Bypass** (100), as described below. -### 27.1 Settings > Update & security +### 28.1 Settings > Update & security You can set up Delivery Optimization from the **Settings** UI. - Go to **Settings** > **Update & security** > **Windows Update** > **Advanced options** > **Choose how updates are delivered**. -### 27.2 Delivery Optimization Group Policies +### 28.2 Delivery Optimization Group Policies You can find the Delivery Optimization Group Policy objects under **Computer Configuration** > **Administrative Templates** > **Windows Components** > **Delivery Optimization**. @@ -1821,7 +1821,7 @@ You can find the Delivery Optimization Group Policy objects under **Computer Con | Max Cache Size | Lets you specify the maximum cache size as a percentage of disk size.
The default value is 20, which represents 20% of the disk.| | Max Upload Bandwidth | Lets you specify the maximum upload bandwidth (in KB/second) that a device uses across all concurrent upload activity.
The default value is 0, which means unlimited possible bandwidth.| -### 27.3 Delivery Optimization +### 28.3 Delivery Optimization - **Enable** the **Download Mode** Group Policy under **Computer Configuration** > **Administrative Templates** > **Windows Components** > **Delivery Optimization** and set the **Download Mode** to **"Bypass"** to prevent traffic. @@ -1832,7 +1832,7 @@ You can find the Delivery Optimization Group Policy objects under **Computer Con For more info about Delivery Optimization in general, see [Windows Update Delivery Optimization: FAQ](https://go.microsoft.com/fwlink/p/?LinkId=730684). -### 28. Windows Update +### 29. Windows Update You can turn off Windows Update by setting the following registry entries: From a23e4c6894fed814e6667585570e70fdbb142d4c Mon Sep 17 00:00:00 2001 From: v-savila Date: Fri, 26 Jul 2019 09:32:53 -0700 Subject: [PATCH 109/138] removed laast 3 blocks from IT Admins --- education/index.md | 59 ---------------------------------------------- 1 file changed, 59 deletions(-) diff --git a/education/index.md b/education/index.md index 6c696d9f4b..7db140e12d 100644 --- a/education/index.md +++ b/education/index.md @@ -63,65 +63,6 @@ ms.prod: w10 -
  • -
    • -
  • - -
    -
    -
    -
    -
    - -
    -
    -
    -

    1. M365 EDU deployment

    -

    Get started by creating your Office 365 tenant, setting up a cloud infrastructure for your school, and creating, managing, and syncing user accounts.

    -
    -
    -
    -
    -     -
    • -
  • - -
    -
    -
    -
    -
    - -
    -
    -
    -

    2. Device Management

    -

    Improve student learning outcomes through connected classrooms and engaging new technologies with streamlined device management.

    -
    -
    -
    -
    -     -
    • -
  • - -
    -
    -
    -
    -
    - -
    -
    -
    -

    3. Post Deployment Next Steps

    -

    Migrate to Sharepoint Server Hybrid or Sharepoint Online, and Exchange Server Hybrid or Exchange Online. Configure settings in your Admin portals.

    -
    -
    -
    -
    -     -
    • From e35cd53ab3fb713b23d8b4eaa8b851de039b562b Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Fri, 26 Jul 2019 09:39:39 -0700 Subject: [PATCH 110/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md --- ...-windows-operating-system-components-to-microsoft-services.md | 1 - 1 file changed, 1 deletion(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md index 9c0fbd1942..064c755d52 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md @@ -215,7 +215,6 @@ See the following table for a summary of the management settings for Windows Ser | [22. Teredo](#bkmk-teredo) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [23. Wi-Fi Sense](#bkmk-wifisense) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [24. Windows Defender](#bkmk-defender) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -|     [24.1 Windows Defender Smartscreen](#bkmk-defender-smartscreen) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [25. Windows Spotlight](#bkmk-spotlight) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [26. Microsoft Store](#bkmk-windowsstore) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [27. Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) |![Check mark](images/checkmark.png) | From a1ebb996bc2933ed50c6e0668f176091aa34ab8e Mon Sep 17 00:00:00 2001 From: Mike Edgar <49731348+medgarmedgar@users.noreply.github.com> Date: Fri, 26 Jul 2019 09:41:17 -0700 Subject: [PATCH 111/138] Update manage-connections-from-windows-operating-system-components-to-microsoft-services.md --- ...windows-operating-system-components-to-microsoft-services.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md index 064c755d52..a7aec9de77 100644 --- a/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md +++ b/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services.md @@ -103,7 +103,6 @@ The following table lists management options for each setting, beginning with Wi | [22. Teredo](#bkmk-teredo) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [23. Wi-Fi Sense](#bkmk-wifisense) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [24. Windows Defender](#bkmk-defender) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | -|     [24.1 Windows Defender Smartscreen](#bkmk-defender-smartscreen) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [25. Windows Spotlight](#bkmk-spotlight) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [26. Microsoft Store](#bkmk-windowsstore) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [27. Apps for websites](#bkmk-apps-for-websites) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | @@ -129,7 +128,6 @@ See the following table for a summary of the management settings for Windows Ser | [14. Network Connection Status Indicator](#bkmk-ncsi) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [16. OneDrive](#bkmk-onedrive) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [18. Settings > Privacy](#bkmk-settingssection) | | | | -|     [18.1 General](#bkmk-general) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [19. Software Protection Platform](#bkmk-spp) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [22. Teredo](#bkmk-teredo) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | | [24. Windows Defender](#bkmk-defender) | | ![Check mark](images/checkmark.png) | ![Check mark](images/checkmark.png) | From 23b5a6c98e7c26cac051a70c8858f006725befff Mon Sep 17 00:00:00 2001 From: Daniel Simpson Date: Fri, 26 Jul 2019 09:58:21 -0700 Subject: [PATCH 112/138] Update control-usb-devices-using-intune.md --- .../device-control/control-usb-devices-using-intune.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md index 537c68720b..5855b14b1d 100644 --- a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md +++ b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md @@ -114,7 +114,7 @@ To prevent malware infections or data loss, an organization may restrict USB dri All of the above controls can be set through the Intune [Administrative Templates](https://docs.microsoft.com/en-us/intune/administrative-templates-windows). The relevant policies are located here in the Intune Administrator Templates: -![Admintemplates](https://github.com/MicrosoftDocs/windows-docs-pr/blob/v-jowirt-updates/windows/security/threat-protection/windows-defender-antivirus/images/admintemplates.png) +![Admintemplates](windows-defender-antivirus/images/admintemplates.png) >[!Note] >Using Intune, you can apply device configuration policies to AAD user and/or device groups. From d3c6e0101a6b99b82bd511e494905f2586e6de42 Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 12:59:18 -0400 Subject: [PATCH 113/138] improved ah table topics as per lomayor's review --- .../advanced-hunting-alertevents-table.md | 5 +++-- .../advanced-hunting-filecreationevents-table.md | 6 +++--- .../advanced-hunting-imageloadevents-table.md | 5 +++-- .../advanced-hunting-logonevents-table.md | 5 +++-- .../advanced-hunting-machineinfo-table.md | 5 +++-- .../advanced-hunting-machinenetworkinfo-table.md | 5 +++-- .../advanced-hunting-miscevents-table.md | 5 +++-- .../advanced-hunting-networkcommunicationevents-table.md | 5 +++-- .../advanced-hunting-processcreationevents-table.md | 5 +++-- .../microsoft-defender-atp/advanced-hunting-reference.md | 6 +++--- .../advanced-hunting-registryevents-table.md | 5 +++-- .../advanced-hunting-softwarevulnerabilityinfo-table.md | 5 +++-- 12 files changed, 36 insertions(+), 26 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md index b233cdf455..298c799abc 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md @@ -1,6 +1,6 @@ --- title: AlertEvents -description: Learn about Advanced hunting table AlertEvents, such as column names, data types, and description +description: AlertEvents table in the advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, alertevent search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -AlertEvents is a table in the Advanced hunting schema. It contains information about alerts on Microsoft Defender Security Center. You can use the reference below to construct queries that return information from this table. +The AlertEvents table in the Advanced hunting schema contains information about alerts on Microsoft Defender Security Center. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -48,6 +48,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md index fb65ba4ecc..e97919ea91 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md @@ -1,6 +1,6 @@ --- title: FileCreationEvents -description: Learn about Advanced hunting table FileCreationEvents, such as column names, data types, and description +description: FileCreationEvents table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, filecreationevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -FileCreationEvents is a table in the Advanced hunting schema. It contains information about file creation, modification, and other file system events. You can use the reference below to construct queries that return information from this table. +The FileCreationEvents table in the Advanced hunting schema contains information about file creation, modification, and other file system events. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -63,11 +63,11 @@ For information on other tables in the Advanced hunting schema, see our [Advance | AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | | SensitivityLabel | string | Label applied to an email, file, or other content to classify it for information protection | | SensitivitySubLabel | string | Sublabel applied to an email, file, or other content to classify it for information protection; sensitivity sublabels are grouped under sensitivity labels but are treated independently | -| IsWindowsInfoProtectionApplied | N/A | N/A | | IsAzureInfoProtectionApplied | boolean | Indicates whether the file is encrypted by Azure Information Protection | ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md index 951b5f83ea..c1196b1a58 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md @@ -1,6 +1,6 @@ --- title: ImageLoadEvents -description: Learn about Advanced hunting table ImageLoadEvents, such as column names, data types, and description +description: ImageLoadEvents table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, imageloadevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -ImageLoadEvents is a table in the Advanced hunting schema. It contains information about DLL loading events. You can use the reference below to construct queries that return information from this table. +The ImageLoadEvents table in the Advanced hunting schema contains information about DLL loading events. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -60,6 +60,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md index 7bb35627d0..b775cf471f 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md @@ -1,6 +1,6 @@ --- title: LogonEvents -description: Learn about Advanced hunting table LogonEvents, such as column names, data types, and description +description: LogonEvents table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, logonevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -LogonEvents is a table in the Advanced hunting schema. It contains information about user logons and other authentication events. You can use the reference below to construct queries that return information from this table. +The LogonEvents table in the Advanced hunting schema contains information about user logons and other authentication events. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -68,6 +68,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md index 5b29c9be66..0a481f8639 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md @@ -1,6 +1,6 @@ --- title: MachineInfo -description: Learn about Advanced hunting table MachineInfo, such as column names, data types, and description +description: MachineInfo table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, machineinfo search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -MachineInfo is a table in the Advanced hunting schema. It contains information about machines in the organization, including OS information. You can use the reference below to construct queries that return information from this table. +The MachineInfo table in the Advanced hunting schema contains information about machines in the organization, including OS version, active users, and computer name. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -49,6 +49,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md index c66389a339..d31da2b287 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md @@ -1,6 +1,6 @@ --- title: MachineNetworkInfo -description: Learn about Advanced hunting table MachineNetworkInfo, such as column names, data types, and description +description: MachineNetworkInfo table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, machinenetworkinfo search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -MachineNetworkInfo is a table in the Advanced hunting schema. It contains information about network properties of machines, including adapters, IP and MAC addresses, as well as connected networks and domains. You can use the reference below to construct queries that return information from this table. +The MachineNetworkInfo table in the Advanced hunting schema contains information about networking configuration of machines, including network adapters, IP and MAC addresses, and connected networks or domains. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -50,6 +50,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md index acc1394b7d..a264a61fb7 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md @@ -1,6 +1,6 @@ --- title: MiscEvents -description: Learn about Advanced hunting table MiscEvents, such as column names, data types, and description +description: MiscEvents table in the advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, miscEvents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -MiscEvents is a table in the Advanced hunting schema. It contains information about multiple event types, including events triggered by security controls, such as Windows Defender Antivirus and exploit protection. You can use the reference below to construct queries that return information from this table. +The MiscEvents table in the Advanced hunting schema contains information about multiple event types, including events triggered by security controls, such as Windows Defender Antivirus and exploit protection. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -81,6 +81,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md index 52e46b633a..238acf2ee9 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md @@ -1,6 +1,6 @@ --- title: NetworkCommunicationEvents -description: Learn about Advanced hunting table NetworkCommunicationEvents, such as column names, data types, and description +description: NetworkCommunicationEvents table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, networkcommunicationevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -NetworkCommunicationEvents is a table in the Advanced hunting schema. It contains information about network connections and related events. You can use the reference below to construct queries that return information from this table. +The NetworkCommunicationEvents table in the Advanced hunting schema contains information about network connections and related events. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -64,6 +64,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md index 2ce2287fec..efa1c51ed6 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md @@ -1,6 +1,6 @@ --- title: ProcessCreationEvents -description: Learn about Advanced hunting table ProcessCreationEvents, such as column names, data types, and description +description: ProcessCreationEvents table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, processcreationevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -ProcessCreationEvents is a table in the Advanced hunting schema. It contains information about process creation and related events. You can use the reference below to construct queries that return information from this table. +The ProcessCreationEvents table in the Advanced hunting schema contains information about process creation and related events. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -72,6 +72,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index 919bb40c3f..5c0941650a 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -1,6 +1,6 @@ --- -title: Advanced hunting reference in Microsoft Defender ATP -description: Learn about Advanced hunting table reference such as column name, data type, and description +title: Advanced hunting schema reference +description: Learn about the tables in the advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -28,7 +28,7 @@ ms.date: 07/24/2019 ## Advanced hunting table reference -The Advanced hunting schema is made up of multiple tables, which provide either event information or information about certain entities. Table and column names are used for calling information about specific events or entities in queries. +The Advanced hunting schema is made up of multiple tables that provide either event information, or information about certain entities. To effectively build queries that span multiple tables, you need to understand the tables and the columns in the Advanced hunting schema. The following reference lists all the tables in the Advanced hunting schema. Each table name links to a page describing the column names for that table. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md index 6472ef185c..043d87e790 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md @@ -1,6 +1,6 @@ --- title: RegistryEvents -description: Learn about Advanced hunting table RegistryEvents, such as column names, data types, and description +description: RegistryEvents table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, registryevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -RegistryEvents is a table in the Advanced hunting schema. It contains information about the creation and modification of registry entries. You can use the reference below to construct queries that return information from this table. +The RegistryEvents table in the Advanced hunting schema contains information about the creation and modification of registry entries. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -62,6 +62,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md index a4a587aa1f..27628c9bd1 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md @@ -1,6 +1,6 @@ --- title: SoftwareVulnerabilityInfo -description: Learn about Advanced hunting table SoftwareVulnerabilityInfo, such as column names, data types, and description +description: SoftwareVulnerabilityInfo table in the Advanced hunting schema keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, softwarevulnerabilityinfo search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -SoftwareVulnerabilityInfo is a table in the Advanced hunting schema. It contains information about software in use, including version number, as well as any known vulnerabilities. You can use the reference below to construct queries that return information from this table. +The SoftwareVulnerabilityInfo table in the Advanced hunting schema contains information about software in use, including version number, as well as any known vulnerabilities. Use this reference to construct queries that return information from this table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. @@ -47,6 +47,7 @@ For information on other tables in the Advanced hunting schema, see our [Advance ## Related topics +- [Advanced hunting overview](overview-hunting.md) - [All Advanced hunting tables](advanced-hunting-reference.md) - [Advanced hunting query best practices](advanced-hunting-best-practices.md) - [Query data using Advanced hunting](advanced-hunting.md) From 83a2a4fa11dfd4613e089d7aa327fa88671b4e29 Mon Sep 17 00:00:00 2001 From: Daniel Simpson Date: Fri, 26 Jul 2019 10:34:05 -0700 Subject: [PATCH 114/138] Update control-usb-devices-using-intune.md --- .../device-control/control-usb-devices-using-intune.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md index 5855b14b1d..e8f58439cb 100644 --- a/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md +++ b/windows/security/threat-protection/device-control/control-usb-devices-using-intune.md @@ -114,7 +114,7 @@ To prevent malware infections or data loss, an organization may restrict USB dri All of the above controls can be set through the Intune [Administrative Templates](https://docs.microsoft.com/en-us/intune/administrative-templates-windows). The relevant policies are located here in the Intune Administrator Templates: -![Admintemplates](windows-defender-antivirus/images/admintemplates.png) +![Admintemplates](images/admintemplates.png) >[!Note] >Using Intune, you can apply device configuration policies to AAD user and/or device groups. @@ -159,13 +159,13 @@ If you want to prevent a device class or certain devices, you can use the preven The Microsoft Defender Advanced Threat Protection (ATP) baseline settings, represent the recommended configuration for ATP. Configuration settings for baseline are located here in the edit profile page of the configuration settings. -![Baselines](https://github.com/MicrosoftDocs/windows-docs-pr/blob/v-jowirt-updates/windows/security/threat-protection/windows-defender-antivirus/images/baselines.png) +![Baselines](images/baselines.png) ### Bluetooth Using Intune, you can limited the services that can use Bluetooth through the “Bluetooth allowed services”. The default state of “Bluetooth allowed services” settings means everything is allowed. As soon as a service is added, that becomes the allowed list. If the customer adds the Keyboards and Mice values, and don’t add the file transfer GUIDs, file transfer should be blocked. -![Bluetooth](https://github.com/MicrosoftDocs/windows-docs-pr/blob/v-jowirt-updates/windows/security/threat-protection/windows-defender-antivirus/images/bluetooth.png) +![Bluetooth](images/bluetooth.png) From fb9920b7841bd9050a1b313f79cebf661e8fc8ab Mon Sep 17 00:00:00 2001 From: Daniel Simpson Date: Fri, 26 Jul 2019 10:38:47 -0700 Subject: [PATCH 115/138] moving images --- .../images/admintemplates.png | Bin .../images/baselines.png | Bin .../images/bluetooth.png | Bin 3 files changed, 0 insertions(+), 0 deletions(-) rename windows/security/threat-protection/{windows-defender-antivirus => device-control}/images/admintemplates.png (100%) rename windows/security/threat-protection/{windows-defender-antivirus => device-control}/images/baselines.png (100%) rename windows/security/threat-protection/{windows-defender-antivirus => device-control}/images/bluetooth.png (100%) diff --git a/windows/security/threat-protection/windows-defender-antivirus/images/admintemplates.png b/windows/security/threat-protection/device-control/images/admintemplates.png similarity index 100% rename from windows/security/threat-protection/windows-defender-antivirus/images/admintemplates.png rename to windows/security/threat-protection/device-control/images/admintemplates.png diff --git a/windows/security/threat-protection/windows-defender-antivirus/images/baselines.png b/windows/security/threat-protection/device-control/images/baselines.png similarity index 100% rename from windows/security/threat-protection/windows-defender-antivirus/images/baselines.png rename to windows/security/threat-protection/device-control/images/baselines.png diff --git a/windows/security/threat-protection/windows-defender-antivirus/images/bluetooth.png b/windows/security/threat-protection/device-control/images/bluetooth.png similarity index 100% rename from windows/security/threat-protection/windows-defender-antivirus/images/bluetooth.png rename to windows/security/threat-protection/device-control/images/bluetooth.png From a4b734d7ef1b9f879c188df29eaaf5edfc4f3f6f Mon Sep 17 00:00:00 2001 From: Daniel Simpson Date: Fri, 26 Jul 2019 12:04:44 -0700 Subject: [PATCH 116/138] Update TOC.md --- windows/security/threat-protection/TOC.md | 16 +++++++++++++--- 1 file changed, 13 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index d42055564e..c3243e4a9c 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -158,14 +158,24 @@ ### [Configure attack surface reduction]() #### [Attack surface reduction configuration settings](microsoft-defender-atp/configure-attack-surface-reduction.md) +### [Configure and manage capabilities](microsoft-defender-atp/onboard.md) +#### [Microsoft Defender Advanced Threat Protection for Mac](windows-defender-antivirus/microsoft-defender-atp-mac.md) +##### [Deploy Microsoft Defender Advanced Threat Protection for Mac]() +###### [Microsoft Intune-based deployment](windows-defender-antivirus/microsoft-defender-atp-mac-install-with-intune.md) +###### [JAMF-based deployment](windows-defender-antivirus/microsoft-defender-atp-mac-install-with-jamf.md) +###### [Deployment with a different Mobile Device Management (MDM) system](windows-defender-antivirus/microsoft-defender-atp-mac-install-with-other-mdm.md) +###### [Manual deployment](windows-defender-antivirus/microsoft-defender-atp-mac-install-manually.md) +##### [Update Microsoft Defender ATP for Mac](windows-defender-antivirus/microsoft-defender-atp-mac-updates.md) +##### [Set preferences for Microsoft Defender ATP for Mac](windows-defender-antivirus/microsoft-defender-atp-mac-preferences.md) +##### [Privacy for Microsoft Defender ATP for Mac](windows-defender-antivirus/microsoft-defender-atp-mac-privacy.md) +##### [Resources for Microsoft Defender ATP for Mac](windows-defender-antivirus/microsoft-defender-atp-mac-resources.md) + #### [Hardware-based isolation]() ##### [System isolation](windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md) ##### [Application isolation]() ###### [Install Windows Defender Application Guard](windows-defender-application-guard/install-wd-app-guard.md) -###### [Configuration settings](windows-defender-application-guard/configure-wd-app-guard.md) - -#### [Application control](windows-defender-application-control/windows-defender-application-control.md) +###### [Application control](windows-defender-application-control/windows-defender-application-control.md) #### [Device control]() ##### [Control USB devices](device-control/control-usb-devices-using-intune.md) From ca6e89846bca3dfcb7da23fbeb08a76bc9ec5674 Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 15:43:31 -0400 Subject: [PATCH 117/138] toc update, rm svevents table, updated table titles --- windows/security/threat-protection/TOC.md | 13 ++++- .../advanced-hunting-alertevents-table.md | 6 +-- ...vanced-hunting-filecreationevents-table.md | 8 +-- .../advanced-hunting-imageloadevents-table.md | 6 +-- .../advanced-hunting-logonevents-table.md | 6 +-- .../advanced-hunting-machineinfo-table.md | 6 +-- ...vanced-hunting-machinenetworkinfo-table.md | 6 +-- .../advanced-hunting-miscevents-table.md | 6 +-- ...unting-networkcommunicationevents-table.md | 6 +-- ...ced-hunting-processcreationevents-table.md | 6 +-- .../advanced-hunting-reference.md | 1 - .../advanced-hunting-registryevents-table.md | 6 +-- ...hunting-softwarevulnerabilityinfo-table.md | 53 ------------------- 13 files changed, 43 insertions(+), 86 deletions(-) delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index d42055564e..b22f43a08f 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -104,7 +104,18 @@ ### [Advanced hunting]() #### [Advanced hunting overview](microsoft-defender-atp/overview-hunting.md) #### [Query data using Advanced hunting](microsoft-defender-atp/advanced-hunting.md) -##### [Advanced hunting reference](microsoft-defender-atp/advanced-hunting-reference.md) +##### [Advanced hunting reference]() +###### [All tables in Advanced hunting schema](microsoft-defender-atp/advanced-hunting-reference.md) +###### [AlertEvents table](microsoft-defender-atp/advanced-hunting-alertevents-table.md) +###### [FileCreationEvents table](microsoft-defender-atp/advanced-hunting-filecreationevents-table.md) +###### [ImageLoadEvents table](microsoft-defender-atp/advanced-hunting-imageloadevents-table.md) +###### [LogonEvents table](microsoft-defender-atp/advanced-hunting-logonevents-table.md) +###### [MachineInfo table](microsoft-defender-atp/advanced-hunting-machineinfo-table.md) +###### [MachineNetworkInfo table](microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md) +###### [MiscEvents table](microsoft-defender-atp/advanced-hunting-miscevents-table.md) +###### [NetworkCommunicationEvents table](microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md) +###### [ProcessCreationEvents table](microsoft-defender-atp/advanced-hunting-processcreationevents-table.md) +###### [RegistryEvents table](microsoft-defender-atp/advanced-hunting-registryevents-table.md) ##### [Advanced hunting query language best practices](microsoft-defender-atp/advanced-hunting-best-practices.md) #### [Custom detections]() diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md index 298c799abc..ea1feefdad 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md @@ -1,6 +1,6 @@ --- -title: AlertEvents -description: AlertEvents table in the advanced hunting schema +title: AlertEvents table in the advanced hunting schema +description: Learn about the AlertEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, alertevent search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The AlertEvents table in the Advanced hunting schema contains information about alerts on Microsoft Defender Security Center. Use this reference to construct queries that return information from this table. +The AlertEvents table in the Advanced hunting schema contains information about alerts on Microsoft Defender Security Center. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md index e97919ea91..58c4a28614 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md @@ -1,6 +1,6 @@ --- -title: FileCreationEvents -description: FileCreationEvents table in the Advanced hunting schema +title: FileCreationEvents table in the Advanced hunting schema +description: Learn about the FileCreationEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, filecreationevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,9 +26,9 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The FileCreationEvents table in the Advanced hunting schema contains information about file creation, modification, and other file system events. Use this reference to construct queries that return information from this table. +The FileCreationEvents table in the Advanced hunting schema contains information about file creation, modification, and other file system events. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md index c1196b1a58..9c2ffcbef0 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md @@ -1,6 +1,6 @@ --- -title: ImageLoadEvents -description: ImageLoadEvents table in the Advanced hunting schema +title: ImageLoadEvents table in the Advanced hunting schema +description: Learn about the ImageLoadEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, imageloadevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The ImageLoadEvents table in the Advanced hunting schema contains information about DLL loading events. Use this reference to construct queries that return information from this table. +The ImageLoadEvents table in the Advanced hunting schema contains information about DLL loading events. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md index b775cf471f..004409e8c2 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md @@ -1,6 +1,6 @@ --- -title: LogonEvents -description: LogonEvents table in the Advanced hunting schema +title: LogonEvents table in the Advanced hunting schema +description: Learn about the LogonEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, logonevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The LogonEvents table in the Advanced hunting schema contains information about user logons and other authentication events. Use this reference to construct queries that return information from this table. +The LogonEvents table in the Advanced hunting schema contains information about user logons and other authentication events. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md index 0a481f8639..33a911730b 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md @@ -1,6 +1,6 @@ --- -title: MachineInfo -description: MachineInfo table in the Advanced hunting schema +title: MachineInfo table in the Advanced hunting schema +description: Learn about the MachineInfo table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, machineinfo search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The MachineInfo table in the Advanced hunting schema contains information about machines in the organization, including OS version, active users, and computer name. Use this reference to construct queries that return information from this table. +The MachineInfo table in the Advanced hunting schema contains information about machines in the organization, including OS version, active users, and computer name. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md index d31da2b287..d3ea68e5fa 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md @@ -1,6 +1,6 @@ --- -title: MachineNetworkInfo -description: MachineNetworkInfo table in the Advanced hunting schema +title: MachineNetworkInfo table in the Advanced hunting schema +description: Learn about the MachineNetworkInfo table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, machinenetworkinfo search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The MachineNetworkInfo table in the Advanced hunting schema contains information about networking configuration of machines, including network adapters, IP and MAC addresses, and connected networks or domains. Use this reference to construct queries that return information from this table. +The MachineNetworkInfo table in the Advanced hunting schema contains information about networking configuration of machines, including network adapters, IP and MAC addresses, and connected networks or domains. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md index a264a61fb7..6b1268fb69 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md @@ -1,6 +1,6 @@ --- -title: MiscEvents -description: MiscEvents table in the advanced hunting schema +title: MiscEvents table in the advanced hunting schema +description: Learn about the MiscEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, miscEvents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The MiscEvents table in the Advanced hunting schema contains information about multiple event types, including events triggered by security controls, such as Windows Defender Antivirus and exploit protection. Use this reference to construct queries that return information from this table. +The MiscEvents table in the Advanced hunting schema contains information about multiple event types, including events triggered by security controls, such as Windows Defender Antivirus and exploit protection. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md index 238acf2ee9..ef6d2e7ff2 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md @@ -1,6 +1,6 @@ --- -title: NetworkCommunicationEvents -description: NetworkCommunicationEvents table in the Advanced hunting schema +title: NetworkCommunicationEvents table in the Advanced hunting schema +description: Learn about the NetworkCommunicationEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, networkcommunicationevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The NetworkCommunicationEvents table in the Advanced hunting schema contains information about network connections and related events. Use this reference to construct queries that return information from this table. +The NetworkCommunicationEvents table in the Advanced hunting schema contains information about network connections and related events. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md index efa1c51ed6..530a4bca2d 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md @@ -1,6 +1,6 @@ --- -title: ProcessCreationEvents -description: ProcessCreationEvents table in the Advanced hunting schema +title: ProcessCreationEvents table in the Advanced hunting schema +description: Learn about the ProcessCreationEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, processcreationevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The ProcessCreationEvents table in the Advanced hunting schema contains information about process creation and related events. Use this reference to construct queries that return information from this table. +The ProcessCreationEvents table in the Advanced hunting schema contains information about process creation and related events. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index 5c0941650a..59079e0550 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -46,7 +46,6 @@ Table and column names are also listed within the Security center, in the schema | **[LogonEvents](advanced-hunting-logonevents-table.md)** | Sign-ins and other authentication events | | **[ImageLoadEvents](advanced-hunting-imageloadevents-table.md)** | DLL loading events | | **[MiscEvents](advanced-hunting-miscevents-table.md)** | Multiple event types, including events triggered by security controls such as Windows Defender Antivirus and exploit protection | -| **[SoftwareVulnerabilityInfo](advanced-hunting-softwarevulnerabilityinfo-table.md)** | Information about software in use, including version information as well as known vulnerabilities | ## Related topics diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md index 043d87e790..717734a492 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md @@ -1,6 +1,6 @@ --- -title: RegistryEvents -description: RegistryEvents table in the Advanced hunting schema +title: RegistryEvents table in the Advanced hunting schema +description: Learn about the RegistryEvents table in the Advanced hunting schema, such as column names, data types, and descriptions keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, registryevents search.product: eADQiWindows 10XVcnh search.appverid: met150 @@ -26,7 +26,7 @@ ms.date: 07/24/2019 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) -The RegistryEvents table in the Advanced hunting schema contains information about the creation and modification of registry entries. Use this reference to construct queries that return information from this table. +The RegistryEvents table in the Advanced hunting schema contains information about the creation and modification of registry entries. Use this reference to construct queries that return information from the table. For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md deleted file mode 100644 index 27628c9bd1..0000000000 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-softwarevulnerabilityinfo-table.md +++ /dev/null @@ -1,53 +0,0 @@ ---- -title: SoftwareVulnerabilityInfo -description: SoftwareVulnerabilityInfo table in the Advanced hunting schema -keywords: advanced hunting, atp query, query atp data, intellisense, atp telemetry, events, events telemetry, azure log analytics, column name, data type, description, softwarevulnerabilityinfo -search.product: eADQiWindows 10XVcnh -search.appverid: met150 -ms.prod: w10 -ms.mktglfcycl: deploy -ms.sitesec: library -ms.pagetype: security -ms.author: v-maave -author: martyav -ms.localizationpriority: medium -manager: dansimp -audience: ITPro -ms.collection: M365-security-compliance -ms.topic: article -ms.date: 07/24/2019 ---- - -# SoftwareVulnerabilityInfo - -**Applies to:** - -- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) - ->Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink) - -The SoftwareVulnerabilityInfo table in the Advanced hunting schema contains information about software in use, including version number, as well as any known vulnerabilities. Use this reference to construct queries that return information from this table. - -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. - -| Column name | Data type | Description | -|-------------|-----------|-------------| -| MachineId | string | Unique identifier for the machine in the service | -| ComputerName | string | Fully qualified domain name (FQDN) of the machine | -| OSPlatform | string | Platform of the operating system running on the machine. This indicates specific operating systems, including variations within the same family, such as Windows 10 and Windows 7 | -| OsVersion | string | Version of the operating system running on the machine | -| OSArchitecture | string | Architecture of the operating system running on the machine | -| SoftwareVendor | N/A | N/A | -| SoftwareName | N/A | N/A | -| SoftwareVersion | N/A | N/A | -| CveId | N/A | N/A | -| CvssScore | N/A | N/A | -| VulnerabilitySeverityLevel | N/A | N/A | -| IsExploitAvailable | N/A | | N/A | - -## Related topics - -- [Advanced hunting overview](overview-hunting.md) -- [All Advanced hunting tables](advanced-hunting-reference.md) -- [Advanced hunting query best practices](advanced-hunting-best-practices.md) -- [Query data using Advanced hunting](advanced-hunting.md) From fb4267e643dfb000f612e35de13e3947589c49aa Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 15:55:09 -0400 Subject: [PATCH 118/138] revised sentence linking to overview; added missing pipe --- .../advanced-hunting-alertevents-table.md | 2 +- .../advanced-hunting-filecreationevents-table.md | 2 +- .../advanced-hunting-imageloadevents-table.md | 2 +- .../advanced-hunting-logonevents-table.md | 2 +- .../advanced-hunting-machineinfo-table.md | 2 +- .../advanced-hunting-machinenetworkinfo-table.md | 2 +- .../microsoft-defender-atp/advanced-hunting-miscevents-table.md | 2 +- .../advanced-hunting-networkcommunicationevents-table.md | 2 +- .../advanced-hunting-processcreationevents-table.md | 2 +- .../advanced-hunting-registryevents-table.md | 2 +- 10 files changed, 10 insertions(+), 10 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md index ea1feefdad..9544001b7c 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-alertevents-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The AlertEvents table in the Advanced hunting schema contains information about alerts on Microsoft Defender Security Center. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md index 58c4a28614..a82f47f963 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-filecreationevents-table.md @@ -38,7 +38,7 @@ For information on other tables in the Advanced hunting schema, see [the Advanc | ActionType | string | Type of activity that triggered the event | | FileName | string | Name of the file that the recorded action was applied to | | FolderPath | string | Folder containing the file that the recorded action was applied to | -| SHA1 | string SHA-1 of the file that the recorded action was applied to | +| SHA1 | string | SHA-1 of the file that the recorded action was applied to | | SHA256 | string | SHA-256 of the file that the recorded action was applied to. This field is usually not populated—use the SHA1 column when available | | MD5 | string | MD5 hash of the file that the recorded action was applied to | | FileOriginUrl | string | URL where the file was downloaded from | diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md index 9c2ffcbef0..d7e0521472 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-imageloadevents-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The ImageLoadEvents table in the Advanced hunting schema contains information about DLL loading events. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md index 004409e8c2..1e8a0cfcc7 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-logonevents-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The LogonEvents table in the Advanced hunting schema contains information about user logons and other authentication events. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md index 33a911730b..fa58a67cdd 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machineinfo-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The MachineInfo table in the Advanced hunting schema contains information about machines in the organization, including OS version, active users, and computer name. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md index d3ea68e5fa..3ec3dfd8f2 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-machinenetworkinfo-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The MachineNetworkInfo table in the Advanced hunting schema contains information about networking configuration of machines, including network adapters, IP and MAC addresses, and connected networks or domains. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md index 6b1268fb69..856696baf8 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The MiscEvents table in the Advanced hunting schema contains information about multiple event types, including events triggered by security controls, such as Windows Defender Antivirus and exploit protection. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md index ef6d2e7ff2..fb18d453d7 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The NetworkCommunicationEvents table in the Advanced hunting schema contains information about network connections and related events. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md index 530a4bca2d..d6ef50a878 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-processcreationevents-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The ProcessCreationEvents table in the Advanced hunting schema contains information about process creation and related events. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md index 717734a492..02cf24c213 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md @@ -28,7 +28,7 @@ ms.date: 07/24/2019 The RegistryEvents table in the Advanced hunting schema contains information about the creation and modification of registry entries. Use this reference to construct queries that return information from the table. -For information on other tables in the Advanced hunting schema, see our [Advanced hunting reference](advanced-hunting-reference.md) page. +For information on other tables in the Advanced hunting schema, see [the Advanced hunting reference](advanced-hunting-reference.md). | Column name | Data type | Description | |-------------|-----------|-------------| From e91e4443600d324040c9e1c6607a757f0682e246 Mon Sep 17 00:00:00 2001 From: martyav Date: Fri, 26 Jul 2019 16:47:04 -0400 Subject: [PATCH 119/138] topic rename in toc --- windows/security/threat-protection/TOC.md | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index b22f43a08f..c99ae83d12 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -104,8 +104,9 @@ ### [Advanced hunting]() #### [Advanced hunting overview](microsoft-defender-atp/overview-hunting.md) #### [Query data using Advanced hunting](microsoft-defender-atp/advanced-hunting.md) -##### [Advanced hunting reference]() -###### [All tables in Advanced hunting schema](microsoft-defender-atp/advanced-hunting-reference.md) + +##### [Advanced hunting schema reference]() +###### [All tables in the Advanced hunting schema](microsoft-defender-atp/advanced-hunting-reference.md) ###### [AlertEvents table](microsoft-defender-atp/advanced-hunting-alertevents-table.md) ###### [FileCreationEvents table](microsoft-defender-atp/advanced-hunting-filecreationevents-table.md) ###### [ImageLoadEvents table](microsoft-defender-atp/advanced-hunting-imageloadevents-table.md) @@ -116,6 +117,7 @@ ###### [NetworkCommunicationEvents table](microsoft-defender-atp/advanced-hunting-networkcommunicationevents-table.md) ###### [ProcessCreationEvents table](microsoft-defender-atp/advanced-hunting-processcreationevents-table.md) ###### [RegistryEvents table](microsoft-defender-atp/advanced-hunting-registryevents-table.md) + ##### [Advanced hunting query language best practices](microsoft-defender-atp/advanced-hunting-best-practices.md) #### [Custom detections]() From 798c2d12ba16473e80e5af281ab6585524b3f4c5 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Fri, 26 Jul 2019 15:51:10 -0700 Subject: [PATCH 120/138] gcc --- windows/security/threat-protection/TOC.md | 2 +- .../threat-protection/microsoft-defender-atp/commercial-gov.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md index 4709a971cb..017ba4df6d 100644 --- a/windows/security/threat-protection/TOC.md +++ b/windows/security/threat-protection/TOC.md @@ -129,7 +129,7 @@ ### [Microsoft Threat Experts](microsoft-defender-atp/microsoft-threat-experts.md) ### [Portal overview](microsoft-defender-atp/portal-overview.md) -### [Microsoft Defender ATP for US Government customers](microsoft-defender-atp/commercial-gov.md) +### [Microsoft Defender ATP for US Government Community Cloud High customers](microsoft-defender-atp/commercial-gov.md) ## [Get started]() ### [What's new in Microsoft Defender ATP](microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md) diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md index 9e64eb5d76..dfff630e9d 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md +++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md @@ -22,7 +22,7 @@ ms.topic: conceptual **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for US Government GCC High customers, built in the US Azure Government environment, uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. +Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for US Government Community Cloud High (GCC High) customers, built in the US Azure Government environment, uses the same underlying technologies as Microsoft Defender ATP in Azure Commercial. This offering is currently available to US Office 365 GCC High customers and is based on the same prevention, detection, investigation, and remediation as the commercial version. However, there are some key differences in the availability of capabilities for this offering. From 417bdf777ba7abafdd07567f6eddbe53ad90ba18 Mon Sep 17 00:00:00 2001 From: v-savila Date: Fri, 26 Jul 2019 18:44:23 -0700 Subject: [PATCH 121/138] update images --- education/images/MSC17_cloud_005.png | Bin 0 -> 124826 bytes education/images/MSC17_cloud_012_merged.png | Bin 0 -> 98734 bytes education/index.md | 4 ++-- 3 files changed, 2 insertions(+), 2 deletions(-) create mode 100644 education/images/MSC17_cloud_005.png create mode 100644 education/images/MSC17_cloud_012_merged.png diff --git a/education/images/MSC17_cloud_005.png b/education/images/MSC17_cloud_005.png new file mode 100644 index 0000000000000000000000000000000000000000..dfda08109c5969febc1de5403faacac157f1a8f3 GIT binary patch literal 124826 zcmeFaWmFaI7dJfiEsBVMfC#849V(^dQ3<6L4ke8=NJ-Z*Xc3i?MkNp3AStQR-JpOV zE#2_UIn2!QUF&_mKOg>Qt$PW~%)a)u_rEhHpbH9qU6o;9izg$gFWbJkMK z{=LEbAlv5h^l-J@ipl5CO$^s!_A|A+IqF-qohxR(FbRSzARkQAdVhCU+%$CqjzQ#e zc+e%4;|TIA_`?G+a36#Ziu@r3;Wq#{E3S0x-`~YZ(TD#1{o(%}hsE(f(ZQ1VpV<&3 z0RaDV8GK-8|G@Y4u^lz?_oqhfafvp$B&~;1{R8?G$i@wt}JM0V9AlKQU>Z1~6 ze;nU;{OUb^Km7!zJh6-hG?Jy&l6*bbfI!) zMIKtRHOSy4_O2>a)$E>w>X{Xtt~l&j<%8k|-_OfKHwml=osP`3SxWTXHhl#GIy$x1ALi5-nj?-;VAcQw~MSSE`Rmcj)u zBCMg-{$k(!j4fq}rCdz*&4XK1UqYPdh~GPbj@57+U)tTY^nm%Vya2PrM#V-DO_l&m z_@+`LkLK@d#?86+C^hd-b!E)H)E!1pHl}ox1r*8f8G`l3E zEU_83v7TvB-0jaR+cC8~3#_my_4a_eBGuN94)CG!g`sX&@JnnJ z3`OyA&a5PG0kA!bn5VVLoS8UOVPvix}1dX=mOo(nPwOTf1xofitB zwL0mcxf3KZ&cU!NJc6-}wP^eAks(F;vTJEDBi9eXnvt5nZ7-&J4FW`+!|>u1CsX0& z^I&6A2+uhI-nZ@;Wow| z-o)`M2=lGSVFhAdq2b-uF~I=;0b#PT2xgLjz$6vyZaP;9Opcv}fa*1YNgYR+$#(=M zPfJ4@Z2gBxB#Kddr^eNU0^pfXC~Mc0xEp} zm`fA9Ng6qXqn{EmM*x9j4{Vip|3kb)<1%D`{}C+p67(k@21IE8f&%O}?_q?yOORs< z%*$6~dl)g86)T99o%-S3nr^!xU)ue5Jh#bX#U7sfeoNx_WyM=ImlMT>QjYeroICfD zorvYL+(0&CU-_bTpUSGLs zNUnde=Wwvt-ph^HU{z&}iy~#J+1LC%hF#X9Y(?o&XAM5Imra(s@P%pb06?4t%qu|} z=~tkw>qH|OZ#@t354cMs@-;pJ88A?B5BXzqGz27=b%MrCVW|J0km$M3zVXAqjI?sqha;n9J)t1d?YEk_0YWd0;N@5lHepfYgIx zAZR=h_Pu{FwDlb1xhTzy1LUN5j(j6wLa1d<5=b^7B>$1+XPBfCfy>_iV3KG8ml<%lN7)fb zlEAPLCxzHcWf!dR`rU^hA2E%_V5ke9LhgVEDAsF6;&1HaK zzwjdJk_a~SBMM_f7D2hdFl5YuNY|JN-gP>G#W@BD7voluUB_v{GP{(f&IDy*{V+Q~ z7{U%p5SGNxo5)@iMB!yhy%F(r!b}1xmk_64y>Q!pB6>lrCTaEtKFw`4oNO*77xmbY zT+FTaAm`fu+nK0x#go5>Yvf#RY|-sCkF_8XX$q&+&Qpuy(Ij=A{LPeZiu&~ZG(AIk z9?~N&)n7d~dNu2}++`2y1Y))GP#%>YdKc@lvsG9?{zy}nD@(wtC;P(}-GVu34T7yC z`#~sgoD}B%mt=8em!y6(woIsXd&Faf&l-J=AfXG8BH}cgqn%jf+&ABCY&yiy^}8i~ zN3*1DeVY^=>rlRhh(5V$DcS8Po~QoN$-sT)z4^6m?+Z%TSSoLCPI^$t$5TzN+KN~n z8*uwsSG4-erRQGpd(E9%w#BvFq{3$>jAEQb+;>7G2lgHwY>Ws_EYvT{CT;C`Y&A$Q zoi5v{R$MIH-#RtZ@rF4Jk$o_nE-NieZPUM*q}z;Sf66VcDL=fa6SX(7ezWL8ffQm+ zKj5f_1#8WYK;d^?9En-eQ~OK2x@fQfs5+=4<1}CasNX)04wKgHN=?%GHu<8L2iY@o z5G2jyc3bUz^_>b(C$~j^5X9P1|_w| z$pJ#*WdPS5T~1qj-u_<_dfaUUR^Uj z4as$$JuT_=53YUrTj$h)WhE@N343YR{X1yCASt`8Y$lmh>?=g7>&hjFK4 z>5whG<$|~587sQ?`BRe8YP<=Wg!jwY3hZ!x~dFhdCN@i9<{{>OdC3;vvj+rseAF;Bff9p1<=Y2U5 z{d|Lkz^oN;sNL)n)|3Dr%Mbvd7Pa<%rA+fJf?V7zB04UPm`May@8w^3765JweNzbN zDBRFQHraX+mP4L8lYpkLhxRVS;U^JBk)vd1;f)#o^9Vq3u$R&>B^rFKw?H^J)Tv_#MVqC}~c6K^D)fWuX|IDEdXT&Oz3|>e@J=p4ftYk(^7M zNl>ITGa{gLF*mmHC+jy~#I#o6u#sHl9cGzg$dH-&N9zwg!onYVSgf9bu6x|*!TNI1 zTW3LL4Z*bt_2L#>OetOVyx-%oHC8+FLp1&B8GS3nN_4hi4e(0ED)a8P?ON|Haez)& zjD%Xu9O85zc59ll_y1Vb4mY<8$2Rd0k6-k&80r7l**Iap{l=0j+w7o#wrR z+!#n>;;6XI}c75097RZpdQ1JgBc;Lf)s0&3rKnwXU|aIT)G_Xvk@G9(7Ee3 zw-)-u-L8pg-ruw?wOcA)%`~!?udPu1vgpQ^o8`ghz8^a~(CJs^cw=<7c71<6$g*sE zHL}8YW6D!nyJC61r}dSJeA!uCT-R_Mb8VXuUHe#OJtVtbxKhS{QNt&2$S!T6=O7K? zF;#_2Tu-IcjxLi*KDLWED9RJ|I$Gy! zC9Wv-2xhj3{tT^WA&FY6FH&R6hjuR%AlW6cKNZACxTn;f&vUAzH%b&Hiw&@eA zWxQ>g7l=sY80>?)4DqA2{zFsf!>RU&i^g4t+*rqDqW;Po`&UY(xD_>4=WI!hxYXnN z3Co^^md$dCZkrdwu9)c#9=5S)(e`niZSqNSr(K+|WLHf`{D}D#reeK396sMjXSrS*CP+>T|e|1Focs&1sMi)n52-v#m-EI;hg|kWaIo57t)d0M+RE?(d?=D{|(8kI?gH_v9TYRs=i4;kr;8-L(M)EEIZ95Ht}WS_l!Cz!~PC^36Q zcsc`9*m=yFT5*Tz8 zO3&d#8|L*&q9X0h8z(MU|7qtoHbsjd4u^DZo>V?#{U+&ryd$@WPu~>HiQMsrKl3@B zwK&~G#XB*f4q{Os0#qZi?%YNeii?Hq@-5FHBfEZ(Qs1B|xMRCmbOa%yRX_+HcL;8UYgI;r!a9IUzrP|o<-ueOvgpUiVCVz>F|4@dQr>s%aCuhHNMO1 z0{eoGqmJczU*c_q1M?6FhmM6W!8nbNchrd`OLpNr&975=d_n8x$r3 z*ADq8G1XV@AYU_`H)ru4anMMpw80$u^I8HYLC)>T?dQY-?Nf5;(~jHSR0xxN)n>GK zCjaEtF5>Kr{qH7jSa*g&aL|*c6mWxSU+&V}|3XH8wX{5n@-1#}( zPW^7QVe^K6C!qnD0XJA5zkPu{0s4vWRSfZc-7eqa`M$4zk)ZQe3kpxY@zp^?ai*p< zKMv7^HNSpl|6ghZQgB!PhS@vGCU|9jh#~oK0b?{RNt1ocxqoY5>_2#vUsBD^J|N z)0Ok!W+gCmV@TMHN(5d2vj)YQO7wqNjP3)YfGjMb#F@K#&`razomDzi&6sBT2DT*B zHsnS>g^!|9im%X32<8}5Lh93yP&mdTtJ;NFK4uMO`PvKCOO#XW>eh6;cVR`v(Ly3S zODZV{UgvUX0VRqgYDgb0J?xXGVB$bI5$esq%O*pJk5QJ+zUy}$u(|dxyJZmVyzXBQ z?ocRrbq$gFkMX6RM10K-l0&N$i<~N%(jm_e7knLcVzaO;$Stc-Tx=C!k-Bev*N+^K zYCDxGF#PwQJ#cE_UNZoIR#p}X)d7y=!$0!ql;EDmgIJP+P3~#&94VE1LTMW*g(lka{s7f&Gb{3)177(i7wr3 zh!J9L!gnYe@!)_^kztK0Sw+uor?h+y*ybeYQdoh5f4aXE%Y39`SI94xFiu#RY@WbSz-gd=^ru+OqGmzK14PJh!%HDLgqBoNV2#2!cECa6VoctmEK-2L{Voia z{f%VWd_fY*1q8mvz)gS$S?Urz8-Z;D6Mz969?L&plQR10=Hd!OAPwWU{E)GBsYbt1 zr7DaCrr2eSt~4QQeS?}87}m5|9}q5$x({tl-)9>A8_#PIfp|j6ujJ{QeZ6+a>W5O9u@zyo8P?;+VlW znosR=JPSQ_dd^Y$Lja#AI`SWOU-VqVTN=56g+ooJkMNORY;m^Fm>`F?T>n{R3*O{u z(u0wZR!hj@{Hz^sf`NATaBl`fv`@mxh7Umz)!4b?XyK}Z7Vs8y7=|Jh_)MDGu|^c9 z-EH{Ah;1|ZM%uKBLKnlq!9kpMDI>n!5cglbg9NyJHjMiNqv^IczZ+#`b-V7l?0w0+ zgARn0UD!&d7;f=4De&{e%uWEz`}Tm->H=mR;nFcu zAYKz8Hf0_PshyoeR_tO#9zRf>Q_7%cJ!mt@I+=x?B3P6m6idFn_hkX9Cuf@;ztKf= z5~LUaVe?xYCY(x408S5m^_{1dDYqd?wK+vt5GwC5Y0o4WlpO}hFo_pOx`h3|tDMnA zXAsDlEehb92AH&qb7G+5f%i2A*tO^_bw5!JaX~cw^CiqyT`B$eiEnoW{AE*rXp@0L zd4cU2{=&J}r07xfo3M>8M~VZ-;Cr)hGlA&Ri79rG@($%-oe#QQ*I!~qx9UU#_qVJ0 zM@Rcq3U=3_>4c(l5CW;)SHy;T^BW(*nB8ihifJ0Rq{7QTh|4~;ywJl&9nuyGW~*vC z&kgt{8*%AA^>J!tUJ8Qa!v~=Ok3q-hF`)-+f*AjcP)5JG^9n6{f?)Dc{|_}LbNA4< zFzzqxyQfoaP9g$bfoc+rL;?%?1k>yxREA6{tGs9xcJKw_v%9d*K4gpo##_`hW9D9= zi~sQ}IFjkhq#R~`X@WNBm-<)CNb<~6H%^AJxs}_H7oLR;CWsXtQ8IqTf(8t3q+>N` zPNquzqjo4u#z>^es5xNTKPaO!NQhFU2ykKU30dMt=^(k#OcC}Y7@2TobODCOg^bU%kt#V2)mU}HRwJPi6rE&&&xuNhg3S%EE}@DUr?p&;d*4~4aPn{tJVyzAENKHUb#X+Z>_vPdC-@&fZ{1rZ~s;se~L+F0c$ zXcS3_?*%bN#-C&Yf-Rml=3&p}Uqc8X3GwNG?~K5zYIsigwc@$H{l0$~gHL*?{6IMJ zv^FDF@PA20>fgMoCuH4G5x``*HTGQV=~IHMut6!$b#lfCptJsHRgUYNwwsgA|Hq%! zA@{s)1)}zE+HUGNK5wQHBcb0^V*e`or;V019yhLAvAtl$u*wFAUEC9Pc^u*Hg-$q% z7$rOjb$YPv4e#;f5bkoB-T(g8H|*tiK;!;EliLX7t5XH4UMwuT)-R`uHbwjw8sM!& zrOT*kWBNgbXY98O4;}BZ>jCF^rhfhS@}+>`ap)*&_WsASl>VMqUmtVo)hQHW_wO^; zy>ICB@P6E!KO?b$psZG~=UbC0^UEmhXJJoR8rg%JW*ZIpa|N#|ddAZutOW4Gk0>VyqKzZ6uaUaZPMlJBHnl&)kJg;9 zSC&^r=f#abUGXyoq4PlnOh?Fh44bg0vo}E>I+y4 zb~{{)w9?37IB7g>Cw^L`kt}YOZ$+Y0=$x7=LY~x-8GjIfY3!9bT=_ctn#4n-V}~k% zHyEC+m3vgDKRFru7vbF=Y8zeRjzN)Bp8jZY8z~Crpi&#fDB*HtOQ7)_#$?K@>VEC@ zAIOQEu_Od1H+30K0!d5xAB6~%A-!KBGf|`fqQ3Qb*&yXaKfGnHE&&EFwu%2Lzjv?8 zcm%}#^Z2jJr}5Tsfv=$E^q~*Y7U!q|i%nqFXJbONZ%L zH9R9M~ngoSUEwXq&ko|>ykSD7=dkqTYp-yW3<8soq-Zv$>IxvS^@_ z%`MuS3|ZO#d-V`*<;qVfc5)|_SmLED=gNIqPbEnx@BeL2ecsjleJ47T>Dv(nuFIUc zh>e|>t`BLUE8)MAVTFIS1EYNZa#!#BDIe2&neSR8`}I~|F76yvo>Jf2?DO}a1M&h# zJeq6u>;qjV)*gAGAFM}q^ITNEMk~n(y|S=6@MrZWjuA}gebTN(>{~3U$;&R@DT~e2 z=V)g^$7j~f^>w7c1e-;&3=P#UB|hc8gB+^WG@9`Y?m?ag1(llo28Qx{fzdjO7g%;; z`oPq7^N)w`!?OU1$&t!3l4j|AU*f59kH*DIKeH^~HYh z4?y!Blqz|Cprmn6F}5pXQ^RB}6TW0KoBy|p(XYAvj33;fN0nbxOj zpnnh=*ba~k;}y>&nS_~?_fC8nQ+{T-@nt}l4_CThk-;Usya&$*vMd;Y#-KkD&WIYD zAOkpm)l-1`2Aat6Thhw-Y72>&s|B;3qE}B!-{UNRnR5V}j11qjf`>&o9(A-H$%GWp zCn!kDbcx^?oN3|ASbF6Mod3~tb^_@X8$%VSLfFdDKY8J-wMr)2q;pd>MW$&Ezxcl< zvI6H#pZT`k5Jhm48`=yv)=sWo$wS}?H~L+C(R3X}$K!el%Cp}Co`t!+0N9n%tN(lu zgxqC;&bY26ZYMu^ z>zo;$YEoEtwfl$+T$Q@)X=6*@}`)^L8boSvGa#1yWj0vIm3I%4iMUsCgL21K zZw+;`0;>N#Ci#x^iL=hqW#EK^dEckuUt~~e&pKggXcj_6f{`G$qrTjSNO1xhV!8H? z@9tpUmC=ab9oDCTNs69hG1uEzI!iZJjYa0{CY#{!M&;pGpu0wrCa)os6(QY&; zO=<=w@K*j_fpI$$dMm>rUUVc_JMMH@)rK4cmZX)$*^ot&4uT}+F!h`-&UIRYf)4>Y z$WZciXf&6+CegHJ@&p)#H68+&_D$(h;=!~ILRLkmWPIcyx^xWPvs&^VKy6c{6shJR zA*vIuEl+Y zV?bWXyQg7q38~8O0~g2ef&FK|FK*(Ulns(9{Ajp`2ar~YqaX`!k-UWuFs1Up12+@>pz8HDH-%CLo6n`}Hy2!+H>Iird_CL(p!Fdiw+-9{MOrJVV z02q5DIhunyTK+nDOruA5gH8ZH%qHXg<*gA(Y#+cG${$SnG8XvlfVe?1G&wT5kOz5G zUT>E)!|@Us@Ic59nI7tg_N#6je{S)4gfGa~Ll`GfE|9C9()0*5IRacg5qRMU!74Wo zW}-0XL3E+Y_`nCCmO5YEP(V!PttDjX&()1;x*B9I0KgCAupM+)eD=U$HMitbekSNR zfXP9GniIc~tZ)-@Z$|0Ipiy9K5Q}kzL_rp?CYH8vLl?l1 z(Fzz|3`Wj#$D#d3{FydLJOx-`lNevWT0%783hg+^9NYg0WUv%*c6Mm`kH?n-^qSn< z6e1WXbh07TJJ}wJ{mL114EWIWRln{q!mU4)@XP8*Qvj7yV9t<z=s0TE-9|9O|r)i(XN@Un9F8`oPeEYF2#%EQSkqCUA5B+r(<}A(* zzAo#QcoMuQFHc1hg^cv&K`3?eW+z2qJP*CN_?8qW=81yeS(on! zBNvMy;_sSxgN_0p8k!j-j;GVf52L6oGhB` zD3DwqT3vS(dFKIR4n>bc3?ZPm;crkRt2?R&2VzVeq|ieJARcvEPR8rrQHIxzgI@A9 zu2jvO0qp8@&e3AY+cRSvT%*!@gQs^(>MG7n9i=6R}^x$IYa@ z9(EbGoUG7#G&0h+w3G@JGn}-w@2U=pn0ahs7VFdn^}beIg4$qN&WC-uOC60r*L`br zAO+Ppve?E`KxMcv?~RH>2@Cn{hOO$8E171rq}3swB%9cT%-!CM@3?Adl5bhdN}K>b zn+J-jJbc=YcP(BE^uybVN+IQiQooe?1$f(szAWS(FG(Efjy>0~AV8;@FsD9cQGSPt z{XC4P$q>Sy*GcQ?1b}JYTvAhsei7b+Cjy_Oz=Sk%=?P;&ztxUQ`Mvrp1*I1kTctbR zb@>(^TS8E18uI63RC70Y0gQ8ktUUK+v|k5*o?6^+&keU`?#bO1u^N)PBnGzU6i!Hq zZ#z@8)Th5LQA1&fN0Zgl_Cp}pZ24|=ZS>2YkEp2N=$1Q; z?Dw#|Y<$h&gl@0Hevfvc5ovC$`=@BQBzj@&$W)^7@uI`s`iA*H+xR?lH z2ea^f1tb9InA`)Y<$PB&uF%6~_7igL>+%c~WJdsQhyOy0(x!bItjy2;xVAI3ZHVcLS;jSqFR`g`1Qgk!Ym5WmwL8Q4K`=CFJE2>~RC*YA`|)dr z4_Jd}lni#Ws>7%Fn48P`PB;-K2jQHSr{RQY$KzDjmItYD$Wc%};3v65A?(2+pjF7k ztSd}e+&qK&W;)!tK~Y2QDOUha1hf+Mum|Gu@TSkjgtlI34crxG#5Y#Y{9i z{dJ79o1S!<{RgGL-rjpwRGe7{n(J55Gj4|{BkPtlA{%{{J`vah({i;8jk z~#)v4dbOao-mu)DMYw`ogUDn zWN4kg(Ti>@o{M7{r+@RtpIrXmMp)ewWe4yIb21gmXrOX4!Vz2{D+4j;H<><^Im=T)%7 z%b)JEv4bks$K7bepZ+@8iRZ(4IMs@a-nb!v+ihkqSX|m&*SnV)4raW9Gc!I#d+cFv zyOA3;55nz-emT1a6qt=C#kzt9n^&=-cT!*L`g3u3b`T|qPrfP-r){rRFLHV8c%~Gt zm>C;QJqR@s?AoFW15Yh>J-soe8LCOW^(acW{ zqY68Y<7JEMmZdqwmc-%(DHp8g)WG_MlN+q9A2>hsY|8g3IrC+f{SCSDwSk2%70*;I zd7>ZmwEpmV!%e2F>Asx*kao7^&n!-(ai!+Cfg$Fsm(nM+Y{%SZ-c|U;RC_0mg0CN3 zn{p#cYp>5N9qU+Z%k*F$_L%gD*b-hSQQ+xh=N9?Yuv+hk5@Qye~XK=fHN#?235kluQgUBAz zdfYHQVPCPdxMJiTyR+EIml`in?lIjmdu!p!`fJ5_N7JE9diSP!ZR|=djlJdVDg6_n zQ4}qw)BJx4Ki1bC!HVD3_91%#3OTNnm6nu@H2Zg!;35CXr~t~^k46sldt(EUKgR#W z?6$QHkVWU4>KA^=5RT;JhP4_?$P9ZM-0%kC-DXDxrBd=5-F0q*8Zu|YRxz0nWvvXIk|Z}=&3)Vl;K z)88=`nZ8Ny`$YI6SJo9(#cLKs)|#kXwqn#?Vmlr@PB+|hU2kJhyo2u7IF^n}WdOM+ zk13qsdZhBowqX(*xFrSi3X!C2jM1OXbn7+S%%Msp3CkgC?dn43)jbOXdIpZGxMvM> zi_bq?zJKGk)vu;lAKpkVj^7ElmKx@66x&)>*Wd0Qq7dC`jIG_sa0`#3#7QdHmp%ma zNb+7wVH+cjoz_B{^5+XXZ59a?k?{eFYN}=X;kD%~!LQw`h%>4D92}ah07tGLF3Q z+dIf+D?9TzW$6MxH0N9hpY{h$szTV(JdK*4@ zL8anBl8C)Q7R^1p`FTK^T6tCO;*VMIwXX=>G=4q(F5^RBVCfqlAst8F9!bZa$1!K6 z@uQo-5l6qW-$XB)2TFKz_0xyPwK!-Z7lQUQFQ;8ufRn0k z5xD#(?x&XVXd*V=UPnHyw>4?ZO3G`H`XEu}5b<3zO0aP2rkK_qX_uk0UK0 zHGFG=TqBnsea$S!si^gyYf5`h@K_9Qd6LQ3^R*6OW(S_HJ*iJ*?MJNgpx+!^+1xb~ z;mpwD{?zQF_eSeqmk9gWMw2maqhhOYfq57ZbIZ#E+@6u;R$mGixa~duGo?`0>*7FIBiQJuy(Jtp( z)_n*YRwDL$Qkq?faN5P!q-(phKzGyRmL>~~qjeNBAP#(}p(Kap5fA+U|^ zU~4p*df)Q6;DU7m-+55D>Fu&Ly1h`r!swji|FZo?!_NdMZF5aG>%_v9#V*PaJ$s&~ zwzvDm!E=&##7;L(^dmjZRlE@dEBM8ghv};3>n(66P>;4~d8irIZ>=uz@}VDwfh{jD ztz1x{5%Nmnq%cM(kl-4ns0U?PHWoWiWv?O%V)IxYIuU8r6JMZ&32u&!>yjC62mjl@% zd|!ne9-e+ufIQNWXzhLXI-WD1T_Sy>HH_6Q+itb?_AN3$b0u6-0))d&tAn;ZCdgcL z;SG_{DrLjNkhq}@jnUV_7Zo5`DsMo;#=bh_anP*Yo_g+-K+&;r0Pd)hJvaqgCWblu#iB^0J;v4a&9cT{AXThIxY7xF#BMpo1#L z2jLH0MhJIE&f7MoaDCq2#MPe5K~-3M zM%DR9l^35+g`Z3%6q0e&_-rJqJLAo)@^1~-asC9_m6{r{*?~eXMkc1Q-fVsAzdygG z6q0rAoQfuU-LHjvMZzC`r6g`c$N=mfU^=$y_4`6-X(gG)s)uU(lzBVR`>}3Q31JgE zz4sjwlW^k@r@-cJ-yIlY$YXF2kLhrp?R_ufy`1qG_f%{$_L0+ET_#u=ahr33xP)Z&%6T3f|($J$zEkU$nxa z!KY;yy&r3R*5F^re>gs?EC1uS_n~ptFu?-tLEWXcKTsf8PFg}=#9y~J8U0XgSUXv5 zZGF8y$Dm>KPuu6*rztt%K4f!3=N5Z)8J=J1-Tp&n{cOpYu`oV0Nl>};H!(-}k9YUD z7!9SsZ|y($e+1O;X+Le49n8(zAMH(DOh}^1DsGdnYpsS;c|4Wx5bbeQ3RNESt0=m?rB#Ui9-G3w_lwP;etBKw{r9%x zoaL7|%XaHz-hl1BQ5eLS&u6{_&$}wAEi9{Mtm7@vMmMwfYaRbYj0Ad%xEsjKj;Q#Z z;^_~183bHXWWoMuzfHqs`u&*mj{JP1rb39!MXEqtvqf5@2V0ogFsr&vk4t^QK8Y(R z2`)zk36`{o!Q#SSk44Co0~T28TXu0G_;&E+5=JXx>?tlN{z0pIu7B>)M>u;7SQOSC zArZPh6B`NIP}t=B-b_k5y2Wi>j`Ad?Aa|1KF}LvV=cn(*b~r6AS}cwiR`jg2S9?e9Ipsvz`F+hf1D2+$8gMA7eY@Kb0Gglz^Kzfk>bpSKt0FtUNa|mbh&Z;_ zkL*nF*GKT0={XtAtv19f5an}!vQ$)(-X#i!G zkj2{P-m{w!=}MIPKI3BuF|83}+LxUPv(Eymjj?zKht9y7jfDjCC6z`8KYXxN2-C26 z5alvooULE~CP-w@UwcPydTzdC!Tq;>Ll{?JZchd87tTI%qjZnQE9ulCW7$Rp%9<;` zEo*Ksl-RU!si!jxj1l``0U{;~w;xh$FQUlz;$;;A)ORyZ>Cc_uitJx|ruSbcpN#N& zwKt7>`_zW5i{AFgAf=gzqgwT(Gvm}wY{mLJnKvN?q3Nby6K{ZxO?XNxuFUR>JE+Y@ zgL)yYpfPM}26m=pZlppq#__LY_NsquWWU&IwS)Gp)fw*aKK0eV#Pt5YyW8hizYwdO zU+p;3dYsYSmN_>_CNd~uZc(&2_hZZ30uxP}0guaj=UZs85GRVH|@H%z}k51;+$`<&8-tm zhbv7I6tKgn#Gy~vya%Qq+k@^)?pM>7GR6xGSro6V(TwfMyIx+S_psaEl%fHTP|^*b z{*{Wvj>_)~1nDPiH_peJM=!S|40QOVKLK<6hB{Unu+;{}F?oEznc$&Cmzgrgf0-*7 z(5rt#>wmNIo?wjcwn*uXZnv#Ky`d!0nJb4|&#}C5`WdvJ|GRoVgF)F;j0nqkrjbse z#o*`YDJ`dSCS{LYL#nV~hD1WSQtNZZ>`e`lMDhNc0nz&oZ==yAC%_@}ItagcBUo z@&wPb@TxrqzF_f>YQbz1Oq0Q2gRcm!Bpz36^c5MIU)@`KvoP+gKr-?-`(o5FAXwTD zdm(@AWms_!&h23!n8PPnm1$b8vuzu{L_HpxgM01QLwVZ^k%1u7d@<^KRlu{tneZbD z5=SVtTU$f1)JH6}C-=aE?q6`Y8^@nuVS0MkC`Wv@MOHE#7b!)}Qh(*SD4~}#p8@^f zu&?!!b2(LKa*hBB_u;iSC-4G^8doWFyG^&(S+B3R?{C5X;od;()9;hib0*E!X0%PW zIe~Gt^8?@{&ZSJa>^V67u4JPt|E0gUEV`vMaAv%=p04Su8vCGCf@aG_;QV}RZiy@j zfVm6zQNJAo8AbQKa2h?(#?5DR^TzBs0ArOBj~w10?vecszI8AN6Tzn~mpt&;F(thV4{lqh zZoDezt-gKBzYffgjF|%Wzef{C&(&C-sa>lmZs9!v#PJ{-J1DL6$hOyO@6lJ>q&#xV zNXMkqr0GZ9o5gb1!SevK|D40nNNZvWxq<9ODhH24K%5ft^v3}^&=i<6)A#3ct&Qus z{hhZ*RttC+y;UrIdeYUme$>;Al=H_7xm|KEcC!>Jx3Cl{nf%$A*%H4nxJ*Qf4&a15 z9kAP~h}|;Pu-OipXmpum2KWTa*|%i zQ9gCoBcBSs}Xf z{d!B;`u^_7NQ=75q3Xu{vVDe(eFt|#)zy;7a>lk9rez77Gk`T>|3TOMl63w>;j0U? z8y><#o4o7$1)c202EFxTA&Re6R-?@5o9WmJzSwnm*jbbu0;~pRc}b)mM6^8;P!EiK zzh$)kWF=p~WIEsk-~F9;+gHn3^DEVulnlOzbi9tZ_DD;(r~PJKdruojefe&%egiHm z`!5y#Hshb^QNN8&obmle8-=?7eB<=quhui!oa7hkoBU+_+}zdpSC%oWqIbX4?Gg`cn3 z71i{|0>FJw2~m4lZ2N;pa*^fc?|vtnGMB7*BvZ463gira?Kgjob)@3975F8?#Q)lk z!z3$-(HA?$nZ+;3&G36JET?;e4Xng#|wOrN!9fc!oqkLcy;P47P?1eT|NDy$g zF_?@kWoHwEZR+l8cKA^0ANna!kIUR65w4lNyefZxcyWI z$+hzb7xSl{WUaB0*!4gEz~uIl-Z=kmi~dkIWxzFKo@BB#)-aCIs8_A;LLwE1S%~LW zz(c9Z!2eQ9Po_$2Ewrq~fZtw$-#6whG-SZuu`>Ns-eJRBI!V8w{A1a}9|JV;#aDYt zzRUffn3CGkxd#BDy~5GSzc*OwnRrZ|v}UbmnUSh|8H{+;<@z^1ec<&6Btf1|Uo z+`ao{f7eZZeO<@m^Rs8`w+ePz_P2HGL+3&xH%OU*vqbjZ7t-tHi)~a_4#^SA?HI51 zUr;H)*4F7aiN&w{$>wL0zMWFYtt)hEdrR0X!M&tV^cm38ZdTcx)plmc=yAODg08+F zSl>Qv+vm(Ib9(P2$i|JcA5mMuFuP%K`GFT?@Mr7yJLbJD=eCp8O(o*;J z3;F{*IfsEt;#cTqFLcULG$X7rt5G9uT-t{^Z*trD8>OJjAIgBG$~w24#gCphMYW#J z-LTVC?pBA2xt4}uhU#>r#Zll@ zm>1gScZEt$fESw8a++M)<*66CqGZbKT$y{$V)nBatU=Vu>1W@OgbucpfXNZ~xpWjl zeE+#C!o?z-+^fQ1OC;E<96DlJ{oNC^xf zEuA6^or;1qNH+pQ42=rX0!oL>kdjIc4FW^+-BEm==UwZYzg(_a!!PbVXYYOXId`+0 z^CDZ_F?5GIZcg%J*6O?CI+~Y^j}SoG^Rlnl|DZ@sm5Kms06e}EftH9Y25pgtx&ZUk0Zmd-T_)023}X6 zmJ1)?xNz-bgJ}-%xbket(lkcLhU`c59RXbZ)IF^E7p1}tE2I?KT@Q{ zSM1|YDq3s`BGtA>T_25vJEuL9CC3~*Dj9KgSyjO#4NNICv@EGw)qYdMBJ7t!T0UkG zC(z`6#)CAyDD6lqU1Vl^pl~8fcK2T3Y1*I_b`*%my@*JvYKqBUD?Tnv9y4VPqIV{J z_L=FA!5a3xeR5Du(^))pV%MLcfSI)MayBWz63sl}6xx2L4}qkkR1q#mSLvUWMT^$1 zxwvH#J!_$<>fJso;@R!rQayf!l_yWZ`MWwRJh=Pa!4SpmpqAS%eKu1dNw#dq%B%7w zC|i_sGjzt(TNJK_P;I4PDn8$W(jc7D>gpe$FW%dpct=!Kxlel)x4w?CWye!5Y_pAF zCsh&mR;tRbgh<4;UnvlMK7}Y0ror6^1Y&&JwW-ro5{<+c+6rm0IWBzBf0hE<4sJ&P zsK?TmO$`q5^WWUK)o@bqOr!HdIbGuL(Cli!SqO*ar4SjOXTqh8W$CmfXw|WtXf1o+ zRUwk1Hv;wMsjKk$PF>TMU_|lSJPSd%-2q01-pAu;l^1NHczAlZS7wgSO4-2Z%tEsY z`9_33599;)e#fiyhu6iV%#E{OnC|@)uv$q}{_>Z!S~jr3 zqol(vnWH4w?!i}&q__2~L^YB(MXh4;u)_e+w4^%+YkPY8Z*U&f)$?s(G4-z7b=mCR z>`2ru+=Pm812Z({pM<)y%ma0Ds-_0j8!K%@%D%)^pPc709m#@>vqf;aJg!9JflI`D zM(sy<{4f8!Rr0@C^i_N`^5%&qqR`#w1*dceytZDa;&^?2NJ<_2c3Ab5RGE(;Qpzaa za2WyxKXKXx|3kqatvx{!`6$r9D>PVDZxD8#r?!v0tvFKAx1(Mefy!%qMCeIWQ{hr) zzJ-V`Ll#r^_APJ@Uer=1@PsBTxFl=@j~?>mU+U?zxjVizvU?bAFT472jw|qfjj1N$ zxrzcaL>;Yug%KE?&Kkq4jbo!FV&$8W-o6#G)b$&J0?*$ckh%hV1U``hzgaWHFKe~V zI|snY-R9R&S&_<}`|fU?HqAMY6L0n=-rpvqq2L^(@AR?hZ`Xi8+$5$+2@7hc20pMx zuO2LaMZ`i{Ix4j=jpj8J_(DNKi-l(AJcAC%w4zqFy!;S?qW)H{cGwk z9v=5_hHlo-&ylO%9qOtbtA;mLG8CBVg(8m}%7_Xwe}l!|PJ(;o?nor5Vb%eYI>heqXSSgAV0XU(H@297Q$R}SokriS)jGmTCDFbCeZN^Ub7*%+Zi!CFx{N{ zDyEW;zrv8O`kHVRu{|E7@Ym*T4?_E%mThGLo7`F&){VEqmEyUjZA&Txw zSW@jJWDLIf_I;IA)I}X1HE8;3!O8}AYC?RwNLwe1uktrJuo`nJvqt%S_JOs*g|=|t zZFnt}M@`j??oX#Fk~FFM9cW9 zI0!F8jELBCqb{mf33!_0Fi54c=9ur(SxJpEa6j!@{ou-~|BtGexP( zq~5)h2RrI4=gsZ52^|-Xx3$hH{MrTWG4Zxn3-G_!sO{dhQM-s#d_dC11TI7 zWnERCgxn7g7b{zI;to)0Kz&=xp~!3&Eq**Oe=45GdwHzaxunnzvL>~SaIP4d9F4>zqJe5hrM;DEDh~sWv8jxX?4ec5 z+i7VgVF5gXmvj|*W9pyrBtTcH2R(cHVv_@@2t<4osm?)$S(2MsnGvKKiGR7pUtTkn zfDWU{{kX8Z#WL;FbEt#h^3`k~2!f%XlA4aJs3Sf(%v{3M8?Kb{79wLr1$>Wd?K&yC z8IHeRg}eZiSc^`&`K%$|k=OPE`mV-dcyMUTWkH=5Hg4Gjwb@oDi}??%Ve&jYxAr&H z<-iENX(&q`7p9dUP-4z=1!Oum!5ckxP(_R=k@pGDs>ofCK8^c5d%sNsv;=zv+v#BV z_qFemiD5zA2vDYk{eZ1Zr2EEZjOd!9HY{n=k+)E-;c$jd*X3hwuI%^GQABq3m$+Fx z$V+xLJ->M8)5ZNIU5;Yd%TNuB&g1Ubz)Q zoy#qR?F=QRD{bUSP)M=k^cjfES?Q=h$C(`j6cg)0@XUQnjFTq(Ys1OvT+D~?=qdXN zzHcAt*ZkOfUMUxmPF*u%W7Fj022NYY7xGyGnijfU z`t$>xx#AsEMvl*c{qzgZ8mn_A0Wfl9dZOHi=|YARPZg6J(^I3ri(rW#zS$Y z3k8K`^#6GaziaY_K@f_V)=AG+lW1@#eJJsDxR9ax_O>wTDXZUhSP$N>qveG! zUf@~T*hHIhS#@p(BqhzaJ;j4uP4bz=b4yjY;X5O0;t?hKnV)CyTfSIjanW;I$t`1f z!rKlbiKz!v-hOb)I|#hD0kB5~BdnL}vG?dJ)c0*LcQ#_unHj9|a$DKEBx0|@!rCy{ zt1`L9vC04_e!joIMsj2fkqaaJ4MFGX>eAo;$?;R1On*k*Q(|`~siS&U(;heHyKguK zX(>OSl~P=IB(eho4oB7f!|&li8ozu&_FpGspt_7yR6NZJ>jZx;P(1EVjdxkDQ1vzi*HP^#T3vzW`m>6- z3P!QsfXasQU9|Fm4qaV_aTTBvXajE#xjlb}+ok-XK3StYS>{1q2EQ`KfGCFgE*N&( zIVnRxy5||72lJl58;db|Ixrkef3|!nJi^Spk)d_y>z6+w24s!%x3w5jE|vY|SY81m z`1s`A25az5Ij?=^7OkN%_YjTVTi(_FL~bn_B{IM z1)yiygPUm!&9Hu6FveA-r4PzIADjR0OeBsvXAB zTVbG}ve3bHq^PLqts;}1?gYc}z*UHj1kJLm$EDDKYqDDQ4*;99DR{<_<0L?(ff0D* ztN=sukd%3XYqd>bc{6>Tb5L2t?c?0>`Lkb&nD0adLZ#!mtvVh=)Z{qZjTy6*WisibuvoFo z#U$|h@zKusX3JR$%5&k3SwtFCKaGv4+BuQVf`u<*c8oHFD89B6O zVDc(S`5Qrv^V8&^`Q{YL+;`I;q=dysA1DHw&3f?OS!yVjs=dRBLlgIy6{K;iK)0)O z@s|4&<+0lSKIhYz!F9SNZ}#PN5aGDNUEN)bIQ1@tV>G>wFf^>AKVO~kX2=N6EL$D{ zsP^DF^3)ml)(_@vm!oiTl_HcKU#@!94Gj#>tz4520HKj2lexmFb_u=3YJGa2F{s#s z)drE5lF<0Bs`C7O^z#(THz8X|L+u*-MwRJj__&L!f5jGsD{X!Y9Ok_WU<})cU>R#{ zM#q=aZRqFlyF>!D2N-%bp9Tb)tKk*W1T zzG2fu4A%E+v=t1hfunyc_wRyeWA>Hq{9eU9dp*P8;I2FOd7dJF{(RcrJ)1rNfh^Tt zLE=+TY7N+p%ob!wRZ3T4w%IsgnfU|gmFH}Q!6i>t+oUK%OMn7c`~1X1tH(*za^1wW zEw2-eb%|UMIlzTD+vmUDJ+Tt-VO4EC3%Mq0OjJ<#->2AC;IX_>@}?~;MIE=P+Nh)6 zwxhPbQxEN6Cq^wg3`-2?Na=Qz;T`S7ENO0gT2zbKA$*3+VwGbR+m?#k<1BOouj!&U z9mC{d_U;9;GkOg+p!4}t7rVrOQG1%Gz{%V#0kF|F92$Iv*itl^+)3%Oe8K{lF#*bg zi8Ap*P>}}~h6jnnj)$Y_Vq6vSmEG(-KHpY`g4C3Qu9GR0=MG))ni8#>*b=TB;A`uD zT^YVdUFvV}YktzJ_05HCENQ2L{)mNlgw=5WP@kP1+GCs$vG%-CW z&-$i;`M~0h=nV6$m~gcy))t(bT-w_o@O784_gSEBtvCyb9N#)9_wn69H>fWg$*P(u z>?lQ=`byD})=-YmrKI2`o*Wl!N<7y~ddf|u|2zBuxz?lcYx+Dep+F$(ms2$d*0H|K z_f8H2rggI=23i7d3RHMe-Q-2IC7RhNZi|<-ZSPbVK_KLZTtjB&eGgYO@mFlCmj{2!P>I@Z~hG{v8`b8cosn zP7TkyBjDkkaTvn zs;OEreR5m{4Sd%G*sg|9845Ia6%7_+gW1q}sEvl>_1-f#GzeptG0{EPq_ArW5zUCf zoe%NPS1nVC?NfYzDNf~bV0^DjT^cB_K6A9nH` zvld0FPCD(U^|fmXa^8RT@Jrm0VEyVX3pYvztPD1gZ=d8HbHGy7FZ|i^p`c{fr z`ZtW42aTK-fK@UnS?aA^sfXFvG?RkL5l7ms7{e*xtE}LhL?tdXzJO| zK$=vTHDMDq91cL21?e^j7F0n&X&50;W<4=_KxKHkQy=`9=;e1e2c6)v-Za@hFLvUt zd$kGVjLl8b6N#U(>cS#eq8*o9_16!H%oz~9i17hR33#qf}oSuO5$?C*p+`( ziN@bf0|-P%!9SC^Q|h>qf~gbRaN^Cv!cqpO#i0h_KdEGW%g>-Aq9dPTE__eGTyfii zGpg64rpg4lw6Ru!=SP-Q{N>R;q)K#Qbw_eW(w|jbGC&<1SoyNIC_|xG@dm2&+VQ)x zu!)eCOE^6&4&WT_pLNZbQsV}m{_p^0;8MnQ1!-J$UG2Kk0Z2>*h4`@j&+dTC9=L=B zSOFSWd5*Dg6DYa=$UT44-aCR|b^>X^)Ohk&AtR;3gT+;{qTJ1+AjJoKhUdu%>uBECW5D;RWhY;QA8 z{3yn)0qqpIx&i0TLvhUG@-$OcqoK^@f~^Vo6wv5_*xlNbY(SPMIE{*7^)~#fbuWH& zyN)EXv?CnsR{o)Q-7&#*P>lvBi?IJk&~uo9iR|oZNzKUg+``58SCjp6sv9 znM1}5z4pk@HOd~*i7i}csW{_D0axfHD50t`R|0twC;?$liVwyVTPvOxW>}ZzU*|+;VSl|pWoF(m^b_pW3~f$21_cr zB#jOCKUQ?^8P?IGaIcNX+=!d5E4#VUUKi zt|3oT^t* zmxw0NLC(-=0F9qaW9{=t%h^^u({3b}0=KtZo~-9a&*q zj_y?1GqOkBCXBYas zOVoTOtkDymW5L;|cWdvWm?SVfjCJvQ_X-{9^3*&^J~`Wk5$YyDnSVZoKw5srmv%%* z#Ga1sg?ygeL{fVmve7xx&jUsdfi%tMw9S699K2xsSXVchA-bIy>%Q2ZzZvMe8@L&r zekdinzmR2f+;agrIKc>HFBuVosJEBe*^^k^Uk~Yf=f9{Asi2;&efco4eqBsKcT`}+ zd5NZdTN+V5Cm3}QBAqigQq8JW*UzHn$?|EG2;zcPUEF%_*`mLQ7<4gtsE^e^kMT`tVcc68N&)wK|IRGKKoPQLNBpaG3ZZ9sG&is(u()RgL zLPLQS#*|TdP|JicrHHG(hFf+a9-AY}(p!`TXYHRBY6wo)l^^*Kvjlg%WTxR=eMH|E zvE;cv7R48K;3CN5VGS7eL{>HB(b33|4^zV-JA3xW!kvBmL~Tv$F{ji^NX7jlxwX!q zoWamIv9#gZPi4ot$G_GhJi34iB@=?>3NrXy`N$62)rQ_K>DDBh#lHoq%d@HRxm zBI0OE0;7`ByPL2i_^f`uh9p&uCCF6mcvh`gL)PE-QVoIB@j{B+P+J`Z#FR0$Nv(4G z>jxKoW?~Q}dlwvZE2dMu1tXEJ8XOw=(Vm0(OJ}Z-+&lWVv3=#rOgp!s*KgvyaY~%e z>GA&IQ?EjmEj{4nZ5FZ#%4XGW8<{C$V#1ak?d?$)Ntxs%BwozS&dS@{7jG<8*o}rZ z7}j}g=XEMFkhE+Sym;{r;82uIk!rs?VkuBLs9yH7~I=4EEn zfxTCto>?1XZwokLd1IHj26HqqkW~)bx=UFt|Fd7UkiY)fu)o#PmunS4bQDkN(%Wb} zwRrp%F_@}3lQL~Zg-4GVp<&R+Fdv`efzm}+pLy5NA-T8h*?ONGBm{+o&|*FU?r+81 ztFL$0N@kX+w0|W!QNn-gJ>=EF+@NYw8_bH#UgkD@`{LMuRUhu?_pa_33?_7_SnY9x8WrTdq`pp#-Jg0xumkn=|4v;DpwV2Y2 zef!+m@g*A8fV|V78;aqFYFLcX;ys6 zictT;v-Kep)H{x;fQx|1UMc^QqpI1WQjA>Y3V!QQbTpdX@C3tW_Fv?ydODxz^Z0dQ z_j1K-!K6K(>ttlPN4zU5E2!_^SwXt0p!)m*kMk!|<=(;Ny{?mwI+^M(H;fQKrm(BI zw(JdoJePnE^Q9)O5@oORP5_6+ z4@}Bt^?k_E*xuQJqVub(t0@H>7#SJ4+&7)yCdaR}Z63|h)BxGl=&p;XxDP1i2$Vbi z;%$6EN_2wR!_AqAy7LD~w_DCpH=tOo?S=hH)}n(KtK#Y>){J8Z zKnYw|SO(`H7Ng7Spgb+;`eFZ6cxW@aGLT?Ntn~JtD3!+a#IO?P!v$jlU@o1Vozdmx zT!}nZYMOd)$IsFw_l5{huKI`J0e=j^A$ZFb_9^%e0B3)8ceFk5WGsOMK{OO`Q)OYF zxA?P}%QWP1U}C|2_jwD+{NT z8;=9E28z*XhVh8BG-?xX13{O^rn<>;S}1fk1Tu-fD60HTbqRQ9`Ku4smdDt+HSd0O zPJ{{r&cmogpaN~M=DCqfM)O=GQRapM%`SVGN<(cu>GsXa@6~{H4^xNT(fg=tTteK{sn~Zp)bTO zUrK>UQBn;KU>gyU=*o_IyBbZ+7Z%f%(2>2=3m+FOQo!E3Q5~@#x!~6NxcP#2>WK5_ z-S_ql_@rfQ?*_C(jXGZksz#+gL5Cs>mGe=b(aQVvl~9@yX@5l_%#lRec=QIz@52j4 z#Z}F~e9_-G33>L%RUrO(3|Nj^HgxlzBS>yyOqmIz;N>u1-v&DZgeqJjSgUN_8 z%6oTrIs#FN-E1bye`Tudmaje&NR?Iyg`CL;jsY?vwC+1%m1?w7DDC1d%k;ZFK(MBL zj^!T57W1hK-mtcO^UgTBe(Samck;JiCiVsRhKXqfyY$#w2iHsAJ)SZ;>sAH5Hd zhiYL;yuH1(eA9zdQYcO6Vp}xqm4cyAjr^A{&u9(Wc@)fV!jVopyjGCN8%bw{5gpkF z8OEQri6f5dZZVm0y=HmP)VxIDOYpl>SF{rnYCZvhAO_6G4rVHo@%+Wpjf2!^BSSS77(tCM$39#Ji-uJ z15fj~)uyao1ssp8iZR$5F^!4X}2?nz1B} z0TBm*oc$4LElmPQF-rT+iNc*9{gUHKx8ERnE_^fL-TL7}=$cd_rD5(6ogWo`g0l}j zV&>*u7D?F@mAZHXbcqgt?)G_56j+|&}psPnipSY^zqaKyTa=YL@Hy~U?e;w^aM|AWBraRdD0=PVk{iyQfZi9zI>S6WQ z#1o9P>Ndq+-^l8zw&a(fPwVJSZNUc9*Vk_rMPnA0>I|an?C91u#|Zo)(GCju(lEh` zm_?p!2^#i9n3eEw2~nxd9b&M%P;j=eh$gPooFn-3CsJuHL^MLpSlI%zvhbjZm9P$8 zgU`(@c>aZf7<8RyRfx-$W@}n7l`%G7LlUFGp3O9V(MWSaBx|c7xG<^=@N44Kk9N$~_N$1Op(%=kh{=eIA{&f3^cez-! zsol}5b$g7Dj~}oSto|5=^=l&%lG-6$`vjql*)rbJNchn+FtvEe8&WSN8N~JiwyXd* zYq-1R8z#=xMt3tKeYil~V5R=^&tK38E=%jfh}?NRhwIFv*^vc;lBV}J9f zN1tazeHX??vRUvjpq{2&I%gA?N)#B*WYAw(evHH3OzOOkyo|7g=~WeMc-QMoRD>D(Gi zy&E4O%?b4%H*B<~g$pk1wP?AoJ)HK~ko2-pHbf`n*mo9(u1Oms)R)Vx)L=PScKXGS z>vdNkezxWo+S01LqW?Uu8AsdSsxi5Jc>}?vqO`O$;~H~p3^HP0`uGEEhP?+I%+;o> z`7*6+0leN~4pE_>H}wMoSTM?Un`cvt&9wMYQX0Ihgm9eOROZV}rIoqIF&R)1-wz2} zD)u#*0VUjGAga`nrY&a|2q-ncBAMIC<-7bUgVhjxtmz?<3HHUA(0Mjn7md>_!t2qzRp`TOLc-y%yN)O`vs*d5>0dYi?po6x1#r``|J?M!tdrtz31q~m>D9$J>}C-)$fgO3 z=OI6*vRSix*hw{cN<$8egt!K}Vvxk$BfB5PzX}N2DV;3^eJt6a3_)WXb-=@_3pA&Z zicys2WaP$?Y6CD*YXcX|=9J)`^CK>V8L@_$ax?1bjZ;7@eE)mQZWGdQIbYT1z+|qqk;~f7bv%(LsrXV-(js> z)1FVZWY>3kP{dQ*`kkNU6#`H|XF5pY4f`RK!W-Mcp$HOzP(|M&RYbbMa=HTh>JwF%`#2tWrz-&jK*vtu;c1f&+k}^ zx~X{xvE(vJ0U=`9I5w?h#D+QsX9U>cO~!cc;_Q1=c!XuRI`!f-m`O_tRNo88<-hpS zNME$|w;lPV1bsRMeM+ImLN*fQ-CN}39HO2JGsrSH(VOKZl0D}7T26=UE!F}KyI`Qa{R8-8y~4-AXycS8szE`o9{_u`~ZP^bc^Sb>yOv67`6QQ+&M z;$i5NX#lJlDX1^^$A{o07YTrr#LYyMrF%sHV=VA~&onx3 zF2!|<<-f`35P)jtTVevki(9W0q($Y;j+J@OW>j0P2qs)BXq7w9)bjf603%`uVL|}llVB%_O>H+tD z8Y24EidTg8Mda3#J0)p0qZPp0^s3Q#AkgmU9PH}fCDnF%sQo#qamJ{{J0O8XGbwRp zvZkuVCMOHcX?gei{!aH|D|nD|{-TG<8ng9fOfj^)V2Pr_A2i7^ufGyOq1$qb>TgfW zD;gBky1x6Obq~9;^=_i))pM_v+HgPq7ohd=j~4)`d9T;9DZxHOxeBHAfzD++L1#}C z(OKp+$+P*ssV4}0ksmx{>cd8lDn<#_S)S8?=hqc_r14t}|ID}O!B2*1>+Ixa(g@>2 zEYj3SX;y+m7sYd)K2T_|_`CIn}>r?{Qh6 z6ZE}H zy2AJRE=7&+lrSB_Z*LOuAQI6D+6*cujfNzeRj>XwREXf%BcNim&hh-Z7;-DM*Z?bE z^!-idBD%GmeQzQNEjbTp)fo%E+f)d`?&elfMh(zpXE9O|>OkP%kX`+?t=T)W%d7Lr zB(?P?MF-}*;`HYDkaNVwu{D45qS~o%6;Exb zd8GWO(ZiXD9-z})S`~%((QNot){KSUYsv#_qX66BwL!^(ZNE-i2^2o;_6I(p=~TF- zk;V2Wo>877C4VG{hoj|pg+8R)$I!F!jk?$uo=cVL0&ju7(2?w~+1dIu$AF`~xS|!A zW=Af|FJwwY1H6 zh3S#!A?K+6a~~~#?_<-R-GYtk?Af!Zkr5UepWSy}_30ZL05vngstR5OE*eYB)?I!t z+J$D(_etGFFB)r@Z5vE@QO@$l}GJn&m3kj78 znz3&I72aFOipb8&YTn&a*=F`?=!RS~^&!08v@j3qCAfwToFNS4rGH)L8*R0#!+*XI?|PgMGynDit66pUxb`UKri zWCOE}*Nm-7o<-J&+XF`gls$B|#G71N-M{pEku zdbdb7zHiSU8hE6fN(dn53=Dl<^iMbjdd;OytBpCQkuH{+PM(wBk!9fO8?ibT5IDDqCJc zc(jEe`}`R55YM`nnuY>z@51Xhg)OLYY7RLUe>gDF$zBGSCX{o9*f520%AaC#HabgOYsUzzE#jv#QDo)xnDg_RpO z7YVGkB|H~mk1TcG1FagbOFQ)cQjMWgszJNoBo)=}o+60ggvrVVf+|gnXoK)u=GOho zl#}-%Z4dTUE9=YcHdU@AL=AuvW3=JP3LDO=2(KSvXiu9c3@_x#>&t77kO(8?aZIdU zA6#EaIPbBtFoOmCMx(VHLMjk&-It@3io8 zLMn&>2eYLG1dcYh(|y$cn{_z;=Iv{bVdfIC9hjxq(M?aP5hh66&3(U5q8ud>%77#X z<)7&ZEo=#%XzGudhOx|B)-FVc)O%Egj9a#e5<<0aU*`QC#*5E6P9KLm)`d zDgx3Jg?j$O`^RnGIzsJoSxH~n?cUzvedJZj+he3KFsv|*_O4WtWTqZbDhUGe;fVKw zBDs1J+z^<9^!3w~jAMOH`dR$!9q8Wz5m4zBZ1rzn%gEh-%sMx4fkwP^?0VH<2NTe* zH#b^oM$21YN4+_;;YtU`mCJnduK1e3kxA6ta5624+B4t|WcdQDR#Ckt?Y><*&9v%d z6CS){pN3IP-l;zlZTB!G6ZD|a4r1wX%rYjH$UtbWzz#jUMrv5!-RBIVkOJ_~$qqfw z|ES+{vX~k=oe6)51ak+nYxTl9T7n7Lkn_;V%e-$D;#YrF(LaOU)+x_rUn%K*6<{>N zZ*>i{M0@X@SM%(o+Dvo}fAoCFy{Dr2tv4yd2u)O*l#N)IwebH$Q}g|U4BR~eYOsFh z)HR&3c;9R?vBu%Y%PUu|43`(O%ehg<;6rK>)bkC1;ZE+*kNufn-vDeBE;I%Y)g5|7|!p!LK-hken1Te zC|ZUNEU6{rtABh0PL4GOhHO{PvP-`&#+2TNfe-hua~k?8E~!<;#rH9ovS+zjb!3RU zd@T3meI_pWE$2k@!;@s1Cz^FgA6v<3K-2AOV~&xn67={-9{~u-!Z1i=aef8$SF`H& zJ3K&Us93P>e>Wrz`WsM=hcO!ky5Q^sk2(|ExjNd>1y940HN{*xf%YYk*zF}j6;j`@ zaw3b@%Vx~gw5vC{>}kFYn4#@Q2K=?jC({vT->bM&&IW=G!{5p=-CyPS*ChAvd-yDL z3f5HT_ob@|q%Ju%`Qk^nXT#y};rcPNz4)1D9xp}Q&p@~k>iIm`)}YhzMyqP`Ta4D3 zL=7enOFcyE0>Ji?6v-H=9NRE?F5>_<^UoPku?F-qrm;U5sQEY=nG(J)QRt1>*QLn@ zBLVD%Vim)boE_gKAChP!)?O;uqApqrFL`nwWakKSEf5i^BF;j}&-@F8#2=hmTOkEC z4CO{ocY8CG^P%MArQTJ)-s*4ifjNA%2Ot1?Ybri{%N8x#MSw=XyB*wuzmJkP0QvE} zIoD%W5at#NEN{Q*YGd^=8wGwl8?)McE_)La9cv!t4Ry--!6TV9XBc zG(a~-7kl@v>#CYL3KgQ9o))Y3eoawglMOA%aiSrBn1T_9uBW=CpKVlUBCZ|AZwk3| z@uVHi0!vLz4ZkatTcTw?3r1GhLe{yx`E^aQO3@ArJz5n{e8deK4C1qhssdjGkV2Ch z4M4Y-*DZgJulUn_2aT!h&!RxA;ChI9hwk3;44^m!!y@3LaEes(md}!j&tucrj*fFk z$%8=77-_ju(4(B%SmpX6;E&%c>Xv4=r)LAv&hI`Wh$+P>)+=@OZ1&xOE5t^xcGN6v z-#_EG#8dvsyR}+15Vk*6LmV-}gOH7XKh-X420RwJaq~As=BsHG+0PiEv@I;1^ndSHkmww^|i~)l?A3E;tAb|?xx#P)u3pGuzqvI`?`X62*qapk)2pa#rYpnb%Cs)E8# z%u?eC=*Sqf>su3(NJ+^ZUH*bq7HI(#koP|!)%dTX1_VPG8M^`8OoZ3HN4fb7MC`J< zHsW2hE?PO|&E=GAw93zdI0AD|yvl7C_`zxd->S%R!3rwUvN1a1`~Fd8CHHOIXcbD` zI;HB~is1^q+=aco(eln=^Klm;t6k(|G#*5J@joc6>CLI=UA(I1)|;XGc%a|Mb?_|2 z=LQ&~Upd}=kp@b3&Mfl{H3i}Asiv}>A74^It(eC4^~uL{`>pW@gZ6F)$C!{wj+gWe z=QKg&4qYR2u@Ti^dp6c!fGbCuP30sJrNu~MOX6|0_U2x4cp} zO4h@@0NnZuYw;k1kL%Jvc2&PMvl6C^U44RcKcUMGd-zL4L%o~YBGk3gpwZ*QErYa{t`fyCFW=!Py%!B`ZN#00xre>s7QxJNE(&C3-u@dMAm%U0bZv z{nq3;>Bt;+j8qZOCOVd|g}gtrK!Htf+$Ss*H+F(pTtK>+k)G~g{A6ZihE+dzwSd}W zd=iLa;l(9DgUi=%Xzp_cl-1?Gt0Ag45l2@1rV5sbt2jxDNk>MP>{%XsG-Ni3{Zy?C zS*PbN6s&f9pGDL?nh%U<7E6QExW1nYREILTmU|-mm*~Stj)2e6x?DNo1Hm06RB=sc z|M$Fw_{BO^=7m@xxJv(Ld1m>luPJ(n5`cJ2_sgZjSCaDqasXB+)b79vwk!Z<-2;xR zDkg*YaeyJ4&yFL+;;iO-9PFubjQ{wOga0;DbTxo+xwuQN`^Ux9`Wqa)ETEM&eOww4 z99mFR)IEOV>J_<1$5MN=iSw%-c%K8A;$l01le}X@%a;jw?s2cimE&e63iv2TQA$JzTA$q1rMdPYkc`c?Dd&p4R97)Tu|)+};=lKEgbB zRfBdz^M&NCC+mxz>BYL0?VZ}>ptiZx$sYM#cQvxN)=4k8rpHN?D(+v4ZguAWy3xH$ z=W&k!Ld#&#rsLx>75QeY@fJ=f_nS&eV%}WtUr+gbeC#9Ox|*`IB%;M3PrYUgaALyu zMT#?=W!5??lOEN_anrfD`2}v(g#MUphSUc+66ZmFoi(47b^&5^TYotxoa6nz;27?vA?Bagg<+m*0ZxWI7pE0}Z_mPsa*s6Cr0 z_hEb^2=??)uTa>1F63`dR7HNztTs;66<<$XBHPOo6J}P+VrAExbnROL;mxq`j_fpL z82nIyMi`qk`4jPW7ygo!2(v}e(6>%Rk9OlJl!!%P)S&xTl(9jeZP}YjgJrxPe5Z;; zeQ&RJNmNGww7ZKlaF)rX9s4)LyjQny;L-b*d?)I+jC6-N*RcK=biM)Hu!0!*)4qZk{2FB-_9kxt^Dk&@0!y6YJTrMUJDaFpxBoo!~Z zYOVq`FaS!&Nv}1ll`eHH)gy&Wc<&C-vmp=uLpd&xoF>&ES5E+)_>(nfx3)V9YmbfA z&O!KJm9n~l0H1qX>I2*^5ACDF7}MUcjAeVp=~+?@4n zytiNH2m)G|$-7CR?cq=hkbtN8!5Ewa;(vvdbLao?oL6$=j6FG2H)prc`7%R3--c@L zVO{`n4ZpYY9T;EKTWNe3JcwV@A6N;klM*$Z!(3g=C;j6!nd8E4XeLU;3K-|tdKBOF zv5NizOq3`=|2*&%t3cBZ7ibSOS=vr3bx0}2aoctvOzXH7g0qUiA$$L1ifgA!;!XeS z?DHMn+dJt6=~SNXuNSB`oc$LUKpIYQ!8P|vKFR}UB{XP&95=6LZBkSGYh)G)7J(> zMp^djt(Cdg@0FxI0^NIlt^WZjho>OrA=4E!($UF@k(s#_ZI>{HJJOFSbx{qJI1Fis zO6YWVeD??sj?%e!n2DXP|)6tp^pp7{&@6Z183UW!P@1$pBo{_m- zp6B9=Ya|!(NI0IJz3KLa*s*~B8!=|M%5K0#(3&mv(F#AS$$Z5&f?HjB%}v@P^_F2y zh2_dGaqq^b(j|CE13LCZYd_jGJQ796hZD-mjs|PLCfjp}A3FB58`zZ84bJ}(J`fPy zFfH0XIl)d?q_3Y8ml(n7&w+su5I;KN-^Z;aw#syJf?{b}oMAI#>UX4{wavL}YLG0d znOkvk6!W?R;RA{X0q*YjiE4s1K=yR@daE=JTkbu=O|p+t~7SO2}7 zZ)P}D(qYl;@FjnIMWnD_W1z2(n3RJ4H(A?vR$wrI-E9 zE{}ZQ&->Toqq}?0ede6&T<4lIGraN1ZR=XH_B~233V#1G9&d&pj?pcxKvxdjpVj`L zxLWzwp3!&pID)7&(Q4WCm6}Hk@;=d5)7Z**lY-BL8EV$A7j<~W)pZ?AFbJ-)DZUPj zi|b0@>X3%P$VX!A;lN#w(fxUpFOd(SDJwiQ7HhA;;ZeJrVy~2<#a@-Fn!C7eNdy^| zXV!E;UmmFct;1O4N+Vy3OtxL^cqsauSrZ*mDz^G)x;r$O4!qgDpyB3S&%Y(iQ&3Bg z%~cpg>B({yEU}XTK|%eDsNRV&`lY5}k%V&(q|AE`>kxMGBT70XrO7)nxXE0!Q@i=6 z9XpNnv&K$*Ol2s!N4pjJ?p%?+_+b!>D77az$M^cK$5hVrj~}a3`hRaHFNx=RX!ICx zNqy;G+%Y)(*3H{OAIx*y#?>U>p*5br6-*l3J7N5h-!^z-^0!B$flFVAOywNKm8dGK z=NJrfBU~=sVu3Oz!>6cwLcS?7&v2Ejh6{s;s@}kW4Ypf%y^B=i7aM|zA%#9&*|D04 zod&ypW+xf!p8|DGne?stHaz)Tj^LM;+?o_Bl{AQ;%5y zv&4U3pkr+cH*L4_F#btn7e6}y`J86fKTby{wlQEWKA)jAQw&BQXUYADVL@=gd1Y{% zkJ5bHbG<#d|NXriL+`OGmK$R&69Oqak%{ugvX`w)zQs17=L;lYW3rrA+Ee(`dq3`$ z>xhwMj_=Z;sgOyY*yZXcykeY)rLL$;iv#Mv{Ox7R3`)+|~B` zhl|#NCYKhzb87aThokBC8OW`US!sXkw8<{ ztc$2GI;N;-lK7;2)+F(#H1QDJZ?;qxmn%WC1Tr0K2@K+GB)u zoCu7K?H&(2%c5Jc8RLV@+$6f{xgEPCM?>YZ-7=9OuKMj)BHw)Dkp@a+P8!oYSY)zN zm14mx6iQ*G>DpkaJ#MPT8)!JjQ-b2cXwr4;Qd~7RBZP4k{(-UkJIXpNly@@|88BkH zQ5ygzu%jIbJwaVpL&CPVm@r51O0l`PlEiWS*{W+0WCB@M`N2oasTowTHaZ~15Y{cQ zYZeikPL_3`pv$-${XC!}2E2)c<$2t(5#M`1o|!!l1HG=&GBPp>3JQhGwC!s*f*b&h zeb*tm`Mv5BtF^DKm7i^4ajRb5b{SUOdQmy}ts8^YBy5hI55@bFKwDk^UQr2VJ%*9f zWN^J9dEgnz9q?Q-?RTkcC@m6S^%O0eeElrzjCa=)dV`Pfo+=kW5CD~+pT6*`W`39B?4 z<6pvxmyaM?@|+?tijIN2;u2rvGQba?jAwQtoD--ORAxW#%V-dueUq5})cAqPH z2Ltv}d2T6$5&?F5B+7p+FUMh4Ns-U8KP$b@f>RhV@#{D=hVG^%>2XQU1t{#P=WBN>^-X4CBpMk4GWbxEjQbvnQ4Qd1kN)=rIAKRIj`5pF6=CrDk*nx55Wp>s&37YV2Uic ze48wbvzcP#w79$)Zy}UDDq^SeRM!d|oC9f|4=i9B7fTbV1B#*V!2p^d!B zUOy5?i|4}Gv{i#;G5-*_DElBmz7SJ*nu)goUSB~rz? zpzx6j{S~Q{36|(p^n(MxTf#F?NEnrJAxkUK=M;+41s&dr8(~kiTPW9D)hbul#2BbO zR?iT^dcH>npGE55BYL1#phps&!jhvd`?ixJ^6|xG4 zJ+AB_>rd^i_V&W2ySNZ(mn45fNj6gE^(=B0SK}h~_f!$gIbKHi66I(Q zsSjL&bSm+x&&nI)f$62?hm)s@w*@=9D7!QY^7B*al-OARE~^>m6R#H4PW*k=nQUZj zT+?<**1!q7E!zWCVO1zPU|wsz)2Vt#+<9Jx$SL)nzv0BMSdR{G(VoLEx%0g#4v(H zunu;f*Sx?_A+JsMmd)=^#7O@DE-L7-rJ#1!azruExd8L^w@d;O!>=~a3#!BE#gcep~k7*)lwlb z@{>3IrAKOgL5C1h`0_40}e+|4KZB`^ncBlGl~CS~Vb*|lWx5f{6mP_xM4$TJw z`mXJpnnxX6zC7c{Ege-kLG;&My8c*@SaN#S5#=pnY%{Pi+vAr&9tm(n*B=yc1r;!q z2_F#06_L=;F|Gt|`=_euOq5ohozRD5X5-O^8G-93*c1ou7u0{cj>4 zfl6R=np7nF8|ZMzoUk; z1$%aR_w6$f==W34$+(6ejqk$}SX%_o-GQyDN_*acErLS2HrajJ()q`ai!Yu3`Kq$q zY`0-Q&b`D1T<9%$IvTZ;(U8%7Y!Pl>U0nr{-m>CuR{wUiov1Tt$9mjm>@~};e)kO2 zVzRt?n6>5%94#|W!=tQk*bLUSvzjCDfc!w~34X$#&w(r9YHGww?AvGtphT~DpTPD< z?n6U9!PXG+7i6Rul-ydD@DT!*Bx0FCsMUh>UDv z>fg0*=;B5K@rEnP(X-Ei#dP77=mt$s3cc9R!_0ju&A? ztveM0>ThO-gjY~u{bzVwbT%9PwO{L}&Qpu;uZC9`WekB+FjdcHZr;InAKmz*0`h}| z_a!B$ah6LVtnGTH#FNX0w77X2)}8@ytnqr(+X?AZA(yzW{Mmsq!c4VH1r~Vvj$P53Pl^j>@I+FiaIZy{sJxDSMH_s zLPH#M`poIUYgKTe8qd>XCo1$LZ6ZW@D-^b|cLO#AtFanUa!A))oYnWI^KNuycu zSS8rVT69~~Ws9_Rjk|I&sfK#qV|#ZBV0~ky21kyM39a-l!$b!PTqwGJw}|aapf`0D zQ}OYiyLN_#yM@7VKcVx8&9S^UewKX3wW9|UkH)upL>4@30d(^vf%_R7;2O$V;)hd$ zOJ6FI5bIjsBJ(!7#;-Fj1+CJ&2LwOKm`NX9Khe~KVK-_ynkBjp;12TY7qvHz7qF$u zB_Op?RCRTA-2D8ZZ5wwRr`L=eS(?tlWhxj)DU=b1GX1O9+xNw>4!y1wO9T-V>Duea z5Oll(iD~pszr68eronUU*7&~t(%YzvVnj-fo3o1loSdc8VvROAv)fKXfw;>Xxu#ef zV9$jkf9yVyo#A2jAg1Ro%EmwCrm+RhR^%B-yw<5_hOpp0hz~{rlfsCrJJla!4ta!+ zC5s}sA9O_wZ4eCq?wQc1KC>$_xXr#AJ4QWSmz3gszx9#*@8>$!s)j5?y!a$lI5+CL zXW9VM=+{9hxue;Qb~5~9566>=v{O1S56K0>whW5$8M22D_jtHmv$u~#(HaB2Bfo?0 zDxi<%WnDd!jjb`0=h(-LDi}tSfhg{kdWsX!ernWs4tsc5D5p$+uaWXcc?M&BD52aZpCQL`PSI#`Ep}K7(j?NL4ChSVx ziW2uJC`24)yT;qS>G1bi{x$wnBM0eoi=cVR?U1S1RPEr>4+>DZ&}mG(QjD&2u;46H zPy&}wFjXT>XMyAB$gcJLAq&f*iuGD2QQ4wu=RUAk;i(6x6$)cyJpU&?y# z?OGPJfv$y4T7<~eycdHrXDHtO%O>%v{cp6v$_Au4yF{R(InJAWWg_y)21k|_1%N>Z zhONx|5-%>bh0_nztPBr=lHdR9`!5NPxKC>SE^ewCr=~u;amf-Y!(N<8_3%*qT|YDd zNn^|$E5RFs1FTND_tUA2@y|}Zr4OHlBo-VT9i^R|oLK6XuQP6)1xYrZca^R<6e4x| zAB3i#OTZ-zwuH<~_JSAH2`xdm{)^_v@{|&G7XV+zH%c}u<51g64%BZEm+kG+irFGt zSfs(P!5HZH&=4t>f4_E5;J;rhDG?}m5qs4!x=WXz8$1`4Kk1c0d{5{fB1*Viz!lUg z7b5s!ikIB3;r>iwvkB>BIDLoN+b5Wr>58lvX2l6{Uw-FRG&Vg17uY}`Gv*_j^?yoP ziQ&}$fXr(XPcP#i0(w_Kvly;I*;dpSGYQVVpc;(#rHNlTfBHUBCs~N9A6YdV;f-XP zx~%6I+a;niyA58G%Gs(u>r5f@|Hk@Xmid`&k>iL8)k9j@rBPgJ;}LxE5d8QNYQ(mi zU^wJ-%5R+H-lu9XM@87(dbnv*s_Q5{130p4q?j9323b-1hnStmCm&5-Oh9I5FC)vT zlrNb%S|QD&+5!Nc2J!C|QN>f7T4Y7>WZ0o58oj+#U~70%QWEnwd6c5UcbjTBr;{(( zr?**XQ?qdH-o?|wAO1&YdR6&&qC}qSEUdP(X!UaosSZC%;v2n#8`d`!N{O;l;|zoU z1rL`>R-q&VTq>gNX9Qp06W)&g=ik7=6Eo8?gfK|TssF&m@g7N;ha8Z*3-(h*(7S2* z0LyOy^MfO`$vI&_t@`I4aIXJ8%u&JdTqmP1KXX~Az&`oAy|kqW&S0+Vk-Y748K>L)pA60Czf(oeGI@PUuCV z*-y`1P$wtwvQNFp*+}r)w5lGRNDBCu01w+ZnsezSr#9NaJ0tW*{{2k%(yS-2qEDX` zg5(|Wf2%djKev0u3wf$)QAFYGLzJ~x)a@ypz(t;CIU%r@lT3>!9l`0;2I@=8= z{{Q--CE4BHtj$S_qGgtu%J#0-AVoglayY-9t8jT>)amgU!lwAorBp=lCccxFvgn;} zg^cWZAw%01@&vYUWfMeA+cr3uf*ewdtizq`(RxK1BjQNxTcr@WSY|Q0nYcCbeW^B5-~1&U5?C4BsyN=pg?$4HWP3 zcKXz|7$68!>mze;a4>m2+CW|hOl9F_b$iP04jlLyIXr_9@VI}Wsf~x4`1(RM+oS3Lsfu_eFP)4Gvhl2Tq8_#us!#>a(X*^OQ_%Q?C zn7zZWkFTUs3J-x-PDApy=LU`HcnPY zYY!R!W`pvj)uC#Bw`=T#gZoYlH+K}D>X!6;Ab8+$3VcT=5BZ*oG+tV1V{viRZh8jB zCfKWvZhH(4r+_FZm2=mrdpARF+&y)AF+BFjEzUlHHGPMvQNCPZcOxCQ2J!Rn)NuUaz<`f-bzSuC61CoJaIF7nMALMt;<$PYxtp*v>)>F+u?1 zrG5%&yufQfto+Ve%u7`38yg$jHjeG*{)#rK>)3CO^=%Se0m=Al^`q+>RktijB`iRMmVyhqE!mOcYByWNk2O33IeZ1MGjhlU#_Us&pYY7hWI`H2O+QAPp0~%*4D)^ z95KjTsM8hX)<&DB5S?pcK8F8j1((&qk|p{aggFHu4NU*wJzNYAyw|i+UYToK6wM8| zIW#%nAGp%7JNT?V%^C^XKf4dRJm0cG{7#F82cjpl%>?BG$)+u?GE%?KC5Kj>?CAB~+wNndn!Y6&dx0<25hV2B(978Cf=P;$pU zZrbACy@U*(`j(-^$*Vn)@7pkUO=n}GdNVvJZK+qHh70oM+aA@*aa#oOF{jSOaso%U zL(MaU?t}3ur^F0Aid?$>2XHN5@*CBU?x_$-9G-Gug&@4WW#LF6F^~;c-1lEW-@yRp zjEhzAOl?(gGC@{wSk0tm#Lfz)Qe+)ORn37sJzP7@Otv;e z1^DP|0+svkV2{XgkMg2ESvn#F(PG5IE38@c%BT<~`IZ_TB1#rFZte+2^Gmg5nQ_H; zP{=d_au47|G(K1SAUhePS1NK2@IXaTeW!pDn+LBbCg}Y3c1M_Z6vOWTiSz3=4JN6B z!774&oBa;t&RxwAo>~Cl5NCoD-_YzIeV5X_xVUJs*jdpyrW!rv3Q~bniL{8A(HHRW z^8k9BJBocB4mpV-eYgI7eeV(8O|0(|Ax#}M8%+PM+PoIBR!H|Vl6R^`bnN)rUeUe> zQdUT>654x=48eOfuP^5d1p3(!){bA){`21t*ua7*twOa?{oBU(|K70edu7-yRwFzW zOw3d~^aI$f?4axT{R&i|0^A==c{=)ZJXFB#pTOFBwo{S5f;sku4rku64nD{#0*ewOiE@BOqk@SB_Rhb&CTrndEKHi4QY z6VNk1wm`%x;C#@_@8nU&AngNGGUUM_8Ur}<`ina0g;b6r^%TWe^8&NsZ7|jwadmZ2 zgCXOG1UOfD&4Nof65jY}D$Ik)g+yi#B_JcX^?mJX-z2xin)l2L5G#V+0t!uAb

    o zQfIwn0joI?oG9^r(b))+PL=7>iuG!8_3cK#2OQzWg$r9-70lyBd`2suf!5{q`)Vqo z*Yv4r*q-6DRUi;Bs!au8ZIM@zi8qRaq;yNR3`^PgG*T23!FJ~kH}~69J;Kc62LTT# zA-wPZO-uT9yj$?|W%5jYn43fVx(S6veHKa3RmFc-cr~ppab)Hk0VKWjP2Jl!({B+q zqEn(H%++a=l#ocdTsAXYbU~oL_)v)IRt<@Xjh$1pY5MzYmt?7{@WJ7wa$ry1R3@u|@-+DzE#P6^S^HcO-LXJ)o2Ll9GW}bNWJubW%9eIHn zKaz9mseknGF*Y=eH+nex2&ANK)cyMD~O-*cuS!SyJ(rEk&DGe6 zqfJD!PoVN{cG)Z^-eqQfR(S$uG^}EQWYPifsVICbZ`5jmBZv@QEoRLkpj)T%ld@{^ zmGW+p^Sy(~JB=EAcn(O2iqQ!c{RPY^!qPO|qW=SK7D4P$okrm&e5Nm?;e_qOO>qGN zA{$3pPQ2{v2{7;g5Y}V>@@!9gH{V0unFKJwV1h(XXM|9XiVPU$V^_kNyu%FZxz{Ap z#Jf#@rgc(}c8fWq$V)oDWHs0Q_#x5Lo-gW1>5{I<=hV>scQsBckqrMLEAju&`gTDU zSZC%4d{n@1;+iO(yExoZb0calM(+b|jX~ua?xlVdF1uLh94$8m*B6kAQdY!`tCPa) z-jKhSp6*9(+4P(TJx92IU%uVE8g%E@%U*cUu5@6yU3z4C+$!b;x>fkE(GNHXRw zchL#JE)RtZKCo&`&#IQ%G6pRmpL)h!GpI7JRV=9qGzR&^SqwvztN$zuVm2=(*^Wnp z6R}i4d(gq&FnZ%x$*R@jpKiCg%@(eJ2I@h>bKg5k5Lm3uaQOK80%D$q5ON1ZC}?+z zJs^F_kR|ug^?(SsJ_`@!!`py61=3enGO9(Y#x2XLfc`soeWbiDpmvMHWm*cimP3}! zmSF0GqzyH2d=Xu4S~N!)&l?NIFY>x2CSp829oWE*N#xv(?1wOu?aowpu6i{4d6AtWlAkwZAPf|UG+iiM;&RQU6& zn?8O38ysanwm!5Y-DEWLw#nFiU>wKISu&(WxYGe^-l70kUnL=hw)zTNPY59_4Op)WDd5t?_S3p$_sAR1Ptfe!kW7H;zs)kAt`GT!3dD1d^O%a87(c9V#|$i}>^D z;LrifdiUvsdo46xv)il^ix#)Z_Id8JyWFx3jvPFCl1U1oJ=`6HbT-z~Mz zv`A@H$-cd(Bf2~k&q>sA0ytju4j{5eJ&$VUf%fGtZJ15{Uc=tD(9=V|qLj!?aSW+o zrO{me*9(wc!5v$+o912h{4q&#>h7``qbu87jEmfxT{P7nq!*j~n!Grsk#wpFv4I*D zQzikk#&=3DjPUg0%J5ciap^pd0S}$pXF^yVA*>Uck!LX}m2)-ALJf5u*02?+p}N$Z zMLr+$Qu?jqYv&3%65_)5(n|&hLf8Pc!eau?F8Gey&Scta(JFv`|BLW@*<6mgWiC_2 zzNLdqU^j_FisE|F$N>JzJ^!6NF*BzG+;s|KR~C!$u`Mg8-rv^5#ivF% zAMH>9SG8LMvC+%l5|CsyEoS=@!Apm(&*No=QU;x72_0OS#YzoqsVq^=fL<)NA)23PwHU)&Nxn> zPjkS5()8Dw{bz4>J49BOm<*ge78?h@Y?%%+N8r311iuWHm0uY$Bp;W+Sh}#|np+T) z(y_r+@v`VM!RIKHxaV#D@i%VrPxhbZB8tVVn+P}Cje87(3Zr2g4U?cU`%LM0%qJZJ9V)mR@Dp1(U1K-pL!#G5orJN+0Kf% zWr$$fc%iQ_(U7RApE$~1@jdLRi%#1W(sQvmuvTIB&SLnlNs5u#&4U|-zF-ZHw26d# z_U`>2^Ajp{e)wXQz=lGc=Rt1L81CF&FIkP=-s>^l?yK2qbZ!{AkJ@hBj&nb1Q9C%s zb&*!tnU%jqUPW4zwYM)|4n%~y$P6mxGXycaHP>o9G1hq=m60_c)8;*0FDDQDgestm z&dGGc_4g-bYABRPeq6kf)|>r$Ak8MrC#d;4XtYW~uiX_G)jr50971A8>NuSmR~V1p zNl=2z+yf2!=DgFi;zg1T`~Gx;#=rCGoMV$bptyl>DdCs|+ww-y(o$3u3$u56J7PDd z@uz*LhHHE5QRA*LyyeGCby+6W#q2$^ycxfN8@n#bqR08SgCv_Mu!}#cyY>bJ`0M?g z5O>B8sm0T=TEpSGXbBltPTivrQW?-9E9-%9MWqbf;FTmfYgIbg?|R*+Nm9)ce)ieg zEmqy{Po&kXU96p0Az$8QuwLaJnxKc!#)@q-e0{PyE(sckfrfQbP7vWm8OjiT9#OlI z1KG>fWa*3Ivmctp_4q;8m*Rn2MTZby`Fz`>ReOsJHm@M#CZv#%kkMFDM7mZrmX0(|H%`chao9(g)EL7kA0S)UVy8#CQ3w;8Xl&dc&@XxCZ1+=jX#P{bx&zuQ&otYbcCzv~kXM<r|pY7#~#Hhlnn%g`<%iU>)row4dUL_^&3=j0!GbCl_^btAA3acMG3j8HX_q%;**lC+EJgb18=2Ps5dU6?Vi*FV-<$9*BHcqK?2TY=uN92mcG7t?Px<&;yycW!4n zu6M#?=uYNcv`59=Aqov5`5foAWa&pk12=gklUz)u6-!2LUb>T}m*PT;LM&j^mKZ^| zXWRrjgKp`?_U~fDGmt{|f293$!F`;F*T)l~0@Er#wJ-1ZbN>rGD8*bBF zfW*rINjlTEltpR$AibzVn?${#JDi7o1VL_dHZ!~Gs3p%lHtG_nJfI=CDhAs5Qv3B; zq~|zj>S#KOZ7(ZeE(c=I8VBZQ#4~HC)95Z#^l3=-Dy@|gx#BQyG(*#Hyy#GIDI2Id zXtp|Z$iND;b8nZ@9N)9DthSR}&3$kGu-@$CX^V+(ZA zxwZ}r+9<+8wz_$gKK0ccHafen95~PDI2F6^`3U4>xodPO+_p*mTm;wCW1lyC2kXM_nMkY8tCa_{TS176s-~?11QcuQWviGt*F38_o_Q^fL!eN zx@_iNQDpMvJ%28d3Wh6#2h%dzVweRqrY_in6&GHDOKsGa`fvF=&#O_U=-nBsyy?wT zU{x*Ox6?_BO5J8jX~>hU~3YihJ7bk3FLby33SA%v=&qUk(ElEA-@r6GP zltp^8y?mKE-8N3nO9mDzY)@3C*86MTSc}y?=7#1CkwOg1Pb+un6NT7nX|T5G<0OK1 zS}*QE$%A=mRI6&ES&g*#%uzuY<7o0uzPJ5i@XQ?^w`t0>;#6>Z3NaH-*`Te)f5zjB;yN#Jb-;_m#6+>-7nZ1H0mGz*bEhcM`H6<(c<4JBFWgew+0UrY9=N zBFtoAZ{SQ_d`538vBbrI#L>VAdfYuhkx?sB**`37BI+iA&OL} zkhAC2#&$c1zv@}h#>UU^9zNzby|NZ`=L~6mv)QWqeF+%0T;nrxp`TFJ^HulzI}TI$V>ytf<+aG5_KkG(vcLAgTUTFX692WBqAm+D zgsG!+>$2cp(P8J|@pBXG#F=tqj`7?jE+$74Pqv2-p-VYFj*QW6o>q|#p>d#l?Z?GI zYp^_|!abd2oI;n#w*kfskA(AdAA9!IwwlQ;Nk3*?(*6SEjFz#-rQ_`Jc z2}=Al{rqwU1x~po16PikO)eQFbq9(a7Um0UI7EuQNZ^ywMJ@VN>j2uUlmhw8`R=LOm{%d+X z=aN8sxTpe5tH?KejHYYCWu5(HysedT)}V(5hRo-Q`qDgB)gAl6AcGhMI4M3_*i4ge zM*YqI%0EhFl613ENXk-w2&faKOXYM+bUr=jjBcrfM@m=7S$MJg^=5z7@4%!*t3>uG z81FX_79HQw#{St$2HDD0DNf2SzH2#5Ec3CjtTmMNS<%5K9bpK1NYo>MR{<{?F07c$vEi(DlO$nFmNDi5q(hK@ zg>BywplE27PmM!bzc^fyl_FwXxMw~n@t$M>V_(6WCd|gc;jx*h3J@2Ycy7uE-V8~- z7Ic$O!(*Khai{v#0U~cBrg;6x5N46Q7$bTW=QLb~%nE!1ZlVpZoSk=blrfTRKzdVo zjuW3ClwbM#6$669Tz}~CSa+WB)F+Who(t*i{meg0o#1k(C_6d+*8({EuN(n@pzxOCnXA9!Ac2_=|2`6UNL>C!&%2XceXh<0>r|(4eF-@i5OsFEkTIts2 zffcH*_*=5r20JW2-~_9O|HMnf|&$m)73GM~)yfF-yMuqp;W>5el&`BDEjT^Z5x>Y`W9t zL&odd3Jts$)Vr>Lu+7GbxQuxqUQ~f-QQ79=~d zV15N*0vzxPzW{i1?ilFKY8nx?#l39inFe-i7FE*MCvW!{%MpLeE?^AXnrQFL2%n1Lp#1`em5 z@Q(6DYWy#SC#V)?76t<@L4wcOMaL=9C{Q5S=3MZe{v7Gsvy}U+&9jB8;(?N0!SMX` zVQGtNE*K9iPqro^Myf@dY}UpT9Rlzk;;QapgPYBSUH+mo`t2~kr5{TTD@%WD}s zKa+3t{mg!k`q26DpmC?3kIoa{*Y$6}j^cX9smMnlCcQEt!%`$lS;sK~{d5f7sWYNP z&T*ratH-XtmQ2F3vO%TO+HEgdwSx=ecaQwJ1S`NM6D#we|E2jk*9uMTI?uQZta%hH z?tfB8mf~pqn22b5ER_owS6()RI&1_XoDr=PhlLI;!Za)|KpXhmxVAWc1-dy_K7bq?JYEm7Bjf zor*>Nd>PMCdv*(4MN|2N#$1EdC$ab#vufREAHZ4v(vKauLdSFJ`=2;je zfWm%vM2aK_qBCMFig_uAoO`|vT!cM8&zgL==yTj}bRPQrAt=gyJSQ_jD$1J$n~%T# z*Hbm798!~lyv0XBVg8N3Q|yYZKI_kqvmoP#g4K!3Erp^hY_o3wSM z?~l78G2KgI9{gR)G8GYzDuuI;S7CWm5f1(LEqR2l*kpyJF-dNbS_P%Nr{nYOR3(J@ zXmO}W?E^WWk1i(&H^1rt$K>Sj&c@WuqLI&|`j+ZJx*vG1D&14EpNy>Wxghf|wXrV@ ze-MWYuqwd5=Ni4wHQGuki{2%!(f-vhK1n(Z`|{Jz?yvpVT&5LVZ_LtLSNO~d!XoU9$pwh6Bkh!p43FG^X2^5ro3a=6R&s2P09*0@~RG%x8Ht9v;e1DaMAhx z%IW`9y}mC*Z4jL0UR0!h2rP95n7fpgq?X%vwgUleFLBS~KY{^*;Hew=omf zbl{TH69lB2J0~4dWNxuYrF5juF9@8ejs1b>Fbt`<#HbK#Dh{viWisk;#oN>GdS+Hmyu7l$=SxekX4h ze|FP}wemXy>kSov#CQ9%gF|eq2c^wOBr8aK0My2~{$3n(?pg6R$7B+#aaE}N3VOn7 zRA6urfYUmON@>Gm)z2YU*B+%=YgqU1jXMwhO;S6QN0C4SW$KSV9d+pNv2t~dJV$GJ zl}FT7Os_cUeltIu9DHREaAmh)Pt!>uz=7IvO4uw=dX1(-TE>|%l~(n$Q$sdm!+ZOV zk|_XuOeesXTk(VwCOdI-B%lyXfBiQmTEa5fP;8Zm=AoN{d+T6Q=L3`HEl7T+&inR@YqRnlrVL0O zMChNz)s+#%!&>@pkt;>y)77yWjhL~V0Bi8)<5-PibY)xQARQuqx(dAHBO+vMbkReG zXnW6S^!l#xMlrE>#^(1(c<8V`;qShQDz?yN=lBKt4Z~gJ-w9DFjN3aJei(%vuv$WGr#28hf-UDQGJ)3d za3e<_mqb7FFTiBk35m$3`8Op(lG_>qBawaVz1>;)ggx0YWLq2V@LuP=W5|@8dfTkS9?gx`^3+%%KDu$irIN*j z(Fl8=DUV?Hhe|YT$2If2s2je+%ag4^afHx1WpvZuod|C3gP(CcMP0Sq!J82=HJkx` zNYP^|S!>wEDL9JXsVp% ziPNakHFG)Da?8x%^kIb&whnBe%7{__5JMQMIe(xZ;ys*m>N4bX`syMt^(R`@19^5-n8<*i3yg<QG7OG-|o>~HXq&CvFolQySqNJ(4w=Z*yGcoj#evj4QD%QAHnKqiyr;lo9GnX zmy?Huh`QBL`#peVgpk}MCL2VVo-sO$tmdDeNE;AB6ze_OHG~bI-Ku^dBk6RDm#}cWO^mdT%bk^J*&?U5&dzetxrj+C;YHoB67E#dl!^M zolN+=uC1#u-ctLnsEYM+Y|cn%Zw2g6_b<5K0P&2a)mC#gr?6k+H);RR3#2s%&f0Gd z7Yi-6T-(?cd>tt*P`wA#FH!{&7MLVT_|E%-{pD5;lIq~g6@->OTND5@T!OhrCkGqhD9m5!u8YS+QucQ6nWI93+QVNS{ThJ5%?#xzSIc;bk7 zVLc$kn!8_OYdY?Dz zIR61uI}*KCCR2k#2a`G&S|Yk$g~}HgbWH6x@EMHIqS&;b9?u$x>4qq4SX^~M6^O2W zS)(~pFSnZs*{FFjoXnnpWOFv}w_Xs>ItpHJH&aH5F-S-y5^MxvCQ!pSkAG+R+1 zyF!iv0`Gu;XS|DdT!Nl=G#rx@QEx}qlwm5Ko)f+;=CrQauq4v!qIPf~Qyr@0$YJF# zTIxPySUx{WK3lc$aZ!QG*`{{B8&SSbip=Nm(*7&Fte}B|PVI30&w#Dz9-; zJ^G;D$e&YRd;wKhGCB-n+8%Hl5L#h7f-X(eqA-_9Q32K%e`6>-rAq2AS5S*?BxcH! z`3WKt11D~2UzV*o3dWXADbv11!qbHWGCWwE5R=P{VY?sU>5)PiQ)m(>L7Bg$d=VIK zEGyVF?dDlBHOtGS*|-1YqWN%}t-4295|$SQ&v<9bzZ*kv2wFL`@x3k*7yW;G1ojs= zd)Bf1?a&qxkNOk{F>Y|#2t5>_`nGN#@j2cQ9yh5Ht_lU-IcvOp(9zM88AO=;aj@#-Kjnsf&Ut!}-($&GXi|l-tkdN|RGPz${ zeGOCwN!5}a$&^h_>f67WRVXjR?g~>C_nki;F0&2U{YVtUs+esRg9|C_i&;dL)h!4g z)mvoQ`zB=mSN4Q486?9nN+#Drbv}jHdUj#Tj86}TeU2SmVDlD*mg+*JkJo zY)dY>L&HX&Yq^`SFtgK74uv2y9WF7E;YT4hME&j4a^)?56%BE%(#O+#yvBz5MLj)s zT%ZI=3y&fItOYzVg_553aEFm z9viW5LSnBIELzxI=8J~RXP{1fVL$_fgy2gr_=~{Ub?R^Hbh12<&VZ>=N}%?xEd$d% zQWy`4e^TixfaIv5w(?RM-I_S90edK}` zUh>k`b~IIX{litGTg3MizMBz&ezXP?*6ee@7)IvLSiy>|v(BqkZ4JvHt3lsBNft<5#>}{+;3Fps7i}nwmYq_?<)~js; zOgrYLzhuw@ICw)57j@S%b(2bPjXm6+U4J4XG!y3byi*UzxFa?<5i6r5&2Ez3 zZ;|VJGT8Vj6G(4!Wo;6UhoFYLNgc+ayPY=Rm=1a#pPs^~iLAw9@2*-_bNIyQi6K z7+rT*EXF8OOgF|fm7UYqz~&jeq}#ABxn17;Ao5#7hef%_!$+4_VhxT!--DMf9?Vt9 zFY=s+rDQ7G=M3B)hTr!n+J}F!3{O2HD_0P(20xwuB6}H;w~21co#249fY$+8PSk`eiO2++{*xb0LEt z89mWBeI9PYXAdU*w2Ww+WSAc-aD$v z?uix-f&wZcBA_5e6p*fTq^cC93xr5lQ3zdnFDiEmO1!?{+Uh#}~a^ep0u{jzaPX7c~ z9@qw^ciFhr)F+HObN-<5jgZrxJ{L4Q zo#fu3d6GhgnC_^!aPmT!0zLbpSG!0Kikz@{o2$~4^=#E6^ko3lGdf2 zz;!Zo@aBYUmiHHZBbHd^z#b*-S;RGTnc`h1cmd2BNd~)ZD7usT&3H*`Uj7=UzZm<-jE-Zz#W`4&b4Tfxj1tr>3JkxX5+hx2kfh9W1tk9L&@xQ+y4!7~NA6 zc|E)bIfk6E*-VH2VABoV(oVA|#*b|Io7bi$EGTpVXoOCXZrQ zXGovF&2RWeW%kJX2|NO*%3+0sR%2QCw8-Tb`@{RHi*3)JvUkJ*AR>oTIQJwPY2>!t zX-n72oooF=r01*QNwlTaF&?Q-#q1*(Q22zsEJ>q*pTv;ww|2WImw?8t13T!}GEbY2 z;C7dh<>isc=kPM^GlA=`_sOi^zdi8D#rMzaSMb=4w$$te(u}g~mTRGyj^(|2fRkWI z_G2UHc@;7%Jcl9iP8g|kTY<2~)jl%Pshe(|RvUp$lhhIV{634edwV zdtqm_VC>mPLdU`0a4X`wUBLHSD!&8!xGibjye&LL;9(=0!q%EfG{60QAdu;4)?P;k z)3`=?u-XFGUyc9mF18f4zLwGtU!l-Zov-+kk|SxjwPhgo!jPUZMssT#3g%hIE=hRp zBK``;DTUV!1121T{TF=q1DbXmn94X>W@zrjtj7%a2u1rElnn;5vnXaX7jCWmHc=;^ z_`;bjQA#qUL^AbwVupfA)qylbbr9Yy{s2 zu>{}Dss4&QT$8nVf=@`mH1pl^(?TD5t7pQM6H4UrnYC@^=9<}mtjt+_5c#C{$b0Rv zn{upe#8B0?5%gsLFh&{r!X4E@G*pTy)D7#+c6_-^`i^eY&uO(c>irBC~HkJkMfl7x!T% zY}#d;X59A*d#s|yRin!2-YCa7^KvD>QG4qoKlgwY*@{FdzSQ38dqXZX*iL6k$p+Ut zC*Ew1(s$J%04rd(`-IcNlT*1V;Jj8XUblQUUH5F~voq7@L82nRLYkJMzKs2>a|Np# z#-@-kKm099wcJNU6~}KrIwguOs(@_#jh91EJlL>~-+z~9ppWkAdHeFUy4m-uu&6(} z0x~1vAlL#@gp5m0EP*i^0btE`J;BIO@dX)jKQFIRmlht@i%;%}*xyjq%&s7wzw{AU7~j-0 z+b~j|QJ4O-9JLK56*?ey4ieKrRRe}1G@8R`f&%))MISl3-IlDuae*8V)ATYG$1qxP zVZpX|hGvPY!?WOU`YH%clTo%scg`R};m}-9D+F>wUyeOz?l6P={N9({ub5z45271=!3_Id z6HXbJmsyCxMEb1miVN1vmeSR^Y|#i{LL1zLhw>N$lDiHT_;NQ)*~IW@pgsMHqwur7 z=1B^n;vTvdEA$B@)yAoil=emU%n3>dw8@iwo%R)>t%S^F&s!sd@XDj@7i+t}g**!? z>FuGbWPN;Zzb*Xh(oh%<*Re2KN;JRESmZu#`rNasax5(`a7k@M1 zQjE$t3V+R#=#84W;Ge*yCm`2|DP}x0-HF$+)=he?)zwi|3fBi6C$M9ciEm(?+@dM6 z02DPZ#fuq-qY&HH0}l%ng!M>>KP(MnHdR>$;R%HhyEBW@LE?ixKH@Xc>uOdF{FpSi z5(B1eUMi*mFK&PUPd)K=_xpChI(bC9kM*g$iH!8GS-``c+@9G(oJU3;4|r@NVL%Fu zMz@;;KsiD_)%f@x3?(NNJ-il%3%sf2mtk*V6rhlG(lXlYX{a*|lG#N6XkvJ;;S4Fm z;ec|Mj~%wkVq-sLe{{BYu@7XBxjw=;BG^<0Jue*i6(#l7gS(iOY2)a_B{VPh2{;v@ zZB6GIBrcPcpD;gYO)ygbRGmO^26-#U);N|ndr39N8XI;_dIY;lNk^1yh~2%@dEo-} zkb{l#dqODfs%ewDY}HCbr4VF?$v#m?gU$ULPTS4+?lm8PucN*D0p@~kZeHdY(rjgL9w6g~Higi|1EZ!@x3CR= zFpw`0=ScanJW_>;diC1{giJ2eYU_8SV!ntw%myC5=>EkFiDFFjuiJ+A<8rr;0u#Rdv5 zRY6zwJ14Yl07C{C0bLb$=AnwuKfk#wan;~1LlJPy9z?(u!v%V#l5X(TvdQ49ogi8x ziAJzq>39cwsCFmcQCKBRx#MifQ}B?2f$8%sfeyVY)!^w~js?4jdjy@VZZip?Ltm0JA3)b!z@aCHDTENN-?~W}`+t;Px{Rrio#n-o$lU|hq zz->AZB}G%L9XtOhvdHA7V?IJyH|EceMbuPlCcrbR^hG3OYd z5Kr-)74}G6*bBILD>v2IAm2x7wZlk+ZlRl3&tS2yWSz_HV!(0k)LXJ<`GC+BpVZms z`NmqGZ+q1)4oqg$&>8UHd2l+#j{xurFzx(Y-#vs*Fp|!Ne_<*jh;w(g8hDB zV`mK)q>|#G_9~NxQ6nsjINxN@FD>SV&h0_=snqM~Jt>?+F$nin-~=(_o)O92=&UXN zB8eZ`c5SUMO=V!dy%%}m5ZAOhP~>cD6OgMbvo!#I_VBCrWGyW^;|-VN2NJr5U|*7> z;^(DXNF06NzH3^%MScV>r}+-`P#(B8*1O{fW*?W&c#mj=y%j>&;iw^nLWG!_8oLJt zh0Z*evAIJly`ytBOFmc!O}}b;@%9MM4mT#S>2zPwN-@BM0gv5(!NhL%OY>d$Jw~ay z_K2hCHGKACpxK1+%0b0o-#pKLtvLr%RyJ7^`I|S2XTp$%0k9q@#r>KSQ^adn=^R!> zfi$)|_o%|g2{1NxAFd4T_X&Ghhz#in#3|ebQN9n@8ge{x_;Ikkki|jBV5;jB%>s63gi*Jk z=6$l^$xGa`z19691gq9c=7oQS>!EF8*ZXKHW%ST-rQ@P4KJmvthM=GHwX>WFM}Ov{ z#t`LE^@V{v31d0rlKfhIN7OUlo}7f|(U3j~M?nT`#SFL}5-kVU$Fk>U+cp1W(j1zC zH+TPp)1!}z5YgV>%v5ei5KM(PX*e96dwgupp-Xqb-Zfa({_=?S&dlDZbN9`xyS|Gw z37kQbQ5WVTwJMg3M?wK(ub*&wSEIAe@fTv5TQ6#`vNIc^xeq^)lAuA8PhFm%N7rzz z35{1jBS!CAGCCtK9KD)!vRbnf2Szc!JShsV096i{hAm;(;-!elKclCqD}>=hQ=Hki zsMrH%!d~m+Fj2&cL#FEH2qLae`U}QV=G(+DqQveEw>O-X zL$nGqc(5I_D46y)kO{kv%sT>7p1!{{HJQ}0tyNhQgo;2*pk`T0UFi^{@tT=U9qqhe zB4W~2>S&30PO0NM^A?*qxJ^cIoA23&EWs~(|LX@WIefZHduzBF@7&pNq6QZ<6DCn* zZ%lRDqQ0gxaR`wL89LRg^Jyp0Z1mAKr9LKQU~{!dLiAKUtAy9~n939rPQwyZc|l^> z$_OB;_&CW(BS{N-@1(UuT5lPO|=n)k4{Aw{I5Kb`7)^C_mknxTE1hXvQ4^()9 zHMGtF+z~(OI{x@psdPjQove*gEBCEWhhx2mjx(|w!uWc#Kb4lTH(?qGyS4z2J%}&y zKYWUyzwDkm=Pc`IaqThpyVKyMlxzEKfeqt(=`IDo#j=+@a}#$~P#Z1qq3|8h5L~r6 z6@f_7vV29;O}PmkUEfaO9TvR#OgTnoxNRDH|8R-xPkSgG}2={kG^h^iXA}$^tK*s}v#}@mZkf z0F%*Fv&4ub>A%`ri3jweMR%B0Ev0QIZqyXY^@Dh&&|2!o_Tx;3NDluA3Rp1hY$DkW z-s*h*rJ=lQLm;3~LL^s<6nGu8Z!>(506!onuK!ehSY$ef+x;kn_CTqpXj+f($d3{b zyczR~m2%IsAr^F;S+c{AM&aGm_C5OE1kH8nzn0m`X=A<}XN2eX(cOZ_dVq0V_)(8y zGgdyzxST;VR|o7k_zPT?tz`UktB=@6BgU%TuhlNw)7PE{w@!cRw8N_jH{iNMc9N@y zy>9XzzUeW4f>q?!>#fh9mDzM@ql{5XJ#;pfUr5)sBCe5>+h~R|4u_-dp@EYbiK@yh zu*Qdyk6HANSRc{UcE@b;#2E_#3|oVnlPJhav@;Krg>#|MMrnWW{H^X9AqQiM^=A?;GY*xelAWCD*DhROkhw29 zI)EUl2InRo;ICI#x)Dq_?-PIYq>V{Jm*ja;x<#8}gqRH&io(eqg6P%m;R3V7LfeuV zB#dHLaW1WU$-v2{qK7u05d380v3r4aXeU+*oFKZjCvDaVqpr;X!YO4@n?DX8i704@ zx&gG!w@h`<5i9;hEIcz@aXoAAph3v1Ewe)8Jk0m)BS4iyY*`|_SSbzN6^< zDRBay4&ig|&W889k-oVQ1y3#{`V=sdR zFv#EyO%9@0lLjh^1k@UgY(14<@iE`#*S6MgCd_k`wIRSdm~W=Aa(Q#197|?*MV|e} zes}&e?<$5f1@DpDL-?tpi7VZipraA?F;D~UBR~1wta&i}@-HP6T20;Xi<+vTLC+HB z@n|V=!W1AFEU)MN5?3FP5w=V1FBSZy6Hy3Xlo&wsP(4IT7-!f5%C=-Fe2<3cDL{ku zdn^bO-1J%Zc)K)dY!+ReeymtOQ|@{63Q~Pe5u}44lW1e$zru5ZsC78oo|jl+=VJWY z-;}b&<=)Gb3*$+Z`py?;BXutJ`GGv=WiLP}A{bB?LrJ)1CQ{<{W?Ol0Au}Y5GymXm zrl9RsiSYH${(ZedMq!45vL7>WTE>3NLOHOo+usYTk@gm0rq!09feO}P6dsqInamZl z_z0klqKc%v)rWkla5lo%2%!kx7S{11YZR;x& zJUlncr$uy=96Xjwc51ev?KQRciiV>4ZDA)ncyTKIaWKA4$Y@{* zPgqs92Dc5ZG2r_FWSq%O1<^4YJSC+)Dr}|U1ci&~Q75ZP&$(9bK7pbw{#WTx4ha4O z?B-Qvb;LF-d?VDf;CBt8OWVn{p&4zX3|e0yfPdpI*yj#Yor)?!d}@_U-cZYClCXmo zN+dnK=(1kxMb54V`A_(^&o7~)9_eOav^ok z$|!z*YO3J_g5zNHnxGEcNuP^`GVonrG%kd8XJc)jf6j!HCTH7jZ&(8*?0Q>O250JS zh7_t?>)kypPFumNdvq}}TUR$c1<=ic(3X42UwykOOmpYiy^|Cm4a&M!>>Nf${N;p7 zt~IV`5$W2Yym5NfNL&O5{Otp~4=8CD9g#cySw65V?ra}hW~r#d@!y$_rZ4RDSLWzK z)cL*JRwUzT9b=C=u<=sQuV+QcJo4v#Js1fY%XD14P(ItX3L7tcyt|+wUP9TYuMT^z zRPtHs!!orv70d_9Z(6p=j`Jhdt1o2065R<)gu&)ne>sPN);VKPCUmWLo;h!DLpbNk zU=?@PaD~yv>4NlOkTJwup8W>+h++GqhJu5(D%MEUJ)}ssu>4IY%x$n>0r2lT zBZ*{s_16!;EqX?ELc(M5nfoCyG1xsTKwcp!lea6xNT(9I7wKjjcc^E(hd|aF35&nC zVEoQf-S64taQYTyg4-1B4Vy2Kt}Df?H3*r3Hj$M0-48(1NlYK-;Kz5x9Mre`QUMF zU49CoY6~!wZN5vJMol%#Cyi^l{%D3W-rh)^v(@#v&uzgM(yw{JMR*LDT(AUK!aOR= za9R(bm9?m+n%-)y+@iL65jMjeeXC1E=xcqZ)j%aA_VsOr=7KS&K@SqtdX%K8VTGYX z#Fy!(*Gs<&Z6!xwI5(ERc1RiQVaI0KTde|WV`TP%$*Wz`l0f_rU^)SpxeDIZ1N%sr zP6D23!TO>A7htVha69bF5ACp`+w%EMsZ4GO$lKzpjy`}!BXDC}nWa8S;5h6{WAv3+ zUuXwAD93mtF>;+qC^cYy%HX}*^DD#I3zlF{l@>^Psh}KSmqk#SsT4~e@jo$IxVdTc z+OFsQ1IW)nkg-CT*~V6Za>)E!b|}Y5H2CcTgaQX(2zc(oN`*ds=|%@!e?gMT82+x+ot+}WaUxqQZ#)FO<6NtIP>W}kq^HU4#*8lQBm5vAd|;Aa*s-e5l?te5Wg zymKi7gKk{_Z8|f0r2{K^1PVNG1N0jBZqxStgvhLN%6nfu+GSEiPol@nGR3Me2|`g5 zOdc&CoSEN#oiD)t(*pd+{7H&QfASKXuWt;YCIN#{U$~PPc|BAMWcjhQ*s3y{h4(N7 z_O%P0dS6Jc7_k45Ui_Vj2OYV#O5w54vtP7=(eYniy`<8hN6vz zs<;_F%c^Y_@L;U((NiAx@ZYw(B18qRube0n|Ko{wb>CQOS&}|mBMey7+{AHl0TcMh z+nu^Ir1^Wc^1&dJP942ug9R1{hRQ*{7_fP|ZA?(KEqLm-xY(MeeOBAa!ROnLrutGK^7=q z-s}%FH=pmlV2wLl2~gAx6cpY1zK@XWqe>?6jVUK5YpHxgxO zD&mtO!OiZ*plliD z))`W@ltPDGV7_*`qiaf9XSEL~LKw>dgLx(xuop$hT}snsFZxw9 z3LNoMeFrO}CSh%&ES9#YQa>(b6sLBS$pUtnqd58Hp_JYc3_TU>BZj<@qgHm5>Tm*H zv5tLpuaqR^~N)GaH%qXNP=jAreoF zwAMpsM}nvq+x+An_}(9Ll1$AQqyw0XAgp*6NONGvZfMMK5N^ToLwPN5tu@_kx?|hW ze0pXJG#uYW;VtehFw0uf3(QsBblUYirBAe{=gb~|Bm&t`0sHa)&oTreByN)@D!#T? zTb-ot>4ig3JIy1@iIs8|kUHwuG6#nIv;tf&x5NQkP{Xcw;UtBKt-gZKz_a;9J*{vs z#|JH##z+A7`h_E6!8FM!MkYcNH9Yzn*4H7$;|tXyx(TBu!DCC2hye2WQonT8Zfff8 zYf~6B>*o1m@kxWUKUAWr%W%Qm1~T+>RPzBVww|{3RIT11F|wUou{B_r2vc4#&NPOw zEBMGd9D`q9kz~W z6dZ)FQ~&>IGfo?XndBQw_$UIx{eSX|t4~1eC4Bb&J(=pNFR^}3!TD*{K{%kqk`zKR zKoE$a&C!o-^$vs?3FY*w7nH{gPIdL%>?Eiq&Sv|y*jwU*99;cY7dZ&u=IeRvZe$r6 zlZn#5jSRuF*?wFA3?o1L_-xk=+9iIdIs(L25>#zX;9u13tiGP^-!EP%mk9I?vxMpy zU^l#v!Fs|QbA-7OmE?lQ>he=&g_3!Y-BKL!fMi}XjaU!6mAymc9JjQ0(HPyCcN`M>1p3R z!b5yd9fJ*DS|Bii(D};<10*8-Lw#|M+L^v>)1Hbv;7x$=yyabos-LYrbfh|-J5eP- z4>v*2_$wMB zR#gk#=z}Ch^^_JTl;mKg_{?qUn{U=d zeNo_tmn2U*{N%@?!o6nbwEPob9ghd$t~viJ2vA+T%8kOiuIyUkL81jdNaJI)-=-cF zW>hxrTwXblb@WDPFT5Dj0#1l}xmjRgw(HMWx{&>@tJ1ZkLdJJ^I?er~L#!jFGG2|l zYPYnzX9H7PKt^(9Kd93D*^R>-`AMV2sR@BX zm5ZHiN6OXZ)*T@fOLNq2UoO&U{?QA=vXZ0wo!i=$Ii9moj#D@vI7w(Wc6Fm(E1!qq6UmX8r+NWfyOOW*<* ztj}Hj{MSugy)e(!7KLM9XL&^*Xj%=A?!z%XyOC|aR<^$C?+N&5Yb@Nr;bi2o=RqIO zrERLOD}$)LPJ;{Tg3QHjAG!-I_QHBo@rqs3XMPGZz6*MNZ_c*r;Fo!Wbw<~HMa6*? zX0J(=PBr+3b5=%nb$$-n%gSQIGYO;YSLCujX_hMqv3@EhDB&&(=lGQ%0ut`}5ewyL zC<8y8w;W>01M-RfkQH{f7QoLh6UFs`JQezAI1x6EmxaCLS6wxL0;wbFR@@n%o~|!O znKx%;bp08pHlJEuLs2OF`XQdaF-sf9m{xYs_JZDR?>^Nb+J8>;H}4Pa4I4wARD`5R)1n;GHU#0)OLSTT(^`%EeH&u;X4SR@HLQPfFV?}wne&|2Hd|5S#IMsrF z(>;f#8b44l5fq;>v=19q&tBpJRqTg?3Zdn8_l&7(q`z+|>1!v+zqpA)Trt)LPnCbn z@2^v&?Y>%@;#BVvG6Uad;7*;)=-!{*1xN;b(%uug!_Vje8F>K^kPn2WaHz(9F0+|a zjZmu&<6D-|B#CCv%)jQuhcfmnY^M2|{ptA7oCd@lWO5Ucsq?_!^DPkXvXlyuhtJYso^aE-1)qu*rY1);~PO>S7f)P%ZiN1{?_3SH(BuU-Zqp~ROdZ@Voo3OQ~6J~rG-N4SP6nZb0{Z}1N-D`!(b zAx;HqAfy~yV~qULA!DyPC40{t@pTkPkiK}tYk&&UyCT(JOp`QUKO3O>l!S5$K}Y)W z1GA0?RM*#2w?H!WX_<#os1zH$FSlupBKWF2uNz8>Zhp0m60%mBKPZ(4Qh5V#9$k&& zlVOD>VdE(tGO;?IYYyodspViFTxAB~$bv4fyM9ru24PwoN}N~Dt#A~ZRzoP%L`Po( za>+nEDrzLwzuInSf!F`rme6NMSdFh80bU}hZ;ji6Dnm=$rl@(trcm;V2{XO>{39V5 zCqDg0e!0z5PqNnD7NMW?{tBmE(#}WlIQ$`|peBTqZ$R3XH$YBh6hJ;f&o_txGPuY^+m}sT%9Oc)D@_fayct=ZP{efTO<|09EC{xRhws%lG%Un&)91Mgedsh^{qN@=*Ddc%|7%r#Pym_g}v;~eW6BG#D(z7 zV~yFmlZEJU#>aZeOTZE8#XlJd3hp4XCs+V+C;G)o3T1-MxAf1@Tn*p;3^0)20jqD? zK*$a~R1EiZKQ4xoK<^y_pV4D$Q4O|E>IV|mJa!dDiJmW2Az@N4BCwa$uJJQ--qqc@ ziGN!vA89d~#mzV)`%_NhF<Ag<`}FhIf=EBNH!k12o=yf) zyhT)jAknaoQZalgAWZ$qWTW{nPCvoN%N4<5{2)f~lf9T=hScG;%HSz;YRwXh! z9GOf%;B(!u>ZU=&%Q##B4cM-oL^o%ij`P5#~!!cuUt2;BN>t zCl*4$i<&v+Q>UZd(I-a`kDV@$frH1O{8vEP^F}jvjFQ%q~ zE}1XDHGJFERi`8M?{c7&M%k3@V4!1&D044c(oW!Gy?^25XR`1q0Fr_1D<{jp?A?Ri zwdQ0uwq9l+G3KWphqZF=fe4!Sjn_c1_C{`UI(pN02!yu1GF+!UFCT+Zo*Eud+^DaM+^I1%v@W`Fn z05d(F$>lR2$fW~4C><3U$VdslO@n}XU>C=I1JqtsIqqjc=LV)=y+&s3M`LkGLOayl zfiDPFa8moA-fSU~#7{vmw;vxyx^^;{i`x)qs78k^5zv|W%R;|>Q2lZC(N`tgDZ(QHV z0?+*>BUQJv1_52GL=yw5Z2i^$bItia=6ZHZ)j(hU z90Uxa0T6%wS+DBxFmwvJcNU4%k&6FaTkaAuu`kX(_;$?r$`P2tF6>b+U`zz1_6bEG zWJ3)D^1JM>h}K2`Q!pMK5b&`c5;*7neq$=52l_W*z5%$_e4m&$)wqG~Yhp67O6G%g z*y_0s(Jub#{ZQKdK#WKb@Za9OKfhhZXo1Kk|1N`R!4o%q&HPu6kMM}&N@~yyIy-K;%u|g;9jvt~ z(d~KLy`76dp^|Ok_|XoeUbaFOW7AFMUUldGX%20bpl#zs<+2*UL!2`aRU0a|?F$R%_bFtIH@1k} z0$3FJLO(03D5b={w>E0J8c99t2V%D}G2Vm3L0XRQWyxnTv(t5*d=swK(}%(JYyaZw z=2iclK~1bg20pnZf`3#dp5f zo#K`XD96bybAaSQW=K^quUA+>1`nPqR? zl7*b?l?)L_USXN8xV_EzIDO&lH~1}nUi92AYuZ_x%E*+|!T4e`b!JubrZ08}?9gv0 zIG#pCtD&Oj@pQiwzg zvtQ}B3$nNZoz`-v=Z3xH-Elx8c@79SQlV-CnIIq^#Ct79TAv zyeYJg@ULE;En+1;Gw21a9F~wvumzNX(5X5(tiAj{*ET3B`=&Jh(L=v4WkB7}J{2z9 znFD1D<I>NxfM-E&2W^<~JwcN_tLy(|M^sT=Qrrk-b+r>c z<>s+B-5741OktG-9DbaT?dqc*{nQeR!JhBhozif8FDJBiUuOcV)A23Qj*Wdgd}Q>d z07}7#@qQ9VTle&9m)4lLUP(_|z5OU-&mC+S`@THpp2{XD^h}k63j^%k?WAm*yR>$B zzBAkDfZsXUY-PWX5a?~nY)xAGNVV0|4WF~tV)Qz*PfSDMXjwnbc5NoCq@8D$DXSNt z3_Bj!WGJWzAc34oryG=B_1xWUJ7sD3TeXC{;iuK6Mi?;GCc#>_m^c82j7dMs;_v2IhijNG} z+)Q&G>1;Ti2m@=%O1{|mL8En1i+o{4k zwpJjZ=$v2DN`}D;)WHo91+tpn<)4}i$=m4@vs2tM9K{o)grznfzo~~h>W^GW%k0}g zSQj8V7S^Abd0ClLNuyjAn(gr3Dso0ZHRcxTDj}gc`zt)9=}e9?z{d{&PR_PU`Zc~8 zVyqum`pv^pwzQ(@_;eRr)pvEGDCtMkjG5SZjR>@Y}-p% zs3$C&B(1Daoe;6RkKf2d4He%z)tt8bo7P2~|G}$fPb`TOFbn8_sl>PtDv1!W$f`{< zj$Tvy94F~vin1RV$IV^XvA2y`jLAK1^8ICKJh%k)5P5b-7 zHQ=g~KN0Sqt@lbu*RXo#eJ^8NR-laN&08RPRf5i}e^r`slUqdqNu7b@VC6ml=ios0 zLq}O~12@hn+;KX~r*whIyPQlTOLCN777jV*0yUa(P6};keK2uCFm2Qp5&=0wX%^9O zCe+9A=wb@?X7PNmYBEO}f0dWhttQ(Fb&Yr^l`c!(QA$`0d-;^dVu@e~hxJDS<8S#M zPy7#wv_W{FD)43-5SYDy4~y1GX(!cJwm{lw-ZC#IJ)i~EY31(p)oa7Ur8fVHp*4t| zXm@!2GPSdBVgPv-$Hi1qTNi8{9~cjsWiGes&BYyro`)Z7O!Xc_5`I7y;gu9Df}OPA zLA8+@_2;%b;KweDMM2{Pq`L#LhgMYV0JUW|ttX9KjZ5%Gf=+v&z_e3ekCt?CMhSSB z(u;da2A_*THx>fy-FAnTl2RuRcP^TlQ4wBYHh!JK9)pQc?RjSRgo0-g(&&FcU_Q zl)F6#MZk#|r%8~Xu4a6ikhTEzw0e)>R=`wmCYS~|S{>|mHP&11=9REAxJnfgUd z9P%wcaZh@fK}4j|>RsaxRO7(nubhY!FFq6=1aU>C=PuO4vCZ^RkLyh;>wOv`G~ZRQ zGO#us!pzr?FOk~)Ku5FAfrnrXu;)Jkf=+wq4Fyx_o_tM?->Wanw9Sl^b%99ffX3rp}u(14(PP(p9u3bq~;FT1(Ih zi;Bq60B5&5OK^73OI*OxDK3V37<=05-@23ej{$NbCx2rw81eMPI#iQhYW1JvrluX`L9^Wr=Nd6N#WfNu0)SJHKPZ1&C0A<$aDWQI}n_Mv2S53%WJg}Qjl3?)8ihP zEe7wZnT6M;sfH)h-e_(pmF}D?)LeS;1Jcr=@SxE&cPnQAG$G-&uA-C8wu^8dyVd%> z#gnAD`=t@?@~-*u!Y)u7n4Hj)94R+|xJ)SGNAP!7>2ex?6s%LNrxIzTb%hBk3{g9` zFk=5hu!q;2%n#|^@s9sxz?#@T?+o(>I_M%G4eeIW=X6!x%Mi+$S{0v&DFx!Nr=Bl+ zH36094RSk`RyGnW577IB?w^y=@=F7)Tm#ELAL>h)pwd#*ET+{@LyMGsL-6SHEQ9A0 zW6{F_+5bG|DmCOW&7;3e%+1|;>9V$z(SjNiH6Q!}V8}|?*dRA?ePrL@9CP&-XYdYK zHXMk4h|cT_v!Q?uXC&^JU=_Qp>IfiTM}_8B&3xncoE?J`Oy;b?wM*=SX{>TI*4k?h z`>O-a%%2AXM9@Tz*FggZ3+#d19c>V9Qn(0r6xMK@wY`06KLB8Z>L2n^LeBg$lr#8! z?{m7W-KBQgtMO1Cl$oQWM125A|1iLS%Pg}DO_ks&;Gf#>AM0`-%6#S(T1Fv;(Ud<-TWi5RAd%f@m_z&LMjGga>7UPO;2Tn zJklsopPXq}3@LOJZsL9)CYkSq4hiMFzbAx)l!{LmeYfF+qkY6$Uhit$vDeF?Qfj3J z3N^!C=_nx+cMvB=C9tJ%)8h~>HXz{?NK>Y1>mOt>AQd9O*&AtvpGnYUH1ZX zdb3TX6$e$K9%vVMnhERbsjf_16J)aKoX_$Beadu1=&E}|UComc7yyheTfu_@Srq-! zOpUCQ3H1P9E9C+gEY)hPK=Z=g2nilMvxzAJ~K3l9q53j_14 zKrd}ei2qv7IdXIN!eI-ad0d(TZRo2{l(Hh01}oORS%vI2K<%L)Rsq`4@C*#!<|PiS zPU(05NKq~8k`wl@SJFC}4qXUX8ZW`IaYZ6SYk_7}{_!kea-9Y!2p(@2OZKOryekxAqUpF;z9ud1MJOWyx8_BQ%Vx@Y z3Kif0DH;yg&pzATJyZ^*o-XI5TtM_}3u+XV`1}E|5_HxqGlLSxfXM5T$JVxlkgp;) z?7{m#35^Wy)&Uq%wev@8;h=59xJTZ;sjPraH_s_o>cXRv?a^ku6{_u}r^eKFd$!WPf~ws0)3Y+qv<2y%xjYlo^JhhaGRKypn&pa#!f{Hvk;{Ou~bZN!?B!n?j4$41MzdfhXLz8GuvO0>4?sd{(> zU_awqTx4)4ld4)}DY8$cUE=va}@|RT6u`4J{*R|xd?7e1=?nR@WxDAZi zKL&HzWJILk^g*Z|Lr1l84|-mfvKPv5DY0qq3VwpZ!%Ea-lHihCAIll7r#GnGgS zcq88b$yDLvTE}-v#&`7oJIifCRS*WtFX`{O7V9w>BO@+B8__?IR)^zv&+~ZAb`_)2 zQ(_Xz(bDpK@b~%AJ>N+a4WUJ z=2VoG(E~8n6DH8w+FPCDe`;!NKEA~^B0gO6NbJ|3D*OFuI!^Zc1jqxnsPT9X4{Yqz zCi%dxZAK;Y1n$EGws`P_)m`2YfQY)8!un1>`MIYv8dX!zVtPt{k&}XBvF5QOA@<^u(;4f6CVX{_LtR-5apgS znm8VQW41WdXlXg`UTu}H@hk3#D2J=g0<2ml%Q7@xt4Y-Mf5y#{_X2oRa^HVsw2v*y z$m}n=1MJa0ljzX{nS03BM(8_UqSsM)#}QbK!v4T=b}G~7b{TQ&AMmE4L*a`?pHu04 zWVyrWz~yVzX1o61fejEmC=6yGI4t;akUH1I4%jj{hxSmz%RJ;!9V#24`ck?~Dev*4D_))DeqF0OehHJ0?JJKoZqfWxd( z`?x7?&dvTFAAR{g$9ij!oqF>GY-n!F!g2NU6`!S!OiL6p*@AO!Iw)D zkV=Cigo(c*?4NH%Dp8acZfJT~g7Je({nXgUx;BO9^Jr1^ACR>dXwmfPxaCQDMxEQX zc3r;pYgYMj6YClRaX*uL;z8)ZpS?SKV{;MDIvc)cjuysloD^5g8Dg#~i2!dO)`@O0 zQz=H8gukt`9U5j;2CDY&-Syc_bHf-BOXZ#w_?6I9I_6LNKc1XRiWZVh&eEpwrV31l zxoDHhv8OJMl*(7^9iR5cAwu;J)@XTK8x0D*6qX~6-TftXZE~t<&1b&WhY3;Y-euqr zs(V=M9cG@TROFQS*yt-spHP&8X(IPi`nKWT9X0>6hl^sZrj5FTJg&QM;_ol*!}IKi zPHh~Lz!+jA`md&*E8rNhnPW5Lu=ei!9^swR*&zn&AJbXte13Qfqg3cHF7qHA8%-KL z#Y>@O&J7oTa=ON8qW~X#N(|ahfFQO0u2PvkaejEj8S^A-pzg1)yGZbLCvE{>r=}Bx z6l@!5Uwk1cw3NXUk+^;#z-i}!qVKZ`KR1C|{^wLRs|f zbP-O!{|Jb1duqJd|J-&ySXBjbre`sSJWf{Fs~b_v3S?StX^-^NJz3fO{lCgO@MhBE&qw3GJHJXAYnEl{C-}t02J=ZP(93qHj9OWDZC7M6lW%%F=I<9$=CG7>%i#85d zZgx5V(nE^0vg@FZ7V};qlG5S1Nt#l2VN++t2^K?BOGJ|}O>qxqpOl4n6O~RGUo!Ah zEzZc(?`9aCkVF_v)Chc+SqO{u=D5|)!II#j2DGcCXyKZ# z&?-L$z4bUXwOe(s%^&wazgT$z_{E#b$9}OQiGtEaYU`utVUzhDpjzy3kwPjsJ1)7x1lLG|Z-cYZuO8P0RT$LWnYM9YYDfKVvizqpaIRmV{??V7LuyM8Q&AU zK{D>{y@`N!Vc3gngNvy$(bzw;aRNt?2kJo~jnxLb4%@LqGc@mjhYlqFZ_8c?9wVk_ zQWOv8YQo>5V*>w1x$l7%!(gO&28nWz_}aRLIsR@bE{ZXQZMOTRvtVZIS>xxW7sDbV z9pLS{#j5Y$E6uw2aE;hjm=Szm#kJ!7 zfrH|f_Qsv?Dz;>A+rh6J;l^^byQxF}`M#RWzi!4Nbz5DA7duz8@INp&6Txfy5kd%V z8yD2WNy~YyDU=Oc94+BpPilOPPXs$nI$_7A1}U* zP?o&Sk_&8JueYsYKU{9qRbAw0@~G*KTwB+ZvB?}pfpK(Ch*hH7$wonU=H=lLb~^Q~ z7k?PLytbF~a~c5{E?qjLh1TehL2ERaE}59DJ*ZOX>wHXh07Hv8mi@9=)@O@ZrYd!W zbMXTc76B9cagRmlhfBc0o((x^l(di&_1>D`x)GGt?<=q!H1& z|6ACF*3?Lb5&ufX4_*7DQvv!?S6+c%*vfrA{Y=OI_TlvLKFFfp&>~Pb;Q*&C>Rp#- zU@RE;n*BU1Dg6B_w>K9IN`I4_G~u`=Al!h#zI1#bl+&GU%m$7Cyg01!PO$~zrGudU zk&e|6OOIuAe~|2l2Pp$9#Y*m~5^%5aoBmj98t+dQgZ~-CeHtjehQaP9&2SXm2R>#X z`F_Cv$JSRsMcp>-FCrj~pduil5()xJN`t6KD=n>bBPqEE3L>Hi(o#~AOZT!UN+TuR zDc!L2{_h_wzVG*a|2;LN?;SJOTyxEgz{JqjAL+E|abSvM$=&vw+73e$?p!?c3tV7@Oc!-U0Mo8K%9IcPwFCl_`aQDt$dL? zX3h(mvaJKGLdB?IJ~3vNvB>{Kh(($>{R)0KNliR5IMSuF>-;H+(m#Ps>9;B~tI<^r zwRydHuR{89;EepR66r^inB|39?t|Ao5=_l3-dxd3yicRy3e}~XHoF?TG-RdFQ~rZ@ z-xseO8F#v*m&fgRp+9ARK6lyMC2umquS!3vzpB#-9;7y;-xi2#{K|Mxy((o~fz-lM z-lQTnb<@M&Rh$X<@~O=u7mj^DV0C?L5G9-^K^e8r+PeE+`XnQIr+PAzT7 zC2XKYiZ3C2)ei0v$tRKjASPj`iR;&wO$MR)syMbwky=iY6T^p#o>LcW_`&&`%lnch zog=-W>-hpPzf{Si+b+`PR;b_jVFNCQ6QjBPC7-x2 zuX#`mv?0h+6l?0yiw|jo><8DnkA_Abo_=r9;}-TXSm!JVGUd^9E3!Mg^{JM_L@u0H zI-dOnq3Z`a7S@1=%*TNP3C}fG3ww*!>#;2q)xn^ULA#a}hF?QgayF21lQtrQ=~HkH z97Jf$1Kyu|Bx-o}j+`i;W03ER)^!gn&t_KT-Mu}ma%vM`ohRk^uoMVS3sr64JuSLp z{X-pqMVC9K;pUy~+xRliUqsKoYnU3N5V`E;H**nI_@Xm+0*_Q@fT9Y3iyCVci|sDS zZcP5B&2|>`xqq8HMtkDU3N#Y$7JpX*?$cuXh0dr5{rdJH{93EBZFn7h?A;D~Y2kw$ z8&V~|t8249KP&bX^O}gihf)wwXmqTGR`Xpk1l@Q5mMC~Whz}g=MN9stDDBM~3EY5yhz8;G{EYJd zu=pUXE~^kVCKof4816Fle;e2C=rUpabIZ{+t!@b&ZO>$Qo%Gf$#ZkUj0B8_Of+lMS z;9d@&FIHsLeXv0^ma8_PKBVzN2kC~1?BOojo?WOI2Jd>t@hun%1fu`RZ~Gs>NqFtq z6L?`3%&6JUskyzCJOzKS+>_9nDQoVwmtHeFFUbt^m#;SJ$C0ysh?Z-@f{jF^(!;6t z+BWa=N`w)YDl0_$6l1NG=*?XP4(NkoAs>eL415ak`B2pPAC0Vl`BN4a5{crG7q$D+2CoN=h>u6(~cEO8T?xaZVN=Tsc&Ps`t4A=axBP7Hg zVLVx$rIk9n@&LM5BM?#0Qlz0sMpj6mX4~gt;E8g6Xs?vhMVh`+c*Z@vLQ9|^zzXSv8;Tj!^cU4I)cDU9#$z3b*=&2Ncb7H{RjjD{@Q40s>Ii&YViCI6$OxZASqs*@*~5-%})B1Q)d99X=0A#FSpTX+vQUv1)tga&#rUqUu`hrOBEg>~Lt zy8UOvw=XYuo#(tK#k#cBi)|m+GK7ex_yuJYiAL2Gg`JP4-B`Z4+Nx}QXS~|bBHs+a zV!+@1itwjHa#igwasY=Ro0s~6OA1$JxAQI-4H<$|Iea?xkO6VT1_0=^^{TIc+O7kf z_taG95uP|sAkSf? z8VlKU-StWw?tl1m0?Yrj2~@BDHg&8H2T`YWv}Bq&#kHypoUXpa@l1%wU<|syA$Ls| zZ>-naQZ|$Zr?p}$>y{Rs9gDa!+$FDe_b(lFi#6EFujHz*+nmF#-Uj5P4XBKLneAL^ zVAFr$m81UoGOZJi$mdJCbeZQ$gk`C!D;V2{lE7O;i< ztx^qK8Du{7$+(mY%dTQokrYrgqF(Dax@qj@qgd2GwQS}Rbvq206m$KK5MO*a|CPtc zlE4i-Hyhx9s|35iR8=m;SRLc1R(BCP(@ul@2N~n+v7jUbwMvzthmzB<9h6*PT-U#* z5dOPOpsgEN%=_T{n-U1%`79s-1)OU3pw}v7~?{u$t5^~ z2UmDo)n6MfIxQOpd=YM6z7=vlNItt#d7^_j-bS^59iJ*KQ@iv>p~;z&*#4@ouXN~s zT;Yw?bQ(VA$i!IIk;_AU%yY}(?v~|8gF$ZS(sZ$w@jop+C{|=H!r<2@>EDi({VQ|7 zWbOu5Jzk``dG*PuQT+vkri#569WNPbe!83XP0&{Hg;TS zmUeJ@`(!ZVivZuO5O2rD7h<2G-(vZH2%1Ho@c()Yxp=fLr9up3J*RxGKy>RLz+O;Q5Jz0{C{bXdW{J^s zI)~}2me$}$m^Xj*e?|C;N#|vMZfN$q!Fj@)70exb>Cafb3}12Pz}=5n7*b%yK?;2P zhqlvqev>0U@2wk&{4;`=PmJKsyVRU#8CFlHU%st2^nT=P6~he3Z>ro-t)Xr`5qIy$ zWGkLhplzUx#>#-w+d7tkZ%KY-AO2(idI}-?#{jWz4rrK=a;-WTIcaUw_aZh)hwob= zBCVB^4^iVjko$FoUgw7z?ZZEY!Twa^T*LKyooy-tXXl-E2lmp*AGbUDNYY!UJ-d%| znLiwn2P`Fo>VK1Rn3j?5799^B2k@0wrbMdNaYjvUs>cp`IdRxctD5#UO7_x&3F)1@>QtQ=wL2hpkDb+uaPLov+U)^2S)JJ zcm&Q|v=Ih(W;kXhyla2ZWa~O;wJcRPz?qPO~g%f=FGZ6{%Y?eHU#kqWe{1} zh(6yjI#@02EISnM(tXfZ7ybDjWqujJ&&&+Sv3~amPP^OBpj4Hp4yzBh&H$|d`px}W zfiAv=udN(_N^72%5d`E$n@NS<^uw1DeKH^4lpLiFoSXLtz}hBOr=^&FHAZnI01;5N zAI*x`Ep~`HW^<1>Q2<+}D=SCxYMyFoi*Q28f8_YZ@D6M93*DXCxyJ&9J=(#?kWgQs z6K6n8+jO(rv*wONzdLely%Dd%SOBH@{%&W{R(^AnSz2@ZigK*G}(W|4I4-mcrDbqyn-Alm6Es zGAbhSk*K@W^I@;tm7{7`VdGV^dW*Yz@6>4PKQr)(xljgqYr}uD6T_p-@ zUq^55J(u2i=YQd=%!e3{2!G#KPI)WRml2puZr5uy%O#`44sXr9W-v(Gli{ zStmfC#_dg!?CT6`i*1e^9dq&Pvu060He_yTC5t{$3t90vT`J7##FP05-N-R8ACUb` zzZjxQFc8N0fq3T^D&?VPxCx~Ql{0e99OTuMstzikSinLAa;)9c{kOWM?8P4DL!i*H z^qF-UU_PR5>*f{p0jC=!LORrwZBvlxmI|Oj%q1fFFFhXAAw-8?90ACq`cwGEA8)HF z?a7V(xjQ5)o;8_05@NmlQx6sxXV|+5gv(53r0@M(%;ScWSGr#v-i9=# zZWr@f8+VL-_~4QZ6hN*1rcN1u<)Ki=3qcJPK@GVsGFqI=UK3f+o3ZE8s#0wM4{zP^ZEB{eaFM(SkzP)x=S%|ryGtotai3apZ!WP= z0C8*ZveHeGd3;j*DEpe3OaA#A=fGtZaJQZ1SnF?#=#j9I)62KPm8ubaW>q)}{81VF zq=p@=j`^fBH0IGc~G80U<6k928#xQnP&%;zFP z1zbX6Av_3*soOCM1#E17YLA*Y4ZlR?&1tZV&v30{1UDgaPJ3 z=gKcU)sp zrpGyfZ+P-SV!$mfewE(YD@b*F5UIQ&2P&4*{WJI)%!minL)htbFq_C!Zf%UiN3bZj zh&c}@Uwrf?LrwzYztxRhIk{2|A;+K$fO`j?Ke|Bk@SR^V?U`(B#E|XNivN;h{7^4> z?W;mW|8s&hu+Aegfq9C|Lkf8C?MZ?WF(G~j^UcE!_4R$Y19fWOTGtL+}Due3Q~1)?ZA^F=)?NJI3E)uKjXOZ+Kp(Czk5 zs^yD6wJCz!Z)-l7VO)9Fw!tade?vo}AP}GL{BGOmuJ=H7Z>j#?WRVxbx?bp`Q$zZ` z{l@O~^>l)g^evAG*35%0ZkXgi_RDFMk=dDE-9Y^iATU}aO9?*8Nq!$t$D+uXmkyVK zE@KG4w#BhP4@Nv|KaFe?Gu4*8QY>@!fU*oJ<=IUPg&G-IlexAnfPHWh-M76;ob~3SpY``A>;=5B$&mfm!A*oY!0>b{UxmuUL=9%>@ zZE~N?qzc?R_(8F>X`d&Ec2qzh&)dOM^aZEusyOnYMU5OH4iNvslO7L7!&b!iiB<@L zIvh?aH=zxaz*-a&${c3l&0PRZWokW-Lrm}@K;kGS8gj-KIogF*mA5RB*Ox}&fFmHO z5vD(vaODcmk{ZyT2)G{ea=Jah>wx2Df_LW_umCn{s?d-AcMPfC*Y9y37^^J?c=^g6 zYokI6d26k$H9Okl;u(RBQ{5aQ240!36ij=?QYQ-r*L2^sbS0oR5Arhll@W37EB{QO zj|g_bsZKDrTEHtXyyv>X4n$vRbA}x!NKA|GKS=CWma9$V#6YGHyiJYZhqI26-pJV| zO2|zwsm=A-!XEjPJ!Oj_wXxI}I{2ZS;&RCTwA==_m4ha<%ypnMS4F$D{p=ZV)|{KV z0KL*{6dzeg3b;f37tQB+zbiw3ipn2E6#JJaoJPd3vg1Y!FqoG0Ojl!ZaZ{t}79;}G zf<$26filBzS~wuCd3FjX9c``Uwg}fwv|(?5PTb@k3~Zl}>!q!LG0^~Lt+ZlS`uwu4 zAC5bH@61L2??^CncC4kPM}p4xZPAg5KLgrmpDfxVlGEB|nEy|)igs9=pl<9*C9Mx{feFI{(h95wR*BfV1^>wX^o`#Z->0=OE-AEx~aSUtgA7wA72qOjhy-Y-ElQicUkc~AWy4&;Qw>oiEN zP08TPofViXnGJNS zc|Q9^u+0)XZQ8ZRe}~{lztLUW$m*?5Mvu}7p?iqvfpt^WyobP&GMMY+v1-n?sg#_Z zr{sH_j&4y9*oTA$aCgIfXUvE}pdvqNP)absg)6K zn1A{0&LzQTnLB@}|5pEy?UeAh(8@l+h(5;seN~<1km5szSNul2)wx%&x#Yi#$Lcz8 z$;v;%3V3P1vBM8qb-aTG1T9wQJC~OPNi-C7IU6_AS}ZM_*z(sx&JrQukLwQzj$ChQ z?~9ZkFzk(8A3bvX*n84o37lOE9@fk72&>TmS)K0U{GHl)CHymo#p)9X0OSgv z1fnY$9}0tji_&dUjOspwFnbR%&U8i3jLKYVI?&zDy*BnDS0W%r(O&CB+yYZcMV})r zF^Ba=vuT-{Np)Y8Y3l1`FS&=KhYQ(5`o|X%{I-4` z`#n^IciaHA7@g!sU#6g4!~JTI?q~XV<_R8kCipKr8g@cEh0{=qm8^tJKEnY1F)hy0 z!Te|O)?p?l>Gt!hW7^f)I0%3DlK>51?rz+EySYcr(7M6Isw7h(O&hxEWS7?AfQH$ zwz;0JSLQg3|6mDJ{uzpy&>G54&dt&UKu9qv6J+k%A_!q~8rrDG%kJ}6sZ2ZV!#P_y zXw|d;6npiBxepL52@*cK;pT^3FmrbDGxpLTneT2BRu0gRVCDV71fcgXQ;0p>?3+Uh z(V5?6zxZIZOk7R<@$Kk~gQ8(5({RE-p;W1&AJgb*g*+1M9{cEG2^R++GIdt}8Ia7H znGM|gFTX&WSb;f8JlixQ|Go18Yo9X*5D9}FwQL!Fm=hh7&O)dLv7m z``W9%HiH@&M*_eq@*#AUaqVeecX?ED7U`Kxmyi~{ziKyIZmYA9pii~gT~z+22Nm0H zDj}vHUERwv+h*yG=-RgzSnJJJu&}|E?=e8H_-;I877!R6$U*NKQQo+6*oh)eDLb6m z_X-BO5A4U7_{8moNIN~Y1J1(h4qpNmEc4)`1?Ik8$WhOik9;652HHRq|3o=`0%DV@ zWmI&9FeD8qRMO8lO=+){z(T?RoKjk$vZYz34lKxx7Ohi zL<%^WV#C=`g*rbT?_Db%{^>%KViNfHw-yfM(U+^2Pl1-CHX33viooLe+9)OEgeI zvq8z&lWYx)&fM@Jn9I{I9k6Z#5)C~UNiPkTl>d5Nz5YhAUNRSNWqs)~Olj658Av7g z0o%6J4i+4)b2yt;1yY>}cGg1pgyl{o6NmLb4GKHgdKJHjOf>Diw`lj~uD%`}1?%gB<4uEFnQ3j#(VDdpXvGG@qYv5Hq zMHK>i>qHZcXN3#f{-%SHv+NOQ1j4+j%~#v+5xp&7*<7DN!r08L^*pGOSdIb#{r5i* zoU+q7$$hd2fD0-nw~|!;P+A?bSy$e?D;kzVacSzhEsV-FN=w)m@oP%#kn=cqf7qaM zd2}{i*yEj|y&T3B{p(sFNt(n?rW6P1)0|w?wX6m1=Fp})XF#{zIHmqyK z+caR~)$XxExe-z-g~e0|$A^p99FzM*5tnrG1Ym}Y^kls_2NeoTn#Rqi&b8VLloVz{QLfj^7A zCm_tRy&z^TLJjkv$Y6UBo9r%%3plji#NzQsc$2-W2nt73Sif;EbAQ zE8%g(u^)tX9@ynq!3z{dR@lRoJ!UE?<11+N(grXa@3;@CX-hgoy2YBgqcM7y97+SP zV83$#HksJK%S$jL;#w+1tFRd!`DnZ%oN{G3Qp?q#XR!=`xs%iokW#|-TdnUFfe6tL zhjzWGXXc`w>u@B{jF-38^`HPcjxNrD(~^k*?^I6EcMsRHf_o#WpL+zZ#GAYAXvHg z9nROP(ID|D=z+u7Ut)zs*;+N}mHqwwyrXVT%32+t;F}RXMfWrAQG8(@o+1@e}&PsaDOo|B% z=QI9`JLtq7tsmhX*>!7$1Zo zXA&A12Oe&9VeFC!*+EmWwu+@5=blLa>?Y}a?jP!C_~bQC4eXh%lVO2_V_^CmoByRS z^~Y*AK#0vFbeEY*@BF7IJwHJxjCRSK7+@#v!G{$Lf|o^yKg2)OeT>n%#@XozhMehb z2vwQQqwe`J>;jn6Cpl^bIxNZwe{Gia!QSy75mUnIprLNpKg0Gz9M>! zgE*T+jpe<;Zp?+>nDCtgD#1g$qMUaizKt+X*|XUHkxim9{9eFn3FG$0&CAR+Omv9H z@P|5|7S=L1P@kL&%rr_Rp+X;7(pY3cf*v`zIczZfU#=tOptqa_&`QrTf!5yM5Qiz) z+D5+|a3onj?$O>YWbur63GP zS&7h)x6o$ZI}%=PJhNN5{f5=)Gr5z_R`+8eR*X%v58+dOwZ66JOW4gF!X_G4@#uG; zP|4vWTN;0G`{n=g9xJp_X863c^6E##Glwm0Zp-v0XElB+j=u-urBm@#CGE4eHMWFLw-vzW@;6M z2~2+0cH#vhUvBz>WXApHFO*$!OH_xqkZ_h0%`mJ65v$49lEN8K0yJ5Vr3R^yB$S|% zgy|`8onCN;LDw4yP`R;cD`yvHb@8p>lf!m)Ef4K1-KwD)-4MU=0@! z1TI5A+tWkFZC5RT4hyWo-8xno5&*4GQvhZ%2;$@{j@ess*s2v!{k6#JJhZ<2zIWPc z<6Q}tWm!|}_m?_@>QJ6NiYV_(wM_ArU4LEP?vRcALPB+nKxr96(;rh*`9akuTUzEW z5C4(25bvX!sGs%H8Y@o|Buu|+10laE%iqIXo{hb%!>#pnG@2q8>oP;Ac5-e*D;*;i z{u6ciT|(hMYyA`CDV&{$y6JPiXMQk)GXotf+xTBb5JIz)-GaSr038oNqHK5d7t&Nx zpJ2MHzbX_|t(xA_F|T}QYX;JvRy~9@IddM{TtV8H&#^i1zyQHn{sH_zQwe0icd<7c za2Bd$69^SKa1%&J{`{MeXQ(*F|3fV!kmORMtBYXcXfgL^i9?r!6$^> zTjUs<-X3z-{%;^%v9CMY4`u30QAl|#>~!{WgZUW911{Cx9dN`PF`7_9@@M;jZmcF$ zVg>S22_=hh!tL>nz~)}+vP#$gXd_ja;L4ZBhsqp0n`N!~m_jg#dy0|t?BVW6>g$Xd zNu8_`Pk8tcIB~Z*gD(;OL?YshSoYJ0>LB9y+}FR5-F3gSvuvPpy*dVuQiSHtlDe(P z+Bz7HrlFpr^Jyi31}2&+#b~47@sN_fsWi#$fsQ60h4bJH6iK=qYzdTPrBraj7E@Q| zfM=Yu`WTlCEpThYYgv}Uk@bqo++uXw_eWHu zn!{_<&$_g??k~9AB>v_2yz*rCU{eHG9Gvb{vj#{RhdoefL{D*pqI`W#cCAa%g<^AV>yI;AuZp9TC(_-g){7%P^hN7ag%I)e z$bCO}ygr&#p1Eh3d+pnPFr(LsQ^Oz{6UZk~u1@P}?Eu{cZg3Y;XlE1!k(l93 z2phwqBXV*;w-f}Z(;Cwj>1JHA4Q*h08u2p2r71~d0V7|0gfq6wS`|4#*>QdpxNCX@1LIL}>V+fM-V)n9d4|W!A<3`_!up z=-Q$uSs<+2MFSj%P0E21dQs4%V`dTf3(o=GgdTS6ara252k^&OKA)Vq(rlG|hI~>?*2>xqG z#;wRoOLlqL8I`}P0p$lnG>7-pXA%U8v&;>pdWm71+K&rM8i8yLqWQEpXVfF2tui?I zW>b5W!6FZ~f<~V2CNm1knzecU_9c-m(h%!#*FPGT{=4pQN`mKMdk{Cg$RNwvKjR&k zun_jCup}Q# zSaXrvG^B1iPNMTN7Of+H7vZnco`rD@0V@@duS{?FWqhQ4sb(^7qL%!R<3Bs?Z_ip%zk|yvb{eE#%^qtq0SVx1APyn4D7OGPPAF9j zMVGI$PSk_2F?T3m7(ZR~{`YO69pk>1RTg|r%RjfssHNA`bnw*2= zAF;B%Gxk<51q&{(;G2(>7_0<))R_dt97Jc1xQ{Z3nvfRNF%6V|0Vi?N7l5|n;1{N6 z^ivC8hT;TQsb_kufPe83!b%};etB@o{0$zgk1ZKJ(yWOpL(Tj^QbXVFG;tE*SF|Oa zpu6I9Ta1FFVYZ&lc##9nryzTa3kplg$)bDM4cufqM;~AYe~fBztofQFN09;IVG`EP7*{bEtkP?4L1zUo;n+t~4e!_u^N`Y^+Ctf`D|fjpc{p7jX*IWsH2Ow&_GP3In)k}@|9_Nre`U{gyRM-IF~ zkE6sU1W2tfWs?GK;`U#WN;4EIAbc*smwwDWWJmayZ++)UFffkVzXU~soTCOT2+Z0O zUv*fBbPKYy;+`izu_zKfFD7`j%UzB>22)o~X+Ak=HDTu6UAA<3J0DDwdii?e&0d`Z zN~k#ehiqUEn^)!mR4pma%m`Ik_mD_iSatuIexljy0o4(s_EoVuSdhT$p2mUMD&RgE zn02xqP0F^_?{K+DdKL=r4Q*gk!pI(|)MMr^-eLJw9UTmm@Z^?sA-WX&$WzpKse<}~ z!aIo&y6;P#4q1}nB`UjC>9KdJctFj3*dgk3l=!*2&%HQ$3VE7V~%&b`NkOxOI za*)X;^_~9hXEPu@_C*f5P(GiryvnUp;bU3;b*;-G%`zV<7#_;q&>1lt$N<^%vT=+7 z!Sw}g4I#3CIYx8h+U8b91(4LuCFjr+ruhUUlpcC_Nnm62^qFlS?ggBgaj3q>W_U12 zMJ|?t;#Eg-$!#KkuEw8QfyLi5-Ar&*#$t;M6+^Q7&!`{85Up`%tQFBn*Q&j+>0U-P z+);RipCxc)XJvw>Vw+lU)-13+#9lV0Sj$B`6hr%+GK*C3klp#Jg~`yz0$(dn5zJ`g-G;;zY- z4~@*Z$EyB-`Y1p(d(*QEn{&GtOM9EK+)oNhi69M>ffa`q(Lu7cGv{o2BW%R)?a&>Njac`F@TX5v@x5nh_e_$6uZ_ScElt_*wPw& zMqRi)=NUWq;GIo02cSdoE4r-B`Is;h)6?sFjEvz0A%dvdGqAhqSJ_Eb-Mm(UkL%?= zUO(o*ABmjURzo2h`#mS+*vV&WlDCEQWnJ4cQDwI0W4K&*y$09Cy4se3enlH>Nb!3JH1;rMe$ zU5xR@2$&@691^_^re>^Do;*~aNNhg$feQTv^sX1B1YLOZ@L{~QLLM_Sl)OFe@K8|H zZv^?(8abUTe-DDtBW+Nqy2H`L0>OUsb%V%EpmUpA+Q;07#Gf%B?wJG43JjNVOG>g@ z9@di3M)chF^T!3Mnbf0JSj|;0Lq7qD{((h7I^+za_c$BS_PWh?elsZXvn? zk-`G&0}ueNuP_KlBEVnDBPZSRYMOKg$5cO>mM*fd@!Zl$lNsd`${eT;d?wR91{A{H zsA7WyT{|N=bEtfj)NQyMX6*FU_Z>+F3&k{!qz0RwLSXwhbE` zG&uM7tan)bd39nWD3Gw39=Ql8N z;bzpmm9>CqsO4OixIxe_kD!KiHXBs7A1DpW12P$uFN~j< z=vF|QArWubn-=w+!k)?u+9|KtwKbWd`dh3ItvVA3dk_V#CO9qq2}^pcab6~rx`izV zqARIdn)fFTsfFG~?EGG4ecEOJ6p-XBqpo z*7e`0qx((wiXz9{S6tUZh?qFfc;D3RnmR<5a!fR?%pEg)Wi%%ybL@`S5BINbwHcD0 zD!B)XsvsM++$hI=T*msVSY0EY6=IA)oz>w}h`$VPZeg@CGE2@~X~Xv2k)4ifrSv{} zVTERc8EfZ)C*Tii?Hp5kKeds$Oc@uBT5syVI4LI=nt|T!UjmJoBwPCB?IzHWLgC7x zLK@dc2f3#=c(jaZv!IvTg4TOQ*N54_TfAiWf$!1u7E%*eeKH|_=HxCl+{Lc^s!ejc z3wwI)hgXJ@4<*E}8Zn4*3Kf;{SjB`FbsIrq{By@*{0Xcs3@gTW7V939VVi1S!K6C3 z8o)vG2r z+~J)Ci_R$(+8^-kxD!Z97U=279vADRI*66 zMtE=D+xPXx>yfoHbANId=0a;w@CTPlN2IL6aX}-4Cq3C5K2uXxl}*-=4y*24(lhXt zh8~H75ss`tv5yY>iAz1!VrW6{K|+HLu*;21+8Y$pBR!+uKi#&?73L9P5Q^y4YXp05 z<-KY^UC7}h)S#C5&f}PItYJOl8t7EzZ9g)*YAv=B9$7XP-)+4*X)|P1Xk!N#n_qH ztArHq`wAi#N7CY}Oj*snJwW*ZQny7%EGze9k?$`>$eDZI)zJ|02zJ}3`E0#Gz2ZNO z+@V$OjY(Qw+?0{94fVt9b$O1GQhch_Gg)_CBJRH^`3@=wJc4g8ihDD}AH;)9P|x4Dh}z^)NDX?TP)9=2AMjwA`4TRnTqw7opV2 ztG5uJ5zIlZDkeKLT*w+5K(9NUtF2J?!hTUJT5`ku*)7ROOoRr6Vxs{$E6T!JhRk|S zZDOcVp}&Wj6>lcTJbsIzhxRMc@uPpy;OW(noLpZ3de0;S5z4vCB>Cmlbvz!?Ds|@KtlL2F;!h~wJvajRITQf+DUwhGwEwnH(x7D|s)owrb80If; zT*`sFW?N0JG~t@TFBBljlJf5jeXNl=koYUmj6!XSys{0G9UgZ+c#ibkXm{UjN-pBB z>tB5-SG~7hSH_5M*oZBhT)p~lW$eGZUBZ_Lw!KsE4p7N65)$Ykrcy~sR1h=UC!sriu)IO-elxlbT*-Lz_x!Jn* z!&`V+&kgwcOtmB4B^n{ul= z2G>4eCsr5i*SE{0I8`3zX*P`)2XYHGHukA)xH@_=o#RBl^utNhEH>ma_Q{!siu#pt z!?}uP8m-Oemt}-oJtpsMBIl0G;_WRlTVlGk7O9KyFLC;nGD?X4>*!4+4O;q%8?M_u z^}<(~@NG1TO;t+2phtGtjO%uW$eHRrxLqhC#%_D?{P`-01JDg)siXUfo8isQn;8T7 zH&-RY{iB1ZR7H>DVi+6NH-ni$=X3eQ+-9sapT6}!S3=)s#X4RIiUjsoH~v=3Y!FdA zp}prYeOOoc8BOPfIBeNa7U|w|otKeOr~$27cMk_K^E&Inm>rsoINBG^)XC4j-f-aL zE?}=AZ2dqJpBW(`T%laIuKsE{D*BI@FoW;)*S`)X7Uih2cl~~6UCFu(#$kTG3R-cf z2by%hV)!*zNPXGk*zhZ1gGg`_HJ{mNK5ZD930Ecf*wDbTA0~*LxyZc;V;cG~v{*`k z*jhOl=bH1LHm9gWf)Ui01T>H;)oZiz>j*Nh4~FWgTYn#9Qs&!ayYES0sD##}j1mW1 z?qrBK9DR%wY)VeJ92#EC_wm8-np9phMR&(6=6NezG52yuq{`)%_4mh% z`hr!XgFuj5*ILs8o}wzSw6L1fDjTcF@N!%BSc*anxEz&PuZ`Che=J9aZJpt;Tfx+6 z4ypZizbd+C#C{?*y=M;%_~z;irY8n$sgEDnLX{aFB^hS(v< z3)o1r#q}c|ReYhcPzo}hxR|{sSic;Wtl5KK(dxP4GqoRZW|)Y$nj8_15S{;x zCf~7oDQXfwNsU4A&+Ovo@n!UMhg#a6+nk+7kjPd?3P>FXvim#TgwPLwBzekr)_#5L zJk{chH~v9<6pu6TL!CWb9yKq!q{nDhR3GvJW%@^tUwhp>Xu_HaKHZe7*CS&NH^uIc zPO?jlhKW?~M5*S$g|_FwQ|y3JxQOe`cAIN=M|YGLrpbj7ayou=-;H-B8M(R}M-Lo|p?mx~ z!-vO0B)mioFXOI|3AV`W9Im$)HhGh0{KW3~id+;U<9gi$_|9MirX2*P)#~hO_=%#| zsSz=cpL~uzyu?$wh1hR@vXI21jhR6QaS}|i^?z)BBjKjcpc@IWJ)7=uce|BsR7BuF z5sC6c^!k!D}-8Z}r&srKkh&BUfyS2#slz3Dke+l2&ToZ)h? zLi6_d&Vnfvdq}9&`ggV8tFlO8KNH>+|nlGvSjG zFV)>Y#skTJUQKvnYQ1UU=snOJ=Gv{e&`eI7@8Z?EBSpY%QpnGJPASC~-JW0d_>fOs zMo+4tw==iUx!oUdR~*`8zkgOaih7A%ev%(C%X|<<@DU7?{7KR3Ee~K6h1gtcj;Vud zh=bUn%9kjj>3oGhYVu#JHA1(FL%$*J)N>`3?hV8q>A!H&eOF#Z7;;gDEhQ17V|UeS z2nNHX=xE9xZz~_dXl3^0jf7w2Mubj z;c9c&;f?>zQpP^I%-%}>$jvm)K(68=B)qKo{R0rRrFJwnWX$+WevDAE{*Bfr?dJV# z-SVj5MXHc~s*-PS<0#<@oX_-UP);=ANdJP$@RRFCfEs<#=iobd)uU zpq&pc&h^NlD2hpt3aM1l%F#k;FT-aDsS4VS7VbS(1nK2(iQ_O(M8EFV>b*DM02L-! z>5lsSXe#cJpr;!Jmx*e%+em(aF)uHX%{gnReB`kx$4ClVO}eg^l{@Zou9N_kX>8n7 z9Ewje2p{(IzPr567`d8G<_`*H9wWO2OId!zdg%k+xELDOSh|+AHUpZ_dl-Hy2mBe( zp!G!XP$PA62w=^Z!Nk^hr60Yq0&!LQO-~kDIV!xM)mZ>U10V2K^!U*S+zd77IFkK` zE(cz7pu$O-hI8#vT2kX0VM`j)N?QJQy{SuR>Bwf;Y>F%EOI%5(=ouDbBfDyN!<>=( z^@b~8K&}z@OtPXnv`0h#cI&OsfVyw#3xj~{g`uk}3^5i#1+7;49h21nG+5~4$W1*j z93B4X6oZbsu@2a%GApJ(V6MRpMpwg(>>{-|K}-N6`Zrmjkw3zzs-HR^8w1xjxn7=D9QKbol#RAx7z?(s{eXN zww9dsN|)?TJqnXa1@?hl0>11~ur^LszTcq)_QcIRsy@6ohfN8gLw{X-VYwwx7-E+BX|Fe*1f|ze#&fGZ6Bm*eeWpeZ9W8*jdNV z*19*l%(&XM@nGj``b0S5c#IH12?nY;io8ZEfg9MBQ2b{j+jA$lYy{lK`q>ntWNX#A zKv{CK#)hr79EDvj|9*~E=|GjhWcy-i2(a9HBjt}LRUTLMpnAkajQ3w5l|IhHvtJ*fg7!=)|c8OF~1l*yov zLfv3TbK@oSU-n(xi}sOJhdH=)J-#T@IHUebVje&fRT*tR6AMzcH&VhT+v;pz|Nhn^ zsu#zF*@jvZdM|S7me2eNqsYwH3>arH>9;@>{`wd-@aUG5gJe?yDY) zC?8)E)oQQvvVG=>a|i8BYLp?r-kTub>b>;QsVU8izUt`G*z<)1d}DsYX}N_2e;2)7 z1qzdagXHg-WgUh}?TR$NI$os5@O0`7GItM+)x-})t67CT5^kKbg`JDOujo8Bsr163 zDZ{@u4=+=6WTUR{I4|S!&rn}`=MugeJ6P4}HT#Wf{6l#w$7>Oa2VfLs?NE;dweK%r zhs&L8WuAK9rfaT`)9$^nBcNxQL1dNKR15tRjC7MqNuzNQnR)n`q9-@V5S!x#`N-$G zL}LxsQSV?%ZlKo)@U_75iOvHiA9evf*sycioX_m`d-NJYb{cJb|x*_R{?(=sfa?=f$r_Mi3L z_sU6Gd8d@vluXs_-06AMV>p=p49xR&a73mrF7Xp)%gj{Eeb$Bj@ltU1G_J%SitHg6 zDXDvs9RWYyd+!pyvmT=x_SN(GnXJ2nMmMYh6e8Kmjc*K8JblXxs1@{#r)wg%^ zeU+(-X%Fk;%yA)G>{EsnJ%h&@k_AQDl6e~02ApV#jn}%nHl>7` z{g(-TP{%hs0T{4M%IKA1be@9EkY03Tu2P`e0 z`hy7nx{{(sVD37+-oq$V8e7(D{2s8jSPPlc1>|cEUQ7SzERx3y)&rv;|7SEPI%?kI zoAF6b64_|>dmD1++>e-J_C%J00C5oL*3sl`ud_h202|Oya3!I{fR2H*W!6gCpfpdW zo~svhKYHH_{N=f@`)T5G3 z;AmKilYY&MpZ)GxXKoSViFrK5$N{aX>|gIPiZex7iE8>A@2GPNY^FNZ-GXK=YNfP# z(?)bScHr^tmp6iTJR1*ilK>KOW$iXJdX9F^YEuF6T=x=zEaSojkRY*_>wK8l?;xKd zaQ9a#($L^k3-DksSEEs+o#Z%K^8%~g1KPDOK}+l+2?NR-A+>x(Nnxvk%L^gLGy(`i z74B^iu`5d7$^C+1_zg$T^=(K0O%UMpSgCgS6WxPamX@LM7|#ZG@{#bx+2v@-@L#fZ z0}Rg?Tosrj)aBi4X&bjTf6d&%^=U53zd8Hj+g%}+Ux7ERWF8F0ZeF4T=vGIQcl-E$ z!u~zb4-Ofe(x!gGt`eOVzQX4SNNdVLH>w;C+6z;<_fpNz{R&SL0ELxH2M69U1NZKa zCiDQiIiuT&wzD~$)b$OrR5t!P2YU1I*ELV^h$3n75*s z*F_)3pEdWi4hu~NCJP-1d^dhd8<$Jy?qVso#>)!rf)`j#$2&?X_7FrOJ0>BJJj*iL zvFqGzg_)gVnwKaf=HGsO;MT9*9fzVs7S;c0Dp$DOKqai1nnf^LHT*?0+=N2 zT48XuV*0=oa|2|~vfx}0&<~Nl#}f#QGHBNx1?YeeI%2OEUlom)_A`!9aV-a*_4-Zv z1XcC%3aeZvSs>a?XdjQ`n_SXtC#Od8LS*fX$KY2xD=hJ^oqsUnpQ~l2s$Ohej*Hn> zcuRnEzYq6tmCq&C);r*}<=_JBNyE9A*<`6$1;vQ;4xSXR{U7+VFm3aFiz`fE=6NV3 zIWYym1b|v{Q;wf3;BuK*5RqQf;v;!$p=4(-MH5rGt!2UWiY4K($+AO1*tCh#J&17r zCkY8@p9OK*avCx&m5Oytt02ouMQ{(hL?D#^jw%6>HaL1yFPInM=>CUu@X8^j-X_3a zvUtBh!t&x94L#vQ&c#p6;CwMc5W1q$c#R7^i4wuX&+xRKtWTe@EykTCN{ms16N?!1 z_1DUe8j>wP*rk}Ol<3o5Rb6xb4HLaV=XDdwSlz%@H*pr27Z0t#@ciqQyeX__HA<7Q z)pxZrfmKF%qG!vZO*SA)-5^5~!u%?y^xdy~k$1Fxm1!tEB2mj$PaZ<~rL3CKl(%h4 zxeGp$yquNGoK!OW6Zay2(uMscYKWpO(bX*g)f6UGvoqc<59~mOYsRZ;UCUpxm_H=c zflZ~;U(0W@r9E8iKahFv)wiRER66N#1pxqszL|2O+!leF{!ck27_TqQXDp$J$!E*a z;CNXTEQs@n>Bq7=3zFIS+z!iY3vIkbdC#jeBd^M8~e9Qp{+7dYf z6B!WqH-E$?0mz;-2S=LezSxK>01l?UJb&AgJKRXJsuFm%)y!!Zzm}->qs5w#xE8JH zi+G5?!q8F`tj!|x=HP2OnQVP$X|yLSvg3w?odUY=v{p0{p1ubc^8WU(NfI2K`G~E+ z{o&VNPodAmBDu5S>@YY?dG|eAjfa(v>&2E#RZxnwqbVw_s=1Xl@PbL8ZTA#sBRaHt z?6`7y_J)H_Em6rsfHNNpLgpFdjCaT{56o zYeoS^Dfjy()l>rQszm{}^W*)gY5=c9R=*J&aYn_GA6WkhCB5bAoJp((?EEY8OeytR z-^DX32qFOq_QBRLK6^q_@RvnWZ;_`U;|q|}!gYTO_#;0s<_928?v{_pF5Y6C;#7rRLS(*%`gJ{N0UJ{hd}LH?s28`2$? z1rHm@Vj=@i_5;`VN8lO|$m!q4H_*U~P7q!-Fz`Dy6Ni`EQk^~7_1x?Y7{qjv?djNp zN#ZP6KD|aU@k>KGEFkBpDiJq%UioW943$EUFTzKWA@>>8Ot(JzYYA?EG2Gs293da7 zB&n5p(NHV##``x6ngA!XdXMkKtNxRe2uYE;yRZ7kxOzNo$yDJ2$47<6jvp^7?$CBd znd{J2e-T6%CQ$&<=Y%2floZB!H*cbDn@H%N?f1S_JzQ8~Fljz$FH(!Ar7y}9<_rdx z1Yi`NR*WBiF+1t%O+NWjwlPXIPPmrY(epkcSheS9Mv++l` z{xWx}8vy=bM`P;HHW1e{b({OPJ&4~N*0lTUYA5Tw2DGqMmq(^bYA54{g;=ypI3Fz+ zSVi(X_@rOEx(dWQ{a?k~0Zc)LUI31RNTUFUm}f4X3X9;#wCDu}Z_XzdLUPoD2Pb=| zp#vuXu;2x3$zi0_h8E&>3G!Kx;H#fVzjIEo`>iDO*-x)1PQw4j!Pc_|wNk5J$W7k! ztTSCp2iXoArWNAkw8AJ0>=A0VFLtlT>TD1RW2V|P;-ig| zwU{?_DTpxQ8<7t2tZ*??@DO~XbNbO{{B=jSy(9qH>^gM$~OrZ-h5}?_^eVJchslCR<6*`NH4nc* z0275;D|m@eDPQJZKpE1tv5LL{?1y78*Y{;U4k=G!3IPM@4eGwCr{J&?e$zAj@0|r! zkKGqUmndFllF+|T9!bc_z2Tl9%GGXl6OQ2>`zm|wxtw&!2e#5bqteD3qeP#@F0&}< zf1|i!aCp&7z{2GELKfm>OuXt82(89%tkI@8kg)*_&LMO0CedA;)# zj7J97?yRlKZx>aAxFiKwcfbcr>uJX7y7G^cpyRv0Wki$D3QtDOJPa>BAU-N?zW8l^ zCgmIfYH_eDs``hxKgP^+yYT`f9({w43>SJQ_KJh7>FdEtEQs!E#S|n)AME61cp1g* zhA1bDE6U2=G2U7!lZh8{SkM{HkA3{4+}QB-ZmO$SS_vEBhh1&iiNjLG_ntZk`OFNr zlpm)@8^W%4NB5p5#k0f;?bSh(Et9IfYwHRbG+=YE8!eG8yW4yz) z;!GdWBtI{pbM(!jk75ctHQDPd-}4f;6o`xt?n8u7)ZrVcoc{MG= z!nR_yZn2HLuPiURKx;qlO;PBJ{$C@~DJYV(@XssTZIA`(J?_8zW8B^PNK;7NPohzP zypjAtJ3z`wMdHuARI!|GRjsX}vQ8@E#^XH>j_s2H@*#C$Q#(I48vJ;-b3pZM80LmA zrp{>eGV`s+M82iF+f-&BA^XSSLM!gO(a4QjRnpDz@2$)fORi%shvfI)o7=;s6Cz19qiHt>gs227OT}xepvlb9XiZ)vwqGd z;DUw(oh@=tD<=JZr)pzW#RV8?0m)5yKb6*3SE77eEt*UyaHFu#q!E;6zi%HwtlI#v zJLws#c@aCJ&Bsh!yK1p6v-Tr2hzS0;yST`&?~!*^!o{)ZZmcjDQvB2V*5VjpR4VG7 zb5)DbljIJ!pUp;e`6r(>f5gbqXRA+gTi%q_lfWRiO7>{?u2_o!Nq?Q z0Aq7*IGq|Iwx`=E)vi(1+(qE*K*G4TfPs*`8?ig(i`j^T-)7^xdv-gCE9-~4ry;ml z6++e1iIpyV&t73rPZ@36FS*7ya#J3qTB~ zSKTeoi`v#U*Qq{Zvjxc8wlFJwka(R)FI#fI0y(Zk ziI4R_(akw~sApd@F-I_#mbd8uR?b{&^48jC0|UM-*)emt!P;4PkKxx#0E+T2jk)R( zsm!yz0t)_{GI3$pD%@+CPY9?ccQV`V5~wbVYbQBo>BCFrwj)>T&6}0yF_jj6W2uCC z?a&e{_meU2{*eEsoZYx*_@>!wr(akP=`an0^S{;Mks0z>G98WT-ZQXl$Zn**YrN+n z>Kpn_bH_H&mDL{Yj>sUg{m*9Oiuia)8@>`~1!Iv*kVRp?S<7>is-Ym3u}9T|74#RC zPQ;LP_VilM79J89h@Zt`c=q?+Bh?##<|Gmc zGGo{}|Dzao3$#@GrC+R&w2#6L%XsO(Bk|s)^FT#x>|U_3`+v;`>5wyM1byEML?i{s z21K0vDnp>{__Dz%@{nNH@8iZMneJ%~uIl<}=c3@Pr9R0t&w`nP9_8wTcg(l4YGBxH zWw=Wdgt|Oo;GFXW*|1M>h7Np2c?mx}ba=coX5pI4;^J20j89}TqrTd|VaKd!&O~+( z?T`2_B+iSnF!l5vxHJL+J4+Ha#$`tBRPeiq7a{(~XUzH_J(gJ#W+-MV9rmKLl4UH*03RK-7ab|esP zi4ET!BmJL?3m)Kr@%H$|1>}XEes!?#z1Vf5%cm}#jW!f|TfR1Q;CmyxJCo{x)zg(D zQ1$v#&TjihT^xH#kXGC4m^^#@=biN4)jy4g31q!_a-;)0%Dt)rHeImQWv+E)UQ-LT z=~V|~~ zxRy`o3%oM>UnFvPA+Ae(eUStIzRymNwr?=hz zNob6RSB>b*?kK)bnG$P@-*?Xoc|!{2XJ-WzfrUxtRL5g(zwy1;Ts&qut9J<(yOK|1 zySf0_rGoD5U}n0e>UFAGrt;Orlc)Nq72i95ywsPTY%2nr1Xa5R!{(8v?U{MQgf^QA z^xbaZchT{P&)n^Rd)T?B^*1D2!#R`|iYi;Pj@b#U%{YOj4~K04$k(F>q1HHdEZCDt z{0bKeql}69HK&|HaK}V*IT|)?;HXc2CTHbfUoFcQG5y`h6Qox@rh~|*sqlf3d%?H% z%ALP^Yw2vO1^_gg=(K`7CArj+7s`2w_k6&(3MH+X-D=wWo^hWNF)l~T{6rq#$|)J$ zci`7iFkWmtwJ`?f2v7tlWq>q0!yAw_)CVJYd*$2bghQ}EV{<)Cz8YP3MO<64g<-mtl}ftDE5-_wm1YEFxgMu|S> z74FvbQVUhc-J5VpchLhJmZ>3Y6=fFHjc%+`zO>-bi`MDbl%NWgRv&D*=O2HeFy-`k z`g;A44BoP64bMZ# z3ay7Z^W7%`F>=$yC0>_wExUI3_~qMl$JSM1>YlIGgC;prVn%kBc>@v}+h_Zp_?p$_ zAz13(9}L%6lW@5!c>&tpvK=p6`6TANfxIiLT}#Klet)bw?=x~cK>#etTkR^hnW4jk z-&wQ=$TWd4)5=#SbZD@{Gllv4jn7Tv|LmVnA~V=#Iw05Bkz-J;8}bl4j!IXFX$q}t zn&!g#Oa3un3i(C?zP@x!Gx6h-IPCGJEpV6qbRkivWFj!6Q`zLv$eRO(^->0s>Ww&a2m@3$s0e7SIj|h539#Hh4Hf? zf>&JQR698ZmH7RGOwV9jJ>fg=iAi%2KE1BIxBHADXWO($id}pfxSq+8RJ_9>ih80B zVJJM4ir0rJOiuad;?CF2=UttHYT?Ypo&uziMFO*Tn*w)vz#!nW1)gPtouGoPa8wk{ zyHj)+7rU3aF|+IYegm!BfW2iM0^ei!N_Nb)>s`PJRm ztMX2uGmGv@r3|P$h*2S`Fe)0zie)HlN}QTl>1vfodT!tbo#J;oZcTm#Y@=v-Z|2JJ z;3g`H4>WwU=`GhTWn;#C5o+%mH{7It4OA=$+Rcjas>rQWT~{yMM`a3~s1!0&KkUEc zoA-H>OrwDH^cDT|^hGyu$xiN>oS$*U zz^ZBmo}>3kL8yB}zwH``N?F=iJg{k6Uh|QK+|T_kGc%sZ?85slxUQStr4V^6*!LN& z1;fy08PE5t7jFqU9q;egA3QhN0`UzuNp-@&3LysXvo1Rz1F-L>-OG_GFWfht7u9xp zcJSpaSWP;0Hoe~KfM-yHgoN~V@LW*la_lZSk02znBs>5#cI&g0_FkBXvXD>lb%iI6M@Gj59Mz|&BUO5(EUda zvuPI3%JgMbzjjZQQk8|F&F=thx+d}#%+wk8sV^}&GpFCj5nkrLR&AymmQjsozLt~+Csxk43=s?*F+*fp%ouihWG9^KX5#NRXg@Q8rvkY|+FtwFx9 z-t9Hs4NQ&tihzQ~gK!p2bsG;rUz06iVr8uz@3AVoh$kkHtD*25pd1=aJ{Qe;@!e90 zTP)#h<0Sbaj(dIP7ABF&9xFi!pftE*9t-|%UgQ#rCf#R|k?n##39UW1O$^V`r0X~y z({nMlAA2Y5VE5KBE0Z~{tcIeYYu*^JDI+A^h!+KF8;_?4m9bhrgx34PrJ{1w={mfp zDT0Xy70XVOO1Hj#$WZZ;xrG)`?fcjxe>|?ZGK(?(D-TNGt6FtmuEl7hKDw+NKG6-D z;~ex3V$Z`|M2XsgVNCwu;=8d3+zM%)t^M3~9R+zC>%Do;ZoGk;v2!_JtMP?ACVd1% z63uF*0QR#DiaCX^60Sq|%d9p4H8cFA@zf7j_Ql7Fjw<1VvxkS%$=p859_&~|1f-&4 zC#QpS9QWxhOxqcOJRdgM5BL;ojq_!NR&!#XNNPT|#2Jp}9bOU@f&3C{n}W}y1v-i` zO$*&V49(V185L3^Jr%GMyw&L23v)198_F7HVClPL^k-i2qgw8v!CL3vAzmyrPk_|r z*}*qe@{y=aepC?TguEMVZWi8BvQo17lHPva4Tq@)A;L$}zeqM)1o#_VW>r72F(9*p zMaK2GveqYyZn)=%;$r5cDuaFT0Z52=Sc9&)p5n9+kMMmQ(uF<+oI9%by0Op6g4p1X zZj>o6VVWjgBPTgl>)u)RF2^ME8R<9S6Ya_D|C4>sHt#iHOWop`zxb@p=CPLbnv;6h z#eYp>X6swCB5iNDz(h8uQ18UF=eqL^bgs*qU5w)x_IZL zFW^HV65M#Bs}c9y04oJmbjEOd?2AOTUVB$b?tDU(X8&*x^AnAJh8yiL>2ADaH-eh` z8*58G8?91|tbrSPtcQ3Z@|f@J@;=pyAn_?LfNyT`r`9pNxMq8k6g|Ihjz`;-dvt5| z*=hlLVP47|M3^)cKNE1rW}Vv!6;QjIcSZU-noxDcdyo%|#CUu~NX&cy*i)-|j`!p$ zP!pt^yIss#WbU54D(A&|7p=G&pQvus zg8wM9vP^wCCexNtfwmMOV3m(XBm`;%QDfyHCjGQ5G6=&Ar~X1n0+~`z9u0Ev?pv|> zbw7_a9v?W@2IjZ1hi>7;s1|48wJYGwfC;|NPInrizR~3|e{x2cV;aj;U+pwS6oQ?v z_|C$b!v{7|tuy@%Iw|DN<48qfg$%O1)|U;P+n7$<2jmDuDdwPR7R$2^lS;@Q&NkQuhWf!Caw8MDYq4rGEa^d4#SC?Ac zwAR#AY(Rl5{Rv=d`*YhE$3}bZ$d{HN_MP7i7P8ZmpU4WfTH3s~;AS9Px0wl3OEh7$ zmf2{?f9Uu~BkTG5xb)A+TNW zqNwl;fCj*7V8Q`Effw<7Yb`44YbbVB0$>YiY+P&;)49J$!E4f@%Re{GHY*&MG5$%k z!Js|WY;!}T(vbB9y^B2gDlh)RQ}&pc+(ND&Sny%sW1K<-5RmufCe!tb_tTlC z2PqC84YpQkr6C==61ktD4bS1t z;bD1X*-9q=l{;N^bfkyDddaslxN55=64S^38O@TkT|kx1v81~y zKlHhxphmv?XQRx`B!XDnzqrG=O ziA+bvhGytMJjBupfOo*)GH|_KZ_?<*>2V7AY+}8tt1Re-f@R1@f^Abc4Tmj>{ik-5 zlOnpL0q`zEvFdEmXwn~z)|8&gGzOP4%w!zsFMa|n(EZBt%M7_X z;WhTJ`BzZZ^okV3dfL(!9#r_V>Sq7|EY1#{bbYD#aMIp2bXt0M5Mni|M9XE<)DLBE zeVIZosCaEK8!fU-q({9qQ$QcO@KcM2|Yv#AY$Hld; zaf4`eByU}rEv$b0ioD-)Rivg2NEcSqdq30HIAB8nyxc%lu6fm{#GuYS>3N-|(1bGG`JBF$q5gGAhG(#m) zw*)H?z0kzO$Wt&@hN>`g<#6n-XmK*+eYzncAinm?3ENALn|$Aw+!{jJML3Zx8mj!0 z&2#>F_Vuc?L$MLc7D^IrQ-Bt`^StUoMtpFr*!VWyy zIeDWM3HR6s83YRYYDX?J>q!|BlgMKwt|z z2+J`f72qL6Og)kJ+m2oRJpu||t`ClTAqr;4>IHz|HU|nS^FO~ndMwEO0B%^A3jdPa z!1g-^hkS&ra{h--_{vEIPEFWYYy?Gj&4mDW%oF0iz0WzhpN+&`M20YT-AG;D)EF}@ zXlv@_-KVrXpV$mAK%<0w9lVpYLD4`uiS^q(njguW8_?ZtQ-UVBIzkozL4?+yi7hxA zuJ!!%Iwae_|*5P@30!PT+eL|m_LK&$DB>mDD`5^+-1S{jdfBND{?1&e{b}!Oe+lrJ?)G5&fLq%$wE3(Vt z%^jiK+<2Fpw@ceQTgr}b@H@%Zt#KNHBmjRgkQzcAZfHa15M&kiH^_;ccaFd8P@lLbKDK0xXc%?*U_1vLYXE z_ux7ZQ%kFx4<|R>UmbYl@-^&Z5vyT(ADJeE@{XZ^`e!eK`%)BuSw8M$Id$d-MM%b7 zUHtXUCcgcZf)uM5&QyI9QtHdQqv-(ENbsVp>xTanmNBdCoLWq#Q^0C^HdccQ#y?wK zOw?mDSnaPK{xYOHl}N$!mIj!l$HmW?H}_(RUioXlA4!mLv2d#@TUiC~>W4(~5W2*s zP(xT=h*5s3&y1_!*w1oWlg&n-X4{wm6}6J1j zh92MRmH<+>mz_%O{xub-QOuV!DtSCIT<>t(|jrA^r1FBSlpS)&#T?U! z*d)IOdRu-(Ocl}fS^fH9_EZ!j2%>;zRaScefT&_7A2WfqWkSb>=RlqqWeU$oL91hlX!{O?oHVrRuGqkUc%7be?8Bq!n99%$}0xOe`0h;&LSktaKg>_)zSv5PdB zAtK$8(;M{8gk8~Qyc7P0DRcv=Ov!B5>A1Q)s*{`hir5d7a!<7HN5ZZ-&A(=0Db7Ew zU?PUYn_8U+lu772ZB!p&-qT$V1D*w)Qjz8xR! z-|NWuNA;~GmzD{)dLL`0My`a8N!y?RDre7mhv$rt&*E)5gN~Jnyv?mkHl>54`FM(a zv_rLHlL8E!nZb~y)k^}QZ7FvfDvP)lR!sQaXl+bw^rY5uk14M19jkq>yPczG1}Dhd zY1}nLI8ng3cENdJdu&(2$=|_)jPrF(e;L`kNz-ka42OMFbC(74lG7PQK!pbn z^mMF%>|i-?rM%}c(fb{qjV$^s4}Ns!;mYoQ;R7l>_B@GCP7H;28BraAYqX-at?L3yB{U<~$1_%_YMP1XiF z>J7Ga)aJD$$|-Dmrfa^dVT)COQQWd=Wc=9B6~SM`Cz1uCZru%w?Y)a%U1v*v2hhXpuoHVB*yno>!duvN30oVca#v0&PX-=?F0+p0E%2DSHpVwJi4=Tw zlx&iA7aIia5Vyyh`wLMQrEIv>==$>3UALzgQVQjHla&=)iogkRq_T}bPj|%>EkD^N z2zm?C{z!cMghftFP9z}SzZiM{wBcc0cl;;Ila~kWW9t^b_xpe)^DY{VnPWsf{s~xp zBJA762G296!!jEmrblT}cY*|YFAjNfU#bf4TQq_sv;hm=?07@mHBuHR*kXW9RG++JKQp>0zO7%#tOPlA*b!7QbT@?C8D`?XIP^{ zA@0f(HL^jgxWUn)cdhW<*Cq!{?zH#{w1#a`D;SGZuru2<>@vIVWIpLZk4Jsq#1(A} z^!~tgE~eN|36y$*R$BZ4E8FHSCUM+5kod}yud=x{?lvMjUU=e8Vj@0#DfLg)*WGCA zh1EL^DF|sG9I+Iq+4{2c#8vEP$-$QjKQ%S=+vK2apMT@I+CGo+ODO%oRZ%y1Pbjm3 zt$^kiFCE==VqgDD4r*m)xK=KX5!hNgW_UEBZFgjpTz5XH+j4d}j`43F=+jrKEQ3Q` zOcnNVa%;H-!E;Kw?V-o^LX1MHax6QdnddIY(+J1z zy{hrC+5!1`^7&-$bmAW#1>-9NN5qSnC#CYS)#y&^+=eh`E}1apJvZr>MNHfG+$IOl zx*SLv_fa$wJ+puAX1PY;PZCpw)rUDH1hL)cv1?9w8NE~_px_q;$msERQjVILjyLx% zo_Ha$dk;JqtgR2u1eps9M^gab3gP7BujW7MLP`W+ z9M;pf)OAeqjn=Gfwr9pCO<2*vPRd>p3btfeLsZ@xZjRf$*gg(S?j9L;q8mveHnfr8 z+^?~kIrT0RB5L+0M5*qF^juV9rmf7ry)Ch2kY=UC_A)XYV2I2=0+iEQxX+cL{@XX> zJP-vAdh(~)BEmwT>Lk8W6$>Tb-IsaweZ~DtqoR zc>dC%bHXTUBXbk0X;MqEKbpaiw8+!Nr?tvI;ZBMUG5t@lz z{{=WiDH^$C6H+UELmPov&;UdWRw225_vAAo}Gi6 zshBtFJ8YxiOpH^NfgO{Xu}Kr;riS)>w9wkIxQTU~volEyC^r~9?~N^!R#TOTFln1Q zg{2BVNtha-0~Q~B(nL9~_(>X49`!{j16Pv9srq3_;?AJT{I|{^x{LwRkQw#c=u9Ti zO$KZYTx-Od?RDk<^Ss{l< z_*@(Wa!TCFnO{u^JPgo|$@b##8(7s;na%{pKh?ihpI|dxW@266Wf`of@9JlA4}^`Py`;$l~g!{QNg z?}j=Mq{3gD?HAclEfEc6{4r8wDS7-A@tephj1XC_#l6n!FA2OI9E;fqJhmT}S82&7 zDS@80H~^*zj;4t88r&x9K<#Q%dX!!{RG2KTI0dxMW_db%k9o1J zxSX-E;#MhHQtd;Zjd?t7Fgr+C{1gvTxjb^R9GFq{N8HwcPHJlaH*C z=J*%y^+h;9{ug&e;ZL!=iYa4*+2|ajLZ@2qYD4>D_LGk_BmwMgocvzpr%Cn){{@*P zy7$DrpxhSe)|(tq4qpdx8Kdq7v%*btD9VX>V?m*ke;Ne1rpF&0CVWcXJ=s=9-k-kH z%P9F+|ITRcaf`t0sV6xm`-Ap_w-EhQ!%g~4p5N?-o7A8!Oby15B-65hKBig@vB-cM zk{NEgo3Cc%%nDzPPS_&2VsdbCw-fd6Coe}WW_52o$*f9t%^-BJ1--Jm{d(0MH(0Wv~=LCktdZNyl7g*)IJQK3nEpo zctc+Rt*q(~zxj3A1R|asTJ7&umplx=1xiry-`goQ^CI`UjMNw9H1e!dgL~q7KZVH3 ztzXW0^wTyUPd*)OB#MxI9);QkvhRZTqP`U3JMYs*apq0X9<#q(wPd)R8BPxSxf1q~ zrb|OdlLh-7|c zFQGl!xED=B6=@DSd#fdb#71XG`L%wI(DAF$)e5@5#mv?JuxulUlhABcWo^GdQdtR}M*YeKx$B;3;9Ze;> zlQxOZLoJJT7#|vd)>vCVL3=}NX|k3SqeIMTXp{OBbeVeJcSG_@QI{$PeM9~xv6NGl zv_sNoR-HsGJeN4U(!;;xeOp1C0oO)4B+V6L~u>K|G^y81P&o(KBmeUAjWTl#~-f#QRW zf~+K|UTJZhOF?h?J4+s!F~GQdKL3nyjzzbq%P6DDq=1G^J7~D|+j8O@LSD*Xom5iF z_3k9M8thfJj6xR)2;$<^IiFga_(DnHQrF)++MC%sW%A6IjN~zsY#*REGh2n458*L> z`V@!sAtp`8*jf%$Ge&6!#5&Lxx(s~HHz;nzT+mpYEmSt-cH8%Kp0An-xw|fOR&9Es zPrR$Z3MLB-H%rVTj7okb4C$5Ps!9}Bn_I`itBn`j#WV6J8(wHslx=08&@$_z)t2A& ztw?brc6n4(G!yFLxf{CcsBLTLm6c8VM|UbhT$fuTkDEc|w56UJ3XS~o;PY+^kL2yH zS_Zfk6i`#7LAPb)S)Jk7zQe`CF;7RiLH~!6r{6duCdx3}l<1P0c0sT^GD6dF8m%0n z&Exf%HU^9lNCxb_e8I9`!&VEInHEFD`3r~Qm$w#cB)+#jHOJ?`59WUI3SQnJvwK6z z(?}F=kv$GOtZ#tBry`}YKMi2|XH%y-m9JXv>}+fE(Sq0`(o&rkmp~0GgM*j#=zv{P zpQEL>xAW8OP4hQvAwGd$JQdOorXq8@pL^CNMubUh4Iy;bCj}3s!DA49dIWPDr zElAzAS1b^LO^CZ5AVgqOd6ApT2gWYaSt?3i(^NKko6QAB$;Yg|e0PnSc4#{3L znE#5;pbPA}fw6*#n25vw8i-b&wDP<58U(e^!uN0aVo>vSXf__a(0?5v)i*6OoDZAR zwu+RxOT$AxVWZLN-p^v9xI_{D%db`9tyE?k+=};A>wy!bs(v;fmzQgwP0x8v*2)xS zBrBz;^ws~<-r{z16Her2^@A_Ps&~;QCVq^N5z8jT&!t}c`HITHfmf2a(tK5?#(vf| zoo5@vQ_Df^n@+v?A0B)T4j={n8;KGshl2{R0B9%RAGY!lsDKG0Fef2eD`{1N;XYYy z?bb>X6}}D@yM^fXlu4B={@0y5a3A=t(QpiC==N$)EF~dSUAFl1ySCfk09+E{?bSVJ zt$jUEa_R{kL$I7;!#rp#@RE}YlQe(FJ>os&D6;M0t9Y-^JHr~Z|<#OP;k6EE{<(NyTug1AD4qDD@eVizzqd(wC&7*2W zTB*EoR5Tovd1@TNF;u{<4EsXL=!OLjeXe;-<9}{(9suQzO=HGEObf@Z$W=82*?3k!JVr7UU%<6A0GyNp@>a`bF&1ZrJNyGhnahoe;1`uzd-O4uvYOQ8# z+Hps=YxTai;b4wL5cSb&sp00<-i(-v^l9Szr7KhQ^shA5bkVbS6^peQuldfX{Hc9p zXc)PatR2z6fF)+bBVNxjR8q0l)E`1}`wjaRj99Hd*paR%l3aTXt9BGWnvU|jUrfoQ znuKyM(k>X0N2~MpOPG$|Fo{qP*79Rgq@$>+K7+*%RpO$~`OUQ(+?2crc0KBGmlK1D zSav2=@3!<$+wAsQ@=k=19&49Y$k9X{ZMl`p@79)`-^gf0TP~R3-HE&{fv4oUgjSyYGT^61JY*16XzBQOC@8otum@Q;+u- zw$J?v?z!0omyaXc3tzfOPPVDhpwc?tyiCrDYH8tOr0$z#`Cp>TnMdN(%o2yq5p<Da^<~G{zt?9}yllVy=imSR`f4Zs+m_3H_@akdc1 zf1>f9X#8U?!TW#W@SiyRCl3Fq!IcdBUv-$|<2PcPYpBk*7J-j~KqMvP#0y3B-v56K C&)Sdx literal 0 HcmV?d00001 diff --git a/education/images/MSC17_cloud_012_merged.png b/education/images/MSC17_cloud_012_merged.png new file mode 100644 index 0000000000000000000000000000000000000000..4defcaa59cebf6f69237cae243e268ba7b06de9a GIT binary patch literal 98734 zcmeEu_dnJB|NlWzB&kqlk(3#-Gg7iLigS+5WpCLsPlH4#qGX4};mF>rLiRlN$lfb^ zf1j`8=z4$tfbVbD>vp?tr>ooRIUbMa{c(Sc=i}9DRb^RnQd&|N3`Q<5cmFZ?(S*T> zwN4R(zwzjQeh2)Vej=yo2!nC6K>rcAB}=-%U{_%B_wTB^Mb8haSnEtZogP6lI*PWR zV#zj@Z)4?9c=nHo;FF0Ua%VMu^R{C1NAhLnTCR`!?`p?Oohd)C|=`$G1A|Noyp z{s$2M;o(2~_#ZgH{=>t6c=!(w|7zerd-%^D{zU`qKYslG9Y4C*EfO6od?zt$Fer77 zF8rbEq4@47a*pYsz-%}JYqVPC6XufD??C{)>7R~&AEoV*+rcg2obQ-d_{E>STD?r) zYSZ~`lW9&N;~lqeg@Uv}U$K@2Awt6860J5UXaWf+uzyZlqcyb{g9l{XM?$mT+PaUx zuX1brK}nR1>U!&>0wr7^za)9^Nd_VifrghpRu4ZALrM-zS0gfQ?sG=Co`8l_a-BO~ zsq&n{Kk$Gw#xfU?v--m~)`{oV-6`QgK|xee=&f&#G5+0{_2=jUQDWRc_=UgY-hSmv zSD;IKtj?NV?6u^?qG#Lx1gAmxUnwdXH>YbRm@%T|MUQua=B?8ekc&gTP5#I(cWq3c zHZe|PCX|1tWPG2Gh#7DzIF(M@KY@`<>z|k zDx+P|8n-~ny}!^QlGCYf^3Q;DY_R$79#Q`2LfxDB?iP78+PD*Teemy)-{vU{DM%jm z^GL9NW{d)I1LIm;)-xOK{OS}mQGw#$cd2L>Y-=LXtGxX;eaIh`>4l`GrkdwzF+RKM z;F3e5U6vKOiv!;8uGhzw5lmKYA5fH6-9B83Kv!>VxjlUNPw`LuFa?IgJNkslS z)~-TmJ~Bo#CS)v%BRS-bP3EWA*kA;DqLAOog@3e~gEDY%fDI=;lhVH{$@Qa^Gn;7= z;JuGE!U@qAwccgsVrP@F{vY}oaogIu@{S7919;ZnEx^yvYUA|#`^R7Sx3a-)Gc5(9 z?8kpm_M^AtEYMiw2Npd|Atq?hsegyphAsFC7nQ5mIi-C0V(95PQ0Jf~IpFVRFY>v} z1b5Wq|L&~BJh$YsN=9tRk8U9aCaW?%o_wSLExBwxmq!ZS3dIMOq1lg@p#`@81w8jt zpf@0ntWk;fj$BleDWwM1QlPeuVLOF`GBZ7j0eb&wad#1(=qd-J02&>w0>d9VI5_ZK zzkWTM*>z$ykuqfO@y|eHBPDnpwf7fDzqyk#;AV)av8_pk8KZ~V=r2GFYwJeJY>vqd zS^6@eQ8LLubGyi!&@$VFwVKDv#9Riz$!V}dP-`%VxjZze#zZl^-kN&tpU7fL2HusD z_^Zq(B!CC}D~kWbRp(g;Jz!zA?=acghUxdz%5c%IBXHgMjV^<=$3M@JVpGh>k= zlPV!e%WH4Ux4}V0u*jQMU5F;2)>Am8cHfEV&^wbB;bVjA^q19gyf!KXV9zRZ|)mZ>%Eso z58H`~LhEk`{uQKj$~;9^(*SFJ+tAXo{?Ru!@&16VMsG8y?o&DRuR#97o?a{m#uJ{b ziD1$!quS31v(aPIdldhjac+F)ade?eQD{FC9UX_>tv8GqSx?M_Ic{aK zf8Uz{G^vtL!(O!hAn}oP*7JWhJevGl=3Re6BFvNjD@_NGCN4cXb3ETFPph%H*?s!g z_o=fo^bGc0(5q)8{;IS0spW(xr560E%{SW1k7C}wBHCq+6}t!o!kzsY;oJkFdsEXIB4Qyo+uNUK*l_5-bgSG1f0C7|QQF#X+A@?`3xq{P zG_A7%)?fSEBh>I}5@i!nVj z9Qngws=*ic=7$$+%w72(6bJ@xMi-Y;0#ytTS75)^{u0jeLeZsxSv_k5G4IhS`gmqOmXdpFu=e)}_Gcl_;a*udtqVUI1pCjL0_ zt-uOb;7}ElrrA$w1P%_N*+Xn~f_s%qLS60hw5l~>OiM^h%8KDPZWh?LkZ@mzj>5jb zd@D}?r-VBTjhatcW@V&tuDh3=diq$-dHHwMsHpkS%tpR`Syrz{8C=;4VNJ3-7q@@- zIRB-WYCs>O+wW)0PDHkgJTz!>K1g9#fYPBgV6Z|j3LDHtx=_aAe4ReOGzKxc(6bDp zxopg_xvAI77(Fr%wfYxrirj4yX>`{)(jgqk8-%|J2_Z}WE$E4%0!~W_It!HLU%=Qh zSBp~UYHvT)ft!|wpDBSkw1f1f~N)uD+dedYlV;sam~sa0)m1OO?C5# zC(fqM63RMgQ?BNi7%bCFjY>m|HR$&)}`z(;u8p*2{G^%2r7Ba55jcpt@LVKvR#iL-EtcyFE zL$9u#qI`38Sj&4%woS9>&qzy*q)!JyaNJ%H#eUzj$llSsvDP1KhDic_yLsgXZJq9a;O$?TIO^)Zg0&f=y5f`kG&cX;z z>Iel}Exb13pQ5ARyn9D!=61oVA4Clx{;m$uycHo`WEL@;K0c?Yoenu=pntzQN!=Nl zaA*-#JOfp})t1;zG$e!Di|;0C>{L~pZ6aT~uVJx@eKw=#mUqF3pt8vyy@5e?v*>B< zKe1k){}UB%&8!G$I?(atqH>?!CQYCp6nIK)CA9B()z1H_eHofA|gj@lx_^2 zyKQN`S`0VLf=-s4AcQjh8Jx zc>7rVXzT1$&(-2mLB=_Y#uU1(7^bJEzuzg(*SPDmw@^Z9XHCluCWlSnaWhXD6V4$6 z5}esMxau84dTv zZf`lWm}dIv5C|8ghW~d?Dad@jrxjGJbwEMIK`1y@IuqZ7J4gciiL5ihdCP_vX7M6Q_te5TpIQwK>Y8!G8hW5M`cN9Vy zz>*4Q+4Oe|OZS6(?CCuo_B{#D*G}%1v%0-$4^zKxgK^I;Q?2XoH_a8w?Ozb~Iq-BU z8Pwf&2k|w%n2Yrm2?^D%4+kYrK@5&4_t}mJ^Q)@agu>p|QY;OU{B`Q^!3*Ym1#JxM z1_;jSj)Uk6nOI9+adCzWM1#c=<;`yj32;)(B0_XGD=TY2megxgxuBp4=Z$ypnStuF zi%3Yp+5d^RQSsU7P-ay4)2&Ep7k-Eohtv^?N8Nktk^W)Md}KyboY2mhy*{RW zO-k*c!<`F7A%q4<@nU zg+Cy>3q(Go12dxz@EOW`3DXsE-V+Tg zvvx7(G)y>S_N`iCgO?-(>Fj*=t%^d3eg}iBFq89}LO=Qh;s>km}1y-c$7 zcw>?cnLCRixXj24Ut*e0%q^SU_1U@)PEX&zxjy^R1*_Gmv2~hQN^OFHFEuVgv05Tb zY#3c`FQ+`Mj8o|~H8u48=ZXhg)3BBk5`14@;*f>%#+NJBnT z_M;0UV|v(a?r856EJe~(lFXk#yvnqDFY&4Wv|Z1xOY?4+ARIgA+(M*2{jM123R@-d zX0My;GNR*o*mz-OL+GGdqln95tatNpN~d(AF?CdgP|84NyS<1BMAt?IaIeRxlWW6c z2MW*?b$ke(PD`%YTyhjf$t;I3fG01wdsK~D%2|3bki;M5Sn>w^# zp;A42#FG2hjtrvbBy=Fv)SrPy?Xx+&|0EwWWFAbuW*#E?6;v5;ce!fnia1>?+1D-* z*@tv899h%VqrruWk_RQYGvIyTGT67b%{=6>5UG~0MW6|V(X7wld;$WjNeRnUzcEq5XAOF7(R3VK_vwbfiOS`yM!^Sz+LqP4PBEJu_nC&q=fKm-`0 zkrb%~ct~H)|jUv!}QmX2&e)SQRQLR1oc=|$skc3ND zs^}cOS)F~f=x(k2a;kbvhVZTdq-h4 z{V5&W25yUgP_rYWBxpD179ZSq@sWV*a+wwnAC$E$G1S?vBZpmr9S%p2djV)J+lkWT zDlA4tMUfM;qpst!8S22dxLmIC4l4or1LKzBSmL!mFNm_1x)<9mPpap|u!v_ZJk-}z z&Pq(YR~bMCW@tA)8J@sT*EZjQb2yxYc4D~LxbX#wYQh17O>=Fr^?<2|)79=6PW`IO zj(&U|qgCRPK^72LKjGl}jY{=$F0O3$?b6GmO3$QRWq^aCRz~dBM9j)w*=7$}JbQZN zrN9!u;sytHdAA3Zq*rv0-qkoGjSKT(j#mt1Sf3sY@%+5NG(@>w<-JRogs^qz^S1dd zrx_7<`+~EJi{%YMxyx6NF3qu1`65{w}OotKGTZS*r;3HLTx*0^d8KRef* z8DcFs_nkm4vf286j!G$HN~*>~4mdD<^nFp`QGlYN;*bw9+oLSRgNzHcvnE zx_R%3X2d{S8)ZgD2KOb@`@U9#DQNT!?xXcligM36UM=mi7=0eypDvJqo9htCy&&Hn z=@D_r=HzIaaL965(CR)d6)^bi=OUy}RUN#f{L_OuCFgXW<;u}^Z+Oi%|DxFF=Z`m> z_`)`Z>EQWb@-*_{bx|=fU3%Ef6kO#2Wq1J(d;fPIN(_fH2QBU-HLtv?U{IOwyJ~(? zJzf8jD5H(qb~dLSHVyu+$rKt}P-Qm(?f7COUQ;Kpjl9pXks_+O$4-97BmP{j!uRK} z@bSU17dS*9ItK>m85kHaBq;VLn%6(~rszS#Z!p^l;ozWCSv6c%a_;f7+lrWxT5oUd zGxU9SOwR(|M#a9NI8&w-k!;KtSvVTNp>qlbH@^2`5aO$NH#{VUCX?+3n0UmOKh#LW z<@$PJx0cV|<%nmVrx&@5+c~Snw|dhY?h`2X>?*rCXyuFV@Ed>nKyNYNMTKj@J5~6J z43xq*Q$tSM%L`l$3bb@|MnGZ=5sE#B-AESN=M6^u0j=&$FRD-z-c+>#V;pvUN01Hq z&)4U=`+ZRCNqD`UKhmq)kJZhg3uPWmLTA&uisIqzJ;bUCLc!}YX5NLI{B|}rL6eiF zyX30Aw{bXEeTY9vN?(__sipnrk5tz~qrqsZUi2e@?!UVCrT^FiOcD2Vv$ z;}55gM&3UjX}|2cBuH#oQ<+0D`dU{EY%#RZBv+{K%O8`=E*>5p#yOgF&p0DGd_4BckQ3Djo}*FbE2IEM|p6nW3vyas5@#aBnCrJ6&0b|C~}9vYay zl5E9#>h~5RDca?;l-N2)2*)6tXffTgTQ8@q%!N3Zlh*fV-SY|0WIXU&np=jH5 z%u;YCdiLl<t$^TXge~@ zN7aSSB&NZAc{&QauoDz<6`PDk1k~13aw@%kU#oGE6zn4fe)h@IwV++2q}`7}ugKgW z9;!^(e?ZjO@3;3PS81YwuTqB_S%|X)SYtR|R>#}xm5q2Cjyivf2Vf@L=84u33!=91 z@Uje`<|xb^HyhuUy!hb6B)5?G<^JaPY{ubr#-H=@uo!~QkMPT4XTh$e>`xtCKnTbL zQZ+V@>>k{3-<%iZGElDXH4HzI9vV*t%bVbmUl$9`IeW5E&NJ2bp&vljc zplCF4+ka%neP1_T^dGoRbO?bzA-|rd*nrC*Z)j=AX0^K~w7x}Q4#6fLw zexX~dMNn5%YX*h>59xuuVa7LkOBEewo{?Eb(T5zCE%|1j zVFTqL=WbmyBbcRzot@p)C)%g0(t3q&GpTSgtKzQO1j$C2bML>&oA^$u(d$2h8 z;FL~hNi9i(V02Q(2~=NKTid%&DER13jekqNjHiv#&)Nu?+q-KxpvWu>l0%ZIuAe>J z{$S0=*($fmE2&s1WAlsRgN-mSuOw`Hv42SZ{XI$aOWY*|`?CTwXb38;tHjLpDm@|R z07QF$vcgUbjr8#eY6=Jm^`C=1R_cLFBc9Jq8w&VfUoCmWpHz_hF#{$r&mkO2h~`2R z>2UK!zEL8GXOCveFD|Q#h3Mk_C%jo;gC*Ar1TO{LIIU@sL)hFM$;94&M@vg<{v-^} zc3RsjpKEjz`M~;DpFS9cdW>hNv@XTr!iv^XqKhGd9KRRpdyTOJ1J;tTuUg$g5B8>l z{X@8NYM~7!UpcaEbuKQ%H(@}LQ`-Ezi2SF(c2vnE`W*7Hmhc)E2uqyT@y5;0O7M1! z!l!@oJF{G0da#d*Kcz6;w|XU&2$S>Re(_!1R;~yv@2W-K4$lXff#{qOXq`Zrqnz-o z0^yZ!g|UD=E)W|o{50?Nd)u)69=va2q5Jc&jd3N*M351@Z@`PUUii$`J!!HC{$9}xfvfk& ze=Kdn5x9EHkhoTQyn3$YU7H3V?ZRG8uXRQU6Kv>=md$c4GnlaQIo{IYY+zA^v1F1( zA&ak%=>GgL5nIvWp2{Xd30=F3KJ3A?L9j4LC@njhIvff{0ADKko(IS{B}mBnq0aaW z1FYFmbJ99798eXQeDA3hE-U-W{+)5g1zQ}RC-Gd}eTJ?tJ)YWm@>RV{7r3Xuh``*U zlG+q-dp9^J&A=}(Bwk`;t{@;JP?HfQX61Dz)oE|UPS*QdMOQ8C{aX<57Jj>Cz8=*; z4%Jx=B#uH2R9brp@)vu?iS+h`tsM&#Go0~bJL4It%XU2qQ?lEaF}IXOYdTCuaESw=`aJH5}eot4)K zRW&G75E}$(F%2E8QQAy!)TrSh?tlc3_3)NyKIGk^ksyEa(eA#IN+YCFL1d9bjMCgO zSNuur;{<71ClqhDRK&5pb}VX^yOYi47VUD6$pOxIpZsb8Fj4F2$2OFD;BGbwiKp6k{`gr==n#tW8Ty#S^yOvkc zolsDVs$a`8p=^@43F-97qajh8gH8KhdG#v#c3*iBzt$&OaPV*$G`L4o|B~!X$z+u! z0&Rna^KR@OGW}%y!5`IAsx z9^%I7=dnr{e8+ltKr^={O{Mg(EX!R+(T4oiNf0Yw)+wd1bm)d2W0+hjP*;IaFI3P$ zt>TS5RjA#o@%ooWU{E~8zaze|=14?xMRnC+7^19fy)CZnfof~`!o4OzsOtLL6E9zy zMT2|_P??U?AYFGx^tyKo3HNAqKTJI3d`hH4E zdVQ{8OI;9_G`OIYe-7G6G;tXCfx+6-T{ExL8uk>HC!RCtE1vlyjhY$p;`zyA&!vs4YF&%TUrj8|dYjEBjxrVP4Er}DiT{7$y)xk{9Gl*0?3nNa}P#Lvc< z-_T$81yH$IYZB>C-s_+E6jxR~cNAg>xEhv=ol-h!8vXG^zc4TGMatf$zJ&ChGPl%Nn4kyU32 zZq>mZn2dvm+E4u>7lU^+%Luw|XB`J-c~#5q;3i+~mbsL%Iwsd9_9xD@O5HktdeBI{ zJI3L;mJ5AZ)xpU>EBSX5jdp{zn26Lfa472oC?g|-1&sSe9x|K(8bN)!inpsiK#79i zehJ2OpBJDrd!dp;rZZTa?07eDf3Mb6C;K!Rs$Kp$!s>c`2fM(XJM>LWO)hjW>aU=X zpu@y_$0QU?CS`+9Tpx2u3L6jwT95503Tf&#`Vt~Z^gIPN=;s5_T^XF7KIMzWHjdVV zPTOL!gO0OK)y>&m>x+XKb);!JK3+!Yum8MEuc@u|O^3zHg$km*Cbn6i5?#C@UJa?? zO!Ea#0}aOLqtdx2_bTDcr**l;HR84^J$SatE|3Xx!^j*T*>+le^8r#Tu^?hXPt_(gG2VY z-1>=nnl(a{WmYct=OPJ1xB3XkQRLx$m|VuY#rjj4tON-1fYNV05Q|Y-%_JInA4Lu_2%DrgwUot*kf*>$p zjr$EctHxKif0^dEP{63o;Wa1zcdc6_@;U9Ebm{KOaF<`R54}GVB35`pyHY(CJ%k}s z1e)FW%&@65hpqmuEq{u`zHnFlOi=7oet#;v+r}0@K9#*5Nyz1-(ul`cD_VgM zOFSHFtt*rx(3D7Wwks{U%6EaP53JNmK zyC>)7<^p45V?PalZi*5@RpZ$%Z=0QFEH5|XsK2e8 zAd`OaF1oj;&~_p!q*(pRoTt267t>)=Sex_SdNxL~|Lx6mk0}qqn%VFM?yZkObD~4h zn=}>WVvN0;(yx)Hld9XSw`sMANl1)9n-t&Wb?90H3U!ZNY&g?2&rG}I%Ck-G>1}a1 zb+!U+neE_!=BZI@or*tP&!SgZ6F$ePrI2l^FwO@+hFdlStcU73!e>LQLZ>wBMncla zEP8nNZbBsb{5ae7F_M-F`mqZaax714=Zt>8n;vPb-T$}Rf>uB4@mpM{KHy1q$nP0fbEA~|EfA1b8iz_!$4${fV+Viss z%(IRs6i3#)#V#*@16IP>x*q^f~uWN*B&P4wC&4 zdLk)Q`@HbZi%fCEsqMzxfx;Fatw{1NSkS-U$KY^{T41{(S zT7A8f2%UMJRriDIVOg#?F)K@t5B$6IJ@I=~^xq=od4Is|3f!x+3paBr)Xl%_jCM1k zr_Z%Zd#-y($~6^vt<05-RWA;0HNLXTKw)7P{D=>)ry6=p1%!pag8MaU1LM9mF!^80 zyhYZp))}qN30y@2R?C(ujAD8FCmB7Jtft9mQ-?u6to^>9 zfNy_Veneq<*#tufBO_f1W-PNdA(4%=z$|2=ad(|@FU4%MuNj*)Rul9{UmyATCINPI zM#rO98X+GARhJrv+e$~E;3-e($gTW7pKn|2S;Zo{r(h=&Qskwnwid(4wI_NSUbgfl z?zM{N?=n`8{Up{oa72l%J8MXa{pHUg9O(;_RtotThZ&t5W{JZ6!Ieym2lDn5_u!R? zJCi!+IEGH?E*!K4uDE){26pefn)IaJ^fJ>goigi^z4t}JL6Mep6PB~0V`P=k#x5kT z`R6GxK3R!4P*%6f#2o-iegRwSB>+W>IUwSF%-;ev_6H+ywBAfXNhG;9^w6#*%9WX*e6JK6!YhU z<`9T=nb4OX*yY>R^VVk@#-d6n%6nlhbCcx0nFZ=ST4sFUdgn*t7<2|%yE8xdCGs^! z(#U#OVwHR!q>~)j`|RxxO-(w#xn_;M9r%C?^>b)I;mD|9SDcSrGmJao(pA9n6Wiam ztszS`<#F@$EIpTNX=mqJ1goTH zXo`Z`9##8~w{Z3J9%pCkbYnt!tt`UqqT=<1M9{)v$MQ zAKBA|PYdtY+4%@B9+spGwVSVJ4tdEWl%+W?1cb(Dw!dG0Rk4yF-I_M{bB@MqAb8W- zv$k8$%f{dxl0-eMOo_qdv}QG(4Fc%;mg|oWKd3;|DTsHj$)Uxt!3vf^Si)Y3K zXL>J@to%}wESfgTx7MPAT(1!bfEqlqS#JT=Cz=iIs8oWA;qcaS3zhAJi>8O-!0HT0 z5Xv{q?|9@+F`#?x$7-av<`#y$l_AP;WhD7ZE}PS2|M@BnC}%2om;dx=ptJJ*?K|+a3}lPs*4nRfn$bZ0VXwN{{jKV;6^LO503~fTViu^x z0u6=vB`$YR9q?4LC1mpKm2B27GL>CY5#M}#CM2j97;_H2KU{Mi8@fD>hKB4}CD3z|=e=LLuRO%TKoDClo8Z z z+`#mIxhd)K(vV^S8?TtQP*YjmY~2f8$FmwSt3d0of#Wg+SpmG@-uCOdkDs*mXwls} zext2z7wofrrkgTZ$G4_sXW2Ld1DZ_m^@!k8g_ayx{2R)T?8&}skus_E; zKVvvgBgB`d58O7)Tg1vYB}b(=n*?e|3M#|^8x@;3Q@Q4QrN~aMZ3S!Fa?H*V%_KFE z-pISAk>|a?Lso9tZW->G35vVLB_#sdRZoK>4niy;@dMQCaK#9iWp|A;$CT$Hh&r#j z>q(ZyN0NsG*A}=O7S2ve@MZ~LMUP~yY-J96GB0iizT&y`P1MZT`p!XZBFQMf&sLN4 z74*l0?aDS85ux}U@xu9l>=+}E+jjo0x1yO74mWnNES^To6CySTHlNIU?<}Xsg}uxOmFiM!DN~PpL1E@qGJUs}m;LNLSYa zG@+%``A^_}#8I?uT%=O7F#Dq+}V^A!oN?$w={w95xhD~jn5N>(;K z;-WTJ!ycd|54tYM=yq6x0B1_9?QP(`VtvOYe$d@fR#vt_l%}Jm))B3u`irz#^qK)K zalsd8Z@n-)5#aZrMSb2MnW^KZ)-8R8iuW5l=)krmhfD$uT;cnSCeq)YKEv4{+Tt^b ztg8!S13^{0w-gl!AM?v@sqEG~g!ugmp6g6qw!+oOVp~TReVL518dK`hic+)8(Y+v+ z8;vs#*l(HAnO^xP=jk^NKiOKe!+kC##mVi`8YoTTp3Z~nF?47or*`)P(9uzy-90+i*9ugYcJ32=>+aRSk3x3G!@T&=h8N=FETbE5!hQYs&X)h)1z?QjIAE3N&FT{Hjc1!w1K zO#?>^FQ)%n@r~NP?N}u;_k*n1auIQf{$kI&nIxTl*9_K&wKF*zij+amTmw(VyaG|Y zX_?^VmFchhP$gM74xjU}u9bR=GJ5VAV1q0`*3PqaDXuq9{9rkUDFD>WnzstE91+#x zAl^zNLQHYi30_>#0KUEddC0pHc>%ov0(1?T`dh`%`kvhGrw`%Mg-19tFfs;@)rOR` zgPVY1hWsT+Iy+=(#mrHW+z?3ArSzc|K8I+Yxu#O;T|CPZXw1Foz43wcpIkPd0jhh6 zW~AhLpa}N{)b4z5b=QbAb2UZWHXVKF&HN>W#`}D?orc;ed2x?iv!U9pPM!gED#w#) z-2e-<;3Cs$Qt{AYX=rH3+}1X@s|$g=1QRea*23M&R{H*pq+6%m_7=S;YUB2sd1L{> zr^|M!Rb52`hZ5jknv?<6nqW9%rjM z?ez1CnbVxxR)jMf>s=gU-NeB^KfTThjgxhCb=7gk!rwJa=*Yl2UnW&sy4CAJ7dEB3 zWv?Nfz#5g$f7}^BmaDZ@r52e--qUzfB;S`lJ2w}=mp7?n1jPxT9h(NeKbEhwto0BK zH<@~wjw+%>H~cKn!rU16018{ipdT;&2?Y$xZIQKOJJY}d1qYAs9);6#$<|idnh{=r zPF5-os)m2YzR=Ba-+N6;Zrqd{6j-F#m+lZmUfrLmW8}Hwv#Yun)n8E4KG5jl3gY_} zwz%CVkBAW9FalgSQGp_W6Ay>nO*AJVQj`s*&k};EmsLn);O>}z8wP9&;aX2%thswT zHYRkNkb;MRfs0Zu-k|tT>$NTfl7B$EKe>TlYbrOtWxD(qT9M z`$FoJUI3IwSb5z89{dJo_}iCrKZ|DumjW94v;!o%@5w4R&a6!AZJ%ggFwYlZwAN&D zC3pU?cL#K&eJ&{x>&nz$VkeAeFB43~ZOq_0-l4Cqfilwf1ur4}3$6oBO4hx(T{oTv zeqkl&z4M7@M>X^o+ySjVVfl$D?MFw^#`mZ1StZdNvgw$-%Ls`$Kl@icybri}@ zLwJB$=C^Z9EJ3Y?Ax5)`I@y*myMn(F80htbMUzpYlf@90O7EEuK&5&={2Z z`E0F^8A$!uQEW;}yN)37tCl2}{b5Nb>#h)8@4+q^T{2aV`d;(!6B*}eGYk&0d#!H^ z3GwWl;E!x9jYS6J-4ziRq|LHx#NAFe`W^8Nj5B*@r`WvF)bNgEWc{PKdAd*QMmY`r z)XrQ|HVV%XUXj+IT}JcIs>*W&2z;}=_uY|9jrYz!P9KjSg(G$01ZY$>@JCyLcYi>9 z@-f3b43ZVr&fZ@Y?%3E2AwTL95Zh&~<1=qxB(e?H9vR=!RFpFD! z3@a1Q{6}u~LsQ(+#%EQQTov9?O;ITzt@`3HXc3XCiIr|u04MiQWvY+tE;_6DVck^p ziHu+dG3v0e8Ee)P@%ekzQa{^Dl^{y}NQO_GZoFd+iu{U3FIt#s_p=*NNeO_e#i7kM z+~l+t`Ps8I?^tBPedky6;Y$H-PMzQu2fC#@QqNm0TE|HuM7c8pq|B9d&IuwQtiVg=FNB(gv`Fn$lwZawon(YCi7+ex7E%_1B8 zv!~~yE@3=pEN$RcMK}j^zMLPA71TTNDSgriFvyIy6P2Y_Xs{qULFBe3SB34|XUs{1 z>++TC0N*yVH@2gJKv3iF^uj`(EbM)!QKA_U;)fdUi??s8Gh1{zkiJl4UteBF^LWiD zX4&+Mb!T~OE>6$R2J9|XRB+CH{$oPN*Y-B@&Fi}QgWKZ?ENrIx8db9K1Hg^1luhQX zcp6y^IPXlDN7a9DlBo@03aP59f*Qn_qne5tVW4TLa<*aL6jv}hZg5KD()BTU7WBAnN0NHyTa zkTDkvAklsgy+#mqP)eYgsT@Y7D&L%^wJ+a~1t}-8JzPmy`GJax%2n&|ml#;Q#)B^` z2Q6xZ-~tge3miL^yx;{f>no{U@2$S}On|QZrkRyb=_rNwQ1=e@1=k!|75XvgTMGnd zc^{C>`0CSc5*S%KFx!l7=GfGEK1lPZ&a{DwB3w}L(KmUnq2E{_41>W0=+cF=sOd9B z?i7EF{)8#iy)43CASIO#2Rki_ZO*H8RMY|*7%DVbQy>4rrkLMVUS58Qp8id6aIi*^ zgNZR;GPwuATW?@pTXP+P=fO$_yvI1qUn9MWF46*IErUTvfV1Tlk$7Z(LD<{!iE@a( z_lxTs@!70O2oT6HsPI^X^vf#Oy`+D^ih`!rqgZ}MybEp ztp~}V3ND_(4@@e}*?RaNqABydxA5vZ<5_kGT^@Qdk(64iY{K@>k{y?D7Nc97#`zC= zadA=j=^tY#A=T2>7SJYma#!91>-vhtFQpMO!}yCwDFLce8xZa#w+*Q}6{Fg-1UvzW z7!2P%grwWSgr=n6w#W&&sMQ|`q1c%~?FT9{w(i;2%%E>)PHBS%*(0?if1`q(d{xr| zJ{aa~Vv>h;T6%n%WfMZy9N^j`Z7@eyJV)ZkyaN|P${kdxK++rxg5i}#{ufz}No-Kj zT_i54H!UTF&E3O;ECV6`oBcyW(I=Rt>Uqr0TnA;#n|`R-0OfFeM`*Xb-p@SBV>8Z~ zu9uZQ+N}|I{rVU7#q^dpD!`4K`J5$aw@K%|0P$-9Xe=$XPv^lfFmcM4z|ZG{K!{@? z^ey<4f;6%(1C|!|1R@nFljF%V!8KpN9pC-kO;8yhvRn^{P|!MS_c1!H^eq+_4eJ5O z*Z{*JE4XG5o~vEv;rZ=cA-ga5)L?pXksAlrB03m$A~nl@=`0x%B4TyYBND%|&YpKS zrJ|yO5OFs-3Vc`Xc~VewLCncoIb^9YneRt1jLg})1iSqV-MqK_Sx6^l*w)$mcUn=A z<_{_<1zezQ{xgwXX#J?$-TOEDyAv6qm2gEx#c>A_B&pO%#pm$dnr1(A z@Z`cpNGr+sMm#Y81_LXFrcFO0l3a`5!b0nDQ6Tzmn3@`|Ab>iXw<)8Qf;TaNWfREL zMAehUtW;KP56JYj-*ll1USV)YY-wp3U@fR!D7h&B3otX@vG!*#iiy6M264X} z|IwMmvtQ#9m2YK{6jtR;=@=f?CqT!a2dy==%hPTTm6ed=JB&LAj*jkof95*6XNgrw zr${onuUV9enl;f8q<>a8_;^|Vtng*tTWdA%S`O@z*Oh|o${))b-Q%q5EV(Y1Hy1Hs zsQF`nZeU}byk+!}`lo~)zmNVqAHSkG_KM$!!m!Joy)+LA;gAm0De!x;yk>&{t)?#3 z(aqrBtKcx8QvbBFXZ$9%uGYz95={!RtcbWbs8~QA)6&HoTz=n85B*hP|Kj5A{-poh zRMy_%ZA48R)WHCY|GYKz3;F{pEo)=nweKN&`*^2%^yN7Jsu6x(K1448dgxhEfe1c} z0g>HN_cZJ)EknQS`!)4^oBoL6w!GV1sVI1oY`ds{fB=J9M~CljuN)yfoc?q1`!bS} z$-U@_?vy1nTx|G19S~T#KBox%0s-hUB~;DQ%1Uu?S`eeJNr09M+52fc&i2J}Hkzq# zb1ynB@%VFbxe|9VsEq=q9_H$`7Pb-gxvsOjtA9F0w)tmWd4hBNs2j&5mcRr*4tG2)B~8+?p*~68xigmx;-@oqPzaj=@74i zC;mO2TGQ0h-ePSE27%f#G_%qP5$_nCo%1ea?+k&u`1+mWe~>~-;MjhZ^Ygg6hE_6d z=1-m`I*iEz!kdWY4VJi;d`r9krF>^t;jn{bvvIdb-VwA0L61})-jl(t#xjR>+fwqu z9T2I;$q$e9^#|dIGNK>$*>>i7EenMc`JXe7Wu-rsbsZDp&6l0gKr^uhy6-`K1(X(o zq4tD&_Zy#Mfot|zX&Qrj{F>D+@wo$bT4p#RiJt@(9$&?c+XI%pzmIxp=NH@9vX_tg z8b9ZQUzWK0{=>B@aWegLtKF+w4>#9h$&oSh`yYOs3AsPmV*9!ggg@&n;1WMISt+&8 zpMUJa%He)XT;uNck(z*PdB-a5tI@CUcqEM=%LCFu)B@VbA~->-WT!@GcdDBgk=YA4 zPsL7`Dz=~12C>kPxR}Plv-7stQzD{txkJMtiQ`KSIj_qPXI}5>oz6F-?^5(MT35wv zdmrWI;Y0v^oMCvZU_-yexO$EIyaw&u4WY57K0b$UhKI|yt%+36=R%_rNy1J!^7v2bCY7?KfQlGevEc+*re583?ATbd7$h4d3m_btD{3Q z*l$dn*L^JFW3wrTdtXOK#|rk9_qTW>^P>(L(32-q76X-)U}=MSaV06^W`#b72bU{+ zYMZ)Cx96bdffF2QSLMIXZqpd;td#NYSGpSQEFJQG@!1;lUmSBJ)rjHW-`Zs17v7rm zF(W2U+^$=qA%ss6BBmN*r(Z`5s@%V~G)gi>JsNkGUbA&IC!+y0nBX2%TEY=hzq(IY z<`jQSDx2Lyq=NpZ`<`9}WcKCMt?B|C+n(bG7Ix!yyG7=A9BxO@&lHd6%*x6pK5Z!% zc5K4(x-?-~8EUPsaUp#6gj6`EFEwNiBhn^t2^omlMe*pq4mh&<3~)(;hp4)ZCOex$ z3kyq5Pn(u1#aFKW{v+>%q~T?hJQZ4ds#xFg)vS3Y#;DZ}=q$~Jhb|-v*}kru$Ox=x z*3>c&g#YC}_yfEfIt?mHd2zdCP)Ga438((PzRCRoG28M<27Qm=rtVXkP4WL6KKnRJ z_a^nAgIAmnku_KPw(+;Y?WJw+1ng`hoUXn+)-YG2nod&fNI5X<=OJaB6nTcg&KP>T zCQQWpp-LF2#1F5mYYVwP0L?C%UGIsDSSdMF$}e#=uhsn7d1sE1yr4My=Mhs!s)moQ zH?u>_9U8^BoqsyRKR>l1K3w`C$yslY@3Mx$u=sMq*UO-UTe#u4`F`AKb7|P8Ds!pW zW>qFG>_kT4w**(apaU`Qo3zN=wSOAr(i@|LvE)Qq5+3YB;R`_m4xmNgPbqCLpRiB@3cvu;y7)if^&DpYp|Fo;u z$tsk;>p44j`07t_w%_<>SfZF5RrT^s}1An64iszbqZ<*Au)j--lU9vd`~TlHRcS zqBIoKw4)>@7R1)Sa9e(A!FG00EYc;R<9?)DRE>?CS_yg1>9Njh8-ipHl<2=LhX*qB z6TY~MycXjc`{HU3abiQ!ovG*+vj;@}iBsE>6>$!tFZLFMhL|r3IBE5;KeajE_bGS^ zkr|TERm3{n>~pZXL^ZEvgFI>y1JK8^TH%V(Qe4IJITbWbWHcYv>V}`LhdwX$yAX;% ze;D$xDlPVOe#92~GE>?6p^!n|;jHU}!vQiiT* z<}nw#2X^y9#dnI)5kE_da$2^F#|7%F0!N;o9;i6apjj^JZ9hgbx)r^l9(NFal4eR$ z!N$$_cKO;m)5SH+zh2__V;@9q@w)xW;W`uP!ItFS2*vPPk*hMZus~$Da?O2dy>Rx^ z8mxEGNmzD^LWQV=-l+-g^!gF--FXO^d$(U#zWHKjA+Gly#4a>=qWYq{(K{TN&w;q; ze1c1f-*6DC$hNmbm$^{yLmu`aSF7wvLuLxQHTX&;wtVAD_CSg2aKp-z7XFiEU#P)7 z1@y$zV*7DzI;st{TK|u%?~bSP4gc3Jg$5EKsfbYari82r=h%Dil|7EKDxnfWR<>jB zO?LJ=_6XT~9DDrkbI#-Q{e6GG=P$39^E}UeU-xyruYEnUbsUI|f`RRKXq!V6?XBoK zBf-t^A8bai)3vIOWe__{c^#E29TIG)bP3-iOZ6U-NW`wfc%;G?Z{)XZRF{F0XwN$% zJ%?4<_=&aOxj(1%t4-6dz01l0>AsPZ-Gld9T%c10_ul^~-6j>`oVm}k(-3%4tWy&| zP-16v-0w%_GWRn}CL;CGVv?CpdJ^LmH8hJ#=t;_|5ILKc2aRFnmRl>gTlRxEWaY!K zMyarLdZ}uL^$;s7#%6mCT)z%rk5@Rvy?38<6umy@`Y&$aAY9 zw^@vX{7Lg0doDHiR4ZDDsTs}+eXB-EfOsb#tJ^|{#4dxY+dmoE=<|86$vdWX-S}^_ zT?`Vf)jo;T92RoayjIvA;3dTz^fgJvAaXKr>ly2_ zqizZDKE128zfbhZb{WeG>hj;sAVPju=-a}gfXBSXxCed2ZD!_ymzJf4X3bh63#66V~;|m@tsV$}J!W;CWC4tQ#7A&Sv;Nyhm^Kp3H4U||SrY~msAiOzO0-7umBs2+Yzp{XwRmQ)H#KjP z+pN#JKD7wC#|!es0Y!~9i;Gis%*t#H-eh5_&A}!28bXF!Ps2f1BR|ZTi)11~dTiIp zB`w`!f19X|%^xwSjVdfJrlJ2IYyPxUFZLtwt1luQH475{(#mAIPDL2NVPc^5rvW%0 zF54UEE;|%c)`5CXWD;*5WP1ZafQm%5Z-RJN0V0QoTy?m8SJbg`HtknH9vOj(^vK+R z6GIXJ3XlBlDXV?AXOT%mnaXeSPq{4N9gd@`AGB5NZ9Dak^KT`^!lZgW|GF3lSGUzs z&yO7~ZT`1wye9%@d7|Oo;0Yrx`6CJS7UIc4W%hVUu@-yHPOB$Fd!@cHAjbp;PYB#R zCu-h2nL$ZS$++kpSitf*WA$jq=;*+=kEg5L+UCtllv@?V?TV0Z?fKYrMg8XL{JD&XBWd2Zfgc9POUHnAii!0&<$Dqgu z@t?`7A+OA%1;@#us)4&fN5~U82No5zEt@eQpWiE2QqNtw>Jh5?jGtAtkWPRbq2hKB zDD<<_Y&i3YTT@zG0TVSn)-V97!w@>y3r|mGhBt5T{pJ%S6)Kqw{S~;?j#d%}w30xK z=KP-c^)q=WATXeDz{%M(J-Wip-EH-#if^LdF`db6O7U4HrU)KfUrr15E^N!TSpD(K z_+$WxRcs>@RuIxu-MOAS!gWRY$auMt4$V<-oV%b*_n&M*UK*&Ft+RK&9#+g;c zw?Fgb$*zpx{&A6-#tk%4;LA+!hwu{L@b#Ud6A%78r?&je9tVSo7jG!d3X~yeDS({M z*e0+Z$G&mOj;f68Hie<|Pe$5vPM-t9m~}WthHi{kZ2H^GmA9K{A;0`id2z82w+6g! zX&f@ep7*7Q*bIORglQ^uMw;X?luvx^BI6N+=N?q#&n@gO5*_z*_jPN2Sp*GNxO;!_ zLo9N0sBlAMod}4v7W(3;*XA)RIjw5|e^6m7`R+X#KbCG%3_qdLGqgL~4&XU~~q&g?k zC}o?qekTA+n=N&FsW+M9g>L&60F%ZQzT`pMQ#=c;k(GO>n+k!hbp18ky_n>_>3=)F zF~BTTWr{c;Xm)a-`qj0d&msRj{7BVrAoi?|pAbg%tK_@pYw#R>K^;a~u{5bbPh@}u zUHFcL+Fsml`+nJ!@#csLj!nqu`d4|)Y1+6>NwCr*# zOs$>RZA&J{SLgPmCar{aPsCOetK<(ON$%Z4bqL{Fb7uU#C+wEQs2W0-_7>9D}Z_;grX$^+;m9)HVM#q9Di zCA~@Bei2tzVS66Ey(=p2f>PZP_3`TZuE8qfaa()ra&s!z8=0ajn1my^V!I)6Noe(9 z*?GMu3=|!&YJ{QkJjHjgkMf*{m57#EEJ4V^yVSQ1qGX0QQvK3r#@$?Vf=Pk&40bL2~DDxT<~pwjPEtMcI@uydC|hER^$tm9!{i*T+RHj>NZ!E z#H?*E4~Y8ch-1^LvO>8LI_XzT5Hk|1>>swjzdJK|VcDk9HPfYMHioxT3AOlo2nlgb z*NTlx@dAcpFhZB_D$}p1n);ugS&%Z;hka(Zj>F0CIqvc*ZKJ)pgK;XMPn5?P{9-^ww*C-)Xzsu|BBJqx=;YeRLrs-R<0nljC8= z#WT=8@gX<(-b2#zUbQu^^x}Ut#Zv-G^)uAR`3rsOOWSD^eSrh^(=u2FYDP=xLi#S{wW2;;Z%3tpFsS$*96T+n{Dbk2EW4|8VRoZRvxi_EI7APHKYZEUclzK+Cz z+gYu0e%`)Hx_zp>37*x_&LPfuIZ_-;3KujDJ;3}ayvHOU_tO(4ak4xNCq?mtpqyHu)874vrePE5eQ?&oKYcq+IN41OuPwX8EB~9U!JH zkm$?*{dJDd-{S*7rCA{c8NiTF-|~w!HYD3`bj|cR?Y%eHlS3U}P*NJXn`HV+1};H% zDrs=YhWV~?Gdse@t&_Z6TNV5EU5nfG$L%CJ$i-5ujBO^pv77y7Y;55_l|{v~I6pJK zh3x9&O@1^BSq`UtWz&umEfs}p7k!MgTqYL~cTS8@mp;9%Y3|N(0K}fQ>Togq&pgg( z>D$NAx0%T#cQWkTc3S+o+8%sm1J*ldkUjYtB^yj99>;A(VY>k8vDf@BT$n2MGcVz) z|KK^lG=~eoJlnq%B)fptn<_CGcT6y7&(C@z^X(Dx!-;JJooSh_D7zzbD*6V*UmUnG z5qPnmnRz=EP#}$(lGO8x19pj5>HA@{NneiTk&0~5Tqc+}fvG#iT=&gzR>*YT)?O4$ z;K=rT`b}BQ!**aKw0&zxV+%)YE*A)r<9>_>iK%V)DB>wtW!A!8P+%yHKENE7XoSi9 zYNV}^X`ZQOF?R%CSns|ubk`}2Pyb@D$^lbmo^eJq?z#J^wKMJsFg^!jXT_U%>Q#E) zI{mf&Z>b8Hzl&o34M0cXtdBA+|=Ol2R(44tS~ zMloE0F%9Rr)^vQ$R|bK3)Qa(mHLxg;V`9dS#tUWU7j0z%Y^+t34!1O_ZjM(i(%NKK z0B4%F!el|;dZBLCBl<+W@!h#+J9}(JuS1%y@i8XLEbXHWwIHuz=)r3a zeKarH{#my1o2Bw&_w~P3M|Enxfv-7brz4XH?>cEXE!2%uMjbm#-s|ZjA0$zlvC6la z__cd%&sErsV;T z{Y0n|wNg-x%F_sIoCqE4S|4HCt5V+%MldY7%g3%L^;N7~_mXK_ANXW8SynWXI*O0? zN&v^h+NBFJ*jnin7+tNRzvhAcVDzYHR9(*If?F0WqASPPV;_tnnm0;2eq-0TPs@g! z?u`jkx~Kqyjc@X!L0B02GsHdhr}JXGx4qnRj8E*kN~~5>3)3FFlxNUG zhjVwop`ZbSm(}rK|4yKE=9tX?f|~z^H)(XTE0uFfh@k$;VK*GEdZt0oQ%rpD3WX}; zYOE_!?{hut>@`2Yy;xWj ziqyz2Z^@x@6EYZlm|(Nt&Zjplu+0nVlK|i>?-PG&QBo^@pDo#}qc zK3cSt9JPa#%TH(+*%w|g2L{!?oRe$hD(agyHaBpW39k6z_}vF!Ti=xNI%m^=v{PRy zP6b*6DW$vSYd;=5c&= zr*8ZR$+yu4g`4nB@qj)u_;(sifNz6|8)a+_=M*DPrcir#lc!HB`(R}M@66o7C<$Uc zN4DYjHX*h!9uPquYPzCNO_-jE3gZ7sqy$sbLxrva(gWXO(PUs{x{U(id#*J{6moZN5bj_jzrO&1B?Iw#Xs2`$D`5rSs?Or)dI z$aeJ%Sa;DxrD1~{bLjEg2hr*rY$UUf3(YxiO-+?7cr=-Ez;`*3!QXbgJ5GKJ?13Ry zKK`ce-4LIAf^^)4yp^whQ@#lqh9{aL0$wUvpX+~V(B|xH+)3qAi!)#gCnKUkN`B|- zqYmFL5#@6}h^yRPW*T8~7uUG)P z!KMz<6s8px(3P{E=3be`$*!22JiLaM+0(iJX?IUsDCqSl0}!UN#1sIEFPEs)i8FV! zat|48K=>#AlM?;3%^cI(Ib{iI1?;F2@U~ZwTGg%@BHFIEAadjD6DV!#OiHz64@~wYr@M( z6}H6PWel^(HAu-#qj+p_?v~F(W5~%k&C#xfmby6BYwV2Qjyl*OSG)n5H$}_DbXTX@ z(iTc`2N%p{(;k-S9eoW)$#2k+p3=G*G99?%XMVqPb48)mipb=?wz=!DBfLzns-pT0 z^xm5DU!c?J787sb%md~810#2XGL$W>pp*XtoxIhze7O6*>?%gR`zqW=k>#g>66`r; ze8Ly?gPj$R_g6gBmeh)yHgNZOerqCU!~AJo3Vei3tzz-&v}+*N0=NaX$#1W6a$Y0H z*RRE8BkA`$EQgGzocfIT9yQpg>OYPuQqyAe@3xEbVkqMLw5(0p&JYGJ#j!82a?LpQusTFu<8?HHwO*WE7k+q28a8`eVbfn!spEmW zO}Gn(ox%ZS;3#&Ns1c9H$wgcMS*0AViI1)~6RMiz>6U^+X6h5z$mW5VS9Cgg82i>* z&bL;d%T}s7ii9OO09yE0t}C-2Pa4+?f`NrT*%OPA8yTkvRX+*cI~iqKnN2cRRA4D_6TMMJn>kt!%@l!!-(Y7J8n`1#2nloOy|z=`{OS7f@DDxf$%Jv2NfMP6d}Zx6yH%M(_R zmL+r}-_)#4NV_F3tIlA@(tnfMg_pWqG7^9%0s2@XqQ=B!Spe6ZiWhtR@FliQJWcLq z_Wn{>6&cWC=|vIKUT`Hb!?C?&D%&v;S@Hgg;a^i-6{)V)7I2b;oSggZrRE(g#efru zf8v}jyp*@lCVViQ)_yd9bx`i^V5ZdlyyDH?g5XEUz466>OjiW)?6MmTheAx3T$ok< zue0p!=|7l80pJ@8(aS*whIA0lOj8Ue8b@dWV(DaXJSr<@qb}qf{aovnv&I)RTML)S zgWarTD7rJ0PM?ht%dMDEGpJ6YIv)oE!Xzp?O|>>heN1rGc-GDKpd}8*`(xMjC2Qbx z5gCQk2n%k0#lkafKWX$uCmy!BOT)Fu_drrXX|?y$|U_h zv-sebjiJ8MlOXAXkvziq=|Lsk2}i1qA~mMN_KtY_otB3bKRJF%x{rbQZFA7#b!BjL|Nc~nQ^q}6sE31U}H&>FVni!3$g zTv)_E>F8k#3?M#?;6P@wdRhND_-jFA{`$8BZjGLj3RZfUKjjADX!9UojOK~9(*t_j z=Ber)eiXP7uV=-R5d04LkM`Ny-%H$u|H|jIY&EZGKIIGSFnKcY#fZJP9z;Q(hjBXg zOI@g-3Yp)}P@Bvl>94!h!d&zm_ZICMNFd(>d!r7pF}z8wIlm*I)C}IRJ5@&8KQ1(( z!vPQpctBmZm`rHxA~v2QA2@}a&u$=J+&q(>`sxMTtG1CgEU%2cxz#jvZj)}+zY5Vo zT_>ynzypGy(_nClHbp6ySkGTi5?jjvHrg^5(a%C?>3@XfPZQs@ar6H;F?QY#>30{r zqV_NjS@+j$0vYT(wl>SXY{y2i0P>B!8{H|Dxd^vTj}(@Zy>VP_vs)@JBNODyTG0pl0jIQ~&CD_E#&|KF=l%i|PdfkFf@^Jn45H^4P1WrhZy zg(~@MkB(BwCYO%HH>kgBB_$@B7JdN_SodiGjt|cT?37AC{q84beAx4K#^5YF0pY-1 zg??_fT%^)VLz`rp4HqTJj%;91INnc724q#hMVp03E@uimqn*l-Bf6uvAff(pE0z`wBkq$`X!P zuB1S^>1O~W=3g?$H1^=6^u_!8O`7HGxk@bkrm#gr`1o<;#Y>Yt2nVbGbVCBvbD{Vp zA>hKN$85(oaA(D{3&{{kx}g#i24SUD=4Hn3 zG7dIIy&8F}tjl&xaYJos$6sI@n)?$6t5W|77dy_f^~AT1BxP*Q0D=!Bb`Tjhi;%T% z&M)YzGt3$Za8w2U6Z9x0rYfzw&c zjS;tbotx*z^eKQ#4l33BV#{^-*A@P90T8{zFN4*ek11L80f7M;&9PYwz(KFH~{f*O%6D_mzx*?Z$Cwnvv^&2k{-6 zKa(&3+@nIO?kupeGUgkFX=h7jw^1W(R&!(DiB8SB(^(PnOTN_RIaCaO*|7Q+O6P)^ zq4bE0mvlvT8vauw^mI7o|0)&u=kZ5!F=#nw?+gZ2rb3krpf$P7NkB6Y=JHg9=F>d3 zuO+H9;!rH?sfAyi5%29+F}{#e&xx!97#Fzh^&YaM<&Zf1xt9n>FJ+UbiGWH$Clf*Q zki&?>@V7{C14fCw{J)oS30g`VOkjBP5Fv{w5yQZ=gQ5ZN9-cKJX8HJ~q0`Fok=s^>k$KSoCie34-xgUvPYTdkre`}gr zUDX7MmHaK;t?l>=ZS8?gn&Ml94U+&HW*b*@=t;b=FlxaB8bo{T*1J>G9G5>j0Av*X z^DsmA&tY(APJ%@`{2Z1gegvK>o`+DmuY8i-$(XTFuMt!4PlaW8eEe6}_35Ug$;2k~ z&Vd+xXhZm(GhG|(&+1;{Klj~QV6cxL76ko(RB`WRhz8+6M&U0kkXao?kEba@Fl@2* zr5bj|U?z$>Jg`KywteFN0)1ID4^STCO-|&N4@ma{9NCM3+*!x>^1-;gC%QtZDe_E7(cjnOooU zpGBGKlT!-ZDCOZP|EYb^SgHtsbh5UOsDlfU*Ff~vjDAM z9}6y%8;KdtwBCA`rou#50}EhtPyQ~~^HZj4N8udSoEl?|r?g)<<;A)X(p>gSDB z{+2DjvEI;^+^?FY%Y8+MAO>IiVVlz4#q^s^my#D2?~_x=MzI-2Po#fuYmTP0sqJH0 z2hoz;Q@id34%5Hf1Wj5dQfDNW3i^;QXUrW1@6_>{m@lCb(XrBMi!53{MjYY(7D``+ zsXz@uhBD=)VLsFUb_tCox%ZHFN5F{W3q1Kk&TF9k3o^-r&+7F}!A(_P=Hr7sLxdgE@D z`wboc1>i2LoD;qP)Xihyb){p&h+;C%V8HD-wgz&T@rYl6N4x!Ujkm$6 zXJH>GB!fpE`@g8)3|X`WeIKcpeh~Xx! z;=QZ69C}&{;EDe~Pg&(*#7lW05sdO%t?Dp^)^!%L;KLuD+z`Y=VJymDNXM{cXmQOD z#lxdcHvGXfwt8S%f13Gyh7ngC=t+zVn|QLi4ugH40b?74dO?gTd+-zP`S)N>0zrO0%YoARFVIgPp8hlrXl?-FCCA5PtIq13_}s}LOu)jsv&sRX z-m5b>9pHKP53tUDRcdzP|Hvj7r67Rvlk$)a(frCwA|y4-f9d_+9vB{S_R;;ls&g2c zLta^I>*;p)hxk5MHS3eA|FFsf1KzdYW7HqUdB-&?;L$@70Qz|KDe0*!&g23WpIDNo z&jEmnZvOSO!JUzCcrOJ%W;ev+7ve>7wsv!rUCM<>KNB=8s}jUkr8x}+kdgh@*`cS1}P>4b@~)tm2;TbkY|l#4Q!Rt z>Dh|l*30s$lM82%ccc|m!EZthmb@aw}jX_h(w;>X41gKz_E8> z8#;`pYTbrtF;I=^_}533n!uVAM5ZyIwvM|=_#-3?XCAyu(?Xz2il+vSC47)#p_M$| zB4}=fNSN+nsu6gQC!5M(9xWz5Gzi^#1$S#TyT()A?^ao*=Ko;v|76;G4M{-2qj8_$ z8h1R#2hXQoVuKQh^fz$a@WU4-l2w;XxEikLikferpa`gHj>>3b5Np&uj6sk-V^?3K zJ=-1&F({NjjeUvRpY|t^8l-I8mNj#0oQ<(MBxzB6in;@$-?X#(2YS7>h!NI=VSM7n9S z$}pzY)t{w)*Y3a+yhH^EwJ|&H*K+zeHTU$2&o$*JcFtrJzG<~ufyzVMj%ELm-y#Kq zkN#c*+5%`d^V3_Pk0v~Qe)}_F{lS42{cdr?447yg(A4g_IFq|hxBYTO8Icimh1&~Y z>;VJO}a$z3v_ii8IHi!(> zv*zaa;G0UgYv>QnMsL1rjB$AcBK*Dk`JQaRN5$x`(~aUo)yM5R=ru-B>aO*x?M1%i z-!%Ahv`2S49L28@^zRpYa)HqD2Y@I65ZayIHC6)zyNlPMe2$hpibWr$fU$wb&N~S5 zl1>G!W};2b7-i=giKn|9QU^ekJ*`U_tC^-1mt>`qffvx_Ss!~x^YmjGMPYI3?ATur zyDxX|nE5e^=)~<2Q}r*z+0Iu*bm(XpeMj(aAbt1!$IYSiEh^5_AwNSBM++RwUKcr# zT1GC7trU(LvJ?+b+9LiD7XP~Z>8vP`-#J^+jYf^tFTVyBNiJ<&-`W>Hc|~aQ{vQ#Y zpSGT(-9S@&!@iE0%%FP4hw74TX-9!_nQ>`y1_QKG7weWSR$6ke8m92fJ_(gNuy+1GL(=&Wy zPEL+l^l;$lN&FJ~fjYdMB1FYV=zKb5r#{CARzD)2{qF6dZqT!DezTP!;M)Fx_FoO5 z>prM%znJ))xdSWTj!Lwx)6ty&MD-==LRA6VMKOBC{)_I?!a-^OHYQxwYwzv5x^9>_|t3-PSLzPHo1Kf z#?kEEBEA_H-R7rigGeDCZ#joe6V9shJdN~)6}#&{`hNV6BuuYbe_PgPZAywJ zJ0GsNq)LRA^W2icz~sZ;H(`3$MN7U63ZX_m zhFNiuXLue5=POklw`KWG&r2xX){aaPDkiP8*_Ne%vXu>gWZ~NidM-`?_htH22p|I%!}>pMuIK>5{1TE+2}p#mX1e}ZN4w!I*T7_o!jyc z6D+Mvm?gVmrkj`1$Myza39K{C}E#3Vl3`x+*LnL^u^ON3vV_!lN676OMAxcUXLDAm1cVRB@K&&fi=FaT-H z^*;~N%{b~&ah=STVy(`V=rp~wz{nW4JvI28ntJOe$UZuNwJCy6BZIbgw+ER@wMCZg zcW`+qBFN4s%KpKa@6KOjHz?<{{k;WjFi4Q z*MbE1jXz9nb3HrzHV=f4twu^G$+7TZttD8A^+2fpX1LI}m7F`r!0*bd=&^R2Stcy4 zF1&&1O#rKoy{uh~5y@z}cbreib(RtQHya)K6f$gYn6W5z(i>PS4`!Hfs>HK*`^Wpd z%h7D|qfWk?%@86Pu+4zCvK+plyBj>|(Sv>E-)J0{#7G;Y8|# zm-co`wbxN?>*|t`&3@MfuRV9)M;zqIDXYq?>H{)6Y`Zl@?JqS>FvTvGJ5K(|-e^)b z9R{;3%tr8>s_hIcGP;a8s7(&A68|^2yawx*0aCR&>hqVRe!MOqc&m@4VsRsX!1VF( zWd#loCIk6v@)jK%Ie(t6$H-TEGdpKG_^E;eRZpn)>Y?Y-3SO0Y=9Z&Hu%tiNRa0 z%0ZxaEd1(Vtsk$8M>Snrlq8EbNu$k=A3vTNcv`r)EgSx53nIIX<&+qxkVPX!HN$sz zut!I<$+Vxr=F!Lx=@+mPYrFEzxU`Js9@iHJ=G?@ga0RWh<979wFrYKWX;ZTZmZZCN z(Z^kl3gMcZkp$oqh?(bwZ_UK(;9Qo!(YXy+i6kl{ogNm9lT5s6t8k0P#jOD~`0jx+ z`Z$hWefP!Pb`KM7bwO3*^BJW~+66j$1Ntp}nHo-vy;hm|=I*gPCWXom3Bagme9vV@ zQ09hJ>D2Q<_@+v>M&7E__1e@kH_Jd_HYpK)@Yd;o$b$VgXpo z%JTpU9Q!%Znd1pbH2f z)t@!4OjvOBwwlYezrV-$Y}iAtfKOQcA@H0jXXV$?#jbV)Dn8<`yF__x#BKqnM%IO| zttj}c#m7)sdZ&LI-|?>xzNG5$2+gQO!4-Q1-wyBz5$`sMA*V#uo$XBDqqiKvKIyLq zBq~=k($hx3T3Io6PD- z|LH}J^4%?)v+T<#WvDNO2#TW;J)hS3hRGAVEPiO*5C2P^;Kim7&C?rES(h@}(#Q$m z#iq42c5KT$oh}78^6?iJmwBkJrTi;ds<}P62KZ4#AhO*Kd=5@{Q%x8fqabfFxRgGB^0vIh)j(pntW4EcNF|GKaD`N&PmqqPOp+yYcmEB1AgzRrL$L zTYxbkTKzkBrKj)N-1Va;FP|0j9ObU2bFYsl8s%vTBFoqmv&>f>fQ*odeXES`+KXX;!Tl3JMIlKv9`;sOl)n`s+?7AIfadC%I#SD0v znI1r{FG3#aSN2Z#+vH`R zAb?n%+a|r^;bz_$o-=LKfBdd$eV}-bY)eb@ii-}A4^P3IAP}Zn`AltF?265yLMw9- zo*qgWsr9QJe$qJu7x)HCBJ~Ev$ez2Rjz+mTQD3L}nAM5%-#-GRE#7UFqt&-(S#%{# zVr|FR4re-lvaJ_?#FF>aSm;cI!{I9>ImLd!r@L2EuV6#_qxuNiIqfae^BJL*#k_0R z!ScBpS1HLda0h1a8BFhIz9bwRn!9J6`FHOYW|f}H{;k+}4wWUR&`m0>GRL{p5Ra{R zY9H=E5$2tV$X!1_Kap+!WRaDf$@F+O~~QNbm78t8ky?M zT&fx0hQar5i&ZtQhBWp#Z+h@OcB7IRLS@UZZ zeBCjBUEqm!NJ=PSk}YnE7NC}rg6XaEn4M``JHfEJ&ZRR$fzCy@r=RHM#AIrm+($Nz z?8vcPoba?St90U%f3rp%esu$ERJ{JPkPf@Yo?4ap}!a7`>A#`Qi## z&8QlMzX(9ZS-Qu@^_~MV0FL&fMN$cniVK;fqMn-8mG@$?98lfBOqSPgYK{a4g4W@_L;6VIUuFL6!lk_1ISk0kPS3Z$O^AlDSjlhpta4Ra0f;KDouN&ghqskPKh4vLeK1POD2appF;sFwWt?Gycn z+9;})#-vgPeG)-@RfFat5#W?D4-oJVEbBf}=lMz0Pn5r6@YRKr8X!b!dSX4kwoyAl zKm;z5#0Tje4NEsSeqwx|1FMbsQ;*%FDnK+*iLU22wWKe7GO;^-^a#z#8b}7{_qk zF2h?GJ)wv)MaS)Y)N&Hk|5RVNM7Iu9cW6&YYWatwED4UXbGAq%l4w-hFoA6Hc8pca$5!e;SC#FBi#Sy* zfN^!ak@eze2)#0JJ-=%|+AH<$lgKvE^S@M$ti9EM4R%y#LIEz$5Vn#`D%fE`n5xHT z;3jyd8&{d$wRi7iNLLbB4%m#_Zdbo;eo@eYk;-C_ePPfoCA9mB$`$1^ORXg@7Ncje zd`fl~CqdaVn_br8Vg=pu>^g9Z|mzMi#zfmodOUjAO#IsZ(sLw zsaVKY<=jm}9M{Tem3DEs>ROL}+VLIVYtAb8ci6u}C1DWt|7w9R(7>;OBot7x@nD|W zaHSO(cPQlX1TAn`+1}6eE?N<{dzSIb1=Jl5zYWRWUe)ufX^AQd}GL-s&w(2ZMZ?GRgxD$I*BuCyb8xY5R^!I3hfRl8AENiK&i;#YMF{>9uZtKY~; zjUKi;+Hj5AuI(2&nvuM{ z4q(T-$1!#XOL2i%`BZb);JsV2iG7CldiQUS2@yMgc>6WlGO7y(oQ>UJ{nmfrD-<3dC!qAkD^M5)PRw}O~(Kp1C+^-Fo zJfGVd8jpZa*@5dG3^M!90qZ+*>>u!-R(I<#HecKNPd~9R$%yoCVn|J;Dq9Z4lS98a z5D0r-m5@J>F)>L;Xw9c}t?D2|>uSiMbln$^+o|kelIJd}2BNqjgEUcRH};0}&2o7I0v_Tt?C7O-*%rfGEK@<2c5F z5wl{eCMc08@Jl{*$tj-5 zEU)z0*Q;EOc2xKRk3f~`)EN_MH4uOV&oo2=nir_$Fxg!)s>zs`8Ty40R3D!l*CJR3 zu(^l+f z@#DTMjg#Whg_`_Dvc9hiiuQ8Hv)c(Zs?lbL_7 zH*n?~P!T|!xZ=K1S8i6A&TFR_^;{7HZB@o&@|@I$o3uFNUbqEHqy{N#XpEx7R#Ao_ zpwWkh(M9QIZdya;gvL9hkbB~~*~Wof<>-aTcm+*9XO~8CO)@@Wk6FelhuIyBC2mXl zpF2|N$cPJ0CP2m75$x3U0(`mMh@%$AqvMS(H(Fy+E5I_-_?BPURl&zZP(mjLaLq@U7_S4g^RD9DEQowE@ z?r!kV8+eQ3#a7=Bo|>aBYq*nD;(tX5uG$+3y7CsVku?+gU3Z{<#YBuBK!MlB0~}H^ zEDtcv!m#jd-0j+B?c`>WxU7d%WJpa97Ft&%J06mv@tD}V?svU`+LiT*rUzR{!Te8P zbPT0Cm{yQ4^k@26FYk~3Mv6_L#=b~IWcvDo6oFMo)KF{$ANQ@y<;YjlOGGSfe)5t5 z2;lytrk{KI>VNq^eNeLeQ3%^$;Ae9S3#NhsF^}o6Rkx$?EDumlc5)n3<046OmRE10 z1bjf&MDo27SExvF&Y{g3!wn*z*3M4931q^uX~KYUg=xN4*Nj;{)dH6getG5yJ{aJ9 z9ax6+VYO;>RbPg50-0MAb6-nmp8Pzm1puL_dfjIs1$Y<#l+e%^VJR{MHC?#8Do`Z= zt)nOcqM((lviv*#6Kz6AL_oIF`77uY8+=7{B$P7~!3zYgY?u>h`N*6}=RRIr47d)z zOzoR}|K!1mT%?x*YN1gJK^!gFs{|*fDZaGVQ?++B)jav_0sMzbgsedZ7&Qvo9*o!2+Kvw&Ep@?Th^QYIqEmya{ow&bpuShrPcIM1H0)9Mm(!pkQnp^|es5181}hslmI z!)`nCx^DdcHo$Of2*<;rz89OHxkHR-!`4pHJvXE=KJnP z+si~EijP&?7L<$Kc3(00Q&xlm@938zLt-Imb!;)tHJ9y=cUE56=d>vp4ub?;f3yxlr8 z!Hu`_cu(8QP9$0gYx5Y#q^n>EENo}EnQ?{3-s^!r$*OZ5?Jqw7qj$G%Jgq*SR6}qT z1j{1p8Qw62$g5q|mix)_dE3J436?QNq54RdS0(C}dxk*>G_}*Kt!xmhx#)iWS{glm z)h1(AMDw59X=XZxCW0XapXzm+3@h%Q>r7YjrE7(@xsiq)XtVXjv|wnXEs)xcwe_dl z@7iDDA;~-5%>!$(LGRAIoo~@1>`&TGww(k%5wDrxCkig?5{#j+zI^ccfhEcp7?f!x2mpcAE;?`Ce>DPHXfB3;Z>2;Puj zCdK}mF0*;>^hs{QH^hm#q}BJjbg@BR;nUXQ9TEbP+FKn*zs{gzp@aFru9hBXnsat8 z1=ywW)P`6>R%=7RLuCiptKB2YCyZ;A|y<0U4?p4*!ZVyb#CEIr>#EkIhWahF*5{nZW*Q zcW%Oy?Ut$_1A-~nT>qr=Zj&C#53IabzQ-dDs;>E@byzKs;0SeR>shDx zam>jIb)pMv(1@z#NcR`4lantJC-*I-5~_x0w>arPwj3x*X-iWAwBZ0;LjCg1 zuGYzP)ob)id{luos45OA_(hLzGg7j~ym*UmjcVjf3KWHfGSjvtiXgZWFZ2YdV8`$^>0Gwkuz z_kDq>F0wp%l8{SywCJXjA5X20eL7y`DVV9MNhLcQaIw|%uXJlWx_1S@q4J%r3^B3bI5X4SV}snd|uF?X7V%6AnU-D*)LP0 z*3!~ars;RQ-MqF!ZH9f<7t*XGjO2w*z-e>GP}_bqUd`r z@J)L3HB7E;3vs*8%8D~H`Kmh$)NN9GPwWwqYtfB+S#Ac;Mqgz?EDooxF6^QPd;7X| zMfnm3bxBrkD z5OYMN$7*z6QweFAZm`J9@6%FNeq}(p-ya_L_M8`X!`aZcE;_vmD``rDeXEY;e;fvE zPBiEfTLu~k{B%+8b_yBce4!j^VOhoCMqJ+QASDx-WYyD^dJL zCZHMAG>Hrb-0f%U0u zXK==h5@cmisy37G@|FT%5{nn*qW74MjN4W_c_iJD>9a>$W8{@YE*^l_Cw6&p0XVJ3 z6+V5hFyV^L*|>0VaT+4nL_O$Qm%5BFILI;l(wq%B^Z1^GwQypJD0 zYGk=)t&y68&?APFo|gYYgfM?-_xplu68zH%vvkK8K8T9P-88xu;tP~!17?d7YYbKS zL&jA@yHw@JXe)33#u&>#cLTMeWGtAN;Q0!GbS`L9Q}O@9-dn##xrJ@RgQ#pkU@Ivo zh@c=ymw<%g1|=kfp+ic#%OMR!8bw69K^TS}kQhR`bLdcz8ajra;kze%p7;Cyg71fS zj>CPRn_2g|uXW{loog*4Bctij!$g36AbWN8Z7+~i3npzv(cqs23hE`wlku}eXcTf( zO86&mF;Nk4K3)W!!rA=ZOY|X@yC)g?KD_^mXH(INwfAJP?Bv4e0hH54%*|Hw6bUj& zNu{1UMb9}*gtD3V3B-ApO%%q^JI1|_FEXkg8d9i)`2R!1Ygf#P@Es-4cy0&M!O?41 z12=LMI|?fFsAApMeq$7{$DdN3B^FYvxgzpoIFh=^FXn`<`p&A(dK1siL&aMt;`KCHlMQqel8H~nL#7{fzu zawk$3IL-1{>X>!L$`c~xw>1`6Zsp4}Q%`UGb?JpZ?`u{yrvd8Db7<^&bl#ogT7?{~ zYJ2z$_FT?yq(q-TUgoY(y2#&fT|?~XuKzUWpQBxvI?G+|%_t;$_Es-R;bPKU5JJqX zWakxt?**^yB$NcK&XgQt?8a*~s3h)Aj^$oDEW27~AS?cQEX_&O*s;RIwgHvSO>vH@ zsvjF#U_*R02}iE1*x1=OHAeuxla!1)TRg977P3|}$3;@amFi;-_$R6)x#LcCF9bCP zn%o)ee(A5b7a(BFzf#2$%fuZdlEwT`K1{XyP77-Z<#8?tDz4uZuPfxPJ^YU0u|@FQ zkJ~y+yjWae3h!GpJy-nUbGG`Gbz$YP6gw2xwQ4ozv2XHHRaFHh!0Ca2JMzHLj0_A~ z`XSi=F)U(qtQBOVVwq!r_9y@2d;Tk0A=gj(&*<9k(yGy)wd(YV2BcCjpf%|_H5m}c zTP*Qb_t~0GWgV+>JOkWxLksrcM*ZPh!^Duq4U$w}BS`OPHJInMWvrw&sXpTM9}8nOR}97Rnlr{%anVP5jP1j$YOjSmVL}qdbM$~ zWH2D^V)3pD?%|PJRCPd=f{8x2Rms!%UKE^=bF4iYmdV}Xn%sp;MUL+E0{3T>0QV{- zsi~^2LuPz~2`PijSG=E2*ZKRlv*C3USQEP)4L$#*Crq+?x{-2xU)El_ImrO61n((u z#^Pp$slP`$V1dWc%*Beb6ed*tfr1(vx^l+~r>(vY07J{?0@ zY2ki~v}VD3>|@Bn*dJe+J7M??PsQ8s*E{x{BdT5(vV=>nVc-2p<$t0 zwGmIRgT1}|ORGhbe(mj2-4DZ*SMaV!o|o8F;Rk~LH_6nt^xnUM~am&-pPvMhf7MJ)W6lo_!1Z+`z>}C^T0t5uKpQ zV$bGWcHIk>m-)WeuV1g;o9Q*3>mR*a2m}=AwJ|$*+m?g_wVg}{(2D(;Du*qPF+4fy zox!>NlQ#g27!ksn?ZDv!_jA}S3YMrcwd!8W@USgi*w8KKQm^vBJoe52*w=h2N=nMKBNOI~CY-JF5(}n%=3)x`4ES`@;?xO+gL+*^$@5lmbMXYKT-6YRel;rGIllxL-)}#j9 zfIe5&2BGwYgc54t^`RU;Ta|VdUmc#fBBwItKe=}w|DJe}vHPy!$J(jyT=544CDO&> z_E;%`WOZUP0IrYCYJ+BDP$xb8@7resMeax3yi&E-s(py_Wz8yk`Gs-4)&M@?B~RoR zA&6N74k|@m0^;*3EjzTu!WsOtxAXx{Xt(!E;iW%ZPfIWbto1wR*l=mC)8S68=G~6^ z?MJS2Ax+T7LPn{6Zc5D$>K@GfV~~@frz!!uEXdt=gVr1`d+@QB z+wGBAQ{Wwf-DGeXCD6RPImI%dA6%|X1rL5OMYEq_5R4S5z#e{PIkjM|FCF75OlSINfPfdDm+ByDD&uBf?W%%vaMJ+lnDCd1 zh3J%Kz*$&O<#ot`M+aT_;lpV_P)7flO@01_{FGMDDjRqp_kknc)c$OIhZhG+<^P{y zfB!DAwd@M?on+iE;HX^K6BWR7{Z4`dS=s1;3<<*7ZIvrS!`YK5`_z_kTP4jKT-!LF{q2lwls z6@3$STpb=H3;1^5B~E}h_;Mv!VD7M=%~vIfejqtCry5^Rz5pl?AW^R4fj2ouO(Vqb z61-f@TerJogF;{^GPNdRhjg+~IUFe{Sv5O~0U`KIY4B-&vI34gViEmM(A|{l%o4)* z0U*Tga`rF8_j2csVr?E7&+B_!sT9Wx?VG2|!{zoF8bwu}>hfC#K+_S9h>nVaaDqhd z9XG!DA6#;UNJ1VUgYa3#F+p~)j^JuET6`GRyFCu%ux1K2XZ1)-DZIwvQ<2X3AXwlh4uxSxt|&tz#Iq+Be_D{Ty4ckRdIYqwfVs`^hXv{)SE?jE$`{BtZ?(jDfgRn{VdN@ z@N%2aI82h9s$Kpkn~T6IDg&6Y^ko;uN&Y%v7NSYfB5sr^(>3h%hRkx=mL&pn?hXjr zgx4=?*!l7@gcpf6QYT+0Zuv`ZAj0*^U&~S)%K&DojQ_n5pyCvs`bSz7a1oEIXTQpj z%;XzLeVeQYkUL{5K%oU9yy{vBZ#?vOZ@YfaqO?>O&dt<+0T$__sUJ4uup6juda7rg zHZFJ-86;DqZ63stGf)J#0d&*kP~xG{1AzpW7*vES105Z6D)byh4M^VQ)hGc}A})Y2 z^1u8yED;91r{CpONo8eam9s2hMX2ZCu+!)LMPdf9peD`!B?b5oIrttQLpZApNNtFS z`Zf@4;LH6*DV8!6WAl_lx$*_D$TH76S$-yNq!xq^3?zS+xY*FHr zhgO-n@bg_>P@+3P!f3&p%!=>dXC7)%Tv*ozmI&G{xxc;|V=MfxkbC7&83wdbRljUz z*G^Y*VLU;klnAL~h{b}IcAv*V+BBg0rpA3ePlf1GrI923oN8boDdn4@9gsyk$c}^! z=ihV&+y#=0TL11ht>CwF@K;b<-kzE7tH-1Cx5N&z&*m+{1zL6F-nc(9F+ir5w> zo*69ol$eP00~fU)%t%rpw$GvhoR%DN2JJ5Grvmj>SZk&d0A2o%t1xpRx{5HMW#2Y& zVenHzOiHp1>8pPnz<}Yw9;8gFDk=@zwp?K11R~JOd%7;Y_~m6{B5LC+ zfDwDL`som*_InWcwQ7h>m2IA9DK|R9D-Le8q@#aliKqtCYm~SSKPjrUf z#5iOa(EuxyzeWDkREC)vPB%AhdY{4gPS9QAQLkqI5;5Ymd@$7C_gP4)G-4qwCE1Xs zS;9VllkBN!;$KHW@qaoBvtK?|S8+;tqLHJu+P&A6_Mj4)mL@rs=Kdx?i|?lLhQnt- z`Ffuj=*PQVdV$Z=%zhE2+674UCfh1r4F)IxC}zVBncZmzsg!#~ib*$+VnR)D$BBgE zs_%7Il7VcXJ*S9|SdH>Tw+Xq6Y9Ib5;zO1#^_GK4&BU0wr}5i@>wVjO zMJQCki)BCAMv_{9I2d?7cV1GwY}jyD`>~IA&$2q+gv3 z(3h`HS@VOYcn*FSu83RIB)0()*6tJSA zTrWeF_A1%V0>`;&MLHC${vkt&XJo#D|JwY>ml9t2s-nei*Bm|9WHFV$T!2AB(j$Fo$Jy1orrA@Bk!+sf?H%(SPOaa;X=@((UT4>);2HG8@XwH|~V zN0r!DlvVk8F~|-swa;An;^o$;0@zVxj9JJX@oB{Bv9+kzjrA$5ONAiF-gB$GKD;r- z*b?2|<4DDtcM3VW0r}3+o<|-q5hMju6xj74Gi}=1RC{V_YGo|QSjsp#tiZOAATr_+ z4-W4*jj|1($PXsXUY&=wpLGnS&EU>X9JVU&d%kZy7^%tu^Tcs8gg<8u;!pWD4YeYC zJCz`Chj+ZKT?11!rJrVhX=FsRLn~#L*M#8X>uVMll7_!YjaNMf?#^75l8+xXyy~9w z%n`5cxAus!{!{E+ZQj-$Hd+6vP!Q?pw{b?;ypO4@jcgiY*@cxR)A&~vcmzJE$DS93 zx9NRTF@*^pvGu&`#pROHR4yw-=8o_sC}pJJtsgOrbMlTS+90TYic$B)8KMHG08p8Coy5^z>SV`4h)FmlEgTB)~Z$6wB!Yt1Z$9s?*3tSOhbGus0;5 znKNiJP1`Z)@PL=~S`B1;ZDC>Iu&y7tkvNS<{oW&9#h#(={`R(>sCs%CA$AY)0hoJl zT`FD&8;O0Gpf@#g>B!28iV+?1jeLD+D3W`;rvD!Up~ppmXkLH5gXwDbO15;B;)dNV z`|J2Mm~I`8#f{M@uGbM?;mP9Y;NbDoV0t+=U8nDlz_mglA=a_;gLucQjsF@?l=6bx zR7vpN)1X=+<|VFo{|h|s_rDdle;1)&htY#(q|4W0iU{-aC%hnNXzBTYo%Q7C=Lfpy zeZ^CBLF@(e$~%L7{+0MifHsNgCmL3wq9M_Bpm%8myPE`x3sCGx2-V@DgttB zRo+__X&{CD!S(v*#8XRu5CL_E*w)9dS73Z`%0iNo*W;9}R^a=FFJ12$Q%>GJj!%uA zeuK$3V#!*bcMhB>BDpe=-!EfNiGTPn_OL{}Vy}wH%Ch!9-0LA-Gc-2F>@Na^j=JeA zphv*vxv#4SZJxjlJiW5zvDI0FiHQ+Q{c;@;UZzamz{4?%!pEuIXMj5{BgS2ZcA3Q`OxHa4xl=zZ}}fi&DZ}s=EZ$~c5<{` zJ!^XTKrz7Keq!ES_;Iwu|k`& z%+O$l*l(%kphA>$-1@Ur)t#Lveqv}#H)(9dl6rkjqSfA4P*AG)8|r@jWBuy(c~z9s z+A`Y{`=oa+F74IlM^y`5bI0)d0}FHW$AKh}?Sl~$g2xC_`kN+AjgK>(%u@vaBpogj zXBntjz&_Kj>Nkn7mJ9ERnI5tHQx6!@MmjPwN#B`lDjU!sN>j)ke(dPj!og;W|M{(% z0BVw3^K(%f5kUALw92>tA$ZXewIaH9+QCV$2l+QWn5_=g2fJWJ?UPT7S9XdJE}R9@ zcdK^)RX>Omcw)Z;ZsB{;w2}sICd-r+V(k`?t8z4U43y<&z`Q0+H{8-bVS^A#ZqXgx zr?{mazxynKZXor7=Q(G-rf%9Px6WGi+*!Dix$Ru4CH*CGAu%y4ASzUR6KFNMXFNxP z*9!TDMNc~1x0%Fxp<^4@Ej0+P@y$JaMi1I1o&r&##?QzbYO?_(+ZPH}iccooZ4IbP zo&jOj;L^Z5?>3?({Cf6RFSOk+!DcQ4r(W@PWFF7~_j(0wB6L%u09Uq*dmQK&IpH^N zEdm*F0fQbeUlJYAyHRRA_&YG*l~TfpGbp)^WyZ5{r&g3ph4&A{nIkjC2Gpry3vamt zrE^bT-=t3vKb#9%Zzz5VUq6AwiCno#&C{QwFM&H?@+apb(-28PJVB2p5x!Lcr2CC@ zc!U8oPQ1?NX?0{|L@GBo*MlOR?3GGvsouX@gmvlt`|H}hcNTPAfE0!NyZM^<^Lh!C3P?Qv zW)TFHpI1SduCx`gF(QQ*%F1KSa@-F=nwq|+Tn7}w=`u~qjTGtLNF(;yn@OXO2*33f zm>BRWiR}BDdu?zQu(FHVrD8B7{Ck>=M3)LE^;TMc`{qn75Xvi85W5~+#6rs;pvW4axA%EggqT0iPHW78VwchK|VCtvl%y z>2s6A(8*Y6ZtiEHV;Zv&<9lE!JnI@XaFYNFj4Qh5bUvx50z>blhry~b2kMH|e!paa zmP2k{p7iemFJK!i7C3Prk8rrHJPlC|NSPzso(hx+1+6sGvl3XDgZXz($dnV zkOpCW^N8pDfDm{?y)~R$WEwHQfiA2f8Mmga;^)e2U1&7|bhCGZ4P&LvrIMuwQMWrD zoZ+>xC(ECY)zCTRj_*#%!U%(=mS4d?PKV@K7)5uccaPoXk@15H1q@GIcsOz5Uc7P* zcxy}f%_@GlfjDr-LQvt!&om5;koyklDUJMX<8OOnxM2BVqxt-R>;NYs;akr5AcOlE z_X)aB$hHW71O6*a+{^X%A38({vike?Tf;>2A^t-UF>g#UWMlm9TZ$7&OBbWK^m0`gd)u+WJL1v9Hd$v>N2kbZo`VO)U^>C;GSKi(&SDZ6*&HoNis0We%X8I3mJam>Lq$I{!_6J{ z<`g0mtuy|GcfH^H)+41A2AopRaB|;|s{gG(-P!TC389q9IBc(Po`vh{dn9o<70XU) z7yv?kjBUda%J~)Ik^;I_MJ}3A0FgF{Hhz8Fy)&lX@Fht3X~BddAGYade{GQyuti{L zd0E19&QF$&jD~gnO!}WV@BWs)^Qu#^9qv`cQ^8Pi?55mP^hv;R;CW!>_AKq-(W?4w zRHQ8Ui=T7@ra$YfRaabR+4&Wxsgx_m&kw!cFms0Cx@*2QiR7a!?@acTfOXmbF^A~d_8{sB(L^%R9r1^WlQ~sycxMDmYv7h5<-W=0_T_? zbTY}maIfZJ<)eP{AKXvZtMpbjF60|H?lDFIB{bE2GbFgCu6mnM&^)ZQqhbH?l9wa; z@LZ5YhqF6jCd54FVf||2WYaHecc1d?fPCwD(uq9Z%|&RHh7+Gm{_q)j{2Aj%$$4O5)(G zA-791Z1(Dq3q#QOd*HqLC%ADz-b8lX)fdHM5;`u`Mp5Ra4+dJ}ioRL4u5`^9mH4X1 z1TJYjvARDfcJRX9QDzjo5-oxL7+bBWj~w+Etu0=&1vh(mScqi+_tc+Q%`6JwhTVTN zCycKRKTbGw*a4q(O5XdkVMgc!dAYm$NGf(H7Y_r+`TQQaKv~1+`SMndt)%~6->`t= zNd~}@*RYqtr6l>@vX@UUa^MEcCS2gwC|)folm)+n1Q?t0a(=62_rNiiswWaUZjPrV zAd1rb1OSot10u}?b2}Ckd36*_I8ZxMovy7ZoQ~th0f8c@@d<*NP0{*z3Tnyu;HO2| zhH~i;@&t-Rra{_o#yrKHpm)U53_}B=bCkNet8SYsVr>+*Kba? zw)#vje{yqUr+urMiVL5pZC@wk9!!~bPQFE5#o9HL&S-_#n`e!3cLg~CoWRsiR%FKX zeD?gH<#hd~Ly_3kzIEov7@a8xiyv%kK^tNTYa73H4aGkUx^M`8Tfq&=M7(eEX~xU< zg%sgc$;vSr)go*Mh?41b;Dqt@{+6#2vfsj&7J&?yQ{U;iYP<4lzZYUa#g;KzUv8^S z4iY48KfFxL+_k>z-B^Db=ZE&9V~7Wa6FPoH{hxN5aOp~%+}WnZ-0a%LNX^5+zTQh4 z!1g%}UAxcp`X#c}&9brju`(vdB~sH@1aX3lAzma9^Y~q=rB2<$Ez!6435%Mb=d%$h z!FGC(mGdUGdpv>wdPqF3EL*kOi1p|#MYzgy4n>nq z42`3C^ltynP;LgrvID2Wv)|rqueT7ZrdS0eMULLRXu0D6vDj?TxGeB=6UT`!6%S}F z^quiJxj&%}E>Ux0R5s|=__O!!9B#U^Ti5&HJ};oDLzMZ>^0=2eu9Ue>r4I+n_1E+M ziM>nmb|klwAXNIjjt^eqq!QFmuvCTey3l;Gto5aqirDZTZsV(EZwtF|hAOg(og6zd z<4=q)zMKBpvii3#@w#K;$(Brsai!$FA#~gc=9m0#Qw|r7o{!1-{+Wu3Co@nsFZ|-K zPS)shbM3eNHvEGc;7LKCO=5$};n~Zbua_VHTeSxpSofL|V5Kl9)C7SiE_pqUYfL(-A(Ynn& zc=u&RdBm65e#G_z#PiQaj&}G0&xOeQW6BKvxnlasG*vncr~+HK0dY+a?r$m~SnUJ% z+iCoVEfvpEWk#&(^7JK=Xe~(IoBREnI3`IjYw3J9<^~ zD(@lXj`u=l11cVDYh8P3<#0QR@)ajv|7NLcjBvZ}jd|Km!0y>Bam8R@Fpp*PFAIK~O;A_wKWz*DA=aU1A|aWs zp0b&F?2Xyn+g z?}Be%E*58^J-=i^kOp(W1 zv`V~A{?%q9_G5Vb?SiThaI=?9vdsB_(u^S!I*z1qWd*&qSr{sNiPnrG%^L8cACp+0-Y7h@ZdZqd(ZnOqS8GcvEI`tUDALj*>?R#y;KtdXMOc@dJ2&$^3Vk>XGsxE7 zB6r*-Q*~27Dfx!#EImkgLofQBPH^GSs_K`8;B7VhR#yZ8D;U4ry-4n8H3h&~ZRoWz zw&U%06#9!$our4Eo76h+b4N1AYtAgqIuBPge?t$xK)rsU_F(8EZ-ed`bwoi#j#DDC zEi_GWnz0P!S#TLt@>)p+A-4AA3ZA7-gdZC<;LT4@=M_=nFRku3y)a{X4IFr;2?JYL zEjHx~Z&bk*^xkQtN^e;*U+vahxmYmU(Hr&rJBmM2Wh^sbv%p2?LPcJ3O4v?c^*&i? z!wU^x6tYxr?P4(?c&R2RX>`J^m`YnPiyXF-w91qJ#Dq;*5)^YC@gY%-uD}tPZKA$jTmJ5pMt6lleZ~-k?m8}H+K}BmfqMt$;y0fe+RXd z7Cq{?aQX9k-w4!e8x>XiPM1ctPI*EU+BQK(numBk3Id52j}=!DoLpnp-&E9&tl;E& z0c0^wx2EPC&AXcLB$feCueEC9l#=f6YS0=b#8sA8eM)<6u#5C!le35t!GV)4YLgk6 zodVh)Vdx{&C!>c+Uv0r?$jI!m{+EWMiRA$cjvtd`Y_fU45$AR_=DTWpB@)Ivb(#wnGNS(UFJ! z-q<@+^$iPV%O9KBs(vHUEIZK*vJnD&CQ-mPJxyhsm4cn{a+>MUgreVHKD6j3OgO%{ zbt&rbXrly#KUH}90bxny#}XfdNlR}8`*29G6fdWRRk=xPRktlg8kV{)`MvtAb1gaG z+|3W$iV6K5{IP*~4kNn#~6(fJ!r`F>Z)fzjKn%zc6gvl8d=%GGW z&-AWB{s>a(NMqP3sq(^7CxWV(VEquF=6U=Ncwepc<97quS^=@@i=n;r&pdw2^O z>=ir%PyJSRtJRW$qXMdxC6$XG9`3-Th&VTa7h1qC>U`ScDkuhIU~10j>k&j8DJp}fs#!@z_kCxS|fCd7AX{Zq{pJr9UpQFZ9kVGpY9@H~w z$~F@!8TpzW8lWHb_$>Tv_UL(lb3q0lX2cBPYL0k8F~8?HwSA!q#zeJyfz2jNFKt-L~&z!5qrMd!WwWKPnuI7Sy{ zbd3&L&TZ7-(+5jZMxdcC8F-7_q>|EEFgz8bBxzpD_5 z&XqaexQQcyG^|_8FkAetG$mV`T>U}7T&|HAoAB=~+);n~#>MPQu~i$FvTS8`y>PDA zOrDr56pbv)4wbN0H0uP$%&|EydPNv*#3-J-EtjWcZQ!gT&FJ*?S=W5)xI4zq844TA z!ZsPvrO81)xXZi#zFHo$W7mM01R=g4Qt!OT4&e%r|i#-c*U1?kFKuQGu=d}TA@DsEY0~X}j z=TSi|gy`2G9h4m-daAUR9yuS> z4M|R7_w4iLxA*|ZRcspZ7=ALo>5zP6ONfGKh|q%)nfIT}DsFD=G;DWHiOW)sa-^Xd zaD$ipM>O*L_wTo$P^esHp~{kf`PBm|!Zo9u=~J&3F>B@t@V5nSS5aFcsHPVi=G+V2 zTf(n4RQs_99PakBUjJd2+_2r~h&$Og-5Ek9ki?Tf#hCf!|2_VcS@pvr*h9@6q^fGH zxVX4fyY-i)Vw&3NCk9cE{iFj0P5QUGAiTdm?eL!)fZN^KiqslSKz*}?~4D_ z3kg5~X7-R2bNFc3x2fs9XE^zSt`mr{S9D++Wh9LqC%V-MM_yPBqYkuBE0?9VQ{j!^ zJa6x)(G7#KH_#7 zyPalk@4!TWf(#@(oO)#;@ z(utL;MK&V6UTep!ovHUf+~vSNyj{PKX!w}0x^sj!^_RpVO#Q3(oTWYBRsRajF`+(# z%(BtU2I6X;HNDs$O5#{hjQ|jW^Bs*bHzxFMc8)F=Oa$;8$#raP-H<=OBj$pH8LF)9 zEX(=jxmUmybVC}>+$!pi+}0uJ#c!`yUF76$$QP zW8>Yrl%z1{#psq`qiFRE8jm}CZ=gq<9_aEw%=4B8>;n&-L}s8C^=jbpxYVqXGJZ7< zzNn3^ml8_BnbE#fE6Sjm6Tc2-e|afty!|QtM&)0#{%uH`W1H*TQj-^pQM08mf;$!# zw#S{Hru1F)4lbH}36=iMYj#?w{ydN0@{;W#d}o%yClf{BiHj3CfggUY02lp4gNC7H z%NrtlJEms{05MR=%;9sPKMX0t=ACD`PZbFu_E)ocGk8H|4#I4%*&~Le&qtG`^xbCf z;E@uCPjh&7qjGM-4lQvvYk}hLnXawawHGflG(L8AcB;)()l_^w z0d8cT_Bk`bK27e5L z6S{1@;n<|TF3z6jLuvD2?b7ji`(z$I{#@*uLNgq{4R zTXGk$~4bS1WgkQ>@4o;e&)}P7J`}lJ< zPf96~R2L^M<+{-Ye3;v#dPS1u%;)BXQ(UtkLToVmhX*!TH(xA!s0p+$)3%ll+p6}+ zhRbfGvs|Yz3Lc=(p8T0gD*jD7u}8@-r#%LlwAP1jh^G@Nse%{FBMrGD1TFba_Te9W>i60Q2~-jc-%-U+H4w9tg{=9TS!{#82AJ>o>081QkKN zHe@cw}PJh-F+|IK242-UJC;y)5 zdwxGqus(K9+RlpfS=>&e&O^YK!x_EXc?C8?7X&tEc;BZH%RV|>=3Aj|{59+ew`$nDi{KI1Js3UB9 zF&k~og>)r?e?e>|bslR{o|wz*;%N^)W8cudxLw` zjlIU#98c@0Bp#-9*&*=lUHu##X)|=>&u~{BiBvQg)VvE^ShhB5Cp!5C3gK{{ayvMK zJ@Ccm?KGTCs7n_&9IdAw?J`o68$V*x=DOJREPjj!!MCi=R z_r2mertU{mGHZo?7%JFL5I7%$uf;OPKaKEHvpdQ>>jQ&TDB=qZ?*s$cqB3TZP)?4Iv z9=Z8DW>yW28eHXan!*#|&FqOL74%uOwZPHuq0Gx{fRicHWOt8({QCz@ulaZOJCl39 z>+GcLE@&4(dnU@O{&g*!o+?w<<^U%>XTCif?N;}%7(Odc=OV-}e=zTtiZ4o&X(ji- z!H=abJi7pvXa2`XCUF1&*D-xjv++kuiG=fI$EAoq3*1GUKlvU=r^&y+%}#XWT)Pfe z$r+@%M4?Aw%jtsl0Uo_7oDl5;8=CqI)Kkxyjqs@PJ^}3%^x(BvrOlAzwH64oUWgO7FJ4cLNjN*V)>jbUXgiOuQl4yL zm^Qc+aqG+^Mv#P{d>q(~|1Geg2(TlGjUXN0x5)hIBkr#>r0&0$60P&TH6oXcPky~c7Q8@dB(8)L<`s2%%m6|HrP$kdL z$SR6{KusRD<-LJssVglk!E8*7KQ6)O`FyVcBk8Bkq@Wq(&DZ&!+~7R~_reuhIxR6D z@sT2eSjaNPr1VBUfkWuH^f5Sd=8#AN8hz#70{2_&`?pHlBkIlBDSXpVH(*n68>2eb z$m673L&vuR^o?c?R$<7)SP{-|7ps2@#_L`pJ4*OU2h+jX1D~X5{spXW+okQ}lCvY^w5i zKv`RT9=N>j`FH_FV5XY3rpChWyvX;iF}X3x!-=s9&#~ptZ!j<+7zIBJmqIx{D5q(@_e6Hm!)h5x%FN7vYJR zU!hVjp$YjmGe!SlFnf0m(QkmU7T}~{+UnWF{RO)gKZSSC8j=F2aYHiwUA-V>=%D0h zbM0I`K;K7`>wkQI=U@P2w>i40r#@xKYUod}Kc~l~?F88K(i3cf^=B%Hv-?*-+vnxp zhmYK5UZt$0ZHmn76(kJq_t<3X?RMOCb&#~=D|7uZ#tz1AfA}|P(J9P_Qj0M;n1}xt zpI4QWaoBb$-{vKrd|@5=vInPb@rCXg+>g!PlvurD{My3)%c^vJ{P}(MPDom*wP@D$ z-u<3wDHyk=xqj-Ztc-un>0UkxxXsGryl+oBF@E&;fDvRi^_P1(o|44?1$LSgtt}{% z%`!nl8onGuik3|ooTHk9v5v3#LG?wW4(QwrgN}lepF87vqaVMDW$>1HxQ-k@_O;D! zMQtm$4A(y&c9av}Z-K#l@|Y*+~vJbqbv4D2qp z1XPydPh?)KM5n1Zbu}rkfcI2TSAQ9F{?X&K;Lw!ux;y$jRV2xAyEg+mq!GyH5ci=d zm-;4MO;@9xz96|l#wP}-yZzN@feCTk=;^PC4vi(EXqmU-6X!E(@QyMgM`$3pPHc%I zZ7oasq5J&X6kw})?2~>z-`f*#5pbFuD@%Bh+uU;~rHboGxjNEG{TvloAZENF>mhg` z>!KbpU0LjVnWO@)XjsTvYjghEv0rK83+{Q}375Fae_-f3b|lM$=jt-L!%5%0LmSWN zO^dO*KG<9I>+Pp^4x_!q*h=z8=Vggpmp6hPc&BJo>F`ygm@o2z?JzPt?WlZm!|oUA z>sGCLGkuIb;Y^aCIzkQY#!kgW1*%PBI4VvlYQ*8+7>f|HBjq9&( zB|qVsGVaw4Dk&}&AcGz$3j8M-z+Zh&UFE_rF*-=MCS({k=-#~+!NX;ZJ*oCVy<&@$ z^F3?`TMpPev_Q}2II)q((9%#7cd6_Wtu@iXj?YvLjKN?$107zLNWSR^{5s9Nry1DH z;Nst(>@#6$Q&WK~@Ec>v6x2H(V=RlSG?Y0URBsKuT6w|EOgPj>os^~QY$C7?=){y^eWF2N7@jSwHGMOLlD{X!`kSeNm~Q2N%q7b2z@4e&r2U_e z!8r!wsPe7Tga=r%z`>1$m8Zzhl-r#RWZokUEfuY((r|G+_j{a`5VHm>Um*R&^r@(* z7R~5&AHG;A2KHjFT#>0-4;|VVzA7_GzQ^fU2?3-43x@Rt?x@VjMkPKc=Q6%Q@4z{? zd0**<-7gFs5S4&W&<62V88y+G%4_~C_SMWl23T-v5gt2X(s3#fKAa%S3WDhtMvNH1 zhP-%pt+2-nJMnV+=PknxyP+5_vEo9U>yuMJ;Us3= zs`ZS_$~@bz z3vk|_-j!PD$;f#j0tZ8JicsrMCr^8YfkRf%=zPJhH1nzmVTvP!O*9?BaoHnRSzPUu z?vO!mse9?}d0Lrq@PT#F>vLn<7H57txgXd_gAQWWuSWx7h7Zsm?@cSo>Da>!5I&uo zpoHo`LG#Qv>Zj3tQ~0iw8L@jp+wCZr{u4elzucmH#uyL_5;$X7MC*_j6D z+EFnL*5StayM_{Jc?DU)8$uf2&#wYL0~;fCHD&Mwhw%+OC-|uJX9vanf1E1xMfK^q z+JUjtcxUPMGFmTIc8hTFe-k?%iXCBwU4-qf<)`_Jnw)L)dz>-_NzLd-`PiFc*v^9& zKjvArWLS6Jk-;tCR39&XH}?Q%t^25D9Ottyz41>&I9s~s->K#TVbAJQnQ zifR~~b_RbexBq}o*(-=piRh!bHiL+w;w8HZz)vJReE!nq76mD(;mNl-KJ9rI_N3*I z4HwsYrh$POFVJ-X#pyaxo^Aum56H{l4Rky887FMJLy9eVjE)o&dT#gdm8s`$7mkn% z5^cgF&y3mic;bY83sW(t;+R(gir3`gr@u_NH+%UkwBLp52isLtdF36zJQf6w4eVHsPVtj2>lT#I4@s~UAGLp9P8J_qjR~n}NASd( zPf_C^gH70Zi#jY~k-vVKSx3h?ly#zVxZ9P&YDIiaKvMDPI`uN>^60izE^O{pJIF7# zlXJf5W~AEU;OiIoWOSEsT^i2DEIC%Vhb1ZX0gkuTiI2>w#F!=eB?&L6GX2$gD)$xZ zvAU;~sV50@IQ389*%qUTR=h%oN^7T8xvF0LjmxM%$L5y+BTj&xM1VL#O())6VhD?M z5YXG2coM5KX^sZ8DYu`}VK&xO_LV_JS}JFkbB)dbPac@@>pZ30&eKAZx{-}6(Cv9_ z(?`<96E0Ud@mj?nE7c!t&#k>4y_8R*IG&A}H}*6;x8@hei|41>!8&Ll}zF6h1k z`%@WJs}J8#Nz4~B_(Y@fPI~hO<3MXyl$(& z&I!yn-%Y(Krzn?eBU`xlrus@H>(+$NU_r-3?|L0Ir58SkMjAy{X!HE{*>dipR?Xgt z8aQxFjv*VUP=u%nUq#NA|hd&m3y$j3Ts?%}1SC3GzD zx<$3As86wOhz`4OuuQ-xu) z3p>VJfx7ESHrpE;Z;YNQ=-6}hx1!3G?5T8k)n(X_jOuMCJ=4(3g?0t@a4+5t<^Hup zMIgJ#c*(ps?TigDl6pN$mqF=g_Q1TRiEV~0!95pvFbH%^;1m7%xgI2cIfXqMuPAE1 z>$@{#4ZqLHu&ak7n}I0bxzUQ{i;28c8ahDw#2biSmv~<=^lJoMnDWq+()JM;r{~fJ z)G+@0twg8cQ3nLmS&{K^%>Xy{`Hlj2yhU~pX+#|Z9@Glpckif7s9uxiNIOUWY?R-i z$>sz5Z~6IdG|UCAP&`AFD|$o;e!is4;JoyZ*japE>1_56&Dw; z_5&Fli~XUlVPVmb^(C06`9T{y6kQ#xdl6bW2}TUNE zHWH6QQ8O_OoAnjeoehvfr1g;U?5FJ?#yC|qCcSaOBGv)&k9LVqm0H`Z@kZucgh%Vf;6z31Sh z(WT{$n}zx@5GpvJ;<$%_I*2r=j*iV6;`&rTT7r=ra?v>_J?Ex)M_PO&;|PwS(KUpE z>yI1?Z%Wew>RRb&yy~u_p6Y%#CO=hTJ#yvQ6|q;7uwG?(a;Npp`j3aAM++^3$dB#( z%=nh^0PA0w4I58d#(jWZW<5(?!`s_(*>hPlNSo){zp}Pi%wKMpH9!`4 zCOl?|T%vxc87ZhD6|Zjxvu` zl`>?lL93JgOivqaj4GeE`&YH5$+>4Dvx4{}g{H9VP|?G#D0XcQm%y>-&{m*wg;@Q6yyW~jJrIwTJD ziYcUAZjz`4f}}>Eg@t4l!_LRgk8s1KQxU4#YWD0W(%ts4IwtEYYoTm4hhKq6?SY8w z<}LNwHL8k!6G6|*!93))v`-sI3uP2o3`mjwf4F+{cqqU3e|$>uj_^`Z*-H{awy`Bs z3XvAe*q4xf?E79`D!T|VWG80q`>yO|-;FIx_9bNBe&?Q)BK-8I>CHdBJtLmk7c7K3}x{i9*+3XG8;os%|%faad?6&4NHLtJl z0VZuC4;E*RO@x%3Ch^izdLdOE_&3G<7;g{R^IH|_=PNWFd9wIEFK=^(QC9TVr_hiIv}7FPY5SB7nr31(VZ#u<>B1VQVLqwdZ2rEH zUSmu;`tII0je{{Gvxt6N%y7s(nG!u)qc2WuEKiH?w{S(4Xq?mR4qjym678GVeSLz1 zWdG^4jb9Ii)H|V#La5o%LdFXrgS>G0w?j%zaPbwL&Outg$Ken4^z^8Z8;hi5Y+fs5 zDOWFy9f0ujs%wW_geU8%I@K^3<;V#BcdsERk<7~68EY0kuje@sI z74;GaY|QjlhtCt#1AyIsEPZ_Y(bpVkJ$bM20Sv-Q`!;ohN?Xy&+qUyYHh%Odlaob* z)u=d9tX281C`Rl|Q;)FM-mk6Q!IO!(&8jDfFXbsAz;cI%!jFGL8a=-B1vCM~+%22}_{+*i z=XS7i7G;tZTU&}^d18@_Yk20lHZmo7@_V2}gD420Adp@bY}ieN@# z-@biomlx1}AR^_YS7qjwtP@3nnr>)~9x=}DzZ?Qs)*-y8JjSX7_qSrAtzrVi^rk{NjE_$a8=KN9UX!iu>_`sy82{rs9*CgTwMW#}$m&H%?)s*n2{B{6~u!hv`R?1`X2+ zCHOv5^G^sN?emNy3`IG^SXb9`D&&ggBAyW9#G~4MX3kV-EGZe8eO|zR^+^}g8{|xrLSZ1> z5S<-=mxbX6w~k|*kjAqMk6$%>)Uuon)H5F`&N$_CpBtwdbqbS$p$Tmhqcvp_yk-O$ zn7RR?7{;gD4;e+md5a|Ob8k#FEVH}kk7ZfpJ1swPW)f74ULJYX!c*dwUoDl8ejnpx zMUm!ygePn?{Q5mnhWxTsqhwD);PagNKO18Dc>X4UG59NLVliyIk@7EiqwVv;o6_!M z)@pY`oTSbtQUN&7(398u8WN|LRLa^=(Bg} z^77s;-3kF-ZX>SMUQGR5e6py(CBLsh7sxD!+w`Oc`K8gHKFxoceJ-vHD6Ch>s(&_H z;G+L9#B4=Age-sG{fPeUz5Ja~T9%{k1M!WaL=7q_=d2YIEy#LQMEOQ`afS~TJ6muK zSE`S@T}V^E-2@t>pUG~C|7y_ij%%0{%iK9}AdeU%l<%5S614D_dWR0sfjr#7D576= zP0Hb2BCP{@Q4?@g$%@g<7{&3P;yl_%`A&gCax)wgw5jiD zb#1_87DU)asdt9-D(@qE;N9|R2A?e}TOZbuTg~`&Z9`J_R~n3F?83YIQ8VMm{f(nM z`C75q9Qv!v!BR(H#-Uz=IuI#Tis6{W*lQ8~MuVU3hi3{c^O`m~LDs(Iq0=c0-)#zY zJa7Gr-~TX<%Rg4exb8^YiSt$M3hp8Gv)ba8+6~#AIdSzqPwf(IH*W-7(PX!cILVtA zTW6m7TE6ZHc^z`EM#!{Zu|2uyDWrzk4HCoJFNEaC+)ciNM=cTw>DQKEzwwTm-{Bqn z@r5@r$H&`Lx8RG%rQ`I^ju&?t(ditx1B4HQri9Z?c$C_C|E8@QIIO1rOo=CxcaRx6 zGLg3ZPsj0l>QEDgy#1e+AW|kYEg)7fn|cGTS#n;VZJpHYTFj`~K>@o^G(I`^)NzJa zB{U9f==_;Re#%ts{4iUz6@Ag-Y}AX`IS|vbu(YpEp2f1(>b@@+gQ#IjL*Uv(!_;e- zPK)9*3-eG?jF| zFzGZBVpiB7u^FFMS82Ynw%AT~??uh*L|+hzS-H19w6$ztH46ZJ?kk;E%-y;cr{>Ej zmu-9--&3nzr+TGc=H&8-piF-D6Vt(T%Q?IZYG^rWWasg|^g3|m7eRz7J6u+Eq2DkA z#YL&0%aK^117YLNjPt@oVUm^vK0I~sBgU3Hn4Jct1~QW~_<#zg8?3ekE!ii;adXDz zaDlH%_xp!ym=TvJXp>$!<3>IPj@vMUN1 z*FX5bUr=&N0V*q0JCD{OG)8V2pSIANrS*hJF!V-Q(zBdlaB9kc3i-hrh`;RJJm6nv;G%Y@BHngbb^_yvZIalh^g!dW~s?h3Zsm3`O?9HXgvg2oPXw9V?X7ZnqgO%;SmDvFoAvPw)Kay5W#ds1@;w%UG2UC5uCm%E``$yKwGLNXq#fNaM zoB8?6n=D)0$f7IoAG=!PLos9niQsyGThU9_&$W1VW@qGvvLIrjgG9q@UypVit@OOhv=DRga)sv^)GLCuIrHj^mOy!-6V-=!kctFJ!On+z zkMNGK?QC0&x?Xh1g3*BjKxQ63i7t?8;fT7U~WlUoB6rv^E|LHQo+qY$hKg;L>+CFyRniNO8DbN_^ zF)HRX>oPYmNTw@FwtoUaRWgjXOuXgrp5;Zr6X)<=dl;c!k5vtMflsZAIb`Op5v?Aj zCb*Hk4@WcPHDUWR9k+r`n*`sliaju&U$pK$(Y;jX#$&%}|3W8w{P#23z(!o-;+U1} zD^aJ_9EbKxvpMJPSl#B;GrKO&;IAJTJ{U})@hVlQFSpg40t5x%g2RTkCkNG&XL22! zK}ChCAPxhJFN6@7M6TX%)(l8)hnyT!8a2EhiD3H7L*4Am`}zCPJZJ#T5EvMkZ_@c0 z*H~FJ-v6_I>$LjlP=?ge!r-AG=yhDIReAufJ3v zERmt1ZL26lAMYtluS65u)E*=DhJmT+7biZ`{u)B$Use2g!bvLs()zqd!<3s^(8Y=Y z|69WzU`9T4>)ZIoZqMIQJQm}P9$MkY-`nVQ>V;z$|mG{pQlr(#Xc$h4tHf zd?LT{dpEgI&oHu?DgkzTk(Wa{+uKo#-EMAG%VWVk#$}}wwh?e{fe%5!4~0V*j7j#L z)eH`KtSv{jN=SVBv%|qHySa{y$n7luR9EhUnFkGqmq#2Qgi&)OU&^IU zkcQlgp{itjc{1YY-k_9~TbGep7iV>KltI3FFiw) zbpb?a^B;b#ou47^LltEh7p=#C*W@v-*PF0?Mpoe^yX%5(Fl4LkUODMEyzO%Od}ZiW zZ=ydP9UXk@CrG1|oI)Xu(#tF|UJkrmBiSh$i{0dsF$?I|Kgs^ z+M#@OUMTYt2P$`e*Q0^2nlZoZb2BFx8IKDSzZ?Ew-6938TZ8Y{n(PHPp+C_#s% zeWKRC;}e)htf)e9O?n~umLX$lQ2(F}?h5CaI#{c&e`2aGAV$~CR#v8={En)m`N7B# zfFO8G9nCU)yz#kP;8?UgY)Cquy*F51{NCI4-c)`dkLYt~;xOGvLf~pNBSpQ+FW=IY zrVtIT=CoQoMMg>*^x68i^27n0^M;ymRMWAW=Xzh;0A`Aba-tip^JUqgP&DUcI4x*s%Wn{fZ+?Wszr87KPU@ z`v2@ohYC^P>g*mV2V|vu+KvvwQyC`Lnd3v%|E!#~3}laPfM%QbNcRQ4%=Nq^e;$Ue z=G8h)H-Vxcp=-D%iG$pKF#yo>D&yK} z_2XVqeU>XKt1kiIa94;m^Vt8hzfO}pdOPmY?uO-IpZ+KG^P3+9`uJy3(zTS?iXx2< zkst`v7)SgXu?jpDtT!{N&ks_rG_{hn>(ePT7e{`t>`z7#3EY9tQ}{R$YT#zRx7FEb zS+zV^Lx8lRZYs#_-7OpOLd2K!81(n{Dq9r1Q3H&5`$mLB`#R~iq|Gy{!GTQN)?7NW zj6O#mjTsjyl5AInY~?)`g68 z-QMa6nl@(sakBbV{vT@mj`RAwAQ@ALx}v^e-)n(>a-ErZY}`h5(LW7x&(;?jS6uHU z7T#`zd*apq&kDC7e3TzMz2h``DP@V9zj~2eVF(LaN2+UR4EH7Q(glLh+^A$CRhxIt zT+%hHMB}Kr^Iq?YVd8x=bpL)^9KTmYru$kzPsp~_rAz9Ix1FQd#>M`z{o?ITy)N58TLtX{269A7-5arXy&%bLG+!YDNL|o*# z9KO5T!n58r8pscDdGoT@n{(jA%>I75%*VHwo-o>62N(9Kwae#c(bapBIIO9*t>q1< z=B(A?$vKVg2LR6;$T}cnBPAcH4Uy6galNl!4 zZEr93EQM&rxC$s81x&-1n4@i`C-rCq04I2Q2C|CsxhT~YZ)A(jLwI3_-Z>$XJ?Bw& zeu(atAJp)*Z1hFpAA`aa%jt{UcD`lql11ymh2Fmhg#@DR+sjch{BXFjLtk1(t%z04 zPR{Ok7VmLbrk3sC(`%UbwJ$ma|-0{1h{s_SXg zgH0ajds>7TXQtypxzt-EZf>!7`1OjJa*|-`eays&t#Vb|$EmKg?6V4q7t>B*%!?}) z*c2GBV8`Mp`cV5_I_oYQu^rbxW_&;-LPoqmzs|%&3vU!ff zz0IcO%NBbBnWXHXulnR%#_tt^ndc8xk!lP1;(9|}4)A&dyv0v;x=XvqE}QjMcO*!$ zfcs?7_l`k_T5vm{V^h~ZD5MaU!#`Ev0!aT=x7~--NlDy zd5epv#4a4klX_LNJW%wW<2+La@gJ=0FRcE7E$!>>?;+HBt#3GuWo4retkiiTm)E@bJ;x{C;q$ z=a;FL=O9s(pI_AzS-70)Lpx$2u;-SynC-cDwFZoRIr=)8zcLuxhnJXl68mlGDjE_r zMmJI8a1Z!~77Fv~U~G^iFmQ1hdVD_}8r7)tp^BbICih&KR!aa+8GV-gT82Hc%g$;= zK5ucIeUb~BE{vFH73o1@I7poum8&JDV0Zo%;9iw;1M1;Nsw=9i~RaygRhzzOTDWSOqkb z-JBkYHkr!#6`f*j*beV585kU#ULG#Yud1p_la?bvf}`v_lFJS&4!mH0lkqX;4G2** z57ET#8n675Rk8T{I}l8c(run|T}{Sp{`tQ*@#$hTF-8}Qe4BmjV&i<5|IXD?z0aZ6 zdiPkARn`9O(FJ|P%_)%!M@Vf-br7ROF|XlbDFh^9;N0|)Pga*J!urR_R-p=rND!nS zf98IfC8QEbirruYAN5ZIeh(XFPn|l?)0jZ6Aws(xAJX>oL07IR7Hi8*W!A(OkIdub zM{5N1DnaEN{oV4Cyu5#ag3z+^{jN|Ku$tH&AOnm~cf>=L%IT>U07O9E4;8X!j5ms` z2OsTeFyJsGiVlb>RzD|v>q z+A2R@$MF<%ILeDGVUAE-^} ztczNfGs|;wpNf?pI_ZCl0eJo&l!I&`>F}`aZs3bp@AB1Vh58pHBqSehXysPONm+S# zXxC-kk4{$14X{o^*W!$eg(N151rxnmbK-R_7T^x*B*oMpZPP*FgK8)yTc!A*M~y`F zvHQEs98i3bmXsx=?Kn_ci(o+8UL_=qT^;cWWAP{S6#*8jFS)m?TyF0_^GM5y0ac=n z=!wJGiqpvY`g%x3<_g$cmq&S@&$d~roS=Jl(%k7V@wzwfo4)r-Nq$*hcYW1fy8K3fy`TD_nRF^L1|)q zI`|p1PBb82z-O6Y8em;{Ku>AbaaB(Q6cux!a^g}lN=-LPa`$-@%3m-T09p{1pT+pAiI ztMRD5o<~#l9-~h61+2Vv;F69c!4DB2>IFo7PhuaE1PLxp-L_qjoOuoBUW|kyJaGx5 zt+5H$yqwTV_(#WVl9=qo@k31rTus}H%#0kNE2)bX;xX&N44$k|`LiNk(T191hw#3jtV{tx{E6d2S_t3J~U zaoMl~DTHjiT(Yv@spvDRF^|dx`=-Wt&qI`oQS^5}V*l^oHbKF`#YXaG>WlWC)9We| z9ThCo@^=(kve2f5$-0d?5^UnPjX>|F-5My*>g@6hY*8eL?o04(k9|A{r^8^Z7yHeH zkGHK);E;{+IFw&{ygvbMw&m5WQXf>-22~B1BNAID8;fh1y^=?^Tnm8|kIOOeorfPm z+P4E}KDWPaP`O`7%!G685>Pz%D<4a%nk90fF!F1shT`T@D!sfQ6Wv0*p9UrXjPdiz zSCcb4$8xt7N6mfVW}M`x{0=8*z%&#x{z8GoBB)6+jY`s7$bX zusX`P_exdwkU?J*#`afB8?kWil3T-qtNS4GVl7HEE;+d(-rv)sRQ2hP z_sTroAX|t^tykVNz2n7P>xUqC-ZsM%;qURka<-x~uo-_KsUM!KT8@PE1Bdhlj^CzU z${t10)62ajHQ1kyMOGf{PF|@L8r=7L*wEJ2M(KSrZC&m?G5`geFxVI|yoZT5C|yFm ziZCrS_~90Q3n^pZd6VU9eD;v%{7;ZO(8Wb<>wF3f4iuphIfW2xmoXsJILzv45jIAe zacA6I(Z0ByyyQBn&|D-f=~y#@7M52{H0hd8@eMS-=My3{mcY@C+lrASDoAqF@2 z>hVjmftGP2L++S{+fBoL4LZU!T+XHL<`H2`U5e0}BP?=M$z-NK%i==O-LZf#t>TH@`LP z9CQ98hK>Tp;LnY6X7!U*c>tI5k#U;^D}PhKzumP(P$b%#kLBT{u$F9V*PRhdD)bc-U|P4^}}0Xur>bwD2?;tutQl>GacHUmHb# z21%4DKT)9O{~15>ayKh9;3lZlIXmN{N^X9;5ukqvUH1|l4=wP~Ck(-ar{iaT?GDSo zx4FS|rtyj0fSqazap#O@D8na$j3F(B4QkkL)3%xwK73ovpJ#HH zjQf<&tSC)d87EQ^s>AjfoYBMA(85X{(*rXsLFL`uGSZ@S3FJnqNKr`3M*`)7YS%EH znphlw9^^_xVfsI!lJ!lYX;^~pX5del0{7!g9{6luh&(usHKVb)E1uimdmO(qALDf{$ZUrx2$Iz2 zuYEH^lN4nG*YQK`p7o2WDoeJcdWhUW@u^F==KK<5fMB;F!SM}8Xg)C53^;X!|A&#q z?;p>a$4`Dw4(*kLQ<(YL#@G3O(>)%+S{-$iI{wNpbOa7t`6pZr-c^SA^!b~HBAvmz zK2M4MN7#p=YV$?q6L|W)t+iy6<5z~Sz)`s3fj>!=$r-h!XxX}(w4?_XrAXlEorRU> z&s-n?ZJXp!p$rT`>el%=2z}CC8}gNp1^#qi$*gX1)_twu$WnfzVm*q=d~v)oxyZ22 zn85EIL;wxp>%@4BDO)%>vH>i?!0sRhb^$2>@9EJ12gbSxCn90m#H#efQ`65pxNe@z zM92(H8nZ2I)8st{#4h@L1871X^x#LZLplbnX@pQbTrC_=okgKNj?l)IiNo@B$Jd|( zX9@6g(2xfbuAw;QuJ+OC{7?p5NTLfzD&*tjaMx`a9}S`jNA|jW{0ah**DVe@mYb$umi< zg}kD>MeoEl{S+qBUoyXFX8@NiewQwqW2eY6%l+OSL$~)7H;=p5{3U? z8Kch$u0*M$obm%?E^8G*%m}_w`OI}$)?CusLx&*mZDq<_tLjp|St>8twu!wc%{=n? z+W>E_*=SBEEgXGrJJ|6abzWno`ouf9hsydA4CZRjNxlsYm)J#YYypR@7*{>(0M*uL>j0+$k+7$%HnOUY8X3WCmXlx zuIG=7-?<_<^SsB{u`_~N+$~CFNNDKKwK33F1WyGUV#9x!f}AE++{6TVHyzx#wIOlh zyPb7j^g>!ysE@GA2?@aF^HaYuq0!>0IW@Y9$g6i$Hw4et$y3Tk$3X0scbfpAS=`b3 zEyL7Ok=mGbk|CwJ&U+T?V*ykNCliC)QnWEmo+i$L;moJ>${(ESXA$n1t`>N-{Krhp z4KNC8B#ymGh0`L<2dkioMS?pJ%09rkqf&m?B&D}6SRbx%#C^SR<`aJ6tP=#wqjEv_ zG)VXGAfrL^gFk~(9QtQRAEId$I4!HQIRzK1J(bTNf76-8pF4-;5o>3Bw1#%0C-l}$ zxoY?InwAG7f<8Km(4Ccj29&_+OL4 zb=qL#Lu<*GAM28Vt@@bSnw65#2ilL0*Km@0Px2D#BVg*p%h&2oBYO>0D>s=_&P1iQ z2c$VrQNk@{N~N}6Y!VEqIw`?S`kcL?h~(zq`$5fM_%`?v{~BB3YiRs$2O=VtGTzhH z78-2<MTaebS^=r+de$QH2CQCvlyynSJ8DwVeI$1l8u{ zzjFB)1A19L+R+4ypMzmP!MW*_uh0kG%E@*$95G}OHpKIR&nsfMQFcFHQ=?lBAjTMe zhczb@a#S<_A3sH340BiAM3vxoXG^#~%#_41zeHacdNY`KJkZ8>YG$`UR-p73)ifJz zh)k)ksWjNhCvyWMNXdlCds|_{rx9pEd7m6HUFE}Y$=Kotb8F+O?lcKf5ltJoz_=V3 z^0_C=xM(FmG!~DL!s^J0@%?C`!*(C|g#Dak6B!mbw{*&7hCc%43Rk+vUep*CmJ{4o zEU_pNhM<6m9*-tP-c1-OR)5u_oy5JyMp$k-ak)P1jQ-&?-6}Y2S!Bqnl7kh!cDF~# zIgM<2ob(gJUy)?1u(IVZ33HHi5?KUn40`62k4(35qXD^=wbr&riDZRD#r}`ka`MQH z@82x(UqF-)W}PXlD!+r4KDy}&OZ-rzVavUB6JzjFW3ya`cpYh7*53!m#+GbgKBGX- zf^pwP2`3P5k%hr9#N+3%t2P1wA^aq(2W@PwET>AJyG)=ILX1aJDpN30W2ih>T|1zB zCNzQ6zf>?nv@0LSbk%w)jIP&pRE54i>tH#btw(1+n87SSxH$!^D1hkq1$g{!C1WC^ z;HvW8^>^=;KsOu3CgDiOP2pR4o~dj^Opw*%4@mRZ6>S>JWBc>ttCk z*HoEdeAn#H=ex5>FrhfWB|Tz8mzgBfmX1L&Bz_(GEB{YU#Qu{LnZ=U@>J$)%zs}6| zK8~M{%NCs5L&ptp$sJA2vYjp26x`;7~$`*7LGeO}T|^Hk{V;nz&*X zqv>$PO9t@XwfMElmBsApQtN}>Hb>1}1~Vn*SQdyr^^ER?5cO(7zBl!s3@y#of8~z4z;@LWLuq%0Px{pw2VC;EF9w+J7k zB+wxh38b}m?AImiY4t#3zodYETNDxjIp5dV$f(c+pAJDn6g2jRGeXK2-pGG@-k#h} zZVKXtQR05W68Q-%?4xb&^gobSSuzu?Xp`UoOproRJbXpcp-mf>sK^u?o&u3p?i_)0 zS)BnzEzAS^@1l^{X#4J$17gYT0Ssn^1cjt7@%J$+t&HEw7iQ#7>%b_FN*|$VMdV_! z=8;+Xgw-VO5Y7U{m`Wz~Z|-#zH(R)|$%ZaMfL{^7)hzcan6IoG9p zVP5`?PEqaTyj?)*TR69sgTcvtK{KEH4SlXbVYS~UtUkq}S08Ocv(|t7`4N6%b}9BH zbU;>GE3BOX=Sq!xEte{Z%#KGiPlc=xo1 z$TN^@G~j8K{XeHu!_h?=p1(zy9eT8d?SAIHgx>m3!-SbfZupR#rcXcNkTP$*6WDKi zpF5Fr)yvZP57nNl{|^~zrd~^e-OiIIGB+>K9`j811`4vtHM*Y&KiiqZNj@_#oGQ4X zzcr9Fa8yeLQ!k&CGYOOc-$5|D_T&B67C%Z^Z(I)wdT0DojP;tgeg<|4K8)ZLhq(eb0Gi7N821!l zvH**Cm%T(+qc)YyxE&g3p)f=*5w40EbT8OCg^}wPSC7xX^@%Yvy*;(41l(3`i3a7as4k&qlMX8Hvdsg!pCDcurK1O&QDGmXo%Sl-?* zr$k!>rocdT(gbaK9-+yLkLo9`$Y4sGTr7QR5ttfqg7HMV?&l zcnb!Hg|V)fk5@nw2&4a;iMJvG+3tT-vPz=Ukvs*{av$Svs^K3#1!P3767a7KG%P34 zt1!}BSe9EX$pB(nLhX5cPVi>BOh;4SZw+7QssBtejJ3DoX73=QDntr$)*o+I$C!by zv>N0;eLzkBfb>c9cVJEMZwL{uFAg(HE6h+TtrjA!^;s^TYbA^4;&+pCpOSwP>84zs zvtUJ#S(quDD7=M$44I?Qe8`bs%^8Ek%e&#AHlpk~I`{+0yLN+^e`8<;7NQk#_>ex3 z;9scwmA?_0MM%suE9wQRCfgg|1Y5ZQ;#Ys=T)-N2*->h07m;K=6<8L*Z32X1GX;?oESWV=;0 z+ib}w4YbJO`b=t1OPyN1o%zh6KO2D}W4fQRvzNr_lR$70^f{v0sv@I2+qq#R^awe! zl0n1u!t_M3OJx&g^A!FHhCi|w; zzRi=d6YiybNeL5+ZV31*%e(_74pf=p*sbF%UnhxR+ z{^0YGXmbR3%nHT#CcHSI(7-K48Kb?t8tlAUEya8OeD(o(Kz{(4*bFf07Xa5%XcT7- z<2`ZwY!rzl^E2NhSPq{bh0E$h#3sN{$cJ&_HlkkZf}s!dOGm&_CY{CLnsUvo0ToW_ zRDhI0zc7?|GoFH`?qeph1Ft9yU;NfjLa|fIXi3?HlC+hVQZfBF_+OOJn9kEZ@>A-; zv8650dwFL%S@G|6Z9|&v6~zN&QRTtC&G&+B|${l}5ghvF(Xb*l9X{Qv%^_38wef~``nD?>B!KO)<_ zcN%6lBlnRJU)cCpc#_H=M1MGiN^@3MK9_d~h1^48R8s65MAr=QgTcNK0(K?qiavA} zJMudTGzk$dB)9QtOkz9NgbWp92hm)@7Ktt&dX-n=1}v&iSju)*QO`KJCzGJEnWv%OeTTVL6BzN+8L>DRp54n0IPA0Y$W` zS1`1#G_Wv|$XlYu(2!QdyPJKU%*Vx;?ZeGKBRQr4<<+v4Xp2s>ZW1q`RR34a7h*u9 zDfX_Z5e#8$R`@*^=r(9`pdTyL9~j7LpTt-#r>a66_a$H+U_P^5#*uoDBl`aj`DTdd z5aMm5%rmj^Ac@P6H?Iixq*g|^-}o$S>DBGS>yW$YBSfgdhPC8i z1M<*|LA$V&cHwLxWa{OJr)yvWNzS{UeE%ht$6?*xkp>Bw{3kuvRDs3(>x&Nf5qAY9 z0x-r^*NywWtx3Qf%(|Uq9Ehap)2_vEo8HDFaz0ys_nZ59Al3ABk@1tdrzoVDkei$! zEBG`}5K=_&A@6j3(u;pRz@A85HZSD2`)LDM20_Z?A8rWo|Ia9bSB5mLP=O01qW;A7 zfor+j2jV5B#)id|p>y&0@et!gUo^Vpd9MS=Wgs*GUzm_kI?euKX>Jsm5EzJi`~X=j z54Z#W0?dve>2i`uH(^m23%gNl;@77f*D$4AIINxNOn?1f0~ba-&;aX72T@pex5`{b zM`O$p+0w)VwCZu3IJDGuha2*F^j_Q37Tp2kttwQ zX>ey4nH`~33rwAb`25uY)of8+{r-?6OmxnH5|B;7a8R=^AMi#I++FI2pK~6ul>kft ztIp(HRhJbfvE>AgR8_4ifb*=KnI!L~AE4mQ2XvNr{_;5_vI481d`d=aP2}Y7CijiW zwjWZuHVHuK%w63@LRRG!X2xRx|21 zjAH8>5KH(3eQ`zOEp6cMWyk{yb1U?7IEtDCk_TJ{z{O(Diz{E4#aw?J3>ruBDYKcR zATwt@@vp!TO#}s*sm4hydIRR;=m55fZ@(QB>w%SnAOgSM7DE3@@U2B=$zP^|IkRS7 zu`}&bM_AB60MXTUMQ_a{fv@B@?e zl?!?nMod?Of0Zr%0aV?-14dWqF;c~-*yqoczez_xPyN3fu=?xRjDgm?)`aS-#l42y zxI{R{7lE{So`Dtd zOZ|ZKWZo6L#`2;4#Jfd*xeE@i7-cwxoQ0;+-vFi}3mk*Y$wF5a=wYx!_wl@j(E9R` zOew!@VbzWtd8#hkL6zH>1S7OpD3apjW~r(NQ8vVa7-|U+0y$F(dp};XvvuJh5R`tS zy5D)Sm?j*&`px^^t3P7=Zu9EeU)rI)&ATaVJq)QlIi}7b{6`UJar&{4khfx+8=->^ zYHKyhfq^NwnGM!+>eY_(>f_CMyoUwne3r$pKFYugkN{C2U}Di{upQ3^2k!nGXk8Pz z^J2CsQ;pih4bz(j=1s$oWS0B?Z-YRVdjBnw+no!-CFn9GeZ7P8a2hQy_bT7t(?L(KTHKoueIBA$aniBhd~zh^ z&UtKf@{;;v5QC({Z350j0z(;#Rv5U)Ia@+s`s;J}JXwgV7Q20V6gP47du4s=tnc8S8l=8p-6~Lw; z&G)-&_dMLCNs#`PrBn@bEMp5F?S2xa9(t3NjbMOE?jV_MKp{8fwoAF|MNlHxQlm^p z)$E7EMi7ER+-HLBN60uPFxeJe6`}Kk5O}w$QrC-p#*r*+xy-;Zh`q@ZTmuuZm+ApS z#joa*sKzT9NzfhJymc7%>XxR}lErqXK1Mk9UE!Gjw8lrAW{RqW>GRPLjCe89d;Uz3{`YJvN1rtbf|MQW=@0F=BK``$K+riV{b{d=KMs6SgKSK}0 z{xju1al?QJE}i?!drNvQH%PyaF&kWU_Bi>^sQtx%V0jNBZ(X^HT3O%N&-SvBc0N4j zaCWaV8l6uvgbV>Hc{W=B8hZ4NNeJ{8rtb%=ys3TYPR`nX!g2c;4lA$*eD zN6I`tBcM)*Ve80MzWX+vE%F*;6k)g3Y=H&)NmoL5{oZ(Q?1E|G z_je!EsONyT$h$q4T%QQNp+r>hFkDynEipK9dEL&!B)y&M;3-qf(-tnu+WARt>CgCXNVM8Vr5&!l5(Hdedn}S4U1qHek!i)Z(n=))9tcv$j<%V7brAS*sz0(n zr;*R7MM1NZaVS}Z!xk(-d`8V=F>(arnZBMiDYbd?g&jh*Pt{+WZ(kw%Oibnddq4qi za_|z!2H8H)sUfmAkh$mWy-P)}oy>sG-p*C|bXf{G*#G%MqXBC8?uSvCN&`8t zqR{b|+1J8MpfyF~EMQ=I7-S}ZA^wZlv4QDS7p0xPWl@EZ0_Jb=(BkbKF z8O&LI_NHWgU5Fx_Gqmb>%9u*mC%yatM3d>os_De!;d<{g5YGx}UdVF;+*T616m#6p zb98L)XP{6k1#2f*ldz|M?bX$dzPH=sKR8w=n5oxBKfj6WGR@GHv`oj3jW8#oQ$|m~ z8dAfQS>^+VKD-Vu%suRYz=>ca0r(=OTr!EBJ;V4RK`CnOcqE&?BYR-JLx*vN7XE+j z)ZcoYmbjkb59wBBq5{upAI@6N2e~A2NL2P1M=F9?48#Di)H)#bcmcB_aA)2V<+Oqq zr;7YLVy?Qd9eSc^a7!m0}ayDM4~ zR|VrFOt^^h8VAhB&ohzRKvr%0ZAv>A`YDqrBk=4&Y#W{~jAwFKT?H{&)bgoko)g?l zz>xxY#U}VRFx$OgRA5b>9@T)T9#Fe?4A57@QK%vwN?swz|0CnelBff=_WJYYpQq*m zDC23U{}?&b1KOC)Aoit^_I~FF>Iuf6^zZ)CCxb2-O~DL?2iq(8sF9Lek@7qYmJ3)o z-^TRo)%SL?C8d~lF8BYUAHwT$ACl|wTiB9OQ&Z!1$6R;A)^4QO&CM;jvhtu}gl^y6 z->#ey)Ch0oYCK6(@&_kC^matR{qjrE7VO^ER#vNvJgv>GsJg9tg9%5k+e$S&Pk!5w zBc)RqC%o_6JKW=F!}}R9xwAyK1nzXuH`L#_)BZWIrrf?;tL&d@38#j)lngl(FUGE9 zng83-(cxCcWtOM8>PbyWIp#2OFuqemn|t$|PH^P@%|d3C9NTZ*ey@7vl*I^~zCMyiT(iKsY+$$6gZJj~__$ja|I+HX z_&*8W4km}K$Mwu4S8bEv3_wFRAFvF??7V>Gbu?Y);Bn7frSyMffxaB0|Y3N!i4;7+^Oi$WM;7wvMDu z4mY9Wy)J*cWd)_EQOMzle?g|g9OV6GJTHmFaBZbqKEm@^*xxLrTARqTUz~S~Kc?n$ zol|3{M5fB}h{utx`+6Viy7!M)yH6Jn>S9iIVjXcUR|Guk9o}p^ZD;9+5^MGS0O(4iL_A_R~=soqSkidXp*QjNPhnP zK-4btsm#N1-S5vo0JlzF3Pfzc`PLFMN6h_{lUXeh)MDdhJ?uN|_VRGV z-qBofJC|9S{5R#=Kd*VV?x^-W7cP6qrYfkzFr#_9&vAZt_>+rC33H9xrsbCTKT8e6 zKN2{i^Hb{A-$|4b0Q@3H!T} z>wV2@{-Mi5;csZONBbQoYJW#}i0DO1TtDtWG`y3inTQK=nN!kq#zQkOBf`}HqXs4 zJw-6YdCTmpeEzrE+VV#8@tGMTNz+In%~v{6BiL~L{w&kf84Lb$BkN_Q(`_iAzYNX!8zgSp__LMw8nJirkY` zzROVbl~4$7E$y))8|M3^&}BVN>^_mqQoD1VJQY!w^*r*K3vh)d&(i0@K!=^zcFy2J zW{IU}CluB^mB;VBcNOOp`XUXPaX}#;tmh>FAMsQWSto}w^>qS@k#51{QJiK8IENg1 zX|>odRtfYMQ_b^lJdZ3wQl3BG=ZnnKX5fp@)uW@(KdQ2ju0FQ}_@ya#RL1_#iH-O9 z1kwB%PYx8aIg}-rjH~cA1q$hmy81rD+um7HTevJq;w-m(sGV#>v~}Qa#zmTwP?l?W zX7IU5z*=!l>aK}t3h}GF?s;{T;XhSQw6n+M`$e<@kIU`zQRZ!*lx_gwzZQ5y|7@_6 zJ#0y`xf0&+(1f#zLI;;iZ~AA#!$QLuE+(cyt;rsY)QBq5V84&?-WXFGv5J0N#--tY zA;-YB)|;LCQ$}LH_WgPSw1OqH)A=J z?+Zzh5xOO&Th7gE-geHOW3ia1T-E!SOeL|B#{H8vWwUj@PoS5+dH2f-h!mWJgQqa< z$bU1!|A{ot+Kv=LvQK8EehpX__dfO*Sw)Tb#SGC2+Wvp-eP>itOSEv*t6W9E3Kp7( z^rF(Fqo@>Vii8p%3eubOUaV9>ML;?Tf)IM|Q7HkWLkK-c?>+R8Hz(2c-rw)%x7Iy> zPEInJnX~)eGqX2dpHMMqXI*n?c_Aq9PKL?6O3FIP)}0@Y8z{9yg7a6LE(?7h`pemG ze`PP~0l7~T_ai*Vfa8}s^1Z$pfQ8Ok!OPKz_*M+;3`vEVfBU`i;59Ubu4dE%bbqfY zKb;9N!$xa-@L+nwTq1}G52%}&nVkfrAlQWI2&K2IiJ9ftX7vHK`_CGEdekow~nf(=YsN-h4iaGhLsG($C0De zr+uhuNDIdbAiEDfmSmyX~CExRZlHl~?>f1qE3o z+3HiZoN8H?{<&3a%2HcHj;k#~?ay59SlAXS51>B!X%*bRB;P^7wfUc&SdAB6WG>88 zB+hT1#uOU{)43=E+$VZfCl>=6eWvBPU-~O^b*|bYM$XyZdz`xt`yr`#wW(hqi@FyWC1UIwM%w) zal0{;pC9=k^0?liJUz~81ITpsJL=X;UaudxE3FvuPo^cd%zMt}MP}U0!a^1hT~nDx zothPSXK+-x0+N~wfkJP7y#UlZvO8^|%_u(d{(Q|^Gw)xb4e!T11SX?QmGOhBjRiZL zJW@C@={yYeFj&nI3Ym>^7=D0kp@C-Ljw>_Z(Bcy+Bo4ZBy#`&6if!f=d2O_?ky4u$ z@$4EREIGXnODuXo2eF){uVNO~75vFXn>wxo2zUUJbnd)eatLb;l z&wyvk))YUUM1Xw%;H~}6cX$D631OPXXCT?`&*PUJW-=_K(B1s7suo{bVWH5mW5?#ACXAD+H>x~uEXAUF1?^R5 z=5m#f5Js_glY5GYLwoP+>OUX{&tsdKMDVyjc9~UUMHh!f;qER2b0C_eASmK&0=z^SPKB@4dMwzTIJrOM~pr5^8m- z-%`_M>o*f(tkQSoF^5^yQOOFngVpzd#-S_Ei-OraWgzwJx9VogJjYas#$^$JoP~wY zfm9l%pRPm+xZ`A~2i<19AgV^nNHf`|^_`Vno(o3TbU78nh0t3nUJLDp0W99j5#aR; z+hs0;6WxIZl`bZ0!sxYrs@N`55sjtLs08AohcW%^HS?q2jVwD)SFh$=gk;F`KQ=a> zW*6LfYdhNGo8@4S4$)CZxl6CueciNG>!Q=@SUm_gnhdx+P4n5o4h$0DsBxuQY{Ykf zfuhVCBmWlzEVTdw#-sxxA+0*g;(n}_^b4K9tL?4@EtoyI z*Z=}^pEQ-^u}hk=!P5T7z;>4Xb+_$pD|=ks#Y4Q2*N*d94_9b`UB8*r!@)ociO5Jx zGa@gMboXBcrmS9Gj?3}SgMV?sfU|7B_AcG*!y$d8Hy5p1yuUu|GQ}z)Nk6Zyeqch} zl+5Leq0_TjK^sHhhdnuMs0`f)luy$&O@swm&PzP}Dk;H&~Ji^2-4 zUvly;o3aN}OS{BQANb{>7=EYXXSrs(Vx<#%844Rvm zi1Dv>T^?~;EXLiucnSoN4-QzWi_-SCS3>y-^t=N&uZ}rXM1ZRRzun~s2jjyYu^+HA}?(OjjrYrS2TWp8V_ec}*@4ID+lw#!^#>CgX)MI_z+%gt}xX35>PR03v_ z0?7OaWnS^(#S1R_;A1qx*gG#!p6J!=3l|uz8%u{PUF}pPuL758qjF?}`Osq6Rr8<#M z#&brtA)z+6=atsi;Ay7o^It%AcV>`CyDf3c?&NI8`ci%09wITspV{NvmHC~`QZ$ob z)ykbIH8G1q<(Q1fc~qkJ^`#LWxmc4)+S|N-RhMW<+Yo}EOXrgBe6{*NF57kS9e;$a z)gs}2gND;X@8b3Om#-!tEdqt;Rv;-2YE;O>3jis72AKwj%6%qXBXOn#NQBL*FWK&T zm`j7My(Acz)X1l8<|#ImjY-90+a?Fz$%ZQ3=!VM@+V41hHyH@e&lf4@>trEedN#iz z`B%RRdS_fgeU6LEqRK9qI=f|ugvVlW=#>DBV<`J=l$~{`o29(OrWBlhgd8RFBT$T+ zqKMh0-q%@*={tT}4m8<4-QC6qa+Y4Z-HD-OVEl4lt!Eg2!(iAr^jiRHO4w0w?XA_B zXvbeH8?r1eUK#0a->}o$5;yN6>vTT?W$T9=g2zA#NvCrS*I}ubrK27tU~tnea)S(o zC&n?ifU^gZJE_ok=R-&=rANh8g0dw32sRlUOa2d3228l`1J^}v0AV?0_et{Ff5}E* zBAVmLJxlX~iY$IJ#(|RkLufYt0C0GxOcl?Nwx~Q6suiFE-nv$tyS+bvDlHJJzR2w0e zI2db7BC0Qi{-7D=*F8J?5Tpo-uK^+FyZg?IZ5N31mT|JnX6oCd{>s5ViC;oL#-rL- z^Np#{6UE2h3v+j*rD`3C;pXp-yk59iG#7Frq$C?Ya4kfb1zw1_m#4RA$@{@tWbdh~ zMYno{i%a^fR}B0Yt$A_bw~%9+r*wDksK&zN&z>=o?_w9tUmxoWjmJ8MygII=XtcNO zp0KwS&d14}zwC(T^cfmomxZ<+!sMa@$=t*hhvhtGw76PJOY6WIoKcWxxja&hI|pxd z+FscsRr**Fbx!uuqvzWVZD-@w-!+b*und8@1xdVn_%xdwwT2*Z(!zDIrRuE_x3wnD z@qV+!cml?Ae-&d4QtT1>GWpWdb*0xIk#-P8F89p#QG)m>=0u98rDv{FM>dn z+P-Uz6~k0G&nr8YFsK#o(jkeTxZ(O;F(OuTcF}xA%?AcFbaaWnWX%XW7fTTicPyeW zh}8$7ZuX5_G{))?b59nz*6TRWJ?#wVUyP#3$Z2M*qjnb)6?Kuxs`wbFnQMN2QD)A6_mwOXkMt z_cLOS%{?vVmU##Bv!CbU^D<9|YU{Cm@e0pMtId2xMc0dW%jGMuELs3{2=*pZz7y=! z;juxvY4TaFU$T}0^JfwmUB3jDZH;)2H*qG0m?e6<^oniIrYD9nNxJl;>qXRW2&1fn z&bKtY`HkJ)21y^!7#^DF9zEDJiy^!)n!3=jNmyiuJ9wt@1kb zG^oT5&%8D4ij>~?oDBli_0n5IXXksfdF$0oyR#1Vf0afX)yJW*mdnR;@87@QMx_nB zG!(ksC@Z=ki4n{Sn6FYFAR|wMi~78-umcR!!i(TX;!LxKu)5&Zu2R}w#i~6A?`;#K;-i)61faWtA^RAjn zsrBSHT35bYG>h9_yXNz672n>Mt~EZpW=N`EC*;jdG=+=noYppC=bu7FqUxE7!c`jFzy{23r0!lY`_79@!db1I~3UBAh37pJb3JIuexVoA6 zu1{8mP=X+x)Hw0#q4Rra7UCS_L{u<=Sx^i+Rtn3=i5QsI%uuV6jt}D2b#q9|(4$jY zTXOqKUpWwoyBggowl}sLW#|xev^#3tf3wh+YR@Wo9-ZLhn@r7V#4jOs5jDSDh)>il ztLGd;;CJC(lf202@XM6|X?<1hj@AQ3+yt99;-xvF1edLlr_ofVueEiZijk!!G;SSX zgBGv+^v_Z_pG$Y5c1V23g-?X(Ax$qH_c7*^fXeF}9E@$hOnuEUf5o!B zPqI5F?FiY)fsGCXP{iOTzGGu^j7vJ3InQ~hGgQ9Bc=q=sNZp51Sq6{iR>*vM74bbH zTAXIy=ydM}d)5NTPSLl+%A5Pan0eTjL|pYv*xz%T)D~>>a2BlDHUeg{2nfMEY{-5& zG}w2OAiBBt6qvY_y#U=UD?G7o&g`UDqU6{CE5luKB;;K46Hhbm-7aV2tF%itn!g{L z#hF`#g=gCkERdSr87e83skNhZtP9}_}x2gZoyLrQqE+1aa zWOU;ib-&EUV*F~eY`Kk^%S0ufXba$Hl%bBEDN7g`JOmFN>qOITx@_8G+oq!^`Ct{TqwRi4Dq0kX>)1Y>`M+Bp;$Yr$(Qk zFDBZRXF^wkc0F^9dR_xl@H6rI=wSCZQ?;)=wTsHbzo+ggsnx&u^6PLDpHxg}SVD}w zr$C$!R$81M)ka?_=T=ULU$(J5Xlt9<+qZFCvrm^tVVFI$4w$(@`6?1kx`b~H}*SnCc#zgCizTcrH`Ezx0OX_B(Dk35gnFeLrM!HE? z3SK&t_iUi}iu4}Q-$566N9{gL$lW+2MOl#!_$4b?u=_oRXpa^Z>(tbE0?=oS=-@?%8ZBFo&M84ZlX^!+8qOaTY3mdev~ zi$c_brA`JLf_4M>j%}p`D%tJZ5JfU04%J7fmh8GdU^^gw45$~lO@`X1&q@@2=mPu@ z2lW4Z!+l29@`vsgwybDpnHF|btZO~FmDWGiT&vJL!5_?Vn@!cE>50C1 zb1@f-tN}#sNqMvax|1t@N3jg8w0=MPkcj=72i4j;7lT&>ODLxeZol|9+wbND3f*0Q71alI>Be#=VgC}UckDT) zK*!mLm5>ed`z0|{#nmQk&>tRv^Ranwa&h*ZH;GtD)8E5a);t3AuFpaHQpJ4ETd$?) zf=22x30?Du9skpp$+0lGRkE`8`zg+z`SdL^k?~!%AUX!5-qGKD5fC;M4TNR=J6Ha| zQW@f#JBw|NF|j~DmX+ZbWKUrl)^#r}EE=Bg^qwRUF{JU(3oJ6sRK6RpcJzC%nRIHU zfMieiw6$?BhYYz2_=+T)1;%!SLLmK5cy!C+jW2j9f`FHH%NP@EOE#Md-b0;p>4 zvCGGP9IDFw@oj(|YRyQQ7Vz*M7Pl>Vm>2KTp&#wi%+1b%>|;q~y;!!Ik>4;1l?YIz zEesa*=?xrgz{=Oz!|vIfd9I7B6fpXF1zOvO!Ong9lefh5DSM1Hi&B|4rfqwBbNSO| z+UDlw)RXfXUicZ806F^*w}F$;AB5bB$iZNkX|k+kN!YWY4Ku{J5NSQ*o3l&A5(kT{ zj}#TkZ)~vd%xXS8)$wy6z$*zkOt7|fa|pEG_ipuf*#?(!*bw)|(i9Fqb;cZVT=KLeAy9aFSvg_zUK?)4!YJYv+hvx6!zPp)8snb^O-QBw$)hOpjv zgM#!4IZQ%gVpuj$%GJ<+%Dx?(x+H`yP|`LKlsap5usfK)QO<(w6yc7wblwY%Uwt#Z z#UN86@qAPc>hd{;jq3RGEBJQE^q-)(B`}9)JSDrqGkxnqn8Q_=0PULe+Xa1=5GIUK zB{kmK8%l$?EM70`YXvXMyGPiI$Szir4n;w{7wSJds4cT9ubB*X%bVR#zACft#0Qbw0mZppdc@<)5%~ffV|5-~n^3r9*QT9e(n|L^C@_^dQ^W z1*7U)B2u%`eZ+n%934VKC(US3>cfWf?*~R0K)JhDR{c}*Of(qDmLIG!KQhIxS02@S z)lPz=F+;mns8OlbdJLcQF4hRrNlWPEZ1u8=@!W$FW&?iGhQY)6h33`+CP3BX5=v*d z{Lh0tOFnEg6FR;74l-IiLPemCY~!@!dPIp}t{WtMiT(A17UH zYo^eiF0{DS`OpBw^vd|{IhkG_iXEPGp^6=vw#Kbji}AGY*iF>?wc{~XI`3P?FC zuJbQUgXikgA}E|9H$w64lAiFSm>JDF%DPy?_{vHSygT!!&Av(o3>%B3HmOu+c7qoNnI6y(+_d{(!05a?MpB_q8#&z#!Zu zZ0ZSF+koP>A(Te!t7lbot6an4VXO?w4CHCHB%fCAB=fd(*eEo#+>c_yqT}oL0rG#$TJf8w?VZ@Ds9(H9EE8_P=61jI--jAc#Qnir&ZJ^_LJzH+eFXo$Nb3pH z-0CI{3TvFCum)Gzz)I59e^?n}9=NCuNXNXo2mK!et55y;{Z=?M?|}})SBc>1d+_U= zaQNa?a+4k0LJ0Z8=s@))eiu6Bxt?cr75G8MT-mLnt8aC;Q_$X^q)?wV^$Y#EFukD* zDY{a!nJTZfO6`+_O@{ed&!Jz82At67^1KlktlKGMb%P}}6``R)91M*Uu1 z2*^xf!?n2x@DCp<&ee?qnW3*7_NzjcIza)hS*T9py2ylzXF{~b<9oJ8?3gjx9S7Z#xpw$ z+Unfdflb(FNg^l5cthxpFTr!o#&vRPMzVA+v$yY(vHjk}gRi&xJIw>Hsy+Zk%-lPi zy=QIDz^;F_b7Pb7ewE&?pJ82~wOO`ncJM5o9Fyl_3OfT>tEt)0S@X$J4KHt1)R$Zj zXLa-TtbiY7?rTqe+xd##NG;NoPm}dzmF_ikuvCGA3q|hPP(yekE9iggM)sB z`K6CSb0@#naCplBk#t>?Uaxv>|Dh)Y&`&`SK`XXx&)ltABkiv+1lew_e0e+cQu8dc z3^xid?45V6bU`mY4fdYJ^MQlv0D>E{Se6>W(lq-M2BW{fX=Ix2k6DxfU1?lOxCX=~ z`}F89jIo#X&mTwFZOdjWeyYL&0e-DvEki z`jw^&O;`i*UiIXS`V(s=Zcbf+*RA?-n_pCQhP3)0C+2*9eUIt10WRGhqy)_QnJ-pV zb`kWTK}!*jAEQ(Yd797G6)JHyshoUqxZk^nw^T?hA#>y*Ne}stLTqG%VCLm+33o8y zr?woiHi;hH%wjlowGZgT&w|W5+&+EO`q`Rh-ouKwH=k`{P`(-gh~2w{!daD*hZH*i zqE;Uh!pqUW`-_DtInH1EH&)1M-B%POu<0%K`XCL-LFLah=*{9OK~(?A-gniBja#yYGx<0Q`weRxP`b$zRVv)HWW)~fZAinGfI zM@Jz&tsqqa=6GFyEKJ~<=bGCl`&y^D?uztWhR>rXM|)`AB@~`M z-kfu&k|&ma|E(FW4nX+5%M)-+y|PCy)4n^+L=+-RE*gj^-lq=A`o4NaHCj->`GNFp z=fRC3r{R~@j{#y9)=6IqI&U9hUn-xoA$+$;9>b@oKA6X)R!0NX;ZLR)Bg>jjpb2r_HWKc3!D^(#lI|1L@-qSk)8PH-B?<8%i{DeZEb z9~=^gVZzGzyyeMUIK9sB!OrENVsmIPURKD)`538MsOM8V=JvZu%*d;SuKQ3~(Sp*H zto6a8EGe-IrRqz8@4`K&txF3s*aaVp2BDI^zg1`#m$}4IY4{A6Dl$!r%T*FnXO0V3 zkH4qiFQNoee5a<`xplcCll2~mhLQG`CS!{c6I$~IA$Afr$sXu%WVZ0C|#_M^;6KSHgV54{0lb0on#0<-U z(<2C4+V{*RpA9)I5q6)UM8f@Z=VCt9KPH5A7d491IPs6wQu zjG9dlYj<~71@pKVN=OU>YS75*vGq~+ElE`cW2Nqys_eCF$L!U0N8Ta2GBz8tw_m)S zxFTr?25Yh`GkRy!5tT;I9!9D1CoP2F82b&H2RG*i@V|cW1led=)v@G!#%q7~wJ+oL z@Q-aqN4MxrXIy`(3ruX(W($7{jsHb*DdJAJrPs1N8HLZg6^Spq z1u{v3Nq+XF2psT{e6d) zm<6T!*WYK>R!R`|@ALob;3Fl-u)qH$-|yN;S~Q(43??c0LC;F})b8fodGhjq0EV}i Ag8%>k literal 0 HcmV?d00001 diff --git a/education/index.md b/education/index.md index 7db140e12d..6f4b828e62 100644 --- a/education/index.md +++ b/education/index.md @@ -32,7 +32,7 @@ ms.prod: w10

    - +
    @@ -51,7 +51,7 @@ ms.prod: w10
    - +
    From 90280a26114393182eb468bdb83ff5db1a9a4c69 Mon Sep 17 00:00:00 2001 From: v-savila Date: Fri, 26 Jul 2019 18:55:42 -0700 Subject: [PATCH 122/138] update image path --- education/index.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/education/index.md b/education/index.md index 6f4b828e62..f07f216119 100644 --- a/education/index.md +++ b/education/index.md @@ -32,7 +32,7 @@ ms.prod: w10
    - +
    @@ -51,7 +51,7 @@ ms.prod: w10
    - +
    From 4a37d3f02b04e69c1322026d972f0794fff6d2b8 Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Fri, 26 Jul 2019 19:04:32 -0700 Subject: [PATCH 123/138] add message (#791) --- .../resolved-issues-windows-10-1903.yml | 2 ++ .../status-windows-10-1607-and-windows-server-2016.yml | 6 ++++-- windows/release-information/status-windows-10-1703.yml | 4 ++-- windows/release-information/status-windows-10-1709.yml | 4 ++-- windows/release-information/status-windows-10-1803.yml | 4 ++-- .../status-windows-10-1809-and-windows-server-2019.yml | 4 ++-- windows/release-information/status-windows-10-1903.yml | 10 +++++----- windows/release-information/windows-message-center.yml | 8 ++++---- 8 files changed, 23 insertions(+), 19 deletions(-) diff --git a/windows/release-information/resolved-issues-windows-10-1903.yml b/windows/release-information/resolved-issues-windows-10-1903.yml index e791545b58..ad580c30ce 100644 --- a/windows/release-information/resolved-issues-windows-10-1903.yml +++ b/windows/release-information/resolved-issues-windows-10-1903.yml @@ -32,6 +32,7 @@ sections: - type: markdown text: " + @@ -55,6 +56,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusDate resolved
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and result in the error “0xc0000005” with VPN profiles configured as an Always On VPN connection.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Resolved
    KB4505903    		July 26, 2019
    02:00 PM PT
    Loss of functionality in Dynabook Smartphone Link app
    After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

    See details >    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:54 PM PT
    Error attempting to update with external USB device or memory card attached
    PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:53 PM PT
    Audio not working with Dolby Atmos headphones and home theater
    Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:53 PM PT
    +
    DetailsOriginating updateStatusHistory
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and you may receive the error “0xc0000005” on devices where the diagnostic data level is manually configured to the non-default setting of 0. You may also receive an error in the Application section of Windows Logs in Event Viewer with Event ID 1000 referencing “svchost.exe_RasMan” and “rasman.dll”.

    This issue only occurs when a VPN profile is configured as an Always On VPN (AOVPN) connection with or without device tunnel. This does not affect manual only VPN profiles or connections.

    Affected platforms
    • Client: Windows 10, version 1903
    Resolution: This issue was resolved in KB4505903.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Resolved
    KB4505903    		Resolved:
    July 26, 2019
    02:00 PM PT

    Opened:
    June 28, 2019
    05:01 PM PT
    Event Viewer may close or you may receive an error when using Custom Views
    When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
    • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
    Resolution: This issue was resolved in KB4501375.

    Back to top    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Resolved
    KB4501375    		Resolved:
    June 27, 2019
    10:00 AM PT

    Opened:
    June 12, 2019
    11:11 AM PT
    " diff --git a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml index 31c6e06ec3..f0ba7ea7a3 100644 --- a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml +++ b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml @@ -60,7 +60,8 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + + @@ -84,7 +85,8 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

    See details >    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		July 25, 2019
    06:10 PM PT
    Internet Explorer 11 and apps using the WebBrowser control may fail to render
    JavaScript may fail to render as expected in Internet Explorer 11 and in apps using JavaScript or the WebBrowser control.

    See details >    		OS Build 14393.3085

    July 09, 2019
    KB4507460    		Mitigated
    		July 26, 2019
    04:58 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		July 26, 2019
    04:08 PM PT
    SCVMM cannot enumerate and manage logical switches deployed on the host
    For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

    See details >    		OS Build 14393.2639

    November 27, 2018
    KB4467684    		Resolved
    KB4507459    		July 16, 2019
    10:00 AM PT
    Some applications may fail to run as expected on clients of AD FS 2016
    Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

    See details >    		OS Build 14393.2941

    April 25, 2019
    KB4493473    		Resolved
    KB4507459    		July 16, 2019
    10:00 AM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 14393.3025

    June 11, 2019
    KB4503267    		Mitigated
    		July 10, 2019
    07:09 PM PT
    - + +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507459. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507459. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Internet Explorer 11 and apps using the WebBrowser control may fail to render
    Internet Explorer 11 may fail to render some JavaScript after installing KB4507460. You may also have issues with apps using JavaScript or the WebBrowser control, such as the present PowerPoint feature of Skype Meeting Broadcast.

    Affected platforms:
    • Client: Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server 2016
    Workaround: To mitigate this issue, you need to Enable Script Debugging using one of the following ways.

    You can configure the below registry key:
    Registry setting: HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Internet Explorer\\Main
    Value: Disable Script Debugger
    Type: REG_SZ
    Data: no

    Or you can Enable Script Debugging in Internet Settings. You can open Internet Setting by either typing Internet Settings into the search box on Windows or by selecting Internet Options in Internet Explorer. Once open, select Advanced then Browsing and finally, select Enable Script Debugging.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 14393.3085

    July 09, 2019
    KB4507460    		Mitigated
    		Last updated:
    July 26, 2019
    04:58 PM PT

    Opened:
    July 26, 2019
    04:58 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507459. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507459. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503267 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 14393.3025

    June 11, 2019
    KB4503267    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " diff --git a/windows/release-information/status-windows-10-1703.yml b/windows/release-information/status-windows-10-1703.yml index 1055bb156e..b682373dce 100644 --- a/windows/release-information/status-windows-10-1703.yml +++ b/windows/release-information/status-windows-10-1703.yml @@ -60,7 +60,7 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + @@ -79,7 +79,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

    See details >    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		July 26, 2019
    04:08 PM PT
    Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
    Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

    See details >    		OS Build 15063.1805

    May 14, 2019
    KB4499181    		Resolved
    KB4507450    		July 09, 2019
    10:00 AM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 15063.1839

    May 28, 2019
    KB4499162    		Resolved
    KB4509476    		June 26, 2019
    04:00 PM PT
    Certain operations performed on a Cluster Shared Volume may fail
    Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

    See details >    		OS Build 15063.1563

    January 08, 2019
    KB4480973    		Mitigated
    		April 25, 2019
    02:00 PM PT
    - +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507467. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507467. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507467. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507467. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    " diff --git a/windows/release-information/status-windows-10-1709.yml b/windows/release-information/status-windows-10-1709.yml index 4667f66e88..fcd770b784 100644 --- a/windows/release-information/status-windows-10-1709.yml +++ b/windows/release-information/status-windows-10-1709.yml @@ -60,7 +60,7 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + @@ -79,7 +79,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

    See details >    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		July 26, 2019
    04:08 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 16299.1217

    June 11, 2019
    KB4503284    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 16299.1182

    May 28, 2019
    KB4499147    		Resolved
    KB4509477    		June 26, 2019
    04:00 PM PT
    Certain operations performed on a Cluster Shared Volume may fail
    Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

    See details >    		OS Build 16299.904

    January 08, 2019
    KB4480978    		Mitigated
    		April 25, 2019
    02:00 PM PT
    - +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507465. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507465. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507465. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507465. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503284 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 16299.1217

    June 11, 2019
    KB4503284    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " diff --git a/windows/release-information/status-windows-10-1803.yml b/windows/release-information/status-windows-10-1803.yml index 166d39fa83..d829da6310 100644 --- a/windows/release-information/status-windows-10-1803.yml +++ b/windows/release-information/status-windows-10-1803.yml @@ -60,7 +60,7 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + @@ -80,7 +80,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

    See details >    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		July 26, 2019
    04:08 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 17134.829

    June 11, 2019
    KB4503286    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 17134.799

    May 21, 2019
    KB4499183    		Resolved
    KB4509478    		June 26, 2019
    04:00 PM PT
    Startup to a black screen after installing updates
    Your device may startup to a black screen during the first logon after installing updates.

    See details >    		OS Build 17134.829

    June 11, 2019
    KB4503286    		Mitigated
    		June 14, 2019
    04:41 PM PT
    - +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4507466. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507466. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507466. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507466. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503286 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 17134.829

    June 11, 2019
    KB4503286    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " diff --git a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml index a8d6b78e6b..65bd34e1b5 100644 --- a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml @@ -64,7 +64,7 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + @@ -85,7 +85,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

    See details >    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		July 26, 2019
    04:08 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 17763.557

    June 11, 2019
    KB4503327    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 17763.529

    May 21, 2019
    KB4497934    		Resolved
    KB4509479    		June 26, 2019
    04:00 PM PT
    Startup to a black screen after installing updates
    Your device may startup to a black screen during the first logon after installing updates.

    See details >    		OS Build 17763.557

    June 11, 2019
    KB4503327    		Mitigated
    		June 14, 2019
    04:41 PM PT
    - +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4505658. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4505658. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4505658. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4505658. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503327 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 17763.557

    June 11, 2019
    KB4503327    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " diff --git a/windows/release-information/status-windows-10-1903.yml b/windows/release-information/status-windows-10-1903.yml index a1ebf8f433..bfe5a1a1d9 100644 --- a/windows/release-information/status-windows-10-1903.yml +++ b/windows/release-information/status-windows-10-1903.yml @@ -22,7 +22,7 @@ sections:
    Current status as of July 16, 2019:
    -
    We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

    Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

    The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

    We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

    Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
    +
    We are initiating the Windows 10 May 2019 Update for customers with devices that are at or nearing end of service and have not yet updated their device. Keeping these devices both supported and receiving monthly updates is critical to device security and ecosystem health. Based on the large number of devices running the April 2018 Update, that will reach the end of 18 months of service on November 12, 2019, we are starting the update process now for Home and Pro editions to help ensure adequate time for a smooth update process.

    Our update rollout process takes into consideration the scale and complexity of the Windows 10 ecosystem, with the many hardware, software, and app configuration options users have, to provide a seamless update experience for all users. We closely monitor update feedback to allow us to prioritize those devices likely to have a good update experience and quickly put safeguards on other devices while we address known issues. Windows 10 Home and Pro edition users will have the ability to pause the update for up to 35 days so they can choose a convenient time.

    The Windows 10 May 2019 Update is available for any user who manually selects “Check for updates” via Windows Update on a device that does not have a safeguard hold for issues already detected. If you are not offered the update, please check below for any known issues that may affect your device.

    We recommend commercial customers running earlier versions of Windows 10 begin targeted deployments of Windows 10, version 1903 to validate that the apps, devices, and infrastructure used by their organizations work as expected with the new release and features.

    Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard.
    " @@ -65,7 +65,8 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + + @@ -73,7 +74,6 @@ sections: - @@ -97,7 +97,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after updating.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		July 25, 2019
    06:10 PM PT
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and result in the error “0xc0000005” with VPN profiles configured as an Always On VPN connection.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Resolved
    KB4505903    		July 26, 2019
    02:00 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		July 26, 2019
    04:08 PM PT
    Issues updating when certain versions of Intel storage drivers are installed
    Certain versions of Intel Rapid Storage Technology (Intel RST) drivers may cause updating to Windows 10, version 1903 to fail.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated External
    		July 25, 2019
    06:10 PM PT
    The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
    Some apps or games that needs to perform graphics intensive operations may close or fail to open on Surface Book 2 devices with Nvidia dGPU.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		July 16, 2019
    09:04 AM PT
    Initiating a Remote Desktop connection may result in black screen
    When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		July 12, 2019
    04:42 PM PT
    Error attempting to update with external USB device or memory card attached
    PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:53 PM PT
    Audio not working with Dolby Atmos headphones and home theater
    Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:53 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Mitigated
    		July 10, 2019
    07:09 PM PT
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and result in the error “0xc0000005” with VPN profiles configured as an Always On VPN connection.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated
    		July 01, 2019
    05:04 PM PT
    Event Viewer may close or you may receive an error when using Custom Views
    When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

    See details >    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Resolved
    KB4501375    		June 27, 2019
    10:00 AM PT
    Windows Sandbox may fail to start with error code “0x80070002”
    Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language was changed between updates

    See details >    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Investigating
    		June 10, 2019
    06:06 PM PT
    Gamma ramps, color profiles, and night light settings do not apply in some cases
    Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		May 24, 2019
    11:02 AM PT
    - + @@ -110,7 +110,7 @@ sections: - type: markdown text: "
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms may not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of KB4497935. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4497935. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4497935. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4497935. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Issues updating when certain versions of Intel storage drivers are installed
    Intel and Microsoft have found incompatibility issues with certain versions of the Intel Rapid Storage Technology (Intel RST) drivers and the Windows 10 May 2019 Update (Windows 10, version 1903).  

    To safeguard your update experience, we have applied a compatibility hold on devices with Intel RST driver version between 15.1.0.1002 and 15.5.2.1053 installed from being offered Windows 10, version 1903 or Windows Server, version 1903 until the driver has been updated.

    Versions 15.5.2.1054 or later are compatible, and a device that has these drivers installed can install the Windows 10 May 2019 Update. For affected devices, the recommended version is 15.9.6.1044.

    Affected platforms:
    • Client: Windows 10, version 1903
    • Server: Windows Server, version 1903
    Next steps: To resolve this issue, you will need to update the Intel RST drivers for your device to version 15.5.2.1054 or a later.  Check with your device manufacturer (OEM) to see if an updated driver is available and install it. You can also download the latest Intel RST drivers directly from Intel at Intel® Rapid Storage Technology (Intel® RST) User Interface and Driver. Once your drivers are updated, you can restart the installation process for the May 2019 Update.

    Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated External
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
    Microsoft has identified a compatibility issue on some Surface Book 2 devices configured with Nvidia discrete graphics processing unit (dGPU). After updating to Windows 10, version 1903 (May 2019 Feature Update), some apps or games that needs to perform graphics intensive operations may close or fail to open.

    To safeguard your update experience, we have applied a compatibility hold on Surface Book 2 devices with Nvidia dGPUs from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: To mitigate the issue if you are already on Windows 10, version 1903, you can restart the device or select the Scan for hardware changes button in the Action menu or on the toolbar in Device Manager.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    July 16, 2019
    09:04 AM PT

    Opened:
    July 12, 2019
    04:20 PM PT
    Initiating a Remote Desktop connection may result in black screen
    When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen. Any version of Windows may encounter this issue when initiating a Remote Desktop connection to a Windows 10, version 1903 device which is running an affected display driver, including the drivers for the Intel 4 series chipset integrated GPU (iGPU).

    Affected platforms:
    • Client: Windows 10, version 1903
    • Server: Windows Server, version 1903
    Next steps: We are working on a resolution that will be made available in upcoming release.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    July 12, 2019
    04:42 PM PT

    Opened:
    July 12, 2019
    04:42 PM PT
    - +
    DetailsOriginating updateStatusHistory
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and you may receive the error “0xc0000005” on devices where the diagnostic data level is manually configured to the non-default setting of 0. You may also receive an error in the Application section of Windows Logs in Event Viewer with Event ID 1000 referencing “svchost.exe_RasMan” and “rasman.dll”.

    This issue only occurs when a VPN profile is configured as an Always On VPN (AOVPN) connection with or without device tunnel. This does not affect manual only VPN profiles or connections.

    Affected platforms
    • Client: Windows 10, version 1903
    Workaround: To mitigate this issue, use one of the steps below, either the group policy step or the registry step, to configure one of the default telemetry settings:

    Set the value for the following group policy settings:
    1. Group Policy Path: Computer Configuration\\Administrative Templates\\Windows Components\\Data Collection and Preview Builds\\Allow Telemetry
    2. Safe Policy Setting: Enabled and set to 1 (Basic) or 2 (Enhanced) or 3 (Full)

    Or set the following registry value:

    SubKey: HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\DataCollection

    Setting: AllowTelemetry

    Type: REG_DWORD

    Value: 1, 2 or 3


    Note If the Remote Access Connection Manager service is not running after setting the Group Policy or registry key, you will need to manually start the service or restart the device.

    Next Steps: We are working on a resolution and estimate a solution will be available in late July.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated
    		Last updated:
    July 01, 2019
    05:04 PM PT

    Opened:
    June 28, 2019
    05:01 PM PT
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and you may receive the error “0xc0000005” on devices where the diagnostic data level is manually configured to the non-default setting of 0. You may also receive an error in the Application section of Windows Logs in Event Viewer with Event ID 1000 referencing “svchost.exe_RasMan” and “rasman.dll”.

    This issue only occurs when a VPN profile is configured as an Always On VPN (AOVPN) connection with or without device tunnel. This does not affect manual only VPN profiles or connections.

    Affected platforms
    • Client: Windows 10, version 1903
    Resolution: This issue was resolved in KB4505903.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Resolved
    KB4505903    		Resolved:
    July 26, 2019
    02:00 PM PT

    Opened:
    June 28, 2019
    05:01 PM PT
    Event Viewer may close or you may receive an error when using Custom Views
    When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
    • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
    Resolution: This issue was resolved in KB4501375.

    Back to top    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Resolved
    KB4501375    		Resolved:
    June 27, 2019
    10:00 AM PT

    Opened:
    June 12, 2019
    11:11 AM PT
    " diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index 9d2980d85a..037d852171 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -49,12 +49,12 @@ sections: - type: markdown text: " - - + + - - + + From c212cc7471d4e7cfe76d0f849ef7f0c8955119f7 Mon Sep 17 00:00:00 2001 From: lomayor Date: Sun, 28 Jul 2019 23:09:45 -0700 Subject: [PATCH 124/138] mdatp_confmgmt_ga --- .../configure-machines-onboarding.md | 2 +- .../configure-machines-security-baseline.md | 7 ++++--- .../configure-machines.md | 13 ++++++------- .../secconmgmt_baseline_intuneprofile1.png | Bin 49950 -> 63132 bytes .../secconmgmt_baseline_intuneprofile2.png | Bin 24631 -> 38644 bytes .../secconmgmt_baseline_intuneprofile3.png | Bin 10331 -> 26869 bytes .../secconmgmt_baseline_intuneprofile4.png | Bin 18218 -> 35792 bytes ...cconmgmt_onboarding_1deviceconfprofile.png | Bin 76770 -> 105415 bytes ...cconmgmt_onboarding_2deviceconfprofile.png | Bin 26631 -> 43169 bytes .../secconmgmt_onboarding_3assignprofile.png | Bin 19888 -> 31457 bytes 10 files changed, 11 insertions(+), 11 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md index 5c01117055..1cb70bd086 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md @@ -40,7 +40,7 @@ The **Onboarding** card provides a high-level overview of your onboarding rate b >[!NOTE] >- If you used Security Center Configuration Manager, the onboarding script, or other onboarding methods that don’t use Intune profiles, you might encounter data discrepancies. To resolve these discrepancies, create a corresponding Intune configuration profile for Microsoft Defender ATP onboarding and assign that profile to your machines. ->- During preview, you might experience discrepancies in aggregated data displayed on the machine configuration management page and those displayed on overview screens in Intune. +>- You might experience discrepancies in aggregated data displayed on the machine configuration management page and those displayed on overview screens in Intune. ## Onboard more machines with Intune profiles diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md index 9ef47de4a4..f16e51edde 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md @@ -42,7 +42,8 @@ The Windows Intune security baseline provides a comprehensive set of recommended Both baselines are maintained so that they complement one another and have identical values for shared settings. Deploying both baselines to the same machine will not result in conflicts. Ideally, machines onboarded to Microsoft Defender ATP are deployed both baselines: the Windows Intune security baseline to initially secure Windows and then the Microsoft Defender ATP security baseline layered on top to optimally configure the Microsoft Defender ATP security controls. >[!NOTE] ->The Microsoft Defender ATP security baseline has been optimized for physical devices and is currently not recommended for use on virtual machines (VMs) or VDI endpoints. Certain baseline settings can impact remote interactive sessions on virtualized environments. +>- The Microsoft Defender ATP security baseline has been optimized for physical devices and is currently not recommended for use on virtual machines (VMs) or VDI endpoints. Certain baseline settings can impact remote interactive sessions on virtualized environments. +>- The Microsoft Defender ATP security baseline currently doesn’t cover settings for all Microsoft Defender ATP security controls, including settings for exploit protection and Application Guard. ## Get permissions to manage security baselines in Intune @@ -101,10 +102,10 @@ Machine configuration management monitors baseline compliance only of Windows 10 ![Security baseline profiles on Intune](images/secconmgmt_baseline_intuneprofile3.png)
    *Assigning the security baseline profile on Intune* -5. Save the profile and deploy it to the assigned machine group. +5. Create the profile to save it and deploy it to the assigned machine group. ![Assigning the security baseline on Intune](images/secconmgmt_baseline_intuneprofile4.png)
    - *Saving and deploying the security baseline profile on Intune* + *Creating the security baseline profile on Intune* >[!TIP] >Security baselines on Intune provide a convenient way to comprehensively secure and protect your machines. [Learn more about security baselines on Intune](https://docs.microsoft.com/intune/security-baselines). diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md index 05869b764d..2e421b8321 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md @@ -22,8 +22,6 @@ ms.topic: conceptual **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -[!include[Prerelease information](prerelease.md)] - >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-onboardconfigure-abovefoldlink) With properly configured machines, you can boost overall resilience against threats and enhance your capability to detect and respond to attacks. Security configuration management helps ensure that your machines: @@ -55,12 +53,13 @@ Before you can ensure your machines are configured properly, enroll them to Intu >[!TIP] >To optimize machine management through Intune, [connect Intune to Microsoft Defender ATP](https://docs.microsoft.com/intune/advanced-threat-protection#enable-windows-defender-atp-in-intune). -## Known issues and limitations in this preview -During preview, you might encounter a few known limitations: -- You might experience discrepancies in aggregated data displayed on the machine configuration management page and those displayed on overview screens in Intune. -- The count of onboarded machines tracked by machine configuration management might not include machines onboarded using Security Center Configuration Manager, the onboarding script, or other onboarding methods that don’t use Intune profiles. To include these machines, create a corresponding Intune configuration profile for Microsoft Defender ATP onboarding and assign that profile to these machines. -- The Microsoft Defender ATP security baseline currently doesn’t cover settings for all Microsoft Defender ATP security controls, including settings for exploit protection and Application Guard. +## Obtain required ppermissions +- **Onboarding machines** — To onboard devices to Microsoft Defender ATP using Intune, you need to be able to deploy a device configuration profile and track compliance to that profile. By default, only... **DRAFT** +- **Managing security baselines** — By default, only users who have been assigned the Global Administrator or the Intune Service Administrator role on Azure AD can manage security baseline profiles. If you haven’t been assigned either role, work with a Global Administrator or an Intune Service Administrator to [create and assign a custom role in Intune](https://docs.microsoft.com/intune/create-custom-role#to-create-a-custom-role) with: + + - Read permissions to the organization + - Full permissions to security baselines ## In this section Topic | Description diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile1.png b/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile1.png index f8147866f51532db2ff1986afa59bff88ea62270..78c605fd6d6b7dfe6f5127738135448c177cde2a 100644 GIT binary patch literal 63132 zcmb@uby!u~7dEb4fqpOvJJw${>OAp3xA;zCNIC?o-Sy;M4h4}q~U=;7qsI!?d;!+w{ zD?2lY_Y5Bk{DOt}Ma{w7)x+4?4AOVJL0pdgXL2hSQ(I$jsWVj5QW*(`F%iRB#?JOu z_7+eJ#cC)R!}xo@o3p7IbaE5C_3yH$4t92C_O8%re{3@tLq}YuZslrg2IcOKFhURw zBr7SQ?wPbb=cT9N1{d3(6wqRK!FG~UpxSlolNxJz_tT!k$Z(N=^q1-z@^9iVHScG^ ztjk-m*mT|?#mVq=jyan*{X$O22&B!3HZhHNEQwCfrtAGwJ`bZlOKBJIcok7Tvvuy7 zBt2i@d+Ku1B$PTt=TjMkS&v?asfyR0*C2>5K&29V=H=R}Z1!w@NIDv0yV+4mGNciY`Io|K;v@zoa$=FNN%yiQk%!7dr8ppIWccg5g)<#>#CQ#EHN z?~&DYUPg;dw|7l2e-QNJ3s;I~rS0zZ?=kuMQy)$`H=C9OaK6fUh3`kPzx+Kxn{6K5U2r8r(y6dN>#hlHTA=~QAi zdY|NX#c1t!25p6@?2Ima=GqdR)KY3VvucNTE9u(=I%FT`(e|zva>O^6W3TFpCZ9{+ zlhWG_+lr{;ePZxn>UWM|>3zcsU((x&)=9X#!HuaCzViAu;+|(IGXClQt;{N8;sm^w z$CqmKPY8Gjc*!lvjT;2ECiWWD8|J+PO@chq*F}Uxe9h^z>zcz?&54U=(?`~dd6Y65g3#Rf!xZQ9V z0jhY$k2GVcf~?|=MadrKdCWMj$k2R~x7Tlt7o8^@=GhF!z-p>k<6TC9UfvIxabCKtMpDZVjG< zgv7~jr=nL(m0i2vE^Uw*1xUG88Xx`sbzm@c_Oj3OAu}%@Y10#}XkT-z`zw0lSI=;H zf)ktA(wUH-n4;P}C%Bm~^W{$Ge?DJT=`(}&oq~55$9ADGDUI;E?k&Z+O}7&UYZ}aK z^JaX9t@(C(&t>h$qBpXUUiOsF#U;WJFjgk}%xy&(pZcU{Y{=D^U? z=yY{^?4xf7@Y%E9GZ$}Y5r$~JSQxC6&J=F>Qz4Khj9{BG*gAljugOlbOT6#&l(YNu zhr9l*(Jj8VS8GbKOJc?u5|Sz7YYCMlzucIq5>2Zdg3)o?e%88_nGcZb)w%X;Y#Hfy zwfdC?crh9cxn+*)aJV!Y-bgtWEt1N6U6L-p)jFutI3Jy0nz0l`*x*-4_!hFM4Bx^Ik8SA`4ub?ti$t#5eGevG%iNnDII@cC9YUb*YtaI0NiAE zvL-+x#jNo8iQknjVd$CO!V-NAvca|-;g_;p6ild^M>)ISoBDyY=g8ACqe&5BF>93K%>u=nGwwjVtf?GILVGh*6sE6j@G$gJ(r z^jGUvz2&n)TGpSrGP7P!7k#c{XD~Hwg2Ww%vw7XPYp$jGs!q3%%alcoFMD;^rcJPmo4FDqy~|$Gya<(l9XC$>Oe|Rrpq$ z`ibi>=gItGsna61C({PHrcxz2Kci_N=>*-tNL>Ea5uZu9u+-R6(`o}xh+F)-_Y?y= zkI#eg`%R_PYbKZ9dpY|ZMQ_Z$i{uGmE*Y8)>zObe*-TmLd=K3A&u>mkode~({tTzV zI;%!;#{zZ(W(~t#X#7hUi{@7}S6tf(joHu(r56d^v<)R$gSxLi=~W6(YAp^{^V~``lMbIKkp8m6t(O=t%@nY zKBk|gyLhRff7HYo%2oczRTHTdD3&}?7GE7ccOz=;4qWt5w9lUu^FWMtUXeygtU)B5 zijoL_WvR8$XFoXW`f~@JJY3qU=zQk5fM%jHm(lYi;*DQ7Zg*l;LL8~*4l za)!R+BZG**R*?mvnULlHL!C$W6g3x~?THSL`!u+{^3Mz-r97@(s%8P(*fbr&`f#aP zySKk<{ks#tZNSmRYoM!+hQ^oRlXS#>f`4i)uKH4Il7)3_7}?%E_bq2nkG!mF^u^Vq z9bz|@7JIV*O#ae+>a1#0HpH54Fd|+zl}LUG0zxW7^WsF7)R|5>q_%n1E*I9!hw+z9 z2fHFit`GHFg!VBFOi6rk-Yk@aDk`H2qe|fMgn1pr^ROYor_GpHS)WcD1oU|!J3c0x z_6L6#3WJivD$Uvnw#z1c4PM+Wzb4|c{URU}MJk3R`edLi7^yDd8rDHqFaO*ya46Gr z`7PZsbu_Ke1hzrhG!v_CWOuOH)FmBTs#xi)c@WLi`MvS>y^eMnnSo%YRa*Z~_#ut4 zSLN4HT();dB&m?uHk!ZH;Fw{cq`7z&n^Dq`i`HMUb(zqja*8)RX!%%eOLqIJg8k$g zr>)nB@=j)&CV6b$Ol9_9It}y#i$IjsMO#`$zP)&zbTNnY>zNPX57s3+)LFW@NDohNE%R>jN7vc3`YynGbF$ z`%<%XCY$*d5sOv~J->qlINFMVjeE^r8Q^Fi+995U)IW;qHKJzG%sbkJ5x`!O(_-Y_|2 zdDcKEF0}oAFZ8YWj@^S;I*IkLA@eax>?9;;h0l+bX_FR{t|8mwbyGGW)Nvk^pQ67% z)m0B_=LP}l>c>#w9XhgePOU_V7>4L^g8{UQ#68xPh(E?_=E54yjG z!an7B3W=gJ57i?*4oeQu5AtAfZ7EQ7L|QGgKEKVA?T=SD7bsqP`xPc?pbPRs)g4-I zIiI^??WyoO)Jv9QUYOFWJtNs!$xNvYZk078Uw?G3bOY`?_;h@j+LxwjKc$94jdoI3 z>3KN`1o`D&D7)ZeBD0-+Zrpn*_k#E=G4m$aV09@k;3>hxFX_CWbzNMOTP{gGL|;7~ z<#1M^;B^X$Y7rx`wKg#|{?aB;Od+BTU#<4cd17IOO@+)~*s*prpcZ~4dPxMYTc%R) zw%ZJSpho1RNc=+ywRAZ-;k3HlvR3ptG5cf_dySStK>I_fqAqcT05nu2mw>V9N|M4Y zbSh-ni=ea`wJ6fuU=FTZhqr^h#n>d$1?J%RZLHUs=X>!9Bfl!du1VzP^KxtPuVRg? ze+h)8D~_l3I$^X5H}RqB%qZ`LKJc9Vc`7zJ!l`NKieYFM!JMis$~GMuj?XYNF}@{n zTyyTzqvw!}@sT}jScH$%;P5vu-HD6QE;`kB;jJbAmrg1_6w|4YBuwo198}GG8feK z0U`&sHJuUH;}-;hSBBg#4T|%LIrWKYat~`t3JY;keGjpu-jl!X`OGM!FD;>QPnP=~ zDUYX7KD21UzCsSW3vV-{>?cfX^u&$u@p#ffBbS_c?7|W?UBez^cSrz5o91iO8HmWy zU?v-xDpP0LqB>p(GlZl9NqDan!@V=x{S5_+`IKf~X9zqu9-=w1s7&_g6oy;d z6|iKU+2a=}q*VK{re)t-wbmY2b80$q+6k+F_5K0Z;5yFB7$o}o*`85@y5z4r*VyIk z=j2U1Cf$Si34-$csRj5OXiMP{mNi?Xo(g-fqjQA51V{>z`!q(cXuRWZ&2NS*eX5W+ z#wja=3_=DmwKd)h*VbB|-Q8Dh5pURA4jQZR*;DW}W}i<9An1hH3C{Q)PTGq{(=4QE zh-A8pTs{>P_Nyx0asIk0Y?V66Rj`-iPqrF^m7x-7K>eEf{Sx=L9l919c7J)?z&psO zo=*xi3^HC%JfeDQfrhDL=01|-cw!NHQYFYXiGuvGsap^4bsXC{R{mv4tjk{9VN`GN z>j|RY5*N0kcQkiSdx$HqCB0g(+utEyycl%S6GOqXm+z8eJ&Dac_B7s^jSmDN^wS!cf{YmU*s?qju zHx*yCP%>fc_e57KYk82p3!1MM%c`4wR{}Pqp;kO|p)5%IWE3~iGL&#h+Xfd>NTl%US(kD;xMbsmy$2Hwl zb`@*ibXZ1GW9SCy;Ps8)y@=AGXjF=8ve7~M>RWzIGBrmP z*-wl-B(aQvGp+sBkb2rQ+zEJz+X7+B#?k3f)o4jjIW=nQCPpFgL&9b1$;~AZf^8c~ zd0;y}W)wfOv91r69?++VsRW6i>CCXKkUM_8EtN92;!^OXk(mR% zs`K-}CFIq?E!&zDzR9m-o!EB!fi=*QmK09y*xi`Ke$$@)EW)8aq_#m!z45!Rn52Fl zMqutt-=#*xgkAOmAJrd*&br-QlJPgqmvxdz8^whbv^#<}9kG&T&a-?A% zBD`U;Kae7X5A0(GSxR%agA-`9+^ao7B+aIRsqY)|A2`z(e-5 z63b6#5VU6&$kphpMemrZs+~~OO}a$dXydB&jVu;=uP#LR;OTRP*;zB0)@;{>#2!0h zi3d=a#B-zQ2Vt3%8NCUOA=erz&S^cgt=0CA&rn80uG5HA_rq81aD?<*y-&qr= zc-J;Flr>1uD1Ffquu>OYHzhIKGPFHr{GlC6>kBo3UE9t$H`v5T=t=sh>3l}S$N1Z5 zjc(3wh;5&reSe+|AqlRpVa2DKgzPSNdG>HV$Md}vS=_!c1_=e!Bn2yotsloT_DhGW zgnp)OMipbm%*u7JTS6(-OMOThZ;`?$EbmFd%e_6yv@{D{Uc-yAu>6F{eeN7$4oGMtx_3F{A(j5i-5e& z43XK{38fe*3ripD?gn+$wW$gZ>X0biJw%q~jC!@P8V<-;Q|iwI@NSN0N4?8y?B1 z(AFh)O$?(dy%qFS^epl95ursTr4X3~yyBrU115p1cfa4Usl4||TEh_8Su6{_7mkg{ zD|wW6LHGRSnp@k>op|kBxzMq>NxhTP+45<)wvRK)cfRftnNoJ*>tGIDQz!I&J!>C{ zWLz8%{&4Z)2VPYQEB~jRs@Q5z)DDU}%^<=13($|)A&cA(s zonLIBFfF*Y&dGfbMI(S^%U+}@+D})Sdct9p)^SDES6DVfamf3p%yl(4`r9vZi#b~F zeAvGG))p1c{;Z?!-zno}ApFwn^Hc?<(-oQ)JaI%}>uW=gT2#!?Si{#gssw{}TK|{Y z?kN7$>ApphOz3EQ>~DXVZoW&rO&ED=j|^h>|6;G9c#>P z8ux#Cl`-hwq&l_CpR}`b%cykreABWw-NE7a^)t-d{9V9YwSv9gC`jxSG!ITRNMHlkkS!e{Vhy^-ka7lDZD2cEU>w2Efn!B}oN9zJI&L2$G}pJSCmpH{ejrYQfd z@k^01$27CK3|TR88;=Dm!gz4Z(u_S@?{Tk;ALM8Bdy$D!X;t7&-!}@-Nvlmw&o6_y z(4s%@n)ikTVogsYn((wA6QutRPrf9Dn(~+nn4VDnM$y#NqJLhTe@{hV%hC1IuOz2b z;At+BZ07DKyZ|;qI`oS^*UIo#xJANO(?`!cjtF8|1h(N0i9&N>FMbKee}Oi1)j@$@yWrz+r~B>FKGV{r~iME{RQp+ zH`)LH?T1miV4W-yjmKWK#EhJA>6PjEwGnEJ89%}b3kz2{I_+l5&9GessZb?a3SU$t z)Ia9Cb?X+F%>)}}5F|m6P&q(PPfv@9Oh-?j$Tk!!o?jCgspLZX%zb^B)(b~_kCTbX zGF$c9{U% z98>I5B$^LyeDZJlC#S0>OK&5XO7iW8eY2={f@s8ZM#sJFCyVuW;PDgIRb<>Ik_GUu zH9lwd{V5_8S|tXrYijuG+;?>Lc%oa;S5`MR-YzT{Q3|@QSNE=iG`>i;rmejlWqy91 ziG!o5=vb$2uHK{1?weWPopElT9ot4(q{r0M)QP5o$-5tJ4L_5TG67_q=i+P9gnA}L zW+o=_moM)Ni->6Wm78>g-=U7LCu-XJbHusl8k(9WGnH0V=+)1kKj*TW;ZfJroDrGN zF1xi>_@0r&WKU_*==Q(??^Ylogqa>#Kr${PsvDA-THKm*(-<$*pcNd~VZ=ql%8I?a zyUW*AZ95&**7l@+(#zAc#fU3SEk_a8AUpf8hcOj`OiWDFm8{In%#3$ts=k5xhk{WS zAJ`StFE;<^(W9s@U*1klX|owNQ7$eno^ZgvJ`Mf&Wka)Jvw!|^rA`s$Hw8sSDQ#^s`1M`@Ju`D&S^n_Ld%pV; z(5hgyE1*U^!J`;+kwIh8(?(oIUj zjoaQZ&C0?4zPPzL!$h%uM0`A1;?m8~1RZyK#bqTV zkbeF8MR4cN8;t_ZuX1r5+CY-*F(t)08@t44XlURmV^Hq(^z?9%zjt(TK}oZR0cP45 z95dLzYY|fZYi!cqos^guv_^x-<>i;#^NkddVsKCTiR=Rr`0pjIFY*KWI60{3=xs(^ zEkK!cYwTk#$1HhF&JS0n>fBh5y+uG}aA9+Era!C7jnNPGM-D1S&csvB3~6XQqsQ$d z;VccG;S~aD8WHnUvjW2Id4=TE=2!11a4T0Q#`4sVT6RZeq%sJ>)X$Wam4la0beA?a z!_E3)jRz8Vp}@0wpOPww$tTk2-Rm}lho7GdlVb}S97h{^y`R~M9(vYNq$TR-WkS`D54-4 z*N$>VCn-%fXZnGOJfF%XKF_16cDo>7fvEw`>i^9VmpW_hYv$D{itg*zuQ6}kdSYz+ zRl#Vhpri>Il1~+#+pQW&c-+gIk;&_l`Fb*|Dyy($y3wbmVKvIt4;+zZq4w80_ld$6 zd^W0g-%FulVD#Dex$Vr1n6=B0BVrf?v@fQkDQUf;_T(^J)@8R z`~^qewp2!$ft@;Op5e{anwXI9Et~lUFDQ_+`RX>%LFd|{z6Ri>FoObtd-5{WUs9P? z)UCFa0G@4eX-TcbciRspYb9hYmL~>=SW^v^m1%OaDCt{UTMs?x|0vWo9}|l1AbKSP zWi#A~f`7I;9i+CIYkM@9UyL>Mn3Xy)#3C_%s_dy}$A(`LlFis5t5OJt*Rdp;{e9i4<85KW8qYE2IJ_qmX`YQKGpZ)j{( z0II`)kB^^dlX;Z66*FmFrE{*ckpv{$e+FxvlRq?qCQ zUoXI;6~7TLu&YX&Ne&H|j2%N&RXJSs^0}E#lW(o>JebPvQ1jHy4hKCrsaP`qb98Z| zyVhxABVWy~&{k8abe&ixU+KNbzBo>;tekOcy9)^~u@{j!X=yZ{BO)Sv8=9`I^cBr0 zWV{g40qzpS1{p=UFF8FgKXt{qax!<##;|HpRxA0*uJDoJ;0;Ax80M#{-!aoolxOe~ zmW2rozLVa9t5<)iIM)tCr#74=xSMH1unEtFYl1iD-^(tE*y$!D!-WS`3lWKRnP@Q9oYQOkcWLe_~a zRNxo6Tyavfm)KyB>AC1CJq~_;@q_s~FxG!vfN1Q~$npNZXo574wTFLc(n za;XdZXs;h@Radwv%e>$)OWqkD5DYYVm^UlWQWG8O=9Njk2};gIB$TKT0ATWX+p6wQ90KFHlx+A3R?7ws({&$-SlOT%G6 zM?>rJyC3tccj)5sZ)?S_Es$n*nQ2#o=+*wy(NJoCOL8IiLbX>#49WiS@h)iNPv&00 zbyVJK;jJ29zcnOC_!OELGoG9Oa8cEm`?*8(Y?4F61?$LRF`vv`QVu=LH1q3pP+LQR zkdcv-6iw&q+@L^@d9R$o*C_}WP%!Vzpitqx^qyaRjU6;C06jjWAP>c(VhO;*!;8(q zk+ou;e5snf2mJh`fe)_uP6Ukqj#Wa`vAJko(@3SX)#rH}5BQZ=C?f2)0zgn&N&pu5 zT%ysWFqq(+pBNWM3eoWMYsI8QL}1@x*SVj%wzk_W%(PlajWNkCO?fSCs$=d(UT^J8?;MSh42|cXUk5 zgPI>!#AexmLY0=XuQ$+aN=yLxDbfjWq^l_4<3wH=8BuV?zU%`}UM~7GqU#t5Hk2Ss!^}lBy7^ ztOUwi=cto6{XVnRcF-6SldQcx2M#)l`|eLKIf){G6!|P)WHJ7Pj{1nfa8OVX0TB`X zUJaggZEYv0xeV61?4yY=wVBW@7u&M)4ON4l+;Mpo>s z?d-fSE#;zo>Q{2RHhhfrMwNI;iMx7A81$68qEwSyzGY zdjB`)GsR?&-@e>Ve2ZO`k_B8qetC6JmPW=NbcOB6B5$pI0EOT;qZu+ ziRmLOeXXCE+DD0UJnq>2X`V=ol9@uXAPGc3MP=urVCO)E+JEBiyAT5L`oBv zn-AT$wFSDfeP<0MBwh)}Jb!53PX?`S7)&@sAdu}q;$qSR15D_*QZoHK5|teW9EHG1bkFeDr%3SuY(lyiP`;qY)`UXJJ+Flpq;VokhlYbU z`Aw{vh2p?(Af|L^zOEkh&CCh9!)bt{q@)DqHvt|5q~0L|qZ)&r*C&%mP=&=%>=u{f zg1DDHrz^U4%NVe&HPp3) z{B~E;De{Lv!p1LGUU@YUWPBZtU)UK*7K>0<&|G;b>P`lOR|Fkf{i0 zbb{|5xBmWqNf6e7+W>o0De1U=04(6Cq$Fyk4m%h9swSqUD^BbR{5I=w*EaJhyr&4f&=0>M@B}-g~dEPJeHT2 zjX?5z*tY%U%NInb2f4u9C2H=A$^6n%<$D;*p_%{W{fZyct^D78G_3Y1m5 z{g<#yqK%hlVAQOu^V^C{?s|1pRifj7?AZ7ly{?9+?BFe|?{dvv>=h+r_MIkC1MFs6 z5&N3lKUN98#@cwNKkHoA{nWU`Vo2NfW-cbVzV*{2X{SliZCT>qRURQg1#ovJkQ}+t z%F6S}wMydBbC*}ybM|JM*uC9e{*T#PuSwfT8Qb*bud5uL+UEZv&&0$gp|VkgQ32^e4$|1P<2QEV1*7_#jCC_s)|{&$Ft?8OGuW&n+Jpay z#q>KxvcWn~>GD@mrjo+8*Q}GuDlg2=DEZ@j)Kf#<_ZGMs-N^}Eq>o$m-B6qUEw(=R zV>v3Vb#C|7OET{US9LOW^Vpru6uI0RSc14uL=aZ5|4k`&=(@{kLy;P?=vu@2i(B5%S<}h zb5tmj6+=(9CQ%?T-@%**jQ0NhOqE0DiOaoaSm8O*e^TZRF~_n-YPrGLMY5ap*`I(@ zCb8zj67etHnmJ=$~U_3aCA0LFam^ebcl{{6e;_EZ@Pw6L~@VQ6RweN3$*=Q4th zy&G9%NXW^<&tL)6U^l;k6aNS}A~7+s%*;%qgI^s}rN+U&2Br z6N?R-Io9}%+fe(zJi@@j!jh4dMS=iRLx2CiWR(N_>U{t3@QJ7Aj6zva!R+48S1eBGT#R~Z`u!Vlv#e_qw&(q5bi3`IilST!=7saH3rpo<3dN+KK=tB4CM{Ho@%c z<>hsF!pzJ(yx|%z7SKeA`Z;9=Ed4}E3Y|ed-sp2D$e1L8${_> zBMrr;{y@U2Nh2ac_2b765TD9)2MY_?08b;4GinSpApVgB9@rDe$9ZI!bEW^YsWDX^ z8)a-RCHkw>R*`+NU>};CG~&A!CA7`CIB5L6NKo<4>{q3=dahNt5BKo+LC`@>Z(kp_ zfq{XHyu75VD-WU>q@h80Tt^#Vt;5i+vMl}>@N3#wTeVh zcD9}ncA)T1F;H~At>^3p4ch)evUiVlN{x`}TsP>%HkQLcs>f$LMN`ta0?rT(`wk5o zTmSBPFK^Y=)fE(O;<$xfgMI`0sDI5AYCd4BN|1APt!$7H`scsKse^R} zXn@s$%l{o~KH^;kg`m+19Zp61KW->JR>l_8T>f_xX|T>ezdE+b^?%-MC{j$^-rip2 zKp~v_sz(yA>Y=dJ;s2+yk{+8o0Je}=k0Uwu#LU8C$-Rl5gBjkxmoO1=E%RqGcETL$ zf3IAq{Qp@d`F~ejuBChd;$dQDMuGspZvtra0lj~oOc%V1@x!4-%h2!j`O(_aua1b^ z!ou$WLzIEDT;ikIibRTvDC&j?OC#j>OLlpfXp|9F*mf-H)w*a4*^hPrSd?pES1xVBg@80dH z8vC>4`iItyP)Uzc;0%Eq|Fsfl*cps38WsRQO5Hy>=>TbALcOIzZ+rXGD&9(dm@g4X zk8Ji`9i9Oql+R)Q9q`Jgo$u~;_xIcG(*4~pZ#aXOYC$a!2F7T%g3Yc80dL|5Dxu!9 z);`YWclcsg1QdL>fh8rJz(%-Vc7I&upo12SPD}7U#3uV27Yuowr^H7S=5gl;<6l0Gv~niv!=>YeFo6AOgvjEVNU`gM#b-M za4Gg@Y)WXkxyx!JFd$D`jizAwAhk7(0MX%Hcz3sqhB!7ChHqwCB!DL%hj;^q`V;x_ zX=!N>k42#M@q##E{k`LjQP0&c7R#=PEABorHv&%XvHLa|z>V}`4|pwyX&TN~6Q?RH z@F62m5b`{m^RVk>RKPkuJBvF~Pq|!8bVvs;=EyvMj*LK9quG=r=c1y_w%o<6rlnAzD9T5o+7levWkD~L;y5B|;bAU$ai5Mz{zN)4U|bWJyKpU}0=t}c2OmgjiIB1ip?!otH^&-TpVgaMRfSkSX<7xu^$_pK}w?uJ%f+QT11KpaMe6%33h! z&GI7W5l}ImEdXZ0XY6*>w~bH|5|Zxj?!X_GlHd+**L7taYEeq^_p7m^SNrYwPJldv z#B&sr_a}56c-5WkK&FQX^?;KvS6eI5tGx|sV{bqa;o-xFr68>sKNv625{gmO)1w4> z^M>2BbF82NOdJg6Kii!nBp^^Ov3X10`~BFH8m8vbvcdQzI8ZLwlHad>pJl4mvu zsQJfko5b_pTkM5;wdDqrw|O%IIQMKknt$tkP+OY@g2n+^-!Gu|iX|jKD4bqJY&Q4q z-OE3zwf2cHDKTgyAR%#+vr*Rv@4GA#nTvQImtKCK^gEl=DiQWRUSD)f=KSL$(^~ZCAQ*QZ@AzkKuVy!XELPH~dvK*5U7~5);d-9DQ!OJ0PXprBLur6|BaCc=R@?;AHJ`p2JEWe zT+45h4Kv6>&)C*4(Ym`z&A3HB&07D#g|b^TYOzazL} zP`kUYm?HcZ2+8OMeogl9B__~VbN-K~i=otlN$6jqqeBLhh5Fof$MT4Z_3O>g^wK9- z?%zjk55?C~KvQq}F+2lGUyeWs<7(O?x`bKKT_d3wM-U!7S7NjXsHr1?-&g_=y8~c+ z^$qRj*D5bk0DWeVa`+7t6?I5!U=3as`J%uV6nK>S52r~WTtwC*=Vh6C2id>f5!QJ+ z^2%G2h5vcVIV}^myb!Z%+vBvF;q>coBufA)02OkTo>~d9n>$*43=kzdF zDR3QZwn~U(c)m#@7+s(+@}vwn`feD-QdguFTA#HI>3{m126`9(4dHaU{i41rKR;ht zMa8Ml3Ii3D2AnJ?Xhf&hv2bw20!Wrp4k|gpfC{-f{^ZPJ?C&qippbB%S_oKPir?uA z4bhQfkrlXNvfy+yBcLovLco2+RaZbe^3x^(oG1gXW&FVZ`T{`ten70yQ-9ukY&CNK z+^Py;^9ek%G1B^G|K3NnmIcz51Md-no`~+=-k|#W`b}+6mTrV?S_}Ys2yhRtT8+e2 zRHEjrUQH;;Gm{!}a&UCEyh2$q1;)o`qkVmKGz2s$tl0 zwA!RBy*{~5QBf*;8xfKUUqu~+Y~L5=p#H^-QAawG$_4rPx15}u$at-ZL8-%Wdy1Rv zy%ZD}7Z*3zv6SpIsqZn(hK?VfI@3Ei7#oRu_aQ2n9h}ZgJu-jSkP=tPbOit!6d(LzM7;;_^|KB7 zDuVWVd2CxlBfs`1l;WqcUH`%6s+U2ah{|h?UU7poN~-i&*q&@KtlEwO8oS)F8oS!8t08~l?#}lHkIK7m(l9~v8Qdi@`I0+#RN?L($OC_zKRhHsUWa zGG>{;n_Fev{syKeE_Zm?#|bl=~KxLCHp6L}X20vgOGk77Rl z#iXZIVXuF^4a;4;^5vsGgE{zr4Qc%t3fdjLP#_iX0$@7jl!@ct7AqZkMB~-2+he!QZ!(z6LE0w-Qp=T=JCG$0Ij9%o1q!s7J^Vs8 z_1DHVbAANtWOJq<(048&NIzhQRmHf`cylSCQa%}WvwWUEEs(S2?}dVRn+~esmary~ znJOEM_fjY-u2=H}r+@49Rgy{mGLlu~pcjeV&?oQJ$k*A5rPM^nrB#J~AAc;-Yg-Ec zv--e;++y#`D zzBV*a#>B)NrXM0w!3eoO>aa|ZI!2ey;AC|Xy~@!>#oFe0H*t_8eQ3^(yQU;!GhS0j z9DWoZO8x0ZPetXe`_9a-9e%@(iqCLrhMk}9+|x1N8^I&KzNZm~XmsFzryLvEmt_YH za)rGw+hG12-}6#G(8IR^XidAB#t*h{vU>s)MSgQa;+Ll$reobO6zCo$A8KvZ3R7{h zl#>RDe-Ynec2CH|&sZ8zKGMDy```V&{hfJ-P=z&{5cMZ}{BW_I?l%x46%GPkx0?Af z=>O{l_^7qT3+j~}iw^Ez>*~mX8bg5vF)`nCiJd&EuskA=XCmlmp7=kPYj>;uqieaZ z5zTt!3cyMd>M@(Ku-i0$jSlgdZhS(soGfOCU+r$;4e@@F=hD#1n0fic&5f7Cur3H- z+O&&tej{txy*81vG`p@3-*Q|m5Re_zeWU?jn)bu;TcGeCi>_iqbnjI;N045$FBv;r zwGLsRp#Q|*%Ole0QegP3z}2U&{~qXe(ja%5&sp&||7$^@qX4$Q0)t`cVF0^yCo+Zq z*8->#(Z&lDUPqwF9nx$#xP1q$F?+_LT%NNqzfjW542^|_6>)3$p>wouHMRfa_q%iT zzd$H{2E6cdIk|(alICBabtb=t_D~`0uR|C?Wah3Io+~RIj&5$P)tnw_Ky*M;R*TZx zZg)S#s9<4JGL>!3cW4%R<$ree1iUNP+uQ4Sw5kBKsz=H0UvA1yg2?wh!UES)TW15p zzn5e+PoP#1ClaqC!ho6C0~QvRgSms7bcfUw&|9^dQ^)ovklKAo|C`#6-TtffWc;Vb z!k|_!Gu1F>&m}hl?o&~D@wTna=J!FD9>_A@E1CYy`~Kwrb54Mwib_eDx7=X7f1iej zr}D>$$9*0iVn7$UM`8s5pF#Nh%Jz!gJeVb3!>^DIA^902zPTq3QY zAUUY9LV?lI#9jeFDhL(~0wq9c85x;mFQ(DWk*o-o+-krDCpN^GA?Q=k?)3^38UQX+ z7~}*@A;|SV4sDENVPBl>;RBi#fbykzpS=zxvFrO{U+;kagJeYu7j~%7uzB9z2au(c zI-JZ@pL;@pjs0qSedI`SEK@XzL+&Z&teD!?jxWZhWcahmPY6K@j*O@tZ%-4!;c$Xy zga9*3`T92a7O98+Wp>-MMO<85fSwq;h!PU=;(^5xN#MrD2B2Y)jo=)EeSM#ALO&f^ zS*;L_VBcX21dtolhH3Y-;8a_GN#T$;Z@@vNd>pOuztFi5lD`lF@Bf@1!kh--A_|g{ z>eRq2RlqA8@nHZi_TA9L2JwKDNL)rHY~Z;4_}En*XiHO56V!i0qXmE3#HV@>oHLMJ zOOk*K!M%GNHyQe$Qc{XpK8pZdMexd$l~KKO%>e=Dlx8#>K>7eCgWS2SmJd+t;8wtg zzgF-8r_?RRVa*zxm`H(WSlgQ9H#%suSXf+qg=jki1h40IS(oEdC+-yt1PdVfNc*|E zML?`U{c8Bw*x0n;bbz=n4Y=_?&nrUotV~r}ea`=&dI<#dl*1HouAqgN@b>K>1T=SJ zpi9qQ1Pp4%52k=K^OrBXZ`AICM*}HfRC5I>n>M21@cbuWU2>a-q~DRLY^nQf9cP{} z#N1S@1DL7Z?B7Va+&eI^achl zfUH{rk(ij6avxEz+&tKYHH(2nh9RJul*gG^=97#VS!O_{+=^xbmvPWlhVfXg%HhrU zAV?EKu!xpz)&ONqU6I1^&|;9%6{y|dL*PQCsr`sSr>*5^HttM~11Cl$_>QdKt-}UH zs3ge7K;rretU(7l3PA8^uXR~l07X792`VoyR}a8Y1m`c6p#m?Q+|saOzVWZ@5)@&E zvVFh4Jr0Ri%s~)=l<;Il@DHIBAmUpUCa6}f|Hud(fX@Uy@68Jd^b(1xW6J46;vKy} zSk~~cGJ@1r;{?YC7xVF;rXKf#dENMk3zO?&>eVx#E`M=4?Ql0WrXbR+xgV}WU;9DE zZi$ZYCyCSj^jg^pJMA9!sjY9h15BB7Zh7hv-z*KkPIv~t4W?x2(QS}%*>c~{@U?hq zGlWzAZk&u>&L|~{=Ztz&AmtIh_Y-pNUq}9pt65)M{vYPvJf5mHY#ZLqCDq+X3WX*z zBoY}Ku`?x8W@Vm5#!O8#NwyF&&+~1bsZ^3Fb7m4UD}-(Oj-}`Mp6C7jp6~s>_rGud z+})eK_FC7vuJbyF<2=rDrP^q=2paP3D9v|mk+-+c_4B7U{h(}VnP#roY&8AnPhxR# zr@yuF@X$~lFd%UaIS1ydE!_&&uk(Q$p;_c0&s{uC0qrnydD(SlcGk2m@=DM-`&54} z&BV}9rs|M$Dqs{*+geIu1#Jet4Kxbb3_Qo}?`#?$YKXI)?77hXi*KDJ?CfeoZaX_WTXiAJY^BR~XPR2$620Jf20z4$v+$=)fezy#{i zfXcnIB2V1+kq-GtimkVj$(yPk}G-@Sqg7RC#0e|+9KqB5D2le2U7W3SbRgE2?8#fp0{@34_gj~L!EammmyE>YUPEsq&-79xH?=;8|OUxhE41DiS zt;p;*ab3*c=ZRTUY}4Bd%v{aC){~^4gUX!{6?JK%XzGP>ikdzrcnHkDi`haQqI^#C z@@9e4JMycs>Q1$v|utFuzb8_bn zwALa$K5}!&6E3oKz6LMtB}m>i{1O?YeD`i4aEjK4*_(Q(O<%u;zj*P2yu*n6z{WIi z>K16f3UGPq(D#PlvP-zrq0g(i+F96sT%$TvL>>GAw(t!&cTZ5j%jq(B!%4BR;vm)M z5qtCdhb{S?7Pfcp#1|Aey>E9L%Wj#DbEC$!K}kH!-Oxj=Z*GpoQnmSe8L)IcF`)M# zWbE2;J?coV`7;aMk=!9X>E7iy z7_zfgY~7)Bh(2+!M$%E?rAa>(Egv@Z^HLPoiCI^<`kv#7i;K?fR18twSD8uZ&gZM@ zck(q%EG+}r`UeNq1pjhT6SV`DVqIXkSkF;II#g@T01MkcUpWNCj`oi!U1`SoEp zb-F>$cDV7xhP7*&8XG^4%$UF_G_kPoXJZs`QiL!$%`~YTA;T+bX7v{4wJ2Ym3KB`h z@cjd|UtAZMOO{I(#(nwDCMFdZYu-D59(jnC<)wuqWDq|g4sO5b+#=2&(lIZ*^^pcV zR5In@c29!Kj~tdN<;RSZ65xU+Eg2avEr;F>oz7F$)V@1*KVuO9^dpCNG`F2It%W13_E=g=61?J}+U3#O!c)>6?#;kj71h;~ba;-Fod{rkYChQ( zAoN#&07tfM{P>=E9lcnuO6%#BO>0PRn{F3&HX9CJJ~f!fPg@pL-uz=~-lHfZHDC1i zCabg-Q*+&#>~s5Yp=RMil6wNNE)+#g&6ILxHw~Qhnw?z^ywM2aR|I3qf!zzm-3>rx z_iSFD?5-#-?lC+vqNJ|QQO1*n0t1)%O6?czF9g3QB_xnhVDLnBz;fk}Wj0n%Fhq90 zM+EYZO$7z*OS9c+=MRO$v6G|#CB(_5o6=lui?(kdk)egKnP?teG%+_$`1QvX`nZ*5E^XIDi-eL*)>mexIy>yQ1F1SE5OvlNNM!;2jR4b0BXt)islCnO|< zIp8$r`Pz3!D5b~uCVdWb0OY3e+c%>mLYGjmjs{Jq_h1G6{r4%Us7Pd6=Ir0R-b}&k zvg`KE-JUm=wp%8prq(nMVt@A!45+n#GTlw$;b+r}-bZ?kpl7FF{fO1s#@1FrvdCIe z4|T8Tm&AmGilANL*uU>|zN)o!bR6_!p_h`9dIrA95i%nqBcRFj6nhBx@GyfCbG445 z9?ea#l!JnT%qoNN&l*nB+eUHFG)Sa8*+7*A|BVv5a6`xx6H`-j)?~0q6a4-C50CH; zmKV2$Uze4AftWVA{8IH!W!#SDsm_s^#N_1B#I}tjHafI(!^>>#J$L?1DL3hHBtu3~ z`9m?)idEb*D4N+w((J9AvZt^Dix~68x8H)~wrm=M-%BBmPq%GM%k=xVW z*XsyfFfbTko7oH*)32Z$$tl(C#nf);s#Y%&%+}xvfD}YF1Fe?u8mC#m7Lh$e&eHGS z)=8bPgz*(WWDo%UURa{p_yGU1CLSR1*#6VF_T{w!PZ=An?P0a$p4UjEPh=#H z6pd{Rj%HvF5--V%TMjVIjF-pFENQQAY8TMikhQNmIHC1KgC4y{%^%O{2T>R13&o@q z1O6WWGJ4mpM(WSZXHG*)-ulv~ll61EcrFzx$5n>>3Z_I?s!;DF&L(Ru_InCB{<+0c zz(20#TE{WytUGs~lCm(yn?$&kA_y<(XJ;9@3Q43E%ERZ4!$NK+Oj8Yej)V;Fr!@+6o%uBs|GUg_{z@7yJmOZm`&zg_^m$83ZoZu1+<!;lCi&-pJlir2y-_He)`R0R;(^uiSDo%kB~vA?qKH zXB;pKw_A{1Rtr93p3#i@+Qg_RR+ILeoHLAP(HJHwUwenh^h<1XC2d4}=FDqI^l~WT zXa?7x;cm(9z83#P979*?dg>6pBp^iiXuQq63P14W0650Qh;u@-ElOPx-#JjD0?OqWA- z+?(!-XMqNDO`cnu9EHPooV!n@>grR=!^U!(8O=@W?CnQiv8Ci!uC4_Cdk$W&UqiEXS#+`l#hDEqTQIx4Z(e5*0403O_zf?w7?g0jd>6&vBA2jIZyQuFrF@G>Wm%%hu zo;+E*&BujjaKk#1G~;fjMryUA&7P;5uZ0NSy&z&(Q{HLN+o4)u-28cy&k{9i_obTP z>>qYz^33|7~Xc>`3?WVx@_L)hHp! zm}+_R<-XcKN#E}>C27ZWpHQh3<0n%xY+4eRs-q~;&1KbzbDYfnqP9A znV!B;x>%sWrLU*=6a09}sEq^4Ulogsi<|qVr>EoR^Gjw@ELCR_R-&Y1uasVKuZ>T1 zY;2orj8?Hzwvrs;AanIhjX6(a66t8ey9b-Hfhg_tV;mN-Jl;D|-is}4)~Ss^TxlGr zP!qcP=%uJ<8hGt3LKLCm>ROU*fzqJc?Ow^pPM>c0lYdy5*@K3%hD2$27{|;&F_1ld zr@xyiY}pJEW4l-8cMF@T4%Hw(UY8H%ivx7~+QntB3=1>8WNSa3@JGN~?OnXK+ntLL zraiX(?^hN|NB9WO3?!bMKbJH@-c=Wg13*RZwMXr>kZV3FVNAK%|ACcB0dTk=q2X);vZqS2Ju zEmp4fO+#QN-4SvF>#%L$13ZznAOGF-65 zosKZI9yjJW?mu1OI{m&rgeZaaXNxD}1>5yY%Kx71_;!Lg4y^`ajXzzAJVa2lYW;T;W&V6}4D>%3I$~`(B%qPec(5I%T|NiJD2=^3OMvQ>9`*E66n4%=h=wT zMZ=D^Z7VOC_kX1cdsaCyOGJcV?o*=U=W_{Fo|VOyuffIfQ{STf>(_r~E`(@9ik}eL z9{5hB(?QX91$@(YyCk3URo@1fLqwjssZw%sxy8AkIF6Bt+Q{t(&+3T42U9>rsEyLv zx3)(Qvt~mTlorZNU5_0KTgyB$8Y9ZMIOr=hR~xoMHL0WE?;85aT?qa_w69gH1cE zXD*S>zXubz>5mp+ZQ|!o^c4?&-0d3k-bYK*3b<1nRIz!%nyF$d5ae=1Q`K|1*yjw` zj~{;=loKAwvb^I99G!~I(;nikf$wflE+^DBS}*S2ASRLo!*5jQW%J_(k6fS>ok=Sv zE#1b{BLM|3j9WAGeLJ_Ux@D1UX3_pbFM=%_83npu|1|jPxbi$=)06!V*HK4!=l_AX z*^&i(CLvaYx~ykkW^s-fyGlTDnSJM|qdb%pS9CUwlRWSvOhW zM9ngK<#Km8;t|8#FUIDS-Z2~2?LCX8mfie!Prje;Dhy8zb+w(DRv(<6D7pPCyEeC4 zPQG&Yv(-DIHb^Cpz4!KFGkvv(q+?d3l}5z&fVMhs`JLe4@Ga{F_~u7jb`8i)hmebC z7y=#yI*s-9x0=+owbKwzsr7@Mp`@mkcB3+gtnrUs8q zCzF;Z`zg~J6)A0R zYUXI6^r>xMH`EzUA8RgY2M=X#F}g}EjkW7ariY}HsFT+U6VTy2RS zCML#Qbu1|^UEKU(TFE&6A>Xpc)DS_rghH#mf zm|WM@jbf|lwE`DhdSP}Vx9xFLjaB;^63;<#lQpmRl$PEKg%tJQow%PpN=y%K;otk~ z(yt&>SPpQy}bA^`dzqqS^HqJt%189&&yx))~6+Z;Onk` zjy+Q>II4u%2*1bN9npNOB)*W9-RyuGjS2+EK9OKU%#?s-HCesvChlMxUTp3;h=eXLaQ;#f}b6*%c=txs+ zxjfp+J#uS@I8s~NUfD)*K0d4VtUk6}({Mc4@njWWO);lo))9fGGrKG-EB6!oAa45| z^~!2@f2^sKS#5dq=X4B?l|gVet=Oe`Y9ybcZho(}w+1tPk%#_OWk02TEa&<>NCIa1 z&Z1##*bk;3Y|jA8L%FL-NbR6+!_X@>TU*-`+}yP}q9P)i2r8nwywfcy;ttXTmON5AL~?60>iceOsA1?5 zO$zZonZ;yTlTRk*vTVh0aorw+g>9B$nO^aj&P44wZgD>Wg~h763#!^dyPE_~pAEpC zC>Z>s+FXEBw!V;=yWQGuEshycFTZV5Ba_p|R&j>q1Vz;XzbF^#23~e6mn*Q9qmJf{ zlr4-dcg`#85Fh0XzQsW5Jv+m~+CTTyi*_60dL~}q778spZh7e(_yRdip2`v&Jlc6i z>?2L+HhV47p`8T8L_>RJbK_! z?WgwLg~%^mHg^~M4sY9NYY`l_YwCvNgYv%WzJTvqLza1h#ad2%$$n19G11iuW$lI% zuUuyv?~UgTIs33IbT>6vc6v*n=FBq<%_!lMsP*eG@v1qkAh(j8E4R8DSp^KbBHSdN zoo{60_!GZK_nVrUW{MjC`~G%)v!{Z(`T@V1pHuU%LP8jAN>bA&7l3$_(HJ-ihu%)0 zBU!l|ir=7f-7l5ggo$>_?2GIuJ?Hj0;~5wP1HXRCOQ*lS5cOH-GacRbl2JknuKu^w zAUA`3&?4bxQ@Afire&eDWLI`|WY#a2gk+bQEOXa19}WG97u|1e2Gg;3TuZPpICQK7 z2i@vi`TqV@ykMeq`qAIsdK-ON9$Zd;;S!x*BQkT-KFlxC0hYAjm`e`ll?GygO)dU? zBPMoJMomnEWX|Uy#7%lB`D`C2gLSdsg+S@SY)kbDXW&6fhkQE^o@S^mRzKm3(fGAd1B#% z)8e$8n39T|o8p1|QvPFR!Hzic3RC8MRq~!H#HXD+YNI2PJSjgR5;hp@oREV|Jrb5gwKQY%PmZvT6|?N#B2G zy4e1(0sGB4!Ih_`fAYNQDXHT{q_+;%XAdIvq|C0(L$3(wJAz7)s{y18D&U5btSttnF&t)jk{ z;3;07-bFYkN(br;lI3LyL-t^Izh{#GMP4gStoSl9DQ#(SOlt9lJKUJQJrRy&Wptc| zzGXoA|7Kzy#70&`d=p`OJ1wwp#|oP7G16WC>1tE ztqszpJOARbq_=x~zWS&US+KERC=H4P1^2SuU-y=zaQ^*$HISpOL5d0r3sdw7dI8Gj zUdD5gUPlrU4280bs7Z&<-2m<;8~H!*#~)osJ^?U7l9T5z?(6=LeB;`Pj|3ADu4y^; z?N#ET@)_1SSFU`hmydo`n^+AQz?gD-=uFVaVdmP7S#+mTh;hE(kEkMW0Z{z z2daN_1ym-s?IDmS*?TJjz1)2M&rPWtD2P&Cd==yi~w^MOqN=nlK z%c2N$oKx*z!}bXY@NC0crm@yc2?Dpvwd{U9Ea><<8sJfRzCE#c?xvboSq>~b5Sv@K z^ig~95g<9&$p_3tlR0^PSLC3E0}Vs#P_Yp;(9X`u=~veK5-AOernI`LjNy^4H^c>*9D3FuKLHnq$hr$T&rLq2`UV8Vefsq2)Wi<=U%N%y2*!f) z+X^rwQ1zhvuOtKQG~g*PPtI?p<7!0zz2sMA4y+|CBdxiXVeA|n*&v}4QVu>y?pirm zG&Y+BAgHFA5)z(7th%8d0+<4thAA_^8Dx?Hd?x^=HJ!&E$Of~*93`yanahK8rWjsL z`)}Zwp@D(;*t2{KMD*;Tf<=M`LD0oz&062~E-*94LQQHipD|Nfj3)Ra8`d6u}bw~B;< zp=7x(Ik}9ech@5sbSpIp8>CvGJ6UWYQ|y4ekPbS`Aq>cJp0@_!+!*Md(^R#<5i-ao zsB8Qeu1R((p`5eOy9gq0g04+O0w3+@rlXjbjGXQFo!211vid=mhNbrs<}-i(d^&h< z4>$cDIY76>@Dto(|BI;f<@4vqfdvjIe(Xer)u|C#DXGlyg(X*Voo`9-y@JnsJ~ze_1n$3WS zk)n}b@1y~dN6t@vbc_41U7})**9L0Cm`}U&w^j6_^u{u{ot+}+N#J=#`IqG-1(s(gylvw?` z9m3(juAo5@U;#4<5$@@3&Pvn)6>Id!MV#HTH`_&ZY%ge77ww}L;ElR$Qd^ZuANfG@6oQi#0 zR{^E-6r?NzQQi(F)2#&lU_g|FqGK`iBH^pcrHdkbB+VbKuWr;GxhB>1^G}AE+}Fdy zVF}$%d?k-z%T|-6s_vAvEo(b%M~V(t@-t7=l{!0VZR!%c@}FtgQ%Bh1ZI`c>7Sw3f zk4+gS^_MlAs_byA+!iFpaRq5uSq{3+_$yNeMMhs$`(q6&~{ZyCwv zw1;!93Ze?<)-0J9gHr@V{3zMFuoH7m^JwGX7;@1BJF^vIH4Oo=!Pt1{WrBy#3=CmKzcmb= zx<0{}0M51Qq$a?C164VWMpNJ^ZTIX;{6n{T;T|Xdui?$d2Gf4Ny&HEc_3m`8MO}Sk z`lcK(A>xS;nI8O@BwU4j9iHJ{cM2Q)jjirLbjp-fBqYjTnqO&F0kYH9rUtH(sp@~g zH^x-!sNQi@`Z%e0*|Q9ktbc3@d)KNB{OL7*63y~g zcRcR`$7#90VTvlhkTz2>&p~x66DvQN$!D7rTBQ+*B>tV@_kO2xvtiuO%1fC7bjysh zwzBdWjjR`XTv$}~gW`o1YCg_oBg+YEA$8&4)3V;j=f3}k$XyDC!sxOWQ*LRkyyUNn zd{s~gufyR_980Xs@_Vs5pZl#MdJ&pSzsG}ePTGbT=w&hs=x{L;n;08|pndnZNaGAKCg$8xy!#u6gncN;&H7B6-h#!hc@9nuniHtn8cR*#MD@G z;g0-#xjGK%e<$6W2{K%(nk#(z-NZPaBmOf$abT(wM4V5nCuEc_^ zeBN!T#Z81Pf(trg68@q4tBT)dKYjB3ui*X9LD>JEej@ut&mJ)%wvR4>H50E$1aLgj zsMVLT`@1C{U!)#h{e(o3eJ^gZG~DPowi2K)T-+G9A+t~5+&`52#dOnQ%VjBQnRi?x z3pTAD?9N8{H@vxav6J13^Q&fV&4CP!sb5S>m2rc%JxdDzxds1GxOg9`Y&vOV^hl?u zTaKEjFk@y_NNz{?eCGA(@neHo)^%QLe3r^A1%FkkJKL+5g4s2i`@h~P`|7v+QdTo> z*OXn17#q3Zn?Sf%r9~a<%J{(LJDjPBiR@5*x$P-vHs;ZL8z!aT3r^ zb^U3bPjK(bu~iaNQ<)Sr!9NA*4Sc!g45;U%an`?g{z(EdbXK<@B6zUsv19P5&b(o& zy1F_J+(YvSJ1-g9{!~*#Q`3>S2FIqQzYFsAgQU^5kww2Xj3c7VQ+CT=-sa_G+YHJw ziaOt*pe~*p#Kkh6A0 z=EcbJ-;-<9!f8M2)_g~wTh^=4q6k)c#1&P(ezNF{kn+|~^%D;*r)tJ!*a0_%A8yRv*LhY--M@REP3K~(O1B@Vha;{y4d?l6y^38Uu83*~>RJx- z7~KehHUbG;s~U@|zucn^23Dc12c|CuxFduUG3)4p)5clx`mmxI9)S@}KWxD>zCLfp7Z zac`KeziN<>x|{)5-RLW0A=}dH6t_AGem$x zK)}Ar?V=3gXzlv1x*2`W=zE7$0{k}FxP}6uo49i% zgv6EP5QBjEX|5v1mqsy)Wn%D%fc-l9{O?YpmjLBb+hXmaO82JUvl{dnRVe~hjRGak zN!WL`d6_C=RklV2w`YbPlTwM+A6Y2s-(q=;o|ZQbEHipK=TwsWNICck7OJknp({;f z&Cvt&868p+_9LHE8?tA{udGKOYU0Hcy=8|9XOMtGyE0ekPlLaIv|=RxY})Zx=-hvy zs^agT|3?nn|LPU49{B&Lm2|#X5hV4pf(;MeJ~q0QGwtr)+$C%0WBVF{l?hM%g9PtD&FEydege_D8Gk^W2S3agkaeR@nx zOj|UJ+r)9s^qY~klm?edm5@Yx8uElmi7*j|?s` zbCK|z@0h#XV@g3Ae{f?355A}v{}TVaJb+radE*0^Lm+G~yC>vs6tXI5YP!h$;eeMb z8+UrxEh{HS`QG`r`$l^boO+(r%)^!Im8-1OfG%^}Al9@h^Xi!aI|C7%Mk`GP{Ci5WP^U$%UzZ`KmVvja-0ZY+DeLTs zqBNh8_Y&NXCQS9*Slamm7Z^&+e>{%&Y2$H{wnM;#{ zRYtW_*UCRhe>`Z?Esck&D%#j&&di~V3bBL&8hCMjBPg;!LqBvdPpz28uZ&IFri)v8 zi0vqw75MFTTKP-#{Mp}c%CF|X+PF^Xm-u;vl*T9o%h5*wN5s~u0eWI|>20)P%)Ntx z&5ry5kKzsoe-{~i@7*aG76-}gdxAMTarmFjC_gzq5YRSRw-c0paH(^+y*+NmXJs{B z)vT(nX1ra9nQyl1rP;bQrH&qlz+Y+u$q=xeSwCQkY+Y0m&!mAvo!H&?>&87^vWc;A zdW`zMy?eTrl?IZQf%3N!NI06u0kQQ**Q7lA>I*a#&BZ+?D=Hw>E1zp<+o@w{Z%Lj z!)j`3LPj%3^mV($Ml`=4P9DUg8fp!tVr=s@E{!i-t7L_6f&rd{h8UWPfe|&t{DZ=b zgp^t??je5gZXTR}^~9SHLMUkfO~za801O$UCC%-Tikh07Hh9OGj3d2&TE^@+=xN)Q zy&(Z8i6C55^`|;0Q({xScM2?Tbbf=mg4f!7^}xYu8*UBgeV{nzm56tD2`uq6=Wk|S zv(Hf!ihHjHY>m_M{Ghr1)bHOYPTt!jThxLYWA+ipT>wKtlTVUkbrHo5(#ZaY^x;>M z_7eNyvGr^3-A+nE%?#TKpz4O4mFPZ)n^PBzYuJx%5<#Upskd4o>|K2)c0_f_ONCg7 z6z3u#*!4@;$Oi2`<{uNqt~)rA<@=%Uqo@kn+RTu@t&f1jfVMm?@khj3yR2o0ie)r* zT)b`X;Nj-m+r*TaypN3wJ`)y&Qz38rh&lLk$p@ivLPvjTxTwseN#xoV{zLK~jtPR*3g!7lB8mT#v-MJ)B&gkGdWD zhrVv*_{+_G^Z9E@R_3~>t~&AYO;5+fY`b_1dxd3d8=KWwi=Orisu&=b&BrsalTx%xwd#9*3?uoZ;%7p~(PWj^64$F$SXGzQ zTl)<0C}J?2ADRgvBP9Ccn+H~Tf2v#P%XmQTW`af_X^YR1BV>2^>AHfb`+XE7uw!;J0>$JMc{X( z4Qgu4T~t&8IA=15$nppyx#w0E%d9@%g%s4i&Mz_;Pd3s%eQkbMn5muWupsKMdu!tb z30=N&gS-{a(;vBc9Z;>4j1D;?lf7kac;bRpCn^Ws@yopIaiHEHlHE zc}dvFwN({fWk6Tew517wn2%)%)J`lLbmJWXQuDv<9 zvP#~(cMR>W&JI6Ye6ssk@&dFT5p^={Xpyj4UwPyHF0A1omM4ddMA&S6YS-ZGg89AY z@RUYei(Ht;UrUBsIYIya4v%f3va_0VY#6mKFg&c&!p`bM{~k zd4N@+AiB0;*h4Dt8IXFScnP8{Mdn?{d`adXOQIg7&CoO0YM$I?A_fvfxdKY z_L-@uD3*`80KYdeKVNW|{T{22pP#Z3WL2GMt5#?t0j_PCBh(mB7GF}c~O!VktT zNTa0i8VpASatSrpdH1GWG0^^QY-UE}ftxH)9%Ig@>*$z2BWBRW^5ELQ{1dvf2Zv|s zoMp=khWjMLykT=yDmPylNGAPPg(uZ9#;Gl%8nXD zVWu6mS8zc#&iWl|K3pNL7I8pq%v_zD> zc-%BXTRntK3T|$tN=MP&LM2rr-5+dE8FaxVzQP8dU0oaHu@R`%F+p?3pi{aY2Gv0^ zsP1L^&Z9%)G`yG9snsQd{s=a2s@&=zdSQErL2zjm#p7mvVko#q0}_oW1%#(SO|DaJ zh?8qU>Gz%a-}>s;OxP;l=kh%UGt$Qg6WC?u-uU%S8-Ab2#bFWxyfMG;Z zSV!!JmWRkbj-X1NI+|Ha^n~Q#{7Oqtu1C3WN}WRN=ePCQ1t*2|>og2D{$xX-MidRB z8lwUIFz{%fs&qz4ja+m+Ok6dzhsj_wK{cy&{6?sO46%usnY1EZ+85;JkYe*+h0OCj zc&=|H@tnYn-$9Qtf+hw(JTntH?T~u3+TurtWm6V=V=Ki*Tm(bbO2zXgRN(I;r%U-UyO5$^E4q-(W{i}zvWVw)Mu199NR$2ra}G4c z5v9jbpFvn4a8lx{D8UBsPNbs|ZH^buYMFPJbSi)9w+0TOW*f+wg9s~Gl-}cJ_Q;G= zO26*@5a3*t9k3ssFkRgsQE$wEgAUZCLBtEPkG`g4#5!c{>#0YTVOviae+^SIA5>F3b)>7EGa zo=`!jht(oHc`dC_xV21ZUF$Lx+^u+gPsWBgh64v?rovV zmTZwZ7)JkP%s zXwhIZSi`vD`zRXGQ5L)aMpS?kW!uX?^;Y zEq5d8bC*NkHkjbyl-w>#Wq&c~lPMQ71;6Fo+#Oe+NptxA(PK(`{Y`u#n_|zJCyFQSTT{30`mO#$XOpOhF0%Ky z-(E|<Bj$C!dY;sjY}Y-;j5u_*av zG@0PmAds?2H8nP_>n-z~_?8LKRThzvphzCUB*B(MHJQNR-61AzVyhDbou6pDPV@@F z6XB+-PS?h#r^}0ohzOyyljuT9FnLj&(u6j|Z|3)J6})-_3>2~x+H_~Qc9TfqMYk9K zA-xoMa`|FZR1_6m?)cB1jSmdm-9qsMIMJ{X2Nien(C#cqONo*Xh@POhnuB@Pj?>TxI1 z7Ep2eRI}=)I8!d<{s<}p(NI9o$$AaR{kP%hv{>-Ex12Afd&Ugd_hfOUnXXK1z#QUB_r&OxqbpJD>RPvrjNU3-NbnFTXz?kuNx>^ zpdrN{JcyPGC)M~El#cJI|M4RlB5l@Q(^1X6?^!?Jjr@@DDczEN#3R_7pk6?l@ zx=*hKC$a`TwB+^Xt7Bthi3TDV7}kK(x*wMyJ-UJob%^{FSH~qN713;ai@#n}{&teV z3oTJE_gdY+iItU#@F2rnJ;&UTMx9c~5aKHsfGNihZg1Q6 z?It+lxC>k)LjGWKo}UWT27L{`HNSm(KHU>2|G!3~aENKnoH`YOS=q14`*B+?AOA59 zi%auQo@|kkmNr7z3=WxQ)$fZt;X^G=$B8u|pCyK1i%KQh+W=J@K?^9S`Tl^d!WWUr zkI@CrtQdah!6bsgiX3w|FGqGgi4@>DW+Ue>eN?|a2Q9`@BO)S_J2kCxvFO-H?fbGU zvh63dKuas{mB;e_V1^{c^Z5Gu7NFg7WL^C8Q^09bhsQ1tgr59oGb9k}2tUZg+WL2D z%K@5+R>LqQwEt2D;h?Fmj%bCTgi4;8`~kGY0`1RTHgL{mk1b z)^|_lr^H_zcyY2gcm$lJ0`z3nOg_6u4T>F%2OmGQGWiM5M#yzBkI>wN4MyU)I{y!v zjmRJ0!`^reqxF9tiCcER%o6eL-32diZw|k!6**&(0!NQ=q?{}^CANu`)yuxeTr+4` zuJ6)WUmuAsB65HRRUHxYqjKt{pVx~Qgl}T){2VJhPiWXL8q~a-!b~c>foKLGk2Euj zk7RSrLEen{3_aciMRv$v&F#x{gzkgAcT92$BIMk|({tk1mG@+#7radd9-GlFT7u1q))b$=Sd4u{)Zb%3 z%oy#*zT285&Z=0Bz&;O)q1wyJOsdrJ$M~J$;6X)UrqXA7X^x@Fkaq-mniq~~s8^Db zZEkN5&OL?cIr{|D^D3~Sf(*}-T%lL5bmgCn-&G)gK-A$Of4KdDrEunFFBoit#RI55 zt*R)Q`~IxR3%x1cl8FI4e^_=?GvE5kC;E@K(xt~^J^J+e12Cx8oRqZEWi?%0-HW}| z*@Y&cYfWk4p?3vuP9EGos88&B*{OYZA(e~t`}fPAJ?MW*yh87KeYbu6Wfq_0P)R+# z`I?iJgxdxp)~+WHLAoB$&axshJA*FLXf7u!j+G$2qOmhsbACTP6I1itTpn9~tj}51 ze*K|BRu7D;(9S$m>6tUAQeWC@sYvcm{mI0I-(1EwuXfPvOKYlZSTU(ir0kV08TkoY$OeX4pu+*?oSOCXR zC0ZPLayxP4g`vXg81K9J3C3sls|raS^?myB7FMHbl!fR6^ZSwbFVeMJ-+$$mP=`78 z>%Nj?d)jsA&2zJolT6-_Ms#mZ3#c6|Z20|&h4Y83=hkdcCySO&;;YBfp}MY0@-Z~w zX}@}^$_4@cii;b2_4Mq&)EDMpy`ZL@;*PwyqV_pt`yf!)-@>~v!|x*?Xh&FZb|WK6 zqz;~3e!sWa_w(m{LHl*l7llxd4#KYOwl6-S`F2GGD3lG3Y3Ja(%KrI!X-EIx#fl=% zaVSvQfJUuCFXQJ18s3bLdP5~@n3dRa95Vg?SEf>4%GBI@}2M^TG2yi`@~+^np403m68 z00yjRyuPn_+fRI7_xY{#*QN|^zCN7%&pzHFf=@W=UHNpP<864NU<}Yny^<2E-unp7 zX6E|5Yv<>n#6VU~HUmHV#S3WYLt)=Q3gfba8w6V$^xoG`6PgdUYY5 zPu`fJhBVh@5e<=HuY>%MkKma2I~c65RRZ?$iCs^=UV4^nc6w-lQ3S>F>?bvm`2fc= z#E%FF!Q`ySue=Feg~tH|`+*r69OVh)6HVWqGj?moTK97yB6pQh3vRvWh{jcOhisqu z`0Rv&lDb~Eb%&mwtYMBhK{ZDuXu*v4#VZS?%z+)FPtKK^1JrivxwpyMP6rq$5pW@L zLQ`jizm@aL=v;M~4&g%Plyk+BJz1I|Lhr8ftHoPB)+eXu`aMu4QE z57_2sE#JPyBVINIJ5KdcN?n~id~Tx}Q_x4zf!PV^;GSHC;LyshIAsINo=0x>k4w*?jMoTwcFO=|7Rq8tQeuhAU{ z^ZX_3LJdeIq1}-?uwkkz$ZkEeUo~I9zFNx~o;@NMKZ}wm4|}3D)zn~Z68fazksT2T znFCw%o1m)+cJbZrg-|?|E;Owd(z3c$t)39iI31Z`XYz)$rLpp6Tr@-s3&YX`F89Nj zk>TO%Dk>`Jp3s0jo5w-*;NlS$PS)ckUwD@M{WP4D%Pj90cj8kXZbEqVaMujX%(Vwg zDIIl1!OxR#s0uT+;1QJr+rx1qZ#B;16j$Kf-I*Cyg7cz_{I|WY&t8txpCltoi3TF$ z&qHvY%fLP=oZaP^%b%9_3Cd(ud}im|x_)iONhy3lxDPyZ#O2uVEMf)TKt*;xYfWud zUS0t`JREizbpxb4PU7?R7*5dZ*VkBltgieDr)0p3tXS2QN^H9-_=a*%O8M(UJoQ9s z2B-8j)knJ}V)Q7`bTL?P+!HCY4qAi;%4P(F>A)!Ej}~7vQ&r(s!kn=|A6<>%6A=k< ze11wC?#okEC=7qwscxtGG#RQg3%*Z87dyDR z$e9JMRVnFAfS?H3lbDj{IPdXwg!wvuJ>eCi z>F5q!WsBjPKmJr@oP=J$J%V+KN8nvV8u7Q&vjvqPeO36^r#3 zVE@%uYdQ&7bX;Tiqnr{4i*>J!+Evw6zoHJ1Jpkmk#Zn{UgeQm-k_-$C_yh$L;N+|D z_t@E-DGZ~)0|8);{y&cGf_8<-mmzU2MIlCGbynJU{tBe$I^2P$mszC7y@6S{*As@5 zrU#3kYMi4<6L?A-&$1`TbfvB?t$Vp~rUa}Y`>rQHu@IQ_puoV2;nM!tmNKtaJeDH+ zcAxk$Ehb`VHZxo&xtAdfJJQ*4)7n%Fevj-KNd56Z=`R^4iFQBWV!5^M%`$+P7pyEV z5Z?uqMJ^EBBpOz`H_cQ1bbF59)tEbImnxw}u$W$LggtkE0D~_sF0QBQPq^In(?_j! zkCNe)t7RI<)CHH&1$9rfU@OCP5?cu0dVGz2`Gp_;*p-7@bACQZtEYcz-q-J$}dj{AnY_3F--?~ z5&k43oCvzteH4bA_mdH7Bj9z1SPF4mrOx$3t-@7Py=4Cx1C5P~%Lb)mJ{DLZN#6r| z;jEtBsrTEwvO6i&RaKG{qNNCoxghUse#iPtG9X)!~`o-1!lvcZl(?E74*;vAA<4`-{eZN`rMy^E&(eDkBqe_v##TQ`v z7zV!aCdd`1$lF6$tGDo@M zOHqaNHR3A@3Phj6fbVnvS9|XrR#g^#3BC%JWlksv2#P35l$^nU0aQdlkgSpeu0$>FMb|rst2I@vAB=g!}Hj=bXLQ zUVH7mcThT;Iy-rnCF@1-B6=Yy2HdgwNw1IOB8YP9(3tNY8i7p zuUk??2TlbZWs8{48zUy>oKLLBWjOZ$>2aZf6iy)e&8yuz#%p7#3K#g%34|P#L|v#f*6BYl`y6~FI=n=U zdiCXgx`9ptFYyJ$W-|+uMX}+rfVv~Mv6h_(DuSzfoKJ2VxL{Vy1~UP&$Qs*WZIu+S z6@J&xb&7iy`B5c1>B_3aK7PDIMA-(S#B3qM z&7fH#?Ql@~&*NmuY9QoOfIRm!7L@1S9#6l=7tF)VOWB^HWgG~Vnzv2Gwh+GAG$h@7 z7G-2$r^j(k-*4F65C>TOq^s&z@HV8(gmmhIn}&D*Mg`?o2(w=CCct}=DkV@Fko?!T zx2Hl$lbM~Ji20YJ8MX4Upv%kyYGM?<(o;_P*`GVNpC}`7xXlAf`Cn8P7UHdd&;f6v zf&4o_iwmlPAZB>^`0)YMLCCrPdW3$+&(K2Bf-BZHWo+tHv|Jo2ga9xq^a_}RgH;M9 zdsxam?kokCLZBNt__t%j$`ZA8lXVtH`{y@G-6X)oO7NZ2`{?u;>@ZG zx}6ZEB(DraRs(p%i)Lvj^Bg;_)Ogj*KHPLc@9^5@}=Ck{V%vIgCnHBaBqt zDdlAJpQ~_It&Lq6LE>}#}GRA zA;cw~2S}1US+ugBF{w2?E<%5X`5?XroE@2lg>xh2v{^zt9VSeQ$NF0;pk~BMp77En zYlKxS0&4Jq;+5s6-2tkIIu>b@J*ELR4M!elAYMJjt6B509wGZrgZ7y)@+tI*W}9F; zuBS{i$3mpRtGdLclh&||Z2Ly=`t{AtFMVbw5-@I**;Co(;enYph{w(RPlyywk)l6Z z$uOFV8zYYP9Ao)w55&FODXJ<5v}=xze>DvF*8h4TaUHh6gCCF;Q1isxrx4ee*Wa$SX=_2
    +6|NXKRmT3Mv9Mx#Ln^d z$P(&eo>{bzi1>C46uyFGeDlFO8-+oQX$~6xj^OPPNE^Y^f?Mh^iwJJfhTVdd|9Cr< z+EE;Mr%H6N4NWCQ`nqj8!^SmVQ~(Qkdg`a0t$4fDEp{xn1fZUYteCZ(T?3{Mq(H;A z)sz%Skv^rEXY{Pid-SB@uQz`n=dTTm2<{fzl7w($Pu1mXIdeKjlMJ%e!K&0F>0=g9 z^Y!b4rAz=?@q)rZ#11RDii-wO5Lp{0i1RWtWOl!xKydtLVycCrZeDzYH?nFWvKtXp zp6XFJ>Zz;a8Q+lVJ1&5CK}=zM>epxp@wzK^0pxI+R@YBaC@!Oae?lgb(=TSM=tcO; zeg#7(hX#m30i2?D=$d{!>@ZCl zmYlL@E3sm`*f=N9X359u0eMm?D0(c$zrjL7s21Qik~0smwYSBZ z;^$eo$Q`c$C23g4nZI7oGrJm5Qgrm$&eoS_5)rhEEfbPX7U0VOHYw>LA;!l8fGb<9 zyuA&>%+H)CdNL-QJZ3bm;YpP6dSL`$WTdRDSqy9=fkYPp>VmaXQ|?uR>!rPK(s&?f z2GrBfcT3I)Sy@7y{IGk=X6DQF5hWcpy}d8+RXC_8gtEGQ_rz}SBq4jPa}#9U3Nu{n zpWxZp--lm@O@@@qxVG}hPdj}Zb%H!=E=mYM9lPJ-(P;&W;5*=@0MT^8a@WeV(P&^I z0^X4gyi+Z((iHt@0X0t}tf|*`<_8pVauU<30D#!QUx&k}^uhr54 z;9H3bfkA{z_rV$Z7d1px1c)LV=InOR=w(rn2^D|)fYn=E2?(p)Rz12^10+y-8X{MaDQMZ7-L`I_K;+J7r*W2)0a0-eTa@UOH zD^i~6h3)^+tch`Phk+mjYxm&7VFdWK#9?88@*BO+(Zn(YkAo$4BiDxKE^TQ_|7ug& zSCK_Msje=k6mPd4J_DzYVC4fr?fJA+oS2SZFR)G{K}**HKL_f#QR1DOSclz>uAzqf z9cqJme$!R_aWBS^>+SBZK=?yi8Inp@)IIbVIwM&M`Ff7VAsEI_s}Msuu-Y=fUy&%! z#hDK&!6nvm@UGLR-!D^W@<|jVk98rH?MxXD9}=W<2(=zcGDIV{UKlt%J)ChQ#NyFs zpA;~EMxNGXthXl0#sqcRkl7tv1I&A_6bS8&(M=Ve^rXl|ri<3jes7B`YB}3e^b(d) zigmbw-#@YKOl>q68}Bi*&4kPkHo+H@D%_-k#KhyUK%dHBipOh? za?2_m!S?eeL>BG5wY6FnHUG)cyIK*V*SG0!zKE&TDQErEaeN;>bn+Iy-31e!hn~ec z-~|e!{?Ta$vUf_)Zue!}OT!AuTqbYz8dhklssFsG^o3Vw!FNAN80&{+N+BBQ+#C&;|WJJq{d_Rcp~S5)L& zI4O4z+NAV>L|10bd*TqiDlsMWL5R=rM^+CGDC{qVkk|e@@GXXpHcHUlc#gL(TNg@d zuSVPL&W5NH{^Cy6dC>~+usfu^9xz`x%5YYdKfpsoEj`3VyisCBy*&Ty630mxtNo`T z#VApmzsp~;Pg^HNKGQDqu2DF$X0lrmQcyJbmp<{CX2J;(E@>Z`YRd!VJ)@<}@hunR zzF$CS19_lfxhtE|fKxNfFMMa^YlAWcBCsRiw zz(}3jm(x3azyq*COM#2lDp#r7J?suLg8m}cG4bu&w-<=I{n586J`c*-OBW?xf+Dd} zQq0#4Y9A7ru3!V9v=xYhpfX-sa-Fw1o(VJqniDv93*#rhaU!;S^ScVq2Ec+R(m8HC zA-srzdgmUGP0jmmH8spoAC1rpivu9KX@z5R>B_&48FXQDKKI>C2$X@P?^N$lJMMWh z$2_`Q9FZ%Upt%&3Cc&1FrfBZIclOA%DJD%5M0 zyQPaFf_9LjbO*%NzMwI?wbBwfRWyr$gx)7QkSYN9ECHNEG}mJlHvEjlR4PH&2tWXq zL~8fk=A%pD`pkww&5W_3#3&b_M<1V&&Qg!mX;8Nr#2TCi%WqslavdzNU;Ba(`v!rI z@ZCRc_rT~DXd7VfOjNlnQ(S=P#dGTW4ObMX-ZHUarm!E81mB9c88=)ZI7uwQ8pN%t?D~d7yB|bbtokjgg_6{g5TcU zY!PU6t~_ZY&5a0IFh5%Vl)|uzIaXpnFLl#o5@eDvEX&AG!Xd(B!-( zlE~!EsnOM|SLaMz!BMHjTQCD3SK}hVUTLLdWE}yGI&cRnwKZ;9xr8DdG|F+S(*+y5#b6>Nt)Ye#8y*uM+YoODVedu6LBWJu9^Ag=b}3s&p6~wSl^{SAxK8bO{`rg&{C8A8%KZvDB%vxf zsGfBz>%LonBrlWFu_?oEi~r zkRnli`n^29jl?qbb#+e>ZEK*dXGPL?bovCbeX@PFZSpmuEblbMLN@ z(sWxE6RX3?ZEbB)q>u8dJU9GTc3E16Wwp+U(*gjr*4AZ`Hqx;XiMRDVKG)Z~GCGjU zr^MYMj_&|}sOF3>d*6{dFevfUE(zud+An|j>thI)mHNb|ok4=V%}2RBc;jC{gYh8T zG4!9MOjnnGW@L3mdQ#FqlDL%GD#c7l1h6@~t8Um?JJ7!X&%ji%URY_g6B#};^bG#| zPfBuPVtFaT&73bgLIav?;=bah^zz;yp>U~|WZ?$4hpL4dJ)OEJp?@>MIT|W<1wQnB zF#4Q{O3HKUQv3G3>J$xS2YStp2@j47VkH@T38EDlL@o+lK5~CvnbJfQySMyDyMzM` znh3P_V>XOxE((H70T4F=j{mk6>%Z}qN|U6&bg`hPx<*8Rs9wn=?_^R>oEgd3|L1SB z;6CM~b%hxxRbmmpWiU+id9O|5Et1%ayM0QM;;=kp$h-IXUyaA9cPiC|T9RFMe4#Qu z_Tn6MfF`5tUqO;&w7Y6?Wht^!ikYw2`Yya+;9k-Vg0yfik6!;u_-pBra|g*?k8Rs_ zIUgNP$g?%?QKA!PPKmn_1FW_@iz>hs#7d8FEfh};Uz~3bBw00EgsO+xREOP(QY0bW zhUFAqA?1+^Negz1dfhnsFQ`+sEPmkMl7I%gJ_3BRKW>X`aT)mb?VP%fu5LEoX0QRr z$9!`|5lI5A`<5K>w=D8dEGD-q)1=Y5C#3RB(!=t_g`vf6Gpxh6;1X@MmRD}0(NGMO z^pLX5swE_LPA^QrbFouAfBbK~xG5O4lBj;7mTM)N< zh@aHRbLU%5q2WgXdzeZ$MKVu&?;89<`h?)TlmS-5+B%dlN%W1((NgNpgFBW1zK!7N z*eY_4bCxTh^^0FS&&6*V!kO~~5~x>rKD)k5ZCe+P?AXDz?fDuIZjK@hy zadGBVKhEX?(+MsLeij7%{mA7s*gE-RLq8l0uw~4YVpA{BtPwnrKI*d5aMxez>Ow*Z zg2s3n-zrnWEXhkLNh693p2hnR0}f7G2B!Lw(|&Rk-lQj`+uVshv0EVP#V%E3p*_{@ zNiL4e0v9VLs>)(E@@L{`JX=WH7#N3xYa1nN6*F71V!~%EFLxlvh`ma4!VZEDGoL!hnDmZYzbM!4`v| zc_N+R#)DMr?S~;wpFxU|93c{Uqe@aR>Cl#JHu|iV8tRm9^$)M-(hu*mPeZh42NSI$ zvIE5OG2Y<%@OT!m{1Ed%(z7l0P&Ssjj>He})u@!74=3VL7)e#>ReBJ@zKHSsxmOWv z0Svt0$i>?N8*d%c)Y5^NPu-FWrj4&b;1PzCp5mG|x2t_pU zl!`bp^6)%y%D=YcPX=wGUqxQ0WAw(zT_xY%>zT)&P8p(ubwng*MMGU3`~{|8y&x6e z_Jz|HZL#t`rq{s98FTxLoo@5<)wj2|uNnf0ehCoCVL4E7m^rMKdtth}!r;{0V+G!g zx6<=hUCh(y84s&Acnps11SSbZv}z)vwd=nAH_<#|zRR@&B@;BL!OESkk&eOoempa? zsIY>vc4T%Qaq3}vivg9t1hvH?Dso33BX}!#An0?n#3>DnyiL|grM9x;612AD&GPo4 z!w+G4Kqf*HA-1>;fhQ`VO#|?MPK8Q@B{p~a2fiJ0T6psz?;iPxA)i@Bdjl9_$$k6o zdbEJ9GYcr~=RMBs@2}`zYPOBp0Sh2p%?j;6Ex&nl3E6k>gZ!oe7_{2H*^qSW+ojM=T74JIGm84AhC9G+*NXT}A6E^A{tJ1fhDOo~>6GutCb-+8MDCVF^F9Qgd40J-s>Y)6K~Pc`6iR>%uK?vB3=u=pPQy) zYT7|vY!{uKfdV*M6!0kMd{NLFkbtg4U;I}G|VVwp#gA38H!wl;bvKUqeD= z|MT`-_f!XBl)P`EI0R*cpX&ZTIU9Onx6$wch1dvlJz#EfX9mE4R7MKGZrwlEWzgs}!#Ni-6!I7KTU$O-1RJl<$PFa`(#C|~wDfym`cArV3c}%#h&V9b|1n3FCwF?M-k^W=JYP}>4u#XGwnWOo7Pq~wol%R(><}( z{Xbs*+2YZ;B*Yu2wR$?*`&Zvzzl!JPtDJ~((dzehEJ}vgk{%mmIe)WX1P90{RfnSgWE=P@Zm|%@~$16YnQeTVZ!LfLYVq++F45t@jt{IW53?7v%wK3`llIR9>N16?OCF!@Ah4~wRy zrKS1~rW=lMB1wrw)7l)}&G5L>AJN7A>~?elfsAc@M=lc3!|nyPL^CKQ)jehSF1om+ zggAhQ6*RC`o#SDXMSa8y$u0x0^#W>il1@YyL+2_<)T7h_ovxBpfnh9I@{O37tq*+g z@~B3kxM=`*0nXUtIps^Kd+p~%462-o_o#>lkMRiD7*N_jCUyjVVx^v?f=S2jA$5>z5?0y+wy&un1r-f=-6z7I{; z*4~eY(9%Ih5W|Qv7NR~u?1cI#xHoV0+g;Uu3(o2dB*ZO2mj-L(2lbi`MwSE3<@^S& zGUqsCBN5MsKiYW?XooG#Lwqf#6uTz{WcTsB>4*8|^Rn1fZRu@syHrW^J(KtJscD-H zsNCQXbO`LGp1>_Gv6ZyFtsy0A6#t2;0FRDz98wt>oBW?_<>uCfDij=s0SI{#WKP!Q z{f{KG--O9tEM|kqh-3$TsyhZtC@A#zUwv{BQWA5$Fyy(J4JJw%kldRFAdKjqirP|c zn4gHIs{4i@A4x7RefQnLxEP!Jn*=#Ge}lQ(Tys`F@cD3857Iz^K#s^&)C1s+Rz$CF{roqh6uZj@ew$=? zI-n;)6_ut~giEWwvzUNo%NGP3+C1bLNbNNV(E2z!Nn${-oRp7ki`J4ELdD2^(IePO zz08*ydbvZjh@@XEW#{f8k`S-_(mJuD?N$ZbQ+I_F2s35n(;OzBO;>ua zCLFROc}cfmQX$RqU)WLj8ETqL-ZazlkB}PRbtd==T*Qe-NWPTO{A&Jxqu|9kJo^Ni zwdwii`(-2lvlhU&QKCfH3~D``de+xF|Gc*3yd3$GzcS-AK(=Ghjh1^d%PGZi?S@7e z5Dk0#Au2aFVipotlSXp?HJj5(UNGL=*rd@3AROOM>N^yc@sod9un7W0WCX4CZ$`>8TJS%Ml-*|3631x_R3CMrrwhDkIW+xT9Kp z-#(2k+|S@TARGY|%$!-Z8L3Z*SAQ=~pK(EZ!xsBLFKJp%V34=9JG!GP#ag?@uAx&AHRua9U64+&5xqf2^w4Pl%b zNine}sFBG$R4l|ju`2X1&jy4$>O>k+V7%~f?^Q_f`)qVdmqC(=EYKOQWyy#CgKy0Q z7*2ZE02hMTOrl2;pNg>S`6Ey&YHLf@{kEM%mayc!xlhl#iKc7w14E1h1zTedqOirf z+oDJuYkfwhcCG(C5Dfmp7vpg9NsC~h^@zzd=n4pn3%jIq=^hSjC+p(XwG8?c~rP(D>`uD@0-eqABi`w^FWm5ka zOlyA&KC=dl`51l3=M;VmYP=EtywsZHe01@qSz5hzq0hCCq;#JWo6dkfQ*!GQg+0-e)V5Q4l3WLZR5x|H#)=(Mv*G77MT zZndMM11icuND-CVwGT?uERE=%XG+b)>ejceNsWsX8*BlAqv3(wf9a0^Q4$zRSO~jq zqDq@1m7igQtm0A(q$P4lkByzZ7U@fz3YZ5lB{s&#v(2y}irM0gVcwuW#N)pqWDDfo z5l=P2TgEr)#91V0lL^r%4D$oE0Gz_SC;%CfqN4Zq8Y9yQm!6kPb4CRqjx2xSBnSiwx#Zg< zOz}o#M;Ktu&y(8x5xlVVaFPfyOM6BWpk2i_AMtFRZq(zsry;{hYHv``f-<%X(Hz~c zzd)1D&&ZN>LuD6bsZ8h`tS9`5q^xY;ONgN@U_8NlgO|b!cQ#8yr2{T_SUxOFI1i54 zY~{XUHb8v{xCSrge1L<7Y7S|Q&PCDB)YuoVX`q@u4nB%eB28|_}WKr$Z%&w3Ak<) z&rJrD^IBoTN8(m#XK;rL+kW&3-=*5nDYq2Qi3No(w0-q)b1Yv|l3QyB6d31?d7`L+8LI1x3y(kHd>fqr%|#=p5XA0anDSPN_JIE33gW_twFU) z-dqd8&=_dS@NFJ+7f`a4{laa#e&4?VVVWV-^U&gibf!FS34IX9QC8h1+xdL>jAq#2 z(@eDSCf9X7k7L22hpKZRL$Q+eJ=R>ObRO7dT?mQ`7B^k(^KYa{G~uhz%;8A5un|5x z&ck~{#+Zq}9oz9Zi!gKZg%jFxql>$p#AY#|?>sLqJ4m3Y!*5tKC}%tSjU5l&dt57a z>&WoOif56_giy+QKLzQtB|(8U1pxHhMwkZ;A0MCY-cSy9SKSM{YxWeLh2_P*)K9x` z?Ue&q6tM6R%L;({6zr8Dg8{V=!k#N66`Wc8(u%rpSidQfW!2)0Gq7bf^E^!QbkdO^pxM8QH&O8CVa z+`eZ~&Ma1Jc4y_<)vHNkLzJ76Nz+isk_VZXaDx=sa^Nq>uAofDH*!Tvc}<={Dj(j< zEZ{W057#0L8YI0Wg`Uy}MQ?xz%S!W+g@uKR2P^5LFt<6RI@IAY{8Zx0pWWLwwAM0T zY)qGs4uIktHNDtAXfbx)ii|A>3bWY8;9z6>EMBefRC!@I2(}eFhD@*9$Qdcw%AZ6r5i}ORfRPi{Z^b?UX`a(QDu^}lr`6Rp~n4w0<51otQt)BwW zm_V`{LS>Mg1JM?VTUPZJVSeK{!cR-CSt7g5q8<;%Oo-r8zp3}!KMBK(|n14#QTS#p_xrSaY zOYZb0%o=Jje&SY3S+ZZbfR0}3(Ex?Pv0$iG;t7jzXZZr;9MD>fMm5HubPc2vd9iq? zu+l|v&ByZe?vsWh+N5Bgl(h2pLDGB%N2RKo@#_2)UpR3Kx3i?4jSvv%fia#DJ1@vg zLoy@y8Or1V(u6~nV;()|1#)H36~2?301(R9$z~D7A%)1|C?aA6phm)o*UdbtYFqY& zIaOh6!>vGp!G(I99Yti@U_L$Ws8h~!>;-~!9@7BG#l}!YVM7M|fn9mt7|KgxA~}~{ zq7TVnrw84+^AZ~#x^Jk6X%@Qmn1f-n)pU%}zMzBtz-m=8;E`UNmaIh>4XHh<^QZN= z{pK7SOzY-zdHed}W2-tBN0k?!0wY_@c*1H`SoFL6@dqX6iM4Z?V36enVwm9md9*1>7Sg2$!FZ+%AyEv zMWy5;l_Ug!cvb>KT6R@X58rnB#LNCsKKBrY)93cI zkxFPt(hKQR?08<>-W9AW;a^Q7RT#HFzV;lq2Dl~Gdio8y8NgOa_&jK~Ga=whcO!-5 z2q6Fw(hr+iWzg7it-RwN0A9dfVr6gaT=Fo)hV5UmRC{9kb$fX_(ny@s(46WmTb7<* zZXqynwv5!LfV{{9$xdV(lzUS4#g6}*^MjA^)h{!*@R2oyJNiGE;C2}dkKmNuOZ3!YT`v~6jQ*;Hb7#5M1 zTqAOA$&}w0E6u|S4$(CM z^1xL@$TvG9oGW^KF|PM|+I=;EXjoG4LYNtnacT3)cytTEfQ)XIbURDrc?d!zX^9(0 zCl(p`;h%HT=X}2v1;cM zwa8~1d*&pUWGZv7&#I!k4&?@E1*KNWE~EUi?Mqnpixb(tW2@J$Ert;{J$LS$?zQdt zbisEj!;yO#MSgzxo0YHK?kP`)DEF;=jRKx6_12OLKSUOI3gH!KiWYd$3*Gh$7Wps# zru;hbcP1r93wHQ6W{wD9q)_P1n`e!TS~qXHH8hd__ok2b&yuwHKZ0TE=U7XNKpW2& zjZCUJE=lxXNc&0u5Lp}%=`dLwH!(%yer6hRuc&UB>2o`?nevT8d~W?WSsGMpGI08H zlYWadmHxugk2Ed4GL>PQaG=1c!1k#%^bEJh5RSi|H%`$0F$7&j2Q;4KSuQvEuE}5^uIUZ z4BT;1PFW}3vaa;+*Oz^k9s7kKi>cI2^X;MKm677A`H1=zlyd?Rd$_(W!w99ArO$^V zZ>=PWHuV#h6woZhY8sT+Yd%zIWsD|PecP5hiWJ*#kGhG{#c_hIk>!%Duami1$+ zM)-grdG}}tRYE=kWJnqUt{ z)#7SXR+yY%DU!V0fHTv9g>jtv^*uh{@v9?dNVWCxQz*9bkGD{a$N;+=>$vZLJd{vE zVj{~UoX4&GS@&*#zr1wK1Qt-|w*d%1E3*V@th!VP#lZ&Tr2-*L5F}k6_JpdXLG5TH zo{)R%hqNvV&FDAXH(HQp%y8*#ZY>B%c@GLv8eU@!WIRU9qGTL-R%MTr*S0A~humdN z6a10bGxD`|yBN2{n$=S&4|+9 z!%cC4*d*Cul>}{nJRuNC{_YCV({mwAC=Y(1QOGU8GkQjhGe))d@y{Zc)acWKWP8h* ziTtA3{Qt7}l$d7V8iuD`a!N|^)1yJ@UHRq*$13k1X7PG5C2{VAm&Nb}ceDV?FVjII zX`dD#g}gG9%8Xl{-bJ}2#P{X*ZybFKDv*^3rz%^8hrtBb5N*~dK=dkqjO$NrZ_Ix3C#L`jhLjZnZcLS7ELj@16RdV1`3q#tI;8zZ zrJrghe1M-_rvG|xc)6&oY?F>oYNM&O^-HF~T2@w8Q#6xLwsmr<{d|b>NJC9^#?txH zT7u~chKo523S)H=yRLj$h2a=euwg&Itog$h9L6T$RZWk*c@tysT(6xpFq#<2_QSJ& zpvM-aC(oWNul>cZ8f^Qu8{@xz;9>6&BbuPy+!^uwliK29VoG}FVzOcZ3Z0Y#hmcb@ zQhY@`6fyJtU(<4sMxSF8%^Nh1pbjwJ5q8zy*zxQ6HeE`A%xdL7&oSUGY^MxWKERjH zK~NJw+MK23<+0-(IR1OsF2Qt7=0@#NQUtfaGC9;9#H&i|KRNL-&#BymAUt;p?+dzixDuRrxE`@h36esv@U79xcYXhqM%^8+}8x1bIWjIjHp3c5QJvt^fZXbf8ZF9d8aZiy&9ZK-XsXl`Dpo&^(|u0tr!z_ zU~ZUu(NQ9@QnHa?A#T6fY(Eajqq?Q)*HXSUZLt3B6_dC!{2UwBGw9|`y!elZo3@dM zfpsb-s>5QmF3K3Mv)4UwCG}=>^qxZT0{@%t(3U88j_r}pLNDDC6hOYt23&fFWy1ez$iSH6*Z-$~xWBb;B}GN$wSIDR3gNVu z@qGE+%`n$+$*-c{*Y%|dV*mfE`d_!V80Q=vMS*gp+tgv8brQ!{Tfff2Nk?tv?VC4` zJWZp{3aupSO}7}0Rqp4pQUEGV)u4y72E1@0gLzARxsic6u}4fnfm1bDg)H97q=cG_ zW(QhEt=-(DEG#XT&g?6JzcVkf9!#wFSBu+NX(1lWdy7}~f`fxYd?HTI8!g~fk*oQ% zp(AmcR!k~-=5_TiM$>af=r82LCD{YBzI!Chbs+jr-*E$)J1R3=E$*UJ1Cr`NY=cFuyFCGPshG6$88NF=|`;SGtmrnddeYB-;v2vsh*wT<8sB` zdY;DkxC@@1a?m4X*sR|`?Rn*_JU#lw=5JeH<>`{=uIk*2n8_X=nRoOz$~k%R*zbP* za!^recX$k|iRS6Nsv9w1T~tnveM8aD@1eprQjr{OJzy+(RD*Ls2pD(-^XjFhp?P)= zCQr5$c!(Rs{I$#~TAtAN^hzW(GG0Bdx%dGfAj=j(8KVJrZ6K04_I0EyQ=j_&{bcPt z+{A;($nt|xcru`xCSTm`>|fl#Jo4PpOgFoDoka7uHJBxaHMJ$JM@+GtD5Za*pL`^k zmwLHNf28pRJ_B_vo-qt#Poo=7xtt_;Bi$gGgcm_~iaf5OoSd&&Md<&Yq~KSCjLK0g zFw#gzl67wDCvSm!$CC@)z_ zd%UW1O|kP$&j(LaC|}ne6#8~8t)PGtqv8^2WDWoqJL64~S6&;A8>J@qLY{fv2>Fsd%jI3xd zAtKh9`VC$KC_2{r{5l53?J6oR*JR+*sXL7E2q+tQ)g#3ps%9{C-z3{vzR%OjJ*%Lg z;IU^4pI;!_z{D&&zG0vzE8Ms7{DliosCsl``+VW)lAg)%6mcb`Hn*ZP{Gll};q6C! zP0)tu7C2L79-i)=9-`K0N}roP;nm(nsE_)rj%02Arjg3Fr=U)@UDbcHstcroUh4hV zJ=Jh@rsxw(-J{dI)5hF<7o-WZ+OsH{8N1#{cj?pI(pynoT>=t!HpT1bmxQeLQF@6k zhnN%koNOX}0Y=_ej{J5eqbUHnw5;^wO!bCP&Rj-*;(aQ^4rpR{fG%M9n(zn;?tMMO%V=B;JN&*I&? z`S>!&zySBZHbqsE^7M9<3G?i;Uyp0F5C)k$pf z?9(WeXu(~HqJ(CRdHJG3^6RQ-2BTNw4JKkjju7CK+amo*^~y5{k&XuQIzqQscxbn@ zS0I8$hC>0bs#MEPLBDN0JotQ57(i68Zb5ss{^1iK?v1>}dGN70I!#^7}lxDC{7egu*4RaJC<5?y927Gp6n+k9sSuMq6WXoix16o4oKzWUIN|lw?U(oMihX3Uhc;uJr(gh-6D12`yUwyu? z5D8lxwU&n6ux$;TnmPZ?azVyd0^8JlJq+yiVJsC40p|I^^yU?=NO5k0?TG@riii4Q zotfmFfmV4eJ9qA+9x8x^xPXn@Gk4qrEj#rT%e$N!HvJ@9|5q*%gv9IgWJ?>PEq5e` zEf^qblm4cs_8-6uUBDoiA!*g_Gl}&O^Y-O&Z8+sw+r?B=R*oItU*^YX$7eP$h1Uet z+OKZumn>UnV>ra%*g0czx9SPnQB z+nAiWY|iIBn0_KFFvNKz9}h3pl0M4j+0?6uYJA4y``#gGyWcoNzM^~w0zlLF#Nl@j zqN4+`#Zv5#dvnDd8XY;*6(il}eKz0xfiX4!9?4#!bm6uOw#KX30RnD*eSk1rP)KON zMbiB*xWcFU$%7B~3;Zbk^^Sb^>ot>m04r~Ozd?}~+@`LZSU*!$q~iFjeI}=l{&}SR zDvAD@xpas`V6r+FjKfD%7=+{?Zdcb`w(_LGKbD8^ zZwKllhGQ3}V}}upMW>YA!J&KO+z)VHW1aZ~6k}^X&F9jk_-8_IGwx-@p;y2MzF6-k zLT|M^LHxrHx?@O^H=2rw*uDb3ztr;;fBi4-C*!ak+m={70GTkv^vrwG@B;tYHxCfkCRWkmYi3I925g z=p^505I3sSTfoZmgsC(%`E|?~dzLCNR4`OGakstt>({dk`j@6KgJhlR*<4+px>*{; z9hOFQ6E%s#(X*A@&OHn9&!49cU?R$dVpx@@YgS^_XjHpSPe-lk&w||;f70Yp9Xm8P zdZx!&t*DD06Xb6u{W@+=^2AWWn73OS_x#|kDz`7wp0!Pd4f%!9sXOM4m(SAgJWr)2 z%sIL!?G_rEWdFj<3~A+S4@0HxCX`~$WcAbNUb02%sk5&~+sfLrJ^J$K#+&4Zx{Qb3 z!roOkUJ87jI5+B&nqDOp%yp>8qt{i~f2L(#!3*L?Msw|L&p-rOvKbi}r&AlBHrWEe z5M!35pc)Jk58W-J=(!J~qAJSlTXNDK&%;>b%UiZ=A;xLoq>2hLIe=a-bP{3I((?@I zo{~H~@a|m6Is%wR^+YETX3x&cd!~D5vhIQm`I}I+T@NcQB-jH%DOdm8xFPNJYnFe} zj)75K`jMv_@D1=#Ix!PE7bVz5p@J6z$`ggJo%k!MF)e=97>f^}4Gimu9LJjI<8IkN zQT?7hL)X&M(%>zc=EXt1jQ=L#(~n_7_@pH&JD9gGZ%7OISH&xBKz0P;HPe7p0IE0K zYfZ(!MUa*Z=FWT4W2lSo*D3esR<*Pkf&;?jT`&T`W)>w8gCeTIF#~(4J(2ga5`ohI zc=YD+rh$C1x2aUf@%iP~MOPd3IjaZriYh4;ewV{RO4+_o#81&fZra8jg=&RNC{{9! zO2%TKneoR&u`C;91%;MuYA2({vr*b-pm$tOMoNlYoSM3IzFAkqYPLV=P+{w{krKMm z+npb4hm4JxiWPV|w^MP|+4RA2yf=gfz*~lBNo4~ROkOK!ccE8mj8iHfQ23DlxTCi| zrMB^-3mBbUq`g#DNgUPe{P`U}$2}XpKC8#%Hw|DjD7qB>*1OB6ZdihQzm}EscceA$~+mqML7IngZ2Q-_$siM<$>eu7DrSHfHgO4Frwd*qw@AA=_DG_ zLwTME{HZ=v7x;Q|E^9O>A~v?VOtVka5Z7B3G^>}Ws7TxiUU`#fA|g%X8C6*sXQ&DK$rg?K=D)Rg40XA-dD+bGFxyG(uu8Q@ykk9dssja!8#Xus zJgiaP?NjI;HYsZm@2vDF+4eYnu&c7*Mqdw7Y^RfT2&%*5Po7{#XB+3E?Y2HJbuoyX z_L=yh_XX{q3%0rj%|hffVH;Jo^^dXp-sk>3_>QR`p-Yh@!Q-Yjbvz3nd%pVVWN*D=whhz#;pb+PvpRUx5f2*YjOsLX2y<_Dv7Ca(T@>&NogaaH1iZ zHPRW$ovijnbZ8QYjG9C@5D#xOu`n>cF{U5St?pG?y`11qTXzyf;FJ0n`lR~-{U0G* zU^EZubAPCl$~cV$9fq9K^6fiRfG|d?&bcN3l4+0eRINUMkk*slMx&1vJbUbF4Lpg+ zsRNCa{BN3EV?oE#K()AFs`BFFq9)r3PR-mH$VgxV5SQh3rzN=#_&>@JN={0$J#L^j zlz}$)C64GGlGJD-Vzn+9P`Y1kV%0UNW+|AtzCyV_x`1|JN}#V~To_o0alQ3V&4l_)*6z&nvO25+1bswhNZPW`BpI%0%f;kL)_zp%11(Q{ z|Bj3tPTLoqY~zvdCPk*Fylnd7G9^i+UsiivsfRL>8cU88iiEZiIe0-R6!k~1SSDl#cz{SdHFDbaIG_SXn%6NQtL(K&1?3}|xO#CqGn*MGONxeV+m-1-^NByqL@2zU=r4Wr~?SyZqOFy*;>xwu`VNQ zOwtOmKBO=_Px5JwMd!P%W}AA~7mdZJzfUe03t}bJ7cq=cKSR~nj=JxmO!_)+I)ha|lO?QD$=XnUbnvw2SBS1@|kD{$_zxkBp3*95x(I zpzSAy!bd>>tkSIgUceFYe((IMDg9dG@ab1hnlK`m)XO^Gh|GO}rC^za=`-8=2|WOQ-9*|^AjzPZ@5F}u;` zXlm9MrqV!WlCIZ4%Mh6nGUmPJr-D=}UuQB+q^GfOoNKr0OwlP-?(m}2x^(^IhDjfT z)QP%8u0F*=a9sC3_sZ4e)A>}Tz}eh%$aCLpnL5s(OFaT zQ2~0(FmZQMSl$e;5UynTD$<|RU{UTWM2^2(}ZlmgNTU{N)@3D0^SH@ z**76ArkG6w%?6;$6La+xfb6Ufh|(=c-+6l%*yKl&AXo+yq+0S^1yYRZ>>EzK%Ycdb zi0Tz-x*}pr9wZUBTLRj>giOypja83s02rt2Lqo!SNWHdZ4j#F&8u=VJR`7)rArmdI zs`%3uyG;FL8IWSqa@Prw7tD+B@WdtDgaVBK!e`EA;3qB3F&Jy;=UdYL0=D(X^(k zs`vgHF5xcWurElftH;K;s4?E&{Ceo_6Ctd#wX%aUJ2kpwKMwo6*fQK^6TK9 opCJ5K&M8$w@#!a?VjvvLGNigCaTSj6}&u&N=6t z;p?^cIrYA`>Z`i<$EE7HVXnF69HU2fkEfr0#_@ggN)r1P*)0SDfi3l1Tn>Ri%|#%t zablpsmEBj=6Y!s#7SC0z5eS?{C5T$iR zL2wxZd09!@%FNKr08vN2=ndD<|NXwLm98G*;L3CDzqg5*o0{sG*&q%(!fW9g8uGTc zhBhX8h_ubWj0gk`LP}iptwZekgtIcyz$E(imdS1Toq~HZ4?2evqs$XOQ-~$?T<2Wt zU?;(j%i|X_rp~8UI!{ip?)@(vHspVwQ(oeN~13U|82Z~ezPFRQPueSHMKUd8=B+!$kjSBHq1cjPH9yQiZo`;Ap^Py?-2#pq zZ<&bR4jf&)WUc-jq3M*~+g|iTqtedr;B=g))Ofn?Blcw$()6+yBbN$%Ohm#?)tFDw zN{C`cUk%bNt+UWyWN%Wvu%?%~SHl)V{0skVi_>+)PBCmEQ;9WzlmqSR@~Ac&=beVS z`gR9L_w;nVr-h{@N+Rxu*Kzz`Iy$5~BH6`$TwI=Qv)X9lI z-ep%Rzq7X&&-rk@zCf>iRq%4W+}h!I#@kfWT&=VvUdTDI_d}k3CmGlYTgYj@4&K;k zYh!QUve+3zbd|ZgaYCcs}HQK{A-F_6tLi zl9DnwA;J8wFw#A3j^sy1R-9Q(i=Skygat<*S27Nlq;@6LZ4RhMr*`q!-L=XL+&MaGc`b55KZr{u=)*JV zfI8)R6gOOAJ|&E(OBD6YgI~%jEB##q0|SRk&8aCUDQA|KeS+^wGVN0HS^XG3>g1V1 zc<9ttb#D(B8g&2e?UnrzJk%X8#Jqa<*Tu9a?!$1FP13sg_;R-k{@J;?e0X4f=fs4@ z{K0^dmhWjxOUqq;epOk<2B&t%)&owHAW{x}}dEfx;3Hdoj!+%TN4OEh-1mvBYH&rfF19pBU%e3wY?&eSij zq0zi}tBLuuhVAi<_4P&(iU1Mg@J-w~=ikTioLvc+B#+d~EM|Ux@jsEccl2S@2<5F` zyqu$BiI&=Y#9Psyax)PeJeIl|ug8^#2tpGS?>^qa2lv0cRAG-Dz|ooV8=|@`lzDZY zdOhK)nAt3A?Pj;6>da4EcM>7p+Su|NQgXg?gZkmLv}?F&Z<(t0XSVzV8AYs2oeGW4p^KK{~D9XqBs- ziWOEQzmolY9`o&+$Mp0&EJ}VtaP*Hae*Ug;J!7+3e$z{3Rd*MiGbt(QJ}axFqa)wn zzP={QzEl}ce}DhsqXt}&`+*yMzi{#K@f+O`k=&+aoMc~<&t+n`Q4nsICkC?A?(XjE zBZcV3Lpek(<`WeIzlBioZj(NePn8xG6-9x$$GcxTO2-S5E-WnY+O6MVkdE}=Fz9-> zHkcjxSnn1wi|S|a$WSNutBa#MkKg+wXWe@l?&G4EtN9gfQy!oS5<0w7b9L$bJtE>R zEiKC3X92fOg{p_K00trYXJDCzwK$-S=*p z8qM}_7EhRTgqGWbRk!tFc5w-bnT{w9Uh73H7!OS#pVR(*80z8rNXoD>`$cm? zXD%3|@OO82zlDX}8x>|^dePtgm&>GeDr$elx}ni*Cg6&k-$pbFhrRf+Rda^Jq2IxFlBH51k}4fVCrqy8cJlL> z(NmrAq_F+VfBoxcS5paTG^YB&*uB`=WL(YK_{+rMOOjGWUUwDruopMd=woZ;46Pp0 z-`onQqOPePeezRITfDY}E{;CEr`Qu!*y#c#*sZ`For2evfGJEE!S!$}Wr*5?K0QxT z%}kC2ye=uPNUpzWFZgVGRGuIIDU%+BF{_oo_ujvMKOJQd zpU+hNEafAZ^mz9nx|An6?lU<#q-(n!&!8Wlo(>j8$ZkhRM>7rnf?3t@=BgIog3T;- zxKyXY{YYts#oTAaTHG=Wxv2pF0X1rl7D;g8zj7&d}J<5D5wjieKIPu@Y0d1P>2H@N3hJ z9oTN)wS9k(9OvojiGncbip4|usjWuJs^zkC{A7vS0Y;|G0~R;^}M?a5-y>?nCjsWwffT>A9v z?5BnH2>+6Zt%-`9q?z5L+AB&HwGwe~wBAa4^Uw=;asHjUcH3|CH^D2PzkW@!6b?aX zIoIrK%rYbos|C{r??}X`5EBz?GLWgMop*nuZ0!!V^y_ZkoT$uq*wL}nu-lqsS#A6u zzc_5t+!V?qz4_#TM0Jj`Yn2#Ypu(6lxALXdS4cx(SS*CTvHB44>=Cm^Lu2T+%a419 z7q5?2#qR0Fd##0h&Y|2OT#))^acOnKt*x4Nmpfx2r`JOEmq>URvCfIg{^&j6e7uHR{E zZ}+5^+TPiz|NR9Mxx!+Z13D+W3(3N&*~E_?J%Vk#eks8{5OM?p!Nl~Pz>ze}{$UN23Lyh}@Y09&9-g=|mQPt6?f%tZ=0mni3MsQdc(_@sGlcq%QUiZr;`CzJ(d zd*^8P1)%3YDkKaYIuG>g-q#8r(hH|MZPy8QgAY&;tPh#%T93MQ`)mw?6K4Gj>bd83 zyR_29m25GwRtLzISe2r&e@s;H(&$Xwpb&Hw>%Vs%N*7zJPWwrx!K1uV9@E8nIin!9 zJ&gF8t-RMq<65_i)q!NIM2E!=Qt4P;ybyZPlwJfPBs5gwNhYrt2g>J}if1XZ*SQfE zm*^5EBRInS}*gNJvNzpt)FH%ipt( zWZ_{E5#C|UN;(jht>7ciQquR7%O@e&hihCbrO5a`un#HP7Pmn12*}H0EByG(&aPy{ z1-o75e>M+zBG9^dnP%y?Sd(EZCy zr#?0MNTu1}JJa9(MW~gqZ>ghPh)Ww98bTfd_bUBoj}w=a)ZL!0*NG`-{T*IIfsTeY zo9lj&sjOA>Avjq&ThSjw&>w!-(?55089$H$1CBZg;^k`3M6-9H{SIK}8H zx5)o`Ro~f(P0nqCc+(g2L7C*`d`VkdTShUK^_Y<{uDQ8+mU{W$`7q()1(ugmQliSr zcbJ%&iC(^Ym-vToVCgjK<=&+8mal1VZ*L^8WwNsSGVMj>x59z~>1(zKKg39PH!gf+ z8*Z#z^3$nJsLI23sD}*VyQ!VE)+8h$CWbuxp$gsL!r4sUYY~Nx7Zi8yqVe%2p5aB%ra_Z)uMezE|tFEmINb(plw6O zv<}ohwyEhd4i3D3|NbRxczSVuo@cf20_@yBx@S~oc5HoixB>W1x!md=;vJNhK7oP6 zhE~?rNpk7iyX~z0{Nm4^MSo{KvN}0Fem9t< zuHsHAyKreJ^iVPv@_p;BET3?;ibFzz60YW@ zKxrZp66Vo3B^oTS?lh=GMwB>OdnwZXalxCZOit;b`7Uj7sxTAG`q*Vl&g@4_NT zZ!T31OdOZLl$L(0E_o6?KR?fDJ79Fs#++L>G;|brxrelBtLmYBMxyyEb@AOD|DN=W zIlZu3%@;x;FTVUH4}0EL{ds9IwK8*5jLd#Ms#Q}_7KCDFTPt0-+ z@#E*u`lhC))C1E%WaYEv>+7qW_wM6|QpR|Pr@?lx7>GoS)vtYN14a(c&ZvmPt*M~0 zGG2fWbUZwzqC+Ws zKn2JveL+rIJOw>hV#rMAPrUX0D%qQ9SzF5k>2Hr$jxt-v(wqL$mLC07xRgtPryKL#nHxWn-`ZD6tgrdgg4S<~u5NwT3Iyy+_&(m$esoHI0el8

    r!BO)`#;^!JIKX=EMo1FqkZjN@A$Y8p|x_wtK{I9|((eHUWOyIz2;9 zY*XVaze(Bhs7%MCttxfd;OvYY3(F>Rm8|a{wV+8wA$4_i@!YTDF}Dzoj*dM>#mSP) zfUzuNt2XE6tko8#);@W91_uYDJehhqJnsFByBM(2djo@p_I6D7tFtK-L=3lSfy(8p zSFa*P+=UU-fDcPlYTj1DZS0?D?%ox{i{AdHsxy_)OS@yYnZr(oVvs_Q){1^O9Bk+qV%<_@o`KE-w%s zz66YZNv>YqH}wq+P(6& zZ)$Ev=IEXE1i_QQ^N!RGhXSfOZfjdx2@{j7S^hsQfT^(|G3f~L@($0JcgMz3G&!Q9 zqo))V^{?}h{^BxopDS2!PRhAyUURYq*CzRdg*a94w{@%S2o2SWk8>0ivu9lYh zQk8c~G&D7-z&MSz-}~-N)q?jk9A(Wos#ptsjXE3ub0qWT&21Po!|KB7s?p)en(0`{ zgH<953X?rw-}yB%Dk>ac2n!9L1yNx?xgrgAZtawL6CN6Rx2wfM&GaZmTVP>+-iI6I zoh_f2dpFj=pj+vlJu>FggvnSOG~(mTC4$ym9Xiq#4z^fk4m?tZl@xw9G=+$~Ic>p4 zJXu_M*(x}(o#Y8MKO%8mBh0z7s=8Xjg88VUO{*g-PVmE@kbA&#aDmTA(5!E5W8F7n~a!8Y)GmA})UY_wV20-4^fO(E#>t{z}eRbBs;N-#;HauPO9|G|fO?{~E#z zo7@W$Ujr1BQc_YFxVVzi(pddQT$fu{m)#lG#o|<&uG`b1O^zM0d<2jVeSCdI0kqD} z&fdO#+XF%ZHf*2C`v~N9_-1TeTvNmujN&>v`dtPFH26j&pEbkf=}>L-cM-R92MS&b z#LUbL9Sx^+L_`ESFetDz0Hb}lDMj3>q%>h;*giUv1SGrI5#<>fc?Y=RcK|%~84II$ z%;Tkc%>JwnWTNz|i=4cyow3d@nK1k02YRI z4HY%``}ZGZ?z+0V>}KP=2cbx_Rr?EkxqvP#+n1Z41;Kcn|`RPIpMz zu`&n<2zJ&ByOV$XxDG)T$zgy4a0OXK_sL$Ha=#Kn)BzmSA#0GOkqn}00>FuaFdod3 z{qgeED>OvaPBS@T)m;Skc~aGE#Vj?oKt9`IEwL*c#7ZZ z+^cNGH6W&5{pwrcHXBbvO^o3%2t@v+qoZSkuwhopA#^-Ho(rPGRRP$E2mV;63KKt5B%ff3? zwejX};$mZC8}kNJB!lP}8PV_Ey9WjJLqwmZbUBG$od=5I!qwlGtiHa9$lK^;YcCGT zJ)$)yf#y+T*Y5xRKwf&c;QJut!hWUApP|kHN1GGOfd{+0zX@Io(t3%ucOSM1x$JUO zfm8c@{Yuop&w_1RGzgULzbnVqD^JJ~U~vgwjPJYiWM|N#+33xuJ!@~xSfk3en#Jfwl0lv2Qs zP{_CdT0f|W#jZGi$ouSk(JmtWM^36hR;u-GT2a1A5XMeiwAMi`3rbpXb!W9#Yjjfc zuEAsofOWqq>@n4xOqZ*#lmbXT1iOM-p>gXJpg6kZQ={)AUO{2w z2x-mFx|3hlN-bte)es(jZA^rkWuN?BwBxqrT%7O(xKV$Bv8o&pl$(Zk!0$0Z{!M5F+oY0|a78_m5NI8#=f?kn7iYn}k z7~BhM96F5{NE8QLIG{M)|yKwD_sF;{R#>0>^Dtn+*o0EDZH(Dhu(RyGHpr zeJgD4OTMb8N>8TFoNBTtG{#iplZNs6ltY{qP^MYkPyCOCXlM{fxCM;0a%u5h$-w)c zZdnryw01ur`*p)8o-xeRU(^##G+Pl^DC|o6t!I#?(Xj5&d`i#CdWgr_THWqZ^UD;t z&fyZ%7zfQgJ5B4*$ViNAMa*JVmbTz-h(ao#fPgIfcz|yZi$JvHuNX^MSy>UHWbJ&G zfzA9z;#RNG^JxUQFJ2ISOwB4Qy90xI{^Etvn{A`x3<|Yx&W})Bo&S8y)Xq(s zS;FYKLj3^!k4Sc1ujQW_MIZ1+OU;8?TU(!1#uu|={a$lsLB}S0o9h$^ojEZ5Q+0I; z;JI}U6X*e~-axQ_y4G`4Wz0ziTb?%XJMf}U!1m>C6bxJ_EAcHVkGWxA2p~(Wx76I! z+*M0FdmN=??Uxt0?=S6c1o0LB)_s-TvvfK5LC;*nwkslxC(Ue^BnyHK39zAVk=y5N ztIm5F{tyLGwf!3to2exhT1nS>UPtQO$!q&qKwCb3H0k_0SP_Q~u|QG>j)UA?fprA_ zW_x?vBQ%r%xl@LRdjWyjR8ICvjsxJ+L$wktkClh@gV5*=TQ=mN$hrS|vC!$jD3nGB zBCyM4!JX=%R*iaoby-=NXkl0zis#OC9%N^dXpM@B>P_Z=e&6E!d}JI=3z=G}8Q9(T zm5hwSLnvcBRI|MlGfhL3ut~dAV*or2qN1WobSI26Sdq=0N#vBmhydWQ8xKB2aEaz* z=l08{7LJh>Yt+u)U=vyN<4IQ>IOTcTRf?i$(<@Y+hJ9VSB}3 zS~b4K{$CfXXaC9TCRA1N%*Dcag7QH{URM6O+{?UAMq-${1DQjeY38Y}%}wTyu|r9| zqduo~xl3~W#*HNRtIOkAe^%+gXz1wvQSuYx{?o#nuSTIj#By4$g{J7=4m$r3#^tv^6PQuK3&7%H|FoQA9SXo8I zF_VU7j@9Tfx8)vM_Cl5ngH_Jh8~w`C(gBg!gaaJ*ZH2XDk2@MHYPDUl4c=b>sou1n zxLZy(G)2KzJu|zo@DmA*BD4F|Cm^U(m ztVWz<6R@8fKd#K#xmaCT(6g%Lo_8AL9?RQt94eV8GxI8>8yjs4W0u*ZoZI7M_*Kfe zW}|VGQf`-F&KG_euhQps@SphC3IPPib$_*Zx=;%<*r{YQso|&lxJRha_R4+x{EdO{ z4T=XDU9O`<4bFBI*-rlwK)n+Uiw$0t{QUhJ@*tlWGHT?68Hyk%b2osKVU1 znh7p>ln-qe+qNvK)t##APXzdf8~VyMJcAfvKZSU%4C?e$l0M3M&~!dWX{w+o)2y`IE7@Bt%t0nEadCIyulQAm_GaGP z1AIyfD{pMlI~YD1i!9k~ul4Sf>>)R9Ux0y(M~XW(Gw`NeS@;h;9@FWMZhH+0}6W4UWadK(t(B)Rl6b{N4EGtR!H+ zX<}Dq0yqe&$p@dRyW#}qz!wqw_1Wi@#qmz751>~&sgvjo&8Zz{aEsJeaely@Nti!G zlvPyF2@6xHm6+6rv#9kXiJ>>WF(`K%l*=5zz{Dh2lKRI(`(wGJww->F3Xk1-f)(Kk zIv|<&Gc5RAD8#GY6wC)yT5x8bZ>j~HJ5V;Z_-FWv1?pDf3r|A^KGzJh#h zf*a><^^s*HFRU#Wmx8>K$G>k$d-Q)}u;VWPkH=Kth})1@JwA?em)vx%ngk>C_pduc z;niG> zym$^4$>DV6S4@eV?RKoQV!qpU!bD6O19GAIDS%e5XrbV@!2sag2utw^`q4V4`zy=v ztwLN)+_(qkt4v6dpe#qTc7yoQZ9WT)5|b!8i#Q&0O?joSNYgBr3}-DVkR63(7tqmh z*pO>w+16@LpYHd)X1+FrL&-m$r20>MbK%6`kmszmbK!9Xa9vSE1M`T403@0YDBd`f zzf)ympfakjJD>`WjST=|aDQzG7iI#K-9wNo1V=^r!bOvbisJOl=P>y992DHrHbKXy zYq^#X40w%h7Y9SY__QR6c}G_m*@LVlLMOi%`Y-g1jAMdRUVvkofTX%jO&tXAg+@T2 zGClJjD}31Wy%_^Vlq|Fe`Uhx?tVl^o;X&w#ju@WT*Yn^nox_<_eZfo%*FKf#FT5Na z1fV{t`}_0d%+eA%g4c5PI(SuJy8JKhtb)#ApgIuzjttS)CN3_pc$;Ls$zpO z%5oeYOjuoN_1YLB2t;OqU=Fy;7x5T0U_ZVF26C&_Lh%)FhyAH+s`e;M9I!M6Qt4yM zp5q-W48sO4tAIBba?V{oK2ne?>9=!tN#^jtD0?S9*E9DDwdVagSoxLk41NfP(k%7# z^^>7q^s5_)g_0Z?WL?;yX3Kj3teR!m#>BC3R z&qN>~V=;Nnk>QAPGjeee0ryj)oB)OAKd-b!wkDd2;PC_t42+Dr!+F|%9)d7bAPjBe zf6>mlfM8C3?F6}YTuL&B9c#tLL)-A!Y0xwxJj^C4w4viz8ny&N$Hu~3sQ;P-wyLbh z4vNG7g5>>S?dv^IP*)YEV4dd| z7Ls7sjN~+ws}8&e-M{WEGLbo>2XXhleEDLV%8q4$iHX^C`@|`{sH9ay-fCDZ=wf_ExuthYLS0E-og6qEzuG{KEnwA2txzLg>uZeME)a4*CJS zGstNED5z-DAgO3#&aI+5ByI2RZh?-mMs9^su_}dt9Tw`5^j z^&2qg>bB+aat`o?)a4zd61jq$>rdWHXAI9A$f@c%x&=L9MUs?qHIeN#&{crQY#>pv zy{)YWwu*eSP0Vzbg{7rA5N&30OaKHxL7<{x)xj^8({(6SP{jI8+x-0@W$$hwKkMD zvqx?hryzx@&)_E}CXN=I;|B>`p>gnk@EXCQ2n?Fc&XXyr9C9A6HC+vFaBZzFOaKD=bWf2nDA?l!nM^<@- z2Rsxn&Y`H$?N5{CwVKDELcV6aoFGW}^gbkiUG8_9kmQ?Y+SAk1KMdu>@h(C8Vs>|- zUB3^1q7#Da7N~WbZcoBe`uqtB_zENi7{E_+05TL3!_wVGllDg7f=&{dCo62%^0XV! z9xCS{Am#YE1Q-Z$XLaY+UNU(xNj`fv$p5DwmX~me!*aIK=}I>Tge1u38C?R>p2EU4 zn*WAku>e&SF$qb-pFe+QL55sgD|&(kb*6|2H8Q?uPkQaAT$QqZrKZk;40X9boj@^1 z{lPUAzIQh~{{EE%*OXodD!n;hw?#T$iskw;8e1tqUTm}WXTV{eR?_x;$U;(TQ(F7a$Z$})AmBhb-dF?O&V^(o=7lBuT~>+mUyu`>0#+_Dn;-)%{%=6XGF~|DkjtRuI%c{+4NS$w z*%9c=l97Ef3(YyIHw{wXK&CRixX5rA78VvIs0$NT5j|BvVUZ~S zmcqlkFytC>))cus)`gz&EHqYl-OhRO2?#8q`5?I0!Ew;F_Ju_Ab}cafcorqbLpZ=< zaX1H@k1s(6k#Mpmper^V8+`vM1(;EZJfq>esxc5Ckj7E{&IfZem{(1eODuDp6f7B;4GDQU8^SR2WYLYd5$z*D2UBI%}}ZTt}i@5b2jz z-mPDQvka4ICp;~*4gXvee=i`zJ@y}INO1B0NK6d+v>X1G<(foM;`JuT>FM1=)WM+> zU*o6nwSJf3hYqIeLk_oP=LBH11BP*A4ip1s8!f)dm%aRmx_x))=Fi`HWz>?4{)53c zTR+Q)+t{ZKIct)`t($8y>AaSlm^|i_zkRN7>XW}%YoGI*Nrliz{iVz%$wdMoE-s|D zrL%R!`eb=`}*Q?`+y8d7Qu#h+l=`=!!liE8ZUG@vO`5c>cfwCMA6WzTOP^j!ii7icKzZJ ziH=+MqdX<4ZyDaWg}6voXHy{~H3xx*r_$1!kL^@pXt8U=cc^bFCN*{Wyp^@SlZn!7 z#p6XBP8cG?hJSgr1Bv~YH-97Nc(dsPYhrf}0miWXt%M~l#r3`qPCirU=LfJM2wkb>Mn^9CC%BVy9^I{>OsOFBy>3%~g1-jp@)STvo7qIrD zMb@I1JLqYxGb z%LP*S8;=MzKI_H|mf5V}!^ZeIBm^JQ*({_7og+=ic$x6TV`=^IcHz~i*dr9FnU zuI>EZ6NL(q{2FS!;(CPVYYniB4gXsOg%$VQjNiWMEc~{sKG05`20d$;?HVzR6olsB zYOKUKlt4BmJEJ&j`Yuz2`hRy!@@Y3|#Fty7wb8s~W%@1RSs$uw;nl|nGv>@CYZ=}* zloa14CeIR^DZHHq6-}A#9)p=8>(xp3O`FwzyrCS825R^7kC{rj$YGbkp_2mPuZ_{v z%x_dwMiS$d)Z&p0S};rAQkc(X8occ}3){pd1)=Xr%J@U7h?vK?`4VEcsW*pwiVFkB z(oTG+^(xQxrEwd&(Q)sd_;=nBGWwisKQK;r)O_i(%~oN*_6bfcAWjX`fKc!S*p-}I za7#e}8&jQpj>1&5QvbHPSYgIc>WuTm<6|Dfe?0D$4yecM`_oQ#?%Y6>KZqnz`%Jqt z^WoH@Xhp{9LQnc)%mfRU49nSBpb#ZRHK% zJ}ol2kJ=ve(BsuFT%}@Tw0hefveQjB}o^R2xbuInt`<}X%rgQeSL)UVPuEf2+gwCmzYy?KPsRHnp6GdKp#pVu?b zJsTt|Qe4S+@!QgVOZ=$+S8sRk>S`ehDsnH9F=b)%@@#46LhIni=0a?4 z!sEC@R)J_s?{Zu-SQ!?ZQj_cMS38nMK9Wf3{xcD2!j6B?QlQ6WOm^ja=Z@2L1C)QV zlsi6hmX56fVkSl;pBuY}(D{%?CHH={Gqa5uB&ihYv4e3NKgdCZZ^P+F*&1q>>aBXb z&or9ux8)X_bX@%e7K5(IE#B*&H&Fi7u;~+!fa^c9nEJ&1LsiXWlqH4?Lh!7g{=xH! zn@6nI_nhzx94r45@k5g7&~Xf zX`q~&Ku{=_h^5u@EvEjMu8KPR6M)%N^*tw2WL0oh2e(1!G1cDMrTf!{SfNi@hTYak zg<@|42BQg7mNX;}1aN^77`j7M~rM`gqa5l86>-QNK>yzGn3`Pyu9V zTUUoI2W$N6ZR4J5L_}$6X-}H6Z(Y2XL911Is|czq%%Fq8Bfj{-#ive1j7}ME;Sigr z#uUl+xvs|#Inj`U?F$^5Wzq#l63y0Zv(l%nzv7&a*`_zm@Y4*aWHrf4WmBdZwF+rd z#GPt|TAlN($e8WJHcI1by=9PK?i>7$SE4gwi0v)U zw0b$z)ivx$OTsp`mA)mK6?OiHR8;YMGDS2NuM+h<36(GAo(^8L5!>|Mp{lz z!kfidt{Z>TsV4k21RB`79zFlsM4rx-+qiPrqdWYq?B+%FY4VF-Tb5y3p}NOyu^Lg% z+o#5NQ4k^5i)`0_;Hqz|XJ`f86}|T-xAnmjBa{1b*lRP6R36mh6CV$}t=Zc)1Z!Sy ze4^cHUJCKY{L;029&pmf7kS&S=ej3$S6ncrNI*38r?NK}!rk8-hK=G`Hljr>GM#!TAw<50M&yeG?Q*vdaD-{3J-B*8 zk+;#=U-0tW5Wsax4jQ4V+`G@jww&H66wsirS*vUHRu(1J80WWkA^LzhMm~5Q;SV<@ z`K^wvj+$Go6yOfCvG=4t(M#o(mbMgJX?STcH*4>cbL^aS(YqW-Q0QFpV|XSw;fKN@ z#H;3KI{mFlbkq@#aFf@|h*h1P|JhKz-J63*=+oBM6Xi~3Y6aazKm8<`g0P_U-kAt~ z>JV*e(q|kR6Y@#AtbT&>xrWwI<-2Usr?DSb{?cUi4u*(VqUGkq_`J@hQbU%#M`VXp z__Br5+(yE5?6~$1&$+@n_Cvg>GdwWxerU?=bju6Bv3hu3vP<^_abedG} z!6Dcr`b_Mbkl5|qgvH@^UK*~fDQ<0dB~pE=-n}vJzWo^)w8pPSkChP`sFRJcOHR|h z!G$}sTkZ`c)aO3XHBRbGx#*R2y+ee<(wi)CBO_x!w_X-b|1B?gYgfb#mzz<#*;zcn z3?gCg62kqZ085*$|GenVl<}}`2JTZ``AV8bm(t9YVoRK-^Y9U-g++k$hCYe`j=}T`;ZvgojM1r10dRjc6KC}F)`iU zyQV6iC4hYzuC!-`F29vz+ue!?3Lz)LYUd-fRiklKBTb&ZZ`uWbHi(Fb08O+YcWEeU z)hldnMzCr%!@)hvi&I-*ex6+RWy8U$>1hu@F-cHOEQ5#`M0l{Bd&3ntL?tR>1F_+= z{K%j$ehAq^26YBf^A1!z)X@M>Fk<0=Gqvk}FpK|VN-iWG!*Avf`3`MI+}i6SuI)8?G@O;}$$yFXXjZzAY#yXd+99$93(niu;?+ z2ljV@z(DB@h@G%F!ajyH1)TYe?bz5q`{#T%{cKbn7cn34$8&Gl(Yp#%^6XfJ|YJ-w&zn*c>nKS+ThTCj>#Jk_VGO)PdRX?%cru z-Lixu91!^jylPf~{KX%nmr!i~o|>Wtb_C&pEc`)4bN4PPVjD&~_cKDXKq2%t9#`ax zpPxXl?GRrK=UI_s1>Or$tojvX3VuJKmBsKe^TkgjXoHax#t7|=0{z8*giD#>UMvP@ z$DNKgvEgk1{pWyVy^esBd(lFJAXN55!@h<99Y`Jg4q@B0J<|{jT8%@;Q5YHG6ro}V zd_n+~5E*nU;RHYf^bgoT-SJSR;JSzK^FUwU^ra{Qypj0xb>=q&t%{0@Pk;6KHnGK> z%e!^`TUbpPn+)#p1Ivkc0_VnbD#yi;lpSc_X$1u-qN1Xn16_nX<1CcwrPYQ--DGQJ zB{vTz7|rQGY&~x(_*R9OfFPxn6}V&2m4WhQxYk_+M4gS&t)Q)gzg-?h_(Wq%g}gH` zU}VrU8Y#H9S-B-#WHj(1zsO_+A1b{My~$smch^CJ@Y&?z#?%xN6ueDE1*|Ow*j@+d z*5}gFjlg%X8+1|N{Rq6nehr@d92j>@)++dap}@krp6I?v*dyZ4B$8s(1x=eIIOVzJ zel?~u%@0eTrCCh|Docb1@{}DsO=k)?Y@{gl3H3Qy4gnq)qgQptt`3wE`h?*mhb2(g z_EvYKvR<75cY(BKN1OmjO-)Utfc+!=&gd`5)+Z-4UL}EFfj3D^uYg$ZD>)A`qrnyk zXUiPUcUoA&?;cHW4(B(_8e1x6DWiY__5&vw1WZ5x7JKL_kb!W5ZDuRiy|6kVff^LW z&w$y^Or=3420A+Of{{!ss4Sb67LXLYthIh0pp<`plAG)PZ%0u6=WNLTYK8sZnsxsi zH>p4m)9zeXKW2#FT3!yowPx3i_?l^h{@x`LQ{nlex73<>+Btg490It;uZG#$pQY4p z+Ru;1-S;qWReA3-wH3|{*~@u^$My!CgGm|x?&!lp_UYK7HZ|v#DE0U1y(c8+ys6p4 zsWM%jW2{HC_W2x~yUiK~NiT{eH+2l8HOGlVV}6uiryxHMf3fgv3n%SVjdATUudIjt zVQFL6=gsX>*8>ydA(gbjx9@C=Fd2@%54CsF_b0rz4=pj&UmEEn6=C4Cy$2rS3LeuP zCt#47<H)$Ld=uSgTuoaJ)WsMCbr2W@^;6i|E65Z!-EdJj!l=&jcu zp|NYPZ6ycfPpkE>WKs0SK7{T~b5}k&3Bm+}ER8H_C@-hG!V&a6#?8RL6)pktLM<>mHBapUe4Pikc=-3#D$GwYG*zv^`ee{Werw&$Lq5{qKc%09W{um#ZQ0k zdu)BmY<LI`^J zf_u~0u(_zIh{fy3Gaq@QtJ$-S?6PpbJ#N9~oK&UZS&;iM!C-Dx#q>~KS_w$k;3njx z*DO90TGr2{1)cUEeWBcJwbBv=Me+S#VNkENQ;^xCOt3}CN$UI0Aev+#?PJCMT2-mox4MpSL8slPhzaJ!Tt`*+;B}Jt$2; zI#FRy|4Fy^i>lyT^9*I8@|5RY!vj+8@x-}FQBM+ldhpoE$SW;(8~14NXCE8m2s+%kLmlLR=Rizj%g9#4Pu=Z#lTBJPCC7!p z;zy91mdpFww*Oin`R_SA()ldhv^ml;)m)bIvyqvLhErdk z$2bwX(awyCnL=orwK)l#OD;DGs?;t-ob9Qo6&x?Gu57P;%wxKrb_b6mh59zh509tU zxbnFllq^fW`9$n1g7Q+>NX&Q!x(rPrqfd*!80mbqrS1ReN9_Cj@6*|97|BoWzkl{# zOIrEq(-0{uH+O0M$Dz{Pk@M26XD1HxwASHgHC=ohmO0}?<*z-ZB=&<&9VI(-a#wDh zY4Cc)X5k;pCX8Ox2z(nz5o8VAjyRhB;_TWcUpwYaViCc7c5sy-pH=(lQ?T%kg$ApM zxP{*PFz3(5HtPLRAL=yB)Ly-KYWgsL$mZVG8x@Z@quIctfaUV;sZ+6H0_C65NA&MD zZ8z;!kF+ZbsaeGbtJ2DI4@)P-GpR+$7MxAuTu!kXDTj)*tJ9oi)aaJVbsrkds}51A zb>26Xapc>d3&K53An2|&McozO5Hc4B8Kz?Tdq;IQ3w?B1V~Oc69K zohS42d9D$iCnf&0p{rE6+LD*&r(;36B^Kr7Ej3(3gjQFhO0mjhSyF?eUS@YqgLy{i zbsU(^KH{bY&-itTYN|3VH zrdr@;hr^TGA=^!SO2cUGJu*Wt(a50CJ7lJJOTEABQ_mukZJy=0SB1o%IC6|R{mJ1V z|FsxXh05RlayVa3(?!t$;iui$c(SL=FV-)c1w(gyoxggXI8G+X&m}iX#qY|UCo*IV zxk1VGpd|LqUlemK9;rx7cBwe&7i^Q&-VwoS+i{XlkOBggrgq(DW|0Ju<J=%WDMw5n{*zxtI9F=bDp)hgkc`fCG53@z`UTQ7S7|nl;wQkRP0r#BcVzDe&-mc(fLdeiW>*{sU4pn7oUOWDG={6<(! znGs5{Iq}el4Oc0~VY7(imPY;zuX|4Y=Zj-c&6+!zruiK;nCX6p9QJFB@^AQ~iANT~ z=LtoxvlHBC%rvovq{y%8VusaGTbz)~P9%TMzjC0}`{0CqZpf4Brfp_)O|r~Ff}U76 z1}C1Gb^3jJ!ntzprAf+z4B=?{`eY5?@y^LkOopXhIVDgb=aJ&Yvu@fuou}EuhM77^^=3GC61+`x zsP6K|PWNBq-~5PK)c*&BJeQ^^@f@aWJjfU3F~W0BX->3Ezr{>*6FF<=inBEtc6`1T zA%Cjt;ksW}B00o#WZuh#i-qMCuoh>cPU0V=TI}v6405t2ekr>Hqp0IU$Mpf!oZ5N@ zjT;U|FG+=yzM)ZDOx8RYey`OYMUcM(IXKKY#;LD~vWtu8G^!)aFR{)Hd%{QT;sr=@_ zM1YqPY%th%a!;tWs!fSO^XHz3dsvw*p5(he7dOb_V|CN{0C~I8WV4H#y_pTPu9vU+ zF==U5d9z&pQx?y@Q;42wr0s_=6WNH$a}x_niz?D1Hw%dxeyVg@=)2>F(C>RLdND@# zq8MDl@GywG--CZ*3N`z`wVRt?yn={S(9i&IUMRVn^X z!z{Gma;>Bft+s?a8gX#0ubQ0nAF^K4|AZ~|ooc8!QB9W*RLc)@H?iLwZ}l?sJN_F( zIK!7-Gexzx`vYylP4o;1Y3bR$G0Gpg>LbuoH#rWnoSQo))&g;GW^O9|gzA&#J(ie+ zonf-jItQ}im8}R7l-GL>j<=_)O3UEbu0Lt{UqD& zx@xJse}@NK5XOUA1BOOv8FW;Hta{r8Su{92UsSADT8ZNg@DuC? zM;j6gD9$bmFSHBTc}5hW7ZpR6n;H>tR3dz0Ysp$USHkO66OMeHF3nh3R_+ISXu{(6 zYwy}xpJJJ`l*H*ngHG*H7&6)U?Hmt^=Uw6ZgC;BGMqv?f5u3M0K0HP7BFXIu6KW5_ zzQKhPMRbr`X7@1T;fYA**Lwy~GkM~F9^`0ES`50=xwN)?5>v*uvvi~XLhOH%seN7d1M0mbu%R$#SbO`A_>`gF-n*F^ySSBf8xgW)zA*XFSqrB~2 z*k}`~x3{#0`!lkbD#F1O=Bo5Tj&3#LJ*hiCL>V2o)?1YwtZ^-7p0tHh5`b%W`b9e& zK|6y!zQkgT;O59Tv%&PFMr*xAbl_&t*VV$e{)dajd7$~NI|&Z--Emj*<%vTWDc;mC zgMUkOrw2SX;kB8ph?M+xtDobYX5Kc|mD${(K%0fIi)wY3M(J#D3iTFr7_2o7vwEcr{K$+)n8IxKM7y7Y)*IxvGcJ%b zw4$3Kx)!aF>p)sEJ8Zey8|Yh5sx$ zhfuoP75H0)$BY(Bssx-u2dDe5Y<6me)H7tT_z*YXCj5E=r|2=pDE{CyA*a?Mr$ z&&KqBJox|lLT%%G#AlJ=ojdmGB);JLliq^zqXG=k*&uNFCU#e;Vc>_4{BG$MOLPA3 zVQ4EvtF*JRq4_;$RK8$lWn#(%3TFHOtbv1nzq7Jj`y=)p1wh8<@w{Pg%KpA%eYFMV z(vADvKjDAmdHScm0OP@gw?KBj3@i&l7Y-1!KcCx7aXV;zCEIj!t^rEIodHg*5duQx zU7+Av4TviNGHFrV84xw^MR#Mb2-x)>0Td6?axiU5T3XtJ!1h+46z&0{xCRTLz&!@A zj(Y*!{ii|C|J%nrE8ZQu0@Ys>P$7-&tOIhIQ1ybNMxzBNDtPne%|ig`0|)!IVLT0b>s+4#(-Dl8f4dD1- zUH?t*zGOaC@sze3Gtd&>L+sLXa)Lk|Zu8l&$emy_d;tm+wFp1}2%KM@nN6TlsNIOs z040gP($c(ugp-NLEj4)n ztuGZ1Pi#R!0nHpE3(I3&z+mJ}meY1#L4wwS&$*9rC&|&)*4BDL?r|L8l}v!;g8*1O z8<$(DB4h3U-5c(4(_ToXbo7J!Dl#HXCr|-%0tB6}%+|SRXac||f%%mHNUEj1PSh7n z_Zt0abMAYRDOfn5n9if&29ybBypLl;XlJ|6f$+>*i?LxS{#%W+L3#;UCJxV9@3rb< zJ0D$2q)>qzlk;=WcV%ezjy?AC=M%d(V43&K$S*PS$0!rISjgN@7o&2)gZXk)Kuo~K z!!x$|_-`(-nZP4Uj?YrNj!o*i{nD~_;|0)RwgZX~-~@zE=>2DgeNTGc3jxt!0suJp zZ*vNgV&r4&3wWEEVe_5TKo>tH6@QdO7W!P1Z-5)kXzNjaVU^HhNmsN0T4zaq_L!u0 zM>=E2K{rco(b`kdb*YHfAnESB{y5G#a+;CE93Pmab4=#8 zVAYj}1PRbYi)ugSYnmEa(G{XBoq2QNtWIIf9iV3{q22g=plVq6v*RGNWG`}{r1}OL zG5wWhvrWN`HZ~y_;ec&50mI zN3E#3H>;1_&U6;@S@jb81pTo2p)-Wo%x}ZzHY4u9VDM;e%4=$~N<-sa0%yI?G$L`L zmm9(rm~exR(jY;jX>=%Gp-vUyc8zuT;@9tme=#VqXr4WR$ThDnJuo8``q=_QL!8mvC+RgqSRqu z%tN+VKX`VpT{dtX6CA;>AFWLCU)(C5$ zBLcH4AHsPCVW=g^VVMuDdTkt)PTYnPOMjvmc}M-3{u+m5A|AbZ;H1Y?HBI#kj~ON- zZp(2j6+fjw@R^izuitF8SVtnRd>$63)RTC$HOrd4sHBWjuB$BzcZjI;t~j$9Y?5TL z>cTlJs~_~O`0}FDMc>4w-i33IDRr6tWXNb8t=?;NnaE4lErqou{M2LsKVHkNkw)Re zW|HjFKL=+;AW)f@!Cg2!_8s815Z^-q`1$P5T6wz=Pvhw(=E;S zC>0Hgq;hvGdK^<>+Qm#q9*vV<1pFl{MlU)iJSECL9J>q8@eMe79X4*+e(6GU&v&ph zBI+oV&;M3S{_V_$D_AS}f|!qBJyJ5j$;a>Pk95Z@xv?WLWX!a9rhywjxY&*PX@Jqi zPl~BVQX~^daAGoI2gl3KE#3!`S2#@X;_;TbeFD5hxaXU=w#3BwS*VLCMsKIHqRkTG zW-cOp6*+%Jp1-!RB><~_+?{^#l9N+v%`nxuzhVbv$Dph@p%A3Ix()@2bCrX4QGe@B``-ae1jk!~o z%9~_~`adQ}m9WP+{fH)&lrKQHo3cFtDcB)Nu2^Gku zu^qzSA2)gMv}vs-e6x}xguhl#7E!;b)`_s-NA(yoG*^1%(&SKqPU7}qD|6AoclzsD zzY0;q(6^Mt2VOzJT2hXUv#L5x(m(3=(-Cb{l-6B@Q~T9EMw4?>QP-c_J%hg{{Ntjr zP+dR8+}_!B8aozrexPP2$O`W;PaG1odVg>snC%Hu1{t>_ZB$9Q#}{EgCbcPvO1~iy z)~xQvlc_Ol`fbAKJcjV8M9>tDiffn*)f|m@_co)i zO;xo?I2ifGtQ31pbh$NoIGU8}Orzc2o9Mln#{qCeNzrGtKl5Oorc~$Z^)m^`p{rs1 zl#oAY4zJDk5Hs1o5qI00uYVUMWJSJmll0pvIXcg-UIjG*xs1RE1_!tA#E&2;)Edcr zBl89H4t*jN`jht$<)DVCUz%Jv->1;I53{PFQ<|2 z)vG%4w~{=Fk1*@I)u$upaish6$E0Dt1+RCkiP1uLZJ#@^-A(u4kr1Uq)>gFh{rM%A zy}39&(<-BD!7UNh)-Yy1%yV=!buFE2YeXc-Uh!b8fc{)AqP3~g(L=0zvA|C01o?p# z9XO?Y(g#rr{@AUxti*rm-7GH%?y@MA79UoXyBazBep=?F0&^L7i9)&g?tf?jj6Fyx z<;yq6jZhDPM!oVpLg?GIVrw*;>uP`e14uM!OTaf2dK;$U_y;bxy%}yXiwThDVxc%y zS5Okzwo%I(CVss@dV$He^gn+x8|O#DR=D+}b=AZDRAH>Yyh|So1`e9u4GaecNtMS_ zP-K}{0`RQtl?^Yk@#JgKg!m}s<@%QQpEOpLOB$0ObU zM>lG9rhg&JN??Zm7Vc7&yFfh{hB0C#s$M}rLb5;R*lu%a`QiHu3+(;y!2!A4n`#(- z#$bi-)m8@g5dRkSYt70V!$kU&^M|DQ(5tSwLZ{F4w_ATaQcU5;0x!xv;WP9Ou(O8q zh}uQIlk@CYaJUL7;-}P9z)VxgPEGHif3lA^4yF3y|soTmMDxIo-;Um)S$v)-5nt)`a zUI9PZh2NguUB8Gkp?3(Ms~+@z*oZklm3>|~It^vMgMAe^{nC7*3TxD94t~YS&)@kz z7~?Sh$gTPD?aj0`JljrK+!qqotRhwa3%HA!9;Gw70Sm^HGO$OKwJ9%sroSHaia#8B z0AVR5*(vv$S0>^%JwVpPRVjBT95`vzDdMxKh1wLlVHPoSqZ|{~bPveCG7*b)TPqvJ zm##8Cr8q|zjq_Qs6YS4zbSfRX45F;x)SQk>fp`_554Oy5FkA8PThR3j&CMFKam*P% zqIJ|8T>t1(yw#E}JT;mk8U<@wRwb2cx2n>cJB_^=8aqZoAXQY7+4ql2ZEg>I-HvUOES($o6xkdB$3l?GP z{xk_Ss_>hBFwhJ}g`BAuHJ@&zbMnPaG4lz#b~7M$R&Z@LUK zXx~SMxP#zh#6N?aLcbAUk%6Z>x_blM2H<$AH>Q4HVZKCPZA{n?%4XuOUa=Y&Rp!5N zQxqSPBROz;i;P!s@5*PgAn%MBy;k>$LMn}eH^#+A6~cZ61yyJ;5WT=MK?*;`M{6Gn zi<}{Jz(wViia4S_DsW-tZq5XFG^*2kKlZ^-bfEr`f@eUVlY~nAZ{h%WrznZXs4^~w z{V(eRolGaIV3_qmHnB-Kdu;!_ighOJ({+d6Yt&uDf|j9D`ngzEN3NHFZWO{q)E7Gt6PQ!Ud!x8fVB>89#x-tjFw z5yuey_5m@ygAM%o7N^5DQY%_|r_zTH>}YNRWLhGO9Gb^=dUKA$;ztQQDMjy%*y02yeAPWZnlNRx8z z%s$p)FzJdOg4a97`~=H16i_VE`AYWv*gD`1Q*m*fRm{!+wG4OSe%RW-cSTN4F!Vwq zKRkE0`z5$6Um|q59u4ZN5Wj!_{@TchCP2?w#?#KujvcKXz9wzY$;n9os8|?*i0y1W z0|Vd_e*!S3_szIPckF^CjAeLW0PTwXU+l-;zEFvKzE}gV$xg4>8$!rHD~tm?-bF9@ zc#cku$9wktjVO7>MD1*#j)xos0{{*->c3?oN zI_j)Y@!$2g@oXuH&bX_O1fjaN!s$^&M6L+-tU8Tsg8!hA0jO|V^mhONB~aR0^>!cB z=>~urJ8l;pGfmBTlWvB8OA#Ga{rKt{51ChK_hH)jClc#KEWGp6+xiNQL+)1G=g&KV zLh*()upFQ=0c}owTn@1I0P5(B5${}3hZ|H?y4~du8lA}9{ue!HHHd3ED>f!KtZYwg z;Lg;6Ss#!&Vl5G~8f;8S#)}+q)CE?nZu=oJj2d@wmmLQ5Rcyi2O~E1O?d>6JCL24fqxL ze;(BPpK-DOkLch3_Jw~#dE%LcKUGMx`|STT+R>)r;5Qax+=CVp?j3OP*}}3u19y$G zWP|Lc^oCZzD*Mv0c5He!w-I--I&*BDhiR04I^4|rL8H5-*vs|Bug_ju)g{c-W@3y zrl)%i<-oXP54PU$=(#CZv@&Ih-iiaB4Id&6PYfV3%Ax(_pj* zth=cE5(V>=3KcuenN@qIYR;uFiqLS)Le z1*Ny-LhVN!cZ=tZ!|xqq6Yh zCzT8E-Nsbamwl~*2c)?UjVOln3byD;Vg6;Gts4sgv(T1#nWDQOTY&Zc4nKpTd}+Q&T!i=Q+-a` z7S!Si<8Z9OI6Am-gxxm6?I1D&bPJ_nZp9%~wuia_gYJQiMI=o1PP~q8R5$xh<>r$6 zWJQ9MCE%nF>*$UrBa^nu;6Y*CZ}}QZ(tluBvmp1`OTdYB?hlQzmUuz-eO%t;Inq}( z_fiqR!oXY6SUI8GJjaQcYh|t`t9(xNbn^@Qc*#%SZOxATegBcDPkI&FVU}rCKI>vMj-C=LPS@i;$lEKzhg-^{~4!u8eJ{^OgMNJRw%N*%-8j-;d$d;U~SvR*`a z^o@z@*qW@1R4NRquf02k9(`}A9?^jWNMstHQrS0IxXx-mVzHu{mW1Iaf-E&zmkpGB zvHa}1!M*^E9wz&{sh=o6)m|HKbKtZ=eM=ab(PiHR?IRBm+K}8`y&_E^=p10)DuwdF z@>XSsIfXVH&J}y6>cg#_f}!Do7gzaiaV~IbPn0jG`v$eIh9wR2%l5{@L?ER@O z))Usi-6i;R6N}F4={t$mUOj~)-@Xu}nm95cULRwt+ON$^c4SMCeYK|WElZE!=~&^l z@_C+%8S+#u1_m1&j2jl0K-jHET-N~$bTOZ7!v?sA`TOQeO@IzhW-$M}`gpGyvm738 zZ6tWX?fF5l@HR}=@bw>tMfXB79w*mS4V{pU-^0R`uy3jCPtu@YJg?4QoZq-nlL`}^-(;{@78zr z>{Ki5Sdc?`z(JE~_&Z z5SKkD5K6eu8Nweoz5b50zICX?L}tb=+%1>+oVKI+*rTq)!sxpGgx+IX4zE28Rv1r= zHgbMh%}QQAXH}Al*9*Fp5nPXVyT|Z{wfgN(XIm{tx>OsSEUfg2HL(BU>2krDi92S& zlnbM-J!ZEo!8Dj16-q)RcHs;LWIekX7@l?Sk`en&t5dDHj6SKZfA_mw#2>uvhgx1JT1ILl-;#WEiaB;! z>(zArh$sBI_Z|-JA04AhbC})wfonoYo>CuUga*kFK|V8)WjBhi+WM{4C8feGfIA9E@2jBY$Cf|d5XN$K^W)6&V^H{R?n55JZ^78s~xy9_;vc~i#HDix;-dq-^ zLkva?xfQ%#$%~6;Hr}guD9*rsUg9`4=3WI?dtaUaYzpN-T>C6q6QM*J5e~DW50`>; zcg*%4xOJHiw3yIA0W%do2#N;<#pdUYCsqUyB+tVtQ+_w#aI4*p%qTC%b`1Hk+zkt1 zo7q=$vjB^U^V#?e0HC(8p#e?!N_9g?$@hB@2EMU&6X5=ZxbBAr^~CqvT!$dt38$X9 zz4)N*vRWXg*=oFgX8vAVXdwC^HDsx^*HhuPVgd^!M3SnMT|N#05CjzF3h3a(LWD`I zqW5(3OZd_qMvXBZ5uYs;NE3;gXozQ0+Tt1=X)fL!-cL+{a3{S=m)mNSx+HL7)os)p@>5N&J|oalW6Va zzzR-8BMJ~THDv(T1v+QF@CKH)D@+~`BP^>8@E<$YFKFl|B_!-FOtGPTn+%Z(tkQ$( zsKp5cF(Y#VqfpO*HztRf=-_p4exM7sCTn}IsKSv-e#X6x7o$v1lmg0;0PV=T{jvX~4V}Bx=TSrGn z2|!gm07Qj;;12?~>@%o1xi9H)hwoQ|1Y@*@Wi1i_L01=>B!CxJbft#|`B!+*PDVBz zJQkk4d{UH$&5++;h|$Xd{sa>l&^JRYjZ%BK(d->XlxCVd@kffS2BX~Z_KPdg;{f(V z;(XvcqWn^p)&|rWIe@(Ye$h3cg>F^NS)ORz0q5%>8z`I@5`YQ=RcUgzkXKTD4 zuMGnku`n{l7EWgIPpCe6Jf>btGiNbAd!%e!$#L$LFti}{nB$;Sey7DN3M;Z)^?#Q+ z?U>x&tVnWNbWsi@rx?wuB3AEet3;fsfxZQgs?Dd=GXBi(BkBDChzx-tZxsX|X!aLi zNF)@7-J~{kiDkg;j*w*9EykQ1(KlyUGt}y)7POrU0)5))F}* zWB#H?>7c`^Kisnr5Zu5Fsg~*^0fbOyR@Nv;gD!>oxgEas$tM}k`4$te07ia9Bd!B)2hWAP0`@}Io zr{9;RTwipHY=R^#z*pTv@o+$;TR}TEmI+>XitX{Hij$)1@e+o>%MTy&gbdrWB(x#y z^4^T-d6TcJe?N1K2RlM>(u{qm#%Ey0QdkVJ$&OXv2>8oa@JE%;7ON1P#V*XZs8l4) z;5$T56>(eE96w66 zk7TFE-y6~YpccI}P?n@XI9m-s)-k*}aMzY?YTMNX+xDmY`>>JJ9G_xU?EMjX*vrg- zV@adpK(G62y^>%cTHy#U=Ni+#-@imEpK^D(&gKY~eH3a^j(?Z2qPfUO{2;JXF*vA# z8)S4S_UFAKn6~zrVG5tLivCQ#$RTmL--h%_1M>vwYO(7YpC;3)k|=gR7f5Z)LwXU3 zA$33K{b@<0h{H)R$J#EM!DgtrK;9PLX}!xrclT`~5`?snGk~!h>A1VkEYhV`1I{Dt zd@++))6|o^$f*~cGV{@zpP=>;ZQwAdK=?b1@ZNl)?sE9FI(3n8%Xo(EP?*a@O)GDg z2X$VL##5P9z~K@1k(-HPH2lXWQc8;j^gX_m?2a=ulXWh9hBOY$ca{%M;wD-_`dm#8 zN5Ga@cNqOznOV7hh+>0kSp#nQS!$C2gkHupV3BD9UY>6xHO( z6k==@{ED1X)_)<^D?4&yA%vyiTKaiIQdXR|O&~{u1(@XeNllPP}{v+9NIf1*dG}|{%SsajZGMmS+JdT@l-Lw1pe#rNM0xExEy2XxB zR+?o`|Imu8yj|P*Ej7dT!hZh`)o&(f@)5xq?f7@LgLt*85>(q2}9+;QN1tg6AveJ>Ty)T_l?~TtV7?*oi85TvD^ZdYW^P>Z+r8fgS#s9 zoguGK)pEC3sr=^nouT!*_13)qra(`*uP)Uu?(vG)X1@ zK}%Pntxn!oolSVVM7j)x6;S1 zUkGnsIn<~EF*U$SlFt{4@b&fOoNeY4>^%bKbHY3~CucO5*<^|H(ds0IjQH%dNcFr} zrJ9KYK8f~zhV73A^*%v_>;qp?v%+v-yS&j<=nnw>S)LRZkqk7hULVX02$n5Y5uKBW z?1NJX(AvPE?yN%;kS;DSKKnJo@m2&Q_4-{z2MR(ZWibO$mFAfQ-5r5&=(K? z8Z)Xur8YZ|7v)STgFylkvxd^9v?pk*0yJ62EIep_fJAxm?V(%M$te_6xAuVcL*BDx zEA#W3_evzI-f}(sd50-2@Ogot&A`<+8lD)st zr_?Sq$M$8N>*J5sT$2$yMtr=#PXWM-(-eco#d^?Sj>XFec*^)fw|pu5B3IY(PYwtN z1K)+7j!t)@@8<)+v0(>gpP(wZ8%U>0X3Q7;4*^+g83gSMriOq$e0`9AMimRd@JBMw zKpV3bP>Qa}>VgCSz$(#4lMAfE!i$OC)gKq&-fyWY8X7l9H9uLv;0g)K7Ih;Twr|4J z9{&E2CRz1w0X*GBRA#N;<6sFR?)g)+g;YLcLcv?71m?APGU(W)pmSqd?3s&ttX2==y8G1*xARi+mq#|4Z$h-g` z(sd3iawKZ)f*LMwKH^dIl4{@y;@Bg>yPqQpk0(;!T)O|=`JUm9qa@y5Z;5S% z#9DRM$gL{N)4OATzap(hzm(4qCJFJ<(+5xKcqN050-)~tqm>6Jxo=T?FV8VIKdL$0 zV+DkF0GWqij4vl8Mb5%9G-qT0%fle%E&20j9w_F(Q`kE&&|z6!-MiOIG5X4Qh2hvy zNX)QOLTfGnfor2Bxvg&G_Xqhp`(07-ExVo3T3VrcP4Vi(rql2m|E2|Vg-WctMa)l$ zEldwj=;D@qT?T}netCgd z8|t}K2f2Hr3jmx5H%AuqtK&oz7B&V5K*8IKwb$(t-SNQu2hW!$EO7{|H$Z)UjPoY| z@BuCxixR!TRgAb11LdM8N~LiH9zZybCZ-|Y!`BetL|mpH%MEZMCqEh1IlJ`>z0=hA zCJ?_z{6h48=uo~NK3m}%Wx_lhCBxI3JYzco&lWqlf10K5E-6$ZAFgxv#3d%Y^GeX) z6O6=3EiOo)kvSq_Kyl?b!t7h?Ig9 zqW${-f=qf-kN$vW$G3+Ymy`*WOL=aRqvbOB>mwAS4?*`;Gy;yy2{_2%e7il`Hn&;s zkQkkc$jYm0+f|t5bK;m5pon5*jbjvwUHczefR3J?RBLV6T`7M~OPcaX?KuSa?5doQhT8aJEN_=H&K;Pj^oZ-G@< z@n+`GWue_==iJP9p&&@A{;2admQSGpEB3&_;-w!OWtfkL{zb}-3B@phg~MxOax{wD zz1!TYM}1zXKgm`+vkLk`G%{UrYP16mP5xSCFFrID1xY>oq#S#+5+3;1U!~g*0&&%a z+Lh6nj+sq0lJ|!Wgy;(*)_3*SC^@Q6jOgF#C-yS=l%x&Y1Cay;EZDET!ZwRfQutYfjJ~2H_E-4TJrsa3KMD^r8>!UJEj4ZB_sEi)T7=e z9LP)!YqF9``b4^aLs9bZ%4R>_q0~G|*IS2{%uLAI2;`Cd4GI2M8dVkjbA=<~kA>Cz zpg5)UK1CZzeres^j{oirp&`CrSpA+NX|RyQY1*a;C%j<70ppbau@)HuzZ!{bP`+bBz7&*n8h znp!Fd2Q)mUU%+x&N2|?~|2tRtf|d?+FMHC=wif4I_7ey2&vGYP{hLVdd@QXde_+c9 z8KL~RA%1@oDFtF7_wgRv0O7eCraI$N7T9IYZkvD$)j7V(dFmG%!F{OjN zkFPtS1sL~(OxwDDlh3fDh-6%Pu%mnO)Xh`UFksi|C6VyczJ_Ac)jrLuO7CWyV3V0I z$8>TT*_HC$!bHg9@hpNcQ>@BR0yEfHcfaWJ$4BB){;+4ux2qm!U%~J!(1ogA#}X(@ zVgakXQt=VKqO^nO+mPr_`|=Kn81DD7MW-2(TTAA+1}{5(u)0Pcd7tmWAFKq zpuHFBwy6Wv%U}4Ktm-7*0wN z>$6>{kp!O&ys>7kWhggP$TcOOA7)Mx&b~7LQ`{t+S)c0fOYA?>tU=2{g2un8@UFTrocbLuW3w6+LfFll|GD9t_dkHf>Dn zXZ>FNtc#B05QB;4yH*1aui?7uee=7$EzR3j;?-)AfjZxZ=Y|V?OHi+$zOQMyM{0wX zhT0)d>84{l3%!~};$juW6GZP_a8wJCV-{LQ3{{eV-z?iM&&#_#4IJ=C#}JZ>%J`p} z#k-{+YvpH@d=G7}ceFk;OrELsV2ke766Jm7*~v?Tx!C<@LFZ(m=or!YweoqCA?9@aCh)4y5=&(I*nDV>l?XMez_-^nDLR^`UzV71;c^tQpb?T zT&`+-TU@JOt?RqTA93v{M$#Yg<2`4TCg6-~Rgr(`7hfwEC`;<0tFQ~G2zT8zviTs1kPdeGRhOF& zVrY7sbrZ%|kPUPq4*g#8hP#}F{+GVdp|zR*U-B`wM34+yRrC`zBwF)Ek~aClRrWFyu>l6Oq2P6r(|v6uV>m_QWw2nD!}S#M%y*&ct4I zBN8$zMeDQEt%etW9dVQL>gLThZTp=}Vs-IZWDtPBO?j%SJNYsR#|A~DRxe{hPfAOO zyG>f)qrlGhVc)`A){mZ#lADbks4Rd+wTohVHUiR>U9xtT*!^y6TPTe+Iq)taY)&QW^ddV+&?SoKHb(Znf!5hILM~rojZhZe zfsvQ=(40t`lMb>-@EyStG-`OMX=rm%bnr<%Y~p>=A(az`W_!sx8QX&gM5Q9ZTgFS! zH@8cU$H#7Kajt8%g7%NDZg!t<@=R=2HeP)0>U^)}>DyD!p=JYpGI;~BxfABj=GcpA zwgC+~Tt$wbHYYl;<5|^_z+K7-*wSd<-w@r^r4byZdI_L%sMyxu2pVDHzn0G`^MD%+ zPAiK0cCyKGez}VUuykWD8v@ixk}Tc^r}A?(2dI>*BZ?~qGX?Vx06hj=XZ1$1>@jKJ zR^-FR)NgAY2sJR9MDL?fVkUNA*Jp!u{mSCOh2X*vPc*>eCgDtBZ`K{nbMvyL=W`;zm|1#mRo`ms1vmTC~p4NQ`dmPEtGVS@nQ&Z%;*2)2(aS+dZ zj&ycs37Q1pCfnL5_M%{%2CW~TxIQDAs9to0T8Iqzta1|70ua+CuwOIN$em#+%-Rjp za4VoZ12s=KX;rKg`*T}vW4s%?Um^n7Yfln*cBV4UWcsM3+5%p~c+yX~^C?XXSgZ|S zUuY>KgVkjiq$J~)e)%j7(XBUDmHf|4a)+wl#KO~7t?YA9k{Ik-1fO(${cFY+l7lY* z?)FL_M8Y;r^2VPl4mex)&K2n61KL1b6v{|R9mXKIRh=;-4Gj)ZKj0GgOrKD^H8^XKnC?gpA31JB6hoXJ2gI~wGbR;_tK(;?8HITrj62hg-N?*nC)H81fX z3lSJKaKh-FX)GQ8#ykMSE;#t|Zm$01A}7!9Zf!|GhT|ow4AqmDuf9Lgb3*tW{3L|p zfTHNjTLiMwS>FhaO5xwn6~~puQ%4z;UBq!^ek$iLzxXNp_N~GsS@2%p3v#_)?%HM% zY&H}P|5`hv1NX&Z6>TnBC!?mX+v|yT2Yj`4pexq|V1D`O6l-Lqx*hO+wH`BmfT7y3 z17$!xU?-t87mU$yI$uF+&xx&2VhD--Xv8la_e0t+`ghGz9LB>3)~}^7RreR_t7lUe zwFD49!D@?^8g))4_XXG2#QV$uH5+7t?5uMSa}+aPfh2{ikR$j3A(!cR>#xMb#C*jJ z2@xqvBH*uH=Ugmc75nOo8AFWId*^f>W65hrC9=&qLRi zvnico&zmqEZ$7}f#7i$9UTzf^v?L!Vr88e^8U?6%EeJyB+`SD}Bmo{}=MCT%uAD0DX zVvKaPb}MBJw0pvgX+-Sz-WtrGmD>2y9|*z)l>o@EZh(Y@M4OZgSZ}kSf2W>~Jion> z1L%5DDcpQMYi2lCrR{MxA$HJ?q`O!x@?OQH({hZxtqp3CW>!DML4ueb!zNosm>`Em z^IK^KckE>t-Q}%;tcz~R(11zq4?nndW{%;|Yjn3OS>`!)OMZ$6N#DO)PTPa@<8~C0 z<)2*%k~e1+mBe&8RTfiMpqZpEn17bsJhsXCjvXgZi`eRQ0B$M3tTp+4by#e0NdQf@ zv2==?`dvW70aq=j1qWmiRyw*7Kn2WxDHf0eu7eQJ+Y4n=L4R4N>8%|AqHEN~e0_n7 z>zNkPhYbe5`76m-R?_>!LmXM!Cm9^MtB7MS+p^c)8eQC~2rGArBO{t}S(Po6j#^n? zn2qJZUOAlVI+(`%Hp^mCPH)Y5U`_F+&iumrX~a@+_5_$Sd(h8_ltUO~!DLee)xdPt zfi4u40I%l9SNH6M~+2Oi7iJN33x~s=$*0UO(h=-`;3~G)+Rkh6Y^nc2Sh4Vw+X)MJe zSDa>Ap1ID$d7M;~G^Kci!kxk09s}3$3beQxQ}p%&>HPHb{W*bK{<8%VK_x-X=48h` z4GVq=eAT*Uuk?pa5?OvNiuIYlXhMR^b%f%TMqybW#+OntPGr8`2~RGK(G1p50Q_v; z2aV`4hudW$``O-3^_%m4S35PEXcJBG@PBnT3eTa)*Bb*W-r>3*aWs zmKJL|4Qr<-xeBukL3-A$#EH1gr}d1#BZ$X%Y|K^We=gj?*VD}%>zz{2G$+fm?k|5-e!%xf`b5$BVdw5QFR=bX5!R!1fSG#Fr zn6T0$$(65M72^Rh)-nC?_+!sT-Wr*lRPH=2>sF-7gTiF67!Mj@+J3eQ|Vf# zRNeZj;=)(ynt4RU_?un#P**T~wtgQ^QP=m_V+YPCb<#%Ny&DrHF4G(%b*?>ES{ahx z-Zv4ONLPM&#<;fHd!>8)u9ArBE_=ly;>&T8+XQ6w$6*JO_p_iz6M00V;S?=1Kl%{H zXC%i?4cSpotM9z6a#ix{-v_>~>AX=tXogj4K5a7Q_c!RnlbfosG7Il8yYSbT*eK!5 z^{i~X6-AFI7P>k{h4w8pCm{Y`<$Y;5l_GE1&iYznseU~jE5o6z5 zD8kR!LP*SD#u6F(79oT(82c`beH;67?)m+%|GCa}uJh(x=jFNI%$xhUpXdHApZmMb z{hg4CH-cnd9xQq2>r{>-&#LU+djaFyw95Pa&PmU( zDtr9>t!Z7|zRz9S-(rRt{rMrK8|{J+yYf-=wuXvZyuC?PeiJ>$wxP6v-rd_bK|j_3 z_TX=U6=v5nY$|~K;ZgTbeIiV8BdOq=fdJ&jK6??GA22A<{h2%*0*L(ouB$X=~F z@c%Z(Z%`8~a1-V_L%r!3GxUgHxpbq9fU)ZP2eOqm{oF2#k|E8rLemW2D zoYZ@Dtz%B|{7I-W0#L~Fz_>=qzhlIo^8@ih4x^({N_42|WW6rv&zNIQ7xZGWjX zv$~2~uWyd}Z4Ro~n?d;`nl3DoXpKou_AIwBEzppSUa3rxa^H@942`@2-yx|#^x$IB zb19A{v9&rDNyNMj?9`2@oJc!K$+X71TT*Hd2>k4&8r56<(USl-BI9z# zdr_Udm{%#&^$(UuJu7sv<`mxB+2{GEWu6p_4zzUsy@$qHOzz_l3rv4bK;b%o7-1ay zhPZnb-9RIZ6ID#|=2D}XpYZMlZBfrB^{bL{EI-B8r((AaXPwO)qYx3&j(wM1=S8z< z7kW1(Jgasu3db}vF34IH3Kx0(vY0jC=-pT!;zl1IJw(LpeQ*yXPcGoYhb(f%?(&yQE{K${ zuv;&^lh$w@t-C5nxc)FVxynM{VR9AA@8|GhHv~}$R~+wsJZD6Ds#7V1MyLYEb ztVOwQ9`@fz7%Y1>+<(-#LhfX%H|U;GED}xg%(*FguU$QnZP)xj&L-Fu_TVYns-W0b z+=(Hft4b~Dz`C%kf3HlK7*?+0*pR!6FYK&vs409>bQ97E1Dx;MN?6hU(vxQ2TvFrI zCqqP@6~9y1zY$sXw6!s5GgYuk;HzWFL7x?!M3+8Muw{W@@A|hzQ8Qu?!)KMj=N+WN z9x7^tA|mM=1}>rkKZa*2^VIu|+%?E@CKGjquMHa&^k@+$tVWCWSB?`-dBY8G2+Ln# zDM|M4`+N8I+iUl+)NX`LGP2q#{8ADN(lePydl)bEH?29C zXTA%r{`1dTk9R$6<|#Art0rLBRl}DZQZA_8?D}iR6TW1C#pYEm#bXB@G#VdPFV|M) zclGSfgzoLr#^8eER-0);v;nXx;78F5yu(1zn8nIX;&|}2h>aWugK)p2`=8q?rT?~6 zy~0VgX?S>&r(P@!^4sgq7RSWBlR7Hn-s~b0kb#B=VnrIuyKnDXY$QH^?q6y(3n|R3 zCo@7&?C1Q?#tB|;z%Eo>eK0`klF~EZ+gg$1;+4>_1l|-MS=Ddd>N%%DN~&kgW#Zzc zOu`Z~Y6_9*MRBd-__(Tcfa7YgLm6;?Y%zVt)?*jf~uxKlV)!6E$TwF2TE+K;$Pk zDoWqJR?l1y3VxM7pzTnxA#>=b@a&ox4=xm7=a*oKGzfA#@$de#ZIVc*qgVX~tTunp z;aAU5OFXq1{gaaEpI&QVVdF8>*F5W)L85^|E;KxE0`$69K}6E1eD^gsRnpYoHLN{; z>}s*DR0m%O;I~~=m+O&McCg@W!_#6Hr8xfQOC%n*^ z+kNFQwr)2t=1MIQpVIdOdBWk#@NGy*GLeBAkc-ay`5zREcM0hX*s1I(%t163dY4pHt3+=?*Zks3vT>v5w}E#6lH=peKKboyN14>RP(9IOq~Bd zBJ0T?5-C#L#y`(Z!%)#6jqH@FdEV4()XEfsKA!>1)$S}A*#&nxR5v1Nn%ePxEezqJ zg;$N7hlt}OQ5GW1d{1t=C%Bc0%W&1|1(f?|yUN38tS90If%z;pjCd2%Sx~*MYe~h0Eq-FR2lYZ&~QF&EoMsdPxV_oCL-P zwsI?-2nPa_Wn8bmu@Eg>sU?>>zWp@=+r8l|;i_b)YV(M}zn&t^BfBdy(096jck#MH zAILv*2o!jkYD7*M}ImwEH?G+R(9zFy2+qOiey`{5j|_`jaAJy{B9Zbc+eV5Q#Tj z6a(uvddepK0fM&3wr^)ag_#oy?F>l9@g-D+jcsyX0q$G6|E*e1)>GqlD2$Dt3zf ziv_lC{Dk+44r@o*Pm1MPIMO`MZOGl`^ceQ&2eR%j5q?$Lg1!Si%c-u@uMyby)NIK) zvF7Mg%DuHWhWX}s-N*Z&X@aY$hNHZmvx}M6Zy(8&drIC?KG^w<&Z6AeijGZU5wGLB zi0+-Zy0I#gA}{}k=R}wDNTTPGs-lP=6V73?cpPKy?=&$5dbTDBe2v`9uol+$dH?h4 z_Ez7^Dew6EzMl-o4&U_W4`$y@I?On79x_YuBFNwa?7uFeF75>e^BsMMDyYC_oK#)@ zv4y=M^L;@&6uY4Xhk{hMwH#-6Z*p&c01P|G)hY!qfHAWStUCkCyb& z-c=@gmyYFKOp~)>iR9i;tKTlWM`jj5Z6*d8(svO_=5-H-y%4&ld~9F-TMHmfb{SXF zy&&l%l5p}>_!;e74Z-U9Fpr^j(LA+O0y5us2`3_NY zXpRT_SBl)lz2m7LDq9Gu2^N6NqbWwUga*>tH=%#&pcnWFRT1|p-NEe$>qxOQuJ1jb zZD~nPJ&!Jvj)U%+Q|mI;HjZ!I(b)6B^~;lpKV;=~9QWXzJ8qS5Z2efir$eWo^Ygy< zj+5rKlDMy?(zulcX>E6csKioMpFonn@fTwpZ`*>w$Dm(@57piv$lne!t})MTAmF<0 z1l_cazd3tev+x4*N?k$D#Y|-l2U0=h8x(;3iydMAks2pe#C*O_2E7-L+*!~{;tkW+ zQQz)z7E#~oWJYFpe(JCVVyOCPV4&#kxeanRr@X=4yMyi5*3d!wtG7q@X3XaIyMvtU zOz5(s`U-W#$v^AF+DnB@l5I;@l9O5cGV6+hP^YwZs&$WZBBxFaR(XW>nxgKA5)`)s z@)mTd+v_~uq-^KyS3F_8Hz~<`aNR6V*dsnJE=%Ro=C3qy<-c))diLnezMoOTG5g&# zA=M^jF4dbx`A|?axalkxG)Rc9*95^v(BWZvXMw#)Qufc&KRpZPRWIVu9kR8#da2`f zu(#stEk9rmHcQ37Ios+s$MG#H!FCJL2j=!MAFUR8?spgcu3=t~Z1Gd&ApRu0&8OCq zRR(>$E03gV*7JIfQfJ$fjRZ~LJK-~IPho8oOpQh>b&Nl%EUUX~UXae2d*B@=Fp6aV z9_c_OnJAX%@Q?kg{BsUWbP-WJT7JxO7l{CK3*R^~Fu8D*F;N7O&uKp!WPwN(m= zm$2PSlJh&-h3k9WaW2EA8v&eAN4fLP8_IV4!R?AYf0zCEMaMUfQ&$DO*S5n1c(r5+ z*UcT4oRj!@(P&c)5021esgdR**?ci1>t8=2>$SRp{<1Xi2Z84<&T;+yy5#J2QkE}w zyr-KGf*Zp~Ky?4%*xIW}s#@sD5i!_~?VfitsxWO1cc0D2@eHC-d;}yNv8`syNlIm3bQnMNt9aQ@4r57e2D)_Ih|pmV{^Z>dh6+oWsW{<9r4c`3B80Vd z`F(-BV(e6O(N&eUeC@^c82{t6Qz6C=DQ>i;=KVfklL?z|I}n%~9e&>_D4Ik2c1QOf zyqo(`B9tbslX3;Igx?e+ocTDLw=JRsg`8HVJlJzywteo*hv>-<4AqxYqM2@*u&#YU zYA&-JB59q|TkPtyt-X6kgZQ;5=>Mr4UFZGHi5q zTk19-P??MKw<>uMQoeSW(UW2=%0FCUXOfr?lRd*3zwIi_+F##aTYMNU+@q+s&a2UT zm-bqQEN}i=)8|bsch47i6t7hwi3JK_n#g5`P%;8J7*vFX-@$a8z9X%M$_w?Z22qK< zd_2aM>-=I{q5%EO*olP%R5`+soA4l71RK*%_48d=h9DD+azb%XS#e8h=E_RWiB!Y; z^D2;Wq${@z+~f3B>fJohC4@o^Vw9NJ+4}O(l$)^n&;&pkDufn*|Bu8}{n!MRhni}-d z77gqJ;k(xzbz|;%kUl(s*|@a@{kIGWViVbiP3nB7<9yn@V@XV1Bza3V z6Co{YJFv()=#@Vr zZj2T(&cA%Ax#ezoVQG1_-HK$|jhe;tZQUYG(1al+VnZ7R^}37Cdh|Pk-|!RxU53Ib_?BKJRjTuB}9fAokwJyYFei2n_Io9nmb5HzSR*S=;aB+qH4F zm4x0(g2_8qt0d|l+}ElhT{$)27f50{G(LzTamk?Cd3)+`SowFwCPvMOBQ}k22$FdZ zxF_G_C>+*mE-dq@htaA1^Oyi`z!pZwSgbNcKEPb*xyJH+Fb<~H9AJEw{avXoGmVk--Fh}C@ z?Un)wKPE~rPDV5E&Wc_Q@P@B2H}nS^zV9&;d@j!M{Sf{<4z6qve7*_shPTb>R&xv` zN64i7?;|-MB~&$7?Erhl>V|ft50}0YK!~}hHVs`e2Y9dsf+2>O88$l^rPJtve_bdF z?4FUqk*VRU(jY%-bD&*g91{?qd%&@h96fdI;)>d%ce<;xI;J=ie%%8_jGofReC7?i zVXvr|oZfNdE$H-hpkN%ZTPQ4Cu$ioV zMt8!Ia2e-?4RJjIBFgpJ&u%31=9xi^tx^L1 zO~zj!)SKInDu>KVe<0cCXfCVyS0nsQ)xLG(X!#4sHui|M?SF|(QO@g9UqeeX18vvsyS8T@=*|AbNBs|024M@b>^t3QiHsi6vrv-VI39H{dF z>!5eWl!nSX_-Iyr}4Vl=^{Ol*9M7nnIjlxNmR5~&m%aqWa1h@$Gid6 zx-KA`7pJLKt1v3QtPSTHMdl6(NUO~r3mP0C=n4~ASRP5z8bJR;{%+UW+aN zxv*`QuV^w&J0e->{Tbmp64E%f;duG^mE(TZmAP9pIDvk_nlL~HT;1@@@q3;ow3#$p`3 zEt;bjWV43KovWo5O+SfB-_OC`acnEOw{C3dE0l3Crqt{o*NfFDgh|(14o21Jwyp5^ zr`oN=mRgl`=o@GXp1a=~YJ}ULcZ=ZVt$7Zkfw&sKSYLo-a&;bJL>6{lf)xNDz7Jdt zc9G2mG1vB2`=v$CQoWXsE#)r-XGv+CQvJ4)J#krgc3YBeF?8LD=pz#0G+_Kr_c3;+ zO(Km3VzLHMKJg{Gv#^ImYU2OG{JrEJa3(eh`2sgyCfwQ$M;zhQ`G5d$QPk(#Coe6W zaX8A*;xRgJLY{{dUQ^<^AI>gIM18g5er>vjugL382vD8$9tuw`#fz$p+1c}Au=<|eo>$zK+jkjCir~@M6MR|(m3FxgGdjd6N?e${6&9vURux#1n2@L+T zB%gY_O4l;#YY)1?N+aiX*WT){>C#0H6EqbhNik?nnGgE+*>5 znr$8`D=?nLctCH@0C>9n$wc=u1L;73P3Ec%htK}><4GWnKezU zx>vcG)A&JJ*>IUNcP3Vj2B)uBzn|&eB*ZV4ON^iTbULx@rbE{ zt&Kq1w16gO=lj>C()#wwBeu~1UG?rIhL4766rV>|SRr26s`I_GQ6!hwm;bIU*DzQ* zGA-;Ae{Pt=f=IlmJ!BtOx|2#o9`;=*B~8;x+@50=mT@B`29xSbz9yulVd6_WHmBy@ zXQPVa_Xk+ye(^s_O!#a$eHp9m%W6A2U(A0_U(OXS8f9hdvwHDdR|8f%l8-^B11z5K znf6jZ!Mhv>LD?L%t}cueT03;Jyrkf{)hE#Z7TarSZ&5R{4C!l-D52HE?1XRRJYo zBZCTB1$g`6R5HBdMb%HU+s_ny>DqDq_*eo zi&YjCLDkw;Y3@$T`EgsJ>U!6Ef18@yIk#@=ZMOQ4{n~^1MvT=O)nZDCKk;SHs#T}` zy??pT_do4yk200T$6ZU?tSeLPIVd*}dsZB=$dMA%>3BMw{+fdGnmF5{H#(rX-uu z{JRMa#v>BdTZ$d{7P|cB9G!l_dv9wUfi#T67G-$0%?^EW*`DOItT6_eDD^boCxwN38>TM9cq3GAf$L@TF0Z6x zQQhbt=RrTUc}$%}kG|xH(dZvh!XKDcxeEb4`@Tj~E>-_rd=c@ZKka<4cz5qz?>cT5 z!TxJ%^Wy4rcrwE2^HyNB<59`0N%CR2v*g-*S39^1W;`hFDoUOgTBcY>r(f95k>IXA zH&bQagf^E<-i}PFaZqId(S<1y67lcg96Gj%&nR##9}nyHLwL~h=4pG3r=YtEQVjwN zY94-LJ$E>j+_7nMe3=Zc^WKc9zH=@*c$Y+X5iVdQZRGm1-ds*rwI^v0`6x5ny&!cz z?2px$-k|4a9!X7N`&CXSU$wqDv#|=Tq@?%19WsIoW6~?NB`p;Y<%tN;OY8`-;py8= z-5sB+tYP-I9ut@a?tF6s|BJi6%Y9-(ghG8TMJ<1`JdjMXtw>k-xWOuAsIYDaf5(}u zIRz&X@8#v3%Rjk%8!nzPm?M^)C?u$7yCs*EoCQ+_Il%GdD+OMm{$xio`tG5tQS&Rg zgurE0du8P*YXRF%LkAvGZ_5$iS0x`03P%2PKD)ZPW^ zx{?ob_9RQ}PWDI)dZ0zpJn^Qpn|;|@&gKJ>CiE&8K_=oOt)nSPjVl2Y$$o#kf)8~$ zEk9sN7ujcL%vTyRE`>aG7%X#1Wu$7T`9Fl9l)g^&X!spPS_%jZK88g&oyRvZI(_CB& z9~OH0TldA{H_3o>x7*f8tbRko5!;gYwwh%`5}SWI8yl7@j7Qo}^ z$dYYs$IPQEJH86Rbf|QQhT89}Wk}JP-@3t^4^A(p$@2$Mk|nJUPJOxMQ#J3v&R_CAu~Zb*T=z;k zUmu&_f@y*vbBYb8(@=7+iu69Fw~%E2FM?hm3w4+UjtiQ}zkZ!?V^=ic{9FX5Fa&8% za-4!b|42x)(wU1ZayYd`bBOE~bbZD56CNL61V3|p8=RdJ?lsQT3h|W{hj!$n=24b` z3k@ZcOvUGUk2!Q3$2GvI`JIwDQOXQ5vF(#zum*OuIU0{SdE-n)X*mJhst>GWt>#r&cx+Nyknn#3e4{dOtPa# zQtuM(*JFK1hMA%wHcKg%SXn<&J>{&ib$_-G(HA81Ux^phFdPXPDz*_Gz|C*&f@(*w za)q&$<$&cYzB%0Hhs&vV+Q}N$YFw-BxU!c!t!MSOkt@!nNRV}d`?mD0ta^HR)zZXYbn;jX^*t@Ao^-%PO7<@ewCLq^^f4@H++XaFusEQ?*(1; zF>AOb@;N7;fTiC_Rz5~%A0tmg*ITQlpo-p4UU5jZ@VOcCch3E(D;{oxUz+8L!oQqA zO`#jabswWh5;8BFSLAYBBx$Eq9RG&IbIWtthlE9AH^yI@WH|97!l{&)fxuN51DPdo z)FufEdVZP;WYB1RcjegtlEx4 zf2r$=_cc<}{kj#{TiE|YK-i)?un780yD|hZal<64;ocdCuYdz|y@;<1$(|)7wy}4i zp2fR5zUI-ol|Ah2yzOv|K(2VNFpgZznS{b#@(iO38u1!HP;s57I8R~5B@z?yDiq+r zKN}E#;$SV@p_kRL_x_1kixZEpKl~kic7xvMA1blr4vG3M?Tfs~)n=!q`HhzO{0e#FeYxPOzFT=;4W2h%zleMdngsV`4 zZ}Cnc1C;Bf++pTPG+978MOsHhW}auO2A947znR}LjYWD0d4)aazXe}%i)d&zz371W!M;Fn&a+pYItl6Ft#IA*BC;T>EMv>Ap&WUvPfXhrwU=6+Yu88%GL>44l^v&}MwMsuPH^zA=|$i= z?4IqUxwwbWf3=DBe@S%rTyB~ z%yYO%Y7*4Iud}tx0KHY}M8OtD7T2nZ#uaj=v7{pHyJJl;;NjvfdV zdWJ)Hq8pX-m1Or8GI^!!s9g|iz`EZmT}t|5l=Ocp2@ClLHk(cF=|YtD3_iAC9oW)> zBNlIE@L5t>DH47&mgv_Gf4OMg5mpd}HN6xN#&Y~6z6Rm6nt?q*-y0uu?SVxA7Yi%boyFVN^J_Hbd?f{CF$Vwyp-xAG$suue451%D;3<{5ou> zZ@Mdw^|0}7O2uS@ao(kvC7j{0e~L)Wd;nfUq<_BLsz0?O!dYIzwiGiqZWLSJzzI2l z0uYEjiGBQ`MansYq(6$hYQtNFzlIv`1(w@~fs#vp#I=Nz+pmSSmKahSE1$_&mK>ls z;sXMC#uY$Ze8!Qp<*ZxO%|r4IZMU;pQfxb}n5P0cY*V|N)EpkHzOHb1_^P$9Ud`vm z358n}v9%^j6xXKQEHm1EKg_Gf<{gY#p_lLRHnSx5Poev^+lRnEAUtQt&YTI;T!K0% zt&&J=bn#l66`p2bm@r6u^mDbGBh$N1^VcdO+}SUPr1Nh{*wIFjKhiKoUY!JSl>!3@ zng$x4m&o8hpWlD(maz#&*gw%}cb)*S%r~XWQN)w<_CO4+j*&GyUwF(X6t;Vd=h`YPH2~ z2~q|{ESj3GIhNGQq%tuhM{VLIy4SZvp${PP4k@t|@o9ouvAjp{a?@!LwJBS%$aL{H za@q&qV!oMBw!CXtjgb1Wu-1XnN;EJ~7F>cG49%+4M>6lw5QVW{g~- zQ=3KcDXy2|U>bi*Wy zS5U1)mlu~e<9IXAy3Yh_*aYKzmP-RER8TmmBMJ&TQPVLw+GR;7dc|~L`o6w42gC@B z8rjxn&wl4wNO;9%(8SK79Q0e*n-2jr{-s diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile2.png b/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile2.png index a6b401f5649bd84f475a91ae5b385c101a8118e8..4b1576ec238e64494d231e2ab020696a6ed1e6f4 100644 GIT binary patch literal 38644 zcmdqJ1yog0)Gm7HE-7gcrCYi&2$4oXq(izp51j&{2ugRSbb|;8NXMbOyF1=G`v3pC zcZ@sk_{V+Yjq%1i>Oj_Bd+)W^nrqH)e)HQWOj%I|2a_BV0)gPj$-Yp9K#+VP5X5eD zRM4_Yq#y%+VA#pNbA&)}f5HDDd}YO@0F7u)atbfemeHtCsDvGF))W6Wz0`D)a&|Ja zb%5lT{E-Ds*iNA7g^8n)gSnlPxvdR^5QB~$v}3~CpWE8GJD8iAIYEl>{s@Cs+`p|3 zCI;}Xv`*&MCJ?@JJPdFI1Aau!_JfnFfrAM|$L=299qaGK%^i)b3_w>0NKI>HG-yVL zH)|L;*qGaxLRu--LO>hZzw@0Pj7%V>_W|4g+3mTlwY7_{p4zd_a}swjzN7){a3-cFPpQZ2RpkF*KK~K8*WrFD-8Nk-B<4YY79&(=sO7@TW-z5A}VZ z*su=gzAyx#$;OoEE>ZoG<@GD=)a`?m0r2ygvvU>7i@%?ffc4$gRlYfM+DGtD26rpu zQz-oN`#Bfn@!z&1d~8VA-!@TXq*fnxcJ_^(ofqorqi&4Zdi2zDgV;sm3t^UBBJ89E zIHkAE2tkJ`7Z(x%T_W6>xkuPG9`#t8i5wjky9cCdjn6|E>APr4Sq2tzay<_Q&o(uM zqgJhpqM8cM3+z|9p_J}cEFYq_5@rng_PrqAjbhfnn%a$w>|S8%UW}l`DK)I#q5Mw7 zcNa!~=}x0_WaMV}wSoKW()>ju>Www_(Tp+A;>qU7pc!vwV-8Jl0Zi4tqqEevP`7oS zhNFv^)$cq~$(GZ=@0%Xw>*?$0Fr_|qez_QnIl>Ro=kH$*8OCdRg*c-FAR@%E*f z7}?B*p9j6{1{WsxH3cnijoRw;d2PRmVs2Zsmvm9s=@nnh;@yk9UA0ogK5OAQI30AM zN(ue=v-#fE%rEKHDvH!CQu*IWiymr4E)YGxs-+9gGt zyKm@bwj*hm)dccqDEU{Gj7NlzvYZ+?SgTE@SPG#HGxi($q=C?A>0|ufrL;zMe0AUW zcv9({$}`*TO0Ji4*hw|UBthx!NIU&4@-_~iqr;EH>sPuCF5*P4w?~wF`cNA79`HsF zy=>0SMcZ#Y#-wR*zG*njv_m+X^JybpT)-~!}2_fX5 zM;d|iYn9~dSMu`rOq|5X=td4n_(KChjRRIU{9DjP9y2;FW<`Cvnch$B>bn&#@bsg@eWgVU{#eDO_Po4hg(>nDmmuje^O z{#e;TF*CDTLFf>{gGl2G$6d8fuwL){o|2hN7ZeY>IYi~7Z8}it+ zPnrU<&0k}`pOWy_xc-Ed&%F&o3dZ!G|g1#!LqEAvrZC( z<-}yXEiAWRmTtUQickhaSqf*JNxf9&_qXvNJNKH2ayfif!YO&SegEtzp_V{CGaeIP zz2K0YbUaov=;fdV6(tr6G4ku8>!**%-C4fA3L3gb$44ecMq5sMI2WZ8y-AQXbnjk- zFt#M9gJkn3ucPGrZcO4%Zz5YQeQNEx^#{&HWG!WbeThVc=|E?)>s*-iboJuSWQEND z+O%~NVE__d5QIh`bHb#)X!2NQhko0qITz?A}= zTg1nGx9)zh*zC8^s4VtI4`>}rlAC^6=XYn{W6i5K*|b-|CAwTG+7XdpKv|971_;z|u@65%z zLPC*hz0Ls|+T}az^LaJM4O_EU8i%@?ofWsYYS-Nf)8U>G@to3}##jO`wjezKO)79BYyKQc^iTH-Qqc?1cO77I;cc=1~=3OPT$+ZrI}#d=rhQ!$uH(X@HM1AG4YzeO2A5?*17Nu_t-m`Rd*D-3M@3Qy zEGF4fG@f@tc4rhmJmHzN+tm_ndTU8VXw>_ zC@_t}1t+W2gVY8;1Pz6*K@;U`0eOQB`cDN;B)z#?TXf7GYC#%fyw|Mk(`RZ;SOUl< znVQZ0J4=4c3?k?PJ5xbcFSWvp=dE)~=YlBwZGQH;kqLxtv-QXIF+zNIzJ2CgN8Kr) zw)wsiLgT|QVd|u@APA|P8w{O~s7Y?0<+gAl{v)l?X64mTMiFl-!udX!3`&rr*)^N- zb5?1yT=(ww)DP=zTP8dHxK{kgsU7XzQS7xqI?LBnXfqSeYNu$Ab&R;< zv%`qZ4_@j^EIJ0Vx*GxUO4wGGrxFcxY}i5LYdNKEiPQr5zeE#)8}t2RU7_y;i=nmT z&)Qm)7Z!5pgv247B4oKN`5mh!eizje_viUqcI|r8Iwdfh7R&-aFMRdZ7#noU51EAv z4<1L1V6i-&e@Zbww}iy@HnUJNz}YcpVZ4LnW;OK(#X2yC#0N;bpL*Xv{7hP4SM$Yt zPqcJOth7)=H`mOj*Z}gR&Wt)|gn1Mp6v-ZPrF>Z=$l0v&a_K_m@G$y=pXKEHT zI!=@DcI(Td%(J_j#K@AW<{#F=(a|f{&o_QuwNy{Xmm}hg_mSOvdpJR2;!cQ6tjodm zu12ApT4Qxp^hfGeCnq(@i2m$(ruU9Hlsx<;O%)T;DN^!nSByg4P7AZfCb?aJXt5nXvbXBIsRevg~jW*8I-3oI~h$yZnsS%lK12MURmgW}uSrVYYg()me*GB2_Zs z&iT5#m(ycN4Z~?_sd#zQrYjM;h@dpe*JZ~ayVb<6pU-{wbJRJNxHdM&Ywbn3bvIO- zYuNkFv*E60Z`Iwa1HHU@et#-oo$lCW7hPUJ zDIQU#O#776{;6*Yh>K>fbuPEM3l>KodBbE|ru0Q*y5w!4{k-@2;wel|Mn`9M;g|>- z8ejS@(zy889N8&v!e!WRij{L^dVjvUy|wZsVWbV-5C`A1r;}cyBy@n_7u0 zu-ih)nQJ3m{wl&5O<@AcX{T@}_wDt-qj%ZQoZB3-Ft3Y85)=(j_j=3fCc5izIq6T^ zzYbSkLX|p>{O^2KAkBY-!@e>QzD9#d6&6Uh9jV`l-5cMZFzk?C<-$tZrAB;aB0S6W zW~jeH(EY7+mhQ(_(XX#-)>kZcnyroxdLB#M96TKo&um0&^DmOvT5NfHXWk+2uix}( zyMN(4#AUbfo|OmPyGenDDl|+0VMk`TH%uddqdG zAJ0j{Q(P#)c*$^@XR>c>mB&S?*sNZ#ddcxCSk&w@F5Rz@y_!$tl!Oh5X7 zhvW=n%HJInwU66aDLAOL7KgIbEd0(#h$S%5pp01F#T(>?jJV;$kp@o$=6k|`7p~U^>@80osPfp z1G-nf*5VyGvSpEAu#C}ZlG1Z%L~QRjqRJFd!VnS97r(5d=JZ|MdS5J^KF{0J+vEFj zl83uWPdI%jL8fJXx8hlibUP9ul|nm!^cyxNQ34e@e|#Q2q8lwzD&)^Hj(F5Q@bdnU z1lfS-{WnbCg&=FZE`wRC%LB)Y)8yoFEP*1@0!^t_$ybP6wjLBG#E75iG?k=>-ALzA z5b}0gXZXH`t6PcEODY%5bARa$B-QgG(9pI=v8i1|t*KE_&XO6$^lls{nDDD$oefD!ogxHzp+kf9aH;TzdG58O9>V%I@zn?eHui(_fFDG^j}av1#39NpgYIFqNi9j2ZjgHz)>oeABEheei|Ag7LkFv+XwbdBB{X zb!~^R^^urbI`jhDOTwy^ujcj3A*JUKjjmtn?j9zq3T2ae5MH$=zY3&f$~aOwqU{vk zMVRZ`pXYD%m+RlTb@ovcahy!NuYQCc9pQfMLV-K~Aj}j60d28%CRunoBJe_aV&6gP zN_L%8V?8%ZUfJiZZQuN+6ch9jIXOE10#2XRrRcc#g`XS84U?~4UB$0H({)vjvnF@M;Y zw@>}xFG^%j>0L1)`eAUiJT-JG9rt$H@syWFdnDBdVf|oRB=NwXw~59EE1P_CVECivBB>!QfF$V=E18XUk95>{rO?-S5UOGzuF2_bt%n z$oG5YO{hZS)6)?ey6z|h1O%E@J;@O-q2zem>7<{jR^HsZOj(uELiDV@A*JFRZStS3 zpG%2ucn1_wTK{@=m_Xadsk_|L8Z0EP%&|s<+@|u%s>f!>q&7!_yJz*Rlu0VHvDu7Q z_F@ToJ!0l){iTnw1s8oBr-O1e*l?K{0r!jS3(`mxJO~PUIAN@ywvRu7;`u@)t$y0` zSA>cwXKlrf$msLasd-6IQr`}XlNmyxmDq5BG%(mzd>cvY>X+iRc^IyAkomq%JVAUr7%swKS0Sq5MmekD=%X zoo6zXGrZn<>uycBXN9!$cuP1@Y+MhrcKrel)jl~FQoDyBqubA`qNS^S_a4)!eDdm(QI z!{4{vlSK$qzX`%|jAei@Aj()#SH6iYPuwCQ@xjm+N z;2V@ah}kMynZEJKw>^UDp4Lnr`;I{&Va4YF4bsh8ei$L6k~QEvz8EyxJc9w@r{3sr z?6t}j3)OQM3+`>+e_1Mhb9dLuhk(@Oaj$BZb}l5)%MojGeo}Ms$lyt(zwb!+>KW%0 zf8N-p{l!$TU5%4ZJiF4&`cKKp*lO2hgp(;-CIX!mb^pE~i!6zuP+wRgMxjb(!P-HLIGC)Xgn-YY!y@iyDo6m{Mrdhp*?Y%T%Wea4}|_6hpMO#lOBY*dJ}6+Yr8QJL2KU~z2HaFL^Z9rK^qS&Dvo9rx$>$MuP@OeC*INRO?zxY zJE|M(eLnZt#VXz7VW`<{FNvE_Q(1gIOV2cFRe5J$l^PiC@mOrgFYu#$(dI)diQagz zQ64&!$?-g{&k9;y`;vmw)%{knC`!{QXwvZ=%?DcxOME6R7|+!6tlSwM|5CEIOiWBj zz$YXOn6_>44t4+f(bEO8ZK@ZN>@jI~t0-ElW;-k9Yv}n!V=kIBPJ$^p6K!p1k?TR) z&>2+XqQwp2=$OUWgpQ1LABxaRBf23?jJ5`h5NR?Ui<-+jf^{?oPYxYB7HJ#-fu!UkV3Ww*#Kuj$AE{ zzzk!oM4*iXx<|Y{N17EZxT*Z=`qfr9x7!~UCm)+`qkLBLKbRQ5I|WzHt#MoA7I2iW zU_m}Fweg2-y|scq#wDw`K2BS})_tEwt!16_?D3C`6QtEViKdXZ@1XWBDH<_uXM77% zleO2dcfHS~!wGanSPycOArF2Yn)_qW)P7I!6Xn6(`H}^Bykmtp-cg@)KJ~uwux$%- zhBkXd>n-nj@G=r}vTm(})J|RlajB>iDuv=XQ~_OPzW^UX*DlVGWUs5+zt}dWaPg%Q zN6r3s^;w%AmdKg$=h2DgeacTuoptogBu#mKu<`J_H4UGO6F$gkHDSHD#OBGMpIj{Z z*vDm%yY2FxLc!H!mWnR-P6Qv?Oa()49hkuQMz&&m14yeSczQkhiG>>PYCWyV(%voL zSy{{YS2#}7uF?z5;R$#l-H6LoH{#VFWSZ|;@2zxyDR)?Xb_0#oOX<5r?_m z;RoB3d|8ev8F`D{J&KCHyImGA)hI{Vmcey5!NUi0`|KG%ctE?ul5) z$~sG#(Iy)<+nUx+9+Px%JC%>b-Y@bz^;Eo~fysVJo|J77U%mVfQdPPs&FOJj#-bYK zNb;unT%UeXTzYdxdC)7k+SiTOFLbj-np}J8ye^;$ z$`lV~S!G94T4~q@j_ajf&>JF-LLMM6@fdnLpn)0$==^y5NFH7QZz*TwI#$rO?;w_a{hG3HB@J|%uCWbi z({D`?^X#;0qTlQw)kB7?tggycK|PwNEvm@LBR`0Kk^Xn#!Ed9G6bUG`#AUaV-Nk_c zxGQ=`M+X?qM1w0Q8wnOB78U^s2|tNk%+7QT-sR<`nS}-U$Z1sY=18vmeOE_En?Bb< zqHQx-7t!Cj9eTmbz~?LCx)-RJ+n(_&~iMgbfrJ@W64RAsJa&S-Y#7h0Ejhn8d`wZwz#F2sGX&F}#tq=)e2> zQT2;4h;j+Pe*H?v&aS|Huiy7V{?)6j%~Ovi!@J5#-Xsa=++wAPiHRyB$I+>&i3#1K zM~MEkpmv7%?%g}pE{>&}>$6=X2%Anl5oi_=&?w(&!!{N9YhW8od|Q0J;AAfHNaez@ z=N_GBxGh|BkkiO4qpLEF%P2S^?|PLFN`tC$&n!T zP)XcwDyit`MBdzZ&3GO64fBFCE_Nyg%53Mw&3MU+^jdUd=2ljWA+68x!~)C8xOOJW zk$@$DtHO&|s0!D+HS@R-U=?jJJ!quByceNxa=$^vpN}80H=KkUPAMX#;mh@fLE$HS zqEb_%!RQta7TZIkqNEiSab0#M5Rw%`{``5Z?Xj6%yOv-%(?1_Gq4;+h>VIoWzq7Y5 zNAZ2~IrlW%c8wC8p6Fd3DtDQR{q^)RRkPePMeX5qAm^;Fp=` zNs-Ph&l|IlH!{kct>+`}OPj`M{b4=LZ|(+KUKYQ75789AIe6Y+uBNI=v^{Lb>(X1M z$rcADMyEWPB%R z%fH>)VLF=Vd$%DYfvAtea^fMjw6rvnpj0@<(kvh#fKTrvf4vijcqTPOF@YC@nVA{BtEoLU(hXqx-2r)hi2@?Yibc#KUKeFV+N*18 z^~8|iz(7bDYGKLvVt8gk|JIg8%^ET69&n!1k*ut&NczPFjmq@p$$z)F(;?XxhO}tW zBXr0@pTPVJEvG!tqrG-Vo31#ZUuaWP-Y~=@r*)_``=H}+Z+tk0- zAqcVqQoXazGK6c~uSvbOe!ogD{@ zgzX`3WX4xk4ft>H9Uh(X{rh*-r-~Z7UWYF`t~x54F4qz@E6oV*4nibqzXrE`{LiI+ z`GL(dX=u|a4(yWrTzN>`%LtNpVDjnm*A-2h9K#(P9Cp?Yd|bc%rxt*djV-p5M$AKf zi%JbxIXIqW(&LFxrCHPz5H9A_We><%GH>2PGX}6!(V0SJjqyBY6kI0eyI}FP| zx<2|Bq|HvsF_``alK(NJ|9@rZ|BukZ|M7fzHWDs;Os_!Qon0R?uz4m^Ljb|wD3nf9 z67=_CqU1@k?*{SQ&Ur*A{PX@eCzvw?hnz^)4RC5Y#SJe?qVhw5+sD%ZX+QbYj`_*VNgX6{R4y>?ZenPv(et%p?n#LxN zh21eU+frQ!;vX@Vlau^GqcbVvP|V{Tgt;QL9E^S|{&syXpiV+W%u1At=y-$@u)Dhp ze-y3a;8z{b#9}I|tCxVcLdU`R>JPECwPk*2Wo;caY1Nq}_XVGbhKvd811ML;L31UnWlo8UveDf(lyJFMch2l2-S*<)Rp3g|% z_52mA*ES{j9ZKeFyY1TwAw<0WqnKNv>8tpK#>1nL8(Qz%-DdPnHiOO#+_+6&(#=iq z=g*(oik4gt2Zx6I;8BQ{R{x`_Y)O)sCyBSWH!yqO($dnA&HDO!JK%ONuC5;O@Hk+r z$p8zYNP;^|{h2D!%-k>+f6=UlKhV>ccn^dDlQzD}F37L9Au_kET9b2MK~2OM13-;e(G?cvGkX?k6qI~YHG zn=wzD8LweaEHg)d1Oy*hs$i4Y@-!^e%u3-K7j12Bd#KBgZN)q748 zkd_<&K9&yAjXH8f)87yc3iTz!&2<;^=Il>W)-~p*YB16?Cl;f+M_s#Dk05S&?w@$t9l z{`wl3c1yo7yskELA->FNIRI47+RTB6933CesHhk*A*{&Ac+_#8m6b&xD}?YV0ZG`i zzp$(fA6WeF-@lcy&kqm%fY}3_4^{|GXCQ`NMxQ^i+_-zNl%~2D!I!nP@yI`J*<4FY zD@`>Y|G@)8fxRG7-A{KdTLpzXXG35|*j=5NBcq^z-8-;&Brh)yDx*a094CUsg@w;w zzC`)Zmk_kEv4N#ULNL@}_G}d5@+}hm-1YwPjDdxU7v6ESbjaj}L&~MZnBhpdNZIBD z)gVV=6l{cZ=Ytz)V0aDaz)r>1>E7na^~D5!D?Q>6_+-AuJ!&INO{z|m#%DV?-II!l zh^qv7i9hYa)plt}hhdEP*w`3-H9U_0?(X*MFl;M$QwY+}PQHr~iz+5&=9uRF*#_62 zC@OVzb-#OhRIwW#4(~>llyHPl`D?pOnoQK%)7v!c^20Y6qheASxDhfkD(X)wmpP*P zygc-Z4}H&6RUZHVicdii0k$2%Y%mtc=Xd=_BcyC?LDCa3LY_{@sJH;+G>YqZ7#QUZ zo36jicwb##JUgHL3i$CMRH(DFGZQ;IRlIZJYlaYsA7I%KA^bKop+Kr3j6K+~>{K>2 zH!-2PDfp&vOtnm0duV7#_SLJSjfMT+G4y!_1?2n2_(Ou*?yweHz(%ZDR7o&}cFp@7?#lHK|kzq#^}zs>9P$XAh%y8X9O45)vIa3xB>p z6}t+yd;I-1LoS~%#BOJTJHE*q(|=){m5!X894p#2nYL97?7`+kXkd}+=oC@SlT#Cu9JC-78Z=$ zn#{14IO}i)Zl(va7X8F6oX&Xbnwon8a?^GAb*}DK&z6}kkGVHJmu3%ZJ=#}syJjn$ zF*x+dLSQ53&l;@id3AOr`WGWbBw}(16GQgy+hI(e4XWfmT_qF*6?QA0wNJnMEl6HN zluugk3#E-3$nfR`XBXXUOT{0Gut9bbEyJqh0>(PO#>VPz4rdRa1DMAwNtEbHLP{z> z0CCpP(`|Sr*Vrf;3og`` zz&CsZk>xWwI^2ep%DA{xk2-->eg=}HVS3wemYgxea(Ggyl`1>esL(97BzSoi-fJ(N z5*Hgwlt13juNM&!5%cX^o>^2PNZLqs-4G}QY@ELDwVefc>4kxe`|vk?wCo5R-inC4 zCkMd+pOkdnsUf&9H@9muauw`t|Fbg}Z2*%)!@}$ZBU4jp5)vp=NkL@P=lQOzp|Q@p zL6{g828y=aj%%+WXMMvf3d2C=M*u87A%WbS{Ib!P5AvX)_x$+SQBy?q&6^<53>ly5 z0TDpkef6u$W_Wn`&zU+$DvtNXZ`-Z-=^s6Mrq$9Yty27!UR-=`@k|e0L&{H6jhKuq z%yGS6NGG_ZuGf8!2aJXH|VB6iLA#f`d`b z^}?>-HFGX4FQ>mP%yu3~;FBlkEYVA0n9lil^-7l$*zr4sJd7i&mwgoQmCt@D530r-s6)EQ3zRHdJ{w>5eUZNSVl+?Pd%JCja z>3&Hq5KSSb&jtZ?^PqHR_mwD!F)2|{q_!A8)df_Dsp7+|wR8b%oku8MRri7+pCxG8 zsTyozJB1u>yv62fj|pcgox>_A?cFA)zYdrEYLK~;mS0-(epNW1_vI%MF!t|FAP z`2rDaeLJDjhgpCM$amkkyS@I)l-O*K7Z1BZhTS4M5F@1ne*SzGBBd%PhcP@dlD)b= z-=aqlSo<8i1Q0tQaD4n(#_ZhM+6nVP26X>e-G~l59OLk z;?Nvm3yF?03T%Z11UL(am&!e!b|3EB<7;PUeG zV-lF+;^Q*`R7jBE;u14Cs7LM`Ng ztfHbae1Vl;XWub)J==V>#aiRv-{xUYeEd{cm>dvgZEbDg4A%YCrw#kfYP`%&Ye4=Q zzPZvCo0pOCY=~E-6vo;K8y%Ismb2<-RivS$ESlJtiK3L!*H7bZ27@UV!@$I$Di|8~*5ziq?n0^Mz9YTZ*5F)N=QKN*gK^TCw2@oY-QKrN_sVb=izvvh4nR;} zUeQA@J%?-Wy$*#p?|U`0EO{*M?G+31pQc!R?F?I9Wf2#P1n7XJ69}md^GpL}dl7vL z1+>Lks^ECiNJ^>ncJF4NlVWgUJOH+5H``E92g6$QYlkxLj~BlO=9HO-!NSDU8bu{S zG}3K3@QYm3wehf%B77Clj&zKSroT611q>8kzg8c$&;`tkO)jH=04X3)!Y={81E<+K z6!fK}{7&u@_$+s9@L$I3dgL1>ed{+(aYuy{1ng#phL2PMKQ(ZH6H;*t_xBCEpKSv) z-!tU!0raMBaSu694DPn=TtT%AW)epuA|?)k!?M0w0PU@;icYp`w2C`HJk6$XxGcS0 zx<4`9HmIikG)Hm3TWNYEP=q6>~vh;n3V%6r7sEjpv?t>Khpu8NSw1T}o_MT`Vpx z9&RGi6HrjVf{cd7YGF-&2i%DdD*GN2Rd)@a#-lDf(JWY1$zd!(2fD2RKe;b@f2=ksP_} zKSPHP!Rf%eHqfB_^4?;i(Wd$Wu=lVJel8(YogneENbfXouA4K%dkLPZe{x^BQrBwOCZL& zY=MpTM>cHRe%2X=Bc6_R^dT~%sEBQ4eO-PYu$(ixDVeP@nL}WkDw3N{H!9DKs@fc{ z_2re6#Q7-1!+bzT)?swbfNrcsD~Zw3(OT>cz$_|jYqNpKb~em1*E&5%NiApx>58U7 z)89pLx;$FNU3Wd7%&K!-H{6@4V`5=>_T~*SFdmGG$sJy|lfy%M!PnI4wV0v^mVGge zn+wX5<67a{F5`3|Oyc6ya9^aN5;KyMOAiP629O%#?g!?{(Cg`WyS*8qn=a^0$gC4c zLN~S@=d!3C)^b-Be}76Isrpn_X4+%*tHvvVHNy(6_Y7aU7kykRldF$)(5G)%@aCw# zuJ-pUhO~ufwzJ>m8B8O)KMpgQpMLKyqN1f0UfO(x*}BlRsoxdRSZArA5V_Q7!Sj9R zNZ}9QI?+LX`6o$8ZR_henQ51?n_I2=^b|04;OW4T(Xla*^>%DN{SC?DG36yshi#+n z8t1_iB3(h2FD3m?s{4G=de;GbXjtxkM@F9!F&&5w3Gkvtp%QATq3OaT+|BbB&s=~29=&d#BXk}=a5o_vCtABN}$+CPlyfajpuarc*?xByZh49QzYm0 z_az5mp(?H7T0d8pr~4ZkP8tZAg1U1GcXp}81gUbLUG*e1_oJ&fiEW?t_V(JZ{EkuC zyj0CrZR_en18%_OT4{ypfUv5ns_xGK@EsutJ0NKs92}%wEv~R8UKerM`F8RVrq97! zOYuh*Z3Sd3s$>KK3qu<#zXt~J;8#e#`W@hH>fz}Lj&X1FF24lGuLE2}Syz{1%ti=n z3Bi&*&Q0e>@wdCqRyKkN-aVm>po zzSsv!KBG8_J{rtWGsExr3X<)&nFK2$=9-*N5@TLOQq5n2Psqb=p%>)7e1ew6`;vCX zzC<_Pb+@&D69ndFG$jnXha2Yc3NipUsj4a2Q+3V5mM^Z6q@LLsL$tPMZMXP{o{ma> zD#hH@3AnegE^J>3k!Qp}cOF`QW?(=U$DtDrswYgr5d)QA^r(}Qli_KyJ5DB#K_OoH zu(<{fm5Mb%yl@gujumgxwbiivQ267As!E~Rv^H@Wp3jS#Sr-aW;>-OV4V(hV+p!Df zvTn#4;dL^;T-O=<5S`{J2j2d7^=OXM)-`kz5_&_wM)~JgmwCzi%3yro0P@aLXUV0i zt2N{$C!nO%PrkGjq?st9o=ecXynQ^RFF@`(4yM* z_4PeZf$4M6K7MR0JCM=Y(IGc**_R|l2*$#pXG+`5|8oqFBY^75;^Lxebj8wnP7cGj zzBK}z0szq#*Vl8+qV@`2*S@Nmw0euYdbBq5$o)Iu!5)tBD83-<4a`G8_T4nVI@q1` zK6v1TPv!Cb{qbm3lBAjj`z%jXzAVjhu(!7#+;j@R`E))bq<*xP+A7)1 zz`&4ER;C zjBH>JKuZ48iofB;L>#n&>_~0q;5YP^#FBJHp?8Jq2S6usEjc0ubp)xbmB|`6dR7Tc zsdGaWW)@XiTa8jhn`Ty4v1>TExNk>eJG#2$`zShAdn^|~ewCbKnFSmVJufejbS42n z5FH9!XkooBXDRYB<}Nik-rb*{ zgd0t~@u`313JQS$9Ws1nESJ$Asx%*gXAB@V`~puWVbdMITHx|El*7i~B+oT8Gq0|Y zIyd3okL%v-HC`fKTN^6|#IiIsH!(T`9C`Ya#|PJp^KCMIU*uE`Oweo!Mu$H1_^Y*f(G zqrpZ+dd)z{0OSZ8#~hh2y~J8yxaTgo<*tLYdbp5DyJ;%Dsfh|Oyi!t99G3T;@*uW@ zb8JJC%`7bg0Kzmg+equ$1Vu6f{zPu`;VgR*#jsG($-sQDLAdVC(a$1&ZLaZndAdma z1nzPpGtT2;XM;bZ-Rgy!2Guh!#$_3`x2^KuloPr341fA{w;@KsuG8w;DOld%HNNpa zINS?DLGIYEOLeyqs`+ z{6+YZJF#zLYYYD31z;g(O5Tvk1FPfX_x`;QTxUP~%I2yL)?a zDOgk%eKZ6Fkx3YDkeFaI&Ztx$kfs_Uhvnyx8run0;PnvXpEtQtj+l(i!Ee*D3Avm! z2Zu4-3VjD5w2zb}-DuNN+|J)AcIzQ>k{6SH^5mJ0Z$-+S9$8m*c5%rlER?VRPJ}Fl z$pDHXvmWjjW)uVD0@I|j(I1pjpO3*{A=TCVCnqPZfc6G;2v8mI@$mtV^ITc^Q|~!i z)D!sCc4&>5{?Zk5#ynE^$jk?TUP;6UbbSnCV%dKb>E#s9ZTlndOT zh}IXIWYHVX%37G=HNe9za>;*%Gd%9CQa?fWqZKoblz+9enP2DsrCi}h_**l4^gq27 z{GVsG{qJ8M{(rmM$9E8*9H2w@KN;FSh4_NV+F>V!pEhPeg-a>{r+s^R9E6(zyh_lE zO-uyhn!kxzWp+-^BLM-JO>L%A_he4n(2sw5Ack;m4B)2Nt8Hd6fzJZG#nO_Y*X=1R z-29h4NdyW|iO9Zw9otL_82KkpUS6fd$A^8Qmwiny7_ zIZ*US;R8@!BnyKx9j$z(lh(kCoKhfw=p2~J7mh7O3d}u>{HGuyhz#d8M=TiG1fwi*I~$0*c_%D0upAi+ zZUJfyhJcgA?Sh_7n%3^sZ=>q;13so4dha8C{ZBwd8VM$8d1)!j^pckx2UH|>b7Caq zYuu05R21N1q)M&g_kKCLr8V37((3Qt<)hpD$K?Lt_Qv@u8R+gc8$YU}=j6l#(8z`F zGl*>A{o2140M{v*IW)m8Lz(*h`zBY}KeJ0<>Rc7`g|nm1&ZllgS`SD`Lz0pxjZI9L zQ_dTfqeMQXrb?`=&f0fT0a+7e_v3%X(a1a?R|is_9gAxqUh$LXY;vm95Q9q~G6B>g zIC#Rq@aXB&k=5gH2n?P7-fS`EaLW z*?+G(Z}?i+kIZ&J;$9T!bRZBqIyyI?>XNb65l+V4Z@Cwzc3be1%JtqZt~mgj6n&7} zYS!4y=4G2d-kqr|xSQvci17NR!w&tm!pQ}HVaG3Y>3jI(l>=~5%d?}yMb3_6b6H5 zAujEJrWmz270e3dKqV}|*f?D7I-E33HJGh;1}ZaY7Z-k;=F1O_M?I_nIZ=-Dynp}x zFq7t1_KE|QCo{Xcdc0V_DkB3CBtcYTmDn=!@)3`2i;IgxBO|H)so`RZ&*z~uz@=T> z91jq;x7?n+x0)zJ05fnWnEjEV9)z-s!!DZTy@q{hIBCenz<_EAE9ua?ztRBuFrVMO zAH%}_s=q*5*Nzcf?@2+IpDRb=H}54tnpMpT7gJ+|bliIAD=tfU25k@)Q7B;^CjC0}x0_)0vhR(6YJR9Ci%>@c<~^83Ee32;;E` zAp^w9$_lR5B5q4H>-Cm&>j(#swb+g z6N!F@O3~;Sld*Dg#&6AnNY#)Sngpxe@e z-tsvKQ-M-6C4V1LqHQ?Xl;u{FJdknI#g!^e@YpU=3V?Q8>rZCIiAQ_wke!_kG>oW_ zhBW!+Ik2&F2MAL{TotuYA@L*Pz`EUl@9;0R1O;7%G=E zK>QfPhQc?BYv!KG%A$juK8>m;^mx-rm{QQL)g%K=+s?p6&?c5vIMRO^t7K4S!Aj# zBS<+rK{X=+RA@A|Akw-<=$c4$<==CYLiN3;^caZI; zeiFYH2EGWtoCMDr=mn#L+kS@?xB-Y(Xh1*o7zOHEW%R9!21*H1HhAL%7LyQfiGpM@ z3RJ=vum(epYj}OYy=0j}R{P%lwZ0W?&)q7`GJOPpe}AI(^}fUqARy?l5sWd@Mry^A zxEaj!mry!*j{6sJF+4Dpq7IO7FagIte*Ac-Ee79!1TivX=cfPh?LKB!|Mxfk7!4zz zfaNET7z5%Rct5QFtG)MtYHC~8h9hD}aa&OkEMUPxFH&_QYN!ed(ov)rr8gm{Td_b; zlwP7#5eP~k5L!UgC{;j&kYH3wL=vI`2@oLPyKwLO-+RwJdGJ>&l48{ZfX0|{Ac zuDRxX%kw<%yRzpc{|w(##d?JwF2pl`^$5xm;A*Qay`4rGI+3ecI_%vm8d{!&_zCU1 zcJbM&*frZ{@7oqA#>j5IJ-m-DY^$|Pm7cK#Z>#^sbWOe4XYry2eUo}w>?~dzLU_P#c67t%XiXsFl}H%aPY5M^VD?5_N4mN(f$$ z99@fA1h0>_FOPy3)Ty7 zxTn@lEQ}D<9=GlkGSq+7kWarsiBX4&k)9NC!x6dQ2rKo@@}`zVS^jCz4JU zcE=B>lX|L3oD)p)vn>iIX)}vqNb~HKTTtW({%!^@Ff44QXzpRNbFTYSKhkVY5KuoF z8Q2JhPenrBh}!> zdVPD#t&LA_DCqZL5|f&T_C#AD*DvQfV1Xh>&OQARQWGEu(fW`i=OEc1NoFK*`0+X0 zmrsBzrq7!d^x;(F?EH z;$Q)q+K|Yg7OGQX0@)7cR#p&ZTqPW`i9MD&+=5;o^mEH zOgl6)NprV|-Zn|ezPZ@rPM^gvvs336|1^K;3qrMBn!DFe#Ym%BDit*ESH4BZvmZ;N zALbR@Y<&De{>o2vWY%WA2ZTN~G+cclpT6qq?%5mXpIpCw{Y1I9Ma8$tsvKJUYiabb zq*v$Yq?eT&$<|`6Fe#jIZTmCtB#E$t>A{j*k0TdrQa1 zs_4B&!M3L{r#O7a$Cns9LU4O+6cbI^@i;gY!<5pZ=`dKSfnD-X#2@l zc{rH!QTs^*aw<{6{Y9smqU!_y&>aa{g6|n^)uzH-z-wL7$iRyLi>t^3v8YP*1;omHa#vMF8DNkDlGU*Z(rEmF z)7BCpE!x*Q*-f@YuQO&oDxMk{u*N_>*MIot_T_%wY0Ii?9UKa+i~HDw{qdbYd4nHuh6=x@)8E)5FH(@D!*;pwxLM3h@cw>@9aEVc(%H>XS9Em`5QJa z&f6;Iyd>+3I(D@dVPJN4nxNHgUO}^~)KE_`Vy#yruyqor=YBV@N^$N};T=ykYh#gf zX=|+t&UigpbC`Mhx0}fvU zAkGhwO+%%f%4bQok!G637KRxnl)6h5G=r{*f<~KtcXomuRW{zJfB$LsHv-o+85Qi{ zD^YkxmdeAA${L$@k4`ehkSqQkXYmHr%MJoeF|Wb#dz=+D49yO*LC4Em!l(7R^w&%3 zVV`(tNy_!>O2$nNH7A{@U~qUt{5t7<%Y`BY^V$_;IP6&&^ZDe1dz1@(i!GYRE|psw z^3x9DSUf(d)4*IZ)mtvyq~MHM1?{ZZP3{!+tektDml7?1i$6CxKk=jszX@;hQAO9q z!2%&-Kb%nT*YQO)|O^WX(!6Yj)Iznyf_X>|6_+*Y!Ws^VN89Fe&&Kq?H-vc%rq z)z$U;6k_*2fvZd@I$2lLY5mUBG&{;Cb< z#XQ2pX^AI;s{3u9oXhJPdD7w5I}X904~96{`NzGt7qhl6_d*Y6`E^~dEUs~PILS(?XGr) ziHevAYwrAzpA|a3C4$PC3{z!++gx(=QFF6lweIq3bZwVfds86Mg1Hz!zxY)VLw?ky zRbC;}Q$MnS8L!3f!#aVRqEEwytm80$H(4u8lvCoKmC0~<)!{4Qed!X7Yn;XoqDhMD zcUTX*rm)K4^4iBI03Hj^2oDK)0yTrQ52KTQJWN=oYY8RLZn~}nr;E`Et3mEaUSB0@ zZ|j1wL=)*sHf#3w;f%mz7Y0wNLjO&7hcHgYcPbDdX8);`ag5^A^3i0T_Uo!-m4 z`?^Nd2=AJ(1EcAIYCP4bI|O0e`V2ZXULn`7Ddw~+hUIsOZ2Y>Cs3bFL807@$D(ku zsR~*zYVX`O#OHibw}_Ya*A+blRqLVlc-v0;F1XMZ=jP)w)bMvXw5WAAA9K0fF$q2J ziNw~$cKDJKe_eun_0E0!DqaxXW~os`w-!_1D_4qqDheaXC1JJr2FGVVcPJJPGr^L7 z3#tynKuERKF_*lUu+KpS=k(!ecjw&P90|IVW#8vZAXlF?HITdPa#H?M-GQ%PPaa)+ zfL=i+m%#EAPsU=geq?<$arqX`mlSrbJ;$Cr8GPl67Y^&5ysTOs>twmpl`=g&?i!kz z?^98IIqn85`eNj(jhLVn$mGt1=54YoVheAJ^M{}jY;=m9f#1L0wlGiVMJ*m`pe-z+; z-62}`RTwSFQILSd`H&f$W?lr^Y_0Ij{9JXvWnuS*n~z~^2fO?wPF!y|5_`OH>2WkP zktC*SR2MmCjgCKH_X8Hmw*U?Qxs-v{NTt^TK1NUiml7|1 ze?Xl}r`YQiTM%eC>r}TUv(2#$ErP5FUx{{a_>#ZBcKB*=hq1@?AgWW_Ol`MFm7}%b zQE3}rvJ_1B8QY!t;@;=5Ta(E0%}Wp5CQ||PFvX)*qNcue?}s4pfXLN>ALl^$76$ou zHcc0TD+2YQGz4NJgM%-}-~;mw`YW#;aZiPL-*0RVw$HvKU)gx53jakN0Gay-NA@Qe za1AS01PxCq8-sjBMQu&{`1{exO^Hrb_(E_#2Dv}Kh6}*BT~vA^5*GtbcH4hSlm5m^FB(t`H zF9Cn09F{^`?^^I~l`j;x=D0fM45yD!ruf2+t+?%iOLtv#ue zXhgDYiwI>b1n1?_BS03dytcgpqk1vfu~Zh7%?H%gj?2*dKX3yW<{*&zryS5lJ!&s`|&S zH%(i_HiWQLLNZ<3AzIqs7-QvbLo{%)IJ}K=A9lsrLdXjGLsvJ`16K!!&dmgl%|R1i zKbfq%1}@-a5{bb*T3UbX8)}UV+FfJ1d%X>QR>IT>j8MHU?fB9o`+lV>u#%)L*STfB zfxt`ZJ(lFqT&7U1=v)^g2Z@yQ$m#uIg+j0Ow1>8qjwj`f)LIa1dyvRusN&|nA1!r> zRw{Xc61Yk5$8><3Wf*GiR!n)-mqwtl& zVHpxS7M-eEebsa|rjxDh{O_C^xbPoRbf!Iq3F73*# zCyq74*+Q7%ZoW`{||vkf5*FB zeURrq(}|oNh0@YBSje3IRlwD;$3l+977qZ`Nm9r#8B)j2%*{8ATe8U@kjXX4A0G@t zM)7IK%8e+Qf6GRMuX>cHO1}-X149>9duW7nWC3#%Y`U>3$_lUzIc)@cLrrqp{^*mOV7A2WPb|{*W>B6gj%QCq&kTmL+8b0zqCFOK}3D{}m|PI3HaR zJ#jn$Co(uIh>g+lC*yy)Q@R4APG$vr(d%r?G~fpFxQDUXb8`{ZnBd@Gdf_rVaT@8{?1 zq(M+<3jTw%th{BOi`zHZGQZ&lhrdc{_rmTlE&sLIM@2By==${Z^xo)_7C$@7qif%c z*W57W6!naLn+*G@)lN*R#kB|8$)K~2XDjfs$E_g#Of}m5D{z6I!5@I8ksWjQ9x& z#~u9_@K$$l=J7eO&0zy=mTax@D2GTWKdd&B=JR?razbAD--d;r>~V0~$U5-8+jP*T zIMKS;Vyu!yq$a$KB;!0OMWrccwa35l_^T++SlnvNU2HQkX&XL!D0h6d{9$m04j-iTh-uvQLSYVxO5jysH6bv$MBvLQ?2UaU(qb&j`lSH$@K~Jh1(`KdD*u zB)n}o3Em%KX<+-aUxx<-fU)s&0?e=b?OXI%rPtf9AZ^Rwt(~dERpS&y^uUJnAsEk{ zozR7XeR^Oi4B|WAdr&)S_b0^Ckp*)lb3FeW06Y$bX4>|2$4Tivl)im1TKU@cd(r?u z!vWxaLauS9)y4mO8anjAj2(rzsAQFeMP#c^9aU4fNfP_9Ai2sYF(S9@+y>E7+ zwN@KETuYdB1IXrnwnbGDWiY*V?}(MQdx*rRsaQ>`n)h~4Ona+PR&-@1@)h*r3 z>g$Dth0HO;7S^w?#R%qeqoWx0=q}}mk)!Y)SO+PYN672HirLCKwdk2e;alHydLe_O zTcr&#Qie&7BGDv&7sdBOXQK2gU#;L`?7&{^K>6g44P7G>Z^s3iz##={WZd9GR6*C0 z)7%6D3_;&m85IxNL8o##fF<*tdhyb*g>v1)I0Kr9QTUKSaV}9ouLJfbJj3<9M|t@l zWeZ#mE4(LA&0`+d1c9$s^!ZAK^T-onY>MB(<~Q)-B>q)@MTfy z;J5!%ZtKbEDGEq1$ju#!r$!J8FXSD2*6l%ca^><1ABGfEIv&X961S_%OP=&(1J$m^{IBJ4Ujb$l({{&^?0yPIFJq zbKjs}07=c<(Y3w2qiYATYMk)eOzq=lTlG)FhZ=2?Nx&;*NK-r6?z^l(}RnMzJ#)oousJb&DUIa7zx zyZhP=k0JJ-9S03t6ebbwhKHgi!7pLE0q*+(vD$pM~T7Ed6opblF57lAg4eLdX*zaQX5hc@c!V zgZLEwWn^so#f`a+@<5W|PcyPgXNCr6f@Wp%5%-skOq3Kr!3CXvmZI}=dYVM6s9=Yi ze@QvG%XTuL%bCKU)87R4pNRA1hC#Yp`1axjhO6PlSjg~l*+4@syMA=6SAPKdg)lpx z(`EQ;lcANFWn#5g8(17JkGDDT{KrYP3O5~CgH5CI7(M(b@Plv1Ye&y zcJtPh0RD{41!SGC5W&ESkN)`aqqYy?{Cbx^!Bhv0*@R|ibd$D-Q^(?yFXYP{Iw9Bv z^Z{s4=>n?PFgMMc&*#TU_UJWQ06CCr*5L*uC|okoT9%nftMP?c0X&|E{>?I|&7#COk$!gEy}L@hW^8n7>KvpV#TKJ&hgE4Uj2NrWN`+Ucq!#?kT=!Id zn%3dNR+X}qM!9CsnHGg-HG2rS&tC4bVC&{d>Bv#5Y<6ea$=dr_Wf8Vm9*An zOOPj5eL5sg7FtNv&WQ?bhc^H?m3f4`o?2VLh+p{DUup*p_aG93~`-2gTkK zYrl(s*ZcnKxDTTi;`e`%{^Hi}OX{tQcT;@*N&soiQH2F3K?!{)=26~P8^;0Q(Fr>+ zrJy%=5MoW(Pllq1hprd;j~>W|udAuq1#n4(Lt*!r$m2Q=?FaVwF7Q8lZq%z|dp32t zP%wb+zr9$RNQA|MDzf}6^hwulfhVu3skt)p7`fJ|Xas$PG%J=ekjsbYweHGv=?5L- zl-%=88W6~k85M=LdBWrPZh}Q&dD%q*5LMkC=y<@;9OX{|hBcrLETO0*pVeDRBRI)> z1E9R%S9Vf-S?8odL_i%N&}4>Y)Q)=}DBUJOb>UnHJ~xyj}I0A~&PAt}C9|MBjB4~ULs3~+dSATp3Z ztRITLy)cl?`rGyRKs*L1o&Bhray&B>Vra-Hxal6{9_?E|?ob97I5;B~dz>eUDLB&! zIi$AQoh%Z{uHX!7p2b9_%&~SpWMol`hPwJa>A!;7`F6pyZv6Zj3;;t;lDqEgET^$a zY&bHch`>9=Kde@JH?AfAu;uygQ_hg&1Xe>bd7&aDz7>|99E+#3^!ibsp%&pL{cV8ix;`mY@(b>`PpE z95x$_*2ls>l>@$uPNj-o9Y!+pVCeXWNH$P=MjAwoQtVdH`uaM7;L4^9@gv6?6bPX4 zP6{XQO$V45tbW2=OQP#cogCUA{ur3%I?iSPO|38qodA}y`Ji(c=C-%#!fZrM{*|@6 zioy)<%iVX>c4H*~DCP1Ow{(ptZx(_?j@|Ty^K9=CxNux7Tu4=7;==-0gyW61!UqvLI> zhZ($sy8szQJ<}1d7IG`noJu+3ery3^0GhVi8WcfK4RSA77F=QU09Fj>e-7HYdk3s67vmu=g- z2pMnGHOD1ukw5uoHDiA-9FLN^hNv>4uKk<1;a{Ug+prt;!9xYOCK7vrnqm?m0tGln zlNNx`KNCj>zVi5hsMU=XS`;2+w?7aVH4Dmtets{jMje|C;9kqFD>d-)s2w5G zdWCPShynx{9AQPPFd2Hq(7Dj11&W~X5h8&8L!O6@-)n5He>$M#k$XsHh5SpMW5pI} zt7_7ujm`N$VxV_i1|7}892gn>9H3U6%65h{IC4G5EEzQg{u@GMo1@j0m4Md!H(Une z1CUa?BCslhklv2~SsD~BK?%Ou0Fow1Q)Aa$9tFB3ATn~kvk?x1npgQ-JW;FC4q3o; zk)VgFfc3UbN{V^yyaa`GPt~TBR3zM0W07zH_91|Kpjd-6qTozGNJt3B6F@O&q+yN- zZqoOerXN%a{FBtu!w!7K2zVH##TysH3xxeQUG!UPO0Raal*Y^5a!b2Cw5x2pi|QeL zpfer&(lZ2+WV!ZnmWngQqsiU1!f-tI35e%F2?KNqm@u792^B81j5!;Hfp$srhudMQ zqgtQ;*Eq+C^4jWZ&t~n`q;aZaNN8w*N4e~Xs>nq{Rfy;NU4hIn+yp<#CNwqig#feM zcoQC4b>~lGj>I>r0eGPMHVQX%n!N)mT3&>mTp#gfM{C3Z`)a$beOqQv@zd zfbT&A00O0^aV;oGpb>LOzP7fuaF3B$B!c@{&{=qtgl;rHMDtQ*6M<_I$B#bk_Hft8 z==%|Ke3zzR0b%VO)zQ>!j#Ud^omWO+aA3B3+iB^#DMlNFuV(GF)|dw$-4p1KS+zR~ zTxm#%8;`MZ5L{MNxuM!S%=|cR0;IV{C3rlG2x;!ZFM@HLK&z_1!|h?JAvSC8>T8Z; zj5fGY`Ai|mH zL=@-)ZP_w;ky7CiGrZL@B8VD9=t&(I*9XN1A&<~tg78yLSq|L)e1O`(V|=lbFQmB05TA>1_=Pl<#Y#2Pyhr)pkf+O zIlw1^fa;tBnTzoZ1Fz2ao~MEdZyp)vsEU7 zr=s_|I13VCr$sUUOe{btw`(Dp9=>J|VJtHg$Xt;6ZI(464L)^@pM1AgL1GPP)i~Sk z#e~)RaQ39HmZB;ek6T;VTLViieY>{DI3A+r$pMP!>gYyWvCP#LRK-4LBkEVX+~;vB zv|;d@FCHbRXsYc-8C2v}#+`4{ccpMa?Qx8y3yiOl!Sz3Hx{l~=O;bK3C*W^X~KRaPCf;M7lp;@Q* zUMOEKV@AwQod$0MFi#K`bRD2C@fW@9UTzJ2$l81po1Mc==~cf!A_XgH3cy^_*lpSk zf!xS;XPznKBTOC6NI)vTCb9ScRP^5S1_c$3zXw?d#?SxECstxQ8M@09_?j5t4h-U@ zd0ir~MNV%x81XYVK%CwJe64>Wnh-CYvcFwfR01M(KMCeX-Sk8KOH%<6q=DV^Zmub9 z82tYIU1E8v<3+r7^-c}V6Oeu32UCLVdNRU$n-yISwHl0Sfd1oR^Wg{5&mVUO+ATS{ z9n26DAk)0hm(_VWrXxXPr8rpBK_)twc@U>mPwdOfOYcdixhYR&9D%v@lGrn3gX9gU z4KH4oEX4n)57+-^eAeH~3)Er9%4sj;Aob(fe~AG9XU_SbCEtI?PpVXt0a~wOSQJj? zjN_Vo(@8x}ugzr>GPO20gO=k4u2rKCoB@Jhc>}t`S9@*%z4QP*_rt(c)%))?LV2mC zAv}fm?kPK4+d(1@hw}^$wu}coSRb3q*)pgEfr>%b`#M;pk{iqb>W17y*XI!YI>@i9 z1N82bKWH4rFe2$086zwft8E+zA&}Hc(xu=O-!)<6kyGD~qT>fGt{*ydXplc|D=#6k z6yonLj^vk1PC`u)mg68q8mb!eU*paO4HJZuK+D4k?86YfZ~gJ!zsW^@euCALz~KV| z9o?@gu_o}!mGo6NfpdUpI;3>}(FMtOYvLvitdeC_a(~5>i{Q?On-mC?hv4g;niqCA zvDN0r!5h(OOTWpa;R1g!9?oYhA8=d7-;n}DUV1w9A z;`^VFsrUQzWI|tSMCv7N9zXY!OeW*@pV$WJiY^+-5eU>X5IjVN)qcFr{KBSH1j)!l z0=;!Lq!=_M|I4tswl4>#w!pGj07r0Hy=)GYF}6`wDklgL;4g2SPZm!DJ2@G~oki4% zm0)ZPx&oXFoGWPMg_Qt+fF_GZR{-jP)ZS2ZE6-h)!DEZLSn9?>S`rrK!ASEg1ek*2 z2XV8qG3V^>soV5Y^ZFPJ@;D+D`&0)(kfemfUXe!9TDKPtVmBds3OPfQ(v2*;$^sRK z>fpuepMSwpNyN{gnYE&Ae^5ZyXHd0zH&x!^P|`->s}TZd?GAd!YFU~7k4i4DVO{O9 z!EU8I2g7=WQL)GgVl!}5VUT*{koCN3?J;Jzhkt3ey_2^Syv{0swi-1vJME8;3F?+; z<$`JkbluD#jcvemP(D@RuWf%*OqblYt+*x=;v)vnTZ-DQ4ai3Cd^l*7p%K%5nhM}u zORrzez+Gb06^nSlJn=j%!%N7EPn0fd_@l^q zQ^H_B=nOGXa}YEnhPXeD@yQgEd@jRRV)W-vGcdh~>U?M@_lr95@#{b!DRzZsR(#)= z$5W{8+;a0go~4LhH#alsIWi5}8OhPm%y{YN{IS$*kcAXW&>-uH&84w*+_0vmrvBcb zI7O$X&d#|hG0VWL+!`4h?A8g0iX&zw&>-^!Afe23w~CXh^EDW4a2ze- z4}{3j=6`&s>Eb|5XtK)tLx~?&1RH87kJ=Mq`692Y08%;nRMy_6Vr!jlfZ2e~@o%_d zw-9@m??7zHxupN-KiTbzFOthF3(sbxrw{)AL66Ph6jHtVcyp1u!J-T(vKxz3AK}iE zy;8oy@#a#N68h9qi~{`pE?A~~QEw}U1$FRw&D~Ix!3KTRPe3!NY>f?fa9t}LH{V}J zt%E;FaE*ipuRd7GFR&O_EvDw1;{2S`c=zoB(?PffMlK*A;32<-W3~_<*u|!sEDML!QR2iR$!TZfiO9V1EAaE$X9++FBr{CV)3PQPJ;H!4}Qa#AZW!Vp|E+ z8fc?PKhY3d^0HE*?rp>E>u$N3>LuRo5je8=q)VL2P%3p}Ib`~K?t905r6siLUu~h^or0~=Uzh3n^N zvm;(WpU&2~*pp2W7NEqG;;l!vWUsBs%)>ry_zC1eum7JX{db0s3`2&R9LL?7Cn zE|vftR5uj@Q+4XV-^(`*K(BGOx_@5#`jy>)NF(J!K*fR!t!)QL4_MfYX==jm9pAinak+aWeP(%a1*}nnYKxn4xVp9+-?!WP;t6cY|t8{HT zNid=^vYZTZ!Ag|_o5)R@2f{)IE9whG@A&w*E$wa}u#AAA!9M`9d?jelQ=ABew|Obq zUJiFHcDge6YVL8tCT3I{fdBDNEH8gzON0aA8`IS^hxG>>TtoN6aKCSW;X2fYS`jrOE~?nEV8OBw!v}x2vJ!Xy$j?(r}Vb_S8xzBDS+vHdou=5fnp255LS!AVu2;}4pK6i zxosClCubfQD1%!DveG--zJ%F_gN)n6)RfH!=#KfKIuF2-YE&MSrORN8%BQq?2L4AF@Z_x-!mle>0<|tjlZ$iMQ&{T|L5uA z=hjI9X|XC?RV?*hc}rGlV_KRxpMz9HNi;(7@mTGOm0ct6=QXiTKyyOvgALqoa32u4 zz^cWMf(+qr{GFG=U;d671$u$M1^&Fv`Em2a92C8^cT_YmgFP8>B5Py*pUR8r11XTxv z7glQC(JUpS0#M=Qg`AG5$m81{Wd?d`u=A9zD|goC@DygFrr0iH|cYlwX5)a5wa$&9zE^s1wWwn{t@f2XhF+Y zwCsPTzV=HTbLYnEbBL05TA7Xr}H$Iuqg(4hU!Un6p7{yf>7=9!RG|W8FJybS(bGk$DOPoT_@p$vaPQVHqlL6!7_(Jf<2 z&N)_jWtTe?a?SQx`t^F0`|*thgt?;ZK?QID;dh&kC%w(IlubyKg#SPVu>s_PEd-f# zYMt?0_hO4`UL`aS$b-@rTQYULrQC&oPC4nWfdj!Q;~=|r3^c=L1!dor+PVDqoz^gB zpdYGSA!RBSlu3yceb-t5E17PEQ67cPnjqeh7N`efY#_sb6+E1$; z`l^>wPL?{%@_0P|p(l->-*NXK<%k}tX&@}^F)it_3GGiXa2}H+c~t|T4S_!v9`;mV zRzO!ss{pAf2!;{nbk+3|X|Nzr5U}?SWb~lg0x&K>qnw#mN4QF)vEczwK=?kjJtXH< z4JEun^oZslDa9m!dtuiGr32>c3waQrU39JFb_fQ*diF)+)l`D2iFC4Sf@*mj0gV1D zHEA~&$}+sS^P${gbr|^W$VfcYE980u@Y{G}MVu~X{-HFK01pctTc94fbI{=;7qr>TG5Uu&}1Qo$N1+$)D$$H(p+YcPtZhB|go`9rf?ho#|*o=lY zhh4bj-twD;OvjLIb?Sp7V||w=Z@=^`e{YzoWZfnvpJrar`$=X~-@9d%S-YQ6yQ!M(uU z{l>oZa!<>#Y3K?U#%e6c)!I>94KmNY!czf8-Z`BWoc>nf~* zu~(0th>ZPt!rIfr1D?2{w6nAUUsa{Sv%m1_&PLL{25sYvC8($ihvgPK9y`DM!0{}1dcAcMY*e#gLX@ypWZkH~_LA7lqG~RHUpPl~kvsvy0 zI5D4Zj-AYlFAEC_M$$j90{38KFZ?V~({v0{>+AutTij|icFf~U)5yJ7Pn}&|neHk^ zMdzOHRC}eY%ku7hwnH(+=zwkI_ZV~6MW{#T+Gr>-Uq#_f`)Bo!K_8&naL%gV|IBO^cG*u3&XA3R*^kz=dl%ePLy{VZ|!_Kqzu&mTU{CthMm zf-r%Ufd@^{vv=nkoK_3@HPBhQW z(H~shRgiGs9EEDiK%H|@w2X_nb&D)0JpJpFvu1yOfs~@GymP08_xv-QrsCy6kI7Ir z>=E15y(sl3q+PsAUn&?_{)ZZevT#nXzt$#g!k!@3Vf(W1M1xm(tbo_#x^G$WWx*FF z%hV?(-Y08~4c?DuxL2y16lHE=xQmI2Kb0;w@Bp%D$fJH~{jFOhOS=uGj0pDwl|jd} zxTAAFyzU>b{TRk`E35O9M_x~lSsJ9=rk*actiYI+szy7U`%N%Yk+g{&NpLyy8jqPa zdnNzk#;cWI>Vo}n4ihbz*NE}=DYLj>)?vwUNk&Fmo^{KIf12z>U6rH(oIUZ$3O&80KGrqmPF#lDy@xUFytMJR8 zzTb`~^4K_5>}{u|6d1HzNW_PjrYZY@jE3I?T$=4CswAAKv6hgRjalYQ&Zi}xBq6n2z3Or<=vuZlL^<6qaefA zx-#BdNthp0ogeoo%$kYc@q;xiI#9b9H;kVfGbMb^${r1|6%2iTUOajZxj1sj+yMPy z=au$~2zb0LGAU;q6r~fdjDLAD*ZD4F2qVhtt&ooSI5Qaj9B$-=NVcSNT_#)b&{xmk zgUhj(iMkTEjmf$a!FFo0ud(W(k7l&hu-IEHw~x2GyT05k5s7<#mdcZwp)ULJq58yt z8qYK)BHHBTHq*d_vi93K7U+cymf-XFtWV|_tUQ5ZH~Qs^7#gpJ5nvj=2o4+ zlehjSf0cB7~97B-?M=%;GPV4Kw$B42;2A3M%6 z354T5*{ZrXlNN86lvLDe2y@kRPB8qq_e0=;;qJ`HfEVmQ>XCaAtB~0UnPX=wln`a} zjNf1-YKe0XdY>~xv?_8hueR!+XhMebBtubo{`<%0ax;P9xnJU_8HRk%#c5J_n&q>r z&8dPn*hjlPr(If~#4rwJi2X(_zlsT(epfkmUvL*$EB<#^F7}&0dBMTJBLP{?P2Evz zqG~7US%%0Ref2&(=yihV*qz@J_K>+*;>TZ&UXqF(#XpIu8cE2HAo_$kYt5?-IL)O= zQIJ2)CihA4=;|5^H#g0G%PRb~--=5lV)jeXH!2;fmgkYcwBcx|VdU7?$6r4jtahop zpW#RHFcf&X{d`H5+N-WJz_6d&n>owAI(2u1s*>!PWV^{GSn4jaF_9Y&OCdc?Cv3du z=>=qozY>o|7TlE*Un8{YRrH@%aaJF?N=!H-p61KTZ|)J)V;+H)v^%&Osf}q|N+&6M z;Kb-QuaDyBVnv47wvL}yMuSL;#!U@_VIA&Z(F*3HcIKY=qp`0L=MD_T$=*t_NB zA~tL+oM9fByn3ihaff0XKp2l=5(c+VDQy!nVZ13bx^?HQ-F^4BnT5h($ literal 24631 zcmdSBcU+TcyDiMfC@O8nic||lktU)v0lU%}P>M8>-aC;RkrBs1K|w&eh=53wUP1^A zYQ)eH5JD(YLJL7c5+H<}D>&~tXP2|Tz4v*~AK&jcPTSbY|O#I$-}|1?exwaaHLo~vj#qP`CPZ~=iuOb&;IvQ;z>RsILH;Ct$&4U zV#odizi#`L#e>{Bbj3X2LSTT4w;xAAN!xWe#1jCAE<5_$`?>lAxO#hW?A>+b7#!ct zK7PsDC)m%`*(HFZh`&t@j`D3C^>egipL#gJ)zgvV44r=$e6x%FjfuBY0K(4Ck;B@D z#Xg;T>*lWh_8xX{svk#9Q)L_+-pM{}X6NVS>gCMQBsBdHj&c3CKG4tJk%P*Ln*YaX zm%Kea9lZiLXl+RtIJSd*+6~tL4@ZtSi#<{t9EUlyFJHKEH+_MCd@h6tC$k3bxn56r z`c?A$*^<(nUxz2WRo}Y`U-Ey=yi-&31;4{X@Xtx^8r%c9XCWcWfripmv++JH)mOd= zd(`BgEJy!NdSHJ-BDrgt+gkPs;g-L?P`p~+>;V0jC*=tDv*PbD-!{axrWx3v=tJ5$ z%p;^B8!a*7!iAo;u<6ss9#Vqa8?=tK_zGWxrgC(B6zT}#V*iwm+6iOE!Ey0d0rto5 zM-|u~JFnbkfBf=i6Z_-vzQ}Rmn*}%aJ-O;A5N%xWTzvM^vtw>bf+K1l?)(;QcRWQe zv)F4J2gmIP^A@*j8H=byJxMr|o~)DWU}0Js4b`OGOm7O85i0&5L{qdD4nRI7C85% zd=YV?$g-v*ROHd+0C-Y3IdoJ#Mgv~6=|NthI*;wHoo+UM0X-LDetk^`JWMVo1rcYq7@@b+%V$6?(Lm%Xl-d=KT6qGf`)D_4|b9 zfQH}XAIh$S7?#J`!ZYsupA>kCEh?@Kdi1A#TJW+hHkHu+e%C76?v1(3j-gE4o!Gt5 zG#BS?=nG-hR|!&vZq&Ix?$jKk(t*Twr@-Y&ZE}T9?yCSb*^IvSBHIbw<85_@)OtaM#s53eIW z2(OrJ7(QoG?ul|_Nf~B-fyq%7M7kxS6=9WYtPLH=ueI@ReSQ7L@qJ2X&r0H}6I&fB z?OJva?oK?RXkySR2Jnha6EeodrvBopk1pS_nLoID`?dIEt#wQq9^L7Q_re?0Sp|u! zrs#dN?5rj=snv`|ppLbk*tc7j;p)|?r0)!!(s8=;TyME|uM+W`fp$l7uNKRQ4J^a5 z;is~fYJYQ{x_-Z3S>FV?at%3&W_2JMkDV~T=pYc?Gg~PhJf-&R`sLH7Pp`LVZCsK_ z(7uxM8}qvu>w5z&c=FS)gVn__T64wT;e|E)^hcLA)qk=xEwvG;Rl`8%I4T~}?y-;4 z=r7-#nR#QDH?@eVE` zUMDH$KKNShsEc#X$mE#P5?kEFSNX#H&@p~_*}W{pHyz&k-smgNmZ2*5#OvZWicJF< zq#F74-F3*W4BXVk0sqqXTCl)JZa0|AbevSM3L12bcWTkk4-e>BH2D1G%a?}gKsu}I z5`UG9I!tm{3<89?55BPUI3lbQ#d-Ppb>kP&bemk`6QyCF0GR^l1O&ok0+wjj>%n+& z#L~j(NVsu)==Kp_0c@Puz}K(lx}l3AyD;vh=zgK6%5*Fv+b9B zbYuUrf-6U??&+tUJ&~vr9A_9vJav6}ZfTS;LVs&6GlwRJd*f-t#szLwa7_U${R=${ z>D#pHr;;oKT6mRVg#zZd_U7sP)4Hk6{1Hab@vx3Vzx^he@cr|jYQ9MHAOVA~fwgFs zrtIBM)TGx1Q|;vbp76afDZSO6>M*B6_dFGMrcAeYkZML3H3p9_%w8$EnB7$#US~y1 z(psO%8R?CJsY8OrTB^@7i5GUJ&1x_1eY|0~V;!dTl*dTJApW6iszJ8V&U3%LNny=i zj?-L!Q-j7od>4oh1{^@=AFX3_Iw;CA$kQjZV>H++?xhIC73V{g)?jS8%!dhI?LGNy zPH-@_M68hg!|kbm6;)J!gdE?8Kf$->k8k6Ik9$TxvuOiI_J1lK{WmZC@;2vMTqa4A z{UDWVhhisGoKb98oU?PE1bE;qU>eXd|a4k_20F~Vrgly z8_c}GbR=bFhBHxdn4%tjTlO(W7G1aA*@;G#ifeowu9X_j%wka`n4S5yiSR99LtcK) zvJ;w6bxeMaY|tPHue9DYe$XK!HCzNaxjmdbI5@z5na!!X0mpN9uaejDiPWfrPPQy8 zS+jID8Gd-kqBdl%KRO1NhFl}5W<&(isQXz<={6zZG)C=eQ%Vw7J%KEha4e1?kI zA?RO+sK`{18TZj{QxAw2ir*H>BfNBjEfb(Z2^)Cmw#|`28E-rT^lWZzTA6 zZ1oLixXFVDSLgc=j#L;XWQD%rLeG1g!W>QiL7dEF4utk+UCkM_yObPZ+z1=o_I;DZv&>FpdgbfmDc{&==djJVdh8gjc8%) zZ_{t5MIOGt*_m~`7o=OI$-tMTXVz8EWFkpD~R6gLrBv~ zVo+{GkGge4rn!~N5Xx+*!uhO9y4o4W`rfP=3rq=S`Y8LvIcjO6iS1@_&3whE%1GdG z#(0)>4rY_kC`w)0@Q1ewXc6gkMhS7;qjZ%gi=!uq12S~EkK1wSnS5#$VV{ox!ZMOTGr50maIoZK1YX%v^emaRY zK$(~8c-W}YOBIm;oY;;N6_`UJ^}6Y$lo2F-5xZ?lXB5pS>vD`^>R;;dNJ&7V#Y8uK zZ)?<8xi0(jZ`WjvkBiB_DW%8;`<9k>23C!h7oD#&KAT2OszV&#n7^F!n|Ga^K)I*o zY{0E(yX$V~zibO`Y{MUjx#BIB&UvYRtaSfe-bYsWG=cTWhX-NI9>nm)}_|)*xVhE#9lv ze#nxT6q?Cr^#L=LnNQ7@@A!GB9)99v)UyBYsYFKAVcI3m$<=tF=uQI?@sAp6qhwEkelJ!6-S!ZDP(t|ZA6o0e}_G?x2thG^t+O(K&R?I{@#l5%Z`6F#!YWdnlF-iKO|{sZ z$jHbfRlcaGsFCH%N4xi^s9AVyP4NL*donQI`bA?6pVfRvZ3F>%kzeb3xf$Q-O6qcK zma@P5B!MbE3w>F=z*=`7SxCe`7Euuqn2Z%sDPEAb%^tw48(1UTuY|N<#pwO4g@*%k zFylpM$X_FSBO}fvXFT2{6r4wT)e&7kj0Be1u;$bQ`}P;EOpS)1Y8G;kv}5747I)71 znkrY5dFQC8@p;5}3B%B3deXh#9=kwjwOkBVTe9|OoIV;p6Lb1c^!yz{06}6smD-Cu zXj{=SlQ%Etdg4$;#L_FxwS$Ji*iH7G**|KhGL^r7`l35hAE$?YEoF$F3%@oRwyMg$ zTtlPLaPxzS+GjbgK*Hd}9&1@05;OMKLoL!t8%0$i9>#|3& zfl6QnGD7K_z3VXWJ81Mzd*!)kL~^J8fOXHF+Z*eqnBPuI5j716!9On={JF-JFz3UhEl#0)dOWE{?=6HMIy;=J=x%jlm1hi`-_Y}Qp zoVYT`UrN2GzhHeZbhJX;5xKUTOqHdd6IrECM2pvWZ>kC|mOW@^`j9nOF%$4=^I3E9 zRn}r0KI6B}(52C5mQrM;nM`KLg12A@o$J^-0Hgb;cZAftj#i|4PGKp^Se>=ZIYdtz z?H=W0<&-e5SCTFhi4hwY@xi~c2YhR}&Q{k*=w-S&kJJAZ5wnN1wewgtlY9E!sOdeYET!IGFzXtDJxrSp=q1y~QXwGOQKySK1PS2M_WO~%kdc^kt2GbhE zl3iI|+{JO*(VW&aM*ljhv{KW;dXs@%`-wbuARGz@zrr0dZ_|H%isXeQuBs0sc;z`AkS}Z?o~Ul$4a}s1=)8+AjT8 zhn|yK@lIsHHYtI+p$8)PYRij%-D#&YzK4!2QDmc-Y|4V7XZ0s@?Fl<^w zVPkt%=e7Kk>*y}IhU?>INyKk9?Fizn^mZw3Hq2=<#;XK3*S|NN65VL4@4B!A3*wu# z1X*cSWGEzfM&$Xta)SkcO1zT+`Yjtq4OcK%%vc?JhghZZZj>_z1AQ-(WW^Om0INJP z38lhe{U<&BI`#9_h2p3A9&m8X$moRxNr__^QNLycFK@RFnfhR3?vnXw0g0T&%Xta$ zydvA?AG0mxl2kH`SUjRZQ|9%KuM}sWr$%vL-0tR{^0WAUw_ytL>u~BubMu8M%39Om z5Fa0-OP4Nb46???UV_f2kCYcRWkj0GfN_D|JR|s|X*p<)8ZuUL#eeO&xCo5w)M@Sd zwdphf8&2Y}w07xd*DKMKcfyPHtlvxO@7%_OtQNnPT@5cBoyouf09-~j z9@ylFiu)kf3+!xw{SSMG#5n~qth!Ca)oX$c1TeW8kn(WN8yGb&%Wq$vz?I@Y4?h9b z%*LpXi&~j&vnO+#j0EFmU7#15xXB;#Mzr4JPC%_SaZ}!LiC%WB0|N+tvNklQ@;&$vY4dC19BcR#!LPG-eSVZg$vir>JSzJKL|^o+6`UNo5XtzYWfr6$bWxL!B<>6BzcZ*IW=={Xdv=-ac)x2iB?3ewG0m|1r1h@HI zoUM?E{EI(i)CZAhKERN4lH5zqMlsO)xz}#9Px$4}_}8knTE9p8^Roir(j-xYfZEH+ zso{@wum#?&90-3n4!$FL5vNLIrCLa7ud~);XX~X(`*E?^EoMw3rlEE2=~B!E)=KOl zW`6!?$wVpUw<^TBg3;CQ_?1a_?=Ml_NaL(?5xIFb*16so(zSJ@K}jFKO>jbE@RW(5 zX4S1Y^z!NT!joD3L_^yWuu`VetP{Q zck+z7ymb-UJ=T5sLkzX}Akx&-hEVm_ z#X4=@j$$^RX9km=tdl#f^Q^s9i?dXsH#gcWSMbRig)uzWY{O`N;d4EwL*|8Sd!aGe zEWcL&p?7op34tM1#>wYO5tvyic8kR}2Z_{}gXp4B^}4H=knh}rwX0VMA$N*3m!=O= z$Fst1QuccHv6$1zE4Ff~IfkMbW6a%d+&T%D*@w-nGsY~PmY=7~YZY&G(xNi+@-egY zFElZXH94gBi%dc>+zp z7GA%=TUtn?Nmb3Z7E(_~=UgjYw;MyjP&V~si?bcj^T+>I%m2y-YGRK+Bp3e4RtfvA z{~zg$|A$YUQ&ZR%bLCL@m#&2SDa*t~Nc{OLmUHh|B zMdVa_>Hy*awIJBKCY%N9g5%wu!2JT{gGC=dew94JHtwjh%W7Oix-E8(g|KXb~CqkcDqQ7YicA-1p8Z^RsYILWlg3~(8j!j zV#@jJYzNi!&zl4fE9u0B$cB^2xWK+_n^p(K)b#WliYZ^-zrTzPjQQ|NQc7w{#Q>*> zJnpI_2-WwW-UH+}M85b|htl<46EL|ST+Ft2jd!$&e{C*vmQ4Hhy|#SNqjQ}-OVSJLck_Vp z89VXjR&mJQMEoP{goxCy^0`)WQoTx-xK^>TA_?$fovBhPs)DVXZKXlfDe9X574($SQSQ|Ck#f+jNXSl;QbOUt2G{HT zGCBErj=J6>0=MAsNrE^a08YlyXDY;!dW5w8P`P8w>#QV6*-C3=^L;TN7S*;|8WpnH z;`!|Q>j8b*Wph_!@jY-w*QZaPUg2Y}<`9C|h^ZnatEQkN_#{b{8@MQBFQ5(92#*tb z1_p0$NLM{Stgol{#-_AWb*V=_}n~h025?~B9`QfWO2h~r)b?23Nh#rrJ+4DR7V2I|H z!P@ls!fp8df6M0mKb-#m^(9_>Ya#ktoG8gri`__>$R|R|K~?B+mDt{#M)nbNyW`sI zdHcVTk^gtif3ttTfDA6)P5{P1!y9E>0O`veGPcLj{A|RXvKKI4WDd-~&44W2ow6Bp=aiqH za6W!9aB{~UwpVtmIPcO!KH1p_Xthtot-xyaE?t-oU_dDFoDt-`a`agRA=h6=G37?K zk&#?7cbI6*hk8DCUzn$uwuwYTO78N}BicY?>dB3aZMdB7H!?V5B|++EpN(AI#l8q+ zok4#2A?4?*^wE;{`E?suf~4RRc()T-ouTt6CPh~=!Lx==AH*1#tD5F?8&%!%+{N8K zl*oN0r~5o=(|?9sibvK|eny9W(^787LRR>mKfZi>G!W7Nnf>6%#Z`L|>St(JEcT3w z%5m+XI{$pYrd$26J^?mXKKt~{2D}W?%IYk{U`9{&K?)=?K3f4Y!?OWuM&Blg5jMy7 zH8kHv+n7lv{04~yS#KT5gg-AI9iahh213{0N~8#iiqewuduOY|!)CG{Hk|L{#g!{5 zDt@E3^6r!aaI^22@`H>qSY*|nIA39X0|V)-P6UCy(q!Tsxp@#H!TCX?p}w<93xgHc zLg|Zr#Wf@KZ>kA}M1YhYk4H~D@v?h^aZ}}Hd9aS3w>oUAVnD*gy~P^I+GP4KB0W50 ze%Z4jp_!ADGeT4zxtjy9&=3n**PDfXO*FX4qsvEqspHlyuHRTF;2V zelkL4UO0NXt1IT+;dYyG`DC1|;U)~1NDYK45v~fjA0<QVI+C1O6)MoU-BgA&Zxz|h06?i1FzzC%&|9*9~ z7UmK*_z=7Qb#mhoqL3FmT>E7{kV>bAlJV{PzY7Tq^RyMdlX34jyfss?7Qsbtg#@AV z>vwbacsvP{OmIbcxVT(zX=xeZ2z77}Uutn_H(TOUmxy0Gp z;YV%Jc6T`^rz1v!@SYGTa*Yc}goh#MMU7{lMi=kYVZ_Fh_N>*B>iyM+dycZ)UC#!< z5Xk=w!8F!i5-K71M9C;!#)Yq!e{h=$oe9ZqX^Yl-Id z*9_VRT~_eXvGW&+KE2JFy+^7w8ei3J<{8R_4+v^~1oPV=_uK>sz(1zkC5?W^( z8H?O9aX`Ory4MI}ZAZS@kUE_zMwUI!3e{t#{W5iO_Z+AC;u1GVYc-Fq=D-Ambu_Zx zZq}FEuXvQDNzjD+NVNkNBhMnl)pf+7+T;OljSJow7l5T)%AD>gnP%>fxdM66!D^AO zaSV~@41Xk&ut%|`&Ao)o&Nh-{EpLAj&Sqv zD00lWd#y-nux%?X-Y7A8Azx@+FM~KuZhfoM1y=Z$*ttGYblocIc=srmN?iktB zZe7#PH7@tWs~_CEcW=Ct?x*2u54@>nmKlT#xnz@KQ{Y{G!q)&AWj#%$6Pr{KjCp>& zKDR!6z9$}fNFxgYJ^ii+-m8|st7JhPzQisr)}9E zmOCC!`3(vQWAB`Twuq<&e6q|0NItU+5rIJ`XZf@2?d>C<{u1+{fn!W;VFcbyVvm zys+2f*jV5m1;DBjbqa132c;_!W;cdm{9u}lEW_dwy!$$9hfGcSXQn7qjqv1w3BN)CbNx;H&j|d3fG?;%SRV z1Jtw@(|@7MMY5`tEOn+LlCFy@ojR4RCpjTv30+tu23+B~IMnGVrs&}^_z+(AS;Nn9 zjuH95=3ZiXoC}aA7KDF&a`lX+rl=qXsJ62nUw?VA5|j091K!5!g=rgk%l??r_`AsA zpxzHSelWque&7EFEWf!KLs()vA`9#SzIzhyd?!AZR1=dkp-CLSzxrEo|C4GeOmEzN zC!-5RWX1(D^AQQHllN(^0$0aMEx||H61G8v{xBd^N%k|-=?7!3I93db(tMH_AiIw3w<_+ge~HL4PV~YJwL^co~q*$+S`6xm0yaANa7ZFf7ZG9hFIr z1vjKyf#m7wt-Q<60Ip3IaH~oM9Vz(aV>tDT~?T3CO1QnkwGuL}``6545o~a@_lJ^p! z=ZY?$oaO_a21@R!IA9V1F&aKn4%Iqgnx)1ClZj6RqO(Dv1*nm>^RU&sO|Z6-pyyy5 zX5+Q>A^n{0owEFZ0|}n^Y{Wj82GBIz<}j5o(UG=4h^qpRH~xd@CBSA)a`lam zvI%YjT=b0^OD79cob#YZ^^}#e*rl^+H^IBCy2YE$%|e{4O8Rw;tgw|S4lt4KE1CS{ zsr4A+y-6Kjerxmm9<*HM{SUHUDZAf~1mxGU#>+Z@!OnCE3qKbp4cD0fmX4G|jpF{@ z+u_Y1qTG;{!1}^C+>lG2Qi(nK><<}S51686clJEFioTF0^z$%P1lt|WD|Bn!E;aA- zlplWi<#q8_5Qy%cYn-X$1}p$!4G|%WwLt_xbxh5JP$QRYxpJzO)1L0HEy7hD0n`9= zD$3Fr$fV|0*7T>+a9nu<)LX`aX^_}SB!+L;VHMQW-ul%oB<`H@t4s0(?*X($0|~;9 zS_a?GwQf~&8C>{ksPde)R_qTGJs=Ii7T7ft2SK@U;(M*xXD2-E)etNN^T+>z4gj(L zw(qU7QOt)sBBhfLAAPtJ**sG1iB~#vMnan{tk{YGm&TR5c)q&#UUzY!{Jz~W_4hMc z9n_LgGSdQrPe6#pU%hq>-3c+I3N%9(v({{xx23B&it8rit{vCHG?z3+fkuKRdM^It zhX}y_^5`-!nQ6q5NUWV^Dr0IfbhI&i#5vD3gai>7rZ%W7naXwpqTP{U^&Ok`P>84& zF!OXkzD5lEg?Zz%u)^2=qmY!Eb#78@XGb#Txg_YlDH#AxPx5h~(Up51y>H-x+6MzL zRBlMizG--EB4!n%u>+zW>D%|a*yhqu39SX`hR}l_6nIkd4%JFGMljb^_gi|w0hppdu#Wo{1g|R6EeakSf z*ux)HHynSAW&6S)eD1?~1O)3yI>-@?l$XLmq6hwBy_cYOA_uU{qHdQqlogbZy|lz> z&JKzRhWvT}#5{;QGn#$b3jlU2v^Tw0mvtL$Q_9w(q2w&CGJj%6(#cQlQPr>rKsrW8 z!(jIKDFbH=HXCLz7@X9Nm_z&IrUiz3(mvSK8RQzX{W%)QmC9ns=H&LelFoWifPI_N8Ev%g*Qt}lN^Kn#fLmC!5br= zU5h)l=TX4^Q~;_2--^yjwDR&2qPM$NOKK*xR$8A`QhGf;Zl_%#aUMEM{kV{*D3C9D z=Ihg%nv03yfIN|rKb01n%N%&|&O_iTz9*HfP@WVFCdpcEBPn+VU(YoL5@XGLiN6!q z%&Q&~zNZsvL1DuF`Qa7fW&>d_5~PY^%42$+dVX`Mm0T!RK|$e{)d+Qws8G?gEQLw( zL{roGmp4E_QXvzvL2S-AHckt4aCjdYZ>GK|?!gN7zf{5?e^KCp?%T1*23#45mf0I8 z*~ZM+{pvdrTTat?@_$@K&W=$3sdB$6w=yA7jgZP@CS1Ys?&q^!!(aPo(Gw~LaqH|y z-hS{8XZfEM=PuvAE}5Xnb8LwSb?rauttMz0Nu6c@$7SXV^=yN1%&P3@wkUCcQPtRE z0HCc7&-ElFw87SlodCL{z3zGs&f-w00mZQaRJ1ebApCl7zulD`(ci!O^78S8kbl@W zxyH|2Q{%;36dF*!w9DXjKUappnH2b{`%TTcB9RsasI*7ZH+xR7&Ta`T<3W$0j%8SC z9Jf_}XorVTh;S*H{6FD-Eo?;S@wKDBmj2u-pQr=QsCN8>3KX}ySo|o-9IPfKs<6jy zS`wyHcJ>kPH9)^xLu`e!Z#Qu3_{j%+2qEprvxR+cq3N7cCh)YT!D^4l@eXzJmlA8# zP;@j~t&m61_0)dLgM>yTA248{ZDzECcN`qR*}d@W`g?{4=opAMkgwYTMm5MV?>eAX zLI+^YHFN?B|Ba%7(OW1QK}Nf#{>(N!)BXQ_S7an1ypA&vSAL)hQvLIsWXAe>gZf^8 zhDe2OnXFE(^)ctvJj6k9sE0y`iOZ^u!M!+iUHkkN+jx1sX1fba@=Ihx=i>vX zi7N>{p{o6Qd;q0gx$su;4oOL67VW-e$Rx7T{pd3n^V(f10(uS{=lt4Jq~=A?u%39RJd)MgLsSON8G@E;QTXDb#O9x^ zt*uSH$#(_W%Dp2n`cekFVD{cGCzlahyEImI{F8Df|E_W1tr9!2@$YCn*&&}Mp zUHLiMLGeV3!Zu{9L%EcvWs*dT0&Ed69CGg;rr#;66=zr!0XA3ogU^1C()s63p7~$t7fE+cTNF`F_-Dj$?W*CTA^HrdnMG(?X5H8kE=Pl2Lhn&K6d6{w!XUo zL0du_=qgBC=Q`zLaDjmKfNQ=j3&ms`E*;z1%uk&y8Q%7}ja39qX~Efp9%tWWvMQ$4 z_d|}MD>iihDB68&6L?59({I3=kDJs_sUebcQ1UFbZWpC@ZPlJ2_zy)N(S`ydNbA@f zdX5J_M5QzWSpL{w6&{gxKtBb=#Q3cnojXN63H4R^jK`Oc#!vFna=Kk!27p@&<^}=y z0|=!^Pu<*jFBGXd=`0W;h~)!Ui%ls>DR~7@evb781p_u2KK>0D%dWR?zqB8f#TlOy zP4>i(Gy=1-oK^u3@-B|B2^0g63bu0;_BA*z`a<1&sG}(uv#>yIguE~(905!3RX+Yd zEb(Ly*5XYHq?p1@VLQl7*O4EL#XDomk{;jAhbb#7JAeI;4|hhI)Sq3yi{J$&2~kEg zWG4Fx6|sd0N4g#Y@;!O-WP3j)S%H_Aw_TO%=(FoTPuovIi3DQL7Cov2^YaRoy)o=0 z4!A6o(a$zTa>`~m^KzpQWd~*rZVH zNu^S&tWCilASLTa0Ar~sssTb1tpCvl6A?ZZZfl$6f#(bB7j~O=tFhkcrkS}$WBX+% zN6QUDf-Xf_h6K!gDUjgi?pe6G4hYFE7uuP@0dETxFR*W7LtXzl+iF!`>Tpn`q*g90 z;>wF+4Q<`{gn+In>ic)l4!&Kxo0p%D7iH)1s|WZ?Zbwi5(f-L+m#&&8t{8zp1RGr>{?yk(s0fPf>!&;izj#L)EaC2d%zq z(Rs0N1&pPTy-!*|pi8HqIZ8-ja zk*{&ZCN3S7welYN@d52rrnqR$)4sPO;6c{*C1>`=hka% z;c!S#%@0GfCrR8Qsn4${+U^sGT2hYCldC!N6ioULnTK}-ESWm@uo&Ekz!EpZTfC@rwrl{P5M_oYS`9V@ibq(>(0!0B%16$Idfv_QKtd?LOa3-0yiVFb?b-?uN8r5GnbEtSe!f=!P zw(j>&m@EfH)zMy|x4o*Af4h}w#Iyeth}bGt)vurVA( zNh}SM2v}Prpfczf7Bj{TkV7SY8?qhefe(VMRJ$MCw@-Dt9Sj>^Mw}H>n${N?AP?~BhcWH;=%YD^{cEpTB+snecL>hk;?7izR8R@ z9MEL0*y6Qegqm|Zv2<-T25A9K)S7ZnSP7Bg{l;31FyZZ0(;EyS#0NN;O4#Z<{}21k zDtUPUvx2||8XHFb{eHjmt*0i}aT;THiG?Y1MNj_}#&%_0NHmhzHZ8}p|dh?n2n8^;9b{mf?KwYtX_=z1w2_ZBoad(kyTwz zt_lcQH~G2_91N0pF^guD?4O4 zcmF}?z}rX^&rl0=Yi;@KVms0IZ9C`8bTg@~t*znyb$N@eBsyq3as^lw>;i+cYQ>}N z_D)PrYkD~9!uK%XzA&3K9u(k%cRsml-*J8h9?3>Psq=wq&Y+dI%D#h}j}`IvEZk;g zKNQ{l`w26&O%~!SSOz1FJS|Jrx=<2~WCJ{r|)f@~C(>YNyh~}C?f`aUCv80U)`MvAPqhbEI zzCf1he858oAexXnU9wQi$gJ=t)e;?H6YL1XtxAndN{cH4h;m`TRx~gvA3Qf8wjm=R zJ-CfoYsvdZ}Q`EkDKP4^U&alzqU^vl^GW68AukXR}KTfL6+w%W4Vj;_pJg`RzI z@kmz*i?8|O<)goXh$36@^YFlK;I>ePmE6JO&T4m;UMd@9m3DXk1_~Mkk!oidBZcAp z5q)xMBz!pw2VZ!rV|}-=B(Wbq4vhrv+#82QdvZZq&!4a%LR;qA4V7r09aZcC_dHb! zr6Sk{Js-!tEJq8l!mNy7$T(EeOgDZwvgYUhmX3dK{QB_!kL=t39;pKQoN~IK+6i#a zfu)#EU;l8YEVnbsQ8up-cND5e1)pS+yx^U0r~J#P$Zhy=MHK+Q%pqUCfbIqjc4~7vgk#VPa~LTP=)~hRM+4lyTWJ8qC2u#mf>6H zcojTbc- ztW}YxWj;n65_{g^EMojNhEH69HH$!*B6`=pT9w2%Vlsr)F6Gz;XcLoVx z0|OY6O(5L&JZc+c0i`uAc%A0mILMI6FbHKNIJJO4`>qLPMvD5q>ixHhAps6vDcb?` zWG9k6foP+RbMBN0e7#m|nucJ3uxD#rPwod7b;kfwM*LXpZSD6c*tb(d-5H3H+3oi+ z9*4|0I7H{ze;1&+xw)zQZ$UkT4yC`sLjVJ-RW>UwHukdukLTBS7vi`13+eT)?C4*t zU*s4r?REhp541h`bj|PVJf=HpbnOkm>`983!jf15=m&PKf*Rl}xWABv@g#aw;+=qp zbMcGbkWK_|?#019!}h8C%08=c>d81)4-Y-CsYsB}@Luc4P`7MEK#SA=WqrctyLVf0 z0wwVsw zm%&V23sQbbsDmxXkZOBDkAP|gsC*-`VU*YiqiXE#q5^yF;~#=4R*98;G^=zzi_Nu< zBcM+DyvvK!)a6AhnTJ7~i&t~9H#axCJoS1PRs(XN_&hjK?~MC^6WYdm7rQu11tZIN z?X0Y{0Gp33{$dY$w$YL(_Z;$u3wY`cV#2~-y1I;Xg}}9e+@DdDH+b*qQBMBWYqo!E zl{s*RLoc&SDg0hfm!EJAD!B+dYbA{&L8jh5iZExH6g&qVQ90k3>21Nz=63MoLLN3x zMMtxD#XWcc`GPP_GMkOS_V^wsFGHLO15f1p-C@-3%Pc*D zh+%}AS1AwxVeGC-^?@yuAU%sGKRA!H9j3EOSXhJoBesR$lWp0JX@MU&UaJ42>fq~- zsssOjKM%!Zkq8)f{G2HEd)(N@PYAi}pIdcn3=ZA5ciDln=N`Y~yzKBa`BL`#m~j~k zkKOtQg&KzSs_K4T6b$t_azM0xxGYBE;)x70@}>IkMAdlD+_mvMDGl<$7kTki$X)St zUR&4sp%y;8EtuTbZmd-3K?{fA`;fT2B+?h#m58doJ4Zq#9 z`T^bl@g07=Z{3ew#eP5h$;ls8YX9oOfgFAwu-n?5{2l8iRKRISaU^(|CF)F}JRyCd z66@U;*X<&X^<5z5fks~h|N1w9=$bj~rJXHC4=#>>9MzADnNXPvLTS}LL=2FEyaPAc zZ4QjnRDj{smrQ6=+`CUsPEHY*-&;VV)0Iaas>H&I-FM|#y!dbVy>-7SoI2NODHP(B zV_Z=5^J`4Jxb{MRpBv$%(tF>AGVSn+!M2sDnVIX_@gA=|;r(r!p~dRz>VLjE?*Cx( z+qa92_LdP z?GL4Ba|u^;JRYc5Kho|*>6kK^-i^#Q`jpPqJH5ObclB6srgPj0f|I+MD19$q4mNY)Iimd(w^Tg6H6HcG;L zpm`*;Z7~s5N2b&uUS0TQGD-5u)niq+Wbyd{gC_Cf%i*>y<3`%?Gm!MkKi652;6d>Y zdHivr3=&JkR#uktdYa}A6Y#X2RMyluch(F>l$jsjxh+sFV|dd{ zdVgI>+M2aOqy&K#gz_9f%CExkos(|mTq7e{X&Vz_tm~W9Qe<%v5Pa)$G&*C0sKu%? z!B-5*oO%e3QT*YZrV+GotwVedX+(qk1lJZygZQ7X#I@ru8!M)@E6(@gb@)0o|KA1 zY2tN)-klUk=G)`j>^t<=6GY>tn5FovwM^B_09MI-j_Swx4(octN?9(WQHC&5|J`x` z2{RBo*Sx534!LP1rWNr8%GFLI1Pu%fRyLWT5Eu>QZ5ta*@YA1t1fo+7@?q)4mt;!J z&>8Sy`*m=z4F5uLALY@j>yTNin9n*F?3WY%(C*ELJJ~ro$50++<}QjUZw5Ww%FKsn zKBGy0MmB9j3EL@T($qwQ3cJdVl;T=>OBGt2q@g);N!#9+XR<#4UjyUt9h59mAeda2LC z{%@G^%9%z&P+gDiJE*| zK^qsNZh29bm;FfZ&v^!W=-qx=qSLbY*K>JUItl*j3c?MXqOr2zrH7fl*>)y&7vjN* z-x1ZUqi{SKC&;rSWuTyco=Wad$#-AXm))p8|19%GeoAY^2;u(xN{B|)t>QL^s&1FC zn&Oq4-m}t|tMHyE0(9OGsTw4^NKQ-3B`Sm2#))fpGP&?eSWVW4JKg;&-qK1hoDF*> z#GD+Bgb}GB$39Bn5 z;LJ~p0ct6ZuxqngmZELwfG1VURw(Xu^7CmEiaPOYYju(dt)J7LzAh}&&4P)&@S-7@a+MjOMVB?qYiRSZ zEbLoV=Y?+d{-FJ0D^vC9`wZ(xU5D7iCK&mD6VLwh(dh3$STed;KThn-QvOlfr`1&9 z+__kVP7v2F&)zDJUj1Mc|MNfNN&g7B5Uy@W??02)o(Q|7U6ceJlLArJH>LNZ8u6r& zU<^RF4SqCvLgi!@Y9-(3_;9GqasY}@MReLr+6t3of@!XC8D{T*>)A8_aQX;@?k0Q6 z4Cf`Z&47bqtIX*O=BcpmywF-~1X=9niq6Oox$@idx}h*% z-y@@Rv-|Jwp6dsieF^cs`Nb}hKKX!^jm_skg4kg06K;0MzCa4HjA|ZpMnLtzSTcQv zGitsbP(DjDyc{Q)@F)arBYFLIyW=qMKdXl41}h1I#`$V|5bJBIU7Y1Axgzw)7+mBxO; zths2;%8M7LKI8jWm&T)j6R@LDD@~mcArS4(fEsuRFHrg-5)&}^WjROfw22~B)A@3~n3OA3G{NKsAj3E-Q@tRaeEiW#lJfAp2 zDS8W=xG6uUzd{KDvSfEaVOX;3)4`e1E!l)d(?Z8>zrjP}#Rrl$R~X@;$)FBrS|0MB z997lS>`3SG$4Y4LS!?uWybD82t*)w2)ZJo>Zxxr2aI>=o@#1yAX`9sZYsbS?VF<__ z+{4`G;^skae18abKl-dvdV2Z{lR;l+(nrZ(Xn<51O<5TkgWA4o*Y)yEz_T4b3qd?^ zL((IRxqh>!@A6rVV6bR+-*4Jvk?=L}X+upaaU0Rk;^X7<2)-c@4YG1MeAM7NcA_jO zC}?G}b+0xuI@7Hxq%=NzV!}R9O#~mEvN}zu0-=#Yfxp6&re`q_XkXbNKM>eA8?aCf zYybkLCPe?kI~5Vpv2k&w8ks;TN9iQZ9->C^!2Dnqq)6G3#d83JonRa`C`>bK)ra)H zk>EA@##%cB{wSB^PK`Y0tFWd<@lo5O0UG8fuyH4|n}2_RAdk#K+(EdhTW7}e?U>z_ zoAR7!VRm$R3U`n}>F@8a3jaDX(y=kB=Qg2Itp!1HEvy7&FOwPGPV|3Z=OWcyGVgXa zt(DSHXU@l) zwv+qnFF&Vt5>sv)$sCvp&P3OvTe-rLrNVG#Wxct-#Y3*{OjhR^0iMc=ikzq@PW^ln zXe(n{ve((9+PJV!@yxn%w_8=f-McO<@6X;nSt}V&9rIovXVw)?ojNsTINPaTT8Z^7 z0&k-SW03FfS%CKx5fyb)%W%3soF^~YkEdLUX={Yr3pR8;L< zgS6NIDV5DF}fe57WB4pD{U|V<%<+XZP-aA`qtvi@bDfAVE(Sonn;7aMpR) zlQ0$_1nGHtBz}sVx}3eTA9(g#AcYKCo?{*cv1aeH#e%<*+D`LEpQzEH5BjDHRmoZt zR4tSvl{<|az!kVks>FL*<|QiIK^Y7*c_5al)-vAJ7+GK?=NxfO+_9t2MsO=D<{5WBo{EZ>ap21L8lz)W5ut88pDFh1_gt1!2I!vHDY{MrcqeDFbLK z?~jy`eDn{!`=1el|4M`Y%P0Mt<>N^u8p?>O#TOGQrZxD)2^ArHr}gW&GqDp{>>znhKNxNb zf1*Y)#UUx>r4MjX3(X9JDhx(mTPOZ9@EQKzRxyXOX)t9Ohj?~CcvK#NpbYhJ=iZi? zYdQ@C1_lJY7T1ml8h}oS(EcCgoOw{wXBx-tl%=u@xE1YSL9Hut2q*#)zyKX4j@Ggs7;QZcK_9 zlsHf#Q>d@RV)sgcymbfcf>&3Qe+LF3U5!8Md&fgq^!FDbWzOZNj+}(MGb%?_Sp>O+ zR;UMYh|rQ)fxHW{)L$suDPm-gjI_LaS6$H?S}{$Sh74j(N`hY?LvXjaOkyw5IMVze zpY(v%Ta7%(-?b|+n>tMZ>5@g_6ToI!|>ulQ!Q zkTvn1qSvMi`OHsMQ^2;HQzousLzN7twB`P&rU^z`19bieImC24VmP^80Y5m!!)Ow253oBgzyH6^2ylatw_ zd~bGceb!a7>#bfsz|L@Na0~Ry3=rJs7bYer4P)(l7{DSk_mUp|G_$-IOIm&(z0ETJ z;mljk9(u~6*fpXMu&Cm95J}R-85M%~6L$w1;Tg41t1afC8I)5?G2$aSG53+c` zgF{>{8&DqxXOjFY1?>b(XRt+LF?HV54N;w9P!3r~d&o`09x9$2Lv?d&wPPJy=M>Lb zXqf~qV$Vk)H{q6gL<{)cE$;KBFabz1A~L0}cRCu(eQ@GPUS1xhET;Z`O^t=l1Vq;e zZ*~H*Zp)!1$pd#tkCp$cycy%A=`F zsz|)}Gp==p#g=BYeXpS0;T+5<=ufd{W6ioxo4@Gl$}nBng^x5RS#5)I=#a25<5=E5 zlEI*WjUZD*Su@cIO$KQ<)6;v!`6~OctWHM>$pL}QcHRcr*%WMIXe)%`j!Vy%*JvIvE|3gK_bT#n zhjCMs{>r7LHu@24wBc@?j+SvaoIO-hTwJ!1Q~i@Ct>@3cS;Am=t`RR9gNWTt_cE!R zWo2uYf9~3l9#fw(%{fCDcjVj3{)>VwZc#ibNNlwgX?Qe>aL$!XQM%gdi30UwJA#WH zA^5%Tvr$WZr##u%oALjnP+(#jcNpiiw@34!`nWDVl1hu$#Sh;mjFCM%gL~^j?W1+M z_d2aJ5JQJRr2IKxI>L+3YSXJ>qE&bP>Su04fjI_00k(^X?r-r zkkffC`dV{IbaWBiV=GUTF>}TRS^AlT#*-GO*#ot|a5}`0^G9PNXhlXn43r z1`Z_rm3D>r!JKDE#O9%QzDmQH0+{?p+6Xb7qIXr$02zMT*gzzHzDRSgjO-5(3={=h zDuTup;q;dgrdw&9Uh`5C6uu3!0Mn#{D==q1hV2Tg8T6?4trMW@PXdDmUe#+`(RaYrJWO9FmEG>m=8s0R8@q8DR=TOb``?odWe zLv21z8!Xxh&1Zy2i(G!7=~tJ;NHlq z^LkOjTY?G9&LL(2uVKD((xQ00Xviw7%S_#(`J0V;%rYdafl>&z<-iSUU0vn$&*I~! zEo{=q2IRUIN&&;cc>~l3tN|-Mg_|d6h{1T)45Ev95kePxzVYmY=6SXKY;Q!pt6LfV zRDHTq^A0REm_2r_^~n)Q5ntyGUmkBDmoW@U1`G+(>8Kum`|2l^VeAcbKUVIK7|(Xd zw`a7GlNRb7r2$$2&8yGul`JB))R}#!VxKS9X}uJf_=mc=o$nQN+Cxh;ToRZpz_jqV zOZahj7gHjSc%yH0uAhSju6sDmepFsdKFekFuaDol?qBCL-!5~xuXF3732X4B*TJKY z%`Y6RV%KbQ<3~k-H3K_6#4_ecJw(xeL#j|S?fWX{KuepknFZNgWiLA2kE+-V2Q9ci zDU%@<@^ETnu%)c18C$Zy6f4p<`RXqks-H_ID&Wb&H->nN_F1CxgLCf@ki(V$(}_#w zT^#d__|6VOofVIfKI$IS!ci%PWq`?P_A*IDi}~uaBNuaf*BpWrVsOtI{y3a-^g*%d zoU$ihzMb5Dl7bEy@bJo%r_iTj%%GGz?dGIk)f=R(ZTnLV-oGG<^dmb37%Jy$`MA6Q zXWElBqa>(Bzto*2UMAmJ>kd7-UYOeobZ?mE0bsgD7Yu!F0(XKIETz-!oQ}o`Xh=Tg zuFr$I7(yy?)9_pekE|6K+7-}nzeDA0M@I+q9V9L&PgX~n^yzYvKLlIGFQ^`im7==C ziLb9ecXj7a%LnvR^f*}vdymsYj6ugqbQ2r;J2_g1hZ2g f1~2^al>~~-^R*#XQ#+N1kgHHmt_LdjW6%B*C84%@ diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile3.png b/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile3.png index 8f88c5899efa9b5b74c304c398183ab291e356cd..0e1f7069f551ee8f1a34d0272853cd182ca78182 100644 GIT binary patch literal 26869 zcmce;Wl)^Ww=YTv65NABNC+O>H9>=0f-|@?4DJ#jK!OJd?oM!b5AHg^Ai)M7ba1(o z_uc=!Z`D0j=fgR5KTJ){>V8&tucv$2Z}ogvQ<1~Lq`*W%Lc)>%D6N5ngbYPOde-{_ z4MDNSUsFVUVK{!&bwNVH{r&gz>?bQOC4z|VDz7YqzKKqaN{e&j@#^J2BpDso4{om3 zAZMhKiqVe<61FRXByHhh=4|8WY6EgWBEq11gP>#nrAvVvy_{{VtX+}H@J59ZRNQ~4 z&K4$ryS{R@0a_sOUEyIMS}^{$Xo4(VJxrV}kPIE4{&vUuhq;Z5nY{_3t20t#S6vK( z{NgWJ+r-(y#=#1yixL`!prQZ!yqmL`1rq!z_~1X?q(DHRg@Y^7X8p3q4GeK{POE>`j?L1^ZcVR`#+q%qQ`a_{L2;ZRbaEc zp&|9y*qF4eEUvqT()j6QMt#*n*XH-&j6|%tuFC6(op}?6v##9a4gqogJ%% zg#{UQsQ>B=p4923kU_(((Mj!?@988Ldm0`{TcVq<50c`t$VKzZKX)xA#jzsm`8gW* zd`2*Y-Sqod$R8>^HjoLd!MfsTp#4hr^JkLE_Dc$nRWHUjvXQ%esXLy=Uhg;-l+H~@ z^zKBjwCGg};K1y-b7#79ae;t?2;R$Ce21qMdJGbc+)iO|C-$nIg^}$X+N^)c-NX#Lv^v>y6|RWHuA?%$8Za2! zIme5f**c}V;$XEL6v*Md|8+-cz#%h0@+S1cPiPmx?H2aBqcZxl`eWIBThs#pV1Pxx zMk4n-8`_*1aoqS09ddbvc)D~ehd|16xT6(>ba3}2qZdY;ZaJ?RW#I2ag_BsLb}*Li zlIa56XEiY~DFd{pzSD2Wp4n?UtQqm{a30q~-VvV|zM{0@H5!bV)@|LSA5t8+(xqs3 z&E9nl*5{Z_$lk;>HBC>)5~jw?B*}VM*mV`Aez;OsBc=|I_gYW_(Qi(@4$@G{l4BJ# z$<)^AE=$lfZ*!aGeWE815ms67YjkK0zZ-)%CGR{Ek&+I?y;bzwD@YRbxwMY~_ln05 z$^N)8=4>+>5pUenIQM(kUJ6^EUE%O=dyo-j@1W4d=6MpPT}Qna8+3&42))HAR_G?@~#ziWn`& zo=@6iHxD--sIxi(wB9`*5pCseWVJi5mIN2d$E0~1YpPW2cO1C%=y}u+bo;jP9xPJh zCBX}-f^-x87NLy+<6=e*X}O!KMgmLYtYyXzDaMZiAJ8j?Aq?e(ZE5>}e#PjWl5_4x zF&d~#*Set1aE~u;v0L8Pu)~A!8E@cPwCssQ0Jhb3cfUh)Z9ThqR*rIOgs@3P(VeQ$ zSUgZSoqn@SFRVr6F&Y?jzS(^IQG|7K;OvQT$!kJhA38ZNtQ7I5)8SPh#sz(1nILZ*uPr(@LPKw>?PDgzze6|y<(t2c|CgWgG(5b^sL%jX^;utp_ z9l9UVuTcW{wFOf*smmXjilZ42&|FHsnD$5o)}1rHmCW!6j&99jF%7xA!?lx&d;CZ} zOug@}M}zrCRTVBOIJq~Av_7v7vY07UuB)rNFs6pI>4+0a>JYDt`_Q&3g7M>uu21d> z>;S61bD`XCzml~^oOUFICztXhO??EA<>(Bqf9 zleg`}*S_CI$L1p%jaRhav>*DzmV99r-7QNf%&m=6q{jvz?pHbW$=|7NdA)RK#-puB zj7EWnb=BUr%xn)WQF-?AKAwgVXL z40G)BacdAzOBpLXAFKeR2E8>jK?U2)c*}iB^^if|9;1qAOw4J$-20uz$hRX$rTZlQ zTlhh#svuGiHpz8GP@ln__1t!aY+~lptzh7&_;T54r9b&#L(C)jz{bNZH=|h&S?N4T zeYLcvjmj$(_t+?9S6+JX5?}em;0|xMu#j#%DjaJrDEBD5tzUJ0s998{HRxo^>S1{N zRFPP4U>Dzd5Yu|8@j*Ru*{~$hY(8UM1=1iBA69&G)Zj183HoLE5YC=pO+COuH8UIE z78VjxZ9B)}ez@?#%ggKP;P4K8!l*uZiwr!%fN!Yl>1VywE!vd6Rf00L z&ROWk)LhqpzrPYE1yWD&?9iUS8|k?2qp~baL-s-yZ$Dr<*VngMX^kXX!I-uhUymS- zNlgSjU43_L^ngRr^@vTVy1o(v{t|{iM=-`{C4V1sNVh%F~xsdf1ud zp;0)KbJvvEn(zw7zXn%%VdCUU+Sk78W(@-E1mlStkEaWvprXR9sr%AN(BUj zqwF!-`@J)xZayb$Lh$IrcU|LbU`o%SNcc%>-sq<=SJ=p}svqElSAe-uMO|ZYw1$Cs zanJVsP)Ft19DawTn|WVclYU}aT&-00<&dbh!fPJ0ATyfTBUzmhkhdU*OyhY>%v_yV zsSpiM;dSz5&b+|L=V(_ifBb&5cJ#=xWH zc&lF6{5vvJ%0Zjxf$wenRm_{}g-@*b<;;~1OGU{9;>JP&tPSNl*=UE#tUhnc3y4JeJ<_+H?z;jn@DlMcaC#a0w)J1ZeYRo>i|@mQ z230dBSn7amiAE=`EmX5($&Hk~k#Dt~susK|g~~SaaON#EY4rOTMVtjqmSCS#FLs>) zTiR`-w3?=D2aJ`zDL(GZm<8+{{Hx*2dzrIH#(KO2U z?ek!Uk3DACAws*6#CHbnixvhRD{f-rd8Y9+wcg<>K2Ae$%wckYy%zqjeF|@Vu!ym( zY_BVejh8l+ytqM~*})TeeoZ4Lw3w6qaCb;MOU*MG40k2lWu_XQFZa%IG!o-e7S;Fb zdZ@$;XZubKZNGH+m%?(94UV>5SCGa9;wzjEVo3B=+iWM zL#u7!s+OO=Nn7-AJ*PmcB{5s!KLLk^{=5Xg+7T8JkyliFBPyDXiskKG%~^1I{yIFt zoYBH!xX93-1XaA*1zFs~Hc21Ia@>BubSJDVrZ?t$&evVjaYONh;h}QU?aouc6keOK zFt@@*)I6L(202P~PcW`(?;yjb_dSbdj&cX{k9jX0e95&;z-S=1a4QL#p$`|IIu2|O zGSze%ovB9$Fdt+qsaJKp%Kw>XAwHUxoxLTZ^$NU3l1w2xFudNbQX<6JbbmJDLqN8$ zEh8e-8v4|e1!7D_c1ha9r1KgUf(_ceD$I?VJ2g|bups3XN+7UZ%?rN1{LVy*6OM%l z8fwc>jw{Dc?c-=MSKIFO8A)sJopZg#6BJhxKD*o~X7Tj3x)n#CEuCPVVWa1tqu zIFZebkW5%V=I@zw8L|(_HIy;%<^LLeWNXNBZ%5#vgPe)4k@| z5E@e*p?E zW)5i#MMu{DLI=(do`*E3Zy|n=qIc-t28@SbH;tE8!Z#=&#YKj3%92(5CFapuiJhY> zNLMs>$U`NS)j8`DIiESl3zL=-sxr4(J^nuf5{)rj?>0jp>U+~4nF34`T<*P{o+sV& zM@I{OQSfhXT5PeO))9{Ta!A-lD?HYyiqa~EH_SUQ)6iZE(&QbuM6NKxW%yb}e~Wz# zWuj+X92)@{%cbDOD66R%AfgC>zMhjHF2YTge7lIcbIkyb@w(DEFKTCY`Yh2^=O2x% zDfvzP4056J@Uj25$9tN~(0D%z<{o0T{#`IUj%nG)rfTgl=+owiaydr5?^?r0Tyw7~+D! z_AsSAXKk&S=O4uiGCZQSAD6!5Ub_tK@~`sIHl}M-jLdBf$%s4gNC>Tl9ktpm(2z(D zqma5`gghM2SAm_y(>GQ6vbHcV3rGy8WVuR#RswDli_Ke(ZM=KV`bPHR zj|SW=5qVZX~-7wq$&^#Er|&iX0;>DL?g1WR~mO zH1bmb7nq&?1s}ykjpNt0Zc6MkZ|oE)frdq~6Y^d7X15(z)ckos?Wx%ib7+x+CA9MD z@>LX4n%CCP*E3h`_uf!TjU7gj#fqRf(X81A)~1!3ww_f|t*$t8J_hy4<-@dtVg@pS z3B^p+eQ3(PH^^vK{^sIhbEVTMKouqa4CUkxdD}~HaXg{qUfYhZH%{pJAqdiZd4=kk z;$xWmeCYT?jI+HxTXpr$ol3h_g}#CD0|oWR$4jnMKlk{GCgYbbp(1jjXJs=-B8lo7 zIB!1EB_}ZI3AS8g1CBGf-j(iTK?Y*&JN+;rI{7@C(j z=qGTurqM5OA2>@Q>`wFyCPq4`RTa`pu%{=g{G4@;y`O;CI~9Yk z?ZmhX1grv=q&8d15HohauD1m2bJw%yk5=>_{6yw&N2dRJHt|(!^~l7w%;FPJj6wd9 zzD?u#NPm-|z$qGN)zF~JEz$LtTc4vU)3M(4o{VkKO^6meU(7R9WJJk`NOI2r9~&j> zN@zX&;P$Vw1y>Elg%NBmT+ItPne1fBYLIaR=wQ_POuExY<-`-V`5PJElIu=LG(Imn zB6VF8C+Sd^PPfqcaVgk$HnGENF{_*+QqIaR+&mMfb>3mhHv%s_5?OPf?r1;V*tQ6y z_qR@^CY2fI2Bu8+HnhcgxU}os>)&P08pkneJMV;TFaLCXgwG{r_I=u@*Abg2cjFD0 zSXDC@17LV-jFp-v{edf#?nRJtJh`{&!PqB)&y^uJMxE&j6jD2b&XA+^zLCzT&kzHi zB5+nFK)(z-{^8G66n&E|q@{#*=+wJnBxE3t7vj?xk`;NV>mG(f*?)g??$c1^x1@PF zWzj@xSQbqJ{r+8_dBF-vflB-1>ih0_yKi%QRqTMSjs)WA`Wa2la`=mn9X_nT`*Zbw zC|H8g;sl7R;Hf%gY4YZF-QpVQG$)@DtB5lkI^6;)aM6bBcZatChHNb)OBe74hPSmj z#;oAq`&A51tf+Syx4XW?<4m%7Q-TZM@saoCeXARQ+-1OG3g;7Nrs+V`py z!GX_SQWY94?zuapxt-)Pb}M@+hpuswUmKS77d$vMW0cbU7ezQhYJrgw{DUn>UI_dT z{y>h)}1du zlgtaHb4C*h{D)2M02&)7NTM}nz@I-dpO8LVnFWg^PhyD z4ZB!(ikHmZW4!xYST^8N=qGFlq!5Q!Wk;|0XbE0JM z_Q@m(xCS<&6;veFb$8=dH}})&aKUN3fmie5@%g>9#4G0N;!*$b*~pc2TbhN3%YyMs zEhIv0v;*m0ps$)$J}el**`%ZT57y&Ja~!xZB(TToRY-g>1i8NNCEoC@b9o>W*ul`k zmX`dlm#X%B((I8u;Nd~LOZ6se=P1}&F2qJVj|o$|Xj}6ZX3G#_O{-^LbdiS;T+NGn zV$?p4pyWlovky)YZqMKK`Br%`*P1DfF!@UxxQo~rX{EdzG>yu|ul4P`b(_I?V^vwhS4!xA3o3i? z!j>K&K&jg);u7%}((RbhiEBwDm~}A+vx*8`F;YD!(t%c{#|Dossc6zV;_!N&f?HwX zn=90yQ;S>Y3Q-KN%g&d+SNsQ7pp7GiS1K8we%6N$@$joFa1sT0k$U{*bN(~eS#>wm ze7_YnFeG&QN;7!lI;P%^{B(8Z{)qK@ud`fcOj0c-;wtEz`JeZAn^@gRy=JL|^5#1v za=@p~GnasKAC9(JBM=ce<_;nE2Rm$fq;8J@((F(oi86)k^W`%^k2({u30PtTZuLeIJwu!H`ifj-&dP<$1wBWqOKir6-H|n6~VZa zSK@!c^l9zWACxMl;+B`LB1bOBOzODYVi=wQ*C-m_9z=a{g4tOl4*6)z`7T;^%X_6= zS?Qi2pZ(XI`?}iMtJ{Oe0c@+nn_M(^+k*E>YpPp^<`QZ*J#cKkPFr>LZyiT|NF8GE zjFxN@LNk`D*vsn&whTWmQaQZsThdwGpKu(QhxhBSjD3|R|6(^-F?Z^N+#^TQP}TLFr$;RRdULdL5v$ruTCoKiD@NeH%0kDsEY%gE360Z+-ZE3@k}@VX zHJa~1(_ts0Q;55@qLoNF5~+;fA;jvQm@x3+C!F_7d>vfUXiM{-(|l3#h&L)#u|03$ z?cR1Kj(1NN(M%bSaqR!jx2-*0r4loO?&g-&=@uK2iM;psdRe~QlQ!_!!=WrPJbYx4 zTH5nXz9W;h)k|%TIm`%ciCO4O2&n_$?sW!t&x|3mD(T|CcHp>;dqCQhi z?}49@4HNdbJ+*(A&UT$KC|rfVM1`kHkgfq#yV3D#;6zvYT)!tw1=ViC!UhMyWvWEe)A}*~9He_HEtZ#Jmlq%Z9o*6CaNTT}K9!O(Ai@He31LsRn({M>LFfGRakxh`7_ zZQn(~mCMtEhs#X<3x?H8u6m@oq480{3wcBOsG@EzepJZng=FdE3m5qiUuGS`21e9N!ZUB7^Ai<+5FW#Q_N6cNU z_z`JV=%{G1Ms^%~CAwc}rN%ak#`32bD=hMEzGhf)6}VdKOxVlY(9N7vI5{Nsx-IPR z)K{SW&kHCI^qsD|nJwxE!9Ds*CqqtCA z!Z+M$kAEypJ5rVrBwsz0U;X-uZ&M6xcNNfnnh8E^FlmcztTA{m{!f{Lbf;RRY@Smr z48vasbEZkyQs|DT(dmAZ7&|zF<{#~S+Rp7*srawIAlXD8*!qoky9u3 z_4AuLfbYV+k&%(nM7~RUvh`W>QlN_v=m9g76Xt0O+iO!epVU#VzY_eRM0>BP&!>De zH(QsmS$=MI5vzC#k0V+JD9TY6)Q2I3(D}c?IKh33SQEP$BcdN~{pWMT8H^y`Fal~} zat@h_(4N}*I$=CO5j9L~XSOlFZ?%_wCd%~xu zupULQj9gLlr3&>spg7ZRvY-aeWZ#vhzCPvLoUL4HXQzaBJB^W%QA(h$KuQXLI{tIWxds%E_mXO`%;eJU4+fMUOgR0~Nyxm7N zh!vMOuy5y9vA&p6%(z5pW{jF`bYHIo^+8HUww;ft0lba-FMpoz`$_&J4XJmU*S-wWhgFncxUGmQlZ9+i5)JpQHY2>Q~6DtdUt#a&hRr?G^3v4 zSowr`UwI#^5v2UdbG~}8nwAHdlxHp^o9ewfac-CrgQ#&`iN}f=Y~pJbV(%2>Ut(cP zRUYy)p_7SiX@sI0NXw5UkwsMmzvtrY5JGGmY7}(dRs?t7HW3UA``lk8@f$AB6W&iT zB9O$AiVB9;uX})Mxcl{1h`phgN)&Z7Tr`?UaoWjD;lamub6g3_mo?InZ(UJWtbqtw-!JL7DzSWz} z-Xgg73PKiCrK9=3niCwKrc{!K3>)LyLAFKG++rXGjGZKd?8q30vGuJ(J9*uG^3LW= z;OKzjj+C_V1jv3=7B6M=M=dQOR3i1&nu$YV8RJnPPZ?9KihR02kRMi%PnK~JOS6YM zPTH5*1htQ)feAYN^zbPthuXXg>L`6eg-mY{ zadGU2xoQA_%7+ins;jG|W#DaZ6u$-jAqe!+^l_{7_Da(`crmFTz)rbADx>LBKhj0@ z>JVUupYeBKu%B{|mq6Fl=4RuEXb?{2djUk-gq+3bJcr|eU>O&`yg87)bv}HUQq@b^k&)qD=jL2)!9h1r5}3dUFHgBo$Grm(p^8{bPhGW-qz3Wo6Z-#*KmIwWT4yf zpGj<=H2#R(WE(g)Sw^L5{pyCrkzH#UYhih&q}PSImYyCnKd)7^`CBzZ7`1DEuGFxi zlnL|MvuAbn_08C$&-x?Ddz+kW$Is5r1U*k)B^mkOcohk;u}mJJKc{91y=* zZGnM;BP4{dY8f4G>;>!256+d!oA7}^;Pq|hlYT717TDMw+&C6Z<;l%VPCBmMQDV={ z%~6SZI#$KgbufzN4zxArg(A^HuugI|*g9Aql4Zc+_9=-SSL*KOPtn)aVCNOprx|Xs zF2+bGE-9%ox`l6oR(DfE$b4qVs8Xh`rird3q}4%$BX+3O!CWhS>A?T`^_cTbR-C&F z*PJ_qN##kTm7h1Y5U`6+0bUYLJGpA`o6xxw2q-8#WfNdn2BtJ@xBt8sy9$tRyCyX- zX%(0h?n5^OZF1Nv7^lIMtQGZS|w%QbwMnfWDy5ml+cF4)@28 zNi_Kk3++mdxqHEW)8#Fyc@%1{8$<05@4tDpVrQwE$GGzrm~;31Id+;tp}@d5f8ND@ z}G1x+ai!ZCu~m?FlUe<-cJ@Ojrhz31r#K zZD&Xet8LmBx`M+CDk@+>)3Jzv^d`XEoSxLkmkUu9gYDTaI-4Uh5KUd%M%s~+ z)6I=NpxZKrOCxISLS#mRY|dU88j7Z%pul#+%FbSxpZ~k2jepJbkEgV8v^up)4t#wb z+nshiyJAlSmRb9KXU(WjKTAw*qfg*$a4et?G9p*oQVmH8{{$LbPr)hV5a@GRQ#xo{ z_TvDoz%-Rl(PFG|7vf4fBDnZP@QK%C3o@`8iuBimiR9%Zn6(xTutw@ksHf!FYD;kOu5x!t2Jb+ zy>5Q7!aq!OZxj6rZ*(U}@a=|U77ObvxjlZ@bn^y4X-DMU3BMxp<3r)aYAu zq_%58-cL~k2YNP%+syLUxS$UM8>*Shw%)3#>ODGYZ17GH9dZ`*CB*#pO1>;m_7T%vyuji>P4CRT<)yr; zJD(gwdmUl0%nSeI&&>GU*pjNtx?g2<-JF3wdFgW5&1-hq=iSx2D74|hF%+iFJh=#r zm8RH)6eOdxLI?;_t-MB(g-!$vxa0t6c3-rGEJxaW+sex#G$U7;9?aow5(3d}o=Lnt zf>LEJ;@ju}aC-2Hl71K~WZg6u+&$Vqbg;S*3Zzwj20@*iHzi^EVSB=Eu`w0lmh;n; z&7is!wZvy_mrdTJH^09Vr3k9~_3G*AQKY1#jHV0Cm< z3t!%nq4VuxV_=vdg1p4{%VjMsOAKlPBJPJ|%F4=#U3?rI6NItosHp0ino>GCWC-h! z=uz#_ICgFU(-kP%Uf??L(l9gx^02QOwv?8ZVqjy}Vc$%RD=H{BlMQPC05JUgfV-nc z+zHfgk2?rUiR{~JZGAUxxwK@I&%^3Z@b^tO0{KtottPm9&NTczMxGW?wkK<|+InH_ ziFao&osCu{9Xg6*tsEX^r{m+QRA%BidE%US)y(!p9r7DyFV>pm=>_);M^<#PuK*7F z%+Hd4vyDjQqyop%XF+CU4{gELd&P|@mtlP=N)dMf`Bq{*0S+{(P;HUsn_(a7AZInB zda{LHljq~++x2mRpr%3r!Q=!X@5_J^oT~N(?^YpC^&QPs2g;L{760UVD}MIy3ok&s zQbFdLO>kBd6TeOedc0^~!~=<#58QG+=jEj;PCbTyycK%fwQj9)c513APH`OKm(KhL z40h|`*NeOzfECrMdV|f}>y=rp)#mIk!*D0Z1=`-lSW}71+F(hS3>Au1kXhDq-_Xfv z6G;4}M1=UpFO2iW9}gmrF6W-^w5#LF68cB@3BgP3*LPoARzFOWwYdM*;4BDPkU=## z552iBVLS@fN;8u)AZC`=@fTA7&%WsmGS*OTKejAk-aLxdWh4*V4^&va8I35fEf)X{ z)jnSzxuwZK-+%14ZlE5G+g0fhDlZf{7*WyKv3B5&>yNeZIJYg|?51agPfS)DOK`di z2}$4yoLVh;`GU2VFJweM&7JDFm(KuQU0XUuw_$9di+Rc)9C^8FpEIvoiKG|Ye!WSW zwI;OGqva}R=6mAh8zLOEBMER$+)u;i2i}fRzM)Q}Y@G5w`lurqUG+v;XYGP)aBDy* z(0Lhg%)VCnFeWEz&)CTuAr4=Rv~$UJ3&B`f!biycGBF5e+DgUvOnR(-s3frY($mLh zW@>#yH;86;NG&-oji_cCaQzF6PaPI0j#CFOzR?z0R?aX?uaWAH-APXgpaoQ>})IDuZJKRPKq2>XJP2& zcvy=Mbr^w4XvTyBJKYu68KS`}_@oiswjCjpcIj;yZ(#}=?tThOWBa$zETy~PPF1of z;M)2QuzhmB{lV*g-s5KMGR0T7EesM5c7fD)y0!Rg`urT>=9TvDO|tz1Z38d!BAgo7 zYl&$H;Wxm7perfl_&L86X7+&C$y<^P1p2?I5_wJ+_!4ts^O)oyV5hF}`=JOg)EknQf>>8(ogT^Q@W#xRY_@-}!1n``*5xPI7xZ_(7W_ z4KD7kj@T4um?qALHpVM5rYUV(6&&|@nMx#}X*_exaH!q#F&*-)cweqs5juGhh#z2W z2M&DT2~486KGcABS}YDU?R}MqVGw#OnPAV8OqyDu)a`(7rKv?hlhlwfZ>-npE&EFF zTxuK`Cz8Ee=2o|?Egx?5#9QX-R+Y!sdYoa>Z%jy=n@bMrttA=XA6b)vPFaAtshF4j z$L5vpx4*xf`@FP8suU9!7q4q**f;`Gs!$0!ehGLuFhY`+mKHpEhu-3MLR5wqKqKNF ziP)WKe-JUpoFx;MF$Q~YZ*R%3U#81VPKgr!TMCE>4iyy@cScG|>Rqo01tsP8$jHB$ zgtIf}{r&wHIBtfjqwQmetw&5k;&#_%>*7)isW~}y@@4P+-16Z_y|TCpcjl-fot1^f zK2e}ZKC~8_E#}4ObH85Z%DZra57B0Iu(T(Zt1%Cn*tE|ANrWV4Gl0YD(4{w=C`uo^ zh>}vnYLffW^prQCZSu(hdP=?Gg4&eJ@dXxNBL0XTE6lii)RbmX48D3$>#!3an*0($ z1${87u3fV&UlP$Twh`|;c~6?OOCO*yv%eBKfYXof78;4k*lk)T;0O26bvbG<(pWde zw!=#q$W9AuC=oipq!`^xW9#{uV% zkaV2xJ=PAupX2B6fUDOx!pF){DlN$q2D532TAjL)sw+ob^vmXI#)#a7z6g}+pN-%Q@yC}-KB zPRHx2N2Eazf!KRv!g{71e-iM8JtT&;6<@&I@lbgd(eJY$SU5Qr6Q`5Rp9K<>%*i&QBwH5?$z|s1d1{ z&PYmZYN<(}>fI$Jm#3&HlVY(EF+zkB2Y5k-msa87RA4A@u~KPYH&5&@9n8q~(;acCSlT9b;qIBrF2P#bvwh%C~=$c!+@f= zI^VH23I3jh4$q&tHpxRGbMq#zZ?;8qkM`z8N73KAe+Q~IJ-=)0D(*${9_Cz(`8{E4 zKm6vPnSx&#E>Zb~^`M#1ZdKMhzIYLje|xDD!SzJ9-7?_k{jo@@^AP*g)?$p}?J3`5 zFLM8S`T4f%!xW%WU(e@T&NDNNGwOZcXKB7)gn$1wpq;&KU@re%*im4Sx0;{GS95`L zP*vR{z@i&?LCDPSDj(A{hO!L9IhYKg(hsadJW?C-c1^JvAGsD2Wq5$ zT`AI(wPC`MQ2GJat9@BI8*EgPRA*^b%kWHPDDM7`)h*kzbV1P9?RD^D_G3;q-l>+a z_q}$Y>b&mwO#`V^nR1GBlcQXpmL4j8n92ub@ zA@J+=1H^Tz+DK*e<;0>^*BDxfOoZ#D$l--Z1&ooM|9B&Z;QU@j1{J|Ml2TyYL?^b@ z=#BJ~Is(+I6epvve^`2IZ7T*m;&m6}=vn{I!Uo&arP2}`X2t~%GKud^G#q_-HJrPlXa>^X zjOYva!mcluX@cNCP&~s3|4@cbEy$bs@F@f5KJg_XaH!BM>@2FR2R=U$|%>+UY^{_g%okM)JAb6t<4s%XKv z#9J4sH=FzlYA^*gHGF@6|4-W5F3?f(`}_M7IJ^%GCe54rh!6uJXNmBw1=|dzUzlvG zi$V43-&tAPR_0chFP#kp-?vL)T;ROvVoay=r&%c2FtOEBnVQuCV)VDWuA*Fr68s^O zjXmZ>;8Jd#1ga)a0};!Q)ih44hfkh34|mX?tG{fR8&Ni*jy`)buO_Bly;}PVu&v^J zwRQ9<20mRAUF^_)*)MNUDJ~94eOYY7J-twfpD#eTUx`nFlo#6MeRcE7(Nk0Vsbg^~ ztgyOz>TJLf0j;PLqau(hghfU`RuU2(s+X9jo6ze2K$H>;G^bksRZQl8_`fL^JElMY z%2Q?&zmKU7>A(5A8m;zps|4Xo*iM`M=W6`!75FWUn0K9o0LMSz>~FlFwt@e?E&o5Y zZ~Y@%!~dxT_@9cm|IPUSnKYtY?f(y;b^>R#c0Su6Lw4O5RKyuo`jgK*;|fMnq0;*2 z-xYnM6-4y;_m2av3CK^nMD3z_QqPb4U;cweZ=mn{%$QZ+Vhp`LvPG3qm$-c9KTmNW z+P8NS&oqO@sCYGDx{hDFx@<{v?O!+eO6pC1}Ma+;HIQAAO#B@Pyn z&u4QXW`uod%$vHSDjFkZUM-vQ%qOz&h|0?J*7;H&N*d?xhP|g4qYnj*WCZd-+f$P- z3aA7Mx|<$fj0iMCRw!myQW7V=ge4s}>RS`-nH%#`+z9p=>oFz)2cr0Gc2@*1l}B}u z$rEdaEkbV?ayg^kju4gEEb(-bLP-9R!j7FWvWqg_ainsUP5%wNpTS||RbTewT5L_` zCue3h6wDb;ueO=~l^xI+`FtxXG4oKYB-VEC$LfN>2csc^ zOGXv*QB;S*Do#>D?D?*xMgN80*hidk=R+ahzUe`MTuMsI69j3}#esDq%^?jB%Wvfl!)g}t@%g^1-1c+q_UEIdtx#xO zFIfM!UVhF)FZfRp2iXgW$gbts(dpmHqm$CHAvQKDp+m*pE-es&8L#vD;QSd#tiA@Vf^M3 z+xxe`(+J1YIJ0ePuwR_E&i>W5+5c1BcSkkReT$+fs93&F6c7YH3tg&GLs66#dhY~8 zic~3~gr*cxsz4x!6cIvC=pX??6BVRM3xpzqBtj^L5Rj7O4ZrWMb>Cg;2w+ z@2`Dk=FIGU&e`?Mo;}oS+LS*svIBF0_p#0&t@)g7HoOU*tj~B%e*gY0=P&NOfart` zas`|%4sVM;@nyfMMUZl-6}@@8Jpn_3=n==s1QZ zg)&xq%J^+r@`URB3@e~lJI1_A>fi#CevFnG1s_#mXF-pxYM<84RK!2lqNbE9S#!xz zNZrZ>WgHUnPHtqwIqtC?Z$Km&sBhn1 zD)8lAyLpNnBLt|vcZQ!eY+vw8wCr&_bo}=+fS+#KJLWU?Z8*>od52vFFaE|9;eMBy za)`s#J^9YD~?jYB!p2Eq{Q>h$zuwR{I7`}L-;s0>-SFz^;7rf#R-qutPfz=$Hp`H z-i@5|Z37MtkX8=p*Kh#55)a$0>uvMqyzjWNTTK}M-kjRs2Y8|S!2B*FYYqYG3`lS^un8m$`SEhv0Xv}(VJb8Wjg1^Z4T=i}p zZ@5gjtCS*wNG=(V)Y@ojS7(p?G}mo+<@t>dC&dQ9LQZr|;B$?|bqZ;fLw&pRokpTn zy=(G}%Vd>x4{*RDtfBs5X8 zxJ;5bh=%$+f7|JPy$F_{^8T}NyLRJJQ_*#;fC}}G^{4#kfQ~hEjFh=KZ0Ir;`hWoB zF;f^bt&D~DBv8jvb>=eU57q!jud~9ILCct*-Q*%taWknq`1OE*ymL#2+|Ip^na5kP zKOSxbwd|k|3v=Dz4&BI48@&b+#JQWJ3VxmK#Txm14ZR1AF>+c)FH4J~C-K$nu{WNa znEL3}IW^fFwN|}}w&?Jp{nn0Db-mLQ*--%bR!tu8REv!2*xC!<+FOP9C|rq4B!>51 z z!)~%jBWV4;5*Z(e3fq>TkG#YMj;*dl@}GTjvNl+Z!%G}qZG}oGg_Ur4tj8X&eOreX z!$Bud5=byHH>um(B$%B0CiD7f+sTxMahJ+VgX{V5MU?ExI|iEHU-U0w+Ku;?g-y9? zo>WOWUR&Et5y=+kE%@Sp)zOQDt44UwKzl+(;4@7qDhW6I^~|yHoIS_LpI20ngZLKT zf}POFARnyD_Wie}qMjn~5@kl9i#+XTh9PP1v2~!|no7PU$Rcxz>HVdN!l@j8#l)p; zk$lt%r>F)~@@QXIZ8G93$mVPInS(HSn z)!T;Ke8%7i|EuNY0>x&rtXfW3*!Ntc^Vyys`RU5rqZG_CI&$95-<3xn&av8_f4B(V~Y=P2Q}3t^7U>}$>XwwUYy3q_}E>O&#P91G<%angx3j) z{FIefV!d---(z@0lVveQJQsTBLdvF^l!M6uat>EYZ*7*`_rFhN-M*#c(~dk|61tpe zISbl&-xC2eN@jyiqCOq7YqF*d7TjJR!R`JG9ll?}G+^A^WSeEPqzIkPs5)Jn-p?Yo zEb8r14X^uMv^vP5f)tvMR~2t$F$HI?&XAJc819OgP=A#|zRp)g*LIf0tFJ$BNqJFM z(X4YJ+m*IYRr3FF3bg#RD;!P21hl`unzc#i@1u2<0>fo; zJr(uo*|fB0hoie-)y#hOj&~l(9H{EWgz&wWS$EW+T<*FG04b(_13KFxf3rVT4ButA zqY+F@oo#Z}5X32<->pmVf856MS2i{(rfT6a4tL5SmX_hijxjMgx(?V#4fh_;U$8!vNq4WV>&nK< zq}@S#`fJs;3>#0L=|4r$w7$S;%%kep_6OO7T?bDz^!M&htYZA zPan4A?z0M%)|}FZU5=sk$JqcFGd7kGYCq47nG$zdzc_1zQ9L$99d1Bx0gu(pIdGJ) zZFRoayCedIlio?HWpmsq7ce_DeK}5QBTpzFS~<^U3iC|rsCluPv)x7a16$u*-Zxjt zE5g>|!6v4O>WvWz62!!pOCfGlF}&@2bk+4(pz0qJ^PrzpF#NPuv6o5TBa1F8+r2`q zN?CL+vHp>mDe?PoN!BZW`yfT-nbW@d!Pi1cmD(<3Z&(auRG}u{o1{svw!E>q)Zg3C z8eV6_swP-z?ibqOcnR$P@!VFV?s_5o`h1O-&?TMT36D^8pkuBseb!xFXcN@se!7Z<3%*L%EIKHaKs@%}5M>Yr5H z^t~Oe)=Ue%XN&JuP!qCq7Nh2JR*IXX$EXTvM5dYQTKM8ln`f;;QEJYOl?eFJB2hR~VQG1JjtLPwHOyTA?GJ zU(0O2-cPw03edFl+YSdM!v18-$uL$JsWvbi$@dBBE=|d5gOwgWIa(dPuL?LetEmJR zA@W*MoIh~p)>#(i!Fk@rg^y<$6f&OrlJ2D7*HQANEfH5?T^e-SLUIeFF8 z#d|MMyIec($;P8gI~wo=x5R+UM9QreDNBcySMb%c@VytsZA-efotL@;{jlLm#dcNt zS3pHgRtAND)6RV~^?c6Jq4x~zckcMCD_wyW7aPIit6tg~=BVNAPfe;!^v%xmni}}I zWMt%u|3pBVf|!CfM^*M6dNVxnAztn+6OpA0IH9; zEGXXRH!eRZv(GBjJa6_uwZQP1l>ynyBulMgqkHg{U3_U3D?qoaj9|8Iq(+#S3tx-X z8=*^4&~RVdSe(P(_D;6^g7Aw_s8Zt`fhYm33w=2!XTW?wH#`#DukYecUL|eRHB?BJwfB z;ApKYlTH)nn_ryp@IbdCZ>bvEYqxmyTArSt_;i@CL&!WIx^GB0C$Mb7;j5!>PvI6$5o?_his2S)P@=?>pMO1O6S6ki3RdS+t;<6}KyMi!3-u^mM zzVpPx{*G}@7)vv$3nj=?Z0jwp$2EhMgQoq->B+R}e;xs&Q2*_P5!3)O3^z@`hN=)dr zM@KU>1cIU9QRe6_;6CNvyQf zBtuRJTGi*3HIO$Rr9#^X4?n#w+P71176WKYPxr5VO59J}Mb1-kRn8k=cK|Pk+>Pj# zMBOTTpaIPy|ZlPo!X|8$g{@=<^c+ zIu<6=je`&>NefVa*T0m8~-GtGXAc z9XFFMnqWW`Ccd6pHic%XUOM{X*OvELKdrCtvLaPWU60H+5T}Ur9k?{cj}ynMKKGT~ zxNPYbx_;zOQ!jx1y`bjy2xJ+NTO~$#EX|~CEZ`i9yom9{U9;}1T3mAY6QEEcPO-}_ zZbaTfM|T9mD@vm;WEaYhkKSo~853!qys;~mO~U<7gPo1+h(Qo{q`B-^p} zs|!p07@wBd4^aCSs)v*MivMY_x8lIhyx+C4$}Z}?1@oilVFeXF?Mr38CeFtJ))YO< zMi50bJWz&yxA3%UsmR+_f2q+b3lqcnHi`i%y#Xq-%2h3l_b^wsv{!fLWRW~ER+8oa zIN|2>OFTCz_hIXoR3p(b!U{>cv5rF*MTTEzS9!eBJgz#)I({rHG&2)57 zl#30ntEgnNm1*x5WtK+Wqq+m+-2jaTESj`sg!+P$Xa1+7f_R-B>isKNaLhj{sg8_A< zrFu572OBL8$7>e;cWs;UFOkTJBc0pH^nV+$31=4=6TTi(@ee`cp4sf6k9p5V5z_aS z4pQy?A;94GK1@0KY;qg*G>r~RyQB;q<_^)FJ*H%pDeQykUrqzHubHy#>#q*PQ$H8o z_ZM_`+2kIHuqjV#AB-zVaTz7m*WCrWI2v%ZI`efzm@oHW8WZMC_kPal^ZROrv;~=i zwpyP9HyKf$C62O{ew;4kpS-bbe|T>?o>dIA7SB5I>*p((){5ZYmBDmY7sPWVrQ&3B zh{=#J#l0L-eyh|KtK(o>&WMoIZejK{qw)r*Kot&B&F6}?FzvgaJyd_22S7zChtn%o(;6D3Vs@1U7mUKg$6t#@Y~1)xA6L* z7V98J_SC?|VSF?WXIfpfCVc+D$)q%sF4++;ZikqtK%Rg<3 zY}clmrTTi42V_qV(Qkvjt&I0f8hlU~Iq{tF9DpkbtskeeKXfcxBzvWuktGnRz14cx zYf!e8#GMKw{D|UPMA2X`Q;6{lh_zvECaC8iJ!|5ulxAxYaUwXN2pb~8SrjZn@>BP-t2}?%F@-Y_>j4K)B4=sBrR{ z_2~BWI%3UOcP)a_#XN!sKe-17YAZ$Fi^0T7S8JJDryN-UbPthe8r}C zCNj8!UAM8TdE4dFbd=s;>vP$yUpIqjr49KS_%Y+^;?faG%D~B9dF@^EL3)NaP;f7h?TfL)Dc%=DJ^Ky5cRsIqH-C_W=tlJ1uV#A zSeWvYC;tyyyoUJIsJ)EA;(G0VR zT#jqxU4_aJPvj|~NDjq4x^Z@y5?&lJ1Hri|=SQ99r`>=y# zn&hc@ss%o&Ip4N+VFskbz;jXi#rcQxB&97v;JNpA=Nc_K@H16u_MVN?Vd1(N0P+<{f`>gY zdz2C7bA*#Ts(yLTv9OF3FNfk7#-2W{*HEj(ZJ{feYPr)2+d+)op6w>Ab|+MBTNXf6 zBkudO8SnYhOXwTu6`qTLfCW;NvLzjwtUP@%U{aJXlFuIW&JCghQelqT7Ht3J-9e|R z736>Cz;ww=mWjLvGgdx6=Kl4u7Xyv+4T?Ot45-L!1gKOs>E|msAD$6ftHYQUKljLu zc!Bo4CK*UT;9%1+S>+!;yBPl9%?s^lLth@FwWvs=wGc3bk#UT+vumgWxEeL<*)m#e zZu9i%SA2Ru*pRm`D8imFW?(b7aW~>Ci4x(erBT0!Bm=+PkMn=yiET6@Jq%Z(b=T18 zb4Wa2y9IS;5b-Ujo&KG4ETX2_nm_!Y;O9sw!ecMplWK>t?qPiA7DtRXAa&eYRp0rl zP8Fx=>k7zL$bPMY2%z(qNr1PR&BOLrHe`IHzLc6-sIfnwW^1gP)BfI!wPT{{)23pj z5QE@NTgV~>KJ=}hPnI0(Or4+1Z$_K0onHx)%o_)#Z&T{`cdB`)r974v7oq~S3#OqK z)sbsT?TthW-c<34O2ZDMni%W8v~sZepEIQ$vn#mI^R9XHL+V)MGC`s8AZi;ugt9HC z@q|y5X4zFT(%x(8=11w{yuOf}<0V9=Fq)|-h4Nul3N{PfVG(s;i~BhUmNHL(Xo4Cp_#W-WPIx9aPFWtgBz0J2p)F0`<)(hL{n4FY6K?Nm`c> zqZl^!Vk`L6Z*M=OLd;1F71XxYN9$RwEO$!!?fpaf6w+F$g$HRf+)9kY@IYMZW7y6s zx=eT_eQ9z6|J!uHh(X*r)IwqwRh2IA73V!`Rp~SnV`4AT{0Kq#FHD znlr0D@Gr=kxN3vZ9*qyTk)4F=dp5|2X8I53PFn63j1(OHux~&7nX|tnc?ylqQbY|$ zh9c=Z8*J%q7Z&qzyVz}A+6-iT=gQY|#*6On`MA9n#O|zu=Pt-0v zWU<%)8*F@km|@dr$-S+`->zvhQ%2BSSzz!?j(~_%N>oY39={^3s zi2w6z0!e;|W&ZsU~?%>KwJxQGxxiDa6kXtRq_7)uIM@MeS9d) z*pG<0$5>23j(#Chqf{d^yQ#r{I_t6{2fSA6MqJyl}NRn0rqZ6y;0JVrfoTEX~HgmWcT(rqPyI2!Pcd-7Ys*3}SCE5`nT z8x>E*mF@cGK=(c6KXdQh)$(a`I8d#9P@39Su6FpXW3os~VzudD^3wcTItaC9tLlBY zhJvl9R_9de9*L^CDh@jLI`^&9%u_%k4*$4hSq0l|a+>M9igI;YU;yvfq%6@-|FN6a z8U7zdcJ*6q&qGX)_PeC8SEB5%1C6II|A|&mT``-Gz&&so_mc|m|`@|s- zh=i%hC2I&|{U8Lg?vE{-K~I9I<}zru2AVj9Kp>KzM4xquYLarGQ!Lc<%4MG67xNLqXRi&k&Db-@s5`SO8@A)`Lo*UtH9G5f+FH z_VxA&g%t1T(gnSezk7o{Z;FN<2=(>%glKVgYz0rYik{fOyh0H-gFPXxfkM&nZNC@y z4e_{p6ATT8)V;69g6=J%Zikz}0lop=koR)4(V$Q4U+2SvJv<>S;lqW08+H-q@9!B9 z3SoC8wSvCQqG7hap?5tY`Se~D2;>07^wN3Td+D_C$Us}qOvaLx-d&xwt6OBfHab0^ zCpixld@y+*1p89FXx2XRV!LFLd?|g3dI@)&QS8!`b6ZLJ@wgV$MVHW@bNEEZ_2az> zF=xY#caQy2@->z||MYS8{}W^PPG83`lbKGh zj^NHSkR#qsNr%A+Asd2w0uiDwzb>9D7b$7`0mluX+5AWGI?!y`0@Me&ziy)+Xx>Aj zv_Rty`LGW(C-1wXC!ogTY!y8NYt`A)gi51_r zExHK>=6?C`v_;`tZ|~bCMvIF}T|lDp%*>20dy#a<$LHG<3As>O%}`-}{+D~ks0CuG zmR~4Xs_jb4;vRgwz&`CM+eQ_{P}M%`F>y|8j_s@=tl58w9WOUmn>&Y{R}f2Cp-mdwYr ziiRS{NN*X`Mj)T-EZM!9y;_QBVV`Jk%w2QOzSlSL7qT97=Zm>G=VUa&^VZn&r9X*6is7;EUS2vPkn6C3Pl$v*xjC>GKjDs=n98*SBE(gZqU=MetugZ(h#6=09A1UN3C%Ta2vc$_FvU{K`t}y792I z06fdSrlv-9Uo5puKrI_XgBdJpQCZ=eH|HOmJLl=?nJFL#ew4uF%ycIEEe=-{mXz3m zwIvk|ic$0iN-?^XRy(R}`sS*MOYPkrpx6Wx<;o=QF*Ii!2vwHC00+Ez^9>N|01%ST z=|V^K+!B|%JH0ukg{7tT{{AJqo;~X5?9_r&ZTX}uz7qjk_H03)+2LcBd5^h5UzozM2jh0`3gZ-+Mom%-cm?m4|@rBHgP3s@ToKf$r z3}~XAA;O)LJb_i4;|9jY(rXm)u6~hayMaA;v5<}U!NEZTn&Os?D;mOO4LYN&dHK0A zZ2k$6B9gdrgXbglmcVCYV0wB|=6 z>X%@v<>h7lZ2ao#>M;$CWM$e|gQkZtHFaN|{%4)Ya5-G4kk2v4#am149ufsW&EON8 z8mNUu%A}jeQ!F|d97^c*lQJu77@%d-Fl5_ULx?83b?UjAGKqOx!?n>CNCCKbsve@0 zjOMrkE0`>%EK;esoS5a8Ew7=du+NQTFMU(Aemc|J&*O89EbfPD?7YUm?It-0PA2~N zg2-!^XF7S%snmUz$;Vv=r!j;t^uZFB@o)Q{T?!T-OuiocOqqA(9E>t|r8a)Gwzf7s z4o+zG>`aRB2X=~E+`07NR8R(Zg_GGHb0oy5-lqHYpC2Vk=lMY`S7+}6d3q<|fO~Pe zFCCSlvW8_fy^j8|CBLdlbNafF4HF*u+SUK)Na=6wt*AOm@7YsOT55@tFWvCqe$bSAsot36Jhu6}^9+S%EuNiclrbe@a)t&L8QQM4ZE2-2mo?ONW1 z{ieHih$3z90A-#HTFC7~|6N|mulSv8+&}#zm59d5{PP*;pPTmn=?;Tm?)5y;dD1x% zNuEw0$3@=oJ;GRZ3uymqX8Y&X{VxgeKl8NvOYZzoUp$73XJuwR;LdXf{g{QvH-~$Z zi}#@5J@SeThUQsoV~(RsuI=Mt$%eegCmN@fpw;t#Rj|eG3_i!F*4$zQB9v4r94$Z= z0U6vx4`iUL#1s2P^O(+mvN#c|_@<7B?T)xa(D(Y#7+fuK7+@M}SOGyO2Ff=WfDQFK7!-e*L23RWe+ZV$(YB8+q0h z!w4v8(Q-rVb<-Vlov*^};xUK}PEl^I*K3q!1n@u*LGs?deS6T5)2m`QR9m|{obpCZ z+0;r4UC@;I%i_uo3;Ujx_>1H$L#ZA9y7|&|ib0AFkoP}jSFB%lmMRzy=gI7?<4@U? zG#@rpT1gcj!1a@n&aak@Wc(Nx5-pAljEoe5XnHxjXOb={7|m!)zB60>f<@)EM>naV zE5R#62UcbR5gQ}Qt_0e~0q)l_-cwab?u=am3_qGPPQYpFUOLthaX9f~jJ!?}C0?c@F*+`m;F zk2molr0d8Iy()oyy!k( zE3S#()#q?$s(z<4(!8bVIGzs_QBQ-_b50GkgwqLOV~DLjbaqQLTYXK7P0`xXnm^~PwLd9M1(H5C9rIX4dr z^qeYhKLZ9$33$ChxeWnXMzeZ6CnXF)@Q zQ(|Ib<~~|ShZ#tTUn|uC@K}v7KnMYlO-xD(=ejsK&Ce&>%uYGt!)x*kK|TTiBgs=0 zWVwb0()bw|Ss!2?BwO*A$UoSGKDu1L=44&Tx* z6gv$)Nvh(v(TqcZ7{+(SP1*6rhOGKFyb@`;4mKK=6{wh8Vg0IX=`9_WD{FL}vZNUB%vG`$9L+=eADRu4tTT7~Lyq9(EPbyD_F= z`7O=vQOX6(=@W>wD(HZ*u)#_*Kq9=h8|7ZREcmsn?zm~AAd}JPFBzRG)X%Au`y4Kq zbVK{K+!(|3S50KsAvi&p4?fz9ncYkm?7b0e z;Zj>X#F_`yMV=RmROuA>B9T zUsEQ}UPG_-3A_3R$5jrS8mjM~M$($=`S}>fvq!S|S%Ox}ZVee4S?qg4n*PAbJA3v0 zW&XnPOs2LDP`k_XN;t>VReH^95R(@t(+cMCzFvW4HG&nM+LLh%WNdDW!7)K_dQ-Z9 z8$`A^i#9+0XGrOB7Ce#c@Rc`mqUmO_pon#8kiQNxyFGjzqgl*Ljmteki#S-oATJJq zi0A_xbc&P*^yPZvB>t@ zc!z&BZ8Vo{)f!gD?C2DHslwx#p#&PIoy%HCG*Ld)p?xM`EFZwmg8Y0FI2=xA&(3;* z0LiL1NZcL97j$XgFR1jNsDrt+mK9W2_iH}S7)icMS@7Td3RIAr9-gu$7ne@$MRkJ}jLw9-$^SWpMF zb+^8^B|n$%Oh*4LQ2?!JxHWlCd*#Hv99N*YkioQjqk2{gSSCu~c9-k-0ofPdfsEC~ zIu!N~*){T`Ej_C}gHJ0!UXH&c%hoX;=iDd_cM%CxFEw3Peqv_R?y=suIk&sLE)(Pw zt^EizM%|BBkUeI|Cx^S93bGx%#(3ad5!ehoFn*_aZw(^+;<9lTCPS+$6}K=KY$eLg zrqf3EI;?|{8z#T7bKOCbkzIG|C`gboSNFeYv$eCEi6cDucoP(?fD+iWejO;TR{4VB zg^>6K3_tPs4|BZO9J#u-)(q#e%|NOuSL%vlL1NvHA}UFe=$Bt7dtp{OCd}9swe8uw zCMzdZhm|%`%X>7kBg4AQEv^qFVCpgou`s~FX4Nzo8K$4hda=4GyNbM)?$1uB8qfOP z{9qkqd&&7$WKToI&n9i&K#lPAXA7D6C)5?WT{e-5Oj^9thR~lxm7*DvJu&uKnuC82 zK^jNzj>Dby`r8CfBPzVV;s}C0J$$Mv26-7h9MosmorKE6AQH z&{ng|(1n{&C^vw1j?AEyX0$Y&InX|)M7wAcfNKU`jAE(mx8{{}=EuLghFrttTo75d z;4s?XtU7p42Ajjr`uTo6*9BZ18T%O_&j=z1P(~^T&PR>~neA?m4RkXmjhOI%w5uX@ zl4qO6?r&@RYkO9${%B#6H|<*apSz6;n}gmcH_;ndEHwQnoO<^lPD(g~qIbt6yFv~8 zRG(@_WjI?-jm`ZE9vBrlZyoK!u}$%dk;BPSS$*{MkNkpTp38PJ~JWmsb>Q|IbGyaU1-|d2rSXDWgoYQ(kp&NPUb}}))piV zD7HNin+g(NL24 zR(f{!4-U?%`m1Va5RnN;7Ih#%^%+RDfSd62eAk4|hq*_ru(uw&QDX%l?)BEyXj8iM z2_0)U&C7kpcdW_Ur&SN%&TXptWsL?t%WOY!e}X#vPgW^i+*>@oR1erTP)jtO z*!$uug{i85ZCW^X?AQGaDU#7qK6o!Vks& zd^8){<6{fRE&$`4>dM?&$*uuDK3|3vwrsrZl%(EieRjXXy=Wl%`}?;e%OxLQC@e0v zJ(bcmJR5Ve%%#rq*`>cVb!q$MVvWYpfK~up<#&XrI6nL0;Eq8M0j?dD>TO0cPt^k2 z%M$QpmoHz&HD~t`DsZm$l>y_r004Sc$BS6ASTGCn(AP2GMsY#GwL|e&0b*!6kzyet z;{f~s7$5f|&QkA)Rc7(kqdBaFp(60$#opr`K6*7$pSI44RO>F6>M2O0MslU ztq;mpMtvexsslV?YW-Q_X$XY?Unu8egx}zzQ_i)OU#XLpjNT*ucx*yVO$~aJ)UXsd z-U!c}PQOOI>v;fICzVr|rYthOSO0D0-7XF80sb%f=6?sHk%?c38?E)1>%xe3{di}# zD`kT&8E_Y#`M*ti(+lfAz=QvZ>i$1&trN*S1SY!o!fNGvn4@uKILz6Q>b+h2HM^ku zUT>RCllG{1E#kUcu9waW>}_q20)@1+kWEA^HyS=SEXyxkHJ8^7=N9t>SuV@be;Ip8 z_?BB9c?Do0odHXZzUDAEtYYbVi zA`Li=>lGeEQ$B5X)=V`+N$3|PSSyTwIHpwfq!{RU09czuG~hq;En&96Li80Ju3d}w zMuWnxIS3r+T%BL;^4!4V_V~yRm`5~w&fvEus>*peaxeEAPsVy6&wr>`(%b<#}a{1tX zb?Kh|LQO()vL6V&vJ1d$0BV|bqO5#aeb#o1UJKR&G&ulM2oyC4%F<^2>aXon)S!$3 z3Ibp;x?BpVMsI{rJyK~)l3>G2hbXkP0}x1H01`8L4LTTTqQ}O(6VsOOhmoO$Zd!=> z4_CxQqK4Mb|K)-}x5!qy(_-kk(Kn3`{Badr001v_b;>vH9?Syr@Ivng3gJ$RImGtnwr1rAWuNG^x-h*mN1N!aza~B3Gpdq4q63OB5LCrbHz;N^su0Se!&s%SQ-G%2;i*#5z`(ne% zC(mXJ3vL?X4GRDdKHiS(d3zbqyDx7WO24`Kg?Y~b(2f1z&g=d*(o3R;tBuVxA#^gP zoIc*<(Bso@Gx$BmqOPWREE;F_ z&ui~J^6G0b+C+YUj$KJRXH!#G*VM^x=m}zw@qm>MXyt)W9QbBmt;W+JBNq_MOY5h^ zMXbK31OYq280s&usX;KvG1I(VsUa0UJ%>*5LjLX#DdT?~WEg;v&#)3->!aI!*&t765V1 zllO>TKKfONVxXOeZm#JeXbt(xmP6>*?^Yoj~6$^;K+5{L+UYXgIH~`lmOq z#(h>MRt_GI8CZL#fJa9u6dC5o+ME~!)_iu%m8Ka57YEmcv$M15-trB9e3}jd7gg=d zHUl7MK72w`Y{l{8n;RUblObJ5+2ZJ8sUO$(KD%V=qj$;+x1f#3++>C(L4gGtWlbM?*!i_Pye+|KS?*e;wO{1yQg4M{6a#48g?v zH?=}$yVl7Q|BPKc2Mye}Y{8k2_?r254m|H zOJ-D_t{~kItf-myk@b&(o)OFR9y=JRQ&B-LJL))lIj&T*5wq|on7hKB>}#BKMXj<3 zeT}~DL7>ZaBFJppL{)N@VW8PNJ=)B$cU~xkVfAHb_#K?rYQGxIUY^d1DB*==B$QQ{ z8}fdsjZfUsFl?r%L0?xVD_Ugse?+z5z#~pwW;*F?m+9uxk2G)SvU zW~}kIwi)Oh24^!vC=4;h7H1wa}WsU#;tc*`VCYps2_2ezV*(+C&ne33- zu{L(m)9%&ERU1x76-A|&C)QOHd7}9|@Fp2`a6lWIX88W(=Xs$*!Hcw*)2I(JT?K4` z2WmDgV;H-c77ET9c{PUMfe&k{p6(-mT*hmdYbpn7lBBLdbjq31VV+gEq*Kg2Nc|py}paHBk!_R7H0$B`; zIKpG;*=v!q`=FcVf0n)5n!QM&&(5<$(gpYQh$yN@IRAE2H@JVydQme<+Zk+Z6}g+C zSdN7g5*yv_G$EviVIy?EIm{Xz?W7x6%xkpH65ThxGTP4C8X5E|wA(Z6mzhM9U)|_r z|JEx-sf$+=6ncf+RXUnHtW*+Ed$Bi`XcCD#tk2n-Q(D5>%=Gi4ovVF29N^HQ5bU5u zn$&@AA^(bzYH6ed$8&ZJw-=9};4jPTIhNh2+>qU8|7(bZl^5S_#A@MpWAS|Tmbbj6 zmL*xtmiZMb9OCv?`U3iO>AEoP2iWJ7wXYZWWv;qD-Hy1y{ z+|}$x-tufan}Nfhh?IH*%7g83=?~$s?3@CnQXI4}MRzKlUb>z~AtyI|T#U1#-A~aS z(Sc5&(rsGP8?hb^#tfy(dGfFaHZ(U5qqo2~_VR{l81{OeTIMaRzV|i(KIp=<>!xv~ z8iwM_y#iB?!OUa!Q$H*2Dd!A>MuvWXh$)fWzktX0W9ZcKET+(;KovI92kj94T}mFk z!)3G^vKqP+Q_vF&Du`%GkxJ+gnn5jBZ12Cu0J_n3l#7H3>1z@?S-DbfJt)yndAMp6 z_i>l4QM+YAR5zK<#OUfi(5XrPO9h%3x?&8QY}F>@FXA;2$@jMZIMQZ{&R?7}S2dx| zEs@O5r)zIR$Lo$T0?jninKxWUnM;-_U(VfDQw%crI{XWz_tcy{F%vD{`_@o?col3F zeoDP6DraQi=8%?K2#I8@!#GyXA)c8TUs+qU;mlxh&O5wH5$kW(&i@z;s57>)F~3l` z+IA%@Kg{SV)7XrLPM3iFeN>f=;V^ni(0b$qMT?4u0pWkp3r>56V~A+DnOS;!PdxX! zlvRasv)Czf6D#8Cj$9M@_QeDIa}|8%&1ihwDNqHSbc{)eIvbw$oDjr%)Frn$@?@KU zv{Zm_sg3`>r;UsiW?UmW1k_!86Vj~7<*Tf+TPir3#&;DZNbhzLOlT_+O-9@|x%8f4 z2V6=vzChc_Y&<*H!K!=+#y!c25A^OgsF@&K2`8-}>|b6tTJW{812XkBqgAb21ApoRai*s|X_nfE=gsJ`znlR76Et+Njvj$I#F@KOPed4FJJjqv zK~sMR_)5t&NR0ZmkEW_&)G{av+m`=o6tfCaj6PNbh6vDvD9}JQ2mWi>`|k+= aehE)myiY#gxc8)J2h+=zmr5_VNBs-4tW$*m diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile4.png b/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_intuneprofile4.png index 2955624a7292f6ad23820ed9e2bf35b132667408..93111cb58bb4f02a6e2188a33f9cf5264ec74687 100644 GIT binary patch literal 35792 zcmd43bySUo0Pko zwWABDu&hr3Xd-k2nq(|p&0TDq+-w{jK;(E2S%G$ZRJ*jJlb4H)m9-nFgrrXtXeIuq z)y2{j)s@-J25JcsxFEp;uHd1rs5`!Q^DuR>1Q|LZQQZmt8QjLz+};%E>H?~7uZael zaZ%0MrY;UP4pyLc`t?wt4d>s_yStcMg3gdZsM-G0P1+F(wRCU;o%bcQ0d3f*ZW=aj z_LiW6{Sh``2SBf7q%=HJcjvr(HOA*4hl6R4ER3I+5~150>W31TAmj8SD00tTAQ5*D84D}pC ze|UO$xVa@xih8FeM$#* zwY%q5UHZUVZB6qV0_sZFRS-jiP-gxM*F6fO_8RRSzMZWdUj2nD3l~A!io6Vh?V>~U zJowBPDgpQWa+|zVK+-BZs{ERI zj70Z8deUli&iZ=*bZ^v(?VMlF>bx7Rqt&|pJ>$i;Fg51>_*C67{^6p#r;dAeL*N3k zjA``#!AHDFVVnVuXU{sD4_YIz2&haJ+dnc+o#6W;o8OeEbDgy7+ay@-7od5r?d=m; zR0+}XN~m~GGJ3gb@iOUBev$7xP(Ba|8cxJeZOl9n5Y`f?D{Tqu+Q_+>zYHy&nGWj^ zKK+0|>_%d@j5&g;{O2k`2H8genMdscZITlFq?jbu;^K?WL^CPXO}=}wI0%QgAsaDY zjUp;Zb`D)QGm)jl@ojr`_8xz?B;0kt5=H;Dn{{)#3mKv#4o&tyc{Q3g zpDfJIej$;(1dZk?btdtdi^jYXOvh`|SJN)Mtk{lsfO}X#$b+dJ|8)Nd^|@v>5S%w+ zSyZ{w{95%+)6!_|$45}d<4HXCR04Dl5^GGN%%gy7)x5R2$!QNm4GoI-gXxh%I<nBf;Cf%wPr6i-zIT$>^U!Bvi787bno}k3~NC4k)b|+}!L?TDAmQ zt*6Nyk~}O>wn1W4gl0;ewlD6N<3!?MqRn~44i^4gb~5JdvHP{b#FPYLmK4Ar2Ps;% zhG$4*m*Kc0eXs`mn!i|L1RaI1IsG6&H20R7%Ht21Z$A@gSc`e8(d%w%EA(00dk|jO zY+b9zsau8V2tT9Zrz83u#kg}jFl}>~QAZU)JeDcf6hmLn0_|1_%OIbIdYuk|0_8@l z_kPBaTayyO=YQ8`4!?YP5I$HCDF-ZLrWF%65IZo^U6rf6qi!P-S3$5Xy)Ep;h-jy* zqLO4N)Ccyw9Epb@q)V;zTuAspn;tV#skd=SNl6(J3ihX=7qoBBeVdp%Pm*BCz(-uZ&+YH&KUAe+cia7Q^lVfisG9VgwiaeQ|p zIbx!IJpVb=r@IuG!nl`M^#z;aoc?IS#HWaL-!$o{tW**DFEm~+Fp6>%YC)Ccr zXSH&V=da?ijTss&iZHy=WYhG=YTe2*Z8TQ9rNmUnW8rm<$nVy6%{?c~X*^y2R2!WR zK70nhG_G{EkBw67%1M|QvO9bhCJQEMxy{Z(UfznxVN4Y}Y8v%h3f04*^d;r$2=_8c z@Q8qkdpd>tLqm+bI%le0PDFVB2k3P4x%_XjA3CR+N@5$0rCeomd40`kf)8s)2M4D) zW1G1Bf7ZRt6C9hrs^2HK&lpT4SJL5kq1g|&`RPyZm#k@QS6c$1n%@g4FB_Xu1Or0L zvOh-zHNh$-=l8gT3_Anen_twIGj#cH`xl&C@SGK6Bj!sxxm>fq@~JhpK%TGq#Ae?_ zXWx&^YVQh+uZ;C?*q=kyFD7&@)&vouvJkt5u)+lB$ln_&1qIv$PTfEZ9OA{xqZQ=| zP2!O}zYuq}?ZfRyT`qS9Euz|vdIu0JL|tyj!U9;mE{(5rkPm)waS@7)gF>&ws)^Kd z*6!~WdWT|yH>P3Ft3yelju;BHCRNgU_q4dXyiN)`zRvouyf9+U6^aTew)`( z2BrvRTZSJ{pbdV0BA&oYb4^@dZ}Ka8cu`GkW7gkr+++v;tSJ=pW<#rSH{z}|sZ{{~ zj3@cnPLKMF7mw^iyHxCz113PjHGOy)Ux*n8x#QhI6V@W`1lF%3Ufs<~hCh!tYdiME zbx&%`|J@V`9XFj1J1_rSS5<&WVYaULU>8(qU$i1@%ag0%lS@Xz6?<$VdNFxDGrB+> zym_a&O`?-AmR!yn@xg{TkN;CdQdZxN0YrToi%9idC|JI3{73fvR$qDs#iTriWHV0# z^eW_KW7PJBEiW{rFymVpnmQs(rpZ#@xe2UkBzAs7Q^+MLsBN3SSNr*iqS%s^5jCzU zEP2+kp!~-@sbo zF(IYn@uRd{?8LB`<)BrkdE9`FY7g$OhWv1&G+vu)@3DSfJL8Ld$CyvQZ+zUV8gcPP z(cK0)zq)z9QqV@hjLX6Vw=e1*qzazdMKIAZ+H*KI?`1>sqSbd{m6Wf7u^~n^1F`s0B_U+sG#oy`B+7&BSBS#oLnlba)Dj`2V|Kg#z1iw|?^0^FJC>`C< z&`>~Z^+K1@TcwXj$-A*hej_z4OGD;5DGd}NbQ0@~4(&g>1CDl7vVJTH{IcU0u0H$l z2tQO2A(;AW*TeDW2!og(;{=QI0-+b;%$RNYymbAgF{o8R;xjD~k+rZmiFZG(JzRp! zxEx|L--;HBd2)X3B|Phd8@@bnbuy*ZA_{%UI?lQIk%rmaiK@(h=ByZZ;1{elE9QTcpsFVS-Cq7Tl!AqK~>f zdoLbyJ)N-5{97thL>eHUtJ2RJ$SambnJ>m`J3KZP9E3x{!pBF3hK8oR$Eskd1`qrJ zwr~9_{3p@>3(xNi#~6sG#fBZPk79+0A$#e&UG;G_-fstB=E*b-YPx<9p#MFL>DvM} zG<1nK%X5j5hsni+i*^-f*-to??Fr&mZOqZ;H90tdE06% zinHx%M>`wUCZ<6aoFocayRLJ=Hb17}@pYf}H5VFNH0+>`mDfq^h;u;JU8hil69LX4 z(XIz!7k-S-}`b)#`MS_XxHQL>#A`%O=#wx@8bi<9qDnNh$@@F znAFXn>?;A`?BSO%B(M8?t{aX|?VR~)V)jn^vTxBqX`$a=zy3!MPO3ilg^xGd=iXg+ zZhnP(RdSxDN&QU@%|g>~WR0sM877atg6f5I-A!Fxz>wMvjbJ+g>^UspkK}OpwE4_D zwQ-$?B(zON?H3N%H=vgZVA!HF?n_)5Q!JP%x?CB-qNl0Av2Q}Q?Ei`xJ5 zo7S~yh4O0HqFf$da5>Ea-U7SLiVX1bVHc*3a|f+e_U-g-afS<(kE;CcTxt7h6V-Gv z)vHb#Y$r}H55gp|*P;6CrPi~Scr@1Oo<~fbNBq8kIg?AMwSg~-?l(Hx5vgLNg3-Yu zoEfxXdsHnFQe?o{$ox{3aiQ+hC+wE934I!|51e_5$;)oESepKiv`xhiKGGkMG8;I3 zEyt5e;xhQXgpSrkK&eB+6qfhYH96;$;Cl@9Qiw*eIWCCKIaIc31xG`g6uq>XPJl+f z4oz4y@G}qP@@mV{WhW*YX+V7)#d0ZEIFz-;gfrl71%JH-4;qnkl6l=`<})f1cy|5S zU#BXUSRNBCwrb}{>kHVZdRWl?LOyHDf5%KWS(s3X9L*vlWHNO$?|h@8OwWmbmRhvf zTrWc(4Z6ll*_o9ZzQ;AWBX2`Wd64{yxj{#hpZxXG(w}lqsY2KoUIQY8QP9(8F&8p+50Dn7?i{} zl9tWxtx7d(H#u{ydS4$1-Q8F|zV0j3$l3l#Pk>2SyG_n%*tK*^#rb;Ek=q=WGjAB# zcr~6x{rJqXM-ad3`IST1O}6;Sbg?)(vp2pMv?2?Os19U;D(Qk0o2c!6^`kAHr%RLZ+B_FmqX zO}Jo2=;`Slo+BJt`S~d>77qIQf2MYevwnHi64~@TaWtzX5X4}}i*7^^hv4Fyyf78t z5|JH_N-+84rt@S5Bsr}lotUY2l-b#P6TE3m6>KA1{*zgvq>nV6$ zTyGXZal?Lq5m=Z>^Mm_o0tH@0vTW13!Gi_@QVpWFdS&)Bubf|mW1&Gwgl*dYn(-)t zAHEc}oNM20qYiM^G*E4{ z!0+(_?)@3R9|)yIkil95*JaTIsMJk(65)FcJy3bt2K_Ww_jLR7?EE(s$8W(che@EN zu$5L7T@t4zC7pe{Y;NwF#i!zHO>pQn^C*rS!6!$qal>fLDBUj0*)&IYjEivSOd@LPfBr-W;!A6=vS^3AcNnr)jKnFX~Km4 z)ox$L}$?B$^^h$(HgfHTTS`!Ftx5$}}%F<5A$ zSItoAxN~JAZl}!TWZxDykjH^xB#b2YB*8G4-I$}tB0trsLef8nx(-~_etyXOD7s=a zfqC(SOsTry0<1`%Fp{@!#`LdifPi!m`GVtXxu zKD1_e6>HMa=ZMwsa6RFT`-167XP6CQ5YiIZk2TUL!Gko`{J?h2)<{Hh_#6h>jow<( z8+VU0e3&7vKN(P3x4bEihqb|Xl&kma5y^|SZ1_ouVske1)xDENQN+gDP7YlPi9iox zTmA;UM^v+QhJ9g4y0-mP%6ghC*OTa{+}hbj0aSEOEAFZ-Fu#s}`6%X2X~7oXXz29@ zTQig6%p0Lug8DQ&DK)Xlk8AA_+Xjf@1MbwUx%n&MPY^mTcq z_V?Lljm|I9XYKjZm|kkmU(!ae^dmCjZZ_-u2>(bEx_O`6bRyeRRL_f5YeGExJa3g| z?^jLPj&VVbW?k>IukK96y>3!GedSsr-LPlNIGoTcNQ1s>sybL?on0ec7d~eG);M!Cv*m6V zi}R^qTO^)T@7+fbx|pBRlzAH*<;k8M$~O{X#6U%6tfVK)Btkyx+4nUOJ`x`GP-F%ov7d*f!s}~>BhS%{N~FHPTT9c<$si;2>aCbYNd*cAo!+y& ze;Sw1_Yl-C-uF2Pl!XhW zBl7#7P{pCR*Rh4l#z$c2u&|j9a6T|46sDmZ z|BwZExL^>@enwrI1z~ug8d!wd+tW}De~5UU*ia4s<1R>&ugS@Ha3c~a(ywuGn4mv{ zgQ3ILarJ-y{0U&jRZvviEwo2{r5g3A!eXoQirk|oPhOE?Ud6}71<%gTrvHi3N3_8p z@B6=pR8>8H^ym>Y5c)MXHquCV^Jise`-u9W);gvnZs=8Ud+Ym%jg6IuhXj;4Zp-H| zD{NtDX*yYEh{{IH%*_qIXGGEqWtEf=CMPFzi#d3B@08YqKsytqvGRyWIo29IE;ms_ zmG_aT^)2OghEGsNc%!5T(cuI2`4TSod zyX&)pf&!;4=kk!SFx)F-OiavE024_x_MZ+CLG4r4{%RH3MSqG=rwK2!s3;u{36l(P z;M>Ca^%PNSkeM(LT)yvlRt^Hqd#(@_XU=^)4vhn5ic3VKc~{_qyuSz373xO-R6Q=Rf9#vi%(#lz;c`n=SG@Z*+Biy$3-bDK~!q`t|Fl zTwJw{P=Ei{+m&}~N9yY8WOQ`+QlzAGbm3!T8do^^Blo(xx*$|qiW?a4Y;FTqIpcESm}o7Z=eBtASsB7jvP&vk9?4|pygJ-o02*u1qD^cxA~*Gxevp$gk9GaHAQ6AD1fh&0huW)NA>#(bJ$t+zDB7- z*~Un>6crWK2Wy`+<Z?zM%*qc?BfRM<~HM;T7} zq{FvxYFi`9$w|o0&JGGVXhY81-nj2f z{2dL=S<%l!1GORV4$w07^QzqB|CPJD!E?>^PxKBT6MSsIKv-B=(`Ho4CyVE`wY1QA zl_1IDURC4g(xJpyCf>@oKSKz9jN8TlmisrBZDpst?RS}B^Nhs$c(FEGyY022{1J5F(Rib&9!!pPfpO1 zzMI3SeH0LE}!L-qRo`zL}9vzxq;#`njGAVqb{9A>S?wo?mQ z8yP+PQ^52qZAPCIpXQKx=c;AP{ry;J>7N6c8ehf{?R&a8tnlW|H}K8Vepejk!O{CJ9{-Pk3EnPKw^byk^M|kj2J-pyXTSlVnS6I8 z1`$wm%K)MH^XJb2uNpj@EnlA^|Mv^+3)DN5HRJICB0hGbmd|PX#KCCXg8(E!%E%ZA zh(atr^!z{al{L7t(+TQe&dbU9qoRz)EGI7?F(`Rca{GwJN5v;5CqG|*ug!Hs+3W6T zrF$*E6oB9O0LxHTztW&pr3*Zemco?PK6V z)-WQy;6Ge|{Z+sg{yCY{Hvao#XX8IWeAItl{CCHk$)YmKrdF~4N1*-x)-K{I>EhF) zUd*UPW_`fTdKxZ~hKG8?;_^k^5_Q7-zdlp{Cyw3!A9hKXNJEqF*&fKstE8w^qAY-N z;(#vChJOw|!@T$VNxCgo6Y4s3V_3$QRaS^Dpk!HKR}{eP*}m|M!r$m2?%{p}X-0=c znrs$v<2!R1s4JE&U9Z}thJ(YX-lca4bEb;1wI8duXoQ8l--%}2BxQD4A%lR@nzaoy zFfmlfSEBatAX~QJfY;OO^3+YRke(tQgR=IeY+BehHX2=I*h@#|G2?&<5*pH}QISV3 zDuGYK%~Y&@zB7Nz70z)oJgXN?n&EWmWwSIXPXGeuE)P`~;n;q=Sa{U&by00|Wofcg zWZ!Q)rC3$NiyZAGj)r$Cuw)koWUJQ44*^3ME1P~yOmB3J) z)Cif$b1^8949QCnCB$P2QEfAoNHg5dDL!lee8RGwqW{qP`_kGlzRDm~SSk8z*4bIGq9S3)xMRO*x_ATA5oa>hD2yw%HX13EaI{4gglQih~;Y&;Zb~!a% zdgqQ7UKC}naAs3$a;2eiAqe!vZsJXp8E7^zZ=ddQBqig2fPtRH z;GnOO9DUrxVvrvx_f-ht=4kTthJmZJKMa=%3sO$nj4*^Y1ZVZE9G;9Ui$cE;xGKyo zO zs4hn0lC;puQZ8f`=FVe@?B3a?aHtx@lNfG7iGx0XNHNi*1LaxA9K*caTDAQ?v7&>< z1T>fJyC#Q1=4Tv+h(W;RALR?~!um%b0*;(wdBiD_CSwXlGHVuK+<7uyMaX@zwr$L#!r$TGS3NI2OLX+8J6f zJ~)-U!#LgCDSrXvd4K@PIP>w-4CX?r~8U}b3A+)z2c z*`P=SizHGzRPs{c6K1rWtRG$xeR)kYv@g7RNL+)tjmn{MEO~b(&ZkIO`C@ubJJYKG zRD7P`u77PvS-s3@rj@$4W$%{Mynf@N^bpf}2-1F3FJC8v8U0GLQ`P|LG%Fbo)jd&_ zvZ{U~NTK;XZ`VfjlAaDc_!3xfB(U!Mx&^)+=81*Y`WL!2Z>+jYf((^6+WM2Q*PCuE;-=wZ&?iDKc zc!#cd4QYp|g6Tuzq7(W~)vwoG(t3{1z(1|r$v-$(0(r7;*%wVBw-dFb<7#YNvriL6 zdGYCk{xze(W#yi8&0T4 zo9lvs+}UIGv5UKf$h6*)X=yR?qoILc+_}T*t;ps|eaRL#Ih$Hs6_TBscA*Vh5UBfp zV?+2H0_i?*U^J~?GnVHsUigU8k4eGVoE$k5GZ;qGkvAJ)zPor6-@`$nRm*$78pdlq_eCWMYC@xD zjD?*Zl0L*9Z46=NAvmj+{(ECfeGtR;9^+8c&e{8-HJH!OtM(#^$7@`;lgD^M7Vi)m zOKvIi{;ODuu*bL=$V+Xn9x1D~? zji{?ggp`z&D1*z{Xd-`e!={+gz10?tCJoRaJnn3;+f%El7`R@o{m#-xCHD@D*JTP* z@#+d0n|R}8qc&-OgAIMVv}Cr)Rx5FE6%n~moHy)SdF0c)lcSc#SWR41Cw9?qIsRdU z|GRW?bYViq&3e`7)o$4D1mGOPE>2*)G8MW%U(3+!ou6sLJ$T<1hVVasCbP5u6&ODx z^Y_4J4nO|%{N{z&v}TbFPEU-9&8li+|6;dt?+&0Ni@vfiwD#HK%)2D?->uQ~&uK|7xBlJIW)OE`Zs(@2Yt*}65}769dP(- z3~INjU6l7b(qZsIz4MKrXmi9;e1m|ks6XGWvR9)qxO9%}VhIE8)S5NDgxhQhf0hqr zABlkzGyKrtG|B?I1AICw(7h^_T&jyRjFlpiZ|(#Z%M0{OSUi1%ZB$g zCNFO{hWOc2E6!$(Tn`N-RoX-XW)KdV_n7AKpiiHZk@ty9-W_uwN`6*6I0|urz9tb z4Pq7$pe!sbEZU3f#gqydw$><(9U0nDQdb6;W8)vZ;YO05YBG-fJXF_ZzthFV#C!yT zZXf|G%DbBCsh63Va0!nATvSgFDtXmd>+S2)fR=L#ojow)ac)^HH+ySWZ9DzU2Ta9Q z9^7!={y>dF_DJOhOb)!gG+37~Q+Lg_Mf^?>J@Wi(yqDJ|u@#VXbaJsencf{$F!5{w zb|DmmYLHQ*=vpr4`AiFesc_z3e{0!qZlhi0k9N3Ju8poyrjX^c8*kIF`JDBXY3?vB zRmP^ zU5TUH))aD|ihI84yYeV);q;ABGXO3<4bMtCInYz{JdC5cn^h5fC>t zdz#}56?w=0iRXFIF+VU$(b>!U;Q&?VAxvZm&t*`9yZ`* zd_L-uesoXEo9=fBqg711YlU!MF;^zeUdq-#PZK+jFL`#^HPcS^<2)Sd$E&&*l9`o_ z@Q%_3wZecImG7o;q29*Bt4r%jZ8)h_4Em~4S~aLFy&eIdtF?7}m!>l@8Q4#)xgi3q zqqf|QVJlU~!O?3!KIbGiXI4v(hq3oLw2v?}M5 zd+g7$x2Y&7kdBUyYVO1zpoNKuh-7t`kaBf0fPm+UYnZopQ^Dxg>K$EW-#cZyi?xfZxE}kZi^4N)Il)eUE)GoF(clJFU7;2=^*J?nE z6IepMHXnq*gP<`XV@O_Gx zjSTrGn1!vf4Qry{{F7?biS7cgw?(!|kVTa%3l+#^8n^H$-Xl->(4JPt-e;1kjEk~o zl>6&MZJFP$u`@&~;{N2C^zrcGu7jUc*g7U_HpW@fNDjH}y|y%Pb}ZOV^@J5@V%oILysw2p%|(0}#RCt4QxOPA7*1A#O64+; zM@j-(_o9m9^IEg?9MJ~P5HY8)H4(M_n?J$Kir|%K80B{+{pPLeH=1dZe)Uvd`Shv9 z6b1SDU2<1us$p#S-2BNWhS_g?y5K(=*1R3B{5-?*iz4-v{dTzh{a&e#7ThODv05L_ zI(jS_=su)sBM-Hje;b^bFLcj)Lq2<6ZLFJX>i9i2XK}@B^GR+053rMYf$f+?W(L@n zyIz7r=UVCAOPH|%T*I!`U<)`p%@>t^G`LG4Fvyn^zEsU{pAW|zBSTd_f89X5eSh1* zAL@OWQlJPA!z>!y7YqftHwwBS-q9SIpzadJmvImAP^16yTW~8MpobmV>j7Ka# zWbAt+3sg;dEnfrWoD&(i`~lu9{FNHQ;_mdT)&5-6FTUtS-w?9T+2D>5pZUs07*xG+ zTzfl8fw7iqdDEkBpI2+@01FQFoJsY5s1y=o zWSr*kQq5-4pThn?JT6WM!I|jN*55`SfL9z*ex(k(Z7G2a`FNdnZ0EE+l**mxsGz-ytoXl?K{Zlsd? z;rVeF_&qF8t@DW^D`ndIdfSH7m^H$E@SV0r#&Ea!Z#A?*n~uRli26@+e

    {yj3a~%{9700W z^3hCPw^t{7dAd3}xM~!pyfk0Geq~0sYtgDc1CWuI`J>ZHgA+KIK3CX^qjov&KsET4 zsp*fo8njUyG)qG|LhQIWgOn||F%kH>cEG*gE46oLjM&(>eYSI>FX|SzXeU^Iy;*aY z#U;7+%8$AOQVijW+YC=Y@w{YSiCj1V+J;J=KuPOh|6!!h_|q>kB7xaC47o7()f-%f zRV&xA)?)OQPF1}N@}IY5)p{49(;33E^@X`il!>J*tWs?mf$M z3>bYW46LhYIXx1~B!`~>VJVOHt?AtFVmu7nPa0zgRE@D7}8t~9GeR5Sk4JaF_>fMlEUmH5s?#ClHE(=xrOCt*k z#6tfJ9Vvqy0Vl6XUw5(eXCjnG{-dOc?X!A=1u9QV2=#EGBZrI1xarSrGyD5FP~!lC zpq=aFnS`nJQo`FXUFY-f;?947T7V>z|I^YtJX8Npjh)|e${imq^X^ARv!na(%E#!) zhVskjPTQs~CD5<0Sk_{FG8WO6eSs0^;P^@1 z&E>vXvAE$zM^zxQa&n&- zZl64QR3KLn4=`?d?It)u6?A{=EO=?`v3~;~6L1sHpT0gBQ`3h)b)L^^fPq26nEr+lrZEjwx6##rp`RN{p=Pi&}ynkPpG6~>UJ*<0UVrSpUE>N|t3%s2% zup)brI5ASvl+oKhmEXnxtJ?9JAiwV6HGg@d~5!p(%8f)}In;Sgy5JafFst&3a7o8+#eNFjkQ7 zr!&^OTYW72Vo3n6El3toViB zm$stW#{6yI{H6sC+Hk-d6`ef3Grn4~yxOnx1Cp{%?R@&xE&0*z%N5xC-V_N|?g@`y z3M=DI+Aha9j!th4wL@c$UU{EK!^G&m(91cXo?}g+%~XGtSSlfLJw-HQm(l}RB)k(c ztKq35p(K};L4gM3I-tz!Py7{a8RC($jk9eT(Y6};EO!9H2-~>7(r>=n;$Y9*?^(cB zi#l&Uo`1nlad7Xb8ZW(t3JyF0QU9B&MW{7f`M%Y2q^@An0QRu>{Jmguc~1ByAyOa*I{JiPK1XDSIa}I|cbM z2R-qiW`Wgj*|Dts`CUrjAP3~rUU7z3HMH$xx^EfJ+f!aa2SVfI78hWbtX|VK)G#~{ z$^oJNU1sX!cA9&?E)EMjvlFB<%?rx2L$3;N-;UL5tXvNni_SU#;Y*TlEYFh?ZY?bS z6qwLUBa)Z?_}D{m)~;v!L|xkXJ8L$N0R4!(I_fCOv;gWY6)r05KvvxaD8dH_e~V|v zR%e(-IuNsIN*xCN?QroPDQI~l*h4)%C|j_-lCT38lkoPM7x$B58Q)h)kgEC&AHBjd_kqHeUUw)fVH zo3Xqvq>W*W;l;1)pe*+(+A6ajnsc=nn>cS)yAOoZtQUg|%Rq#- zvP@!Ggn19sya$alt)s^G!@b z!Y2TB>h%Hzi0wCYit>qhec+!d*U-^ z@0H81uC9kbpa(#p0M;k$b6CBN`qb&ynMODxVP3#hV&bF@iSs0agEEETW^E(s$= z)!F0EHuxTS5(fHVHwx#&wQcrjDKyu!VF64_AI~8mfqKErhHZVIj%;FmsB?*+P2TNC zd7_|K;y!M4e_=tIKD~$0jzvDZ(ZcZ)_rXA+^Ykp@mkAEcuraq5Pd2_=4Pg-VqoaO` z5!yC^4f#OFGfzEXmyWkEdL^QM|9JcRGoXx)|8f4jd_4Tx^=XlC6zM_-u{^@3hnl`k z9E#DUpMy)-XwbWi3!iD$)apZ`oQq!ME%fRgc^90uLu)P@^ z{_NzaGglh-2ro1vQOn;<5lAd-0q3J;9M~@D=PZpBTO96yvF!m z>B+}EWdcD4NdbK36@|X)s7BPxZSxB{?bm_6OC#WNbC`fy7XI8=QKfV z%UVc>&bdnP<)_X`00lDA^Yp<6(4PnH{gglv6o6Q0KYjYL7mvZW(c1WB76L2w4ks)m zB1Zdpi_gspjwmU$$bfooT@IKwAw)TpPLOQnCNzC>TI&Zd+<_H%BLz zqT9Sv0Fi2p(gh44+oN}5{cj6$QeTaX0=UoWOL$%(AyZ)f?UH1s3Jv<=vWI=el|BGPCJb|wlK1X4hG8W+fXG)H5 z6bpbpPv_j4i_1hE>avw}ko^~ZXYpINR60QV(E|sfFvv{^UB=3P0iVK}pHNNzlgys~ zZz0CTs&)w=5a#3K1E8Eh=9lG@&D%r&EZbr5@yBK$6EiSi04OIeE-nCVBM9XnC_|s1 z;MMEs#c%EKoE%J0h4nDYuiw8}1O=%8CxKx?_n8_K4d4zPp92hJK0dWt|CQg702~i| zLvI3?G=S)D!yf_n?f^i$PMv+ScvVJ5hT|C%uU{q#oNvQI!S<7u78ZYO2m%BAZq6S9 zR3xBCcwBjYumJFzR{c=B7gk1@h`BE`>x2Q&iPrm)gZldVlyi>&(z-b?i6jx%C%`Rt zK>%UJey)iU@O3)X?;|-52Z2)I&=2WK#|24%$nvYZn-w6x0F@R{KurxlD364~ygMoc zpsoN6q$ozQPbgN=_Egr>Wq`->>fO5s#Ehbkc#yXzgJb~450Dkyi~gk)4Y>TvrvPXZ zn`hpA-v!a@dZ+OGD@~ z@3A)%vbwq&rHzZ?L8#$0?sgXf@v5-rAu}K}fS^SN29snDZ=T*uNl6u50DXX)pYS<# zxz+DU1%-um?qN1I>?ndmQc{=@Yd_V0xBx>#sv?>7iCVy<0r^)|RejCKAPMRSC{)iE zHN-|~K-R#q+ZmdP==k&C<5;jHW660qA-P43SCTG*P` zSyW%D2zj%|ft;n~q~zqRkdbew8E@*jUNLxhyyvGo0_Z{y0XCdt z%aNRlRp>v_nsT?)$r&=D0k-@c`SMIQkDea(mA}beRb-xztpK zT|_;JUMZEwoI5qZJ`zit2dFkN@$n%=MMVyMk5L<|cCfP56BH5>@(^%HAW{knl=uzc z-nFA!k#qw1Sx-M`pZ_Bb?^34Z6(c>pa6r>o06H7WnSe%X5_57Md2uKyDt-~CGX|~# zkVEjNPdz&zRK)=BXsoQ#%0BXMioKD^-5EdlF9c_>ULeIO$x{=1s&(Vpa^|{f}*ti z=Ag~-#ogV_#R|&xyn2NWFm7>BcJ<1^fqP_R1XX$ig0_`kpUDmBw*EaM1QN0Lhlhtf zS0aT_KZ~)4s7HPHCqRgE+DP*N+_P4?90myR#nM_@3AV_rESB5z`nIkn_Z|B@oV*rXnS%dKs@FM^V5g-cU0W>>cPva62 zjI!VTLpE}6V}eEb$jV}Y7Nf-W+W`($1rS{No=;l=4RGvGY29?SRd4iX zai4Qekjd@k5zTW8h5Ez@)bN1$Z-x0788HEIHp+DXuHVaF420sJSz20#MMQK0LJxIb z`Th4M5|B7>excg(lu`i6Ik=`@2VxOan08{XuB|PhBn*%|0|Nt{PWpw+fgiU(bqyks z3)W+WKubEFGql+{^VZZo^@eNe=AJx?m-cqoW(!NjPB zjkUFhLPC@Ap^vhRQ2bb4y2v6+xok3klY4vvSbkX6=5|TpvFqm0Lx6mYI(}JMJ571h zzkUU&QLIe@0$e3|7^UEs`7|7eR<`SIJ#eyzap6YM$iewJ`EK`xvsR=cd)&(u3kzn6 z-~C6)66oLFGfJ}(BqSd_UUz$6KtCo8AF_7P#~x`)CleBC_^e^JgS#|V{Nle=_uWxV zrSH12jE;TmqqI@6fE1;Jlo1uABfaCGbV6^T+K{mT5(K1+G^vr2P(lF5f)FrLGZ08r zAOQkF3?X#xyPb2-z3cvQ);VY0-(BmvvIN3TviJAB-}^rA^E}^1r*Fuitdev!Et!ya zo);so9IUoUi60gm(Q-}C|F^am-8+xTgA2nmVZDd`aT%YI;yVAv zXMJ8+En?m$nm-Sjp|fUo)=xP;&rYhyPRezjYF^qmsuVxTYk+?)ksndF`l>5lld7vt z-@JLluGc|X-qt^r2NvS6!YoycNt(XP-7q;CT>gRGv6hW%3k!AcTU!qcW!8nxzR=A5 z^su%%#V}j7I8deBSE+I8Vv6yZe0V+BCCjeOfYtlx5ZpS%!aAkEsZxox!r^!qn25oH z$KzoN6COW)h5^(t$!431C#Rcx^bEcK@Zp0EXZNj>x&D)ulVxVmwE4$Y z!~)sdzqf3jynH-2LVZSz>?Sq#%x9H3(K#mMO(dYt!UUQWpZVqIGZ~#FwY8Qc5^4M9 zje5dY;@>$nz}ed9j&^#39q@=;p7pb-D#u*g~oQ`wU#8rDdvno=tfL#c+ewC%}Jdd39s{*7bJY z^fB^S)ox)`w{{sA+|I^oS4z4}5?m%JoS#0Xnfqj0fxW%G%M##0QG?ho#%FF8&I}VR zA6(W1JUZgyl7!NwFMz55=UOO?12${CV=12bbm4 z)hqn#y|jXw4|Uz(S93GBtN2E!J<#9GR24~8UYUTPi?AWr#nYlW1W znp%~FXV=+3+HRVJ^Evk4w&=TunXLkalYA1;5myG!3oSbD|5Tp(AJJ{-**dMTSbHRR=dP8)o^4vSa%R@kj4o6zRX0 zr}o@Jp#)BU_8PsLv;pp3Cee03u5J^2W2JKE0(|+rX>$mCY1#TS+|mtoYtJu3$WbD{ z{WwPbci*k>Q^c*$yWz_M>a`Gj`L^Ld@xoW$uSrCrZLwK3~nw;slsu^QpwzT@^m#VN=eXxJA!|rmG?(f z)S;xSqN*A`de*ID!byEg12&y-FCrgV24$t4#bt7BI~mF?eNOh;LtD3OF%wUQM@{5% zFr?SGxVZ9xdFYaHuvI{^Arno@e%{o}LrEBr98yP=`~|gcYZ8NyMqM zyib?*xQB*X#gAOISy{%z)aKNF`SRst&ZwYjs4*|h-t}Xqb#fH0Fo5+@OgJH9X5yxd z`}{R5W;)7nHgrh;(L1Mhmui9jkn8ejt73hXEDMQ4JtGMkP1o#EuQr5*g+U-Qck1I@ zQ>E;kZu)L>0Ld2(+@<+o`%M|~1KX<$ElbVcjm(-4y!U{6Zw*#ClOOgQoJu+>EZo0o zkLs)ODqdJ*pW!PDTSzsp?`}1hIFw4_0KP5tz&9*qZB%Hv-(MH|<`2kLY5dMHxf3T& zxP%2fh`XSv0r;YH%Ei~$_?^?WVl&-$PF)f8+;pl=feE%yn-+Wjz8Q|%8Jt1Q7{D-5LR&HAxCe=kTzw^uPSOfP< zcpKj1$@_2qFq$xi5Eb2bt=vL3l@Iw6B2;y`CiCopOP4M|L}q_~m=+cuZs2Yxl`4C& zq<(WQtcXa8OLg|Xo$e~eNPc!1gwE!WB&8mEgY8h>Hs%itGEVCfB*OqzBA~MJTI1sQ z3!g?*qE;5}IG+bl5+FD2;u9I7>J=lVcE2L%PCIYViE(e)DYx$=28hv?i@Xw)79 z=J3F$gT+FY#b-MKc2MRFcv(yY4tlYs2CA8?R&;Gqk?U*9ja8qFl-l8^y?;2dE{x5lm; z@5jRYKn3hj4Y{mzG%nqp7(6ZWr6-6pqznMCheD@2K!x>wJ?+p|nKc339x{cmQpsbg zY)Oj@&K94L(TLpUV*oFO6DZcUjG+XG|Ffy&Gz^E|60_rQ&5hRG0GPrw*(UQNx^Ry? z>y(r3VXxXq`}V^*7Mlfr`76enEis3Ym^-4dE}_uuFct3HL@DlagJm-$$c6Ga4u$g( zr#hS`4%qd;cJ#Q~_7;z@5iM_IgBLUPf!y-_-z>GYW0#he;BHU(w{PDzr!|FlzjA<5 zWFelcdg6LO+;&Qc>@Z-;An1ax)b544zdc4j6m|sG71>=c@W2ngP`n})XicvwQ(itF zkTYZ~vOUI3D)sQLx0daz_JX@(AuAqyaQP;UaKvC5AeNC)0_)*z(OrA?WF$R3i+_59 zctDX6!L3ROG5Q7pciO9hAZbf@mJw7vPzH+}mKW1Ls($%=4$?UoUQMwft5aE(R%z{U zPOPk2>`XHJqQn755nrrAhrgal4pogZr{CORSG-HWPef2~?y-w)3jVXf>Db*uCbqU2 z+2I^z>lFM80Rz|~)ydWtiR@j;^^h7!b9VubV8xHpw&m7Xn@crhlI$Xl4*pA$Zh_Ms z&3e0js7hrmm7Y{7N?gd8|G@rCK4-YpOM&?LYKgP8UP(q)eR=&o&12@`2aO)Y+lr6O zM;04}`=$D<3Bizcd~nU{`t}%HHw{6hP-xy^Xx_s3OiaYkH+kyycIbZUzgI#XGvCpm zr%aH=*VdLAp9xhbLKMOG(xq8Y+SK!6{<$?0^T=X>h<%h`X1Ll=P=?(b(7 z8)yWMKQSqOx@{CJgWBDXg zYt$v)ZDycaJH=U2sp`n1cQ>t5V0|Ga6O)P@1Z0R>UUWd5L%)Z-smoUa8)gB3_S5DL zMVV)9H#=bUH}mP?uoxi`I$QTQ8fgqv-iU=<1wXSIU+jJKj;ZPb5JW!5k{djnAv!$a z{j*vKCzBOg7T6n6+)A)MbHJqBf*TRt=Yc<{cI0F#Sly#@-DMCJSM@xgbq5w-Lf=tB`EV^*y#J>uC4iF@Ds?fGj|H$4x&}0>x zd0b&{v=V{t55ij(uxNOp{Lx)MZQLL$okNihzra~yi~aI*$6&3OLh0|nontljJ?(U1 zc|nhW8(-LfTKVJO0V6ywFDF-17Gzrdlobi+sHNo=u;exA_M2Zl?4GEB9k{M^7?3`8 z5TyoM`ZGywSFzBc_Vx5sb5`wkD`vKi_)+Gdoz}`b1~nE(?d$8qUsSWRg5<3vNFVn` zp)9Un(sc$jDM6OW9i>7)>bCo+^{OQK72?pN{e~yc^oMbOPE)x%0z^Kl7q0s8yR@d zR3t-KljT!;gyg^%Br??@uyk;79Yiif zj?bk#%W(FmPM>y-d!~JSZ?f)5cbf=@Kv63!D|En-t0dq>28M={Ut&eF@dl{U6NerlMGWh(qn0D5*ht(EUFcNl zrfUQX@1((2F3=vz@v@$ypy!gx5r%4U3YKDhixWcR=3^z=FYQ*90IB zpmb!Safd?Q()|RXoKhZWbED!C62c9gfKwP#iig459`n}=n$D@D!g8DP!mYxgze7e_ zSql)rMc1t>QoWA(K4E0^5#11jshk|0amuug$yM6?)iC7%C>%PhxarE6KN8f z#$@$o1%LVLCoWg z4Xd<*O8q@k6*epD0SeQ%-O-u1#A*A}Gc@$?#($%aCiG;|V`wpr;b30nO2i?Q6% ztdKN7E5J2T=ZcNbJlijba4s8=x%D;-((Z6Yh%KmPM^>9mdRsOLNT=zipL=FlbdqGT z+|<1^pW)Ml86d}M9s{05HeC=J^>T|KIR9xli|#p{TO&#j-#L+`_M~ALA0g%90clWV zyo+_Ye=eJpjkzbsJDuE;%kiNYkk`iIF*5+&EjpQ9^J4iHFG~7 zIX^Q!El>L!f*c`h0yaX<23+m>(-g3Y&}=ym|K1!j;~;yc%S{f55l%5C#2W5RLbOC3 z+6Ty@*i4nTs3(@3m=B;_59|8stz@cSed}hFFOOJqCmaR^I3WQ3a>~jRX|C2OOUujh zN=izez(18k74tqy`V2?0uRNgCzB0fSft(TgL{?230p{Z~h~XlrTpQmG+V(7>CPwfUhcw4ekK z(7455FB-(-IY%HAK4KnRcIs~!@CxpSwCvRn2f^_c zXLmR4Q1&1F6B@6Bwfi4j7InAy{3~#ms>01L2p3dTps%WUxeMihB!wS@0kFf_uY{mA z#Zh6^=T8_*kq(V#Txz;N0-mbIvfQFmMen>L5rr!2z5le`3xwMf3dG~IS|2KaCX9xH zLLmTsO|@I4+At%SVLIJADi~N#z!iYrMa8lVGfMq|&5R%EP#MsOUTgHP&%~^^Y}zvp zDMOD#jzBKKL}1^Lv|ZhE0zrY>RDTZ|^H2Ja*kyZ$Wu8@5o~L|A=-5HznY>XXS4u!i z#pt?u(Hv?bP7Cg47Z+vA%;bb~>M_e4?`kWF5-W-H)wBWE5L&0D5EKyB)FYxDccp&* z$hSwnN>fK-yrV>R$EuBqEk@8KsH$p$yQLel^irkL#-K75LEDgy>CBBPCcw=gST9#P zn(n>%5+t@`BdT$&(N9gWpTUsU*}moOAY}41x}8k-@NhYtr5b-I0G_RG*MXq#tU;au z@k1qW{L>wp&=2;w8wwTt4wz?o7&f43ds5J}qX1Lp^wNdp1%TFo18i(<)tqJEDv$p9 zt1&cIn3?#uz=QMzL&2*Wm}<ta}HP&(4ls^B}Q zPI++o_^FprzV?sSAK!|y+5v?B@Dq0Y@5GCE7+;(6uoM#9oiga_+ieFQT?r^25PE0B zF~|~GXxS>NQ(j&U1HpWI-NU23$Ku?tnE|UHRkFb#VFnijl@S^eIT!)Jw*fL={k7lR zsC<^@Vx0o1Be2InG3^PX%mEkf!9>Ef+`_;%#km-W%kDWhhXNDp{l;ymRc$ zOMq=RiF+YK6>hzIQC6Hj1=ls#XjIgrThs%~wP0M4S_ z@2w-|^>M}n^z}0dEb@sJ6IP(B~RI{ht(GoN9!U$1VJP4{NjAo{qe60GX<&|m}0yZrO zEH~CY{HcLFkP+y_O&j(4+~j&`vjoru>Uom2rK;bsZ&60AKV=a827->n}Kwm zHy?gqd7~AmxEH_w_8X0mtbZyQ$nPM5(k~vh32>Lv*&h3*P-Fl8{n+A#BsteF(0^5De-pqSvV+uvCR?M+mt`TN;snHl5~Lx%if zfmSrkQYkPkGStCx>PB`ONd^^|bnQ|cdfqA=4nVB9v=qswpzCzOjc`utr0HwnZO|Xl zQ*@FokP}6QStcr34(C>+ZhCm=#*e^$IBlTryD!jZcLQe2QVG%pQD7!=Cj6uh-o^lp z2E{R3E!+hkv^3{F4etS;U{Q)F3Vj}Z`=<^M^3&kDe0*^8K;%G&vCJV-p5jHJ)jBVg zN(PMG12=wkinj((3Ct&b@ngux^kA}NZAZ9%)3+GumsS$uNp0ibzPw@nJVjb&>%J46|3vC9lHF6|T4F)X*p2uTA64kK~2m(8r744#R(E z@6yDVtp#G6X_YdTHZ#u#Ux`C^lVZSfX4_5G<*>`~~!1gqEfKS-D?_}u= zcewAC46fE|psH+|f{#n~;ArP{eFDGS)2pJeM4fbRq<91dntk#8TNVwzIqYcthQQ)w z;RlyNX#r9YcpI_UMOyQ!txh**m}pR}pKEMo;duD#JZ^D89o%==o8DU4Wc!fe0+9M) z@k2M(S8D{R5@n^w-iK(266EeyjWs``&ai5lPqRH%wLpYZ1-7a;C3A0fJ?+Ggbe{eR zdmy1zjq8XROTI#jd*`I$_w^o7g(WYWwa ze2Q~G3T&wf67Z8g^e8<&y;~?`C>NH2pF zl*<6Akfpf^q!uB@Es zsMlcELfxWP2kqcMG#F{D))gc_$vKch29KxZ6T943X=)?0HSA%1)M zr=7b9Antzz1th5rN3XADJ0q_If)J*7fa*KOtJ6L?0gi{#34--@9|e1$Exdhu17#(oaYP8jLddO1 z34k*eOM-d=lNuhs+$Rpc592fA-^a+M!FO)O04WCQ1gu_1k>$Tz6&et+xapPmdcb5~ z3jq!2jTW4c_78`Xqp0Y2Gn4fTmsmxWt7yn!B*1>{!-ULgR zvQ%W0qp+$cx(@;nj71=0SggCw?}D?idKh%XZ%>RSz)cG<`9Nz1_$LTF6X?Mjo$kPI z$Vvl-0gCELov^WFOHrMzy9Gaec@qnm1<{YPG@>2At%S`_h@86NA^?Bb>bW|v*yzWa zLsrSKU#rkj0Riv>W0 zjrVX_b?=qgFCB0fKtN6$-F){V3+h&|V5=Wo3ea#++?*-jA-x8RD#H=7YQhN@fRcmq z2!dw3D66;F)Mf44w^t|Hiu*i1f?3?9Gi3Q(s!cibs=t5zP~-Bkwg;^vfXzOx!ky)> z`a|x4+K52$c_0N`kH86BSMKNeJ;^n`3i3(V(nQh8w#S*4;s+7BY~xJW+9K|7BG2?wP}VfHh6}P*0l$MvT6xUBLJN#_Rf92KsvH*ie?9} z5)ufw8zji-wfcxn#OlL+)z(NF0qx=A1Fd4BDCCdX*;#Ayus>N6n-6}Y*Rrc*$F-_E zuRk|VYrx1ddFa~VQ#z0YO8PvqaRuN%fY^aHu@^BK;HYZc;TF2!`;43v+4JXfv$KT} zu6DdD53)_zXrgvX4H`bS1urGfA)rgm#NFYu!)P>m;pvYhqk zYT2rOeUg^cmalT*g87*P2xvAPiGt=DVP+MgSRql`n>KAiLTrxMyiA0?7pefjMQF2^ zR#+N1B>Pewqe)T@jW1zKgLUH7n{@T)MY5wsz1{p{x?VTjM^bGD*mSTn0W?=%Y%`jK zdqVa>sCGsu=Fj|HdC4c7Mze_e1#11bC4w+d2_OnGjiTCEh>0Y?GxF20nK}sQe%_3? z!O|ExH46by+qT?w8D=g8)MhtgRzp?2Cs{(Re%Vn=?v#1j;9#arxq?qLcsgq1n-)p7 z8Z-TM#7N)eRM3*Xd&fm`qdJFtka!S7u)KiZU$1PyI{}n7IIs>0UUW19g*!&`BE(|0 zc`fw9sIs>WPuuOtLo&}pnwN(g)|S{jxWVH!I3`X1KHQ58b<6ycZ?h&O4y2MnkVv{O zY0qC zmeT1$&HItNq-QmXpn9Rye=pt%U;af#rvINR3FkG*P7175keD6)Y$4xT98WaP>#~Z; zMm$}XxS%~8;H_pu?Vy2xF0tbvp4W$qGCwS3_o)=u)SyeUjb4n1GB+d$iah7Mm-GY&UI zg$dUc-IqO<0MHO=;xMoVv7+$jVwN9V{_E)+oVhFrBS^OhMG88$xn*b`T^x=lp0nI{ zh~@xK7MPsJ0ogOK6<{IUQTClSG5|T&)X!_5@9q&#)7Qn)S2-b`&|o1|i5ngsj-V~* zj%>;a<8x_X6##z(!1=kqZzN0r#CsM{ud(t*qZbsucww~?=ox`Hp{#(V1pbJmEv#5` zk^>b1#E7XfL2dpSP%6OUcur345mb5(hk-c;+9PN=$4St-VF{LCsOj%_aX@t91l8|< zLdH;E9-x2{ycaRxo$Itdjlj)h#>INP3!qdO*3`?5LE`m zULUbob)u~&dqgQ-^t5n7c#4mAYn6m-vqh;gHWNu59X_6(a41q~p!k65+{8T84*p#qE22{;pMp(mqY!Z-p9qJa5-x_c2?+VIyCok&}v zgMgk+IsU!tgsx#E{w=)hwT7sA@G@AsbFgK_{;;%z+({+a14P}zM{;PL4Asn+0qqU4qlT-I z7!1u^QqD>~IMx6CfWRNw*0x~_Z>UenV4f5|fX-_ErE<~0TN;;c>W4_QJgoCGE~ za3V{13egCN?{o^i!O9ARN5~fX)o5EFtFX|jgGnp37sMZ{Ya*aDZ@hgAw2rPN6v|6f zYiL7RJ)k`>dXKaw__!e^sUIHBflm-xul7MJ;K_me4FDSrq|)QyO{iCzAg?Tg$4Exz zg_(E(Jm3^$eZ0In^onn{ zxC~lw5!g>V2NRekIcd(9Iss1fHntYxa1?z3`{axwruGg9P~(u1lcpS*CiyR79dhzS643RD?C0QvOm1rFzi17Vjq+U#OvAA zVaf2O5sE0>z9GdK@L0;HjuMH)gFCmt>ng{idO?G}KtOvsIcdJW?t3M7>)%(s-FC-l zf}k)tIoS<=XRoS%W^xicqJ)(@`{eMWE3!B!UO5ytJ$we-RHndFwpMM0UlrD z8wjUR+H{tyqSvD+Vc_O$05t|GMZ=4Xz}s;k@~LXT!hZkQN&4L)mj&%eN4Vl+A{T6v zM}C59LkQV}+hbInl>s`n-SmGQY!9duuBFBrymmAKSkVFUmT2Wwjy6F6r7L*7jg+jZ zsp+@?HqA*;oB}=)CkiuCdZW($YIm*KZU@h&a+*LOfT)n>FUW7-=!-vlU^{@}>?EF6 z-ubgvrAL_=KG`7-z@y#6q}rwgz*a5gO-q_C@qg)=fJ_5p3K(jVx0FeSAWo?$$uJ$h zHWni+aAfBe1EGcsPErO5uZSmZa2mlTA#2o~8T17hNf5f~FpkA$%wcZ`nVG{!7vnD< z&u+TfQ*hBc4h@7Y;x^Oi$>YMXX7h%l;^X2#R+)sIaPnNR!9XOXs)p_H$_J7qR8^|g zPt`G5*SYNk6&!KZ$hHl-Vru&oU}NZ^0xDAVPXROstsL)4$+qUQY!$&cSd!<1%uuN6 zM*{-tR#1p}TwN`JfJ8uZGeckC*I&O$1i*GW_zBrn0&P_9E4?1Ye9(8?fy08IpSEA^ z2IVksZ7m9HvYOq2n2))aVryVpLEFm^Fkqc^pBNuE2BV2Y?GvC%Am%e{=ulovRe+fU zmrp*}G(S|8S)W+!q=9OMC~R6*F}LMq;MNqh4G8B1CI zELMtKrD_z7r2YPVKSY;XdyN0_TKyMX{QqG}W*-`Y^$tm>g9_V@9uEF0AYeNm2L7r6 zHh59m2-D6uq!yONC|0oE|C3-EvNJZrQx)5uw!;^c`m2f)99hUGQ0awK0*qyrFs;?3n7|MO z(Y4oTC@UAkj!(qJ1V9%aK&gO0{KQowpIV_(M~2Nuj5%`TOjCAxI(UmxMFD(5UNh1- z2?HxReH|&IRB+fRZv6`|J6Rwa>_E$A!3Ro0wl$?z`($( z=}qF-e+a`Cfk{%Y=>OEhMGv{7z(g@45i6S1M$~5k0UPmZ3#57H!r-6ofE_4bc9hHZ zB-5{lgP`mV8;u9pct}s6%YtM2Dce~5ZYfw1A;ni0o=j@nHMtjsTEl-)EZV($cL^A> zU}35r@2--79by=&I~t9^nIl0_P=h)fub&$)7W0ux1|>2ZQvsee9T>VoHE06Ri~2C3 z*$ONV3gTC8LeqdSKo+C|K+l2qFq*EzOg=O^$We>n^|byzt_I_|;`7F12)boa9hk_% z18*bg4YtdirW{N_iJY20hrl9$hb_5o>>S6x;;QHiWK;u&FZ@#m5un*w%uQ|=gfInf z=w^RDv$r0G&J6;tS}o+B>b?hvg9g*N{JAN|lZ42s3$TF!KGqk#LrE5QY`(5FXTf3x_XRD#q!X_c_S4jA!6HoaV+Uv>Ykm&;hI`!M( zpnk!B%`*O%kedHt;`om~@!NZib*=_uTpg|$Wp%m5PtY~*0+Pk9|M71*qj^#7j+0ISDQHzp#7rw!TvCn)~im&b$z`R** zb&1g{i?5GIf0lMIf4;!mHJR9~JW;z3I>Hw72PSErPXq>+*FDMDwbk*gi>u%EY&olcW+PLE~;ENAel;jWvH)`(A?>G0Fxq5dX&MTugH2uZfC?8fVD!0y!9od3!R z2#Bv+pQt^skmTcSoUqclh!;uaI{FMDmQz&6Uw&Xa5be zV2A#hL;WqJW_4se(&KLUR}oI-SKXhG_uM;#yJ)z~!{#%hSi1y<_OJUUB!^GIn^h=m z=6iOfDC%GzvK;=8H;WJ&VtiXW&*depw=&pGU&y8X!6O2Uo+hK{OL0CCK7E6B(zi8o zq?SYZl-2R{8ph%dpRS%*pMJhZPsvPlp?Ng_v&EI@r3U$d{xH9P|G=i*9Bd$qvieeZ z@sok>bm${>zcAhC8r{5(b#5u6YxcB5|N6>gh(!U3H@Y%9_j1-Tew|%XJB+;h36TaJ zY~c8gB$c@s9ee(z4XZ=ZcBI6~qCJc<>6MR6b59?!p&MhupoZKk?QB?~6njo+3@vD_ zGCxi1vgTv`6=U6n1;?u?@5 zT*b!d4*lqbj@mioS?g$c?#n>Rg>J@5(`?*K@r`d-F_v|wNp{TUH4n50El(pdOM$ew zb#7vvN?Uu-9ATbQ5~b(3kkz@g=4#W~9MbCD+Y+ugkrDHxX+6y%vicVjmbCslF2A#9 zeIoIdI`6hfs%SvfT3stP+8O5O1Z&=t3Ma3g&+*4~oC zU{(J(ea150AX_Fap2jHqWVG^pZG7nL(qQdcrv!05pocOkyu8E@Y%SM#fecAi^LOc^ zi`}(q1&S4vL7Xl&ey!i=%-nvBm*M*qC+FAaPN~ffX-NOA$QOOV-P2SUONsE54++2c zkz&M;W+$wEZa`NLtS_cblL-m-eqUX6LBqE|6!Vt@~Uw z%vV!(hpat|Vy9M6i%PgTf3Cc7_K6G&XiH=#?itQsKR+)$`DKcRI{L=7sX%&lHKf;XIiqi>e?* zN~8kUVz`NCutdZ~@^wQ(bT+Olt%_#yht`-^QtXUK6ynV4jQ)JEHW##1ov@ZKI-wnP<~c5s%{Zyk%+ssZXcmbyz22o@ zkrZAw^kWg=XCr+bOSJjJ`N&ZR*FNl68rUQ~DM=*}*vnCiTOucBn)BADT`NpSi(E8- zBQ&MDe~VuCQ(L1lEEY~kkHbVPeIVXxIPI5rTq7vUgbhU-fdVYzj*w-f95Yr0{E)Ry(Wc^2wS@b-<&ml zFcx&&eRIZvwGCY#PyLya-mZ0d=g-HT3Su@NICz(Eqq1V(+2gFs$668Tf$khE<+LDl$nOfq@PMH z+?(v)++sD0o@ zE~%-+!h9NqO4srgxiq0UFplA^xTP>3-~C@tYdf|VQamrsr?FCV@JrW_&)YlHYFuf< zF?H-bzDHo|aIm0?)lQ+qEZZ)3gB3r!XIb&Gr%%Pk2XU;QWzlEtA92fV7^>rh^^!yX zd{lr3lYlm~r#*IZ9?^)rMmK5R-=@w%{k|z~3ROr_|2?)Go_W`1hw4Si8$MyY(TbO%OE?mf8T;&s1HB3W&eit!@>?Eh>tX?G{A33JB7oq5{&C-Vx~~fb@i{A+Lr4=ZO&*wvk-=6zKRZ2p6}*}&4>#lgjn<^9>IaM*U>-`{(=TiLMCcb`%J zV>cyNB+|yklV!Cd0SDXmGk4Q<@N~9eDOl(eU}5=-MfKJVUEj2MQb?fg;FH~5#=R2l zlPcqEzrVO7@veFy|G`1~+2@DmZ7Z-Rs@5K$PDbjzW-WFqMYZh@xn6X^m@*u5Fz2?8 zTWqFHeB9mGZ?{uBI7ENvR~+6DY-RoD*iYr-pLhox(`mf33SH^y!PocymPlA${Q9h; zk&za#&={M{Nb^|u{^Ik)%X?T@(thke;<*=2Q~Sw1_`~%-d-ZsFIP~U{f1`V?>7n0$ zL*?Y-0}vBdVR-+$W^+B~L9Yg@dE z9L^aTF|DqtX{RxS6%@?I+zi;x0u{>sP`>v}uFffpF*0te&R8$lyr>aU) zBl*hh>gsCa8kh8@tx56r>E&EUpCHHXBE8~)(b2Md7d=N-Q}4zoZWQnpR#gqG^xew7 zpPQT8IZ|*vC&LQN(wH%sHmv#t!1-z zd9h+~X{nx(QSwn9d0$gTfXGW8h2gCQ@A^SF43daF@*on1TZG|k>6F12xBhPH=+M>B zh`Ms+iZiv;9Blfr6+gd%6r1AO8@^cq#JXzY_1KHS+D;cwX#4xuA)iw7G*Tt~mVUTQ zPgGS`7v|)A!gl^>jjeX*zfc*~KB;}<#*>^bp0iGJYC1ZxzddP?ufc1rqFEqqyRw0-|u|&1m+1W$;pV=;9^qR0(eNNuXB`cN{{+x|NUAeaoYz@P(niI%$YNePEIzs1lC3%|Z!_&*DFPImYbDWwV78aJ2lSHP``d2@H{(M>WvT8ZMT0+v~ zYZX2R1wB1I_`J0hSZT(0yc}6+-HJ-eF?{ssQQ|fqetOaOp@V}%c?~(ZzP(9-M+?&; zD2R2Ryj!_7Uqg-tYx>OhIm2%%S&X=`9ZYPJ=g~@(eOPYjyf9LWop=cjgd_9Do^Z0a zR~e4Zh^E`eu(Ldl)oXK^b#ZXGmNl=y6BE3W&70iPt+-jjx9Rp87Td+8j4wI!ObxLV zkJsOx4%x{E|M@}p_uAcNFdWbt8X90>l$n{HYtv~~tCl3y6Xfi^bnpigapgOA!j_ho z`Bg)~U$nw55kKC-qVG&rK(c2d?EvSbcdZMvOTlaYuWa@m<99-94BFaP5@KR$=D;v;3tdHD!dL zrp<+V)PRi&MMXXNN^W~a#=_hS1TTIkcJQ+0$KO>ej>T&^~38V&xr@Va0y1pGe zh{rp&qWG0b{l|D&Pl=n4%zNv{+_AFCKFG??&mVM1$_^cb&FNyn_bd9NN|YTL3#1?+ zr}+>nzSIm4j;TtSJ4nI&k5S`T5fBOPqQGYIumAO6^H4~khl9UZUS=%O(g zhTb2aA6)X4hiRUvz#QQ5y{_%(5~B6_(Qhnn6{@NQi|c`a4yb`M&hk7l4d$42+VK)O z7ym18)e_P+8-}Bq(_QuVX!*BG?0v*^@-_4i;Sf>4!J9v4RK$ne`m~(?-Grr(Jy_^J)RC zL@k;cw2(6zLeWg4x+`SIt^D_E!{Fei+Gb^K5eW$itaa;gj}~noAAX}3k&*Rrn4+R9 zRG+zTmJ5gOs;NbS-=xY;(1KrlmZiO@SWtg~o0v|v%ZRYCwM_}~mCpbtD4*BNytU}V zJ^!t|Ij&~7hlFjNgSR8|*7FDi0@uE?>A~pl_NbVL^uf9X!&24RMD85H+ zzff^2WEK$c^dHYTSy;aRkJpYu2rSXpwT`f`xcz?fzw7n+2Taoj<$4Vq>kWB78*c5{ z6BmeJ*KwD(e*a$tvj0_pV{W&6ucXm(V6&PMntBpRRP51!aRtiv9FYn~_#5Dy>kN9a z^Tza#orh>eoL{E^^kct04oe}=i`3A2oI`>pSg|{YC3-KPqruTgf_KWLM;ay;FCkQ_HJBEWUHDf5#$nfm*RuJ);=q zY2)bRtK7CK)few~bKp^lZaBr$;O7n1KK#$4%K;62D5Lq>DJA?WJxl)rfxxkSn3O%h=`?VH{K;xKLr24H(aXPSb)U&A5iya$y}1ak_xeW~ z7CuU`q&aFIcg#W(tMht!bWzt}g_>VQ6KuKyem)sku!zV zE4=tu{ap*L5-%IlOq?497n|7!Gi4=or3U4Q&Ju%iCb|4hl6~=oG&8U8(!<*@X&Uq{ zyxE5X^vDW&TesQ6vtNeF=~{VRFjuy<)lqt*MTkd+LgLe>OxBxN6+ZDQKMXQymfMiz zlkSUmh?WRGEk5)rSt`voz2*~7@!C?vJk7yutDHvkcte;-kPUDOzK=CWt*G=mn#Cuc zSH&*N!O#4~j)!}U^B&-^u=8iY#M@KemRXHgt6ta{Hl7w6s-B%qA)O5D5pf+^dNH5Y z!g$X|6-=X~my%vLZoIJ5@0<2>ZGO|b!*iU#&(i|uj-1Y`-T-dwZ~$o3ENDK@r>s+(>h6KGU($#%5SE>7s;A*mpVKbQda4|YedJ?};VYEF7gQ8&(&6e=uWZ%~pBQZ@B}|YwM>DrZ z`13jrzjo~Gs=JT5&6tICfVaI@`4Z9fIqhe^=+d0y^+=clcS8zbA?mz84BBp5E7{f# zMRq(g7*w#m89J~YcEV!kCgUP|g1@m37`cQx0gNzqQj6|Cmq459zD!qN)X?=R(9}vm z*ieRhetHCbmMHF~8{0@++)~n-*~K0-=!t4LHLrwE)PVV?#qo(Ak$GzuD2H|pIz0LuIh3kdv@>Ce>NBjNLoQ>J$2fiS-zhURV7i1`Yl8fUOzT%!SeJ9Ab=3V?q4Xrd6KQo;`_Q7|PClxF< zpB}uvUaRJO?%^2sGM`sd@=JQ~Xv2)6(T;A6hgZou7e}44Ly4VdpL9%lM(-i9CQX#& zqc;9w(o!9tV1r+(i*UmSXO7(fAI_SFtdHX+ofB))IBt{O9JtoW%Nu9D&G*7#0(#RtRKYHWS2x$o&(|v) zI7~~*w}>kxjI2xWtBT`s*23tuFGB{4URzBIxBG>`feNRcEZ**W`Ds-peY%YzRo*rq zJtsBYL#a+l_sSL|_IrFUYT#n;DOU1gnm{9ul2&(&uYwt2GJ$E*dNH+7K z4(~IdCewGF{Eb9HKi8zN0Ep?rTE-^ezzG!0jI5@dxzwg(LLZv_RcPid{l{rClPDfyFWKWP zZ_=jhpFt&dRi!UaV)Om&sIOlHXlQ9z3_I)#CuD6_l|9UEx;9N!4iah2;8ifscZtrH z3rZ$P;w6l=?T%G^M7r{FvV2#`vCjJWHIrj@itmFh0O9aj{z*rLs($QzdB*9j&TAF~ z@PHxnOQk#!O-bXa1!O{F0nAEA+L6La#v6Qb+#L>O$kA@^TR8l z^e>}kn8cIjhq7tTb8$N}*n*Me5JL|m#|kz@2o=|n zc2bc5avqGR_EG0yCy*HL|Zv2S@4;sHYJo6 z1$10>wh66t;xI*)scCJh1|ID=WK9ekMlE(Gl?)k4r(6>zDIkv1J4t@|Pkq2M+R*7u-IksXGy~{y-Rxmu*`9QalKP@;WVzL&lLb*xvsFH2BD2am>Q2;| zN2c{(z@_}lcXHWx0t}YiU3!tB(wAzNWs)iB$eY90)doFQ0FfaEy(OM|z#_vbxVxm_ z^M$Xo;l}~91jh8?)%`c`f5>hLDnTH8BE-UY`oTVq*+;We7bNqI)_)pb z_+zh1t<_T0$EHWMSU-uxm+!`N)}Jak$>fz#cC4B(pJ?oYB2Dz?X_9AlgU$n%)p2)S zcce@5`BuEx-AQL(tUdbuN5axrzAtX%5gJklI&c4uT<)?xa1Y11`|q7s<>s9;056wG zsE185tGk)}Pavh@Vr$v{m1D}B`U6;`_kaG^ucqaOb4kJLJh12De|HA@-QyXg(dm4(;CdxM_E;KB^%@ZXT z@9PhDm}GQGwA+>1>(S@W>r}+F`p|lF%I&^UcvZ4phH|rFM0Vc~1O&}K^@7zB?;e4Y2^Wvt5F1_I^w?a*tO_k|DMhoSG7 zq7?7dE9On@tUO+5l+9NAt}=Pn)~SUobp`3xMv>DC_2JQnkMvll?!hmKWZs#n@4SJE z=&fKJ)9>;98R!w=M*c`t~3e^aA2L$E>)tBbd`&zS^i+lgzBZ!kBUy?WNG zy-aMre7J7+drRGzoomwSCz^N@sWrOAIMG)#I$WTcCgd?PyJRMLEA~tJsLda)_!syb zw~=dFo1aMBtLbK{q|uKt zR(~r)9qFDGmfo#2^7*bcU$-1DPg=j5u~R+c9?BbVTifp5LB#5drQk(zTeB-6TVA^H zc7UR*C;!~9!H8W~0b89<2O9nR4a*Zv>i~>Z?+2GYMN@6r#z^R2ATRk!O zj@m5d%9)Fkv&XAlp(2dr%sE(jO9C)mm#D|7I7Z=Bo!vTMTJ^F06=U z&KQ1MTiQ%X_eZ)`j+t5d!}26}R8&@;WZggMT_2A|W9U>uY6X>mF$fM0PP8nx zmnP{cMY3g`|XK02_qwY7OjI-Ne%APK_(k%!VXHimD6fZ+kwOVqr}81+UX`Q1l|~CESYe6&DNrF zq6uX182VyLNR0vPKa95#PtU6AMk6Vx9L&g8cV5?%dmHu7j4uTx1#%p@-2S4hb>_;} zVyqJaInklkJ+~D0E&WIoZHU4!lguGXk7j&gLz^Lx1*Hs!zHbs6BN?!sg{l*pHSw6H zpd2i1qi1!$xu-_hdJrsGVRa0hSG2h0Q;O1+3Di04)gVQyxAUhcrE{!N!pAIoELtoWp8r0NY-emgWJT{5>RKHoHx(90yDjVsT!BM?ba&MzSi2qUM zkC0?~CNe~MDUCCE^-Q(*N^n}?L;A&crecExLNO4DCBhdk-UBrA3vA)`DJUz`M8zd0 z<}WR|SC#?039OYFC1h>XrK2^Wf4#f4Go=QfcL^uRgNBV*CzrQ)QQEHe`c8S zWA#u6Wl*}NrX`{#SWlw=G4;n)ip6wWu+;XbKuPk8esOYft*1tC9VS8}-a( zYuo&cD_E-UrqqOrJARZhml%>64R8&5<(bh{pw>NzJ7wlVSry$tm4;u8zms(Luek`%2rAf0mC6bC&ZNQXoZpEX<6s$f`{)lj;_vb3`(bCsQE|cz5V2c z?fJ}`Z?$%{Q<2KNQwu>wo%jHDa)R~z?CiB_2xKYUEeb}_J61CnxJ z;38*K+r;8Uaq;d3RkbUPLJ=j%@qn}A?Vp8(g_-;_a%gLPxpSvfdi#uot$jz*o)H;xx$)v+O<+vjim61J?kYW>{?RW)ol|`@ zX!%(Vy@jzLzmj`5J?O(UYISvmKr+asj^+=qKB~Mj=u% zg!w2g#cx-gdlP@!s;*AeLO?Nl+Ob%*ILWC09R=Bd)8Ld()e>(Etx3qt$0FWk!Tu~_ zTykBE6Xoe=vBHpDxnT4jqaZ+NvoUBA3M12bbF$*E^)nF+!6(BZ>U$YDtvJ3Ge2KPY0ok1M*Sv%9;7 z{?!mg;>YW-yGG6pL zZsg!o6V{nX0T;zr}u|B?tX~T*!(ER#_*rkf&>BCh-k&q%EHHt$wR|UR3+kiQgxPI z?9SyIK7WY>)R}?LkMOgM1nJd5%rMj%;O(o(C)TgLljL11AWklpM6@g}KaHkyWx|09 zKU!4Nn=IMJF_v3gn8RUgic`%`7J=EFm$L<~K47aU`I^U60l4_&Tgu_l>;wTg$-#ha$kQRL3y`2Ah}(1TLVYgIxj~ZIoGyJF6Q&<@^J7A#>}Qi z;Dqm@KE^aYyl^z;9iPJN&)7i^cEocV4WS+6SmXvg^A@b6wt#ZD-1W}-A4un%4s#T{ z%92YGa~#?c+c^nq=~uT&yQ^j)QqAWf2`PhYZ^-{(iE180aWD_ActPskNwfYl10@s5 zezVC~>Dp8~RtY-4rVt&n7P^`;v8!eAbk|I4Q76qaphH4jK?fps0nFXtBqtNPAuY}D z^n2*~6>DSV>~oG3;1$NnKJ_lAuZ@uAl~tT!@nJ;;nI z7w{(4{cdU?BV!M@``*Vo9}Zr=f4Z=8Zgy47=Y5Zy+ZN>JG4lzOCp^q=_cUuU3!Kxz zzcK0af?p*1e|mjS(qf5@7;UQH72sG9{LuP1;}_??-ITjIXkekC$848JbCPv_vD{<8 z+W!Y1|DU<}|MT~P2c?+pUEfA?=+_M4F~-$*p&6NZ?<=+;C+8Nlnc}M3YE8u;o3AAO z+xfJHkGc8zss44sY%DCA3T1{Or>H*sVu_H^KyS0kzV~l#dEa|5ob5KWP2yj_&KzqF zPrcp;E#U}u0msR<_`3C})cOHJPtRZI?)-ZfneF6K(^~CBQ}>9Y+_HSCoKlXuHIsW- z-WS@r6$#7x{(N&mBgL9WIs3lU)vJyz(cCFAkFt0I<}TY1f_;<$#Eji(f8`2N4M_O%ztPBYCWclva&vw5V6Qq2-kY%=4I{BPx|MXYDhb*=CsNz zNeg2=(QD@}wijcXidI*>kDR^Q zft5dhUP&!M18x))DSRu}RX+V-+M)=_S|aH!r?OjX;~HZLP!;hL)U#S?vd+2kJ( zU7#VlvECh0X4xDj_^Z9F^lw8^b-HV7Mj26o6jp^ef*QzQ0;?Q&g)*rF zXJ`3y8TVMCF)Dmnkcz|OS7zRMMGwMgy@(p?9%w;BX?)FGgYwaT8ye1lP*9*N?2m_z zw#TSdc@mUhn=4bgV1tm1Luy`2T8OJgoW#12gm7d`Tiab#6mkA)%QRziu&3t@B>DB4 z_+`w$)xq9D&*tgnp{~;QNzU)5=p}i1ci?z?NiXA6jS7;X?GI_CwjTH6*q-svk$R9c zhVusdzDa!ufa=#cD#lwUBqS7vMkB75QXFZcjoXLLlpCr;1>d;8ja2XB1WA)}BigDk zE9)i`d26@02~9XqImy)>(5hiF7LsmZ`7ZvTUYV<=Eac+ zb4^Xn8dv+}>27KCPU#Yg86zr1n$#2@;q=-5kutTR-{C(R^C__g8!7HO`1+mvi9>== z;lO!=yrph+*hvpE>yeR>^BXxdn6=?yM~XVvDc1eZ^30u#D&}*#sHbpZJKsu{(Z0?R z)NvvY>;BGb5t#PlQFjLW`u>K-{?^vkc}~qpY4;yr#o9|O8$V4ysPMkvVxg_wXQLvy z^9X2-OQ+)qR6S;)z4o<;P?s0cn501e@);2_UK6n!@WNGRYk5!>7t!5q{Y1Ly$hB+N zuueQ7$N*Uj0aTpki6#IPJxCm;rl!QGOi+VUPT@#c<3NA;atGcE$;p{8Mm%C>gVnXP zq{nQSbJ*D_uW~`ht~t^e;eJuZy9!MJp2j7MP}kA;rS{xm6%%w z1q4WZbef8a?wVt2+VkD1pFwoNkJS0=*xR5DOi78lET2uec}MB?1@CT?=EFQOEvylM zbxh$0OekkmQA0z6njeNx3{_*LJbZ@O@Z|b+Kml8o*;WCxE_AYou$U2-n$-nTF;EY3 zwA;6DGn?cN4uyp^U@^pb5quqZ#?z<2d6ZRFRCK)Uu5#!H*z2f+sy20llatfg^(FqA zQG@TJL@dSvXMXsU$SXd`v%EI<)XG6XdY<)Za*^;}_DSs9T9^0lFnM=ji{1S8keAg2n(k@dCi-+xV^QajH& zZ3#F~H3WAwO5VP`mn!YLP)<_*n={IBWu|wy!X^@yy3?<_vs0rEJ&LXTm~`?xKpr4Q z5ffBi!Xm*LYfq;o0X0BrZ)>XvVi6S*qG0F$&0wQ*x~7#N{X$RK`pNV3dkd?#q+YRk z0h$13%hG&rxT00Tub(0jyb2L)PRvDkXWe35{ee&Z!@g=}qfHtUEq`0i?YU5=PCQY$@S23C_MQ51Dv9P`bT;CxkbdnPh+y#Qxp+krKxA`()3)R|=+W#n!rVZ5> z6BUV|bOCaqi_2td>z}Nwzco^?iaKmtwL}kQCCxs4wvQnL^emnYUb2E<%VH%s7S`4`q577ut5{Mk4yVD;t z_7_@h?d;lNj;CKq;fnLev_T&S3n4Mk-_!Fzm^0*2X5;Qi*z%F`CiR zcx{*}d(5`}=={H$!NpFc=>})41>1hdtZDXTGaI%w_jpo3d^Ri3Q;s{bw^9 zL-xjLnb*MJbM;>{%dh*emjp?tHlFJ^j!Y|XRSK;%QVLz^4NBxjzt9rd9T@ zUFzqrM)4xdQMy1e*44?9e8@qzL)Q<6Hy4$b@`LvGyIYI(8k1jW>*~UPi8>o|n+{cs zS&sFZ;28)Wzu1png*`DKcfQv#nL5H`+M^f@S-oj|IHQsi!9rgeS&{mghcH|MNl z3u7@i0hK9uUKOknvNA9SsZC}=UlDuMiSrR;gLrH&X_u>ZqxuNqUz+;%xo20E`*atK%N{QW1pJu1Gv ztLv)AQ@B>-6-nm2b5&-fKsWG??pu zbo;n|X}bRJ^z)uWY6_ZJs9C}F#M(iB3*`VjetU8~rrpEc9g^)nP&Hp<%)f3?>jA4+k@WAQr^?fePVt7Go9>ZxD@<*zI5 zEw@|jXb0mgnDz74lLI{W_>SL)hsY@jYP|^$rm#@8KVQoLbj03s-+-jggBndE>Cy-1 z{?SpF!#5%TfPfv!!(y*iI``)>wWDU(sLv0X`sTvI@_4ONFZc=}uZP4Ojsf!6JZI1t zL;UcZPWMTXoghN}r7dogX$#IIBq9r!I^-IBbP?D|Pk`Bcq2kjOP_Fjc|E z#>RD}R#4JAIy>va%;7N>7&!4vrEu>du_55n@PIjB$OWzfx0qPMbYchvX5K?Kzrzg; z(dBW^Q-H0gsJH^=6ttX5)`j{V`L1Q&ySS=KSJ+O-QxIX+nu{v zprqB))txD;U+7yP)yI}~cXt!SL)O(G98;%KT@}Zz0_VzGn9L!0XSF6sjQx+_SHcln zH&9jnbjtZrAbw`*L68f_1^;7`4|)0L5eSR3SDoJ?3BYQAal>-b9cuX$HfFLR+V_K| zzQdbD_l4LD%xy9B6=pX8ivZ#TK{j4+Vcyo-dIpTMXPZF|xix7XMAri`ztgw3mdXu4 zS@rmAAC-dPdq!$KfV{Cx2%?&h`v4M|97=1fK>MWoY??<`FHF$Nk65j{+BNMHOa{e& zD%oyj8NF)?bW8LF&9nlza*cFZDF+iMYRYrQR4A+pAabu;{BpKlAz{s=GPV|IpxD(D z{D(qs-qq4dY@h6_!EGaftm{mc$S3?-=31se`^{O1cs&+@*_ZxXC8+6w5rHDwFP zJrtahnyRCx@Rsj2M!mdySGy!Gi$8{+5#2>#$ z&jy!ntETU<8Lo0rZs=CwLsgZ+Ic&S2yQeFwd!eb%!-yx&D;BxGFBF0M6C$46K|vVf zM|USO*^kG@CMJ+nB6;db3syY#+WcT5&`QGEK-}QS=|5@8R+A*HNpJ8u5LKa1Y-VBR}n&7Tnl2$49#-SOlbEsv!MbV zW>gu&ztPrEDEQr1&T(Mb05UHVzpxQLA-ro%^VB6drI<}+C?tT_a-zI&Rg>YmN*74E zicA4FblwyZ64HhMgRK8FR=qaymPeqha@ZbewSAU#KYy$Kg<#)SAr994$jNcSXLS7< zLACg$S6SUz^Sx2Xjj^H_VwkeN%<{VL&aPKTY#|&I{G&N zOP(pfEhJzABO@hn|3~s9AVGl8(ZkopVe+9g8=2I&3Sb431uzSbe}U7US+pe(1_ro# zn;=d1GX*Gsf(i=W@638Rk6-TwPe9RoeRct~*h zyuxxI!P1!q$Ouq;{rDNcT~$p@DtWpa4LnerSfe!5h+8}nwfhPwf4^R!~?7u}23EGh12!x5Y5uC_riqCOX{U=Mi%wTP~7Ae8KB1y4#K# zR9IY0ee_2l;1)piD?Wv-pUqeTpXzX(S1~j{kT;6ny)!hyI$w@~da<)PBW67uZ6s(VP;0nHc z`4TM6*HkmDl9QXOiefS!(B%w6Ki<;^$#rV}LpqlsqQxrO3<_Z;QUd}4p|(;N1Y84@ zXfO*K^1RGu-Zs*f1Iiwro~6e+D{=!bAwy**G3%m@0K`}hT+~@7)lL3Ks%?C>kaar} zVuOGxc&?-wPQtEhK!Gum4YmQGKXfzl^RO21x6FJNFpK2Ttzg?Ib&l4AfmvlUPl@bk!GnuBv`52smN!1`7?CocC8W*98gU$``hM2xSZSanvro;I- z-j8svi1U<`>RryB$2y_H-p7Of{0Qzj$=Iyb@M$Kd1OisuN2%fzp)(6**IkL#yymWf*iUm#g)tZ^?(9lp&oe8U3R;(kl z2zn#80_i@B@?Zb&_5aPle>nrEx9Z8;E^mlnEj_Nxw$<60JMeymu_UZH<<+4JTaJvRir*H=>PMeIU$r+7T@4w`>!R_egJ|4REZC32PTUUDc+e2xF z|Eoshe{MaxeGE(4Y>LfP*p<-Q_x`$cAydWZ zG&bSNYxwnz6n1k&@a)U_N)Ag%B9%K&LmU5^q2NKwaGpR!d&! zuinU8t{x|ManD@X^Zv2yIb0yE@32-PA8Bn_nm$bAJ>upRZTiIseSb3morKjgt+0D+ zB6*29z@}DHF0%d0io+)JL_woc)YQ0{Q37(5c)rHv4+3@DIIa16{ef?m*Q@8`&bXs} zhFNO%v+N%|IHaSq-M6{%-Sx7R2zMz=7ZFclq_Z~aP5sidH4d69_>*euex~)Wj5=cQ zB3zbO;vB{)IBc8(lGojIRlc z8V`>v87pV#2Xwybv*6(@UOcbazxHQ-GP3@xJ9B8}Xy`a4XN7|_`4W%|N-^>efNG-B zpR^OPp~Mu6#_ue=v9()m3d#Zr=Vb(5x9)+TuUb#5``aVwoMk}G-tER^^Yof)BW7X2kB zOHtNc-Jp8{-%`-II)RBGzwMaE%Es&nOCHEK``T~Xv1Qvz{n+|)6KVD4wI8dxAK#`AZf$C{((#)D9EUxOHPpRy+Z-ZL8nR1ha)n}o_Kx_utC z;Is8l|B54(EV-~*PjAa$qc>uXP>(;}-|2*J#{?DRR`%2T7TBbi-%e<7Z>%PE4`dV4 zi$m%>YEsw&b3i!u%a)CO-V!HDj3sZP58g($P{28d) z2htg({*Wrd@2|_JkK#cjIRko1FAzo6foih0TTY{2oF^+vyivSxd5b3hQ@XQDUJcfg z0J2&_o}6;gWQ!GlA-OqVEIr(drh{zTY#U;V9YHxadby!sTvUTIAWRYTnC*ZZpoXp7 z*O7i;CyyJ!nayjOoYy8w^FDYF@6|Lue$H`y(NJ_#Gpr3ApbST#xtF3@amA5$0`)5e zxc%(+yDiC_Q;Om%4OldbT8}Z?z;*M)F}Avk%D(rTzeEQ!Oy}1zkLp&7?NV*JcNX_X zY4VmZVJS6_O@|l|LdfKa6!!ft;ab2*1OqUSmn-Dzhw`lhuA zW$2fKw8P3&544wq`j=L@mp%SJt+s7;$&y#*B{*es82S3kPhtj!7kxmSW$0kHI$tPb zZ(iAe_$I1q%%E{3O>#u7l^ncIaZ?<*oPe8a7K}L82&f5gH+0gH4 z(&eVX=~I`nxqN`BT4thxM=4Xdvy_)1%F^Y1v#T(|hni9&d0|2_Xp?vBAzfpd8amaS zQvDET8?>&ja0OFoH<7XHp!4%=vuCG`-Rz6V@R=G7-XvM3OMz?o;E3)bQ;e;RT!z%9 zK&c?c=dU#}&MZLX8Ne{1ZPE>e74>kJjLRj&(G&pYL8b(3sDIvAcQGMYmsIv$I*jqn zq!L1a6bKH@{0+Kz#wiuZirwp1Tq#4w)$82L2b=OUa$;LSbXQ!REy1VK=Os+;slf&2 zfk?P1cz5?`YDPEFJ&c-ZCtJ0y6<)o_zj<~$=TSaGcDJ?8R(txVjw_*98dOv`we?Rw z-K%UhWYv6jwNkG-hiK7u=|n>G;TQ~*LGA$DGH`FwrqsNmW(niV@FJN zW5mvEIOOdzgJxzKa(QHNIDBarEg>Zv^fq`khJ%5)wNnJxF5%(f(#hkJ8o=H?yztRO zv!79R+R;DYxDh%~8X|_6{In!9#zgTxN-3(rh1_acZ=>>3iaF9VOF}4t&&(^`ZY5s3 zC6LXWB~V}Kf>8Eq)5s=Q7$6X#2_4-JlH0zpFBvts;Nc$g@JROyfto0F+6~`nO9_FA zVN6CTm?u8O^;*s>2Rf};^ORFY52&j_rFc$ZmtraLX?fHFaT$kkc*{mq-yJ^&q9}!V zfD;dc(UTk@nna%<`!HWnc3Y;Xk>X~ON&G%CCEaacJ z4!jrq{+v~+l$)2@Zly&yzuYwlPrc2}5CU#Dt1@7NAl`^^!uex46GO}~bL*+4BOvx; z8ixNQoo(=EVpsV(RiCG4cV~7l3BllELhZtuZA!+_Yx%%AcM9^HvF*S$auLE=oxecB$_7B(W zLhf|qhKCM&G}y73w@mr0nu;YUssjXMmP`i3&nh|E{q^D*C0jS zd`3!HLkDAp})TS;=PuD&E1@rh{tWJ_fy= z5jnwY7R(G1#Mu^`!LnleM5!;RkhyAp1?}4m<_MA8&kRYO5@AO?by&CrK;0Hy2|x9s zpWl?)j#T23IKy?Frny#+j^@ZeDz`@tvXe=&L3y0Say5l+u!M#p6*Zggndww!NwrNKte*omXnoIK|*@cgoK3b z@e~z7!Ie}wL;OQ`kkxWVLc;0!{r4z|1&16#M01f-e22DyMv3|e{UxPY*dNk6O&1BE zi-o-tQeoMMEP{mPf*?tmIh#0HI=EQc+ackj)6gO47{BR~_6{CSmH-PEq!Qc_Ap{lY z57o)c=y%f>E|#`tNW5@dbVLpM?;2Hma~C%wCo?2Hhlk(IG5-v1>1<+SglOu7RNqk( zgCIZsP1Z1Sva_@UAa#&$hahNZ|MUksnV2D+KLqUmZ6;}NYinlbf^;#G+>W53{%-ck z(#6IM>F3cT6B5!3BsnRGPwtrqOJ2HaYWEK(U@?D-S81p!Khr2^=&ZR}kriXo&GRDX z+|r%6xhhqr92ilX6;ww}r^XY%7kV%&z=Y2;nA@#P(lEj`Nw+>pqGF_5(9nOk_@a9O zjd5Pf?0zJH61fcOHxXYy7}m~dy$~AP@HQ{4jS}^`NDcj4G9|IPf1Vq3b5>}wmOW^* z65Zb3BEH^karkwv7+2Pqj?n%swF3CMW9>`)fcRn2U6hv-41X&i*-g?eSMNOqK__q+ z%(~M5oz%a@yU<=LrQ9-d#TQokT<>ptrz1yY7eR4w(k3@nKm>c6Y#2M0vvZ?R-?q6p#Ry>FEd&gkVv%y}+6A24zaHQ4Y_=c6Jks z^qS?g4eO;GZPjL6S6bZ`w0MEPvr*1!x!8$Tx0WwSwWEoB+1Fp4a)ag;>NFMZ4ZB}H zo{16Spa1j^%jp_=5tGdiOObR<(UrF+(ABYQg_`GH9+ z8cxtw_;WI{`B0X6Zefepm?9V0hRXo*RCnq2vykJFi9CQxhhX2A&!2lixZ>h03CrR` z`N=qik1p7$JJoo8!aVGj z|Cznlf#p&uaK8*ksT69W?#H#h`Sb9bt1HK{Nal#p(ABc$Bjc0xUWF{7TD(Daan?o9 z^#Yf)nK^Y9cIF0FTiG7AsM}et8I~Ja^*_X*t11-&e|P zNM-f2`0i}ajr49So<&XXg$^5ce$9qv=AaxIfE??+MwBU)R=%pWob^g8Ek(8N2}j(r z3OvsTQ_ygr}X@lm!f_`U`T__&E~PvCfOO!Mg^So%$OYc93J z{#ieh`7M9eA-*0FJwCs+Q zzTRH>=Hk$D#aCb$u2rFVQR(gO70cMf2go6!zm*m4dfH@P ze=2fhwBi(8uguuZW(U6>d!LbM#p92T-{5yIYzLbB2p^tmH1B*|*57!kCz+k5ks)Mq z;m#*^9T)@IUa~8zn?o>kD8rR=6=}7Sy@sp&-DhRjd-e8UI=Jkn=Xe&->cw+mm-(@J zMRaU!_;5uPdQGwAbymEI6~lLOz%-a`yRR?fgnBXVU2i$s`fH+Wd7%wUo%?g4DpSW$ zWV#<<&oV^&CRo9&^E{`*Ehpx*)^h5HVg{e>e9iAKI@PwzVeEbpy^}pxe3-#Tk0MY& zMF;4d5xrkfW~;uY?ivw)xcJ10boH<}ycL0?%EvY<_PqD!Dlm`5tdR1s|2|!Lgkwpp zTp;j}gLooBMc?D>W#1BB;u6xqeeySF9Alqa;Q(?HM=7Z%Zi|j+&XBRKlYVMQ3v5jI zTvW*KNi(!=zJbM@3~G8yxv=W3U%3=m`7QIb^UXcW?Dg#<>#OS7qi~~nVba?r^B7LQ z{r8d0$wsvVhK2&qB`dZ%-`H{UeX!&3*U)F~Fs?)pUaBwGMx37McMwrwQAqEVy*|32 z`dqyw@z|bw_Je-3XrRW+3e5@|kJz7<6E-iE>+9omYyv6`NjUw!cb1(xd2Y3TDODyo zG$v~D$$ncjs-M&AkNZP(P_KE28M^h8XQ-4Fd^bA`T-Ldt(Oax7&UAtB(%rw&y{g8l zBOw`q{BYy@pnvZsW5au%<(To>zn7DBdNgboxPQyp574_f; zd3rt$KJ6tADH9>@NE19}N+no>V_bhu^F;^YSl=}>{@3-l@YaLs*`0S{IvO248l{@7Xq*o8A6R!w zGWZkVEH=?XCG_-~G!KMSIs6GsuS%lt_}0y%4G$k-5)}gyclWosV0Rcc(JxBT(KQDl zN&TX56UEiAv_~aN*A#p*!eidFkBWOq`K7$Pv)|X{iFNy@rWi1E?!6pw73b)esrku{ zq27DKN<&I+JX+!^-cDbo`x(OH)8bjyU6G>}j!0E;o>S2U0$BqALjAEqOMaWhhtmy( z`KFjB`wY5x)l1WTN>}9~V=ZY=)sL`MS$AW`N7nVHnYK@BufO*iuV@tK2$7&Ru&qLj zYoCv@V?_j&Mhn0K+2k>Uq75?@x&eBuPUML02RwFm!V&5UH6&7Ue*RL&3_ zJ={!5=U4w38~NrbC*;Iaj2xBXHg0$w?k;um=G*7BkL~tbTU#xc>k()B;Fz`U5dKRl z>=^gV(*aO8jaAd&-CLIw}UdFknTsCWMCWUHmus({4z~Q0cG%VuO-P;Y4-7t5(oU9wGYc+wj zyEXZ4m`7s{;6XTRjzbGu=kAmf&&v$Zy8Z17{)D zg=ldhhl!<|>vS@Ue`5zdI(0t^RE>>|d>s9H^E3#ER8bllPR z{$8xdLs?X$dQLPqba04ir2_A$+TePxpv?aOzPcoFYIW4T97T6>(1-iMkVI_X>!c4! zB>Sxb!BudntN1S7yU1#6pPC@i*MPZ&Mt*K2&@&9q$fMf%+T=4}3kgqLrh`}HT0+j| zqla1>kFo8v)iXP^ZhvC?p6Tz#`iy{m(-zN!f5k=zt!?^>*x#tZ`)DOMzVOXN$FK3o z!5?{wLY!PFpBgIUe~#NfN1p!)t$qa7f3tPh85R92ZL?`R-I^?J(`gyA7XRrkW&=2s z32bFZfkZVcHSH|vt!v*)WY1|SFE(>P?Ed0NP)4Vb=?p9Ka8BPg@NU_JIKgX(dI>eS zGV1^tHTeA34X$@%*1e-T79EHxV*iTt+?VgCob2pYTn^#BY=wuYGZ?sgI|fyj+EV{W zh!Z;oy`5=b;1gMxIUkAQu}ui(TD(rNy*9poy-Qf9psO^quHiBEb9bTa-mM6rUW|PR zH&texk;+WTd1v#>MW%Vqy{sr4A`5Zz4e(%aW0AxPIGjV{6rrYAxal_n)&Lc6qpy!A zl&!m*dXLzBI$KFj8a1(zz4*(z0Q?s}K^>gNTA9sBgJM)&k6Nz7WXL`1-%(v@y~%{# zqRoCf*DZ~6TV2wymN&S0Y!f2u2MTnaVVRoSd-|(2$8%9TYsKInd)gAc%}JXG{;oOQ z%9)yZeLofNw`x@8_P%#3ySsXTl5psHQPl|z{e;0{VY0WEPjT&Ry)#izP|lz$Ipp>& zm2u$p( zP)(PsJ4&PF7Q3Zv)XQ%i+u6lqSg-NzfOSjS`p2@-p5oU1K)@m+_F`t7P!2Mj^MESV zqPi(N0fssA6|kL$ZR;3jy37-1b~Wa+%X<8?yYc+RE4~B{%mW|BnLOpK>VryR*~seY z2@dP}?+_oM`59Y-Yv>(Ga&79bC&esEF>NXkct^M`?IMpQ>6O?RP`SvX{#z@X)pcxK zo4*%#)}a|4`$Vf^>(IHCM$G6$Ilr2Q>S3GhdwORNPsPkK^P+a!Ki1Iym_@^OZSne$ zfm3cuxm5figc<6;qSt)VY|W1sBBa8bcam52BDGz7K07Am&^2ibe$2ngyE?Rtu+?04 z#;1Pb8?tvVYTWxBIJs&7VpqvVjW-&XBCgz17X$;6XL<-8w_`x+RxL3{e$br%@e^*5>reJ=-c|FyBLD$(ku(cv0fNnws8r#R(ot3s z*DJfCrJS5YK~S5Dvep_psm-1rZtK$6ot`As7dJ}l{tD)ay9%!i?FvoQkKn_GVR;=T z^V}F{iY-=H8vJ;2ZuiB%w*Satf_|`Nx;bVaZK=XMYk;`)q0vHN^_#!0C1A8ft9mR6 z??1jKEkOEzyh}^MTOA=JOFbJ^i+`QeO@JI-(_fD@U+qJ#{NEqiC=CBqalBG% zts&q4FDtaPPJOpGXS-9ATz?(a&`d5xJ%WEd**JBH|9)`d&h!5t6`k$hksaWYTD(Eu z2`R)aRczmWZI^(!`s)6gpcenW`Ip~(Du~qe&a7O*6}2~rjRl9(MeY$7X8ZOv%1y)C z*4<*Jr+;BF=2g+9seFjXOw!?9Xv{@&tqTdHu11R__%jzvsky2*vZaI^7*lJyQ=y)t#y2(a1>p-Xw4H z>U{r47zMWXw^tOxt_O(_N@3T?D;R{oVUbADB}pya`&v;jfY@(zgg0dNN|AJ8Y5ug| zi1_q&r)<$zO(r_0gz-FqdPm%k+Hc`nR6J2lRn5nB52PbBo-O6LG9PT%YDa;~p$KrZ z?42tdNI`%-GUbo3c7QzPN7hYN+BuRfjxrpmSUbI=;t|2ljGPAx9iCMrgw!JML#wHq z8BlRs9no4*vA%*w%d5&sY3;}e4^r_*vBT`E3l0q#8CR5^s70}VmurWit*l1-)^pp- zlg{Y;;IchN`IPNzDgKDi``98hj}mIU^s!#jL!NYJX{?qHpu!%dRU3^maoFTI;?eHU zc&nlLM=shQ%*+__q@#-X=YR*ZT+&fw@661){q%Sje)YC=6DDe?IoB+1cEn+{iF_KX zD_4$9cFQ~-vvoJ!30j=t5B*tYE8ts|UiCg<4082RTYt2vJo+RC6n(lAOsjvli59Hu zNd*o>nS_1e3v@ZoD{YqmG)GPcVtZo@2defz7eE@LKo3^XWp@#YOfF#!k6f7xqr$Oc=JN6ddX^1F0Nr zq`MNI(=09<-n!@_+cf;Qvu9?Uo5K^`15x##r-zxUh#NWs{c76~!8#&_4} z2))_4(ZDkZ+%K(f8nX>Gmv_+%1-3|;qZYEaD4P+&2L>1SzBD+A%} zUhU($L*dWpE`p#KK|09>7_r1Hh>&vDxgq}M0s1UL?3&6i;&VI7Evq3HR(2zEU?H+l zmcB!R#_=?a58NLtKnQna}W6S#C!T-`qU76!j&NOUolS02m2M-Jhl$j|rFPx5WjtU$Ge> ziP{6EHR_wkMsG9y2y}j=TYawuFElg9LYT(z$ zZjpH1NzUsr{+W;554G`5v~sCDA%U`ncl-I&B3`^Mb&6YS)}K##4=(o(l34z{3naOx zN6N1CTpj$nk4Mf)f~S1K4AUMI;i#7;^c8;z1cy-Pq&$buORVd&tbWIBFQ{3Buj?$d zi%E2~V^p%ufh3`Xu%#Ha$i@=n7+lP4H)LV_ofU%mi8ONP9dg{8t16)PX0q1Hxho+a z8CSZ2+T;=XWOKr~1YF_lit+@4(& zn&a~p@}cMY_s|c>`{f|!;j*uW3lR!UV_J0*AL{p0YhFjt!n?Bep;)@_?K*En4m7=+ zZ3muF`L_FGyc)P`Ps2jDwC30dmt$ShT8CY?#AmT)xdgSg)zO?~)DXZ`edIFCVoJ?P zi!j2g^dW1G;0d;Y%0A@}{L*5#Vkm@dWh@)RV5SL<{L)tJYsK{_UFZyp3AEXn1TszJ zEDp3D`vOnnDWj&b&9W7Y4_UEodUx7okzVVsmi^#RryG}m+%+0xFu%h;R^*DfV@}Up7 zGzx1z_-weQngI2F8!Gxig z>^cReGk7v6C{U1*u6Vy_9d@VCsnIgfOW5D}u;R14GxJbt_kf*5v>1Q9Aho*>&8zSM z?Y)EcG3UMa!$}pe^R%*4Z&4_m zaByR%jU|csE-$S*?{V23Z_EWsxPfu2*N^=j^<~{hPs9f{*MK9Pg#%mDTk8L0}VH99+vE@*|S*CwqngI{DN zCrhu6s_&8yMWNdlot+UbCr zoQt&Zr&~_h(G)3i39A-3+&!>N9^rYNo>J=Dy+ZROFsB+OpnOvl<-l zZn#$01@f8^XGeCo6I;YM2`#_eH-%pfQ5mEhF*L{WSo&67*Dh zyRwbQQFGeVXV&a;w#%sGu? zf>o|x&{I2O{5I8Gb9YPbI>h_ZKO0WM@tkjrsMlUs_!=l_xn5wJ8*rl6q{%O0inq)u z97LmcZqqF&3z3gS_O{v2qXLXVMr-jOA0F=N_YEFy({-jkvtYF4YAwTk&C~)M5YZ|w zd&A>cZ35ly(FR#K(=r;)9K3ohej~6VvgRu;h&gKANq^}GqbuJRnFkRXRP1`cW)k;Y zJiuY>G#O1gvR$j{*L@x#cl_Epz)Ocp(=z&T!TCGqsy-H0+8Q744Cl4C)kP2CR31_nGc%>i=-=amZ#+fyk@v;3s^C5~ z=^Xy6A@}dU+|Vv&*(&&4YJW}bC3p4IClJXB;}^o*SI8mHJ@i|?5Vmtp#(OrpYJi-m zx+aRmaY=L3-g|iHis+P1ik=8_T=vazTi4MjYk4fDbN;xxAZDX!xFk?la9RvlbBWdh z5LHYSr2?}xtrw?J)jHqF6CmYf=YZ^e*ks%6S&F$oucJinsK6*9?cA!UUO>L)tz52V zO7GNR>&}Pn>Zd%!r&V@@qm+m~{p8(|o)T{KiMxKrmoU#hr0yhUdh6NkQ;vt->+6*s zO|e9#?1muu1tBr$P3ZJRbeDnXav+#=;a5l_(M$c7&sj)%9JMiB+I&fl&db}?_Cx-4 zfq}C!ukV>`8MZoR6X#|ZzdQ|19gs|TGy?yjfr)cZ&eNHfmZf{_!NgqNKerO&#*6lBb zI1Xbx#ZorDt6G^QZXo{cM8~NQdMUC)d7H_K=a!q?K2CG>-BCL>Zn+LG(d6H&=McYux>V% z*OW5Fst7QK2077o{q*4*|1Qd#z=M1YueAB32d;;@(8Q|tqX1vZnapqmbJu^RGotHr zgapos{4!yxhH9@?gNaYn|Kv6dQ1Fmf|28S+=IO}+GqI}`^kfdS0(&$K z7cEt*&-3xS8u7ZsS>idh-ni!fiR*JU7Ge5$lio2Y?$f^e*vhhbe}IOH#`|`=&rd?& z`PB~$SR`J&8V3BIg{5V(nqvMjwUpKMFhSsRzP@0KIw_49rTg3Z3JT;MSKp=SI(rjN zuYn*gh`m%w<0RM6>-1c(Q#nTi?FwG0FJ?4fZ8X+Hhz08+Xxy%&Pk-4qlrOVJrcU!LHuMAV> zMx8{po8eJ%8I#TxmhBb(suU8f;g<9+8B}I@?yNz z7!cFi{`?|E9kP^Ag5e{Vc1N7ucQGfU0G&%nCbP)#Hr*m8d!Xoo)wT}U4uWy&Hc#vd zCDb+`+hrBbgL>b+XRk0OcN7J%0APBh({nMfZnrj2DNclOPpGO4)#^$tbTP$7_Zo#) zju~!}lz1?l*Ko-&<9*Bt=G%*S^lUT}UKjVlKI9K<6*sf~$zDTb$y5UozB}+SB6n&R z9*nE9V#h^4^N8;CmkH4yK(Wm-N)z!><>crCZV?lE>Ekam_`mTB$XZFp+W|Oy9G{bS zN%Dcwa72fhTQNSFPd*-!>gOmQM&l$hypt5k*uH11!3gJGHtcRo7nR^&?A&~FxjyPw zeK|__OdyTaWbdYuRB6Q4=d*Ekc55hyPis>--Z_8W!Ex%s4km%PXvX&=md=#?N{2C= zuflGN;|1B5%H7d|tS-$l;fq_h9!7%WDV5-J8wais-1#Xjh?^Bumi|+0MqPNx6xMz^ zUIO|Pb*8%{c!YOJIJGYWKPqxB=yc#zH>US!xXnAu&qwqNeUWpzOe)+$3esA4hWlC>Chz9IAHntC&UXnOAT_NxBK!DDHW~;m&&(x9l#>mP zY(=C!j!hf&6cGfTzUMDA1rR&et%xBeC7HM^19F9;Tnw1UO)F-FOPO! z)%LCSeGJylL^Kk002=$@V(^Nt7OcBYS@s27e<93dYx>}R3W|(~x9_-*8Yhe4tbRVm?R@gbYoZblk-BJ_ZG*pJz5jZ=^BsJ!UpM8qe0{vJ?B^S$qlDD9%^Mv63m4u zwl|Hafu|=_Wm!UwvAmsdqXzF9Fv;%Gh@uak zqBxUI&_()g{NVAraOu+nM}4=cCV_s|N7+ED{DvEe+Pu6=*pI zpl}}7p`riCJUum}YOyt>lflp%%i^HNqtaBG|Ml{1Qxv`Lg^hWCOwV<(MxkGC#c){8 zL+qV4xK$ajNGM7w1aA8=c}fa?jzqEGi7VO_JUg5%n&G}+%lhas6V}G77Z$%HS%EdM z@oWuFyKBTixHJbt%=t-frkh;=60kqbC(+!42-Ufq2baEl8`1N3iYHm{t$EUxxLL}@ zc8%%+o}=(*xkroACe82t4}FQ|A0O^_3(nhIH?Zsop74~!WkXyk;aKuEpR*5zg|lgl zL>r8jeU+Hl8a58wyQ*Sw2<-!gldO>Z2d}jZE-}zMg;PP_*!L7v9)Pd{seR6#V zeAZ;>6u%71NGJd{YVhNTzqm+|$I|CxDL-?xmcHRVB!k=8eo(HuY5w&vOYvx8X^3?e z_`Z??wmR`1HY~aIW9ysVc6b)B)w;sBj6bW<_H*ajc5S_gY1!?nA*DUFu+et8-v9+3 zm5rYX#b|I`W zm$mkKAGVj_k4RE;aBY-h^9T!FEA>}ckLqM=Lob56syp{fBiN(ssXg1*DkbdoYJ}t3 zm%S~d8b~QLr{FRob-k>wM}=}KZ)%m7oN5N=3jf3cD*| zDAe~ICBS#J@w!>_+Ls&Sm~(I+lzrDECo>E3FAF(${Oo`1h~N0IvV1i|6B47YkJt>m zt!B#xT9HBkx(3<=dxrxhzkh$Q-hj^BcadxTkEQ$AhU>hLDfW)l^9PFWXZeGh_gOn6 zvnBO3|I7$2E##~D=rf>|wb9z_2Qdy-fSozIWcLE>U{p`9-wTMdD(k_^GefZ+QnjZI zHkfb3_M`BmA)IE!6uZ| zZLSgwWCT81o_5teS5lwW=VNVgMuILaQTjzlES@4$u#~TV7w$fuGAzr1kvY%wh+t^AsX9wr$8t3aPkLxoe z8)~Y>F~x4Pv72L@SNt&>uGc%ZaSZ;-V(cRuH`QL#k*$ZbH_3zOC#6MewBu?Ln@0Ha zdq{Y6&3U<2^{}yjtvph(U3)553UD>YfMTPtrW@K3I;>RGw{E;-qN zxF5N62w!^j%fC|KP4|gnXF_(j*$K)l32X;YFnZpL-BYeaHRlO)HE4Jt;5UHoCp4u` zpJ3x&y&^e|srp$96?+#E=$25hiV-5`@lP2LEP5C6P75oQ=kzVn((|F1t?9+H_m2>% zb22)90bD-wFjrS*6Mf-)qMsYXUpF-2yee}jK`j_JJC>cfh9EH9VG&aCoXm%yJbGd= z>hW((5zo@!8Idh6wJunH#X<`h zX;;n>W1|cR&CGK>oDaH>diIC4xEzfCLm|=scXahCZMMOYu0NU*`D;~GJaB)e)$g)5boLV35Z>Z$T5CBKp zcS+~L(NW;tQlm3~z3p;c2*j(HP~Lt&&nv`+=&Q!qR8(9%*XARP#Kpx0WNa3@J5$A> z7DIq!-75wU`TV~^yoNMeuAU&`@9l7G<_p#3w8g5>FE8WSxZu=FbTxSUo}9`j#b zi=u;Owc4OTdg5P^x{pctY-XA9`C7f;=I49UwPm(!LqkKCP`?Lx35iEYh#>4&`<1pD z`;}#&5+WLD;C+H3C@6^JeKsL;cDRu8^#y~CH*+!PRriB$e`VGDo!Pzy)9m#$Iv64z z+2%jYZa0;=_6OA&(3;$QfIk%ahDHqRTFTO1eNWLhzC2#jb)7T2g||O2h>B)KMn;;4 z9-TdT^5nI}CzWQ`!($jMuc)YqG}p@4%*^aysTq9k0bOqWq^|B6d2oFT1L?`J``_Kb zO%U(HI+0Wzq?XgcyMc!9as53r_-)mUnZ%hzu4KlKVCeheOX%lQ)U1r!`jRkwy$pA5 zp(J_rQbS`Ye093t(mv(M_h6?jot>|>CgrsvKnQ#N3X%gktY0x7N#!chYfc_!Z!Y=X zUHqLZubM1z=hcYu(zb52ka&n*_hsj3MwcLEmJrZ*AeJV-pg>hi3;hjZ{ub)(nHU*^ zA8sMyR0vLIXEmE#54GLC3F>H`4@!W1B=E2(DWh2G2?SG5Ail87WV@`pG{Gu-YcWB6 zs0SV~iUZ)FFd---JCe~O3eqOVqh7hr3Mk_fB~{#G0JQ7=mT}z7dwV?s%U&UuoeqSJ zH8?b6j5rUmC~JJK{IIGy(U$85=#%b{zNKc9%KU_FkTBkdkQ+Y^&`LTo=9`BE7bG zkW;tg_+CYZ_%zcwLdWqokh2OFCA>a@h*zyeP?PKGFY;)anhDmcVXX*c@1PG4ik|-y z-k+3uohzT89q3VEC0Ta%Lu721d1J{gpuL(vKrT^HRD93u&1U&*<<|D(vYeUjhOe zkDB%`5i5k5jSc0v0g6aE9Yei}tJ`eCM0kSSzmT=wSf&<@(f0q4UAC$X|e zKCrD4g#U#3>nu!1W@9#+i(GU%3)*PaW?bM=4vvcMyy|a_{2FSVUPHMAZ0^VbAMFqM z;U>b0t%Z(@eGhlxJHFY?JgG|dDY0$EYhmolcnZ3e7>tn+>I}xySj1XuA z3SE(oxjAE6S{gwAg9ZQFxsh!)N*@J{k#DiqB;sPvZ>~RN3=Zw}?d;eEqT2r8M5Cp9 zgdzCh>9>h*7kI|Mw?;pH7~NboL&0Fd+l!rv0EEJ=blm9E?!SgZ{pRJ^3&!ofJ+Wn{ z50Q-lHeyuIoP-reiNNjIvCMWZCoW7i)suZ5K5qo#P=YMHf+N*(Y-pG!(>O)mADt{m zQj5>(%Z?Gna3lIvUcJ0Mo8raO6>q_Xar2+dRv2xv=e*$t#U}A$0l4=E?X=41Q>T6~ z^;bJyzN%7}GBjwnemtyEYPcTG+T@|AXJe7}M+J*(q&K~!E&cRzBCp>WJEy{G`jxt^ zW6lxrprOW>SBZAtB&hsSl7+TU38}t5yZKp>nW-E4Qw}xA6_ep-&2GV4b#-;8<5h{A z{_jNmAnVr2^%q3gvZJgcP~(Gy}kJ)U^B$rCq=v(@yVO*%<*SOYr(fCiHwf(g|0 zC2oqO-zFxcYT{GgNxSSHURvWnq@wZIxtV`GkgHfiYhmQuW@iE_Qk;~1)ank6TIdC% zw7s`C{FikT$gj|{@Nf*V+hfU77!3XC)31n=PS;~A>GJ9-%QY>nP_AUm)i>PO=DkQI zfI*x3bSCzcC{jM0?)Dc`HKQ4xU>rP-fY`3x^&{%LvJLDg-WcAC_hG`o?^N8X3A6e$ z`0Q^=;`b z&2aXrP<(=X|MCVpN;Hy;Gk^6EUBR6mn~&v6+ug33 zispOE4>$AnT9FhZW>#qeJJ}AL_TITT%`O{ZZK$iid~{c{Nb!i6ud<> ztC%Bihlb&=H$qMw)qnGG!`rN4CYIu`vC1b$-swcNue6NY?|NhH&yhHW$hDaOZVuoP zv1v;wC}7b^NB%yFmBp?C*>vhSP5L6I-n(v<${F#R$jMa}L~w&kEa!oS81gSMj+XrC ziA{g7=h8C<oiB`b?lAdbHoG`N!5Ac+KhQ zq4Y~FikBm6mz|t%(ZGoxtB*dxerp(OHW9yGLPTPRhC$h* zDoy&I6B71%L0jFl&4`i-@TQv?eelV_v2p4J98d=?nk@3z_rp5fu6@s`tsjKVfLsAb zFa^_~eulXi;pbX~Iw0T}ri)wH9f@7n7!B+}wjJD>)q< z9oNc3b6@&xdb^MbgiswQ1$`4=fMavt;t)^)g(t++Dme>cCo4XHWeWzzIdOceP(U@R zQ&(qG%06v+l?a1EY^ATk=f)Lb)R3#mj3ujitB^^!xZFK_`K4eIN&oubWuul>8FQ4N zmKFg~vdViIA)$yt<{r4Iyn_<1XhZXl$gYy5^UMd;$}pz9ggMcTm{|Y~4jrEz_Moy| z(L+_}KIxdqeM<|?6fU{uzY29$kSlk8w$daqC1t8uqg=b+uH{5J+hd#54xt;QQ^@B9 z1E&|jvBdjXt3&j>mb_!6Q6EiIDdZSHcY#>zZTSLSJgRc@OBt0V=D<3i_eMME1Vm;8 zf|xHD#FD$>X}@@Nrzg^Lhg)5E4UY`aIDL4I z=V;l)=-jF*uP=VG`3WtW$C3e+wF>u6{HE8Q$#Q!AKo|w2h^L0fwi#5-~oMoQjNy;pM<1ku-yVS-kLnQ)(JlLNR&a)BlK_*Yg>eqDb zRIf7MHMNHw+q`0CK1thjVn^fe=m9<3OgB?xWNKG-| z839+~Nq|p3RIrvO(z;K0W}Qrgs;-m}sC@0=0hGRJVZ}&sVboW| zO65$R%zIF&Hj>Jjou1|VfM#2 zzxB?-4=bbgyN&y>648c~Ipac65fe_9k=~P=|GfUZj9X4|UJ;r|u-++V>)^)N^VVw8 ziX`K0xO2XmG;vpD%r9Euj3pCQ*|2(L7TrYrK_6y0yT)${t^i5b3!UG3g8-p}XN*pd z$EeM!ng!w|qO+Fs##-$B^D7zhDX2CzC0Sy47ifgN_)REJ06)qY8{E9R$roLbgVU!ZxK$M!wELbjHPWJ~uCRfH3bMU`WnSB5M|CGlGquAO*Mi@Ci3HTu zM{7QLJwNXjHS=yL!151S5y9#>W*M{opw&$^OuJvHnnl>zL#U-t;=>zbh7G&U3<9mw zGFH(Jw+8-4f5<%7(`$11_O%1T^5bVwQEqPTdd+Zjlrjw;LWAaik_}_xbLO8jO+YMK zD~G72A)SP`Ctq(4tj&$6E#E;L{YCKzxOc?*f0m0>IU9}(lz%k#2w`?Lc+*x^=%3a+ zh;wACT*dol`^ctVN}Yz`9Sv3!D6M9A!@==s7Mh^RvG(|~V+=3d%nKg6fYnrj@=cwm z*lCW;lb?PYu?Qumv_C(kA9zOr$(}t`auO6w&|C3)5XHkIn{(FE$@$;99O-YDeHo`VSz_RHU!A==~L6t+j2Z;g)f_Q_&)-uOB}pFwe^eW z_J{`7pe||bvjtpOhK%`mm_i8fC`_o|0UHDYWg*W>nuz>3Siik2avS~B`PM)c<8Tpt zf^kUEwYQY^Y~MNln+EMZLQC@Ib$*R~z9<&bAD8%CCQFr=hZ1w#>*$Qch;i~cDi%pc zih=KLWrMeagF`FWWp^^@>(>|8h_v5dYqhCO&vlOwMym3hx-poq!{RuU?T@>5Whun; zTu)6+4UzpCi7MVqWgr)$1>c@|r`Em(ldgkUhIJeYp79YEG#y%3D9N!EmL`95=%Ika2N&E$ntgFD_2)pPEXNgZYbJ$^v3cBv`=o zyzA>t{DE9~gCo{^EyQ-kx(SOejHnDit@N3ojpu%0I{qT}WhFIeQPDN==2N%kdjAol z<;UlwW&4tYW1j~cdFi@Dq>ZOpk}nBl72nfZ)|zMxyf}(*rUID*RWL%J^0~uDHn}Yc zfVtvI(2&c+1hrBoc<;i)x=vNZA`_e_cav_wC8p8!ClHKa{>qXIfm3D_9ecpG5nfWH zP>dH-qc0Ugg9wg%rHArM@R=nQ(%V99`~vb9j#_w`TY4L`rv$bN);_J2R~sQN5|?^f zefz8p@Szusba*_6bfEXJ2-*Cjg#fk5~ zZc>-NO;Fa$zVa%X%E!A7Ln~tHCDtW#-P8V$K?mMar55Liv1$>i<9% zzx}W@%Q`7AoavQ2EzBAxNzI4^6=`>c!lV-rvNPG&m1E37)8Lb_jUn?N5v7@vzCZ8$ zOsBArs{GNTmSqs=7{XU`UT;W(%0S4-!v}$_do_oln86%QA_2tq2E`w8^X{CsCzQ4Hu zn_*>OF^)}{Dd!b8arG*r72JG6if_49;p^S~mz5=7DAA%Twu^J8ieK6@BV!|X*J7Jm z@|b6J;nx}2$-ij1D*Ag30gqoXduK>oTi<$RT5lo2FF!JVW6K+U$MveHNVi{1&^`Yo zDSx!9;>Yv${+`#A3)$`}rKr`DWAvVXG{f&5R%kIP1zw|O5zx}}^4lGJb=3SSvC~K* zF{k8A;NmwFmmG{gf`Cv}^%Z)=30-3f|GCiVBiI+iK4De)VJx%5w=bh$^ z(rT0bvW18Ma7BDaOaTdMb#{)LwWskst5@UiIcd;{$wuW>I*&yJ9T!hhO^bug zN#%&1YJ${|ynK*5`Pycs%j$>O1F`2LY*#(HDq7K&=_2C8TG_=;Gb4)hW7}%>%PI%& z=7$&YbHah@WPuBz1>4sxBB4=tsVyRq(h-JAb)&z`Og>Xg-`S)3g`)tCL`?_$)VwiRt8+INA9IfUG1Q$6!3e3jQZPb?3&Z5s_|})= zm175T^dx(2dKk>(TUSoF5HEqhajc~HeKhB>{87OVS-{d-ARI)`%T~@9?5>*w6T66e zjsLG~;!rIo5&5V!K=KJ-{@D`-8Q=V-`F?Ndka3*PHJHcNy6?)KB-h`W0xpa{r{b?@0WO58wxPfu{8jcI|@LG(-Tq z|2%E(hK3{R*S#bC?E2b6wHqR%IBDyleE@N0~+@n4M^`o!hR^eiQk9LsmM#kL@A zaC(?XZ|v!~@L(S?2!Yt*WX5d;5-nQ|RR?s^36DLd^LkYzHLgaU-XnIbO2kn;lonFl zLRJovCv<$z_(-EvJa?3vuA8O7&l*2kglYCr;BhA zZLt6KILew?um;2uP+Sk7Jz5}#;R+6bx$zLngwTYI* zMVBMwX`$9bwsN6uiOBDb;?E3vG-aSB%yreTlSNF)2f8?Z)EN7V9MF&ADRBHP-mH{P zUU>UF)U$Urp3{e=BIA8}hLv4*hsI}9Br73gvV==t4#`;~M6w$K@7-spbX-?uRZ5v0 zY5O1hf5#$zdMhWoL`a+u8A{tHl8NhL7XRO)jarKvmj3HyB8zjL#{YfADYwc0?{+CN zKg@r-xhOZrid>dVo_L^4c_o;WHh%JpdMU7}FQ7acP$p@B57 zLz4QC&6&FB`3uC250;iwWnN-jHOb&)Wo;f1Wh4o9vNavF*rrA;=FHLL!F08} zp>5mLUgC4fuH`A|e)LDW=tLhhGVhd5TPl0$GQhy>mK%A8Z}>ipu5oSrC@KoeR*1*s zv0K0x5JBo-TzEsSFL!*%wgIcn#HyG?eZj9$ZYSW?;hR$xXH#%*89>mz8GNiN-QLy+_zc7j z%%}Vd-21q~aQfo3)1}OFitpfLV&e}Dj{(L(LE1{H%bejl9+O>Lm{9ffMA_2Zu&SQ7 z+dT}x7#Un&T_WlM6*e@yWHg-BZGYmE*_<{!oG!z;Gf~2%#z1Uy)zR;Hd~qNqkRxC@ zzB{`^Ug2?KgGQ|m4h}ytR)Uz*=>1u_3Bvt{HtfK031POgOXdXuNvfPlAg77R=W$WR`bmg zR+{%|XlP`#Lns4qD*d27*}1v0Tg!GjPtW{G_@IcsJSQ+j#c1od0I0nLf;Z5<2|d}K zRXGUWnyLr_xlt)tytOon4K6#T=r8HRxE`P4mI6`G7 zbTk~ojVbf-C_k4f0kVwQS|k_En%v7+?E0Xv=>`_w{-mu>XZqCzA>^!E2TEVUp_gJ; zc)ybrr~buC!f>ep7Zj=GP5I>T@T+KkK+>1GH=~t@hfiN9>2M0X>C%`Li~rgz3K8efe9r_WO_e``K%=^Swe&o; z-eO!Gc0wG^OyZNKuU8&I(Wg+{fx%R}p2=*MwzwAwSe zd7j@>)nPmH_Cap1(qTLyJ9WC7gxEuA9^0A+Db0t&3gB`H(AP(`YJ335%fw|d$F>G2{{lagFVo^8+#}xDQUanh!rt@DnIZcl<+bCx>JQ`%V-x&;EZffuI z9DcI_`U5jj&dyUQ)fFiVTK+G{*W#HCY7Js%c7=GaBfkdX^cCeTW)Ugp_J4C#;+^%L zCKU-ZHZ|R!zrKp!+}tc(g(7KbI8SDvBq3DXrho{+0A#`esAzY3iWzy}k}&pVb$2wr zA)ul?0P{-9{6OU3^S*FZV)Aisum(4Gv!+*Cv7cabx+WqtlrZO2q8}&Qd1P_nrjV)n z(A6c1t$AyjL$C5CPq`a9`hlObc5d$h$kmk#hPSgV8~UtkgBj$M6!x=D`hvZ`K`riA zP4k)JoacdJR5Xg;M{}d zr9@64gO;ZND0Fp2GK)EG7jiXh@*T|oz$6>LM)>L`UdE=%^@6Y8oZ7hf2m5rz3l)%UYe9<)d*2tq+fJaP*Ofd&_Ph#JVj^z{3Ba z%ueQdPxs6QVLm>@jN)BVB$DR1(cag;$izYAonGAaYh~pVB?XCo!l#-N=WEOtSDzo2 zPDRz)A6rSD)WL^_hku^Hd}K$(_1?Z!-tT^x{y>}wkC>jP0uu`5Uj1${vNn=S0%pqa z`RB=gudW`yIH56HgOEC03<3x0Kxm$k^Zs5kLq#IlURErSeUOBqwF63&ZfcnHN=`|k-)1}Wv6`)q z1z;$Ef?XYBcVyTjQPN8kkAyL67h$`*-LS*wbH!A9tf2q?h}LN75EK$4)AbE-k1(z- zav^0Vy_9IwvUCD7`}qkU4OJ5POAHTk6vYLu*}N}Xu!QM}`G0K0X*YL|xw&D8A01*g zqh@zr>%Z&#Rq@c-HN5y`TVQ~^G{7*OAa?ZOkM5lBMbs^QSqDBk6*vwK{pOT7N+uW^ zJ2F!C@#!U*GH}^X)7;%}U?|YixdEI7V3hdjf)qM}8S5srqis&lvnCGX`p{zNG{~kyC7$H>7cIxrPf2y6I=lFv`>kJEFYMM;%&jmr6SLysA zg~UY>HV~t8decPqu=1V&c0ZU2kJs_*IP98qNPI_&s~|^0Z&XHwl%}rilkJy890?6y zDNNNW*d#4A^SpY6hwoPlpsY1oW?FnXQpDl|XhstGEguL_988IhIrO2!&wS5liw0OW z3G?P@sn|y3>(3%5v^yLT*sxLF;=RKDjGd#4y08ub3g#-d&2wdYo(5N8B4|91W3>QT zPc0%rGDwrdU^^<~m9nLw;ck6dc)R&%Bc=Z`?>pPlaDk4dKHij$4vGxHh>lBpXI}nb z^M?-8rM$Td!S)xeRW!u1qi*CP>Rx*x`oFfE4;BDi0B;NJOn(3VeG2!vYD>0l?iQHP zF~Y6ms$IYw5I=aO=X2@geT|xTsg3C6Y6?a9oGAdC>PS|IOQ2DIr^B0ieqQf<;)B#( z=KR{^ezas62f-$05PkAtI@y*h3lywE=|!SQ;<@oc;>~+xIGOzue(5V{!0gbL`<^Xo59bBJ^?ZzTb57rS;uI=U)H^ zl^M1LmTu*~O2lmW_1P@Bx4Nndz1H|APXpLXvfh>GVSs92W$Dv*P-sP>$;s)Cw`H6f zF3QT#SGb@K^91e7I~sLC1qbwDzK%%JSzpr*3@=+Kz!2B&)u&4p0q;Zaq2A zoa1_5|7!To>@xt7bAR7im;1*cr%PiM*`(wWS{Pk}=_I{~+kNp`196~mhpjq5li5}j3ld19G4Oe^tPR+iTmKix6?wo>ygBTY4UlRFeZpsH> zO5LHQEVZlfpMr)SaS{?S&@3;+@w3hNU~VW4)|KW{tkV2Q7K@5R{)e1AaRD6W zU3`9;Lm+Q)>Ny(ax=68T^JnO80FOs~vpH6;r z>Ct&kgMwR;!1@z|7p-TQNaZq&N5ub9l0l_ZJN|H2MjMGvT!A zNwAUpbpwcqH27cvxaF9wN#ykWek27JeF;g=mZSPBpBiXh9C270s&%~S%POy=dDWkw zpnzo@R%qD$g)j$>@02FUJb+~%A1XGJQ$&YpIou^5qZ%s^GC1#nMY5W_T=n}-GOr7~ zM^!MMK6==+@0M5F$iRKh>^lchHw1&4e|;`Vf0!VWga%BXRy|Tj&$!yL07! zF_lvpS8DWqH)YaBOnC${dF_av_eW94$Y`1`#P#J7&-8Nm?|eZKQs21jSRBEhJEzrB z|GJdGKnqo;3}+GGu=K4Yio2^{8bL#>g|OUzFXHXF<1xQH1BII)`Vv9V@}IHqWQd84 zO?<|c+~3hg0_g*p-JW}sI5~6aVA{HVZ4}xf+I@v4b?w^^iFcAC4UJV9gzY|}lhz8; zS&SA$e=-@aqaTe1NTZhZulJW65#>JD-g;hR2`}bslyiYoLkDF5yG5H1vp4cQE}d*( zmksEU4;&qc+5B$HVM4nCLLwW+ls#;@8iclg<7B z-j+J7%A?Jv@n~Ed1E4m4z;^^Sv5X{ctkiEbTU|BV&P$#jZ_(9kEi{?~0-QcVkbdK%1 z8ryElv(+(G(SJ6IQIPHtj`qRvdYhi#dgEe#O_nW-Rz-A`$pA`c-HkaY>b+ZVs7c$n zVisXo*O@%sfSs1`_sOtqFLe&%?U?|>UbVn#42CXYg~9D1dYAD+ky3+V-htBLERE36 zFER>5sy&P9q}c#lI}=eHAo=3g%9SFGWI^XDw!@d<1Qqe*q%UWE0?oe`O+I}#?tf2A zkRay5MNqWrZebP~$2Wg7*i2xs{JwuaRMbJm)?g!t{Jt$w&<};}2qJ=n`KS&ne)sX8 zi2hQGc29(0plwpw4J|?2z(osLcXrBk6@Of!C0id99l!$=fIOlnkvP2F?ps57493sN zGP->Nj8eR1aa|ylzGoyL37qRALb#g~ZeZb-T262Q7x3;C?0XwZ&--lkjpUUW&;_<( z!L9_j#ji1eYSL`Ahf**9sAG1gyq61!9})EShr0blg!ivHWLj?^5uHYbDG^{Qv;l0w z06Hc)1qGwgE|o$J!Im5qKvE@eRFkn0vj41@0cLi7da@b(5P}?L7NJwWUo+p zHqGwkrrBV}0e+whw$6%%>!$OLYCpY9`$6hd4)@xI&KxZ_+&Jwslk^`+44KgGE!l>p zPw07s-C>p~-Hvu51S;3`xH(`qg@ptloMu;5#oBruP)c5(Ssi%lxlfreq|FzAu%{zp zgnM0BoKt;F(R}Qq-@X$RN2x#QjDCWEuv-bB(pvy&@CxMG!r*XCO%vwL(B0iVbNyot zf0xW{5yz+;6%#{l1DmCY<3&JLa=$Mbf~2t@wFBz}Jm7SGwRE`4Ke3O%LnE}QyDNh& z?iK5gMM4NDAu$K#fW>_WW&N46_czfmmJcW95n`6(DT67R6aw~sx}1mrIJl~rJ<6pfX4e^12xN)5P2$c`E#5v7gsQs?Yh`odK`A)i{ zBUAO!wV}+qqS^!nZUNQ^rYGjNxyL^t+{$xv4=#7ETRg>ruPkc0AP0Vu>P-Lbcb>DPsbFrhh&PtOwW-upOI=EypS3?wmTnem`f_kFt37^X-SLJG!IklzU)a>~uz(o5 zi!u;#;|XFdsWr6iCL_}k>eT{gZN>fV08I-Tj>_<<4=b-#1qE;sHwY^$jB(7vxkQNj zf#L8E2>WyUob|p+6HlDBX$VWdI?TNQ8u8_JD*Y8OPx0wfSSvth19vq9yZ)Hx&{YAKOfGQqK?91-$ubFqU|SFg zvcKkv3QEW<8@_^0zQX8)(5g@9Or$BWZ~l@dK}5X6n%u#W`}D- zDxIz%x7%&Of}v#qR#W8xXx1$&>jA$u*CP>;M5cK!q511p62R{e0Zq45R`(nsM=Kg^{frXlV-RR72w>*Ko)9TB; z*P=lxqEv-ko3GYYJcdnQi+kOGBH=8fUb~7$GTmep2U6K#Y{a40VoA~fqaASCiiLhS z$qN$;TkJDycJt#)kbIcXPa#2kaMDsuGmh+Up*PN`;WCXBuoUHl`mZLl3FnBt)T9o^ z4yErg?d8o9HVx{>doX;dPCc)G;Iiy40Gq&IqcP6Ho`^7BLj+q2pRx?}{46u}o~hx= zA?kGCq{(i`Pz*iWQMYn_f!9s;GFhe1>T!ZCqtvbN0T__l=?%Z`2lGTSg39qtl+a?iv85 zYG(Zs{Te@Fv&6S<7QIjsS&dOr{AoJ|sttJ<(?d}yDV~#11tJ>0Pxqt(>G!D7Dx8lu zuzt@L1GJNbr;tT3b2#Lw2{NzeJ4ZgjJ(gVpPQiXK@b1c@^+L zeMsw4^+J@O9%`9P$8E3OYCZhMe@DeH(ZJrgM!kM=5JY5~ECT&oh%6j}!#>rv#sOCChLUbMi{nweRy?BYu)nOM?!HcY$8%(uwKzesp;z3-1I^x%$9;ATRn2;%*Ff& z63=ruAt`B{*lBXzklc{2jngui4|N@=VSxDvg*0E?0Ms`94~+T768j@2_+sSA@5!cP z664D8B*m@k9WUeg#^i?i`EVb7cAqW|i*`e4^QQJJzcG!5syE-%e3Q-E6mBiY$EN% zjRO)?F|1a1aiwfH|BSf&%LL^p|5Ek)<|y8Tl~x+h)eWHp#YY-rfzkda>MGYzwhbgyS3`4RA%~}sqdP*^qDRgNW4zHis9>I%~wVGkzVck3Huu| zbJ`;^MeO#_bemcHjq8pgs`{zpFrQuL1Kgy?6wQes7j)?L9~Qj2#R7>d(8v2F?fq<|Q2~RLoeY(P5r3vG;|zk5@gG z;`Zdv-%V{a67IrH)i7Dbw_XMTsonfaMrTqadl3}VQ_ZW^X{Tpo2pgoBZPt7RWPys? ztB>)x!mAzPx@Oy)>GbWdsSab+^A6$|m0Sr{h(t5#c|1GpNzp#@(&MaaeELpJ>9t#Rxutj9p^90?Moro6>ZdJ8ggMz=4NsxF0$h4 z`H|Z*J=k&(*^OTm;=w8IB6EKll%b6ZTpUlZqER1Rwj;qDoqCv6L`?%V7(t@2; z#84iy)u)|ftz|)}$S&*U)c8_KM<1}>BahK>Phw!_1d6Ko@jcGx=z@HJM&ct>hGgMK zwCeZq&fmFS9a6e8LHSChRO5>!?7zH!aejVjMm~PFhmwL+adj1QbkJ1ClGsv^3vVqH zeanAR>%|`%R+r)N5iaE&>Hph6JN*8>(F{}L*lO*5%2su3w1S5AdR$A?gmqgS2~Kfv zhZm!R16{tA;IU<~)dL}$r{eEnhph7bP!(CjP`ao)1_i7Yd}0nnj7BXTS5?GchK+Cv z8c+F>r8+~8=-upH-fvFD_9KwvI#Vx;1SQlKhTKRGit3O@ zNXxi3Qjm+thqXjhg!1vus-Sdt6=Z~COZF-SKm~G{k`E_<}WAJiJPvgsv=FfvuT;EzK z)*u&8*&N=GQskn;=I3YV%-dc;eJ8kK+fun`0sI8Rc9Kp}G6cr1t}AvrJS0?Y*|=; zpEInXk7sDWq9t>->W;x$rrwY`QA@9R{Jnp`p7PzW#``8S+9{nqNd<86kuT9nUW5m< ze;}b3&Lnnwr-pyeTP*ruxzU7I&nAy+!W1k>8(p)+=lyVF1Y9Q1I?5oK{EY8GZVj60+omDIn9rd&{??FXked#6-H-$8@ywNCjV9jdV1a+PC<3xt8=jGE3 zquL6`z!Ju4Dx%@C%&TvBxeG&w!4NsN5Va2Kxfi1!<%ozuFIFlG0SEam9L(#jPK`NJ zu#guT(05m3yDAUI$!^@%>EWDmlz}PTdi1kVLe?}DEgbqs2D5I@WIaa*JsVun(|OPI zljZncDAPDMLa<2t*r}GuRyr~<*3gCWQ#^SDWRWU!|&4sJ*u+F4^S-)Ap)p=27F?Pu7V$yXXm*zJi3h$T4(PG{dx z?{0!b#KkVhD_bW=9#&Ir8NoNT>Pf!|G;Rp@hMpDpC2Ec(GH{Gk%rS?0D7w9w)%QGJ zyD>s*)*^G3$prIZT+uG?Y_zee{;=U zKu4IpLmQvywu#>b5BVaCW0I17U&(a(=I0VERmD}e{dVc8olMjlYJ3xKrZ#A$ zEMwm`$Hr6bK$-Ma+M_e`U(fXLxHLTs8LoaBP%%2}69kJ^mNIM#n}2{U9zQwXy+e45 zR?{N<6IQjFa7k2wrx9%Yk3%_ovXt*rGv3&#^$ZWoPn$hmp>@VL9itxPLz~Cq;0#6iZi4nQpX4hO-qwiT!=e;ZYbw;J|n}*RYqXjHDH{^$Mfd%K;2vhlzNm6UglU zdMCDf+qnN#u*RyBHu5tsqaa4Pg79C&H}EL)um1mq(oGO&{&$Mt zF8mB_c`C?cZ3v8OzH7V*k2;MW)+^<0K2@K50hL)4_cC`OR75`t^hfFTEa{qiu^ZXD zToSY4yl40|9&W3Yakg{q^Y5(Q{42l%-xJO5#nNp!W?ETh@DMRF=PN0iql6|O$PgQw z!{!=M>q=bI{D7uE6cqU1<$>Hcg)2SN5_u(cSUxrBGYIdPMHyXfLe}sM;J#9QNy1Sj zDQAhrjFcGQ^$6Ao9q!PRG`|pYot?C@X`JN~{qHcLWCnchOlkCVg2}6$vuCek0KD)4 zNyQ5~k=|WYuN~vD#^3BX>xZNEw;#&fbm{B!4-v}gdezKU63IQL5N{Y043^l_q2nNq z53Ts;#=##e*dx}y#kwexGRKkP1PHi0(JvBHY#dH1^P?Xw{v3QY>OTHLg;5d5E3*^t z-x;J*Z_a5;INhN&Or2)pOpR~)Uxpz!OSwk-yM&4=OpFBqAM|dj&wIzceR!X~D#NP8 zui)?)OIeacWc@8UcEzs`1WT3Hv$zge&v;72QVaYLPt(17-faBMABI=!FN#8*rEmX+ z&qHRYp|hKPktyCiL${pW?2&QH1)Ocj?u?nYA@hV!Xr}b4KX982oDMxquetRYsY0Dn z+N=5U-qRl@bjtXv#i|zwLATmJKP+%m`75w!Oz_Pv{?7l1%*>m{)HT9ASx!c#(?Vwl zSC|=OB&30(#)Q><2;+F1PEyXV)+VIb|Da(gh`TjrAAly|ebL)lkKyg=Ho9LGb4XGG zoJQ-dC#^pIpoFRZ*XdEObD}7dZfx}Hqa?4-`2&Xj?zJ`roc_9cKdt0Em&xh=st<=% zkVG$MlRWXE(|rDlmK2kYa;+!4&Hvi(OP96b(Bjo(mqj--2J~Yfy4C@vHli$txb~8a zU73@!nrXVuJGKSjQ8y+;jGOvmAHd?yw_0&_5VN$9^BGU^fu{>S8?Di_kMt`m73)os zh2M1i_k1PlpJZ-yyG$JHg?r)Gbc;IibT@?=0>gyVW0g{=PUy%P+3XSpuRn=(HgIq? zqq)+;lV10|bVx3h?a1E@7}cyPo9e3(bf3*IS$~W36ebl^W@IM6rw zFm9Voccu*Y3Kg<;m#XDTw{($n*PBZ6Ou2^ezrGnI@maDptpicdi=DMql*`Y72*Vxq z(^DezD_MZnq&yiNtVCQr$LE2$gWq~Hf^;@JDjS5#;bHU@{C^+pdf_&{qqRH4eJbN} zu=>`q4FRY2TY4y^vH^>hzb@b8)3Re*WjeiTpR#5B4wL%4uM*@aGND ze6Vyrq#@yiIZ=&3aA4|BQHWFPz~6V1HBxUDUOb!J<}(k&a`wc;JO0EyU$@O8*2S89 zAD{s)B1)0XTQ5F42As@C+#&p5TUsPp2dFlUa9%oIYg3(U@$^ufSVIc>Df@n8vq>;T z@W%vDv~P68Y1>@=DG(?x_e`T74*7HAWeo*QubRY4mXOLH?vD6qB^8O+HkslLQ3z2n zifU56WKJ4=8#>dGVyz34f#9q1e5>Nj+rYa?kJ6>8tQ55C$9;MDFg0iRb)1HVM{V9w z{33SdC%&f7!&+TLR$q0e=x^rV9H=Ts)_vTz$qQV_Mf34tQM8=yJ7mbQRXoedyAS)D1cYghAN#*872SEqc>Hwc0L`>P=_7BUxIC{WJ5vfd>MJ`h{d#>&ZTcpW$}5 zCEtiS%Qj-fF*GnA?)Jm5?cef4ryC_7Cos_>>PUOy#uJC=5r)FM$9@f0O77w3z z>1^6}`z>-*NczZRAe({%VpY6pAVc+(c~Ru0t;+$GCkZ0q`<1^1CnfLj>ec_&~aJ5N3E}%A*KxZzL`dGE! zK->MBBQLDmuzQUUfyXXiV;C}&SkcE+T~hQQ8bKYsAbYSxylteATktIrMAW~tvr@kP z16bbz&2D{Cbmvo(t> z<9W)e8JII(kYK;RUhdZzcc$vrI$e=}(Hh|U@qyE3XPlly$>wf{LiZq~ z0L`0@)7abd&kf3%oP8(g|!y`V|+?Aobww_avI$)gBuZWjG z^RA;xa@$7BDfX9L^2(s^--|q#_nbWQFUYRuYAbSs#+GHm>AN{=W_|(zhAWs@?%^&R z^%3M34upH4hJ#5$H+%YVL=HrfnQtO|e(Zb?0Pdys*~OjH#fuZ>a+s0Ef`(MO z#fp!R6vT#`7vA4}r!72+}5ZXfxslnz#(pj?D74m?8ov5TCJY3?B7gCeE zbJjUk9RZSTy*f+%!;**bNp1d1Qn64w70aZolyw{0}hKBjo47gJuy*oE&O6#&;U5(c_ z1$)?zD>Vin3i_B9!Tg#7#q`4sC~+ajWJz0ea6CF_sdMaylMI=;5=-t?R?^l zo}}o`EQ$l!Qg3T~_R2Uvb%H_MjG>pb{5X2~Gp)1+?(5RzwZ0ewHcdx2jY)eAOn!UF z59jhPe)Ex~bF&$eZRa7v+#-w-_DYzjPFkszvUU{x^K84ggOt0;-Fg~SVr{>W*NGPv-cis?O0{*G$nTW^+BrTi5T5! z@k*SOmx{Xv%QSmqMeuoVbu_KVsH#$QsXWNq_pxwbz&HkM&)+WJ+tsS!+7KtFyx|)`?u&4MxT`fflb5+Ua5^ z67d4&sq%xnv2)gi=Z@DZ)-@8%W?C(bMmH4x`{Z~ ze##xq=e!ZzgUWAx6Yudvkp2vcRC@btx1u26>G4N?xO9^UF6Og@wL-!4hYt%cfBQL0 z{s=C-4|oBUHfMx1wyR$!y_b08e9`%L)_u$^Qo%rB6Fq#%pg~z3>q@uUsaHjcqhgzJ z%aukhw<%xYFemefaVWCH_HBkkRsgcf(0LDEzzmM4X&ehe#=$WNGPQ@)TwfpqPG%sc#{Rfmo`iT{naOBJF zA%@0@Ul+!G9y!tC??hO1Q*i2lNR!d$!XC)av0Ff(@9ynoW@g6XVO{hFjU)|VbY^D( z3FP7{*v2{nNKPo5U=;+t6nOiaZANyLo>usWR>&tVxVCz>QwS;<=evKk0N?fA#24LN z7h^h@S>attFORk~D>1N|8cKg>IfQD^IGroboU;)JR@il_&&Q4k^7De|!ostHAY0YE zzo5rcW(Tc!OoxX&4{-l+^tX=(8C$iV-HGk1z@|uPkBw^~`f9DY)7KUt@Z)iEk6SAq z-b1%ygQqR7lRut}ybtY*TBt{(Zj%hBfB*)MmU3K2&kizi=LQB@uLa*;WG1hQ0sO6{ zY4ubpj`4)h(3ePG!~TI*y)N;J0S@8LP!?3D-phRUud8I^usfdo72=+fw7PD>%h(D( zan9L@B!Z_1kO4ijo{aK6x-m)qj!{&7jDWGfMNdGjX?`@y*53T zrIs|^gkA>ei`TKXY>%kRt9jv9&Pk)-yo}9q^Ks>Y2==FOx=xk(?yhJRVmdAXeo^*< zDz@?`{imT~ovO5}wmIdzr*_-S?$r6%K|{aaFuB{2#Jxkv8h1=uOiTE;j z!u#in#vXEuNlz>t9yyaK=34TZauQ+(4?S;tChIo4f{RtWrBU`C2Xy;A@wo>2zuM(+ zF;~zc(`Pb%bpK&ATKPGyX?A1Rw0Dkc14(=Ga=+U8^GywFWBDm18GU18+oMl4kU#ZC z#0QI=qSMlppin5B`1yNPv_y_*OJYSD_vfZF zy*;C9A&C(0L|_qN%n$5xB@oTR@JP}lIyPSsTlP@)V!e5^%yNicw9>}Q4-9II!W4`j zro3Qv4^JHJGg#ni^pVxOH-OnU?=L3W8)_9gxvIT~!Z+)_Dx=AMm%)pTDJe<95*9Zs zrgp(sSDQ|u)RRPzC$Fqyv))G_>51Bnc@l{8tOv@;@}}dXkq=X{^bbg}g>jy(F1CL}04-@rXc+H?Rv$~e~%3qRo%BND> zKhWZAP^tfCX5!8<*}0{Bwb;> z|9UR$&TDT=rj5X31k^XQq%otZ8){a1{4lp{T;i)*5b+9AnLK?&R5p{#EN{@+3dRxD zVT3)LHq@){ndB+9fmm9D)^6iDFO?J2Vi}01CM(R8YYtgb(abB@j?->J*M-+&_yL$0 z2`@ElTbqYLKwJD$al`iePGZFm4;_ZTJl^|!Z{Kj?C8mm@P6la37k&i^DubPRuq@{B z9rrbB>w<{L?or;zM95-m*jkXTrG;jm51yM6v&Q=i8&1PpePiS*9W=aOg1vwG)2T#1 z*OtHVGveW&ea~pp7zD>ok8S!|FKpt+YG$C9{8UE!Q6`t?_oLd?h*o~`n}ff&ghHIW z-^ZLX5E)KpOrN@d;+gls6w&L2~`d7bVG zR9`3lCQz^^f4gv`{(9wQOg}|Q`YCCezw1d1S3|CL(qYV}SXnb|c^0xbGw5l$@{)%m za$CT#bE)XNwO1NcuG_IE-;r5UpcECHPP4Zf|+OG_v**{sH>RImeaAH8OyRW9+)cE?y zN!hNm<_cpfGs>t~fnhA9qknrGZ!V(8^$usrJ$drPvC|H;C>t5mk!Q;)|Je{^b@}<0 zNirgGBEcZXNK*y>ydN4HO~2yngD#r^a8w2Ja_I_eW3B5U*)7VIGot ze0N&Qd*$Hu`wRrw8qej73i*0mO+tOW}xmfQIsW87_p;E$-iO92#lP*&1U3Kz1Vk+$S zPmu?z6lEDlsBNd9V$0>EzA#Zp##86Q9i6)i$^U$8RxmzVij~$$`Z+qnGOmZH2J_-^+0wnxnY+ zObeij=8fO^J>~^H2&Vs0cq6=f8ReqFEp}$0ZL6dZQFC>d$x-F*4~g)~$=2M=e#ru% zqm5;}G5SngysNR0P8j1O+Z3LJ3wyj>Cn?QLfd#hCI4%;$rpx1L^d!j@B=X>Vqol%S zR+Q0WlNW4l=LV3+6c~~nLdm&=NVY|M2i@!r3 z-yurc4cS=Ox~;+w1ZxKD<7lA7(y)7QCBsxFUD3C`I#|rEw~<95t;_b5Uy1IJc=$%; zQj?Xs1UG#Z-4N*sQdRi#xv6v@;n6fljm7uT^9hfJXv{yHB+*Ly^ha?RQm50T(B(#6 zxE`pNGQYVMt(?z-)uCjldum2;r7pZ|*dT6d$5|?!2r0arVKwpuiA||c{_1n<3l1Vs zY}nuLD7~w_viHDUN`I1W#34gaMo^|9y-mf?_?ZBLm61T0t-{l6_{S~t?LOnV8yODl z%hFg*856>MaEC&}`NZHIOZT@o`dfK(NFNChZBap^_JWVC#~g(-+4oVZsZ`u_92fLc z`^k1M28P~ZoVAt-ss|2a0GDOji!|WpYby*Q-4F|^;J6Tr`u1k>CTrkaJ++(Hq&%M# z@(7H`xgJuSacSP2=ffrJc$##(Rjp+={R2_OWifD)yn+y`3AT$_z=SStl8#leX4PB2kDspw}zLxW+(RH<<{ zDcG$lqq&(8^vCV&HOyafIS&9mb^vO-fn;oK%ym6G9*k=-eIg)`QCiBQ-A^n21v{vU zar@=DenGH}F=)YS0b74N%%W$~_xJ)S@$;w$p1|PcIzfxGq$g5rz7;e#KnMB0&-|{o zrUUxz0O=6QXXm^0>X(~u;y%<9rCT-Ps5#fPQ)R(w$U86Eh0C&WPOLF2Q)z7R=7!ZM zb~xM1azE}A|6jblWmuJM*Dg9K0RiboNF)0CMnFKiL0Y5* zl+Ja{N1yjw>sWj3V}1L_=HLg+$>hH8E5bBu8g``)A4=@QLSn(XWD5bYPsat2HO z`F4GlA&f6qk$11Kwbc1A1xugrRw}|N0>}YNXJ9cF`ILWrWhJuG>(FMQJovir=;B%F zL>{Q{ewyihO$XJ1hlf3R4HwpD!dD5#0Ng&8zNWr@x-sKpD(NGBE;OPAhx_5;HPPI? zL8ttGsC#jT?_WN-UGEkGB~~F0ZthKhGLraQUc8{EXSEnj)8me!wE(Jv4fe~AKlb{4 zd?+D^`ua4i+@to>tjD8^^0t5x8`+6k*6WN0Qq6|h)xF^j=E!dGc=1M!%%&C+#?&Xd zo@TNKf;TmEJKD;V!|LLjpw3UL=Jl(JR8hLuoa6OCq~mr+T3Ae79T&2ex_V2K;dQRf zpjAcgIyyk+gW9i6o;FF!bG08KTv;yf~fg@ z@WST(&5^XGrsly}V&|rXDs0*1|nKbv_LHi9x3RpT`tx&FXjxuub5M2Jqn1b#UVp2pfr$kFdTEb^BbuNR^Lm1B3Tq`bLU4i^|SlKN)JT>4Ih)A-Wn$e4io7hX_T*?l479iaGhg=8OzdXvsU!AV}hUYhIBmZuOee<;`ds zFAvD$w=MY%m}y5)=QyvX2&rDsQ||v=8P<{R@iIa>4_=YcGvUz}7s{dU?&M7r9TkZ? zehrHWh%VJUu}F#NmS2imh~PabK9^#z6`yralIJQ+ubu{)z_5ur_x`k#qK7C~!JIwD zL0xHB{AaC8#0f?To)dWA|IXYT;a>f`86_O)FxrVW{3GJS={m2ccL$>H<29-Dt$f%L zgvLl_-z8Sk&CnV?=^sJRZ8wt2om*Il$dpJwHDJcOzkBv{+=egu=Jl=g^ac$HkH483+ef9QBx?#GWGAAgTk+*p3M z+P7cX8Hq^diGhO0AaW)yUi*v!4Jzwn3Iwi-ii&)Pw|a_{#ak5!&lEM_^j9zYxyeH* zAEThKf(m(%#*7IBY&guR9Sq<1vd$Fg(%+!(2pihcX+ z&mCJ5(9zO@TM?6#M1Y1eK;H&@5SNewzxGEy4Fft6TP-0Rkf%?dHo2WpLfcq?O0SKf zczS3>+7zw>hBlfrBiIwQ*gm|b0s2@P2Qm5cIuUSJ()L0gD5*VdDr+^C$E z7I#NH7i@{9Lj#_>3a#;%vdm?YPa#d7Nc^SbArU&)ISisNu>EKV%-shqksx1;q!JTC zcLG*%^*d$#)UbUk8!CK8W~T@~S>qA>i43Fh19^wfU}H@zE`~z;OMno_&fZ?n)$i@M z%N#_$;1RNmijaWWfXcWuwQiu%l=?A2paqj)_D{ye(X$&G@PIAt9!=-3HtL22;wk80 z>_4M>AHxOb1poYL4~`sjNPWP1z0O)h`#DA4Z1)ra42gzTj@3kml4n7j79!{OkJPT| z=oB+>Z^SX4luC}}op*1ut3A_rhD2Y6$LvXg>(VbL*$r3Dhq5t~uTv+KOv!6>7KCPZ zarzGOCpCk105tPZ($JW_2$6{6#8X$FvDKVhUXDmfAp-JR!jY0vprMCk8&J9dPba3S ziSH>y2E@dawUW-}i80M~fDl#^kRJhd`_E>Ye%`q%%;8s21at_DK>?Pfy}c9_mfwuE zBH$xZ;4Ef=Qx;c5c*mN;xaosJ0jB3(iN!^a4c^&BtUlqQqX~wgP?IR@g|PXhyQ>u;o>L#|q=unyb^o;Mrt zD_$4+ICywHyUsv&nR0F<7xftXZ(aijL{Lx=y69bhehUF!29S!71UlW1MY(Hwdc*(? zol{qbb|#V^QtN-`680K zK{QHnkJ^4e`Nx6+A)D7#HUyjL6gkF2=i!QUX0RA?j73l+v>8sA2O`Ln3B6wnGdw|F zAkvm}O8RMB((=0VL};7RktRn$UHSPFmv*q+;uN8$C6L+PaJc{Bz+yd3+lI;a@j2{3 z^;PVs9=F}N-LePF!*1cg$?B?L>VCm@JhhKr4UDX1Qq?m8pz-E(7_v^S69S2PAI zN78g^`(eV^Apz}GM8mAJ=`3)=^JE{VWhG?Jdlzsd@+RQAj~mvkB);H_L}Wh*C0Yu= zWZiYU^`_k>pu`Wq8Rj093RziVghG0P^K7B_btK1tOxx+oP1NYx6 z9!KkEbA|(eWB?Ke@791wla!(&I<)r_w2HkO_Mx52aY{JGqG zU?JdWoWY4BTE({RzJOjj7ZkmS6cw%JzS?6jZS+CI`^!gPRrIbe-oL{O!ryMfI&w8_ z9NIahe4vAQPNX+Ms3gjfd~F>#hsQRS#U|C$W5Cg>R%HDw!>0q&`U~RxhhPcS3moJp z&oN|Nyu^ICvL3BC?vZ{$gPC8ZR6#4;`9-0}EI!eR&U2%n$zhPI>FYa&pnUYUoj>N+ z3Y@W9YJIisDI{i=_wL*DMe7(V$4cf)jNnlYIRbu8iZ6+ypn~;yY4x7#e9^qt`0Cdd zRQwUL_O1Etmv~ko_PguhlflQm zyeQIH*%b%~rAx;*9#!MG3;z6jk9_pY!KZ>R?mNRi7})a-74*`sss<9JPZlLM*(B@ZRe*c-1Y8+dU z*hyJ6##k`YWTFB5d{asoMqw*A-j>$ZVv3522QK2`a8LlF*GBMwz6k)#w@xwO2wA>- z%IgFV{0Ml6r_-g=?A}$&gKN`hx;&CrdbgJgK8sm4mj^w*(48y*yiP@EKN$lrjpU1W zFJRxC;gmV-2RK_=rhJM7XDb!fpxrZC>VM1-OT|Qf&rGzp==JBUQ1W>UdwT>N1o?BB zxcp*@HF?w+{Yo}9sazg^#0ZKmtLiQjt;CWCNg`NrI&|VlnzMS;`15-N!yW@0fxFQ? zNgh0-nq0PJk%DNhtm(z@D*51tZHeP7Wy8$Ul@$96aZDyd2pU_RkyN+#N{Q2a1pzxsMSbfo#5<^}^iTXI#V{ zs}uCvrQ5@ecqU^j?1PA|hTS0{ftNKxo5P&d7)(CAk#{=^B){=Z_dc84GO34dlJkxy zvc zDPJMehaZZFUthUn+xVGtQfDHK#)Xw`W?aM`>GM&P$oR&f@B&d8OQV3z}L!UNpn|)&`PYR65A+#-R1YXgR)4Sp6^_B z8e|Dm)*_v1h|dQl>7wH0N&O09Cwyl)%N8F`J1|Hq%ClB&9dteHd;?1_YJ0Jy7YAz7 z81hk~gPF*B3Z4?0mHmdbR~}a#hIQ8$=!rTRepFHl)9A(d;rE=C}W$Uy7TdnQ$5mnI5IeDXvmp%Dj$7^7!mm z8Qd&P@|HuS>CYcrLe)NqOunD+FTo7JpAA^c06=E}NB&HW{0cjgJC9LW))1A$NWa$G z0j7NHIHzQF=}o~aQ<4DI>7hY^h!YS$kh$t$bz#+K2?wrS5TdE?=E|;VjoL86fv{#U zfB9~tVedTyLd~^F>L=>Kz(m3|K!n=qF>B&~RA;qx9j zhWvIZthI-3($JSCxJjbzr)+zm`MtHVlL z-bDm^3!r4HJ5YfCkdsCz?Cp6Fr3U=BuR4N0*KNeVf2<^UuB{+fWfS`h>5R0e@^X53 zaV6^@-BifZ-B->bzei{B*c<0~mJUQ2bBZi2{k^A!p|C)Y+dnv{5DxJPw3lkLz0|!5 z6;Ihnk-92#WaZ1quW-!Hy*w^^I6$AXKJTmr0Ma$5=6{@Xq8~scgsFYt`+Q3bC{3U-D}_RqOMReRDv!)(Sma80zX@KRz7uo5hu4T#kQm#0b-h2;rOLimED}1mP-{Byq^_}X z)5h>d$CWgM_ z>S%ibKYqT&g`VUIBI$jpi2&O>hK8T*^A~}4uK%z6RzuPM1;52RPTlM9hSK-d<$9#) z<(MIGecE318g59e)u3l{)Dp6}$lV)W%3nBnUS#vLO2pEFv*M90&}7qUa-_gx(gSWD zV26~27M!>|M=}b(e(6DzYm1xY5@P_xXydIlz!q zyX{vhfPq8jIXe{Q=rAl%y!xx@eTa@I^8FuGJMIuJpb$8lc^OxPr zBXc=KX1+TE<>`I#t3C8fikrW7UTNKaWv)8O|LC~=5+SDd@lm2dZ>qFm*A!YIt97?e zx5vY^;^h$jsc8cSWjtqYfTlBB^q>t9I#(YrKDCSo{c<{{il2a^mrB zi-YN)=DowWH!?lB5MTXE;dflQ^)_5hth9fixLHnC76kNlqk>}Kw)^XSHz4={B}mkS zIXL*SCdU_mekmZHLxJ8@lO9tz5og_gobm(eLPc0D+38y4{kmb5*$9K4J7YkhjZf4G z3w(=^7k;JpIS<#ZaMao;7KB=H?Pm3XvZKxlG45#JX4-R8*Da?F-uJ0tE7@h?tSZF* zFn{*h<)#$jX66I-{e6Zm1b~9ljPB6wg!Mbc96u)hZ-%DPe+h}}LU6xKi70@{yabAk z)u12G*9<{o@GI1<22!_)`!tgfXJ_ZNjlM7*&r22{78^{jSz!bmZ#m62QB>_Ll-f=| zGJ$LK%aI3nxS?#H&%}|RL`*kcQPYyf9?uqG5_~H7GIfYQ?vW+?J8vUYctRek2nT3X8XaBTYLFXbyI6;;udmPJbMIM^Dh0=4|BVOe!5a6669S4I`JHB4 zH>!RX$~&XMM$*2<&O2e&U1^^lO(`0Zj%{TD!NHKDj?2c&$zh$njnYa|zspHVxg%-D z*n+PRM-mGKeFXc=NJ$@?fp;ZdZg<_Q*2Q7_hTR4HolzG@Fvo*NXAysR7kgL0hS1W} z54*4j+gpnh?7;riI@d4zZ2Z;B#QRtG3FWNk38)uoF3VYfJJp)B!! zc_Vo1kI4c?D+$o{p8M3A z9;6W@eC{QrM9%AU@eS37?G_KkK5rl%I-S4Jp)Mn;B}{;tADN`ncWoolet^!xirW}le+ZW!El;7(YR8y?FR<5zo_gtik1;I)AW^L)JxeuY8%V@MKC^};gi-uD3)=w|rQREyD#t`af8n%Tx?k|LQR_N^$hMEKRV{-+=e?&K4Xoit4LNQ2~ zD^^-DHuhFW$A}|PM#0T)vSfs+R?Fy>O!d@cRZQeAdlHpTiH&n8y!3&Ncu6W{w=p=J zA!!NDbdLS**cNnjLFYOfrk{99ANNno{pO^b8e${VTo`|Trzh#uwSfvTW-gnkVNci3 zZ`6(~ctaB@-9ylyYSA$k>2v#pL4&!cpEaVP+wo|`G~HefYe=C*c+sW$H`-RAta$t# zvZ+1EK91?QrY=rzbAg9B5wq8=YPh%wQCYFT)Nhi*()IToXRI^Z&oW9%UPcDA;Jl1< zyQ&fH+kOUz&us8{n7K3DktZC)^frKWT@N_%Lf&qVu9r8i^Z;@({f#yl?*$q+qU;ju z1A45wUeYr2=rG#h8ls&Rr>)1XM=KG+Ubn2Xw?CiVZgxKXy0h=Z4Q87AIi?E*ahp0} znSQ(q!HRj}d1gp7I!qx#!lO-_w-B0xau}|ihbyFowR)*2`e+gb@;tJzCS?asJ>v76 zg?usjgm#!@ikO}C&QMm(x;{rm#_-u zdJ_nSO{6tg4&vfnA9bQ23l5TA2Pu99@qyWB@y!O^Q%IcO;SNM49;vv_hY{HZpAGz| z?}rr({f7EZLjLX1#zphVfP+{Bys;wD6eMlJgA5rq2vYK1PRw_TV2w3ydFiW|q`zzF zDc2JYv>Bd9?PpWZAT?xAa?U-Sg6E9<6KZF@kdQ$^Cl+zPXaxEE_i)67*TQ86x^3to zW4yk;wJ;Ss^~X6c@B}!83I{XcKrD&WGB`2+OVLN-oGgUyG$d*tA-3c5C5KHA6M*>o z`@;&{Uv9ds`5~GNJRE-%&dSfHuI&L^DJU-7#emrQx6oTZ+6yobdw{?E^i0}uZ^weR zdGgapNieNpunW>cPN&jE;?r*HJ55h8Hk11_v_U3^-DoF<<9*ifhcFypAm3e%DT8%|$xR90fkjVbSkY5*j^C(l6NH>3!nwRL5;~!Hr2&>$q935y$QoPu{CvM zNBH8fUxFTc_{39jK$ zNX!+5`7{B@NGPlbvWh~yRzWloG#z--d4E}E?)N^xLnvb5|tXbJ%< zW`TbAtHVF>wbxv-BQ&Rc>|c_8nWY_2w`_ECG*dt_WziJ@Li1-gTU->0S2wqKO4aQQ z7he2E0e;dTUU~3`M`dtTMKF5xxNqVH66O9>~*V|X_rao^g+ z(`hZ-_+U+A>0h}iLOZY9giX@9u<5<_vLO>_)5DA5?7t1GdXIHB?|^4Wh-k`e&_-}` z->_ugTUyx>3cS6q&QQ{h?FH~TEO%(5ty9+U9O_m>LhR+h!@Ib+P~bdXe>k{BQf2mh z1flJ$CzwI`DRZ5o!{+W=PgSNpwZzA97qi-G6XNnh%|1f1S3@B1#C@C6Ou=vR^=02G zzW*Ef!27&A>buF6#c)S5n6jh*-=rLlzK+B@ylJ)mDU68Nc5;np^V1M*MO|mY#TT>G z1ubZbp_6%t$Yz&}oJHaJ8-ZBn⁣zDZ=>>R?!>Plsk zLzBBs8E6n4bW?k)%<5GA&mCSn6o2%`+x0g|GA=slo1)G&B=l|quARxM^algba*s8g z-TU@3dx3E|Htq#BRo{`s_?k%9-P7ywE^j zBdUjO!-rum3kJ;Prc)fL!Z(E}H8N8z!Zi=q=GOu3`zB^|D!6UeL}D2FCufz{uXIzt zxRqy6{uo-re-HNCe3(lR!r)xrb)|@vKLrv+Zuj(in4DH*wENSkjj00GC%>A^zs_q) zipAqE8uH;H$oHqyZ3T7PM3MJI_!aaQ(6f6HnQG@RM>o9aJtDDGtRqzMsx(YY>L(D9 z_k50UnLc5mEKA5yj$BaaV*aa$Xepix5G(6ag0q|)gc&|iT5S~O{>Bq{3H=>p|M0Uw zeWBnjXjxtX6Avo=;}`+Yr2BC1N1d}DJp)wRlye<{aApsm2a^zUO58{ZR&bH3_%VWY zjBB(^+6nGzGQ*3OC9R&HIxpwbhpKMW`dg)wUHfF_`xr-TIm*3M1Ola(q?p$0v%S0* zrZb#7Ws`2~?f(1x=ZE&!H>|p{jMRsr@Zs1!Emq=ZH{~GOmqZjHT&YvZ?{Lq*x4NH8+B`XN4rbS0sDQD&+J9_ z$65!#Hj};@M!-$?LdYB;JdCkXONP>kz-|XMR_@>eI-(yB}icnZxAf z^|58`?5VZ%+>G}$mhuPJR-$k!GUThQ#WT46BX!Qa>nua;U&U33GcRu`aXX?7nA8kk zR#JnSNBqautJ40icb=TPL~q$YlspY`4f0>S2st8NDrh7=F3z5>{yta0MP!gV%+)x; zK}unmVsm~G(5rBUA>Xc;$LmvU94(8 z+#fv{+_iSz@K4R5`&^2H?l+usBhM&vQoDeiS&XU`FJVT15G?4P>9h!S-~4?w-DCS` z0_?^$XTCS5diX>_lfP&qU7Xjoq&2xpBSILHNS4iHIge^)#vco+7r`tFsZ2`Tvt%^ZCVsmf zRC7>yHP*`f-X}8k>R(=gN4NGenEoPjbhT#kbT4NWh4S0EdvEvm<=MJx$7NG7i4U>{ z+kxd8BeskzImFZA=z;+t_h&6uQK;MS{uh2YG53>q%P#l_uKb|*E_we4a385LlndGH zK3US5agM8NX$6C@A+hF|Ue}fK;X>Jq{MjEYwoEX-sCJ2rzZYrGWe_kVn>-abzPMlv zQ%!RqRA)04Q*nH>bIiXzR9+Gsvhf_oM@!AOmaX|5=!4K5r{!a+kGLoK z(FaK9+AC*K$e3tY3zdgm+bDhyQ8}sIK)5#6RhJ6t_`}w;NzDPG;y5<*7XGO1is*-D z$MaNmYFRzC#zg%Fi9~e2N7|__TX<6erYg)F-!hkTC+!w8F1iZJ&dA76(7wCHUd%<7^koU3h;ua91 z(NxHqmBmUe1Lgvy`(BM`)VZ}So>~SfRET9G_1qfQSZFr?OKKmWsX#ZWdaZVM7m&~J zK45Hm4G@P5`r$$;Etgk)rI&@mxBNfM-IjNH$`m;M6(h(I;Gmi+uz$*r<>2Wxs-*Up zrHNCwnX4Fa!49TH`+@ia6EGrWTiJgBn(Ei!Al@HH|7W=N_hJ5jNpJY?16xPh7gx6% z>Ldbhg*JhoCD&Di8Q%RL*!tryxBvp+AF;QYHx19z`nM%x*;;;jHAegkTPZ2`5&`0E zX>EP;{R^hEvrF#xq4@Cs;9UucyZ9L^RcJ51Ut7Z`U78O>()}o4lcM0fe1bv}6SE&A z0+I`OsPgPXW)(UGK1UEe0V_F-OlJKT-kgR^Or0`N6(+dY(k%D)iPx{QMD zHi1Y@ifDb%^+4&r7s>dqWi-a#EiyUqgmh zif;_RCU=ndsX8jieQJ&l5Y!?uw?8~6ZeoARJEM}s*fzcUah`JHz+-NmxPE8pp0(~~ zvKoHDF4SL~nJF>hVaCwwS<#$!N>}`M;HM3>(eId-fA)S_-B*>t!A$X(IYM5n-sbF9hNQg)4gy zRfrgvbKp5B6H`E||5Ul` z15xpTpo{W(ugOj> zk!dSQmBuR!V!=g0Dah!fb|H{0po8#gx?lBN_v?kK^-OEZkE>VlLPU-^6nSFhVdsM0 z6$gzyHYlQY(>j$epJ?6n$P52=1l6K|>iK6mDUSkgS&14^-b*Lh>7nTf+Q z4*~VR4r02}I-6BmENfVy>5_?}06cgbO9b+kH5BeF+;LbfG?+`hSH?_V&O{u=Ih0_7 zNzoyM-hjK2_<#c|(fIT%6gC*vw&>%%owYwix9L&Mh989R475*lzpM8zz=3IW_RO|i zleYQLs7>rpOalP`(-s><)wRdT=S15^=R?04G3g##9{y}q0KxEUmW|eC@%av^TAKJb1{lj#bHq{C7@?06;4$r6@kh!b@Qh6aDw`Kmo0#rC z-YUzwhO`|*X=|e8W2Fds6uJFsLga4N>$Myr71$2GF5@*Hg{S{!5wd`s(dw!y3{ZN_ zO`}NPd!@WttF10mK4Lr{U`Zt=+Z|RA&I>0JnEpP9?=`i$&ml-GF3fhnsd#cOmO!xlFeK>LKe6^a(lh5V#Z?m+O~}g^ogk!6 zgE}<+hpok2{tgTz-@BhA-oIiq*V4HSd(*})Ue}hqzGfiNSpA>aXH5`3d_J+W>o1U`$T@wo@S3_FEzw;_UrbvZ~7wdmj_DD-&080 z2e6Wy#y#)?HwU#^_vwYzN3-u2%7)~CsdG0DEBK8}`3(>t%l>;gC>SvXeVVxHcO>^wBdr9DX%5xT3ITb3t|C*H0PvA)8Z(9J# zf^_3awU>R4RDVA;=CxO9D;Yz6p>6RH*uIbIqShTI)L&3fXx#giPO{?2Oe)cjyvL4v zMG+x}>f-K}ip}1i{ANA;T(H1o6oLPUjeN7X5r-G+xUA!=GF8l)_r?(g6`VF< zb73x+@TqBo{I`Uv+YA70n6EpD1`r$f%CTWG=@J;HMw^=_2k()q9JC~*fMh4Cc^t)7 zSuH(->Bm!%>M-@9ttTea*ONyrNm>o{q_o3XqxUt4^b;7eX!R7+JFnQeCKP6pf2yn3 zGWHVcgD7+Vjg@5kY_3p7CcF^0Qhw&Ptr!cIq40=a2Q+A$>P_MPhbGSHHc?hrAJJIf z9!>v1^{UBTK5$ZyYg1eQsMU^^Fnz}5*X|>V8^)sI@YiWHNj9P1zm%@c0Lcj!o7plw z?hjBRH#oRR(YsT)wUtRq6<@g14fo;nqtC!M)JkIgq?r)&zouIv?qksF#p!ZW>5YiW zF~ZQ2KOYSa-l6Hc6(O4a%!eD%Y%d{*l zm)QGIv&-^$7F15@C~hXlGrF1IU}&ZWwKX7syssczk{VURfAU87ID#dgV1r~Ot)}AI z2Yh=6$?hSIFCSL(vfmV;p*Va$hlJZ*_okDo5hHA$i zC;w5|y9ORqXrOsF>qa*y{#wLiu%nk6PEkQh3eeqTjFa62CiIfEYnyI>zB-wu@Z_sZ`?n7B>=Al@hhge3zE*fqw<`$q3Ak_` z;byKT4cQE)cRH(~b>1WNQd0>iNYXc{ETvzjH8xo{38=mn)H0{~M`^?*jWQc9z^?X8 zAbIAs8?@9=dmE4i;IfbV_tN?taR}fp-pRbL#M+-)5*oj;ZX4~er7V#vpR6!+;dqmF zT5YHitgg#cc(j?VU@L;TNA~EOgNvB9a?C!*berouYPyldHYEd!kH_-phQCge<{cX1R>u z62ZgkCSr@a{8lpLG4IOSwd)gYC|JyCi<_~W1dTVVKtamw?q*c=k9TD2WDkc%Qih4G z9yJRLltlIohGIrKn4i@;qnSwIRwtOgR40ohRy!XNcu9Q)31c=4yWp64sZN*@NX`_VC!PFnY}aKC=z^wl*PKU zn0v?5V*-opvj%e|jjV20U@W^^YkesW~6j(U4OcI%FN zf^4LTf2`&yH>8=t)vj=MV1t@jnPOrzyvtF0T<5ED+sxd5ptUq9Alq`BpwP~^b!l{O z#xOHy%)T1s7A?ErtR=e}A=F5kmy9sCIz|cInOnL41#Z&#t_fu-oL|?zplq3lkCbC4 zE%?Qo(wGTu=t=udcyTC}n*4syq-1s~W&uN1 zEH22GHG@91(+(QL=YR%20|Y%fQwIr(iF{AZ)m+tsTirCK)`O#iOl-J9u9~zYN0pH z9vRYoF8jlxAO|O-FIiC5wf8sO=u@;h{Xp0(Tc;9NtIf81y557~zD6U#@a`ka)a!>o zJK;7K@SOn8ReN4J2^`OK_J2CLli&Fw2o1(X|8h9QSs*(~ga+|MhFTRS(WD>DxV7=m z$ruBoneHsDjTs;i2+XV1atE`pg!A|UJ>y?4uk8n5xmt4Zl}O9qZXuWPrO@zTw07Vy zk9CGKF2Nk)Ux|r#Q3r}^PE1E}mfFUSm?6iaoI!f1+HxvAG@`2v61oO8RcA^!%PyaZ+xWRKN)}Gl=u@iMZvu3t#J>7gs~*D=fr}w7m@=nW+gWE zl!Ln?IA3xP+3hByH@wXxkpm{DrQ>3kt(L|sEe4OTa5cVmAzCU{FPU#_cfyNVrHpC$ z2!}xr>$rC{EmEM|4Bz!&-fxWApnDqSDUX5Y^C1Vu{@$%d>hznXAJ{xA$<~D>sI*ul z8V0rD~-}+`Q*YY*1fIUL3SbJ!+?)~a3qI0|`KgGQO zPozPZ^20=oB#q#s{MK_f?w)*8a!B-4#o$!(@@f86J3Rd)1{qU7ibK7q&_ZB=S?sZl zA^r~g7q+WdKfJOK#8x@ckWdxRI?QW6nQ{!SglyDtIO8Blvaudw7%<~TD{(?U)nCB1 zSGq?(bJYh^6_{c2(ZJRJz@s3u?Sjqmlx;|}A!)^7aeBdm&q8WHrO&m2A?nEaO5@gX zxDANayxUBRx2tw$1PF&<$#B$ zY%n#suQ5Y&Fx1$Ni=fiTYlobOwy&Gs&pv5(`9r}!A;wH^z%rNtSm28D`yndVc`$o0Q1tOGn`G@Bb1rHs5t|6d8ZRny#_%-f? zTBqF6jL1=GhC&mkcX~}RdxN99^X*in`V5NTA#1~|w(Vh&CD9={&q_p<@pb#CK^4*AX6I85Q9-wAJrEHgb{I8jc2WARdt?F^qjz7Eb z_T;@X-b0V|J8_QNR|cnU8=W{%;sAvK`rUax=L7KUh6KdetsGD5mJJj)XgClc@fc62 zUf~SFgc)WsXBFNI#)vZy!**J|@I&paCS4%wBC#(0mw6`BJFjy?zwg0~%a}IdZ}gHVU+p5(n`aHE2CLWi<8ZEh zhzMbSFO~ba@a*m4M4hdS=V2Kx`>|*-t4pz&Nav}wmF3~9U9V#K9(v9`OSXd9d_7wJ zPYte^;WmtCu0M(F0Bs>N`zY^~zOG&ZOJq0{JF5nH+43@ z4EJVdvoI@Vw^;qdlM|58j!&b=%HX})>A^XElj4?6Ont)Hq6AXsLaGQSkx(?u8yuT| zS>g8-&(7!wJnG2(P)B>W!S;4Zkx0dv9ymfLq@4(DX-!g^4b(#H_4-}YI7b&}41`~7 zHZK}I6)|;AleIVYoPOU${lrRE>k;|8vo)s~_6`ozs9&iVdL5#j4L;BmqZq7adv7MT z&Kz|vrJbIAW)@P0#vt^Mub zrC>xPwtCdYo6LmMzvv^$&D%QkdiOj3ogl%J`eFyyw@+t8=i$)2zG`5s6|?JY%It`@ z+|#q|8S^~CB#nv|VDd+5)b9-X3t%jx|EIt}Y+?NRZPCd>*<+LR4k7%s9~|uuowwq0InKZtpXjgoUjOOub4G88%mpB0A0O0?nOwcg=zh za4^8p|D;^$AWt1^-=!OWhcGUQ?`h0D+ox$iz~{iTJm`4UbF4v#mz79GOSdwo^6(Yq z(1Hoop-l8~-V5e6Jdbpj0$TZkWGg3e2lf`!(|gT-{#MdMcuj)Y<`)z@LBG&afYAXt zmyYKL+G$6Y13MXh72Pw4)kN`}LFtdnfw4W+)`eClq&C!=oVqdWQReUk&sT&&pezvk zLCbuUR2CDKL@c|GBAj0P*C4EYwE)|bI3bH#JUtoDRp>C}KJShDBH;>8PrO0*p#g*F zCTWPqjf)(>^fOzL0`?Y(>0*lcwpp!E%UW{s_j>LNcmEE}4xhFf0OsnKAS^@v3ai3E zHQPCA#7$%F#-3P43g5g`TO5#(MLj`6A7mFOdL4>I&8TFpQkF<29L*QZv%q!noI`oGmP+BSU}|OrZNhi;bBNJ@qw7gPe<^egh1*cGVz| zfv^C|{PA$gY`c5p)5Ueq&NaZ#ho;XLv)QIM9f`)uruRI|Z;TT8_4?zW(`m0E&Stka zTm9^$e{LI9Qk|C)FthVNqj3`5W zri)tKMs9?5srTjlN~nK%pry8I3Lk>UjdqzBs}5HI?+SBzbcS$td}58z;exeJ!D?ck z*^aj7a{QCXfHz89Po=H~u};e};(j^5w?j$z$<}FMm~h2jZo4O8bpN?-3;p>&@HcE# z)$9*|_1xe%Oq=~&ot*IVJrqagc)EO0OebQJm_{p2N06L0vw8O_$94hSOZ=g4A&DUI zS!IftE#Y3W5J#Pi^b->d6ZnHB-^_xf{5)`tpe38{Qo;k>7Po1(Y5paG&#yUe#)O(J z$;(M}J}w@MEm>ZUBWP#d(Uv7)?*G2F3VOo=UmI@vTXYv8u2L|)mI*pj6XT|!v^2S3dj46T!jW`dJu&JvIe)jPPXaK#~*6Cl^w&=Rm`+O8H^kWHaOsD6qL)kN4v`LH2FN{s7!Z2B6A?BTxMLEAf~mql>Mn7z8_L^Y`-{i%nFw7pEQ*8YIMF zr07-CIN>sGk5rns@jw9;2SRY2T03idUYE61MD;=dXJ3-t&gvsMv8a`g21`lDa{VfB zjg2{;vJ^tWBWesiK{|)t)RDapo*g8N!%|88)a=w4+Y!MCSCfKs8`ePe^*3E5r!anW zI81|$Ry}T!;>owvecFMV_WnB4!{*Q^tG2OXpy&4dyP(L7AT`EMI@pG^twqCs9C=J= z@s`^TyNeC{tT2hbY7zG2?C`N57CKSLTj^(>H7F4BGTJaiB;b=X+a(vCOfj;=l_H>| zC=?+5`fQ#E(?!LQn)#}5<6zkS6}BavpGAE$S@O%J0rB*CUz2I##XUe(+6}gMA zz4UA%n4d~sXGog3Bqtg#rWKv3vzhl1$VI{4x!9l+CkKtjv>aaQvJ1oQ#)+gMmbo(% zF-*hKv>P-Veuwn}7V-pE>u$$=3GTa&ua2KFT$BMy=_-%pKKcL_Ka}>ngF@ zObOo~F<@}QjQi$9kIcFkr8V3uEx_z|#D!x(cIV>T%J^6tc>73 z>}jh#tjgE}4=t)6yC1jaz^hL^VlzmOUTJ}RrC%rdCnJ{o6NPqo2B0$C-Iaa3DbQXr zBE1aaF2LP0qhhx1WU!-~t14+gC=GWQIf9M8m37;oTN;53;UYL?Y77}gBcIL+))xUrDcyPTjaxjv;TBvl zJ)u~a8V3HTBHz66N@ZlnRbgl|3xo`L7nT7qbhp~vQ1Sdep+Y}GOc&mDQ2aw>i00wp zVA;dj)WYlNVJzWw)ByGvPcoq*4Iv2@9WQoT0R{`2mJ*dha~&e07>b=LUqSp*P15}f z&N_XxGwm(zk4l%E^@{w|!c~**kFEU3@&$tu9E&Bp6)Z_!ruGkVXuW1jZXF<99cW;> zx%g2#2&)g_T2XXJ6z0htM|pAI#~Y@fc{s#fZzI=v<44$DvaiwSAbaQ4{KZ|y zqsDaaRp`kWXWqlTb+J4n&DraoG0x{5(+~Tv7BaN0vT+-#mBy>4f8kRS39XHPoU7v1 zq+#87&K~F@wa)I^zIRxvKW5-{sV}TCkl63Mvs)x|(;ffeS;&NMKD>m6rRknkphC`-h8R>>kxl* z=iTogp)v}JH~RvL$sVB6eg9>wPrKfCD-VyeiWn!85n4|v>*d7cp7WXKVN6Oj$5)oK z!6jf!C0Ch?FS+hdU9S{JihE-$g)Z}x)#GHd9bOlB@Luq8#AWm+B|YYHmekdIX)>fY zD^#ywsGBcgP&gQq@UEjp!EQFqhB-}{<%pwMy^d8df;E|+-f~beK8@+J!Ud(DO6mfw zlO7lT#aWYviB49{g^yK?*GYuj(`*N=$cW4p1M;ZlAuQe*w&u>s=1l`K-M1?4&_{e4 zz5}a-nRe7FdE)iltX83suj&~urTNtttnC~7iO#eK<=N??&o3j1r!OkVEQSm_8R?}H zw-5RAo^8Lr*~|YNoVeOyka^epw#Lhd?JCmqSs&5&o3-#2=kL-r2-H@ow~|iITeHfZ ztrzAqM?PN2ye;d`=eXE*SscPTReTHS^sp4 zAu+(jEm!-JOT(kny%l&aYTEegRxK`b1Df`E)w1E?WOb;xt@aeagOJ_uDm9!43Yky2PurT1JDOtmTpEe9odqF3f?JIY*jE#p~J2J-i#M*%j{-%kPMIrP6* zTJ#qoW7Fnj=8-tUsxXRTgxSWTEo!#{@EmfmOwW?_fiEO7qy)FYqqrY~j zyLU>n4&E=tyAJBR??X20fe%Qs7*tEA9hZw!F z9GfdnjHKyair0B9?Cqu(+}zFd^!&fS-r`vqX`h%d!9mB&J(>vp#h)^IcxSG(geq!q zolsp^5U0A?mGM~jPYLD*LU_sGu2UM#Cpt>H^z|E*xhtX{gC66tXu*Y1A}8|3`8P>0 z+!r?k=@MsJ3aa|xI~2J6(S&N7aH1_^G?q0N9=P~IrzOMCr;e_IEA9!lP zSlim!5j)wVmYFOA^=j20aw{L~Rf-&>!C@}r0~1P~^w)G+v4x}Lx=8zOQ6=oql8(la zZM~b8i(!V8Vq6b3>b7o!cjQ0~ONB`$L1XpO7mlPMrjjdn{3n_?jVIV?x zcHU@c3desQjXpEYvVQ?hPlLwJu|_9pj3wMyv)Kt7S>sJ@9jvNDkHg#xVoiO;XhIZbEbUUS@5F*(%K}!M$f8QIF5|GLYCc;&A9K|__7cI@ z|Dp073aPy5p`FBT%n-8K&1mbcGu_`AF*65?biwTbWV=toaptvc-{`u)OLYYTBo8^@ zn@6r&Xtv`l*f;L#?4mvCR=13y*Nmhp#3pfT&DkSb^5yQG;Tu7*z#9@f;=fYT*7DX) zSUV;rNYqx@KWJpZ9H)BJByKfFpHW1jVDB3%>+=NnCzT_ps`)Gt)_YBN441TQCwTt$ zqg7vTRDNt^B%TGfd?#Q5#WKn~r-}HC6el8)b4f|J5xEPG5OM5`4p5;Cmrv~Q-(5Lv zO>G2PP9^7R21Y5d+@sIw3kwv%4#frnt%+B4T9c>FHSIkyPJt8} z8RwP!#8%bSOFix9pY6UwHOk<+=GVIx8rhS6Mq_d!XIZGdeJCR-JrB-{O-Kv4I!IY& zjHKpIxkW6$8&9)4cxgWYGaboDzyG7?^%t4&%}OTZ%h7{F{jGOGnzeXnWdtgde zbAHL-atO@3*L`9+{+$Hu%TGxAM8^ePU0ura!SBDRh2#)9qX-AKO2v#d31XTj^cVS; zA964=^>VzKA@dg=F)jL2YOaON_GrB_j#Lxi=R`zbgndwD~cze!v*8nBI5t zR6I9mRzK>9@vd?W4e4t#Eqgv_;B$(tf=N+q(@@{DEl3LE)Ux8=@5uC`Dbv~i)huN3 zk^j&2$v?|y{x&49e|zxXSqdupf2E-Qt3fxj2$k{5a5HS>G5({-xVURG}Z_L|4s zI7eAkRrO$&7G41NBk%_NVr|Zk@;~-bmisW|Bbh?+9CMj}S$v)*bgT-(^PJ}&lO-Wv$!Bi$GhAWDfZ1Pu8hUBxOp#%a^0;$z(sVWocs&QXqg=HXGc{8-dOKsFW)|Zo z{E+^xiuD}^+kDO7#Z10m!&jw>G>8r(Y8ETQV=ZS~Yt0l!A%b0{s5hK%8j=E%X?7P+ zI1U|+XG#X642g`XHSgz+C?i3po`-f%%^e?8mUsuj#J<$uKet6jW{3n};NSp;17tpI zZZc4V+soj4%U7MZ!RtF=L0YXm`(=>48R7-LgnS$-t66K5Au5htVOT5UapG4uA0ubx zbjtnbO)9gQQ=wTWi5As@eqDm7^VZ2oHBb4{v@$;G?o1hzg{gS%b}VL8yrj&3=8b|9 zRuV#-)U7aBDk}3nAs6vwzGsu1Ls<4Kb$L6(w=#L-4)dB*!puz03B=#yZc|^Ab7Elm zIjfQYk--UG1_om?vLXW@AueCO%y{F*Al(1dZ$fUbf&)K_lZO0RPf0vpb^YPhPF$Ft zHKk2=(Y3AR)+hIN3i9|})gvdG9fyBI(k)wuVWP1@RQw|nxd!>V_1?|bybBcY_7Xj1 zXS3uNH3HLxCC0rEMS5&CLweGLZW;`xH3p|rSuK=Gx8pIH_C#^&WozpEjE-T#7IcO z?8d1PsShhyFg-|^Nj?+Tp7Gu1&YGXs%x3GVobsWf%Ikf(kd)yLo7rPShqTy{iJ?0S z=P-HYZ_L{WYeZ9~Po8DguAbRzT|?|&%tys0{tq+k{bUR3*cF2=-f8D&=EYTm7QYFnVzvfVJF*RIB}xKOcA+V zvSPVT{DF4bJpMeqtIREUC}nrJb*!mOR32JsrwoY0e*Zd_xY|76nVydd20D15tafKb z$DrXc`OPv7YU8p}ibDY4s=6zsJnZa8fX--6m#;2$ zpEd8<_)Y#pAQ?MsE9t!*5OXPPL}K31@3o|tLYn#T=Xo3q9@SV#+W?lch5c=@?yM%u z>GWQY*-X>v*>4bLjHnIGv+4OTU(Hd5!Z=3ll;N0Kw`T!_=#HBJo#jUkjl6n|)i^6t z7?ZVnMN-4AxN24PQ~aO%KNE)8uT5Yxn(i4-N=*zQZdCu=DQKH$>H29B#_heT_>8=* z;$+C8I=8!Y@)bTut2M7Va%ksS_`>VP+$;?!-pIojAhAMWX30s>iL8f+h0A8IVTKc^ zn=DXMC0`CDAG*m6U!o6oCLND>;kx)i)r*zt+4LDp2QWmV$C$}jA#Z4nZ4GBJtqyjt zSXRvHX_^!r6?bs{*{vSbYky3i%6iV3P${utmu@wU7{10d{#%Ia8k%98Kj{pNoD+i- z*jm#9B9~_1JqNj^+^6qKA?**D?fYo{a3BfLSL624*TME^>SIpo*Is(opw?6M_08d3 zy69pQyJtzBMl4&;gMi@s7mi}#@<_=7xudrE8RzhqH9vi8{M#1ro#*;1m7=&5{V5*z ztnfFt#7)j{GOIQ(Zfx>-c2$qQC~BH1?j6!v^+$mCNKVwXkeYh{;ldlZ-Gg)U9huKw z4CmbpcVX!>>rs6mCz8StKPjF1NyY3ZELzeo; zk546Y`*ZeB;mFhcdFRKwM5}rh-@{4F*r0e%GryPfr3mZ(w35>`e4mQ>g~_YOE|P94 zXvKMHIayq|xUISA<*K|^zYnZSWI-PMj+w7_akN@k}j787kSOxOC<=LaQI$8SLG#BIlGq-2@9Za>b3hqV>XvK8Jo zUq3hmaJ7I2T-z`!%f#U&!%?N!34z1BA6{i{X14B9SgH8crFr)sF@!xgqqe90n`Xsp*EAa} zWz7?>1RTq5vGT^g;l-jtqR5rzS^4~N?g!{f6r5tx_!T@JIdYnjbjs^%XjOlH zer`;jz(&|9U?;*Wmp?DYqoh3}VH1X)U6?XSXqA- z8~InA$Q88)5rfW~hO7RT_NI>mj3s1b!g+L*B|Bk_Nm7SWiiR<6aOffLUaF^*>4zQn z{%W_ID?1V^opryGKcFCaAqfG#{ikvZ-47B1y01%)mPkYxigAeLe}6po?#+@NOR;?q z{VlMS`3*WHhuYMmPMA+Oyf&8X4U+mAK;&juN-ge~P9WN=Ad;=ABrl zB%A82eb)HARp6Ir@7Qko2^;F>Q|I>c_L2+if!|AySZ!0J4)Q=E)fHx>m?dl-UMMt5 zv_0fA|qJHV2Qa$;-M;v0do9dpVe=qr2Tdb>~AgQZ!x!i)u za8IubyOuviW;Dcf(HB`}_m=K1dc>;!1sc7nwvzMnG@hupYy`LnNVO626Qc0KR(gh{ z!DONsNqUkjPDI=6AV{HH5^y0|%(S7>iD=fv{7^YB>Z)v&q0rj zCA+@Injr6Sz4?hxUL3jq(y6 zg>1#!%`_S}Bpejfw;v1!N1tg|H%*)`ISqdm6v5i!qyKR!&;d zm7=Hpd-R<7!3*b~D1La@IHywTBFEV;xgy3dF<7vQuOvsoDAmWP!^E79OKuQ^eV>fM zcu(YP(&!{dJzNjo9`sC|ed;2LDiUmu+_s?&A}5Pi0CEagx3J}`u$_b!n34BKIdh~* z*(yy&mH)Z6t{9^4sL#KPy|=#MoD)TODuX0@ZLIF$gi3dQtZN=F{B29&iUQovAe~Lq zdrNz}aIC>ZRO(e9ZbayGFxq5Nu>Ps2b&{1$nn~=ZtCbTCH5xPbh%|l}jIO8_PZCNA zm(#?kq4@=G=(qdb+SO6x;iLR~1p>aysb?$n)gU_15Log8tgrf#x8jqLulmH62`huk zMXtt6E^!N87EcN0_AQG}pZt}Mj5S3}-CLHnyq|^X=o*A#rIWjke=*(CDu%)|Uo+8Z z%se+p5y7RHyVNN{tYsC|O9quRX0GgGPJsx|TPPK-AYq>#g9Mqd;iW32wNizr$V);q za7Tnsk$sAow{gs#SIVgKu0w7sb5Zu;pcJkP;J*3Km4xGU$r1~CIKe84D5Da2z9Q0M z3le2gCf1&Q-tfS^sU%4fx>IYa#6~YUWB3nYqw5fU`%0!|OYTm3TT|>p;oIT~&2*O} zW{XT1J@9-^K?zK7CmAjOAovcAOb5#SoFu`Zd~&(S0ON&0dx;XD^4XC3Bo_l zb}=dTq@#`AoLREtV=(0tb{(pjZ`@Of^dxINxT}T{?J@7V%&-Jm-pJtHKb~2ArQas5 zWbdj$&Dp>I<|++(fl-pJax#wSN1(Bbg5Tcse!x>(tjSzR%LZU@nMR>ROv@d*yCc}x z-i3c?y3Oa$Y8c37$#3;&5zcBjT!azq6&2Z(47bi|@I3FF1gdcz9S5aJ#&PbkmRtNM z0YYN9SJ+B252GO^TDR$eb^l}P%xigHB}n_6yEz)7T#1RBxZYA>y&V$o5r$eeUzxgc zHY}Gt!~-JO@V{xqUQh2!KulkuVKLdJdkz|TUdglauB@<-mm>JlQ!C`xA((8#p%|xN zZP68TEZZ%;Uy6R0y4+tEzrAAK%5|M`UgoC2K*0;}!_4>R&X6aFC099)3E|+U$BY?K z%dcIJ5$gi(_0EwMG@`}wFDPiCD$F_O>dDAf+AxA~_8X*LTa|T}7vhLw2fec1W)Vf= z5l=LPRA0m8xs-Lm*Wfei^r4To?T%C zNl2Sq`VUvYbNz0{<@bs?QtrRrA{nwBj7<0>|AQVPD={z*Q^$^tt$@V5Sf-g>PpQus zT#^i66ur=1_IH9Zr4pco>^@uFmoIa! z-}+!uA*>whGO3F?4BQH}*$6nA=S)j8HiI&!d$ok3A5$Ktsb`a90C;&lPbKq1YBBL#M;B%zCiEgixw@MrA!uYfvG zaDYlBNIMJPV-v^)Ljsto68500uFn#g?r-%HFH?N%T}ia5%zv<`fuQ1F)`)bXys*$; zdE~(@=-hjgUf+%R4#h{c!!30<74W+>$_{JgnzQ;ZC9IvtDrXUiUWN8A}aNy3z(!aFYlkR@&0)l{ZoT)%{=E&j1CcVtm|KcB_;9;5&j9>l`@byt`V_OrWdeg((z914fsyZ-j$xJ85kAI}Ne^>g#Oa?m(T7T~SvP z>zf&kKEP}+>7%5eJU0?$aKL$j#wVS4NAKgiCno6Eg_wWz+8}>W_#V4-aLPT zPt5Q1;+zq1h5I4<+NPoXU;a9sT1Nq^|9=WJ?bcok<;yTT<1=+gmXuf2$W(Ss`pFZw z+4*;&M{5+p&zze&hJ90H)&lJxl$7WGHw*EoQ0}qR1TT?g+Xkrs14d#1Wk`ZKyuh-J znc1PbN{N|85?hiezS3Fwm9qNYtyP_<(`Q^8@zA#^`O??wJYXY3H6F5wlu!ZPtRqH) z2bKcg@w(nfkLtti#{6i&NEaD~RZe^==)gOvyS{X10am3>x{kzs*Cv6KZUdgrzm zA@l}5b?SnB-IPLa5Bx?(hs`FslTEFu6RM;>*bp7`cY8D>P2*k{mmGv)XEzIR8TOi1 zO&a^>FL1bS7P|9SYs*^n>?osP!{j$tsvZM-MaArNixR8D5onzz^@@4ZAa-8#n;KKx z@e+RYm6GMJYWmoLFhR^^^WyPN13RyN@qFDOjiRJ4z;Anq(Nm&BmK(j{T<$3R+m4FdU$Ks+JX6J0b999|n`z<|7KTOQ- zZ4~FAZK>QiaxqcQuLQ#*OVH3bjPrKZRtjn+sl6bT~ZR8VdyIrp63O{ z?e~ve#n{mtU2@Tw-QFGLd{-@`J=YlvitHf3LzTs_<871-D`V=}zkhu}U0Yr7E&7%F z(;CMlz#eo{qyPGUgY*F@0TKzAqfbu`p&O`xX9Mej>Ng!#KIRg3ytwkuajB9(v|$?l z=NQ3f!qY=HB+^9jsqe@-tIpD$o>w`8LnY|cegkSEv`{nrb|?mO2V9}VW<;v8uKdF4fd+o@3>9=lHd>mDkfn?63 z!(#UvV;?J3MrDYZx;MZ^63QfUgCrzz28G{t@dAfQLry(c@n=ax9%Kd>_5ThFEFEde zhJn*5);QSR;fk+FLwJ|miUfFtRG$u-UUy|DKgO1RN21$GBP(H~u&MolIsBkfoD z5F19Q(56E4At%5VHY>zsH}kL)X_}7y)HFm8FYVz{L<(w}v|JCV<^O`BVOG%;V_r9J3;Y)m^xQz&Coh=n1ION* zFPUujbZ1`$bmgF%$A^kSog+QOF8_Eyf?ijcdAHv7scao>53GP3VKd9Ne^+FAw*2kP z3dJ}bU51V&cGyqT(>!TaGnbT{lCyn(Zy?hO`JYkBzke-%dQa}3y5!V{)QQd&cmMv) zl*#klzYzofJ$B&#AL#L883@CmK0%f!hU0tcy0O+bLY>4-hgdx9dE8w4? zprF0GyY`0<9{|$0uP(y;?LHOzF*~n07q2;QNvLP%3iLx zw%r{jF96>sA$e2!5^H;B-AevE#E1faFx`iCQ4x`xq@<*hpP$-hwLtp>0%4fE90U+3 zz6DSCNjQi8Uwl~)OU{sK(G0!P1J#{JkB%A_7Z*V@!#M>dy3~%2j+_g$Do@#BvdK${ zJgO15dZ?p8x7w}l2?_{USC6~YI(9@d7okvNATb7}2fV`b6`mFD*8i*UjgmMc0VK$4 z=IG+0vAw+w2CZV;2~Rcz5-M}pyit$cN?bUf$5+~GTWJsO0QA)RjyWKeNe_u+maYOt zw8qzViFhsWFuf8W{Qmb*AVJk1I_8XDmp*crzJ49>+9;~_{cOn?Tpw8h^Xs+ zHWD!BQU-0~TMgCK)eU}rD2xQ{Ve|i+w`ulQ>cj25f%wXzqpy$Z&Do`_NZv5V3uHfw zz9r^Vud)2D}bb-T0{n*sZObubI^i7LS&6&?pzYcJK|2sjd4Mcg$ZU>WXfI9_mULXJ>3T!IJ zM}GV$pyTn(p9sa-1^3y|||tJr%OxE0&qFHnZ2naSkMh==bO)V+D5Nk&!@*WUhA zT|>jcOMEjE;Ugo|c2@e#mr7W&bxi+VkbM zXULhPAq#wr;R^~}=$S8>Q==X$ez-?A-vvVGIz_Am=7qt5R9H#ABHCfTW>==;u8 z+=pEIajy(d_CkZ#SJ7Zb1&}rumF=keHskE#=W!EBkUL$XtC)dlNMJL8~fFD z^nL@b4D3cQk4;BgJtRAVi;HVmS03yot$pw=j$U2{mPfxB#8|`eHM|WLuly7K3u{hS ze_Z5Kk7_(Vd%tgez5pdeK}*}cq}Dva9g&Po)%gWQi9S!>;>>d-qd;Amy_7>ESmk*=6r!ylO@M3Xf$ z_NZah5D`&Pj$jE**1C>?prrhRgM)~Nq)-H{CxE5_dHc3tO;TdjnI{`*@f>OC7K3@hVakM|?^D!I0!p0I(` z6{%n&gWRE|V8L>EBftb_o{0yB*Z<7^rRpc}T$$(Py2mUm+1HOP%*wjL`55v-^_L&O zbOzd`P*`>?_e!3D-RHr9Xesj~UU*sm9qNeG-WD5v=T9N|etOISWml0`O!6PVu)6bU z{CWjLkq_$=)h|$x%_k=%4S{6{nf(e>OAJJ3KZ54KiCCe>cKD1VdwXeM1r(zl?(O|Z z8f#;KRg;sGhe3+4T+|V^4gK;6IQFYuj?UV`CLaIFH%*@(X^mkotk5RbB-DM?l2

    }_~+ zZGuV8e*nCMowq7v1^-|$7}7QnvS{SNh+;G^l;pl$i|5?(%|nVsf^GgS{2J(%NfZtPgMjvE6Eey)Hp0RVE7V=ylkT!oe6|gls4!@($|!@TCRW zFu%N!I68pGdK^+J6d^WE655#-P%b1lBVd%8RG`|Uy4+2}t(mB|5oAFGFYpc_Z7lql2C%42mDli+I=wUZqB$O%0bV z5d7chr-N7}Xh3C-KJ{dGGIz`45PAq}Y@|&(xc52$6d+w9}% z!tnjrUfr7d?o}_pgIV&!-L*Mh5K}^CsD1k%o()|F-TwoK$7k@s2Sig1@;nkEE06*@ zhe60}aB3=*BQKxVz+@QOJ(}Npmnu!tQxTLZ(9+e71KSQXsrBEYhd?PQ{S;N6=xsX1 zmh);E?>x!nq4f}aEOzORFeGR85PjgMp=+jl1)ou>h}N zFcW|XCYl5O_KJlRylP|zqP$2P3bAzyA*o+ddtf2~B9)DG%(<4WYfx_kU><-zvgj3%fUH=08T2oj zfz-LO)^Fe5S_JOf0K2B$>NB-wpvL$jpX!2}-~IwZ?BPRj3z^wX572h`c`z0rRSRaJ z2Z4F?0icZc%A}k5QvezQGXYLcYG#A@>mV^Uz_hjUnK%0z+YO{AaDd?fxb1y6`BQLn z<>VTGbYLP#q6GW|wKiExiY6{@TYC)Rj9&oV18RfD#&=fgDSx@zEe;2ON?V3ytWY=q zQ#XK5<>x_gH(BO6&==6S`UUPSih4fIAxWE*2C%rWBO|0~Bmr7#iK$jS5Mvf}b+Zs~ zv-ARjg82EaII!{6mULtJ_zNX%u==()Lctu6#tdNr<7Ivhm?U}kzYll^NIlY0{R^N< zeqH^fYjA863jqb@aBgkXMa9LFKSe;`S!Tr*Qg?#t>m}132AF`&NuSUWUQudzJ^Tq| zYhIc8ftx%CNCtPx2ZF$RvfEKfNjFLDiiwGVL5SsJ|M_TqQ~;n>0EJ1o3>fsJHE?ue zh=NQ$va3tkywOLSCXC&Y(m0QUKi_F35lj?7RlL_f;6d_K)BWebSovW^n*8VY0RF?{ z?SYvAl*s#MY8p3f3M=$}Lcy4V-RQTsPNKK(lWvWMtWQby_4Re#{RoLJ9=;lxSj8>VZuS`GO%;N)PVtv*OS~&;>i)P1amV4HaIAAn#1H$ z_Xym6`=%@z8U8k+&$hTg{=7|msh({z^7{4bkb@n2uu6kKeBbjA(w>VS0f9UGs7&SA z1JKE0Ua%@i5*ZX-ea}n)&6twH$y*aifELWd%}{OaOC7v9PSvDk{I7_51MaH1Pg<8X zxtp8r>YAFuOkMiQ|8X0@=wLi2NHsV!tiYX2Z%7aBNdhZ%em-~A>o9c5DEngtQ2oNy&G6WqxMYzNYY`&S9qFoJOOAiSM*$y@sNUG2O%t18`~o+K$k7n}#}8yHxUBSn}0W!GC1qhWmJK*UIOa_TFx zxp(uJZdAMy1pwVj#;TfG3kgidRFERcxrP;y9KE3=wI4B&Vb- zxc&Z23rwJvim2seAE^S`X>6`kTeS9AZUZdPXq}IotkVNDcr!E$m_cF-AMSS-H36H7 zv|@Jf7^VP5uo}(i7r;^7lkC7_>M-K4@ZQRw@k*(~4S3F}g-FBK$Lt4FP2TwQ78*pg zJy}rc?AMUXK1KwYBd`)pTfqR@+S<}Zbx6oO0xdaPCxKPBx>{1>I#UMD z4lkzjf$`GMX=F!R9I_lw^EVeL$n6EO__^OXtnTbN7(MH%t!r+jGH1$ilrHq-G35;l z;xk49q|5CBy#WYUikAMwIBRn(P2%!5XHN|+kA5;w*xxAf#N`V&|HHdtOHRgT36?D= zN@$a8+s<(@|6@f2$uI;`UW?=F5`eQ>P2Eh(6Z^IS{>v#+B{{Gq!3YoB-cwF1tt+zo z&r<@Ax0Hyh9}Dy1;5muu8AE4h0!z_=rRA(9Mt0xY=`vQ4J)N1Wkp2BuNUbGvplQ?e zpgjX_G>`yoBO^;#2PwSnQz-!P1tiPAy4*O&j3>v5KLLpNowyrdIE(Z_q5<9Q_ZdUM znr4Hu8*q!)d&k-9M}r#X7uN?7a+?(v7XB%_MC<8EFPM`$boKc6i{r1Q)Uk{^msuM% zx0(yKV=bzMOo3o<(#bKf`fSubuMC#E3Xdlcy`XM3fV^Ob!$>oiQXvPum!%;wwWhm~ zFPGV_)Lh8Qp*nLM;)&WMd3VKYBo7|-1Tk8Q1y-z`t*s(Jgy-sc za!TZlMH#VR4w3o!K!R#HgYi39wlkcnR0;WhdJEVf2UxbRC9~TsVQ3U`K659mU7;yR|w9NuP4!G6h!B+m6 z2*n&cR4Hc&Qtk-&tA7asKyxV`aI-|Y`mpM~OyU5d*I{Fte(MR?jZVNJnt9Z8mmsM>z~ZY~O~0MJxSRJ5Q>C~g}ZYhD)xSNEIzklC(Z`f$Hzzj%Styyv3OmK`QlXnK-T~KhHi<`R|%mV#-; zmF`)$R~yq!fU_|>Wv-?H&y1mmkT6c3Dx#{c?h}oFp5l9FNQMit!bpG%BMNXgr#UDS zwo=yt#;UAYodqBQCmXQC=jP_{_K<|w`G(=165VTSAbB<;s4q35r;}kA3%Ui-S_gs^ z*nY}U1}YT4`ARqVs|Buqum}3O!D|hjZC?l)WQriEE{qiXX){42xxAkY6zX zp1Tk^;KnQlV<~&prP9&CK?i_ppjbu4#S_z~KdHF13-DDo~vwkw#*YcGG1241hk3t#X1O z^n4Fr<&a=2ppPK?TQ<(1SbgpZKp+L8B)FV1{Nsm_lrLKE=Ib{q0&!O{e@c{bwWNB| zj;ANbpis2xl834~t~fV9PuT`(PXKR^#v@Y1w9jTX;9@w!bBRy8fpG_}A>fcyf(;zB5`T?^9FSK59}2)L zMwDMD%bPO+6xJ@RulI$fnJ(ngk-6mx(a1rP%bDmq~Y2g`>Vimb#W zBpiWITpGwQlwm>D1sL<%fa@^;M8Vep?OB&Jw$OcdmX~lXI67-DgBg<@! z`8unCYeWzc=2%KvCxe5T!18y5!IG!UeY+QzmPlvQ&}g*&o-n{FioC#)0vOl@Gg*MB zZnCl>zFphVv7rf50H+dwf~lSIP?g%CQ>g`|&q?+Xw?=BTeX?0~!HZxnyvr*CFzt|KA8)%PU?LYH;>>xZl#kJWO2uysd6({or!-ig$ z+WhS~@`M+U5dG%Ek0l-JAR35nV{)=gr$6yjWCgE)=mgP8v3%Uxdy4Tu!h`)_E`ft! zOwd;x-7xABh0VE0bYy2@ z$7v9-Vdo{LvxKL%8DJG=DWH%4kowpT043nj)t0CMrquSX2Lz)Yu=7CWKIQYxuU+b9 z&x1GxD84nSYO~`zRtW64|Ku%Kx{sEtd;PqF z!!Q$z|Kn@dG?%~B-Wntyd&GQH7`78^T{>`te?u9yB(a0VPi zIGSlG*$ddJYTj<0g#MnB1BB->;sP-dDRonNCbPw#i~H_guiOge!ihX>z|rY&x@Lf~ zX8b?3#eRL7_|liBMKRa9-q@_A4PK*dekz1eRabW%4AxZR0f!y_w95?#yUJyzeb;E3 zLs@F&wtA>T!?iuVkNU@UJUH(0tr@~k$?FMIhK);PnL5tTGJ7`mdhSvkPj4JgE9wE+ z!a<^{>k9!>0hTv?R7a&^ik_pfgNZ884}j=w8fviWnXI&n0$Y+ULQ&%A$B)jJ9#(I7 z4S1rMBm6|gC6TDplS$|iyQTwVr>fa~U}jk&qd^r8IkqIMXsSrb6$r}_uN)tkSBHnB z`x(jYZ40lk%YBNm7h3+jyF@&6l`D&qkt`a*%nZuHw^I)MPZ2vqD<`b7`$z7~r?rQ~ z3F`pw=6yu2t87kr`jB@Ev?=hH^l3Khlm3~C*z$$Gs|l=J@?yMB6fEm82@a=37SO6}C%b=!=4cbtd`Pwo2(Brudz}R!ex4V zPxcwa9=z-}gQzVvh*of8Q*Y#ab1Zk`}N_A*Kqx#7Pg9h(abRM~^& zoY>p}_{p}3(KBn`qkiw^98|!XqhXFD(6zV4lEI$WSJPQ9CJ_!mV}aVQQUGAN?3Bst zfY_ehbzCuUQE^@yk-kL(oGSN=F5CPw6mm^?ncKx{d1sSTb`hRK!*X=#SSO=Ow9@nx z=iPL&wW3Kl@@~$|qODz_E?oMa0oOj=FK)^5vyAa)TmE6sYzb34kzg75lJSR=Xs;|% z>;LT3=cfpa7~#Df{3Snu2HU*od=SBKqO2*qpL; zw88AEljcz6Ilv;QDB!!o7JM+A5s6=E@sJO7mv7l3-aE##&x}H{=!rfyH>lBbuYHf( z5pubPdEL12wc{cDoC&NKCBY(7kns%i%qq<_pmeg=8Wpdk!YNyCPipqBw2vG&nL-h zSD!Yf`Awgl^u0!Ocs973i%(?&%{ro3$2Oyy zwNbDQ)@3Ms&-)-w_$^VX<@Z5vMZ+$E{`8N2z|v!n`4KVdiH2n?ck^LJxDEJ?(u{w~ z`u_ID^4Bgoef1^R75+kqsTc}lx^c)5Fni5%=ymN$d?29|H7a+itTl7^Tbg(<#ieK% z_)ptTEi1MSwSs-MHSs+C@Xhpo=M26fM1ui{Q_n{Xfq%wer_PB5y6Rqjr_eyu^`?wL z?^BU+)(*L%hOJUzyZR323(%tvGuX>llw%lnaKbEOUzkvF99XG$9^?fsU|`p94TdN` z+zN*>Y22XeQ}rcd18LF-8W$XFr8MQB9}3PS#=z)QNrx3*gc|-2_uw_!8Ao5*U`x*p4UG-l$6WEJG7nHubq+Q_XKF52AIvkF~Q`Dg!&(}8puDlaKNE<6D6C^8FzG=%h`RZoC>PuD(>**$I{;3N9Dqn)Zy!>$o zn;h8#U#SgLrIkDS&FFZE_qh)??qm{0UTK;xR^}`SV$Fd6&)Unf&!mT&6ytio=uw8} zf&@aJWD>F~spU0@(?t(qvxgpKh@+v{)%~T6v9;Qn=ApjU>vVv7{Ppb;c9d(Y+$ip) z>tszS$gU#BV@Lwli3cNKbD@?l{hz?AAgFBZXMQtCXF08;66E(p8>E z))chNE0F`l)dk2N;6QlF@w3^)rZ83WT)lWyiVIqq#CrfL-kr+4^nTl25V%k|gaeFL zv>|XKZuk!PRe`Fbq@9nin4X^A+4%-e%@KEZk(Nx%%vgSlP0A*`x~s`k!8;UO-cz&t+E|*4>6n|BwL9*;5Zk!4?F*Mzja{gBlWapdVrHi9 z&7A!SjmdxD-jKFAKo2$TFDMLTUee9}HH(jAMlD@Q%lOc|*SXLrv=#qg@5WQp$3O6+ z8SJ(*1=|oc{Z$CpaaFHI$HMFu+Wq^qpBmFQIM?yL&0j95?-ST)jrsI-@k6`@ApUz1XxkNT7&cX^B#?O^CL%_(#f6Fb})m z^enWFH$Qvs#(SdzIV6XiN7IB3kI4-U^efCgc6O|TYSOhx(;l7@>URFyEhz`aocjxO z1+&|RE4$FSs_QY=ZeB7}eUX$<=Hbn(PGA!z9E1c#oCyoN@7-Zu*Q4qt@F5K(o@Qmv z*(e&^in+Hr@wmH0W9kQwfg^7pg;L0S6PpfO)ZoFB4vV zs=YA%@~VrP^Fv#mQH_R0m)d-B`=48A`_qRG4~UUJ1ht&z7IU)6oXgWqT< z^IT56Rj~WL%4j*jdx>B3cjay`K@9-ul=>}qtlwD0@Zh`-;ZER-u4yiFq@$nNg${xcL6Nawrup1f246=)*+?$j{6?`pou9uc3r8gqlz&-A*cMo3&(jA0U;)eT@}e*C!j{`jn4UAzB7R<1Z@ z1EX8#H6HF;1A_0)0rvSfJ^egDF~~b}y#+5DL!~UNNc$u}1vfJCE&J(*PhyVOKU^35 z1uFT*jDZxj*uA((N;dX*G+j#FCaiE>XncqPD&~V`(hhYI``)?pWjgn}Xu8mS*?M&0 zry*T3zs461GLmn%_0sxhJ}kX{z+ORC{<*Fy*~9zQgw@il*`4dF`tC>-DL$+8!eaaI zvveu*CB=_2U{ybgtM&@ZsT`xWAB6l94#=ms**v_$HL^GEWei+s{diMEXNth4tpTL% zvpz9)Vzu?Rqd>W$qG8~&B-k>LmiN2ZohOFQ&Vr!G^D4F(e!OB?SW>b&NADyc6vF1H zb_asGoZrKw^7iT2HxCrgo5!Y6U8#Rmj2I;mOm>0ZmzdSfBa|dOx<53Oq+BtVx^8-> zo^xNDV%gk9unZ-MonscpGMEfReXJrt0vqcRcaLOh&Rk$QCgRFEYruks*2ir*;6%Tb zWt6{U%qb;P8foGPZ&!R#b|O2HF1cQoW&iQXM$my6@*T>kj#1cMkUY(2O_@ zsZ09$)R?i@n`f;LvPmnDiW?tZHk70EvfAXcNojmyqQ~J{trB(>#JR|9_ll%KM~$uR z?BdeWa7&IxtNI1>l61yUekP%}?OvCk=NOgV&hKROb;hSokkj4t*6RG)8UKYaJi(&G zJpP_IX8BBALs$u7ysC#y)JbE7aXH>pyWIXVqc(*qCg-2)p}RdOp*(S&2EPA6)K>sS z`F-!(qM&pMg3{eA4T_|6cXxM}N=PG(q;z+;bc0BW&j9W~lz>(c*?_3$V+hhtCJN%^kOM6KG(vaz=*(eg0^V(U6{)T3bUT5%15!!h*+Y zJosf+5^p4d*?{D*Qtn#4LLVO=pODWzMwf~67X(wV^nC2Iri;$N(;0={;Fzjj{m&Qc zSo{|(>^ENdEyBR2J|amlf11P`~=UFGS7w;cb)18&9aknY14s2z5Td?{h*y+<=a-d+N%%p?C42svvbEYv}wP7Rl_#EOZa%k; ztq~?Ms<{AdNeqjaCYvGmL(7Q%DDK$RaMDj(5B@6HnMJZ$Cx7NA=ggB0<7N3wu%4rH z#Zp@pM?<<;fz}fk7l-q$P1mq9aK>)p zPEIDR`Jrje41{oWiQ9+$95k9*=$)bDsDPiFfSa@AF7*i(7U_R8A3EG!einCn0TdZR zrGV>?_9r* z`zY*Fn5Se4cPu)o2-&ZRPT9${{E+Y3_sr2H?iA(?E91Lq>qAN$Odf`uD+ZUlwNV}u zpPhG6Q*BXqFYf~Cw;wmzfdkbMFt#n}&Fl_-%%B9!S*l?DI(=wRD0Q%)h)4igefWEX z<1jP?M_GR1J_=s}%Rf^z;&oMhC$kyr$imx{wUyAt@wYSTZ;GZ zWLhSE+(NMgk(jf@G9-}R3-yEAIy%ZT1#MLxHD+NsS*2J&t)ghA_b-=B=8XLCPPdN# zXRqozv|j)?-?pL-AYKgEgbnpv_aa%Vd$XE!zfF%F-WF*3o}~ZmHGic&`%RQf2rwQ2 z@5CK}6vgT%CzXMYeHq7{lop}Wgqn`$$vw8BVeSll!%kDNQx$n_m|-BFD{LdFr{LR{yKoZo>v`wH^u`mIG;|_norjK@313)DwVAkwNvuw=EBy6ewy3 z1rE{^&h4yd`T21Y;r7Gkf6x2{*TBiRtU0|SI3G>lWn7-K-nGhRy=i~STwd*2Mc!5m zJdeIuv`{=a{W09`XH+11NgKgsr~fP$qlb?Cd6o34Y&* z=o)x?Jb%f39k!7bX<>`$X22UOXmxFhutwEBrE{&rz$65$CuY3*cx-?6g0yk=YUZ`o zO`8m~ZU7n%)~Dm40aGe=-s9tey6NWDc!^r^w89mkK7HX3@B5!M@MtTmTeI34tHr~J?RC>l0! zK=tL_K+QW$LHMr{^4=^OE2sxs@0o1c^k1x{vsbehqG1m={H{A2Up*Z57WFusB0hHb zSY4y#Ha*gn&VLM6da^jRaM((GWG9?Q+|;z#qeN^5^_kgRZIBgky$Eq`xeuy=3#8Sa zt`5y!D0s}4+l(&c3hZ02QbMct7kwtXqhtlH_H(V~j?Q&VOyO3gK3)hawA zS_{rZDCfRu`=+arTC*22wY75cxmJr6)nSy*7Cj8Je}gSbYrH;5(H08Am#!l;+?FNw z;Vs4r$oGuns4eGu$m{2`7aRhn%R|1i7p=`x?X$9JbzAe9P4L(nuZ8Z+Cd?g7le=9i zV!vyli`GOK**GfQZqm#`k(JCjTP5u{sF@MV*t>p3PKEk0RtaR%Z7(>72TN z?4J?x8Ec@bhhnDO0kxoFEOqKtOwq+7-JtbM)@}Z>bH-Zy)}zhSwHlYJkui^kV1nGJh&wSt?7Xg;miZ!tU+e>ZQTpEk z^4;!C`Jt&hjc6TO78bN1ACzC3J-ieZ`JOPe@t*i`0+XI#u!b65*VXYVm;D;jm-K71 z41KUZ;H1PIgS2O=cQX^jxQ!J)TMGkY#ze~A;D=^sqzuWv#_44K1+L>=7p{uNR=|2% zITJcVmqz^}Y{s(NkR_ceSPwkOfW=GhO!?iP)Ex~FoH0v^|7X4Zaxd|V%bZE{AAtKZ z-^$(uE^l6~MnqT=q^D7^;7Gf^7$u-k=>DbIv)lhkE{0Rbt*+@sGn!i;XDN6)euViW zDcOK!DtIBU;4PiPGIBoP=a*f4&^NBcS5m?k@V?b$%fu7xjv$UGC~D_xH21vm=3+sYObO-?GF2i~D6X z(?~HZkdak^z$R zCG9lm;Pw#2WU_ce{uIZilh$dxggRJDx2~1LF(+JAs z(1snAJdQKSONxY3^O|{ul}|KvX;HG*KlhWq$Ztse(-Qv3GG(}wyzoR~MGG3H&_{Wl zjd6laY28$JQq(yYfY?1T@r>R0!d)(>`uIbEORi#XcI?`Bep_Eb#L@?J4u^U+b%$iO zkE)-(kUqF1VaOOjSn>-p(deM)nOR&+|FD=Wpmj#mRmw4|*poD=fv>yA!{Q#}Z6b_* zI3+dk#;%eiM$2B&FNagv^e2P zu+$%tv&CWG`ooP1dzAWU9}M-GG{S^V)^a_;U8%h%Q<`oS50W@owaq^JU# zqB#$t%+a{D^{%VF);TSZqUCzZOw4@N{dhZL66>DbZ0;(xDB?sGJfiUR{PbacQr^76 z+1;luZe(iJoYJWSyRTB{cbo{E8?z0_5^|9WGk#IMC9NxHW}@VErPIlwfB9a>hm3DD z7FKAb8s|~JdU)ejv_!U`#+yQ3daydaIB7rAKhNt5dvfPCz?OPb_BB~xpX5{p>dv2! zMzU?VlOYCy2Z!i3wa>!C9)jflRhd(#E$#uS$WCKWATUJvqvY;G6-&xELc%q6i;o%0 zISv;1YXt7!(Po}#*3aFgc<0nNF~kL&sMh;K=s=z;xJg&Mk0+k(g>BG*@v~)%+F|uI zd4)Z)RVRT3wz%=Ss=oFm#_-qWyukYK&$06X&7ZStsz_gKQCIZu`~Zsb+?OSzaAT8| ziTWih+sQL?O~L%aOdx$H>DKeGzFE@4^!bAC{%tF<)JD|{(kKtsSOLYPOPc1j zY)kDoKR4JIw7Brn#_Q_GinI=g`-Re`sH|u(gmV~z4Nq_2PkcXi00mH#R8m4D9y=S@ z&;IXq{c#P@GE^vZM!YVi!d_N4SNteE@JWKp!Q_b>by{O3Y{D2c+0Vnj*R|-dUe9qB z3rBV;rw?V&h99Pz`ZMIOIg2P8Rr%#Iy7#N9Z)|fyUTf4nP#rG_x7K7R^9zZNrJKMm zxm>YtK=QFDS4l5u@KebPPXM}+N)9$qPu|oFb!FByp+l6%`;hL%#2BJ&$gIogmW+M3IwqCK}g!#ec##?d^9 z;l>xO9SJ}n!5O+NKT#Bfc+ks_#=C6yncp{Hl$aRBv?S#v^chCQ;tCUIIo!#pEC=>G zRUfx`ohCqFgeA@U3_Twn_Hy1@kz1jyj zJOd;HOdBpmu6d;t#Ndpytv<9z-XqAsZKt@tNLbm&G@>n+_eGI=cxoug^P!DSX8OE?jj@3`BX(WeG|}$m_?(b7#(L zKZ#q#re5#vMP7{64(%i-ab+fDrEmR2SSrANu*xEt1*+l6ze-u}8Mc?_Xm?qS`-6|X za5bX7h}uxcmfoe2W@eO1Jh%<*fL3Iy5s?Uy&@u)u5SXk+vS&~0Q#e&k`1~G_p)-M< zP=bVx`MQfa{&dlTs10KMVCoh2H^#|{sS0dS8GMw(DLI2egKH8;J}c&?(&mD=>9KWH zI^A-GY~`guuJ-alqI=Kqm*Xp({=We>)fs!X*li+>*Op3pmp83c+5O-sg)7s|XgNmg zcCa*Tt?uk@{%;ua+agzbNcr+czJ|T)E%m%iLVsEpSpav=sc_Djo0g{e9llYzoY1nF z_h@E7M(&Pq80TMd)eKP*Ey@ciLaU0S|%wgA^5NPRTDT}b0CpFeiTe6y_+q5fi2Klihe+{7OwX8OQpn(KzH zhW4{A^QI~89`Zhr_T+uNmgt3qz(4hsugj@ z_fXy{mfjwjb&(dvz4K{9o)F{*I%nvE;j(idk|mTl0bH?Z_1B*JT!TcyQ=8S}qw$9P%AbwitR5NC2ibcI7&xV)6OSvW z>s`cO_>}H#k^-_qR)*0QKj}yjdE3HiH~tJL%=|XEHmN$^Cnu^A3MO9LNuBDhjYs2_ z*<;sTIGn2Byp_s3n5IANsMTHV4k?(yZ}AUtEbUT&an_dqaEm)Chnq1n8iiN~_@8V~ zedrw*j+6uexh|7w9>U;I2e${Ji)$-p6ThzaY0JJp#tA#tCS>K>LG6ES%|r1o|^>Gct3YM z0KB5->MJj{mQ5_PoFp@K+&3cg^qtMM9j6YI*bRQ)cwwjw{o9*8DJf!db{_{U~gWkO$B?PZoWBnv%n|!9wf)9zSRBfaI9% z!RQDWQTFrg*vpZ+u8x2qCoMuXj0Tf^i#7vCHyZ`xU1XHb8sX4$4hNC7rd&IyyVs*) zk6mqAy#qlFsy5^Fqpz+C@~awlWko;^XF-}gM(PL z)}fzDS5;*(v^syHt6F=7%Uo1vLiY4zKJmPQsyOt_l#4e&wAHR8wBz-(#L@p}B(k%! z`vMV&jbPT`FR})PYGeCbI|}V$vy};d1=sE9@R69q1cB7k+)#aS7{9Wn!`}y`hO2S8 z1#Y_8NfjQ2jl@IPf1NO>;;a=h9%wr&?_#K(-v4p?Oqznp>jClLoQmpw5(;VG>4q&k zaC7H;?v~CDb&9m6G2SY4=}S+jIdXTCxj%`j9-TTor-`t>yTeQ8)=$rx$R5XtaI?ajkdZO18IO?I?6I92B!HBc3X*5*Qr4{L-QNG`6a zo!ukNLepo};&((`{d17LJ-h{o=opH-r#)n1{Y6S}1}o;ck>F3wTkB%9eGPxZ#l#)VTV;0m*VI8>6tN?4l|dz46Q zaPu^sD(Ff)?!zk!*X!j38BLM7PK8ToV58~`C&6W@J(`Bl((2-EY?ydMmw}eL`fS-v zEr1@$MuFu9@EQJiM9O@vBq=Ltn0V_<8|&izoA@~I?%;Es@=GGxjjAVbJKb`JLk!j1 zFD0qU95*F17i@?AxlKcwPs`H`zYpGc{g~itpmw_)-dJ@?w@|z*GI;WLP-(7Cs&IgP zHK!JKmA@0d{gsu&q4XYA3#Vr)N87n|N5AK+iH&9GlEp&fY%ANXb+K)ABEC~=n|WiI zTC+CJ;XE@}UpZ>;^B()1cWj9WE+lRjI-ZPE*>9xMRHU)4cdV2mnl{wf-}a39v%nT2 zZqKoOo2H06DD60C8dMVC#8}2+%r@nxvoQG0deW<}f_?>;)!^GXW0|!=yN%3;tdXpS zLkeyRL>>?FP@2z`0@F9^vKU+TQ`Xw_$?am5<#$wQf~G9ANz=S$sFlV;J8mZLuT3ux z=BsLIL`1%Uj7(9f3)~bolaN6L;6~%Ytz(0@kAHvf3J?t_jcgfU)*Yt6Z?A6;BIaE0 zg&68e`Du)A4rTIH+4$Nnshkhy#NVMYY5EYET6PAaOQy_r<$g!hpwPru9J!yn2*odG zT;xZsVYL57yc`8cN6tN&f-3z6^LM`jDiD28gpKsiV7y zb}@AHkQ6LBnTZsY|Y9>H~ z+5NX{5W`|5yz})|qOGU#;cID*=*S};jN?v<`rmlqe=`41A(aO6TOPjmV>avBQt-mn zuY39Ak(^UQJG+-YvLybN#)<;@f?>0{K8}8%mJ85&X#KN*{8~auspEX}YiE1rzvJ{?{-ZZC zx?m@HA;_^<1l#t6dLDiKQp84iO^1erGT@K@KiyLlN4{tFXm6kZr_2N9SYCvAt^9CB5l+U1QYI{V`_A-l6~y73W%{SZY}(_H+<;*6q$ggMjg1 ztmfW8f`D;Y|PK5Pp0s;|g$#UriiWb&ic&1{5*9r0vM>1|$Y0qH{^in?2090)e=r?}u}+^-t1l?IAO1#y3RuX86+EAH~oeZRb<47e7OkX^S>n)O&*QsE*WM}1vY zsLEjq)v3xKe0?4?qW&$pS`NBk$0jD7Cu3>-I_jq6V!>w`>-R-VO>_DC-|Ol8a!zEw zV~NcUYj4WZEIz@PihaFXE&(Kb{ZK&Q<+*SC#m!X&{p>}^jpywq#OmfJqv!3E^S+ll z%#EjZ${Z?lV73{b?tRqL;Oq_0zu@P)RwF?5&ao0WGb0#qG228)dIccJ6T{BRdy_SX zXEmp1+E&o|%#@0eYCv&X=swjkhYD*zuPpM2v8=6EC*1epcX|LZ25V^~t}Wa6QR8)< zqde)AZN+$17W)do;@i*Zo2K%tMm$RWBR+YpwC~{5_+NK&O^D9m?>skYa){vri147# zTO*x3;z8BLLA|sZzOFGzg%42v?S11}Uv&Xay_88XRf;^yiW6t)S%8~X#*5I%uc(ef>Ppes{Ted% zC&{2$yTHJpGRGd{SJ;I-3Gz!JFRuB=EmreVOZ{WRNt-7WM@`)rr5o6InF133Dt>|} z!Y3Mm;K3hriI4R_Zv2@3w^bIpR&taSV8yK}JD+b%H$&YxDA-tCl&MB1!lFE}$RqTU z<3DpMDSg*szW(s;-9JMsm=$`9Ljvktf4YD{R28mzj=?&ZR}yU;$-_!fvyTnAAbC-3 zX24}77l}^CS?kcu4`@II<~r5c%T&t$MT2iJu&!5`Gxtuke$eu`Ww|)UYr&m6ij)ZfU#@D|{?X(eZvJWX} za2UiG!}%;0N)FBtfzf~7$`8-6qZ+TdprEQ+Sms(H`>bAIO~s`1iNGCpxDqrdY4^m+ zWc@9wJTW$}uc&v;7wxrrZo5(>@_It-bU*2*um6a6>SZ#qJt!iJ*|v{I;I5CjH|yt$ zkSGgDHWl)zo&c;c?!lV8Issp7Mb?~@mel6zI1NvJDw;)^H+rh;;NuQypvMITIZe9GEc#zRyn9F=!>Lx2 z-L#eP2GeRy2bEE`J1fAO_~i2oE{|kwQGM&8^IOXkt=H zimqpMsWFhAa2MAhb?=P8gT7waXa+I}PaF*B_dgA>ZEh5}6B~1NZvO2whI=~s)o^}^ zLA%bHJ0z3g*TgGFifw`L<`FMsVXkNa>l_FAcG+)tTv~72i%J<+y7on`bwPzFlr%r6 z1Qa#AVFNlRTbU6R_UoT%XlU~C@|M6QH0!mkaC*?TguFXdDziZkqAR9fXJ=<(g1ush zy;V?};G|`I#Pk|UYH@Wq(9`Kw9OixqX*##d(U5jJif|!rgOs?a95+)dE`0 zLnp2vPYZyYA%Iu*1+3S*FB!WZ;N=`rkl=XN*se$fmiS|i-OOA~6Q+*vM0|%_u-LJB zp<@@1*qsOUHPmj?6_~Eq7s?pIeHH53V}IS#O$zkJ(5{40%@5vdw0uAGLQQowz?=@Q z7V`3cY%h`jihQ3E{ch=3%B;~toCO%h4TggWD25f0v5#T{QV(*wT_uBV);V3#rskLP zWaI?rgRUzXuIRI%F;4q6F&3MTKu#b1@6jOg==*@C0vI*P{W<$|a7UbG<$;FhjAYsk zw6jQb0(9$e)DYN4=Rq_!;K^kolPElOkjSU6d5E(&K)B4;7ZECnB%||WE1_lU*!7F% z%hlJLj{w7r&G=R!FN9DZ*jg(edD&yv%ktSc$7M?so`pr)MGdZfDS-m+9m0udSBSVG0TQLligP7EiUe3X+J1 zj91{ZY8(p!=<7YDV`#yf^{E~CYvs4)#P;x$X2k_Bt{K!8)Ze%k#QJyOv1$%(p3$hD zP&d2LsXlqEm`Kd}>j+|7Bo1kE#wb%49_(bs+n>bRt;x-?E)H%NzCvE(t=q3s6YMEl zeU4f=k0V>l(tA90xG_hPd)x{aNm&GP#vF+BJ3gHP1{vU!#D9knw(l#}E!EtpISvbn zgjby)U%vN*>KKkrq`hJA#*k6 zzgMI@mT|&J3r+ge-8B`--<7yGaQPF8Um5ClR>(;@5G#8BK;o|Ydw4I#!L$6YBz{ae zp`oF9W*R@P0q7G9=q|6S+%OouNN^XMzrsBP*0Q7gH6aca4BPAheXNWI%Qm0w4sU~J zH}{g~2O>4y!-Eq@4r^AnsC_?Jh82g$zS(x4)pynLP|E7{6bgTe3|M9~*x?C}2?xr0 z_|kk|f*MoXP21Sq9HBT0e*WQWHW2-jkCI=LpI%|+-xs7#wALjT*V<&&I5XO4!CU7l zV1(XIC#yvZNPC4VHirwtQk#A`-PYbwHa;#KwXIWu1vMweZ8+X`FlFmSRf+wD+PZ5W zo8_64R@;%f#d5m=<(igLhv8RRhl6ecU+$rP@lr)MtG4O?BiEfb<-%?n`HULWXKqFC4;M^Vi)^EjL z&Kc`GclRxeij596R8CuKc?V2>i-v8U++1Fs!jLzQ8;wdUyyw$wbuKx~YpvHia!b?G z2R4so;nf0VI`ju4P!Lr4n*RwIt-bOkv_gGEgKvzvO)6=**lPE{WPD@5B}H*GN+C%6 z-3-<13GD6oJohKprJWRm4O5@KF&yw+WQPYOVGElUYUAq))4un!>zdqV5d`|))$Vge zFxo4=xWpsT?`pA2^oFFm=*@KHIeq^@IqUs+BwzB!8#O!)2Z{ZiO#|0{-L*m*ZdjHN z-_B-0T$8*~EY18w91o>4Cnwx$>_R)8T`U>9DCEGRVY8|ho<9gLcCDE~?76pCox&>3 zUg=`NW5dlr!gGV-E&FUgY_)#enbM3l|n^@MVhZAp|aO(M&WUr!3bh?M2_rr|@948{fhcLL4h1+4Y zRMF|}7dI1UuUrmIJ7!XG%H2*(v(u;3m)kv>4ijCWkMUfXRkSLTu3IEkkCl$&MR(P_ zR*UUHO_Y>viSm~QF2SdH%pF?hf=>WD{+1Cwy!$vhX<*>I`nxJD)p0h2%29&QdL zb#dy>9qagBJWwcsza5U)mrUYJYrMDN@M!c*J*_`JnK?THHTn0Uy0VyBEx-EZbbk1Z z5Ow(szCH@kFsa6f z7HVuX6@2>YxPY?I^69f+oHipM2?<1_>OTeMt^Mxg3)OF9CSH6t;2 z08sEZVyA%yVWp98Z5BGLWN^!FyDRZn)5C7RPaPjm7F*6Y#1>y_cJA#StTo|kFV*^7 zoD}*9w60Ea_QE#%atqJe>d@;rM*?m;Tjrvy4 z=GsluzC-=)_DDjqe(e!M-5TA(RdGnIjmB?SdF|Grdt_v^G@q}Ewugqquea_=Q`%g< z3NkE_{3{QhzwunU`QoB1nt}qKc{9n|6TP|ZeR+2>LZ=FQwA;|@XvW^~X8Lq;esCh9 zNh-p7*oP?PgT`G)(GBN#xW=KLbQ5NH(m+%^zn;yyQ&ICC>R#9l?}P0GBW9)dooLLa zK@3X%nJo|Y+umiyhFRX6pn4v4?N&V{c$mj0JEQ}d7Zsm)Rdo#xTxQvykK%5Y6x~C? z8HAq=a=AK-4F7U{Rmcs)*kzk7XdIQ*o@ain7MUGl;i0ugEv=bu_I3GmcQ<@Z7<*}G zmzQK2lyG# znnIIZ8U{Z+^}l0duaty%BALGg1eEYc;Py1wE{Zt`NGVH#Lh{0ki30+IWe*wRk(0|* z!?wEUI%ilKzEf-Lu|h@P@bE_4`R_H@9Mh_J>Y8*(61cyM>%OlL_3gT|#k1h3u89K& zwYyEZIh(g5F?*I3mBfZ{o(NlIXNYoPii=Nus0Ar;caFmW`P5NAEu}rYiLRo>+PAf- zpZs(4(k*?+?(hzx2TH92wl5IG4<9xLjuFADo`;EBm35OklC!%4uSN5f#VL&_n(9OK<6D z#t#OK7qBj=nY1#edxA)~=U3%7(AOBU)iMSL70vx(r(4?ET_LnK?~Bx*BIC9fgpbN; zs}M~l8jTOD^$RMSDG(!=#zt6^0hbP|ig7HIXU)+3A39MIW>-$NnB-})^r-Nbln4#( zTnJk;$#r#|%i9JHcudH&MPtfKn4;;8tJa!Y$ge60i$Cc#p|+-*vUyxS7PP4@+1j#e z7VAge>6xRAHm)18o>H#acP#-PYs&t=T;s|!{sqiD0&Yp77mh88qQXdIXw`0ecv(w zKuv^H3I%%QbZ)aJm6Wo(76S#Q2iE->4cnBFgd<@g+H*!i*iBDu0Sh0rdyqwhb!E$L z9N^){6#C59B>bJj;C_WOcG{q-zM`wv^AU@acYORDPJK32gU$JCwy=;dr&S~mM|lla z6WG2O)Bod=*dX$M)jwKvaux?z{0$o(S zst4c+0&r0Ld~HJl+770P-u>zNU5?{JTHLbXr#Yan6OfsunIy8Q{ZUT(b|TJR|D~83 z9hYmv;Age6vmIY5_}}f9Fme>$hpbl8gP)bk1r^YoBpO9iKM80t37{+W@8lhCncHl~ zIZwp}m*y1qOfa68sD>OlMq+j7zyCX4qi>EpQ0A=OT%KftBZ$HUNMdOtCV?QV3J0~c zuaBQU%f#`P%S4smclR^I%(KA>0rbk0CI==1C6*yV-V*ih~q43XeI zR8OIJNO0jh78VIwznLK#_3Or>twnQ{<=AS(`b2huoQ?+t1K(3OoseX;fLf|SK>-N= zb>bE3Z{md2hK8V2}+whh#_;X2*UKrb^GMK5l0SKIxe=`sy3yNjX1syC>em)?JdO zhQ!PkhR6I!SPsDw0XFi(yDy7}GIq4cnMZ(P^GLl}KJ#o$sQb~^2Y^5)20lmNSE}(K zJ^r;#dl5H>bADbcz&mhuY_g18mGNN>S@$lK7#pk_t=bK$uHQneB?{e_a;vHcloLsg>T zd`ZI=_1_$n0O&7cwKFQvPF9cy+1tA4nPCGgj8*v%EQ zQkC`;OVWt|tueY!$ji&CAW03c6C4#1f!5H!U=ILueKnkiVPc5xAC#skucGzj>b%rv zXtG#?r;D-aNKiT@t^51){)b`;lA3ncGMqlM?0rpd-wP4<7KG?Cfgv}K->skfMR5W~TYcvy-WIAr!0Iv8B?SqmMm@?Aa-~ZWN?pOT2%|XE-%s;N0X+JqnyIyU>0>AWvF*w2BQqu#r^O z!2$#Bz=IJ~@KI(U5@X|y4@u%k>H@``PM6i1KluEM#PWmbatw8(mkk&dDi^0t#erl9 z#|&SYf*q%JnzQS%yE@YQ*7nZ3Re(jm(-MN3lrXXxEvMB}23kMC`Pkmxmdnftos@Zw z0c0YdCV?Wko7;3-X>;OB*<9u1ULM&Dy=$ZC5l~%E=s(XcJ;{Pwc4sd^K;IdjPQNIE zx6fGzL+&ZBJHRx8z2Jzl;55ioi0DLw6_PSiq$VvTYMXKBA_a z@;?G>7!lu_${EXq_SwEbFqIDsNlZJd!RoH?x%b8r7I(XsFa~v5kqDv`@M*_b`jk&! zyGlm1rb4MtTq4}VwQ#TY_M$f8^e^S}e2;yK9FhHrZr1zb=Mb?z#J4d2E3=TSgZL7g z+T6+y@hzaN4f^#!cL|}XL(uySF#Jw_;AQ9(HqCG-x_sIJRcwh?tkmlLjo-g5FtI#H3i^r9j|k2u+(2t6eu)! zDE8n)VhJ;A-b;wkv9daR*e3_rrrUkk_12&Bcw6haQBA$=!4}((l9u$uR^ms+;E3V< z{U_UYGyvj%`ln$X*idQ1!Nbc;s+V9qvbc>xQ7Spl^WblMqoca{WF3Nf-- zn!vla{=jfkq&ZgWA8?u}Gq7foK&KTcoe(gv;}1kv2ht}{sUtV>|Ze&j$~WM!jow76bmY2w;K2tJq*p@@Jpm@q3{!QcSq2H&-jVS*aYs+n3F(DT@5 z>qU=W4!nA}z}=N1M?GG_j`>liAIsqUu*SG#+Azn1S_VLMe@qwD$N_}>Dbe!@C1@*V z0*5uMpa2wyJFuYA%5=%R)Ag**lD=S{;AaXzg$!Bn3rfjpaZsM&gO0L-BrOzzO;!i{ zfo6p^xv2Pt#y!{As9_Gs!33?0CTbkY%EG zec78mmy;xWTS-k`i>MYPME)ngzW)B;L>i;2M{_};MuvvEkR&s6bHr?+Z7bTS%=-GD zz)t>1O6v2q(Xwf-rhxQ>(E>BbQ6?NLW$;_LbPt&9-W z3PbS<8*%U=ZDIJV0lv>sMMQq! zk@?{6&J8-C5M>#Gz2~IBhCVR0urL5aYv4A#%v4}hiiCxQ#hM4{S$bPA*g~Ne+>Axg z7tBF%CTAm3eE=PbOOOrk`r8u%rBbG~^=qM}KE#{A=9yp~S$_(c=7P*7OXJq zaVvcd#m?@Zxfh$yEV2ApwI;Ni5QUjYN^?e;$XH(7>6f3(>Z4A?1Pe+is!B7z3_otK zGF0*wZ?f1Gi4l(ZQOaqz+7)X;z5xLeJ^R>SAu-hQP89xCQES0=PTK!#43aHRcJ~)F zeOGYC1%WG%X;H*oA_9Gtk))!WVD!`d8yT`85T%%!nm(wa_WW^u$1+`BR8(}wmV(A? z?6Ax}8d-A^X1Q~LM|@ZemvA)QsO5BVCpqXD3YK;5lS_y1$Sn0PX2YYo6v${l83AD@xd}$H^BKuW_mMR>Z&f~lZ$Fuv8wP}Tf2v&v>^ME>lpAy>$3-9ByUv z(ojRuGzZQyEZMp5+N}5;B60G`N5SvAftz_=yc`Uqz0B?;2j=_OJ)6yeI9`Roh3B~>f%>ED{>NM zPA#_|fOFDY^23yV2Us9L>1AX@*<_Y>7%;$ zZTsn5XQ?C>S$J8H_JLvoW*pYwp8dV9`bIohrT}CZl>zScJ=!@%G`ZeRWZpt?eW0$3 zKJ%re^Z8>|HvK;A85P=s?J!uX>*lyXDKsc*v%T0u%cqYaB4mueT!Ck`I%1N@txj`z zYqvhdu5@wLZEiUuqoKy0N3KZNmFm3?zaA#ZHb@;g@2*yve@cEi4z{P{!9g<3Op74o zY6tVJN7E>?{duY#)|IdCniE{eOZ!TzbE2eecSnUB6UN$>~L@>|17pIPFVh}7AA@<9l@%usCSu4)#>BMIU@O6Gh>GR&Z9iC> zS#2p0gyou=nG(mo6nz0(PE!Q>0Fy<(KFh8tLn-7B!QgVS+gyoZ?kRY>F6U3vT*7wdBG+?E5#^LnjI1b-$(-6wlmq7UIY>37v(mJYZ z=exl0x9(~k;*qLCWsGxyCB^532Z^GkwB6v=OB$*M!K3hCnmwG~`X*|I_}#bRsG8@k zej+)H?nka)<^&sh9llyIXEQ6HVUwq^{I031BF#5`)oPrb_eNjEAQY?Tkc~wW7w;tVMuC#W{YxAxDdR(9IUU$ z*WHK-7UZp~C_`VQR@SX!rytMr6nHffIG!B-LnV2A7xx&$0wb^~6v z?Mlqe2507?1YGXsm1Dy%g;d6HI&NkQ&4c)~!n+>f@F4i9Ia=~XjoOzFP&Q}z<;tp6WM@KSK8eY>cN67&D1ZBgOD3nlBBJ?Q2 zwQ*u_!08ci5O2X~j=zaDx?Pu|6Un~3z$g~m&8bzSt;eBEB*(e<`vMN zz}vm~#67S5)W@AX?1~_Qw4NR588MN(5x&8$3PhtK{Oj?JYP`89FIAi(f1SuGJWtUH zU6g*j;+#R3@~ODMJl=svuK&5W=KXALsW3OD6VZF23Xq{9(j5s2Wd1bex-L`p&}Td~ z;PO(S-;85@7<&lM&FvTnh(rbr6e^tm#rSN-4)Q)mSRI|&xSMB93b-P}Enhclux!&d zh40ReGMlRO2s}PLuJ4vi?VFRZSrG%AR``*ovcUE>Y)Lz>@c0K0C2tEDJ3`02`ILS+tMqbw%79Op)=?O$@`rhA zP~@X!O5v8TT}(`6MgT*wj`^p8ObfYsTZ1;`ywc)WJZ&2%#i0i-ZsN5!mm75tt7S^b zcX)wHu~^U5<&9G0OFzhB!6}({+WPZ;XXlzVL#eaUjmVS@aVAVQ? zR5FFGU*g0aW~ckN$Hm2aW?QO3WqKpZ3p5(-F8{#K3|#rBt%_8R*b8NW!UOj(C70%I zhgR*OG-B6~+En$CiyiJk{Gj}YdbA~o`6DzNbw3i54|3CHaN@sNPjnGUOIw+-!#+1D z-CVm`x_vEqhCLl@L0vqF-4?38E-UdTM$tv<_OE_vFn4RUWRkR5xr$t5CS&J}8+Ln3 z#k7j>yoFn?`C~Yz^@sg24>*5B*D%ZXq6Vr?T|oDI$I6Ncpol!d`FupM4N@a%&?pSX zcSQ>MZ#7RLPQOYYgpKc$=5K*t*6?vWr`JG_Q*8KZduUiYxoZxh{+tKQuZ`hGj73vy9 zXwhzhb~7(4IAlca(hQ_LL?Mq^%onq=$LFS|uZ^g?!r=Z57SNEki~LE*7Gi+4zDsF9 zXTnOaV)3>!=z=KSU1*o{u@#!nu8r+ecIVJ4IE_R@W@1O)dceejTcV(FU!a28l)J_} z{m(v&u^g{|%$nlnJZtn#Op2iXWlkw)Ip`uZfljjsrT7>i5S_#fO;l$d_j$S^48{_g zeNT1dn;|>RVxh}7)46kuo`-0{l(>bT3aO6NuWQ!4JG`bu9y^cCE_h(H!gqh zya%a(JSP{m=Gav)Y9qir0R5~t7K>4fz~F}*`)qzCWIdh0bC$Ne|~EbaZx}5I95L-Gw&aT)Y;GsqS-vmaTNn-z#i8A6Cw6yiHG2Vb6{~ z3}f{7U(nN9sgT;pR>jG5hrk<3Iro7{nCCnlA4{|e1?_V4 zqUNl!-$MdFmq}w#&9P(0xOi8-JZlkQrhP6ZCYGC(bs261 zgd>!;ukq~JGZt1>eMwe0n##9_Uy@SDk9;I>CcdAktv2T3ho3 z$v?kyS#_uHd*Jn$)I8@SM~(!Lun1dNXfv}C5Tk#?c#Xm%34l6_(DMl0VQ|&Bd%&jr z-`v;yxHj+W(KTak2KxG4s~4afw9(_=3)4HdzA%$)S$&v+7n2qwoK${~>x!!3e>^E< zAGjREV1XMkF)69&(#HFR35{;B|?i01*pv|&Y0rY&H#;%%n+3*{d zr0nOyx(gisGyIIF<8Xy7%(E-<#rSg(=E#;313l;w|H9hg@na)!aw=o$ev_GbN@o~u z+ujUA|0bb{Cx@gGm?9KQR>ba>0*6R3BB3UDeci6fc9Q_zy=kA{@qbjpyq>}(Xj-iy zl5-udCf zue3Q`26u;Zx1QXfYYyNFcb+wK;86&*aYLIzXZ&+O3zKE^7L7PebLkl{H9{Bix8cXt z!FEL@)R{|XXb~G`Q#xnjI%jmF516sr?&Ymr6>ZZ@CiLOWd>LJ&M#04E%_7rVyHwVN zdsMAB+C1U$9`-^1w8GEz!qqL^i=sI9nP#)|7tx1X;R?=Gu-vz@EVh_1;WYvz7*pTaxDbAZ`JQEgF0wS4KT;^QU<}uaU`)1nI@R(7CgmM5 zOy12|&zkv8xIQiOZ@FNHh8C%79dJvvW+mcdLK~N@Ku%}!j^Oj_l@p;rO9|^n%aj*M z6ZUl4LsH+|JVW;j&kW+%2mMx!9g*ZbS?G`p>^cj-hh(7+X+>3yk`j$99iEl6C&J*? z%Xirp#sIwus4JOj_@1f&djOAvJW?B0N%w?Jqxj##8-EUih7&iXGPK}DTW8S;{sHC{ddDw7qk1vL zUTdUK4CPA<3<;D*)HbQGouFI15iO7TUo-+IKt)3^mM}o*#@yZWlCo(GN>P^h(C%GzUD>cDE$B~@3W znw;WduziDK^{?BgV!Fc)Odho1%|L>6AAW`VO=1avEu8eWqT&W{$C%f6D!sX<_~sth zoM!V$f0*7Pb$UEDb~TgG`5#t2shI#wt6`&;K@$X26B84`I=~LfRV5!LElf)Gt{6$O z8X6m?^6~S-;(pM-U;8(WQ3Y5&ctWMEhh=~Nb02IcK@)j--}KHgLQ{I(-*fAyGMfU; z(lfF@t0?Fm?IQtJ`p&6U(93I6;`A_DLYLQfY}t_)S%OcN2m6k^h!Q;HW4|+~k2F6& zM(fg!^*chtoJLqdJbF}4*Zexcvb*J^ZC3(=7jMG#%GDtFUl1M4`BrS%)3rNz40hRl zWe~kT*HF|;dPrmSrVvQZo0`IaPD}Y&0Dyc-%JAcHBFU-c6_eCnHz>k4;lIp}POtT1 zitR0T$IP_ha)QWS?(}YDxaafn4$2A$8@q2+F2gsdTOY2J^7^=3?VZ|RIobLR_% z8*5gbIw}10+|u!f=S??uP{Bgwv9x?&QXHdi)U!uAa#%!B##8~0{ut=$3*J` zcIsL&@1~5oAtYIcKub>4z|3zLz0NGQSz)>G!dk8xtyRw~O_37cUwyg%Gx>H)E40ye zcfq=cF1FPsIo>6Zj}Oa}qJ%7o`uMt#T!#ILWYPn2plsC$DH-#9#zqR?QiCA=5iAm7CTwX{yS3vbI5(G$$#JOpBp1v#VUu6lrYGh9nceu zW8vtl`BxjOv2=xI^aGd}uxNZ|X=gN>S6gK5I>0{8UI%JW9iH5@G!}T$X*@a#_Cmn? z^W<;y#GnzZPrSpw0e$rD5V!Ed{-dWf05Pc{n+Pru3~4*+Ni;F2iMPEPA-S zkcAqK`OYK2WfMrajKK>Y$jD~~vWPCV3kFPK$`FKuE$iSPUIZ*=Bc|uq-?{FA8km5V z(Ywgy-RQuw+mX+>ynFX- z){4H`#3-NbF{(An?M9OGdJcX@l5rT>5;Q6#UfxeSR~O};=AP<=?-VOHy_~mfxaNGK z?8)4DM3giO!;_U&(?aGty<8ZTt5dK4%KauG$6**(_vp)y#yhuMinSgB1_@ z#!5Lbzg`tNU!3k&l_PC6&>joT;s~Z7`{ljNR2uhB9=)5h7(CfY9$hdc)wy5KskbDm z$I54o_q~3K*)C$=D^jnkE=e|QFby5tcBWtiE&IHl<*+PKRM=!Z&CvS=TMID)qQ$i{ zmZ~U={vR6W(hkw&&v@2&<6Y6ll-jNe=&yX1_PMTF_xa90+FN~HbiQ_}8b9q@`RXE& zl1NK2)OL*T9+g}FMo)3T39g;Dz#i1y9Cq)nxU*<}mAu1I^19L`p8chK=BDt$lcIs~ ziW!^G(mLcwsnd#Du*(nh#*o%LG{8RB@PE%@%Lj1q+ix1Q86}&wmK(qKa{l%7?rYFn-k{j9 zed34mFle)=_1FG%`{_JDge86Bn%caZI(lW?qB3BCT@-RudTbs3Lty)!Bpz6`P?*Au zce8es4BRY%+KyzRBaQ#eBDT0TXs05#{g6^wdg2_>NOMW>6>t7$oJIGJ8FOuxrFq-ua{?~t2;4Z6p$vyF#+(hWU60w6$wc2HI9gdj^$e4z`qbtF#^8BCRPzT>NIJO zJ)?>+yU(E~J#B8_w+K3cy)s{ihYOYq*;@c!4m`%Kmj44jk4SjE1q!}Y7DvE7K#TNN zLb{if;#eq=Baz;doR|pkRXQBO3)_C;3b;E~>?KC!cV=d07FSk~6}j$(QK}{tZA}v% zKqU6za%mBaZLS%01_?@=gi@Zs`e;}b%o2j)Df_AGUU>YnTCQy)Le`BX;C zCO8>bQ7L!d0Ma0gtP8;?2)S{J-VqQ+mJ<=?a0hxGA(gM}H^;_Vt@4~Xf_D*=Y`ToAaV%SsEr2?`baH{@1BBt5Fou=_`B9c155d&0) zYS>Jp^43Nx0{~vn{|u6uqM$)5fV|$ofXS5w?Czb;=F7Z(lPpsUIFr6C9~fcGf?=TCD`cgmU$IE=3%BgJpr$cCVd z(bedi>4I}`>R6P#b-8$sb|a@996<&3tB*Z>RN+LcV^qicn+@nWypR+Lyk$>6XM#JK zQ~@Y~Y{+y+6u2Ww_Dz+Pl#1TJ2SrXCbL;he1!ulip`K~<7sP^m3R(eFQo|U4K-Gy@TERdni-M!#xOM1hiJP202W+fe5%_Q`^+ynB4jTA>d{8$n--d zpif04<)=NV8r`6|f*&gxpZJg@paNFY z+Z^c#x7(OC=Z;@_EeXt~+1XbTlaq_9s|}$8WM7d%F`(hnxVSSHUR?J(4y<@I{?4D( z&M8n9wAJI>NVVRVCG+oHnJ@B?`dIs=K?f+)tlD8@u&oA;j)h#t#kJI^35*NnTR_xq znw4xEl2T7AV9MiD**$-Xy0h->(60x!wYAxvfALnU0KR5I$?%0gs)|4nXw>mfOXqI{ z|2kz*gz{*2iyt>K$bN<~$XWtYhQmQ#K{IcxzjCA^E~OU7!wQHHWLk6zQ2=S9)BNz7?BIXN~gY;1a zym`*Mwest|bzIu36i;d>c<`#l?~dtE?y~z(@K1V&&P~yPX)}S<@%FYN zo0XH&Z?{V}t~WS$vNU)|HoDVFO2XQ3tBSnP4MCb)H`aT?!FE6xt)-=fx&>gb zgNI{aYFZ4w0kJF`eu3ZV!=JsTDz=y1=Yvj9E3OibEjqQh#?bv&?;2!X8VrM)i)&a& z-)d5Pc7JVi%E>xmH*+t!1QIolNB|Dnp3=92dGbZC~v-!a7b%3$(@I^x{2`bEH% zMo#B92Q+*l<2UA?$7p=k2OS9CX!RO?T2=V=zFODOCv&V;73HD z-KQ%>B%NEcGI$0TgmdRuygI42&gYuHt>NxgzFD96Ws93NTc~SiiZ?MM#W9Ww$!4ua zD6*z%-pjE=OT+2a&xh_Zb}!-?90Hvqm)+Dtq}Jtcj*VrV#L^gjKL zT=!!o1PF5DTk6t~S)-p{HP))o@6~8oL5YEbCP%2^jV=3F@9j4q`@e2$eYGTnD964H z%A~-Yf`6k6_H{Kh_-mpFLq0x6!oVY{M z(Wl_rxEtKJ0+8c@fipqc_OxTPXPemmsykx(arSxhE8EeCFaN3tL;+>1(^#!f&AUI6 z9T>rcVpvbEDqW?oTU0Y2S}(t+Z@?Z-cj1-e75nvM>2nXHe_xV@=N2IUF~jAdwq+0D zuL$tw;A0hG^15G%CXx{Xo$v{3c>q3sjiWL|@2Q_IajIiN{ha;l|L4C{%D8DVKbVIQ z+~>d(4l_1drEtu^UtoQrn83BBet4+KoB#PMLFllNNJ2AkrDu1sf^cXJ!M~?|tok6{ z`QPK{{`=SeIv4&=grG(G=Ii}qRvuHQvg9R^?=C-?9wKC%!N4Mg^#jRNd)5DHq;j;VQ>EWZ&g%S8Az^7Tn-+yJe4Jm&^z%-90TD=dbgGyLGUCG?O#JSqfRUu$f~%(r21oc6Miu|%^<}f_StoT3_Yt4o1!-rQD{wY-mlL_?s^;k#Kf4xmQe_HrexLHbrbhzPc z0R4JT8L6t~-Q8mu4FQ?BJm%=42E8Ine(@!D9erKdAOf>Q`}oNW_oF+Sy`47H4q5dqLS} zi}cDlWLy8JC!4eve(>hNrtUdlBWZYLlYq_u07 z^Z6GvYLeo{(_IxFzAJu`>&&ymy5&e{dAZ4^#TviiEWNXPX72LNmh8+{1$ExN*LogZ zDtB+kb#Gt>BBs_x-+wIE-EvJ}4_#L7aBXmE?97YV?~6j&rK`_ATKD5#FzF`OA%o}( zFx5v?>^;U|6VTG!J{LABBc44ZjZPcVBIUo_Bn6&zb$*FTlf>q{upe7=a@P4+dYjwF zXOdxR?#qZ5k374pZ=v}29AAIzp4BrgwkIJO`{mFdqAqje*yV_dlH6coG6c^TI2#`q|1g z-u?B;H{K?T$~c$!b6JY&Em+Y^6chZJ8sTPWNh zxcAhRDVn=F-gd8ry>{vzcVz~LYKLbAQ9qVNOR}U_nW2WXJt44*qiO&yPG(`Z@@KeD z+0*`ph^ab%4Vf7Fdut2#OrvA4!&Ar%{mEqCrEz{ak1ID?p4^kjZ)2QW`c`ecr==eE z)G5?(#48*@^81v>_{?iWLVz+Nf$ChC{g>r@gyniWZaX)$nhV8~zCRN3= z>)Eh3!djOK#d9Hj-Fhn86;VaIB~4!nIJ?U(bm0p!(m4ZG<7zTaSGjF!ENlBZDVC=5 zUpxG!Dn#5pzBcwawsttZmT<0lvHe3Yw^p6E=fPKbiIp|YjR-Z`%Zq;gSkHimlMDy7 zXXNbIpSiME@sun(BEoYyYziGiTh7istZ29kQjWHgX*wZHOn zgoww@-DF>2%8-hyV1bQ*R*(`{+PHd@PJRsSwOJfKiBFYe1_5FJy_j~JL%34GP#05I z6%uT>o}%^e@330rMa_(ro0v3QkBb6JyoLM7k2pIKj4E!~1jCM(YF_74^;{4g^3P~l z`IzuY=*;C^6V&FQt^75;i{C#trI_5*Sne~hT>9ogmyewKTJs9Sd|>|%f)t`To_xUq zzcq7T8@!aT9mQB7nw`t5Z9iNBWUG$V4zk>1dGEzleZ8iT(oQZEobb7d-;VLMPrw{F3MAl4kG^8PZL7n zV4`Qn<%~kF`9=*Sa*(^Dl;m^U$B(c1)S*dKchp^y*QZyxyW9TaT&3HNT_K)&dC24{ zr4jE(igF#^W8HQKxrtc4E;<)l8CkY z6ek`2ZvW*?*Ke{Y<0X~SyU_zZ{6a+W;JbFKGL*d(774>^F-SzW->HsG>TRc&l?N^Q zaY+nom%HZGl6#A-{gU-1`hLpqvT}2T!=(l}4r&}jqc=x6FvnQ@u8p}^8RBjN{I%ws zKm0lnFY9#TuTtgjqVc12(y7C;wYU4KX4l{FR*P23$fWs|M^^in&T&^XNC|!cg_jl3T9X$LV zM7o72F{SMk^R3l&r}-_uk=e?31knM8g78AU=OLA1r|E6!+xm~>@gC{qeRxVgKha1q z#amO8$-$Pk=|(hRJ|tHilOIUt)Fnl`x#s&hvwe>k&<*czZvJpMqtQ`qFMnH3OAq5* zm0foRx7>F~X-iwYZQ+XnDve{KNUD$Kz^V$NlI!144K|kfqT0Db(@!3s7;J2IjE-aU zGk@DvoFCoas3N+Nxk$I5u|}J%$EmmRY|XI%tKz_S+h^+<$}ZyI$=kl0u_i+FMC;-` z$6FBVh|N#&>krbBy^wS>K(y@ZdrWg_>-4@=Mg#3z-E7SFrj6))#u;OoxQpL8IKGLv zB_-JMAm1iFR-J9+=B~!?Pk)duv3D!g7CI+`jjwPLGS?2};x#%^L>a!Y>8bWMIWR8$ ziGtKylB71#TO{xHZcG$qa5C-Yr@=R#Zj*V=fy*glPG$M01~yK0@>%RBtqm&{I^|1g zr>zuP9F?APQ|NC&E#yuO4;LSgD|~cue zv+$~Etk914v<}Zq19!T)Q*cPFKld#9a~|814>4>VXV^k2Xy+&5? zW^b}q(THvaHMNns)(ml{9+7uD>y^nNQKo79gPtR1w#hu_L_4J<5cAWs4X`2X# z0XMIsG3J8l@oL9#WKwFk`AB&ke`D=Z%(OPyJ6BWsQ{V$qPZXlbwqjUNZsaOnslDE= z;@DHXAz#t7m*_h7)&jn~5YEYmcc)UXBp^-9GFhuy)kH>R_l*!`q?Es} zJ;PVds=Gk9?cKb3*I1cN_f@B$E4#CHn=))r+Pj<<6fEKDQOGIse$#wBoz8!t)5TnR zm|57o1lh+r(1Lgb9^K>Gnmc{w7OLYlf7DZo6G~e=lw$Bw4RP^t=m|PdW8! zHsFlc`w-mX(-GubQzCA_wdUQ|y$Hogx!Rw;yJ9PlVrw$X^gaz^vIk8>G8E^!RH=0s z7L$ZyX9B3eN&PT2wA&=ReGp5DmhSbPPd-@NB6pNy?n4Ec7>lOAhxR4Vwi+dB&Y?+m zzUJ2}w+0fks;=LbI`5%mE(qJfmztD@!92Vm=qivhjmI5n(p~T9A>3Eg6)S()X?M?8 zmA?74W?VFsnbG{nrxrQU2!yQ~X=J6GRh31z4((V0NPr0Ks-%k0NcMPn^Q;tMO z#Vo#y-Qx~kKw9=eZlmbn*M!30tfqUP>3GF$NGkZ&$*IIczJuovggI$7R(njf9~I)G zg*Xa&k4go@3ODltJLU|FSP|y-bEm(wbo>A=NKh=8ax zp8dwAUO#en_n(b#Zpx7M>sI=U4A6@`1b^)gqMZ&?BoySeOg5mi?}Ma$e0@6SO!Fc4 z1j6En$}fmG+Eunsco;EsoCDG2x4r_jA10+^iBSvnJ>cHp=GcAM@mSz~+W8aVO!VPr zX~UUlpPyynz&)N^os7&_+eum=lZXKn5>6a4d(?3M!-rfmLQy5Z7m`{O1*tNr$3Jo) zKsvbU9;^+*fgI=l-_OrX7|Q;jy=v&1dI&hB_xwxitCV4Kkl7o6N=2yOD#4onV+K+e z1s@dhPT~98oT0f22OHB6sr^-3kq%{1dgWR?iF~)J%{7 z@mK}?hTmQe#3VFv$vw1qf0IaPKktzmtHV>GBU$qKb1|8O>MhK-lPa!;OSzr-bHmr^ z?m|soH^?I)J5lw4WX6#VD;ZnThP(#dG>Cw9%e^B)}=QvKa`-4WVlBK{tKt4-*qs@ ze5hT!#PAo>r_fuqepP9>Yq5dYy-Y;+KuEQ=@HjS;6Yut;SSFCvy3KRko||plJaZMJe8hSTq`OI-^Yjc zO&qMLnl}U(Aj-`8ATvlU6@ByOG%%xszUGT%qK91!o1mUWjQ1xsNlKH#0vldu?t6z> z?;*!y8^2D3o7{|D_*(e&dv)TgYH^;Cq0IR7Jb3Cx%rRcJRrhNC8o1Z&Bq{y6n62rI zeOVJU_M>k3wyFDn(r?sov}X-`b-$EA<^ziI;7jx=7;rrLMm6V`)6v@KqDXoB0upl zuHb^MChA^@x!b$C9v^G^!XF=ZBu`JSu(wpI1>@D`SU9Cf4OgR$SJB=opA=*`}>vcDK)C1&YnRqjBQrK_P z$@!Kvfa_~l)s|xDd1?v8az4S*kJOyhg6wxI``-mN^yhsZtXa|;39&~VPQLNe`3fsB z;5+JF&T6Ac-|@;s%FahGFWgr@OImfG{>Wsm(nNr4i8smm!p2$Zzx}|1M4@+a-hlF5 zO74H`PUpGEs=q6QN;}gw)78VG#5fbadg+^-rqqLavx<;od67%Kv4ytHYL56Ylf$=< zN(VdImP%Y+s<*v}ltiwExUg|Q9r1b(KqI2jEdo~?i^S0z@Qfslpi4o`m*xfUBhvjf zxO;5&OfC*gsj*s~<*FnkHBWpn^nsK*)J=D|p^M+YzX!V=%wk+gIXo%;r?^-sIr6t< zuWSN?9Qltak$7db$&UFqKCZdK``3EWPT7UBGt%PkgZcV`hwOu;`+rtgxP^KejTk#V zzX}+Zk^g1A(})8ub^mL}yPiz;WK+$B+uen425U-5#s2A1_A81XD!X%%BCSdHOpIL- zDhKlk0~W@v=uH%5=fkFpw^45(IZw{7OT?&}&uhxR0keM}BM{1sAB--fXHT;zOz9Gj+9k zL(8QPA@4*o!?o|VEo;*1pbZvNl(BBXD0O6NTe`p{g_PUL@c3<;dV?bx`1{vDT_@zf z@@zYkjANk(2vmd?L5j@Q)|U77IetiCgC2scm`?ysVvSDjJUZEsVmA`hSU!>=twYqA zVvKnGpq61bGCxSWEkb@+YvXG4r$Nrb1$y*`gU(o8{i468QTnn|%Eyf5{a@2Hsalqa zu3OmLLv=%bYMOP1#Oc1WZD-@Rt_4?7>#()3F*YV)jhMN{GY%Y)HRqWGfg$QV{y zN8*IgQoMN^z2@j&m+?DqbBD5&*XLaMvDi?HQ+0LyEI(xQk-lEf145BnW^wv5-7%R~ zDbWj&@bUY-ve7M;MkFbmnG4i+KJG}Akq zua%uf2$}EmdCrMpb`wgNG>J_5ySxiscCj%J3HVfX86hgv%(%NXw(;VbQ|L`#)L|g! zhHE>HczCrQnm56`bJMFgTlI)t#2aeu?36ToJ+tUnYUqvdtjWp!T2vm97zDs{q-wwC zLKnl)7Q0B{Oh2f5CkQ2X+CDd%H9yyFV7lOE{!pCiMsz`4uhr=^{|h!0HaGEijcJ2F zW!^V2+Bgl1_+K650{mYiSrT5_OFuusc$zqqe@dw8ScSO$R*_@Q#&$fXbmegT$Voo@ zsB|EcBohZN;z`7@HRFfEHXB9b9DP&TQEJ%nh#J}JMVg|+D+^pPopSA(IHU$2V~NlE z)s2@vW+Sl{21E^X22bQqr*wc`5WzH;S&|q{2vJkDjnYH*rl#`PL?xRo2a477Q8G7e z`K*;biw63nMlW<9+khM~yrnVJ9Ap6nA85Q_!2oaFnAY#d|4DF`UUOd=@%yB{TQVn< z;Zm#-AUFPLj7|fhpj>I4f!H8irpptdD)~2NHSmlR;E4R zv7frc^@!wn^`W@AL?dehP*!Q#63uRYQTLGk(Vx=3JlDrZIZfAA?_}m+{Y^+<6o00@WiFlSAa9Am+~$t;)pS7#HIpK)HjB_f9Xr$<6)W~V zESp!Ouk4CbIZX9Qhp#`F4K+V>EA9W1{ZjaoyZSF!0h{o@b2a~u91I-w|Icwo8?5xl ksopE~Lwn@Ee|=CjQWeJl9poG9jmAR2gY2_KL7v# literal 76770 zcmdqJWmJ{#_dX~JN-3yx3X;;@-GX#?BcOD*2+|=)mvjk;fQLgW-QCh0y1NcA_wn=j zet-X&7c*;S&5K#HmMqV~6VG$s``-Jyu6=F8loe$jqZ6UuyLa!goUEkky?e-B_wGG# zLA?)tBYAIX7W{?etSTdZuY7=H6Ffn-5_=EZ?)v*hOGSDb6O9`4hZ^JGOU7R7gey~0 z2BJ~Zq2CuH`g{*bJ(fl}ARCP`BV9F?Mjbo$#rqe5sL0}0c_CEQ6coM>tmTx%iJBIs z2m5;abiMbTod)>3g=q)vzg2b!EL;w_H#zURDz3%XoD1I+5Sc}?br6_EZX#X1;Xph9 z&qg1dq*?#-Yqo+%8$5sh`L&q>){uSX-&eDBB$Itz5cv1?W?lh)5&yovG4?+Kf^)l1>H>FvuUBTsgKS!kZ0;OcemHg8Y>J&mpu=#1Y`Mi z<2Y>dq-7$DJ`?@H?b(>DSokbM#%Dj@0GoNOYsK{U%L){lSLYTpf_tND9eVEeW91wL z55@$FE1c8)`cG^-`{bhf7k_6FX-EY3$17zCXGC59v2V_piArHJ>&W!p>vq%e*;32$ zS_;NjHQEoUA#wPH^o^|s@*GR(Wazx|AQrtTq1T@_xzT0#E1otA#ajUN2*&OHajq9wlx2J-s-4S>?kSHOghOyF}jtOP1r-B3kBcD;j@ZGnxF|;D`-K0WqVe z`ze+mn{7*4uc~){DxZCY;9|P<5q#a({;of}!g0rS3kQzQdtAroG*Y@YxbJh_6=Ah_ zxf9#XhV3sY42Q?f47s)F@X&hFpdf(mDT8RxI9+g zISX}ughkfJS2Ou7h1YTU!y_^}EbjXE)kp&Bf}Z&B66rntALeM&HcC&ghJzo8m|4e# zbj{Qv*T}y4!j9*AEw_S756jcnV~_Il3P#Ex;{CN2 zAajbi&*E5gwcf4`@pLpEFmoGtXPzbAKk(m=)9I0`*zv^BGGg;WB6}y;M#nzVQ}GUY z-*rYWn26|b$}FaGSijE2+9oMk#Q%0!hPFz)JW)M8id$tdO(7tVR1Ce38d1W^yRNvSjRDqm zD&TYBGKuZdw}2LlFciE{8$O1QT?{H}CIM>aWvTz1Z;7kMg~y2%`tHjK&PFLeU)9*c zx6UJYRdYLXS(rqwuP)i6>s+{VVUOTXNg6$HSa3M}hrJhs?JfJpeYON8Oh)JmB*^^X zj@ zj({4=$}3C-|BDb6g@y;^i*ueI^culP4^on*H&x$znu`YD5tvL}PL=6CQ5N0(t%4p)R zu}!}zbtg;ve*fd~0*SEHBgNDCgI~{5KeD9tYNuWt7DWh}x5m&ef1v3Uke^@=cRsRw zPG9)MqL%|Z-im>f_^|D{Qo8d1-wvZ%JsAcbBk$Ri8DAkczIi)(P#Z`MXWK@1y31nl zQIVVHieHnGj|T)|;B6~>7mFXeMV}YOp$b|bSaM2!DP;EM#2_m$rWA~NM@e7ntMK@7 z^vsrHUVb-(}3sKoz1#m?>V-9lwVznWTG|e?ugyMoicwxn_^a;%#YQf`Exc!>wYlI)e~ff zL80^61O}}Fw+DF4`dtsdfarO+tW#r?!2P?so)BJ`;g)L3xpg{eWHlK<`T!TrV?g8% zK1TN&`ysnvjXYVu6bA^M6uOeA52E)>o~Gavu1aaYckzBzcO?7t(BR`ydE=Qbu5>&H zcP53pJmf9r9@~NGEZC2qmT?=#nCZhJIc)(3IeYq1! z{jns@fUe-4_r$@8YN-=yL7JH7Y`a!&&z2O*A3=A?9!*X3Xud* zNPPNc*vNnSeugUe#nktn;u|)DVG_=_*q+~y-=Qmi7Yv34R&PbYm%=H0m3}Sb+en%<{@2slnwGRA|O`=-Qt&$m3;Kf(UYK+5H!esbFaMIBG zeO^nf2;P%aMGM>Ua2EX!x;r6lIFtq0o)sNyt4IT5jhEr=IRT|SE*r{akUia_nc9K2 zl|Bw+Oj>qkQkX5{$p~Y`*k4%Z5@*-VG|EFD>~m41lB?SK57twAdLzs#AQ-1t{1-5o zMHZv>GMPaw{;r`yjPbvZBH4rjR}=q*geRzpdjBHA(U;nGg#RGR|J{qln;bxN=KB< znTGa@Uh~T0#sq~-L8$-Tt;8oxohr*WPN(9U-?SaOsgr!*E97?@G9p(yRf9D4QjtVl z;n(5LHpG7+->!`NYT}t2l0etTC;S@|diDlQKAzzl4_O)xS~`W#DgoHF+8oL69uMhS zov3r&RusN8Ple36rFrR*j6F#W3G~1Ivp}Qucn)jf_6(B5q?f3lX4Kh=B|?%SCWu6v z?$F}B-9#uq>R7_k^2~< z_UAp%+1DdMP!uv2K2BI{jTP7L)osW4o#YBbMS52!K0PL8ZiXKz`5ndcj{mvR_uj1; z^Z$*4-&Wf9YC!Ny0ncB1%M5BC^FglmDjO4Mw)d)x1$)n1nR9riQBcM3-S zH>WTzYIJ*=9oLN%joTL(Hv!?s_WgCs#aeH_(`I^zXYLK5JJ~M&`f&Jg@^pJr|rJgM@wQy>LA*V@u-HMZwZ^VVW!R_)Q$^N@XWmDMZkBjU(&w za?qb_-z(gdH97P{{q9fV>vx)m^$Ryo(kK?LCLlBl$;zQw999E5RvA(nc|zAaRY{CG zIRSyQBORRc3cO|=k>qz5onETy1Vvr6Sw3+F`vU^|3e=CtJQlyutBqlNIoZgKSvFUt zbYJjwH+@xzMd5@R2RPS#`K63gCTEz?Z1(T=w*@@VR8&ul+ z9jEQ`w8;oNZDfZ$`<6`7SYQFIF>MbA2QD4Dj7Fwm;M~vEz|VV3ELUNGT};%-?1=v+ zjXP?!O0@jhq|MFM>F(&*{931%XBlA;bNRy*=it!|nU`_Rw^!SbNL`dY4a7y_8h*@5 zT|oybnnTr5nkUlmM>lvr{bdPRd4({%dh=>L0oF4U&gsF*(^>1nj8Kp&Fs7#}1xPq7 zF};Ug#t5qF89pA%B$)f*vN_U17QGm+$RD;jm5}K+W1VNZPnU9du@bXF#ngSs@w9(E z%fBhn34>puCGiX4p}bh-@dUnWQ8I#I>kxF&B_3ei9bk!omD8C4NIxR$!ro_v7=XV} z54QtR)>Nc%F;O3feCVtyQaU04xJO+wytaz3Tw*D)1a?@@R;N;v2*$gm;Un@a`P@uF z7~+$oN+NHxa<#I3o0zk;vKRvTZQERm7!AF?NHm;W*^GhpdJTVYX?Nxp%0V(Px27sz%8`nwMZIvf z2uMhNE9!-q9wDje8O`2Ru$N zS@t$JeLeHW$)fKeqnXKNCbuUKVtGQ-0ojmde|W-VW0mP?d07@26}K@;zau%F+4Ee_ zv(fc+d#u}Rts|!jmsN%?U0ObXhveJa$)@C6S)E>!MCL)b5_pKcCs6gyXwJ#YQF5Z_gj9R z^)=!hEV9c3!^p(28rkh~l&jw;7^j+W9It4RoiPe!OCwQHQzOo#D{Zwm>9}WYpT1v< zDgP-yvSx*0lBTjI{~(OtF-w;-rWvY`QuFLEgFn*GB# zQ+eg$_Lr)6bHmiskY|3AJNL2C?^}XQ{DK0!DNc?L*^15NPr5=k5%f8- zNZCjw6w_l5x<2#(8rrXA;K%2r1jVmLHyE!&iZwzqa8So~$DfSl2-mv8HXw=_mOVYr zx`VIO4DL8KU2T>2P9k%9>)2U0)`e)`a;p`}HxT+Bdp8BW<@Pc_{~f%vYDl+W7Ujpu zN#YtVJwC-=0p276ZxxBn6MasYuFrL%yAiP%@`Ti@^)b(vn#R8=l)OL&hG+AEl+17U zvKn{vx*kVa6iZqE;~sI0AqvWvZyj!K9^L>TifQ&uI!YfTP8QclFguRYB{J*fqQs%1{l*|9tr!ghGN*Fum+|d{Ik{r64sAuYb2E?83Qt@Sj zZ%AFoR2J@T&)Js$RAYGa?!u!*ZZCYC(XOzccyC-x;Z`-AjL0AQe&maabAbWFT{raEv6kL8YK7jLes!&F^}b$9+%# zH2jHCaC!E5m397=!WYqfm1jxSUz3hBoT;IimF0mUl=+H$@@`H|7t0ZcICf#RqoR|q zns|e>2)TX$FhULx28^OGQ!=}z){5!@_LTElUzqI?$mP<(C?~0FP7&hzqcv%G)e5i&H4|Vks$}@Z@I6ee%yenFjk=X+fv&Gq7pMI} zv>7gO-2JPM^CvR*duyO$bvT2TNw!Wi)`jgn&kemc^SvU>m<3;u3z)PZGvgbx`a;%kY`&MSaC9hx2`tssbf!-4$Z8r>a73;um z-fy~Q4?4cR-X~Xrpla7TEd72&t{{5b9~7+gh{CTZs$PC|v-?lh&2(0_cm4x8*ICET z&D2Ilco`$j=ZU0_H(7Ro9%$$?(!nrKhg%wL`j-H@iI#lU z`)wtBobp^r@N=2fQUzb-Zfm!u(x1^e_l29S(u(N2>qovOL@@i`ulAP+jzDVA-?uOg z>0#DcSnqJb0_b!;?d}U+hk^Ut_(o%JRGc!bE$sOze)z@=sNu&{tET)fA)!`F3njj3 zd_7A%&6jVe`hp+9%!*+^#;3@vQO4RTJ+`MoE-=oyP*d+>dc1R>u|edO+$wF9_3@e4 z+m9kmuO(rnYp6YoHKvyQE9cD^o#l61X|UohuU)ZF=8j5g_}b6xM;RwW8N@N7S6220gz~ z2Cq)HRrGa*-FIpoSM16gtJrW9O|`;zsRWwto={$<|Dq$K~R&zSx~6VR`D$_V+p7l8iAe4l0ihj=HG{r>lJ z2+X{Y0b~E?CI4T1@y2=GKPMKnl71;cBIOQ_V;TRs-jZKVy~#oU>I%hp;5MH9t1J}g zg1eUcS6fK7shnk}G5J@DC~5zH_@)zIMgGk^wC6O&4S+iWulwk?K zIJ8dwd!d^W+IA_z1Mbb&bGJ9wFRK@`?k=$Rtj^Dnk*XfB+I-K4vE>h%CRWX|Xd^S@PVe9amRg@TlwM z(K&TT^N%(AnB)oAix{mWEcn$^s?}@I zcfHyHca@N#ckN<(xZIAoy!Em2=<@~tI|Oxnbvy>$M#rjI{>p&jN^CaS2ysuvHGf4BzyAE6} z{m=Yc!`ZW@yl85F<*Y`eUZ&Cd%>&_`hUG0ZC<=pCxkC9fz>eRYxRf4DSslT;|A^+e z$cj0lybYiktclfw>ieuFXvKckK+Bd^XNEMnPs2gcxVbqmSm5xZeiUxo+JW_?$=EQ& zi2+}BBY)rTynZ&kxRLsT32`Wsg+C!~(`8Lq(zG4_cNWlWoDw%Fpuxg&Mv~ggK<;=W zb_$S8He=<`tMJKDs+PUxyW3d)llu?-ga~bqhKg;!;Nst3Y&@TrpF5@NV)`oUd31G1 zmz{Wz;ArE6HY0kM+`R{cw}6%{4HppvR_Q{yU?TG!7a_R?cem3T=OXo6Rh@%hJulji zA+PPkm{Y!=j>%^R&h~giTdcBtf2LAQ9rQ}%efk?V;~;x9rlIe*lEvv|P(A*GxphBE zMVX#g<>`pA%ZHXcq3_hJRN{G@8zpD`-ma^OC#o-doEX$K2`GNu7gT|g?KwtE$w}Xr z#_YrIJwVUO)}VtJ`W#9HJwHNgHjm50xz)Ez@UA?R{Mn^;fY8kf^8fRNiE(=ODa5qI zLPCdFH_(5H>TY}>=qCt#A@;#Rvnow?zG#soEDJ|HhY^xf0`^4pek9Fcfhlj$cXL$5 zBf0|5Pi6Vy(BRa%jhu*i(AR>CCANs$;gUHQi%xrNUZU4ElsKPFg^=zKK%pzHfQ6TP8C3t#dnzH7zWMoRhH>WljjHl zur?k=d8?PDIi2VY#WT*};-G=qkc_+#*hCyPP;A=5aT)lJr4HUE#8P&lwSVMPC}K=~ zM%-0~qmo+^A_#}C>0;>lhskrQ=vzQ>xy)qkmei+p>B%C+#Zy%R3O?%FtzMN3?a+)1 z&xsRJ6g6GX?QfL@h!4c-tr~XV!8Er@#i|nL|K5odRu2v#- zNq(`AXHtdo+}O4f8owP754Bm+Yje*kfhC$h3&#)({>|q)*0rh$#dm_b4ol&;udpCe zdNrdEHH7>9Oi=Ae6D#Op3Jd%kd;6L$3*Cg_VX?~nMi-EEdoH?_{8ST_Jhp^Mw)1>? zGzgz39H*5J!-Z#G>Atq3AQtEQN_fH)97pM78Wcs|ehT<_3E`oQ=6w+Xkkxd8KQokv zko#%hlHfhdzt25=())oD!zse}bj>85RtdmZ$jdl_@q5sMW&Sqo9UGDQ(>eKd7QLFo z=Q4`Ke#gtb`}#-SzehV8tG%+S)?5tj485^seGpq*g8lHK2nf7UC6KC$w0=+B*Oj-gVm0??zIk$^LQ6xm{tv6N**d@3QLn>2Cld`WXS*NK7a^*DE&-rI+J z&s~Gxb!F_D+E#taPD+lo3MgX@{l15-1escuKSt)vuSG4o{bx!tibU~eHk+{`b64aXsS>m_XF;*Jf|dfU9BO1N0al#P=~GZ+ zwT8B5IGJk0@`|3UTQ(HWdXxxKa(|xr8l4SA&i|Nw)i?DPeH0~iAw*BA#;Nomn{oQ9 zh(M+yb98MJnHF4;x-JAus4AB5!Qd9eOPP;gW>W!%ouB81gQCYcg`^^C$qQsmHbjc3#0aO${DgL2T-gNw z$0}K5DCSX+!c&_lj^CG(7D~cgLsDw3Z_W|5M{vC7Upxk6B_@Nq6X5Ug->K}3#ft%q z4RA&$a0;3ZJBW+x>CflfjZle&;>7Q-?qed4ynf+0@thS^s*TV89!d~B89@Yc9Fr5Y zeaa(^Qt%QM5Bm_S4fUa{{hER9gptb#H)S66{TCi8^p3oALey!XS`39iC(HDB0Qm~W zz%MD~_$qy3*>J(_#)+9Dr6@-V_gW`=rRYVYB__(TOh|^+|QcK^LaQ>cX(&wn7I#b)9xdjYPjyEz2Fs=xSZe8d%Mp+NrN zKmDs<@Hz2|>l8YF|FuK?1Na`af6=lU6Zjyi|9o@};+6k_*W=)O6#fI$)g%7@@g~*$ zS=}nX6}75FN5%JMUbz2RM%`Djdc-`w4*gZm&Hi^|D}G7Ql< z5d$dK@f?@P#oQNc-Al*i8#TN#-K6D6YtR2KqKmv;*+MP-q^?y|+Tr|FRLp?(Cm~o< z@xtw?{5ssv3H?2ibQBSnc~>l#?L^*BHa)P=f0;{3zMhk9oAa@_tz-JpP_<6)#Qfn* z4#oMK>AM2_bLbvnw3Q|En_*Hm&m$NB<>#dz#5i0Ds^0w1#W6t>{0$>kMnndzy}kCJ zG5zp~$1Jk8j{2-;{Wx=94p%zYpUID46sC5(d+>7iFqE}#gF3Q!zLoB zOS$r%s%i!+X#_v)wRpyjO-Q8hN2oKSIZKD-%bSz+mAYUjz`lc3^Epu*l5R`YQ3#8Zsj8#z#Z z{aFyENq}vN852Yzt*56q^?B%jxj^;f>9UtH%}x9M!rt(Vcn3V#gcASZbeX;|3Pq5( zab;c9)GA=E}IaM3#Sw!!G9!k8BV_Z^C3Q~L0>I|i>kv5m5v4};gDZ)~LC$pIm zJagmgJ2Cm6jgq%}KUKY1eZ7Eb;X0?r;W*&u-oKPP0{P{ByKhJFZdsn?UVl6f+mHw< zZ87}-uqJ#tK?gY!TMIi5O~NUn3+cf_NvG^}zpFe+o?|<^2<}%_snY4d+&GBI= zJZVoLzu0`^m~rp&%ltg#661lI%o_{}2vs7oxU3Nqs>{=W!WR(qR3;c6%sDvzUcRbm z_QTQj|H(cEQ0mMS=n1Wvh)-Ye+-0-fJB5h|UFBm_fdq^+L_hnFg?(GzyWYC0%5BVy6pKIV zrd}9xPci=}ygP}V-4gz@gATyP<`YD=1$28RN9f?!gW^VmX>Q6wj;eQQuNCaG1p-ad z!XE!!lsO=5BufGWajA%U2fn(%oxqeXl0$+F^p-JL8oqP*xk_c~&&)Mkl182=rt_*i z_+aqTTZVEaMK3d(gX3Xvv5vh-qM&G|6Q+gabm|v^cj@S*0yUc)V>fK{3w*rCX^&PP z{K$q6Ox4~IDsm4{Bz8&16Jug^fT+Vsq3vF$RF$}JRMv3WWF99i#U#qqB7@i+FHK$2 zg$8Jwd2qf8OsVrhEJQWYf9|Nyx=>q`xFD90ApDCFw=vASR@!g(Wu-*vQ0YC7t>VIs z9`6r?$Cw!vRF7gFK0BDPtuVo{%>G_fW|x62_oD9JN16fa(SmMP-#B>9lOFeIyA}s0 zE#om#jG)bl_O*ewP+~Gu91}XcIX~XdoINr9dFhpCE3~pzD`Wb3s(z`wFRM}=Ma<~F zbvw)*gySDR7h_|i(#)e*x1uNm92HSQliRrC^@7W%TycLIU6PfSH^+t;5MdY0<)!Du zeqh~w3iiy+>b2|B4Cz(>U*jgdU)AslE zdn{(*cWvo&%<1!YooXWPdwNEVE*)XHYYSH=KXCWoD~NR@mm|uqX^e8h*?aOWmV*1eo?cigN|$DNJdNVRSJK`(k>YCy z64@9BZF+?YSwTr@_!;>8HN*>iNMyh0Vwgll1!=~G;2@qHL$(!}XUEx82*k4UlJSoO ze#T-;h`h-lGz>-R=}OCCMS0VlGUSqy60sn1bLKAWd#2u9k}=@D9b`0Ee{m}X5vK~(_Z8_3;`@rRq)*joZy zn)gmSh(49SK?g?g6$HPH(lA#q_UYw+oUOiw5b5(Hk5at2L8bPkHw9UvEZhU zMLzvhzS!QIPrc~1k-X;KmC5eSnkx~=O$`vT>?82pn$Y=fmMFfK{4_1@gf}oK;E_n< zk2i>wyZ%s5SwlR_M*!cU3nZ&$+VYC_nGxU3&Vf35bqBnokTyX8#y<4J2k&Zw}C~ zZ5{kcmiCA2<^X;?SX$a!ojSW5lH^s(-j!G3f3q#H-@x%^3P?E!;Rt8U+OB?=yJH@> zA&TeXwe4Ji-evYIp_j>+wyi?F5g*l*A@SO5Fv-3-;7vju(Pd@LjcVr9OB-?;D@k@& z&Pp?Th(r<&5t8m%hp2yjrQZoxeLs89(A8 zHcG2^yJ~U0{P+zKqW*m?{(S4LA0Duzc^=u%-?mRtyElJ_XKQH+^Ld`?VWe7rk6^9~ zeS8I63K=t86TtEH$F81&;~^$NtbUpbJP7T%YCXEHnjOGu^8J9(4W#kdj}@sPT;+%M zyTtcdY8UTIGiiT+QRDrrw~YC3tkJ>}*$SjY8*zeC*nBgwWrNM`7%Xq>mct*Xk-sfl zxIk*LUbsufMamNP-jaj#`CANxWF_l1I6b)9G73?ONQU!Xms=9wh`^Vy-VNQYh}^!c zu@wYn0$wHlO{xL40tLBwq6PRGj|wSj-dK4cUXtE#;9NcfR)ay`J!dcqpz7p$e?sc# zo3y$kyTP({r&5f6IY~jqQDXDn$WCk!$<>k6=p!SM^PB~yx?|`nixnk$wrgiqZhx_5FV|Ci;#Q~vc|>5QY-(x*^{nP=&WwN+b%Fucnyg?%6E$b zPzZROE`ihBV&8A{4G;DHBl3ouvp*gKyepVoPpJTxOcwNX%7!|v_6+CBWC5ewI%vyG zRho^bad@BYe10kOgp~heIfBIx5L}|}GGJ7>Eh#PMKOIx+J_b(XE6^rN@CUd;fzuD} z!PO2dY{BuxYTnL5YK4j#$D4&&O`wfG91CxOg7zU0YAmx(Y8Ph=XAkwnnAuN>yP%{AUo3uq>Wuo986v7wIrXjZ z>=8L)$V7(R_vCuNIp&$b?Zry``9~~(*d?f}xK7O(g&T`$_?JRoMqeQG>zjRlqy47Q zM~(N@XOo&v@>zVAFhcPxe;aoyX){BBbleC`+>h3OeR$CA+(i-Mb9mk@vo3=E+hae?5cBr1XJ)R5oZfu9 z-Q1y9u=Kt4$sdr0{D4y{K5={S2<>)Dt2xz{B4{;?HZwG$3%IM7`&i`=z#ySXkWCjd^VPH<>#&^6M^UU-j>tWkj9(*EJZE*^%(nG z(~017CX(x|p8Qf_A2&ys|4;uIpAe^Qu=nPJq$Oy+;>TLeSGe4-F{uLtl_wFNG%eJs zIwuS^331QZN8s*Q2oo7~D6!1YL?in%1hg`ztE_UL6A)naFZM80v^kG!Xti?`X&HK= zYz8mKsq=y}>JHkvtG)5s)Vu4#=TKm)T4}*x`SNH8*URP{gxKfDPpL)Nk5a5Mb(;Me zQ!P?^%YdwxV(5#95L{$ss?k4roxYC(mWzy3Wj~H37QaIbLB|AOEfveaA&*&$)vMq6 zfw4t*GX9un_E#(rnDyT%f4&%}x~rKqjCfR_l*Mcnvbsqv0Fd$Lwoq-ujdI^>(~6G& zG`f+v^ zpke#H4$(`h@L6R5;dFO3*~~mxqERZF!}864@xvojL>U_&r|4fzObmdxPT+?KUTx%V zfglDJp(b#K3*F@GtX*YaaJ5JA%*$fx%D#bVDp16R=0!d7>XJX1ilvYk!#oLPfoXy} z?#Vs**)P+p`~2TCM__jKEKWL3Z&1l!ssD8}QqsT}PR18K2av5Ow5r#IH}m2jJ|UsI zOXqW*iiXtGm?)*Nqg>-p8%>umK#m5zew)Pzec}je18woTLE-DJCz|E@atd8#0Cfaf zHdwGJPk~V-CgNcy;Akz{4gt9uVVAq26lLE$>?H5ZA3n4Y&D60SJ{)^QF-9&E2Q`9Z2O;0Z4<$=y^Ggz7h1S=t4*?Wdu``yIi)8{ zPwH(jau9ED=jIuwceOL&dG5jpncAq@^#iS{i88%TY4XiDez3RAH)n{5VM7@6O{Xe) zv0PU*#U5>QpV@MxYlAeBSZ0;3-w!!jT911j;L_;(M0y8fD*G^3e$cfGmgvqxbVSXzr2FFt8jpTh3*$5djPZ);LMIhNE z35ap@DgV10=V8=+0HeS<6jnrBfbq!ZN?ARepY`ZS>OggI;TjeJ?#`iVueRVq2nf=u0}sd5j^#uKK0eJ1*j#rZqe>Pa2;BP3<5mYmgDS&2i`P?n3*ctDdMoSq24`&rb~e5oKb~@2m>WKqo42gh;dq z{w+&74AyvH8bq;E|HJ3Bic~c73UqSLyET&~gfE^QbPDXP4P?k40|z=O_d9JIH{hB2 zigrpSYo45rl2@>N6J#8R>;d~T-0m_7%}PC&Q`NiCGla2^EDoS-b0G% z{SH2oFJeM#?B?na-c%g53u0yUT9AQ45(B_c=mFU6IbaAe8!1*RjN1a)H*Za&bfg8t zo^-6R@Fb*cOI6FRlHd2EY5C}h)C-j9k3YigO@jhwbsN37O00p&H2O%gY3j-91js@W zSJX8A(jhiCv+Kg0`i^1zjDt=XKqA9qF%)!I{1xN7V+NALJEw6&SwjQ(p=)f%3Ep3& z>4ciO)}2E4?ZN5hb78L)quku%n4i3Ur{>qhIQWc46>ALBS&DWopr8&85FfFy;dhez zH`JZ*d<$gmDg)L+|5XN~X<+t6U=ZLlKq&TanS$`xC?Jb~FXi42;XMFmYzyQO`oeVa zKCVgqcuJdCb5NUK>cLUWFChNc5EkD}c`y(lZsULOy9_ela}Yx2wUMA@csaN4=MI!V z|0N8gWIhhxma<6L1n7mj11GDI%dk|Q_|)Pw*lBuRl<`=0NtnLRVY`yZ4QHU$$;L29 zT(afz7)}_Wzdw3_1-hmS8)q{suK;22wfR+tE}7qj3G*O1LQsp{(4q;MTFQ&6NLR6Om@SU{DDLf(y?q>s~;N&vvG}(9(Y? zo(5tti{cu0T0z=ME1F6~_8G8Mut1L6`qP&u7r!AMlIQmL*|MZ*zT2)hdn~mssqwnf z%N|*~Fkmc7U?1S$W@Hwhi}7}xQxrN?Z_8dzL7C&V8b}{AP_jds*#{$#C7Ob^<%uL-K+WK^_w`CiU47|at+6OVrmK&7TUb?C?%C{XbyxLhroPE%_=M@_CDQ|T zV=!RRFLH`ps#)d*%!JlHQut3wPdDy<- ztZr=pP~;{?@^=S0(uQh|+^~U@sJwPL9Gn#8ESz-UY~F$cq?I(goGDR^m<71&0(SR4 zwoZ^I9RTS8k~Lrc!-3pr{?|saEwKROLyemKfV2M(U`$aVf0n_Z%P`^x(J9N!vsgpXwO_$gU@4BB{ z;d%IS_YsVS?)8)b?K_Hu@2HPsQ1UvOOvr2MyNQzEVGs;&%MF0w?a7MH+clnMPmm7e z>~^aLg#jf>5%gqlks~*!dN*F80el(_usC@|0A6>pZchpk85~YT0MG!Kx&xj#L10g0 z$08R_hw{V8G0gb?D$U8l9Wi#E#8NJ^QJW7`To;t4Hik6~%G$HtpE2uKE@jy)G#*|M zm*Uz-7R#eJZI5diwR?av3aVi3Ar}<{TNf~mL7?;li`(GI_GFA~H`AAAtrpucp}-c@ z3o1(vnckA5DMk0PK_=#xS@DmbX=BycI$X#>5r|~-ja+D|zAqKTEKWM?W9FC9+!Q=J za~G~d0_wuqmg{EJhp6g_56ucj1@1S`<*ohBW+4;h_WkG2h(=$jzW|R7BD9HsqV!aT zq!Nq)#Ofh{ebZr-Jz`>{r=)zgB@;AC0+1enB#;ew>}wqWXp=C_I-|!WdFEW=zu-D; z!{U_;Cr>I|h(|5{Nn&jC28}9%Ur!7I59YRK7Lc^hYd73CBU*^9nWDXobh8P3U6;ag zM~E?^*rJL=?M!0Ggz7+ac&Xz$MU+cC;WO`!qXxBSXQA2uC6o&^To6{j%k?ao5>nrj zVO}u4D8Tj17%^au%4PcNP_%JxHMx8ob{*iTkV<>nA zB=CKAk5Y(j>#x=4tj#i8YJmr;srM@kj^XI?0nd#&;Og_vM#8S|mp6Bl1EFgjg zGtYpmM*Ai;h}3Bt#4#U01R!o>GW~BaL4cUQgx2`oTp=tQtbvHp2KrKPn#f#+#I9aP z_A=KiC{iL$5*V@{y+D}75yr?}R|2)C|D-XpiUEV`;;I>Phq>Dw_Eb=^Sr2~j`>V;v z{7ikz6m8p)&r&OJGBeHD?Ap%g+up!dfCju*e>-}zPZM? z^tsI0yt;p$WZ85+*gAuvP2yEOu5bIe&g-o1@op=*CzBAlx6_Yis@CLaYZWM$+s+h# zlTX3`WLMe+hI+40mI^T=&Q7*1eF^LHT)z7ew0<@lRU`zQjsK5D4__xKe^Nn<{0>}nzO)P&sk;Q{>P-}B0Pu@3=}p{rsE^8d{Z2!R zn&t+>Rs2_VJWjr+bGC--T|&rt%81+O)NXKU-4n@(R+!n2BkY~5_P6f1iX!(p7x~ki z|NWq&<;d|IW7nUWu%oF?HM44e>ne-e4Vn%>525!yleuq& zyZ&ixo;)8PrM5X(ZQ0tZd2?J$qdN>b%iDhSL(WN3;XN%=bQ0(Lb8)!B)qt%dEwv^h z2D4`WX;%@qm=}43Ww74+#1t=7B{d)3S}w@QSM$cmyye@;=d%4fucoGD)6J5{Kq3Ex zqn^9cavism0^PU)(DKtd&~n_@?cZlBoB@p>3l5_#HpsD9ov5}Rr5T$72+AIC`Dt*k zphwdPlpFv8jcnd^BS`u(Seqmu!7li$3oIajAymJ(;yFlvLI!j-%7a^g6MU2P$NJ^+ z5CL$KR@Yqw8nuhA_YV9f^uvr&EdlN=?dkif**%PqD?#_>Sm7V8SG)VNj!cHo zrP>*u_N16WOz-W2!+jeT5!=ISBWSHb^6u^ECPpH}KeW{Ln?e0qFOd6y+XA6?BxUt6 z8q|FWQ0yrK*@Q<&PjymhMk->&2=}=K7VBvs$}ZO4R!`YI=mi3Kc03{vn$-oG*VSoz zgoGlzScSnJ)TiP~LO<@~(hudJg3YO#$;ave&8Tz-OzFg9NPSOLPL9YrZ$JZ*8SfqZ z82pDQ`whoWa@e@Ia^^6a!+?IyH%-NTRK5B~VDQsZx4Co_RAzk4 zL+8#ND*BC-jrP#2z0k<{fusyIJuyc#cI=Q#?EWXgM+#XmpcclZ@~=ea)h;F$Cf@Y& z*>_i%HD?X_9PherWi(P*Ga+m9i2OMH^#IG~yndmb7Zxi4=)5qW$v`?E0)Qd}Dlh_Z z41|IB**d`T0b>7!qvFl(JfI+%MnD}nj=<6-jQRUxbuAzZZgZ}apgX&m!eyIC`B__53^)lvKKChw;fZ_# zjD=r~l^cdl9YrRTN||7D3rD1V7#J~a9|L;SSx3~a{igZ8BOLH|ko7Se76UO39Kui+ z(R~ghjPj1oBnhFj;!s~8pH1%NvrYn?>Je^hOAOyyGN8W1w77fvANznnCX(4n<{gQl zXzuaVp}pr6rgXfecmifGViUd2fJevWly5y;~_5S%G`np;N9O&0uFQa~^`*eC^UfX8h(&3-I$ zQ`qrAq1&z{!@HYPHEj3X7vCIs)_SO3NSm05E`^{Ty$kL-8UuSgh@qn7$sal|K3ziP zXK7pGQnHio^FTXA1#7&i;^xB1YplTgBi>IG@h7udeo31Rs=aYTZs{gwv7Lx8VCBH zWqOm$`ok$&`i>~86!Ad2T1+zZLZcN~tFjvGFy58@0+^wx``YHjOpUES*v`8@%{OUr z>&}&l{x_5UQZ$vKiJl#VR$n)4av>gdQUv_rWhmTMKOY|@RcL2t#_C1Uh}-S{Z`{3Q zRF&QOFANAsN_TfjhagC&bR#K^fPhOtK%|>RcStwV0@97JkWgtsP}d>^MHV3_apuzJ z@!5O7`X)koJ&bhviFsS>sF^ zmAAPUOeD$C-Z(A2CnNEl`e1W<4S)+X)UC-xi!V_XE=tv%qJCXwE5UE~0EMv7t({c!{jk#jRj--HFHJ;dw9hiuTS= zzJ~4+fBo>weWuG|0h9sr%|3{5c%#dKt_`1W?>(v;2)|mIKBlX9deC7u@gbT?fR0l; zcUZ-&xBL934v>-_&6yswGz8oQkOhauDxYdg{fett3f!cdf&3_bD!s=ZMG==&BIc7l z#_ATSn?&Qej24$uC6?`6AC1V=pjt zXK~)Xr_Uvo2(zVmMhM>q6 zW=}}6g?g(TaNcjVpD_fSS`I}KPPEe7T5{Cm`UCnLr! z3>^as;ny@55R{J%?af2I)qL~t3>8i%BLL2OaD$ApOvgQTk?S6Qw&!f)+hf-Q?D&Lq z0#+rD4_XR&Yc$lhVVuLW)Vq(~hS2&q3a_fQ)2ps5A|LK)Fjn0O`Kec`%uaGhd3dGg z!OrNHI!^LttYP(>GT&RsS2NaXJw_!fnoo;+C8;ne2CTTdBs5+Z+UQ~f%LJzvK%v!~bn|o7)L5NgOjg>o z%B|D1PGHK<*{SBsoTx)NmG(J@ioQ~~vA5G|J9HTTGRXk3D$FM1fu()N+*z#%1dGGY zqT-8@dn%HFuI<>EjDZB*m9=LPc5p?p1{DIKERkXX%2P>TKYP(${_v3K ziG{^Gl#T7XFv#~(db0(ZJdmhlRq&+ke3G*&5^U6NpcVze4R0M>XL0b-&?vrnULJd* z*7m6Av`oue9cc}ZI?E2y`zGJJXr$TNXUYkJf%D%?)*y4|bno(F?=z}m0kLG)>3j}R zA6D?B|41AKs?`?yY~7@ItLeQe*&PoGpd~~d1iZl{XAc%`q+4kB;>fN=#0GvE$+2$p zSe9vOg+0<~9-^_hk-Hqh)8Rg~zfE58w$g-oqXzNLF3nl%#)ta1m(21j@D(T99ZGEy zahH!qg2d10sHrp7O8g;Xo}T`A)y&hQlT5nar3HiJQUuWYY}S4nw&$0Eif?Sq7GNtOH@0La( zRftz`T|An!30vKop&@z+& zWHmk9}P;T%B9)M`fC3iN#SOoTN(@f zwQ@RE!b%$+vpLL>nDzy|(KeJ68q|=-6CV}xV}481`RwgYqH!P*oigER1$Myf-})9V zIAyxrFooK|rui?0az#6kT5FX=!zs10J4hW{zmJf~i67p%Mv$v5+wfZ{`vV(Qfd=UO zj@`*-_=h?JZS}vq=CiRy}`7((q=i+RIf@e9K63~k%7r>~I z<|D-X9U|Sw4_{NR!3x7?6dyeOz6G6?sEGVW*~s6~8u%rONlxU+f-=b zNXR5>ISSao&lma=<7r$()IuR3Z|7G}{>uW;3IMWPnbpr_D~cj4`9JQfy4H}ev_pT{ z1i@8P8}jq-d*gSAgXE)I(9}ak!|GZnaAUFjf@6S%0QLVR*KYVf_~7>#aT5atHUp0z zsgd80?|Thu)-3&s9*9m9e+$H-M(jg0k}fmM`Q9p|7;toK-WRd;qS7dVALh$Xes(2I!AAXgUzxF|yClmt>E0TSpP#b|gTSD5ga$CdgaBt0~ zL?0L{V3l<%mU!T#%*Wu4?ds}%--swI5LA6=v zeK|Y$h!kRZu+rU1Cqep_p+lu5`0^s)P5Dck{n^^0W~BP=S&Id=_5~W1l6oGkQ}o{w zej{+e&pUo{W_q-j=aaOid#5BDzmugMO*c@qc$PdJL8)B!UH~W6!dqC6h8epiC)l)D z_|MYQ5}rr};-4?ss-yM6acRfQ$EtgEmp|S+o=Zw-_1+pe5(4fiMsRXC?~cS% z5z$LF0!$dy7>@!3i=w5Kpdp3U>FPhr9PAlCvg%h1+|Gv{XI%!Dw@S{-JqU<%gXN05 zMa}lB*AvN78?%Xj4o&1GAc20))iR*5%5<)1H>_I;82R<7?0)mM@aUO2E}riU!mpbX zXlFdvk8{Jj>AW>ld&XY-0EK*4}+W)^T+3FeUDCq$6M#; zVf@}x0Kh+tk{>fBoBCxAVBvBW4-Lf>@&#Wv5HVyu1mRDBZHSFXHTcZyz?>SoPpO<7 z$7W2PT**O78-HS5ss&EQStx~pnyZ?k zI?>azT!+m8mUg@=9PMJf`2da|5w#n}Nl@X@xQ-Y{ED%o#>uc52K=SIdn=<>pMfte0Sdd)C7v zjLd%jFH-l3y2>ajc9S4)1rKyZtVq;V<5Ev`n3b4nM*^l>rEKh0N@L0j%+WY~8IWs= z4cippi$k3f*{;BD6YzMqy=nE=3Alu5%i`5_={YOBWgWk~x&z^vjcArd|!*RMmnFh-TaSPn9Rs_~NY@WmHyv z>{VW>=!+m0s-P3XSI9A%`!BcqwKqp-vq$6ds3-PZa$c}orUSZt>(BjE8+hC||GDwA zC2_HFD-IlYrhhEv<+s5xjMCry-qZhQ4xlB4Mf(+AhQ-aEW|QMj`123PM(^N=R^Xp~ zA$c3<-oVy_&HqOn1^z8BmScxwrT+~%Lr-1OdpkEa=Sk-5*2 zwxQRV=nC3_4+L<9AM%$8neWaNDOmWVxj(A%1#yp0pLL`y*wV=loV$6Sx+XEn1^v8` z+$z2E)S)&kVSN1GFCiAdEACLB%vo%}9+h~{)l_WzFiKD33oVwjZTmtip_?15PB!*y zRbV0QceB+VLB=y}4>>HjAk(i_{ZbhMBZn0u;qJga9~!4!=qu);N(5!?4!ll> zhMY{?-fR10+c1r9D6V8lataE(`r0C3s~!Om=-DDIHPD5oo&iXB z;y-Vv6%rr3PWR>P&@=c;pJlsWfV@nAR?z+Jbj(V|>+miz4Dve*DV&gUxlM7D9U6coz%BQLpQ5b2_Kiz2D({c`d2Xv8LthHLV==dq~idY}o~ zT+SPlHg3ByMi)qmsBWQD_`;pp$x=T0ta1V=w)_3^{KQ7Q1<0p@V}e{g0osOYgt_|< z%k*pb>uoP;5C^>3OVX#!cvjXvBMhVzlwWBScqcjX@aY6iUezN+ecc+A{8jvrXZoaV z^Q3^9?Ee+T+TLx^=<_t^nr;w-9c~S~)3D(q{**Y;o(GW=G~OL!Oa=0D0GchcCKgg{l(|h+xvjpHizN@=D)mM_x>4Xi8dZ&W)<;(1wkE~!n2d+Mn>191z^m~7& z^Wt0lCf`Ok;l|?lxx~xch>;zI$mCfd|t*$bRl81`+dph zm;Li}XN!D|@AMd#mPt0o*{*DQHD?UC7+p!pRhLdhu?C_NDb%^Fx)T!WQ`uqbiwV^b zEHcV>Y-h{o>#r)6lB=>--vHma-KfZkID^D#>$|kN2z@WcSddJH``V&c1aHFBhGLW@Y?{*`eMd}^(M6xz&DedVM2$>?nrZD^* zT)y2XtOXmLk3J+WnR|imPSA4OVG4X#j_10xrAW7!LVZ}W&2$x$GndVL{z@##z-d2o zzMdXVN_2$>8g$C$DtCi=iwpU}DFB@^C%FR-WU!E-=mP|?a6cTq>dzTzPL`@N=7N(* zbEHv?4Z4r0kk45+Rli1S+_-6k9PA2#flAulWPUt6R}i%Q##9I-2yVZvtQ>86*$Xg9 z)N+sL-?|7*{Ft2ZOwm%q(01DTM< zx}vKZPf$)(trAE_h9_3oqHYz9MRZ^T@z2yiHVk%$m&82~SJr$4p`mR(^F~~gFhi8< zj3srxJ&Ul=BMfbBa_r$5@Yvn{%5n}>Y%^oFKX5b1>#(|x$Z$&+dD(C7Cms2US~)X* zIyT=Y95Flt{lFfjF0Rmnh)wTqtd}uHKg+GZdqrD4!GKgdot7qHV~|J$=KpOtD!awn z&i$;aLG>|$*}6H<-7fm)TABNm#>ZigdckuIAhJ`XKqTui&OlV}F5u>V3CwWCR3#_&) zQ-)$@w!f1G;*5TFXa{de&r7*&#bOga`116R>{T3FdD-ImN6vvjkS9 zzWN15GFnG&J|_X}iN}+UqtRzRSFMCRUpEt0PkKhR<^_2lVVqU3UNJHbJDO-zY$x{sCtkkPFPE_P-B_O ztD7)6RvqgC8_S~i{fbF={T1ot246|e<+JK|p{Q9a^2xzlxcVIeDj{3}!s((j_~?jM zv?v+k$xa%tjRAD2gDgo{$Y2@ugUUIIODwD-U<6{WuC-5k0>%)a{A;t4$7Y?^+qJU5 z`S~bOuD7k?+l74fGvQC~9J4oaTfEMH?!04SdXV|!^F{HiRrq+;LVBU&hXFzR!!$nZ zeBr!p-axpq@qPx%uVD8s&^LZkp?8%~6W->

    x0JMcCBycu}69?sjCEqC(8+*O&QvEE?_kWWwM$cjB|AySkUETEld$f|E{FjH==C00& z!;aF;g9j0beUOMeyhq#9_V>_m(~{&jg#%;IhgRh89`{2u$AEtXVOq)tnQjJeD7C(bsX=d`-^RmM*LW^K%ttsNaTZ}q<_|4u$~F53<+ zT8kR%&^1DfQ;hE9`~?3*{$ig{e?WbM)!B6waW;05vyh3 zbY~!Z%BCF1Eh{WK6o^VmKK=kF6-R~e1-dkbTb%`3<%&;dbd*=WIKhk9sH^(eF84S1 z#~{nk;DgE{A%NW2z635M>Fvw7|5r>CQ>7tb6kOB<|9_>Nu^w737X z>W84v=GxByqLIUK5UvRX2~dT>PiN&OaS4- zWp{>fPnD*8CMmm%sx3;N@XltPKIe0ml{E(pZ!p73F)x_%uP2z?Mi!sx5f^`=PXBR_ z=%KAa(nBHAqtULfH8_>_v;#FYM$gs5aID<5wX_z4`H{g@HBgb9{QA*<^$>83k-DF) z>4x&6NXbaDBtDRs|M>BvVC(sQbx=mhb zxBnz0E7XZtTA|{+o)WGKSfT>X z0&W1~X6ZppR&?2HK+bj_p!GUDp*;+rGgeEY^EogihaCN`@MJ%BHs(tZ3 zUWGcWB=V{g;-NrG_0~mFog}fZ5_J2H!R-@3J_q;}C$iR<{n3bs$Q$y&rgrWQ?u0JcE5@ile1<5_N;+*a)nl*CkMte`eSH~eX}Wr{SlHN& z4`w9%ep(>2ParJPEGs_|6jz)j_)BX@)uTH4(kMcHdIXsqMK$3kZX!d8x?Ky_ynx)_ zPX6I?Bty5iw*h#vu{6SRx%Y|L#J2z0(^G2Ju9SaR91j>lo%(OGIYPC+$vcp2y?5#i z?boc9yMI|NNK!~LG*4YeN0PYd=%hvQCCL)kUugzl#*{XCM4r{hMtHm%x&0WN4Q1;b zg4S)qe@H9;FmY-N0X1kT8ir(8xS`+8UM}dy@e~Cc5=bj&Rc)Lj8ypE8vXvHea5~3> zy}a}R0ZfEuBf=FzLzUe?0r1Z{7io1K;Y4V9diswnzig+<8vqkVAP{_^fJ$`TlouaY z-*PnP0D)9>;j7lP7v$g*u3Y%@WpMv8lhP5hVWSHzPa2&d4=)ZUejgmX7E_F-2bv{h zDn%9xD+&;s41SXbY!Q0C+CG??t@j@v7?gb2U3Ue0Uq3%bJG)uWPmHImv^Z`HA8t>g6X3E|h5mhG@|U{0;a-LC zfAdRi|7=HXXgC3QWM(Lx&lTQA-M)K!U72?` z`oBoK=@IcjY2XVA#d8NCp<&6{hn=7fcSYAYcVSTxkQ_W=okyt!Du~8PmKMB=!*|rTgD@MQ9#`#EEwEAsm>m-bpW?IF`KsVHJt|wZ{ z^KnDNb3z*;DHKxIohAIowkT11$qSQQeKlk}C)m-lHi8C}p6@Un+?qc^Z%F?ru? zRMnl3>}k+ibHJY_Tq3Y#YvkhQ&Ivj))6-tee=f*(gZLbHZ~Wq^1S!1K6MSJOq3w|O z#prmTJ1;QKyE8wilIGxO+R5w47pbZ#T^|C% za}`UE1`cnSRHUJTFjM>#1K)>2@qAcNHVii{r18r6Bti`&?0EWoP;eH>l+%mS-{3{h zzF|XswYj;eU5N>X3KmVe%37Q&}HK(7GOk1Z$PF2h_mV7pK0S1{_psgo^9`18T8&N^brbh+AR~LO*JMG9M1)qr`17Ov^qos*m z45bxPWqjCYwPJ)hTSPyp@`6*>y`%@P|vqGf~^lTP7y$Bqpv~Tt3f?K1{`;TL? zaoQeAX^TD!uE*^Bt2|*qjE#(tp9<=p?|ck2{0K4xvoka0!?JO$vq>X-N^I)-hqx&) z*^;CXCl1Su(obE?Ys^mV+RC(QQi}4}ifTf(0zhYTuc*OTzaJ7U>M5brOD4GMe;HeD|B3rN8_zvQoY-hh`-Bi2RPTh zIycZzgO`}p+;HOYY|9f#G`imIIU-h4QcXm|9`RTsvn+MwY)4MZc_jX~E80$P_$7=J z4~V0M0>E|;547h7g4|Mh1<%NaYC@a4GK*mfo|MUkuRkZSP{0kPwfQ>#G#IFoh}g9d zoM-9R^5x0$p3L~_cR!o!>&4WEkrzCmWb&0TH}l|2rM!8oBfpRueRUEegdPC3?}Id@ zmwg%bpj&RZ)h_U$1;>*g2yFbWF26LAs_-?|zfIhU7rIK~ZG1(b^1|!+&A9O+oNOFo z@5QPME#s$m71B3|_d21vtM%Rx(+E|lz3J;Rxh@;PRxVxvr~<(w`n*M};6E%Ya> zDM#zUHRF4y@d~`!sn#1jLHYJ7F<7Ga+XS}X;dlxQzl8p7wQ_cbm{NG*FFsNDaN|HS z^3tV^S?ZSOV~`{{U&NM6Fg%HuCp+hS9;k4PclL|=*(KlC$Tga{K=M#<@}+AJLlQk` zEi_PaF(@K+MD?%E63j}w+Oz}3USqyN?mx8@`186c{H!?v66H|m+k-tr7h!VdXv{FB z8$PNe2?8wERp{76JvZ4Y6Q$WnB!ApNq_Ba`FdPyIK3Gpb$$qtz$FifWZ6?G*L#5hc zs|h{cnGUmol?jsmAdR1u4m{ok`R36pwD1}LIRRD7*}?-g98YG^6exf2sb($Z?+4)A z?}4~2t;E|DDt_sKGv*Z6hh)z8v4`y3(8I)eu1LE9G5zT?el&FB^J4`8Df`wuuWlKP=L3!AE7SZk zldi`RpgcQ}vwtm6t!*@G_9=zm!|A!Q`;vWIGf!DbHA~>1S)B_4URF=q++G0kX_Hu6&sqapN z5whGEQf9?cRu`P3VPrSuWVar3?@O|_iTfPi>?6f`i+wvao`5D>f?B>PS_wrM$lJSQ zn1NK+#@1GZ4YBe%b@>$f;7;9!DPFijO;opD6sH}ej3lZX##tt<@=7%ggbs>gU;8V! zwzhx{v5~|w!{qA1@9M*fukSbXjZKh-LQ-+Tv!AS|^#Y}mu*TIy?_=nTQlo>CWe ztn?Qd5#dbAkQ=};2nxiKVO}J>hioCups?W%tzN5-OU-UQBE&-t7zh-kzlz-o0Xd31 zM*EW62wF2t%ej%jk!E5aT1M61m8hP{X864IHfFY-Wj}#OfhT4iXJa$;Ohd$l@BJZ; zybmbYgoa0^cLOKdIzdRb;Umg4cAC05W$pmbUYc=2Bb`WISmYa#jJJA*)wQ-7+DOpL z4$}k*ULANe4kTSD;F^OLvcGc=sfHNXh?2<;FIZ>W9N}|1eWMUykfxTWL_zIRJL8-` z(RDAPfIP?|Wqc^Lo40#ue9x%lU)tt#M*KHLEq|rT(CDJsvVjMa$CY#Ni*-M#o$Xtd zx57wt-EA@je^)9nu^2ttJr?_Y+7o8@Rlf2wF|onN?5^M7;PbEWi@ zP^J(pN<=~3n;>eo%l(ppfgH+ALU}2aQq(j0A#xU$#JsaevigU3R76?$xi<10`qdwN zZh|vh<>{W3Yb*UU!x;w_I7c35zfzoF_Rb4mD}L$0Lh*bJmsUtXZR`$GK+gvE!ml^< zGhUVGh`DR>BiQuhSy1|*5u>VApKdS5S9v;^kikS(h!_9Z+S&$e4G!dAstfu~<~C+U z{5$G*N`}PC>*B=)Xk2lD$gKOQ%6&}d&&PiB(iD}DzFch$+MWLXDgNqNNgeMf|GC<& zy)1uB*(vbw<5kl$OKI37eBfC3auKdL>AawB0#N*o64J}K7!(x#kLpSahWzq=L%cqN z8x^92n%(BN@(4Bc4qpOf`du0Xq5P^-_WNF}Yxq?}ESMXXpbPZ*Fn!nW^wY0`HS;8* zU&d~AtgaTy4XRKNk@|ev$h{94p24ZbsiiRT0C08FwQozQy1jO|B-kWb7s-mjn!lGH zzgJd2_1{~CKN6ciksEnK@Vv`hf|a13__?kx@a&1+ycVKo#Ky=1XFK-2jeG|yw_AeH^;*Sf zX%iVEb9pGDZA;v#wLUM{V~Xnt!b2N`ip2#a#8r^u{%b>>VL73+EaoZKCTn+c;^LFS zM4w$Bhj}v(y}Jr#dd~J{%G%1lLB5vv!TC+V2)NrENRrx3c6^aCvRSW~6_2&71`hC{ zq5=}M(qQra{EMqop~gYB5s`^=`Z$@*v|l`^v+>|5CbJWAz!oCu4LeEqcj210nt{+v42W zm;=2CApt%CNJ9^pt3s^5Po-#e%RAl_a!b;gS>`eP_A69e(;27Eg#EbBH6S-YA9>OL zCN^yKEQ}e~Gn=ewOADL4@cN3EjSXCSAzHQK>mzhjWbl{freL7;ubm9KkY+r12+YiY z(CP)IxfCw1a@Le(Dz1r)pAQM}ar@OF0^qa%k+?7E=y(Jp88W^^pY)YHPnO56H+m}9 z>Z#x)R7vLg$j`m@{Ni8%8-j##97~!(6SF%7nx^Q*FI^eg9nM)uMGgjR6lfy;S`vX- zq<9ha3~}jafrwlQLQjA`s7i(Eo!`TcvJdYrfRlosPX22sLWQf)i*Rw}W-LaWnMFQU zmPL$hc_Apfy>YsaRqlg!{v9bb94;gSr?y%*_fpZz?0>qG?j2c zMf&0x{hi;$A+YBGdkhNQ5E^`GVE15Y&gQZ5k5grL`(^`oo280Uf)N0V)>@Aa19n+b z$KMwp+la_bF^0JpP1fmB%0Fe$`fg+=LA4>|62DZ+9UHnMkH-=0pfTN(J)<_YHKh}CbjpqpSED}N?J_2eRS z3GnYgK#y6w{+g9Q$Ve@3w;(;Sel;zXSR_CVN}vW_{OcY`T|P<|)&w-mlJE#~1~8dD z+}FKL9G)9-+(xiBh?@0Q>f>qhVPi#QKxL9F-EG(^N@1h^Re#*MK(KUlbhOf+x--+L zV;OwD2ka6isw`!0(kya!L@SXojQUn6^wyc&R3}9`f*n8oM0sHuSyT9-wx*`u%lhH# zq6X2@72{ElakBo;H@@vOfZ@Oh_u_{K0>d9rh_1cowQG_gaCG})I>yUW_jZxgY;}|z z|KNyp)Hy~S7|m8kYmib1MEyVK-#(%qaai`Z&pJeeCsFy5#bLig^cyp_$sUL=ttY{{5 z2Y#~XErhZ(Vqrgn&b&)1pK{ucC2r6Vo=fu)zW}qUMgnk-BdS^+$(N zg^2}xkCWseo6^IHQ4EF8PJ^^P@Z}gnK@e~?4y^)mS3W90^FIJ37%(dr^y(L&9mXG< z19`g5iE7mxOfRj7l$4pVo=hh_zK!~UYt<4*GF0@u zh>E}<7WUDn90qPq#W2A0YyjeG3=B1jL}-F^{s#=DM?OA_2K|*FnXkc0atkgS+6m|$ zK7-;DK%vh3_#2CvlJ@%6%E}7RBzztiNVZU;#2y61HE+P7xY}}*D=#bSxS|N}h43_Q zY`7?C^s0r;HUlWKGO2O{yqdT;S#S{vCQH1HNp!#hk=$h?)1j)#T76Gqd1=3_J+Ckk zDjFDEOT$HNP{EZ6c4m6K86sWxE*!~$4%?f7;BEmn%#u#_E$8)@+cS;T_gb3k>J0jb zc^XNgc$yD}HNCyPNpZy+oJY7khgirIH>q2XG41FJC)&fYeU*!6o44Nd1G5PgBLRwZm!gAltiS0paOV^Uj*dw4!Oy#%k+#{d*q-&LCGETPR2~tP z^h3lvxOPT|qnx{!%bY;~qu5~$);Z8Ww(dsWcz<L-^?LUAUMfePO*nI)xX6;p8Qi5DS&!{#wHUPHxoC-KY;z#osqMoDzj!-)$ zwftP(RP@(B9%t3>_wndL#sy7lP?UQIBS5+zVrx`$ zm_igVdr^w-R~rVdOtxx%9#&ePo2;3ty{)3R0ukbe`?ekg5mW@^G0sNhTFBk{siLQ{ zwzhV{DwuH}%NBTYRRK4dVbFGKPfdjZJcEP_T ze$9VVMk{;k&WxEy9=ftgFCv2%F*da=4`76hlP~pM|KU9e)I?uxHi{wuHP{|AsHiF^ zdR8&1nG1Q_rxTWK+Ws;S6fS{P4SS2&(=dOi4WDlU@sw37oZ7`KOa({9R1KESRI|p9) zPYe`ag_tLbaz!bVk})z`-ahI6vBcZlC6aQ=ck5*e^Vca8qX*xUXE)YmHscn3`u(1! zyx7p?EqhBRIurG+o8{L^H)zQcy3QYSRnlij9;t!u>fntAAH`R|JQl}m4ZN9D9-)rv z1*|5M)peO#BUaMM42A6Wddtv&ZJoo80<{fY6a{*Jjxz{LkT!`(7%SR4?bRzcH}~IE z$*Z3`=$mbw4z(-U3+~?zx~SXZs->ZeA`OSJcDI$WB9E=5Yk$urG2qjc37yHaTMB++ zlQzESkBH0*x1kYEb1_AFpx(S5^PBMTqpGl_81N$5Qd+QaGP`3i13UzPe0KyRZ)fjx zg+`1Zi%tm)5(nw^(jqD;FKMjL|ETxOGHy`AUFwGqet7st>s%oVmqp}scKtPsd(MH0 z9^UCo2$>H9{;1yY;pkTJhCr|86%<4yYI}|KLm?%X8syI-qqINMPYO;BfEogG-uVco zN8%0jciayTx%YkW=RUDm^GwUUJK-Pz4Y_+ABCD%JMLna>oY{}*WA$IU>aSWg=4@OF zZjSt%-@kUV`GtaRC(`ls=0A~l={h}4g{vFs+)7;Pv9r4~Gh_HHU2Nv8;)IfYUftT8 zjay&~EE(FeH-d`^cx@J8Gx=KsmTx1Vasob;s;a6H9jiJRUr+1{^l(D$2OydR;6~j= z)$-~%5oe>rNtB8Y#+(936!_@+0#Z4S=Pls`D7ZL~C`HcW)%5(NH~Vk1&pVc$F+cSO zHW&aM=?hP=18=0J*u=!IN1uPbiJ4|tfDO4Z$T!pv=FcWM5(MD)_3^oWCG}DDjRha6 z&ScAiY)~cA*nsx1MJKClX1`=wX1@IR0`ZxUUgACA82$61X`$`k;BP+z7u1DtP7Uwp zefPaO^Li>TLnmjoqPg;H4Ekzn7_^ncPhu6oxc1&9SRU62J{>s^>);MD--OAHRmm6< zosCRw`EHK$zAzn`pMTm(D4Cp`{Cd+2#i+va9aYXoMj0 zFPEn5Ugb5VPk=DF@4hs^sgbso2C|XHGNoLNLb6T+r3NLV;^~YaSao5$@!7?Bv!c>N zkhl6Xgzw8|{&Zmn#?crbKHfs5m7IznA-FvW@% zs}*Hc?;Ykgj_-Hb?`Av9lKhp@#!mp{^2`Z1KZE z$}!&}O7X~|6yStKVnT8kEbP;daByY;!E-cE^-k|rf<8DjV*2>LS?F25i0z42)TO{% z-l+zwu#m1c5xN+=(+GX>>UHz>E&~1WA@CYAAy^p)kAWY@lZ_rZg)WH5LXd24r!57* z~ohK8V3EP7`pNI`0>bjJYdbhn_Q! z8*s{z%GIn@nDGFgtC3^AH89Z#E_!Q)EC(PDb<}o8;8lWbG;1v<+)K07hd;^--v)ZzDVVO1c3Ub95*_S z+DVcgUnKo2&H}Ss!_W{)9S0;b{de?jc^eNj8-ZJ+lH0L67QsVF7CYFjcH&Z0Oftim zWo4@5`}Wwn;%sgMG3Pm2PQ@`UXw471Q1p~|2^F zzFr4^@5}4f{bdw@=QsFC+v{}P_1FIma{fR2D&U)8UiCgqrQj=>?S?BbqE&lyeM71g zNR5w9Af2e~uJ5!s74M4DYF5zDUM#S_V*uZ|nJXf}EXqm-Bw4op>HJN?r`yQSxxP6` zmc))5fN?#rn)+iyuNXbDI6(wdP)N!n2qBPn=Kr4`pl{$FlqT7s9G)F})y>{`^UhjZTvMbnE-NozR2 zy=W7tgoorNI=KKM-0AC-*0tLs38P;{Lv1s@#?Ldf|JB2LH%}|YVVSMy%6Gdg&S+i3t8xjdoqc|67xl-ix784 z(p*qK(~Ql#sir^skt0g!6ge$j&d7O-uAId?(zztN+6=eUwS9BaS#nst)6=kfRr;dm+&i5`UqA8d^c(bK7DxBv2((d7Q~P`uQ5iN;bmr~q{?J|~lg3+%df8K? z>+j6M1gRpeqlbh>$VK4RY8ioTx>r%gdL{Ys z$C2%HE5Ws0tZ+?~Kq;qP_0eQ?&?JF-kyN9zOzLKaSG-KnvjyDT?vbvo-1?DLBb0{w z>l!EeO)F8Fx1FSMFMBv67Y$OeuzOf(QI|W?+RR)g!i%#Yg$#9KEI||Bk#x?E6|%j6 z1F=g=%-Gt1IJMih0cwN7qm(Cp5Pi1OX|NraoB+)k(1?|v~o zoBgwAjPKnR6UrL>q>Yv?yqyyY=@0bZ~@G0e7-P1A?=;fW|tuK%29~nU4P;jD#~CdSt|K( zWK~3g%C#Ij*iM!8lx!+I1*QWV73R@KlU6Bs88QWgVepoQ<|9|wBYF9qyuqmSAO&Td zPE}&Ap_Gk~u1+(J1Pe0fd`*e+@o#D~r3&e*BkW1LQgMKX&mcSY_-rV`Skc9*;h^(rR|ImFRrMND&EN zGfU94j28!~Y6Y^{LUz=0qDfcFCXPsiT0TqupJRatnPgYK75t8KZ?e{A)8QnI2&cc8 z(5B@Fep)|+pe6&>} z%7!*_)Ve?=Hn(`nA=;v;OHMUGn38;>RjS+HuH83AEq;I%5^k|!PBJd*AfHM?Vu`7d zK%49zQaH4YVI1q8B1pAHl~GXn3G~RZt0WkARV||k6GI)&Gwd?5At0#tfg@7IoE|wx za7{~g0#ruk8t{7f_o{pAg>U`bfk}p?=Bo3a+xwb};ly2GKj*gD92?>v!OfW95OUI) z!r!n!17!R+oGC)*q(sJC`jutf%-c#kg$xmOeNnr#OIe!wsmbBHJGUhxX0*#k8BqdqUtHX$DlO=yPFR^PC+RjIxhgSX=(D*fddXeb z0_3PSH?a!DzybV~$RW5PQ$>=1Yb8^-Ig6)nI`FwDLp?DYr+|zbuYz1U$zC((?kMM) z1!?K zz>KHQbp)HD8E-GR{))R7u&dWm|C|Fa|M<^Yi@g2y2BK!!_LSasObVB8Duv%}Y$egq z79xVHu-SAV$4LDe(&H5O63o+~dncALG? zBfZgAD#8#B?f%#jJx&;^K4_qGwNaOImQ!QpK2wzMK>MHJ30X$#*;)1I=x9o+$>*!# zrQY6NTyzV*lC=N$dQwHjUsiHwaxCR2NZ;Oqf`U$2lC~AMXu<#SX>`B|kcjB$@bK_h z9wn8;QrDtSTxHkw8F)}KUdM_FLup>+K&gb3abcr1MJ&-VGpm;E$7BAxGeFuPRy=#U zl$t7VEN6Aq{jya60;w!33tQV*U#F#|g>9o!w>|>lDKH-WQ-%izH;%Uv4_{NX&a3tP z;_%g($K})ZE3?zBajUC!opp3{^x7b;TmS2?_~bS=-uUizboF6v^Xe?W-{al)c2J;! zMpoi~gk=$2xw9RPCMI93E{&#lcYDOI-fSR#_z@Ej$oq6Jdq)0e>$`H|GP6%-eqDac zuNFA_P5s+Bg>z>P&FW&>Zx%K-!Q`PJas1_cU39wY3=;8H0j?Iy*b{`2RI0 zz|mT{;H&TS?s&@Y~GCrAkaJ3m$Ir9isEWLjwr`Bet;RH;&;^P%v$HvC5 z27}LXs-GS%U09u!{1$|sf2t0qj45Bv)GTlHecYL1B6dc}^xFF678d_|V54KtWsMgif`5#utC6TRW@7LlushOJ(l8A3u zCB55vv+p5Td3Cg+EqZfN-|7yy_L2yZ%WVYwPt9fDA@uPXyE%Ekl2E9DV^l|S}90q z&i*g$LKz1a)HUiNylOs*TVM*gN5{xWnJzxGurM(*Gcq?fHZ_GRH8wszKHa?W%w2s%T09fR5_uK`?DRK&UJArDf6NfiIQ9xyPxHZQ(&{|Meon$Nz6aMopZ zRB%$TZ+KfTCMhm1A$IvaQWM}BiNI$15~wTvS5i#oftxN;sn*ogR9cGk?o-q!|7WX( z$Rmw8t1Wzg#8W@L&*TU`Nla2wTtZ@064=*LQc-~Q^}}PX`4I6V8+hyecg>#&3_C9` zFCU+SPGX&_PE0Gn^(-+QAN4f86J!|#>dg*WY2O%0 za!|N{@1NHX8A%U>hjXo{|HB8{t4lw+lK8rfO_xm<7Z>20&Ck#GC952`E?!*@Hd+RE z@+BhO1E=5lAq%BsW@pE9IMuhew*wH*hz*=`$$y#g;Ao)H)c|IfH?|*dTUE6by)AwV zpuRV6%4{|4vw*Jh280(PC@3Yj-J$*BLDX!Ls{MO_X8|5zI1qJt=oTC4X67ngG ze7q)D_n=NJE-tf8q5mN zk-lJ-y968H!+syXu0?`r>wah(5cM8UyH*3ou{GfEA9xoFd@~?19xzV_T% z5ry8@{lN*90yvwR7(TynNS8??!I=aOry;%d^>x*FhR`MCZi%4y+t}k7_u3@^CY0U>_{z>hj)`4kg?) zZc(_uJf%K`EO-c(ufWY110OoO(0`?IC=^sRu}N9%FL8H@aE74`#A{0Fqjjt?O7n+@ z2qaNsVV5#KfYZ!*)p0ub=|&PH8~%VWt9)B>c&i)EmtZMtluT@q5to{mP$M?Ury&VV z{mvZTR!#g!{fQ!RYW!Ds5h9(7x9Eu??p@A3sMHjOU^4(;cYu8RY)#gNV-x>eXua~2 zMW%uM7J{hF`PtdglL$I08XKwE;{Nn*^iRw>y9_6K9kEyf-5vGnJ`g^P`skAo%Z4(r zk${&IpN+d+I)fWd|7uW!G~GyI*$T}|LDVVKCX_>uq6f_pm!16_or*I%!CRlDW1nAS zJ(2gWPi^yA^F?vEoSLGq!**B-rcDs8<7m7N0>dF3Q&fdI66G{M6XOnwI@u75%8#)X z7V7;C2@-5HP^3peB2nhu5}mp{E^GB9h+I+78T6L4y$o3u~^pp=whjoB1Rph$2xJ zG`O{qWB$v8y$S4hg@F;IFJjx5;iK_Fwj?hM%kk<;$w(X{isZ%grR{B~+)qqX!3yG7 zzlZN2CEsWuNJjYu(%o(b&yvJPZ4v zgzNPwBaPwx8rdTIA)AWCsc{jDHLmo$At@T3g585n9=wSh5xP~D+Q_HELPL zHWDeG>)hP@`Q1Q6h32zyKc>=#*TDO>KHH5C054T9Xd!Yk{d>L=jfP&3Sja~z8$gjDU?NVsN zc$>W0g}hFyt`se4(K;S|s3j!*yF9~lo+=P?eEVkORCalJ`2kqCFypW|JbXx^{xEkO zY+4Fr6smj_jQkdKQ+ElhE62yMiiD#DqK7u-=E0Wk`PO_ZiQoe z;G9|NEp|B={vwv3<_*i1RhV3J!^5MUcV=9-D$|FzLo+{@vsZeu5MfKZ*xI6nX@oS9 z1#z;#6v4Il=OLWd4{^&q^u)6Zf69~d8V5FU=H=Gpx!&scOl~>iW~ZvEd8WUDOhMqU z-U$7sw0H`~I<1zk6Dv-f->uNh1yf)5TQRYu8aoYJmEzb`CLfTn;v!o}IlT~E5mIIO zl%5N7iJb85ba?(iEQ)*c17p4pcpZ!hO~(GM%?8`o+|(ER!!X=fJ8N zq#PuXNk_J~$Xf~d*Xw)fZ~FD0$N>4b+W#w(s-VTlZu}pTDuxH1?_CkkY6SL`ujoBN P0e{q$?LE&cL?qT2(BUcFu22@!QI_`kl-%C-C=NdhhcCzljr?E z?^*YLIP0u+zudJpYfsm%-CbQ>UERBXRRk+3NMfNAq9Y(6U`b1fDI*}f3`RhBA%Thv zr(ErJc*AdKHd31Q2ng8SfBz8U8L)}qL=*>Ud2y6Y6cS`a>^j#o`hQ5`8V(|k4rbPN z2*u^YQg9Nc1DqsgY;R;|ZsTBX4Mcd0MnMUuqyMFgTHCnVnVXt9Ae7<^^TMgv|4{9W z4ga!|JD6J;BXC^fpuwM@{e7ZhZQ|f;XlIO|YxDe<9pj(M&Fzff353&7{`0=0oslsD?Ah<|Up7%|D=TB51H#pCLOYy>{FhDD+yP*W zP;@d$gMdJeAT1`M>XLSp?&|V=W~O1)UKCTsSIe(|%Z5!g*IdLe?(8KqxhMv=(m6O2 zH|`Y@lBjmLD8riYdlcN8uo!QVs1iprBqT~))K@4`vvXNgRAMG?#3d-uem*~OcL_KT zV^O`bZ5^}E*v&9Mt%c~hr?-yIyX%+b<%vP^;?_sMF z`s0iwa>Wx@g2$D1#%Zsn?P#$+5|2p>_x<~s=^Rv3jwVI9RV)Zj$Og`@ zK*r|=Cm`Kaj^e6%LR=g!5z(UX1@aH3NS)7^E6+aW&lSRTo3btH87V<}mfDIzcklf( z(Zh+UNDcqQovuX;Nd;GuJx2siMX+&$DO(9yukU_)J%ivfb}u`x$~QY5AK30X^QSpQ zCGto7VrA%R9)@lI$QTvWelZ(Bjwz4P^%_q?LxbqVqXo;EvsQ}Y_wlkFs5Q(Rmi#P3 zCwg78C8WZ4elL@3>J4*IR_BZJ?98u<61WQC z64-CLY|OCF_Sg3Nx;i_#wRJ3Ybck~$!hf7BHHHy!m6Q7Xz{f5_A{#y20-ePjtp^m= zpI@)mZEmjbP9|1OiB#B2iaK45Az%mktvdJzgF$QME)}D$1Ed9>>)zNBXN&9~k;yRw zok&^F19T!jv&$m^?Xgj)bo--iPrf9yR)=?2E+#|Ax5LVzFa6a)SW+5(3nQ=X)MoAU zWBl5mukoFG>H}^fN|P!wncPi@g5O7zx@C3Ba#=c$yWIhQ99an>*xK4IxgC}z=oc$y zC1p0ouL8r?x^8XN1dUIR3=B0jP+_m>3s;$kR&JxcXljM;4h*G9oeRn8%KNv|v&7gVGSH*$Y?NR@r=yMeTuE0vav?vp zNc{nI1_^Crru*5JLe`<}j%>pg?ki_OOqA=&qdhhWq9K~xnF<%G9oiKWd}Uw+GObDw zCl%^0I(A@}$fgxx%8oG99y@YVQuA|T*lckxrz_d^PUEEKQdCnY(y6Cq+H(R@KK5Yi z)w22NE(IG&rv0D#h6ZkBWo4J!?Zo1uBGg;KmLdFApZG|z&MLoBEc!&flR$L9b;8MJ zz`#AN^U*E^%Ppi0Ff}oB|9CJ;$#hy~ka+(zt(yP<>be~cN1e8ME*Ye?ueat(q|aSh zT`ZrifKvH0E}CIm-+|h0q{g2QKxOhkcMw)itkOZftnA5s&Y)VN#0o>C?QxV8D0lv_ zp_~^wSxi?gxqMTJCIs6l_f>O15v8tWM?~;u?ew?`PkLw9tJtk?V zKR5^Z-K(8AlhqHI*QuO7gk1_89c(|6@}Aek>Si?6?w((O*hdf%50-Qj5ZquZGLaWe zvoY?-HU6EsK%uu{ID&m{`u)$2rN-JpZ9SOp^g*}A*kpplDa-GVHtO9eZ%@IAlYO}g z%-iKIfsy*`$35-9mgAw{-@q&Ht_AE%j(2G-F-VqJ*S?;NmuMbJ(g;3HXlI_2xG+ke z%l8!T7+#kJw7WE7r*a%aw;wsvldYVEaPrk`R)Hw?crF5wFA~5^*O+L#p{Ef|j~(vK z{09_KnM_`%+FC3{J}lS-eFBfUz~_{B>nx}55Ij;+1q%y$6l~%(xCh3%6%0fUBOdUy z7d(UcR4fhEvb1(vf8N%Xl>k36($?$7PK2nHg)td1VN3F0+|_?H`t#yWyN{TA)}*1r zawa6KwytF`+)}$X=Q|j)o|v>xd%{bk@%YAI=X2nnGOdZ{Xxo~m9X&zT>ybl`I=fkB z-{{R=))?_prfXj7v5MyxPUd@cI&I!hPL0IagC8#IFV4qBo{*cXPj(e~`dJcdnCkfzF=zjxFR}qPtffWxTLr^=eGZ0W(LeYtRdO z%4;FHW|YWHw+j(c*>7+TvS z$y#NEMOKbMtxlw)+nKDg#cX-2K4Yev6LgOL8`7rJYY8x{(AoeihK~f zJ)>PPqbzG4-PB`X8oMw{>6+BORj&>6m~JUVvbQ_Bg?w%(%BM&*1r?UXDshhZ6o|8e zq?i<2EDs$LPd0;Dv_4-#u(clp)l5lwTPv6%COt35inl+hppbs?QtX|Y0X}Z&gbW#y z3iUb`$ZzX(_OmbyXzX^pUiE27!$``iUCT}5zIbxs=_3oz3vBeVBx>KTaTXh4+JP|b z8zT4T-|t!1Q&gwB?K)c$Etj_e223^=B8da{tfw-U6$B5|x(upY-M4M|D?|S1&jGfV ztpyw`;^#B<9;XXu+BS0Wi%B-)9Vzzyj8zJ=wEN!1`@BT?;(i5)Q+CvAuPX{5g=-Y; zKzkW<-njC|vAV8*pK|j z8mix^+3HFoboNB5(yZ2N=k5*+)^oG1*=|gOk4vr}nsblsLoqh!;7{agy+=ww0o_U2 z^kc#d>5H3rxJMyw2O~K&dvEe6^me=7N#ZO|Pm~`lbar(~%gP$vUmb7l>;&w+^olx4`+Lv9zNV^Yx-^cxmt5F$Rl;ty6wxmRYGep)_&LiW@9m1+FvP{Be5DYAVVGgIwd7)Y}5rnfx6$BLvkJKZYz;k=9~mW1N&S-^2z!{x9$gj zveh{wEurCeX&q@IIJ00c`c#1YZw@=;lphbPgJz&aPrhNmh>cFZdva4HPvf;NVEHZE z$BGOXj|Bc7j*@CqbtjaX=0a1E&lQ zl(#4Z>3KJ_5{{QE&bx)?*lw8SvKB42)|nWtjk$bGkqYr;u_SC8%8LR_$!7a174G0A z(%bYl1>!@e1%O?lq4mlY*o!r2fAWPOznQLzo(7gEbN4pPyR3S&#qq!L^c~!5$HYA$ZIcB z2*LHfo!(v@1DI^k5T&x! zjL~haA8V6*fIcMcsCgpQYK|b*ac-S6vW}u0>bTcbOt$8M%&wQ$>zYvijJeedReZ3x zYg{{~pDz3TJIbgpB04RNctgOuOGIw<9e(2emCr54di=f3{s)ci@kIRwGXk?vn1W*Cpnbt-_l>@m zHM@qXOy1~uS*TT&%L3^uoTLl3J`oxH<=MM}aic3`XV-riRqMl8i(BqwaE#(aF+Ek> z@bw#sxd)+|Qs|yWmsKqWQzENzq_h2~@_wXscFh6u{w#Ihfcubwx9V^K3d&FH7admL zxp`EE+ez~9sF=9#aZtm)JG}Ort|*v47*pHjT<*P;&+fac2(Qb|p72vYVH?^?t+1RE zoAqi{d4BA~$f#O?`gX7cwj5UQ2eNLG=UWfc%|(5qPF+PSl|;FfHDxDeKx$7cU|IzNa~LKUp0dRWXTu}bu9A;%=D)WAdwGtmufh4C#&FW z*R9jck`j88krZ)Ax$gdIyH~&QH2)SWkKBC5=W@cV>|?Bt>J_vS=JBP>6E-IT9RkOc z#ldWYKMVBje8Wk)2u@=IkyY6`7?w#tkcmuvd>qPgU9R|LJM$@{k58Ytw>N~cNst3` zIR%2U0>L4GAqc-4y}G~Af|jzZIxyVY4B1iVf*d=Rdvtd!eVoI8&@o?5aEJjOuQBVD z18} zEjU;6%s~c$iXb-v(~;G|(%U*&z5o@I9qam7+0K2#{c-gVcXVvWu}jctwUf%BB-LL9 z9M=81z#)79EO?17!r~ zaC?g+!|yK4D1ElrBaV43pn7A5Idx`5UW+8nkt6?cj7Hmxm`4 zMos98azU``{s|SS(7G6du9eQ3v7)gt;3&GI711Li5NDcvVE^*cXOwD|W!|R%W+?ZB z{xr>)X0!J6p2npu5+on#Kbm1xYyU!kGvQl7H}|f_!)y zLGu8-pSYjTh9SB|jn8L}AfJcU$&9x|Xxs6mQ&rAe5M^AIu^k53n9QG^MrT1p_xas= zR*$a)+}6uleCsPUmvDgv3x4W#TWq~1d)bRoQ-yLqFb#?MUQ((hA~9w!&U}ou{m?Xp zm|2#I%xFQk6S=QAP>|Ox>es2MJ&~NJ->|o7bA$0!8+-{ueimaZLyk3oYDW@HEID$-XK7*^0-H}1ctMVofihGTr;5H zkpA2mPR1no;(u7)%)E846Fkzmo=X`Q9&};dCkP`D-*|vL%H0|lBklauBFuctlHBK~^gFk59&OrgK zS-UE{6(7!1GuO5T1l<~UU>geBsb}ZEQnV$k)03K-ytbwF_BM6Bl?Q8J?~bQ!LK|X7 z4msX<+!^ShS)>H&9gS&Tiz9j<6Q(2#FZ~!p7^P)w-Qa?D55&6h(WOgP@Evph3M9Ef zcM@VyY+I`jpMeCl45+D*f;-0RbS#sTX&%r&%pv{SdE@n?f4cYP5<^ zREJX8Zm;F>E|>TFl-H>9?0Je161z(iL=mP-+7pUHPTbEK%Mk%))&k> za{<#^Hi;1c9H2t&z|x8Uq6W~z*0C*9#yxl!kpG-9+rs;CFlMSt?M0m*t&T4HiQaF? zXS+QbveOp1MhD#nE2$x&j^*az!-X$3sf87&CaI*Uh7bn4UfapGe9po(A;~4XyXcWj z;Me80$1CjsY!VsxNzdcSu{}kFnb4c(qC)JUr^>FXw_|shIjOBQbbCL;X2;nF+e&lD zqfWj8g#udh-S+L*k@8MUemDl3F044dttmfa$oHbQ=QGa z8wj)N~QPDJbjvXMq zo4dHEdpS1J{M53b?rGHzmUBFqa4H9^@Nd@FW6fXbc1f||52Zr~OKa2)U+g^!3%M1P zH$}_WQLm(=J0-a;h{f#MhhydW*Xz&3JLxB&b{$I2I{(Eeb>e-Lpm9u`cXRFDXl{C z_!D4XZ*u`vt!0)VQ5}8swYriVfo(w=iS{@C&arcZ>p+={C=*7K?_a$b%6J{fAQ|d` za~FysoKnwV)HAsc5y4COAJU9KZDPa`NGtn?0!W{e)1x8 z^iJ;09}r!LUM0#Bxb>PpHdNV1Y`;LXJx)$h{R$V?jgayI(`d=2V;MQTMM2@WE~J^Q z=l-bfYe!8QWw}95+nY#Bzrhc*k$F(fXw@F&%^J(Ee0r7l=s3Da1(!m7bW$OgwLU9M zQkl-)iL*-efWnRn5Dcu+!WJ`a9?flvjVWu+ArRX7 zY^#`HQ@`#kY9Z7U=xSy9O2yLwZzL-3<>hlx%yfgw`8sT@YpP!2_Yb*OY#8CPhlbS| zdsYGfJv25U^kafIVF4G_g-hk$i@@fxjKGLpw7K^q{Nr7lA8-T>d{7#dGwCYD#qC2aA1 zQzV!6!_!m0KV-2-A|dVbpV(J~X73|i-na8B>q{9Q4~_r{Vt1?TfL|i#t8MZ-<|?Vm zJpQQF#8dJ7u-)T|&d89Hy4j;jkFWKHBFXGL3H^}IPvMnz+>p~98XUp?K@xzsTmBPx zVf3VIt<(ZVs%F+RFpiPWxO7N8ov<3182dB4)fiVQFVH$6Bw~e{Rva07vKMGnV7v5Q zC-T$W=%=xKs`vUt7r#GzV3{u8id56xv^4cSdn>9UQ(S=em7A+SRkzdVL%oqzI>~1^ z+}4|YS@uQZEfYxUFD9q(QgS)*FILy7=)JKVruTxbJptj{KTiUy4H}C70&i*P@ej6n z?%bThZWaL4u0Q{Pb*KTDT<`x2;xYdG59>du-~R!ln>aeGXb1j3(Lc=wiT|R5roDAm zi#FWE+{D=I@}g7hhiQLXSx@^)CvIiM1U~{G=5xX%VEPZhxF&05Wz}K-h6>%+W;8pl zit|4p;-5r=$4`GDMQ)mC@_)MWisJL1JDLCRef$?c^zwzpQc1o0-(C2>FZkmY6>AKI z*6YZ}6=ZXeb?4X>71M51=b&2*hssp%7n_?2RMS~~)$|%1PG$?Fl#G~mU5=)dOky(~ zC5YM^w)a>x^{6{`Q3rVOy5utrqzqk0gF7znO5zcaUx+FB*E#&w`?` z)n$LM-x><>vWz=T9Q$S_6wf6sMC!msI&8Ar+s0unJKPc6@^tzLi`|2*5}H56?4lpG zJ(c!mV(0SOJu*$*xJb$`Uqcd8#*&?MSteH(WuPl`KOYo{(;m{y)%E4C!F*6NP?zbg z{dRZoTTD`Z?xMH+c3Y@^C^$QCf~iu~_-DQYEnN}m5t@hmGIe*9xoc{#h8(`-iW{bi zgv{5`M88tT3T<^O999+=(pKmQ{?^T3_R8vxur^K<>(kyCI@=jWn>;T{&eupMGr-7V z?`NBh!)fS*tCM}i4Ti`KT})!)hsoKfw0*%z0*p77^s`@JccVIpdWpzIrRbSDTyMBBBi#nc`W*>v4%zp^muS&ume1ue&oZZyY-8(YVlGs9X}=uR&lr1O&D z9HNu^QMgCwK0gzTU4qjmM*DH&`$PW9@%<8cmOfaKum1C;c+1`L>BjpkWR?Yjrq4pL zPUZ`Gc4|TSmB(kO7D(Y~-YJ(?vr)&692o&>%5fA#Qg8Vl)jP9Ns%_&;U>xJSj z#B?~3h-=`Mim1p5U-Ac49u?0#He4#us8GfOdPBgzy>c)H4ye}s!jqLRVP$OQ8(|8E zbWQ*Xnc`+bxs^F^WX#=v`$~GTufFo3X96>fwR|FFs_roTr}o>|m#ze?=16xZ!)=1l zKno|2;Tr9x$+|{cuVG^{tV6`V%;Ay$EXIf=BD>VE;cHpEq8QJqGM zU;gzW24my$4)*LwQ|w{5QKoicT2)!}UtKYvo;Hwtcfu&=O9Vww%o76N6 zb`ekfs>kD?U#X0{uZXz#J&;0jnB-Wf?zx;i(u-bgBI*Jm1^K zF&|LA+P25@E(*`cixfr6z)VQL{W>VI{p`4J?y&sFG5g^>*^Djulps$cwKaNYV;{jj zCC4R=64`LJ;Q1K6*UJhI7OsHdyh0*TrV$Ft6T^h)WffHkiGV?TAu%3GC9$QvmCur7 zWiskwVqo~XbH_oq{GIB`@(KJD9i83Vlmn}&ASl=8at~hs$Ca$aSY?hROS?>ZwaUUYYMh@t>?97vZvE*&JA8 ziJ4NEPR_2EO)w!^ND%9RD2@-HOCwknjVn@}VAEO+EjnGbP+{fEY%a5K^pSG8R3YIP zLD6us4fcz@yaErkvbY8C?C_`(K^KgoNvwH#?ynr@IIvaWU+AA}`sl%yZ3_kZW|$KM z#gkLvcbtKT9_=#usiIkLfohvyu}^ab$*7yHu-7_&&}f);`p} z)Gahc=(DmSq5YsxY)HC9RY#G!w6cFB9(Hu%i`~j zgR$v21-RZuDK;JXT6sjo7l@~>!IR%VjP+TVCyzJnz{ zI(4b1PQCoQ9DRH{J+djV$dq2NXZ)RBjLh`l6meN{!DI9$wYeA@r=seB=bgT-&B#j$ z0kNXJ6*~B>L?Jzg$gsh@%C7Mv%tMY0hn^SS{VDm!;Va3k>|(wTShL5QJ{&v00>%{7 z_Xh%wBo?dhUL<7nfm7dxIpOns-Ip(n*iF1m3m&(kq@)zhcYsXov2U|k63TpDoNG3z z8|=p~Uu2vZL0#UWuG# z6$hrKq{)yCq#AU|kLg6=Z)kWGv48n%Ra0U<19l#K8Aiyb6><@bU0f%f~MHL;(%h9{H)#T?2MI_Arh$3iNjbR`0wnXKQUYh{mbFn6V zf-q`rN?$|%t-jifV`VDKgSX9>YL9tAjpUv3?cj?kjR0S~`ZLk&&zqDr*BqJJD~3ZwCsForYAkOTi^GZJrVV30`}7 zlj`&Szmc-9Tz#=PX(lpHA1^fDN1mnuz@=R6<#pP|0tF!^pWL_2XG2>blR>On$w2ed zM4~wPc$s1*`s&nO4vKqj2GmG3E~bSIh;`r&gWNpj^hkxZbD@2y)W{d#v;eF(-yr<= z`Fu$OBo!!2bsys7?}x7<$7*K+r>_(vZ&Pd=#LAaJWCVP_p&|fV(lFYbJ(6&9m#V3{Ux;|pC(c;(%e4d?!&7; zBlEaa85VFusHT*<-1B(Vykw(wrO>2ovFMQq3s^ce5#WY*{+U@_Q_-X-4)L76O*GFj z{BeE%+Nav8%?@cOH$wVh20ZDw3jo!s$TaeiT?voKn~CI{;_=wDNfxqr3)2g9f@4dT ztcL}*bfDhM_wv>*t?7g{A$tMu)Vn(_RaFbLJqkwZGisk;L3L6k&tVEJ8} zR)dKL^Dd|4EK-_}EiLD0s>6w{q&~Z>->>!$Elhe{9PR5}w%OZK+~OEi$xK^_&p_pk zXcOv5W3&|&Sx&kffT%rXX#G5Ps$11OAXc#YrGf5YwRnjS)XFCb7Uqbe5O9VFE3Nxk z0$kaBSg5^CL#rVei{P~qExvmdY)Kk~io14;y!y15sI2{^d1fr()w-#K3QBO{l;j1q zM$}wbFLe`%Is#H=`&fYPHSULvRU`+Z1pmj$SQ;>55ZNJ!V+ zbd*>Ni(yGK(R*9?6^udDZYCZlAb$EvF+RvFEm2phTDI9)NNZkyZFtp9y@UTLWBf zDi*^e*j=;5Ebul?9-<{#@Npgc-YHLaiF0eM5@FNuhCE_uVU{&J6^JQ&ah4MB*fX*I zVFl9rdiCW^OUz42pQ1l<&s3qYl+RM5N9;P)Q$ce0@;lne52xQp{BBTC+jB77VkdT8 z)74_n4cN$rCwH^0T-Vgia9lDW&!f9z!OI71_Q2Nplg-l`)V^yjpG<6G-WT>LcF zG%&)P;!2+Wl=BYuM?TE81U`w2@vijSYtdX6^U%y!hZnYzI7(=^tEA80$#N>Vf&94} zytrRkiM;h~=Z))@i_{RIRxzedx?)b`ZJw43Ix{$sT3vjHdy>n>rLoxR#n1ey3b+D& zJ-J*Y_9yP-!@I+$E<3rw4-2~<49trGb@D&DAeZ`as1t4lzr($gqSi)Pa5<~>W$AC5IH&R!MLC~a*&lu(&zXGY@b%HMO)9wqkqo(lZ zvg=p_OpNwqAF$pvan4%0xN7z@ijg~uHcyp1Ml<$vEE0p0ZK`h8X`~%0fFwhd_;JMx zTjX#<&SsfiP%E+I`B_V8wCkCzA}z$z<;ucx@WvUj<9$si5SPy9Q3rSPhj1(A!LGC} zgTv$2iymyzT;#!x#K>y!7x;1Gl1xj%)tQtzt|-BE!@>o?A+PbW+!LvG$K3`I@9 zW$7!PxPEDVO4W$rh-l6jS&tChodSVJuH)3#7Joj4ul!t?Fpx(!fTCBmcRqgU2c2|- z24xwFAKI^Px1xcZ`j6?PmkT^@-lr{7C!gcaDGld4AsVf&jOs15xcI}*SF9d}>mI!$ zONi%QMkDGt6Q78);*NF^yhMH!-ArWCINqS!=O>(cyo}35@sM$qFrPGaBJX9~N+qD+ z=jlpaZ{I)atltNSSo3BhAJjTX;dgj9W!yV1NIcSBdp3M45L#-;StkX;&&xzc9mw`E zOM!&q&nTubm`6!GNx;q3+^yeMniVNsag1L6jfZ}P8*(i^W?2`FlA3Ghru%*K4|jZk z7e!051PJX}wdX>Aj>a}0oqefvJUd%oq_ag6UCOyQ`0Nfk{QZRCOZBkkVpU(;EMRQA z*&%8>pX01{q3Zaer|%hn2Na4MTXpp5zw6Y_u%0W$*wT|}vwtywfRSlZDc{b~6Y9Ef zNcmIB(Y9ndZEb6RiR=yJi-Fv$GeuGtUYu(}AjdnF8zQK8P%20=vB(?EKPXmgIm_i_ z0?DPsf~^9DttgYOe#Ol)oxvfQ!EG5H_6tAmQTY_|^voB5iheVszv3HY`(XWiho2Bj zN?DFbf4eBkQr)P>u(5DDa`n6Y(KT7_o_OyP#Z4D24#+u)P4nf-4Vc*$Wa@>a3e2i` z)8K^Q7VGL=c>FA;r!wr@KJxNo!@jdFYU59e8fYhu{ssg2-FiL%c2%sce)f~Ut{u7` z#zyyIuJck|u&#FhajTVgNKxm5c!f|Hg>Qw+VOJyE06zB085GS&KZ6oMim6cZ_dq<3 z$R7ANLe>YTM^Bw~Q{#PHPjOQkH`YSvU|*fvTxK7*T7kyR%4M{lt+~?XO4yp$Ycm_* zu5TdZnmje0s=!iy**4ZyUXgPzk8p=!cdwPr@!ryvtzKufc#4z%%bFMo*6sqL(Ri#o z;aEWvLTm9#_o>43IyI`0<>1gzGOweBl(ws@tKYVJ@4Xb3fWoZMjD>!=JB(Ra+$l)? z{9M7Phv}L)vI9yFU~tl8$W8`_CvTp&D=8*3s5vRJs!=;?f$bNjYIbl483yv@G>R_8 zS*BXmBJ3-W@m=Wsd8}#A#H=kzvmiQYDq73zuddo`W5@U@SbV}7KkX2s2;Ir=m*r6E z4#pob8PPgszZi2pcV40gw>53tP)xn7SR%Y=DIoVkZFS5h#5bP{xjra}emUcD?>{!B z(a_r#Qqs7Q(`ErMv$yoWv*#R>6T`Zzr!->#oeYC{NJ|HxN_D5Ay%vrUDc z9|fi(s&R$el%Nd9GpXg@>kmLvOlJ~z2+1%|w7@xT6~F@lN!~1djK*}Yf&wv=6vbkr zay!E4HW|qN>}_u+u}SKzr!q~Vto~l_qJ9$eb8hbUn(MT&R%`I<*FYY&FUqRddkQ5g z4&FS$j&}_fwZ?75?WpgUd&Uk5DDFbappO+_kL`N6I@83gSNGjpiZkb*P+gyXME!zc zm%GmGRo|2Y3D-S3jJ_oaJ00sW_CBVusuMaUGQC>-J;E1ZgZ*u@59iwy(PDBV)M;ElvmmUAT$;e{)lx*2p?5zs#BY8i=Agoy4H~$6=v?I z14<`KQaLIGlpXh+s@*J--NkDUn5>H?bT3CiVh+|Yn-iz_)RX&;ZwKzRPjuH+;}c!a zzz3_ZwF~tWvf(GQe{2?t`mvX%M--W$TKl5`jW06We<{fUz<~?uKI z*#UKH^+p^VC6bRLfiq_DwfpYRUjmdqz|h}(uU)w4HER`pMPJnwTSBgMPWVwuRp$HY zViunK=OIgn4jRS_EpwKr77FBG2|>-=X4kE$T3*Ij%Fk{dXAJ)KjY@ zv|$AEhTd-6&dm#xv>1>yg{Y#@akj<80Ms|}$_Er%<%m9R5jwuA zd6J!FhFjmPB&SK3w0U}cIgQ(jO-_(*d#3WBa}69wrqK69--_kAC1I?@YMh#!lmbVl z!AARr!4%McP@nAVsJ|dhHey2_(>uHr!*No2Go1LVN3l0X?ySs~#H}eZQbeCl<*1pg zC{mA5pz2CVH{_a{n*7{mEDWo3Xb$e1Q+tS2|0Ia{ME$aa3s2}h*Da<|i4yed;o}|z zM-5N;3xC4g!^bP?E1Cqjq%FRC#hZKanFCvcbv4>;Y4XC5Xw9(0U!=tH`lG-sPe{3N zO@;`F+8kpfs+@tcy4QAqFIMxlK)h`$xe!};jz8n(^-ucyRm9MOY7ee)5H5}ai9)IF z%DTz`VTR()mdv3BXhQGJeIMcO{RFUzqTSU;o|9oD#yP3w#hYtp(_5gK(4I&Eb|lip z0K4BfJfco!v1710vFuQ)s#l~ST2V_Y`uptukTX%@PuB9p@}Ur?)VUgGTuqh0OyyRz zzoWJm`YITH#}Wa23=UO`Qe>fBkX?M*3<7c`cgCzMH6}VuRIYKX*=5V zJx8>7su(GX(1ma+ON*DF`Y@8wX+{D3p|R;9JdEGPxTM1$88|bCYu<0+ME2k&mFfkw zxMzE1Ik<;URj~Q)dGxZL{E?xq2r@Zn&~vlVnushd)w|;bc#fa z5Roj)7dB|)wPamJh|Jkm_aC$T2U~TeKO=E&VFf*6d^#rB5*Tz;L~7<@qG7ViPOd)p ztYttm?V8j53oml_Me+Qjc`<+k-xc0_ksmovzm8+-j&vJ?I-SrcMnzlv>)!oPuwtZR zoPJq2XSQHPZ^v>Gqu*WNG|@d7>hJWcl-5G_YlX&}x7lXmNLFu0C~{Q>1_wW8_qP=( zL@gad>7k)>mI+cUaOHl}> zSK1AZn`z{@ClnMvH6^7T#7e_zlboA8>L8%9P#-Av zIp9>GeupYWUz~M_?IflNgX*t0zpzUaS-9*<(TJi-Ls96zs_xxX$cA@ueu-cMU!7C=DuJDaKB z49wz|@O;*LSu-bN;*ydSIH7E_Tu_d9(Z_29O5%hreBM3}aYPUOz+!T~QR(pPz+A1? ztay3@5qx8{3v6#4H(G6Sf-x2V4hG|TLN!}lSdEeyM791+Ouo_l8|2BW*Hf9s6_f(S z{AOQZ4>;$WCgoSX4)>(~QrFd{j17fX_r)q3I>J|=nGx>97m_0N2{ zSZ`ejpR5-bcJPGS?rc#CIqNt6Y~Ao6GeuR^cj%G zn41xTHtSfqVpzAGfSDNM=_kv6E2L2kiy4MTZHviv_wA)d%YDoec-()ZO-8AQg{?2P zcUf;QpdJw@yr#$@zBbG%dU^^#AoI-33>7u?7r@+StvZ18;cQu|7P|<-8r-p{s;d6B z-&MFeSst3qmo=X)CGfnz`ow&4^q`vmf8&SD3@j`yH7kE0WrFVLTHRnd>J@t2#Nln! zx#Ve_@I9W#-F{)IR&7Xkw^#rs!6a3k_WyfxCmltL+Q|d=R-KK#(^fO2`lw^mt-dy# zD%#pZi`MP(;^Ii{&yT0(@c4R_P={IDjl7NUG3;t{?f1{inj^unliSuZDZk8hme2W{ z^k&mmoh{{|HsK*5=qsMrx+z@Nqeb6xM_saL|3KogNKng7KFM^>I_B}hfl&g{iMJsH zPhS{D3QXk)k*H#8VQ3*g?mFpvFcSsB?_{&e_&o-p=!&~~BHXD1BP03n!LKyxvs-b! z_}HC_^JE|A3dVtsvHa}6o$t@;R?E9G?_!cJgFE}bxwS8pl0d9QToJNjQ1H3*fUtr2Oz(lXlG2-U(+0(#-k znu-NFuP3Ok(L3j5TwQto4$xmkeiFXyVgO^?L5Bt2kZ1HTvhWW+Kdh2wXx_bqr%9&* zn}Rz#zqZ}(q!!?feEqwZ_Ydf}`%$1Iv#RzfPI+P4E`5qBb{zh11J0-h=GP`{#@BO% z9?o87dR`I0gMy8hn;hXbHu8SlO_I6X zLn(C}Cd4mKS2LHEbl`Rbw@Tsvv`Fd7&a54_CL`aoG?M!BzH^Rk5uH@F+C4{pkh;0> zQKuNv7LTem2Dqql*D{9H7fcciZ-B6zSTy_WWC(1Xn-m8L5ST}5fO z`}GOC^-5Zqc0FgUMhC$SMwsc_4_r=o@W28w*Q~Rv0=(>Xn z?}Bzw6jY=)ktQG@ARsj=(wme}5_<1Q??gmEkls7eA%W040hA`a_p0=S-do7*e9!&O z{mhv&bMKVPKiLU;?Y-98>ut~TzH7h8;0g3-9AJ-i%)Cp$lVj2_dw?}tZP5teU2SZ) z=rWl)7DIB%ER|%}WW|#3X(cZo@)hyeKj9I|o`R46X?qauy+#3~QRS2{r?B3(gpDt85N8L#V##GL9ZkkZpB7Lz#A^<8(R7tq151_BPV^I`Pminj2Xj}K({v)f@bv1?hh3Gd z#vbdclNFXAYGiGsk~L~sTrG56!S-*&o2&gfwz;c47;HJa#CLhS$+i{^N4((T66d%g zTME5Y{wp;0`01_8cW+Mgp4HvFt#}il*S<)S^8vNWPGL$coxaxRBvQ|^GZ?#^K*bg! ziF5JGFUhq0(!XDnM+bX=A}G1M-Wc~zc)iz7qn#*qzCT}+Yb>{<@Fi7M&f&~CG`fOJ z>w3Jkmhk0RBbU2Jbj3E|6CLK5s+P-N==aLiPjzO7@(=5FocpvS&wEd9=9zS+60e8* z>CPtHX7k9+p^|v(-?gHU_J^z4nquQ?ygiDoZ?%MP#N&M(=98A^^&R`W!mN=xAHTYB zoW{g>eg!XUk%-ZYRgFt0SE#!SwVJya#rdXS8waK?b9LxUcq=!}dPK=K3jzjGob{F4aw15msplaH8 z2iQo2H;9Nf>mMJtL%R#+ratDQlBQl}phm$K1L1!Qd0*hI;rZZmJSP-iTg?(LCH;@W zl4{{M=Fnb_)P&zv=aE#_BAmAAlS7L5J!0dWdt1IR1`TCEbXOP4ABlu^C)Fz@SOcSB zQ0TC3+_(8LN|zfSU!E!Mmf#s!>*ul*c1BK`ht!DDi}1!MI+8)-%;&UPKkM=x8Y6y` zJg!t`Bb?uBI7cJSMl!D2#x(V}94=e@Zo15K5PO!-l+v+00HSmGTFP{3y)%c zBW34C{7k=M?v2J5V-w1$_G9XZ7;I^VSL3IA=r5cX;?L?s`Vz~;+sfi84v8q;nf(Fe z)xg4=4M!{T4l1a5-t}|Mw&MpP&6KSy?Wz~clD^xG-?)n|xN3$^GU(1<^|NvtO~>f1 zg&LM6q%MSb<8mj+hRLpG*0b)_tG)jP2kwcO3PnLUr(5Ln@;q<9d7K8g*>#bZPtF>{7f~;X5)m$IS z=Rf0Yul}e&=X8ngAkNLTDTTH7dNuDgF$wF2vV_GxBP6;`C!vfvrzX76loTP?bI-iI z9r&q#XfbVlfVkGbX)2DcGl2>1*V1hV7B#!$gc51EnLKJ1iv8`Q{4=`sQ@$_KWc}Xx z)CeDtSZtIFZ78K>!yymvzgA8&GkiE!j0?9;NHv*E+o~JF^oGT7t)V#JwNs;0PuwkB zz3i4>2r5qYUEEdLy$XE-Iyivr4NQ@@JmGsg9+Y!OX<%`fkV2~Zz%8T=^B&$e9XGT~mSDR1% zqz`pee|z(EO22v{|3PY0!ZU_{(th7dEY?SSZJrKvo4$HG&u>gBYsu45_cSD0X{iV5 zNOo^0#Um%GvKt3`B&;@3#?GclFGXe2t`sr$`r;S-nm)By$aLh&o{SrZHuX7VzY$bK zr+=u!_Yo0&IHtt^uvi?Xx1(VCZv4*4qrnr)Htt|0)rqMib83i{ei}bZ&=B+}!08ej z)_$8@#{hdQc*rFxntFQb4g{ZnQW@FV*%!Y@sb$TaZT}b$7c84OYaE2)HsnHo7-R_D z+AY1XHgqN3M3(6lF%yTejA_}o2|bTK9EkAnQ503!uuDv`y(8yE*>J#=a`IY11-UW$ zc?(;-CF)a38WFZD>W$@I#A^0=d~Sg*9Ed-jrCda0OHK$dImC9N$l?q6Q1-A=vTTo> z(hzyyp{#K4{_MHyQ1KMkip3dWlZpZ(zq&Wd69*R3w}_Lfc?wB^^&g6{YzN!I-KXz= ziEtd59-%Lba`td~3)`4z^f(w%Dq(oTNC;4x&r&be2`6&S#mq0u>YE!>Co<7x#2t;& zpx`>Q7vosi@is`f`@H`GXZ_^k*UyldNB$rBz7nWP1muOW$gyzdS0b+0BkNL-EGWfw z2XafZoug7$Q^AH)Tlu+>oZr4KT?OxyD%?&z2|w%rX-~nOIXPhlvV`pnB(Vg6qZ(gZ zLfU#yBCJ=Ftyy9gNX%{wbPA=m_VQ1x9W)_B(;H74OE6SF*Y5PvXRhy-nQ*IBoOLXA zk~n}4uF=5v18m|@MN|7{rB3TEY}{^{;~$VZrhS>ll*P$W#O`l(|6~Vb+;yU`?vwKI zcThijDcDiAP3}AEpW6HmU4xxSx-MA4#>F+>jJs%-j}|{)XGCF-XBZ}!$jHdh^%&&$ zTJBd#bIv1*!a(9xbd0fsS{|RH*m$u-&srg@kZIuF+|i{)r_5;l(S})KXx_}KRE^W( z1$P=am`@SpE_C1DRAK0dK8-N&XYi9g52ds*xU|yOup{lQ1}WjEVSAi*4MV3>F0QWV zycD~T{dHp!X^!BlHK~V=VxcpZQ)K(I#ghc0J=O*0v9eUVo5hc}NM@(J_)$mpX$WY)q%eV2BZ#pidBN9ewm7@ z^}3ci><-+m6-0F2l0~hY}8D=4q;ZQGuGAkdDQJ z)?XR=f$}rQH!*Q%bvix_E*?el?`WJv!bE(M*{N2RU{4r0{BYg}q(8}qQ+6I8d0{J{ zmtMUmJLL47@^4??*3gDPp)PA_ZsD+&g;dpFH}fyKk)tqMdFsE9#WO}0=Dnm21Zak= zWb5?nd6$s`b%j3cK8xQT)7U3wGJ)VJcbI|u` z-TKvVsOZuBKzKGpXxZI(&o91FR2SRtflkO#GauVUzMjxu=oaip;PhY*chV=I5@95& zB}_OT9~_X|SY=y?URVW%W7l#q9U5DQ95(D6wU8PeSitelLdpERo~emRsBP(s?-h|R zOwDU7Q9aa8UNvq*OcUbaTR?ilcdCZ&WRaZ4Cv}Z6f=nKBRoz@R8ksg$pESF8;J60u zbV32y2ztho`Wg*x?DoAr)at?4wmnDnEj-b2k-)hKBA{rEw|p zO-luNE$mPG!s^fO7IDeegLLgfEz*_2jpuqX#QdwE-dVx^7o1)`Jknx<}R)M1rM_g{j!Tpv3b>gRJQ-7 zpoB<9y{ay)f2ig8Tlrts)H(AqYbHf>s5QRx<1{`O^eEfbJPNvS+94Pl`G`I&eNQEz z{nszm!g1TWhID93PX*WlM4>Z$QXeb$`=B#4UcE%e!^5#IHGaIq0Asf6kgznA zdiXh|`vOK)PpS?A>5en(iNTmFEu9&U-7cTne_gJmy43GqWoN(Z{(P>bg+_1?Vr{$e zpx?AI5>l-l(I_v>k9DttL+zBbB|E-Di|T+>T)7* zzDTX@@13@my;czDkjMDtG3umT?;J}am&UITL!EYMCEUDLd#g7Cqz_O!o*TIdMx(A& z3*&Q6#lFXa6;+!DqRNi5TL==94NgtVnO3&*HE@Os4A$(rJzLn@tKjp8Q2(2YWnL{| zupGxopiK|w{M zd)-w{oTs8ZFlfPyrJ5g=|G;%ZQBbd5-fB42%IbJQ>qJqxy=K>hmSLsjSw|@^UJ+Cs(uG!>H8mw%1UA;{l1HAf&(1wbD#%SKoH#TW zQW4j~k-$@Srt^yQR>^@48^|J*ypVYurM)s0&@s@aQV@a;9MYvn1A4_J;C^e6z>ItG zz(ZM%lNYOz44@*(O|}gOgN>4@a#y@*4^=-Mz`Y_HMoycu~PaT++yes zrxEGnYmb;uW}PDP6jSon(!G@Ey&t84)8xDKeJt}_vAXbdAfKGByBVTiyCvFH)#7$AOygOX)?#3;T{lns+(0%h|mfcDw*BeTAE-fAz4SoB-`m+nkzX*DRA4o zf9!opEDM|4H-l}v0u4#SAFREZze2t|u1eJ)pS&EP>j5iDAGGXkxti8IebH)JbF1nP zdKOK*>MA7X1jZc6g}>(PE!KE9|0~k^UC?NGsv-&nxUjmDh=#shJtPwDhB<&SU+Emm$q@A7mYiR1{}C>t^l7 z%3fep~zly;Ru&{_6+Z)_xvAhx>5-`B+~opIldsE<72(o9sLnD9U1UUiM}%b zR?% z4s?DB&uZbVp2$5KQ+3T`qD0tYbgkdpJ$dbY_7ILFXy!vem1YRS4RdI~`z|ll^@5@E zyq%Ni*h{ycRXvv0kqvOG-x(WixYm~3tz?9%`qc_<5a)}bKRN(WVA=`IxW{V9aazIm z9L}35fr&8$K+R+jtO+P|&ja@FumpCaIzL^C0MhPa4RA0)GxD6)txVfVHiLYA*e(N>!N-bBB)FSgSu(c0E` z>?z*(SfQ&54zk+kH6g6DUmGtlE|pe!b04ho@foygNJ{8gPi1USWsJt_^Y@UqDb&Q> zW|sNA#T(xqeWQV+3sm$16{{EDw(5Y^K7x&1KW)xZjj7Ary(_|cCGGNnxpM6F8)ZYu z@8b<9_KFBb<~w%xO`c{ahnr0?Pf6?MKW@7jR!16kbyp{1)jUK68tGlrl%kdm!{$nu zgM@OUxiv6()=O(QY_7HBa&mGiT3RmIaNm3;TYl!vqsWYu0-WHfxA@V?38JJ#nVd`Kqo!s8*-NcQM;^e|wk&)Ro!NzI`RqJA zD);W)E1&uzC>Sym_u*R1$mOzVpQc_>4{%lsMf+NqHE?k48qYhKTlmjJ0$@X6;E#mi zG5*7#{)HgYgBP)Fq;M1eog)7paj@vs4g4_+@wDRge-7S1$A7eZ_|KPk&h*de3gjz7 z_-nU(5O&>66s3!p_gJG%6Ze4tYd_pY_VY%vHFBs(yCOC|J})%%0p80mDUOy258*$6-a_k_gR`aZ*5WVjTbW_oqn+<#f ze1>$dZ6Rh>Rzzv(Zq_)Dx=d(^i{iD!%0|bPDU%BAtL3`oFiEy>_Osqc2BRy^5r#A+ z@*V>D9p#udryk3m7!DTJH_5*uS~J-fZr%Feu>#RA4w1@O0lK1uf1Y>;e8K1B@gv65 zh>nO#__@ywBbu2xUk%*S!ooy{rnov_95j$Rg~!LPwBp`x#&eTuSsq`@V$tNM?PIU# ztS5RFt;4DC-Q{7K!_}n+aEexE1ihxCWBI0Q0}^#St(6eK!;-ucMk;qTqApVC7KX_yiEUG{;h6S!*e+c7H@k3dC%{25V}{GMFV6h#5^ zv6eWggT}ACzC>I&p?kd`8LZzJxQ4IRh{p8>3MtwXQeG8UN`+fnkbXmi={7PTom7?A z!j9MN>)6%pKgTNESh(3EdbRZF?1Y%+%TYrjId9~VNDOPjOm5>_PQ9Lmz5yc9ZNCLU zTvL-B>cs(ha>M! zB)sv$D}J_2G6z_uGA`!rR8eeUx~*_F3H@<<{nOCFAaf8n?1B+>&`H?c)iqRUIWjsl z^cYjl^!UkjgD*nrV_KQ$qYmzByt(QdU$ioI@uRx$vw!Bj?=o6Y{Oq)+Y9=XjdYH&K zr9_3jH1O_HJ-;zDlj=U4abOGcQ4tv`(7MVy6+|;pZyo1N%ij$Spz;ytPnf#fKcfPl z4wcy|X!SfFV4&T1Kc9lV3V7-WTuhNBevnxw!lfR!V@B;4DwQ508w?!6Bd0&5Lr zLELs*W*?5hCk;~luZPlNixXRE&8vWI(y?nL68yHee@6awWzQCchBf^hh|*qi!U?Q9 ze2vu@{PC+rhg~z+1v#zia=JDRKVr8Je*J#Y>yfx}l~om39Oi|Xh|9mhpWF$Cq!`|d z7~kpDu=J^Wu0;BCaG{1QuH+AJg6b8_>C=qM@PTtO3yj<$b*y zehVk+YSf!R;9lc~MsE36x;6PK+*8In^qPi`rY~gB>VMz(t4_NhpnS1S?1j5}4Md+5 znzkf=?ke}H;i^4^w;Pp2GD1F{v^&C*&ofRp6WtaLE}YKWclu?c?NCP=9-`?MU;!>b z8GWO|$tj-7g=WizO|49CI^v`JY6vW|*y4d6%#3>^@NMZ{eWmzvf_~6_4v6z^BGZXk z974*vSHbYs&|^xg**{+gtlbJ;*C@{KF2DmXbnHH*WS1H(VgyR|zE8`nRg?z4l{O53 z^xowA_2G{J`4ZTM;LeHRTJcBY-Jrbkhon}8Eh#Zw}>I(!#Y(Sj6URB>@$$;$BO)$C!Cu6 z(3_o$k$X!ga{Jx796bVEDjF!lA*T|!Ys|a~?Z=p`cEnojz5FfSrkUVCDRQC7OD{SWsIGLI_h7AVKLv#6nbjo+ z|5aRsnLLGaQK1Udqgbwni1yJi83cADpfPnLv*L&FE@5Sk&BYtvBub;%Kb5f@t+Nvr zhM^R%q|fUt`pAQ`Ka!3;>|mdNWoV>xkjGhhE6;BNo6Fftdv-<}IG1kgLAquAKmr%V znBB-sQSL-;wW$_%c|mr0ML+U0-e!u?yNfn}6n>m<=O$6ben;_Y7})&K;tJK=tncFD z!jM@C8~`K<6_$a)OesUWcw;2Lvp%%;@B(?DLb1|Vy{)V+OM|4*>-OEk+RJu;Onff) zI(d*CZ)I+M{@#MB)0rZjV&|qj56|x;s(vA|o8n*>Hf1IF%>9nW%w^+zbrd<@Xl-ku z#e*sCLHL{10ZHqoZ!{3Kk-R%6yZ8~&i4>6WRT4jlVE~O3+|R%y5`|aZeVr9zkYcl_ zy!Zo3#O@6DXS5Tfy*ROr1RHl!jaBmh7Mn$XO008QLk~&QkF9}lXOSn$>7qjA*B_DN z#{f7O!D(#^bZB38+q=Rc|CI|c7~=VIl9z5cYnn|{#(c5UQH;zm$G$Vzxx7)k?kp#$3^E5g>b7WdBshMfYx$xa&Hg@NJ>KyET#kBc0xsF4qXnLP}?7p4)$HZhXTS1k*n+3i@XHEiqq;kMT&~XQxn+jUe#LYcvR2syv-_xTOTHQ$*(y+ox zlh$zTx;4<`+FE@QC@41TE1+L{+;pGc>v&To{IgcbIrmVr5a|P-am*c<-5h^ zCTBg|QvxUXkuQFEHX$0g=e5c`J?1$(6f@zoGx;SSYKexhqmP|tuWZ@aJunf5@0>RC zn4~Zh=fsuEE6U*0H1%SFnetyA6|OlM6Yv%xFYWW7eATM=cz}t->dhE{$uY{gU;3Ad znOm%>O~`TIy|J%SJPR6i_Z8GblvGjA_#SS@b=+SAKq@sCjhzf(1o+C~i#WokpAt>f zd(ar`vm_I7A!mx{)Sof0vY&CrKL4mW=3#m<&`F#w1O6jTe;$!7E!XTgYW`;SaJFGW zb#DP+%a1;oZJYyV!qMt$_=`BX%M5M{HAU&&^9mp|GEFf58qO-~SOCwKvc2thLaqL0 zojvn>W_ zkyrQQ;BC#tZ*BQ$SJ|^sMcTCdwm*-%L;a^;Ej!(lcBhFVDlXCvoBCNj`NWoDg+JIZ zPMuQl52d^L`0kEEaOF==#jF*IJEJ@yJ2Rg>y%{<+KfRhXvUQ7v7uPH1hG)XyQFKlY z+p|IkJ3#bOe>4u2{`l~3JFv3f`vxwVp;-2!1_By!F}WT3wAz~R6_X#gcNIQW4Z7$F zJN&$aNo=Ds)RJ(TQWsc0@Lmdz=mMD$b@Ekx>;A1=yJFuRHCj)QaFFB7>Gerd{2?=#`TKW8MYtu+^{ zi{?YV0a7_3(hw-?$-s`9ND5Q1`p{;okSB_v$#J>a!%3%a9*lir<+jJ)_yb{0-J;hYi|-WNze**& zI&kRGPA~rTEyzk!yJDp+5ZCzfAZ)#1-KEg=oAF2O-^4DFJ1MP>ML!+hHxn5yfDp5) z4`Uu5rR{i2gU-5?nJAmR@np^UdUizbR!=~6R>7Aa$EDT7P z{DD6SbMiqdAXpKp1k{*{X}7SaTO3LD|IXKByN-Al7ek9v$2CbemmlalR3cw{q9<-^ zG89uM3utSw3Kp{MPAMK;l?fEe0;;jGAEa!MJ4mm}c|rNJO0}UrXPmR0T~CvH;B%a0 zp{3g1XCc$=W~C#=BM5n+#m zW&w#(vbwsuo%2b5aC9QQcHS^_rWG_V zKUzFNUDDW$eX~408(-6ZYo@s-L**y|dH-U^A#bxVBe1eSYDCixCD&7t<*t^2Wjz$U zAOSmS?uNHCU&Xwi`MA@p6d+u(b|Ou~U~wUYa#^YZic5G__X1PR&3+#RGn+MRzz~?x zxO2#lz>9p$@z0JaTyT8}Wog$2dk^*4q{2MKxasCvRTpYL(>ut~Fm~ZG*|-aGM7dq|dnN4=7E=2t zjfpWf{pkEAJ=PmDkQ4bh7kE!>4og)~-)w!ZE&_wD)Q~DD($Op#4U>dG6W~)Ac9(sO z-?4hceEH^Dp?*GRr)EJp@^?Y5WlRY6f~v~Jasu%ktgV@^zz;kVGTZKMdP4-qwP&6H zlzd;k_&)zRSKs8a%L-eoC#RKNm~b+8pD}-3S~;mYwICVQpUioe30;6bY+$M8(s}I% zjvpV_nDbamTcY0;%#Yn|VZ(jrIMSaP4m<@`=7#-_ShfdsxJ6aYEVnM@{)@!fQSmtO zPi+L@g1v)L^uBg21mV)El`Cc2D!oFEP9-T>`)@NBw!)!6>(Een0$=t|hX$Db7As6NkE@nir$r_qzJ*@E#qv49eR9U1c^^ zbAqummz`y}M(4Rnc$#m3qUmi-OgyG!5CBWZW@ZooCsX#2%#`OruqxVSNt#6&rDxkW zG=aInGe{7*#mbc1KR%0$5oQSZ+Lm{$u~H;(Ba6wDjPhL{qpXnr#K(lkt3`U&Q#+XM zsU!IO{!`2K#rd4Mh8)s3$)Cde3D)h10myM0f|U4n^@YT)tg_b1HG^-HtKVKwddP1T ze6Se_4a6V!~!=6T(|Z=52lxA&lNX-orMgb>`{jM0;g7dZ1O+}G6yT0bw|%F_{`?)9C} zgR*vrdE1ciZ2uazZBV8V@dIzK!M$pFwO_~Y^nyk`H8|*ngn#=2>%5R-Y>el3VjgiN zQ)BfzbeOYJ2YSd$JllRj2!LDChPUS$j>7D{CGOqZbI>13)NuG~lCauKbgMwawrqCN zOdjEUnIql(a=2q`-=472&C_}RRHqMkD-CJkeUq_2eM6g(jR}QQPW8_FAC{H#!@Ugv z2rIPZ^6UT)C?)85vPs$I@7d0YO`y$Te9#{8fdi(_xhCOv@c^S*EtZ-E(>tOBz$ELn z{-tqKLl=0Q3$|T(%g-^U+{=du}+<82G%BLZC|(P3N6p)va=;S zecoY-@;Gcfrp0PC!**hZO1PAS{nq&J=tb1{@C)ZLO&^|7BL}nUG_8WMa&fDDs>7AH z(u7^)MBKL30i@_YA)&F3X~E>z56Y-<@b+-(+Xjo(El81^7!-Cf7?JV{s?6td@wW~> zTP~}8X6+A9`lOaj-@g}^j9Ys&J(fukuvM|{w<@M}<<9nT?x{Gc7kgxu;%c2hhKRNU z-c$DZI|~4!1F+Z+J&zSqv4dW|e-NA0)KskmQq4TYs*MI<$v2d7G3AAJYF$bc^?WnH zU16tDUNyXYd|)lD0uJQ2zl;i5i_ZhvxVGRgt8-3i4g&cC0Y^%wIHo<0eclw?3t17g zRo#o%zV6{1kOKou|o=n%ip`C+Zc z3!!JS0Qxx&gdd|*Q-#3ZT$mVT@gc$HGsV6P5NJGC(&XUGJK?;(B0&0x!HxU&r^3B6 zZ+z^pub;uCQ~Lvnq`+J4SRe0BKaE%{~br?2hve< z^MR0z$wQP*F-;g892_hsBNN$Y##hsRxSa>Alee#Pa&y@LAbQ;NTEf@U+D`n7-mX34 z(lO%*PGXa79}>VM}v6+{Pt)yODEhuaHwRl}eAIXLqF(3a)j(Br>MOr9&<6BJ+lGN>i!Z7Ej+q zPUJRPjJi|q*6+uz@%G2gSdM(a$^@o}q|R7UJLBI{_o*%-kS1t?d>6m+g&#UY z$4H+)B(OnbS5a9{B#_{8xjV2{r{gG9(6?1t_yYpxD&1UiVH+U(GaIpd8UFEfZ>6rW zW5Bf~)h>Jc`Wk1W66Uh=d3w!aNFgk4l6Drxv=qKaM{3rK=s)8H$qcvp~&A-VOf1>K#ak1skZ~ zeb3rW8n8IOh74(#_*rs~2|>s33-ktQDjDYf(i)Zx$#t{QNs73O4s2OaZ_g2yq`= zLVT$}3*WzO-Nm)A2?E&(NuZ0OjazER4+IQcDd`Wo%r9U05rJX z#j@A*ag^j3--V8)T%Kdr=6wMsDj_{|o( z^>J4Xm>t*#E*oGEJvko~E%R$A{Cq+tvE=%M4{%u!~pJNG5N93kZ*JVmFxI8RuWSZ8i7X%?;T_Z< zw_mG@veIX${5=aEX;cp{HHfSJm}y(UkWta2GM#rP0a`T`zz8*@en0(7N8W4s6%AO* z%eZ((Cyi>P&vVn%>X`prlW?otT=Qb)`9r-4Pq1d_pUF@Xb4zX)Yo|JOD&H?Cy(%`S zD{f{x5IscSNhXL@s5a?7;Os<*oOVW4mS_6sl`0i1Y1mc8j1Yt<5F{oI$=8!00=Qa1m9Ia?za zdJ~~0L1X@5oVxC*Ojt*idpMkEtdcZw$z(JhZv1tkPv}0!7eQoMLSY?`NX~7Iu*VvL z*a=s%(>3eCwjw5BApgMcK+W;vl%M$Mbr-3PJ+_-24~x#F#CH-ZZg;t18ie@q15;E? z&HERNX&>RDjUNbe%D~!z;_@wJv$2h#y!_=LgW21Okph389C zZq5^ZFtOz|7BueRe-MRM3Bk7VO7~rTnMl7v>Y{in7Rx9}5TTD9S{-^F(7^3409l%&m`uBUV7g?cV*3+k(6uT{S0P`iENt&&au zkBh+NLqhk&hdv|0b~>(p(CA*UkI!(djG7y!Pm^jz$kxNU{|PBK%2eHn=s}D<#x^2W z`(qK$vOIpgwKfXwGM5LM8f*+_PSH#=u^-aT5x7F-2-*pk=BxH+UcIVjKgF(InSbrj zoNx40Km=u)S+QLIhrkYe{fA*M8MhWK)OP|P-=(m9!}~L z*r?Y(-W}Sa^lFqlu_b1vWWY$e%b!dY2oKP3vH=NyVRUKn&W%VVY2GkWsS51qq}SV5 zVkyyud~^{?1KL@CW9`OhlQMgg=sd#Zhk+(~>?pl_pZJMv=nkG%|9r~#hk=KOUsBjd zN{!5f{SR6jja$kHJ?X$~*;&e#h1f@pV)OJYz18gJKSeaTE0>uCR;A3VimH`NxNtB( zTAugS4NFggsCq~2)n6#0hEMC~t8bx}=2YJ~ls#5l*p657a(2}#3rV2bD!M?UUz-Q7 z9AWG+@ha8rc=G*iW72Lz%6WhKNN2OfXi*<%yr_@*NLKCpIY?OSGCVq`=IFd>DLLi| zgZEsyx*3an-8;4lDTqqVyr`p&Q@obOm1VrwyfwU@A=uCGX8?(f2%_*kKv z`WZsm+fniOCw0xi>X+sdTfRI@{e-@NzW&7if#LBRPG#dX(JM`-_@^BEH*`-G?abJm z+Q5Cop$LhEI?s-mv_cZS`0RpD9t{=|EfhkSBR~H=eZe;a3wCfj)LC~*cH&ZHf1vK_ z>Cn_ja#Hm3GCI5mxyUQMjQ)O5an*qNuD##A+pWZ(4qHIEVcAtrL%O>H^z z+iYl_){7rK*U^qZiQE}S&oxMhxKhBRU^Ll@J}n;nhcuJfVs|}R?2Pa?iqQZr<>eSs z@Ac9$Z_VfEP!5HPf9ABB>ZulOs##9P3C$JRBya8?diBL1BKFC-?|`3}m1ev~F(emU zw}G~8p8V-Q!HDgTj=vkkJb{1LTtqN>L=CIekC7y>J*HUi1YMN@`HVu#=0JTa;vuzwP7XlL zTzh1zW~BR>iS5jj8S{C5Cn`E7mv0TIgVPm$-W<*{g~V>+ygbW2 zr$xp%*x1B0d&nq{CN*cdMo1Scg<;|nZH8}Zh z>V1z6eKGFz)(hepo7y1P6V1%HzB%NV)Z>g|t~_d7U}TmR)9bPm)VQ9n&+UOqlk0}$ znv&F(CN)|lX>jsh%{v)H5Yenh&B1Qe&v?aFS;cKfYI?ajqu)m8evd{?&lnXV@Y5+H z+j?8zf)+yhhG<7`YuB@CJzNqJ&q1l}9Tk0(-y%w*Sne3+9CYltbydA!cl2UnHc(#k z8HLpSknzu_HL!~so!~KLq}c1 z*R%VMu<1;>`91Vh1M8{Lrpob$zR}Y&VIPGY5N5!0`J>Mnn-j}-zepg@!c`u+t?HD#j&|+&WQMVh z?q_DUj?zU>9W;41u8pSH2>u!Y7IM|^+8%WH{7_{||L9?kl6HgqKq>~T>ge9Wt3i;z zh8%{QP;z*;=A!u4Mn%v!1#bMUI|O%F84X>HiZT$b>dQl zbkU+e7S*0L?z`SuRU8MVQ^-Cd)+WJ3(@`~o$ocpVhBpN0FCvy7PCYR9QpL&3re}lc>OHaxT=G>E>GX8kX*Ws_zqDK5Ia#vH>6j z@WR5O2-v0Z4ZwqIVP^8xcyjYPywh_l69;LZKOCxYncn%RF+fyxdchb2$a0p`l_9yM z_PE}b#Z>0o6BD^{cBk-VOpMEqmDFME_k`nRrm7Pq!5X00HqxUcA+~6d--l7CTk?Bs zQ@*5#YbD30?8NI0tlX-e-9%M8lbNovY;0^d?^3z9)H5Pj-SHx=tg`s+?p!CZn8ej7XKEuLZjob_}= z83qrc^Rxhx{a)P@1JwQb{7Dn}k%NzT#`(p?*u+FWAvsq80wGUG_VU{~utoi~n5537 zq0vIMxWvSQuU~IX*$6m6X{u82D)yRD*#AAu!qv_AD&6OJ>N^h}AiQRf$|B07)W*5} zkF!SN|38P-{Qu+i2B)`}RVW@l1!(Dv0rG!=M`phyvQC~h-@=cj#pGQB8@`kOqYT6U zY+(N{?Bjnq!pToCH{M@b#n3H`qhV3mVC9mr=)KSh?UMX-(L#|<5q$J}O^4+#E0gOu zrqFg6o{tHAE4_mNr1#l1*$?m3fm6krqn+12itra+{c$x-WO%jd;u%Hf;h9Bv7ijxg zUi$KD+jfj_9TP|G-vqrJ(~Yv1|3F||pgoc&JH5lUGu7*b1G(rZ(j-G_vFU>kxq2YG z#`-NkVbZy&ob#ZXb+>5WlTQfWD(`@3x1I7v)YCewMxo4@>22}EL#mu#UbhOCbrzVJR*lKYtT%!&6%w5yXeCYNtFZOBK<80 zl9_|IY5-g~p{9We?mQqR2$kys%z(R&Jbke-m;|^@iz!3+dw@o;np$#!Z2W9;Hf@lSO!U>Pn5O*q1AqRf%j-uH z9SfkC;apl}yJ7R%GyG!x-19aypzSj-f6N4(!3S|=ZNg2`UR2P#-g)aA za-3tns5zl`008=p6}Q48wwK5UprL?-g#I;W-s@jE?rl_XJo$7uLvT?KAbl+_rv9Z6)-NrdOJ`7Yx)zUci9P+pg}5g5cce+& zXD8F1jrk~$!Qbe7Y$#)9?Vu3IyYcbyssHrnOMQKPrNPfH>&igX@hbQ~;JnHWma`Va z^K-+OGX&pSw3wBWvNFUkGSK3CbjA2EGv)zDFs}wt&E__*{$2X!>jt8MP!$tq{9+df zgvc^6-AMc>aa$6P*}k;_9MNZHH;VIj=(Yx9aQj;S>i;W1E3nLpq|xqs67}p=HGgx# z3opeThQ}>mfu9hUuvr8>u6Y3SUC5)13ojw9fQOv;>K2gc`?)J9lEC2oBfR}#VSWGn za{=QsKm{o10ivxU`4$*e;_P2urfPAs7%Wv!M(3;w%^c!naKAOBeDc~f$5|E+E(F|e^UHAB@U`YZJ0^rDQO|k)O%@$%HpGUi6-VE&&0Fw=OxFlV z99!?J!$vJ^A6g3fv{LfAVhBBcx=v(s&Dn>Wzaca9!V-F1xoX(AC1_0u?X$=L zO5}vdO27YoF40jEa4yWNu3Yc9%d7kJpkk(Hg`m!?OmYDS%Ylik#GI%H`9`W0+k;l) zO*Dt>GJKCqD^1jb8uOFE&Q6o3_HRs^HP4e^HajE3%H!3c`)}b#uuAZ}nz$`&aJ!^V z19lb<>#eaG^|iMc{3n2Qe+*)9xD}34LHH00qW2oU?5q?ahobYTUuJS>g52vBq$CP; zC2?8|sFkWB0V3ql+8CtVQgL^>Go|OyKE+X5+jQNkK;qm_c5sz>df`B7j}OCiHsb?y$nlz+PN0`q-QWDd zL}FLvk4+fuBNkVAZDB&th2}X&>2d2?hkvx*DV_{!3QqlTkR43p^S4UeY($yNd64eD z!skOoHYo2uMW;g+U(J0IA56TA3 z9RfpY*AjEQ#r6M@$G3?2C^=sYM1Xy)RW& zt`_MtKBd=G!ultGw;{)$>{mFBPS3yIBf)!UEw2D$!~>ESf>vA1ZK~VSMD~ip^)(B1 zbvrmJ`bN}BT;dv*VKc*5Q#p$5Tip;&+r65Seq9wx8bOoh-?qi+HOKN5^i<``d5Z14 z4aRFog6dGfZ)kYWvAQ|j^)g#P87mCFL;S(T`T*NGkIbt&E3+-ZKle{l-|@~vaj`rY zTQ5htb00NdVyTvU%#Bo^lahBo9JSV6@#RDo#q7Dp2#}Vj`Jkn6XnjO=Wr>FF90XTw z4u)Mwk#;TcLV#JS&r@WdAI-Te{Z6Qyx;dO$l$r4OU}BsNX8WV#ZI4Ba0G>!5bD2)0 zFHlR4F&(Y-nxH90&QOruQRDa8MhI_2)xN@`d~aX2D>wXa-JN$-lUeugu`-T@nL%X~ zka0vA=}HX{P*Leb2?8b{SO7yeA#{j}WzYenOCZTGGy{YdAoMZ_2qB3O2%U(O2uUcR zxA1$yyY5==UH85B&idW|?tfWX$$8H6wKWo1ivGN9LvZ z9#0%b=Hbt=6CmO^%KmY%%S`95;b4Vg<2*NpcW*L!`C*#K2Nk>EAVZReO?vWY0!~nL z5Z*IpvIKoNH4_x}Ck9ISToFTeuqoY`tI6w(m7P_P_yI}-aiPR@j~>Gzpoz=2`ySE;$QFPKVN-b;$?v& zRgr*dr%FE}nR8kxG7<#b1j=2h_k*1;f7RLjJt13$yM_;`J1t!Mqw`nq0+ARh;M95i z=k`Jn)++y^>YiBe%KLO{_y17>1k6B)q}{VG_^Kl8L)m{oKCG7~J|6eLDQg$rN!$yZ z!-*K5Nl+|QPTuhbj6S)HFlEYbT6jKma8?Qlm2T)9K=t%ST#LLX|GvRd=^n|}bwSk( zm6V{NQ{3cm;OHMlfiLYQOclbvO^w=VywSJ)P=S)Q+@VBu+ks(-3me!ux(I2X>2 zXHMJRx%2N3q{g~&ov<^T^W!W`4|%3nTH=Nb=b`#5xm*OaWRUz^XJ*fZntFhUfG>9+ z)fx8diu~(889}M?gTOu$#90W^M9ejkP>L8(S}bN@pGOiKyNq`GMyMPix)Jk zYRWC%qBmWxk`W0NGL+$O2P^kmre40WvrgC{0>wqKEFgvb)a+H##}9|YbH-g5_xG!c zmpJ?jkX(X{N%HspI{V|5+RFZ`aU%Ci-2f<&`e^y*a#?1kG4R;`osb+&OkRr);%ZoX z`#&L)sI`GeF9zP(S_HaYzeR(9h4L?YI=jn4h5!pmK7T429t7myugi*zw~GJ>=>M*` z>kvROek!|3XRS z_fbCXuR6%mlZ&Fno??x`Lz@G~it?{d4n%vXk|hL(Ugzm~^w@o|bv%Edg$B}UxJLJv~z+Ar-T#b>A#jVY!2 zB>^FzxT?+LjO6zTS>hcv9|ur!69Fee0%F>k+uJbGdum$QSZ?!oybpP@0NBb zfvY8G+-i7ZgMH$#ZpHY)C;U%udRpvn=at^}K=b--223ktc?aX{yl_7}z#T~JmP=E3 zcSEPC1H1;5!!m%C^X`H{`T!QCGB`-A99|`28L5IS;^T$u|q^;ZPS2|^?)nuVcrQ>y> zOy;F`v#HXFD=PT|{8VNb!&TT!4-_}<%hlSUVX{z|&2DVCM@sjZaXgCYE z>I&k&ZY$07-A>nTO8{LOPOQ4ClIotVW>%`YY}E`Zae-N|dUdQM-esPm)0egQN!&oU zpp4?aZd}KeZkS@WE%t77?R(_r*dP3F)D4jLUkZ>T3Sbg>@G(5pBT`V7Ks*B*vKzwU zWoTaqrJSahl`f;~?y-M5)0{z;SR$PPR5pcSn1N6{|IK4%8qf z%jEDL?Ur2ITaLO*D#Kqvm=Eazf{*h{VhGbVOKH!A)Vt*}c>O09tG1rsVwOk*$>W@( z4Nz#gTp?cPU77WP7WA?eA`g*-6Q(yL%vAU2XiYZu59{SCWpQWH=tZcr+!=-52Q8o9zVi0SXl)jrypbmB)ih}YJ${F- zoYkC5d@^bJXMFIh;ti(pKfNjUxe<`JmZn1e~Wf!6qwg|+f+We(LezS5XX=6&LYYGl;*)1*T7P4z#Gm@mW1w&E=`<5dFS}PbHxySw+(+fV z&X+Dfu96W>R2?YK3Y{5wOQ!1&8!8o`d8TI+VM?)6js2bGW4w(#!UL(#$s{t~S2+dB z#13M647fppkJrX@?%EsGtjIDKQ-)AMf8GzM;Re?v=TwUCJF1@xv*Yj#U_Okol6@dp zS!N-Gy@Yk6HiO;`j#yC8USH`gBkr|_WZSd@3b4x{P%3cR>7xe^ewEhoapaYX zi6tj?b#(zvG8KVb6VOWYhIzKl!caWS%yG7Z51DA}VqpW1(6!#vm-U(Izlin*3uZ@) z>X%lV5zE~0CN{j=d+a2z(*Az&@tW2bz>o}gmWhIcw|)?*wtm|U-W>-v6EU&xcQsfC z&H@|B)90d%>&k99@SnSxtN-wErK08i**4QK$R1^AlDTUM;4Ztwc%J!b``iz}tM%O_ z^?w=SA73%q#Z-pY1oj?4`7J3P4O9xOJOu)GFwR?#MxFPHWADxa4|?o5?~(1Smn1xT5%T=GsAJKn~61Vwe%5-*u}K)-$# zmht5}J`1N;sMzEVVsdu|cBL~|Un95mH@AFmPWncK+g3#|4EnkhgJ)0q-oPO?Wx$mR zPOmRqe)2)d+k11-XoZ2ut;^Ex?~*Y}_NvD;*P>L1kHMiRK3IAX^Nb64>ppfC`6K?{ zre$E{i`!=1wHKpfqaQsET(nf;#I;>6%{SVvfgT0L%5`qX`Y>L}r|Kr=Y6oUFV2rgi z1Ne+vi?c6>?z~>f<@QhcFB@S84}P8+*+z_l!%gA%GlTe}G$u3lkv#?z0NGwyYuZ#J zhWj_Km@t#D0nDz@QqIEosge4#((y;4Wz5DSw^MzyqKuso`ib(MWD>W_@g8O7)(R#1 z5!04-3j7|tJBv}mI0V;GQ7EL!h<>Rq6=KrIjJR`%;U0tK+^I#lwR9lOAhvJoO2wo@ z3`Ff2X(ZVhXKf%|!D)J1mTwn1u(B9A@U4lL3cDZ5Gj%Hu)Sks2!qFtWEMjCEN>5ZC zU3Ev@-n?})Ml+|92V(hf%`w3AwX7%l7pUppOa9iArf1UbUE=8_Mny4$FG(XA*eIEq zK|+QSQ4W~TeU%JgK7YuV#mFG2acypxhMKB%MTQoZnai5Oi%&&_tA|!wbDD%RH#K`{ zZiO$84hX+sc_2e9UoB>$r$W4R^H+DxxzVJ!3Z?!|cYcLGSP$~^=m=qIq}Q&e?W7)n zrsCg#XV+vG#?wp2_voVBoOPeE{exz}moTnS24smip7gis# zM1ETUF}~IX=}CIdwb%7tMQ-(fEFgOj;$%WLZk4VJl_czFX{A&B3onqUAzxZwBAhc=8)Wg0?u+^S)-Y#;xen-!)60&c$Yt$*2-4kfi!v zB{k`zNB;Eia@mxZN0>51R*tq38n1cboVPboRa4u|9z&by8`J`A2f+s~#7}cpv1;n< zSNvGFzUd18J929lrvtMwtNR94Z2NiwJ(>NL0W47TDKq%cLyb1))_vj9v+Q(#bT#!=MYs6|G zMn@#R2E2!-t~X5`_Zx2xb+gdQX*H_zZ;m-k?Y|-RbP}-+7-wqtvJbcy$nX0-8MJzK zL!<65U2W}TlQY4ON`Tn#mtS98|ALj4mZk!Qs00YmGVHAr5FC^`E5Em|XZNk}8R$CC z-6%~3UZETSI1Y|4-hJn&0eA(Cf^)!!UI4IOY;Y*5@s0wpT_`(W`_=D`C`?Kn`sr}g z`1FX4Inj38Yg*QM?Q;|TYo&#ru$CA?&hANVvM{`_j?1>ulhV6is{=QOBN69q+ww@^ zO;3uhKk?Pm2)c`Qk{hps+f?UCb=nBTG4tZ0t6r|iy7twDv%&NF*)-e6Ec^1iS2(Vk z3?6&zQGpHdj8VWZRs9Qdc@-=fuzK=r@_}Q&Q8@Egi~|gN(hg6RG|>~yN$ricBhWsq zLXq8AOscB8B5O={HEVM+8;=4%DGKT-h(?(3*V9RHiclYz3O1_y69r zy;&UFjUtW_hw9s)YH{GqhI@UHEV;~;?lDuq`a(r40Ku0+O19)r zY*G`zJslqG+E(CO;Tr*eSe0X9CIJ}uRTpP)DLrQctzoiiXv;haZ*OF!#sNU z*gaLBUYjH$5ZuvI9}qXdMf`vu_m!!rzi1Ui_dFJWR|Mv5Fb3b--bA;7X+Sq62hwoO zDItWMrKR%_TbopmhdBMIE6sER&4e>hej(21FaScX5P%jO)u{UN$L2aWrcdN4Q0xdz zHStec0Va2pR;MD^eV6ik%kTT_Om!_hC@;u%bz>o`?z4PT?wTIle8s$UD^zx|Y(!i3 zlO(hJo?RM$IC(T{m)@P+QptA43_0@T*giA1OKZXr!-0gHeG&{uNEI03xbgx(!{yRl zwm<0@s-#_b%G3nHP4b1I1RpKmPA%n@yEhfv`xvE{$c97rEO!qnsFii--Z8a4qT@RI zV7%rqUaPQW@r?+|$9Rs;s5ziMe||nHy)&pamM&SmN9^f&&*>K*(aVU_hH-=6X&LsX zjJ-mtp1B0;27ivjvy{R{y+uAtpgB$`a0&p04?}b8&M}UEh!ZGhJWt)N!vv}FEmi#WF>l#7QlK-9wHZIDv(-` zUtA2yC|y~&TFJArZ2f)ZoD?d;l+l@XzBP35^EJlbN$}EhT8u8*rN9Gz#pDae3-ck~ zixXcGz=w?jb;F}Mbre5!94^wV12NF0slYpyLoVlZ&o#eHgqLO_boGs(D;Hr1YUby8|?V;+8oFj8vot?{nth&v;6bHcKWEbEin8B*^rCV)> zPUg@3RGY42T;^{-WSw7wvIZ(f%C8tE^5FA#E0Kc|_By|(&K+1q*^Bk{%Ha@JPV5xf zhfKx~G45NBp#f#ewNriFPG+tEYKOWZd}ng;(@GRMdjB)*LeUpP<$@5LESS_XEaA#7 zaQ}%4;O-SS{BjtQdqq$6@(izmGN50I4+KkXg#t8o5>B)s+McZWebS|voLIN~5EPa% z0u|SX4#Ei~Snb|yU%+n;!zedv}PYcx!da?JMaX3f_9} zN+xYJ0pg=MnANr)2}tgSZCbi8pSe~D4oSHIxw9`{3*>DcPZwr&*Y%6C78bqngO#F~ zRLgmhH0(bB_CKa$yL;S2=Gool_`MD}B8MXd_*2OA8OU##`~tiZWQa1L{|M>-@fH7D z4#WS?qrXe#1Gyh@b&(d}|IMxXx2JSX)CMeHIp9Yzdy9YhhsYJ)fN04A0>QZlDf`8W zCxGTduDyA8i23={Hz$;A6qDYt&6CV;nC|!anR)gJ5_#F3p56|eub}NST-gtl2q|C8 z%*;Ie>iTZ#)cy3Mu@fqPqi@~084FJ9Vis{a2eM{aHKh@Y3WD)KwSfC#eFG|#DI*~@ zQ~;TSr`GsfoWxNSP+PIi?FtwUZOba&t6nEp&zDLi?1V(jti~7A>oc}lxb--Wb9?p9 ze8?zlLa^s4cdiv~7KSn~sn<;B2t!ih}X9is1X6Z^Ikn8Wz*kI69DYnhC}Sji0UsQ}BUX-s{e>wQAgkO*i2H1_-i# zaYHwgpk~qry=6f&LXZQ@3feM zmyUy}L6Q`tA!&%U_2|bR66DdIrEci>1tS{gW_?PHeNhLy)*uyaw0U@a&08{fsy`}h zvzLObm}L#4*=@`<$$aumi@U}Wk0QX$L2_(hsrsxiWh17a_Bn!dJJn1OJr*{bwAsCM zSdJks+~BU0#~GaLIjajwbDw~2G4!d;(Uj_zszYLC@fg84Wr8(Vn>0#%s>_E6*ZAok zwJNJR7lMf!P9uZ8)9dXgf>#!E1za_!9oU|y+2aQfNBMGalmz|RwJ!%^f;HF;*_R}? zB75&9^&ua83%a*G_R3%_s<+*u?Xv$ws=?;7-hnW#)7>44QGBml5QGkNTEIuR8H~#b ztF}7T&SN&J;%c8bLnFq<0~OpGa78kwXjMlsYJ`nX-odCPQ{m%@)IUhV>xLl_YEq5p z#jzoK`J#pdV-zN6#qyrn#W~VC0Rf0jSKTH9*&Xd$2f%8fb`oYPXr`E%zN4d(axjnuA0nhVb53sw`tN>*OSk~&5}DV!aTseE?{ zj1I-8N@JuUz+Ff=>M8amCm{0W#~KtzA_Y0KbU1jO=d}Li{BmevCzeL&fb2Zx2NrRv zj5a*#s|0O=D8f$3*1RWU!lGF!PMKND6vrchdaIW7|d zPGx}6y6m+kiOHB@0E$M^x-Fb(QW2Qn)OzZSC{mm-bx+oCs)kyamh)P3Tx|%~guI?R zOWnMOF^qIxb2Qw^HeyV7dsmHDJE=Eb8|^gOh)yZpvAt-t`BttoWrrrd$d$Vr*Rb`K z7{+U0^xfL9j>z29Ungr&vbN(w7pWA-)#rPjp8wO9Xsak?#OtVAXqA>S`aO`p0-S)e zcGXYvgRLScaMtmHf&vPF8B0scN8_#0ePN>~8U)LphT`p2?DbC~DA0NFA3}-I6j2#x z;|aUPDZ0Uy&OSTRQ%at@r;fc(}WVyxfs^->3BWv-68M0EooQZdhM0 Jyyo)!zW`>9n+*T} literal 26631 zcmbTebyytVx-|#^LU4D75HvW!-JJ%41xRoW1c%0gTjTEDXwVQGg1c)7kl-}#7UV1P zJNL|Y?tJsio%w^Os(W|Uu5D|tcfG3!S67w8KqWg}2gSpbt~xpRv0_gJOcPpDD=8OUlbr!*9Ef`)#|{TnYTi z_8RYB{&Dk|eUWMT#l3CM@JRp9`rVP}_R9iFjy_^j2&csc@kK7@-&4B&l2FLsQxXB$ z*S!B#T)*`6yS~&o(;3vK6Jk@@XiyB<-&1ZUi2ldF-;E4#+I;!VKCW5R9II~i@6QOB#Bu0<5aj$2)!?RGWkr_h zwZ)oFs<|oex}^x^n(QBTE2>0PALeS&EX0y|-2#xj=62qg=~8=&hTN?(i=kUliMsMLNX(NM{JQib^f`$nmOIG=Wk9)Agr7 zXN0BUcC1Y%dLqvO6rKHsJgXwORKVJGbW7EOpm|CL102%eckqHf_jjPZ4oWkQHO5W5+)`iAmQoaLrJw*!yJz~VH#$R12TLB_Jn@XJ1y*X?knBqcz~ zeq1PMne9;4ewT(K+PILf^{i)~83KkXRruIU7q_?Dt=*-TUNcCouZUM2}O&d;4F%YM8m0?tkhYKNI>SlCq+Z7_UDSCocR zMW|vqL4BHrrhJu0O*K{%UM|I=@R03%r3f$~9JSBJgpRz=GJf6NjQbgl%2D|w8X3*n z;pNK&RZ4{vB5H9>E0GwD8Ls9(*Q4{-!V*6IF3&W-kL{Lm;Y42NhLGM*;hyyP}mZ_L|-cB+HjO%l3`jmNAfi4l#=FKP{KgjS(%<$-o~r^ z{B8+t);Fhx`7gWEYSLAeVi{bscInGMB*vp8LU!Xme`8C>SHVf^!DeV~=AS2g;WwFWa1+JxU#Qw$zvkQJiq+$am zRlrV|I_=q73I1!dhvhxz;X(7F*AcJs(q$7w=E?L<(pQ{mZ}@W|`8p`m!BUW-!v1IJ zQ0auPu2C$=M!W{_HPxV6brfpJ>Tg|OIKb)oH1$ns2W-A9>%8LXO0hBd>v`SidLv9M5C#k zZh=EHrJ8AyUbt~|v+{5}AXa3Pn(v?H$Q1gr*JHA-BhsEHB4pc04wg;(*IA54G;=X% z?IXClTFXYwp4JPF+Ln!!d^9xao_;5G7S&HE_La$&kN-j_=Do{7f=ib31*wsFo_c4c zqWIaz$KzbuLi?&eJNM2<3*uRo_o`rB%mp!l3s7&N&P9LD(rHwhZMAxTK#VY5#ePJ{ z*&kIfe~J`~@55P+^P8&o9ip~G)TD8qql<$E#8{c9VYupL<#VEB*1w@X1;0a_(}hQ= z#{8I7gqBK>VfJ@tOZ8g%2WqS&bYx_%`w`*v-&poJnPhBf^iNVvEbV4otB*-`ofN5~ z*SLeIBdJz;ST1;8VWvmV^Lv^|nV=9SRcB7CgjH}rr?VVk%ok1rQ-QiKpFhXpR)K36 zh(N6>jRRK%E1vAiOP!F~uD-==`WTM16=vu87BS8uAG!o*dIEMB%AHp=%b+vF0WiR_ z#VNORwy15wMGLiC??qb^PxYQhsY3ATWRCzYnu*#}4XjmHUZYN(J^OhNYj%xwP$HD6 zNE5Cg!m@r>pVu|Bp3sPw<5a8yhpUeFm}SG1qQs@g5hvyE@5^@6)73danq3%} zf;-em{x0|guZmcBHIPGc+*dqXhg8~vZ0c!4KD?Z%pEqKOoWrd{AV|lNlX433X#cZbpI9;Z+tOXsXHiD2#OYc`heOfrJLTA9 zq|Ae)s9MD`_%~5Xzrm(vF^*G$ELWh@dK8~i!*Zje=^UH5qVyK8Egv<%W+6(@yF$6e zmuiYyy7-31li2dpY;51GXym8w6%M}aF0T3;NBNHo@4GNH7?|PwB(|TKu94EmjQzeR zdI?9r6p$*J(8sDqvpX?5`g$=Gw^L3#S9*!VHxxY@UMeJ(+YEsDhFi{a?bJzJU%^(DEm z=a_=1Chw+T5u;&Ml~*eIgvNmjl{}%^UIT?SX*j~Xvd^r)0s}t@p(jGdHBcd6D}zu> z>^FhpJ_!U;n(Nlv5D2cXJZH%ESesT8i^^`?h*v6^=n2D8foNH+jbQKclY4H&DZ^`7 zVFuYMGj9{qo5g?-^9J!j#Vkb3a_0d7A0T&|QVDEErUKY#D8%JU>6MIqZ@iJ^@ghGr zAx#BU#Ko${+4ezZPzbt9r8jir(y>w0)$q_Xke^4BaLZ~I8apF6&c#okr&p4iHrwQ~ zXv6Ejz?oXd?RLI&nT4i97FX!seDr-tbr5wts(r23(rNw6@cv9DqvZIuS&B-lvt;GS z@CtwQtqZ7oz@X($uODAD~+kR9fI=Qypx=d+6T z{x|FR;wU2&pDZ3K?fDa=#M$?Z&Y6|!W(t)Szpg7@HrFbQQPuFP6(Or~r?jsA?8!_! z3I=3JW1NSDp4>hv?}u&#IM5{*HMzopW6CgUU5Q5WM0$-E`ikWs{LUPam(I@O^+JbJ zZ^B8L>#7tx=b#t{V??<{ZZ!WGY|&Lz8jQmoF-H(N6s%aRoj`q*b1qLRkyePK5k@E% zl?oFrY$>zoQ9hvm>Uq2Fk;E&vwjrnr?4}Uomp{t%TS&~%(Q(b z7-l~THUW-`FkN|AnmrPCEw<4#K@pD%ifIL-JCFbM5O#qo&2HQ`i+PtgV)F^pc%Pd#B23&r*o>BHfH!anU&T_3 zK16d6YF&M`;>8_7Q1f*rfWb7bRl6)JfJ*0P?d%xDcque;T+vgCPPl|_g&F*Ei2KRjReMU+sdZrk>u*= zWshq_9pcKrsarze9y0hWSx~o2UM$fLC@^H5-yiwqMC=k7e1dOt!fUGeUTE3}88ib0 zP8P^eN)VyPnvep_c-a|Kqu=n|t(dFjfkM@PdaGfna~d=wHeR^2 z&RXAz^Q}CEMi>do_HzJQ(yhS<6{N%jP5y+Eh-=cAaT;Ty)ngVJ7G+ZI7dyM}S;r4e zv{ro2>G)n#@*}ag`*v@4q!{9A<+B}=JjSSTkPBsVab;Q&*I>&TpO8DB7O2@1H$JXa zfNHmC)%)|of@^fiBRT_lg>cZlN-(uK=`^{XbCr0IuxgrKNV zT{hsV)4ek*6=TO(2n?+jSYJ!cgzf!! z^ms4EI~g5M?LqrWgU{QFOM9#=l-t-m#SDciV4{#VEnm)9(Cxzc$t(u@9`cX*#od6(Jh~Dw8gP@Yz$@;tT zQm{=?OhlOUrDlQRvb`h9qq`OFffz&?i%pu58Q9X(*bt8s>q=P*jP`NgeQW>JBPLq2 zZH!e85eUxseQ7ekaU`P9Iq;f&JDkGQv?sDdxBZ~;Oq&}UjR3>%Pw@o#&keY1mS=4q zCN!9n8-t88>uDqcN|bjZwj>aa2oc`J$tFk@sth6# z)sW$cvBDlWf-kGzW`TBIkB*g}hA(v`d=_L(2PK4%xqdI%s6lrXpl8(2Wd1H~jh)^r zHO}ar_>LTt^;c$_s3a&(gb*`b)!KIUbo@ZP`%0$=pP4gQ-i!B*3KmC5AT(MAzNNT4 z5IkL9*i%XTIW+IM7R^ zyzJt}jMEWjVZ2hY{28kHQW9oYoVMbeSR4UiWdKi;OcRt60g-{Gj@6vKqxL#>F*f(^ zr{X%zNk&C`!>nra;pA{UhJ4D}%Sd)woWkAwQX{jTM#uH8Xq+q>AyOoi;S#+%3z?E? zrRAX){6ScqX<6i2Db9jIjNLrXCK5Biysd&v3T3K!I zsS{~K412R^18T)fm*nCh{k({j5ZDwPIr{SPr9WiySjUrVtno*$o zAbTfyqI~tq;9!M8F{f_sOch>OIwkMLhtpm)BPS`NdScV&XGAGg?4}SVuHBTrm&)xP z2lRY)Bcy$)hmMa0<86}ba`diiqA@>!vQFfi|z-=|{ zkKWGqI{aaovl%fe_$2-4A0KyPiJcD60r%7*>e)eKZ>{$EbNTV-w~s5WKb~q-9`!ix zL{54A&O!vZ3yMgy>)xDYwrAhJ%6|JJC$kyaJe9>!`aIlh=lERyP|0|s7ei_aDJ4-# zX7#*Y4gDe)RmxUM>2nJ!22MHqW*~o#I(`97RWuc`fp9`sbYn<0UH?A&4A~yYv@H6m zL8)M%^tKbKk^xoCx=o*N-FjOEo&|XQc?@A*&5nMp+2GD(0fTC0*g|~WAV@+)QBf&{ z&G0FprldtD|M_77=XSg@$(bQ#7FL`iYBN*fdA4Q#ksE(1BZCv_11^zk`1sRp*>&D$ zgN{lf;FG&oH`&Uk9vnH=_wB-amBeOVBb@!Q+j*gs5gzezLR`tvosSB9_ai(u_+Z<+ z>l621J`Eu$9L`(Hckdr>=h=-~`MKW)8dsGdUS9U#sl8kb6+O?>R2A4verGT6aJ_E* za3=Q1-PV#vDYBCr*mztk3*Y?2S1KlRi^1o^?;p7OO%}ge>$SjJJ~-UZIo$uqxz_`C zYV@CGU$t(Z^iy@LM++I<@9Ov+2T~by`1;I=;4|kRq#Ip)DT$&?TCzhmTvf*rS&S6Y zIPy4b+J0&#!G_Pr*e1-ly!QIdog_*_fG9V3EK8{8v&Q^+abdKyu3cp$;<`KYB(G(? zNN?ObVH@`P0@3Q*4|+S%0uZXQ@NZjLx&_!vM?ObhoKullENv%!WCVFk8-srkvty^> z+bky9NLM0;Ja_U!FM+9r<^3B0&}E96fZ0|zF8U|R!Mi{;B%W`q8JK1|5-G|ukT|ZwtG?P!ex1VJJ!pzcfw7$$&!|C#N zg8IpVU)Oznq*v9P2I~ee#~K7f{&UTk=mCoG4iUE2<1V@w;o37P&z~O~e73lAnofsU zW=EEnAf?oSL!-uflYe_5obpM}dOSROh;HdK4yE|!0@GMg;XDlyv>eMc62{yZvaG~J z8U<>n2*~B~+ziRj)J$I~aIJzgFv=Rb{V;E}^jpKrS!ngF^Nv{ZI%@MesGkRRqQ_|W z*1#yz6+GxF=Z+DEgUn`PE3c%dgW+oJlQab>8(ze)GGR5U5t%Ij@1}{OniFCo`+d%v zn(9b-slnc~5nr(kPcZ2gXmr6uFxaHB*i@nar6dRJf_Nm~8;pf;Fk6&jlwKcID%>_* zz){%nja+21pm~_e=X|oe{XKg4*af4fle^cr*Ge~4OY582u!9|tc%(DywEGq9Vh+{g zb$`yErEQPl_thUH<|e&Dz*nJe+FGhN?@T=%q6Q7~wN_4(8#dTXCpATyt*4<j?aF{1AvG_AW{a1vx5b5t{1k>X;(1X)lY|xMv`TptL2=#4TcMx zDVk7n$*OE!yPw|<(rqiltMa+b4wsr-I3sFw0~&iPbZY_{#sLK2ZJqS}jX;&kZHalb zgW$|(da~AA<#)da3RUj0ywJpiTJCt*>v$7_>0R}T zawTVQrSHDiHny#V_)C?GE%eYwE%A}P_99n6}RX7ip^I?i? zuSy_O;CH`UcJh2$|6&g(G5r!vYY{B`ON*$i5}bHD7ZeJP)d{$Jvr#GQT%M;J=eg>S zLptqUGK%bIGy@`6OWg~y5OjzKvoDwp$FD00Mc?-@gfOECSbfo?rChuW&j$xOQ!A%! zMNmIJfmJ)@ERy!aAGpf5l_S6&b?5M~fYV(FWB^n{??<`0I+Zvq$4wU>4ATUU_ zy(~~GXymLhTKRyD*u2*}Lr+!|wK@7Z)ounyj$ESTv`u3q*IUN%Du>4!*YPt+Qv)Ti zL}x(b8-WOe-B`ZI2q6WoLc=@)DC?z zEgVmCCHc1<8N0rpmbVLAj!mg~ui@Fr3%}Nm2M;Xn`W96$Om-rZe}el{u$Q8@hR$$W z(@z;0OtX)GSs^*pzR@N3nv=J{1%oTdXett61|LP}3nMo#^|L(w^qnRqP3Uj&1h0#9 zUfZ47JgRxPmXMSsC)nmf9BxbA*IC{*_rkWz#mHHo`@Q$?>ur+8#BtX{q=L_oANlDo#7eCOdofv9#Dn6dKqcgE0(9Z8?deYyT*=&N?XPOP=~E24 zj;}2;@_Ql8QjQI4Y;?%W9r_AphiFSf7vJM8Ky(pHhO&iMiYu$yl?H>jpVrwwv}tY) zw4v30^?=eMx6L~hY*cyb0pkoh)aG=(k+o)#SBR&F+ScpH4CxfM(XV#g|LoYr0%I`w zibys5zJ~kip;(xaw%2w(rKG1SJhyhvzm;mre2sO56ljnW=LNlC$2eMY8wB8@b2~By9FXJfj%x#uQR+>5oeM$)vaJ zH2j*!b?0iqG=|;xBvMf}(#CbTh|gCBj&IoouXEk{>cvXjRB!@8#tjgJzxO;P<+HJu zxZRc*6WGpNGgUfxd+X@~cAmb^EL9M1D}4Dy7@$+>LqVnM(ZzmX`pf>*%5H(QS$&QY zDWR`tbIAod;KUBD2D=}?(%7NIcSoL3bLZR&`-9&=bI4^d*orlnFl=P%?EW>Bv}4O2 z;)~Mzv+@H!yz9H-Qa-UedXm6%Hax4EsN;?`;EALDe2A{MoqyU;!rUb$e(H{7KLqJv zE|GZp^~!0cI3#|f&G$ci_;Oh$e-q(y)t{fiWVhU$6o{)Y@o7f@zN;h^RtU3zwnfaP za;w>I@A+3Q^jVT3{DOCIU3S6*)~(_c%mb!rH^^GbgNacVkib03;jZi|z8*iA_4R3g zxtOSp)s&P84Wp*3nz^WqsWx39;kJl{v(Ek5=(U?U&yMu#IE2r8o$S{{cdK@+?#){< ztFh9JspE4cMF7{E1ExBvTxzUdJ5opdVq$MPZi*zV>Rgl2dD)OJF30`Qo4=5G9x$7O z>O_2=JiJGsW58)W_3}PHr&1o0YF!rwwe9&sVAw=ggf_p**2Pp@rCEHW&9qpq4gTsO z7OEA;l5nnvl0r&1Hm3BP1m2z5wt%({CV$pf1#K7e2Fw7=LXmNbYl>mJ-#Kp&^=Au z*)eoeRLFj*u~f5oEJutA7VAnhAw|@y7G6xJuf(cS2#kZ4qsLhOR<8S_Hp|qqm`IzM z@e2fV9P6=&G}Xm2ok@>|t%vN_b_}-_-&Bv;##Eh}prg=Vb+CF$q&Jy#PJ{F*>Z|y( zd6TQZHw+p-ts;wEcb@OXH<_kWs>kU^vBGewRtC&r7U#662w60% z1G1x8LON98wWw?f9wsSMV^94LOYmAgx7x+jbn2K&hR!S5FkL=3lZ=HDJ#dc;YmygH z00@}46cMnts2NFHtVV8T?K(VLVE<;Lq##XxPQ3{$(+B}#?xk)6ZE+)!um7rCE)w!@P?BBWQhbz_3%vnjQaI;E_R zQfjMMax4CgN54F`vubyum_uys48AvKzq=R6kjg3Eu_*TQ$2ynuR@Eqe>SzLo9hLB` zaK9d{X-!I$OCkwI#Q=xeDWJtTO?d{6jm^IpIWjP6vmo${7i*Zh{OFTkV__zwnT?g`mCVboC|KzQ3vAiHg(6 zr$XbDUy>AqGRS_-Z)mjLY-Kcg^Zz(+d#2HRy%sr*hr7V??S=W^@p%Q>V$&}2D9KJQ za#T?S+v@3`q_N{Qf|rrIP2~zZLm$Dbwps@ElE`0SrwD{yPE!Qo=L_L8@j~au*5Ki& zpYt((ccyw@V~MkE2|>pu@shUehn7O_g*;F~Vk|w)jm!tmc5?svE0g=jWlWc(sdBanOIp~Korly~NV`cd z>N1ZW~)#Ibc4(6Yn16L*;6gb>aA5txmR@_ z_@s=;ZPSd@L0c0ReE?06X=|(zP_nOzNUSRHxC+(&HK*u@@jdn&GsE7Z(p`VOVa1wf z<@frZ`isxQr(cq8u8xu9b_1#Iev|#WmR+fv9+ps}Y7%i&=LeYwErD2!C`x4l_6M?l z`IrgZP8wxed}$ZE9dmEz{`SmV`4x}@3-Dc##_lQcWyG@UaJjE|l<4&5y`*E9&K3nWe+`v)2@~SF9@*K$uCzrnn(@@9;LigGpr(%5eNeE+$+wZu`A}!RF-#*(xe(%ms+Uh zi*ZA(96Me;CXi0_X4oqm)`HFn`QBJE9VYEd+(e|W+&2|FtEX-n4p!+2+=7vx_1e{^ zH5sj7dFX^$0X7U$hXYuI4cyP!^9TZ$C^9}aTb|#!SNbs_q=DzgG3_T1&MSAV!;&Io ztwO@F*bXmPRfj+i%vv@U2<9=7qh0UXv+H&uSSnxm(3zv3q$Woua(l*zT!v8*#5F;G zH;a2?9|IPQBx$t8)~98%@O3bOApzI&&kvzTf&0@x1aaYNnT-KXgkyf@l`(&KF9NYd zb$wUYKYLrw0Qv(>$T9dkJo5R$4P)Yx)40f$LEmoi)sowSS~{n}Xjb zFyn*W1jztnpKLt(%uf=()rnq5cvsjFAy`ddGZD~*u$7v1K5ZuHa0y|n7{f%|wy)kt zX8dsRih|MZ)JO~(gbt|xT68*>jzN9kf%sKN{lw7W;(O(@(ODl67pa*Y;Jzf_y!9#L zJ4uOw&&4cwvGZQ$@eLUt+DiWU^d#|E7I>~g&&7Ddet-gF7zhwcxe?cauEFq|h&NT0hAdsW)G)wFq#9jALZfdmFzUGO zWv|8lV8{v|N-Rq2{<0C!m0n^9tlb*>+W+j2p~}hjM^}5qm;}5qYB2=F!TIL1#}`$8 z6iW72VdCWXFS`=1Oe&Kl$ z*W|o?D(9IYHqKSw^H=F>tD*ct{vObt`lHC)WdrZ8emypjK6Yw&Q>^TV0O}ne_VLXX zB(1-H*nEHa(?QH^r=+ieAx2;;b%_Wzav1V&Jx_V|uWG630H}SXf`6sV-6){+ZU2AO z!wcR0_YM2Bva)w4mDrl3A5Dci#|8H)g3*Y|M15}0dn1WVe^eVwb=L?$R37VkjJqL# zXKcb?Xd{d+njgpv4O=?MkbYU<=_A(U{aY6xyNFqdBQ=Gf-oe!T$^@T9!${f8U1VZt z12iubG?`@VrHWKU7GHA$zBj1Ue_fI{sO}#I8dPWMign~Ukzmg!Ew!Do6g?wJpDtF5 zS>=(a)xfFdduguSDgXVrlejQG?sHGEq~;Be!SnPXiSCm;9W@PJq--12G_K$tlZY3T z*6ZJFX3Kc=H>%V(#Dh$-0hJc)|I`7+#bBPV=~}r)MHB^*V0m$^#oLQL&!VwU!kd9z z2`&jcT8y;EWkYXu4C}pboSIAcEPPQoiCpgpGA%UyibApUPDtxak;yq|6$mhbHJ%2N0=s&+ClX0t zp}0s&@xJbk&8@fAxM&SyPS|H0G<%FIc%bt+p*ep=VSxRBOc`>#YY}NRb6E@6NQjy_ zT*wGTRHRcCr-Fl5aouQ8{ZUnz!NMe>5+g;;*@0V2CaCz_H$mx;8k~;VD>)JZoG@rO zv7`>0A0RD5U=06s#nU;bg&8m#|6{&U{Qdp{(6>{|{$IuEe@|vEks+Z>PH6fPpa}y) z*U>U?+|F`ear^l(Z5EL2OVOT0_}P=Qr%M07-u!>KQvUxv`Turvm8$cd>1{vvX^2v7 z2qzTbX%zZqG7k494~BK_ocg0(8I*l@6Q|!Vwfp4WXngzl^G!W`(g>hj8_iSO5}V@w zUl%Yum^{iE-7L!aIXDc_Rb2-%thkHM)!>=!Gyxe10Bj4N%>X^D{jY^Ca?|Sjv#WR5 z=%HoU_kQ;0VIvDSy?hLtQLD#LBGYgRdkW`l0g<80Bn`$I33Ku=d&eChu=mLOtoKEM z=CMC`m`*4``exw%89OKg*kyJhrb6I4j3I{Ke)c_OW*Tmx94KFYN4Dfm)k32R6iwRG#$XF-d{7dVt`-ndIkW z!H>_+Pby|oNk9CP?|@WOBKgdS+Rm|-DjTiCUb&JW&lXsVo7(&fD7jC;__0Z$_>{rB zrIuq0Wn<+z;pxpL|6Hsk8MB+Bppjfgr^cY1`Z)s_hxiak|0^Z7~`sC<1n6!UNO!%)JQaiWO=I-P9+i+7w-~iqJTQ4U)aF}-f zI}=i$CIn32?-j}@z~MZz^6v;iRsa6z&ig5&#gtbCK0lvU%KMWNdKzQXSSdeQ%W(K5+M59>hz=zBZl)pC*zU{xv}2rj*?T1i3*Dh6+#qcgkx!v z2e_k@>A%gNCv3ah-CW+aIe1^6>HU1_J_u7$6&N2r6tXUoB&ZP%=D|@b9U)D`BruLM z5$Cci+7`_8@c<{nfJ9X?*}HtXP`*f5X8DoeZwQ&}sORtNijPm@)|WV?Ba%MEUpSjD z6FH-NfD4V+1192}+_)|&{BxdU*6V(3Be@vL*Db;X(uTLBaIQT?v@sMyglZvHjf{%Q zySmky47qD~h-ghR-1B4zmLsYD^cLYD-5t~-VwQX&s@IvLgGI=3Vwn0k8|nOoaRqEn z&IGR`l7G5EnkWEU!v7ENcH|5*1-rM``Nv zJ7wx19vnUmZVmZbc?1R3$wd9Gk0Ys^G~q8pH0TP{b7s<>RUd zJulJd!WAubt|1ywsXH!vdt8QU&noBoyzE(2>vOk|V9hwrFp7dP?9tRZDa0Ap)#uh@ z`Lp|R8Q%;Ioe=hE1jAo7RnZquAH2Fd_s3&vcFoy#6E4^qifYId*cManIB|a?)&RJ| z{^`jH2N7nBAn&v{AN6@In2~uk(+FJmX&{n@MY2{_#Y#2P!`S(w*&<|-yO1tFt<&$k zj6=Ni;aNW}_|-YyWM*92xHaPk-D;|d^zQ3p{w}zP*L_pr?`^Wm#Q9QZ{AN0-ck!nB zO)v;{HhlV{pfa_!ucQQ_zzV9g^5wd-jmkk7W7+)=+Pj<|m)GZHSJy+CDPNZO#r9VI zNyBPNc3hNbVG63*CT!w&kX%g5^l) z3fLE2X>DJ?im+H|2s7%*@S|{E&&zx_;F6)eIsM@rmsewqV8SDd^HQ`bhW^OD^?2=a zm?&BzT%*$9d_L`>=wHZi{x0TO`tv-zMWp*g+k6iV&cr#Aa^#>As&Hn=_3(=sfGG!=)+ODY!rhjqEh{nG2_$*S)Whx`^m~R=o zHCV`%JVJS~79C8V%~`Cpf&onN0|cPr%s)C3^0|1Y2hzWaa3 zYX6%!00{YiW5LsWm%?_XkxCi#Le|ZHso_(7(|pY=T+H&!#Rh_`KeF8rfM@!fCWkt> z=$L86YNj~bKf9+Hblu(yuI>D;VycRM3*3{BWDRO^4%?{|!6`c6Q zy$cnSZ-BG{fQb98o@cd})gN|21+prc{Ba`V%H6@o!Du#!(4`(R6mu@Dwq0~EG0Ws4W%oeb0sn`eXYYcf$5S~?C2vQv zMOw}n0tDP-L_2?>}1KV{nb-l(<#&gEXOv?l$1TT{` z*(j3j)LQ-_&hucGsX_%Aj0n3ayy+U#e#JE7PQ1Jjkkjj3QdLGR{D^OyhdMF(nmB~U z8K^3d-6XLp-7ez%*Q}hp$v~zvjyXArMMrT&VKy!%`(dqM726s>yFi(up%^fb0wI+_ zE98c@qzJOC;))E3AJE`)&tr#O^eqgC8EOrUq;VHX>rs^Wj`Gf%E%$weO2s*zEsuxj z3astF9k=)5+#`l4*)PZsk_uVd?8nMijh;GOiL`j`p)ri=;w5`g{kR2hcRHFUfh}2T9Bk5?FplMF_+R6#s&-NG5~Mo!LApf2VzS7H2U`&>u8_vs z5P(lvfnqn-vfObFSzQu@bW*Yp5>5)Upn2V|i@`)jVf1`5J6qV!T9WK#mFm`{=<|{# z$o%WrlP0+qS|VATNH^tHjf3#|FpxipvzwbDpyM08Md&~WQzQ|4GF&iVyLoNc%wr3o zQq$QoQ$`cSC)t@CB&r%EmC73eyL594QR?3q=nh@%B=OlRW(l!N(^-ryTs$oUk|5E$ zY?R*VU1PFcxl3%>FS|PoTKM{km$546YY7no7qW<;L_HX5)9+`7P-Vg-ZM><4KjRZC$|q@GWUA(e z&(M*!UCY0)z#;1~fVVFd$qKHHcduo61{m;|NTXk0Fk*^tXno#Fr{yCWz-*E+pF@-d zY-id{t`FXciqd$C*c4e%EUQ&O;r;tO4S>ux4rpK%oW8<_X$hRKcht@BFBk((Tm6z%gm)5`-Awvwp(~4#qL7?+p zjw0n$4w{6V^?u-GgzR_Tz$iTI6vT{WLaZf1Y3c4CN`jb9PY!bQeF3{uo^)IW|A1!D z8am&sX$9EYhFT(8$S-OsM6Ph&B95{sAXQTatd-9ZWOxp3=0G(pja#*n4hQ6fTNR-a zO_Wvn*w_wTE1Se~M#3hhP~v<=ean^WQx?KrLLNB;XZjuLA z>NDJw!+|D_tjxvC!q>6yfaz1ofhMo-@NSX5jq7w#OKkH);?k6!WSR^QlhSPWi|Y-o ztbP80(0Tbl@XeK6J>zR>?k&Qk0B&v@YWplPs<-SsReXU{c>`8J z44cmNrE0m+bcBhe(AsHAvyD;5$UHGNsZLRK1~Z&TRR~FeA+K~hrByLTLt<5dOQTwz z722#$fBs(g7^F;~f^$++crg)|zQ&?cp;XZ80&4}uY!n&Py|(&{ML)&(>WAu}iR)k7 zSEceDFB}h$N-OG{ka|&yEvvE@FEY;`iZ-=nISU7mvz9 zQeq#nnTqA^y=1szJjJOnAs zrPzg55i_s9;9>YNr>_N2*~|aa6df~Wl}(FtjS9KY5nx*Z-n{6!JSrpN9U$%74>&(K zyTz0s%gdk8(DTyyY*$2D=VsV=yIW2#KF+@mVfTS4m5pZ#aPPf=^8WK6L%1RlOFaS3 zJ0Kn_?-m{gjqWebPmjVB@eN}f-Mdwl!jRZ-M{HKpkQhnH#>``Sd=Ci2M#!9*kY%8J z54VBHrBS ze^C#cToz$Xn9NMC|a6*Wq!-2~x_Dx?T8r2KA)%Ffc+8Bk3E3}8UW48b4HO*p~VAtnMMR&4K>swEYB@2r6zcEJ2AJ zJ77Q}9XI+Eku{Hqh*eiSxF+v?5p|KAV`Pmo4R6{QZOb`h)hc-cR6;ApzfbFlKK+}G zEXpW(4`ALh`V}fBOY`j{P|Bc5GK+L$yj0#qVI0V0G^_afst~M2@PiIBE)vYMOfkIFN*fz~+?k(;`1Vx?y~VbMEL#J=DX1B8LGO|btn~6%H|7wgP#c1fM)MIc3t0a4TT*FT-6;z(JTyP@l z8J8D}NV=e0{9FO__WyLPvxuTO(8(I1VIA@8R%=W@B4}soG$1GUlTa`|-;W{*disoA z(A(;1r7WXaI{of>@QfDD-%c1n!6ZtFkI&*+&Se1OmlnsY(Fu3Dd4R7Bde-Ns;Tog(Ejh9$$zs; zH-P$%*gsL$f6SEsF8JSQ=ablx=Fr~t--s;WEz=t%o(2qEPXX|gEj9bE9M+czL=?*7 z|5#7|M}a>OhPP$_VZGywYKiIK?V{;mJUtN2lkS%I;@W2NIT%@hnNr>ikhXADB${^O zfSi|`T>)Ju^3|{<6=1hWBUSpq|Ili2z$Wn>;C9gdH9#zwht2Q8T|5K&6wqpeeD@}` zI;n>zP^IFj>5AlVI6n>%Eqxjz6;gcmeq}cP9gi`VrkIN&+wY|p_9;4X!x=2l8S(N z+zOR%Cpjhy@4`M$bVh;EQD|@pyB{M)uq+HUE+fbajP&r zgXYolNs#9o&wpY)*f2mJ(4{RT#K;6fVQKr_Ih&i@7p*4!2mZ*E>fHNHifjrW_{?Z9 zJWUF9Wa(v(`9JP-saSI$n(~K=ActEEZssz5_`R{yNA-OCXd!c!l-1*WFKjZB=njU) zZa=R4wB`&$|3L$$6ilUW#ml+OU><3yYd9zA2>)hL!y;P0OsO*&2S$iGB~Ouc$vRaT zXfZf~HMd4(xkL^O?*=Bxe}!3A%o(^OO;Z;pPL#BeJYX=!5vxs`;gt7bq6ogTA3}ns zDc@-Ofz)84NCm1I8y09uif4jCDk=W@rA2@Krug(r&Z*$I-(|(JlCS|TY#~CPolaz` ziVc)nr_G^-X6+tb43HV|LQB_T=#Ux}|7!lbD^L4=Zkx&_kKr`uhwgJSKg%=ca&w%& z?Fs&m_I%j5U__Owl~rp(d=^ltE<^nmM>a7?I%MENBjp@rG)^_^`QVoA_gJl3U~lGu zcZ0+kIqoLT5HrbSsWVoyhHnUzd|>TMrSNMC*A~E|nGxm?-sRx1HC-W2#kGa+O=&Cb zkd*P}MH(f>O_~W)t0*tUk^lUP5zh$FZzK|43OH|I-_|olh|@!3+v3)%F3mjdey_yv zWrrNL+y{RdxAXG8jq>s~9~;)T&&+W>GIO6R5OmW5a;tHH$<9S}s@>i&n zSgl3YkQX>*!8mw)`&`dUIkU7bT=KO!3>?Tv?9#G8_oq5U6q;Ugz1%R8HGB*?hQ^z;^ae7H&nS)bK2J?BH? z3RBpO%3nFizMP*S~|P59d!`T8YXmz>c2XBGw+$%?>iS}Yq&zGIS_bsJEC*JaA= zW4ZQ0)8s_dzZyJqmdBsu#KPQp}5 zz4%TVH*w8Em^DM>@6rp&>*6?}?Hh`B?OuC7$8#Diz2kWLD~sd=P#tlM=ihTJI#1a5 zCrc8qV>3P@G_oAejzW+P_#_|(cwKun+lVDNBKLDE!!lR!B#Y{IH}_HL95q7MO01rd z?EadV#bTKh;UuzB(<0JcP?p7kZ+MY3%;39_f~jMIJ%%1r+HoArUP5%Nm9q2#S1fL( zHOiv{Ro>wcyO;Q|Jc>QrY<#b~TlmYN2E2jGER`VJ1r;TI@rRX3b zF46iYrg2*;hI7&VD|m-;0}Su!eT%Rpx-p}R{cl8d(VdMOAyJ7HH3`r@%<%I?)x>1}Ky7eIVAXgt<6y2p1Q&kZvXIIm#P7QVStpHDil=G!T! zq`-w`Rr)mUISNGz)pFh&?_FZ3ee|TZ#b4M2XrJOsG)ZiEo(<`;{V76#uZ5O;NMu7f z2%znZ7Zm3V*r$~RsZn&T@YpRz!YQU;yJnJ1xoFuGk|@a^%tZc?T~Pm^LdTNBlYZJ6 zrT0lbiw3HCFymQN8U86up>#OsGomHxuC+Fkhb*{8NnA$41O=u)RY6SbZf#UgQ_4N+ z@>)^BRe(chBV1qQ5gB7?XDtalwALF*FK!I{iwxkMic!+_{^=xvG)y3l&6Q(#-}=TD zJ(ziK5@USd!)nvnm}$O1XQh$J^{^E?DpkOAKJvm!X-dfOPfylN>aMz@$WV*#`ppa+ zjbdZ;xq-_3hr^-#XrwRLyYSU;f^_)LC(sXQt@BBwmhkCH*i7&*c(|%G#8%Z;GSCPv zpamu9=`_h}7!j2VMG|KyImOvvW+)zFURs7AMTQ$pm&YI-8S-Nmod+#R8&D#bYE4Nq zuy{hsVHS%v&$~ROqL8~HyIf-(k2SoibBdz6D5pgvXqS7Fw96U;wrMV5UR;G zk`mF_hH}ZijpsAy&h^~Sb3ecPci+F?>-m#0pPA3+d(P*a^FHtQLGXf(wkol*>4jnB z_bU^#SI%jX#K!!ZEjArq@V`nkQQ0M?;&u@4*XjoUBec$xk>VvBC3%jkoCbtrr_5t= z-rafYsd(%~c9o7WB?PT*Vla{aFtk#`bDJyI@21R~gPU=;L*7cTZPBoiaA{XRS69*3 zX5d_C^7denrf`sDLsDa1zT_i_<5i!%B?o7YPj2NkXnS*shO}_|;lDHo$nwkXMvKSS z0gix!5wgSr3*Mxm<{3K_>V4GF2cMtF4c!wn!Sfw8d7)(>kh>fvnU}@k zP~02m@e*{f6wJf#Zmma9haT77Zx7Thi1vVt)LRHOQ4`NSkonks;BoFN5wma^OLK+T zpr{*1dsq)0KC`v(!9#Pje*Ab{<>`jlg7))w9&&ThT}Alp;fA zFvIYU)0)Qcm>fyCyuA49;FBGxaj)GX6`71MfVJ&CQC2WQ%6kg&FqF;=&<~A2=fem% z|1n&9a{sBVA(m>hA!Se4vyT_hWrgt^J|d}-?W|m0xk5bhHw3@ju9shpIvXEw0`YDm z3-=lAEFRja24E@dRI7#i+VdQlwUD=t$AhZu$D-7=UGktxJd`0T;QoXx>C$l+wVBhe zd)}MA-$1r{fAo}+U|pI@8<7uCnR9eH!jZ%9SS|}W_>zoCr|-u@>2MB ziM39fBb{U12-g>yH}x5zoypG#)FiU832~aLsfBJgXWYDwg~-0yMcGj)Yu_<&hr|mk z{t$yxce7x>X$EL3#oa1-lWhsOwKn*L$%Th4|9=4rj7>d2yQCML%O^%hPWo0um-FBE z&rWkl1d;j`BqRe*lU-y^ESwzUfkg^pTJ@!t6C~`K%pA?bR5efgqZ*FpI+6ok%EDBhvI$|GG%mKNB;8fmayzl; z)hpgUdv7bevgyYWwLY#Bz@uVtX>!exQ70E1$w`!0FgYB~}^M2NX2_s{AqS7ihv+KswWU!+53)1KXT}#SsA1pQ?(Jja{rIApw@aPaMTYTQSd;y{3j+ z7k<;%-Wgvrf{aTxWM>@~e0)kN-s*$<$Hum`Qs4e&g33E)@;cTJ%ijtL(nqN+YcG}; zCMO17f1mkiwusf@SSYfX9@3CDH^DQ=o6WDq8(rfw5%y7aco;KoG>}&ErJEyVS@$AoO z|AMVTBcZ=pNoC@hy$Q|RT9DNNA5-~jx&|stTe`xc%{Q!zp-y!n8cuXS;hX- z?SE;29I7=c#`oUKfqtD_=r_9dc2PY{tL)rxYmPRU1$7#3QzfQt$AT~d1^vQa*5~EA zDk5}-L6?^&a=}@mNYs!2f{NU&u-u&H@8k%{Jjr(pF#cT=0LK!CQ$>8{VTWtKp523)hiMlC10+y6h>;mVFn1VR`vf|NizS4tM-ps6{$dslHa`Y zog|v<8as1e$F~PSeTmSmo15PN!aPd{iO|;;MWNOpo&T10bM>T|MUKK2E%b~Zj4f?wDx{V{n4n({1P=Qap&^bt;ZdiD@#Lm ziESi4f=L@Orr#dnvP!@M2vK_?KtlJPsu~-peLB|ZRQ)aPsTRtZVsQp=A2Ft4IR0!s zfJ?w&^|Dlo!c2o?@YrkBVl;|bMTvsF;JffVY|ET>UYuH5XubDeueU-0 zFZ7|NYRER4Vo+vo0p`1vE|v}Go~KWZ2)aU>w0F_#~h>#lN| zXe0h3+sE4N7wYBIUFG(bA*wxcA4aU0kS&^hTAN-Q}~G> zF;BnT{`0Sor_X!n@x^b>EY{(Gif-4s9Eqo$9BG|Gs(z8v8AYSoS^)=C{dlSA^z>-w%CLnIZjgvK)c1b>0E}1p z;tv$IO~=??Vgc=SpNjVtPQE7$N};T(wA4{{@}&>Imvu96LMS6$?1t7jxD_q+>FEs1 zCcxh^$UXM4V^?(xanB7AguT{?a^amfrQE5v=gvFewUoVG^NxQSD`j0=F`DvI_IMK8 z4qkH@p|M5=c4Mq{5*cajhvI_1Bnfo5xAGmsAC2`cuATv!v^QcJTMkqoC$i{>;Holq zn)aal=~FqPpm0>X{P0ZC@kfI!y%=ENL~fN~CpU&+x%#GoR4~~wBU@qwH$-SOG^+tS z`O`J>_E2QWYnhBFp>R0_0{-m&S?1Dw%!|gtT-Udas)g!X>aw0FK?jPbI6ipE zkVeHX(~v;Abp@Gl_PLGkd-Z3?H|qE^>yLSAan?Fgg^sp_MH$fr`t2A9Ax~Y#F%S5s zzCggLh6kVF`YdE_o^43hf%M$)_$s*LolFq1P!N6tzDGH@>Dh3<{c%kR7pR8dv=@@H zZL^${*O??Co3!pfY@@;QmW5_2IUgM{Jp7JVVph z3+;Goixde3QGuA?NseJ${v#OPDp3l5gEop z$~N_Q8DuDgpZ8NjIYKIa5188({E3&ifzIM72v_f9Z>m9`H(h2gu~?o%E;<00riUZ^rm)-w^YL}3J6ta8|4U1zBLD-N3h_}kWT8yI@Czy(N8S6zrj&0Zsg{4XY-f;L3(kk3)k zjxVrIU)#yv>ak7_<~+WWGC%Ib+zsiSzNttH>GG`!8(gUvL_)FO?$#nE(;fEOPj)&@ zAAqb(;pDw)Lh!xBit)VJg8ALW*Y{GdoC?V&tW3SOAh4s@kG zgXsC)zbDqKrXSy9K6&KbJeg1&(q04U)&HgsU6~xd(ki~(AyqK%G&8@05S$qlOQ>Cr z(}eUc4PcRzwal(`@8zfK;pai4JGauGk(;t}o6guLZbl^De5jDW z31Pzt)wA;Odr{D&Y?|0^g|OL2NIUQ4x6n#QqZ1Po6%;9iv`UCxYzMuL)MN$T0z=p) zZp_-EBpquel0hzqT#ceE+Na|w%<1(XK(ESwybipYWV3Gb;5S3X*JWmH#`;TBh1GGt zj5gM&_{yb`poyXBRX2PO5=5BBx=#XTl~n4=`R~*Z^=>*Erv$nNG}YFk_U@I8rusao zJpT0{4hYMIl3f|Wih-B9s5^ws0)x1Atml-yQkPll&$6QZ-+#{|HU206&(`<l9*n(|_>22jzaLf-1j+B)Vclna& z^EMW3SHy(@nuH#yD?N#lNwOw+64M;0M%@BQd-<4I!dl-p;ld51F$HxG?+PD8IA6ziryD+dY5j>wNDUQQ~?o0Q6y}ryFOwQ!ky!6_~CFG5Fm& zcA`uFbpi?EMtd_|ka4qLwALLicbHQ7WGbh7dH8m952W($o`IakU$Hpm*?7tV$~IFd zOMO{wAfar7;ozy*{j)aRD}Lj+*i6_3oKgCf5r0p4s|uwJVNPy7nDkKi+5?ULlN5EZ z1VWx%YqU!7wN-^N`t8E)l5&4p?W993kMB!$^{4JlR(2b$9dQBMOz+nU+X7o?@V$O` zA@b)J*$s}Uziq%yfXJ-sS#Q7A=cVQ;nJcd^%km6IRYbi~{d#|P)v#?m<<0H&R|f@I zSA*=q*P?&;;kAjXTKwG7QXV!g zJ7+MSD|@8NKACIhXDj(>Zm8%9A!rmSsoE6ZFQwVuC*M{1q|E8b#;3W=WO_uscyl?M zBOV{wSRnA3z-Xo2|9E)HL(E9xof9IeeEK%pCM!=Ap!F2Isud9vS`I#vbhKCMf)k$7Hnm8^X%wYA8tQMjD4gtb zcf)PkT(MHoec)1wr5L0AA_pSnqe+0!^w|o@yRfjj@loZ37ka_!hT*n;H}Aixcl+>n zx6({)E}^5|%@p_3i2Y%h=_7;ly*!siC)N>weOj5Fvt@M=Kb$ogcH#ZaqpKIF`IlL1 zVAy9ySQL-7!n16tH`wn|*UspbYQhhitovDT9pw3!I%O4*PHVKMCrkx)EGeB8Q}=zpCusM=emL49oV)P}lZu;2)> zz)o-TVkTc>h7I<(pC%6a*1B*}b+GeJw54L~%prm=!H-N>`PMv}Ki`m9dyER}36`c- z8!ldet}HHcXU|(GrWX$uuKd_X@YQ9CL$R|aUp;G>+U|w(Ml+d~{>{X9c9XN*OAu-& zVy=|1GWi9}t?KJT(L$&eimgjG@tG6_L4rs}U95r$Z4U>6jnX6lNwGojWm#!?B}gLd z>=Wspr99B%Vu*WWg&p}#3I$Dnw75poT-!ZLL%mA#AYG@ST^9-GYY5`I2;yQ;y<-r) zi(Y<8o_@zV=m*>BS%poW2NO}o2pc{^+CDG8?XC0xyF~sN1;tcC+I5JYUq?GHG$ zhPlt96f?l!x>s*M?!NEMpplK1`naJk7XfX{P4dE{kog~AY|51W85i7o1`kRSGKI)| zwwb%JX9tj81%d%zTG0e+-2QK-wmD}bWL#rMc-FnJ7ZU)+A_2V=^8K);QY)+6_6`6o zA)e6ax73fXrT`YP>aD#P0llmJQHnyDTC#TSN7|6rL1X347S3ohuOEOVmY^wn%YCAK zB{U+X$&@Tv|4>&G=fEh?71o=~f$y>n9^evebnq|ok*v+l*{mmCuM4;u8;pP{wo$eKZ9OSB_f?NgB7qieaTayf}WFasttPBV$ z2J*RIlZWG7y^?rL#VDLI{1cpydCJM|Dzc#u(Sx@io2p$?NxGPruO;fM{BiJD9P^U`Byrmwo_`PB3Ic> zDhvr2CP2w~zR|`F%q64TOu{gvqa({(Sj5`VRn`>)o$1=wD*K*I5JyWGz{6V zVJadRzC}f5?y7|Lxfn(tv9in&ElrJ8Mtc&@w4&yn8;l*BPnCRCaH+f{q8@Rq9?)k> zfZ$*kMfF6bkXk_-$5}?in$4k*FflP+I|(6rKjiL>Fk6rEGzl!Bs!b3c*K;T4kSUlL zj?1VB5!j!O_AC%y%(Y64OxZ2p25b7p&8%xG+S2xgbp5B(6k8zA=^fh2p>~ZA;eaxW zTzaACy@vo*Io@F7X~`qt`gQUf7tF-ockrX7My0E#{sFoHXItcgs$E|J90)nbV&D!k z93o=qN4Y%iUyG?e$P;WW&Te9f3`wZO#I|eif|H%It`^3ES&kZC-tM zj$dhm^S;Vo%7s6()U~*(<)Udr;Hs{WKju?Q`t$x8MtZ7UTS()-$X1fqgMOC%*fj>PQOzFB!M*TmQU-f#ZdTA;YcY5=4`+U%Ej-IW?&ZZBkwV_t zZ1sB(7k=S8Gf8Re=eH$^W7NH?lF&u#4VhKF{9Yq|UpF06^ZG*pUuIRh!^)(5SYoAr z86y6-M?Mx?RLR9UbVJRa`G2Q!`lmzZe;N$>KcV9rx4s!O)fcg1+dy!K5Q1xPhv4oE?iQGV!EJDNcbjkW zJn!ze7kjZ6bLMycU0vO$yQ{josyb9fNg4<16&4Z_5{|5l#1|wa6fGnq)LGbu>fL{|5g{{^B3zR!%0iUlF8^NDZBJ(FpkYUs&_2 zqn(wV1yU!)Rxkp?__w}`qlp>PB|KpNzsNq>1A%6C&PZ2~#0~_8{+CS6%GuTospx2& z5eexvlB~o>HTU#`MK3)ym!-~AC^;Q(g3b$ZuG&TgIqg@?SO(&MvDz!?>Puyqc8v8l5us7&DHI6O*(V4ZbEC%VLf?_;fCG(ri?P#7Po*ry$q3`q8 zkDkN(o9W==GtmygktC-P`}j7m>yqcRKk>y8k49TXZ1hhi4IlplRA9y$Vg9Eqjra8A z#PWduKSjNK9|_t1Q}m5Uw(4I7_}z+hU4(yGA@~XWLY3d%7>r97^-9#WYs#-qGd_C} zmnDMy7R8;twHmgD+rfD|I6+1<&%=Gf3r}_Z>F3rQ7>QSJc@Wezmf!-pDra78S5zM@ z5EL%FbGTR6F`SNl!yl+e&Q)IeRyu05Oq-{*t!=+Pvn&bzfp`DLMXJ)Xe1QJ`sqgzc zqMKMTZu=Pqsp$IOIQ*c;4Qk`KAsAzEHb%z z0S25KJ%uCdv|Ljcz#%LQ!uJrM@E@FF5)k-d__6ut-NGNElMh_(E1-!fP{2ZrXP2kK zKcvey_VqZ5S?gc!XB(ex0bW;Zf4f&)m|3D5ThEc;dmRyg)-p%Azw+F)J>)uDpKZ1+ zWfr#jl)@;u>$!W$;9mJ?VQLbKMZvy83O!>@4T{b<4Shn|#NfK^6r$ zu?lwMFaw4+ffM=%F1^9;nBx=xDT!sv9m?)2j#Vuma`kQMJq|`&iDG~x>gSgeF)bU zBPxPJgb64qA%^ffO|VDbCLP%5!|oVLKYiTejY5lOn5+koV01m~LBxaXH81Dr}LwJ}SW;ekOF~JhU~9`3PRg;hGnV`AIM|0K@+q%lfsjA*b!opVq6(L8 zgZ&r*b+YGA!cT%6^Yvmj)$gRj!BqVt1#I`4SG4<24#8}|+Wv8XdBIh=U^hy^C0?1J zi4a5cb@P>IRe|0NHS9`v-E_uY--F+Wlj@#Lzvc3>iJqZ?a(QIt95RBnSj{_?;hT7m zUY{47Bi3I}#nY0U3bS>xrHsJD7#IfFCC(C4t@<~{v8l0ma8@K^Y|&)*L23^;I~u}& zKi%vsV?6PFr$HxoXJ}h!)>~FO-=1s-sNV9gTRSuzOdxf-te zWc3aWB`w^Qn=%XU^zoK6sxvLDLq64;`RJUw!om-nP8W=oYF=^}K#Elh^(fu2@IOI# zUfj}w?ewRGMSPauyu9pmTpEnY@REd2hdETq`CASQW9mGb+ z4&y8IFixzfAe;crvvPq?&$d1n7reIyW4!wrh>|uTvS-%M+mTl2mb_dj6w>g_$m27^zHa?GVv+S_I!N{&-`iiZF@Ngjcoknpe=+c~C zh+Ntw+C$cwco@-tDrKhzGa8G{Kk^1=h)wCzFmxSNUcMD_T>CQVv<^=5K8X<06mN9p z41nr~NAC_5ZHV@1>I(enoUkW8|M~QYaXfI?$4Pr+A!&779=%&RLVrzUC!4Z`6Rw7@| z^p_wyKM)|bMzLLfD%%wKJiy~tTYT7rC7+M01uU~*-f48f_;wR7LN)ai(J6B1;z-jV zJ0?#Dd>;q*KJ;TTNaSQ`ACreMNm4pwJev0J`fl%7%8o2uoT(kCJG2Ojlh|D=q+!f* zDK*W$J-5>wXi_4i`U;?2Y4VTWf~{-@n(|I>3|W%h0^L zK8F54d!eE})ps5y-a8?CkeZnzuOKIr(jMb5M!*zi3=H_;LTRp;Glvv7OhTfjrWTV# zY&(d_k^-OrD@usMSi7^iBG%VUnf>O5H`s}rCZ7a! z6SpJvWdG!`VF!JXvM)9|e^1uX^dpSDR;J?5TV}|EFRwrDU5Sd%0{OGIWaQ>b@9JGy z((3P6&ZKI%O$oK9_9zsyX~Sh{S;?^Li3uZ){CYbfTOwqqsKPlWdl3{2XXlGS@ z)8i!wdY&`DZt5u~JN#HD%s=f=5M8XFwWOX5a1G{5414wh<3zUZmM52!f9bACb+&7^ z)pD`XN~%^lhbkghKHOtvhh5E<8sn?%M#|mhLGsXFNn$a;Q3=iAzPdC{1yuND82jIX zKYnJOa7?YaP0?k$M+F=V-=t%4g7tb5=R=bRR6k_4+;rAoqZXBGh$G zE*=Y-BbOq|dJI!>&`}Z+5^U$|LXlC>M{^`!BwbbC=9qXae#q|FmDj>K#5!1rsOnKq zMCEd7@c)%z&zWHJZl5e`ws!}8jk>*$P}m7EWx8Ywikky(r(nq`x`Q`k4cbo=FT7{7 zp7)S{0W|2_ao(NFHOK+D{7%)dBWPACAA`*<%uRLgucz;b`##LRHe8D+@Hw{cTLVqk z*tV1Hv}dCOywmKm_Q~x-3tbP`A3?>(XC}t8t||fyc&Ytqk2g~l2B@xf=vkRnwyI}~ z9%PeY&kxhe?bs$AAqOVboG~e`FE1Q;7P=<_u*)8fu+e)if7X>RJ;hFSRA<9z+`%FR z*aG+h*~~8-Fa457qvgvpM&h3JttLxj?Jp%*;-!^9H)D6|Jh5zPsFcW7Uh6Iy9tUjD1`s@^18tQZLVOXPAN58QuIw6_$Jalrz z0%FLCa!*JBiu0kL+GmyZ2t>OBNJ;ScdSzb019CnjS9B1JMGUA#`A`Kt-|_}5oz0CX zyh1q^F^RNV*6MaW;)(QWX%uodV~F&hZAVSLp6Ua8wjQnO;g{|E`PP2Fh2y;KI6+~Ke1u0D2 zr>?8S68a}4C0&KdIJjTV8ZpssCZI(`Pxos|T)2bM`g13I(a{ORTtwc7S=BobkPV!< zbvtYJBkM0eyYDA7rxw`K5+(XgA#io9cxmVeQCyGHi7Ia0psy@lo09k(@7ez1Gjd-* zU)-^gbCs_LIY)2iRC~m>`;k-iHc1EXRJXQ?aqHWN?94;;3%byoU}&S$Ga%PU&JQJACK{4Dn> zJgQ;|Mt%h@?53X*#U+lpV*ys(b!ztUKPC!jEni`50j4JbY3(*GZkOjEL3Cta#n~r) zw6L|F9deRZ{FbEsr9jNw0QcGkkm@Y^aMdk#!xf$FIa(M=;CJiwaX{kLV_ikVXQRUb zWTSgV>BghDx6L@M?^VhH<H2S{L9?x^kd3cVN##pGQV7?gyAoY?%1rpM%ON#1pxl=AJ|1 zhP?mV-U0@7rTw`{tXd|aWxU0Pi=4~T#5pe;0to}fH2XZ87(NVlPjxE*^e3*3p`yOu zw?K6|3*QA^Yz$g+)qo0hV8gmQ1A({8$jHuS(VO1p6s510P?BCcrQub(`Z{_l1mbHp zqsvy+ap>Z<&+f;**<3-xWx<-3ZDRQ&yfbK&`{RqzHBHr*2`{wfNByCtQDAMyH2kMR7S08Vd6&Q$JkiSK*CUT)0X znJIrInk13M{G-H*3T)?=%zWoV`ZoqYoN{Xdto3e2${~^{zHDyqr1gn)O=_yYCdIL zbXZDXH;r1gV@a~=yM;QG)bO+k){Q@X_~X+GyTd)wBnHtGfB5Vi#}Kbk-KNO%Op&XG zJPFs>YDP8KFbd@TL?LG(_KYMjAguf6*vHmQPUiZ3VMX_C`zt@KG0Hj`#yc{N@IK}+ zJl4^{Rv*>zr>T)teC^rjsXdUlA2n{~_J|g2LwGxP!uHWdUR9N{Z*?5X%BYlXbhOZf z{fakabW~-=P0cy0IHXXU`;u#E@s+&w2w@_$npz(0y7M&p+m`V<`v;+=VV*u=IZ^?~ zKq6G`Gne2htq4$vfxxMxC>2FF^E?~cf@Zo@nQaTLrf4X@X7+bW|#OQLhPq(CKPbgt3$qyYqpheUZRTK$nr4==ms;}7EDG$vGIL;Z*GafqI^1r!J_8 zYXm4~rcPfdvkZrDYAi3+7_Oo@5-UH0z)UkuG8bL1T$t=aL&G@^_SAgeS_gFh@oKY) z3az~ooCV~ls@4cRbk~TV*BHvwlz#H!%Uv%g9b}#AS7;ngMs#C%J7soo=JwPtAdwF4Cf7k@nUw|NkBvV1OOuyPuCE7=S%hjs7DvFl={Jke zUS@`PKQn$?=M?6GqPomg&lM9g`)x}SVE;(@PPgDu7uKsIEx}7vo3&DH);Dd^{s)A6 zUaBwie$ERw8&wLQ0ucRYyFqK3gd?rHHFT``oNwCHpgNCR>Au*=?EoYaEp3V`|7ESt zRYHQt!GI2G@4&xRwuvFt+f5W*T{hbVy5ktW;^OTy{*@oa&gS_BMpzlL6Uxt3&pz|6 zg1^!@Q88tp_aa=cwa71@hf6qtJ<(MMt5}f#U8`*r320yjWNQoNr(sSzoF^d69L_}1 zvF!my1r*zFZ6n)61h7^jcs@%cp6@I9hPiq^tr^~ypLMtCkL*kzoMQ}2wgzSyQ<3(8 zlev{=maTy^14{r6zSfTPWMQ%_zAJTuv)CDud+W7C-ou)DIy>|eM`r4`(Kg}DOEOc9 z&G33MZ})xsgo`I>T57OD_&k4MXJ9G$$B!RT(WZn*>xoDtBH8NNfw1%+e)SVm+VU+w zbh%@{WZL??wHIXT@QmojxFwL5Uo%gCYj4U-O(CZU^Za#H=_)asfPZpAMXaJw)sz8D zQ$48)*i^c5Q@_b(uqD%$iO(<7F{W7v+6-{Mbh|Xpk>}I*RoJVbcX;&M96U}X(A;M) z9GTz#kmag&N<lsuMC!r#aq%lJHkMR_wr>Ox=LmKG+vl{k>)b+I0!@Fjvf@rfuqmcp`j(j8Nq= zi*I^|eqFdB;G7r(RC4V3A1Cz0LX_?Vkf!7jr=Zu^%E?rn_f!aD3 zYc*KEHSxFBQj$md1V;e+$i0eLA++P23y8YreS+_4AoSy$Gk5&nn1Q6*JD_kQrBy;t zG;+?J1_w2b50u)wUYw}p?%l0r{a1peCU16kiBejYT0Lry-+P+yHd0jCLni{#Sma~XHy6Kh}=NKv8)JyJi3X<6uw2-CMad5Bu0t)ck9GL%C z2%?X~56uRCS_@e;=>9X+l9E}SWG0NqDQd#;R`b~W=!)=)MhrHqxUtaAaqGC;)Nj{s zRB&V$;TUSUOTaS{{d%&B5XU z)uAGU*y=9qbnDtSZ0sEN^GkDCpUL zVhY&s z3-s%4q6>AMrA1UFfys9~10zzmw}(3Jv+=Xz%dJP|BP2lcu8?;N_qIWF+DXNZu;6K@ zo-i|8kuU38N!jG(!l)~oBp}>s?ABLdE6~1sR&6bAJsrJL82>h1bJHN6dPu%A9jI)86 zD|h5|EKBDNyZ=@@$sN+m-2PNFQ z{F{ihb~mE2x=9#iy*NU#A|7OgRq}N3;?vwGy!s7BGGO3{f4*@Dbk^Ui#!qAYpxcE| z3(qz6t1+inRY?x+r|RKqhzMU|Pa(^@()I_h7Ow6WXBIwxqU2f~BSQtZE7Y}k9!al=F=9T7VXk_c=oNq^-+itY6AKkAVkyC=@bCKH_ z*S#7H9d94srwm&ke&8~ZqLeaP_tO357WR*}DIFk5GeTBV(|7i0*%x_N%PR1Qmuq<9 zUn6k)Ee#l?UdI(0d2`a;gXgG^@bJ4&KQ*y^AIjZm707(@Z|AKSxjv(V3qG6PHukKk zTS1~=up|-?v3Zw$h6LLZ>!*Qv>SmeTt(&k73(Dmyk_fg6w2J}T6rq0Z4f*g`y|n3s z?ef*lC;uD%DUj73g$z7N;A=`;t|hZ5NnpEEeS_0|YS!}L=)9%DFDm8iT;FC$+{!8k zAGXbz60=Zj4DIWH){-g{LPJfvNd*}sF1IdF?5UD={< zE_3YCPH4;BFY!(?)# z%LO`OsdwX>O~X5?+;08L>?ZT=BPbNf-;%D)BJ{VF%%9TCNQ@%(r3;lFM;%w`_%(!8 zwr3lx&_A{8j9}kE;?wh^wXaUwZJ5qoy-h?Ll3^;rH@f@G z+iCgH4oMCC6~~^o%**j8o5IdS!#9p_aF$c&5#E=hS9s)57AF5wQxwjm_ON!t`d(Fp z60wxfwEf|7ewn%8`AIbi1a$kvV`u5v#4{p5d!ekn@(E4$IDfZY<#;vjcFrihw?|a3 zEVt(SW&p~rkTG%^p7`~w1R)X4Z=U>km`~EMqGx>9xszZ%%*_h^+EY>H>-FusUIqs4 ztKY8a4=jN<75))gz&n`xrY7Y1;ZO*guGPE+TWDx#L}c?XDi3LPvm^@xTX;*-v)jTPt~m*b zh-AI#l3#u>>-utsacSb1N{XkXK*#04>u1VZiFeSMOEar4ePc$V9QYJ^SuV}V4-#fq zrZPU?crLXM5>63J8Lc?Y^L8RU22|5UMdldW`8|oWA$e_*L-jJK$o?xAz|lU5fQ@-i zLBaSxJ=-7BYaI8q6b;uv>VJRd@(g0QVB;=Tb%cBB z1o%$+wQIz#S)>;u+SO=fgYN*xy_fhpit^!#5z;eTe(E-p4EiNMo*R&orF&kRp0tI( zUymZ0?wY+*NX4`TqbmADBO({jt2X13rcMD$QSF&2m6|Ead;Es4$(P2ExYosG(zR*(23joM*_B@gWN;I z&;8Rg_otR6d}+?x?k70Pbf=-uy^$Kzz7{m1H59RDBJu|$-l|p_ReFCex^lPhDzEgj zo%0%WIZ(vaL{11bEGkJY9ciH;F`m3+RG{#_4ckN6TReAESAP`Gc+R4r)=?F&;xmWX z`GV}SG88avpdf)Z z89E)6qG@@GsjOiW=~xa+y$4oo|Gevypdsm=qVutU+G{f2&r)GH&GF;#CT#O)ES5!| zcO~q7P~jTUa4T)rTFs4`0=j?O{7?>|Jub~JDbb1UNV*&K5-U!8nK7)soi0fxaez2Hm)?z`S&bB@ZC@Xjp zjA-$Js9!z|W=&GnzOCc(+-KcOQi7RM!%U`zn}H+Lf;pGNi>Gee$^1#1oB8MwPg+wx zy$b{FStTVUEf%FxDotLQC1PK;pfg&q4<*udAHT?_Q+WfNwu{{Y!Zai9s_j%V7B8DY z>EEVA)bwfK)1DXWcMnH%1>B$QGj0MsA-?bsw<#YTNxLVJy@shQC!6p>#HKaYSTW10 zg@m`fDLtwCwKG=TtW{m&URa7buB^<3Ym?90u z8{D7A{W^`Sf4^)Z#E`V##tf-1UMRI`tc)&BeeT2Do4dulw4m0*=lst$Xx5T_z1Hb6 zy*ppMfLDw;qc92Q>oYUm60$#VoUWbdR{!jEnBS}aLG5yx-b#*)Le%y9FVqwK(o6V3{0@H5z6jH1RQSF1aKwpejY z3|pnytzNYtCvutZU{4=Br8s?1H8gDPdOWR+=F%TavYMb?yV7|Vlx81U+wR;jEBJd+ z$hKK@v~|?G{`6jQXB*rk`GOAIk8ReUy7*9rMrdeX#5aN)@7?qgSOn<#)ckR(?p&qc z)u~1mcsfJQeMAes9jKk~k+4SNe5!t~Gk5IQE_dID>J}aRYLZeJVQ1wy=pXsGT$ThV zzsP*ik+DneMWtjs)|^ku@pE}312DX(VbR&ig-xgHwPaQ$23}$dpskj;ZPDqrQc6HZ zooJu7pI8hzD&c4hD>v4t=ie-vT=B=zg! zDm4P$NByK2(?H&t@T71@?a}+tpWQj z*l<6oVxUg4jT~WeJM$nWyc5jPb=M%U95O6(YWZWBfIErwK)L=zvlL-Ziw$qoo=)j1 zox`fF?hNnob!;5b4sL(m&LQ2>E#$@+bpZTc+O&K6D~+^E%w*?x{NiV~%Qi7Zy>_AQ zJR!KAiFJ22g)pWuN8TE4*(O6qapF$Tc6;KdXktgfq{?ms9e{r42FvE=letTT0vwa? z$Ybwfx1R5D-sgT5yz~zy$xu7n5VfZh0=$ClYwxf{>Uri^%~-7wx$3x z5`zd|;}v>3S~N-_bUrBakt|X0uv?uy@+}NGB5|WsefxbP93TA9tzV{0-Lqb+O6CBM zted-6egkPqpxk^8l2tQ16_^iLcf0wl`m|=S=?&O6t3l2Rjh<7q@*{x9_+B^(hSqc3 z;h{=hEb1IM5IOAG6gI#}kb;_l8WhohffG2g|bIX4tFh zEzqSFZGIWc-DHA+kKv02Yw3I6qaVXH)9h{Owui5vnRw?vpn3+ZrJWXMJr`x`hQ`8C z$nzNDKXFdzh1Ylyf zeC7S5f*tS!da~@cY+<8~#(v)chWvh~$8AlTv*>v_B|%O3Ao^$pg_kL3yD8ppv?{=b zmnYGab}Mg5zH4@pO^?`|OM*cmAbz5VXoTUYsy+js;#Ov#D)@Xf{R2Ex{F9B@^W z^=7W4fKax5;iQNgrJG9cp93xT4nxG1V}=hLJ=Vv+6D&}nbdoU_?&#rn^%nb|xUj8# zl5toaPjL9UkrxGKbc48g1b;-Hk~iOg@-8}#&z`1@ULKVu6U~0D(A^LB~5gzFg;ZXlN^jlAoS@dg=LrU{D}|Y_A1d zj^Taz-=Uoj7N~kNkfid~lvgfxbL$i-QOwg+lg(J`m?whI(`jaz@mocKI~HOCi!A?b zK5=vSfL3pD7G=$Y6t!$5%$oXmS2zRDHYjS|se-&vC!IpPsQ|N@t1=`<<R z?}|sSd~>4qNwe?Vt!k}2Zc&RK`^(kb<{&!m2BK$|axQvee)aiQFRK!t9w!}GOQGi5 z&M!Y+wx+_LnE3MYJ>Y&tb0a^jGP#uD*1MIj?)yrd1YQ;~WGBu>tMg<@R|! z+Ni@m3L4Tb6W7&gccV5Gmc`836#}PXmN-eys@Lq&I6fpdHFFZ<8G5#}mR%)sd~%7BNRi9!7)HF{uK<5A-ES9w=8 z*jDJMF8NeGuzr)d1-FK7`$PREENjOhrJO`Oq*TQW9SS-CFND#y8a4;Pt*Xdv|GHJb zP8&gu^tV?VOF&DCOvf77aqNO6P)`_ld0 zxa|jgYy4OWwTbY8oErn-O)d5E_tXIOuKkogg=p-xONeoBM>xVc(}BnSyiout(FXz< zE<^%a!+onO&kiOT$-lKckj4Ks#kF1?kh5tDdZNp7u&kJmhgm=UCiOs<|JP$XM)qn0 zYr4wMM(jJ`8Z37A*T=+7X=u7dH>1~kLziD6!ggyZVoMq}+V%9Be>?auL%J^R!`!`{R& za)^%E7p;Zu7{+Nd&Kra_RV82lCN>0$L+hasDb}Xz#~l}9SRKxfa<|@491*j@#Rq?W zvdN-1Jek00JkPmD$k5<8x;IdvdylQIq4;PIIqTTyFQ2 zLPo+*W&POrB@-FDUXII@rhM$=_%iyyp1tB&M5*HW*ZJfneBKDFiM?WKQo%i^uel(Z zf4@^PfKdynZ?l6>s=ofktNsvVRax-Qr8Zg~=1h{7PH!_XBYWmTjOigu=&jtyb1f?+ zz=dY-Jhstz-B(HwYtPf3*6Lm{Wd4E&N#8h@d;)e=k_y7+jw|@GwLegx*z)~dZ*s+a z+3Y3HLD;q>gwA_n;v|JXXsOw?j+_&zq zip(K4Ap&)iO1FxxbHY>E6uM}K1&i?Rsj|A>x|k{1(%)`A`twBpd}Vhc zot7&WSnl*3GpEXyUd%pK@_}I@j30#wdrzV;!OC);dx*;B?10j z@eulf+7=d)XYU`1YrwWPNiyK6)+JhfnHkqS#X=<=Z!9p=A>ohu8~on?egiI6!vxTDr89rk0c1Wv)LM9okK%<1lA5)+7XrZkNUa zN8S7J0{Mtt>$HEx8>jRmVOjITiG2WE=A?pTx|FJ5yWj_sXEZH0bLNfvd5Nq7#Y>6N zDw*-MiPH>IKYhB8uWyC8Tr@<|*vtgq_2gWW89T1CU%G|LnnRMw9M{*!URptcRsvg1 z6>gJA;}$7HJL7@xa1$G>CeVe{mmBKsnQPb9wf#YnhR^XQLzP%9v@^SE_~DN8cT}wF zicn9N&@nrny18lr6Jy6vfqKdC!WXitqnuLS0#lv}mvPDe3if9xvAX(HzunIwvB1(o zYp935tZb04hWJ0)jkbc;F?@wjMl3v&|2~tB`(NSUMQ!>g?)H~~ow4Ns`oElLd+Wvj z_kh>`xF%y2o0K#&3;d5t46*qEdBgPc8w&?VG%l48uPe`Aol0Br$}v3qKO~KzbXxy5 z`+Sw*f85ad-@|zSH{uQ=D=VvXfX}P%FG$~2eeDU7vitS7x!(FhSrdT|&p*QfcRO!0 zeXg{*xw$Qu+eM=RcT7MS$ZRzGW8@+)65-S13wxitefqoDsX|j52oNkKdQ{ZZ)hSvC#6#{(lqvx52d8H!DC~n%V(?q2&h;=Dock#l z_j0L!pJo}{BzLGr?CGWYG}+WN0pw6C_C8rwJrMnZ`9W1VaCr%*?3$my?u9x_4{5@) zD(kYW3A+8JYhT*J8_Fz(y5EwjP0U?XxHJIBYEN*}^^zAC8C?OQ3ws4il}7AZRoU%` z6caa_g+>RyijMS+655owQU+=)!`1^so17EVWeQ7yuUW(GGqG6)^_!5zJpEfQ;}p!il8{0Sj-mU`ZcnB^H~`2ErSbebb7Hn2uV{m3(hjF+jF+;u;znD0N5Uyw}`~ z&WNPyQU>1ZFYi?y4(TwoU;{Nl8Ze z%8a}O=35H1XXElssAzfptyq4BA8o${XxQeKl!QSb3M{PkrMZf!yb%41d_jtvH3j^h zdoqeV0AlH0%4c>FuDt^JK6;|#QvRuh0>Fq#QJyZ-?m;BAYIpdGx-EHFmz7Z6w|!elB;i%n2*gV@n=VLqWWsHDXE{;+{k z%$M?entgkU*Kym-?$xcXX7zcDZ>ZQc&he-9e3@HYeRY}h_JHS?Hg!@6sr!JCw+btE zojRlS{z!h=>9b96f zB61UWf@KjQJzqKB;yPOkrHZHVa$17Y5+%tA8XJ5rcTOv8zv8;jl%=%E%bZt_vEiwNOsvFjNv37dH_Y{(TMi zDwzg?NYXb~DoL$5%03Z`I){ETExWW>AeMo}bwQiTOBQ25+G+z4EQK8B9Rws%F*V!+qImzbAX=Y{OO+`HLRi zlFNZoc>ijGy-U`@(-OP5cmg;ymP8Qexe_~n9EP~|6B`%T0|LSt-NziB85$Uj94)r6 z9}Bx4$h5c~zWWXG235>|P%8Ev)6f78W7O#)YnJPnc>?K|zYJ13vGu6wO3_#!?neWeB^FB^42lzW9 z)>}wQEJ2#?!Cu$fMcr|bI?>(8d(#xq;=$qPc9HSN@mSW{73$BdHta)>Jd~eo37Njsa+xR@_u(!@pW}2c}hgy+#cth7%|^iUGHutQFkv_ z;;9UE@%Ua)0iKH~G?3X14`>z28;uM-Hyb@kbZvN^7+d?5aX}z`RjQ8eAiR7-U=J7} z{`~a*HDZ|XXNruBH8(ipBo5^UogXg?WD2xmD~voPT&ix}RzIGTlv3sW)<^n-qRrA*xU$A~CdC?|0=ABQbMwl^y9`|L7ZP6whX-Vzyhh`fum9<^ zuv{*ie_LYo?SL3IJ9{wW?+`7aGbE#^Eq%dcL*7;GXQ3zh`0B&{bU8cx9W(RSnF{^H zYf=sa(}5_ebU`Qd?-X{8{uTNy&3aeAGfK-e;}kR_BYdCIMVz|pBmw!s52rlOZV2WX ziO<(RONqhdcND3H{y+=A8%1o{4pp-IE)~9~*Q`c(iI?;pG^Uml6e6R_?kAxftF-R=Bh$>p&oI?{^Yxx_7 zrsy2ya0OKr8e00a7+nxz_4Vc%_=41#Qy+kNM1WR#l>M4N8ReMcwWV4VNVKzALL9gi zy3+}~yirN=V7U?yb9i_QVb*3uE>T=HU_`@UKKMovJokxu;&3fO`0-a~?}f=#DW$*fTI&nPeDNaJu)|lc@tc2!uv?AGzD9o}g`2Fb##r-Qnc4GN z3mf>9MWwE02fQIZ(P@(LPv8btjp|EPYW}pJ-(Cv`{;W5<@U-T~EXW9-9%f*r=!7I+ZOQ;P#7u{Ysm`@0;XCym~~q zM*+n9eB9-BpF|)+ia&xAliXVJ zrCJoLcst@%^H(e~$2t61OR>@>+-|-d!m}UB%S!gA@|qJ@{jwAu-yx3jD`Cx&CjoeX zl}f)y);7<}9GCs+1<(C*Y;x|OF){dn`-56}mfE@pCfbkFb+jV$39Rx-6+2qw?d5th zt6|gC8MF~tGf$#kK=QWC8pZ5qIYf1r1*m%r7C0P2QYrSOLJU!oWiSJ&N`uu8??2L- zQL>h(B8yMH(5&dKv$S5>dRhO_MeifT?}qmB;PtR`*Iwt7h>+I1-^5jK*_9i zK76#r%I#r?(xY96{6MRWwf6d$y(DtI#DQCAoOP$d3Q)8(IrsWX%y&7gc7a_cF8}>*^t|V~2$-0#odI^pcF(b6@l2 z2OTcly#3B_R`;G$+ymRPXdxnKYdP?2$KT(vOUOdjkZ)Nv8Bo?&kp zb^ZGbIPc}HuAA}F_$GIq)QX=aqb}7*9%9+%0Q9*utCX?;ijtCOZVL|5^)7fKCrCUN zBO6^9G-XarzUAK9Ek0C|t5>1w{LGj(T+4!F+@>JrlxqDbdyY)G5Qe`Cw)=HZRbqY9 ze7TqJzIpBY{h}r$^JuI>#EbwwR@u2e)0Qp=ADUTgnjGX0uW7`mLC0b^!3nGs%`kK) zB0?rg?zHS~RIGrY&iVR{AndQMDuQHQbC;DNF159d%w4DKL6Z9bhUNE@UkVLbnb-n7 zhXH{_0c8)hiGJ7I{H0#VzoNhCDlq*H-9n=(oA{-iBI~;IO`OycoSO@zK^l)OMnfH* z)NjX%GV6mp{=~)WJ0pT#UbN^4-j7tDoUbQdU#V6Lr*-?7LYK)97Vi0vLpz59gkT7& zQZj0SCZw{w|0@@uK}Cv(XW*i2DxT6@32(}d3Y8tb`qzVx9(K>CPm182L&QmkgtFyF z%6+++Gnqh~1JxJn*&b1Z(NR=V@PI0=k4Y~ognMu( zP7->rLHPs$0V$yukzN8)Lg?HRziH3h`8_jp@7(A971(F@@~*Yswaz}*$X694lO^3L zOSJ%M7j9&f+yKW3c=x19c+}ydX>$#tnFkarvAXM0!juMv{=H0Z~XJSNoSRi@N|2sv0om*Epv z`CS&cuOVic33m9FKV!-x#ayLC`)ZDvbFh!Ku>7ONVs!w8)k_P$L-He~j26|=7K;+2 znn~8HIRpxJTYK0noy5e34N|0Ja*Xdu;N_;TiOtHwc(LizMfHryS&D))7qC6n6V{SI zz@JiN`u%JVhmRZfSlzwKz@Vh0bPXpY76D>sybgJb{Tpd3MTC57*% zduIjiF;6x6Vw)(wAo`t-I@rLXa=f^;B6#JZV=XZ?<;J`8VEU{w(0A47@)W-hiK;wm z-O?=AZJT*Yhx&^VEGM2Oq!VrWo_dzXZLw1QW329?(_aJhYW&JX`I~94$NHt3pWdCg zUmk{kOwqjyqv$W24*bPn=dzCjILUEW%5{#>B-shGj@(Bht~Rq>w3mrgu1bAB)$78x zeZK<(VO}{kl_dql)rDTipilw;wDcSj*2ZexIA6YeX<%fOke;p%h~PN6J?Mw-?^>!a zbr;d9_4AwrE`fEBu2mG=|7cS^jZ9J=p4Zr(Dvh%geV^|vf<64dMpV=u3 z&3Gj5()sMR%c@XyHJ`c#0sa04dJjdVYwT8#+7rRBryYDd^_^dp3o2BNDHZJ|cs$0! zlB88HggIQ6dzIe5BR#=wy*2~S^s>SYdUP6+SOQ2U_||7&f7*;yz`Rxl!hqLCS`HRj zBcr0uU8bb;l-dddADbY{M*~=Iw(R-~JW{X8ju>#-vti)1b!1I*y+*Z(i^4}SCdQMu zH2YtBTwf#K7(aRSL@01Jnnh3L%dZO+f=5U1(rMd24TG&DAenIb-oml?g!qSFOa^bw zSUiCFsXa)kz5?9tU~pdY#^QCGtg3~Qr;SItSyJRzT_l~9`Wx^`1YmbM*<4$zQGDOV zEb)htczxCTQz6Qv)-Q0);d3Z?G^=FqivQ94Dv>KaX{=*;VIb~WBf5+JdQI(s-IF09 zVH3&pIA#F_(SRE$eB}a-pPwI~`+eG@CM_A)g&*G_WkFe;HvlOpU)d=X8WP^+^hMb^ z*xm|IT?B<`pY8Ffmi*nWdxVl^8DLPI%4(F{pUt_>(s<><6W+Ux<*dML0(Jc*o~uiT zsjI7N$5{Lm4KvyGW0aco49M`tDeT|SC)5C$1H1ywlFjmW;nxlZ1bNNItG`x}BvwZA zPoX-L*)@gxg0Jg5Iye80ny%9V4CTM;`*Y99KezMbKV^G>OHuycXU_e@*>G)dZv&G9 ziT=YQ(UB(SIWviPGP}lI9{+?C%2&tmO(^uA#_^B1qyfG@s}H3O-%=E^xHnT~mfd#< z$K^4SBYr9+ynnAqU4ytoC~(x&@?o1x-_B}%&t`RzzNcrFm(D-oJNM~LXl@?eXgCyA zwQ|X~z3cmkcV6*xbu3c59Qi|QUr?yK*SV1}M_XeyV#d)VQLbLN>BU0O z4ACny*_tUKxA;=*%IOT}&`^2KF8fl%eU~qzkF`iw{D7SG%V0T-Gw{KYtce`O0{_HW zc>ASxRGmW-Rof2)5ZZaCN?Df1n;x!4%58-Xy?~J%mm&N_UxG!8CXD23Gv#oa9a#sS z%%!L$G&CS~3vPGN2l!>})%r5nnAC{95@s&>_GEh3iS~os~@Eg6k{2J+p*XH%# z{XU&TvFW7m+vmt0M0~I11(*o6<3sz0pFUCBUR)5RV(v^)|9n25Jwoyp_!lzAUGY3n zjZ_3Zw-w$|0qKoLtq{mpWzPk@Z- z=-Elyqm<~~b6-w};3mIPqwmqV98(lvd9RVWep_#vYsgy!P(gPpKz*ugM|&T5@rKTH#AEKM=h`u!4qMMQo!u6!c8Y;wOZz#6Pv4HK^RA8!T9{ZdsD-f!Zg!4x3(CHebkWT^)SgH6#^Q$ zDtfO*F}ACa<%=Dh2B+2{neOpg9K`%3NKu$o0-EWfV2mDa6Fe4a6ki3WmST?xI*2u$ z-+PsQ@)B82980!PP-_^^=FBUYiU0?!P%N{2T*hX0wc_pEVc_BbZS>&NXG*lLAMfbr zPf9;FLZ{^*Q64G@rZ|(5vK3^G_ba%76HJ=BS}k(8@OxqBi-8e=qWcIwU!-J_TnUzs^eEXW+&8wEYYca7k--UCy-RP{75UIp`xSplSItkinfgv2f#860qe@S<8 z`FcB7^P%bc7}eNguLa`>wF&bj2_ioV%b1N`9r9}?%~Ki&9%7=39e6U`T#R5yQx7Qv z=3q{+@deU0y?%q+YD(rz)ZA|iTFt2*h{c66^Y|}3Y;4dX+F|TY3=g~lH~NH`=P$b! zm!!bE4%xan_PT%HFACCMUG|D-G=YzPY~R&;;EN16*LPEk)eGIls52LSO7^a?t006o zkQ36NXDF3k<>QhlphkD{bs9oU83xTWD7?9ov8I!nyQ}CNodF9RTL_Y-X;7C)MpJJtDkn)r^@wUpGxRt z6sEX3GaK`b!Vr}&i09Ph;I}2n8UHATlhYS!%t$U6nX5OaJ!oe>eVN>8zMy~8J^bN( ziN1PZ;seLCQ8hf_O>yqiK_l#>Au>`4yl~UgOqHTD zh5-kmvVK#haC(;Xm$lRlc;Vapjr2$L16YCVJPXZ}(*&O2Z0(jr0LyM9&(|H?KEy@O zp@Nze^&&#Gvl9A_uK6tqFqFV$s{`A<~WVvZLVl1`4(l*8b&AL?X4i!<^Hae z0hZ$i!<^88((AVbD7eMTk=1818NB*j?;TJp3^q zWgw3yYiMysF?@gT<@2g;&DOY{sF)`;9|PUCGv5=iftklxZn|MwG;dcNw)FMGdJ)ox zWOsGs!xF@sfnDK?!qgikDB8IfpKpoB%)1$|ZTnw3OOJMc_OSObc}T>L&B6ucreo~6 zUd-&OGXz1ux$TV|wlBPA#_M~Iwq(VPHu*?|SEX8+-XPAX_dRCX>DfrzS)f_N)&O)g zfm<_?Xs62ZeU_e`!c9SFhFVMyd^nQ43Mt(fR`_cs+)|EbDJCU9C}_k26Qj*(^de>c zeL9W{KtZF==Z(JH801}zTybu_sKZp;qbm*e$S@M)%m03-r~-9nH9XFSJkP=W^7~pZ zh5m`_kYH}T*pT}iM~`2H3f7;yysuhu@m!I|>DZ}4y?$x4xXI3;(8D(|bb%}EG5*^h zqGelZd9Ia#KuhmJk(bZ6y7Lvg3#1)egnjb(rpqs$no90c+*5S@^8iIb20_R;V&O@6 znMpEd1ff)$p_5poe;6@ufqLulJwA;l6R*4aHO=?Hv3bwuuo_yZ#@Vr?nZ%WEK{Q7s zE0TfSW4Wx(NtH@Z;ymowY@P`)eV=Ata5qqU**>4iFIH!^Vv11%XG9J=tKf@7Uzw!W zm@K$M)Wy4DZ6lrwk0L^AIgw3y4V!Lv(A%ADon&_=cRKjf_AF#DRD9(d-OqRKyG)+OE(XASn|f>yEYzx>pY^bvtXlf;Zm#Jk642To)HXg3ROgKcx@)ht zaGT3NYQ##uD$NIhG9XmlzZ}Rx_4vtp{e^{vr5>pznIIYvC^{hNGD&KNXkG@cM+CGF zy7LUA-_h40Ic>qXf`=n_O6> zQtSD<>-pMQ@{{^fyc${ZAF_Z3Z?o})lA8S=>c&40g8yMFMYkK1XtcW5NYqqnZA05O zBdaJC_RB#QNofMj8-6w_li&TcHNM}Sg5)S4&q5f`Mq{CjjPUEE=kdzql+eMYp2VQv zA2Xe_%^XK|;^Ydyj#!{?hozAu320vT^ZDWTJl%wt1kSaB{uf`y&vG|{kDW{os%Zrt;olg^R#hz^Dx=fC#JLMtc$qNbgHoXmh=7! zty?vCUe?n$B90@4=F|XPvWLc_6-G8qXo~8mnXw3yg2r5ay2wO)Bcef6b{~Caxd~0i z`~~RRbL$E`AzTxvf~@yNVU)EixZ*ZBMqmX$gMSmPdWN!18P*iAXMxQ-F#_gOyp~1y zvb_}#bD3sn0qyZ)1wSv4IfrcaNkRVdfO>(0R|n^=C3XKkbp%6zUGiyNP;*dAqawR< zP{AcE(Q3OKJY_jtcXo_8863PcROITtep)|#HdM9t>O50qaVdP_%Ylhl@TVGrCbY3; zxdzr<HJ;p=N^KsX^V;)ij@AS_==%-V9Qs ztSzz3_tsudtZ^BtfW2K3JJP}e_#&)9ewIC(Dj8&M*`KvCk#%OUr#T{UQYesHs*zPV zU>HFt7oqv6*l`^j(~`-s(Y&6-$~Zr5tt{ zUhGM)_S<0*(i5C?9_re!?rE@hjLmK>UaQ_flAAEP?TE|e@$SJS#%i_ zHT@scE~=1_|01|USKCi|Fn*60H) zZ#p?Zi`Fztz0tg29)HiX`qx`UlXp$^kAvCI5+!Xq)0;NFz1VC)M2v50d9R$zY$<5e zt2t##<%)0BUaAeSV3AbLc_!(NBy!<@%X`&uUJYUQap~8eV1RG2sG8&+P)e>A;Tx;G zHq2DT?gtLbvp=|*=Y~m>4b0!|dW7$4%9sW&ajVv(WOUP-&T8CsYFI&D5;GApW2ST- zFf*^VO3qxC{gHZTQ7?Up$*otfelaWB+~6IWD8^N5%viFUQE1YB^` zu)|a+q-ujIFK|FmGwa@OzwaO9J+D^wZXnusjmLxIWgY?h!hjt5nMFyzW0}}3pT~bB zoBMpw3*VImUn5QiY6)Msd+g(Q1U||QWUY3dXpffFb~8uSM{zs88+NwH6(2_tx?Km8 znaf3+>(w{=7xT(JK6|efIPIi84Lsav-1dHWiKsg0lIpvM8h`of=)Pym)Dq))P{_Mq z#}=Pa(4w;-w4Bdlt0gWMbL^9y$eFWyAo3c5qui(TgrnT+rQVV~UGnRdyhHVZmLR)C>U94!lR9W79!K1%>*JjDi(#CmBF;agAFk4 zzp~7W((UBLbNzbF8=#aaz)^D1Udi_+I;;#Js-XbfFxh; z1E#%xffkSoQj(feS76=X2U0yl2%`zJnO}^%5v^%=tsl2UfZRExI8P%091Y(HI0yqH z09BDx=>?$YAW+$rbCjfC=f|xi^#hcC^8>0C*QK@xS9oA z_q>!IdO>ifm1~Oli{oS+CyASy5>h=>5OP~-VI&q7EeNUV`TEudZLg*`Y<`s+_x!2D zl}~PUL9~q;g+b{fMLxDyng%4$Q>uLGVsR<^Bm(T-`>YbqI^5T#pQWpCXH&CE&^su# zmEJsuE?%p$2r5-}^WD2s+U%XJEP@@$IpNjjEoGM)L#NEF=^}jHN?bu^zcs>G1q>IG zCk^Gv*HxgaK=k>Ad%BO8X~9Mw@5{SxB+vW?`+%qK_{nWy)ZcbJ5?k)lO?dx|4M3Xr znVB3y7EN_C@i*Q+sd}+xL)hJ=e__`a0qCZ;m0tjcIeI>s8?Z=UwsR$4+3PU)QEfJ! z#K%RY%7Oi|fkQ!FeR=!(hO0phd|;yA!)YLLM(}ygjpHZMAxhV~Rh| zar-tVBQW)2(a-S^0rt1pq|^v2Zli3r^4C0rRB#vl>dC+}npz34$%;-1cDzN$KX^;= z9-GBeLG|>i3}BvG-=uIg{$R0JvW$rcqd4VDgy$r5BraqAAPNOyiGow`8Bev=p$M~9QofyXMpE?;NFW;WN za~u>{evac?yfMf7pGHWLG{Gs>_aP5D0dEbw(Dfa160{I6d0h`?qH1|aQPqgjd--rZ zKE~M%?@XhyvnU=eb5azV6LEl zuKsq$=7`;qwTFyDJY3M&J2EU=G$mB%njerhHuV+}B#mj<4=0AO4BhIEJPA5d&LVU} zO+O{897|3!pV6#iMGof9en;u3Usfrf8}fX5)%QalwA$BveN%VcX0>>6x zVW!=jw|f=A?_vSaj>(csY{f0?GOM;Q^9vxW`Nr)oa0G&)ZS}#}D;xwGq`m0Y_842Aj6K8r#c_GGP7B=8@7L?nJHQ#CDPKnDK^OU-8Bd}OORMxRh`H@eKn|~j!>Doa z+1K}g8h>WkLycy{%GYa8dVIaOgCc(tI8(EM3%Zw!J{;Y5ef-v6i*1m=`JrfI!}Vk! zK$~YSO5Bi_ur;8*BUc=h`Y5F<&1o>!^`fwbtnY>a;Mke&xYx2<*%Swetlq%kXX@by z3j5-l9aX_)FQOwGwBR7veOeS3gx zisoKwJJSFvApwH%U;*4H%Zana%cT8CH%DouEhVt*>L5ufhBWc1w6Zv|O~2W;kR;Lj zKbt%=gZl3Re}U*Z{;^O49{-EX)2k|Q`6En$g}G$(uY&L2=J^lg;(zp*o|Ji*N&*e1LLNb6V*tV1 z81898%5#^yjisyxkC0q5A+A_7XM8#TehdU+ena|3z#Qp|1fYzyaB-^`p)R@O_x){+ z;uwN;3Y+8woD8P&Px%2Vr-XX{;Y;H1q<7C;wFlv0qY&)0bBlJHy!$V*t~}rIxoO&*-HIr%&f|#OlE)3Yx76 zHFb4&>}E}{g?Cejw;Vl&&S>s_urS#VwTxvA9rr*i)=jwfWp<=4zF)RC9e)7i0B%O% zh!1Ma7bIu|pOEI_8@lNdX4*pitcoChvP~d6oG$fUUG8*cmk(02oZilEXbBUp z!tY>{1mZ=fiD2@oUt+E+X#&MBtXv*kP}PIZG@~9_j=FX}fOkGHDF}-sFEFK#w5;6S zFOFT;vi#lMTyHY_BAwHrcw;#c%F$4+JHlRV%i+>Lh3c;z=qA+Q9EkQdeew+gA5HJD z`U{@~ihd)c&Ls{AtysI5#%v7c@5^OzH1wCccsQ&KCUcnc1lk0uAA2sGVn{>S7TG+9 zZmflTkZVq`u?GHWRTy;m_||d~ zy!T6?4;Fc#va+t`*ytDDCaB?Z&=F!ZnK~Y4=)ZPnYKpfU^Fs8R4O@eMsy=oqb$ITJ z|CGPxaa`6G3>z0WbNJgtt_o$OZr_pBn6Cz|5np>~qM)F1q16dh^;pw?hk7CYsFJh; zzF~n`e*QG4`fyb`EqKhfc>gbF&Gfs%=pM2O6M)*CJM8b4rfUnSYWeYTrUV5LCxT|i zA}%x?ZHbENSv0DW`6(l+4f$HLFlrB?5Wf58P)7G9`M7~Gq~a-+e`})PIWLX98&Elup$0al}^!|9HER$rWp}`n9M3 zdx(c&Oi*L75-l%TxT!B`d8kz-8xj^?<<%gb&RQk za93xG^VKVWff0rrcOhE+Ph%9v%Uo)wANZS{9sY8aJ8S3i-plBPk4!jG2gWl>EYsk4 ziK;vnvxMIDHsOng!c5=;#4@Ko+O(Lq6sM?|<%m@)ElM61td*wH6(*5g^m>o9u06nc znyh6`d?Lg1?hKsOoKY;(bx#`4m>T+PR?Ba-nz;Dg#wTGrVTUUf3{&2kiz^|qta-|w z0Yt-<;%jpLhMJgY_li$$MG{W5$wGDr!hRyMVGcD^6ds!ahL16nU{VqaE-(JmZtA-m zXJTLOwR`IE;o^$|MCR$eyURwZvip{{zVe}7g7Enl-3Ig0W5{PwoEC@C5(+?Zr%|KA`-StL1BF!NhhJUKticB!N+5XfhOXS*QycSu;pSTOfx} zNxqTgiHjW4OcSAs%_7KE`zXzO&l4g@llb$2(GUF#OXf?s4vujk=weSA6!X?ozEs@lR3rGsv80-?VBo)JKzHSHHgG#}uMItp6jn-0 zo1kC6idDHU%&aWx)2^n@+!>cLJW2Hvs5#gn%|Trm{oeaMKg%C3QCS1pLHnB~*frCJ zG4VUfId9Y4b+go;DLZ*7m~+Vc2Ru~NPW>S%A2ay=ROZhTa`F8KETp8Rc|8=JFPB{! zyyS>qTQ=y}$Z|S4Z1xCV7(D!aQz_MFMVY&~Sb=>tdDl7+!1&;%?tscYUo96xGe zh$~yhPP_GBmm@3E#C*(tOe?k1Ub+Sz&p9AbgFV-4TWSd%GKUMM;sx_%TAG+2OHOTv zofHwdFSF!zx0k@X#MrM5euqy^PD*77eci$NOSFMcEf06;i&vQn97jrql9x_(vxNQ5 zT1X98eWdEHz|3Y|2=N^3{qS$Gg~IICALf5a;T#yod((V8JBlmAx-nZpgW5{nn*y^x(3?I|d*D_Vs`lWH;eldU8eAYP+J;v!rO(DamAG3O3Y6~B;QsP#_n zxQSxwnk@iR+zANCd6MSw%^Yv=%293OJ5=9f)}TuIUKg`e6G~m;Il7BioaQt~9UyF! z(#1ork!EM~<|a?*)2C0<tD^gk*O712TaTbrI>^3l~qy>Bt1G>m7>~ zbX_DhHLpBPW@KubzR^syI9XSwU5@mvT|(4pY#E|aPoN&d=&u#FdCj-B^zV_VHI_Dj z#M7&8%({_vCsn!@azMX2=oWm*scy}NsJOk`2m!B4R@G$lj6uFh*2PWPw?Y-TI_D@d zpDF`Qfu^;ANTOWT#N8gZAbs_g1~u7y3*_dk9zeLj#8FhZP9asATEIuUaKip@_D|Fa zb&p=PETkzC30!5PEjxOPDT&$gWSeRm^wyx>YWOdh1iuST2-7ZBY=t!X#_XU`q7`<+ zvEa-h!bmz}@e05ZZEkLs@tA)TTg{29vuLC(S4lC>w@(sB534CSeBpBA&h1L8Fi4NC zsE6uM+&3gn$spmn_WTCMITcS<%R?{Cio-`zZJMvOakm3et9(n1ATBDZv z&JY?uNgP1rI85;664K;(%M>K&{No$uQ#s zwvWZdnxCz7rV4~o<>oFmMG`c;^X|lUA2G9mdaagvKL9U}a&9;R1)`b!wC}#X{@GXC zYc1CPtnh#=z|~B5nsEep25L3(v;2Jiu19$&AYJZC3DS{P^S|p>{s$=h-}G7Y3k*F3 zg42fAf@LIr?jgl^9oHSUIZ54lcN;K#&}enwwX`3y9a<}=_y~gQR@FH-4> zm?F93TkC~^6PBYCGXQ+z4rlD8W}ef?t?H>DWlLQ^nCg!CtT}#{*;reT!-; zwTfYvHKJq?)ER3!Xlps^0=PjYrFCSD^Uw^TY$hJelmzIF^CnlsUU~3jiXBsc1+lvM zX@&H^bLA5Ih0AS_jV_}z_D{j<+UfevU%{26=>aW80u{5%`e>NeIQPHZ7)+axFloHg zH@G>y@nhz6yBbsDXWmS4WH_u-%mBXC!Ccbu*f8qWG!*TiSqT?X_a0;KvK;=n%Ao$P zie}0vO27;TFR3nZZF#!|&u8XA3A^{8@@n^We~SM-j;Tt)yy1fc5c0>}RO z^YRBAantZMgE`9b{W5H`J^*z)a$flZ6w*08aOA-GWD+49P;IoG2E<=EJVPNXgMd&! zS%WY!)Z%vxKt~ldl3^Zb_fJrSf3|);-l$JVhB(_C|vbFfTRLlHc|{D zG(G6*Q-H1n*mySbpiYlR5tBH*p6yDxuI8)|Ue)}fJBD5FRGeqq#YzD9kpf~KFHFJ!b>F3o!ql7k7u;opQiw^fu z0!eW8y@Ew3utAa=CL7yGL!zQ>s}KZdkyTY!^D|MQj;eSn?TQxY89^_Z8l^7i(21YUXcUmE3~ z!k&~(3uQ`tTmr_-{YN)s(j~10!2SDfT2%Y)IoLo(LdgCE=0xB3v%JNk5Y&_`Xq>Hp zJ*^x!{q>FLemk7mtJ9qvMnil;8u92I0LUsU^*`yTU}yG1g=Jf`6YkruUMRNM|AZNV z(RENir`La!!qujNIB44oeDjF1+pUgXLtWb%%LN%H{}T&rXno6mFJRq~o=(U#exRO6j1_ORt`5o(rwkEpQo7V` zDXcm^GhLK24e$0JV=Vi!jX1w;SP#26BJdNfd6BXnJs%~37VjT2F2!}a$JeKTYt-~n z6!r!^#i_TO+_0|}FeCX->^B4shPVfl=%+ujB_{ zTEzK_A~}g7ul%DpCPI>Ab+id?o^u+=RXqf3nIaxb^E`I_(k`OAF&p5iw5!*Q5XtQ# z$K#1qqzG}RDlTu)2#FyotL7Drh0x-jNExsJOR!ToYj0WTLVS)WD%`#4wpihUbVq^N zRiN^3h}Km+9{29HvKQv0u${0tcQuMQ`&-~TN(0Qvw(e`2mz4m?4_{3lT^(gU@^hH~*TL|>#kmsw!U`qWR!w(0c+jY<_r9-U zyGK!te7}rmUz##k?AJ?xmO$Q9CfMDz1afh4p}6>JRoBC@K|w%4@D)^0dRIyS5fDV_g7nUdNGF7jbOoZKARVL=dPho#KmrO# z?+{ubh|+uSkZ+;y@AsW^#yw|@d+&G0{lkHTz1LoQtu^O-<};s}VD+c+l;jNL5D0`) zQ9(`v0wIxvK+ZT`I14_xsToiOew=a9ke7uNcior=znrs@QI&x}O2a6Q%+7<~FFGpd zyFegRji>+4#PCotLLjP-73E~KUYaapy~DL}*j2oLlDDSE#KvG%ieU}6n=Mm;!}5)` zMfRfRs89}vbW)O)hd$B|Spv@7W>0@U@andlR=VOG^IsQ9uRbT)pt(wiaPZ7LbLEU@ zkUY!y1BL{7Q8+__pJScfv1OQKlAYV`^CH}5%iUScjM!hICYz-*3BMXX*`YjV&w%+c zlmCE$ACO)MoCN%MNBR;>5b{v?EB^G;^l#sHDw~>`k|jKJw6)K#pHKfN`7={emfvw_ zX{0rZ!((M^zpR} zU%2-q;@ZZ>201x-fY?(-#bBeUnu+6;V&j^C^v&5A-PTZ1!WZ~Ntw8PG&%}u%%kC7( zup8nuTBaA`2J!Zb_idZqhKzR$Opk5*vsDvR1D_P#cDX6xUU=ZXJi1*qo8rBS-3@rp z+xvu&y}S5PVx`A{nh{!9TT3994`rZ}rc_jqVYo_9PwJFpS6nrNt~-XgxuM)v#aag5 zUb>zxwDu#AIz`Os4yP)G@m+@5UU?=-ml+lHb6~6AY++%&>5mhnW&PG>rHT3o4bh86 z>aHh8`Pv0q8&gqggM))B!==9t7EAnp26Ob4zc*Tg-uw_<;GOg|`TqRN@8)5Wu|Iuy z&qP)#6|w5cJkzmZfeWz=MI2~IIgE)(P>YVc_D?%Sm(pnGz4lD(iliHzuU@XiQ{52z zo5l6=l4@`1A`{<1jgP3QWkfih+S)uuz|crT0wjT0MoEo0|^dEX?-;Y!a5> zBp>qEdJ)`r@ip14o`|kw3DI2Z^r}EXcsWYcX<;Bwp2=5>Es9;WERrhVqprN<-(MkE zr78wS#=!R>U3cOJJEnxi=W(8oV6f#VHL3W0!NA_Z zzJ9^V?Z&J!KEuk~wKkrTF^s2+`oM!fvpC#ct=peT+;(5Y#$qY23r;PKl*@zZOh+C3E{NmKr)zfO$Qi(@a z6w9siU<{FOHEv%Xy`{2gtDBBBq+*gPy!(P~=X~CDdt7(21X?+czwE2`N>xrpg)r3U zMyIEF^T*|ZyeRD=qbk8EGO$iezFQGZx+KVspWi<$<1G_zY5ly4tgZDM{%kgybf^^X zJJJW*Bak`L2&;-xtAuamwf_e^Y(5(N0Ev%Rb|JoAmCO%cx61U+X1L ze2S#^QjhFxGi9yc@j-8fe1W$MZ9cYq^i0%tqfmG?+J=^U-J=_cJ=p43gV!DJ>`8cz zkWfGP44;rHP&zzn5t!|WH-`u1-||0NkK#}>h#_T?^7&Go+vXo8w_wFi2elt&9>LM2 zC-)Xm@d+FB*_Bk4n{o6c_W?J6vKv~+Kth2x@Z0PZ%~6R@C%wO!58FQa((9VJbNm>~ zT|%MvXhhBGV0X1dxn=aj7J&jE9=2@8ohku=IKG&IRbN}IbTEw=JX)`(5cpKw8l>eA z6;%~+DCn&LKU@#<=S@{Np{{_w=M@VJ6ZJHgmqTEx@H|9CsW@(tC^{4hMFt|yQ!PBdI5(T6PfE+mH2PDzkoan^ zyj4v#$t)YfjBMwD2f;JvNzdMWlF@LStzp7dSoQKKs=yXCYnw*9(zO=LXDEC#UmYcY z-HO~X4eU;pHq~}W_dS@;5efK=<_&@hzi7F<9C-8y`82`c%`MmL6G%bz|P>$dprj$3(K=RE#37m}B+TVi6HUGV*+G~#Ex;`!x< zPxs7)1IBcb*FWFrm7+?oI^8CuWbXy;;9aRY*LjVa8Qe33=$K;zaF{uywP=*%@v!wl z$kEzc>7!`@f1BCK>_msi-i6G08r05;v(h29N4jaNsy`xMj>&c#XLb8~_e}^yOmG8A z%Yy7EHE&+2J#?t4vlHwY9~&&SpK(_mTw+j>#?B7rQ)vW?^ z?vpeS!gjQ#ibZ)PUJUJ7HWYR8uws(*s@OO&ZM(29^PEI9fNnwCGqGVRVsxc3m{t`t z6_6kWyY09+)2VCXX_50Zxha&Tk{D&JU%XNz(oYTk~f~NQb5LOeKgqJV!!>RXRcrcaz@2#yc~D>x9;N9STCR<@L8> z4r*9s$)-QoO2wJ_?T1_!vQMEhqso_gaogSVok~|2VdM(SlU$2bDc^zN7qY`P_k7Vb zNM)^S`E=RNmL1|Zc4pYqEjPH)1bbqvy0=HCsK+v!Bx8N09U*q>q5b^OPR{gZM$eP} zoMGSb9;wKc<);{eR^q!R8#lw1!u(PZg>@G)2;^f3Ms>KcFi-Y+r<%KbC1b@&G8ROC z;1&-y-^1z1VUdozPLpx0gKv(QOJ9FBF7s@M=GZ7MTQDYs3g=ndMs$ym81+lo$T>MV z4HX;Xp2^>H{P7U|aN69^V>7%#RRMY(Z-PBJSX8e4Sad&#>RYG#=wzBP?OST5N(287 zeu~eFK0nf_vgPwXTt@qEv~qk)a{>;;Vo}s~#?b9fWqL+~Vk0Z=!p-Og0)=YFc#X$U zG%-i|*k*TST*mn9XezL!QQhRNeA+p8LF{J6=jv*&y|u~6$Dw&FF>ghLh4*q=ye<+i z+lR+?tJv7gx8G7ERw8Jd<&wBXJeF;kXu99DxuFW=hCXd5Qa9F}JhEabZDi{FTrgBk zQHP!G_Y>e9__0Eg_;Z#D0=W_Im1xuRLu|z?JpA_jlfqzmlz^~rs>&Qy@!=PTiRxe; zm8$}EjT;UYvcpO#nf||Ry0$oFr)SixO+@+YV&xVti zcRmiE;74jR;+gKUQ>DBsde_3}O7+V>fbR{v0k-PoGcwTm)1$edb57*eCGX$Aub^|& z^1!!lb%n*e`_&w_xU7zB(yz3SPmax8gq_e%fwkct*5$ScUFjaZcxdQh{4;DL(7n^t zyKT?v5nC`}=9U>_<(6Hjp`^6UOT*Ds1cG6Vi20x+?E!)OXc@o@yX-EFY~~jfNAi4O zJ7-p)pHSf{u=8En!*RTMe0+pGcm~sH>ASluDn3$S)Boa97j?p+AAWnt)YQbpfi0n_ zf&*X)6ceZQWyQn|--9iuno^Hd6T^w|t60xa#0;0_mK;8bFfsk;uhvf0 z$*P^x;v1o?pnl{z!1Uls6vW>~bvQ%A|Kus~X9O8jiiAhH9|`BtQTL6D%|~bDJ$FR} z?|E*#2+c4SOx#ubAOSy!d!wWwE|izXV`_eoN-=pWCSimFyHkM&?rWmLRdP{jka4os zQAb}tuRDXG0)ggIIm9|5t7`<7v-YY$S|FcIm|?#?xw2hvd6ljj&c;|BxF}VOM?3rk z=4Rc6r}5|Ix~}2j;WEUm_Fz4T!F9(^jp2Ya=6a@MyI+E;h!ydd^hri$#f$lnIrNld|Z?sx~_!%y=Hkf}NFcS~_{5*pKZu zv#WD61oO!|eS+Dtva&X`wwG}Qan*C%T@tIVi!j?CM1s0}j&m}T1U5ME?cL@6yv;gk zt54lknh7t}-#jf$7%8m?akm6su`LOCt!-hj#Gai(GvjsH0gH%1BfC6OVc49n5Y z)T1d5hmuI{kC)sU-(3;Bh#Fe#K|X?EKjW&@3r*`xBuZKhZ<_jUYa>ps4?b~o6@+-W zmeie8^To1K(LLW@z};6y&IZ4cl#Zzy4bbTeq{;J6JUMgMqV4K(O0wR~h>(74*nBe6 zG!ejyz14aUe~RLJE>z2PVy0_XD&FY;YYp;Koj31Rb35zC5M|=cmlPUq)9Soca@EDd zm;C*Q4-Yr8P1zG9T1!oDvekG$R638oe2!XW6 zZ@9unGfwOz>=p!)HvS5IM(&e-x#c);Mj1a%uXwM0BNM0t7`paE=qdzatp@VkE0+5k z(^#+VvXXbkPT%RMCAWI|vXmKr5{dfY3jhBx6P7t3xNpt%TBUeeK1^!9<;@#YC-E5s zo?u!IQW?fH-<}kJMo$1Z9b7q|6_0c(6Eo0|ttl$sIyqb=b309@RRR7jx9YCMbeK=I zM8LR3^O(mYw$8~|&b`Zin#^zxrecj=hk^?gl-x0@V*8)OoYD!x zbq#AfH}1l`y!D#KCR7B=z;M82p`BS;Y{S2=!|`SGh&!?+r91RITKr zNQ;$97A&CIy+&2!z9gH5ZN<^gf**P3enW6s{dWGbMJuPV~c-?euH2l8p4GViF zt+{HRRcIzAX805L`k#mCm0<|kx`vW8mfYDgwU_cT&OO#HHt#{^ec%~-6?+XDFkRFZ zBlf-2nd4#c>lk4)!II4@#(u;hx6K{5y)94Mx%_JKfV{w&@`xLtdl5fttHRRH$yZKn z0NwG5N*OF|zL~@1x$j7t`1dGbyJzJfqTJTv54#xfgNoOSu_M&HlWItcbeMG)#Et;V+{(uT#e4RYU~3>O8lR>yUk(sJ@veZ$~`V#+RySl7xN^KjLlYX3* z`&V@&X(@@8Y0MsFG+Jh9Ses@PHl&9{ZIJ=s1Ll4}puhb>_Gu*l*{5o!nMWtRhmqNnul%jmbnz_YRV5iba7S^WkG*UW#{NQA%4jg4(;jbV*BKp-C=;ycE zI)2+tGgnqSPsYOSttJ}4i@MD&2|y^}Kbt)QWKU01<~*!g`;3uuK>NMd6p_$gdcsbL zG@h=pvnS6~7*n+S;m}?>#>dU2&vO2C?_m)pP+eDdm*BlR;9c0nV+9e&TYU#36}u;Ui#w?fa{}eg!K4*!!zes zcwNaZb^vsdk~g(T%{jN?;&pr&>uzO_>;ND}1OgT-loZB|s^{}0`3fsq@jk0QfRdZa zfMIE3`QX6$jDNf-5%4vmtjrmt9ZpP%J7Cw(XI)gNle=tm0i3N0;Mt$C#e7gNo;jgv zX^CJdx*GxAsAPPzLUkN6kd>H9_?2*eJR#gsL4w9uwa>gj2YB&tD*4VgfWQkWpliz= z8(b)i$5|re+@dOOO6f3Zaj;CmWF>6aPEHCMsXD1-IL+BAO7eN@lOu&I^E64IaLyitxZ_aj0 z`yN!}Ydt5-jB=LfPQ!Zn2Ofj5M}rKiBPk4KNnR zt30CbN|dj<5c=uaqLU#u$9P@&vFd=T(V9UWR0 zsA7E$xbo;@WR$FQ$JQFAveCq&RwnM z7i7!}G2!b7pGk?TT$_eQ%)uN=lF<8YY|%Dms1CPlUFx{U2!`g-iU+dqg`rS><7#0C z>r#Qzn_`X+5s|Ds@si#nepJBwWQM++wV12+fA~++5!EfI z86uKzR)YeXfutt# z7$?sdr8+El^-8K7($me;iGF5XZ)Gj2^(ohh zLFbFlU{Qs6-^SyYG8K7fgsi*^A-h0<{CW4eWdA+HJv+O|+qnGD%?C(~2yL-G`xj!j z_Ro^bN!59;6V7MdI_bJ_QC)q~Gm*S#FsK7?j5^kDe~iwtzWY*%xP~)|D?CaWkY^Y6 zSTQn&Zy*PVjm779*u7LgDa8LRzFyYDAa-%HvxBnCVf?<~sROX~iOE%>9OyWn!zmR~ zLMli`8}Z!W1iya|Jn`qxcUw?zmYTPeJ+ajyd{IKv+IBm?Iuy|yc`buT7qhFowGjO+6|2R%PFM z8W#Ach+YeiI*rzu{u_@L2CtmdZ5*g~#|t&vutC0NrK@68iL9zd2K{yVIcll5&T%nU z-ILU4imeICl-I81tHR{-vOFU9omJVFKANP?)(j?Oufy~rwDOP6h`f8_99Xl%?Idk+ zcT5a<&+};lpYtF-<>hgjfNiV?vH`P<^9Vb4ZwgvyaONR@k4~L3CqKVQrM>>;M*ny= z8|7(vJt`~Zu8tdBK?5_uqi9NH>Nxmzsgqb)w!M9_sT}RZck|@cXi&ctHovqE*+}Ex zFRM*nB=JI_>lE-kWb9=pxC0yys$c^8WpW?OT<81J)6+-Ft>EL;BDoF`=PBsL9+f>7 ztcoV~XjQ~s4 zq&U5!u5sV``P5>x`rK$ijp6&v&5z;AHo|#{Zlb0Yo$<`J4^g{@28=uxk!HscxDNFF zmdmH8?LLG44pb2zbdgr$NCGAvFrw$O5(Dk43GYJ)Q~hfaQ0y|u83kh+-cpk}xqi7& zM;BhY&l3QuoZz(Sq!0gY z{*f&_)zF6?ViJq&iIi&_2|}|4fK`}czV3-{YD-A>kzYTNS*;L>d?P33~X>BYbNM{E z!S=$rr?58<_FbnV7~JM}0&ktPC7Fn{DA)0*PkwTuJ(5pv@Rw9#!K~{b1s!e};`^By z+CWB&s*r83;m_PjUaOS*y*;d|a6=ux2U9SX_w6EM8_C+Y;dnjI`vaoUD!sB34_pLi z4`Vl!Z0BEexps~zb7vdWl}zLGN*r#~4MO=OqS5-T75ba2m_w=d#5Jx*w!2^nr)0yP zH%2!Q$2@YB+eHV@(G@*&sdW1KscisH0kd03H>L_txPk#;oWDu91~GdrMvlySjSRGg08h z?NrUCYU|v9fU`p?4f&1v8qb=9F`Y+>d57iRFN}5m5){hAQKyWX2V_B+O2lK{qw{)n zAHwPrxK=B(Fm@!69uvh0d~{pB9h=qD@uN&<+?!E!_>>tm=|WD zLFAz9uOv&LkCdK;=~(z8c(h0u+Zcj&UJumvXKh30qZ^eEEJ!W0Ej&5&Xlk@DswG`V zKySf*t-`XB&MpI^@(k66e#k(WiEh8W80n1_EH^;uL=G2f!#5fKDvqBp={yaMp0^+m zz1djcst%Q9Ck)V z(!puDU6r2)ld>CZL;WW^KU)s=@@?poQ&K^Cx>^FzRTX)W@b#!W@y;w~1$lVpb=#u}c>jgA0y$60IRoz1Hrz&Ply4m+B#q@2@V`}a zFz(gfjJHvrdv@_#3$@MJP)|=!onoJY3Al0u*fD<-t`hRr*r>a-0?KWN1WV6?gqouu z;>&^1l8{IjIg3K0Ru~l|4SVX$!C*RUBhFzW$8I7>nt}vC!yDvf@FV2IwQGJdOdm63&v&X;uJEBCMMxQC>myE%{O`rMgZP%bQz-^rUZCq35 ziRb6O{`e;n0E2t=zpsK|_%8kvUjW7OCybm1>wnz~p7_6`4xnfL{iuhrH?zvh1X~_o zzlnGX=(|i+N9j&(FqED0e<5oAo6z__vOSp#Ffwm~%AE)W*1pFI-x{MpzJ9s`tTbF` zjl1itV9e7H8Z6gVbXDcSMKH^2OE8&BAfjsz;<7KGz&_y?=Pv8u9q?gVNLQ#6-u$Y|r;w z&2+@iz(A$gT%DeO94xmsd{k3Zap_F?1`q%N)uk3#>E`QI0TvP;_ zj-LK$g0KycifnIhyUcdoy!X7Z%%Z&m-<2Y1XkucbtDAGQjGj0FwTw^bZJ<`EsBpzs z!UXTq*>Z|V0QuCTM-4nBn2ouNFm7qDtvR6lSPshw@x+4~_DaoaE#Lz}AJ`6X!ju_N z$!A)^$JQ$m6xS94(>^?ScLtb9FPKFh8b-kA$Ezkn!TNk*{pgt(0zUA>dhgcGB-jB> z)<7RdwJmEUR)CXJ-S1aZ=%Y86N)f_zZMZ3SK;fA9NX+7TF{*+&PB(O{VGzO0P>d?g z&VZ&GC~5P)6Cell^w%Q@VrteNd=jE%VO5t!gP$aSN^Ye2d0OwfA=H{p(l&A`C9nm8Cl(+ijwnVOm!7}%QTleCb7 zCvM~bWRJH~zZzGSlj5bs6e@qqQ;wMbthF9NK}T+v-GlPb1{HTkX+I1~w@5ZVzK!16j_GJMgqy`sJZTs7kK3R+CKu#Ig8euq6ou_g+p;&X-%g z^4&?|fX;(G9K?3UvF61zwznN)6kNGBE5j$bwubOy7lKDQjF4+&R~8oE0=u;Xi#?T& z<};|61M`k60E(zGAeXAlC+l&4F^*TM;}w{Qbc;8RR|aO)>>+?~(C+X|q!pP2T*E$# zgb#cZj5K#}7C_}ba1K8Zbc~Gb{dUu0Fk7zgyH@ItN zj!8A{?|$A6!0=VjZErtfB?vyqS9#>U3B<=XFePN{sfKoU1K3TWE& zU~{{fd;p!`-}4pal~P9T{nGsBX=~6|Oa66yH7)4O=X%#54{LI8!K84K7B_g}4GuuU zrX7P93Phg)t5Y?bSnq2JQmIi<;JRKiJ}fRdOo^ycNDE8xpyZ=dfG;ZYM z!e~Jz$qp9yGl4YR0$!817oF9cY=zlc_TVKRr$?2pEo3`BPHR-9}x z*+~)BTu&62xFCH$+i}1nV2zBaseZPmqxAD(Kt}0Wb(PHC$rVK1{z?t~&L`6%$Ej_Z zm+hFBd+^PGwQ+7l-3h^mg6P|2hG21c*}RB!4_^ri5wby1&m8K>79 zwrhH=w--nq;AoIlKRF(_CXXm}9Oh#(c)4i0+g$HYFfWeuUb%@r%jv zlDOu2?+<}%C_%)dRf>A=rsjGMZ-3iK>@WAG`op+$lfxxfrPjY{P^=#QqC$j8{}qI7 zZfvM+4_KqlB7gg!Vys@OZlZXt^u)h>?L@cod;QzQ`Z)8+Zn9{-y{~gc=g~jFCJr6_}6;(Z%{P+6Q6W17oZ|cMi3jZDb%OA%w9oM>b4flFVM7eKl>0RDo zyh6=Hd~hKZpSBjkF{n4}zZXYNMs-|Y|JJ`sie3tLRf>^x{59 zM|yp)H-#b|nIoIf>V{gmMTWV@!3Y*8>7;o9oozSYKq=>dlYTBsD54uqRi9d{k?Zmt z*%c|9e2>D7%6wAUFu?H#IpRK^e&L8`z}pN-NY>j^(j1niU+}F^UoDiywuAqLA?Bbyw5Ozx&_n7e3% zEcT?>=6Z*K3nS3Yvc4v~0~`uSDOLJ~O*)E+!VC2#6m$zw)<~&D@@;XHdg_?o-q0~P zK5xmlucOrgOsxq>ZqoLpzd zxW~$lXYmdA8X{LF=@*J`QG7_Khd0Z%^NeIV$^c6Nh+<^7k{S55n{*h;w4&d(RRcbS zJ$A>!TxYM#0Nu-d?)lF1zYP(<69_~fSgkeB%cnrbJ%X6cguu?9emZjg^i%#aG;Uzv z5`%Cq$gbXXr%r&t(XS?5%>DfM{H6Uoa)jY~7i`iLf&ni^Z&1<*UU6;j zR~RVkhX0YC7B4`;$Qn4O+pAM>S146fNk zOi#39)>?^$6ane;4NzcFR~T0r)wefDep_#}mW&m22`b4oc4 zc$8&cBM~d>=U01>@H$UbM&`9~UuAHk%mDA)b@|Q#lR!P7zFAwx@zL4PE)U{`AKN^+ zXca@gtml7uI_&aeg{q~^NUiTdZl-m9SjI*SpVRP{ zA8gNr>1<0n*ae~w#7-0J+PiK%0s?A}N9DSF>tOw{MXUV#_Rm@uK&0o|!m6?{@fnI2 zSWi#r_|n7iGzrSW8P+DHnC$e-ent1*nKh`RkuW@pdY>rROP9L{Eaz^Cb9~zOA#A4< zGgQ`vDHh~^p+6eiF?^+^@_2x z5iW$CoZu)w;(;l+rV)g2?$cS6V4%-XwzQ`+cm|ZHqE>U-LgCr;oualGr2G5(>vZoQ zh#qrhSk||V8)c2O=!h&$MksCNU(_JUcLXxw^_hFZ0oo(yVuzo7S*M*jYW?oeT*Binb9Lv(pv|)3gh0l{^fx4+sCE6#K&5H z!;c-AX@1O)*7a6>7K;vU-eCAvn>{0{Zv8YnggAavcV#xpUF#a2$-3F7V-=0kJ?R%c zDL7K$)HF5qUl|i0CkqlJFBOH%Sx+UQVI$si@R~4z;|0e)U@!+bGn_+_*j2DR066$r zE?!<||5lwajbPCGiyO_K?`B8s;5chG*hg(FWg}mAd6eg+;mjT(ySp6#wXo)APmn7Y zHPC5XAnK+`dM7rv-0Hay1--HXjl0&z;nAm##Kk-2IH3{9wT8 z>KQTIi*$yGUP$x(=F-=(j$K~$pE&tGN=c0LZy;{_6J1V-Uu;yqrJn4dwE>epQxXJu z*nE2^HL7@T;Z?o11T|->8=Tgb`SB)`DY=NcsdvW$@$3NHzFRaoNuLC{u3d2DD8KQe z?cYd6cln^Uki>~Sb+7?~^+LZ;nI{$6d_^sppav&d_6eWlB$XKHZu@@t`Q;cP2 z00`s_U3u^;3tnfwzj`e>1feU6`0#x4!%#=XXFLbT)mq18UJAI$%Lnu)-6Jx4z4s6q zwX{Lfdw1!jCM-T8#;@H7MGSRP*6)UK9(8(5pguPr*&3sptq?b+LYZ#XI+@|Z2&0=Cvo>{@>4wDjPxDucGym$I1bYOS>fM4t#4+!R8KJf zX*OXYv-eg5@#vO;gIVeXTz5~8Sf~Gz$b)}A*`PYvUb;3*qQvX-_m&Pqn(<40JyTr; z8@*JS;04p8ntFLMvdO@V=aXvw)ot~)-SCeH=|kQN@(vned$R?6K668ibW~ov7Y;+; zy$$of71Rw=-)o_@<6V+IQbv%x^)s7ns54@sNVO$T4MmXnl@8XYJ}7^RG~v^#l0}uO zW1mk7B-SHK)qff0@^KFg@(r9c)?Z-^Tr0(qqh{$B^sX*^;T?zouv3(5Qcag@K)h7l zN)g%h332~z=~@<_jF=-rHW^0Yc0#v+{j9$Fl-DPVYl(?sTgo8ULkCH)pxCZ$uD>S{ zu=XvB+zp|ZYxe|M%tYb#_m;^1myy=X!`-W(|m8Hg=SNWVw; zk23|KeR2VWjiIMnJ$YSk(jTx^#njkvoh;xp{w$)}8^D%e*>OYOfpK>FE(db>J4CgB zey&7}>^O>dz?YZ4tAMJ0aY8#+A_Y-R#yxP{BRhWEd@>+IX4vAR?6@-Dz_>PYrGkEe zz({fJ7InRy6#zh^vg2sFgZNX33Ds|zblhFF_ z&@!wo#b~!1PeOdAnd&@oDB|d`Koog$@yG<6mbim8+~$Ut=Wm-jEck4Pl7Xfm(60cj z)Apyd;B+&9HBtcV%zGR11I2;PSA5^Yw(U^=J-9Ybp7q7SkfS>mXN;6yi$2z`nnyTO2IHSGyG~otA|(&>&aGk+PhHxY~m}4Y2JPK2^WdyOGQ#VbZf#N^K&YTu`cYB``nc9o6}TZqPsjW~e_$Z3u_UbGpk3 zym=}!lI_L??&ZUcGH5QqSMx_&iVeFrzyPrCWG^BL~T7iF(6n0 z%m+YL_5@5-diqZwe><`PTBD4AjWxULzt>OgHO9D?5TaVGqsw6`;k~1xs@e%?ho?8B z{g&o>S#Y>t&BW=6+M!L*VDt&FPD$b}^dSGW>`W*tE6d*_GJKK;8lUukjhTZ)B6p7i z3Gw2lKixo-+eCp`B|mWbxmRi~A9f=zHtr@MnR<|Z$4oWE*QuvnD+@Y$dSCwj7C^_N zV?R-Q42sZ4iYEVIn(~CoFV^}wJayhb_bz(hTA&|(Vc&;(1p0w;3&-lL{KNW-h^$+}wmD;ETs>7Y--Qh)A!p61XOgl2_8@Xe3 z{-)n+0sC{}yBP~VYLKS8dKGi9P;g2)x}0YG%lF+=<109fr$I|fnFES=5Y3o^?bHN;)8Y>ZkR9*7g@pwnt1gf={Mp6Rs$IxuHZ`pv|REL^075zgSWyWziO0 z&klE%HA||itN&&O^ZS6@%yb$2Erl+TYz435!CxCem zWuCqj5WDi|7Ej3oQu_99`vW9%``Mj_KG5Q&qobqL0$LPMKwF)M2c0#iDm(0TE1>9) ztn}QRp}TeskWqesY?c3bW3nBr$wwUyhTr^kSs-7P;&-6`D!1v+24|HQkU-d7LLzv@ zC9zc?G7UIS!3rzTEs4dqu02f>yN&;KdjFGuy}*dffwr!$2T)Rhs_`lipaI6rZm^Jx ziwnGVu#qZf#@Yvg+F>AAB4E8OULK_?o`Lv)`2)(vZa4X+v6lO;pe6ji%g*2ey z675HLF$T*4_8FEC5X|w~-U}ZWgYv-adxA=3x$DG$08}g8A@c$&m_4{iJm#N^QgwC2 zY|4c<+Z&KjRt+ll|MKV6xFvE=e6&am5;~%4KEa8pBc{Q~Y-Oie`_5-w#ZqeIl$MqP zBd-mv7L!poE#db20EjWtk*!K<^eswH{6w1?VzeTh)ofyM(A-yFJNH3zf6rt_#Vk@* zqvCftIfA(z2oQ`s*5v*5`OIs4H)j3!?fr8r5v;~FbwuVYai+MSeCG#~uw~}cGT!Bj zpeP$k)`i9H{J3`5^`;H2jS~=%MrBmr)*?7Z7AwA5!qF+s)D9KNo0t${h>^tk1Q>V3 zZLX_>DoDH4{3l__V%9DFgC;2QtUzv$51zJpq&m5}nortmIMaP!~N1tY)n-$ z`_O)`F;=yzre#;3h=^^pUI&W_^ z;F1Bd@VRT;+{?O~2_C1}hsS5=)1* zM|I}Uot56X^rwWnODZ0_e@-zj+`h1Wi`};yP-P2)dn;`Xv%IS z5hg6PP0*RX<{&Y{%XbfP@Fp_quI^99$gFTi#o(oTS$26LjB=ht30SfD0wFurxNbs{ z)x@to7RxskkvaB9!4LovOq(Aap|P!vcp7YTg^gKjTp5$0pO9JPMg6&o4i7GiLg<#a zhUgb1jV&k}n$Ha3SF{Ra&^g@1I!MMA^P%2m*2AK&fPy@J4No__7qAygLyZ zil?O%xd8V$*rUV~0$FhM^M6mjDz?e14uT~vPQr2!g9;22MD zC;9DB{(FtZ?+1gva|PDlLSh+{HPcsAK$8rCMEs8xsZ%HZpY+H7Ps&>V?*|FbMgw)| z_FV5T(6~MW3RQuiqn#S`*0%GZbB$0k&upWkqj^nhF{P#V-kss+|Fcpdm?99h%$q`- zYPGerfM3r!RquwQaYI8uX|@TxCde7bD`AGjlVfFN<-q%|KAe^gArZ{~sq#fLKlItG zft31IQj=F=29O9#OPlV{H$r}wOCWb-o)Dl8V_#1Dn{#s&*g!ib5Rt}d2U*|NKoQ? zdM-~~dByvChgm@z*OW#Z&_vsSuAWG4GXneV8qoF-c2gp|Y3G8rX6*~vJ9Z%tzSTw~2CuHAShgwto)&-pdy>%M^7j?F`^MH~W!837SVbrd~ty>X} zS%0F9T7ZF)*j!&$J1Ejcn^xM7XzLnJr$pHX_4R3BC`Zr!St)u9Y@*f|^rS>ObFE^E zN=uypvL3H?D>tR{0YRPH28RdVAFvI0yn=SHIQ>06%q-DOTmyTl{wGzTVQ87bQ&AQ3 zsV9LfU;I5Lkl_CxGy#SGP_if!1D!Mv@!x;|?(`7;-|P$cZzcs!vV^u_suH;Y$<%3? z8aSE|49p5Q&-C=Da5@MrvjR#iz$Jl+*xK1~s3r*e)i=tUq}-rEsn_F~cmKS9MbviX zGp7K^kF)YBY`FW%PH78H1+XP;?k&svJExuW_{z@uKc#D<`tL%RB9c>C7Vwi@E`7XS ziQ(1TE8}=2m0zHay0N)gB&VdSr}r29uYwp^5Sz4`2A7kJ^9GfS7@6t@x9K*7&~9eF zk0^gi2HZn=-@lAcw{yRE{;J05w->xp0FDIUJpjtO_1D(JC@d4vbbik!b5t;@pWfyv zt*}XI1T!eiuxgw*$8E4b88o?$tsVsu7M=_myI)~5j;N14dxIv1s|0M#a^}RtafD#K zXW|6p&hHM82xbYwpsZ3izT>UW8RyP1hD7o#qZ#cPSn#8~c*AO1XyJ6IT(gp`@kxsx ziT^`f0-DSGz0LG*H68#ZWt&MAi0B=!#4Uy4{wHshjEXi{c_O6um8>{dZ@DtqULO!a ze&qJx&W?ij9vH8ju2A93P)D3RttK5*=4A1K3l&;ien|E2b0F(amWgmh60%hQ*E|yG zQy?F9D|YuD{(GF3;MvT+ zo8I(XvfcDqQhj0t8$~UK$i6GgO}doq=iH>vp>r zHt9v^DwE*Ez_H)*Oa;gJ)TpyY&VQUjoFA6*N93QGf*=YRCHsA(Pp$oQcmFRNX8s$) z`2QyA1%_ajwP3#7T-KD~1%LKKaHBF=JI7yay*!qdKw3rpC%~w}L6V&eocP{FS|(3V zXN3XTi}1j)KZo?|zgz&bD%=j};dyv?_MO{}e_d1TGTD3K%_&*)xAOac39LXR{`~s> zW}Ec!RzJw%WRlo~e}Dj^q@)xe_F4x>K0zVo^x!AYW}a7eC#6&U0lR$r&vK4`=_)cZGN9A`g>mh&P14bk4@yhh#wO3CC_}^rC0m?5enF(?bJt{a zX=jz?!s4os9K#=rP9W&$>gpO9J+S)LEY1H3M$p-Nj7SB#q_V8=_xo%#T;fRl=Xj9+_S;0){75m z^nIi7pG{&QAAM0jPFO)O6LXXYY~nUsYg#I#_;}6Gq#n= zwdmkjQSv`xn%{?*p^w@71y>TaBC@cNxSl=HcY`NSHr`&pyyumrA9sZTqFy}7?#Gj! z#iRXA6di5N%N*jK2u}scKPUeL)aKd#@nJlmu`KSlw)hkbke;@koJJ{d-u}UY|9_hU z=*7&jUDQ;Rv3q6o&+&^uFBjfFZU|0AC9OeQeE+-^$cVsq*MOGVCbds{E$vZ{(&?36 zGEPbTvFbtmS#k;rGD-$5O-Hiu`=7JIxx(RUdiQ744b0ue3D|{;z%c^r=qh_@}Vd2Xl8%6I>Nk zzCC%}?zrdY=jZp<{y7V5lkLjQY%lGRy5@9yjaUM6xV>lXhi)$W)EBv*rULu#(F?ui{4!atUstXClEX>xeS}M45ua^E5ho^PS8NpCbecUE? z3D{fGoal2ja*F7z%Pm}Yt3rd0dRjTHm?^bl=F`~f{fobOnJw#kwW#k^-cznvY2`w8 zA#a}R*Yh8IGr0G}{@U#+h1DFn?9l9b-ZR=m{MT-l&!Q*21deY^HM_q;XyTU{C$}0n zomg63fl(*cTPzp~+ zFWxt7nQ#d>l?&R-G-c}Sm zPu%BOVsB+$Jt`C31l;fkYWAzoo2*tf+o0Car=;dLXQEze@7((;eGj-)J#Vcun>By_ z`o351*uHOHRJ8TV>QC1qYOmUT1TJrR)8MvZ-MVY5udZ7B`t|!B;GW0@7gElNMv24P zveW-rW{OOlX=&LE+FA{?=)tA++g#oK&Hp7rrqujBoh|_N6)s;Scu hB%!`L@bmM3dnX;{jeiVhr-F8}db;|#taD0e0s!)F24w&M From 75c9e82122ec76cce3c3b460c5f4c053e619cdd4 Mon Sep 17 00:00:00 2001 From: martyav Date: Mon, 29 Jul 2019 10:41:49 -0400 Subject: [PATCH 125/138] removed extra pipes --- .../microsoft-defender-atp/advanced-hunting-miscevents-table.md | 2 +- .../advanced-hunting-registryevents-table.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md index 856696baf8..01c38628be 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-miscevents-table.md @@ -45,7 +45,7 @@ For information on other tables in the Advanced hunting schema, see [the Advance | AccountName |string | User name of the account | | AccountSid | string | Security Identifier (SID) of the account | | RemoteUrl | string | URL or fully qualified domain name (FQDN) that was being connected to | -| RemoteComputerName | string | Name of the machine that performed a remote operation on the affected machine | Depending on the event being reported, this name could be a fully-qualified domain name (FQDN), a NetBIOS name, or a host name without domain information | +| RemoteComputerName | string | Name of the machine that performed a remote operation on the affected machine. Depending on the event being reported, this name could be a fully-qualified domain name (FQDN), a NetBIOS name, or a host name without domain information | | ProcessId | int | Process ID (PID) of the newly created process | | ProcessCommandLine | string | Command line used to create the new process | | ProcessCreationTime | datetime | Date and time the process was created | diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md index 02cf24c213..75b7b12ee6 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-registryevents-table.md @@ -55,7 +55,7 @@ For information on other tables in the Advanced hunting schema, see [the Advance | InitiatingProcessParentId | int | Process ID (PID) of the parent process that spawned the process responsible for the event | | InitiatingProcessParentFileName | string | Name of the parent process that spawned the process responsible for the event | | InitiatingProcessParentCreationTime | datetime | Date and time when the parent of the process responsible for the event was started | -| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an | internet download. These integrity levels influence permissions to resources | +| InitiatingProcessIntegrityLevel | string | Integrity level of the process that initiated the event. Windows assigns integrity levels to processes based on certain characteristics, such as if they were launched from an internet download. These integrity levels influence permissions to resources | | InitiatingProcessTokenElevation | string | Token type indicating the presence or absence of User Access Control (UAC) privilege elevation applied to the process that initiated the event | | ReportId | long | Event identifier based on a repeating counter. To identify unique events, this column must be used in conjunction with the ComputerName and EventTime columns | | AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity | From 7af2b879a3e88a3f5e66c62069b1f49f38ba382f Mon Sep 17 00:00:00 2001 From: martyav Date: Mon, 29 Jul 2019 16:27:51 -0400 Subject: [PATCH 126/138] updated ah reference as per lomayor's advice --- .../microsoft-defender-atp/advanced-hunting-reference.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md index 59079e0550..40810a2f12 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md +++ b/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-reference.md @@ -28,11 +28,11 @@ ms.date: 07/24/2019 ## Advanced hunting table reference -The Advanced hunting schema is made up of multiple tables that provide either event information, or information about certain entities. To effectively build queries that span multiple tables, you need to understand the tables and the columns in the Advanced hunting schema. +The Advanced hunting schema is made up of multiple tables that provide either event information or information about certain entities. To effectively build queries that span multiple tables, you need to understand the tables and the columns in the Advanced hunting schema. The following reference lists all the tables in the Advanced hunting schema. Each table name links to a page describing the column names for that table. -Table and column names are also listed within the Security center, in the schema representation on the Advanced hunting screen. +Table and column names are also listed within the Microsoft Defender Security Center, in the schema representation on the Advanced hunting screen. | Table name | Description | |------------|-------------| From e405889f5afc7ed8df1dcb7c41a2c2dcebed9691 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Mon, 29 Jul 2019 14:41:03 -0700 Subject: [PATCH 127/138] add note about RDP --- .../microsoft-defender-atp/evaluation-lab.md | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md b/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md index cbeed1d1ea..c5b282a4f3 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md +++ b/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md @@ -63,6 +63,9 @@ The machine will automatically be onboarded to your tenant with the recommended Automated investigation settings will be dependent on tenant settings. It will be configured to be semi-automated by default. For more information, see [Overview of Automated investigations](automated-investigations.md). +>[!NOTE] +>The connection to the test machines is done using RDP. Make sure that your firewall settings allow RDP connections. + 1. In the navigation pane, select **Evaluation and tutorials > Evaluation lab**. @@ -72,7 +75,7 @@ Automated investigation settings will be dependent on tenant settings. It will b 3. Select **Add machine**. - >[!NOTE] + >[!WARNING] > The evaluation environment can only be provisioned up to three test machines. Each machine will only be available for three days from the day of activation. ![Image of add machine](images/evaluation-add-machine.png) @@ -89,6 +92,7 @@ Automated investigation settings will be dependent on tenant settings. It will b The environment will reflect your test machine status through the evaluation - including risk score, exposure score, and alerts created through the simulation. + ![Image of test machines](images/eval-lab-dashboard.png) ## Simulate attack scenarios @@ -98,6 +102,9 @@ If you are looking for a pre-made simulation, you can use our ["Do It Yourself" You can also use [Advanced hunting](advanced-hunting.md) to query data and [Threat analytics](threat-analytics.md) to view reports about emerging threats. +>[!NOTE] +>The connection to the test machines is done using RDP. Make sure that your firewall settings allow RDP connections. + 1. Connect to your machine and run an attack simulation by selecting **Connect**. ![Image of the connect button for test machines](images/test-machine-table.png) From ee8042a7fbf27c2750d1bccee5fd56af8cc50999 Mon Sep 17 00:00:00 2001 From: lomayor Date: Mon, 29 Jul 2019 14:53:48 -0700 Subject: [PATCH 128/138] config_mgmt_ga --- .../configure-machines-asr.md | 2 -- .../configure-machines-onboarding.md | 14 ++++----- .../configure-machines-security-baseline.md | 29 +++++------------- .../configure-machines.md | 20 ++++++++---- .../secconmgmt_baseline_permissions.png | Bin 31201 -> 0 bytes .../images/secconmgmt_intune_permissions.png | Bin 0 -> 50257 bytes 6 files changed, 27 insertions(+), 38 deletions(-) delete mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_permissions.png create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_intune_permissions.png diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md index d6b0b6bed5..785daef982 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-asr.md @@ -22,8 +22,6 @@ ms.topic: article **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -[!include[Prerelease information](prerelease.md)] - >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-onboardconfigure-abovefoldlink) [Attack surface reduction (ASR) rules](../windows-defender-exploit-guard/attack-surface-reduction-exploit-guard.md) identify and prevent actions that are typically taken by malware during exploitation. These rules control when and how potentially malicious code can run. For example, you can prevent JavaScript or VBScript from launching a downloaded executable, block Win32 API calls from Office macros, or block processes that run from USB drives. diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md index 1cb70bd086..4640790859 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-onboarding.md @@ -22,14 +22,13 @@ ms.topic: article **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -[!include[Prerelease information](prerelease.md)] - >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-onboardconfigure-abovefoldlink) Each onboarded machine adds an additional endpoint detection and response (EDR) sensor and increases visibility over breach activity in your network. Onboarding also ensures that a machine can be checked for vulnerable components as well security configuration issues and can receive critical remediation actions during attacks. ->[!NOTE] ->Before you can track and manage onboarding of machines, [enroll your machines to Intune management](configure-machines.md#enroll-machines-to-intune-management). +Before you can track and manage onboarding of machines: +- [Enroll your machines to Intune management](configure-machines.md#enroll-machines-to-intune-management) +- [Ensure you have the necessary permissions](configure-machines.md#obtain-required-permissions) ## Discover and track unprotected machines @@ -39,8 +38,7 @@ The **Onboarding** card provides a high-level overview of your onboarding rate b *Card showing onboarded machines compared to the total number of Intune-managed Windows 10 machine* >[!NOTE] ->- If you used Security Center Configuration Manager, the onboarding script, or other onboarding methods that don’t use Intune profiles, you might encounter data discrepancies. To resolve these discrepancies, create a corresponding Intune configuration profile for Microsoft Defender ATP onboarding and assign that profile to your machines. ->- You might experience discrepancies in aggregated data displayed on the machine configuration management page and those displayed on overview screens in Intune. +>If you used Security Center Configuration Manager, the onboarding script, or other onboarding methods that don’t use Intune profiles, you might encounter data discrepancies. To resolve these discrepancies, create a corresponding Intune configuration profile for Microsoft Defender ATP onboarding and assign that profile to your machines. ## Onboard more machines with Intune profiles @@ -66,10 +64,10 @@ From the overview, create a configuration profile specifically for the deploymen 3. After creating the profile, assign it to all your machines. You can review profiles and their deployment status anytime by accessing **Device configuration > Profiles** on Intune. ![Profile assignment screen on Intune](images/secconmgmt_onboarding_3assignprofile.png)
    - *Assigning the new agent profile to all machines* + *Assigning the new profile to all machines* >[!TIP] ->To learn more about Intune profiles, read [Assign user and device profiles in Microsoft Intune](https://docs.microsoft.com/intune/device-profile-assign). +>To learn more about Intune profiles, read about [assigning user and device profiles](https://docs.microsoft.com/intune/device-profile-assign). >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-onboardconfigure-belowfoldlink) diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md index f16e51edde..5c04c5d86d 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline.md @@ -22,16 +22,15 @@ ms.topic: article **Applies to:** - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) -[!include[Prerelease information](prerelease.md)] - >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-onboardconfigure-abovefoldlink) Security baselines ensure that security features are configured according to guidance from both security experts and expert Windows system administrators. When deployed, the Microsoft Defender ATP security baseline sets Microsoft Defender ATP security controls to provide optimal protection. To understand security baselines and how they are assigned on Intune using configuration profiles, [read this FAQ](https://docs.microsoft.com/intune/security-baselines#q--a). ->[!NOTE] ->Before you can track and manage compliance to the Microsoft Defender ATP security baseline, [enroll your machines to Intune management](configure-machines.md#enroll-machines-to-intune-management). +Before you can deploy and track compliance to security baselines: +- [Enroll your machines to Intune management](configure-machines.md#enroll-machines-to-intune-management) +- [Ensure you have the necessary permissions](configure-machines.md#obtain-required-permissions) ## Compare the Microsoft Defender ATP and the Windows Intune security baselines The Windows Intune security baseline provides a comprehensive set of recommended settings needed to securely configure machines running Windows, including browser settings, PowerShell settings, as well as settings for some security features like Windows Defender Antivirus. In contrast, the Microsoft Defender ATP baseline provides settings that optimize all the security controls in the Microsoft Defender ATP stack, including settings for endpoint detection and response (EDR) as well as settings also found in the Windows Intune security baseline. For more information about each baseline, see: @@ -42,19 +41,7 @@ The Windows Intune security baseline provides a comprehensive set of recommended Both baselines are maintained so that they complement one another and have identical values for shared settings. Deploying both baselines to the same machine will not result in conflicts. Ideally, machines onboarded to Microsoft Defender ATP are deployed both baselines: the Windows Intune security baseline to initially secure Windows and then the Microsoft Defender ATP security baseline layered on top to optimally configure the Microsoft Defender ATP security controls. >[!NOTE] ->- The Microsoft Defender ATP security baseline has been optimized for physical devices and is currently not recommended for use on virtual machines (VMs) or VDI endpoints. Certain baseline settings can impact remote interactive sessions on virtualized environments. ->- The Microsoft Defender ATP security baseline currently doesn’t cover settings for all Microsoft Defender ATP security controls, including settings for exploit protection and Application Guard. - -## Get permissions to manage security baselines in Intune - -By default, only users who have been assigned the Global Administrator or the Intune Service Administrator role on Azure AD can manage security baseline profiles. If you haven’t been assigned either role, work with a Global Administrator or an Intune Service Administrator to [create and assign a custom role in Intune](https://docs.microsoft.com/intune/create-custom-role#to-create-a-custom-role) with: - -* Read permissions to the organization -* Full permissions to security baselines - -![Security baseline permissions on Intune](images/secconmgmt_baseline_permissions.png) - -*Security baseline permissions on Intune* +>The Microsoft Defender ATP security baseline has been optimized for physical devices and is currently not recommended for use on virtual machines (VMs) or VDI endpoints. Certain baseline settings can impact remote interactive sessions on virtualized environments. ## Monitor compliance to the Microsoft Defender ATP security baseline @@ -72,10 +59,8 @@ Each machine is given one of the following status types: To review specific machines, select **Configure security baseline** on the card. This takes you to Intune device management. From there, select **Device status** for the names and statuses of the machines. ->[!NOTE] ->During preview, you might encounter a few known limitations: ->- You might experience discrepancies in aggregated data displayed on the machine configuration management page and those displayed on overview screens in Intune. ->- The Microsoft Defender ATP security baseline currently doesn’t cover settings for all Microsoft Defender ATP security controls, including settings for exploit protection and Application Guard. +>[!NOTE] +>You might experience discrepancies in aggregated data displayed on the machine configuration management page and those displayed on overview screens in Intune. ## Review and assign the Microsoft Defender ATP security baseline @@ -84,7 +69,7 @@ Machine configuration management monitors baseline compliance only of Windows 10 1. Select **Configure security baseline** on the **Security baseline** card to go to Intune device management. A similar overview of baseline compliance is displayed. >[!TIP] - > Alternatively, you can navigate to the Microsoft Defender ATP security baseline in the Microsoft Azure portal from **All services > Intune > Device security > Security baselines (preview) > PREVIEW: Windows Defender ATP baseline**. + > Alternatively, you can navigate to the Microsoft Defender ATP security baseline in the Microsoft Azure portal from **All services > Intune > Device security > Security baselines > Microsoft Defender ATP baseline**. 2. Create a new profile. diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md b/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md index 2e421b8321..11f16e8b9f 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/configure-machines.md @@ -45,7 +45,7 @@ In doing so, you benefit from: Machine configuration management works closely with Intune device management to establish the inventory of the machines in your organization and the baseline security configuration. You will be able to track and manage configuration issues on Intune-managed Windows 10 machines. -Before you can ensure your machines are configured properly, enroll them to Intune management. Intune enrollment is robust and has several enrollment options for Windows 10 machines. For more information about Intune enrollment options, read [Set up enrollment for Windows devices](https://docs.microsoft.com/intune/windows-enroll). +Before you can ensure your machines are configured properly, enroll them to Intune management. Intune enrollment is robust and has several enrollment options for Windows 10 machines. For more information about Intune enrollment options, read about [setting up enrollment for Windows devices](https://docs.microsoft.com/intune/windows-enroll). >[!NOTE] >To enroll Windows devices to Intune, administrators must have already been assigned licenses. [Read about assigning licenses for device enrollment](https://docs.microsoft.com/intune/licenses-assign). @@ -53,13 +53,21 @@ Before you can ensure your machines are configured properly, enroll them to Intu >[!TIP] >To optimize machine management through Intune, [connect Intune to Microsoft Defender ATP](https://docs.microsoft.com/intune/advanced-threat-protection#enable-windows-defender-atp-in-intune). -## Obtain required ppermissions -- **Onboarding machines** — To onboard devices to Microsoft Defender ATP using Intune, you need to be able to deploy a device configuration profile and track compliance to that profile. By default, only... **DRAFT** +## Obtain required permissions +By default, only users who have been assigned the Global Administrator or the Intune Service Administrator role on Azure AD can manage and assign the device configuration profiles needed for onboarding machines and deploying the security baseline. -- **Managing security baselines** — By default, only users who have been assigned the Global Administrator or the Intune Service Administrator role on Azure AD can manage security baseline profiles. If you haven’t been assigned either role, work with a Global Administrator or an Intune Service Administrator to [create and assign a custom role in Intune](https://docs.microsoft.com/intune/create-custom-role#to-create-a-custom-role) with: +If you have been assigned other roles, ensure you have the necessary permissions: - - Read permissions to the organization - - Full permissions to security baselines +- Full permissions to device configurations +- Full permissions to security baselines +- Read permissions to device compliance policies +- Read permissions to the organization + +![Required permissions on intune](images/secconmgmt_intune_permissions.png)
    +*Device configuration permissions on Intune* + +>[!TIP] +>To learn more about assigning permissions on Intune, [read about creating custom roles](https://docs.microsoft.com/intune/create-custom-role#to-create-a-custom-role). ## In this section Topic | Description diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_permissions.png b/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_baseline_permissions.png deleted file mode 100644 index c97ef90085eed647d51d21c555a452b1eaf353a6..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 31201 zcmd?QWmp_tw=IfW2pWRB1xT>Qogl$U@Zc8Qg1bY2;O_2jL4yT%3r--oyEf9?g4e$H z+h?Eq+~4;HPt#pht5&TwWsEUr1;3Yj_Z)=)1qur4xuk@s0u&USHxv}KG7=2%3m!Bq z2k-%Hr||AARQU+e4)6ueSXfpV3aTpN*_|Fd@EzGk;-eiD6k6BgA9Nf88X**vi=(8d zu#&U(L5oMFma5BUQSo6im;t1G7sZ&LPY+7Vr3*yhCVyc%flA)80uRZE{e}PQc|=X9X&r37Vzq+43Vj?MWR2EYs7!*uZ|2@ z9|iC5Niz+)Wq8;hHg2Uhk6fIUC>JbUlsmPUA9!5$x*jfFE#dQqvGm{>gtGLY2H-aX zAAkSWWUaPW;0!8YB;4Rl_er*I8lLveIrxuFu<0EmeC>v3f*z8rOtOdGM3W zd}ppSe`apiH+&7cXO$-Z<>>OW4Sgb6_T%4Ga)yUa?9pNi?Kg+syS91H&VhFd8*t9Y1yXH# zfoU<;%dPi{88<%-BKYHXhb_DeAC5fi&G{D|u1~PrTp;nmhar+!ZVEb59`;6GGe(sv zI%=0a`sI1x&I1mejwIXYU}h=mIH$fKxdnT4lSp5*{!me^V`yDurjZ&YwrhGg^p}f7 zTjTKPwl`gnHjZax$G+K3kqb#DSJpg#l?JMLW64{hh_-cKGIEZ~1oV>TtG-aw=sOC8<4aRRJX}ScLYp!zpt(y<(TE|(S!WZj%ZoA(6-pYrt>V`Pe#m;bVsf;&>-SN5m>YEza6RVF zaCx6js494KGN7yyJaE8~Bi9b*c)se%bSuIzjWa3tK+dl~-aABcshUp-!w48C7I!xWYSls<)uy z%wXIsecP+mIQ@m!)q(u^yI$|~2MTY#i{a4Eyr3)){Aqs|hnX>}re`6>q>CF)retw& zwvRptr*vo+p2h0Z@~OjM1-NhderelC72_;v)SX6|wH0zvv6rN_L@ih{oO6tyhaM93j^qQ*I(VV&UZcAg?zjyYAOX}g zv-R=H1g)`ymIFgvj>m`1mR1#| z9X$@(_{Ar67H#hoNl*|x@u8w0ajhtms?-k4do`=wse_fQbQ+f}rUT;k)a1lEY(r! z*~fx16pZDX+$3?pa}H7r8ZrI7`u1pIbMCv9`}ve2T~@gEhJ>ASj$e9d4AwrV7ti~+ zK#+xThxruxNn=V!RTlDy;ZbFkiO;CUqvYXxhujhmB-?m(?L8=2D7rFd!9!JR7^|S= z2MYOUk#|^Tgg$uDTXUiUjFE3RxH$w#6XY3%_1@VCRV2zAj=kE2hZ7CFF%qv>%Oc)^ z$UtN5VuT2@Gw9>-3o6MqwZLs(7s;?=6{CP1#hmuH3#-`J>KJz}Dt2;H?N#s23k1b1 zUTZb6O=*moTUhM((?-ZUclg4aZGcj}uAIES2xCX}^42!J@1CtS#U`M^5_h^ga$CN| zLnDmv{lq}_9s!;i#gE=w*z||)>rI(r_w?+8p*@5QBzjpA4K0a2R0AY#)372S5hc+Z z5hW2JqLF})6G$76dx@R6%K1&tXUN7CiX0)CZunO3KJI_&$-`Uize)#@=NS;*i zZfVpiqKXGS&A1SiAcmXHY4LNfvA|i<{q0qO>+^h3BLM>jTXfi!;QV7aVw!%(DhH*U z=Iu&s3PCvq z_&Q?KyaWzJ{n*TE()q*V<1M?OX+9D7)T6}P-xZMYHU)h&VZ#y`Ru1k^vJAaET#Slh z9u*Em^t?`s6s{d7M3yN&FN@4fDLjNIR)3m!`Zv2I!s=K(>)%=~?jzmkd42M4>Zc76 zb0-ocf|J&U>chi%Xbkp#Kw)iyj)bm^QJCRON#`$W+zG#3;W0RISQ^Ya$lbRW;?IV?{@H3Mg-Z%I*X4=JB2Etqn?*FT!N632kZHnX;3t^K8Fhq6zG!DnKL-Lbn7pCe@V-fYR z2hwk+anE@F$5v2jw(v~D8YiadXZyxW$> z5hP)c`eJc?BFgtZZ-40)wdGo7$%1S{=|deKEQ?E>)VJUxuZP>koyHG&uDtqE;30OO zL_&o0I^N<=DoPMBi+=Nu3g$k<=q$!+yVKU>xH}e?P>|qlB@8|6M$S*()!=)1aM?4` zQVY{GD@W^n?EH={3ffLnG&p8S8gJs5j!i|kX3KZ#J8|+{(MYQ)m#`+PqDK3CIAXj~ z5T~Jq_$z)o@FBGy2kDOt#GpiEM~jAJp_I_9a5zw&dmVxP+nR&ZpM6(+IbBxcK@`O- z@*j#|roJ1r3t6K7oK;Z1$a|-_aK!eol(J7|B)3;|R%a^RNvEHg$S1z$h-`Jt4#e}GB?(cxXf!-yRIBv9RRlmsY~K(q2lvBaIPDqz+JLU8c!6Yk zW+#<_Y9Ya|l&7HS__}aNg%?HtHL8ab*O_jiMR@8sraV`3*5I$fpm{+V%H>_WaPL`D z7JLhVZyNKCp(@;aW3fkH>UjC?So-VML40)U?!Dg++HN4XId{`vNG8Ur7S8UOPVrga zZ+;Zmqk~blu~fUo*)NL1O+wF!gWh=$w2r(RMb%I1JC&g-%()nEb8D|$t(u>lo3GQfkUCjw7rvpyq8gX zB=;wmoyGdVW7d^{$0ui(uM0d9JUt@r@bsSP3pj7c?}TSaaPP=*q&oNI)QYA%o`mz? zdWOqZy7uezdxyPq6yWjb&-~b5E|U*aU;Y>d5Yb6wE{ytmf|3crUKjW1qDH7;c#~@& zj`a-B;}_x{(INiZIR1z^t=Q``LG$Q<-_31;4eAY2!Hw@;MAELr$j1Eoc|wePGG&CH>{=GP9M1w{8}Fq&5g!FjFlMuK9gT=0(OdV^3uO-Mpio)Z==Y~p z*P*b=qUN8Zawo2W!W11_!Lp7*6|-Scni?-av_c#i7sGsX{Hb)@&h&Em1=hk-`Ie}> zP9aV27J?83%TDc=>O-<5Il9nfE(m@dg`Aw6lxfrtw4ROd$_w6~_mX$JpdcNrV52ofm(|d{Dsd@k*Xy& zOg`*YpHN9p%f>C@X?}nEn2ZSF4?{fu`~i&RWqS#63o>y5@Bo#8$g5q2xi2WN7TgB3 zeMOkiITI*gi?fg2RtXv5W(rs+BN9tLS$uISyd~et<>`+c-7c2T*2`p8d$Dn*Cbv5< zT>?Se*w~{76(l&u2K}DRb1@Qduon~B4;vU?fVPzWM5E-8-(`hPS!hAo8FpE|W!}Aju0H z(D0IJ$UqgE9epDv$Pv(xO4nmmqM_W?VY3@Vk9*w0(8QY4^(1yHYLMKwx?lAuWVBN^ zt;tkK=v|@OO)^C| zhMV0I4Uu~a5)l&rNGfdX7{m^7rU26ySxIXjqM5Hlv-)!^W}`4(VEAqF_CAHjlkbnb zmy^v|0Z=1@z)|`_ria1(F!LR{ir7 z7LgA5_E5U7xH|490l3=E5FoXCT+ZdZix4;)0;Luf4dW@|3FrY(S>^>WE=u-AN>cBP z-6;RnVwFK}I1#t)^|4;XRwx~IMkR13*LIkpMBg#jLtq$V{(_8rQXc!hJ#K@6F4|In zcal^>f%3`p`3q)}&`1UD&L`#F_>E(K^CyHy8V^XEqf#QRQ3cNPcY>ER`HCC+i`!kR}k_U;U3^Q3+u^9UJqAZ z^2^+Io0WFagNdGs^T^N81@Dd*8|}E2xgm}3Yz8&zt+dPtQDXS)7-Y(z&OUYFfi}(+ zy+1SD+-(VtIy`SsuxpWf{#-`e`!glq{rRK@EQyY2D?p;Xrb@KgCFy>Yorm)tavgm? z0|cS;bpmEA-Jw))4Y#$&o^O!t#94g$187hIvpJy}S_r+-ToTp64&3-eV*`@ll-SE!7 z0fgpzlQg)oI>1oz$PtG5CDIR*)S)*AgIJ6Pb_$@}_N#iAKKpXEfroh=_a&Y`PgT-! zKyyCsK*SHY9itTlO9sZDZI9=as8)nG8=!AX4L7vB!Eh6Tv6wFX=xWnTOuW(HCpkJ0`bbdh}O#&f~&a^=sTte}=1pxkO zHD8PDr??5k^3+s*#S!Ge9k8+2rEzLH=P!F~gZ@U3+sjAJS6zS-{OVAEk`{2gr&+Ig zdRttZJu5F;TU#s2^65unwsL;<@^$7#2t&Cuu(r|lq%w_Ae(y*<&Yb}E)BIiIdYYA9 zNyQqkAk|jtQvfG54C-{b*4Kg*#F?HKeHoCQ4BO}HhR|{)p9bUe0wv$~ArE@^G{b^S zZ$+(8s-QqUiRn8jP-|%CJAiI814I_i`u0N2gvJk+iw!5h3`r>t*ehI~Qyc*JVHJz$ zW;Yj_o7d^keNbcRG~DSsWx9uQ;a=eYbz<{oGQ0T**BWY|-&NbgeILm$99uRXf+OB# zaJc6rDzjDF{pGcu;i5E$<^1`fQyXE5yoIaB8sYNq9?1lB_usJ1jt2_v0ZmYo(^(yf z(R_Fbnzq49Z&$ESz<@qdSmbH0r}^`!s32V(okLOjdm9{HTsM(S98^hZ9+wKHLE9-q zn*#T|Ln&5I>DCjhu{QK+g~GCSV7Eg|^RKo_CQNd}|^pNKrHxjDMpk zZ{h)%@I@B7$19j{68}SHjnch(obJX`a?1N-s@!hV{;sS(z#p3<<^h6+OYAr z3;B%N3E25yT5NEUB%;gWcR+5C84(R`x+^D-7%?gSoE;T{Evg#GWoIA-O{`k3Dd{Oj zPum=Db~07rdC_vU#2}9WPC^A0P!?<@wB2oN4@$aTOsTdVSXxtthBX0jZWU%?rPi{^ z#`H&3OWa^kojH&N7CA4}pYKH?lDfYy8(WDF`3&Aj=)Ks|SiXtB143g`D{>_O+HE#? z05?SY*6w^@uG8$WH~n+5X?>@<@4#n|7YDB>$Ca_)&nKjrTCeqo z&zkniCuQYgR%{=1AcJ1up9KOJh+fBtO3RST`WnXdx>}o+x8fZ!%SpDig<-s;oT&V7 z*Xb+D)*Q>5Vcd*PR=Wox_(TfE)#n(8449*?6mfHcTWDExpqD zm0?0R;7L@RXL*+F&1}AZHnipX+&Y$PaFP15YcDfx`$S&7n1|)#jBV5BAlppa23vn7 zomL{Rg-PtTo*#bCf29(%LH61p=~v&sD0*ur_kVXeQ|qiMsc5-WFP4dJO`U&?rX#|j zx2SR+!B}!?Xl`##mT#u(A!~vV1F^tgE?a4f(e`+IWCcy0_pZr6Y6=y|q9i%gthLRz zNr_nuX-4RS<$<@)_Bi$r7Zso>lkrxc>0JBT5*WxB-_W$zdW&!u(j#NGDP-5r zHp-Q0HY#MpNA<9O#oH-~K~O5x6x!SNl}3Hq^QO&mt!9<7#R;VLLZ_c4ao~(sV*w=R zZdS>tNe;^%H#-Fn>+%pddHX1yM`u-gfTm|Ay|I;@Azg{wUmq#RsOnA+ZtKVNJ(kwF z!Ac)+tP%rEyrk`-%$hDy{s+?G=8-}&dFI6;;nH#7TR6NglYmwS8!rE5-k$3oa`XU6 z=XZON`d}f}yZZ>8ybkR$*7}s%MI*e@TzT4l;zs3n##t7)b^Vl=?>67mN+(eINM@#7 zko0}yjkR!A5xZB-*OoG7(A&%gu1ocsJ-Se6JGfE{{eE<5_QxLsvO zF*f}6lkpz{&{dSU*y|? zb$s!Wxz6o;7$N6CPP3VeDIhXdiH-7|p?-y?snP2U%%4<&UJaYa-Rv^()&Jd9z%I;VK2d2E1%^2)o2>*WFAC_qS~iZpuEw_&lk}GLTzP zQ|1?d{1#nPPc>VhD*nmtg{UE_hPP&<{hzEE4dWSugmwFX0!{(4vribV}Lxwvp z*@A+eiGiX)MankD4Uir!lgT~F4iEsP)uk)OKiLqJMq;Zlk9j>DJ!n~jAp;e618Gi6 z!Ds1ihr;?RMeR|ebnPF5oeSHbXY-&+_`VN3t~6{ne(@xjk`#<|#Z-;g2B*sjTLgx=!HNF1SH5yrKHCXX8a_`aLBiqeyt^CH|6AqgK1A#cF^yu_0 zm+e~@GdfJeibraVdqM72aV6Y^(nH@_?cpt(53vDaR?B#=n(B<5bCBL|9Ur$&kUR{A z430~GG(yn}ZYK!8wb$NIRA!NZ4&3JkAko%P(wVB)g=z%fX;8BL_q5MF_{;Z)PLo-a zz78a`LF#L?t@_!$ZR!qht6Cm4LLh9b@Rd?BHT;IThe~0zlpl334NfO`f3m;a_7E-2 zsCO?a*ZTG3olQ?D`qMnz=mihMnAP1%C_XK}=u_29@=OFZt)~l8ymIb`Rr4KX9b@J`!pqhax zqMv!D(CWeqBu)Y?D&dY(I+X9t7f8?QJsRJN*vTv8(!t%swN$&7lpgDH?Qw?>4PX*( zJDcB(2dZ-~aqUK%uL5hgb_c_eWO?VjxBPvxpM}1_SYTRI{&}I>@125-P4|v|Nn9rW z2TV z0}w^&5RGU(m98M;nn5--x_;62S(%K`yrdHkn$buAXX{BA&n7pfz4~Y8(G0;1>@O09m>zm5Nw3=x51Wr#gDNzKg%ghQ;Z5Lw_1Hoqpw~nAII+k0y?1+S9^&lpFJ|mi z-y8CC%g$)Km1#rg4bIN031}#?y2~muwkLM>gb{x1vMI#wF~#al30Hn2@B$TJ5>v&n z8V@&22u%QhLpro^o$gH@D~fWftZ2R2y^ZX7+FL3X!KzM5F-Qu&`a~!13>U7xA@Q4^@L&w==psiaoq-GfI~ge&pJsV$CwY( zRe&sI0Bs~A?96XGgtUUqF~$_sy2)MvK22z|xBvvGG=O5}ll?iqInX|V2q;W+NPskh zPwxH$D7x)HKPpB)01ZYQ>HntH{QqJIAN)o7P?msWrZ=8(7>V&Jowz)UoCr$aBuN}*JFwVgddf*l>po&hZ(IRE15aIUr~OD=(d3* z0FMIcA1$>2aeWrZSU?m9q`DVDfEoz@p%tpRQLI>o=ovFeohon2`%xnNQ-aICuZUIi zP8z46D?@nF1`QyP=5~SZ-4J8pz>u)NR>Qpa3~AE z?xUGJ%5yIyP1%7jf7=3ZI0U!_fpO|*gp4O4^ACaW(K26A)zfFT`v1qI9?d6&s*yGN zlE>%i=V1MR26jjzD=H6lYT46zsY|;tGqP~Vs!Z*H*pnFjWafWd`<>vJAxMjLf|U#x zl%qCbgl8c2<57@&y5G}dl}d}NBdqHiy^x+qHIR{f(iH!BK!<*bL2u2WP<_c1y->Pf zfOQvCJoIEyFU#N<$jJZmgwxcNZ(wa%Kq1tYfh_q{H)QSU3yphuTNz%qhrah2-}k$> z(s{K#xZg#Pv{b{3+XDS3Wp5O^@g^T<^T)zfGUA)!M}AHE@Y)m<%0fMk2z@zwly-9b zaN{L#+ScZCdi-$e#djHgl^cki*<9Xy*aQ^iHbVx10eD0(bU~p>hq(qVq`>-PV;Z}>^*SsLhj(74E0ziOSABcon0N62*6Pykg>5LiM0hr=y^|e9y z_s3RuFmS|1-!A5vhL-nXnH-ZH0cheHIgv#yDpm!y^M&r>X#+Z|esRQ$`)KHQ;jPY) zDYuue7ZP@vT56AepDCRb+(7kp%ZzR?l%NxFo!@oq{34vva?9X9I_;&M!i<=A`ZY_BXZ@a$jrI81h1)7q`io7brHcjRF48fCFyPL<$F z5?FG=0i$@D%VJz0WjkJw2FW%Wmpg~Wtj(0NYS_2-*@n*sX4~PO{ZRhXz2(bp^R$j- z3$~)^A24-ezc`XMZ;XgkA1%33?F%Q=;sb`W?FZ#{atxC9JdegjyO-(tI+{DEj{$?q z+cohStgI-zGQ_U@D_-gAEe3+;Tu&(5Uv`2j>%GIF+BmoKC3*|sLHlzx4qrAPiEVgq z*;jK+foKmVPNKh3yt@%D@MQ>%h>&(2wkCJm7>Fxse0D<(OV!>pL%gb(ZSD`J#&^+l zUE)S6c&y3yoY4LctMhDSSQce$Z)n{U6SYFf^lo7BPF=*w{$?fZorm_OaMv`Eg);1~ zr4Yf^UA%p-^BJ~V5iCrlt7;Xn$hZ>}#kqpoA#QHP&;a9+*Pz=QPP|ZWEgx4^<$gYL zE{!1JeZL-M5L9mMdDWmf1dj*d9G;__!i?yniNKO;C2JYes$X>3J}i6p$~n?-RKUr7 z^NSb6_Z+W`Ahyr5C9}}KCovnZ4hr@cvPzjc^+y~hq&eHwsPXA?DmJ6}$6)XQFw1ru zI6O{X`veks_FqKg=-9Pbicx0Z=WL^qUu#nt${Q$l%BomkUcOd~q&F~N%gc-zXTk>- z|Cht`rwG7II|UA~o3E)}t52Cn1O6Hf?-5Wvu~u<6(|#;idyB_Ga_5rJ|HnQi!ayTv zo{yIC?@!2PuUb@tE!;|&jdCB;(_<{t<$?*lCB71vTa;|f*j*|}Fe#KKtRAA^TUC7AjZcX(AZY%kcA8vB3 z!g-eZyzd$QOZm8 z7`j>2wx=5DFt+l1gR74HVbxgescZZ_ck%O7?G5a-E$kdU@m33UZwa3><#FfthaRK=u$VIBJd+1gClk5MJGjeMQ@Nl3V%`Zne7}`E? z5dH7zA#@eHl1?x8lMthkcvbE&b5E=&Dcmfs&VwZ`Zi19#K`-227S|5*Uuow2oj3I$ z-lV=g{Oowb!(>))Ygz2W)VCFEub#4@Gn@2S0`(Z5#P?H>gs*ILh(w_=f_(t%aglQTb-N9k=P{%H67B6dLl`I^qeSe-&LhIES6YF3UHOv4)Y~0|OLO{cCv!@$_CpC^UpqD;WnUXw+8d90m z&%@3ALP*HS9L&k@bMi-$kdZX{r=IyS&v|q8yG=Fg0-lvtpHHqKvGQu_BsVFI*Ux5i z;p;n>KGKD}gRsx0&k5=ESd4>)E{Zn&=#g~`4gQbOh-^{_*yqZJH;;8(nb;1L%0b5F zeE=Cmd#v|GJ!AULTns?Q2kx!ZPT9T96lYVv6NaFJjC& z^lj%57PoQ(l!m{w2Psj=3*giH5yYJBpN+a7AX+!rEf_0!5Fj(FoRyyD;aBc`b<2f0 z0f?olGLMh5>xQq7KR`IcYH@axM8ekVq8YqDukrK4@O<|zWSn(AX3#EkiS|zNhamGh zA*@h|n2_^bSFK%$(PVnyt*yr10~M*CoqZU$M8@BJ)soBvOva{@+I-b8bt!L9D0nRa z;9kV43%IMdmgOVTHOfX+@g^_a9L*pdtvE+)P!fABsiMrLumpdbY+l|^{n8$gMrLuN4Wb!i3_uyN(}hc#V@=qp-BoItIn8*%nYcud7z7gOzYz zVE+Wod_!@h!kyjCUOxSS4XpmGGrgV*))=2%8BQI|DAklSFg#vVQWcw~fR#X}R3htO z(gSArfYO;TxOD%3h)>db3QmpRnd*0LB2Xl@VN-iFp{>77h}r&y847VgSnPbQX-sir zTXqz^tVwamb&(Pf!Q)?le0vv)4>B4~&eQhaiR*S=!xSuQq}AUZjMX1wMlwjJ8g-lE z9iU5G*qth2$Iu&ko+F^|JdgGP-Qa~K8Huj}y6!85W>wIZMo@S@XSxT(rdoaRwofOs z)vD=Au;qBwuAhAXX6S`j`5aAW2o6JT!%HUZ?6$J;6rrKc*mB*ilU7->hnav2*PKr)?wd|&QI6>NaGJ7Vd=y28H z*6MuQ)_6JM<#au}c8Ub-9d3Ny+0?%Kcq?by)u>njwJ3kl;L+Cow{G&iUevM z75e)Y2L@5iR+(OW{6-9OS_!n6O6y?44#f8&-GMXnjUfxuf|mS8HwRnV*Wl4`0oQ}H zHh1vBgX2{PY3?RAz~$2CTvkc*eU^;aWKo6vsQ>1BcnwgKO{5ppihOnUsidHK+g?j8Umo7R~skiRYS?)AM-qsUFHJjW< zrT9tZf;>_qj@dF?LD(=S7>Zj=pl}EOeEizuNX+levh(}|DTJm6-N}>g+a~~lfQS&v zI-b(n6O}~O^p-?T1zJlcVB_f5v*GW_kd;)QZKDJzCsT17&SX97m|&h2onV24yD!ln zLvf271p`~hT1mc3=-6U_mV@n$DOt(xwSQB(D?(Pkt5;=Qd17LHOh?&=$Q}bQ;|z_~ z6Z>4;jdDdiJqci(zM?()R_6=r+eP)e1dGQYtcf^ z&5JX1v)c~((RPjt^xs7VJi|qM=OO$DK>0Vjh9EKj1)S)Fy{pt_T+`S$fNmI`JAHCJ zoB;6z;60WP9K^hL8hmyNuiK^mSf_ta4?tjvEcrS>-$cplL*CL~!TWa^8|PHRUU>P& z|H~zhPXy1h0aIGNZ5%hM-c~k1QGHh3S|%4s54_>BaQ!nS1Snh3_a!~ZJ5p?oW>iQh zCjfy^xq@re^db>6=0hk)R(d3}%L~OM!!FpmRB$E+?6~y9I&n}GXe_??8*9BQeSQb( zMrc1nqKERymYo$Z%9yI$gtpxD*24pZ3Fgm_Bz&)|K7XKc zI{}r;_PiUw$u$66R`S}(^FYif2oan@1W>0dBLK{Qw`XlJL3Wo459e?9T@nOeLi;g1 zDF}ce$Owmq0M6c4&SQ(g>_VRvezK?M-czBwaWXrBiiO1zSsX3yuFvp#6gx$To#vq( z7F|~qJ6$$~LvLL_&_8SPx@)=toGHrc!Z(irk0Ik3Dpa-`{jN@yx-ImkAuEm9us4-A z6pJwX14VGstH{O5oBV+6vY$7+Nk@LH)3BvT+~vw)DmE;cB9-`Vj-%e_#nZNF*L{vf4{f z^CB5jbJ_N!rid5icE>NDKjJ1-VQ-c$K=;7ZD)NK@tCpz;aKvP;)?E1SYf{DQZ?n5y zT5ykBKMFRd0}RSxy(SmhI6b|+)Gb^a!j}Va42pJ6Ps};2g14(cbOs5z(s|e6MD?{`Q>>C;RLBLxgo$`ydbILpjOvc>8*o&? zutA>?Np*J+UQ{amFKVM7@9{*_`N;jhk7pW|SeJ_T@36*2)?g7W5Gq>o4gd{c;9SWT zZ;O|@{Ez4zU|~qKO4##sQ}XR&L51&SUDWv2)SDg4VhPK#8cu0-E!{RS$o|3Ap<&~( zzD=1rtU@sRv=Kxi_8w==y_~eTy4TBW#sy06_$X5Nq`1Jo=Wm^U*=}Vu*OO%Z7LMk> zT|7x5g@B(;7}T1*r?|cF&Bh`y2zgS~5^bS-ss+3XCmat*V92IGR8*%^UIDJ&qDY>x z+Wf|1{_D#5K4nFlrVLu%iOv=B%#kGF-F55uaCLPp(acJU-tVHIkrz;A>Wb(^27^B! z(-gEOC)!QEiV`Nu0Q%u7{tyw=7K{~9iRF9FO&DH$XnEEFrvx`E>DGaxsu>0Fb-WIs zg-Rl>iX~a$Jua|8{!k)LX%2HatW@ol^0!@#0?1!gE|RGl6O#;ub+Ss&uNfZLneWgK z1Omely_P|Js6PB=vykM zR838X4Vc%1r>9C(Db;_f640Qg%8=1?8e8yYu)L}~5XHjqvdJ*}^u?r06FxX!i3KsN zBphy(>tvr%9`8gp=XdaP@}V|Z4*WlaiPt0w8$aO_m#ALszLmL`cT$2&R2TEed@Qm7 zz_|+0A}T)C&;SyEiIlL`*poo=|3Qp+V!2Wny6V$=aU5k3hRS5?Jw(&M)Vcw~{%C4f z5VJP?3%C;8LP})2?r7DIr~1-HugZ*YSSCmY;-v|)eq(@Uh1ASE!5Uw|M2UEM1RtVY z%!Q1UB4LE)=JS69ecpL1H1yKVbB{^r?S8-eh~+yU2?>Nt$8&aUY9OZp#N9S4P7zag zM$1Wyng+dHT=OJ2?OCO31xk(asN5sj8eXik)F=)O8%_ez!aE56zY83Mj{zbZ4tg4Y z`o0wM(JKE2F3JiyO;=_GFczq2qcIrNF=?c%_fmM~Gv&hhc-aQ+=FBsGFe8^_k_OqON|94 z1(YRx1du9$re$rHjkql%d#3msUmE6h;V^u-|2hqVRJm8)Y_&C#R=n#o#hfAh(L2f1 z4_NglW$O<`B=Z3VwSo4HX2W}uohqO*=XAM0hiL~S=-rPWx7pTX_~0f3plm5h3T*`y zIr6lc9p4lM<;G=EdO7z=I^}h%#7wLfQJoBi{2^q80Kn{bAW+G8;)8{@nmcpQNLJk!I>tJNcY<=^UB;Qi?aTpDpVE<9a zL1@T&TJ5A)u$a2DK}3f#NaC5r%`~6` ztIVe8#l)dr72E_u!CJtVAV&a`0a*A`N$O9-5)$5jPn2D1^)wwll|w&|AO&A+lh|*eZ7{ZCOvf; z33k{2T0|m+j(=?+^9-0nKH^g;?tl8}jv%lJGUz~<$P|L^iAA}y>-g_b^3N%N;p_u_ z)T)46HR7jmTFY4;Y`<=gEwc+029lA@`u5i?ofhMcYL6nwg!C<%fIN;@F*;B{JJ)Qj zzG?Rn8P&O)YWeW%+tu6|qt|N~1l7Mwau84xfWYVXjIw%sBN*NDU2$WcHqg-Y(cJkPROC@Fr{qph8cLxJCUF%UxyVc z>!ND!D*ZB8Yp;$d${4_q8(F`4ts2iF_W>w_>^Amyrr!~yeA9k9rOjFSJEah6PX^s? z8_Ikbtz?P^JB*ZdsO)y?Y<*^!<}rgYwUZ^N&2Ik{1XfJV!su;AqLc8#U%4cEPBRM# zl#7^nKAU4uEteVo1r#vIpgCF(F*2~U0C|43Xa*>O-Cp}_t(wke{#|dJ^m^S+;|H&X z*o3R=@sTs-(IG2ITcKdlV9&8+Pq@B9+2fu8osM;7jo1>|IW4Q`$J>2AK=-f3aw|W8 z1a>=!0hSO6b=yzbi=nlAcX(nh$Jl<{W;!BQ6z(j_;Sy_e3cnL@*aVcjoUHlZcKA`b zT{fu&5vsc6-#8K@D>PRGb^Y zX?7#rRFW4jx$x6~HztJdh5$KnIC+X=bMs{*%X_@l>On^7IHM+1hKxF$x!Ok!@ug+y z5YVDtLK?Fr&FK;kD8xeMD_7Nh*FHRR!0Rh-3Yr+ImjYDYz$p(0yr)*^-!O!^f%a-) zLRJpjg1z1d-VsCf;Ix<}(>Q@M|6yqy(BXbAL7obou3VxL^$zxfvXipph$oGZTo}v+ zG6NRgb|9hEdxjXj3sS|9L+JEcne@e`ISCW?4oog;n9v-gYkF=3q;_mQ8A+H@O9liv zVpvQUzO~@gYQM+&6EUZOfxTv>t}p;V{)EP4aCl97rGq4K6@QQmwXlhN{1N zi0au5%BQ?u9dL!uikHb1iv{2H8Dk976H;KYfetL4ph%H_xhQKJG~JI>Npv0@OJd;g zQWtYBK7OAd9g0u@To3wY51|;?n%l|%&!aEdY}JkC-UL0XRGXHDt&}p@Ve-M0=0Qzm zTQMA`;f?5;o=4jpNgFgi>>?XIK|6>R@#s!^r~i&5Rh@m}>tU5Il>&$9l(gI%egh;j z9G4eR7uWeicvUOlw<=@B!%o<@l7~t@f z`LVHQT^v{+3v*)V9RR8(aYW`neH++4S?L+a<_*-u18LiNn6BQm2S&iFwW)nxc6+(Z zv37|lkiI*4f{d5Z7-l<0z~~f6F35tirbrSAqUg+|+pl97;lrYLdC`6v)rykID_O`2 z{f6P&xeUYb%VfgBuR+dZto3v?>Kj9rnCW$E;?aDGN$Zm97KFh*f>fGmo@FVr0MoOv zK-KZq`=Y<)EU|?B8y#B3dTP8-B&hE$)$CcX8jn>^&+L%pLS5d#>})Ex-5<1J9R~IG zuH-7Tf|u=!Z1#3Vn6t?Y<9yT zJEkDXLBmH?m2tf*h#wy5pVG!~T zKsyZI_yl0ld3O=fEEpjBe;T0 z;jOpFrweF*l?7b1+gnEcr}hfeBd2!eS|Z~B;x@%&ipr2T*^E2Jk>!ohbmVk|%e zG9*Mcx!`JrJ)?hx>ZiT?%9tw3J)3f2Fcy#TQYL_pJL-Zd562{i3$Nihkh^q#yD_z@U?cQe8+~?-MG->ve9$(lQ@czRW$&r}R z1o?Rb237`Ed`J|r_24FpYjP|ZtSPh=2-YTKoQ4-OUx4!~w1OWj*8}~&Hffmij*fBiC7b1Y857R+bVHh0B>H=Oa zSBV!W`^wg8U18U_UYI2xlXb?nwI+|IH4=*&mfqT>d?4fWO)M)O5Rpl?f0i02Y|yZ% zLmF;olI5zbhgx=LEB^M|09}eiGMN$KZ{#SE+)Wz&V&BB~q3uF4be6_@!E+v0zi^90 zTfhDoNnU*Hn<+2o4X~D>Np;_Z2~Dk?;Dl&PSV*AhnI`cy zI@l%IDA>&5hd-4TF7GnoXJc!CvNAFE|Ak)#UZLohv+bJStJ#p^KL3BJyV7_lyT5P7 zl6_x>vXh;$C6awN*|(5gC?!fEF(lddv1d0JvJ{HKWXl#JQYw+17F)$_dCpAQ?(X~l z{NFq;o|p9**LBXh&UMc3e78%&@|gUYrj^cv4ddKRDam#<7X;AFnN?$|8p83}j%O=g zkqWP>_%Ax5RL2b}lnxDswQ_5zPn+Lx92Ak#1_PKej!55#A|cnIpP)|6%!(+RrM>>D zm9wol{AH>de(3zu0*^i^lFIc_;f$U5Vka}U8e1Z^GwJ2DePJ%m#HMqeyt*6f#OP?m zLU_$FuluHusU=G5mQb;(yQA}o?2_lZyYi>F1!_k;# zSK{`-`O@Qr?SkgxWGPq*38j01?-q0+smc(eWR!zsu7J% z|0a-qA zs@y=pd$5p!Gm9Whh%BK&O3=f3cJgsDO$n7*cz|pxeD!e5nC}^?EaR~`^5|G9QYX)CV2@soo|L!Jk=2hWC>m96wJI)L~Y)w9+A4BR&X zSK`qRXTE$9)}{vae0ZmdERMUgLjJB%BcrIct0p)|v}{;p`Ecgw5Dv@#&OKBomFYm! z98>Yf6Wqyu7w9?rF2G9n$pYzp(=DDN_(?YWIO^bu0r&8{-xvx&2LLc6Jw)oz1~IB*UdPUp!JT^mnUKDFsCYN>@?3IdTQ1?P z))vN|><4>>Bz&qO}S30lP!Ux>MFE1#d46tyVA=%+)`uQ&G7aSr;p-T4@0}|sMIr4)v$Hh5OXje0@P?_m1k)W z1Bq@y)iSj{Pv*9G0V~_EF0ziv+MDeNXvRF>lYxNZp%Di>z7LvlO8jek|M0A&3m44` zCyf{#1Js8`@f-Q@2t|K2QvX8LZi_TIHvW=cGqrxb3!Ywxy7z*Aefc<-e0T$TXT;6D zk?#j5h=u1MLzoX(GrWDK7i}oU*lHRNak2`n4j(Mwql^@fc~yDonYD)bhSX`&m`VcY zlex-flNDuEuRU(NqZG2^6)u7aY{KR}8>&INTd&MhHr-v0Aha=kGCX>7)RmhvC1m}A zXg&V`S9RTcR9I%UXUP8!%I^z_VHE_@v#9QQa(Kjs!r7jv^K^a&jd@iOH&vW?GfACE zNm{j}pFJ=GqY>a(UNtn7`PiY0;WjX$YSorj$sk}yGgJ`a17nw!oQ)jDBl+F}_fyKv ze?ZQq%M=~kzScOY;U2381nt_CbMWkjeaJ|lO|XHc2a#U0OE-NJ zE367iE_K#6;dCkJwWxm$zjTVl-6)s`jcYG|tkH!CR!=TbS+{WxGIP|Kp@^tH8$zkV zP)35D(IZS+G5Rb}r~0uqn_viitvXlk#c^XU`lOI1_G?cx@ZzLu@y)um`UePe-H8xz z-T~kZ9#~LlYs?){?tNmG%QYmH&k!S&{m<)rCy-}}{thlXK>i7?8MZ>6p#LG^wo3a0 zH^MK|$MK``H&HPTzS;w#w9^4NB@?s5@5<-`WoTbVN3qG!f~4wq=m{ndq;Sz@tUSMA zLO|b)vlr~cP9fYsp;mCRH9V7bv``!ycj(#*I6;Y8)k}=n2Y5_8nk$sPR+C>Sj#42@YG{NM~!t2&Mt&$TJX58ueeBl{{{B|3ZGY ziIXoxtD2Ez8Th||C#Fp52($3{q~F!JTsgML$>8DaTPEx)5uU4plhYJK6t8`IZ{7Ux zCLk>IfbQqzi;vxczRpSL#6QKTMlL_6h|+V95h4c_0{M^U15mTC?C@#RQ;`rYMIr`7 z41rRjjX%RkBf*2ID3PQ$YzGUUhZ0i&K~@Z!QAQqc6l%bH)!(>m%u4StR&vdWB{xj7 zJm5rt{v7T1+mwe@iyqs)sPPvSDzgJ+$rmypL%V%vTnW-vNl^_%XL#Lgz2`5w*~8lZC9U*h z{J1ILV}VnaErZ5V(+8Yr9S~$$@Z*p+`70l6edq4J|M*QfYgJRlg^BW>EqLws$vJJ0 zoQI!i3`}$t_quD7)h!=+&^U$YZ`=p=6EVyj2%^udl-;9JZJ`OjZ-Ro6N;3D?2NNeE zi|(C)B0K~PL2EUUk3wDl>Te0430n5GiEDXTV)B-A(ufSA)jgs1@ahs>Qyy$&UaGqQ zC&d0;${I>=kXpo|B4Nt>LU<<{z{ZlkQuozNBVC;N1Y0!S{;uQ&T2lO@H9@7rj|^7N~w=@woC6Y+KR2 zDtcZ&FSk!O+1iqr1hnn1Za*w7vr|$DLkDqv_|5#nk`|Kk1~=xv*<>2-Qx>gmKGT?R1?;|&+xFkkfME8!+>MXC%S{z=AMEBS9YIl>>uk{+lB?d(hk z=9=$a6mWe;JofeL{i5gF%y&SfMMmZc$A9`IF*#hQ6s&8r68!Wku)Zw0cmfQda{CF@ zu9#EKz;6=UHQKm@yHQVOE zhSv1!(3CLoF6H`AVS`2yE+4JdvC2c%zxovbtDhhgi9^T}@S`VfOd^iucy)FCV)Ssq z;x@(UiMuFb1KHDRu1l5Ia~m%?%K29|IWDZ4-?PXT7jF}4GJf_EscTl#3P$+_0?d=xW4HS9l1A;U7a8i9{F{^5>Z#+Gk50ER!HoS!j z2wcO#s++k~l=fBQSbp9r0ZW?4$$-K!0f)fZBakq<7={HNI-a=R6dSMDu0~aacmce0 zN_#}-Ye;Q^iIC{>L$8E^11Zv1hFIdQRUx!xPHk)cYD$vCjG@DqrG%OA1nL2JZ@wK=K<7CuPChTaoP#~;Znq*`i zp4W2$BL%@Aw9L`kr~=_{J}el9p!Xb0+QO-TcPLS8fvgcG>ed&k00xIdhL_}Ur41FD zW1Z&qAZv?9(H)-Yqy%Y|!ij?|-jCOx(+A!ZpieF0GNs4O@hj&bqg3-DF0owhFx^aJ zQSd^gbU!17$M{LC)N^{GJvK2mURL$nyqvjL-c#w5ae2PD7r&=)z)|^SJ&W>@6B_4V z`_c;JqWCtl+k3etH(848jS{tWJH1Y{jPkf0zaFhWP%NiqjC8!RN$xb=JrlJ~S>{e9 z&*u}uc=?T7*BsXEp(8B0$Wk%AhtNfk%T6`Me-`8+dT;W{!lU`-TyA%( zlpq?Zm>;e0gwG{=_F zxG37iPzPyDtG`)(-55nss6TE=n?(dGP8#eewp03CcEi%XrDCd2A8ZL5T3*nYk&83M zkDobcg>mDDMbIAUZMO9KrCBbI5wx2PS0qbbb0a5$5!W$zaq|R4ET|&6lT%c^j#ywW zB?83!aDqV6^kv-iGJUbyWm>fpFMZ6t8n;`VR-?4WX>zf&L@;$xMPS_N2n%{OcoO+E zU?y^}TFwaEAoI|_nCj-E3I6I?Bs@TUJb1-2ey_pb{0fL-f7r_zjf60PdDi3d7Pr+j zruMT{;C358&yV2Xs80Z50uIyk`D3+$AucDVe|N=!D&BSgfmW>jYfS74I(W$U%P6lS zO(Wje0(R|a{g1`hNtSSX=wb4?E}@d_RdPm$GeBVWe)+}Yy#c*lwsYJ51Av*kLGaEr z5jkIQb%*IyvB2)K+qm*OG9chivRkw1vTN{hJ#!wfI`a&C&8@`WsHFo;K~>-^@MVQ? z0PscoX1r>Gi{2S#9zzbeov|-$AEW{jv+&TKy5!vi$|>RO`O>c~6gsl3M1zSR+NTY% zQ-)8?wjmrs;-I8{{Q3R3>5R*scK+`Qx2n4h1Z{h0`D4WjQ*TAC^$lD-aY~8^kFz1&g|v~znv9aM zw%#+)7^L4^^)8X97gGRR>P5iV@q<06K4@nPL`r-!uavUm9(f$C!x*5$RReAi6k^<* zpvS5V!j;J3f48mybu9?+!}V8*k!WmhW6Ko$2P<`(u|4kG7?G+9L8(M&dG&Il>a4vR~=Zk4>hNmaSGAW?~h*_odZ%_?<4W) z;M|0#FPO?LZYL=}H=xViW71IQiJT9mbzbG_EPBky5ZuUn^DXWeAZli7^WQ7Sx*1zS z-4PkMdT`w?^VzrFwkADWKKO~Zc94u4i}Tdh?P}aeC9K4y_QQcks=S zF|w$z;_j&PTba^~X71+T+!A=hI^8c zQH8N*LX3^+EW_yXzPd*#ZicOdrN5~4Ftss^VCAQzx}JXm31d`#v^satK$tb;j`@)i zA*RoS3_!oybC{zi z`%Pw&jpLMo=eHBfnG|V9l&m^3`fTVG&pH0^=As_$3O}A;7|*I1{p>1J_uHaM#&;HHxa?fN6+%%hyYz9d z>f`Z}1^+aTIFCqVK3r*GwQi=|{x8n>D#hveG#ZGq$6AS_$gcbjnn=?A;pNC}pxCq9 zB;&QqnXl}Ny7Ikz*<9oV((U0VFPrYX8t@o5^X`=S^jv^ovt2kd>~I3Rhlpfobq}KT zdj2*l(lJkGNv-tG1cBkhLoizViEOl)fB)DV%7H7tUM~0IwG_oH%*H~70-iP)v3V1D5 z0qLgMiYcvHM7dwVjeMO=SN$tD23xz{sVm*^Q&-|HnEuFxjfl_o|3ZD&*E_=qU$|jk zp6b0anzB-^A%E`q7p4fZ*R69&{Q52;B}D4fE7Atr$H_b>J7k`4x09I3keyhhkc^FZ z6wzJkySKZ;M00t%3IQujGTKd$+vI$e=3;_$e;|LN%t`8K&6&%n z^mK$yTBE>##6kgbtW=SE8l#&?ds}|viH9D43y&n<+_Z+Iu-e;nimjPI@ry?M zyfN@g87Ig|Tkkc9C~irwr=TYwOLoX^_rH!g^hkJ{uUM{XUtviLLcIZ1Di!djnI6W^ zGCZUa4#WUMY5|XE)HG&xjZXT8JUfZ(=G2`6DvhEY;a$BT@-jve$<*jx7d@|sPN2$g zO~T{DxBy=V9jIqIKZ}RBxT*QyK@s?CqOqvp=H9*D-r}&oVeX95LVrLZ z4s6Y#^HU~j{~sZle?gIepX3SrbYpVdM$k8KeLwve5BY2peUJIr&qw)=wEP!f5`eXe z(>}yXvM#KrbNvoK0g*E}Rkr+rK7m~1-+zb$v3}seKM<||9MbY@4$L2T8px!<)rdG0 z@CS_b8@Tr)`}x0YoKp|5!WU{+fimjWu`B4U3k`K3sz$crcGbgGJtfoEc>U+EEe9_O zut_xnJl$+Tj-3d0UFs5s@`ex{?u2uH5mVl2?cn+9zNBor(BCp`93h|em>qsQj~p@m zW=O*e$3bL*g~42Xx}4XWJWJ`Aj?4wl-APUvr@>mx62aL)9QAy0(-mP1rF?Yv@_TCo zn|`iHP9@okw;TlPqQ{P*m6G+`X z0ypoY#Rp3DF3lVv2~c;V%H{S{%dIsiv(GlYG|7j$X$%whx?%Cv+c1Z(^q6yiU^y_p z!#Rg6DhZ!P_r1iv5>j?o@);5y38OouQyFdZM$VAhN9}ma^4srD`I_{=Z(vj3AYRFI z4NSTiNe0)qP*MBKlx(Bw6^$mvoKVqJRN47HBxsZOZV%^W*yanm%QgZ|>V`oYL8@=p zi!gqquA!W_k{{1m(of0PjR>FOQx-&c0Ed<)%47bH(MP5>NO)#gQadr9XKU?dC>%q3 zk>cQW#lRl>0g2!X|8)52qP+Dt%<#VQNHB(~Lb;aKm?63d@C3bu{LvPQE4zj+5nW&9 zFR38HLZk#qT2?hAl96QVC-&SrFjL@7jT9V zU9@{X$8~9RxTpBK#jTfSL%@SEXWwL+C{3 z?}2ZQfn*T?yy&W)p2tCSH*o+t0Are#w&9$}$rO-7boLkYcY z84*8Xcr@}EgK)li3KZ!}11U4HQI>2Bpc_3RUv@$5W_BlK$|`Yszv`{S*|G{H^H9He z!RuYG;&e*0jlw#l-}^B?xj^1Ypr~-;okxyL4p^zsV%_Exy00R= zT%}>%Wt6MW@`dcnG)N*igGAJuWr+CGZqGQxm~?yesbu&-PNNh41g*MZ-)!jT#lH^$ z*wIO08gXG%xl%-#B@0X%8&m=sF1Kv8Ax(VPh^mKNVe17#Nzz8+alllW87^JrLb6Vu zLOdpt4Jei^PRT3X-&9T)vha&39@XaaT_2?i=TMk25aO&&z|b~Eq?1xGrD@M%$lQB; zPt6N@ZZ8fE**|tpFh{ZEMzmX`hw~l|Had-f=XK$Mr@>#X(Y5pr$hd;%VL2yfBm`$=He<=Qn!nx!s8s=_*)LA= z^z+b)tEoADLXvx?r$GY6uJ|t46fy*}c|kyV6n-8X=i37GrgTu7>hv!t&d)7lJtW8j z4%UfAx4}hS${LucH5l;3&B`o1^S9!10+-2hWviK1R29iC?=#&>A(8!b3Z!Egyt(`; zcy9-H##9=SR*<1$o9)|va46FsXJ!U|1l?C4YVDldbhkjRB1m^^%#}VijTgLoJOVD# zn}xq#Uz=pb`71pUEZX<>^ON)7_`0t~5|-JHxc9+4!6Ta3iVQy~7mk5BwBCxe3(fR_ zSe$%y#p(e=q~crY5knP4naBgf$C(}Yze!;}QmO+HssroOCkIcosjig`6m?G=?-`to zRBdsPH*d`e0$eXi2fx>hXZVr3~SrY&4v6IswPs3Dgy znK^p@1bokmJ#(SGl(agTV-ckoqM&!oct$#iI9gqyv0Yb>!%Ty+2tysDRKt`y7nxty zInC+!77`O^k#*!;YnP!veYn9pX>p5xwI+Mlv?j1$`~cVUjL?eYJ6*6p)L@gWu`oi_ zwLTLk7G5iBTd&Pq2nnQmb{ugyHS&~HhHhpOFd~PytWAuSf=}nnMNrR1<q*rR4f z4wr)mqVGO}(p~m8w;7Y!Nv0?6bW0=(J%nSZYAa0-R+*=AnXAMJQ1Ex8i-{W^XQd<| zly#j0f2m5YI$s!1rLyLmfo$Fps=r||+FVoEcd0-HGHT)O{nb|qn$^$C{>D2FX)@!M zJb2O+v~eNymi>X0Bk|mX{$0$xP8vR#OKIt3>W;Mjt6|uaW#^vfx%3X0<{SGoBKW5( zh#r6LG#ih*6TBCsMDFA+l;F2WSNYNt2q?Q(}Q595*20Lr^Wz zlCR6#TBfjsffFBj9cynn9yeKgDty3ZiF-S&JHt!ulBJ4g2S8?4rg>)}cTi#z%!(DY zz#MLXGvpuI+uWpYhvY84k8oBRF-+hbQ7ci#JA?TR?OfT$HX{pbH}WGR@0!CC#2IVE z{7FJ?pR3|~7UoK!7)7ZwW^up%ggL9VL5v<;eq*E^xVa-Kr@l^~u`gHvdKge@Tq|J& z%3&JeUOE7G=qCig%NEbFO_i*NIA5+{HE!F6o1mR zjU$?hpR{^=eg=tnLrL9Izk3L(qlPh44oQ+Yc_+*?a(lDvfXnFpJZW6Ve0m&~+KsKB z2s?FE7^}=toWO*Jip*UNvJ)ZT$;T-CB~!q&Hj3=qIAaKg7i*@cxxravz{ZEp77E$Xa>-e{^^@%Y0RikJCg&^DM+N8V7*U3SQJr9 z9$kO3PA=0bK@5DoHHmkfY%#QJkWXNT9sc5LH!V9adW4rw-QoF!Hin4k+=T6!2V(0e z>0I4ByBelj!3RWdvcvB3tWg3rnM`pYq%%Y=!&yREJ4OhXm4V}UU{Hj(O>bUz3#jO1$=)jKB<>|4^@?0HZ($?uWwI}7Ht8Zugj{(EYs z&?nNTVG!CEPB!p7C0%JMa6~_m)FbbNnA~5P+GrgJi*Ifm8X|@y3rh&3xdA2cH~a4X z3u#$EV4AkYP;|IOQXQ{M*k5YxB7sc73Ad-=Leg-rZXye?^9g`|;6*^7@i=wvH(|xM zU$BEdeLD;8Ujz4B02ts+{J0^-T@8P_!>Ne=&o1Ef(}PO*%Y8oKtffE;@=pyZp@E7v wtvSYY>wM2v+wT!RBlZ8X%Nc2QTYHd&V@Fe(Q5XsES!M!VO#_WeHHXmu0bH=5ZU6uP diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_intune_permissions.png b/windows/security/threat-protection/microsoft-defender-atp/images/secconmgmt_intune_permissions.png new file mode 100644 index 0000000000000000000000000000000000000000..c40ac907c4b1bc66f38012f0138888ab9b907423 GIT binary patch literal 50257 zcmdSB^;?utyEZ(8bfbinq;z+8h@?ovkRsjPg0!@Nv>;s)!$=Jc(hW*?58e6RxS#!g zd;jqM0pEQbgEMQbyVkn$Jg;S>x~c*;#!Czk2!ySqD60tqAwxhQgakAcpe3m-xE1&Z z-APf;6$HZRdio%IWx*i>8d2SpROC?CP$^!#WEYk~(fHRSr|Tx=?)K5q1yoWws0cJ+ zxdBbGmagV5)=qBLjt(F~bZT0l9pkB8#?i^!#oFql8>k$2P#9>%`Pb@VY5Fwum7BG_ zC5Z157aiz9f9iSX_`%K7)Ws5H;AZS}%9MFvR)U0Fb;$ZDy z1!^PP3GBm znOGLU;yIaXD-oy4}}Q-&(mCcks%nEm>TNpLF`72yq+5A3&$!9tf$+t_k<#R zp1=wddsr-c>WEN#e$aV!Of!!QX%~q0T|Vd;geJToBBBuxAa3zFw>fLJx1_bv#+T;5 z=s~*Ber+6ji>s=lIWo;crcvwA<|qYzdr=w4UQxF6D;PKR!%9xbUVuILPeSmL|JEeq zjFAy=t<}};=%eG~hHl@={%3w9+{kksu-rmw=!vmojExBb znX<7l<)Y6Xo9N@+>GndCCq;d^vQf?P36H?2#CW5aK2g>%LgFw2R5bUS6MhynWyQYi z!g*8(^v2r_CrA|)IC$&ah_3l-R#(lMPlrX)gj_$gIQDSdy+(Stoip+LvXz2F*N4zp zI{Tx?XR&RXUN6nFgj-_ITz$(03=iF_O&5;%VB`R55ndilY_f6gEVr&jA%AFY7PXtL zL+7y?E>~!Err6_E4ig)vK&5i*mvpgud)qpkrX9!D@>tw^F2U~;Y}4J|jv(T(A2jx{ z>!)ew?$3>9cG!)$u4?-1*h{Bm4`aEH$6n^M#H~|h6pmS#e;VytL-FFrB>E5rbp$%5X&h$2QJ%TW$)HTjH>vjD1rx7b4-80<|3RG>Jg*>2kdgV1)2| z?sNgWi++}hZyhU6VkPM(eE~fGUx*{mwvR?0iB_#!`!jsAR8bY*s4G7-^@CI?bl2y8 zH@feI6&Ew!-5&<_mh08-;{WOIxka5_X$UeS7hM76FDU$c&X*Z7HN|tTBYGE?(Uvdf zy!O6esP=gL#@6Ym46I(tG&hxqU{|vDqgaNx|-h1XeAGaQfQn6{zY}G8`68~D&qE4!Zqi}tP zk`UD!q{aIOyuyojDHJjm3dFxep;Q8?(Bwc(YYdkK)N|{_#~HzGP~Tk~-anNak}8_m zQGbj>RvMS8sl_20a5URnb#qHMePA7y4yzeX{v2*)*fC8Z@onZYw1R}NOq{_*(aq~q@T^my99aU~TTP;%}u+ep3?9~O!V7-5UkmG&*WlX>SuA8u8 zBF?DN?qz@dw4GyC_(j^(mU&~O+7BEr{$iw~1(l5ESAQQ3ZWHFjmBk<4c(cwjQs5r` z(zArUpD7C1N)8W4&CARCX+6R4qo81_LX04~nm?CT8_OXMBC$SOUM2c^-Q3Ds%zA(& zhxlS{pP@d$Fk(pz9^Lu4m#4Rg&9doMD?~NLuQ`G+uy;`)D|Eknk9f5y5M5s*7|uF7 zx_hS;o6xu0wBS(#2P2|FdsB6k_v@3+`818FEHt)WiW?gnqv7KA_Ix4RTX5WVTR7S` zw?9_77_u3WYf$^moqA3XyXSH|9+UIay_bHV=CyInJ7QM@mZh?7i8}kjx|VU`zi`5R ziV@i%p+9Idi3ES5;^KOB!2a*|_)|b-kB`V^mMaLN(2K{Pd@_0|!4>AhdFBe&gx>S> zI0+P7A8f-u%&kT2lSHm{V1|2qoo@uTW@0qfI_f$LqS1aLE|M^q>P&c;Y zh8-FC4T(-z_XF)x46w}GAaWzm7p^`H-?!ayL6SGE>?X@$XsZjIXiBCt!>(pS=RK?bkj*v&2!?wtmW=fdR}X4ceV5 z!+-JObET23kA8OzyKoi`_@F7Wi0CHoH>zMGJ9ayni~93LOy@D3YLi)PEL|^w>AS8_ znWmEjO$F&rh9nV2xi2;Fq81LCEN&}*c|kw2E7#LvMHmGk_MQ3lU% z6sWP(ZfP8zgVxOlSo9+H7fD$Z^foeX%H;f+N2Fd4xR%C>ii#esMsut}W{f*os+u+T zUVFzrs7Ez~+)4`UGH=Q+N!FEQTSv9v8z}ky2`5#UBwhtce)otc zLUmOXIPw`)GSPeEyLWHzU*NJgMd9>O@GZIG!t{WPK)r2KOyzRm5_ z)cPFg8`I7Pk(BS6d5cYkrKS=Ws$^&%1|Y?cD4+{(ztwx68BMt<{vA27ArPU`EQgMB z%Leti+-1Vvm6Y%_irchbYiM;o%bfmV)%!=&5B?5P@A%L4ONNeP*n8SPf}2fYn;#yw z7-H}6u^Ur_-FJT&D^pTZ9-W_8m|{}UDb<`lQqlGd0TWNIt%}M&V4VvHYz%p=B~GZkv-s@vA>&)rSa39kFfH- zIHys9u?|}W&HCD?@L%hIb`lv5&u*q2>!!H=#TuphAtCz0O3Qy+i)iP4zD}yb(ADmr zDJNy(ku4atG@J%>JUcBUT1`_8m&`&|RMkC^wb}-GEiF-YUVi=S*IGQ$e*4EgR5{Cu zf7CC3d+SqQORaPJkC5sVfud*6o<&4QccyWfk5(8!^`|rv>8?>wgXnfR@2VZrR$kBa z2>wAA)Q!c;!ns!`WlhYOaxqAQ>NuphCE}3meiA_1fXp`TinFwd$QY@cE#e}Im>9c# zpU2_vl??Z8Z&|iieHmDc=T+XMFP|&2DXJY*)Y=qD8ZhjVD>*Jz)D+1EPBt@Eq;fY{ zGkJ|12u92Ti;(7i-V9p*3mHg*?y4zHsJ!_de05a8Z* z!YZ$nVJnFy9L4m|7Lk}uSN{82#AcpJZ2I6g{ljVaE);NB>gn`mSzTmJ#pOMmOSF-k zv~l?8!2JakxCK3HnAH6}5R%d=#4djir~H(fssrce1`{f0Pe_FykcjY7DG&C_TbE&L zEKHHPuemy;2|(1v9m}f_+-#1JM_6KST4R{J1wH%PYMImO-UD&?yPGd7o#8WOOOm@B zX{Iog*ly#BRl~_|x1p-(wmPUvHqqGao2S%2kv8RYOme#~$u{@27LCQTDL9KgVJb~N zmme|dSnj_T)=m3MtMt11P@UckpPc&@APZ+HgjCXl0GW_^e7IlP*s$~!pR+b^$bjJ3 zAow4UvR92n^dx$2np&4Yum6y7IT+)4fG4G_$iuy*nx@400!BpA1RP$tHM&8nW_HG% z_i0VmPmy=hnwxvO3VovRh z*y3kzuLIP6WdS!48EeMQid+C!*AIbInD$0*#;6F%M0{y=#+;vjHB+N#+Ix!l^k~>& zg9?ZFR`(m-W6{L7PJ_@b=ku*J@0OAW~xTS zI-OU;qepl2kCv04;;u=Wx&*osgbd}N^&o7Gd(MSbs;R0~j&~Rv8N$B>ri~Lr`^6x= zZHof&+05;Xt&(P{w!^ihhl$9B%#x2K)iaog@Kdde&#?ts_o_DW48aN8d916 zgDDOf^hOV~Tv<=T{w?);&ESd6fc@00;^z6Am-HM<9%zyccSeX#yTY?7EtO2sNGOGG zIQ1vrtCnqA5A)}SW7dUhFXdya`srXPxr|Lpsoq_r@HV%|C0QQUE2jFa4i$691c+ge zbS!eEkmj69S*xgcm7_UcdUWW48z|1y1lO*aJ_|A{p=n{1*M)4F`+u0NYeB|3T%;u0 zIx@2760IM+>yosD5d;zX){Z(jrZ6ZdSiB*K89A5qnY65%%lNz!ciuMkSh0ZZEhU8@ zet-7PZF>~q`}gmVSrpLQzHUMMWvu*$`JUWZ-I{Zh@f@dMN&>pN;6)vSz#(rsCCL$w zQQJM%_r|m-bjzBg-1O)-%>8E0;`$o}fq7Ig-3;cO5QIub|KWTWTK7N~D$XPJzE!`| z-GiVXECQ3R4K7rC{!r$u!oWyyMpU?YE!Vzq$gmu4xRZ26JMaL5TQ#qg& z3yzYBHsaH7TE_~MQ-#T`&=b4G`OYIMZVb=r4hZ)znBM!()E8hDaiO z5%)5G9yI3fbn&KfKK$Y!qPFTXc?3J!_9uJqy8{C!xy5?e3;}3=v4u=XNC*uZTP_@j z!luQ@(m<>Ktx#}KwU1&1>JdMs!)<-{%}U5PHR%_U%e&4${%$W~vNNg$t!c$|3wFxr z(G!y+lL-+>%Af~vbc%w(dI9!a%1u|-Zxs_arV3NKOJfp|k+<1W_s$Uns||)_;G4-3 z%_ye7yk(+cQsWQy;$a9rbK=r^MfV03(c^0RIbe`U$EHR=n!B{Um>q8wlqp|R{PbF5 z>1L;hs`ESXT&}$VXoO1oZ$|LH?7pU`U5X98AJ<}FW0vaAcsI9UGTjiNeD~F{nL*5X z(yJ^e#+~AnUn-qRFUU+2;*lg(x0E{HZ#57p*O)>tl(w2$^an^PeQK4QwZ zrl23qUZ+9y&ZXdo_KHejL<>Y* zl@CweBeI>QN5}RJ$W&;dg~Xm z`HSYP+^IRk(tsP zygB!t1_!SI7xDTZ9-VGr5qPNIkH=XQq!2#KcQCo|#8A1~-ADX$gZ*0gGC(@6<~3--YUjvTfXs5l zTbF#IkwQ&3i^sh+C8$4W`iD}|F5YOOiR%MmkTnlc>$&KI<5%Q9I;oe{=v#3rP~ZJ8 zYuUYNBXMTKxwzCS_n^gHZzPqh#Q1FX_Kyj{$jjd3?BMt2IgAL3Z`8sqz6CFA6rRz= zknr|yJ_?+me0^MsFW+-Wpp?`U9;Y|Aq)Ny}HX)x3e5EmiWWwKm(s_ zJ@NI$I%938ENJfK=GxTSz>c(d&0*>5_;}HlZD*%iVfmN$ngmsZddzIju6&8sw5B!s zJ%yo3Gq|I?qLrql(f z+GFruH$#MmcGLTMz=JdSI-ZuTn;RL*`8ZU4bzlKN_mO0=6gdhVAhJ<%PIf zk4Nnsn~`pto6uQ5=u!%tYqSV47C}~|C`UQYz<%6S$~rJ_QGmV7sX`7Qt<6?67jQNd43KH zIrWI5N1H4KBa54z%hVC8OBR|+d+a7gE- zR{3A7S8XrC5u>V$`1P(Yx~g|1I#(c*{WAtOa}N0}>NxOvoIh7@BnE$;@}@jQ1_&m9 z#aQYq*{z8Hyvu1Nm~$7Bp*YD}3-wodYZVnw0{BZ6(m7f)SITLM&u}k0$i^IDukm&F zs$WFfL5KkSi=D(Q=2q=E+pf@RHKpJM^3g-bK$`nlGiTe24YkR;eyy2GBQA&eU&6#f z2Tf)%N1nAp;PVGnl4E`GMTx^;QdeJ-{7s+8w1cRKcb_+tr)Pp_aa26J(hp1jtbF81 zUb6fv5489*#yu7Uc97yHoetjC46+<#X~k&tDDN%cZ>4(c+9z@3=%}4_dVieL9$wl^ z69^k~_~UiN?YGnrbwc?|ggi zi;SbA^|8OSH)bt7A@4NUp^$%w+4UuDkGyDTxT?Lh&5K7uuFBH3m22TEMp9XF`DdW} zQY|~5HU*yS88o{$VzH#t*CaaMSC9O*Ctc*1e`W?xoiNu|@z81)ICLP1_owOO3;GEn z+InQ@>{%^8(ztmkLVFCeIwRC|X8ZP>BrQo5WM7$uet>7H1jXUH@oexzNZyYYE<&on z^L`YRnre$Gieig&E$B~Z_W}wXb?Cc34(V&U!Y^hrTs&~A&k&vB{l#s zwjnCKycwgO6|GNV4 z2O{jJ8U2KxJ{|fLD3Jg9772lZKW1R)@$H|ah-1{(%gf-X;6uAz^GjZMzfl=`ZU34dWY6pxXE!|}ijcqe>_ zB7o#;l;w-Ix1p*;ZhQ2=Vu2eJ`}}L|A`_!&B>Y+Rl&F@z4AGaJv^kcKi#R~u-+OwB zee?hEeE-h}|6d)}8d7W%x3tts1oALPo5{M#WMF>iq!NuK4PA*p>o;$2Z|fHf3=EXH z>(}IOBf@TW5u;vm$QWMjvKW4B#)@>X-QRo3AS6V(v$Hc~6k|Zc%#3kxa1c+2PA1@h z45Fi>d-eKt(Klu7KwyBPs;a}&TWatzsAlRGshL|xEh&DXoMgT~dEu5srD59aGOKE9oC81;z5D+XM9^!_yk6PS*WO_nU z?f!EAYHFet6eJ0nzrYne0&Na{n;0x8lV~x<4GauKsRv}{Cjk8W9kruEZY(S;cy|NH zZUr=HQ6X;D14 zyEnQsXDm5e7V!jT4a@#m5>MCl)|eolfR@YmT*>*&bxz_9+v~} zK>PDiGN~`!aost_s~Jh;+1hu^tgw8&C59ihKP|CmcmJ(pVPt;W`;dy-Ry}sVO<(Dd=^>W`I0ZARJdl^B?%Rj_K@Ir zpD7j{Ewpu%J%<0=Fl0+Y)%qY2!KuC2(wdR^O=pb;``S7rI)`Rr$T?G_p#N*C@TXYMlLI8U$cwA_XO;O*@e+|<0h&jIJrnWQFeO*r@w z>;C3k#=(Idpe?4hy`fsb&v%ajXJZP~p>2Crt&1`ArCC-v{zOVjO8f(AS;C*^=MAHM z0JFgK5|E*M6i9&boq#wy%H0Rn&KlAH(8XHP)n<%M!K<5wufIcSV-D$8{?y=I2|_Cj z;cf!bDMMX=^EJU-##yWLK0*rWqDo&b;iEB_rqHu(?5iD{CVpp}jRU$8Ke#12a%0B- zn~z+lU1j{GtxfW620u2iFuE;1?n&^|`rW-(sNj0XrP$F?bx_+Z#5SYh$)Eur z9?RxF%=~da#_Y;ee$)gDCmlfobUSkhJv~!ns-$a)vzBRWS4w=o za&m6v1@{GAR<_NO!af?k~yTTXSsyG@aoNWI33HT8#pV zkFaXqaAq`C7Z~o26CtAcGiONEhrZApQhgLOl{?&jrNhxheR+19<`LJ-k?LExazD`k zayi~Gh+Cs1cBKr)JeK<)rqIpY7- zn)lp~d&m%_$bp2L4P^_W6wSUIRJatM*=YLvP8S8Eq`eNI0-cbd7@?v&npj|$_WWXA z)j!MZWW5g*l$J&kz0ud#m&R+ID2$>bDH(K=ZYC{_NT>9vsR^z;*v~%)b<~+qO0-B| zc>NlcMY}u*3Wdr&=mW|w1B`AA0D=vOPkMR1x9#309RB46i?%M-b|ssyiwn23wDhE~ zf}C8*PBPcP^L~DGboAZE`1p9{y~6dPA4b(?pH+b|1uGvP;f~Hu zwpnxFvb!XD(;I=y!KkeL-z(x$P8#!CPCJboF5q)TDeZG}a}4&<(w~O7{z4t80Eg)Q zv2IB*uiEfVR}>NLs^WQ{G#Yhc_ZtbcW#i*%+!UoMDx+7T2nd20abxdfE!LlN&35W} z`IK6l&;55TfDanTtjpK>{EaOeyagXI=*ZxkVKfFgK7J5L9&Ld2>jwU61fFyR!SNJ< z8iJ(YE*0TQLIMr9UmnRiYgMb?83jJ+^hxQSgz^gZO|}<@ccE7^-KDb%Xc{i6%~o#DgKA0m zQGuZ6o?sv-*1gfO;Df$6<6mp){4+{1U4H55qQQVeZ=%eL7KH~U1( zTG_{xFBUpB|JP_^~&xpGrQq0r-6&5*_+0VfmBQo zjiBJKeqNWHXU?00q|~8!R>PV2fad~ylM1WhFLhQh%y9eM2SL*A&rc~d>d8aj%Y*l) zeZ#{fk+O;bZdBw!oyU%o75e>b}Vcw!qeB)oxC4&tW|LsFl^ z+~Go#j*2ZOiL8^;&)Mnzi|Jmu0pkqj+p)cK8}WYeR1Prv{QP{^{@>c}lZ^p6V3huA z-wmB{3Wd-VX-+C1?mRlp>DO4JgZ-%nP48+7|%}XkhY63&rO~!}-e+p@9 zYhzF{&^f>UVo@>nNxxqui$5s2d3=OHm!=DMwZeCU?0aO+ogrx#)16eaJ*>J6OKXb0 zf^DPcXCv=d8?wnagoj^(Kw(kmTg>miT3AMAzC3A!IX3#OZIe>Ru79k5?}$T%PsJke zsb7UoKH_|9kdH%&h~CWa<9WjbCijBCmEKf*H0r&gmDPcfBfb`)CBkE*FeYC3$ zl1_coaf|C$cqMwjw`>+C2Nc_;4}L)1Vb1sUIdOMyoFph9Pn%1=5e{VfDsR&`rC9Z9 zWXp|P8mF@?qcLp0-Z2C`xD;I9@S&DhQsLuM;*nGvyQ-jTxX`@u0wJowQ$p0jF~og+VUVU@}C)$g&Z>~v^))f%GnWacD8ae?9ON_F~PgSv&K5mb?i zvW&^eH05`r1EeM0)c*!80)LNXqIBazmj+g&NX*U}oltZylYP^pkp=SW7FbvfzrqhtnK>OPv(!OH(6pUj#;9>xz(&>03ud^?@5N zG-_1FiaBX?R%@j97oT)4Qf!f8XZ=Pph4KsezP%;dZ~^49Gfo7~HswSV$BQ{|Jig?{B|FIJkL z_QY7H_P$sHqib`_zDFk(u7aKi zZq3-4zytP#bVL0DmXWI0yS3KLafn=V1QU>i-B=ZB~V$XwS_Z# z_9z9dhp^kDZes8&QBiVgYHBA>PpHT%KYJ#4tw}p#G(QaJo;?1W?4gZCAv~GaLgjZP z1yV2isx#{b#0|QDZ2Ntjs9nQy!VBYR}?tR0!34hrYfp1q$~Xve28}J2?6Lx<|^FL zyg94G^Rz-nZ>Rp<)TUoo1Rhb{7CoXS3G|eZ?s$liq-TC_ z9AyT&%GnSU99i<1i}mc3x%J-`MAjM;y1uAcI(6SEMnA2y5Aopp>bY#U|D`3S=%Eh7 zH;=M6n^D0l=7H?teg{!>w1N#~crp6VfZB>$*~P2fW3dRAv$pNld$JsMFVMpNIotUz zZKI@t-JA<<*M3X&ue-^dpEhdGDVGSJDa4Ik&9zE&e?o1X;$)!FfOmCw1F5pv-PJJ~ z7FJg*g~(9{CI_!lj;p~LK+YoK`Ls|zV zfa?unkV||Klb5gW9BT%zHG!F#S?MA{4exckPP13GQtb^EPms4b#)cP z4GHPJ_*~W%0f&vi(R#;CLraTKN*W0`T)&gP*B&8BK=$FndjVu0=r#r9K2%FcPG_U} zRZW&DmJOtwMlDgE5|0F!;Sb+Wdg$i(8C`fd<{of%6SX@nCzH|+uJHK}14$jb#6C^+ zq-Ph@tU)t=djI@=A24{e+?sac!3y!w#$a= zrTjy)G=0QlERS`Lpx{L3Gw{IC;Aswx&E(p4N=ndfl#~|nER3F$6E8S8_zNs z76|qoVb=_xVgyzzD=U!8=w?;my)9&}^=dWR3z+X?09ILD^xY_uwHi#*fb#>P)h`eD zOTbpaQCfvP56T~mCLZ=OE}=^SwzUTUGz6U`N6W@g)N)p807w?xn-;yx; ztj5O8M@=u6-BDFhiyJ^yk4RP3jNA4;lUuJ@3pw}stN>LYF)u|d$bThbXPw7gEuhK=3XYaQm`gqXI*r3Uw;y)f zX`cp(iGYk4io`y`GV@}@tPNkS9)|ce6dott=sNj98*^i9B9id+Vn-rhUT`NT0_dVO zMxc&Z_>J?17nT{1gMUKJaFJwo{3yEEA!bi=MaB^pi0&aMC*kuc)21G2md`3|+51o9 z4(ac*!1^51kedi*%*f}b<&mmlhcZXa74gvt5v5U5lbQ>a{zicL2lBW0cWKF1#@aR=v91ZC|36->3Sgrg#8PqtgF4Ps7$ zcASVp7{W5FaL=C0=jRNy9k?sm>L{f|8089VQEyEQjHq4hhz$-fqY6H*RQOH>Pb#QI zK3^e3MaRw8pd8dw@syQiw2X|I99(s;(*0H*<4}&p;Fx{SddF40THJh>Z(`}ex%U@0 zOYSJewZ4{0f2gJqYuirG(K2v4WZs}!;PyKn5z;6Nk`P$prl!HTo+m?Sm-r(}Bb4XX zbQm9h#k#V!_oFvIDEUy7TFXlc8XO*d_?OBQGpenei%GtM-46v`_cPacrd%VhWn6vzF9 zio(UXI_59?d8lv*hvTh$7qVz04g}dubG_hi-TQObIdRP##NvN>gh^Tw30rPT?2+yy zZ}jhb=wG1l34D9I`_|j1W$^&(bN{{%NcQ8$Vqr4MeJqR0_ZiJ!5e~jK+Rn)s1o&E3 zIW)9bUZ6zH;Otgr38|Ol)caRhk@5nG)qUMI>9=-}4C;yVLZ`fbb}l_rvQ#i?N7=RF|x> zyO|aIZWpzjTfL)vwv44#H~!>w3pEM2xGNcam3H14i0htz)glyRk&WQAEqie=&>pwluv7IKJt+o#J;r`vrdM z=il1RYX5%WXNpA@!J!HTvyYIBeaLr0F!3#$07GeQ3e_ZmbcA#Q?9mec2g(S==Wubw z!TYP^-Zq|xJR06`OITE7Rc};|awy(v2yHFg%Gaol}F z&nsV<8?=m#nN|YZ*RvO-)e;70F|wX9K-fPX07P?7t0V{Nm|bk~om&1(u>X|As(|bc z7h7!7TYN9|%gdNS7Tn*Svd$^V2u;d87uyg=l#uVUC)4zfdyP!NO|!`@-=*008h6fp zsyz>l`6}wk|Ni~Uk05UEJ5xthP&s|8`GIN@rSu6l9%Fc8Fo$WQHzV~IdVXAGuU=N_ z`XwUbKr|6gIw+#}E1q<2ULK;Qr6nW4e|-4BfPz$ymFBb2worAl62g40#tIBYV0 zEfHTjfXIfIpo_-QYbi^hnCeoxg z0cGzH`cO$Zxo7&1N z06ZK>T{D_U{^zU?(E*!KnmiAC4i=h7|2(a9DeZr)Po`6oS%-Dc+IQ$Z=x=yu&bJ^bcXA05?VId5nxWFeD`<6?9q#fpP;M zAJRBY5i>J0CvhR{-rnB7{I0p#!LXPt5zmgkK6D`4!g2suL218xK#+k8VH_VH|AG07 z001AC`>qx;3QDQk^}IDgMKgCW&-IHx-ViJY1xJ%r&(Bv3t>oh?ek3sVwhaP=9VhVv z;Q%Di=!K&AkIrjGLdm7BjCh=_wW2(Xn77P9Zh};iGXq>Zt)GELT81(#jzS_C;mo-A z5~(IrBlJ%ryC==MEWSzsjY^Mfva9aifwV~&NAEPA0oU8k@FKKC1V-h<6Z}AJM!k-b zz_NyKW?<3 z!B~Qh#s&=*@JAR9WV!$<)&s;3qxlMPo9wE!!b#xZ-)SKYx7Lz6K4u8F_sXOUMPAN=X{yvToao-Se-SDd+da`(4c>Bm)1lJC}8a2i9 z!Swc)%o!kfLPJA&J;#70A$kcv?_Bi<=N{!eR#H!ScgcoPvvQ+sRm^nB(s1|qFaa`( zKUVQIAtCtc$_qGcehh&Pq?>O1X+q+K`Md=C>Z(1_C}L3aCyc?r$)95|<uC$8PuKxU5v>G$R z{Gj(leJSi9`$<^3Zy#~!K#L_?s^elKL0mca$x!!o@UCnM7S6cGV*>=|1D zwKty=M$*5L*Z#*_7w?qoLol9bva%`|uv{e&05hfK;K1z+!?r!h<1LHH!w|hR$0sna z$!KDPzFoi7`!gjU4tbCXPI{e?kkH=70I=>e%QLuhU+%=*vW%9Or!eggDAWg>A&6X# zA2{}B?QUPvfR^v9EwJ@I+0WIR&eeY-@o*trjIA=vYGA<(;oIxzfYn}A7JdmNQ-)D| zqW?F>J}pwkuN%-`V3D;e^gj!^Zt^n5U7v12OM{3&nPR>~fDl91A)Usq942?AVAd4+ zOb*$q2I6$TCBDBm%1m#nQrB+IPvl2#5n3;buYRNAUO}L`4vv2-l6BOB$^KgY0R{o8 z41m_(KCoZ{TA-RAQ}X`j3X&j)@3Ts(irz09jxvUi6`NlWw@g1&8U3;2_`OaR<-JR5 z7))Y!j%%5{CWBY3XLWzCIqePF!moX#3lk&2;45nHjQ?hN-TALN!H%AuzI|bVqR9hp zbC9RS!ox!dRDg5<%*yfgR?gadgDZCbApki;-3mJwiX2x%%pq5Bzi76DEwt3L4u-zl zs|M-Jw=5meag8Md9e;{7&4?>Av5?j2;pprCe>Hel;jwapYWK*&Ei zavK;I7ne=C?Mx*#K+gkZ=3RMm(I%WEcw}VJKqCUE-hNKoUI+@Xn1ruYb8~as%&w1C zI*-pL)Mm;Kpu)wF^<#Fgjau@zWE(C67kXs2+{)?~25S-p1rhVvU-GNYv|Hnj+&}g1 zpE1mV?J4f7L1V2ct9rPvpTBs)=jjYc3Cb6O$_j&GI<&E|F&oLj+3zypPTQl@AjwpAqn`jG2jC~m zXFC&u&a244HqgEE8w+56q@j_~UbB(Em|(FOtU*203ToIMR@C&j{Bik@W7>o9h9q2> z^6*ouikst!ON$eX#Pe~|t(JmW&9+7CFA^x;r{Q_folPG9AHEw%v|vCbo}=1Dn=5Wp zsr5aP1+P-W2?p~~$F-TPmoN|Dj3+U8`}e}J%>uBUlZ2V?ye*6necW|uG>)$hEZ&pp z^b%jbKJQ>CWVB?fl+FOS69aaEo>gtk><^>9W`R6t^H?=bkXTX79a&upu-vYDr zeP)ksJTxqa}Ly-sk4 z(O^(o8t4GhIF)~afSX!@^raTFe5(ik;m9@)$m_sV$KCtgvpP^4Bm_tKz`=7MBm>}G zB!;LaKi$1F+xV#mL(3AUOy&Pf&B}^pYPy7Qp6S;k;3o9pV)iq==^JBHBBWu$r&lik zUY7(5<@|Q^yNvVhB-8nA(;+MxAZbHCe=b?G|3W1}iGYBBhKX5rvQrF*FhGMgjrEsc zn?M|wC||2){zNyMvhrio(a~Ao*x>u+=l)NESJuji24e5jBdRYwyA+rD+b67Eima8@ z72-AmDjhL)pW!ij0X093_svHPx?7)aekBy~1NkTxHclokHj5aaGu+q+11F`RfEz(d30SbXQT`(70W@hzuZcIU3|L=rN`^VosIk=zMcoxj5~RsqSC=HHpUXx6 zlUy`WiTMGZ#)OFb?sI^{EWALC3Jpa*7uLE-{rQvAZD;)1lTHJk`YG^{RZuV=%ail4 z5~~a7C@U;#vMB>5D2>Mor{3=GCqTc82Wo3;_cC<=78I~d&dR-0h(UmK_a00LOwJsY zPE1tn1a@$!aP)Zkr;8V#u5r*4EtUB|MjfTXgl)~uiqvv?04rN< zIY8w1aJ_ZjSWVwZNKZ!xiVxAARZ~~TgFW2XW}Hn|;UX5FSOfBJ!WEXnjidAKaG0ii>l+>zI_jBGG9+(X(7WY?p#p-=3*N&kzW78}){Sq+g&jgPtt#I30Q=g~I~8 zW3Jl!XlG2@-)vy^*!AESHdFG9^vBLwVq`p-hbN|`~&j@1gG_%Ge6~7;M$#vwn-lvaf5nM zRG0j!PdJ+Rt@>vZ`R=*`oZ%N36%kiyHuR2C_cU2F=&rAh1`C`X85PI;SZxU>Ryp    PvbJh;SFMU0#Fb6*{%7EAgj@;`*~fC8cVw&z#iM2&lM}09{O$n3xFCh3!H=j?uWAtOJX_zPV}k zaCg017Qv8&4x}Jn=TkcHMcJFHtKwUAUl6OUR#uA1Qo3Hwm0s;cfw+Bu9 zJV{KoSxi-&yXQW1^z?e7FFxG&uLEvtl611JN}Pd?&Sas{eb)on{jr-nX=-YUhJhh% zXUCetZWM(pai{Ko?*u5p@1Y^c?TrPnTSU9kuw-#PmP`PrGaR>9nWN=Lpb4&L8 zD;q{QM4wC=4UJme*f_SPhWqN~rv5jq@_RC@MqDlY1HeDdcmfWD(|VjPQ_vX^kX>NA zNjfjOc~4A4eB(B=sS;7+1l@Yke;rKrSYI z09Wt7(0eo04fuB;I$xgB0e1t2zzML7eD+>mzq%&~G4|Zve*yCZKKKE4^T`)Ty|y&0 ze2VCH#tU?z4iuX2-XZ)(5@&HA)y(b!t?O{Qy1GssGBGisp`l6I*f3957=#0xRZ6dW z0g|CgjHw(PqBUDodfZly8YvD?l20f`!Uy;)!~;s7XTTvW{1UW#-{=b1uqjD*RaKlt z|4XAxasQWqD7V#FPwY~RBCZ!ffbgf<|MtRX%ehGxzK15@?_2&*tKdpppyYP2A7mML z5tIQFBf7K=e@g3?mU0l-X!5i_{nxZqwLZ+6ZE^z651_nD)Mx;l<=hcC$VI*Ig2?xQ zx;}L%AU-u|!;2=I#R7qVgh@$B?KT3C$11?}@ds1yxdHX#-RXR`Hsvz<`sv*s;^N|* zBv^phwzmZ%t!!=c^=)~v7fk^@mKrx;|Momr4eTOX| zp0LaYiuC!06F-QN+yRl_%GQ<@7vW2MzMSK=-kDM=J0&1pj6y=iF&Rqd1ByT!Hq7lH zbiocdf?{>F+)>QSHrvQ+&}V3Fu5D!Ev7CNJK}$j+CUJqj^X_*jK6Ob)dr1F>xwnq0 zvitr;HzXn5Gk#}` zd+xY@+&%WIz8m)5&$FJj)|{W1^GQbH>#tYkPtqPY$W3?1i4lLkHGuDRVvSEw{GPhC zA7#rZjuO!I)RyVnVlSrdyj1D!Pj9IaKLK2SKQs$WXTgd8Gb`-xXzf>Zw}vBmtR6rNWh zX|xB~-0T;jqNEibQ3@^uSW|&2X#0}8V(bBExNCqx&g@4nXA#&%c-Vh7LY@ikn8e)m z_O`ZR)x*5`&CQ7AWt08;S>xm5jOYrZYy05pRJO*e6r#42{{~nBc0#38Z$%x4g5c_E zPFPjhakT90#9&-R2Kw;*TU<7j{Ab%Dp!-=Z_os6?Z>MRz2RR3l*J}_w&G6)I3*CH_YXB3Z;(00l%A6xZ}o3l z4g+F?5zf9Kn`~S>H@&>r_mN$ll@wt*tTwc9gAD%O!-wd`%}+zYr2))Ku%QXiE{aIn zB?lkylX`<|4suP&$P~QJb3-6EczhC)S8O?M%5wC`L=AR`7smKk^d2`6QwqF9o)LTU zK2x~z?WeD4UcY|*V7HiMIrI0zf*)8q9j;Zv>NS9^9hxJkj%mI{At5K%S$JXgB3rgI zPdOhCKDoMxT0E=;Qv19f!=vrF%DgL;p5W#3C#LL?4)Yz? zk%0mk)S-9?5Nx~mC|MVf2Viq>H$Y;XWsXh=y7)g-y25Vzu^Dzfabn8}IJ#W_;UTZ& z^nvrtS~HrArv7pGn|IwgQ__2{3ZCm`5R zR~xf7jlCIZ=o*OFO3M?>K73HR_W8wKy$2i5*8VWwo{)L!+b?51xno60OqYn_DAv0t zVTa@KVRNxi*W%1GuP$Wo;8c6bK4kf~!#NJ2CY+Ke)6HlkiCdAuR*GbZD;^bM9*0#$ z_cIX5e|N`8);{p&%Ej;I4i&+~mhEl6_8PBdUhU!>S$vQd99#$?81I_jz3Dlmb6)}B z|0MS%Pp%Ku9A-q%15ZW_)YlgDr3IwJ6HcXGQ@1gEy%*q0)#$Y{tqO|q_6-M4N2{4N z7~tEu8=EZB)uo=T3G!Vy50P%N1_hm!O>H2wuCpMC&k*-}GG@u0^{3TyVK$_jE~&}I z4Ze84(}EZ6-RkP#M;^PAjPOJOyz^X%#($Mhi|_ggkK)s`oOZ@ ze&qFbE{lR9kdcmEW&j`mxXT}w4*tMb;D4#r~1?5Gnw;NdxHPOC+6`vlCe+Bo16L=qQ+zx>l9alhqO#Ubau@&ILmAj#@$m~S(#-{?E6{kRqm)`XbYG79 zCi7ht>m<2>Wl%Y^8+hZvU0E{%o8RLyXd~Nh@d8dxB!NW4<5Vh9lAQa*MM<;QD*MEG z9lxtI^|;rtUii(0XM6dL2Pz*OeWN~_e$~>9GyJh{AfkKp<@}{*!=vdreEgo)|BUO+ zy3Du}Vp68uZkEH!0=@PxBJ}!xcUCR;$A6DnneeEyZQarG%$~|chf7>)PWzp%xL1m^lJM!KWq8S)QGl}y_I}mg?x?t{9&+ki^VyLMczqNd+B%qn znL%}+Pdwv%!WndNw@K{#-9i{(>joMox~&7q$;F zbPPn8VPRocx$?FFd-a=D^1s!55ckp}72Ll$xw-1Q`%DQF7O#Ynd$UOZ*4z}X_L@BQ z8uqhD5(cm9N45ElR!ckj4Nj(G>$;OSTyH$gzVYlFliz)dz%kg)!OGTLz`pXzrko9# z+sapt)RE^!9M9N_WLpXq&5dP)r-XNQYndOL>(v%bp(T~pR8n6XY}@MOYcizWA1q(7 zug^{H?$evP@SoU{*z%OQAhT6CLYH2j&D$P*Tt0gwZQ7mCznh+ug8>SMqL|@}7lbl& zLk(lMZ(LJSR_>V)c=X6OFOSi*p`f4ujs9y}dTA+sdwaWdT@?UrUrI{Id0P|){61x7 z`d>$ufMpQN-ox-MNkTEB;LP|Vt(`W1J)@i}b6FJU<|AFADM@Udw!o6B^wbjgpZO=> zB3EOo;@RQ+wKXR{N{slFl&;}nqRp8`tiX1komM2_&)Msw zIRMd>m7N_Z%*@kGCo)(93N-;0icCpyQ@uxen6IX2#2A%jRvWGtq9=43_-GWyDc`Xi zFVUaL?ChrS3Tta?L+eq{(ZOld+1hgkL;Ub4or;R9N(hvjxmX$#73b&X`Us~BK7SrQ zEKI-o0uEX2fnt7|acGwDx8zeT%z(D7i+AtvC!QjV_FQLxT*VFv2{AIPtzJ-nK$1G< z`r7)o!&|SWr-;vs+oM*?7X^#voc5P9yiB{(sR7MZ;>b-o1HJXIjZAPG87EktN$YJm zctQ;OQg|ADAH}_r#CJ2Ja-*mbTKrSmJXejiumy1PE2ep zigy9#_xE98H&%EHUu4|%s++eP4RgO zuVMJxw-OEx>|x>`V?@99_QnxBgHJcByu)cVE$HsfJ8V`-r0VY8FlNjPEAG=LI(1&C zugl5Hi<;l%46M2{IKp!ZEZ60xP@i%>j7Y5o7!o~eY zM^$pOk3pF;pdM(xn8PtvS9QY~ z?OH_uwU+X^N-(N{Kdf|z1)jhr%7X$L3{X;feitvjA3*)@0=hw7J4lz5yvn%3v$N**LTIyrqC9S3JA zNQ*5=wjEOJy1~@|x1G;*oPcpzjt@5RRLNJCGAZT8V%1G<`Nqtt-|WCSoqlzAK+bC6 zD74i1J~a*?PfyjSG&eN` zv+6d_40O{nisggz+M~zL9#UFT5@~LRj~4vHDsaL=9B4X14aCeQd3(C92jM2G zuYra8ol^~~wu>HZCH`g-=n|DvTpTEsB`hT+^>>1~F!*O3XyV}q`1}`zh<_Eum+~iAf8sxU5C#^cnUX@jDc@#g;qKb0V&YO>{F|<;D?4jzM)MmtKtA1gpqMeEp@a~vvKk*hz)vQ+c(cO{ z`@`TMhBM^J!b8&BJpVyD8X`D27>I(aKl6Tm?dy}!)VvE!75JS&uJfs?;y?(>$lSPd z=MJJKNc984%_!yWf$kEU&IPRXDob->5z5%}j6&oAAgM-8J+S(NaRFlpDW5vH< z&qcbtzTN>fPgx!}S+tYZ#&%c6567V9IcuO8IU?K|MmzX1N$MsvlQmuyQ*rJX|POiDhLn zYrOI$`{2dgDc4c!n9kc&?n7pk4YDZy%Qa3XVUnrl%Wf|;ON&yCwGKH$+xhI$Td!x( zSf@TPcy>5;5DJ9H9$=5=`I5Yk|7?idkRP$;{xy9eyrHI%nvU+(%pNjKrashZ2s%4+ zH$4R^JD}&)6$CI}xozJXV+RsJxtPlqIM1y}j*X=aUswTFL(6CLiu|P0&5ZG$ zhpFRx0v9+Fmq)B$Ws0`8_I9xqQMXp|*0_$pawA&$QWd05qop^5LM3l+)Gf)=a|Q>Q zn2!JDTtuT_(zx`gS6d~opTXS8#l-S{z^0<5)sV&}AtCXyFvL3_ZQ$;qf81v~g)KPI zKAvn&sVo8rt@kX2u4-8Z1$ypdM>OAJ+TgK!iP~r7aqC0oMCTCh`q{k;OXo*48zFMp z1>#**`OA`to2N}V6g4273r-%`gEUvnK=Yv3pA3Bj=txjj=;xf z#{Em2h+ah?r!GwKH*el#V&)%%_WaEJrOV)oec68PS)&*m@O?m^VSN~TtX~N{Kh#PS z7dPyF^))z<$Wm;zst)AM-5<3x-(LB>mC3>DHQMdJ_;x!XQFUQsvox*OcE8K(TUB6^ zQ=^Ij?fc2BQBmEctHPUvxK|MCjyy_?%JPdKOSb5r{%zkN3F}N=UH!f}VTIZQ{@JV9 zD)|FLLko7irFq|`PSiGuwII()^*mYeHJGlkU1(SW74f0T134fhSrdDt>l|xC9GMg@ z)+YRa6fx)Tz^?Fhl0dWf0joJX}7?Zh?`v z4&~(+RmF?jq#qO8KmsTOU7W=bDt~)9zY{GUqXzflDCY8oxQHB3(6`9QVwLrSt;L84 zjasHv+UQf=2_PIn-rG9xQNs3UTOZmFeD2zD$NFf}9YF^5Wfilh&^;mL@>L_Oa6iRd z{}D4WSJ#uMF10)lxpTyZ$87qRTv43B^FgzQW-qc7ZbxnIrStPOqm7`}%rKpR7wDsN zwI`Q^QOAh1UmvaIn>k7L-Lx&^N9QCh1Xd#}X_`)_ek#3HhWL{wLGC+Z*7@rf4e|=( z3j&J5+oTK%B9X$oDkCRnXl8~9g&+a#b1jQKiS1-0`0sQt7!w-)msmsKHRf{k(+}5X zt_=-QbkP3mm(l$l5|9jZFLvKc7mdD#tk24-3)DoBnK#Y?+<)?|eP`a>vMM%avOVim zgFPX=w)Qp{;y}f??gZU4p5Ru2iUgTVhs*Kr_t4uKfk2K+Ouv+@Y?r2WW92V@lAn2_ z&~H27ixK9tf_IycFO;FJs}j8Y!#HtXSzS#HnH)gF42)JOW~vZ|f?=wRXB|?7pN&{= zu|9no3>hm!?97;pYk$KJzBdsMoBWPfp&V>BJ7yq1^5k%~d+2`tP94X!ugl7ii4AI) z!NIxj-NRS#N9KPJ>oi1(g5!rnfOOS{7z*h7o~~i2@WbA^;oF@NVFMZrBsYzCNj`L zLQUfBwL(ip#a4^l77qi7w+}=f%P!k<>Fa#09P3y4B%(f5iRgx({d=?$c?ZlFrx&hc zaFgyfuAqlGGuydPqo**9CJNM27*b~h{1o1SQ?B{f_2eg7&bbZs>$ghO0+Q2?%5p1B zya?)YiU0O#M0!FRFPI36Z=)>pizIT`(M`}6FTXDSRX3{ghPoX66`}qjVSlBXahFUt z%7VGtEWFB@D!7@-(?9nNURgL&JiI+hmMiWVr55afFfsKR*{G9=w-x3rFBU^zGp^-Q zY$Sfq$5{QH-ahhEOc9z^a9v-?W((nwhcr5AN-1*YARh{!uiB;`$?&Gk`1Y~rig+p# ze5a52c_>HfQ_6k4=&Hi)$x&76%dYFB$LEAx1_k0#r@xWMg+LDzH$ts}xO{h>ZEeek zTKrZtq9yDh->a%B_uwny)H>}lZ3P9`Yx#RSA8h$XzeK5x*-UKInOnXzIksboxV5KU z8ZRfvX;;X^fzHkEhAI&zPSZp4MV2?^i^^Y2jfB;BSgXQ2Yh#x7=Qf4dsp>;Jgt-E2 zgm1HXZ1%2s@2`~%*xGUEv$vmR5wDGvj!k#UKf@s=rQ6-xS=uHhM zEz$&*=WXb8f3qJX(~PO3C|%I&irvDFxNB#d$vvxSh4I-PyX*Vd^yGOJYJBdm-52jF zSvhTnb{NQY`?5A?x!E#Bg)f(w z?Yd^_IEMMR>+xClrZQ8P49^R&=VcZNnM*zi@K4n(N9WU)Eu2r7>u(C9r?iZ|q#ylv zvT(YQs7krN1-tRdxHC8GO?{l+)BIAUXnFnvf0=u_&t?4FTkgMk0k9LwI7zKUH{Y3! zIUJ90`92~YSkYn*h0~$&(jUkaKxrr*s-2OqVY?}j*ZC|e@-o_fd3wfknPrci+D15# z+92{G@7sU>UJD{$N{l%iDx0G8=Le1=R2rsNg0K)$l*7j9H(Q}0XZ_{z9;|jyCWxx-e1J|EF?5kpY>LpyN84X`s(T` z-1Wc@rL(hB`i?~Q5cAV(e=kbL=?JE@8STC14~2oEM4lodB5LKYu;I1m)D-elKVYiFKLTVBvRfNvuBfb>gUo5L30#~X;k^K8#v9$7ZhfSt!X&N#fdku> zj}Hpuol?L7K&}FEkvwB8?DIZSS(r%JQ6Y*9pJ=V1)5|L=q9SUXcQRszSC^N)dtS9e zE7nFU;6Ynnm7^da-e>M~>>*L<6Alhkn@Zxvr6p=kPE`&k7?a7#$;B{~8VxGQlu!^5 z`XQD^FIrewh$1PWJ9mt1k=cr}!Augj112B@gg4wfz!37&qt1t(Cws^mQPAAo2XjKDh8Fq!q~XD-}1^~+CbZ}Ov^(? z7B4_sO8D3GWM4o3HS>Ded=@N>4SN9p-cC+U!I*$$5C7)Po0~RBoOmZymn;yV(|Yx% zHnQHb9P(pwrBd9veGA&bp&?`(oSA{S0n8@F<~HzTKFAE1NYBH=17=t>?OSmPiKXXe zD1rtC^JPnKgM)YKnm>NL0zXzHeqY?V$V`Hzp{bd**TKo^`k0OF-qZ}ZjUs;Iwl*RrpIr?M2qS~Iy@me|7Ng5@-Z9OlM`NXB3Uru3d8Z&w5MUbte(>6 zNK79wOXx@4c09c0c)qp9#FCCylh=1pIo&ZJr*(<@fPujq5;JJd6Hg7aQ@}sk3Gkv( zVPFPaE+ilWDi12dePpwdcw1SSjK}c?A0OXfDL7q=<{DQRp0_1WWF6&z{nsp zuET;un%NY$4%e-@^FKt!=Cbu>8en%IJmE~TZeGE|A2@&hkA@gK^TyJACI3x%Zv5N&sMY#~Koc;9?RoAL2uJ1H$+5UjTnyCvC%KZDX``>SoO zs=u=y`cewwU7fCX!hP}L#WN|Xkf2!y*yun6jhTE;{cdQ*AG)wXrb%(cSXjDa+Cgzb z2t-0Vnbb3ekE;5=jsyg6H)8JZ?|=UG&Cnn^Xqmqo5=1JEILHY9GQiMk#2b`(eRp?K z=$+%dR#+Y1pHZT~7z^h72TWBYxivLvdBa2kDaz?SlubVSo{yopwyc_z|70~aQqxJK zs_(TW>f5H1?6kf{JThJPn=$?>;=5)tUNJ#ozedW=XAS}e$B&-yub-13BEcL9zQ2-A zVNp>m!i<1<%jE(~@vX6Px2j(w!p+oA${(g+Cs(E-`rcD@pJFwmvU)z=w9s9DthNe) zq7@0Tpm#3Mv_4+XJ-RB#&FSk1{o?TuB48K#O`Z%^!OZx#iMHPw(E>~k_|_j%`J*E) z4y)-PGM>1@K$`5K;Njt6gcw(|+`~)a>|T#hz!;Q9b}TV}Gh$|;t)Ev5+M|z_yh4Pw z(##_cMAin5Pn)Ht<_wy+ea6aTA=ynXXQ73Cz)Se(pq=90!cT)J(N@_90nvA!W>sQw z4~?pa%5C#X*$s!*A^Y2D#gA+7e;mModyRy4Qqk7K3}oZx#zcJX>pMJtqiVerdMmY)?sXkd4-CxJb*+VY3_uZ+Fz#p51@RgM6=Qe>BAGuG1tm zIrEMvV7%>JT2Hlns;)z0Ehq4sfNb?6-UJ0L61E{-4#1e!&{xGsWz8C0cX=NdN7qPO z38iaORhE7_#qUQ4T-Qsx7qu4F8s5CQ24IbnheuN?>fdfIE@iV~&rL%^^O>mKDO@zFmM_dc4M#n%w2rJF(fN@$p+RQol2bHS@GJRTe@8p3nb8*Zp|> zo1*8b=jwDdl32*vpzbT~)a)xvu+w2ZJM}tK?e8K1#D4aK1i|{tzEPcx+NJWr#J>HA z!yg>kpFof7>>0-l)_%!4Nb8`b+eOk-Avg48&5{Gt?J-F5eAwWn)L>D_g$-h zrK>bwDRIcCs=Zmn(#8Baf5b3QZ6KC3bY_OhZtBjnH%F#K4DL7tJ)og z3+KO|f1r5zQ_mDft6rL|{*+S6E{Qb;NB?;j=kf;HBOHEQcPf?io{na|+kP95ZF{Go znwq4iDA0Rw2EL)E#ZrC$gPYd8mf169D=WiZa_DL3$~v*(h`=yyGswD4M%LNij|aUj z{J`6WV$=AJotYWi>uiDIWiYeXQn0nH!`Rpuy`~;N6B8E5fI86{U|5V(Ho?Zh`5N)| z?OSBx0c`_zGqx0DUirU%cNEdSR%*6|r!#z(Y|;FC@~Y>-%=4uDam4c|^TJ$!@Flhz zhr)^zS?I|TrvSK@%tON zbT2E+zs&uIv=NRUKDpD_leLUSX)V^^dyvjMJi4kanSqsDvhi6+c15U#&&P1h-g0!b zEw+y>ZP6V34_?%?2-{2(aSYMUwu;=_8-ME=jxFY9wjYtcUpQ~uM${3i_ z?WkyCHJ;we(zN;QJHkF5fCf5GZT8^7OmidHJ@;j?BI?Y$-b5 zUZ3-x4@_q+MeeaQnTFuHhGsAx+(Tfvz@{7&x5%&d!W?V2V=$L2czlrmD!up9?5A5l z*NThNYAePpKeLzI>t%O*vt=Ld_M52W<>pZ@k6_ncdFjSy!L9%~ErBVkg}YjHW+$uHHoE;PTKYSO?0s&G(~&~L&s{{04iVWqsdZYUWSu88UVNv{|m zzbtdxr8PC0N4AjI+w1DVX>?SU?C$NMe5Xr;1k;@br@4QxgS`%+iuN9ag??9K=<1pD zqVV@dQWoB<>-&_Hrp&eXA5E$WemAFh&;d)<^-j*J{k5fV-l*Br)0?oqewqh)ySmyv z0TRWxPOqUJsI#2eyP;!cFlVg0uPcyzapkv> zwfJ@xw!SUW63n(_yE$QVdY961LndzJEOP8>ysPx1{;ANt`G~#7qWuPhU?WMX?qSAZ z!+R_g1W#HqU(k&k^C6b#1l3wX^{q=^_}#->ndZYM`d#KQt7v+M7;@`Cx-KxbzogH=u2-r66wQym_lwI5@A4I}}Xv_`?RY4gXu_*rBHgEMo4JHQ`6^bN<8B4N=e3uGH+xtSfZD_#Hw=UV@B^Y9?np=V4H?5og#QdlP68U`EF&;V?)GaVnf^V(23B} z9F!c~c}L5~QpU0=0^*1xe1k1_-@(CRJg)BwR_INH?jdi={_RBVqSqIIU@p07YLUZTZ#MiXSdy8bv_ony<9xql(F^z|I zG^Z4HtW6Z{4}X94cz1WV<`bA5ugYWiQa&*DcA9ZP2cg<5ZQcdZ(~!IEV!alQFIJ>? zZiROhWoT#!G_f|odvi8iB`$l5-hJg-8igc3e*8dqx3vian(TE82XV#4<>{Ni!1EM4 z2t{b&H(4N$0-AQmjiL#JLMWO?=Sai`!-`N4O9j|+Zd|(px?}@+wb}!aYNcIOyw}w8 zl^7e27Zbl-w-d|ztLxQS6KFtE9?GqYcNI*5(1}hTI8|`Y9{%2{vsqhT7d6g4+vkB) zlYxar+}{3AS(nvcDOW;L@=IBl`u%^}VNbb{#8sFq!oT;-cU-H?-?@SVx~7K9q;ir~ z0_YShe05MA@x{C|GN?MbyG718uLKDDWT&`d0wDJ+ethc&i2A!OTIuo#8`>|M#@{4s zh>3{4pC$#7_yz}|i^$6MmNAx{efjnc>QV$jaRmVzGJC&Aa+!Ec32+P|-8W}j-5sc= z?=dI9+Eu)~ICbWJ$*wcjh0LdAvk707-&Rmi02F$|DF~Lc;9pd)2F4zXstGiNrlux9 z(K9-8(DD0!{MabZpoa~vF{7Pj00f2~cZI%w<< zNU*>>l_t*sPrXM8MoU1LN_N9bMmzL0G-;ncUBe7O1zGT)fohOHKo}?y)aWlXmN(%S z4TF~45~T|`_A0%Mj6@xA5EBh4hj1`{Fvt^X@V2tk9fv}CFl!|*kzcyoAtHO`3SV}f ztJexxTTeH09xkmOKN!CwLUacv8(arK=|F?OnXq^>v~t5qt>Ol(WW|>%Fxn@lr|;gs zM=wbf4;#Fplo`4kr&U+q1k4E^fh1|hTsnTe z<9Zw4K}Z;Uu?QnLNb1dW|K+2E%&!edcL-0ON`8P!{=P8IhU)?U4R#uEKFC;zl>oH@Y_{nSzAVKrM#vE{K#F|dJ63Z9 zS;A%}CmF-D2TZ`=5rlPU3MTI+_LYd{kjjk&1=K$AV`Qyu3yH2A`~ zaLyS70u}}}56@lb6p>2U4R;$fy3S{NL-&-=rRxqjg}@PTD_s13a18J+w2?5Z!)ENz z1|C_)oik!~zX<*=?n4fP>^BqGC_o|4tU2qMn^5`ie>2IHIdlPbNmuD(?yFRLu)MkX z=JZq(DW-2uKLvQ1*3dwT^!TvtxY1_x<0B0)qV`^TAZRHdT+G=UY!}{)(Y*O=@JM69J=-C^oJ^4NHfT$L(^6)lDb?LLV}=w z2jF>rk|f38^!)jAA+Lqm&z~_sM5nQwvfzMi_VlVWK%1*VK+K82C&y&&RL%|oy#;wQkvG|KdiVD2or%R|&y=GCYqBQ_NXy!X`xtEvBQGwZlFTYyWl5WK$Pq0|kC9Ey zArnQawnTykOet>4{b1Qi8(L{d(S>)8ndU~MdBo3tmb;H1g6HaFv#<%`GG zppM_?=|a#(OcQ}MIu7afN#kFkfG_8-d!eMLh~>|pKhKzr-~!o^$lt82sCd97RDKKW z5M?ABhpTM19`uJCoLS|=J zS-W@EyXf{JqaNH!>O9%TQIBBmE%hcxM;O0+d8{R3;q0tNQtoEHm}uQ}-|g{yt=$qb zq``x)pQ!DTn=Fz=X#m@hPe@>pO3?o{lo4XWX5iZB*=lKp6&o3e@M|sk*@26XHfu0z z#aNX(^FNr9@qhGkYa1{g8LYW^dBSjRHSPayP#f}W7Rw1CDvHbKh2{NMvBH1nh1|po zS$(XG|8~x&s-r0V*O>x2ZK!aNlHtDxk?ns>5pY#Ag4+LLYUG*Vi;*J5sDBTJ`TvOY z$oJqcxgp&q@L(Vq-*ANIjT<-gUcXj6kv9Ue<)82=DkX&pvTqGEf61UlZUON4j0==9 zTq}ei{1DOrJYr&64~8<3&{|jQ+g9u|8XL(V5P>2m1HClFDF5^Q?x6YpAF!mEqdZ#; zghBeqZw%VJ`~TXI6{u5;>*S1#hnPZm{x;}fTax#s)N^&c1MF3e+aU`n4myYR4C!VG zlmV z;^M0uCC2}r6SP+U6;bhPOQ$yA^pQhig5q57cBB5{aG&^nKdRPD%6aJvA{tSCL{x7j{pZM&>G>(3LG#&eR$^X&X| zi~6uz3b=4EWZeV(A1QDQ@FHh~2I3;?eGr2U2o`B7`R|~ba#Ma01l3!2?}`AeTqAP5 zzI0~=ohqGna_luBb@#`2DJeMlBbfC+dOPUw2RtH>e5|M_&3zV@H^6c7gK{y4b3gO{ zLp#yG>GA9nSdoF3M^f|oWsIcP(9w~thhfjLcXXVGf+wNWp%wc#f1U@X>Rd3%CZBQ` z?J>VOUKN$^+8|5vc5o)RJdVrUlr4pdWN&}=8CQm**?M60DRLMW@eag=t0m=;YKL%ZNVekU} zjl5kJTrHp4rw@gbhq-spG-57KI1c#s{UUp6F{co31v&_NP$)v_tz zFY$6BZoy_Vx$_i%tW>MjtquKt4g}0n7!@ z0+;I_1}GFln%`(U-Je1MzHBOgIPkX6FmeI9x`BdHxUN?6&*O8=(p?TfqWGkMI|aJH z(d63Bi>0PcU{wZ}yv`S8KO3ALULF;vg);*$aAf)b$#03sjwKRzj*9M3S5c=NnHE%7 zm#7d|)O3iFBe$A&KCyo{9GW4>OO#b=RkgJ1?61Ro8+1`uR|jE0trQLMmha#eNI?k1 zQeUcshQ=KNLP8V-BrQnm@6$t|?2ROuz~$ZADum>kpT6C-iCs+e)~E<@UwH$@L(~vx(d()Q{!--eya-dAq>%Y)GS++?$XyG)?4GXTo(of6)!`o8oJ{J-X#a`?WoLAFf$BLbeI(a z9%u0Eisf1*OKLG!FG|f8kV>-K{4WWZH-B%fLbbaJvlFsKNVFkggodC(l9Itn4z!?i z2)}$u8$r$&0_HE%yMH@b3=Akt9H&fe@_ zGi%(RzT@tC%#(}Vm%7iEeoXDYxHtm4(t{j3t;U_%vWAoEdSh`TGc33@ z*_;y68_wxA8OAq)ZE+=uHB(&C=}Ul5Bv>HF{CWnS5NFd*s8)J<-bj-MMhj9vprYEn z4^6B<;Q_xKQn!Q{bkF=TktQ(|+-9C{G6%yX1nyGtcN|DDWQQ?HNnw@dV<(oJH(t#% zv9REPHVW7t%)CO0-HHD{u=)I#pcQv`s}3pjrl-SggU?x^k!W&qG7$0zZ@8H{xV_j- z_IQ$IpKx+6K(X>YYmo*DGMJh|)*?5mK`DSK`T!K2{^{v3u&Y4Q@6Yo9yol)kyok$9 zWpHmtpj`|=ZG+DQPR$#{3b;?1UkWl*X&{YT2{J;-^opcjY${dW=TaGAI<)o8V26Qg z`zRe!$$N3yU<_wKCB}lZrIq38O8`=0R4Qg-bO4vZXagy@VD6u$-XXumjZHRt_nmFI zX4vZ}5t5=pN@U+v=@$i#`Ln=6HQap3k7O;!D%s@4i+zVyVn!9=&NvH+V4I}s0JWFe z>$(zyXvJX1CF{1~BS>T41xXfu20)7j;j2*P?k;;3!xMmY1K{@o6DoMi{~n+a(m?2g?H=!Dkw? z2v&SphpkYt+pg>p>3Vm`$gtIg&B3q>J)}{rW}BEd>Y?a?n}`{6C zkbD4JOCQceH`w9GgQ&4v!h!7zutw${yu;?70S_Do$RZ=i{bAn44{@yIGxvLJ0`on= z=GRJDNI^5B3)Wj?81veWQ+v+}VzJ9nh{sRWM zzrWubLMoyKlvo5JTQ<23^g1};ZRCCD-${@s*fAsbz5%HU#%UBh{K6-o0q?jJ{70`E zF!2YEu8d4r0edNIg5n<)^43?^)_R2)w!{wC+bu=d z%M_}71bH5!Fp?Osp8+q&_Ii0=@9nWy<&t9|Up{^PDrGtgZpWR6m%9%=Q!f?g?Yyk! z8$*L1vXw4fGzLwB#Q#76oDOh77I~fewz~CLKVKwnk6^k&8V1po_i7l~*PE%B?-~``Ag&11)NlHdQ@iibi$X%X+N<94*r3jPe z@K=zVL)1g0wgj3ZWBzIgcne%{H|?MivUIEj@O!X>>oB!-=>TL|W6Or4ysM2&Rr;p;S1MAdsOFC^Po&CR793MaqVlZsiPqnbQ$p$Cb3+aJ192(DRa8iTnP?=RMcQx;AN)!}?}So!Bjrfs zu~zJsAXjz^4h8=WSZU_AOpJ`E2-5+3w$iA$I1XcGIw#=V%WON$m>P8+Djy(7%jeL`_zPXZ=1ENP&;@9{1m8Xh)m&D>et za+?O12|$DM-Y?Y@y?F%%9Z>v)f`AP4ub3PZg{~&%rkRu;tk`;WZ|FfIuzaXGn z4?~A8hG>I1oktDzMccEfBZoJziQ^+~9HA?11(zLKmLW#=_sgM%)1{1l0dkz6-M< z?eauI(5nENgg{*i)iuI@CGx5m(HdjhQ+d=!XMOVr;=I}#;l}fRZ0~Pd2BhluWOO-o zIvKymKc4c#C&V9^_g}^K5M?6!&wF14F;z|zs8d@yXCGW0ebV@b0xBtGesR8J+5JGn z`-0yIMHlj<5ckbs<}AgPLp1EabM>}LfaT&*;WL*%eKn5>sxV+-FQXV#PoY5i{P!1* zH>24re-#E_){Kpy9w|%Q=H9;QIXvPcaCU^qBR?hh?d49|myXtajN0-RH_dG9dBck- zpG3r{>D!+p(=;`cxXq%%L*_@NW2GJ&ZWR5ss!_FF4sX8@ubs9O(X(#9t9H@cMn|+- z76ZwV(Fs7i8+KlBmIp(l1e-t+{(v^Yr<-rHGZ>Jp3*hryj=HnyQPNfCSK4iB{ujn{rm=*R}DwGHFe5p z@Sc^}*N(IDCdyMBUtYkXZ(JsHR~` z3C?LU=#-J0lUL3QcUPwMmff$uqwF@c6DaWEeDeyTqwq@IOt*EG*m}>A_RYxMw^-&( zXFE*dr2VK@yf8NT@B>6fF6}VrJzbuFmj?g1)1L$_1ZaAYguqe<7C11|Wie9FRZvB% zrN@GwE-H!u2`BVeTL4k;JOQF3^HeYW2qw8F!U^+jT7&tkv5&P}@+lPYa}SdQk0nME z!tHs-VpcpTrU~SCj-4I0p2yTzie4<}EHo&q>N>=vXMLM<#MROaRY}>sJmj*!w4>ja z{#mK3^oA$tG)^U73~FK#X>e0q2r+v)hK~}Ejh&!GvU%w~5hify3q72(H=Y&vs3(E&l?sQ=jNa$#|Fm!ab$_1IRUNbxKrcIpK{^!HA5DyHn?jyMxaGpc@ z4eZ_W{>fj5Ayy{dRUx%r#J~KQND_G>gX{^Ogqk}7H_jUVEAHzkI1X6}j>r^^6HXTd zx&gGOGaV2Oz)*Oeq6&HoQ2M9bxnkuIK^5fW`Z9WN{?D~;gC2+VR$2dpB@_EUVaaSM zDkumPXdYd78S7WZPlPOs0RcVZynt<5Us*|f&98L}S@;c9ehTM~GPF>Js%$}jK=Ax< z*6}^BkQUGi1hR@i`||W8MA`(UXtmsfnbY=9^c2DyTxC#M3e=|m(?>8%Fo13{`4T_= z;Tv27Pt}~At(xlB7bl?RUvn1UZVA8bJk0%gK4hp#s(7>z?k~Ym)gRQcJbn0<)wDBRl8Q zF^@yz-xm#ywwE*0srgIgdc-IS+i-rlv>QT)P=?0^MH_8o;{9ajJ!Al!$e`T0LZh$` zQxiJ2HzSGNZ*3iM(@>4OM8gb?y>SzJ77y#<;z-mT-qXWOgx)nSOtqpQT7jYprH#uQ z8=b)T>y@ejO+r1-CWIFW5|MODP${M_Wo2dXn%{L_Z;)g_Z}|y5OF_AU+ze!i!J`!0 z`aWfC?G2~Dn$_9m#t$#~>BHouW7X_Ol~vhR=tkKwQ32v}p^>yBwV78HHF9?_Vzckr zy_{RmM74iqk@PGNp&p)D-bq7$ZAH%svmroD**hjv)UuD|N$q#5$b6QJK3cVb!IcL< zEPaC}ex>4ENe+h6-=}XJBuAcHm^A4&&3?LjXQ2OyD}P>&qL-I@)7DmXKEvMb()n=; zmu(w2u(~{(Vj;a@Zkx4B1#X4;`9s^=CHqKPvCxi?ZELn6!ezs#XzuW|&|H)XKS21N zgfmz(jrsDQ(PTi>@%K?OHO=KEf9qgDiC5CKdwQOipI?4J#_z5Mc>DU+bu}r-=@%{{ z)I#{-zO=9X)a-WUB?te^w-bw7Zw%J~ z0W;B5U|sWr^Ry$K8XnHvTk6wfpDD#-ZHt@)MI*K!Osx4Vp8PiEa~evZkCZxvrk8ZO`}@>>m@bnpMP9?dm5Ux?V) zsbcY*D*uW{h z(Wl|f&d)dR;$)7Ei{lo~Gg^z6gv!W~u2;9-Q0slj9j$#`|6_G?)3JiNw}LN4IbY=| zf3bRb*9ThK`j?xE^zLin8Jt# zu{#^CzQ$4yhnv}_$RXA+Q-|*rMba6@*B)f1r{8mF)IswTf!k0Lt7W86(mO*7n%Rqw4p3tZkG(^YkItB1CJAK~6KnqU$fg;dTS z6!gqZ>r#dO;JvI|{)?TWRYPT}u^k4BCK28xO=n)Y4XE(~3F#+PpxKZv+Ixu~I8 zDeWd7T1xdwSu}&ib8i@RyC0+C(__t@^>SZECMGhkvs-gjer0X#g{tcN z5gdzavakXG0*y97pph8A?B&@~JB8-og;kRfmT$jF2UXwvJHU1j!!^6nQGNU$^FX=B zetGJ-3iY)o92;OeA!M_6O=rbhzuB_V*SDjm z`cI_z@(>J~o0@nCN0F*D^uW=^rb zw6#s&)*B;j%o{F_Y}Zcz>a1HJ@maev`i1l?Ki8pI3u|n=<42oO`$#@s@0^TY7^=G%W(m`;bd1%ie^0d2= z_zbP2xcd2uecL%7h>NKYjN~{tFq5Wf;gB)!Lc|DG#`gy;%>6OE6r3=BKs{@Ac6NXz zy3}n*jy!S6H$(an2ZKxUP)MTv$cQIrBK$i?3x4>5?RaFZ5VmX^ z8AO3=o#z{NZZFJZXWMIUx?WlvMhDn7&o`$imHBN9e^ct%KD=RBB)=xkQJt+6Fz#t( zQ8!>t-f5ptA9eCL=SP>OEnV5B!>+7-$!BsjaAUL0GAJ*=mRi^sJhdjM0r@G{Gpf&^ zP!dYWwtQb%6q}Tk1V&BFoD}Lt5;(b+F5`5S=!Q@rMBT4CD8$Eys7UXrxEjOd2MWHt z^z=U=e!aI6J5$iUkkD67qIsVx!G{5%81QR>yb>R>9#0{Hw#$rc1|$|hJ{6Pc6q_Kg zu;I!LUE^cJTE-6IZ6WpZ{XgDrsf_ghWj#vo+-_g+ho*X>?eHPA?B1k=$pk~8WXp*e zh?O-*lABvXE^WD6x0I@vRpKMgP}^BH4P*mM6|y=#Npwe2z%{Fl)#R@Ox;vv{G~exD zz_VV2{Qvb_il`_g4+llgBwJbF6)bG>`OOU4D*b_NZcYw)u#ZZ;g#XaNT=1p+YmoBpA_rsM=dwVlHDuO&k5SC8hnvxMPo2p548GY*g#RCBOW zhHV?0RBe*F8NV?W8`2fa^7?GZ+%NJP_m;zjWrU^4y7Z zoABET8iU&xLW+n=+tGtt@`Dfjg_kRcyu6;Jf?GdBED{Fn55U2J51L+sywoSb+Byu8 zNxMB%$JhDRzJ{o;ek=~SwzOP692LB!|H~vXr#_3nvZvD4wrGdI#fp%q4apPFAMwfi zK@!1zKs4&Y#yePSt1>OV3nhG$#Ua|ZmbSb_-%LtKxE>t56}@hSCNiI*vcFA$uqy1z zw2_7Z?IEIfXHCgk8N?KwlzBZf`b>$U8@zZlXnS+SX8C+W)?{7CuT4gG6|HiT(5J2v zrOjvn|Ce8+{kj5BC|E^amCX#O7Q2PIpw1RHHL zw-x5WXBS^-Mnm+(y!SQIaQx{L&G=N7*MG#nrhEJdwV%~=ugn?bSAxH@7*!p5LLg0O zuiXr^mvw8^zPEJ87==P55CG0Xo=~(PX~dn;9AYRm2xTC1c)4tGJ-*65Wc4JO zVYOLg?QidNg!MjMN-@UOlPB1*?P`5Rk$-s~~tmKPXhoKkwK znt_kxPwgr%w~QKJzPfy#j=#+GjEk5Qw9$<_O#dZ1KC!d%oX?q)v>0f-`mmO}U`jZL z%^f|(G+m|jPr8PBdg%oPKWF3>M7A;nHAD2Gv$i`fWDnbHzd+2a)fZ4R>U8a^){vj# z%WCcNg(RU?W9U`~_;UroyC|&o+Ygr5t5s_5LJ8i|sG#8bPkj zTvi(xuU0&5!#Aa>>}vGQ++QJsMf`MXv0I+sZ40~jt-kX?G(RU1myISj`sS!28%Zf% zB!$qLA#>sCPW&fH7UQbr)i08+XP+oBpis)$<`BIZ?V@107qmTcfvW{Th8vojS59JF zpa|33vX@X|KpRTf^uiuhW=}qdv~WsnA1W&I!~Qa3_pUy%njAf0+n?t)witt4Ra%CN zI0K9o=|c~@C`AoQ;ume{Lq<~rN*XkCi`VluQF6XbliqIIgAa-g8!D|~2onoROAUdi z?uGLm3uR3emRh6(#uL$|7}0w{kQN=(aow<+yn=eD%78B?Sl?MtMSf>W>;OtaEu6zS zD9bdY65AdjonY+R4=Ke$H1%CL4Re)Vn!J)38)8YZ?VjB1wmGT5fjjTg*B428SHBFm zZI0o(i8uh2{!7`x>&-UPutIcv&HU7ndjNb;>O(WHf%1l6a@zq4elu6qMJa;F#4Y}I zdCqf!x=)<`BXqfsTw0cU&4yZTpdE6g(-xzRPm!|<(s^j$K@S-lD&(hamWb7Ox0oB? z$_xxJ&OskK2yYnOVRqp*9j(1E+Iq32V-72nbr zi?1&sN}75SzOY)of|q6K6K&zmGB+BZpNru8esNu!rBTuPkjJ$*2HZ8 z{@*_m=$1E6H|~@SBS&UcG5!7u)zbZ%&3Q+i%IylvDX|@O42ctq8SoSJqnFR3)EPpS zVZK5^+eIgFR+is?5E^j>4jJSX8lmz({BG&P`oSAFEA;jDggOWvd7N3b3%O67l+66~ za3%8{$Olw$zmwAMuTjd4VDX2t;_&#`zL~OMXAEXS#v1bdfH!JjIP?wU>T2ZfUL=@T zTWbw?&87+cdyxhdP$oIJjGG=_POKxyYEnkQR15ZdN`uo!Q_mu!% z>Nt|lJ5Nm96F4gH;IvoLpd8kf1Vig5%RvFo0sLk!yau z0v1ql9XJPq8tyeKls8Pd#Xn%B6sFN<(Hl_U1n&w?d{3e@+R(xR2Z&5gi5&cyK+WDV z)Q!UcrsfqDwQpF$&!FViwP02@zw6+LK(Z%_B;=2yxSS~J!!0h}#>|3H z59jkrD(Zog*GMMgz2HAA5QN|vH9Bu(zIoHdBn1x>V7zQ-_R8uikT_a^Bvb;6*`)8< zU-oZW0Pq1Yvfz2@?)U%e-K#>&3cIk&pfFxszhk`DQL69Fn}^!)XAq_CQF=9?###Zm zVB?^#9;N_UJG;7KOZ6yVuy8V)lUJ6PW&g^9Ph9BifwlEJifXN^C9{1C0X5y11=8Ac z*hGzG3tfwv#SrTTZfMb0fX8F+`>zH)Zor-7WNtGz5n|Q1wf!1luh|8Uv_M%iy3o2N zAMCyQ4S7YyLP&czSv5kRix`DIqng>$*->Zy0&^Ji;R#!G#vgiWY7gyw3?(>w`bb+? zh6@LbstM0fT;-dX&P)(870BnWQ(Gdlu3gl-pzWX>Hv&+AUMz;qt zOE-j*nM+$HB)X3=zIdJ+=6+s!2rZKOXGUd9+$TRmjTTfOP8?l=S_8|#XifuWkmhTJ z%$M6g!n`?P2(4hD!+5aCaXol0(I9;0Ob;k@xqP#YGQ5@+7kLPGk4Qpp-X#Oj6GN|<&u4yjCcerE= zoZhp@vOvS6q5y_b%Qd5G*lam12dUF#M8#5}M%?|0wy^}YUPz+#2&FFywCaZigw_Rs#j1Cv2S zOe`+*mTNf-tSO)6b9KS!x#K7Sv*+qpz_adXXt)oh{&FBUDWp67W5_{aan@bNGT&~* zGGQOw-WmTIKsYgtPR8#iZvlD}Kq~`C&f*lvMh!r(U=1~g{JJ(y)o-H7-Q+e}`(1+1;##aVe;2hF-2Wvq#z~Y2O zT1rx4Y+9SLX4g~PMr-#-0#hk_MVXSJQl}>0+H{QGwg1mv8deFK_<5=zxqu`DwJ>&}3fs^SonveYLzV z*0u_FuhP`rt4_jL6ql4pYIKGora+?m;l7^1^dKu-kAd%%Ve5$iqn+eulNW3hG723n z`msnWf?pT$P3e0tg+>O>^bnd{II1&`&d(W{^woX}QZj0fbBx8j2`k2law{L;iC_B} z>eH~i^>mo8v%9@bUK>NM6{Gc|DU-becW;l)b9OA8s0j#gk5BSVz+Tf;I)-0xneQH? z_VOIH#&5Yt}0jremNK$r$MR+uwPsa)wOxSnI zQdOmD@sos$AR88@`NONP{+@TkTKK!8FQf?&9I<7!%)f52Y_u|+qaf*(Y>bZy2+7ZD z-6=;E4Z?AtyLQBhnSCb*psPe3EC9!W` zB3B=!rqj%t+s`DPsE7;l^0%%#f}QP`WaHq_j0VY4m*oLegWB&g`c-ip_MjovmZ9%d zmeJ~73I7W{25SaWfvriaQjM(7q&+_4eA80QIr&WwLOufUj3QN8h{yjge*60jiUfyP zyymB^q?JuNXxWM{r+1VFftwA+Awe-dCT0>M1%+|au@IKUx_8&NVKUSsAOU8~cJN_r za&i@__pBIcL_DoM{znzl?t5Ta1>~Yns-~?BmSM0^J!3tl;tY@)w?I^+d8&hH7lW6a z;*rN-vrhg8kYLMd4+<4^FueNuFa7AEMR$4pa9W#}-r8NlbgxO-Nj-`49+szr(H5qB zrl&xK2#Ld#MeUGCH?YOM0Nq;xF{SWaEszkPgq~p;%Hnp?&{tC@*%NtB_kbZ^%Tz+(p<>7mcXHbeY2MXeVY_!5s4F0XtgUOQPT2k@N zS@0dE%HJB&O!}P&`*R&{Yov$uhGOgJ~Mo6THvpfdr+#e)M7FbOFOs zP(|e|O7k(73p}T+s+b6*Iz|n!Wzu~1oQ zb^>-?e^go-&Mk_$_IQ9b9Ed=ff&QoqDowIIzQTI&Vei1et*7o2Yn!}%&Tek0o`D5G zqo(|eSBwUE&&p@7cC$5e6B8s&^325q*JNqNd*k%vKFOk#78#gtuVu~w;9XAuasP}N zGz84@lgyb=@oH?rufTri-B6jhk$DJWN-3KMh4=LAtd<`n#R4NpEtm1eFc?SKK!rKO z90XSJL?Yp}qq$lWvs4SpiFgC|f3SsuKy`eYSTZC3CJfn2BCY(Y|NDfYv7Vmo5YCp9 z8-$6h2N+r_foH^z&Vq0Z#v>2-KnxXB)mVtk%`8N;)#X%I-kAkIZ^%J4L$KwHEV(2n z#}mGl4CXo*m^|e3GBQ(8GSXNZOf8DyQXt}3@);r6@fa+$jqwYlJXquE$=1|I5Yn?TYhOG-bWWzV59 zPm&2V<%^yw%(S+>rTP;PIikUM&T)TA^O(NCp#&_uo`J!O*I})Sgl0>^r{VGQ-OSnR zZ^~DIU$*$Fok8;fM-$wVNaIgXSe|RALKOs1ki7^+CJw%J!kc+WH6r2GH7Pp*iwhme0dxFYYLw&AikB z`(MD1FL%MD^qwD9cp4Gm1WDDyt<^+!-9xe?pBx&GD}Zfh{Z4J>J$}@F@l^+Af+SUU zeuPv681EQVnwtG>hlaiRC|y=BHgQd!C1`^;Jf}uLj~6-LDrJ zeNP8So0dd|=}a%S?KF=r?+sBFTN8FLk9m~k040-lnG4?rwem&rL%*?=N9GOJaW?2d z;>>rJC#RJ-X7-#e$I)7%BSOAS_B~tsXdJ?DwIrWdE^P0%zwXUZrZ6W31PLjgJ!_rY z8*vWFVFI>ofPw3h zLBVz??apRFw(JU7iE`buSIahKX+tbXVu0RedKzF*#ys z%x2-Z2Rhc2wgjIlVv4w?yH-k|e~yJ?ZFfjrR*D=tC8W^fnRV)Cu7fslOb57#az56I zc~SoO#=O#I2_{foy>$(C-2WQ;)QWPjV(Csk(*P!Xq>)o`%s92kd3x})I3|ZpRyFNj z0h*)hlXi5;rQDAd^sZH>)=u`OVx5Ym?>HuHUbrJ$_6Nmh9jDS(Efe1N{SC_%E5|wI zvS9}T7=uclgr5{HFj#RN44F$PIHhb~?!$q(eX3WZ#@1rKsedS!&T(hDJWF%4oza2U zZq|5oYyaZPLzx-{eUYtq8lU>y!wjew@Sf~`UloR=9*T&iGF4Mtx_qd$vKJhmn(@>~ zhHVB_7Lz2iiGHpTwkw-rP9dXi+Ps6g^cT{@^*PhM#O;@n+6n@+;gnYnQlG^~!syN~ zD|3A=%%#0_I8XQItQzU~M0@P^H*$AlAycVmuvP<;?Ru{C5~qHwxOg^=7B^f~Y*jK4 z&5Ax1D|qYac~{b_wIkV@T}j&1)*aqv9Hpn*DQ@xQY8*$x3_g%qFP^4(SA4&%-MX6e z6h`fOtggSL>%H>fDuFVZcd5~w3t>-Sw#5@ZXLrKqyz^GZvOK(K^Ph1a@oV0Hy1rPG zSU*~m3vRd=?)udXnT5X*x-O@M%XnErd_7&!DuMk0g|8+5xsVpQP-?@>P#OCwIYW)ZDDGNs2_vY|@#BUFr zsIK@IU%q>GCEpl`yM>5uwK0%mz!pvkgImlEP-9 z5ooPr*BGBZnV$2laDdI~PDqaH^Yvn#lxxLxReA*?7t;n}oI>ADkcnBVy1h78;^OaB z1n5@=k)NGET0OElARE?7WM*uNg|>wX%Rj&S>k&9drM_ zCofeU1jp;@2FH_jfyTKD-iwQEc>@;R%QMQud~B&FAh9CyGF1n^a7W_FNp2aOyo6oWEgi|C_^!fYTPY90Ho~$j{e+ zDS@lU{@c5UcTt{z!~TB#Pra*^9obAz&rl;)lIXSU#5KLBe%_fQDfw1J*=6P$V=yAXn`XFy9= z-dSI)o?Eg-z|))@H2^%rgI$r!O^rS&7Ge)&KJxg=@|SlzwY9V+p%?)-7gr~wTIjNh zQ*m|0ug;GYVP_~B(RUQn819B5P>-v{L2#TvQFgqXT9ezy%gwD1$wJH-&UFKFjiqm3 z;rJCgeOe8QoAhn0%yb*G#MSS<>1ww)Zlxj1~)X`pL))#${yfD0E~}ohzJRF z0Pu!Cf7!s_zXF&iK@HHYA^3RzxFTT-AT~f)KT0qI`7K&X7)c|Kc7i6#`^T3*0b6g9 zV8-0poB-(#pmLY*Dl5Y+0C=ZhPv!wCCu&k?sG@SuD49H3l8PTly+u;fph!cMx{)jo z1vqB>1bPH*-7FDtAD@bJlg(-D`}fJRK5GL&&Jn5riVI#l@{S$Gt62RvEl^-tp%2L{ zpR*pw0#_AJtN|Jqq-S}rUMT}a314*s*b2rsghfaJij8>*M)s|AO~937MNN2iJZ+yK zT$V6^t_xoLivS8Pm@u;DC!pdhlCBk33rH|f0ifx^`ugGkfrh3=o^Ku=wkBf{``Qxh z>y?*)<<91|Gn2rCXR`!kp{Fw#3cunYV`i$g99{6x%b zlI1FwIV5_|lhJJUhC(HXdP1yk z6qCQkP-#AALetb|vGRQF1rvgDL?Y1`P*TYkAh7{Fz%;G(x(h($`rbZCTokScwv10f z%0VRhP!>Rog%42z@_SYNLotX)q1|c z@Kak`YTtUE=^+x4NJ;8+Z0kwVRUpx6?nmd`U0izLK~-DNN6;SnKyCGnIbRYEv|!|j zvw=SlALzzc3DEtqo5G{Ae-I0fQ{3e$NTyK(S&Q~jSH7hr$H&L_B=<7E?|?k(WBo*+ zhO9vRl=MkZb)*YEHJXt%ZvwXv$xSOm0AtDUmfBS#`SHukNOQ|vLBqKZ9RUu-UQ$3{ zAfD?s0jXyIdbe+Fx0AyG*Y;0&)&n(RLV=j>vO>02_CwM@OzlVrPt@#;yRiB1!1ip3 z`0PKxHdL)?;4LpH(L-iH#W*wmx{zQ|ABGogGdqMV7=$<>C+`2y*V7|AjnB(V?9;;a zZ%T7KiO&chN_LHQJn$H5NSR|l@S#Cnn(k*{WE6|co&~h|xe>9|fs>2hU+7ME>nf#q zZo?*nh9Vf&u)Y8ZI;jEFsIHd`w9|BNp}OD^4d274r~;r&VPkOu$`s-tyCDM$=(wZi z-bn29q8N)%PjrvLRRZWMeJ54XHxV^NCB(%c>kep}%TN*F3Dhl*9v87iHrW3Xpk2z( zfMRcfCkwl#{duEP7Np=Bm=Vj+Y>-G_L6nZLT|y9%%B!+nKq2OlNH$0^9Q-3_c=I9H z`$J=ZyoxjvM)sd$d*biCe8~g;R8AGM;3sCHlPXyIroqU;Bn%r_*%|W#C3grBi%!q_AOjIyNU;X zmYyWA*c<UATRn)Y^yN>`p7tu!dGv_{hk}izyRJ>mVUx^|cXV?fUZN)n_+fk!zOMy=vU6 z{sH%kx#jcW&`O&-0v#!?L$=Bt1<*?!G7EUYMMb(GrO@_k0cdO7j17JTbq1md7?ht3 zf#jxb;@3A0(sfWM*3%*J*i;D|Cmep1!9wkf4+u7KCi$oAOcU?)?dP<2N{y zM&pilbUjd}gc}$S2QYyXMO$)G3n3jhEX>~K~ppsg|m;I)v*@S(kcFgkg7T!&2`V6*6qcaJK>k32@SmjB>YP$fD_5TT9-DW5+>xao07368*5 z;PC^(LHX$uOd9dTkB^UYm6M%s-RgXN^mM@}81SRkf_VgjLA%1*OKcG$*G#g6ylUJ$ zJf&^g4b>q_a^qz$Djtl?mlqxe_=_owXT%=}-<1M5++o0u?A8ZJ4!nIz$zA0-?&kS5 zz#iHLeL+5s1x<4GY3SXJiW3N1KQlR*z+T_N>H=^TfJaC9>?6^;l?jX%2m<5>YIMLf zkad{p^ksZ$y}%x_78wCbM_zYKa1ap|E+GcZSd6@BdyxrlXG#gH3lY$5G|MyEhWfhg2@p9`>pAb)_q(t*Ab)>6EF`t-g5$cAPp?O~C=6+0CaX>`p@b#3rSmivc6Hjv?9gDZZ_(?ILNxT@2%*(K(n-P7m}#Ls8%!(zcu%t8Ln z)+IQ|*ZlIZ19X%UK^V0Af9bxxz0cWtI00ZP=NRCx4AO77pF9&RF@X=W(tp7s07z_X zC18|~+SMh6*=r}(IRJ_6|d*o7PCsHgc?6Ysyb1&gnBgQuzuXwkIMOY@QU_IJ*D$QL9i^0F?hTWHlu=lm6d@tm?t^P=5hM?Vu}JRm|{A zP#=H$L@*(fZtd_uzNl+KHo`;=?4=XP$1|$P@r1ktMq#@Ae|&dGa)=S7e9Ge=&+GA( z}閪vf}am6BG_3G?*;r>c*P0--opP8F$-#dKoM-r5?8Uk4;&Gp z&fjtw@AznA$ZyvN#(<2JR0bUKFwwOUYZwuLg00m8spWUw4_b86xqw_%LsjQW;pH2D F{VyZUSnmJ; literal 0 HcmV?d00001 From a9ecd2d03e3ba6361ed18a50213c397d803f2b30 Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Wed, 31 Jul 2019 15:28:01 -0700 Subject: [PATCH 129/138] added known issues --- windows/deployment/windows-autopilot/known-issues.md | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/windows/deployment/windows-autopilot/known-issues.md b/windows/deployment/windows-autopilot/known-issues.md index 3e55879db7..dd22f468e5 100644 --- a/windows/deployment/windows-autopilot/known-issues.md +++ b/windows/deployment/windows-autopilot/known-issues.md @@ -9,6 +9,7 @@ ms.mktglfcycl: deploy ms.localizationpriority: medium ms.sitesec: library ms.pagetype: deploy +ms.audience: itpro author: greg-lindsay ms.author: greglin ms.collection: M365-modern-desktop @@ -20,10 +21,15 @@ ms.topic: article **Applies to** -- Windows 10 +- Windows 10

    WC>BF@ex(_L{C*$z)EQms?KDZ6p7sP1@8J!X`MHZ7t1xXbn+zl#S?EG14^T~ z59hr%O>E{@Cd1A83Atw((iWH7^V;@V8FJ4kbl54)-M}iR2dllIM$Ouo!UmUO3_QT!>Bm}rzWVYnTH>8$Zl?9!5yO+744|gBiT~#vcmWl=`*JerA;Yk$24Ey)< z~wumvy2DbuK`qHhbt@-GuUXa z{uMKd+gX;LtvI?Nx+bBiRg9x79Kpcra>CiR@5&Gf^FLI&hcF`FIom@|~)t=*| ze!-czF*_DKOKgT0dHV&1FumQW?bzA}AD8E>NHyUT`}!Bi(_Pj=3_SEx2yJ`py9QD+J;qF8AdwUIPEG7gF;x8`CL{;!Xsa&dK6SSygCQ!o3Fpil|=j zo&pRH6$qNy+X>WEC@a;{4^}^ryyOVke)IGSR^*E~PflgWx&Tjm!5>bF-bR6aG?I zsykd#kXP95m)*-~ZT9qY`h2gCmhI=vYe5uw)+{9k%dX=9OGz%-g2(gtQF}n-N?0E4 z*((1;ofC5t2yOe`G5y2?ESt;Pz8|$fhWm;7W5eZ-hRf;8Q#tBG(gUCk+P%H9ZN_N!$wrBde2ncV1pTXx1m*V%AqiX?FGH-J>Vlx)Bk>ebb zz8cdBaeHt)esspx(qU8BTW+eY@$5uih**C4W+@$PZ`Ak$zO~o-OKpjd5w1n5T=xu_N;8molOd^f0xy!&D>6 zeKJn1{)a$(@%mLX93&5>t+=MAiRRvxY7!TkzUxc;8?-QF>G0l8P%~E*EGv)O>ss+85yAn=Fod6suQXq;zj8|N%@UPaNB2|-$>D`HXg984HPe&_| zHTGTp?33Hbwr>R53)ILJn;^;E#-SjfHMxt*GA}$C=DK;-W#IxsxD>w;&`atq<0dOL z$8N9n$&sobgRQtEo_(u?6ZJ%H_}cuCv~-rsxj()-&Ja4genG)K>iQP0i4oUCqoBz9*XUk$7_;*ABuneWwpEq&D$Hlzk&bzFj_;F;K##aOz(D3 z?-W%>{ROa57!afNd{v*=ihORg57y6L!7%@}{M-Me5dPchMS(D}_u1M}$tHm(-)6Vy zhedhCebMHh-4XTPngQHKrLS8fn2!{C&3mKlk-}v)6Ld~2r(QIx-*p@L9UyFTWw`*7V@Ug#uOEdH0nuNilRO0h zt(bZn!X#QO)xt8u(k?|bog$07p0@ya62`vzppwY5!17-Q=mJp8eii~D&G`TFHU7Gv zf;5Z87{VSR{w#|{AEvPg8`4O>asFHH^b11Xf4j@w;e`J20G=W>C~q~aC-l~q`Pxe; zO_~};N^ANyi-A_nqor}0f!lAujDQ0$j7DG3g}lc|MKntnZu%;Q1jNc|;vT%bQ9ZTgDI#)7P8Rm#=ScnFkwD(1WJ zFJP!fZyu_7*^=rQp`j!4<;H|7*j5VUh4>KAF=ZT` z)rxpp%giAt*($$8+!NVYMQJxK*;*n*z7hc}g_6~^1L1-l@KmrrmXEFvc$YH+#JDF8 zfGL|VKJ8Nk_)!$RRlVLn)NzEEr)!yK@E+(^nUE-xxV&AzdRSUZwXXYxv8d)F->>M8 z>07H|i(L;#1^D8Q&x7v2WEx~KlD<@?n=cf3ciaH-=(Kk`81lXsJ-p zI5u9E%8Iq5cZ192y*h_;8aqj*F7LOun$TPyK}D8g?sWFCw_`MhX_a2uMPIx1Ee^KbXNfs0sL|<+PApO(oIIK|a0NQ>=xY_IRz?oeEc0#8QUPAgRh! zw4xbjEJIlG-e2U&`IhIW68e3t3-B}Q#wg*f%K^g5;dvsSGbdLdo zSWCo3l(alFhPaPbeX1TmfNjS6vjliI@4)%+=o&fsN8a8X;*8eMJqbNq zdAP6jL4Y5S?I>q~81fANh3iK{$rY+&R(mK<-Zof{Pw=g*V}*R>>A>-2nB5a zMH6%hv>)a~{PDv*`8EJ1GXPz==NY2M{2`d7a|z5P9?R($XF0;}7=IHr|HdHxrzf3@@2v&XW@ZUhJ~r@Z|`geiWJLema;)_@@!0I&8I8iPauq}fK9gGM@c*?F~$#g7lEk`1UjctL%zwkpYw7;OobLes2Nl)(JDBVrb23VafkN;9)UGHk@E;QJ|836neD8ips42R9c|%bBfa zL|4f*Z*jHXEVXXSS}EamEghV#2g11;=}2%1ZyEl+BrOEQ?Jp{SPG9?eYyFBMy~F|? z=#b5=fzTZ2Slzt{p;R`3!akr|F6{qvkg19J52#f0k7xuag7QM?>wRc-Ny&gISghl!oc6*26m zSh2353N0SV34g%_ExO#jZP3)&(&w7^qo&kuoIM!V=b02tiB#(*sjITWUm> z1^z%4$NP`2Vs^lEOKRTz<4>{r_UFB3nqRc;0`*CV(5$9AEuN#bGVE5<=+|Jp}65hs{Hm%)P6l;C5DkK|*PO6*K7*a4aqCdjfX zBd(yu!;j@-iW(adBMuk!Wl{QqoDJR{0ouuYRNa?l2^mKPG}(W<+ldOKJ%rqBvDy62 z)tB>Wq4gd^Ti*)mNE=IGYv^_wZlbcWnK6wV0zsvCK$bV6BX(T0I60!q*421Emq~SK z5`jjv59Pi5kw}YaTN5#cY_0*b37XA8p7-MFq_Sk7qBeO!-CAAGj2VMWMz2C}B)Kx{{~ zu%D0>&lqT>q@FG{9PAkN*=yH+sI*Wysq8uJ`}!_EF#Juk3N2`tu+Bsr-`xas@%il$ zL7I@Ko@Sp+?m0ZX92P`SS0yy$qX(%9OSIk?`X(beN~#eV>6cM=lVx;6qY*t^C?7y2 zPAo)0GG({F(EfUN4pV=jR%w;^rwg(AXK2Rp+>~)PL-3^0t=A1x*M2=Uljx~yTC4g8!SUqmKds? z>dC+MeP=SbJnzfIaTZ88^#Hc%A1AR5OkM~xu{kWFo;#9LFZPafVEpG61s7`1ReR~S zzK|aaS2%9#cVO+hb+os}PwwH#oVTAbf^W?uO_|79ESZV^i}wS{AlDe@bk>L8M4yHo zm2%~cA$_H$ujgSjO1ZJXh%FvMw_rTd2S#uIyv42Z&*xYWScz<|b zh!+EbTqj0T7HOns8qm7o1XTT`6|`F=CuZaW`y-^w-xoNmFMFFeOy$v2atM^)l$q}E zV&Wft{z*+CC>JG@Ugnq?omGj`S8veEN~vQe6^kPmB|xq$tZ=xo(Dro~5o=VZCvVG& z;IYArsU0BJHX74KOSc(Nq(1n3vkI&L8Y3c~_UFr3O{vsYTDV^&l1KvS9es3NNS$jVmzF-p3WVI9m76KwA`1p|4jcOB*FWFv&2QAN- zI=^6GeS28Ol*W)h-$(vmYxL~*x(DY0{#V@18u&1o+%X{$2 z^Ku)E+>p#dPzoc2kX1+-E@$nCTfVzy1c0Secj-(*n0yD5D4ulntgDSfG!Nr6_x~>c ze+W%}-#LqOQriq}G0)6Qv(QegALlp1guh`OM0Sa`JtAd97)3-bqnBs!Q%^0AT zjYZRDaklCb(!1ym2}~cO%2=RDp+3FH@SA5Wfb3UHfQ-4T9wR1xD=^(;MCP}0q0#Iw zI>tYJTC5f?Aeu(V$q2^;%v74?A;fyDb(B!@2c-Ht@{2;W$LkyIUt$Lnll4g@6b8sz zT=1lJmh%tbVxbrS{Hf76+R{$-r*?5ag~6|2P0l)Zf|KD-{nB!dFo_I)RC}Gb@#wPI zrN*)!6RDXtR_dhi9IYS>jjz9IkQ_^QwulG*%#8}$PEo);yq%Ibk}JZh}GOcc3S!v!FAJ1rJ|MU=+Tfj4&nMg}ji z{Fbb2DAp{sqfa5BbeO}(Jyy3e)Nw{42wGKg*{(<~N*7RR{Zfa48hWmF3H30JoD>h0 z0z6kTZ9ECNiNyfyofGQKBUY~Kz{eQwR3Hb})6pX7IW1#3#xqR6KgBISNl^`9ph$rm zK{{h9+f!Cj>(w3pP)aj_kfzc zr^xn)f!&o=;hH?n9LK+(qd?t3c7UQf^=4^=hf`&T+1R{Orn7B=EeigHOGEIHveLwB%O)uR?two*70 zsm7ky)+7Y5RI=Q3tiI-3St|5bi7i6J(ggYWt(nw`YHsPGf+BITk)kOwh}QMu8yF=L zIL_A%(_rth0mxzftJ@Op$$4J8!w6Cnz{N4$@K~|>e#_77-P2TyQtRwIrqvXS{*Amk zDJ%Dn2Mls~p1DmeFF8d%3QMX9BGHsA0&`RNr}aY4yzj-Y&Che@sT-T=l(TSSa-{Ri zZ8k$f#)upYz1Z%haM4KnURN!BE@@1M9+TO~My*@*?AsL@uP6n1X>nL|-~8{wQVm`Rd)C6B-{LEk$4EE2Dk z7~1)!B)?2!xvDs&PIFeaBB~-WWU%Um%f5HKHFR)M$NEbM21K{+_+~>cl8W=oy+7;S z=-8M>8zm`TbZ*%c*jEjg~nykau0UD|xg6nc$~xR)bP2uv=*r z2T%{nOW~)@$JK0Xn@DM-J=a%av&gD?qUAfuR^(0`Rp)x| zc{{? zgO!<}Uyr)=9?(4)RJ#)(2EKlCy>gH#Cl~c}b3jm<6KgI?w4PCEEK2{MIDB)&WW;Xq z(RRy=q&cB#SYGvcUo+w^Jp`Mk8l z0aeht$Y#`36EKbdr0yG(a%`W?SwD9l3K4Z8D_nj@_gQKy%-{2sdDb$DaxVm3Shlk6 z82@pK^pjxDcTcWC8JA6(A77IK!D<;qSL4n;)3lV%*58kLtnQ(~zZKxSk!sSMx0kqL z=NgyZ%|qT0E|BQr`-OA6xVDGz*M|Hn-knpwW5tdvf3M)+>7&-<7HQD2Bj&!!VPan} zS@qm?V-b+p*B?uSWSFBM z#O-&evky!Gn_E>Il?BR=(n8B(XWCQioTpC)Vjs+Tt~oMKA+2RTN{#8J`6YhihUy1A zH~4;vyH8U6f!>wZc4?j4A)ZIF<+)6FT*!ZU=`D+)OT6QLM9|t%Qu`F_-5(b6~x%+bcXMzvryOK50Yd= zq&>8}j|~y8y4sgn8fJeF`sO}Qc&ND(d9sr5tcGCp#w1@Xi?{8=^;ZqHr{8qQGJR=hmx8l00N^$I}s#dfips6~-_V2oNW}CN+#Y)6<=+Tl@)F;R| zB12g>0DJc+S8^NnX$O1ON|SLsCtlZ77B6pZJeCCix_q~QB4)fyQZC+=d`Ey5UBwRS znNAZD85^H{(0br1747lC(kxdslFVWWL%a9`rp(D%&B~P~?kR+ux}hq68-t9`Uc`%8 z=p3(@ela7st%@wv=!^UNpBobVDoz1D7=V>AQMagcb(gI*C-Fax1onGNJN7bms z1=yX%5yh|2TYSUU{pDwis8iHL@~Mr(t}6McZd|JjQDl@t=bDs}WBiPpCot9Y9>f1u zC}hJ}#f;JBM$uPu2-ggp`x%y!aQ=3NC|A-Zkh@wToV3(xx@*ybdVCW^hDm9cKpN1H z3zLl}g}1P&wTA5*oV#~tnaCnpKx6_{1!splK-)ogC(ID#@S@G{3bRc^?wbbMbGTGKn zFzhunk&7F!syr!zu}U1SDw=y~H{PjEFkhGByHYx)krMYRcH7|b1ndCov;SRi8)(k{ z{E`RNbI_WPMX_lg{JrFnezEuqp&733V)#-BB4o9(uO%PJWZ;`liL2O?Ld!3m8#MK@ zG4L2g^eCLMqvY}z&9e$zDC*H%R69!;SzA>ZB9~B}N$cBd{+(d5*I!lH2xoISNGC=D z^AAY&g9?KKeyV!tIrh7Y7K`N!*z`toHwT6Hh)K4!9iB8&J>Kfkp2Z^fLS(4v`SB{Z zJQ;;-TN!&oMGURHu-Jn)99-*0hNrkgF&)S;q*=_ifwYBmwPfleQUAbIG*I8b0arRi z{@?**HjkD@^5K5+PIQ%2?x{Bxa)(%)Tts=md*q4n!p6*f8r7dC0aTSjSmZL$a_U@R zU<#nt<`t{?2B)M}6m6&!ngPh~HXX3(0n8dTG4B&sZ%}`R{c9sCnM0=!lAn4Pqy^h& z7{Qd2JyZLWZy&}jFvKG(Xyt;sbCpY)9ol7C+6~@4rv`ZJUAh`)64&MqC?G2Cdo9_G zayfs4OPddjinR?ky)-s-QR8!7?eUaVVcSw6Rc4%8^gmDO7~*kI6Ov$bH;6=Aht@T{ z8YyvjO998H!i3vuW!bzr`?;g?do3c>r}l3@;4JdmpHRWjfCyh%Y&t$WG7xp;POJR* zY|v}IXZiHH&;4tT_~F)faU+e1<;|s(iKuU7Y0yw zU2b&jG}!jCqC9aD4BnzBI0ktk6|a?efq3j8$YBa0d?2$D)5Gb~RqdJlDTe=g<0mM~ zvhK@XO6rr+)Rj~*gTT@r!7C|*w=L!gu#xZ-)E$i(e$T@_;6uZN3+M9950dnR z#u*8!*|MC@%`bL$ccLfElcx9~)dDfqqL8&@GsacgI|dHLSx&QhS=>>Nqe4l!d>SNl z#=(=C?q6g5ph$6Ot`gCe6v*h)eks_P&5yuz6wX~+y*nAPnvSZ^ z`8BVnkAtMuSN}o_`K(~Fm9~OQkn#lM1eNI&CZThJ%7)rZNedrn!5{aDdhgRSV0p&tb4@QC#du45uuBCm#=#=%DNP}%FK^4q?q zy!i&1gw#!*cFfyKycklUKVSpl!5{=^ot;r}NWK_%I87=`-Z9Alak{e{Lh>=X0;w!7 z8y9iUKd;+pk|kCms$gY?cJsPt%&L1Jj+BP;YW{Ax7lQXELF8|6?O}n@pKdXM7ZeyuL#EASOx{k@rFNEEwczbf*F-w zPqZHW^Mgq}Iny~`OMgTPE)5m&1PeSasYWxpx?I|^l4`RQ<9Rq4A?eoga_q9(AYSQdu*KfAuQA3w>B5|N%HTrRpKm7Jnk$YgtLRqgPz&sy z^28J4Q3*7b^h;v|tZC(QIY@CcPd~r2c=ER1Dm(#VO!vLM+*KSr82bT*tiGcruRD$S z!O$09y(d{Ts04hXhnYy`U)$QQUUI(jfbk0`u3Scbl$ur18Ypc-m1zwXU69)L-8?8%aEMzcmNFJQ7TT4OG7$ENIP-8`Jc#2}=kb zv~c@GqYj^TzCLZtZ9El7S=Y47!j*%FeePXNrN~080sd6G?Czi#I4Fnhsm>no*s4~euq=8zmTt(hPrU1F>0`84+)AB1otJ8 zwM(^h6DY$M6`G$WJaJ~E?9wfZJZ?SQusB$R&NEOD2Ost9*}?Np@&j>vwFb&kEeITT z=uf4Ds9D)6EnQ`KCa)IS%&lC}C))H%m4H*`v|2B{QjrfLf!HxiEU|I|oqjiECr%6; zb4yFKp1{{AK9v3qvWY^2AO!;9WX?3HXGe#zt3RiaW!o8-837?Bf%RiO4 zg(tv{OG`K$Ug$JXNahCD3bON7K*rN!MWE|zIS`9U(Hf_2s<~}r*oj6^=PuG3FgK_P zC7&$eFKm{wLSwzP@$Rt|b!T!++}KFbe`w3^LzPYDHaz7V3StEu-j)x7Eh_tcBI+{l zAA9pjR4o7etbOOESVT5@x!__<&%ILpFH1L+91b_6%~L!dK9pXgF${K?8O>@$UVCBb zy1O2J?H1GyH$R6}P!$h7*grVw^%madl?(}=S;~nj#XvzSRO%t`&tGP6AEH{VZ%hvzS=vfX zmAIWCGW&`PYgfh@`Rfy)M=g|h$QBFaOG*Sr+ zQyiao%nCM1<@Cg{99_Ic|F^#ip}!g-^v5qxUf|ztOcHe0isf;^?!=k#%}ls=x=op` zhEOh(=o01~Go(0P%B3X=k`i{<)X{G@x<-H)4*GU#Jb8;)JXv|i0MU#KLSGdd&(Kq< zuujM6g-LAG%|ckz!>SU5tcL?jsw4Mc^T~7WqIyyYNJkIPZS9cjAmHwH$KT7 zwStsmttD?&sPCNnO?#ZHN?sxn=N|RFc%>K^K$0f&a|1~!p_}39zpp8)&vn2ng-(A+ z%E?ygQLT>_?dtY57Q@aO7O$qI4EA&qOEcLN7Jg;{@&O1XDJ8ST7M|WyeHP%(yMojh zCl<9f-pj)+CDjY!SKu=UT-_lXCil5w$9m1t!&{rR=(RbkNbqpwO~gX0tGC9%^RVpX z(nxDSCZZ~qtKjV6d`AWN)N+ z(bgv6IGT9J&Uy~5wfJ1@oC!saXufV9Ud(whEO&~zN54&F|sA1c?ECF@#d62 zHFvY67Yj67QPJ=pgpK#HsBN0PTOY5IL1hu&4Bh|Y?JdKy?AmZaT1vVR>FyGdPU-IM zE*}H|kp}7R?i572ky2W^Bn0VDx`kPf`o7<{XJ*eaGsm&FKjpdaweGd9b*(GUQ%&V* zkqZRgPBjdRm6OTMf$>0c9v8*+gU0OUI}!xNend6NHA!hZ|D%@`?+RSxA_q|BI91lU z(^3C3yLoL(9{z^&ks!E(xV>8c+5^l2Qis1YXX(HLOW7a5$4-|-rH>TEc@5T*Xd4$I zu3O5X@+GDEY`$_)0tq3;A*|?}GipQ2yB-NKkzAjV>x(WQIx;+ZNVQIKWaSs9Re!z2 z9Wg+C_a17zgR1RpEl+M!T_@P=?#3&?Yr8;=9@>v3qJqnKrip5v^dv~pL;MwN53N7R zd}diD4SHmmD_PQWCXp@`b^Wsq0uH$@BA%ir8v}$k<$cOf8ggJ!)z|fApu9$|lMAhT z4ChZHWpNGjujqq7p_Vd7^C>MckRL7Mf6ps`{n0|pZ(MfF;9JslI{OdC%BdJQ*0cW_ zs{d~f`Tst3^8aNdKx|K9M9urmOe1Q_h8EN`u3Tw;1l5R8!RN2n5BXti8sa=%REoNJ zF#CQ5;1T(pRT#f8s2U>CoNDB^yR%biJV)&)U4i~Msf2&r5STTO?R2o&YFTFZjkSv7J@$Kztyga7 zE9WWs8DBft#x}IuT!hd>=nzrc=U8tfBss55vB?N#Y$}#K`&Y=C`=msxO8vx-a@ow( zUe`W153FiOKuj(A(LQy%JjZnWj8t(JvE|B@@B$`S^|91oXFVD_I{T!lA7^n16g#TH z<7`%1aPk&NLVJMShL$OHcV}*M>Z39Td$a)6AjRgr5b8o%`O;v@3HFjWJULrVyPALJr+J2vO3<~Nj{8WXpxQ{ zp@{=1X?04y4aN#iDR3`S!=?6Rm0U&KC9$Y_&Cc7&*AU(|Dn022%T@qXU@b~L zI<5D|X&Z5`%|*Ot->&HX9hn0`NACv)bBpWumwlb@h(P-4qw!^o#ht9xN=O15+**$5 zn*IIGttrQEI~-t%3A){zwJjNqM=Dj5AaZ9Tm=9Tp(#0@_HISiW;9dDR9=(- z1z{|5Lyfw)Em)HYwUl=IIpk^&gVB04E0`JG)A0r3ptkVaRRl=|gC070EJ-_=LfRxj zPJ~W^ihwjk>nThSkUbzKWruy$g?!K|~K5nl@5-=tT|B z0Asy)zQHUZXxKthBeuc$#34S`_|y3{xU>EGllKlYra8i9T(0`v>TrJXn}$ zQ!J5{uPY_jZoj(V$KC;(LaahR%Ww-ctG3vT8jhiof zl;`X{%l)S5_wl6&?E6bocqC5A!7^X7p~h#nmd|~pS4~}WRrdz~vk9puN!%By25%SPQb@^nLioBP~5rMO!bOus#`j0~->C2FP*ff+3oWFvb5xX|&&Za4F^ z3t*_(3_H$caFVv<$EHw`k4c&?EV$*~d+?h&s{HyY+#je}KFULklY*_xQkfZ*+A{0U zJ&*>MQCCCVnLK$#o=-%CRfbBxor{>^*m%Eh%5joXeNf{_7JrQ_Qv$fm(72A>d; zK(YFwbLQ0+tCReG6DH@&ix60ZLw2frHi92I=_;37$<+ZNrXKsRJ`l&><9-blbTmax zA1tPm3?45W1-%Mpr4Hygb`fbQ>Fijc=*q(p&xr>mnf4iA@&!kO$wVYK7g2a9dF|FC zsDwLN;&c^NWl9J4W(r`$Qj4*!3dLcA;SwKFCkK)t;xXl+5M3D%g;QD^eClQ)k+EQb zH8a8D<<4ZAA$nqHq2g_7`*bJXFjc%)bQD1{Ywoy0UUt_i0zH5ZZ$>87C{gfU>lfC> z88Q-1jLgt;DI#1>YJRleo?Z970EY@M;f$KT@e6>vcS{qVrzoi0FtyQ$orPg4_|^+wBgFy`c+7py z(%DO}&@E#^!;bv~DXlB(gcgV<0U+W(K~4wgieq#luBC`?G2TD3KOKszz7(=o@CWV6 z7nJv@FUWUu>Mk2u?`L`T7t8#6zoXEXmgOYgo?Eeq@W$mhnq^K)p&!B9J5$)6o=A!A z?=aye$&LQC?$~GpZeW$M+UfQ_B_&V`z*>_%4dTAq~$M{(7ROy~0 zM5v?e)YeN({vqpoOgzEGxy&NW==#z=La_9PHDzKKVd>&ZaubMQ%n6w2txit_R}pwm znCXb*HRF8keM8NP{83}2CoJ)J(r5<*TL4BvtX%zoEa+GkD!5o@?a z!H*J5zf^+qRK<+o>t+pG>j&8%v|r&JOX^id`{|`er{JpF$e4O~<_l8%#OE9%0)b_) z9Y2OxeKxPAb6p{hS7^`f+XF{_8u+Lm%3JhqUaYxlA^pPfCt}8<5a7b=Mvip_H4)cR zkqI#TCkqPX1(4>x_Cd0tD7*_+KAc8o0A1AQ@_gqU4Sr4QbHWNFobi_Qz3!BT&zKH+ z$o6A`;1B$sggt2YK9f^8l3fMQPUIl#vsm~Nk>|w0h;WZ(qF5O8ggnqn-T7Y%oqss;n1xEpD%`EAm$By9R!!6o{t zNYYnl<@z)nWL?)=ETuOP824qC9?>OyIZ{tQ4NqK|Bx5SCX_iZKiV&+W3Fdo{4YWv^ zv3e>6#V(!cuq&y0p&o0uuj3KV8jXF2g zk;u9BCV_l$pPi}D%|Z*AeSFh|K@B-tQ^efJ`UOX$y^jEP?lK33lUw8^P2eYKmpf-W zC)|~WD|q?`VYBUYPtx2!@i+RQG zNU-6FF3W;yGrd@mD_ZN2DY6-KFOOEZ~u*uV8$Y?0D>X43fWQp$7K2u za^DI~4EaJhRGz?_Q+iOzf{Q%3)@WogEhVbNn-G6D@+=-4gwU@76iHgxU@y?KOJV!p zarKj{hk8$JN7Y?TtN0y@E^UMoC1Ji7P<=e+T~y{6S(ZMyu9Z;04Pm~w-6E8{t?EJ+ z@cH>|oE;mRbJh8@l^U)a>vlI!*88p^q1XrehHo509OTiRD(7TjUSZ!)?YQGFdf0`) zzNj!y$U7$=(--VVTRz1-IfpS^PpFcF3h{PYcF+{K`bFB+HMynVfEhSw{y zi#nQd#EtKH%$gDcKVKJXGlSzTlZ}cz#u7)chJ(*FE6vl^?GHyK%fcbZkG@r}-t~d1 zR9_hb9<6?%mQ>I|C?HG*LCYUSVOFzQYx_=v|*=Q`Ww>hzYlbGD=cX(7{=+FDOI|1t1N9e{LXUxZ_vcWKUJF-_Z>--$_w@l4*6R=8)S~~UEXk=hs>rc)DV}k&d z=}v@hY?NYFs(BIB5os` zh%9sycJc9p2Agytrh@4)^Q!J1&dJ7q z-G7jtpZ+|ik0sT1Ft$$tyu;sqwjKEU|GI7-Fwy@_eMA4lNWd@qPwNP1^!b}R1GwJ{ zYtzQ0M+zsu8xj6p#{apa^lyB?YjU!3l~=8RT6$V0YL~)#%buZU4x$Nd4&t#HTkDHZ zZ#~QH1{57GN(aK>{~dt>j8sZF!f$SSXEB=~Ea|%eZ;zvy`LdnjN&+P)ir#wN;%>#ioBTTq8>hd&Gk&=kO!Y;pb?p$Mc+421yjxFAQ*NeY%qx5bV**~O$1088-BP(_DVigW|Eaed1R7>w zoVdB~Q~JRf2m_cUj3B)M(u5-wj#7z()Y~DrG8Sky*HIf5gPty>xbYyW&qRg|2i06k z7!8*4iKvp8QcI!hv24My!NFJ(^FuQp4igy#y^Qiy%A9Cdgp@Fit3#JTq{z1N>J!!D z6m}njf2U&85&mB-kh2?Fzl+uZW8ug17UT0uoc&Hv5|ZQm14YG|2ur{x@^UHxSV1%c z({N9Yj>;;blu7QQL|s9E*xTSqP*r~k!BdIyjdoQ}BNW4t4XsEu*$s5hvUTF8E+&)` zSOrkw*wPHHTu1dI>L=D$GLz{Bz8Nxuc0b-x{01y12P&IE)qi5F6HLx@2kF@VP(Q-8KoJ8IfgX4{K!oQDn zK${FuKuQd%H2>FEHvaz}DZuULd*f!ivx!&QEIMs3m%pNwd`aiCT-cv28TN2Hu1hh_ zdA3u}h-;j6Ji(k`?6onHVwAn;W75V&OmBz)a#<2Y{Vwsb;X#FpxX{a3;5TGEOXG0# zz|Gz)yYUB9DIV9+ug(f-VMbmrCP;CO-ne#G@G71iTcj@u%7}xoelndp2lgZ#-Q%QEmlywZvv9UJKN#X)=ZHa9srZY|QU#q>m1v_# z{C92_3Qhr5V)Cu-ujK{A2ms8+uly4}^YnU3?yv1K_xT*MPlwn zzm%k3G2^&B9G4$uYYO1<$jz5-_6XTMFDlbq7s#omqXXJ(k0f~2Z|l-rbwfoiz$IAB z_kStT14fB+wb$9}lVzjRUD8Rqwuw8s_JEL`qUVaQ+OKxkZNVS<;U?9fvrH}l{>oB| z8};+(w&Qf{&qm&F#EkJVz_gj6!OwKfirL{zZsV9hy~C&gO)~aro^|liAikeT;0%PR zj;ZqIrTy{xKp@gXy*7^*0LH!t^fNE_zqX$pP3tt7*i)wm!x#AqOm)TUJ{{VkDjYI} zK1T%V;{P8y(<(vx!Rgm{(8H_A+z2vVN~2TTrq7H$-)cGz)kHyyeGf@Jj^bafq;i>e zR~+~rmgh>imj-UQVmIL#V6n-!h(dD%_A2xLG=)uq`XE%MJ_s61V*@Q%Anj_ek%ctZ z%|_p_6?=8GZu18sO%w(MY#1pFhAcpGtX`{wXF;uO6hO%S(u(!?*u1X3{^6siE`L&P zll0m8R&ozXdxU@c0z>})9oQPE~*2$u^`nUo%>dR@(LVK%fwK&u2Z5~>^{D)m)w z7%rNo6#En_sWnYuHwdBQ1R7QiLTMr=*V7DM(yM%WiUo#sSFtBO2xPZ?X zJ}>y6_>=`V5Hww?q+n=;Kd>oiM5_6@C4F9ETq7U`z;38o@``hqF-oGDtn>4$2O>eV z{DNYOKT3!y6RlER(BkNFp-_MTYPx=W)d(_6< zO^z6BgoIJ@DQx*bchm}%Dmd}-x7=HG2Xv!M$3;A(3LB8ZC>W!$Tv8*9XVw(^IEFA0 zf`mpdot=z6@j5sdVS{8>Yr6E$7~!%Te4veEsE&k`&oRBzB<}83Lrng1dp)n>v*o&3 z@es6f(?Q~QnyeuHixZ{b?jUP>jMBCk?gBhw{A<(#NPn3O1(I@W@c`9yVWdY%j*3h6 z6B?DgV+zy=%Bw?+p-;#HoAEi61cpmMH`ZZfVCns2$yT}1x(M(&91oVzj+Y+{R!o_L zIt+Aw9EQh9`le`M1X5;vzAZ^2B;9mKfgHr*@Qi`|H35T@AqY$wMilQkLS7YvZ!l-$ z^{;Akm_!7JGospLd_wEeZw3w5*w?3f?@RmXLM?my^>D;{;a}a%%0l;C08J(5^z&Bw z<1fl;H2>(PV8(`{yco9^o|C}<@50-KEDfhRvfYe8sx27YuA?mDUC3`tjZXQ(3>`normjV zU?%6o5eMnz3_0b(sR3cBpnfSSd}k+cXh>>Ptt7$;tn?{O`^`v@pStr$_!bCek19o; zDVEX^8L4=S6aYqc2}M8s#D}}t<+if_mOlIGDm}~lT8@-VPffrKMSKVf7^Ph~gQfA4 zty%zz_k8p_gZk?;#>vK_vGSb??Hr%H&wZNK7=yV)a!h#ht`Abu(MBzm+5LbNO>)AqcJ*g}^n*d=>3Pn2+ z^i)sRjZIb(tlzIJXNbz{W?d~WPQRix-g;u}J7QQd3t9T|TFc9gjd^Fz;5~U)G8Qd~ zOgoAv^to66 z;%?n)|5Vd$R|9aU-Zy4z{&@A%`pZq?%@?1&HDgCzjK)w7DuoCI^Sp zTI3JwxRpLo@$!&HmF+Jo&Ohx9U4Z;$aQAjIWgpfn-vlsJ9oJnZPU^WQC=;7fd z`YfkwFPK=Bm2e(e1Uv8c+t0itq=TFEmsOpVK&A}pMIK}o$4k_wapHN>Xt|a2@txxR zFe`V-(;g|Np_MV-msm@6&xBnQh`XjrWvReGX0RIsl&FKOI1jELAfd@KTYp#Cd)GMD z2mQ6~%XyNZG}2-u+#p*uTxsz7Ve~(*w`j0+u#LG2)7qR;47^IllVy~+Fu(g=Rc2mA zaA%hS=8vAcNF^!OEM*n5x*8Yn%6V6mOkdJZ8S~;*fGLC7%@CUcK`}aRNpUQeIC2;m zA3AA^WSgJ61Eb7GpMI$REOTEmxg_{1fX-=|`cxq&T}B+4k_N)ih^z|MaXz=D3ZS#5 z5USe*n{yHvB3h3Y!j zIQ)GN(ZuA}pR5cK1A&}^%T%b9r4J?E!q$cGpk}m?)#aj3meZwz`JrI`T~w{Qx>r_P zpT%tyh0v*sa-I<}_i%h#7b8j4Qm9I|g1#92?~7AaX6NEbBgpM7E%0^H{hvtm#Oeh; z3O0ps_Sw~-PzJ^B{Ifp&y}j$r%uzmD7V<;!py?$nXUtAu4%xaqB+YFwh#q#Y07+0ZP4*|M#6o2Qwy-iLuoHid* z@BLQK``iQ$y+^pmoJ~Q9z)ueq{4SI{Q9p=*p-~3!^!%a4)|c%OJ@wA1;{@0`j|Ft! zk)$l`0Lxqg1j-<+W81%Pl-b!i$XU&(AGJ72(TnC#2;$|9BQYM30t-g*_hphVFV1yI ze}oPve1Gl9NiMRDb#iGGDp>o<)l{~$PYlSOH{4%I6&7m$HKQd!_5EQ`bUpF1PCqvr zSbBoLFG>Zo(#hBljr_^(-ZZlA*ndj~dO@+!{%+wTAm-M`uPe)D?T(Pd-)30v_8H9d z20PDR6?tn>f*(HoGYS`LphS+gA4jwGTlw^ojbtW*!ziE!O5>0(1H520Ai2N_M8ux6xsR1Eb2Y)g6#(|9w`$jx^mBjaqnN z%@tX_H{U~xG8va3NzVwn_#xXHTK4vP;rPs2RR+46nnn5EYj$579BqXGrS$mpG-4(1 z=g-F*Lqmguht19_!X6Ecjq*CDbAYO=7LaXvo@^SrO>4R&OdyAWZ=vS-YuM z8_4${CnUg6PS&%4juS}y%e|tZfdFC;)+a{z+Q!%Setn&$ZYG&kKjiJ(z1`j4%z`35 zi-JoNI78?W@ZCj4MN3Od01T?XT(d$Y{XLTS+Jg-O?2xz53p@lvpyCugY2cjt(wZ$ z1uFj8`mB;)>6}7dlAWZ^g)9vpMEf0zH0JjS` z%mqzR975bH3jwVI6!ek`#jlSA`K9I&X{Bg2E%AAicppxmDb_z6Ig4WDKyV3@p}|km z=zcibZ|;Q;A>`YAjIH_#794{F3!6wBL7ZB4LmA!%_BZ581AxrI*{;+j=3|p zuI5A08yg#)hl4DB-KtVzvb5zAMOFNl;iqE3Iu1GzI~AZrn+X4CqO#$SA649q!s;n8 z9IHI>^5{#NYKk9I=YFD!&Q;ThLef!`Q;UE;2tgrs2a4$^=(oPnVp2CSI$#amw_)~- zv0P^vN>JC){K~<#8~QfBfY>JTvwrH-mZ42^y^J_%@*{$55;*WI8|@Kz_^oJjQVmoI zNnP@EmyxdCx_=#QJRQD$sca9+FGZ?~;Sv}a6^hf9`RG$7cNHEAp)`0Yl?Gi7AT z-l#viR!&j+^QW2<>eeU@V&59Kg@lwiO_i@>?^+H##x!`I5-Yb*{lX?pCMU?-eFFA# z7Dx!V|Co8ps_Y}TZJ4?F27GJ~`ru&4<}wr6y~JzBFAH%Eb!cX4P)v1vbb`uzz%e!e z2M`!Um3W2keJR#*9B98t3{P^OaMz&4YuKdaqHW9IEE$DLnXzV!g-C@Km3qm8`5FG5 zpP1ZWMSEP^>{Dt1ekW?dgfz?-@sf=gA@D7MN_qBL)>*bXOfzd>v>=`E@*FVQBGBQ` z(KHGQD(Gk38nLs_-y~~IN&Yf3qlZ4yl7Z0}>crTq)*GPlizWzbjp~n{E+V<=!=Fj! ztK+}7YT!=0N^6!fTzXUfmJN|ik}u15I2h5KHE%2gvCK;bOixOZy|J2)wil%opWoa} z2k(V2>p@m?F!rq-Gh?>2j_zb`OA1_Wt=0vZ4Yp7b7Fs-JFt8skx+Z^{Wo13<>lR8u z%Kg<1ihQ6g6m@Sdf0=HA+dNO$rhj1d)-C}^CGXF7alAiH2)IFzZ90k_T zYnv^iUTHDeqFo)ifFC6SmoMUU1ZNkxs*aLz^pjGbcg zO{SE(^2|Y|VP<*dcUW&ZD;HY;E9=77uk>_u6O)sGwt_3>bHT(~x4v`x8Gs}ViPiu0 z>lfhfz5%55uYN2ta=HX^*QBndr>AE)wUo7_JFn2uApI3z#N&uBy82(SHa`~N>@P&f zm1|hbV4=z}k(DM;doc(Sl<%UyATk|fZ4N4&Z*gPB8wHS=?mGaj-gSgGR)TNY!~E5& zi^IdirB^Gz0BuHC+rZ%9^(J2@KR{> ztxeDtvwvg+pfNr;y6PdntFCq3?Slv6q|@j`rWYVnXWW>VpAVN65Gna8wguen8VFyY zNQ-B)#y|J=Y6T}JCN@Vh8ZC#CqoXkr+dNOK*0by$P?jP5F~epjra`?InlkB9sh@r8hG+_buk>!FT|m-9Bl!-# z(`fVi_;Ye7TL(of*sxILI6i)UekegQrF>x!K*=)(Fq3PTQgzl}vgO&DEr7k1A1cWx zRw4wLCxGP`5a|gvt=;H-=c4%PVG0p~sJ?ziW*!O%@dZ7uT~DSl^tsxA)FDz-y(GnI z0=r-2sG?=#hsQ?t7MVwg@>3xKxXtyHvIQAAg9`CJB z@ut=1*2L0s0}43*-k2S;!Vj5|mDTWrSuj9ZGBk`bn29O&di~nDd4nKM83uJ1O4}P` z;N-*xH)a?W6{Y6{aEfhBOek^}pZVNgwz%y{>gJ(Zh@G%B7xfTKgwW@B9|LP>l3t_5 zW$8swpZbr4sSX-MKhgRw)o6-Q^C`dAMX42@4hE|zVOXwP#)fRJw3geni?8~ z(38AH2w(l#$m$Sl37I2s@k^azk&iZ0^a9g#(C+=vhVUb_+ybA5*lr{Xrg5;cLJg_< z`ub1@N5|lfmhJoqV2!$e`v`kAO`wL2TSlUyxra1jR4!nnBW*cRbw@+ew)V;022#uOJ3|2J^-in zQ_=g#nCH^cVbCv zX{o8h(d*NnqMt1c_Ood$QK+uIi1&!z_Ct#xkk`4)NQxaXu+Pn+#y$jhUkG zkqZZ1ogW2Uec>2NX6-5I6@XoOf^d89$cXXOMPUscyw~>UHtIbkakSU0mY3Bsmancb zH-}%emxJ`>&u`uNeG{5X6r+CN%{YwQzlvj5>=Dg@RXWIy4peXoyD=LvcC3J(c|Wj%(66-1*I(K2_|*#KbZ{iLI()^QK~nTerMWChcg6<$tG4&%{N zid7=uJT>FP4YD?J@d)m-B3~$V4?ik-vsg>kl;)u`!V&jaj74xD+kw z!=QW69*^B@(gkNAUa?*6?q_ncapNk@YTGM@F@{C$q~{Tu(YwdxKTo8}A`?&Eha?y+ zfdbCD_y-q`q48#z-FTU$CuA^IQS?fg97*x>h++bJE$@hGdGPA3zdS~P$E!d~^m{C{ zBu-%t7aNXK=uT$qMMs^e?^M+Bp^x-jf@{=*f32!^GP|uiUTzu|hnk}h<4W^!a$5ai z0C6%KLG>=o3m9;P#>#}F1vlH6s;DIC^M@g5K>#K^Ov(@cmsNW&RM z&mbiSa?lzJR}T7}pE?)rAU)79#ShhB#IngU--K(?A$t#h$D7Z|1qTCbP>w+EGBXXk zWFJ&70ylx~OTMH|CR%v@nU=~es-@EkWdLI%nR$nt2>sq>i2sZ4&)pyDWE7l;@b(Yg z@>y=_yUk(Ei7PN-B_*1rki!zweAEp9Ukz0SkXQ_|XTVVpR{r(15&#|>Tm{q2C6gT$ zFOTVat79UdXT;&KGf6QMPr}Ac=utqVT466`ib4}L98w-IVnnB7FPMgXQkewj_!y13y4$3wH;2e1PHevds9iCs<$=e-`$OteY5F&LyI zw1LwWpWagZPVn_T$#AAiiLRHGkEL6?olqJgN1Kv|im9Y>&}S~N=wWoI&6?`!CsXRm ztbjTK;OJhi&48iVXKm!G=s9=CeC{X!`w zg3&Wi^`bDDi$q}ftj4t<_F0B0)-O6JW*e1T?XcNb4ny~&u|V#8ej=86^7oY|_kJh< z8LhNbIWT<8q-iH!@nyLIRqperbK7}XO{+L@GVwA)4|0X>rfCTi^{Z%Z1yH!NUeE*Y zOoumXn1sl}eh$}62Qov2Zq=4E#xF_Jcztto{G72CK1l5}R{Y%p?TibS&;}Z|l@rMJ-?=!piOMl;jkzQS~l?PcSvU)Al{n&iS=( ztzD^iR>b~B_KoLoTHv7~-_j|e?-60n&Ei%~ZEe!UOOwv3W71c}VOFs+GRQ|fXQCgg z5!T0pt)$flLg{0VDIIc6d(~TEpXPF2N)k1HqZ>u0{^U?QnlFaFK(UdrCYb^+IRIl= zrrYWp1yi;lM*U1~@bnADX{=nvhT4`mP3Fk>WTlktgv%hw*EAf0Ll2&WFexZU?9gjf>C4WP|G+A6h+r(B`!F(yHSs6yzC9N;yHK zw|Axb@Lds@&_B}=6HB|m5~{1&0(Pq zWrgI`vS&$)(j&HHeWfve$S^Od9M=bMz#`+uKkVPStT<&J3ZN)kZ%)tfRTL*Q`N4j! z*2l%R21UK%ELJSG(=X$ncE>?|5CB1q!-xn%aPyOs1ry$)FAkPkwP|mjy6>mTQ3o|e z>kP7PeUodZrTW}f!7-XEuPo7&@^!KfqAYcV-V9fwAbMx=`+6I)uCcp@yrlw{BtIW2@ z*oYhkF3Xe`Rpp}#)kw9&k}I;Q*=Z|_>5C$76x2BOQG6K$lXL1R0_U4|pG`ac{($R} z@82?3Zmm9AhbSs32?HZ`(025Z4EvQW5?HOj<})!rwqQc_A$3eUN_2_k=JD!J6zVQ^ zn8S6mD_u0MR8!ds>4aY3vXKxG>9l**tEswf3f>;}08@|YVDgcmhYJ5l+DS0GHzgmR zHtoN`0aiXvj;ERWL{*D&%G;P86SW?7NixM4O*J^4AA>inS^G_pnuCKY7Zh=N>mU_* zd8;);Z0byQqnRK;B}ID)`vx(o==So2ReTZck6Xhx4zf`CL_aVa-yJw-vQoFI@TSv* zmVH<3^b9NcGf{I>FjWLFRVGfOE;wLjm*Lzpu(Njp`!O-+Xo5sMbm)(#zd^@T-t%iU z`LllFM<54Ki{nzX8zGQUX1!KTuvsT)rUu>W_DZWeP0MLuh?SSpXmP@+O&71}m{=nS z>raAWNHNHlel_h~kZ{ImLW!ON4k}%DcKTBig1mZ`KwUQ9jwBnZczr?x7qJ&F#*D4h zoUr5n2HznMd#DSRt8)_K=AM5fOwufuP6!GJt1hO?Cb;|ltsSvQXSsZw23vu-aoOYh z!=jwcVU%A#2!O}07Q{cjL_TT5L$r}>zrDZv@cu*4%qPC=5Jh+A6+b&3S%%cmUQ}m$ zT_o;)Ru<=Jn|S2nB>kK71NG}LVEnBGLL#KqrJF&jnneGdq8*3)K4zmJzX1dTZqigy zMUeG2$Jx}gf*?VXqjE9)U?-VzIcUr>L|RTCm_y&b<%UxQ4GSmg^Q3bPvd*fg895%P z1nNq=cl$IY{TQeyvsYuK!+-%vy${8VP9a4$tfM9&8;=Z*@0TogZEvSG=1wi-A#vLe zkt(08AG+yB!zY+2stbq{^8AR#EMmxL!t=F6#$7X_P;%r#$Q86kK09Z(5_Gng5{)>7KmWFn%mh7cSu4kdwaA5|O)86txQBST(s zuTHsg-8QrxeE@c)zdz-)*%}cDE8|{zcXQ+<`)@=^Rp}|Ljn+ZzEi5d68j(vGPILVo zoy@v~~_n4LlpZCS@nLZqtF<=2#+LMm!%AmjN`a#>&*ezsp=U}9GAkb~eus5#Pp#n=riz1^)JFL$% zM-O0riQ2!+wV(8Fu=ZKGy2;O5n?V_REA83@m59asYM&-V`6);9(#8+Xio7XL(G?Wo z2t(>61BnTm?byNuR{L2?%N)NpFxqlij{=a+9N#<7%BI+BaG`C$^5bPVzJz_F90J{vRQVb#&YOe*;%S?dOv;E`k9w21hW28{`s2g#g8Rq z8yZ64X|L`@D}|1{GNB^Oz-3e=4&I7uNUMy?U?QJEkBYz8Pd1j zt31mz6ww;zx7{cje`EtLFPIx5dvlWRcOy=>!wGz+JHESgqp<3(&$vxRR%()MkbBg$ zS?P{wA2lPUXJowZxVB@!9RVRS9}vO$FDrrXX@!GNsOa%?rJ`Hs`^g8Eda1CL(F)B) z$^!`Uowl*F#|U~$*y7!kUd>6fJU)|E*Uo~5Z$5VvzdCs!!a&;L^L#0Vobl$nA`r3*(C?W{i3Ec3|eZkl*Jdib-)GeiFMk|~)gRBPW&*XA!(&F;FhKWQgrDO_$ z{kC)??P~jVT^X}(sjb4Nt6<~)&?T**BB$cbHxYd$%}BvxEBklrGeR*AA-Zv04qtz~ z;b7*X40-Z>j}ef0YfT6?ombu5e`EZxX3NPp$VxaS!a=mD{!NG<|HQ4{dbTb#}{}X*z<~ z8%1Bd_~4do3D7zld3bplwZ%hUhZ#9-@F_0dNXwg^^rnzs)ec@Szqcb7n7dQXV8*&T z?y&^xN7<;PsYKmKA*Em&bl7?4!fFv>&~bI6zG<2IL>__`rD~iYTF(Gn4^l*95 zomtpBBX6;r!u#NOV*;k)NHqRiL6t}tr@RbV!6F3KaH)ON7xlKe{Mq#4{DTUwjlm>6 zGeiquC<1XPKU2TcK*F_9)Lmq`weB)6tJsXc#EDyk1L?C8r7XR6FW$Scb@m@1Cg*cH z{`}w2=*BH&NW5_YzUqD5{8slRM4=H;0dED^`IQvdZ(7E32n(luv3xtT?dEJ#L^JZ8*9WoDn(U`js?%pL zoW5Va>2wqu?*2TQ)S$R{X6I@&*_1TPrHTkCHDg5Bzj4!vKtO14_!{itfIU1(WP=k* zE=h%gp(p-vr7`QWmfLLjxKAC8)G+#9HHNm)q`$%(D>>f}um6v`{qgMjx8cEA2v;H{=C1F`>0UxVns< zO}G9KA@MzXTjhHzdnIyLxc~e$iJTt2@um62edErfsoB6z`!@pChj}aYTJDM`7UJsa zx~Q;R5-X7nRJc#V!rphJX1h#cAVjYiiUy3pr9L6cTt}9DO)6ZVxU3_XS8j%>xy%!4t{;re^n{@=A?w#r4~_Lrx32 z_v>-z?*-j4R^^{)-&$LNim6IZK4&>@1$#Z2P;n04$Qc|xnp8V6W?aJnA~w_H3BL^C z&WQ~P`>>CqM7nkH<5Fo>4bRbuSAC01mxqg%RO0$sD|8ONt)yh`Voa(x&hN^9#7Hl` z39Z(RxG%yhN+>jCglgm5Q-k_?=7&~cE&BT}t+MUx4S)lp1H3K{|F^u(Li`6&e9J1f zWs3RPh%uJ7tWzc-MO6!Oe?O#a`5a^UMtZ1g(f|Hr(v_;kgiuiJ{6vE6%cFxfS7X;C z<77X&8iWPW!r&RAVvaFWZZ)p%l__+NW;|A!cnNgRJd2lCV|v%>@!#O@-x~^_HK0~{ z)=?rkSw-@Q^2G0JBN*fpED7p}KDh75Ww6bV+%4YKvW+E->jDHp(~8q0vGTQQMBU}R z#DZeuh|rA+AL>rh5A#Z@q%TpapN16;5xUv0-HloK45GXmdUk=fHFRvk1a}$HAEq?* zK?Tv%jI_bZ!KxU(j-~Vc@zHkcYc^kqoYSw#&G4MguN^-XR!ruBe&`@=0py|m_d`d)JGcUttHN;9jHjO8Qwcrfa6{Y>o-dIRgYccuqB!FMW z9VMdHt)(c#A7*WYAid0r27Ow07h{`iM9vgBBZbi(x(m65-3v)bwUPs@&Wky4`ez+0% zYA2lj{$0$4c{<0a)e~>H)+V20~J|rlw+h;M0eNP`r2>elb=U%~6WS5uZKbq$YB5U=^~=fYk}yGlac}bDo&X!Ymwib9@D-w7&4J z=R>N@_@+bryiq_W2VG6DrnZknr6g%il{P$sKN$~p-5L$PRzoR!SUiy4)Rb1Q5=i{- zL`je?s`S~ zd+H)uR3w;6XTP>)1#V|6a5qEQXl*+=uTGueO~|ZgG8Za4&cPkJmz!KTA9mVAbCDaZgT|M@5$8`bUEDlp6_H^-hn6*e@b#!e2uh z?eN)MqdtnKhO|vHEr7~z%FPwEl<|!Jrb>K!0E(SxKoa=3Ur6|EBk)^~iHi$|h=?z! zbOIGuat>EIbvD@ds0dpk$dBa>>yx0jN*>gKdQq?gmwBK5eIi^Bx=T}2FM*H3{9(iV zV4)t%oQXe}al<|uC;(`I=x>7`h%-~8dr{Xuh*pe5#cU92LxqH)iurw;T398&>!`rb zw&7ugq~z{@#5zg;pUoM0bY?8B_83@WDmr?m&@*AHoZUVd72%n6A=(Veh?u~@D;;le zR+g7LyssemHz*l=&dE~@qRYg|SbQ9cGrfJEt63_8NrtQc>Lt=YX?V8WrgwvXG(%u9Mw=kI_?3e9o#koS(mIHa2!>CyJkm=fmQlWm9k9;mezAhc7RiP!Z{S3%Ec)sxl7C zc9#}5yrQGSXpi{-6N_Ubxh&T<JAd#RYA9$9~AcA4P7ez4*WF*uQ55TEa^>2EsbH z%eCLWSP}XphO+XWA4QGSRuJ$2^cO&jG6yQgTFwg^8()Ehl^j5jJ72ID5D=hs(`&XI zq<`_mGU<`~fNd(s1$2jwAN5DOXY;#$DjAykkZKWBtJ|%CW<{=`Vz!=4j|nwuU>`=b z6)7s>hH-xu5wuSar~S7$^|w81+Tk_yomFnC_S?|+vt8CWJ{7SCn2)EZ}bpvLMo2z_pFW-UH@u@)pl7g09Ju;Ph#JTpBV7L%B}q4hDIHU+V!fXWR!rGV8B zrKXrgX>*{jrjEc)wCDe*?yaMu(Efg5y1Tm@25AJ8k`Cz{kdOvJN)SOB83Y7`p`=S1 z1cX76R#K5}5CKUE0cqYn%6Xpid+u8I{qKG6b)9wAatSlL_ji9k@n!p@51z<-oNv8c zZEf@4y_4x`g+=K6FT4)H++b@V3q*>6oyVi^_MT6u-uKWC0-zs$Dle}blmXyaFE=+W zdm^^R`Ut?}cxi}m9#V3=^>7gd4cy3ZX#UiJ0-UA9bb3mO8mGddP9Z-Vjkxnan@~SH ze8m*n`sObi#8qV3L%hGgAJpZZZf;JOJ+}K79i$KS%}FXfBVaUKEm60c>grlwxZ>a~ zGVbz`#D+LIcnZ!$fux$<{vvw1yj>9SYN_b50#PI-e1w-5H8}9`UmXpQ!2$$W2h8)^ z37#_`o7=n0;K{t z10bm!0Z@2n7GYqkn|qnr%`9?h$jXIGYlHt%v0Wn~kPsGft+!pBRmM5v)IDnUM51+h zc{XE9Q_DbfSL04i&;uf@w3jcxUwQ1B&zr7Yzz>P%<@xzV)pt(nXWuZO@Re0pQxg^^ zh6_~gMNG-gb&PUsNYM(p!lG)19J%a{z)Q53GolaVz4D+;Pqu0`Z?qg_xK@QSbXZyZ z2mPd%+0fW{T(b2sW(L+ zk<*YHxU8HW(G;?_GCnzpB&vFk064@sBCqFtU@AZ)Up4)^ zKKABqVWdvUa3`ToHn0Odx!DkrW6$l+|B_#zL}5xe_6`ol zCMNf%?)+G+1L>mf7|Ifz92NM-k19Qxr>6lpl}K{ZP~M&0XK0CNs3KM74R`^#oK}Dq z`kFN6=b+>Q#R-S_QuTkcUOICLNhFRHom^Z_=YN0r{YmcfYcllse!Y48xGV^GhddG@ z0fynBqJqVCu`=G(h0!$wXt66&uX&Ujk3b1WxszTU-TRLo9f8`WRsrjrJk8nJOcshx z;Bv%Y(A+N&_s=(t77Rh5;FZ;rEmPrR6=VrOj7?1Z4)^t&_4?8BLaq)X!%cm(D)X%B z^6~{dXooB4w-Bp31~PHRTmAN^xP42@xZ@`+zd)toeiRYkfXVhc@8E|M1?4~q{mh<_Xefx9M8T(Hli z7vXVK%j8PtsMqjtiaE|M|XwDoqr>4is(?FCt{XmFn0%Jk6!0Ymax7gXmpOG z$2_2*m_wnQ)Lkj=5HwIbH}3$AjzC+P>R3$~EU~q2u)uU)-K_Q7xfdRl_haFFlC1K`GW4u;U8Bx?-o6?KWH6-fjUzTP0ak zH}t0m1w5P)hmW`9cFb9^tLhtqrR?CeopnRuCDG^AAfb% zJ>?z3zW#n{u=D^Wjjh^E%8ony{r*fPzF-r|%AKFUq+@v#fM@r9UNoXL+3DkF8!|*WPfiWzKFntP_WpgPdYW}3%gkuV$Hz;g!bE*hhdMa@ zxU=rEdG`}+N8qZ}@nu>MB+e+~@==-;>oV2S9&hTtHe<7Du^fyw8TvD~(Sv2cvE7mD zz?pXJR_;Tlv}6!`3#hrmK-$Sez-!Ew%ulf&qKLD{E#bA9yHdv7Xh{Mm94ndx9mDp#s#a*F{a*61Qx3OT z+FBDYg?RzPLWTzDM~HTO@Ex}OzB|9RY)HEaB!mys5F&SI;F2KCEew%=S;C}Y~zzu!xR>gT4+DY_U^ z=e*|HQ!-5kjf|TfY&FHmMcD&fc(YQ2#{@%)UEd8X>9ZZadxBCjm#BEnb+pR-9XEFV-T6YX&*(A z#$r+7#!bNXg6Vjom`gb^E-{nnSd|9Djp*vcLTaig9_yj?eMMEe3$1W>6fz1YBe_xJ zoPe3_usyAfO+q`=9y_Y7?5w5?+$w~>#j2En2%iolJ%Vo9s4Qha7xI;}u`F;A_C!gG z$Cy`-{ufk+

    MessageDate
    Status update: Windows 10, version 1903 “D” release
    The optional monthly “D” release for Windows 10, version 1903 will be available in the near term. Follow @WindowsUpdate for the latest on the availability of this release.
    		July 24, 2019
    12:00 AM PT
    Status update: Windows 10, version 1903 “D” release now available
    The optional monthly “D” release for Windows 10, version 1903 is now available. Follow @WindowsUpdate for the latest on the availability of this release.
    		July 26, 2019
    02:00 PM PT
    Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
    After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
    		July 19, 2019
    12:00 AM PT
    Evolving Windows 10 servicing and quality
    Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
    		July 01, 2019
    02:00 PM PT
    Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
    We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
    		June 18, 2019
    02:00 PM PT
    Windows 10, version 1903 available by selecting “Check for updates”
    Windows 10, version 1903 is now available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel.
    		June 06, 2019
    06:00 PM PT
    Windows 10, version 1903 starting to roll out to devices running Windows 10, version 1803 and earlier
    We are now beginning to build and train the machine learning (ML) based rollout process to update devices running Windows 10, version 1803 (the April 2018 Update) and earlier versions of Windows 10, to ensure we can continue to service these devices and provide the latest updates, security updates, and improvements.
    		June 18, 2019
    02:00 PM PT
    Windows 10, version 1903 available by selecting “Check for updates”
    Windows 10, version 1903 is now available for any user who manually selects “Check for updates” via Windows Update. The recommended servicing status is Semi-Annual Channel.
    		June 06, 2019
    06:00 PM PT
    Windows 10, version 1903 rollout begins
    The Windows 10 May 2019 Update (Windows 10, version 1903) is available today to commercial customers via Windows Server Update Services (WSUS), Windows Update for Business, and the Volume Licensing Service Center (VLSC)—and to end users who manually select “Check for updates.” We are slowly throttling up availability while we carefully monitor data and feedback.    		May 21, 2019
    10:00 AM PT
    What’s new in Windows Update for Business
    We are enhancing and expanding the capabilities of Windows Update for Business to make the move to the cloud even easier. From simplified branch readiness options to better control over deadlines and reboots, read about the enhancements to Windows Update for Business as a part of Windows 10, version 1903.     		May 21, 2019
    10:00 AM PT
    What’s new for businesses and IT pros in Windows 10
    Explore the newest capabilities for businesses and IT in the latest feature update in the areas of intelligent security, simplified updates, flexible management, and enhanced productivity.     		May 21, 2019
    10:00 AM PT
    IssueMore information +
    Windows Autopilot white glove does not work for a non-English OS and you see a red screen that says "Success."Download and install the KB4505903 update. +
    Windows Autopilot reports an AUTOPILOTUPDATE error during OOBE after sysprep, reset or other variations. This typically happens if you reset the OS or used a custom sysprepped image.Download and install the KB4505903 update. +
    BitLocker encryption is not correctly configured. Ex: BitLocker didn’t get an expected notification after policies were applied to begin encryption.Download and install the KB4505903 update. +
    You are unable to install UWP apps from the Microsoft Store, causing failures during Windows Autopilot. If you are deploying Company Portal as a blocking app during Windows Autopilot ESP, you’ve probably seen this error.Download and install the KB4505903 update. +
    A user is not granted administrator rights in the Windows Autopilot user-driven Hybrid Azure AD join scenario. This is another non-English OS issue.Download and install the KB4505903 update.
    White glove gives a red screen and the Microsoft-Windows-User Device Registration/Admin event log displays HResult error code 0x801C03F3This can happen if Azure AD can’t find an AAD device object for the device that you are trying to deploy. This will occur if you manually delete the object. To fix it, remove the device from AAD, Intune, and Autopilot, then re-register it with Autopilot, which will recreate the AAD device object.

    To obtain troubleshooting logs use: Mdmdiagnosticstool.exe -area Autopilot;TPM -cab c:\autopilot.cab
    White glove gives a red screenWhite glove is not supported on a VM. From c4187844015717fa9e9cc92d0b4b739553c0c83f Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Wed, 31 Jul 2019 15:29:31 -0700 Subject: [PATCH 130/138] added audience --- windows/deployment/windows-autopilot/known-issues.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/deployment/windows-autopilot/known-issues.md b/windows/deployment/windows-autopilot/known-issues.md index dd22f468e5..818d4ca0ea 100644 --- a/windows/deployment/windows-autopilot/known-issues.md +++ b/windows/deployment/windows-autopilot/known-issues.md @@ -9,7 +9,7 @@ ms.mktglfcycl: deploy ms.localizationpriority: medium ms.sitesec: library ms.pagetype: deploy -ms.audience: itpro +audience: itpro author: greg-lindsay ms.author: greglin ms.collection: M365-modern-desktop From 35b5c26fda55b7b07f6594c9683a837db2dd63ae Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Wed, 31 Jul 2019 17:18:30 -0700 Subject: [PATCH 131/138] new doc --- windows/deployment/windows-autopilot/TOC.md | 3 +- .../windows-autopilot/autopilot-mbr.md | 412 ++++++++++++++++++ .../windows-autopilot/images/device2.png | Bin 0 -> 43998 bytes .../windows-autopilot/images/device3.png | Bin 0 -> 18873 bytes .../windows-autopilot/images/devices.png | Bin 0 -> 45828 bytes .../windows-autopilot/images/hh.png | Bin 0 -> 4938 bytes .../windows-autopilot/images/reset.png | Bin 0 -> 11131 bytes 7 files changed, 414 insertions(+), 1 deletion(-) create mode 100644 windows/deployment/windows-autopilot/autopilot-mbr.md create mode 100644 windows/deployment/windows-autopilot/images/device2.png create mode 100644 windows/deployment/windows-autopilot/images/device3.png create mode 100644 windows/deployment/windows-autopilot/images/devices.png create mode 100644 windows/deployment/windows-autopilot/images/hh.png create mode 100644 windows/deployment/windows-autopilot/images/reset.png diff --git a/windows/deployment/windows-autopilot/TOC.md b/windows/deployment/windows-autopilot/TOC.md index 4ad5db1e36..5d487c958c 100644 --- a/windows/deployment/windows-autopilot/TOC.md +++ b/windows/deployment/windows-autopilot/TOC.md @@ -25,4 +25,5 @@ ## [FAQ](autopilot-faq.md) ## [Contacts](autopilot-support.md) ## [Registration authorization](registration-auth.md) -## [Device guidelines](autopilot-device-guidelines.md) \ No newline at end of file +## [Device guidelines](autopilot-device-guidelines.md) +## [Motherboard replacement](autopilot-mbr.md) \ No newline at end of file diff --git a/windows/deployment/windows-autopilot/autopilot-mbr.md b/windows/deployment/windows-autopilot/autopilot-mbr.md new file mode 100644 index 0000000000..fecbab9249 --- /dev/null +++ b/windows/deployment/windows-autopilot/autopilot-mbr.md @@ -0,0 +1,412 @@ +--- +title: Windows Autopilot motherboard replacement +ms.reviewer: +manager: laurawi +description: Windows Autopilot deployment MBR scenarios +keywords: mdm, setup, windows, windows 10, oobe, manage, deploy, autopilot, ztd, zero-touch, partner, msfb, intune +ms.prod: w10 +ms.mktglfcycl: deploy +ms.localizationpriority: medium +ms.sitesec: library +ms.pagetype: deploy +author: greg-lindsay +ms.author: greglin +ms.collection: M365-modern-desktop +ms.topic: article +--- + + +# Windows Autopilot motherboard replacement scenario guidance + +**Applies to** + +- Windows 10 + + +This document offers guidance on how Microsoft partners should handle Motherboard Replacement (MBR) situations and other servicing scenarios with Autopilot devices. + +This document only addresses the most common repair scenarios. + +Repairing Autopilot enrolled devices is complex, as it tries to balance OEM requirements with Windows Autopilot requirements. Specifically, OEM’s require strict uniqueness across motherboards, MAC addresses, etc., while Windows Autopilot requires strict uniqueness at the Hardware ID level for each device (for successful registrations). The Hardware ID does not always accommodate all the OEM hardware component requirements, thus these requirements are sometimes at odds, making some repair scenarios unsupportable currently. + +## Motherboard Replacement (MBR) + +If a motherboard replacement is needed on an Autopilot device, use the following process if possible: + +1. [Deregister the device](#deregister-the-autopilot-device-from-the-autopilot-program) +2. [Replace the motherboard](#replace-the-motherboard) +3. [Capture a new device ID (4K HH)](#capture-a-new-autopilot-device-id-4k-hh-from-the-device) +4. [Reregister the repaired device](#reregister-the-repaired-device-using-the-new-device-id) +5. [Return the repaired device](#return-the-repaired-device-to-the-customer) + +### Deregister the Autopilot device from the Autopilot program + +Only the entity that registered the device can deregister it. Therefore, before the device arrives at the repair facility, it should be deregistered by whomever registered it, whether that’s the customer IT Admin, the OEM, or the CSP partner. If the IT Admin registered the device, they likely did so via Intune (or the Microsoft Store for Business). In that case, they should deregister the device from Intune (or MSfB). This is necessary because devices registered in Intune will not show up in MPC. However, if the OEM or CSP partner registered the device, they likely did so via MPC. In that case, they should deregister the device from MPC (which will also remove it from the customer IT Admin’s Intune account). Below, we describe the steps an IT Admin would go through to deregister a device from Intune, and the steps an OEM or CSP would go through to deregister a device from MPC. + +NOTE: Whenever possible, an OEM or CSP should register Autopilot devices (rather than having the customer do it). This will avoid problems where OEMs or CSPs may not be able to deregister a device if, for example, a customer leasing a device goes out of business before deregistering it themselves. + +EXCEPTION: If a customer grants an OEM permission to register devices on their behalf via the automated consent process, then an OEM can use the API to deregister devices they didn’t register themselves (instead, the customer registered the devices). But keep in mind that this would only remove those devices from the Autopilot program, it would not disenroll them from Intune or disjoin them from AAD. The customer must do those steps (if desired) through Intune. + +#### Deregister from Intune + +To deregister an Autopilot device from Intune, an IT Admin would: + +1. Log into their Intune account +2. Navigate to Intune > Groups > All groups +3. Remove desired device(s) from its group +4. Navigate to Intune > Devices > All devices +5. Select the checkbox next to the device(s) you want to delete, then click the Delete button along the top menu +6. Navigate to Intune > Devices > Azure AD devices +7. Select the checkbox next to the device(s) you want to delete, then click the Delete button along the top menu +8. Navigate to Intune > Device enrollment > Windows enrollment > Devices +9. Select the checkbox next to the device(s) you want to deregister +10. Click the extended menu icon (“…”) on the far right end of the line containing the device you want to deregister in order to expose an additional menu with the option to “unassign user” +11. Click “Unassign user” if the device was previously assigned to a user; if not, this option will be grayed-out and can be ignored +12. With the unassigned device still selected, click the Delete button along the top menu to remove this device + +NOTE: These steps deregister the device from Autopilot, but also unenroll the device from Intune, and disjoin the device from AAD. While it may appear that only deregistering the device from Autopilot is needed, there are certain barriers in place within Intune that necessitate all the steps above be done, which is best practice anyway in case the device gets lost or becomes unrecoverable, to eliminate the possibility of orphaned devices existing in the Autopilot database, or Intune, or AAD. If a device gets into an unrecoverable state, you can contact the appropriate [Microsoft support alias](autopilot-support.md) for assistance. + +The deregistration process will take about 15 minutes. You can accelerate the process by clicking the “Sync” button, then “Refresh” the display until the device(s) is no longer present. + +More details on deregistering devices from Intune can be found [here](https://docs.microsoft.com/intune/enrollment-autopilot#create-an-autopilot-device-group). + +#### Deregister from MPC + +To deregister an Autopilot device from Microsoft Partner Center (MPC), a CSP would: + +1. Log into MPC +2. Navigate to Customer > Devices +3. Select the device(s) to be deregistered and click the “Delete device” button + +![devices](images/devices.png) + +NOTE: Deregistering a device from Autopilot in MPC does only that; it does not also unenroll the device from the MDM (Intune), nor does it disjoin the device from AAD. Therefore, if possible, the OEM/CSP ideally should work with the customer IT Admin to have the device(s) fully removed per the Intune steps in the previous section. + +NOTE: Alternatively, an OEM partner that has integrated the OEM Direct APIs can deregister a device by calling the AutopilotDeviceRegistration API with the TenantID and TenantDomain fields left blank in the request call. + +NOTE: Because the repair facility will not have access to the user’s login credentials, the repair facility will have to reimage the device as part of the repair process. This means that the customer should do three things before sending the device off for repair: +1. Copy all important data off the device. +2. Let the repair facility know which version of Windows they should reinstall after the repair. +3. If applicable, let the repair facility know which version of Office they should reinstall after the repair. + +### Replace the motherboard + +Technicians replace the motherboard (or other hardware) on the broken device. A replacement DPK is injected. + +Repair and key replacement processes vary between facilities. Sometimes repair facilities receive motherboard spare parts from OEMs that have replacement DPKs already injected, but sometimes not. Sometimes repair facilities receive fully-functional BIOS tools from OEMs, but sometimes not. This means that the quality of the data in the BIOS after a MBR varies. To ensure the repaired device will still be Autopilot-capable following its repair, the new (post-repair) BIOS should be able to successfully gather and populate the following information at a minimum: + +- DiskSerialNumber +- SmbiosSystemSerialNumber +- SmbiosSystemManufacturer +- SmbiosSystemProductName +- SmbiosUuid +- TPM EKPub +- MacAddress +- ProductKeyID +- OSType + +NOTE: For simplicity (and because processes vary between repair facilities), we have excluded many of the additional steps often used in a MBR, such as: +- Verify that the device is still functional +- Disable BitLocker* +- Repair the Boot Configuration Data (BCD) +- Repair/verify the network driver operation + +*BitLocker need only be suspended, if the technician has the ability/access to resume it after the repair. + +### Capture a new Autopilot device ID (4K HH) from the device + +Repair technicians will have to log into the repaired device to capture the new device ID. Assuming the repair technician does NOT have access to the customer’s login credentials, they will have to reimage the device in order to gain access, per the following steps: + +1. Repair technician creates a [WinPE bootable USB drive](https://docs.microsoft.com/windows-hardware/manufacture/desktop/oem-deployment-of-windows-10-for-desktop-editions#create-a-bootable-windows-pe-winpe-partition) +2. Repair technician boot the device to WinPE +3. Repair technician [applies a new Windows image to the device](https://docs.microsoft.com/windows-hardware/manufacture/desktop/work-with-windows-images) + + NOTE: Ideally, the same version of Windows should be reimaged onto the device that was originally on the device, so some coordination will be required between the repair facility and customer to capture this information at the time the device arrives for repair. This might include the customer sending the repair facility a customized image (.ppk file) via a USB stick, for example. + +4. Repair technician boots the device into the new Windows image +5. Once on the desktop, the repair technician captures the new device ID (4K HH) off the device using either the OA3 Tool or the PowerShell script, as described below + +Those repair facilities with access to the OA3 Tool (which is part of the ADK) can use the tool to capture the 4K Hardware Hash (4K HH). + +Alternatively, the [WindowsAutoPilotInfo Powershell script](https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo) can be used to capture the 4K HH by following these steps: + +1. Install the script from the [PowerShell Gallery](https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo) or from the command line. +2. Navigate to the script and run it on the device when the device is either in Full OS or Audit Mode. + + ```powershell + md c:\HWID + Set-Location c:\HWID + Set-ExecutionPolicy -Scope Process -ExecutionPolicy Unrestricted -Force + Install-Script -Name Get-WindowsAutopilotInfo -Force + $env:Path += ";C:\Program Files\WindowsPowerShell\Scripts" + Get-WindowsAutopilotInfo.ps1 -OutputFile AutopilotHWID.csv + ``` + +If you are prompted to install the NuGet package, choose **Yes**. + +The script creates a csv file that contains the device information, including the complete 4K HH. The service facility would then use this 4K HH to reregister device as described in the next step. + +NOTE: If the repair facility does not have the ability to run the OA3 tool or PowerShell script to capture the new 4K HH, then the CSP (or OEM) partners must do this for them. Without some entity capturing the new 4K HH, there is no way to reregister this device as an Autopilot device. + +Since the device was required to be in Full OS or Audit Mode to capture the 4K HH, the repair facility must reset the image back to a pre-OOBE state before returning it to the customer. One way this can be accomplished is by using the built-in reset feature in Windows, as follows: + +On the device, go to Settings > Update & Security > Recovery and click on Get started. Under Reset this PC, select Remove everything and Just remove my files. Finally, click on Reset. + +![reset](images/reset.png) + +However, it’s likely the repair facility won’t have access to Windows because they lack the user credentials to login, in which case they need to use other means to reimage the device, such as the [Deployment Image Servicing and Management tool](https://docs.microsoft.com/windows-hardware/manufacture/desktop/oem-deployment-of-windows-10-for-desktop-editions#use-a-deployment-script-to-apply-your-image). + +### Reregister the repaired device using the new device ID + +If an OEM is not available to (or not willing to) reregister the device, then the repair facility or CSP should reregister the device using MPC, or the customer IT Admin should be advised to reregister the device via Intune (or MSfB). Both ways of reregistering a device are shown below. + +#### Reregister from Intune + +To reregister an Autopilot device from Intune, an IT Admin would: +1. Log into Intune +2. Navigate to Device enrollment > Windows enrollment > Devices > Import +3. Click the “import” button to upload a csv file containing the device ID of the device to be reregistered (the device ID was the 4K HH captured by the PowerShell script or OA3 tool described previously in this document). + +The following video provides a good overview of how to (re)register devices via MSfB. + + + +#### Reregister from MPC + +To reregister an Autopilot device from MPC, an OEM or CSP would: + +1. Log into MPC +2. Navigate to the Customer > Devices page and click the “Add devices” button to upload the csv file. + +![device](images/device2.png)
    +![device](images/device2.png) + +In the case of reregistering a repaired device through MPC, the uploaded csv file must contain the 4K HH for the device, and not just the PKID or Tuple (SerialNumber + OEMName + ModelName). If only the PKID or Tuple were used, the Autopilot service would be unable to find a match in the Autopilot database, since no 4K HH info was ever previously submitted for this essentially “new” device, and the upload will fail, likely returning a ZtdDeviceNotFound error. So, again, only upload the 4K HH, not the Tuple or PKID. + +NOTE: When including the 4K HH in the csv file, you do NOT also need to include the PKID or Tuple. Those columns may be left blank, as shown below: + +![hash](images/hh.png) + +### Return the repaired device to the customer + +After completing the above steps, the repaired device can now be returned to the customer, and will be auto-enrolled into the Autopilot program on first boot-up during OOBE. + +NOTE: If the repair facility did NOT reimage the device, they could be sending it back in a potentially broken state (e.g., there’s no way to log into the device because it’s been dissociated from the only known user account), in which case they should tell the organization that they need to fix the registration and OS themselves. + +NOTE: A device can be “registered” for Autopilot prior to being powered-on, but the device isn’t actually “deployed” to Autopilot (i.e., enabled as an Autopilot device) until it goes through OOBE, which is why resetting the device back to a pre-OOBE state is a required step. + +## Specific repair scenarios + +This section covers the most common repair scenarios, and their impact on Autopilot enablement. + +NOTES ON TEST RESULTS: + +- Scenarios below were tested using Intune only (no other MDMs were tested). +- In most test scenarios below, the repaired and reregistered device needed to go through OOBE again for Autopilot to be enabled. +- Motherboard replacement scenarios often result in lost data, so repair centers or customers should be reminded to backup data (if possible) prior to repair. +- In the cases where a repair facility does not have the ability to write device info into the BIOS of the repaired device, new processes need to be created to successfully enable Autopilot. +- Repaired device should have the Product Key (DPK) preinjected in the BIOS before capturing the new 4K HH (device ID) + + +
    ScenarioNot supported for Autopilot (Y/N)?
    Yes = device will be reenabled for Autopilot successfully
    No = after repair, device will NOT be enabled for Autopilot    		Microsoft Recommendation +
    Motherboard Replacement (MBR) in generalYesThe recommended course of action for MBR scenarios is: + +1. Autopilot device is deregistered from the Autopilot program +2. The motherboard is replace +3. The device is reimaged (with BIOS info and DPK reinjected)* +4. A new Autopilot device ID (4K HH) is captured off the device +5. The repaired device is reregistered for the Autopilot program using the new device ID +6. The repaired device is reset to boot to OOBE +7. The repaired device is shipped back to the customer + +*It’s not necessary to reimage the device if the repair technician has access to the customer’s login credentials. It’s technically possible to do a successful MBR and Autopilot re-enablement without keys or certain BIOS info (e.g., serial #, model name, etc.), but doing so is only recommended for testing/educational purposes. + +
    MBR when motherboard has a TPM chip (enabled) and only one onboard network card (that also gets replaced)Yes + +1. Deregister damaged device +2. Replace motherboard +3. Reimage device (to gain access), unless have access to customers’ login credentials +4. Write device info into BIOS +5. Capture new 4K HH +6. Reregister repaired device +7. Reset device back to OOBE +8. Go through Autopilot OOBE (customer) +9. Autopilot successfully enabled + +
    MBR when motherboard has a TPM chip (enabled) and a second network card (or network interface) that is not replaced along with the motherboardNoThis scenario is not recommended, as it breaks the Autopilot experience, because the resulting Device ID will not be stable until after TPM attestation has completed, and even then registration may give incorrect results because of ambiguity with MAC Address resolution. +
    MBR where the NIC card, HDD, and WLAN all remain the same after the repairYes + +1. Deregister damaged device +2. Replace motherboard (with new RDPK preinjected in BIOS) +3. Reimage device (to gain access), unless have access to customers’ login credentials +4. Write old device info into BIOS (same s/n, model, etc.)* +5. Capture new 4K HH +6. Reregister repaired device +7. Reset device back to OOBE +8. Go through Autopilot OOBE (customer) +9. Autopilot successfully enabled + +*Note that for this and subsequent scenarios, rewriting old device info would not include the TPM 2.0 endorsement key, as the associated private key is locked to the TPM device + +
    MBR where the NIC card remains the same, but the HDD and WLAN are replacedYes + +1. Deregister damaged device +2. Replace motherboard (with new RDPK preinjected in BIOS) +3. Insert new HDD and WLAN +4. Write old device info into BIOS (same s/n, model, etc.) +5. Capture new 4K HH +6. Reregister repaired device +7. Reset device back to OOBE +8. Go through Autopilot OOBE (customer) +9. Autopilot successfully enabled + +
    MBR where the NIC card and WLAN remains the same, but the HDD is replacedYes + +1. Deregister damaged device +2. Replace motherboard (with new RDPK preinjected in BIOS) +3. Insert new HDD +4. Write old device info into BIOS (same s/n, model, etc.) +5. Capture new 4K HH +6. Reregister repaired device +7. Reset device back to OOBE +8. Go through Autopilot OOBE (customer) +9. Autopilot successfully enabled + +
    MBR where only the MB is replaced (all other parts remain same) but new MB was taken from a previously used device that had NOT been Autopilot-enabled before.Yes + +1. Deregister damaged device +2. Replace motherboard (with new RDPK preinjected in BIOS) +3. Reimage device (to gain access), unless have access to customers’ login credentials +4. Write old device info into BIOS (same s/n, model, etc.) +5. Capture new 4K HH +6. Reregister repaired device +7. Reset device back to OOBE +8. Go through Autopilot OOBE (customer) +9. Autopilot successfully enabled + +
    MBR where only the MB is replaced (all other parts remain same) but new MB was taken from a previously used device that HAD been Autopilot-enabled before.Yes + +1. Deregister old device from which MB will be taken +2. Deregister damaged device (that you want to repair) +3. Replace motherboard in repair device with MB from other Autopilot device (with new RDPK preinjected in BIOS) +4. Reimage device (to gain access), unless have access to customers’ login credentials +5. Write old device info into BIOS (same s/n, model, etc.) +6. Capture new 4K HH +7. Reregister repaired device +8. Reset device back to OOBE +9. Go through Autopilot OOBE (customer) +10. Autopilot successfully enabled + +NOTE: The repaired device can also be used successfully as a normal, non-Autopilot device. + +
    BIOS info excluded from MBR deviceNoRepair facility does not have BIOS tool to write device info into BIOS after MBR. + +1. Deregister damaged device +2. Replace motherboard (BIOS does NOT contain device info) +3. Reimage and write DPK into image +4. Capture new 4K HH +5. Reregister repaired device +6. Create Autopilot profile for device +7. Go through Autopilot OOBE (customer) +8. Autopilot FAILS to recognize repaired device + +
    MBR when there is no TPM chipYesThough we do not recommend enabling an Autopilot devices without a TPM chip (which is recommended for BitLocker encryption), it is possible to enable an Autopilot devices in “standard user” mode (but NOT Self-deploying mode) that does not have a TPM chip. In this case, you would: + +1. Deregister damaged device +2. Replace motherboard +3. Reimage device (to gain access), unless have access to customers’ login credentials +4. Write old device info into BIOS (same s/n, model, etc.) +5. Capture new 4K HH +6. Reregister repaired device +7. Reset device back to OOBE +8. Go through Autopilot OOBE (customer) +9. Autopilot successfully enabled + +
    New DPK written into image on repaired Autopilot device with a new MBYesRepair facility replaces normal MB on damaged device. MB does not contain any DPK in the BIOS. Repair facility writes DPK into image after MBR. + +1. Deregister damaged device +2. Replace motherboard – BIOS does NOT contain DPK info +3. Reimage device (to gain access), unless have access to customers’ login credentials +4. Write device info into BIOS (same s/n, model, etc.) +5. Capture new 4K HH +6. Reset or reimage device to pre-OOBE and write DPK into image +7. Reregister repaired device +8. Go through Autopilot OOBE +9. Autopilot successfully enabled + +
    New Repair Product Key (RDPK)YesUsing a MB with a new RDPK preinjected results in a successful Autopilot refurbishment scenario. + +1. Deregister damaged device +2. Replace motherboard (with new RDPK preinjected in BIOS) +3. Reimage or rest image to pre-OOBE +4. Write device info into BIOS +5. Capture new 4K HH +6. Reregister repaired device +7. Reimage or reset image to pre-OOBE +8. Go through Autopilot OOBE +9. Autopilot successfully enabled + +
    No Repair Product Key (RDPK) injectedNoThis scenario violates Microsoft policy and breaks the Windows Autopilot experience. +
    Reimage damaged Autopilot device that was not deregistered prior to repairYes, but the device will still be associated with previous tenant ID, so should only be returned to same customer + +1. Reimage damaged device +2. Write DPK into image +3. Go through Autopilot OOBE +4. Autopilot successfully enabled (to previous tenant ID) + +
    Disk replacement from a non-Autopilot device to an Autopilot deviceYes + +1. Do not deregister damaged device prior to repair +2. Replace HDD on damaged device +3. Reimage or reset image back to OOBE +4. Go through Autopilot OOBE (customer) +5. Autopilot successfully enabled (repaired device recognized as its previous self) + +
    Disk replacement from one Autopilot device to another Autopilot deviceMaybeIf the device from which the HDD is taken was itself previously deregistered from Autopilot, then that HDD can be used in a repair device. But if the HDD was never previously deregistered from Autopilot before being used in a repaired device, the newly repaired device will not have the proper Autopilot experience. + +Assuming the used HDD was previously deregistered (before being used in this repair): + +1. Deregister damaged device +2. Replace HDD on damaged device using a HDD from another deregistered Autopilot device +3. Reimage or rest the repaired device back to a pre-OOBE state +4. Go through Autopilot OOBE (customer) +5. Autopilot successfully enabled + +
    Third party network card replacement NoWhether from a non-Autopilot device to an Autopilot device, from one Autopilot device to another Autopilot device, or from an Autopilot device to a non-Autopilot device, any scenario where a 3rd party (not onboard) Network card is replaced will break the Autopilot experience, and is not recommended. +
    A device repaired more than 3 timesNoAutopilot is not supported when a device is repeatedly repaired, so that whatever parts NOT replaced become associated with too many parts that have been replaced, which would make it difficult to uniquely identify that device in the future. +
    Memory replacementYesReplacing the memory on a damaged device does not negatively affect the Autopilot experience on that device. No de/reregistration is needed. The repair technician simply needs to replace the memory. +
    GPU replacementYesReplacing the GPU(s) on a damaged device does not negatively affect the Autopilot experience on that device. No de/reregistration is needed. The repair technician simply needs to replace the GPU. +
    + +NOTE: When scavenging parts from another Autopilot device, we recommend unregistering the scavenged device from Autopilot, scavenging it, and then NEVER REGISTERING THE SCAVENGED DEVICE (AGAIN) FOR AUTOPILOT, because reusing parts this way may cause two active devices to end up with the same ID, with no possibility of distinguishing between the two. + +NOTE: The following parts may be replaced without compromising Autopilot enablement or requiring special additional repair steps: +- Memory (RAM or ROM) +- Power Supply +- Video Card +- Card Reader +- Sound card +- Expansion card +- Microphone +- Webcam +- Fan +- Heat sink +- CMOS battery + +NOTE: Other repair scenarios not yet tested and verified include: +- Daughterboard replacement +- CPU replacement +- Wifi replacement +- Ethernet replacement + +## FAQ + +| Question | Answer | +| --- | --- | +| If we have a tool that programs product information into the BIOS after the MBR, do we still need to submit a CBR report for the device to be Autopilot-capable? | No. Not if the in-house tool writes the minimum necessary information into the BIOS that the Autopilot program looks for to identify the device, as described earlier in this document. | +| What if only some components are replaced rather than the full motherboard? | While it’s true that some limited repairs do not prevent the Autopilot algorithm from successfully matching the post-repair device with the pre-repair device, it is best to ensure 100% success by going through the MBR steps above even for devices that only needed limited repairs. | +| How does a repair technician gain access to a broken device if they don’t have the customer’s login credentials? | The technician will have to reimage the device and use their own credentials during the repair process. | + +## Related topics + +[Device guidelines](autopilot-device-guidelines.md)
    diff --git a/windows/deployment/windows-autopilot/images/device2.png b/windows/deployment/windows-autopilot/images/device2.png new file mode 100644 index 0000000000000000000000000000000000000000..6f7d1a5df0cf44390a307a38b34b423372662ac7 GIT binary patch literal 43998 zcmbT7Ra7KRx2AFT#%bK$rEzH7-QC^YoyOhWox&Xo=mr{hcXxLmzVAQh%*Cv^n7OEx z5xG`n?2O3V^}ey6icpXfM})(L0|5a+l#~!r0s#SY1pxsSg#r6I0|_0?`gH(xRuUHm zsh#+K{MCUl7m^hM0jZCJe=~&q>ccunXgY&{ApQR513F}1ZUO>QmIG;k zzSt4K>58SLwPs0OLJwKl#uGv&;m`_0j1n9|l`4ov5)y(!dLf+M*4g<=amv%e{W@WT z3D<=6Le<_Hf4dIsW;Kr;KfCa`ot!9T!+`(`6eNnrLcF8>x5Y?sqz>~>OOJO7fbvhP z%LCm{Hdv78t8)|NF$VB~*$eGAs%JvL^9dFrLiu|I`hvmIBnT8HirB$7%rBD1XJqe3Bz-FUL~oC#W?A!4A=@Cladc?$NQD08>f0|S0FZwMDnZ{)U-SK(0x2%?IR zZ9%5nK!tA7xt%2?+}%vw11Eqf%W_+Apg;#E;VJE{_jB!}yGt_{#3`IRF?VD5&k!q- zUq6RFIE56hlu+UVuG{|3+Asb5cdCXP-*L^09;WY(8wdSM4z-C<45=au)!J*yL;L{gRW48lah_kkgO(3jc~k;2IFF3~BF<->rY3P`L6m=G{G_muFGgTWGM^;*8~8gtW%d)^ZF8WuWp*D=yQ&fa8Pw9AJl z6V0?~40-_9<+6wgQl{+LO>~FzvyOdf_3Fh)2AglcLb78c@x;Oxsx=x^?t5!~3FivV zDDN~IA1_|^ybo9FFXr$&eq6;~3KVy9S{?viUG180pvIAKoKVmU+}W@W4-WSC4@ZlL zDE9|T;2oRC%DSNb>vr7VDrH_>-DQ$@k(Cdj(UJd(bf>w0G^{eeO&pW}>6$K+hF_$* z{0Nu_8A`PKEBKl(vX}*Gn;g2%{eDwdG!+p)-;BkHGb$|?blIvqnTr1@dC!x{E^;0i zUmf$aA z_F1XsKkPZq{yz0gz`~5n?)gJq8WOrgMon|GK*+Om81I!TBb5l&(Y%rkP}2@nJj!5D z9-_MgoIv01EryR5`1)>iN`YM>e{u>r`l&}Ou1`gVErd5UHQnDg<~l{(X8VyJ=f2J_ z3Yh#3(+!{G+K92k6~w^EO}mJeR^BX{*2A+*TB@cB`pQSdTbIwS7cKpMY^xtr)#O7t zZ?NRinRWZD7OB(Y zMxe21dxC+xWA;5R!-lZw>=TEv46pCu$H2-^tfm7l%joQm&h*f2Dh3kIgv^my;EZ*G zRHrh2S+w4k@(Mj>l*YV}z)TOz9o07p*!0eiML~x`AkBuvX76tSGBz$10%D;L)Mr)O zx6e1G$J^%=GHqA!9{JaAm(e+{3w%)ub6x~q4Yj^JL1NzC)y7g)g)m=vH7o#lxcEc6 z(K|%swtJp+(4YSSi*(aSY0ydcy47E zv<}(n_iVIbm`0#NMZvXQiZ|rn%u19J(*><7dU;y>(V! z$Yh{`I3te}Cy2viW#0!iVYkqahwfpudf7;?$>8D&DthWNxpIxKEFVw2z3dm$to8HN z%-D-ZpTe}`Ea(2=E@t_>Tt>`YkN2_DlcSqO)4u+2Ev~04ca5C5!#-Cri`Vb%(z?|~ zd3`r!VJhC`x+=~bO4SJlVF0#?Z0)7YzHD5xOVV|{0f*I}<#re=!S|xmty+DfMcwyy zveA$ImY(8CxAi`yOzzpOIdY_O6ZmR4A6WdtpCB=pV8e4#)J`yS^+FH3DcU5ze`?bXFLTG78cfW zxx}Rh0$n0>Z0FT6zqmYz0l%8`Ahm>ylI%}Pi?hhu!CH0n*xj4l0ih++pvC046r`-u z&B$?A`2NhrOJZ?I$g3qJK7x*-81b=fg;aZ9a(uRq+G^OZt;aSLm_0_1F#W#aCTf9| zzE3^8;P71!Z%-=+7lLoZ4new@1m96~{!qZUxvSQ7nmfXSo3L~B|BXX#YV1DP!%$lv zII|yqbbbV!*76Ie`847$-lzm~i7js)dET*FhIol=+3U zM+vd4-+6F?H@h@S?0_z$XeM1>=Ivn0`OQQcJJL<9WV501K4t`G>-SLj=lt7Gpq#+j zgLt7NS}dhMRH(g-9*U0mJ@qkdr;E#b^5iC1DBFs-0AQU^e>@R&e8}Gqx!S*TBt#BY zU2HB~#w$il+3Pn`Wq3lxldBtzY;?aGV zKRK<3&$_2UTnn6BNk~6_x&Fs&Pkh=eKkj>qK66qf@|Qq~yF~zkF$t4lzy}g}&Ve%s z*Z%^E;w2!&is)t0fG8n}5V?LtMNLMDEK#Zup#vj69nUsCJ%!4j|L-! zK&zA>N&cKm*@=_;cxsG-iIgTQ46iEhBCJR8`+TuK6n#+@E7cVc!?EAfNh4{InX_x( zhpv0r_*(&-%=_G3H1555+Q%K|$}sFiR`Gt#QXM|eZ*J-}9Lh4d?_5_+uNIhfpj#?s zyBAZUL~$tyujM5#jd}HYczeF}|FEmAHBMC#e#+H+=ZJZDc{TRW6!=WLEDL}m98;M% z#$XfIk^!N$_hoy0B!|a(eL5k$x#7l)nPo1262O4|_xTceg)UN0-iY z7Bw$tlKHdDvLtZiRtR2Sk6JAOzPoC@{U_l5Z#S+hSxJnd&3{d@qwo%=EbMFN;Za6S zx-DPefTefC@g4XAey}gELi264`us>EM@OdhSvzT>N`ZWJxW zJ*OAa_OoAh?0uW*+NCv4YTuE{ zuLrgB;&9*h)AVCslyZO3_?lrXQ;;4H(v}6Lu$vWV=x?mpZ}^-SS;lI*Oo_W!_5)&% zWrTiiRoCZ_|A{Jydsi!?zgTfmcw52C^I^6^Kk~Z!>)uBrd;CipcOkp}elg-E`Y~oY z$)C&UVpaa{rO?l>ncDp~ApfI9KpYQuDv$xCG zUb?n!mxbwm{CY1GezMnh5cW-dn|Mr1)_vENwr5H$h-`ttWJkNsaKU?)6!nKMwcT$RRO!rAltKMME; z`JLM`OV!p{Sy@@vDPa91BUyLz$t6}Dl&QR$@$w;#2;lR2tBVOLyY9l>4d`Lo*ONNl zI@c=Xv%L0h;@o_-y_`S}=09xFj&751th*DV`k2UJQ6HUf z+s-SpC~2ql{QdV8!*5#nr(C^NkWdf`D6;`;^6>~y=w_thx%tbbJGA9X)& zD0_V_rnmI1j+wZREHehCq);rAD@`J|ns$u6+?@9fI&G|Z!}^ekP`eEYC?!)pdEE=8 z%B1?9Z)HV-{jm3UBy$DgBSJ@xAfG+wD~Q$nb1KCJaUzG6$Bv0iU_4Pc-lhLxB=dFEY3C`Kb|4 z_AKD9{^9#?xV)|UuU0z~78W+p<<;#3ir3YX=)-naMXVn{@aw{AnH=X%4C_y9>duv6 z&8o;6jdyv2^JR)KxBFj4_l%&22_aL`shWI|_n!jA*r#?CVg%QH{$S?wodoOcpUIwl z;)-BljJJ#RFk>p!A8|zW9F)dI$z_BU{?W`pYy6_2 z;qe-cA1$| zzg#=^PrS)P^(OZ7UoCDvs6TrK?T>ff?hmzS&|pI5AX_2gcudbwb?7mXbLAz7m##dF zXfWZRl+o(1BIt=wLEmA@jXWnLFcORut`41(RD@mM)UlqFrh)?$9oOCTGj^hdQV@_J zCg5+-AmacM7JbYqyPUj+8Fm5Hff^B%F2GGP6gE5sD<(eQ`GjobR=Lkag1X6rI7) zkyuA_u{ zIe&@!ka#(Ctv-z0Dvn>YZR3)8(=UxXU$_i7A?1rJw*(I;p71xzD)D4xw;1E4v=SNg zog8-fxgfUQKd(Yb6KHM`84Pd@;)JW^xL?!|Ql%m3#W`@rIS}+n5ajHybV)Gg!T{|~ z)*x5{&j*whSQqufl7C1BhOQDGIjHgfI_f!+-x*pf339SeJ29RR>VO+lhZV*n*BtF3 z_r6ln7wno%7{5TZ3fnEL1$CUaI=t?{X%vl8KdFwYg^G^k6~}v1<4FI0i~@BwbfY6wAylIX=%&sSbYxVo?4jRY#mr9#Dx3sM7T1ZcfSnM5 zjq0w_i?NbX>)uMmB?O`>XJ%O|5gBm8XxP2+@V(F)=OLU(qT$c$6Ds&St(bw6HX=y_ ziUTI0Vw#j)$sO1@7Igfcd-<6w2eYLcyg}74+*QU# zHr0+a73DXDF{;9N#H3z9YsfZ=s>*uy$xFc_zfP>P+}7G0En7!k*2~Vl`&NU{)k1VO zyX90(S0}7-a+H$KZR}u>&T_%EAn7Ar!qE|zbe%^n#QN~YZmT1O(5~S9Ru3Q6&v;vD zGuvI+&G7u6{T||mVtii7@fR@}yM5kQh?~b(V>3BPk>w`Ima|=KFH2qx>U$?w&yt51 zbouErsww&Y-i07D?CaEX#MzR*INRqk&onl!berBc-1^PWB^YybSYB=xwv5ls?H#RT z^-hv7tPk}YKy!7RKxa4NhU!XU5?shcM4wIaly=pG&?hn9*mq>P+_Bi@F0NIVI?ep) z2*=KbfRsdl(3u^!t7cj$Q6GRlo$Nv@R;I`CGDgH zwhVDrR94t5vP&E6kVU9#+c?;PeO~F!Nin#RI6nWNfzRhY z%|U3s_(LmKK~;6N#oOOSC=I&?=;Shy?inSg56r^9aPOyscQLU1^5xW7BHkqUvB8{^>@m`DFy|vc)L}0xY$3Q zTmR1MLdV{-e@cnl;X+Dn)2V}!OIb43CWMC&Qk>e7-}gtQiX?s;k}Cfo)J%asx*WD* z(yR4A0w(q|e9OVh$cbBr#QoddH8+x(m>FX2eVc8MxSM;MGV6}lOMw{OQVT#iwj=~0nL|Tp>Unp zPlm1_;F*g2_3fQO3&K1&aU#0v_1-8$cDwWO2Z(pzxBBK#dw=_uk7ZJNpR?L?%PbTc z*RA{eYp;u}Jbv{bAZWa$jSm+*^IO%DIf_!k_;c0ewF*c%Wo;@Hp7f7M->0Yv;)CFh z3Cv{x<}5>ARny>8&eG?1) z94^YGD}32|x~$plG$mVg%d&Go&09Px@?NO}KckbJdR-dWFpsuVgl?fW?cX zJDsVpHpE~l6!N_-Z47&S3PM_?)v`pqU+5UoM8E;8{r)Irt;43a<;c7)O0cK*80U+< z=q6BLu$LEdF-@-#Sfou3?XYg&=L|g}oG_Dceq$uK21$9ni;)Xu+wrwb>(Q_8il!&^ zc9J9DT8JDb!Eep!P65kgjl3vlY?~oXD*Zvge-V$kF`;BOv7BRG#e;i?oMm?ZH{PcT z@>KOZJl9#j1D+< zN`KFw0VqmxI_cWxIP|UQd=yw(X*k0O)!atl6|SS4DXADd096K6FB9peJG1Q0)7VM= zXYKCHHt|fL)&_HNWVo%g<~$q1D~V~;B`#a?1T|rOmHeb;PZJToJSGexpRn@Oz}2V-wUj5hD<3M9U!1+Ol$2 zdm#_s(0WJu9G-8}Z?Zx`PWx>Jd?Q&Sf&Yax4ISia!eQGZ-ZopXFroIZ0 z*Z&kqcpWOaB;_3i_(1GC&2~r6&v8)E(%Ng8qwCKjWLw8 zmhCJg&>9$XQv+hd%lS8~p!nlCY$NcixDub*EBPVTYh1=lW}w-RaTR(OBvPhG;voQY zx~xXkFfiun@i5QZ5c!|s9PCDOXvMTuRQxn6jq)m<7E;mOkIy)wsuLztwNJM^+6o9; ze{^4zsb;APVr6k&@VJ-@jyZ8P@|6a+U6%Nhr%;!aVdGk;uq9_?eXml=rtKZxU+54O zpsK2@EHAHFY52_?)d34T@?)G@T%AF{o^WR2c1w>+k^@4oiT9EkxGe5uUG%+%aegl} z%Wg60RrR}ZH+6>|)z1?hhO=5R6S5UE?+>E%=vrkDd*80y2)XdLo18sPZoN&-!KC|Q z-R9dXaLS!GyaVml^72Z(+U*2WesTHNV&!=W-n;0Z7CQ4a@L0CS+lTlmlRhUC z0>k!BZ9P0iET40Cu%~|7|MzVu17WoNUET=e6}te?G;0!hrL~)czp$m>kXEd zfw%PF?COi<$w4BK$z-Qz55E8t^}H9@)pbOYPM0=MmfKo&Lo_raRjIf<4TL&rb<%d1 zP7*f2ON&G2(eYs}VD;Z?7Zmw5uj3{uj-P`JJ-+MHpj|}8P1h@x%{W^Yi6*)Ge%6#H zJC-O)OXjXZ<9x^-Gu5(WQJvlsFMht!1G!IjN)%@-T>jimu$OY}9&a6#Z5u?8_zy2x zmz zhwdYmQ^K^>v)S&gj-Pg|brX||m&+~J5hg}Q@7d=0Jt$CM$Ywp_&goCO=?#*(w7*-S z4tq78*{omuGBHWLb!$ww@|3o8ugujnNR(M~dsxJ%N>){Awe3#P3QjOF4yb7Vz~5T@ zMuYiiZHqlFr$PV@H|w?;6CeR$o%&X%>a zmt&(San=b-T&|1hp^^>PhN-%iM$I__RQhW63ti+miavAgA9ox9RYG6_JM(%_wF45G zDjwnvjZBmkyB0KQl_DeDv@b1UjcqaS)@#RGE)@F)CyTi18^vL2ZWgohTYm+jC6#&%#3(JLo>gb;5_V?au)}u25XjPCz|axY6l8uq9-IK0YW51S2_ef= z@(mT>RX{9{evhcM`pAq}^Ora+{3uZ+Lkl2Q;8%tI4N0WBPnwT0k2wH?(}(bRP&8{A(?JKDsS%=iKP@lBU4N9x`*&JQd)G4?iFzYhB;eV@iFIqm zE!pswl5{ZPq%X>$bqp^K=fn?ej?dh6N2p42kTw@nO&d#!H82G+* zl!D=XxYk8hf%?{g`lke)zr~DdV9UnY1cQWX>S)gyF2FH5sDUs1*YDN|hY7dt7=Es- zt?-kUaCMz$*gw}Hpvv0+tWKz31W9A^?!^||FwFCq-pryvQXk9cRoTrx{Jrl=R`)+W zo6uct>W!j!JcR^+owP6wS2=cd0m=*Bb}npFkXcEI>|1>Yk>4tfT{!AXhF+WMbu~`6 z+yX+hT`c!g(P(~S3|UvS4X9u)<+UQJbQwyZUGsJHH(qTge*~bW9|C@zLpyKoGmUK^-O-1 z=hh!fa6UdhU*B=|%E1yD#fVwOA&?Wjs5;KogCik_(B&jc>%$A!IqjqNQ6i-ec6y1i zA~{`H*)-TpIu0&Qev(nIPl2~gl}!)TP2L8bk5r2KRkOu+rwkMIpc}+IftxQ4l=_<2 z?vRUgAd%=A!EauD>!Dk3HZs&FEpODE8D72j_+hGKc?lVFs=1C7c8*BgUuHr+13C$8z=iLM17 zh68e7Je>V9CyjZpT0h<*lJI=W#iPeTwxfEd%)L-Y-=AByS&%sz{6p2hPb^$Pv@EyV ze@~@nK5fYgFD)%AyNa?P*qQb*jW}X8h$RzO+X4`RB`zABJ{zOhmwlDXX1pZ3n&@IZ zz)V$Jp{(&e)&Ua=(AU0qJIU@b0o0q`W+GBR%AlXuIJA`~t;^M&HcWnB?(i(SA&-mZ zdVE&~X56oq^5v5I!gP>cwC5{M(wk>Q-~PuK)N0@m@Rs^+$Nw}dlOO_ty(^jZ zlhw(;7JmdA{A9_!e5OFn1XNYp9pkCPQc1)xo+L1jxY-DtWNB)q?)-3lM!S@9lU6e^ z@{~1wIlo=Nf;MRY8{Ivm`!a3QD;hk_-;f|vQbdP2kuz8C;Y%u7vL?e7^!?RdHtLzA z%HFj6+(Ug~p4K3+8CxgMYLM7<-PW4&3riasYU4u5*EyDr_f!=%HPg}b=Z0~!(VoZ# z(+TR3Mk*NE{SA%>M=g;jVG{d!pm?gYt7vGGE{@)sJk7reacp!JR2wU5C~7JtItoOM zJbT$m zC*a{{=&viF*%~_DY&WKo$n9s4X38-eFpi#|#d2+4qTW_bSlF~V0~=_5OL|_EZ{b!T z*tZup_OX`Wc<$lgEB)y)ZkQdRhC;yI_I=J?^xX>E(ZcWO z$~IMNi5QvHzVheHTAHR{JR2?yP3$>dt!SLGLS5Xu9(QwP&Y00N=ML2!~WEEf6o=`>Hh2mn( z7DZD*RVQ0ngLNvw&w8|v_J``0LaC`5JO5it3>jo!*}>S7p>Ud1mJ!{-q;?)N$jlLL zQqt+nt7%tdCvFF~r>n29Wo$2a3x>so3bS7{F$4HbNG%dfhCIybhKoHg?h$pIrHpi4a38zPkd&SYFH? znASAuiP%$Ktl}l_o@Q!b>R*4}k`xx2f>AF=L#u9oN@f}zq)mB;Af5U0WLvM*`7pSr zrixyIotZ_(c`YG?=&`%VH`Xqgw;^^YzYeA@0KI@M)`CLMoZ1<~kP>iAzSc6;zC@NR z)v2T!hgYiBx(&CVkez9;{|wKYBuz^@bB06^Yl&fiNE}v$+@vswVbYe%YvK#tReH>y zHb&38q=eIYwIFqfT~{+UY4?5&kr8cdql$H0SMxVlS#@O>9V>NJl*M0I+0m*R zfK%fNrqVj5+nb=*(9hsR%WK=iLJigKpb-MlV8*WfO{3f(6<7G1(To%uLl?m;TLPu^ zz75N1k498;&O1W)Q`6CRTN1hHW>YXdsR6Q6Y4UEb7sS$7PnXV=B^1+bC9hOJ(X zO|yc4iS^St)D=M$H;0;To}D8!In_l*K3X}KjsR`E0x1p zuUJvA46e=fvo2rkPCoDXvpj}@`J!K4+BE*>T%ErAg{(c_LD8H%fg}4WA&NFGHoji0 zLx&9&6FDr*!T>uv(IeN)!8GAfFA<5!7~_%B?S1S(_7Gk5S*Ifkh;1yjiB;E>Sa_uz z**GiD;M0Ty?*r%@;dYqoA%@;3{h=>N2F&)h?ni~BV|QI}hmq}glR!m*{Xa*oCf zqs0UQNS5ok&B-1O+9Q@em$d^=H7uQZc&EZS-S?5cGEoZakt?b4V!OkK6wHk{dr(3( zMf>6NYN;z`YI&DQ+Y1?|x|x}U=>;%bhCd3e3_tvk4$BG7-nrU;ZgAF@jbKT6g`biN`aN_Y8C9H?HxFv9wXjW&oGkI6P9D&`!0pXYcIycKpnh~}Woc!(T)Z&4 zINb6FL>EyOFD@YaPbd4kihqe@Zf52J``Azt2=n^n7z%>(#f0y(W}pfChWsR>S9N0a z84VJwbaaPpL51f+ah2mI2H7rGuZ%2G40ve7%-VA6H4K;#`6y4jdIwg^PXAP|0 z_ZnKx%f= z{$ZE)c@a|{6X`C0E6n>+FPMmy&eitRdqqZQ$-;tM4#)i)yjx+pvF=|tps20PKX}>W zxJ`u3r2d?9(@cu}wATmo{*IEHvXvxHE?>;XcSqq7ZlU=@)e#!_idib67gtqcwHVqK zZm!e{_f+#E)u2@#4`PA0ZGx11pdMCnd5&R}_y;2DgyjH{uUwB6(gt#11oiUcPn@j| z$+0fq^|d()xGuuweb_^JD~lX{LPcUAE9050!)ReHIX1*z&4A$tXo_a7<4w7 zw6P3(Z|C~oCP$`F(g@ygX(+6mRp>_Xc%a(TY3^c&_o$4r^eksoCcPZsmosu{Pi;X9 zJX*I)FH)uk&-8vc-05Fn&QD*`RpnGy$}Uh9`DoJV z6`YzK5XPKn8`fQ^xD-ZzaX7&_t{X{=%%#G#34c-fxtytx(N-cRwzz>ehcR~b0(XNa=IGK7Sqq?H3o*4q4#afb=wZPVS1y8a+zS;C z5^$S>XjOpgwv-6F@>*(_<9rDmQrL|nYU_%@X|oSE&q3tPaW7be#t0SiMp2RG;=Jd5 ztLa4yf8)5gV~Vda zYUn$*fm7Qr7)uG21(u1+J>Cm-@Wa<}qlh}*CByTNc)xc2T|A};!M~?;EUL#ItC+2KlZLBmQ!eGhH;B4=$Mc=c%)sq<^uu!pydtWbBHlty#>zP<8Od~Ng zS)%>LzY6yRp=9lbt)vZ^gx(&AH)z5nInROHhRAt%;cppbuPJfcB9__nFF7w2DYECb z=f{2vG~x`H$S@Hv-c@nf7%st0DVP4|e>jqQTXJh()0%to3iTP$_dIYbEZWst-4_qd zP1IT)@DdjYrYDb|egnt=n%1|LuYV}E78^iTO?kjymrKIL7X}yWs#uMjvW{GFT3yB_ zA7?rz&K4VEs10wi30^9>TX%Uncp7wMC(>V$eu*StS|hyO20EeYEG3*ZSue`*z0!$D z1b`B(Lt=lf2KeyG`oCKGw379^% z@bn6QDZu0WxyC5gO41ha^RcV2+c*3rR=Ko-{=1O-af!CO^-CMfeKyk+A=` z$q}y7KtUow=U~Q-@$%p0`rxP@@(aU|Jc&GxU=)DQhX0QG6$2s&PJ|>vgANro0JsOh z%iz=(*z*t1|8E)k|Nr95E`At|RXNp73}LB>kwImFk15MImKiI>MUg>is15AD^+vCp z^fvKdD;Y7kjy#0Y?M^W+pl78mF~@bL>QllwqyHZkMJBsFXVz8X=;1 z;J!LP4N8I%H8n<*!be_<(&w{kU_h_O8s%snM!xnn>qpd)j|>&2@f9%hgJsD1NtIW@ z!()68;IEx03teW1Gfbrie9DSQQhVM<3Q(nPl`+2gbM4KTR@Na`FwOrouAz5|Q&$Ck z*d>kk9E12%@hZqrRirkD$#7@ya^fYKIx-h(L1T3ci&pIeA)+Z~_4PFbc30ew!|0DW z=@9)Ue)c>iIWw>($wCT%7s{6K7CFzFypeh5j3Yk1$7t9z@4~EC94Pw!ygKA}^8iiS zqt`sdGv@d`=HWmJ{|mKp6$=$p=04J{D2EOd%sp3!5MQq0Z&}gOTG3Kpr}1u+Uqbrn zSt1GRckSwvza&1Ahe0)B)8Rc%QIZ-+EN=rANQ8|IefXf-uG^lfIw`1lC+}*|_5J$0 zA9)1BZu6|ARFRBQM=uTOs^N_|8}9jfQSGt;1^^ykwrG5=E8>RdH?J-4Ebd-RE+~-S z=HswQ()m0iG6)Mk@1d2d4R@) z<1F^^(`bh&(FScO@MKNRDJ3SG;Z_2LUbjRH?hW|9a4wGyebnexOY^$JYH=%|;`E&Wjt(xc!I>&NB!!jEM~JSjH9F|$6>%Dm*Vav% zr$M)PFAAutioMqOXB|CxT9EiRc*qQ|H|O=6Y2R29$!fo6$}4+4ir8eub56}KkN*Bc zR&?hGbkgok?(^elMxeMo`;aRuVzq3V=5C2N*Ig4}@lg`Fw5hbV!-|-GFq)o;Zpj%33bf-l-kh7JM?qO%*X@=ecv>?3 z`X#ng$D6M!@V;6CgX*a01M&T?qX-e$b;7$2-~tNhUp}7WbZ^~KqHb}C<;xx`4iA&- zByTlzH0*+RaB2LRj|z_g_qEr+#nv+CWP%CWx|{dJ#=*tby`r_kLLt$!&&Y}?2n@7z za8fn3lQYo>nnw&zKN&0p0j>}kQh)5Kb+?O?CaDMoP!>J4&ZRS zKvbcSZe4|%c!lSzm>`fQPxy9_R|z7A`tYo~CS5aYu}QDVdr!L3ly|1N)jej{?(1^Q z6O3nJf7SwfiuxC=rXth)8+U*nBZF_A*z2B@Qyc=V{@b!QYcjp`O_%!QhfQ4{BliVz zGc%0VImeA`i7dBY#s{=T(_<4Ke1#J1s!B>F!73D)R7ds`$XGuuv7GOQ0ViAL43GFu zr^%RA4n6z^E}cTA;T|r;nJh`L-+L_rq~AGDr{5ReYrM*$mUt}BR^pgO+9BEXwI8cm zE;Cl{&VBWY7fGBfk~C(nj>c3*uvhww8iz_>c^915cGt`;eHec4Weozi%QbztETA-AvX~Ik6pkilvadFcoy*@Jr%%19@<}>X? zOn000K7a6Q=sguNW`f7c0C-rKo(<@5Nt*tmrur1AY#q-JzrKY0^kN7?Zw%KYBW|94 zukaLQ6C0O!f2WdPi^ld%=P59L@P#soM*SDHi&lMw3aB->NZtguG>+ySxnz3&O9#wvc7> z);`{N^!;yE?6H(eG`3SwFM%HiSwLN>Z(pP$4yV|u-9gR$uEnKK$su~WekNwJju@{S zv_`Uz-g8WAPnQ~5ay<(cP#mwu>NoTNTFZbNIj*gc56`~3`nbGhll>*;L$eyB{nL%^ z3TIW9(g=4O_y&((*)%`DA9+(9(WKfw<;p2(jWDk1PD>H(5N-GMLouM|+3ckadBbz} zRhiQP7RUC6R@Sn?RVA(;z>2kKI8%Nr&?Dz<9KOHa-yf9K;cN*2mR;sep4c_KfuhqJGXGbe8 zBK0SRy7iIp+VpQRNuVH!NRjOXbsj8unKtT%gYQ7Y5pEa5n%i|tmhT*_Ag+1mFj^+>g)mA{tlFw?Tp@MyYXV(}Y}u|^=)8l*>K_Z}VJ zV^Z-u(5Azs{y@AnJm{l;A*?vm4$Ggg=cD7CIrm~SJ#M3i4L8+8abCu)-H#`ErEhLb z$;rb@s-W^u^Sp&fY&FO~5K|{R2A{Rg!Qj)BE3#@moaew!Ue(2Oqb)hMjaQ0Yac+hR zLt;<`zV;HF5^qix-k6+LjG}htq~QAe zm&LxQJrR?bRlKYrC-Y-_zC;%Nc1;SMwP-^2k3EIRai(ht=79gU=ht0>_{M!}heJWC zjU@jR@Niq}q$5^{0hD{++Ram~s^A$R;~B!#uZm>9--$=!$*f)R;wR28? zKbzstf>B_wjmEuRF!q~AvaUp&2g4vJEM`;sbX(93Cf^d?{arsR^L?%A`16w!9OB05 z>))U|*kUjxU}nu9u|HccR1bexXluPVLn!eVEl8?2m#d?@&Y%1ppo>P|!X_{Tj*wRo zo?2gZ6tub?LIG{OM2nv(hS=&+pqJ}3eu*t>Trjs!rbRk5>0PK-bBsCu?sMR0$5mPZ8=e93L!}?8&#Z+ibFE4Pw(oLf%~@*{)`vEfup!&A&`ZLUfbTyd3de zN!|C@#>2$j%HMl_-?duU_q=YuUiREh@LcwMZtzF}fc|4uQWQVwT7Ysz@0m;BR;|(!kjCM5tPB36}GjT22e86QP*I z4v;!)pe1*(WCGcy*(prsOn9ZoGnJg6JP?syi&)Z)(5I2C`V?WWh=$5xky98_#cpsp1 z7=xiJV#EO@ovo&lrg?7n%Vm|+3wb?92k^V2aT3e4U_`=2Up0r9@wa=P$ODm9-PN}& ztHQ-9985VBcyh#=2xGae0>1DKCWsor{0RD-^!c3M`qiR z$=I#8T)&_AHXSG=kJbSk8VhdnfVi%w=d7k-=h*e@JKi2UD5|#;bDmt8RCn!j<9Lc( zrrWzawl(&ghY546ekq~f2UDc>(H^g(^5QzNr@Lu7c`OI_sHFV*hDl&yH@v3X7laOv z6EUuv;CO&ZbAFHh2z2P9PpAf-_k5{{^g_yYxBk^8z+zT?NdroeDqz||dt$@EeJT%h ztm3Xl9#)^i?g#V3&y}*x+~!X0sZlB3?g%lwdflOg*;(D)G-`l9)9}6@A+;S}oy%TU zk=clULNUk_`_0=VTSL`gTvp#Ep)a ziK)M;+L_ASxpVEc-uGEeulq@jRP$W+fMzk#7WX_j1q;2v7WmmIW83~`Q+D6`%i{*O#LDr@pc?m_tcmBSH zMz0RL?QgV%)a$*MZ^!~TZkOP9*ob|j{Bu@!FBbuqgCZ&RPduHJrdMsqJ%%Un-c#;h zANyg5^kPdvOBvh(%!ERx#aQTDJr|Py>-lNZ($;2e(bdf(a*yu*Z)grj^WuqjCn7p9 z^{%@s>c(x6^mRdy2^p#YWa@f}L0b)D{WiYy#bnFJAz4?VKyJt-R}ftdI{fvu^I-Df z^dMnfCDHONib%ruGR@h1X`8L3u=MaxmlM&HR?0lhc54|RkL#{>Da~K?tGk}vE)3Bt zh7vTI`nRN*om!`f$8E5+&a~5)XC*`5)7xGzGW00q`{6p_@WXerC zIks8rxgTb0b?cPk>I8@&5m(R|-ccWWJFK@#5>Om@zj=htD3N|e9h8)t?xTC;e|w(; z%FRv2JPT+cT~^;eM>)j5I!`?}7X;g+)eCBiDZ_lGLB_v&hmm#F$5ecP*IFU881|Fl z=eQf9GMV%?t^Zz8IojeW>u8H?hzz4%I#ItT>C5~ut?u}GGlArL-Jikp?T&b(R=$_z zB1d`NHg!|0<}@g3wW;^f(a~)++HVGPBZN$d7{CV#xe_r7RyGz^!QYoy`h-~^cgS!6 z1)GbjtK-|(-1JBpQ|3Ax;DB*%VS4mHSgz(i;MS@V6lCVeACfeb2E#xt1DC6 z&davYDbG;I3Bx9znICZs2+!L54UOpAH;xfVCTPoY=W}EBJ)L@F?y? znPN6R*x2ZSJos2Kqo(68JHh_kdZE%6)?kfi=E1@r9|33JLrQ}#FPOO#Vc^pk*kb`( z;E6J@KjNb>Msa8`L)`S81tZUxeX zl15-Ci_Zgb12HOk@RB^Fqa*uQjW`pi3`=n&mE`BlnQ2=n@0{`W#Ug8r6umo?tMg1|hG8-?M*hzoUQ; z5`sZrAosF3>$oTQD(&|FE;F_UUUk2?6qJUZC=(}Zl2Ob{JoU&PbkbnZxl59(fiyVp z!AgJ#{Qi))5TS60scSkEdLm&Ij8}+sLI$u8XyLRG>_80RV-tDkR+XY!FyB}PGDACE1&%WHxAv_@=@5)3&y=3n}h9pdcXb!wRwxzQ^ zCUe^btf4~TnHDc@-$MpWZ*Lm{i3+GAuB;(%PkZ52rZ0RI{L;qq;U7~`Az6RDUc5as ztA}05{F@kkMR|>{Qc1+SS7{%yPkPT)}5tK5V z7$1jF$wKn#OQli8V$}Q2%>%N(Q|xH_ACy3jRWnM(CMZh%W&nP>`Vgsy?Z2p&mu@$l z;Squzq<&>88}KAAH2nAq%1MumkFdRh7I?^jMu>`pT(;RYmodKPD!k!9Ar^cpp+a9s zHIn7-*1EiPkHtp=Z5!YNn;Lmpj5TMj~S1jKG0HjSGUovQ5Ye%*vSLV!N>DxCEaV;d{Wn*Kb zYt0LTb1Y_CvUw^(?_XK4y9+DtJY0sv0&y-{IoQ0Y$IM)pTALf%U^6(Tm6ryDr_akp zrW<}VWku}jX#_}W+Su4>TbUssV zs0uoGAOLOhNVP4V7rbs35MV-MuSYgue7&K%?ad<;Pjgkay!RE9iCQ_H`c?}R@>qU! zrp(T%xZj8N9BSv4bRsW zJByh2xkfdRzXS)ZS0RVT>2HNqy zvvnitZCroPecyqQYyqqmS|!e|xfwpp_XIQ6i>)3s`EJrKyhR`r@_GK5-oXRox5d~Q zs7Nvl^StuU<8hmm$3bV7 z>W4*i9;e-PE-*qdCrj57U(frsW~S$}Ad_yuFQtb+!B%tcu3?whe;vL|WT0g)g1>K& z98HB1oeC#s{Z3tzp$FJM1m2s?B8Kyx7)ejmjJhd1+#%SKnV$FR?%|%c=Hb)nUaP)^F== zOaesp)<@D}lpRl}xe+VprEq)0aWH|Q&g-Gl&Zwa8WE#dpz#Xd5F5xStDdr${;0U6! z=kPg!f9JUiD(uG>YVV4uN2gQ(A5;|%bJ`mY3ZRtFe=g*j-YBJ+D_6i_bBfT032xQI zg52OwoLeO_?UFu{Neb0=HX7THGRj8|&wq9d9R7D|pJ)n95>c}Yc%6rb%*n6ONy^vE zWw)PoXnh9SnYVBO0r|~*X6ggU(K>7kzkfTgd6EVb7}cAteHq@R#9B;mvt8t#NQBNR z+_K$ko4^)Pf?G*+R|W=_SC12v*x?}`Q{KB%S`)6N&oQE)h$$+Uj-^9r#Mj*~)xB7x zI-xvbT+yL1tpetT6m#p>NTI$hsWn`&Qq^jw3@POEcn#&I4J+g=EC|>G&j(KI<_kET z)>{$o^SJ#aG}msg7X(uM_A-cIR5vPBE9$n~{`~3>kyOl`<*n{?d1FecP{@9rP+UW@ z`htU-D^M~FelLDe|3AjRk!J;@-iL2l0wP2)uH$@o!-6$I-=WiDxk-p=_vH@ z-42FB;rKLfqq@s@C{)^I{=R_6N$<2~v$7Vi=fiumg>3ct`Po8|K>Ka{H__p14SG@x zLPxNDp3)OYx2bB;!jJ=S`5Lj6*648^dbRc5uouaR^E|%;bm=KzIRIcF{AaD@4-iKQ zRYn1oXcrlDC}Ei0;lrpm$uYJIgRmt3yfPs*x@&18&% z*-4{ymwC846P6VDfXt5^k7~K0-)kIphrrzPo?kgJ<*`s-&)OV%c-4O;!r{oLnbp35 zcXeJ)uU=@tWCVqF5HH?s^Ki`J!Qo@r)YO%_L=K4!19e*{7g&Emu4Q%_P1ZKy)L0$~ismE~YG?Yf3=C7EzXFqI5wqCVd z?e#8nW-*p#Sk($Xc=vq=x zD_#HUd_AA1QvQSCq|JqKHLpWazq1%(VEN#PgJYNO*_Y9dfY+UsneVdN+#S%y;d+-a z*P~-T9f`7ojpT6sJB4*_@q=?G#Y{3r%d=}BNZN$5I?r)m`bmMeC)<2~bT>V35vsbr7>PbTSJH?TiZQ-x)dwU^aR!@htMs3WBnksg1q~5HSRhJ{ie?j+9tzj?NDP%F!lrS8-mA3{ea9G*h(UPy`YW{xmoEO-$ z4n1~u|4CI4tM}thi&w(a#*agJis13?_C9Hg-uD-Pfo9FUU~&%u&sp>}q_Rlg*41L- z75)$uTvdbJ(t)rL*vCti=)+UWaW%#dT-a^AogM9M8%%ZsYqR%O1=V{-^$HePOsl&X zYqSK^i+b+F?Ge-ny$!zoGA6CYa4R2{@9?iG6BRZJnGY^JwUZZ7_I=hSd5iQq zUDg9bcY+i70s;C;=tO&nkcQmOv;2f)my^LGgQ}FO2_mC!RY@CkCo&paKU{%Ut^UEM zg(Y1>6HE1B_o`T&dBD_36rr(nwl+3)$0Xja3GOc8S=Fwy zN{#`j7&5g!7B;r*1b}lP(OLX?e!oH30ew}8H_I>6#AKa_558O$5gAI9bXUBrPP1Z9 z^!xr3XBddCu1y|Sj!u5NwG@JKT6ii9=dSusFW;R^%+IGE%5TEXz<3gPQT)|y4wq*P zb3C0M4=ncm8IELkYf_tQ8m9Ae^GqzxnUPBOc7x85cpCYyL!V=v(BEGJ(f2)cm_t7{G-k2YS+*|SNJoN15>Y{+!2PpR`cr; zMGW@T%Xs@q_rykv|)RtDxI;lY@U&ujNX^ff3J^Tn>DufY0X7FwjuId4T!v zSG%3v0*k3v|9e0T)+?vYbE@>5#e0Jg%k8@M7PZ7*+|Ga9Wd#2oxMiE`eL=!c$pD2c z+SY9RLefhn>zAfVqhsOGeaVXs1t^MZz59gCz^a2Zu#kXoW7-8B`>W$2h5_%Qn? zLPh;oi1YEk{72BYr-Cs5%W-`D3HZI)?>ey}bEQ)#Ckg}&om@fqBU$i&#yYyR`Sxu` z)6kCt?>g|J=f(bDEbV{W&XuXqAbH^j6JtoifDoVL{~<;ofg(th5xP%*2l?-1KKmC> zX$eNu;e{h92OqnI<*|kHtQo@x*Mu98d%a)&BOqDMZvHKn`sMdPsAr83nM z7S(v-9JkQwpkV-Tz#ALG#W=Rimjz{BE^{Vc{pHxwp%Je@Q~4Y_DUIaQ3p{`Dw~fF;ewkP0sMg zhoSTsGX@4a#|Q3htkc|_`0Dbx4>U2CR+q3~Zq1nc-tr%1^m%D|}N4Xcf# zrzeX+x{k7zBFGUf7U2N-U&&sAZRH-YkXk1U8*KMb;8~?3r^WStjt73jZ06~Hk)?G# zaWe+4@|tY41&nFTUCkbP<7cOB9tVvD?iFr(eqZg^+$M0BXWttFH-@{sS-J$M0GhCsI`DFi5y#1xm!gjIF%G+!m1P`Tm38hd- zGI}_|LH0xCO1y~TPSV)1f?eD%q;!Cl^#P=S-Ob?!uDO1?0S9IKoLO>8f4t2P)(u;} z+io<7d+iLVdqh8ral^l^Y7%-&y+~OlXpx>b89ogZyU|wBR^=>BeoS0SNZN%DovU{; zbn7g`cJnyDG+5biIjC4nLU*IPOE`W-3Yh$v34WomF zdB!g^l~Fy8huL`5CAW|H6P*cdn8?hSQxg4;!=OcPtY)&)#$%wL?fZ`uQQEP5A)Orb zyv#&Y!_6^^S>8VoXyRW%z^_+LuW&=BTp~AVuduQH5SV)cK2Ohu26aY??$Su94xjTT zzfXq5X-4<}yl{(PI*QU*%`Y88eFTpS14dL6PcmX_M);_#r@ z?fvRKW2M|s6duAjm{l}ESQadOSpSY1U|1wVV9@!*kqOsy-1k!mov zVte4!TiaaA{$k)yWq{{yGO9tet%=bOqoV?{VfvoiKYn5~!Gx(@_v`Lzq#KoYd7B(y z_+G=g`+9}I8OJXrI}3a|)q5%H>WiU5(hlQtb3fQ*+p^dn64GvU#nSIZu7mi6SrjhG z0IVLXW}UtE`NP50a`IT#`t91H+30n^v)&*0ogPs2$J`Zr7#m|YXRL%&bR2JOY`1ZD z4#cLqfWqK#$+#Ne8R^VT%+V5;b(W8xH`q2VM2gfpqQLV_-+=)~M>v{7;T zneI{WIT zSR%(IguYAILaf}57W0(NA4>8&IXM}w4S8l3)}7>MTVpT(baaD~J9Xhk&8&EY6A%uhXBNAiwQoISNHOJDj78$Rqek`KZL!3l5cmo?4%n=o$P z{yFxl8bxXh_M^x4a7y>3iX6*e0i<=<5sMN?-_XafUkG<}EBcwc-~0wB$jh^+L{@ca zt9Z^_b4)f24f=hGU>v{z8J(91VcKiK7ByiIa zFY9;scVQ@z+~iZEPlIUl1R6zRq?j=j#E?dG>TvWiaJeXGYG$!0J0ZQxNn4)@YiLph z`D$QKxY$I*u0qs8KdB25B*B`t`a)tyL;IvuBnVy4SBa4qhQh4VV{G%)6_YTcpkEuV z2KK>Lp@V^$lYcrj(kLWS`T|A(P832p&vyU;S6S44?PU!6^FSrR36&e^kd_GdY@SRt z>}qNkYKy3@%GyR0T639!0W%HA3dcmpS5_V~e8GS`@;%KtdzY?5iln==C*jYj?b)$C zldPgNEt!~c@+k%U2Ffsr8I+E^y9 z+CBw!Q43weZ(2mB^}-|!kB^Ow{X;kW@(-*M{~y$$=BNK>c01?*|2^vPTCO+xMzrSh z=i8~=nFW5A#aS-ZV(I{BPme>hYBqs`w`jK!N2tG70#PylSo5d<%Mtr(PRURlk>DZQ zDjreIa@o>vpBB^l=S~}q-}Ca8>NTR_bpI6?^4NYDzj^}&R47weZ516#X9V~?S|M$> zImHbcn7LYiRN)hwL6|LOob5UPDeR)*Sl=8fsw$eFd()BQ$4lL=6>k-izoDC1u`^1W zOZ1#TV|QgdCF!dwY+WBqJ{jSy(Lh`z0bu=mxYk!5`&tPqh1x_vD+J4?g>=-e^j`$M z@sGa0L$AmLAMFQrPRd^oE@lpay^NG)i!T;)0=$_yCW1Q%+0IIhrCj26V}BktAB}!h zm?W%~H+D3*PZHc6WWt$9#y`4`9+$_j@>iSF_%S>G40Y0t7gOyC>(coTq;d3P3ZP=X ziG^#|p5^cwhkh|FLB!rt&r_d%-~U+MuD?^!TQaessaH@U@U(%6ByKrTdz_N$F4>&1 zp>y>-Y`8TF9Yw!7Z2F6rsCb5wkjKKr-Fc?7z~6aA@G>HbXhLPC{UD!=2<*D*iu6qe zK4%QgWDhMl`JC$4@a7b)={HMFaVX92%kR-b#bz{7;vm49*PuK;Nz~^i4GwszK?zVJ zfQCztS03kAXo7OzGRm=i^wkJ&!mQTM8FQAs%V8Ad=B8$5rp-SfYwOcZHec?Gn@3}n zWzU;suV{~sQw+9z0HoGaxlV#LRbH1wN>?*^GI(z(`bK&>-tH3K5@aE&8Ngn%-y;vH z62SR~Zv!bKbi)XD)op<8;u`LUx(Ibwb8R<2gkXW}nPV2|7OJqJ;Ul-(yZaXR z&ql^Ibb`NUGN1%;L3N{{#rSjWth;fFz5IHM5#~OY{z4^o9M0Dd z4=&yQ73#DptnjUVANSv9N_te;@Dj%ouklo=rrjl6Z#S3TQt$f@O*AjszCx92lzLnG ziIr61t-idxtmUi&f4-oRz46=go@GBDmwLUd8rF+JvXVbUT;-~@Qug>Nucz!gHdd8= zrQ@hCZnv2hRw?CT;Gp2Ai;(ZmE4}TRY?(ZKO;-6qyYq0kp{Ov$U@Y*iVB(=xT1Hu6 z!GWfRP3o=bXQ6B7q)dP$vF%n?zCJZFdc^NRyhcYyKl6u>Me8^>CabE9b#Py+gC@Ym?uvi6 z-)rZ?mfsNv1+M(@T^P(nOm*c{OXwD+QOj-!mmx%1FHWdZtGjeQ2s{l^7@X|`MI0x$ z)z@?1fRZm{*=ELdA1ed}A=xq}lWnOnN$kgo%dAZ}`^W-Tnt3Bs;YgRZ#4 zZkB&qR2U?;IMVgwg)=#~0;WJJDGk;)9LDs55UI*cV&)<-o;LAKC=%Rt$`rKga5VuT z8Q3TI_yLOuL;1cK-cbLvTM5Hvy3>kHO}CXyucM3}XL#H{yI>2Z zy9|_ydVensay1pUl~U8~RCOv6yd<^eCTeP^&WH(5P25V2qYlS;sq1@i3+jSaF9RBU7;4XS&PV@ zs)zzE2`PFjrS$YOgV?uWenHzXMc=fR-iVv3l}#n z0~-ZpA4?Ce78Ap~(D-H04EIO$pvC*p=j?>{a$Q#5&3t6ZD^~LOOEFN#{zlboPvh4-*%V)wd0o%j?(u^5EY7raHkw z5*p7E8Lii5th>m)9bvbh*`amx;>HWh3$k>l`+k{;1-R=pMP!I7>}}Tv3K4%W{(S?F z2lN9Nt}l#F2R2j@c(gx{dX(JkuL;TPfvXJtDtzP_^R0QNUh>Hb(Upo4a$*ywJe`b> zk^W>=9jlpkB6a|5fJAZ{7xo9)7 z$FFTZKAU%ObT(Kr6v%J1=wx0+gk0-ge131q)FT{qPA9*O0o~qXY z*At`$&Och`2$-fi{iW4`0k2YrPQBsjvu4Kj?#ZnYtq~Ow4svo|NLADzF=h5d0PAqb zus1i3*V5n1-=Sso>wW@Qvwl#J{d`Gptw>1l(9_`3Bqs~Q47j$LuNC^SshV|g=DjvP zH^<8uLP2ibSaRX*{n!>pg)#f2|8+@}b!QI&WuzDWpP*^?O(t0cj8=o(1`RA2$-LMY z93A!mt`zd3;^A)Q1;*hB9+La2kW)(c<)x1j`g!~Ck{B{!V`=;okfjPnC9tG8Vr>v- zp)}wVDt}Y893^H6H%St9BqTRu^0<}=^NY{Rb7t`HbNM-PM0pD<^dBRM5dFw7Zc5)w zMA@&`$JZDWQc1hgP%2V|g;+GGsMKy$xbypsFyGrRD`DU%AVK=0HLm3fu}BnT2Ln;! z!~m$j-FOZLU+ySGbzGS^iPN52{sv@p|IDo)57lyk#jw77gy3KNLD9(nG0%E5#UB%1 zoY|UQ2%RO`xhTcPV-Ng3d(x^ zMH%mC1{1G>J|v(iV+Q>hg_lp-WQxj2yazl6ESpvq# z>4>)Zw84g|vHuMMxn9SpLSuvDdYSmXr3FdDwxgm#4hYG_gp^{5!&H+{gK0P+in0_p zjy(LX>Q1B23RJR%f}@K@fWc+ucRmp#RkpB7UIR`mV1-`_YpMwrk}QmpjWZj>{ZA(; zrc8E8UG}OT^Bfm75y}qiPqRA@&Q|wU4GUA#C68Nh(Q8zHA9-PK35jo3*pwJ_mG_RIA&lHIq?VB<++<>+N{KA(lcU>CK=tqj6~Y3URl@T z1CyGFK7z=lEs6@zL$WykUTef& zQk)r0|Ebqv@m9G-6jSf9#exu7Ee1H4UhOl@v5ZliNm^Y0V>`&9J?IRliaH+ z0*W`*sMs%U7R@f65Y-&OYb*V`63NyYLyuo2j-MXg-gdmzvOU($IxOVAZBLB5gW0l7 zR{^1qw2HK5eLu=~kV3{z*iE`cG2h6MoYnOLZ`HJOEUAf>_mcE}iEqyh0;K*u3y_x8 z$oH9`djeZ8B;@riICwywW9f8=ofvp^q-jfc2H|h^2sGHsR>E}f+zmEC`a?psy&AOk zC#3$@ceoMQ!Y#E=RJReOUU6UPdel-UbFqJAaFziieeJ_cq4U58A_H9}%kmk*{rxciMsq6TB28Pl~e@Q)Zlk~m1V?v!vBK)=YDI|yAxZV` z32O{XfyK{Y_?oXjV1~vC|DBoaz1Mw$--Ry!0F<9_7*RfLsC*n=wdtKONsKt`7l%sG zV<9*pQYm4mk%f{fD2k@;rP*~(R)QWUo~QV5dILiwteuCM-_puj>Famzbi=5Egj;29-y}Wj`;uoI?M3?&ETLmCa}RIuQ1g{pT!C7pP3+W5{&x4;+I_y zWn$B53R)thK}Tj5fnaoQFiJR$em)`OdDrjS$maX7+!rC3Vm(ZSoZlsCgY*2!O~S8` z_X19r(rq2s8c(e-=?9+^`|Za%9Qz-O?M!WSgZA7S6L$r&VzH0DnVX|-QmM^9F%j>w zKV@d=BmKsphR=_S)V{Db$4b%#XhjGSGeugwEL`2fFXh7c%YUBT!eb}ykA4LJ^;@kr z2;-)&1z7rJZdldUzIVB2xSRR`+Sopp{prZY8`pqjyyGg0XR0e*!V9ZR2{GuYyp;l- zd~y%An_b%46UC_^Y^N!8gwxJF=0B`9Wb950{l&=l8%6Ntmuy#y-TFj;P15+~nc{S{Fx{jy-{{7#h6FI3%`0NbFJ3sKQ8PC@1wY}cHO&NZRTzEd*%F8Q>k~6 zfk8xq7|i)>?@@+V&yjaAhp)^&_hmk5(ZwGi0oaoRsA19bxm$E_5m@DC{mTi9rX_*b zdyff}2vvt^OBbZ4qS^dC!C6Zg>o7j?<_~NUPQSnqkUyW1d=~1k771< zqKcA1K<$akbpe{u>$w#tj_!&fNsIZZ2)1J>&8|5OhST@W)$UGtQfsZ?&7m;^14^Ia_Eo%2*~gHDcL7sF zyX4h%n&Az245$FSVuo)NarZ^ngT1GkiM>c_YsaTBrJ8h$pgkM{XqO9g66kz&H~1(t z)Kv-j`~b-!25}yqla9|mQDuV(%WPPkXEeCHzq>E`9yx0IgBwzv9Lf$x*;2KS2v(qrPzo3+x%degJtmC$ZXqO-T&J1v zfv$kUVfbm!@^T-_h%Ys9N-iG7EJF7JM*ELJL?{?ifFnfn5{4h&)B8JI@{FRLIR{0J z&pee3z^5;1a6QcarKD`pdn(~w7tJb9`! zA)eNHL`r~L2LnP*ZW9}nAx8koiv{8@A?#YU2U}&txEWD6%AN>jkW8e-M1tCAkH-|6 z^+_Ib{Ol(2J;ruS_@F~31|YRecB{%VWVB$%B!%$YZ9oW74gMooEXKloZL}S2cOIC8 zc6VY+jkW=SCH(Cr7n=ulW>aG;K*S0BRBQ(<(4;QvPNXQ*blxhLE$+MT?)#-^FXt+5 zEnM~RAa^(dIfOc@Pm{+{({(#NR?NgO3n^Eh)(Q_+npFMJJ_A);1Fu(UqUGpk-X`xx zSq1ggvTg}?RC>mOep4qQ`#3ak<$$pT1l@(HU#*VYDXL7g`D=i)vBdU*X@4#xX&3HW zO5ns>t4*a!@=>=vAu!KrE#WMuT&%2R4%x77Pj)7nc)KA9Vg4TQ8c$0gxJKQBG*5V2 zU8Yz+Hwv(7a*EgXD@+)|xtX%OsOwIWaif+TqglTzpFL&Mz+dS(lb?Pqspnmv3sSHN zX%_SYP8bGk@a^s?Y7oR?7ujJW*L-B+equf<4&Ym^ZyOh?gC9EU)OOplrjKiRb_|wU zbU8up-SwK3*h)y(%@@LOJIMp!-1}f2?{CQwTk3*X?b41MAgDw0O>R zJZR&P@BPx;+VUkFg63Lgy&^#F#eHtDL5_)e9nFtPDbmg2tzJBr22QfU{ICDBFTAEtY z%m?>d(4pR;Z5T?ZdpXJL1kE$GHBz#@d&^yj5AMMr0OaOgf6{>+PGuAF>IYx6weK(= z$YyQ4SFK}fTUN~6WE?Yp_GEe*^d@WHcW(OH72Ciuo<=|4qnCZHDwi|*w7qoK8>spc z8;3jN3Ju^BA09r+}1xJuAJS=hk;VIyCe77MoD-4t$NR@ zX=_qEh_Nf)PyEICn+SRpj?DQ|okT96EPh80bf9`mC!fO}g=_*+V}WJbsG<;K;HTU^}&;9A>mAc23#e!yDnpQU@DS zR@vR{^@yQ>-`m^FnlIXJ2|vAgU<^#!_-+4dcJP^uN7g+ja2$XX@oShj7y7t*R_cI` zI!cm2SJEdS`0#V@C*;$wdt2G93{rs^H7{q)37Ui#jBn@d~^;R(Q|TUYle#+VD>4+B856yy==1^SNW#}*Gs1X zt>y49OT%Tefxi{woObql$e-~)Rfiv{FV?+oWrUbWYbGu`@pS@WLoF?i)7IYQ^XwQi zrmCth_{@MalYOD!!qQCxEd(bgoya_<>{q&tpZf{FU$FLS#*PLcLGFe90`VPx*(?lq zDZcDdA!vSl5`4id5h#?``m#iyn)Ll4o5<>7!j%SmG!2o-`AsUS7pxxyjnfG-3n)08kJ z)*5t>-iDCy;^u%U{fkf!F4>NvY-!6=G(WrN?O-CcVb6xzBcT1U&`?AJ`FX_7Fq!^# z0b+pzqN-1(=tcNP&1n|X)=xH7us3?S6D8Pm@=-`Ub)|mVD!3Y%j^sY1fKqD)G2Eqz zFEC?<5TZR`_i>!Y&+%Ar$3Di;z!)VLzZ)+M}rdugKS zHB?!T%1FwM-iDfYHT2n&_ac&!**aZUxL*wT-~jO|dIYTY@{}bvkU`1dfKj$L87LXp zL1Q>r@L^93SdvnWFcG~gDQ1#nO_V(l2DwCpCynGlt;m=?kFc?(OFJgh4l_a6y)|9?-Vs{|Y z8LTxPElTj1UX|c9=14xAmsye!^CJSjtE0D3Z=jMe!BYbYs5w%2$ko)|)9cts6Yf>d ztPQ&i;ym2DTVkTWHI5Rf&lk+wiH_XcemU3EStt8yy34oQRm<%L79WBGe^Xq$_sDW~ zrab9#UDc=RC=W76%V&y(CCLCY(-MC3+mShvR0N{p%hQW&{&`%lhqI-^g*-F`lhDbC zrlpos3l;wZHTvxLod`kuy3~Ny@ree%KTEf4)}WiN5T>F?^U-XG9BAd+v9L_RLrHmP zAm=G2_Z0Z)bTsO|i_c>WhP~{;gNOX>N}N*Kd~*hjllNQ`P6NaLjwaP%C+mF_aJ8tG zw9sw-gZ3m6G;njHWH-n8i!5Q%H49k@`nij^sc7o)QIp5y*44%hKTvZ3b~-ev`qIYG zYa97u&YZFRZF?-_nr=BH;ppNnp_q~o6P3_lnVjSg)R!3vAAbm#vy?4&tOr54E>IL~ z0;0Qt)CcQVeEt+pTPAdt06*7TiTqdZ_@zWku3!ng%0uc@I6ux;c;6q68UAu|rHc)K zw9VI7Yg3qB0Sr?e2Vc(n21VDlm>qIlyPtfG23hoB&+l%x+cyKVJ*h;3eiwJG26%5V z8aI22a5U%0blqikc)m=_?@I}mL~$DiW9gisRuC_CbFvltR0k1++HmGh%kwXr-Igh7 zjj5ZsX6Q5U(y-+8N54xpohxG1m(<;=QRfrV?^gcTbwQ`*VeXH7l#ihZ1`z(-~nm zVTbc{ZHJzRiCCu#|GmV`&#TDKZc#~q)HQGG37qWNHnK&5hjS>N=i$${&AIybEWo!Y zbAzbL%1V#!0ov1S)nG<%v5FyaQ1c(I{QDhpK*v$r6LJtD!vC;AQq&~d_4++eW)c~9 z5Sm)8pNKZ58U%bi@F8slyz#AeqA%JS@MNwLHX?0@*f!8Rg3R(Oig;L)?}!-jIgRw~ zPM?}&dm8kPo9nTC_j{*EoO;O$vFrvG$h`moLQi+{Wn4Wv9qyy1N;?BiYe*nI~}hMc}mMTcnlOti;=h_5B?Av38|OP?hbAZ%-xdfZJ2Z zQI5YF7n6T^===rop%X_BH_ct|EyzMH3xU{};lv>$ke_h_KcuOZv0)lAbrf^atG!m05 zDx-ZDf0UNEK2emlYj|8Z5oHsCx`Beck01}i(Ip)X$#U!_7^T~Dz^AC|V^?n`lHKQ; zr=RHrB#&Ag0u!WM*zZ%pL3PC-wG;!E4X|aP|Hm%7cB<`!PxNU71`2<9Eyi zgnX%Q741VmvY{#8p^=$JJ0#Qfk2%zNqs)Y!p8@m>1 zB?ed;cZgs=m?{eM{=^^G{hfY{BEBD!`zlM&pDJNts%;@PSYSphK2{WI=zyk*9+2pj!9r zzxl>HA}G)aSp7#^|8Y+TN%$FdKW+POZ!&nXQZ*TwK~O{IirSB_N_zBYyL{&<2h8E> zLcQ<3L6Q*QUKF0`hN$>v&7S&8^V8GwZD%?&1A{30qdWnau+bSqn?F3Jj8SovZqaoO zPd>ebzjlXwg81d~*xcB7Gg~IhIRN*gS6Nv(1ZFR)1Pr9zQUUE#A@|&uPc9a3qN#sR zU3cQ?Xw5|xQwPUXx@yphe0Rkf3^Nv?Mgui?6oHj#6RN`@K||}VUEpxrzz3lK+N2Oq zWT7C3_JS3{k_9aWd=XtmB88?@z(rZ~Aj47iaF!u;P{6IlqNHG(psnHIz=V}B#UMu# zDjA^)Wt9x6@m;^-D1(OhRY)3MR0!RslqmI`9$ylbS(I5gxUifAZ5vi*gco~cP34Ww zJSHUEHx*@vn*@>qjV6RJ!qKHt2ZG`Aal9?eND*?#tJi$+1)(( z%SN1AXJv&$n%ca+|CXqt;ucAB`X}c-wmk@aAq2XmLWOu(VBK|symXHTwwfat0a|FF zEb>hQ3}&6D_=6K1BDUjdG~o0&kIf}2?)TV)gD50vY4!Z?YfC~F={r_-p(xco*qPbM=VrAP4&Ig7jHVnG_*(V0 zgDQ7;24TN7899ieL8ZyVgM&Db>+IRl`1SEhM@Q%XHYEhYUG^9+wCgpQXoxaZz@2;U zZF^HRnaIsC!+7-Po8)&dV-jL>oqm!xk+WT0E)L`$1C8NOecU>|q(uD#`=4d&Ay;i2 z+9pOgm?=o9>6=UI_%?TUpO#~bsTD&YT7qmLVM+pBQx?!VfhiXgxw}6vG8vzDDu69L zG~eP+#&jFkprkBpLJJhFzm?~;EKdBeZlXCq`r7F6RlHPeW4+g2Q3PSkp%MY^cAQ$S z+gEIWt|-bVE$3Xbz8gIw8O7PQpH}rjh6FISJD;XI^F_PfW0Ig-Yr=H-EVHN>nCdy@ zuoe9!2FWl^DsFzQX~$b6C3DSZ?m1Kb*IV)aHad^yjn5Y+ot%KTD53 z-20qts^)mZacbax;U(i$BgFIF|5e*pMa8v5+mc`hPeOp;mOyZK3kecD1ed0RTX1(0 zf&~xm?$W`vyKxEbPUDTc(+#(C&Kvjty)j<>?4R0Id#tf*u3EEd&2^0SH|5hCMa55b zsXVn$ia|o^&#!euug+2-cWLPjyN1o~!xJ}6XI$73VuLEA6_I7kX1of$iOYS|CO?+S zCR^DD$vb@?&&y`x4QeE=X)pheG}*f@dn;s%%6{2!JsT5q($EyA*_V_h5R%|JGRc9> zV$f{qPv#y|b=23?f6i<5+?XBSF_2!*7OvFQj?XurWZ1Gd(mNgY);9a4DEGTTitH$6 zKPtYF*m4r8(z7jjaAj%w&AGi~p(GD^cJPdA;o?pu`_J8`t=LSJ5ZD#D_eLo(s`jvE zU*bZid7Ime7XpnQcLSM}Dr=J(L#A8NO7RT@m3nr{qK4gEF6W_Q%vwx4hr+hh*rNNO zu$JGuh7p?Dd#+vcf&_2gaC;%eP-*ube@}OeBv8_=R9%j_n(bvgno{e}(@Z@SecRkxvA;K$I#;sZmz(c@Ui^WC1UmhPF-ar&_d|lYxfFxkD^+a@CiQ6omMZ4x>??v8aBl00AVcFEaP~m; z6)iE2Y=#w^4>RoSjBXM=J?1X74+A??rrT2Rq5&peJ0TFt8IOOnr|a`$`q^g%kMF>UmoLk^bZUsM*_8X$Gau-O+}_A)*j)|js@f;hMr^BOb1iy`D&}tD>b5> zSt#lf3C7vpsVg*Z>086n9%tOE*Pgzx^AP*Bt<=qK~Eb#hB$d+duxF05-*P(OUF-&?y96^ z2apsf=PM08;%!Qrmb;zqvxsuw;oEH(w=aG%Mt4`1wpQu0)N|gRP%R3+PZ9H2>jRf$C;YB1Q$2 z5m4KP0PMeMZ__C4t)5S+!2?Xwl?IJ=I?Mi@^aZKG8wdK7ep{EUi<;A#VB$TmigmVq z%}MEppJ&op24v z-7gH4lPee7{K^+j)7S9L+J~+3<&C6RX#U~Lj?o zyl)bzxZG-f>DpLd-&pU#EBu!Av6`Th25mp*N001{IA=u1rua=EZgQ77pRTy%E{y41BQCdpVjwYth%n3^jgZg*#)Tl}- z5|AUJ`ve)3hX4DuLytwZE)~tsGjhL7JL=^e>cEI+1v3Ar?q^g{;AKuW@-AXNrIK%6 z{z7PXD51=4Jr+B#jepf{;Zj1o$ZoOhk#$H$(UX!PEy|=7^Woj2Wx@aUX@nVRuNoiOD3clw(>zy?Hh!UV!@AfJu z(#A96t?BZF$Cxs!7Ah92q;eZ0$g*SRe5cSD>~ zuG;}Guv~2~&|{4}0PV-gK4-g4*qPT=ptB-xnv_nUvZ=Az4? z66NN0c}Xx#rF`;ummbY+s$zymO+aFWpFmjr;m5_F>IL{$YqCKWX(&J)> z1qxbn-r1?n4|V5CzeoOZGax!xxaq1WjfZ5lI^Ek(*RzVb)4&Q_yw3_0V2CEqd&md* zXsY@A2G8EvcndE5fM<20&R-7m=82h;m&=zp}HGlOO-e&!d2M?=}(l zN6Vm6PuCQ2?;~r-1W1Ef1-T3gS*EZti`R@63gJi>ayyutZxQ;8`B}lkz=b&|>U?p? z649hJn#_@K=~35kJ)urN>Qmnd(qK}V%duMwRnh}w4j(E%l}G0a5c8QV{chpyr*7|t zT`M?q8>tqjtl8=_(72&PTfT~80uqrgs;On*3gFp>@5c!+(4)$}ET)*Y*e^qx%2uw* z5bN9D8VtEEqin`Wkmv+Gg>IF`oC_PhY7`l#0e^3ocwKr5AaOTf#2?_Z*71FQAe;H9 z-ymv(^Y|J*#hR}P@MwLXnhcJQ5HFkFx?}#T-iQE zv5=zH>pw0#WGjy97RxPE4O|XPia)*jQhoMaUI6+AW;SY+&&Fb+2Suu%Q(zFy=r(Kh z1rJwA3aW9?Wu}sTxyvjeUY9S~xM&ff{I2zI8VSv9rOme^tce z)sZAd_4KX@B_D8YVq%)l*mZOOgj~tV1^A5+bd|V!SIu9HQ+D#E3_Oq#8WHu}O zABPg+NEP0NUq0EQve$8n1%8SR(DgT`h4Ltv4~{b=(G4RH)TB7Y;rg$i*QHgg5S-2S z{@BM0KuRhaxRka&iI@d{@Que94#pZp1!In?orxzzAKV|znbr7M%{!0Nkawbc# z8rQvkF3mibxQs9*pen$TBUhTC)8}4SCAG*_>*|eA4d&9rcGAeB?Xmb$e$x^7F<^6m zSm?#QA1r1oT%=sm9&@HmMnm}+4BmLdipDb9W&tCn0rcz@2hQ5*&75yue zM3iw(p+aK5)>^R2vCrrMCtW)aUF}j1(k}}{#x1L_2{ zAHOwvyfP(P$|K^rAwerbi7&a^XOw!JhDx2EWh6hG3}#aj30aDt?QB53tgkYp zkPoNik5{y#qgi|&BL}IY;>h(1GXLwHNco3RP`01b$WpV*!`X!fSDW~L%;WLnNSM^K z%+nJt|J#f6TKI_HR&(koVyj0_P2zMXh-m0$RBBkp1$wu)1kXYonnFEq*5v&!r+^kv z{`2qvpM#E2+S{%80RPie=78&y4@3{^uxwAKD>fI@P;05MhjloS)I&F)ixE$f_ror; z|K(s`cDlfI{j8DCZLp<3a;FkF_5}L0{Q@0l*SVchik>nD&(|m5B+0E zHIdas5Rt?MT^haUVaHs_T*?4AYD~XsC~7-gk~!134UKZE;|5g0z3s&fS;DW24mCON zA&VLj?DAX_5dDD_6&2>UF|CE*Ue!TM@ec&jhpVh3L^IL;ch+`LBl`c^7u_FB-3~(I zMxsIAzo0zXKScA#4BW-OA^9~I2z0WqXp{ISY_F?RzXQ$nuDrnzv!{n#DwEZnO}YGNXiaL(Do|c_ zF2|v1DOtjAOZG*pvu4eXRvlZnurWLx3!-?rL3HqV2_c^&z{o^;bS@#C!;je%L)%C z=P(}{<)(5#UcL#`qW4Zf3%s*^&eShnyTp|jO_lh8`(rq)7cS`p=`1&XPoRrI;`OEG$p0>@2 z>vl^csb7Q1mRPOi!;E-)uw6FDpS3b*!ptqteirZE#@yHw38Dd>#SGgfad@v41``B9 z8uq5(7KrU>OiG)P1>GmpRv;KwKa%QXKL!^K?V6+Ugslr_WF>9bpmB~dZhS&z(1Q#c zbK1Yudv|dWTZDrFZ!M57;P`A>mTY|e=`hA=bdM5{{qQQcqrHD%dQg(4P7G@JcmSzY zht32D-M6!((mtF$KEkg|bzd`RRT^FbW-vL{*}P2w8yMwu%^_8bX#L2n#WOZEwD!6U zQvWU4HN&GKsmBNKaI3o?7=aR{IG_LWsa3b(;SxDq(;eDHMfnO=kLcOR&+8tqpcA`~ zsk${82$YBGMZ3im6}5R65dj<5M(;;O;(*nBK1Py`ie}i2Qul_3DJ61qe3Y=onvGYq zP8Op8w>%g+AfXtD`rFZ7GfN%lgyaK6fNf`57G7QoPI|X-D%m4W=Pz2mSR0yRd?8ea z9ObhO@!FidBfx9$^~s3&L|&Ub8#7VU{vPR;hKX7q@0`y*_!o-wthB(PD+?+t&$YBQ zB}}Y^FBUTFWKx#E#t#!JVv`!~X{y&(LR%c!jaGe-3xd`fEb8c_ih7h=vN?XZsNdJI z6PqY}+qruY#Ra}>3`$MKBNM+)x0}Wd@EW9j(3LPlDfpy8?U%fNOz!?P=YpPJBdL*u zA*Rd@=$rmTsMR01xrvSZb26ptgWOUN5zLUE{5lrpHY=oI99I+)Luz4ek(hBBb^h z$2P~iT~^vBx?(OaLvSvQ)mdv&6q29~3=rK4MEdJW^Bbvyc|*26)%hiP+FqCcWH_fH z#vRX~WBFMY#z0*3!MOL;XHC7fyBc<8#WDsZapr&6Czyjm$kXKTc*XT4$Oy@SW)%c0 z0h#V7Fhz^aK>S9DR?$-aI|t5x*!2YMqv~Ja!ur?fPyK^m3!(rK?HBQ1eERRLzt}h& zb6H;XoY1(tyc_#lKuFPAf+G#_oncK$Pu~*_S)!Y6ycEZ8&w_r@&|;%`{PQp3O@ms> zSf6WE$22|0nckNL9^mx1l$B7FY%oQdsEaqjYcuE0obS{1Ze&}Zjla~JZpZhC3>guV zeX%Q1I)_~tO;l4IMArEnpsx8=Wi|Q<3U||4?h^4F#D0JiEC301wr&bXMsWH2ih$*y zO3)dWeanzS#`@|}f2(((y44n^5tm!BS{;UYs7{`zO1u_X`AU9yHI2yZyOG6E&`>qU zC>^xYxniW+FY5!lV%O(|52s#vVc&W867Hzi0}UR?APVDP8tWnE=Q}xg`Z8MRb>5(# z6YYHKz#8oPDKmoxSVQ5jyOyylYo_Wmv@55=MGoZ!LX{7F-tF{xXH*xDwY?;n<}c-b z5-F2N^s^ptjB2Sc1M+Cg79LIhwdfS0Eabb``Kg_Nphh{|u(7eS&*wn6`tfz5#vYSH zY!K5i8*KpZqSyT_4_-vGyX3Eqv(&^ZiTB|N z+S$7W*L50%i_80jO{G3fl`Y-WoOQr$fh-bh?R5-=g!&ay=K#>D*fc25)9=_fii6#a zgUt;R7kzAx6LHEiJLXm`OvZKqb$?lv)9UCw<#&E_EIqpkQmS|}W00ZJlJhdlHTxVk zBl^wfKUX*o>S!0_lNFusb2UK=uPhB$z+~J2lQ&f@+qypix0ULA_Q!eeN=TEtSF6 zs?X1Vo`RbcKVQK=7_9&Hm(8i7RV2Nb3ZBd9_Gc~a597|y^m^8%-}o-CJ;%_})J&!& z`Tk;&!qrMx{Y_Afjttuv*lHq?AXc`tVyvY;c*_hBkyH@s=pek~E`zk8B8;Jmq>lNK zJ7{QKZ5jqwO^g>&iH;|uW)8VIb&39foW0d@ycOIOHqD>PX%ZPs6QrV^aKk-}(~%Pk zMd<$uB_WWxHqgL{`GFZZ5sz6~g0W~s<}Qn;^E}GAc5*f`{acwnxMrBy7ho^Yhb+tG zDS15}$WW$3gTK#Toadr8J~mHAO<$g((}_?#;1MSl{4-1}A=fT}f(nJNMSHVf6v+h~ z=g;k$Z6i%677w;XeKfM+7Eq&u21`KBXclAAY-pZFQ_wu|;9#aL8`UvYZv^&DSU)sb zpn6mIwt4=v0f$Q_nH8|2`(rEWcX>oLZ>!UmvucxM<<&pE>sSOT4a_c;i#8b%XQw18 z(se5%g6jkLU#D^4ETP=o2l|O>9IS=g@aHP_^A6XeFo~?xZ9;s6(f~BE)lty>G$OCuwBh&YvmrBnd_14yws5ZP+2`pnO|#|C(%TK6!Nk5> zD*lyrbTgT#;;iYyt6OY# zw*Ah2tBmCPhA>ZPthdzS9e|JQ3UikBHP#r-?%uBAB1ARGJ=kMAj+W$;gITPlxDz(R zhqUqvzSFVDUGisK^z4!Wo=4^DKq=)r zE>J!t+~=xom>eOru~ha|Nubcm*xC|eXGDK#+)(+Z#LMxqm;EgNJ-p3V9=Nk`i?&4h z?}qu$1&a6rRXk%0l^yZnl=YX;cVAY5ajvdglm>U3`$Cq|DZniTi18~sq#*RU?} zy~=0D&CC6#hO))}Pj}OMH-#HkS}6-+<djobFCX zJjJ*&?9Oe2o@m!ngEx$#^?gK5X?sigeY9HfBD@SZSaa%N`_TnYZ^_RVn&*9WWq7>W z6kr{_;jBx5oieIXeNLatODiT`BGLlLPV|1Oe*UcE7CZd8!eM!1;#E$(mY9aQ0c>bI zPtbAY^3-@XQL#dB!s0Qf+cqJ+lWQ?X>+>&_ZFLkuRqkc@Zl6oa1fUc1kd1cz^6#$XmgjOd&iJ?p zcl1Yu#Q3{yYGySLAKby^cqD7HFR0kqNA!c2B{*O~!2QR29a~90GBIfiofnzL@Wf|7 zvH>Z<0&-k{pV_d_3f@-M8gXwTG%;9(p`8O>J4AyYX9cEZZT3&!aIDS2TjCoKPPvVl zo*>CUtV+MB1sh;R9(~iCiWVVIMnoehncO=G_b2FXy6-1D9Ya$uD+Jd){;xeU%#y zFNI+O>UhqFdJ>3_jYvwDSBD{ro5BBI2u?`x6Kg>0u5)IV{JIv;@t?Ox%}RdM6&FLu9%F+z`;?4bJC znft?#5v6GC23;6i&I(7)ijWA`Z7i_z4dXC;M#VT65n`83N` z@|qa-O|43IQba{nKN~McJ@G-&(}NNTBchq5i;6>2(3ae6_QqVmuD+?1qr=}|JiT-l zsFaz-y*RyLO=Wy&Kl0w`2jiztqRkIwmyNMXF}E(9ShbwNpUe9__QrzKNBcXt{aI!;WN^ifDw;~Hr`QorP?ci?XSp4*I(&`p<`OW zUN9G#$oR`1=7N{;GM^M#x(TBwqtIKbijwqdIex7ZfY_a0&OYl2`d+2TMySuqq?4TA zjkwb@xX1-@Zfz6W(Nwmkrs&w+Os{MieYxsAdQ0VZ>j!n zQ04RfqzY;)I-h{?vAYR3o^!i@VP6TX!btV<`CXN+O|-=KpDXZRHrhRV{%tDWs4+&& zx3e0&q&~SNpjHMgGqyJhDZEt7PgV^zk_se>KtL|4uUVIvy}MdtR#Qm7?&lSzZ1c-oN_7MdXg$4;vvLGQPv{qJpLwAj>E<^pbRtQTSViOv9G$fD5c zu-BDg?M9|}SsS0>*e3aT7$aaaxhQ8%XNZq4h8M9%BA6b=qsqwXvu*zC4S>IeY~Fdw zGDTA-n$!TO!uWAR=^|HYWOm|^B-6FS%VYA3p=>{>P-`yV2gijr(<1?KQ9xuTCr|xg zQ|MHjhlhYL>^Drhdg)lH&>Pvgu8pU$R?aVn04J{uhEj&+0Oi*$$Qo_+C@64^M$CYj zy>e<}P+4pP78y-swE$K zT)V&VVlThTJt27hCeJsSzUnP2+iWz?I86snLY#5PW)tFR#p;X96Y)t|O54V9Qd5$J8w?2wZ4oICT;fQsUx~yLy&2Yi%Ip5cFOE&!w^xtJ znn}|EN{W%}f+CVEMHNeKGz^DBm^z53M@&0=&!wjmw`;#mVFjoYg<`1P&s8}MobWMb z&jX@!PZN6x&AKBn3npU;o@ zEbFQ}W4DHm;f1=BrCvOuVM$LW4Jy=Qo zgg*t=!;Qlsyn6p1^xu-OjFJ87TRKaTr#SE5&{;QgxW&tu^CKsgH+9IC85g-4MkjU? zf<6Y8J)ap{Fxih@q0Ek?0rjkeHxj{Ue^`4hMd9u#F1=taxv6`UhzzaoNgB=b8$Mzz z*umqA$0Nood%Q2iSql9(VtpGbHf+k7(O#4N{V!ccktiPVgzL%w73o6oF9C(|H{AM5bI%|12M;e{XYaMwUiGuqeqY|#(>QkI+z~c5 zwqshFcMRFs_V=@~?Rj!&FYA--rLRJ)Uwa^i8n@XhF#L<+O0 zKJ24u4q;>CY~TIa^Vz%Dk&R7DPwS4V@go}|ZXhmyES$W$4RH3AkA80TjA!-ggWf|m zRS#czwTo3;;Ca=wM+0*&(}yet^94IRpE-CUMe0uiAMW z*K9j^PCWXHdi2p)p4y)usWc@OG(nMIY(|BbRxE{}e_b?F+EgTr84YcQS&fX;GTEfM z&~z-CF32MCTgbf5!?S)@S&!$tpzo#Tby!cgk^oQax}dD5$LGO&+mir$SdXfh{m~b| zyPJOsKYUaTv!C^}A9%`Tdwz=jpCd>sYZ2e%M!l&B#&(8tEyR{lIWW29`RyQ!>P=P5rv};%4!z|a zN#9|gnX5_L+?rg;E@Iwvl-~rKk)nxlKuh2{hO6z|1fsufYp%WOG>bm>XYiNeLF7?e zX15SM16|s-|Jvxf&~x0GnosbpxFSfMVWQ2}WyPA~zZquw0)99wVmVTUsntZkpPm7r zN+LLr*SD9rNY6i?@f}r`4<$f3NRV14y(cEj>kJ#)L;5af)6)P#EfLb6`XJLg>u2{e ze=R!f?+2vsa=B`1_Ykyupj=Zgq#=~y&7eVc7xeaqD^u<%CG14SgA`Z>)Y&17Phi4Tj z(ndLI(7ZD;a?|M0IjFFt;!=@NNO0aS0SpbDB=T8+HBYv;3WQ$EK2!b1V}3G2sP*Uk zkR+}=kVW<_F5s!N&LS*oHifOfozQPB)DmV^;E}jRY*dhK$XfDGA3stFxlqnSD%6L- zo>;J-M~N~V#Djq%tRvUl?Z)OOgAhI0Q25sOJW>4})o&izAZ8sCdzs57^t#9Egi5HR zOWVH1mproRfe<`+46!}b{rrw#Cw)v(X<}k7S=jd8^!Lyp@_;4E>f0P&4C}1V++hi{ zxjLqWIeY2?p)aR}G(`gl`E^B^R`2gbSC0Au_JNf`&W^ebXee-fi#WF}?)$l%qLO-4mT0yCVHK zDtY(llK^D&&+_9Czm1TeAt7_*N#@UPQ7K#PP*Szf%5+d7j@gmso%M?6+4x(nmx+p7 zvoTx|!hAyfQ%x?p-zMR~NhOMwN^~ZDXq#y&jR&??3aF^=%`b>?&~8dB3YteZSya-D#h1_v{Y%nt30AF@<y+z2ACoPb-sc#x`1SGwC&NiN+_kNth`}M6Lf&&@ z-||b}uVKB(u-lw5g&FD?IDp!9uuG2F{Vi1TTVrIlq!Ibdx>$eM86`4@yf|ZG*ST)*8Z+oE^Oxa#>B(HR>yuP^NMz}!!1SrsosJ<0BUdvm*XTK8 zNhs#w*=PP=dZ62!#ChuVJpQ22(D`dv<|E>zfw1os))MaxcGtKBDWsQOSfGATr!>kN zoe!&u3_ke-6AmFW=k=zuQGb{wd+|lZo1yP(L!Us50XfKY&*d6j1RbX?VS}yO!T#=zI z(+*)jzjC0aLuC8|8QtKing0`zTuI-Ic$nI8zu*^LTw*KqR)+o!r7iDTpc+s>ldst$=-1A54+0Yiz|Z9l@j9MFU#-#j;!u< zK|y1)mYM7*iL0^JuP^$D{fUco{0d(f09p%pr*i#wI@{er44bZ8D&-^n*&+=}6G7fn z38n6Is;w)#O}H3Uod03}H+uWp1C{38j+b)`IVY=IWqd)%?S`12^Q8D%@?f;ifT!f` z!t>yN#`+p#j;czxES#O{96riho7+)1}OlwGva*u2&8y7Bh2LtU&3#Gzfi}#0^Wx>wBYWAFP3BW z1zl?6a`kiWDqEx~wpOXp!h3yQoO&u+CGtn;GUxj?3UddZta?q%{G9N56}d|6;W!5v z;=Bs(#4Zq=hiFidNRn-Zp9kp8UiZICBmsmCe=diC6C=eU_sV(K0c+QlZc%i#^--{} zoOCLn`maR0%=aygiQEmd99-Qqs4YDhcBr8Xn)@P)_-iRt4083tDOk)On*Sr^1t0}p zntm%AnQpp>$hAhJMMJCH84{$6l+DM_eAuyCObfrwjhtS3z`~r$)+VB_ItTvYFv{}I z&a**LhOp1%0oxpU89FPRU{*`Ug_?VZ1wO4E^8dB;xt1K(LS6O=8j09~_Wju3yKFkQ zKknxisXAeMvsJ)+{Q;;l;zWa_)`}N3!|oZ6UU;#pa2Y(ycw|wtqOzdUCPneXO6(#I zX_OPxiT*~ji70-wU4O=CVB%#C_OS*lO5)v$z+X1Gw>F7vh)^MRLtlz@gjn?;hG(Xt z7P8L)$y-}3x!)jzaHNcI_?pUwk-M&6Vc`craDT`kJoxq?Ze*aHnAf!5EANHlu&sDt z(@OADnPQ@Rd(P!_{zoz*@xLN@WzHR=MT(A^_+GTKk|#L5j!0CP%K{ALb*OYx?9b5l zeP*deG%pQl96qXuAA1~1Ogh(twxI+`U6t{%MOb1$;>Y(Ap*yx$sirOwIChYLhZ$v1V|4rUI|T|$WSlkSlzkb^k(d!=lg^_qQq^|SXj^3 zz+|26nmW2^)c~Dh`b`EKJoi=c${;62L>hPyVV>)jl9Nd7jhNdo|wZ9P(K%j9~sda4)79BUH(c;_qw@w zbQHIszHIG2A=(C~c);ZRqaK}K#FEE1w>Dc_xdn5F4aBd+ zGLB?4YIoe*KA>N_Ea=2;gz3nR^B$~)l zGlpk5y)g(8+BQCyW9uYbK`U~S?7D9~7nsZu{MO@A2b)5i$Toei1`AARKRN&<%{~f} zZ+&KFOM-EHi8xs`f22PANzS~eMbLPbqyp%|ok}BJjm4Ug_{kRgf>q;;;lQN3otk}V zb-Xr9*Y0I>bucap7!DMFvEmI?m0UA<f8vH3}s`K5=iao);*VpAfa0lF&Js zOmra`y#8<-Y6pW53XHDq?41xlAP`wLE~N@OE8zH5bE&Zr)2vp1(=KbZ?x5?VkoLYS zT%dYaf#8TV|17z{F*&*V_q^2QB-3|-kAu687G_CS-TafTiKt93DBQF@pH)UYZ|%Qy zEc7t8CAWSo^@=C(h*_P9VJS&{Bx%qZ`_R~SOs~)=>dAS1aa(qR<7-WKFKzn$$*Jt8 zZk4Z&UAP!^3LObINCll7Iym&b*DkgCLcq*Z)egzqBQ*_$iS>juy*uM~%WbACnByju zfsM&wFNzcH1)&@O`e|B;TF9!4m7Wg@o_b$y^ia=~%ZjM2%0D3Qq$Ils?lD| z?4w^4gY>dOBcpn;rg`QmY9SgX=2t5197xVDXOWqZ!U?X$r#zxV;d}kZkP*&>(lJhw zr2&FNxK4h;hWqJLeQ~B7q7CnPgJ|>W{-G=WB>M)~frQ(C5Ct)b<3&7A7w^y$tG>-42^*v&PT|L`K~scxDT zW&;ES^dXC%>OS~8*>bk)+{>3(GIw;|1Hhe~vwzlbHNgcK?~}`1$*LQ5&wr4#RP5gf zl3OL}R%m{aJc=6TY=i-8TlNp|)Ke}#ScoXI@wois=))Vy7?XNZn=FTV zgz>1T4K@TSoRnYHGBOx3ZpLQL!6P^ZT?N%7$pyszgy-Wnh_*@RNa;|PVc1PW#FW6J z88ph?x~2s0m69y8+=VB|4{ijEiATT)jMTt>eq&9+>iei!AAX|oVyMm3Sb?T=rShnF zYNWB?jf`REJs_j|#F$t?ryou$8*3xMU&(bJ>M#px&G&;Zc8K*HR(IZ`J>nuf%hoJT z9Ycq_&P;Jn9}}ha#S&R2!OPpjnU??gow6#v7>``v;Z0@YkwyDp`g0@*sCOXtsrmlJ zkA1nw$SIc~5=EJ?sKk`%e&UA;n%y`F@mo-6#b6e5n?o9ch+9}={K$;lo&yEzeZBUBtxtZ%WZ~ z>$+f#kvKdbRA&g&A!H%|tJl9jX``qBlpQ3)J9suJEnX?75A^|5<8PuDLgcur!R0rf zX$c0?k2Vqt8Z%SW{$M8QIe>*LsuCIN)<_v0p3fm^yp{PlBHkp=<`!&Oo8G_|8eDp; zlTy|@y5!|3v55aOyJfBf%;mb{PUpcwOLE=&q_EV=GDFUG!gl% zuUXzc(w;2Xv0 zsxBheUb@Y-*1r2E2H{DA6 zIO3M)HChr%08}1QJvKd}w&f-5+`8svvj9W>66B*bsdf^*!u=8#didM6p-B2Fh8ip5 z5^W*&l%8|8Hj?o)_j?9nVf}{i7WapCT}AS^^~?=;YERK~Xw)@Ga`O7CYZljvO1L`C z47%3yiQ|-&R43k$-TmZXwW91vqvMJt{18p#-o-nq+N)m(W62`(2|KS=iYGNaB5dYg zVUr2j*f^0jVENTU{H~M^9;T|naFT^8hC3ww?1H<~Ohvu`GD6m@?sSmBa?~;=>^rGV z@mzD6geAzVdf~KBuo;)u?0wy-pCH0&X5iHxclUt?Tb)r`6H#D3DDS1>>$TX)TJPcp zO5dE8*-vMAh`BAN8jp&;V$j<#!?nTv{d;4>NU`%tncz6-6vESd_`A;*~F&n@0`3T!suFKprNf(WH-@%!gE z2jlKo9Vc2eABw5tE6K4apDH7mbW2)LWsoT_gs~CHLT=}Xd7Ejv=y13CVp(Vj(d)BP zFD~rhm)D|r*Ymzy-DzITkg+>Yf%~K!DyCLyCIgV!6SFTJaJamuy)vFA`9&iQpLhbFSe?i=!Rd+&nZGw7>) zcvfm8BlE)I-sYl|!0PoS0tI>|(4ag(PXD?FRpgX~;^jcIoG&rT=p29JY%6TQdT}s# zl2fgRf677!=an-xvj54YWPpg<1My4X9H)hmov^Lj{LAw%hGXLIA6PRg9QzP(#^NAk z^Og8_NMV0EESC>wW^ck2^i}`;tz=mpX@30)<CEFKb&#BHEZO0sJQrkmE1RlcOV=C6{vUxQU`P4FgPyDnx8BA~X8qmK4;H{7Al%(^u%)i{Y6Um;DyqM-rMAJo z^HNYaYy_5qqriYh@`Y^t+8@h3rHFHW&aV1rEEWX?bYWFFd8Iehi?i9{8 z1h@PJMoheyU3I4th6d_8hmAX`tRxPPde6EV<*wp$+yPz#Z@<;Hg&K%R{}1TiLoH3*SkibPF3>cTe?mjW?T~ z1J)))wKidUpb|q3%JLxGwSYSq|I^^%V`U{9KTRcvp<;j7@60&X%%47q%iQp?zQ-%_ zS@W3LRZvIx8mEPjZ7a8fBjD9|e8{{3aOgn8a9gC2?@4BU7O)ncN*6poG*+&Syfoz3 zjLk{rlw!wM>3iHO&2TOOnE&Bd-{fYsc8EcOjk4iEO6xsTq>j17Nql&pL`u?P5BRPV zQ}dotk(jc%xQV{G%^k7bW4rT{q81>i z6{HfzoNmu{0EV2%Cz>U!I}RTJ&OBs+)C!ltEImC32W*~H%z_XjR^VG5v`F;C!;mwt ze|FbG1+$)xtBG|;`{7Tt!XHU+@IRV_BQK+;Xy4gsGjeQfH;?@`94weyJt|C>xkzMy zH0S$Fl6L$DMc^gy;NkE3Dqz7Wdha+BRU1harjgXYu>g3}SGzXB%?INVsbC;6-+K16 zNAVYIPXE5eH zzDVA+XEr58YExr;*;GJ(0%d91dQ?7eZ2#%#jC1}aZ$`Y+t}GEl@_6}_TfLfHKEt$v zY$w}tcrJKALbnSibs-@B;j<>Hf$@Cn1{~t4Bt#7y=K90ho3?%>)L8zU6%D@=-DaU} ztn)zvS43Vurqtw{bp!SF-77D|iY58WkpVv=RBdRFC)Gu8$sg{_Y=Q-kZsNx2--Tn) zOge)}>utqY>}7jg@J9j|O1EapVg7ak6=SX2_gY)_Cnn!wG`2}JX3(@+4Vo!I3+kXf zS$DXnVAtjG`#e{mpeUd{k7*G~C-6{;RA_@&FH=v$L{nEF=xtAD9JH`-Flni?yoTPH z6a3Oc(hsEHuZ=^3QtZae^#ZwqhAy5B47^C143j%^X+xvnt=?zzI)43oBLb`{hS_h4 zYKIgGYn`{U?7bVPRrzHut=VRrXQNrsb{yOsk;>`dH1xO{6#z zBw%tuHefQ!FGlbZIAloNgf=7c)h5^N!?LESjI#9uY~gEMyEW3Oh?Gh!awzIoi1=2R zEi+srkVf+?W@nW;MvwlMwl4VA;%3<0%CTAHvt0$$`FkqXB?R12+*vLtjRp;w$&o9P zE9lh=dreH?2P+=k*{bs>c)t71+f&vpOe{Dj2c?AHS*5 z{M{Fp@S%R(Cb#?P=kP%?SZ}m{uzhGX@N)2pqn^_%Qgq_b(?Dv^rcfbRPtXklk7w)+ zzHj!1?#SwWC`$OP&O5BS5Q%0+*@FbIemi$ zrRLS8JbUWNZ3CtS>Vp?LPM+rQ$`VHzQDmH)W!HQ*Z$TuxK^fEXFjP4r9+_sZTIzeI z{im=~&DyRR9_9YcyFq1n4pw~NankSVe`L(^KeN>T5)GZp1TY2JejfkGWyJPgK0(eStg%fG#Q`Lmsy&F7x8nPB7iT8b!7WrRlstR#))xN5zv zwu&b-J=Kp5Kxa7F9@_2f?0*~}1=24yue=EM@?ph4--lP%PqB@DSQ+#PTr>?wuJnfG z$b}y=HB4HmWTr9cwl&Y_@bb|6l$~Eo^3I6_>Rnxsh-!E)IWNRn->Biz3E1Y6-m`Tx zl~ulWwn4RqxKV}$D-siui=68bM|vt#-8o;n7tE9v29pHx%W#8%~B7?#9VewF9xEzZ%lmc zl-PKC^Say6ZWLOSfIzTSaZXbEn^Ui>@xhv}ToEeaj)*=*yVdig)a!HF%GufU zGQ9HLUfeCqbZ3=FP3Yt#PCd1sHfAo*B|@GP4J^m5pY><*b3%eXKj`#tYSs08@IM&( zWD9jQE8Ko^tx;RTYjK|msVC;sMy8)LC%n+=&^w(JlksF%tI|FwqrBt2km07~R5r;r zTD=6$Wy$e&JsaO=`p#1TXQ3Wy=9L1FuV;yc&(g20!)(iMST%sfa3D`uAD?eY>EqN> zZ~7xd#uh#~l^%JLeH|3r`U{1W6!2Lxt3{~fFI}AWBqO+vn&A6p-`u;Ud}nh{!hDYR7n2?+ z@T;ppHXxKn2yzNvIFTNFW6T~1`RY^`v>*qB7{&b$wmK7Z+iF&I^2}PwtFP}^_g_En z+HF7(lALOkA-V|mazR-=547oK$Ao@9o-SyFq|nd0p+_&WHGLav(b$~9>?ti&8dtYL z#vpeB1{x=k*J`PB$J6j%ILok35fi>Bl5sFESVYsvw7U9La6>kCXI-|-lc1gX99~Nd zRJjYtN)UgkH3MsF(WZi53t&T&na|mfE*L8h-Z)e>YVv%&2rJ}&Z1j0RpX~wr2*Fvz z%;{Z0@qyiq2vf1`Af_Mn1NmcX344st)YgxPrlCJ0=lfh2QE^+X_hK!Yc2C8g8tJ%l$h*(@fVXv4zcY__fv9tAZi3~XnEex6M0$PI8;-DUc9qD|uXL1QC5s02$+@Gg zf9&}o;5xozyucD+6>P<@w30`##JME?Z*mfbNwq2>J4S?U^3{H>jIgp%(B2ypV?xlE!?mPWVP(bjC*nX9Z{JI&SNKlksjSWv(U!lN(+nMfkSE6YpwuOCc6G4BKD?HTK!KFW8|fX#0O5tiQcJ?790Bpp!hLW zqP5@E`sBaav(7Wy{;>4=M;V4aZCgO^ORO0_{+(g;)r$*9ntzyudo}dLXU7ABP3=Zj zv@rP?i$6)YH0-L@DM?ugeCiK0d+|;Wf`yVP<+LejTEx9I@RrO35Y@QrdH<|)XRg2d z1|C_=`{~Y-p;HoPBcD;1e*xJpgvVQ)f;7)C9=W{FX!zXU{E%OlF5v-*hmO>{;~NC@?qrzw+Y z_03%wy|6VNf?rmNjSsgGUvu!>6URs)SB$JOh=fRt^UgDbHN@08exOP0Hennz_NM5A z;rv*A+JhM`3IFgmTDC2babprFi*9RN&$jLNzpRimJ~9w6C#eDpC)9Qzj>c3*DAJ}{ z)0DyqzjLSQ&d#eS&`SdJstGP_daRDkF>Vsfo9HR{z5?^P<&Piq0-ZDRB5p`} zdZ<nh z9ptA;rJHM;h3IzkZYYO9eF6}|OD0vkP01d=B7#WjMeP+lC)EWNu3mzVZxa+ZT<=?S zilsXQGkf%Ow;UW#n{Gbiuy%h9P?@3yG^Mbxuvm-Rm{bmq)~Bx4&z9U@H$ptoP5fWo zD}Q!PsV*yskmh%%kmnY%B;@^sGyILG3Rg+<$q~C4 z6x~J{E?P)wkzReGgkkI z1hXGIR1Ngs!nJjY|Kchvy#ekVsJz$BuydGp)SNK*HXAY~;AdO@!zIL@E9&i%+6bmx zw)!^4L&tV_pHW*lI`XWed*j@n1UCn;zMRXbYRFI~X+U;PkZtd-ENg^`tf_o}si5LA zs(Hl{>U3HlfiE^$>h%u7vuk+n@La z(<|<*?4!@u2$ANnw*-9yfQ6IC=KM#uPi@2@1Z#Ts5D3q_BqfVJ{-STDU`zW3`xgsb zE?};RTO{G_&GLerd0_9b5<6-gJ=mA9o z98&&s2UMBG(L6FSl4mm|ZyB^^r#f*c+KyeGG;xC1#$Bo*`b+;HwVj<8pR z1gW`S1y4kj?TqK*7WxA9IqORNm?qTw(9=#areXDD@X|L{KkSr5Cv>r9{?h|}l}#AC z`DLB2=uFyo<&hs38w+8S6Ql`fha9>6ZId@n({_h4gKo;1Vg+0cVfk zhfXwANS@I^SF1wwOaH_r{RZVb6#q+gk^#XI_yZ_eRbE&)U9Z&`%ctWGxmwJnYc^85 zPcLPVZ>#%_p+;b&-Kd?OWWVrBuR2uL+UD}g8U5$<4x;j4>3K9ano z>6E0t@t}?Oi>{vi7FZeW)aK$0Ox?J(3E)-tjO+Flr7`EwfF;(6quRe}d;U{CZ$41aGf%GA*l7ZVE8qHFdpbZG)XDbyZq}HYC3&(8cR|)G=w!C?YKi5d}cQOT* z4x(zSR!$adz8mYWvrFs)~=JX{`oBH5Eg&W`{b-oZ-@W?`+Vm`dHK!ApKJcn%X z?i|AYJ)nbxzO{hfw&Gz)sVxoWe0|mCEFrb>%t)MhbD6x`h`Y|$5?2j&k%_r?y3UTa zejzMXd}pIRJS%GZsHB$&o9h3SB9;6!Qkt_>20TAM_AB_5M?e;+I^5oe-CB)XJG zG*?u%?s@erR-^%Gb~et9u`5ZKY+fy8+qY4-TQe&(8V&SfHWrx637hfXfD#IEx21Dh zsydpHQ}pzmcRqtZn~7!JYKy$Az6yEkRKB@WvV$7#o63Q0AF7MwTtAeYDQ_v$Z@G-P zX&_(-OF-ijVo|c`S0n=H_Z1G9hPvJ35kBHj5lG@MqsLB~d1rCx+k#@xftnuNq|cXL z6{02-m~uW0ZoF~M1X$}LPKNqD{84uehPnsrFwdHte}6IOG+C&DPmy(C=i{De>E7^> z&G$F+HvYU#@}rfau&ci-OY!~CnWEqiRL{NUR^_f4|qU6P`G~2Xs~cX z(s;E)tZhRtnn%}pKI@1iur&{_(-0ZO4bvUFcoF@OpjW%&V$}5ArNXco0|R~N&OMz^ z4|$Iqzb1ZH*0=T!-R7LbDFsQaHf|9PK>czgnoC(5*LEe`60 zB3%ZT-H?<6rJMA(XY$)r7#fxvwk;pzWp}oWYt(&)E0EimPcJG7*38jPAI*2hzS7UB zyEl|_l3O3(#3^DD8aP%;(&UpVGpjl!GdBQPDc2EsWga-1_YnX<6pr@n$C;h;*zN*n>L)Xy6A|5 zZoR8tJ33YDVsH=AZ(4+RaiV~6l;O$q4z;exrL=dXbpNCoVLR3t=}y<53Uy5!U7xvr zM4It3`TqVJ6Cb-50L83#T zS`PgNt48}X{X=H97X2oQN_ejBx?q1E*HIJLBFVqpj|XScPaln;nzqBO(n#sn+_mdm z-H}68C~Z$;+6JeqCqm-x{gsu0s2zDBn{rS8j|gvEy&Hm*#{^?F$z zJ=`Wu-#%vptP(kOGn}T9HUh1#1ffQp-A6}WXQ3!!O~D1iKHerotJt?of#W6gl^UkR zptX`BsgkekbXm?$Yk{1{Gd*&WJ&JV!K=JX$zI-<${nn#>{?=koN#DJBteeKijgoY+ z-W4V`lv6tpPFm)A+k5-#OfEp+jPry?@QnHJyz9Hjfbn-l;jfq9_o?uMoLjTgTc_K+ zFZ4I>m<<8v?gPQ>=?5#aZg23mfADfp?8wx=S#RH0UKv>%6hQcrz*lR_4rpjm z1Md_@MX!DJGq3w_^Ah$^@R4_&!ycEs%se(!0XM z!PkFrbSmi|Jl#8@7(N0mC7E7jzEDuB3DTn0JSiLqbQ}OkZxS}c4}Gb zkC$@dFcdOwn@djyq1|5~=PxzF)*SQW;{Mg+DF2e>W?k!wknsR@gH7(WGmNcK+p?CG z_++#BVwt0W2qme+nc@!rjU>f9Khi>vm|Wc9M!X4m%iKURAflo~591q_&bh9&Q?VSGX>qW172<@{*y`j-3O+5VRM@KjOEgCpw=iZWdQ8Qm1CfP;TXtO~W67e8df*fUgqOMxlW9Jb$ zLqtEz_-eu<6##wf6m9BFKU_H^Dm-hZ^r*E&W)!{N_E`Ij7v_2Cy{h^HeuZQO8Lx~h zWqa*{<;z((Vm9EeLu2Xq-K5>7ies!xC+}ep>0@lN$M!)k&O!$h)NbkXYE(P^2At+~ z#GcTYi8Llbp6vk%S6cqkW?qM%3kWIr3qhR~4V!wIbok+k8HZSGDyj>5Q_v58?{DYD zziC6*{|~11`n~=2ch$QMkmtw*hbI(CFy;GE56T%UHko!ec!nM?wk!94M*C)lX|TC4_Q^7T~N`^ z|0+ZDfMCHD%&Tno7(3c{{nF`!k5exG1ysMu6(InUD;+*a$+r;d`AJ}zY3oNeAH)B? zGv{nSJeevv;G98i&jz@Sh#qAVzWWzNt@0cd2X`i7wyAQP=ry!*h@cJD7g1s2+t}X9 zffv6|=O$sMlp=*y965Con|1h}Q_LLx?F84rZufMOD>XB3JJ@X8Q{*o=_Sm!56j-a1=yYQRExZ_61~{lK1nQl}ayO$pwUivQ zEX-W~&F17TftM&4g7aLZ3(1xfq`Bg6dwy8+wQ{nYh2>k5N+~w@?>ZX`?S9{2UIZ`k zzTKcAzkD%w9Flc=E;Q}-bVZ%*dM)3jf(EjRj%7n&Q_#30?uzB+k$vyA{!ttc*w6sf z^k~cwTttRneL+p`P4qWtkd*bO>2KVmq~ax)l7GvzR0y787q!RZ$ba9L8pcZ6^z3`q z^`bv0`!~7yzS9o>Wrqy)K_4_!O|n&W{x&V0cpbKHhh{#fpRzxmE+!_=_D*_tXJt=* zx6gdD`bU(1-ukv`ot0p-`T*e>Rv9UF< z|8W|Sx#tUknyS4lhrm{)^w%Hq35zwV9kGxzJZAjbN$gz zeCOd_V$##}_|pg39)|vQ#mNA9y$4<~+;txBq}bT7&;Et*|9cV@Qh@8Njoxi*DMBjL zcOj(DD#*Rm3XL|$L*#pD1X@?xFwY|?@G9$yYnbf(7Ig z2HfR#7TvvxJa+5f`}riN!`5+hEIWBJOlx+o*ZZEozv?;?fj&hECJ;^nY)3Lhf;W+1 zMC8IKh(^{@roWuD$w-`zUI^5?bima`29a65Lhd}|X8%_3;zxsRD3)7Q*0Jz1GP0j& z+hSV^`n7NO1se}beoF>sp2~(}5G*BWRB_vuRdrsuXN|UL8rID%bV@wGjI1*wr8kA# zM$w;1&!fRmMc2g|A?HLipHABgWsNj7E#EHcg>H#|fg8&z=uMr&p{-hGpp@O0g8Z|? z6yOk&K83BMZ)ltp9^y-Gq)s<)E{UpyuXYduAYD*q2#tB~%e(f4Q16{#qM;@^B&ULP zu&()Ub`Cngwz|qzGW`l)Ca^9^;2>}7W@oSLD(OF`)(=f!(tFKh&$rPg)?Wi{gX!f# zlxY;*G(^Q{`fJz-I?i>f-5e$+7M>YUjW_UR!=Tf{@+l)wXkqPVCb=lr!3E>>t zK44WbS>6he0q{nzPxP+xNJVb!4A>wS8R{<;9xZq3%LFoh6~M@Cn-CbF9h))0*oc4T zV~dNRj*6=I+6rGjMz33sx?Oah#m6iW&FPUodoi8Jd`B?(`wuE0jUJBKkSp|5bk_ct z#cCPIalp0zJ@$vyck}<5iTupsisb_@Ha4Hazwy$p;S~OKUd;SoK0VgA`+A%AtgH3^ uYdzTiMGL9_aZTp`s~g;5P|-}Ll4a}BV8R6J#Z0VsE8W$*Q*ry@)Bgq#_m7_d literal 0 HcmV?d00001 diff --git a/windows/deployment/windows-autopilot/images/devices.png b/windows/deployment/windows-autopilot/images/devices.png new file mode 100644 index 0000000000000000000000000000000000000000..a5b0dd189959dfb55d898b058da40e0fd2ad7ce3 GIT binary patch literal 45828 zcmd3NWmFwOw?aI9xoq!{mGK&8+!9f2P;! z)u+y%I@Mi$YVSI`qSaJnQIWnNK|nyD%F9V`aPJ{(C@rYRGd}lM1zlx=-)I=1Z+i0QN7%PW~Ati-@+=mYdNhEjG_XrAbg*O_gTNzl} zul*CiR*>~rJjwP6zC8bTfk1CQHomG-5Me0sVPTL}T8vTR8~2(J4~tMY|v`O7zkFY;Rw=LRa##$vznz#B@l}Us8e7r zR8S5*p9nti9dW1{!`g2)NE0O7VTsdze+Yphdl3qyC@{tvVY})F9Pdvr>gDgLdFU0= zO0zh4>2w-EXG9zHIF{L$wktIxY?oy?3h#>Ih$%~HfWX5=_l0BP0iPNm-H4wNEBb@% z=i_V%#^;GYoB|G17>Z$1-mR!VD&h4R27=6*_9cxkgMXw{r^tMLhZw2F$w$BX0)9oBGGXlfys9 z1d)0Viqtdo&(VBMsD?OI{B@TSEq0m&{*Q36=PpuP(SlZ*GC=6hrtT~zQ;G#Ai&L18 zdveYL1~rs3wzxz@G$b@sG+0bLyvuz%b1UDT%-Bz&_^NM)8z4uToT^ zrEnUS?9Rg9k94XVrsf|RaVKa9>*0@CgiS`U)cLviR(;Oq$!sUHy4;rjY(jE>oVIW4 zoUIy?76=8H*mMLI^8RuAeCb-SQ2~D3idrT{ijqp3@vQkKx*CfHEl(EUch!EHp3%I>VPAzX(6b!U`ZYTkL1(ArjznB}qS{rui+z4G8_b8o4R@@0qjKv{OTv2~{$+)NkxnFG){Ee`ox6 z;bv#ElZ2}Lgn>H8spMtqZp&I2;Q4mnWExoIV3wJio{mAfJ%TG`Z18*{yTC`f&~n|o zHD}c1yPHlW$@}gY=oS8K)o__IV^fuFotZ(s8C_%UW~fPW6ntNmQzUES z5}EiMmN<~*##2Rj=7`3<@%|@kyLa#Aw7MFr&#PaiJl8Y6-pR=v5$9chECd;6h$C!g zH;FZDcPDX><9o=TZIxoZ%qv_?u2*(A8qIQXa*Q!k=p-oPgN=Kuu{Nt(buuom2Q!%(}RI;=Xdp-SiVDPsYSAu3isLP z%|*j&@3RM>?6ZrF)^*CsQSRceQ!ISOvVU~t^9AD%1M!f1IF`9NentqNYEM2J9+LGE z#h29bgcuhbdHP(eiCYogko*0ZO;$uvHQ&(@Der4v#_bwfE#B>UBaTbH7SiafpA1!{ z8xC{m15WpQe`v}?yG@leroaa=Qook1fbL_DtW_kGh*eG%6rZ?mxtaL8=GGxx91IK` zq7-2XPrrZnx}aTsM?bcRSD&z35}Eih)6dbFu48ex6@B*&k!rJ$*lH z30|r`jFt=E(}9~Nyj>eXeiX{e{V1=cx|NyPwp|&t);i{M=P0h=w*poAqJbuv9+tkm zua%z7;X0w!2!gDaJK0p9apew+_vmPH9Qe?(-2^(brmQ`m8`)mAVWc^7XAZG&La9$6 zK0l)}f%%%n%5yb#_WeEU{Dn|zIRR(Y%caS#^Y&z_zDo9F<7%~Lg%wfC^tS)`NNmt+ zoW2KO&&OelszRoK+b4A0?8sybh5;daRL;w|0K_D_`TKZm+ADe+#aU4E1iWq_kN;$@ zDSrK$pKvAxg4lrFcq@>V8GENtf5Nzil>~<^YeG)VEtCV z-S7f@)|I#hi|EcNmzND%)m-k!Ofs9PHU=&`SCb;%_w72a+V`%@Q_BKNnQ z9ijzpZ^a=(WTJX^+eg_Q$sbgbso;Rq{NZuxu3pNgy{E*JMS%d9#^G@(%o-lnv6Yb# z&||O>e3S|eT=kWp-o`5bu(dB*x6UueK37LeOXpOh8R?CbE#ur=V%HURx#6#&wH36- z867q8@$nmZ;7HLhPW|xo@^AdB>w;a|OqExmCj`197;bg7!<~8T~0>bYAc$knQCea;JfKzM$FR=OJ$^ot?*VF zVeE9BC45|PQ^lS(5fzg3RD*7xqB(1j z=1WS7n`6%S=^^LUP%d2SRHo=J5C2LaCz#v0DoTHKQZfM`<1=fvE+!4INTz{RR)npw zLLJ1qY_Q~lZjax~oYcx|MV12g6Zf~vJ)uDP?QVv8xQ4%2LA-e?uYg1rRr9&av>Ml0 z!u~sYs&%S|UKQ0Eza!2;O2WDQ>N;NUxUbXPRBa+i;@w&5PR*7e{3`}cF_PCUz$XgD zSYkWBgA>7R^j<&X&V9%_b?fX#=szT~9hQ`)R{1t1mR499B~}%hOu4(m-I$+539o4n zJ3oUHO+So5CX@IgBCs5_2ZNY_^c_cSzXZo0mV*9ymkqf%s~MwkEs7~3@GHeLxC5R; zT7Vid#A%miM_NH^`gXm;2}UlzI%6m;HIJiav_FyDHIU0SB64Kcdq4$FQKms)n=Mr) zfBOk9yjRFp_c|2DOGi@W6ACY=f8-lYW``8<7sL#Tg&^eBLRCVWX8qm8kdJ1Ejll@` zr4?7sN469-BVb>P#A%e}(WPjh-}ce)ryn-pq6RkEJG{Ixw&Z8{qv%Fqu$1Qh-wa%_ zwcosqj__gPjul_HlFsyWUrpM`u*RX=RC0mVysf8HkhWNs^mn;Uz!z`ouDxOD8_L9@w!G><3 zTkHep^kH>n0{YVHBB}QYx!~xMaXPaX!-`VSpfbulj*m5z@#2palYr{;pmz7YurCpL z1Hpw^LGO9!nbp8Fuafbl|0Eate~3@g`Ulq5g?6=4$^@5)YS0H-Ugxn4mRj||bmR)g zK}6MUz5f<6l&~KLj^F3Q1(=t0i$|$_4W&6jKZIsn8JXX8n$60i3sZeCuhjHxY13!SZ8&;J0VOJ zKfw_GS1@*1LAED^$2j5^rBhuZrhUqf$aJjBjMj5A$UNV(5`swp7Z(kWIRI;12#+Dx zu5HCC!cBq>Ves)|GP-EafdBB!*bnq+Szr1TGR4J?A9VQb_A{E0TvrKswuktT?bxTg zenMS3v%o&f^`5aG9U-fwWceBBG1EV~j*swvCXb(`zSo_;9a;viij!%I@~{l&!%1^duv?N<`*Gv6g~qfvj6Y10G8DBh9sn(INk(U zc`BJWzo7Hw`KYTp?r#@m0WD((KtStj_ia#!Iw5f$$$>KJhEtc35!mtx_hNliN#ET} zoR!T-q)P9d;wpX_otcQ4@L#|AkP0}QTK`scDcj{LGSb_HUYd;rqRm7$D@;{f8Y%%o ziRsaf21r0g?Ut2YP(|1^SQn@CdxsMKC%f&#`C8P41!>)KvP=7uZBme-Rh!00?h%%6 z%l^O=eDr`lSP#D)^&=&@v5x(v_yJUK^zrxh*I|J7Wa@Y~wTD2Dz+>cek+oMD-i3${ zM{}e4(v=loS66oSnQYG87yW&*r$0$3nSInp$=WEn>|Py&g5%D-g>-{4HkBF6l5 zr&vYe|3mY6MUtfOd7F9e3YA75S2S{~kX9{!x7By`^WkD+X>l1o6DjS_CzgANHWzYG zG2m6x4T{aEQ-8i9mq<`5F>zw>ob+&W0LHO-iA(X6I<4h1{F1oi{Si5hYX-KbBzzE` z(e?wCvs(D>rQdsFlWQZ5!K3Skw$HF$$+xQ9chf;flrFQKwfEA^PpHcJ-dMP0ZDEE% zhYRopG-@jjQ^!VgPh835UxHc_*(K@*Qz=zV=g~!I6|loqD* zI5yoTYv~Wx(fR{MPm%AfJv~(s4XcmGQu7)ZjUn5Sx1uf#(59h_A zzPWWR=`%moG}M})s1>tEewm@08*!T1s$i~u#n}$VY-z*Sr520TqQr^;=ND-GLQ-2o zWwTI7%Y4!(QhU_j3nqD~F{w!LClKK3k|Imp>4{>=xl zT3zPNm)ko#AOCJ^(N!PB*AELx7y)825LFfRgvEdnS??!7^!6h#rAChm6A_Vq9zn^O^ zgFE#oC1UF`Tp4#mw?ak;7b6xXj9S3RY_$wNS9=XQ0qLRk6jZ9mdutjG3&V;hx0(WV z5a-3;DqD<>^&*(gU^VhZG(Ud~rb-FiVyGylj9d-SH?jDtG!6dKn@59p6+ zdE7nz26wh9CTA1MAk!4PY|giA)@+o2>0{X;KeE%RbzOy0Pl1h`o9k8E>`xjLnF!G( zr5f^KQFIfSPOs7yMdMc2;J9&wMt@}2$T@&}EDVU?^19FGU%wk=d5IX23^(lQIKD10 zfKa)KqN70t%ZshgNQjS@z%+u<6ZxNRmdCqMn45EXDn)b;_? zj2B)e10v;;0(^4XciBT>NF{&2po$pRbQXhp|B9RfwfQb@lwHQ+8(#sFe7BioNOGqV z*?E^Q28P<&D>aTFR%d8B-|&6NKE=$o$I9x9Wz$?*yI)|hBj zaNjEkc4|5Po?Ga?D9yF&4>6f&y`L*fkW<63>XudZUPu@UZo7DwC#`682^-qNz6_qH z&mSFI>mQo@7?I{#nu?l!;ck{N)z`uU1h5#F9p>*UTL|E}*+)fpMfWF225JA2KsIeR zO7K)*i4)IYc})Oxm|6G?Ixhs-k~BC})$4mrvqV4d^;)u!`6dM0 zU7pP2hQ{`e^%m<3Ru&-Z&9#6LzNPn$fne6y?IX_$ue$al{Lt-dA@DoT zZmosu`)xOx&a0L#+wwgF6fpB|k1G)|Bwh41tmf3=vUi%2jN1?~>s9$ouW=?7vYbj; zU8Z(~I4yqLm+HDi7n}*{AYYNhfB5Wry8NuY@^VgC=V9?@DErW}m!D+GP*E!8Qfs6? zS6|&dan~Is=kl(b57U1ANB-3SNryv?y@26}lU#Q%VXkAfQ2QF5H|EZdNbuTrtRsAv z^*QB)wJc-y6lnn3iunz(>RBItv-mR$p#SwTyv1+99s4mjtW$7)uR=i6mc@1~j%ecd!L!Rdz8sPr z1#$&+Ik>sZ4O{v&)qOR;&(nr8f$B1v%{B9Y$vpxlc5d3nT7{QGk;Lci?Dv2(6ojeh z5ncA@@;~K@IpqQ7SHUZn%K0S0!*?sqE$yFKhAVhI^|5P(E6g>MU=gBO%kvHF1*z4o zEB2UkkbBE5Uq!v($9@BQO9WuB<#s&}kJ*NezXL9Ve(f zIuOT9U?=-`2xevTd zv3Q!M0BhD~N5p8h-?AuxjXE4oTxGMXbrkHwGbZOPo4e^UFQf1^4v(xc4w@5%pu<?<5yVQV6O|^wmY#ELu%MemU*bjk8NROot6_!|U-Zq(*sTxbt{LT)2}|RhI=rO( z<-6tU)SKNl=0)biRkZWqVYBE!tb?>_qQrP-`soCnae_U>!aW78VwBWYp`-|?1!`#Wu8c`Kj8XA#jm%*M&)$ANhJWsgJfM=xalQocU?7P!dC-FQcVgs%P@ zcA@8bSK1|S*=B3&4dW@(jXsaLwMVAjG~2R)g^|RVAvWqA>vL#4Rw0Q6*VlSt--L?W zV}UcH{?v~~5?V>si$@l-Kd@^P!6u$VeFWC{IR?OVE!(^m0X4<(01Xxr=9Jm#DGnPN)M675Chhg~@u19=ur}jsUR$Y(G=mFs^34o7Y9dXo= z@s>}QKX1g1K|Uvc`rsYe0XZ`tmMfBj3>0<<8lNYDeOfwzr znpMIpz6w=x0ZgZM+IC#0+WDn(H7@@9H9$^O2Q|;UuKCg~uPvKjvWGnZi~5T}+f)B8 zX^9%Cx_z5h5G>=&eXFQh{-~p>VDn?Eg_S`H!1%S(lrZb>HHSOBdax-Df{03R$FJY; zxmj9@Pt6zQ%9Na5j|xjv6g%BvnppmJ11hM-w(cp1Cku~1uZxWOSpAkm^Dc#(2dO*5 zu$DIUt-*?Bc`_q{_B)$NseDtaPruuw{7l65b>Ww-+~G)l*2!*Kr392GJv#`Q-HfR* za&N(twu)I!aq#_G#7avoCF<0y31?Z(+f&8f^qj4ArbNhJAmknVM*l31%C-!oH*J-+ zWTow~OrFS0<>yg$LGZYrG4IP)d-U*aT~>6^77@F)b@9c#D0IshpH&YH9-`TwtdK4% zm=;S*wF9j~nF?(sI_prUX^B>xH(TA`k5b_t4ZBv!{Beewy1!v;DE?vQi2iUn(F{w` z(#=0IsVEjDWh~TW4+l>I+zeLQeISNm5|LzKjcgtNS@b?BL7#;Ydg`Ieo{@>qb*tHWqP*>P zaZ`eq24~%SWf`Y*#;|#g6OvmU$x4Z9Dz<;k>)E4vX4F0)xa004{bB*XL3gWJ+Ib=} z-m#%o@tbdayT6XP@*KYEc73M&di|-By#3`Z_m)D(JkoFIXIY(i<2HTNv;p%i57h0q zL9gt_!}-W1**mt(#f83j2|1a_=Ml;H@ef=f@eo-T)6BD&^gl6|0hW`nQ9YPul*2mr zE||tmzmk{=SDmBUZUW}STX0Pd$61}%`kZsUnecJa;`%3l{(- z$ial4TXto~^;I_^x8zV0O$Aopb2Da1C4w&j-h+j0vq$&Tx!Ylyt#AWUN3Y4*QO$XD z>elhy5j>-<_h=R$20va0dYgz@+HrGPYjz*@pn7f0Kygi#JVLs93~1O$TOCB%?4xLX zFi+H6_6i<(!i^x?>wX62m875Sgp&_yP!;yF>=j?I(D|B<{z}6^pO6xzn~{4|W1+ZG z>UIiY!e~9zX#MRmd}J{komM|E^|8DUT;METSo8yim?vj;>-VUUl9>5X)p5MsT!K}i zjpiLKii0Zf&Su&L{Fl=4N}YagnK>&_ZCw2t7xIo#N0q;gkH3ufxa`X#B28o5xTeHc z{;VBQ`1DM;)<3EL2(AY`!0oo-29E|ZmdywEL@+JRn6T7o=31iL$Fqw#*l4R6r9JPA z9JS&54|1rq@(Gv~J%x^`P29Whpd4lh07)T^5qo|w7NXCT2cy_IJ5<7mVGUbVmnS7_B-cMB6`z$_Kx<45C1M+Y;t^oRB(=#3W>kW z&&VbzRJXi_Te4X>bSAQQ0z3l*`@pk>ld_=p2tVY~cGi{}ZN+af{zRMu1h&}AQL)S| z(L&~CteR#pua?41hq5^0yEY-$I?e6ps&^UR)m)S@$mhPXXVRE_oLJGDadTa zCU>#|y8wSd5ih3hAjtVmD6z*0p*g{7ITR0L^jV9Je9UU#_V#aa8uc>K>Jh4PCEn0Yc*pb)C;c z>)s*3gIznU3Kx}vdY<2zvvd6#C#ahek|qStmv}tWSo(HAbMGf8j4$JY8{GbdT%&6X zbJ-d69b=9Ww&5DZ(okJ#CyrikDvVq1$(r{%8_QPov;~nrgnJ%)H7T-UI?t@WZ1HC? zW_tW1_pnw>I^^r;tjjcb%=VQm$9v_*UbP4YKK_o%-LvlA&Ja~g+*#aS)N6cro1&M7hNC_e z^$YFMRBC{g)!OVgvpV_ob5ox7Suzb8cqx*a=|YBSlg-GRF-PM);of5SiDnZse%IZg z|F7_gDCz^2xF3R_{XMnPUZ?O}Lf89adh=|9*;P;apjLdVI--UN<9p}&DY!t)B?qN+3+K|ZN%e76eTJ2tDv(+I zqDEyWMTymX^{hU=@_4Jo;Dqlf3^Sc>d39xCb{0G83XRmXOL*a}G{m5ymBl8tt3-0_ zB77vWhZJsF$Ka7EeXkb%MzA!PvGZaVO~Ji@sG^-jI7r9vwRU=~4)_Q-^jIARWx!>` zBCGOrnsUS&1|zRK7!0+S!}h3byB8L3kD~=Cibq&iK}q z+h4xu7NS1J(WmFu-}z=zJo3@|@J;))J#oY*O|H97g-pm9kXqCE;1~C`So&@dc8pOo z;2~1%V_nYeJlxxmK$00BGs@LlE2ULxW>h4t()MiP&CbW*xQbcAR{p9yK&e|p>BHu=J!a4r_zC+XEJ1ca zFEVUdO&qD|WnzObQuiijzBj>e6?{f~BjSRSES;Stg}ln`sGY7T-D@z zTkd`AEUDjF%Jg~3;pvDS5uqy?6UK;(rEEH&^ccCnlt;93v2t^U6+?Kqt9#+J!T+ni zxADD)*TtY?RH&W&XW(!p!#0ahCI0s0ew!_!;{~V}u#n%9u|yIWb0E``+uqnTFIET` z*EkEdA4n?gbneoZMww-JmsaM|x6H$Rm7?ve0~y}WFJDQ z8zHw%o@?pkb>yPo+p8)E9$xa-0*F1qI*5+FUKZLO9ktwJf723_r6na@bUq*kj_Zd_ zBsVY`RkTf%ShuJb%)Iq61pkL* zlG{v@`d^28^;UVBJ%duNBlr8X8Q#WDmos-Xd1qMxb z>`-gz-IgyzjwCokA6heAo}=&8bNz8OqpWN5B>^cQqKb@2KE+t5Dc%#m6&~)R&Ya1Q zH?MdtQ0i{?VI$8I`ROegF%L)mIrhYGo}kzisQij8Z7juw_$|20JX4SMWD-HX&hEsn ztx0zvr-Yd6cuD#n|8KwFHQ|BP&l5iTLrTx@Zp2brS;RZ!v-N0M94ZC7lsV&sGIb|LGdVTM;HgrehcA8@SAYEmRg|w2cuhzb(h`+e*w!u`WeZ_CAw%@ zBeBbTQX9^^@+2#K1c{;z<{Y+%nybtf51l1r*$(&KxRL8+IBdp>NV9lNl%u;@x zx6*sCkFum>(^Ygt@Le6!;7MDGOoZ0$P8!_pii-Qvm+3SP@)a|7S&1C4D~PJ0q(p7KXbpfe%Y^OPj9DofP&CR`PktFB{0zysySjv3R}Q*j{~X+{;)1#!S#~V2#q^0EvsJlC?tGuK4p9 zokO0>RC0V04-Q0u)h~PB=m)*yy&Y_~M7E;E$R;mF++?oTA{+zv&eWaA#Y1L_H0J_~ z*N$r2O>GLagm*lT3T<_CefQerTX;vg*XO#&h zbzz~{4qE}+u7TPJx>9klmU_`9{<64xy66sMGc6qTcWvPhY$HGPBo8g(H z1UjXJP;vOyFIPjdg~it1yy`cEYdmyC)W%cXMEJt~+|x0pusJW?9PP`1q31uoJ_aR0 zZ4#nWo*dR9@$$jGL*V?}Lf(^ZNxT6r!25WON{5S`1F2`9E}tG}59bX*5P5=L1<#)Y zEB{7GbM&A(Hk&klQMs}jTFWh1SyRo0oo44mIa)ip*uU`_aSFGb#21V&U<(hbO$oTV z*yX#ij;ur55>?&ZYF}XU3g?en_Lq8H?x(xKBGgXOEVzW$EKRbPpAAIkDUB-+DTA;; zJ=P_l+3~!JtGLeNPb!+L-Nsk)a9TR13XKsne8isPV1Zh_xeMIeUqjHy{tObHd+(iE z-LaI1bYgDI+Fs6-f%Og!`FD4!33p1i^pOLxmM-%=i+qZw{`_VH0aJ9TARXNsk?jEe zJN=(EEh5SV3c4u{xcYW4svtW1OSCrYzN&bjeyXiDwS!lNAamEh>Ax4Q^#^%rdiziA_^+y>Y?76@HtlqN0prALf2mnk*6YSi< z8u)&u@$}bQkYN{l3?iK)#u~l<@eXCo{mkj>*RWuEJ5+ZK0@r~-*18(ORi``&dL+Sv zwM+Q;X`ZHG9O*@wEgm84jkRnyx0rGNHe&FK(W1J zX6}qtp+^kSze2&U`o9QRfcUeyg7aM^D#IDuNeY9k_Oq{Q))+o+wetqIh z@tk=2#V~4NP~2^MmW9O;)_wp>X3+HP;MdgIA-*(Qg(cVe1Uj-5MbY?SjNQH?s6Fmbove-Z(%wg=n=l@{DP@ zR_IH#I*G2zC09@0_Kd~SVR_nJG0XJ|{uzL)AkEHj{Kiz7lb}_q4>c}f9oIX3Td=rJ zdt+WVDRpl0*Th#Z)wNel5gNnxtlx`1w}hxR@O+y;s;pWFPnOqhN%qt*w+&sJw2fLY zWI0l*k-KWU6^Hh0AZfJ{goplX6#vm4kgtkw2fYSWS36WY^srnWdYteHSFLN2QGF^w zLZZl^q|se~+N8CY##W|2%Qbm*Db1J43j|x0wUwP~zWdUtE*fK09%D`f-&xQrB#F>O zuJ<282Vzdg-`}*O*Izg)HTrs1)@|X0drYE2)ZdPvy)L2k{ zFH1Z$B7G2w7>5=|oto$A7rjb&_+V=>hIBTyJlZm()59*1Ws}=fQR&tHi9ejeu)cFF{*TU@Uj6?kcl>}#@uIkWXn~^!i>AP*>)>nkC7@gMhYJP+ zwuu70&DxN0#*$T3cX#*Fz2>;}r*uy9WjDVN{K3k7n(b4kfBVgW2ZPYo#1s#G{H+F= zDZ+tt1OmGPb4Dlz<`Y*u6#^+4P1W&Bhp>7$7Lxkl)jS!zX(-m$xq%tzeVQM~N%S4# zuCMEdIhmWQSpFGy3I-hx!!b)4-ca4d!9nwXaG4g3EhhR@DG_c;Mx5iO@5#V_nn_~G zx0$bxn6ORQi$6Gra6{YhBN)@ci`09XL5$0{^SdcgiP;sd|1>(a)CIB%JBVI z*;2sZqSn2`2lCbzn46RcHv=x$ZUF&7!Dri*Liz`-S9)=GRw@?OhI(K;(gztSZXrQU zALU)Jl&4tC`*d=lRyd_vnwd8aEUZ);JM3%;o40V3lyn`YCrCEwkK=;>H?#JKOZQn( zsxiN9EY_?#^bS9C3B1+PqAB%?gzAk^zK?7hVDj1BMbB6+&j*zCFXVF3uZHUKRyRmP zXx+=7aLu&i?jNl*qTZF9yXYAHxzB`Yyq1GG%D`pS4+04j;9>s6Zy*)vW%KI(WCQt9 zMUp6O2*R*~hv@U!-jpbtN9J&lEuV@sh=|BYHijnU1_K}U{$1brA2BnyC8J7Oi*kVd zcRFIs62o~2Is@&J)Wv7S2mJ+>U*%ukcOjJE!=#hu)cOA6YWuGEV#QgdCRbEAcL0f) z@-FD-m;nCD+Kb&l*;vA++&lb^I%nm#s_RKeHkNJnpjY`>`jdmKs{KyW+bv+p8%^?DP zCtkAMK)z973%6{jQ^IIQpIjR^9oqEPvQ0I@ut|g6DQam|QjF|x(+aBcCz5~NT&;Fq zq5EshzEYQ_-TQY=px4k~x14cjhTOkYU~3Ady_S8e^_MB8^zW+>+(^3#MJ_NxhXS-o zsO0}0!Pyp!gWmjIJtgOOxob|aylrBvy+UoVL~0T;$i_g&{PQzd4-L7(4eF|a3HAE+ z7CpYf(hc$J?-TmYkd3R15UC(pS7`}lYk5%JSm{W8LgX(ES~5q*2G)jZ)nGSxD?8Gk z-+C`0h$8C5E<8ijHb>7{YaIx7ZV)vVO)~a;C$4STvk$G&23wYG%aPmvK64nw3+{AK?_z$QA?r((zw;$cHu)0Mg;qI2+ ze~5vC_Y25sNLG1w$;J{L-zBb88NrEN{kJvfpumf^711Y;z56UiC0f*;=8yw;G9g^I z1CLGlpvkf1h29%I5A&^hSD6`5a8(h_W87(N$9CX*+X_gp_UwK#NY35$mv2Fzh%eCE zArvmWx8@|PUM^#cH<#Vx03GuCo$-cM6o5)rr3rPqY4sNL1M`k&@Sl{_@H8J8hWO0$ zWYl*XDjl$&mkl>s+ynR>+~;(hYiK zt=v3w?QhvwtO;Yo#_=C`f7!8->3!%nklEf3NXPY^N%;3#GTY~-zhCu#EDLer=QD!8 z9?nCG+{037my@h^I4pwaK6or#6kq-*bAdE)Uf$bV1e}GtdWYQ3Z6ng*+js^tPi*^r z55{KlJi9#P<28zRo;09$Rcy6Ee((1y+qpeD1L0xgRUdvURAd9PSNmhGc+_6vv0o#R ze;ln3uTU~_4Q?;)w z8b|M%>%z*MHKfVrG@UF8tDSu=at4Qgglk0P0gvpmjBXR@S&?{+igl)vH+$UN=5JCH zd>&TrX3pok*VZ>Ko%}7fh_#VB?xx3Q4|8Y_mCO}0CNPbSnS=}%THx>Ef?j`XRbO9j z+th6IY@AdzEOus%<8of=o%3Yk}}dZe&ZmE@h(c z1Twfr20~{g3_wNyQ*Kdz&v_lm3?&er^AkgO?fegDnd`+D*w*uX9b#|yzUH?ASIVnT z91tZKf&29d)oO1hz-V*xp)LoO^R1f#!fPOY!`D}=>xAi`pd@$R(14OP zZ0VK+s(SbEvK~_+8yY%w+ zz60&GZDMW{&_Ge(-2GeQyy-DJ5z}gZY7>&3#Mc=vJkVdDvY2`}cp;4~34P>p08F61 zp?l`}QHMEpx1G@0-9uEv;)gAvBBTX1_j<|#<^5zmmCzU9JN1GkQO>GxDK509EDDV) zMEojO+%Zn?62I|Cm6X_T=zMYMV%d38&_ESC1Gvt*Z-)~a2*f7jdJpXj_{w(uL`C1{ zoz}hsyj3#ZthaZDP|5X}RHU}BubPHC*=7|yI1i}k>N=Qx3!x-a74gQ!ap1l{KG>&` zJ?qr#ZnNmq{JlaVJ~l=N*ZG0H1}~H9fJ1#nEGv zn*I0g%ljZHS{MEcz{1AzoM7FqSe&mUc>{`^u5$Q8H?AR?z4S85k6~w(n#|3q3K|0< z-;0gu1G%w=9R()qAezx99L%VW)rFDwxk+b0+yn zd=wqw^$*_Qwlwjnhyu7+FSdO*NsI_?fvIsigu3Wns|5yDL@Q|Ph`FOd<(N^|1M$bH zm3D=0uUZEsJegNU8=oA_zNk>AfdkOLFxlzbEaxL#`4J|k3b z*hL`SJjm)wdfs^Kb05WvgPtgQqe6FQ*f#+Yp9d0PH+WW)z*depd@yGH8cw zJm3-uM}z}y_(4Pk1*E+;VEKyKj z74`_eSatkjDp=FSF|WGZq)jUkFRp0dZo_ffwoM034{{h$pWX}mT}YTHRzC+Tp3!U3 z6WJwj>6aTU($&cK1Sna?9zDknlRz1{ui%YrQ~%Svdt8V9sh4-{Z*v&FQ8jtJ7VfOH zumuj>e>{0RFo|Xht_frYQ@5S?V)bb&ZO6s6=)fv>SX%9-Qz<6%iQQ^GMQfk)#s@bd z$hE$sfNPaEjH~==Wz~X@4Pl;-{{TG@N6iKg8bV$!PC43e;TyL5JH208hjsj4E8)@-$__Qs`#HwpD~llMYtCO}%1Ji~af0mp^Ql+_5ZMhSxntU9sU|MyF;-9Uo z3nP1p4CR2)YXo904;z-{N^i$#FnjQzi%eBck`;Rr8ovC4S*e@^%ypDSd5Rx2wM&H2rNnIxT?OhbiW}xJghFWPg$iOJz^$w^X3i)LtUsxtZBG#aNM!o1-ZKOg* zE9CpOuJZ zb2!A=>&b>h&KpvUAE%s%^xbB+eh5REw!u|4t8 zkD>Q*-WU8Bccq2q1nk{=QzflD8YNcJ$8K;uW6$nu%cXf*?^+#fAs%1Zw7JhxYkI4N z<;hSKa;hJ}Z_6erug_s+PwKj>ruDPE!VIK>9fNVTYy%a)d&%|{qrskWW? z&eO-%U{y4?rAKC#R2nXS4=2`%(a*8zIvj_wth)wd6JEFUlXXV&_u13lT&E?$br;CB z{bnPMje9d;DgVLh_0IR{7jzTT%GzYK`f)`qDBA*iye-rMBLNci5a{nKDJfxQ?dq@N z<>FzjZmepa-M|-Hv`C1o&)D18O9DDiZ&I-7?-Dw2s zSAl#)&a&VPih0amVmov^sU; zr+Vj#GsC0~a2>Hu4+*99y*ng-2@W$#Fy44T%PMFES^gcK9dYYJ$FN$1e1R+4aDPDr z0b%b-s^@gYClaz`JE95Jj@uVHzCy-kun|X-w`9DAd;h6#uGu)rWXA37+CP0~l@3WX zJe7XrPL3{$|0-b6zqij9hEhM=76B@s^0maxPR1mQ-*P3I0&tTvoC-Wn1dJIjyeqDb z<5a8fN2w+~R)FdyVB_T{Xd!(m3zYJEY(8ueZj$ZINWiPg$PU`X0@{3IsCFUjyUzwIu&!_{#YUUxvS$(&Q3+shDFwM+CzJ$iiql9Q8t?%8*1%{Av-AmT9WV8-gTvGR=1#@g(``RpS$<-ek%K%qC@ zD?-XblJJ_o477}Az06X94Bj%g7C5u8vM>{pHPuA_&ecox)76c|#nxS9n^shr`_Y5C z9aNJ~MM}j)MM!J<1$i$er#QE)wlx%fRR5keK?%<8*%<;lC+(zlA|(dlD$9CE{|$bx zm6VF`rEClq7S{5`T>|8rQ^M@+#wc0Ju1g{+8tb%dWPosEaImmc#Kq1PhBSdDee#z% zrUrDWLuMYzRh)EDJn(#s8IU9U*q z8d(0$37J&{bG-N7)R%#Q6`V_4S3@;B9CE0A^n-S?+7>Wr&wG;7zYk zQR+$ypbD1msW)3@2TjlZ%!KOl@Y%ty#zAda6X9zkbl*E33fa*PsB83#{fSwtOA&$-;lr#rJCf%(DM=mC1d!5_V z?a3o5$mi;KhYV#chXS+$dK3>QWxy^*u-k-OZeM^Av>)YQ?jR=IVg{QO+SmufH`~o7 zOz?w9!Uh)vi3gCFn*sFO@Wu26*dFD9`Y0MJi(6NJ3AARr{A3$FL`Va_G6$sowmnbDQDPE z9|P_%d*X|s8)U*UEKrUJ>W(Q87w~PK)pof>f8zn0kUPSy$Q#@Q^_x>$Y88-1(ppnk zUtbwE(4Ql!&y6XUM-O}~)V?veJeNajFg+2YjIfR{pR8XVdlYicP}m;Hu^Wt?y=VA_ z!*2pXqRaBI8YW(ysib)DVL$&xj`9#mxZDE}y$aD6>Qfo*Uq1Sq)-0s+DteAthC z$%5ac$HLL8x){~`{9#=PKpkmJGUEQ7OrS-T78Mfc2((}$WPWsN$?0X=FI$b)=EB?$*R`qzG+iz0}OiG|MfZkoZW0T zYDPVY8pDV|lj^l(t{XUYBamJ%Vk84Zs}~)GE5(~EarziDPHEuV4ZJ#{h)W|GI1K>f zaPQyKd_O$BlnS1OZW;F4~T-+fte|tG$uw;Niicu++Do(2N?s`b&)oCO)ER{Tjs- zaY&C!!djhnby39R>G^D@9198L8XW9g%ctBF=ADLlnJdx?9a#+6@c>P>iS)V^mZD0^ zlTo}m%WqvMdkH5~3hG_v?P;q`_ha3<`p)nJrKVVad+iMZDf5T@Xv2!5ZyJ~9%RD7= zqB)FTTG7;t&joyav43eO<(5n~qw7U9b58@&fp341I4~Ofcuv+moJ{?A&%i(OVgsz1 zZ_PBOF$t&c@cm7A0N;sSM$Q1Umxf6#FJ3#T>$RtG6a;68g0fr2cWPlishGrL;!cT2 zlMd*zD|eip#d27=l&P?OmfA*{Y}JYnrT@q4#Vea&m>|GZIMs zA1i=uZlcxXmwa2l{vF;mn0~j?yrv<0aLT z?%?&*vk%d@Tq?0YT;^4|oX6EGSm(?Yho}ZPQyvim&7+a=r9XFq;(DJ$x#Mrn*M$-p z`N}q?%m-TE@|O2bGR+Qv(wR_O``V;iKJRMKm;C4)*cZcp2R#XQX-9kLOpNDIkNg@M z-Oy*os`*q)mXF8?ZaH&E6(FU6cElr9n?1%%S2|&{bYo<}Dgp)V=^Ve?PScJuUKywA zqd#bFXF(zE(!A?j!RdQF?b%bcrFFk1HqtnJy4wBCAC$>1OZW2_V>Pb)ZbEw6;;u~k zoNUQ}Yl}a>laBu|=9^}8Ax6V;fD*2$0N4`ksqUta3rd+yydMDxVS}6c9c2+T9|=4;TxuajLm{J>owNKd=v8tFmM5AweK?MthO6XfD#~N z#0IC(CMhV@=fF6vf57Nf>D+wYrNzi!Yq3k8#ZqY^9`tUEKBZQ`#vmSkS{1?5uI~KF z$h>6PyjRb)_WOeK3G)7y0)==cYnA#1a=s^Ia)Sb}yL;U2Mvgiti9xTD7f)6a@o7BJ zsZqhXap*(5f|SdmZan^U&3DXMSObyK71cJ_rQ;&rmo+t1o&|e+2=(HrfxVXg^e&B_ zfCM3vzMC{Nt*oi3IoG>;TlaR?{c75{l{a7ij(R(_dDQ`Pj~8c zM@iHcBj16tAcuLt`#xfZ3fO0ql1>&$Npdm)RD+^O(P$Nc6giH z8;RcKO(TEV=R?V?`#NoN#-%RkvT!nCk-Kodi_z|!zOW(5agM|mpYpY0(RHBcJLZN1 zNB7-%84LW)tAY)d3@(eyE{R4SWW45q+V6!CZ_mk%bJ8$R^aXUzL7>#{P*m0D#{pY+ zABc$kpI&Q=7u7y7=r#M#KGY%|ZO}t7&xI`?b(}RBmCeO<=Ve{~A7_)g-Yi9h?Nmmu zhmj#Wjdfl7w31zz#W(Yjn*#r?08jP4K*2L`yzD8FnQxZI##+Pc-aT7fc*n38)HyUWGM$5c!2g1hMSO6-S`99t}%VVfIXgnT4 zZdKv{Ma@s~(d1?tgE4An@jUVbKxU#OpVW(4eHL!0vg^lSsuo$|X>O<8N8f;C^7yCu z;(6m5^9ux^F;hJ%L`L5n@b0bM*y?F2rIZURC-$RIarv0Xbr4; z0BW^qe@`|UUkneyWNZENo?Q2>?NF&$4X^ZbOcj#;2b2e{^I-J5%Y`D+M$K4p*tuAP zdXpXR^4+d*w@fxG1l*Az5EuSO#ZE5+Tm&L;AJb#IrReT{tTB5JK5k897~?6@laDsQ zVI17ctsmYb{OJIR)zZjrP&M9oXF?mWko+xaX$(Z3CnaUY?p#=?C~98pXG6llY@r!H3D=tjR}GzGEcE*-Rvqf553fAJw-l$utX~D+fB*zZ+>&+q39yV zIqHaX2K$?Y5h^GD{2|#4CUYe1$rO9|g`$`e6FAXDqmPYw`0ghp8Z18d(FAd)fkBy! zlBeq+apWFW)ZiIlm`W}y2a@;&v$w7`zZ;LorY{IOXL;t1t12h(-EPe=fxhzt2LXq^exHXKI{Q8vgCE*(@bQx{ISL#4SK~R#g9t|hx@EZYTJX61GLC}BA z8xf?Y@eO=N7e3bAr^M(4^u1*CC2ER`m!vN>eLfh!TLaV~1^{5(--Nl+%j+#YpU$gh z<0=9ghNq9cSP4%nChu=o0>~oYU(IRpKL75i+}AK56(dh9w@^w zgy%dN>kH^TxR{W_7uwl)CQM1o(qF!*zzOG6Dl5CM7z-c@xc1eZV!iUyr%s(vkH}h_ ziE2`xe1HBL(p)EQquO}CGqA=oB~mbd=hS2pm}sAo2fk1$pOuxx7C49DMPLj>U`&jy z#cR5k0K@Y-bRggxim8WZ2hPmwg@L5}5XbRke%I^&aipN~cdJ4K*z0-BFUk7jd;<3C z9Sz<9nOah^73u8?^$kB10VOVi#FA1-=KidwRUB%%lbgZuvKX3M(KP2}Bi!D1;hj^` z)S1XGcNn_Uk_aL1%74A{&#cTr~?Tx+K- zLeOrR0w$_7bX@IR8GOFyg2bY6hi)!+eSxYrTTRm(1(z7%3bS2hLCjnc)R5rNSxeO( z?mDxa7AG;2$5kD5wza4J$o|(0sIfM%Y_B!@eHoB8X=!9GbX9{Mr{tN$;09T9JGQFl ze5WUeIbFuDi7_5NrbQ3IohlDDWXTzlTo^g=?-AehxOM*{ej%AUj}qt0)1hxLZ`iZc z3XACl$x)HN0H)5|51l329bGf#Wi9eZ(-61lvNYNe2=xj1=FA!5x5{!x)jj~Mz2ebkG=vEf$Osz_r zS;o~}zSX*BUV`&r6Fg_M3TqDBQb}enR|gIqhaZQ5N%vavA3Pg-&EdjCh}GS+e8f9V znVXcjdw8`SOmb_C6zVj|Y(lNHTlVSxi#n_IH$EICiCV+-?R5u2c!7XCo=-7;La|b~ zcDK#R>S89VsZ#Hq6`&gv(e`x~BS^$i6grhW=HPJ!9W|}(Inqdic=yl2Q!_KmOB-AS zu^@2vt%MN-;4-5NIiuca0a$z=ipJOMc6!k0e8tKAg@lyKYw9%7$3eugl2-ekAmG5P zDHXS(FT|)deI``mit5qZ2e|1C3%c`hh1sbFbVYk9N^!-EAlCK)7BKZSkU2x-)E2rG1hV z%7{o|`ohglRLQ#jwKv}W-m0Q`UFLGR74{H)@|?5Gc2;`i_nYkMdXz|T-3vuCD%Yh` zodZo$CWWD-o&T5qm$z>!B1^Szkt*y(&f=uIX(f`P^eZ*39VKgcq0Q&3w!X#jk>BBX z`!PH^8llri;0Eb@DUGj|7$Lqm@zKf$~g z^5){^7z0K$(?-RqcClF5D0_7rUhiakxjga;ZnY9{+>$2tI*t;F8C8TG9K7~+cofnj zwh$aO{q!WDe}GD{su+C&k`-^r5SQA;bo3sOT1nv0PZM>Vs%;N%s8=`Gawa*o0k-1d zs5Oa+?Hqdpx|P3l@kbKxLFn}gje4Te=b0uZ^jwy0)1|5+8{lZu>Ma2oW9GbHxOd2E z?TrCVMP$=a}p{mU1Il0|(otQDXdB?xTEINge z#qHWhQGsnJth=bzc-zu7iD^jQO-7e!W?JRK`c({N07}PmCpX)tD^^PwMmS@z<7XMR zEM^8*b-i_Vk~})$<%pd|t$uo@uZ()akV2y-O=}6~qONoCp*mO~*y<}Svcw;hwfA#_ z^a2-xnKHY%{6iPzVDZ6X_zdRx1r7(|@+SPBJAuOVWI826!pibHk8c;xp__DP#*7kk zv*oJ?LY_`)ys}i}U#a?-HA&CY3Ou5KxS7p1lxJF6N=4GRknW}5G{5ayi5BQ)2G9oh zQ#eM2O!ircHiSv@EDbx2`Zx2Of+7+U5;9VJn#VJHGaDBzC1HI>q-{sZ@iUkNBRSx5tl~3?22n%#6IXd9{V* zoxv0RcD(HjT-414rP(vu>T^KJ4h;Hy;t}Z|auQTFCyJlqROZ^>I+)R!g@ipM>ls*4|)9)6mb)kg>Cug6H{kNjFib2 zYY&V}#etIOL;tRugylaCH&SucRZT2RSYfyItT8b z%kS8*$q?ao2P;6KCU!)UO$9l?c%Yd@AZP3k-ifC6BSrT)WJGU=1cH^jg(!;Wlpp}} zfVzx;A!9PcFlS%jGZ$P97BU@zMWss~=7w(-K@7whTT5FVKSohLKGZg+&yDf#JW(-9 zsC|m-O}*&53872Uib@U<+WP$qDhx{UWE)7pFtAi}sLL<$r#-hRIXkMsb|8KaFv!a< zUweU64FZ~2e!^WfI|2`dz|m5OfsY!NSO_g2A;;}SO{&h4c(7m%=2Ql?w{6gxAP8L> z;lru=Z8ilkfqHPD4d%rO_SY-68F;c}oOjFpYZ)Dr4E_H#msvm#B@o1rqSuJ&AA{s8 zaQTn#{@nC9a7UliGhJO>H#avDP(TOB5#SLS=%yD_!cTB~dU^^xlEx(C{NoA<2LwbA zhRZ?zUwVb-eVnyacR$_jMe}{^kBwll_I?8?)w;2zyjFj_j;8*p33b42gaP(18GX2q zK1LloN~^=|dOk`RDqwu=qF0{o#q}-;T+6;)xgU}8h_D~yUk11Uns+cxtEQ}MI3(S< zI=jK2<72qi1glO5r?$}+d%o&T`Au?)R$rUN25V^P7OhRg4x5=K#fOt#&hCq8u?sYD zXq&4Qo-Mx$Dr&q0#{-ndq+S>Xw)^%C@$V%{5s<4HS==BbZ$>Wl8nwd1<^TEgO(XFf zD{`_cntPr~?rR_Qeb{Zdo8X1jZ#mPxJ%IFf^UHr*F^mTr8$T(R+Nj_h(swkc)IF*9RW`hnpdLlHD&a zHKJYZNuxusyDM=p(F4N??!EVwCck4xG->1pP6aD&&x^vUeV+nfdco3tUsa43x@su4 zMhv@B7_2V@0D4JsdBYIy3vNIoPy_92_>9bqOkAAvjLgi7KSvC&nhrnrTB{dZi4mEY zFP}Gl|DuYJ{Z)RRIMy2M56=nNEexE@g#k$=hnbuVq$Vg;uRHNeWR|SWXf!EzJ5R#s zZ9&^-GI#KIzYqG%6dS{Ir&j9iPcq)=401G^g@@fJ?YRRN=O@r;MuN5QoF6mDo0R*~Od^xt(haB%g5g#7{*y^XQPsICy z=6v)TZ}F$^WmQj-uY7_rw!Rv5M!ma+A&j^z{+6m$YV|hPX8W0$MZNr^F{;t%ycyJo z^Ft(%a1>d{v&;+>W|K0S1qJ5ssr zLG~1QAU8EeMKNt{<=l#*N1kbl*N=$HS)=m{>d-hr*10UFjuxjBhi^YS-A`7O#LnJQ z$4X7bMs{Z_4yH$SZ~%K-UtfO%bzmn-4O;V9>)V|r4NaL}Y&s3fQ)$v#%r-k(9!?%B z=zH52BPTEJDN*V|7>~QZ-qDefv8i>(z!?IjG?NIDqpUYN?B7=#E!oaF6XtV{1wjh} z2-0!SmMXQ|AC-*a4N}DC51hQB%LWVUeA@U{672NPDDyLTb5w~I2V*8%CtGqt<0MHb z@mBB7i>z}Oz%}mm#=gouv=P5_b@r*2vw^q|>r%-hwy#RBaTgZh8?tRRbt?BG8PcY@ z_EX8l{#sMQK+O^fFBN;FzOY9H7r$PuC;AEdL=>At%181e3^=$1{;VfOfyAoK>mcnX zt`Q~Y_eKr+j5xCk=xaZ_2Ew!&ATDa7y7PtHo1u2hO^mJ+7en;FAbYRRaZz0JcP4Lb zynvwer>H+}>{+giW;nQu+6+^|cB7$%*mHt%dySL zOu+VJ`ymV5Vuyyv2bN+IT3BaD^BN%CaKsuQ5*v?%gN>bj3*{x<9q;#TOm^6%h=D%w-@u~FbSJg^ah7hL9O$1Eic=Rwu2qJm8I<7 zBT>kWDVsw2dn^Tc5Ey=cqe$Hk|Ymlm!yj)A4ogMb$Pp#WYD$q7c@ z2R5AJ*$yolZmlzRcL-(fzDcj-gjG@1;7X1#yxxVt z`tPZeBhsKY)&Y)U5MsF=Fz>_x958HSSCa*9d^IascMTN{DlrP#=ZM;yv{cxa)%V>e7-?JJ@6i5l*8glp-7f6S-Q1%qzJ5sv%KHau%af&WPEjM~ z`vH{>EuexVsP_HDV7KiIG5KU8&oVas+e9eEc#$o2mJ07Y#F}auS*udb1)Kyk36L_V z?{~W|P}Nua4g*v;yo3qdNW`lb?*tu@vbHU(?;7i~ygOJ0RSooxJMu|Jx;@8bU8JQyU9DnE&Wf<%2j8igp>qL0j z)f0wrdHkQ&m0FpsX2n)J0!YwjO(2?sNtH9<+lyqpBuu&qz)vXI?IjYHO`x)Cp0E~# zh#a|aopU!RP3Zgj^<{uaKy7&=1FnsH)Li_k4Y#+bK!LE^RnO0BIq+;e{Fh91k~k?# zY%^|NnV%3c7+~z>m^0rx_2T1NswVuG(f$2)^aGgnZ3m=B-d%`g9p2NCv-~?t6|Vrm zt5%JM0tQyx%8NT=Efw8)k|kVR{7=UNWUjzQP=+$@8H%PjJ@KocEf@NaI#MKYQ)vl1 z34errSs5AG+(OOdV=VPW;^fC6&9z1-qe#q0P^2?qh0>HMob6jR9I|xjk%M)FrOK5P}2-_HWr0;Du+zYyYq@P+@{W{lENk$^;(l{vlvc zu-|%kdSdiAFnmA}X&*uU7DSs09*APG`lfGPG69~|B=9SPL#${jf< zv9RFHma*S874T*MQ9goxGi6EMY(-ue75R)1mB+E3kRBeb+RdG^KhV+ z39sxKci$`_8H8m$=I|ZCTDg>XpnhPPIvHVtR2@_JJ2!}0c&vekFrhZn@l|+l1C$is z40ylW%71SGL=e%vt{Xz@{c}Cp(a8lw>+5OS8w!YM|I7_cloy4D8nTDZpqyOpo;xse z6#tHk#Z*ZRuU`bQA}YZ3EP5W{FSM%kiDf#gbc0oON2Q z^L+kbJ}pV9-g~g^Yy&7|Pg)KlfarMzB=uFN6eilL2rKYhI^aA6(+C zmz0$Q1RvL?7oWg$xDM)m{cdA+x>%7d)WJV z9(cTtV=bTnjUr=ekMAEE$bVl$OntdZ#cG}A&!2{X-OHup&7TLe8Q4P;Qnrrb9LcfH z_9JN(bn+q1JO0Gz))f;fW!XM*Td*V^Gv|0zgFmGox2UVGxk_;p)~Lv?^|Bo`VjCSe zQeB>FfV#q)6zU^uZS@qT9`qax(&H+J7MljcN0Z_dhi`#X7hRnHp{l>SW`fV_+Gb~O z%Fcgv4n2xCUBLikQ_`Ls{e(R0$CGTvfmJcOY+MbJwdkz59A~$6tfK|WbTmU6lNB4fs<+6fm8oASs5(;@o9L@u>*&>72 zefG)4D5HBJtiQMc{w%BU7eK^*n#a3{Hsm_)zaWMHm*!*pEEg2TxRI@)`SHQEsj2aP zn!dy?)tcoVj5~vGT015-D}8HveQm9Omx(KFZPi0wg6N=0dtMh?trs1MLe~#w**j4^ z)tHtC442j#(8&!VqnB}W9?{TnH|s*yUQWkF%tPB*f$#M5b040o#|`s;Oa*dpvK~7W zVF;j!X`t*>9)^q`9kCjJ42r-uMmWeGj2uJgLSZNtfWv8?s6&+>BzX4uBwI6wAJGXq zkiOQBGJpi13<(Gm{K|951MIexg%*%_!>+iN+Y12L?PnEs6gAs88$EsbCpQSygBAdfOH z2Imb?uBE7-lffmR+F{^QJ(Zc~{kdoKLMk$S^doR>&h6>^5}0`6ZhrM}wjuSVJ0v z+>gSt6ZnlnO;(;sj12tC6?#g}Sr`caSGg{OpW!bQtobE);X8Wp$9#~c*=4j5ghQW7 zd9!g>XC5AltV#zmiB)j}!@ zvr-+6`EsS6ru0rWn+{boJwD#BfKlm`f5!BjH_43O+>%%SDWgFD#NO+Y?Q+ffaAmqA zw1))1Ntw-Ny~M&yaflpy*9O38can1f{rhROPOrF;U~4px(72P|HHQZx&$#Ib3tz3> zexogra}zhHgm?a;&p!Ta5OVRIb&5NOpC86vWDNB^-;%97lh4Qg88bbcH;1KA=yEli zcSpDHY`lhHj@t0o)rUkgnCBwUwe$42@hj`1VuGE^ZBit*D&}&?6|}fc%>p6w8gubO zl~&gRPf=XnuUWar@9B%SYK@OFKE)|Q@ozY)RzTk4`zn`sW z-_Q8mr!YYPi!TslC6@R~Nh%k_Zhm*|5?fuK4yok?&@^bpTkbQ7XB?H*ySO{ctLVOY zu!j;RFyF9Ru}vKh26aj+Z;ba|;MSPwnmP+J>qfcgGVtwdEw7=t*?;``K2izZ% zf5nFn?b*u5j#f4GDx1*ZvSp2Z^PD*G7C2Ca{WDnStuYYbCGI9mExQmWG6s*|*OqXa z+7^b9ezn0g+iJ8J0S2XkWY2f&0sFw147q0K*UQ=h1H#P{dxNbe+}C^u4+x5l?+}Ct z+W{Y(s*W2I=}W%daucN0`43g4AL461f>E$#R!P<}R^~1m-BcYK{D=h&&3b3<$#q#n z{jCyVO@n6{90`gldU@S^mD*zZpn?=9!?&9)$LWpO%52u_Z)@R+A-T%xAR=7VWbqD| zn+VN1Lv?8@j+&ppR+BObQ#T4wWZP;yXXt;k24e+p*QQ)nE9pg%&*r~xa-kE|RG**6fpk%1}D?Qu&9ijoJe0V_G^qt+OS_P;J zz1k>J1IJ|QRe{j6_MHchw-f_yJ~$7pwRY$7_L2Yf3)iY92SqT9n-!hz(-mi7H9C%@ z9eW%2yq*Z9rCs()bX1CxeF8`)=uIn~Es(hm;xI1MT#!rztsryHg{k2_xCl#{18oq> zd7+@#Y*{t6Rak|tz5(xH!_6xJGcx-MSN;geScnq7Yd|;?gXd;9Ao5t@5zw_2w)@9# zNWmdRY@u4bA6>Sqs($i(B=G7@=&*67Hhv=Bq zK7L%r#Lj8etB2pQzE^*Qd40Tpbe{3$yq4Hbuyt-wCpB+$R|F8mtCZVjaD>Zbb@UK+ z!#3Q*g!vp{s(K0BD}txGwa4M9)3z1fZ8RV}mX6XGvw9)hVX>5!hCDDW#q< zzH1vTI`ApTXsJq|EUPMbFWJwa2p2_@<33Ixj|j8a+x-5x4k0?pvmIpRJO1 z6OD}^AQqVtKaXQRGk~Z0!X9c(E_I> zvJDMi^(k}-fAdhhXN4pY7L_4wxas{W*@#tR8wbMNIFpl(r=jMew<2UTfBpn#H}8J( zVan<MKssKjhV=H7VIr!RTX`-L1ZxwF1|HV_V519_vS-2-s^&OavC%>ISRjY?I#N zt!pi0;hUGa9e%F!X~?4>rfuwKW)yV<93(7eK_(5ksy(x@u^gfr?V~s;gRj!AI44sk zU!{-c#Vc5FdE{rhq^yqsJtn4x>^g>C_gz9$!khAzaba1P_ZybLF;2|26vZ0G-V&DCr& z7e!;8Pfji{Hkwx@fh1RTYMR$=TD3@BB_ll%&Cu(JagzxPUr}`(_u9)xB~8dk_1dxC zuhdrUM=fl~#0GO>HwaGhHgHIIIJY0x%(t3d9h_D8qdOc&s+!75zj-Wbc!pl@apsf`hWo2Yob>5>J{o$j3Qoi-H(1Ne@hID^t z!(EC9Z<_RKKKbPD(meszB47j{`7|zNxW=T8Nr8faO+3yR#NV%J89;%46KBRP< z+bv(^G6ugHj8?rQA$v-f1%G{Bh`VB~AYU;kbF> zqd%xUc*~Rij) z0g6H;1pFkPf~qRt9{v^qPa{FMFePgg?Fe*m>5l0&vvjfuGvI5sjCXzy^Ne zw>fQJU66!uRtv>6MUy0h>WruPagUuX1zrR-TSR)A)tgv5$0qIJdpEV}d_Th1dA<0R z=aU>i6#{7^;LG={Gu3gCv}(wK)uKn%;FAa;kqTZ!33zpd#<3#rw~Gel;BY!d<Ai>zlINk+)~k?_u!s3XP^8x2B7 zMK1YO?Y$7AKQ6tR^7OuJx!zk1wB;ZOKRWII(M&CTP4ase?9y_0a*-kf^DR;Z3aIb` z{Vs@sHHb+RYSlp7g1oZ$fdvI?m531IM?FK~nSY^FXX+Ki^r2pc>m?x2#Dr7aj3kSI zQxN7!A}fH4=ahUojv#sdfkB9(-(V>pmnR7h8$<#<>eWCeBX=hP!LBCA_X5URxePum zVGByiPYT&A)_orU)<4Gr@+`oi*AIX8^ZO!XfAC$K0d(+;G0aJ39852jtQF$m^xiW` z+D;ADkGX1i*7Y1{UtFn(PR+ov1Kb87a+^`r6q+Sx)PN3C47Eip7j42BGfri>+>bdf zTi@E+kT^&xk31VnZ--Wr^YZ{iWZzCN=dD*=sTwJ-Q+eV-q2yD_d7AD*9z+3==Y;F@ zz6L&iowcHLflI#}kAb`BEf6GSiV&Iypfv!MoN8_2*O-zvbRORIM@Xar$qKl4Fn8~n zu(Q}1M#fr3#9aMUTrbLID#mfou{TCNNMCN7&;8#F0S0{Ao%oIGy+4#M?q{HkdUvP; zr``+JK*FMablnCC!D?;d`_u4xXwTG}sQdDTB$+YCQ1DE406I*Sz7cTJ+zD9I6QU>B zVBLSnaz$|8`FxlSj#l`TYR!I#<=J@p3mrkKP~wv(jXX80_(HzCV5xfZBi7b3>c`qU z~V=lFk%kclbHm$JMY?!RYy*KwkvtG!)WhHipn z(%wpycC7i~O$xhUwF--FtumSKui;OAuiSA7QU|&8{$U=aDOQmEyc6x`&+2}AaKklP z?C2>_s$_T-#HQoBH-Q+hlIFtq{^MIr2^CMqYgN=wF{d1W>?JX=Xlb&&F|f1;J^^vl zX~E2ju^Kq=h8Z2=?Bipz-;sPo)zKZtx{ygI>K0!_d6SOYr@kFYKsaYHfBJj9#jgTV z=I7^y*e=0cM62414V@emo-!@FJ3>3!xB2^#z2z%*Cx>!4VO{yeCiLsEC*Q6(ZU*QV zU5WDZy_AN!A1_+ILsv#`c_lK|9r;8O^#$w^ z>ZMZ>W)X_xtoFz0WoE}zcLO&7*<_rX0?FJ}KcQGgzJiD0GSEgox9^ypFHUMsPC4D) zLL4hNMbC5rUfp91{&Xa(uRb8vyjNvM8}kM1-Ppz5f-&~RJo>6ApwFuRFruH9x@R!Ip;qQk&tOj=(`M5^i*T=CyD+{)YEMZsqt@mjn3i!JojSJl@KLX@r zo3va(zW7^!?V7|3f3q@{-Ag(mu?f(|fo^ZbHuY=L#Wjsm!b^%kSl2t?Mj2Kh6zy4W zoUOSIo8JQvs7Nf@(Pb@{m-EGE?H*Z^H<#^Oiv5lWhH7ojw8GvyqV0tb#mvcNWJ;$5 zp?o8}XoMQx0=PxM(MH!btXyV5w(J%Od!vP8Vl;&}lZmFB%gP>CL(ZmJ@60-U#XKj3Ns)9Ape<^OPlsd8JqBXr;{!?q}5pgE*O zw)nfnR&A~pUWXF^92+=a180_|aBw88+FUW0ZFdgX6Q;mVxDDjQnF9EF^cb#tRWBhga%+@|?`Yvug~3Gpl1{r4J*V20kT zZzg#Bp9IWb4rW&%3e<-68DG>3)ZE8U(kK`EzoNp#K%Io&-BatzfUxMpGvL`k^J zot$0zKF$740E@~4ec=xu0WltU1rKlb0j5j3frufn3!X2+J}fnydEH?#+j-kBO9lQ6 za+&B74X?w7d*=E2QSABOkG!Ap32*9JAiWHeMI+oBTYbST7xw7v)&z=438udPE6qqU ziw4YQ1IuM94tkaSTtqypH8>pSsY)GvHYI$QVk?cvZaMMO<@p4B6;` zt)K*^HXi=f1DO58gOLRL+unab>OX(@4_yEM=`sPR6vbbdJvD_S%N*y^I;TKRa2F%{ zQHnD{AN}8i4^R|4v|00`-OS`LMlL+>i5alh4TW-WKk&jebl{o;{?J}X?+V3$L;kUE z?F}}98X3M^Fc7~0GRkrR6ObC_v;mq)yBV7@&4}Ydvx^;iSKqRFs6(T}a z0M8ym*CP>7NC5iLg$J>3C?8zQ2jq!GC?+LpZBEnk%TFhx{_dqRz-dV&?-6HI)21PT zkZq_BJcuC*6C&!9lLH+l&Sm&!1%e_5eWEOcq6T4=og)^5X_TlCo^>&YiBgyw1Z5>i zLL>${Bqt|ZlavRizyLe?2O3e_&-u9XODgJpZo)m{b^_FXf*k)RcTEft|3r`z44jLw zkh94j$W~JW2g;Y48-@>W;1X4>+s*5+KU^J(obCOv(&2ua@CpwU8KWXp?y4vJ39#xKtB~ZF(Q6d(+DeGW$LQBy0*+2YEm!vjUCz0 zRcNEBzSdcC8~_e#Jt0X+NA7*-B_PoDj(>d91C|AUA@ zhTo+5Dy!@vL$4Y%a_x)ZVZ$F-zw14JIsj8RW?E5}y==h|R2(bl>(1{>x>={D#r&G>E8gUNN};p^)- zmtQyLH{Chwf<{IkGoJSP;;Wi%b-3ys%Y7gu$4hCP99`S6kDX19QcHGy;*{O*uNGmK zyudm#AIG&l0Y04=)*WS@fVd&RS`~VvOl#8(WEJ4eWz4=@6K`=X*|+;JD7ZfRYzOsB zD?a@X`(@WssUw{ZVYAkcsmMfBhu|$dP_y-e@cRi3$gLJ=W#O-D`rS^^<`ZQQ3S9zbzV+UQr&BcFKr)u`oJ7XaW z7qa6b2>h$tPxpx85nJ&cZ!1oFx$|M3W0MqJ^|#iR0j^LhiDhor=zBoVc8sP* zcV+E&TAAkg>G_Alv4enz23TsRa-f5BN_M9{hM0eUt1mEX@d?zAAq-PP2kaFn37Leh zRBXDH){zoaqNpry@f{Gmm4GJ$d!H}SG-Y{{xUtD*fU1n$>r|DJ zT^>kkUp-SJX%?r{@{`Z|NHct8#ba%#t8c8Wb%qM3J3rdHlNKYGnJy23q;o-V$m4YZ zxM$OWP#%}I>9?{p2A9ZolsfM2vp}L}X7a5J%){-!(kwXwgeeir?>ly&lPeb63ertw zv)V4U9bAUAlK0!Jq63p273>8mkm~R-R$qdaP(05r)vA2@H-R2TgFA=syG>|pnW$N< zU=AZa8}*Bu0t*F78ffOZF4XYUtz6cNHn5_eHGvN@lh4-Lr6!OxRiU@ROeT^YBet3_ zD>th>>1lxgWX)wAZkHwF+mc3uBER zodTVyO})g=#t4$sqQ+M)kJ0j*jmtNQyV0hKuSIhQb49V4dcoV0me%<|R!MTE^M#7o z{PINkZgR<;EP6$1O>x{Pxa5seJnzy4ae^VfX8^uiBe}pR|dSZImrO$R|fEeNw2)NB(dy-X(k65n>^XCU@nKH zGBaC8(_6hgnlY>k1Lq!ijDN@$yybc=E(G5#gOzJy<}ydYG$DD>PvL4PQJng`hKW?) zxsR++lib`pEyJJ|x)Pp~>Sd3C*CN!*F1J{16~4slGI{3r@tdVp!_8*e4jXHN55S^& z4y0BPvy;kKdwl&f-+Q<$h>nuL-LHT1DvMELn8g}%(sph*9UW9% zol0JHMA&?-3q?c`E5U^$PGr-`KOTq0YRv;D;RGw*p`#W@yQZ^bDQe-q$Dsn zPEB=G(n&qQ7;j1^0Yg=m&SsXT!^pL^-p%Qz2K7Z@!1&Yzg#8z?nva2nv@SpxnS#d8 z!NpGz9?1t}j*E%&Z~#gwx+xm?T_8NJ2J#}sFT%licp>4>NFyR9(#%OQr;X`lBkz?F zsPGEuM+X_p_IIr<-Z*;5OPP3M^nF-y;^&)d7ESs3Wv;5@ja?LCA_A_Aj3Q72Xrevd z?b5S^Z$~M)ntqtwvap}N5P?pmY{*?mjfLG|QR9Ba!UMmhz5sGwvF+SLtM_EL^~-E6 zp(fWN(l!i!RkeguOljOE z18UCC<;)+?_nJ8A{h#j=$)|8Q^|)70ml$#%%{x%hLP(IDM^n${=YWxZ8GI)gIQ*|@ zjCZ463{I8k-R*H>Wzrgd`iDJVDSmr?-}KS;vu+v1GDkRgDv0uUbenAHqg%-N7@L7-! z%Bq@7jV)abj?PI?BLg(KKwkuqrPPkOq<4Gm`EJWbaa`DO{FEFP648^#5 z^#T)<;4zW#TyXFN+Wv4FSxSA%VsssSBn4^Q;Xrts zXYBP=EcwR|6~l)H-oh`I(M~X{p_!8iv~l?#!^JawD@2R8zUG(9Pa)hbu`RakU{t=2 zp~Lfu^@fJ)uJ|D#^&omv6nKqV|11e=1)?0b`zSTUZoAE}WbPP;R35i|iLruo*kWhi z;Ctq4$*m^-`g#M0*n#P|{QD-$o!D;F%Z#y|k2g$bByz56LH)ubx-CBaoun~%>s8ks zfc9J1-U++^HSlI2fj*J(;bH!#i=RP->-gx8BR+VAhs-VJRAK+wMEz86b$~+34>qUW zlAB0>-Adz|Kf%KC;A}R}9t=60;(Gz_)QEu~2a6$XBy#{$Cihjd1%F%nQ{0N@M^6<0 z01{U|nFz{YN*Odacp|U^v^&-c>iAK-J6i}ABi(J#t z0=Jsu~35L4JQ2$V7qFHQoodZN(nq9tD)o(craog;g@j1Dv*KtG9lkGBh_NL#T zzONf1t4p1Q%*_m24WG=`IEDi)X+y`C7REENjM0gBwYL19qO?wBksfhy;gMhP3guYp zJ$FsZ`XBbk7q8QrBtyagZY%saI2v(^QBlqU^^W6G1%*^7Imcbuf+t`Jv!LInFWSK_ zL-6b&^^bo5lV-YS4(&IeT)W=LK~p$9KJV9)A5az8G9O z77gzE$fQ1Qzq(SERot9o6x#xh{Ear@6^QD5Zo~buR#qJkXPlrQocbT4ZaRiOET@CR z(#|~T0jT_Xfw#|x5=+w4TkgKbc6xwo(-tCmYQxQS9yk}Q>r-;3pHsdu4b?fUI{rPI zS1{#w(mid`4qLN1J2qx5FW?ZSum8|qNZI?xHUR`sCC%La`Ds$k@T`k*Mi}nM!wKkb z{_%A&C7;ny!woV-hgDHY+{jPG$X=USX$IS@edTx(F=C^n+G}EacB?f~qE(Wb3p}); z8qS2=6O)>2k0&<3gAwY|8%o=%pcVqn=r3JZ&5`(dp>-%0bY9 z&gJigOk4&%mZQ)e7r)ec^JYyCvQS;(HlKxtlL4H=Ur*YQLS+mMT+zz|ZyD{m zQ%1n;_b14SeH1yqulr(--wn3Ok~<@!AY&%X6zftv5|v`%)~-iIMldkI4`XR0a(M(E zex6n~TeyalorwJ`%*$_Si$vq{U0zEw3oZ4!CN~$?Ry4A6TFZN}>?>fB<45r^3Cj$5 zYUu79f`;+uB*OHTxlMm3Zkn-6OCtd-VF#do1@7CEYHW?3)ehE}UG3Q=*r`Pe$7E%^ zzl-<~Y1kup(X@L6-+vJUnZMcF59HyBc*1r!dLhz!8%xt%Zyo6IDtiHl0nBqaZwSbk;1qBu^gjP3#MsJCXdzGP)9>;pH$1N0(Dl<^ z`uL4YYAUi)25+WeUPKCk@HTDq;+ypRylVi) zOl2(+s`o^L>ntHw%KJBG7U-pEymoh;(YNQ(QBl#Ond37;{)gqawQr&nqR>W2v~Qpj z9RSk@cu?(=ZvW>n+?8Bg24>*t_fh^c-Dy023xz51)j;CkNz$36#FmS0= z$G;_v)#$gs5Yzt^C>b z4es!eIn$R%91_W!g|?;z>z5e8B)%X29Z!n%``t5ihehWVcr|{hZ?4rezntD|RCM?Y zutcssAAnZQ5;0-aB-4ao3804#Z=R|U{SI(dQ4c`l%11&>*4z}m5vbrx7JI?dOg-(~ z->CO8L~#7H)5GjvVRCQn9lj^zdrNja*18yUIL&*0ojQOB8rn@RwjLTx+Sw@_Xo9co z2i2gnW$kB+>5?(aqM?r z8;u!^|Ma1wh?dZdF#ML%yo=Y4Y;SxS!3;*ikh-n*{;uK@JSY(Gd%34L>vEai)8Vm@8)JlAeRFiI zU>HkGf>*%m!U4+$XmHz?CtTKlIHp6qHYv?a{I!EyKa8d#Tf6pkI@e^d4I3LMvuI@Jg!`6!o^VUf%IP?s}-XulASVO`yLoxEXO-r`ifsdJZP`9ZbuH zEC^+WW@~^^nuAN3KjLU?Y(#xl1Ok@OQhF3`?-DoXlhUN#_%YAkY&)B-Zy40#Ffn-D z28AKfrzVNL8$lZUMVA@sIzo&FwvS<6xlrvy8^ATiOEj{KVR6DfCBU|?7R>}`ZBVt= zG(@1i(v84y{jM&u!1F<1idi5n@*IYQ=oGA`g_SEds&un`W8v+!{$iPcEc;i)X5P1; z>R)UK{`|P{ba3c$yahYf@x9i|57|G|pT4IWqJOvf+tBa7<8z*5JO%cqczE9d7qwvf z^J`k9jo@t<_I{+PZ%2u{AO3OmovCCCehLij=M3&o%V%quhL@KoalerhUxv}pOm<7g z*YL6zho@@!WMBgrgy^#8&maVVDUQS zS&Qc9&S!*(!rfmZlGQK0C%f+HOsCB*N?)!Shj{tZ(G`C*6-1}LpE?+Q0iWvqKU1l5 z%SkM&-3!S8c#Wqq*J~EMgcYg*Aq&MohGf$hY;8qwVI$v4fhC?0(c z(%UER)!e`*OHtgG6_3gm6k7l$exc^Q0bjdAN_ds2kc12}9M1f#2su~j-GhuR44CG0 zkLkS^{zJF;zG?xa*)+#chezFN5jSSZl1&mv`z;@jpvd~=%_e{e8I^AB*MSA;2eaz6 z2O?FEkjaVURM}BTk89KYkl_{eo-2vcgnveq|M#fUe)157Gye}4lG~TPAw{!*eH*@C z%3lnVP0LzGli4oLEO2*s!-80?A4Zr>JC48Py&!)r3v|Mq9Ee8I$gjlLHA6L+v$n^t zsg0R|AuI5rfs)YQA;#Hw=bviTjo%FxzdiP)R@=Zg^qkOrZfjW0)iyZj)Z(a&?b;VE zoJ+WWW|Kq;q8skTasAx1yufJ!p3vz%Z~sb!HZdIEBD_+v5mZsV&0JHAnBjnK?Cz?oIBVLJ5p`LKQV4 z5~4qu*s`m8kkK{|xlC*mWaPeKy}nHzVCAzO@Z!y0a4gSqo^fi|O3FhCL)9u;udJ+@ zhuNXS>`L*mgxb`W27z5UMo`cjSAQ@LmX6#ldaf18&z}uc&|GOBJH;G|(!m?sHg+Cs z&>rhzQ5OZ6=YqzCQ0&z7TsVglrZ^8hnW_Vlz0J5XG^x01hi*Z8bM z(b!9xgq`0EowO~9A|EPMd}2v;i9om*xnD$%8?}c87>1vJMNNEQcymF6n|Z1l%yuv- z>uXRfRJ$CAj(-Shaf~uo*_$IGca5W^8{1R}{|&~gu$Av_lO+rJWF&k&Ko?%(byoNM z+`7PfKb(^sKf17D1T0b@zl7Ro8T5u9vT|Cj=T5Ei5!an(tKhU)o*i4xXoM6}5r!>b z7Yp0N`?TxKt1@A+kP${qQ*Yd<_<4JsfV?s~jHYe{Q3p;+iXqYhU1vCci54&Cj@|v$ z{o>^(l=%OU&X*8DuC#DyM!!$;Gly(ZlTK7hQt=lzWjGZ2pcN11cNaVpv?IWk zwf%?p1>o10HGA&y+IUH~i!-ynU?%=$^$yx0=W{H}JA8V(RRoYq4_54wtOJaQ7 z5Q=ToA7kcWGSnvQeB@?x=*YLZ3Rf{0-%xbNp!tgC#gXeZ(Z<#UKxx8s#E_rmlT_!* zl*BZ&>b)Q@Uu)KEl8m4JCGBitH-Ylvtq&b5XEIRpf~b^0#YdOkp&!$_vq3R<{`WZQ zN)$TjMa?RK@9T2#1Ixo`LbV^E8H!VTLr1LC)7n4-bi(R=diMFR=_>YfaaNStr|R)* z^3+y!&2>FP4{a0XF5V6U9QY8?5$MBV8F!2D#T(Yl|G|`V<5b>(HwUN zBqJ?d61BW4n4C@M;a0S82)lBrzD?72!%$Nxp4VS}>-JDzZy{V*G2gO3gHT65U*g2h zHB|eUQMWkqg62vvr7iq(df3LVXV_*b4_=GIFUvz6AHEqSUpmE4deY($;>NX0FckJx zhrQ3;Ez`^n23zi2k4jH`O*Up{Xh?||5WBUFT9zV7+{wRx7$8#EeFgov&pO)>vX*Y{ z?OJ3sHR#GsQE#oUC>$B{?pD?oJr$ymI)am$Ic!e5fQesj$HBrCD}Y(h#3Iisw5$3O zHiLbBTZp^^;|hk(&(D#p{wBcsmPdAw|JkW>(=ut^;UmV!55pk=!`mqpFmG?PEt?Y4 zZ*ds!_#+sZGySz#d_G%!fw#8Nca;cEvGm7vY8v7w1#(`b?%kH?qmo;TD~x+ewZ_yI z+U==fw!Zx^1^lQoZH{suN!4rU%=+h0C#jJ5HL<{_)-!dK!?SDj{GW3BqKj`awe6s^ zqpLoqn~l|GlNWRPrJdNK0i|@)d9=Q9`r81`HAD!T%~GO+W5^mVOLO^q!dIXjyD77n zSJE?|Ju5e-JZQ3KrErxDT1s`2( z;{FRiBMGOyqeF5O;>13!NkOM~{TtXnAE8`zf}t}R;U$e<1f4t&m!+E+JL@_I8&io& zdB%zCf31bk_VS#lBsx9hW!EV=NBbq&j0zsu2JFyCAIgs(qO6fJS-EY#op(OI8lgR# zP!fJUqnEk#2R(RK+!|cqj3)HQoy8!5c|;~qduOg8ys;eC@IY|>P!Y3LSi|Ak*L~}> z_dOJkN(#FXvX-*nJ*6kros??k!K@jVr_8 zwTb8guw}*Gv$LbQ?_SwNyjIrpxKWfpLX>5Cd zdv6EBiWbw^`g~|wwA9MnHaH(!OS;_gEh+y5H3Wl!@vVw-(L3{Ot^$Z4<<*Lmvz|Sc z(iW)2l`o0VM)JY1<)K(_e~)N?kw>E_@x6IAciefPOYhriD07Ts=Hi8CtUcZNJAuM8 zu{>6ha7;!H)|SjD#$IWuVGF{NQBvKaT_AGPW|{ihZt*t(wEJAbMJ)%cLo7&s9M0L+ zm?f%b9v*jvyizrj+^b)an84HZ+UIuRR6pFuX!>Ui$EDqPCR9S_br*x&ce*VZLkch% zJqlY@e~#LX7o2~8?BCIgtss_R*>17b%z}9o6V^h!_)X4S-atXk6!Mlqq7Yov+80@2 zm%=^vG0JsL#tJ{R0GJDxPKh0(5RG8i5Nq#&ygKnZT42bP8cG-b#C#wX#-9IW$h_X( z;dcI(Tib|dRv-59HAYWyWEXSpPK&%g$jiRhB@nm`7A=1}KEVO+oZ`bQ>5+t(qL1+8%*l^HNf6?BcJPUKRT+K)yRs*unTO4jaAA zYWc{r6}w!ozc?+>wHVfP{8kmsNaj3bV7-`vV)S%fHT}@SnuOY0iJ`j+-+$_3omSJ> zx)tmcKS%Gu^tilJ(*6&5fR$Ftejl>!Y%IGf?`xaLsiotk;2AwC8Bd9kyB(5gQ1eOt zt^W}BjmPN(P-DL#$vnAC^FG|3`-p0}y|{&kf?>5N)pgqIQwGZZ_n)V)R(VE1TzgZL zg`}+>!=HR}E;FlNsRf)75Fo5yXfNTqKFp{I@tC{sR0$Dn%fv!0!3L^-kzzG{j z_pD~c`FB`P@^k@PTau`C$OA}BWnPdVW_$(_W6N1;X)3{_rUH;=^9@40M*T+JZq7^5sd)5bRAe0=*W%

    kzCx`NO{SmzRlHf)Z=Y)5mKPXlyf2KVyaE$7?B;dQvNn9 zh)b2mYuxuxy6I8zFyJ0b!o42pAgISHxtNAOI@xFCOgwz`Gee8;tYiYPa>Z< zM<*%75rvd3pKp9(2baQ{h1B2j1D@gxHI{e}V}HY+;g<}D_wGQ(%^ww{@vphNZ{*k} ztBgVe`Kbf=2>7>G#bQT2j!N+~h==DM`!I z7fOIEkAJnJ;b_Je!aD~IWD3V%8ULp}KfEH%7ClK(w?I~9HS~V@v%Dp%V2KFSdVjR+ z+})D6nKUhPGUlT3o$Qe8A7W}X!*VuzS;@;ut>GF+4(C!Ob!krMp4#|PF@wZ6XyBKb z*Cnjytzhjh4zZYhk&v!bDSe47KLE;Q;~Pfw4Lj>Dk9>>6=geEIvoYq`d+cKlHeCp> z9#22DXPHaQL|NJNxZpe>m}5OykpXHTglbVf86ZDR(_{~?wM#Rep8eRV=Tm_A=-g;E zV(TJt$=c#V^p6Sp`AS}=wt(;osx1u8#70Su&4o0Ol3GUyfzN@sZR;DxG)yTmloLG6 z&3QeRJjC+eZndg7!TfaE)xJS|^}74;ZP;^;q7KoK)+GeuwES{-%08-Nk<8g;^EOQ4 zTr3UpXj|eo4dVf-6SqAe))mYcW4j3vH$1$uNl&|BcNM32Fhi;nLK)1wMO*n%pZ$kJ z;S{m@%q_gXt17NFq=Y2PU|~JrggJaIv7lKml5g)Gi=pt-*k1q8#FnDqVy0}7zG#2M zcce*FQdh0ev*Ty$)u!@9&N<>&=PtkZ!)Vz=XE0zkcDc%Bbvi9RI(Q8HQ_?=z%xw>8 zzD!1j5UDG_ln1TWIFs2b0@rAk8f*cV5ZIm)%Anv5w_j?I{QxKB#A<&QeaMirZjgNY z16f_E`NP-pReOe}CBdr@4i2b$w_H`@xB--Eb+{=eVegrk6>3BUFnngKU+dZFIma#g z`!}RoI#1p`F0M*BII6r(Vp_|@nqho0F0UFB{ATfXY(kWN3R&G z#-vqJ2-Oow9eo#B!sth|GbQd@Jja|d<6j^ z=&$JGM8}L6c8IsN9oNjC#Qg?ZLyQWJsfZPl)b&YV3dj{>CNp;l=Q_0HmJ(x z)jka$tD96Le=vGV5<_{YZ4adA<(&7LrJt=4BOoljdD^b!&M@aM{a>17*n5!$!<=PJ zocXaYc7{teL+xrBKU)%XJRYwlcZE1vy zExw9S5u{QF3OJ~qb883;kWS!H&ll@7)t(*>ML0|3FzgZmd4|At2^!JE3A`InKAY`v z_=X@pom^WqyNZ`Q6Jhk}Fi^aa>_P}PsCHND#e@KXMX)8tm4LMFiyzYIqyZOmyP6QhrV? zfXEuHeST!wcJ3&f)?XHLswG&N6+)ELX0w%xL%m1=AcD=2zIPM~aa6dYx8@-l?-lg* zd%vj&ew$(qiB?ehIaH#y#7#D&9H>O4PQw1skmahJ)jf3iYrc*damDT>oCGfpS}Hzm z7rOl@p(+1SVX*ZIX2-Mo*169Gdt6ohx-fTg8|RSq^swr#$)HhIRMo@IMOW9)Py1@9 z+Cfz&aBltN%x5f0mp759thmtLmSA%3Q_igIm7^cMIR^^6O3paJt5d{zbp>rj0|n|; zlo4SPga90jzcffNZWy{e#uYKN{1VPdPh0Wd%t`tZ60{NTNX!u7wEg?9Sdx%%A|l1Z z!+ZJfC&7@$|7k{@tY^!P($)WlhXvdmN-1p42{P0Y+qIatj<0EmP4kG?m=QDp<1&{B z;bLJC;{Z1`>*nxvZsa~6@X9!Kx}Z{W505a%gLHLgSnneZ;cP00@U(mHq-qS0e76!| z;M=)ORz)!Heyab_sR*syC2=H;J-qRn?47v_62W@3og{UAB5Jr;(~*DMkw^JdZaR^5 z>8N4r&HT*W+*BJi=+~WzVepob!T2}H1vyb!myOS+@;+uZHa2p;o_`i)dl#rwSHA8h z*690RU-{3aZKlB&@oVo%7y?l!bjpuQ_;?z3XU<1GKA&0_10PripXD(KCOMANE^!EZ z9POc_Ivg7u+1Ef?DU@O4dLN+rqZ9(JKSiDkZOFjh9?|6w8S zVoyf0cX-+Nx_^okI;ZTiw?RyeO5J^sDK5CUJhz;Xk-%q#Y2MLushm^xm`U7S8WfPXZ^2B|BPn zw1`5jSaJ9+x3>TQPSyr`(A6z+Jtl8_QB43hIa_K4z5(dZ;plEdJxm^WSmXrXEY=MX0-t4zc+FYUX$}%K^mhXPFu34SaDc&PbJquh4BNl zkgiFf1+`xKvGRbK6G->ZK%&AUpXgsTqx#H>6$JNg-=)zT_{w4DcH zHE(2vyK7vAi!1OHl*9Jh?_Huw8d_Se*EXYnmhw4)11?We&)~|%qx7%*Dhqpk6aUD& ze0*y&pb?rVm@T9~T*v%)vDas(%atiFS6*@BdFwcy`gk$2yT~eabjL-W6;}6Il*9)1 z8&}sp&(zeM^5~Y5oU4)k{<0~MyLq!cYu(nue#zk%&(e4^tl6}cCuSqW+EkaT^maec zg{K$LdpPfxqoieR3DR-r^|N;%@IKUwHJek9nU*>NgmmgBk@{v&{<5OKYH#->SCv!q;_e zX#ZZljXFujl>Xhi`gC<~^}w}K`L1r0e=Y=t<5O0 zYTR0EkF<)IgtkKW4fADomj0oaY7NyTD}1pJnopa|QZmoUVt< zeVeMdMJE>&7LxDZv2WANe37DmzhTi{zHuX>c>bjomwro^)140&?fCLUfl$$H*ics@ zPVvvdyQ_Y!!^Pwr903Pmw>7U?ot6RjLd#`yud!5DaZGwI`rV-ieFvF__tNYbE}c{PerJbsWgF5HVch>+ zvy%jd(!+FQsslaR=r=_x(Ve{7dM4gG#7gp~-MY}*PwEUzj3HmoikP!v`V1;_y29KQZ_3MbxUi49YyDrZr zl8mJ$zupn>yt{!yCI@O|-hi>YPXm|pR5n*$Brve`Wew*aORr`<8kE^?fT=qJLC|0Z@xX1)AF3HyX^lU8yW;C@0~` z_4(u5T3Hb&3K|IIS|-W=u*+)9h;t)!Jb}P@*G{{54_Gme zXcEb|R^b@1MZj(%Qi)NZkzQSdbi?g-Qxk>d<%!kA``sM_GyOs-4+BEt^Y4gLg1TOQ zzunbnm~2h11h2faqLvk5n+C5D5XzCC468h0u(vU+T~9eP?b02jh0e`m0gv*TAH_Mp zkZ^qgO{E3tRLj+KG!r2p$oxII!C=YWf*??j{0&RzeF_UQm_HH~6RqQ=09Rm22rV^2 z3Bq4V_A&cwZ^7eX)hYLMh93s3WtA9yb*+j1#9f0pDjir^!llRihwNn82nZ#AjV-wB zL(4*q6g#+666Ek~MT48Pzm`d!miRHsGA#slyFJ_9UU-e4V}5jXcY#3yw;JzCpVYHH z+)5K5HElE`M@^bUK&U|a*Fz+@RMmc3vY5pGqx}oS!~`}k@_-28b1XSN{T*D)agh%q uvAM_y2rFpFPbRYB*8j!4rWJU6L|nsC*>U`kOAj9aK}J$hqD<`b*Z%`YH^XWG literal 0 HcmV?d00001 diff --git a/windows/deployment/windows-autopilot/images/hh.png b/windows/deployment/windows-autopilot/images/hh.png new file mode 100644 index 0000000000000000000000000000000000000000..98fbc3cd7b65d7ed5b85c612555900a6d3580a35 GIT binary patch literal 4938 zcmd5T7UovCBO#?NLN4vLJt9?_aeOnK}tdiU78S( z5_&+oh*G3TkuFMkg^BO$8fRvGGr#A@x%cd~?%n%5XP5Onk-7+VMmjD!006)U(@@n1 z0M2kx_DVF=l;>11lt6h=x#_Db1Ih=ltWu1#kCos`06nC^oH&hKU;haIxdp zqUv@ovH<{CW?`yI2Hxfy*;)u&b(S#4t33NW4kNYC&4bimF9NMgeW}E+%dhCco1|{G zhgM34##U9l0J5|vQ&zjT(Owgymzn}U->o6}A5^!8=1)VuVmd{2Y+f?lFeH_NDM0}M zW9nq&-y5x}YSh|~*?=G7@9t?BIbP!jEMl{>GxDh>;$R^W?EDfzqz@Ip_gV#9Ovqx0YH*^J7>RGl%=a4 zBm=_G&J_gg8zOQ4Pmo-!!`Wmcbj;Vc7`3*uGhB}weH8F>yk2qdnn_t;3?N}|A^!f+ z@f8AV5={=vTivY1}^>e#}spVGo$!@>`~6i`iKq#(0{Um>Ey$0!YR38W|}?~ zS)Tei{$O`^q+Tu9r=n%%y|;Y(zt*;sYzGbRXb~W$YTlUhw8Vri;O7@h%_chntl{^&Ld^huuMhcoKaN-v@L@Rw_wue6Im6sJyjHTT{%MoR0!i#-(qT{Y=n+@W>tI*N; zRUjGZB=rWhw&ygzio&c zQf%u+l6O9N%^n_OyjM_b_*1{5-qzOL>{pg7^T=vMrtf&^56=oziIEm(bEi8RgP~l2 z;$x?$TT}Bw(Y8I(;W=16?womL-$5C3Z`Q2Ox^W+(K|A-+hQ{&l&9>u?uL#jro)zkhIWu)XaP5D?(y<>l+^ z>*nU>=jZ3);o;-s>{mAhzifa#}@2kmG`$8Nv0e|g;I|s@tssVc18lRjM$csRW3FFQA z?p*%6cZ1!AX*5)Ulo9hdAMy*n%MC87NZ}w9-P}{@3pc41FAhTauK}UD2r6vs@*giW zeZ}LFQjaD}xgJC|3&NKesvg_=xjp6%xo>$MA>=<1Lwu9H-aZINy(+x7dAZXIG`9&PRl6LX?Av~9WrSp}l-0pudQ8^HH-EXK_YQWtL(=y0A`EYn? z+h7SaH9k+Lu4l1n$`RVQ_@z^R?Ja7^?v<`1_|@CL8vHV2;)JKF#FlL4g$_GSdW;pk zM~rV|Tih#h)4QX(39bA99~^WE=pwrAsj9M>OUo}m_PcAivXe;Ih=BBgkDJDC*VUOz z=pqWYzj{9EP^p12=~z@ZuF*sdrS0yjfdoY5tVI<{>@W40HrlxAyv`%N{P;POIJXQf zVYm4E5b7)4OC5!gC0CP?R3pao6ufFV^n0Eu)4fl($z((4-INyQE~Wi*8`#i9Bvqe=?jK<3 zjq!SuQ46S(yWPjvJ?7iYKS>AK&ywfYquRrs%shD9uQxV$zS!wmwInimahho|7*=Jx zWshSnsIkgwm)nw*X|dshs;RQx6=O4ZfhVi5D$!mY7+4OOUbJKeqf7birm%U=5W#jA zm8rxe?FU@3&>=ns)(X4>mR^t_n3*l)t+2fKB)59JEm|d;zDeqRYEL(vFQG2~V}s*y z_A|Tm!1h#~T`OH-=&i<`nF}K9Zg*-9A4Dl-^71o>l3hSnQA+@6ZV6#JSuh(R(g$Zg zN^kusFk?#4C@pMMOCRpy(-_hz*9T@}U=r<3Q9qQF35K8QA)(;UFQa)jTvD!w7$4b0 z`_6mv*(EGzT#+GiIC3=?1$G6CPug+wcHEs|VG8aYb>VFR%$_YsiQ)9KtNsXTD{{TR zMlIagFE_B$U7xi)jj&UrU*x#ZmX_o$zkb_Z(78GZw5yxczZh(j*z5!wJ{x)Dx=Cug zF8H&r__NXL9idXwPl(2gjNO%*I!$S=(@gT4;N0$z;*ScoiLUgFDW2@!kv2;pr^tr3 z>Q|q6$~S~7Hs(Ejnw};Ngjh;kBag=pj>fHyByBv(3|(qi5xA;5h#SqSMuW{FT#%bg{_JYvO_`Z2NU18ltKw z38#|E&n$`QFNEct5NWPFn$(! zMwmfNG-8+6W8o~LXkWix4}2~(iRtP?K{nPH_Cd@O0YzVJt(<7?-Kc6 zXWo6gfd@HEEeRhe->W%u3D@VDbVfZve_`17Q*j;0SRKM@4UA500D}`ID4Fdr2)t%C zK60_IJOj=1qKyF;`Y^H{#{V#jopm8E2~*S%T+M|LAoDp~y5qLoszkc@E{94>Hl5U` zEFxv6)D`(o`)cZR9J6P-l6)V*rND;lA#NZ8>@GA6uj96;7T^mKn{xdof^R^hBw|Y{ z2W(z1eW=9~pYKo$0J*vJTc6%%!7pJsmzUqt=NljnjXrQy8O~V$ozRl(>BV3w`*J%| z2TibAFO{BDKPf4KnJruR5u@U$A!5I38CRefmD#8OO61h6$&is^dj3H`Mc|{VMzAByd+VR1WYheprP<>+%iQ(qLVl<5vj70X< zTT|7_8-0~<`y6S7#o^NXhQs`NyV6ExsRw54RFRbpHbTNZ5ilROz1S>i?jtR^0eeOC zYk_*|s6g0+>7=slkrlQ#tIkQvk(w`Z}dqI_K`E@Zfvi?Q~g^RRpQma+J={s zg9AWKa9$^0O0A@;!_96zWA{XiH~_wX4oZB#QE7)a@@l;s>}SN@odI1QjM_#FgXs;o zwU(17CzE{G0 za=qc4-veyll}`I;RV)d+LzbwmU#-6lg#!8Esw7bKPc;F~*WbAZqT3K>t@HSk-xq~9 z*(Ss#+Zr{rf7SJgYrt^O@ry99DUDPKD=Af=qRw^K@wu&NJR2Xuq7zuT^U_>vg^4&w zaJ<9Ix8z{eSN*Ow6wp!KRP;kZ*Px6g?epJXfzsyLSZl%cX#)H$CaG= zz}CN%A7HL9P=~^VuJ5#*`v9Owr3+v3fC&+NYgM^ebmZLA*XRE)`U8GmGkoQje7eIP z`&<>I1Ucs-oB2y{{q`b^2MnsY{XuLKhg$2Ha6HX&Gca^q@&+wB--K4;n6H4wX(mH&FoT%2(eROX?&RMe?>?~6g~VOhrfAUG(j=`+LtrVCBIVjO#;t>dx<9Qw|VvDV!4Q_LZn!g}uiX5oaeBqb z?^sWVZar=a$6)KIJ)U=LE8f2cAJ$bwke$desf5e0ad!b%`yS38Wfy~=y#zwD&vCyj zyl3dL2yR$0j>uo}Hrd8GP}pjZG6fPNMo#8B1xtPtw&dG4#_prBfh}3DQlkym5sRth zS5L)n;g49wKR4ovE~g2|(Ho1>?6zS(q`RIx5%Id$Z;^~ViiQq;y98x#G~w^sFI`Th z`UlCtBgFop-qpThrNEkDuDxXBXV0<49~L1d!1Lp^D;g|)S_uS`(cRQL56976;I-|2 z+?plOQT`>*?GDfr5&JITH;gDjwmU!a%_eYBaSXQX9~{Q;wD8`q%D?kLk#r)3c0bdH z0#Oc%l#1%Qw`A~j^>W;Paq*@!FZu3=7(qrhZO)R3n{LgsyayQMo0we4PCT{@@kUe@W-3K!$A6qc>=6Neg{$Wf(Sa7 zdprM%v)2@>22!ebsqoCa>27RY!e*=4RtwURf!@L>RiTXshQH$31;k;dUBLVmSz+o( zeXB7b)>E7H3ebZ+CG?I)u7wlipG0VEq543`nt;wU#eWLRS`9+lDjyqDCggl_DiD08 zl1Rf>N4A6ADS3=zFqWI&(X-cCPahJH~ zJ+y7(wA19E>_$crB2AtVt0uIZ%3Pnxi2n?__9+a~5yN@a;MMO^E5+`zCkVzl@=oZC zq~3O>t7kWJbJYeLzbAJ~@`T`o;tccG-k}GJ-+vD=POF?aUER509bx$tp`8SuV7$(4 z6?tKuIqo1o;-GCabkW#nJ&a(oBi)&m{rfIwmd3EZt9sZXnLeW9#9YPBsIF2GHq9Pz5ptO+0 zgaHD9K!_uP0zw2*q=a4*Lkti~NI7x7``zdH{yX=(&pGGbKlZctUeDTV|JK{r`@R`Y z4mL7-6!!oCAanJ~WfuVW0R;ft9{u=(WTcp{@KAEw7VBbj3BdL#ElOT?1YWei2mrO& z(t?{iCGWeVu6V`*fNcBsYuks&>RSMyx$o-bi*AX&Yz8^=wnqtro4l7SP?1TNC0&G8 zz5dH}-6`h>ndFI^Ss@d5{zN+8vA$#$efQU_W74(8uF8jwdC%iq;YkH0gs{tA->|`{I#WTCR~jyr2Yob-u-j~u3VDfyw#@)G!6(coxQShd4}a<{OTxGVdNS= z-A~N_UDaCx@!qARo3rP*;>Ww$bw+E8Igx!)3Zi_0)y}^c(rGbWMu;!7i^kuW1a9$0 zWE3|Etr@elM2jtsLwTNB{-$H)(jugI_3!P@h8Z0Y*Ytq9gr{C{LP8QXqw-}NX6=z# zDAHqL3km^cToiNSUy%wXwO4&WTJ*CFI3&CoA8xJFNUJ`G#o`DND$J_WT;{Jq2h_n{J2)+?3l&>~>srmz8 znet$RZsNh+m#Pfk{GbXZKTP)H)+Cj@xJmBis`D3ebPVcOKK`YVkxS#}d>&S{l3tW^ z6de0Zh~m z7nWkOQ}~;Bv0$1+$QIkRD~d(E-{707HOzf0m|mlXk(R|VZAf~d(-wE!5FNGz&oK`5 z_oCPZ-5+%+pKC7VELnhE@oNuR+2)&A0bcHY_R8 zk2K92sUQmHR7Kt#EJf>~dxOvTP9GK1B;Y5OF_+`_MI<2<<*?eF-z+)N#Fj&QWf6)4 zw&xqFeT*i}yZ6cj2V*9j4Pn&lkUt|b+EX?D0w!fwKO5__Q{RAV9~y*j>0{O*d%@VHfd)b zm?$oEm)`sot5|R`&J(Qnemm8#+^zrHD5F9YDhO>F=B2f*>dt8cHwF()`E4st{A@xv zmE|k!Cgquhys3%l0F5mN_oGSHZ%&{fgSbM({SSm~&LtTCqrI=pG10O8IJ)E6B8p9s z^Zf9Fjmdb^=E3M&yM|KA>}9=R;p`B%VCf_;t^7Q``d>E0fXyV0pNC_^TECG`J{b=E^ydYzVp}iKE+H zU?UB=P7iO%GQPQWZBVJ;Ced{Injlh}G7LV;!tu^joLaxDcT-CdyE#%?*|xXaye5 zZ4lck59<=R*RC3pYvg`KEhG+VFEx7%us_O%bFNaGmi)Y+(gDg1%U~F#X?+qo1gZ0wfl8;0HiY;#Uz@VA-lykHNg1-Yo{U@bZaATJjz1v^6$IqI;1oHX@B= z1}ZRhN=H1>xu!_|eB$(1eGSLxsQV{OaKvc_xVoVRe&A9pvuJC=k!@4*v6LBi5Tgt@ z`5YH9suSW;FPoIUYRoqi!O~a`(ZbU&TPB}`PQI>iD{q{%-MUfRwSu#@qWg{oLD{6U z*D*)smHVHLTkCmgBVbYYd)0?=>snt%Nw|2nIuyJK{?oyitwmXoOG{SSJSzqG`>2cP zs{IGuGO_w;IZ}NkYYyv?$)JI$(zKD9r;uh*#3%)O703UpR6#k9ozN5Ez0%2^KVffR zI43^*T3EAq*)EXRDARvr?&9N5$BGql`BCWAVz!7jSj|C;olZ z3jb^T%*|~Rjgp^M&f?^~R?CZivtBK$vFOPhTU>mF`>fTlVO46L#A_+~`Lpz<`a6Bo zI1ltfo-rO=gmZ+@)7EVeyEEM{pnoPMd)sgZevSj8egK%wvYjuX%|D72OC!g<)JePjx`JR*5obKv39e8@vw7HG;1_GdcIz~)XD_@JCcPMjlSLU&G^_V7+H#GJBs>BZDO8AS_ zqq8)%4(g3F_7&Ic0IPK;n*%Kjj@1y|Yt=4(--ag4<37E~3QtXQO4s9a4&n$pjPauAa&7Vlk_l9IDC7P@ zUE>37qW7?VvkvQN<`O}|#%}_Qqrr5EMuAN(K@XUigEeg=EE_!w^>ItMKm{DEx}Fn^ zZ@n8%B7PF|y?Yc=pTP=o!y8);gG&p`llNIXjK#-eGmb8K*Sibr4MFF<8E)Pla4Hec zTc``PKqk0sRhQY(L0#CGgI@TE-9Xfewu-p>Xujgv5XYdaF0L@ITg>wrr}euizUsmG zO!sLEwkO)*c1AlYK2{3RFf6>x*(V-*aqC&K;b!q;5^Wt`_j|7*%_H3c&>p&j@GkfMC%-1G3``F5bzAl#96u8aHiKKoH$ zoW>MjIzJ&JlE$iwJIEuM9Mm(%-R%8!j^VGuFSHC?@15wpRtZj!e(r+U34G$-netPD zU^U;;g7zYwOPwOSYhgwz0}>?>lT5Xb5a!XI`Dw9SIHeT;DfDx<$@| zCHn^}_{=rwUDmzQi4|@GbS30fn01OlH`W~Vdfb(l0J4F~&=V`QM0 zK$K^-ju~Qz-0OH9b@u+{3P^Ljog3GPo<~y!&JIdt!4XyO$hG-#Zfaf3yuyd53Lk&@ zfbiw`f{m~tPaRO#K9JtY9FM-QkCyj#^%pMa`%%^9erl+vB2R90i7L%5^==RXA%m5y zvPnfX&ptGQWSp4ph3k_8nvzuYL{|N?713{7PD0&`^ohk!5mj5y);>+_4b4YYTjk~z zvj;5QC|F|BS6j>FV_KJCi#|k4fgLP_;~7F^H+PZ}U)d?zm)EJT>~a~sBG~>`Pof(6 zR{LMP-w90I-!E1d?AQyu@Q)K{avVuJ;9KI4$0RD9Rr+rS+9g&3QnIiH@Ce~rykNn* z@MFUi5oq*i&fs+_yxmY7^B2|8f2Gu*Q>rTRuQ`j~kQPU!#80J#7YX7Vhz5I{lSgjj zFU4`%a4kRyhV_9Idx=xNR$@EB?tn|bDByD1JzeuQ;HRF~?fFPcGzvF@NgGUyo7SYR z%F`SH!W-2Sl%y5MGiiYfd~OXs*Y~u@Ya~M)q9cOEVVtq4itkB`>jJu%T-`wP+XW<^ z!K#Xrn-_|wa6#8y{i^B?&KVfQPTGQqG8nPM)8m*g=m=KVskV8Wv(sb*O||5A>}G3@l4CjqJ^n0 z`Uc%0Bp^|PZn$1Qv~aam3KHcX76E3i|6FcxloegsKdwXXkYh=$rk=OWjl04%g*5Y` z-lLmlZe50y=0+k*z>Uo>H6ZWe)3E6I#WkAhb_NFiB<4pXkoa2rs5nUtQ*#Kd^E5B2 zc@)~8xZG+fJltbv-|kAc(}jSTV0}G<`lPwADw;lKymbszwTw1`c;MV&5EMKDiJc-S z4%$oK#t_&qt;@{|>Qx>X2lnwldZJ5E%&Fw+O7klLPFC9)<2hj}h3;J#Ti4mwm+cY* z9A~YmW~2agR)Lc)r9lHSGTNx9n|q4;rPo@ftD5fwNpEgg`oJC|1);v$C^HR*{WbLi z9FQi?YJ;@$AZAQiga($L-kb2+{5f+do?=F~>&+u>OU#h$Cp8dBF}zZl|G>`@OIOIe zzu;4D3$p~JlIPSGJOY;j3}kB1c<0yFI)O)g6HX@ylROI4IfK^~y00U9*x^@|V~!bR zSu5i#=`2&vo~)%C1j-yMK*f#hq)Ain?Ht~XTgjkl&9^qIHUyP;&)w9wbeMZY2>$)J($g%wW9mRw4;M{m8z&Ed_ljM7tjd7lh&`L^L#LRd+YiX_x*;d}i3oo$)J#Izlff%=} z7qyxJ`ZK5p^a@5B^ zURP56at+AFn1*=!g-Lc@_!n|nT}iyq@;bX=d*T_1Fw8e3JXz??O~}-EoU=BZ#TVtS znRm~QeY1wOzPued?9#K{L>Gey8Ob47GKN!h=*No?{S-RP=Ugae9 zQ_;ko*R)3x1}$ljk))6-MBLXv4syhcI@f3@ce6fP*ci}`Awl_dY=rMziXuBUJdzCd z2wVATKQgRuig4B$xo_`Jw`SY4gk)6>8LR^nR!so{d_v9!Y`(K~kFdnP6xH{6%$4VI zh&UV*3j2^z)ve*%U*i*brpAadJPImyWsl`5vhpZPwb;OU-g#JS1niGT7zy(&TiN^# zrYn9DgR(UEe7;@pWLBYj2ajfyZ~o-d;_^9ofn2#vR_L{XuACf}h z=k(^GYAR99FywyNwc>g#lQ2tc5K?-)=$*^IC@#%vG~9CNH#lz)SeJAJVuUQJ$zN+*8yD)^ML29KgO9?n6=BMDFxMd7z< zAIs5;m21(vDw=B98Ya%j$hX9JADUWBf!PLk<;S+~@({)uoOJ$>Nl5ZKM9#VAmNJp0 z`nl3POgbakbN)?HumI!1y$%CSkEITHsAiTjB)EKW_utMHB^{RJcG&PIW6O@Cse(0&5&i+#8o#tb;x>(% zQUzP%P99(I@aXT!sEJDwCz9DI2{_A1wD|AYD(Pm)jQLct?5hTgpTx{^um*}^E#o%I zcNe<7mY6ta+u2cDu`wtSs$K9oYpmp<*ZIpiEza^w9VA6z^9Qp~Rf~HgX5rc(TDEQQ z`pXCpJL|=|2z}V-3vh`MVlwhhW%SAe0MPk(d)fktj0?tpLQWI5>)>NNx7-LtBHOBy zW%Xw@QNGho9l=au(ypxDZ*kZ-!~PQIlH;D$=3SBYWne5++zc{uS~*yVGP632k>^Jw zhdgVHfcnza7_G6Y&Ww_gSi7UH3`?B1`>5&9z+35rSChKdq8!iIs6iZoOfb9q095%1TN>>f#VV@>PM#zd>F_ zQ0FnYIJ2>oJ|}1+Q)*R9U&TVQzHY+oh6mIIb3ZGRniAt*F1tQBp8LzwJMQV|XS0_X zrrofC@SK=onA^*t@b>1oj;yMQYgO)AuB<qpNe+Ovh^v!dKv8G;?nl!=2fWUXG;gn>F&JG7;pt1I-< zxow_<1Yg3G_28$XLDV_2CgcVz6LN{`#ok}hhcr*}b$kY1q&-g15!qW(>NbA?(iCRu zxNu)PMQ6gBGh@qVDAiYDi89wdZn{s|S~At|LbmsPR7@=Exu#v%TRv(8tCWuCmmHA2pZhBMZWP(<01`d1N5u2xYMXS)nhUZjpu4X5 zk0OY> zl{wgN5_a*6wl2b$b#r~n50AUK9;X6Uu}Jw%y8-dii&N?l8}Q1DIep7+EL%PJLlHuk zvAp*Px-RMRcajuZ2>m`PzT}RUX&w=%EOIjffwxKT#rnkc4Z7S?vVis@@T;Z3ZxEUR zH{&oOXE+Z}g(YkQt}|{(PKIeK|4zDh-t)Z}&4CkEE!+l0`eR3FqK>gZhw%ha@ejbp zH;InQ26Vi&5}#9%q&6!pw7(}OdG$UmI{@zv-n6*Brp;Bb5!%92*)N8wjEHL`5EAc8 zz7jQ$b4Q1j4~2L*`(*J6@goAmSU<_xQ3@3lL$0|uTIOQ0=VjrTNGcZMxkdML2>0MR(j_e$%8Wt_xw)`}SQ7x<0r%RsWe1Y|-eRwhCMq>=m`D3#n z?I^q*q`Cz(?JqYv?wCpLO6sIXYnt=4*PA&M?hEc#;q{}P1wG| z_a;}vPRF=-gx!LMT+6J6pYrhMLv_cl7sa#l%oj_0)1k&Yg_jro)G3&+_Qfk{JWr-u z+1g%bG0r384V$;ny3#8{KSakQA4MWy#5d@1v$Yd)-nG(5ywzhCJABNS-~47jDBULOTTl+(PNu)o?st2hagsKu>({F#Nqz3Efu(od zyQ(#GUl=0-M-ZiE9a@k#C!JW9m6Q_q?bl6$o7?&#OSI-==Y~cG8+r(Y`?uaDBfIDB zJnUpfNKz9@aYGw)7C166m+zH5ic#xAc(ktg6Wx6LD|cNDy00(i^_XU7|LoJ?7xhl~ zum=I{GLOr90OfM3V_Qx|!_0O-R;D9M+BJk$CPqJrr_2(M29^-bd|KY1L+>YFXm-23 z^42n+S-v*>BXD8*yPbgXiVkQ-#)FvBL|@}CtNQ0WG2CPNHmpj`#j0S{N8-kFGF>s@ zA5nd(;q4NYHZSm&ga*TZQF;-CBw0;JJiK2}Vt~tmwCCo1i&!rqhL`)$s3Uuu-QZca zE&LjCrP-S-AkB>aNUVQWDWFJ4n2d}dJXeI~MyR>z*)mLH`SSyZYN~5c63=9-NM$S> z_v*{{(!-}9YnVC3Xtkr#jNZL5r$mF;&R;4-L-p%ESrQ`=7YK%HXY8%ufzAu*QIux3(Uul3O z&DA)+PQHZpO;*<^{IlwTm%-o_C5Q&|jSsbWCNHzSD`U2l2fDw8b<1neRWt7)a&`^`~uJNn2DigTeDw*w|B9d zgJRbOh@XXw_fvVi{#49`C?Juba74T(Rrr>!So6-}UZm*3BfE*W+a`#KH@O@*MD8rvJ=>~^$b5_2E%nE7SV97kXuueoP(MvPdn6`=`UGH z`}C7br)s;7Qt6B(`=22GSoJK*kUZ+yy-@^>;aPs($>dX+V$qt03HPM=HZ2ds&vRY- z^ikl5d%LQ#XTDKOEOQ=(r*pumIHKAw4CZaKtQBSywcb!`KF~u=?iu1s5h)zPalCix zTB#e(+W}lxO&=CiT`ArpNkfK6N&(Ad6qCNlNn(E3Oct`F(9iU)qFH_0oIZb|1#185 z^OGHSRWCD7diFC3Ma(}yvVX}}IT}<23qLk)Ix#2A2_Ss!`b6%j)m<<3g30oj9Er(} zM>A6XL{jAY){}{qcAN@{#bR7G`E-iB7fBf}qC3O|DbAWzGo*^76c~`{LMD9ZdN)c?O?z6)3?o~z4nnfz$XiN3aAd4qQ%o5zE5>N3TG1v-osmW zBd~-NsdJ@C8oX~1qzDz12(BfJa9Phb-XNlVPtmWlX?_so??Z+s`|9RA)MjO%BzAO#~KH(I6f_Rg_?DG({{^CLdWhSDld9DFohUo z=KA4qyQftB&w-US5C?7n;#s?bPxAA*U`_W$cT7FIYu9qzaQ&%InGgt%J6V0#Mn4>l zY7w8(s<^r=rhN>uOj&sCS{p38I1Fm!W>P- z7spfg;VUd*37ny#KbKYF=z*1)s;1kC1QxH(+|8hTl6BQU(Klg<3JUg*^;9_TL({VA z(_O*I=Mgd^X3sGO^9xPK--DDv!5<5pa}8dFH`OPg53O8=K-S%Eo9ze%_Zt3|JENdDo`>bUws=f#!rbK>D;WE(lD`G>$`TsSL>A2eyZhpO`*qL-lha z$ORBkmuaox&GLw;Nr&>`dS!oYmL;{`#h+P-d92?Mw3|+K6$%gX3)kY2wsWgbAYOxO z!}qBqhoaf{#jbQM)!*+UV7U>R4Ages#!&pM*6kdW-P{{An$dzm_%vV$U=^oBjz!^= zB<6K$tgZP?$FiDWGUHQK3voui>AKMH?G)D_5hy-R>Cvs-Sk2ZSKXSfkq_ zmXEWF{ixxq>42#r+xSthlQPh8BW`q;-~>$gfMpCGThczXwT1yh9P^c4X&|cVuo@BE zn^oEFp9t6%((P2n0gwTy1Nd{%^1a0_g+l%{d8kHXU*YUgyFX!T9dp6%lNYPX{t-~5w zTaCTY`{(;fJw)vFzCbHU>42&P_Z)9Tl(q-oSCd5;6}QKjYf7XUJGarpZ!{AsIq3cp zeW79Z;B zk`kbIFE^hT4&@uY47ffORXAw$%Y6OMqHPl)k4bMLM+V80dhG|&2VedR^wE5{pns4c zsqrP=Z>7>UP9u)wT}Uxhg|8K>$MxT4eH(*qBE;$#u5x1gKj|X@_2CRBbS6|JsWWKj zJFZF^c*dr~xc_UnCW*ZKQkI*lP*^%iZ|YU+iP% zJcRsP6Ze=lJE#`IsSl$rW_WY{mPNDkEY&YH-d|XBFYc6R+l?m@K1_!QOzJH}Y&u38 zW%7t3#Cxa)V7V_xvrQ0ejS@D|YdQGp5H5Hb?} z?2-`N+`*Y040=A*Ks<$KifVmf!`aJ(RjonwUG}s5-VbnLt!VGP!k+Ff-vca{k7PcssUY&yIm+L?BVu~^~N``IY0n z-vxR6&K$B7IJhYr&|pFr+WjsyJr2)(Qpzjl6R3*9r;--5w2KlM%m&MQS=4PIlB8Pg zQrkRcDRJU6e`Upl5Ojjcdjmx(lgf$zo5O~-zd0^US*znSw~PMTP=Nms)g>n^uu&`3 z{U^Bp5q0^81^Bi_3E1rU<7EO1xAFchnzrz(E7Zxg0U8fJm3 MRt}f3mu~$29}<+nYybcN literal 0 HcmV?d00001 From 61b825d739f212515770bbc35acb12ca90a3a4ec Mon Sep 17 00:00:00 2001 From: DocsPreview <49669258+DocsPreview@users.noreply.github.com> Date: Wed, 31 Jul 2019 20:28:08 -0700 Subject: [PATCH 132/138] New announcement added (#809) --- windows/release-information/windows-message-center.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index 037d852171..ed6e185ffc 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -50,6 +50,7 @@ sections: text: " + From 128f77c7c06d2793880db48baf25b202ab271aa4 Mon Sep 17 00:00:00 2001 From: Robert Mazzoli Date: Thu, 1 Aug 2019 09:29:53 -0700 Subject: [PATCH 133/138] Surface Hub 2S copy edits for recent updates --- devices/surface-hub/surface-hub-2s-account.md | 7 ++-- .../surface-hub-2s-change-history.md | 2 +- devices/surface-hub/surface-hub-2s-connect.md | 41 +++++++++---------- .../surface-hub-2s-install-mount.md | 1 - .../surface-hub-2s-onscreen-display.md | 9 ++-- .../surface-hub-2s-phone-authenticate.md | 2 +- .../surface-hub-2s-port-keypad-overview.md | 1 - .../surface-hub/surface-hub-2s-quick-start.md | 2 +- .../surface-hub-2s-recover-reset.md | 2 +- devices/surface-hub/surface-hub-2s-setup.md | 1 - 10 files changed, 33 insertions(+), 35 deletions(-) diff --git a/devices/surface-hub/surface-hub-2s-account.md b/devices/surface-hub/surface-hub-2s-account.md index a3889dc678..cb0a6f3943 100644 --- a/devices/surface-hub/surface-hub-2s-account.md +++ b/devices/surface-hub/surface-hub-2s-account.md @@ -21,9 +21,9 @@ Unlike standard Room mailboxes that remain disabled by default, you need to enab Create the account using the Microsoft 365 admin center or by using PowerShell. You can use Exchange Online PowerShell to configure specific features including: -- Calendar processing for every Surface Hub device account. -- Custom auto replies to scheduling requests. -- If the default ActiveSync mailbox policy has already been modified by someone else or another process, you will likely have to create and assign a new ActiveSync mailbox policy +- Calendar processing for every Surface Hub device account. +- Custom auto replies to scheduling requests. +- If the default ActiveSync mailbox policy has already been modified by someone else or another process, you will likely have to create and assign a new ActiveSync mailbox policy ## Create account using Microsoft 365 admin center @@ -53,6 +53,7 @@ Create the account using the Microsoft 365 admin center or by using PowerShell. Instead of using the Microsoft Admin Center portal, you can create the account using PowerShell. ### Connect to Exchange Online PowerShell + ``` $365Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell -Credential (Get-Credential) -Authentication Basic –AllowRedirection $ImportResults = Import-PSSession $365Session ``` diff --git a/devices/surface-hub/surface-hub-2s-change-history.md b/devices/surface-hub/surface-hub-2s-change-history.md index 79a8b5bc71..19151f0d9a 100644 --- a/devices/surface-hub/surface-hub-2s-change-history.md +++ b/devices/surface-hub/surface-hub-2s-change-history.md @@ -18,6 +18,7 @@ ms.localizationpriority: Normal This topic summarizes new and updated content in the Surface Hub 2S documentation library. ## August 2019 + Changes | Description |:--- |:--- |Connect devices to Surface Hub 2S| Updated with guidance for connecting to a second display. @@ -30,7 +31,6 @@ Changes | Description | Surface Hub 2S tech specs | Updated power consumption data | | Surface Hub 2S Adoption Kit | New | - ## June 2019 Changes | Description diff --git a/devices/surface-hub/surface-hub-2s-connect.md b/devices/surface-hub/surface-hub-2s-connect.md index 4d02b8645e..ead06649af 100644 --- a/devices/surface-hub/surface-hub-2s-connect.md +++ b/devices/surface-hub/surface-hub-2s-connect.md @@ -25,27 +25,25 @@ You can display content from your devices to Surface Hub 2S. If the source devic In general, it’s recommended to use native cable connections whenever possible such as USB-C to USB-C or HDMI to HDMI. Other combinations such as MiniDP to HDMI or MiniDP to USB-C will also work. -| **Connection** | **Functionality** | **Description**| +| **Connection** | **Functionality** | **Description**| | --- | --- | ---| -| USB-C
    (via compute module) | Video-in
    Video-out
    Audio-in
    Audio-out

    TouchBack and InkBack | Provides video, audio, and TouchBack/InkBack on a single cable.

    **NOTE:** Some configuration is required to optimize the video-out experience. Refer to the section below: [Mirroring Surface Hub 2S display on another device](#). | -| HDMI + USB-C | HDMI-in for audio and video

    USB-C for TouchBack and InkBack | USB-C supports TouchBack and InkBack with the HDMI A/V connection.

    Use USB-C to USB-A to connect to legacy computers.

    **NOTE:** For best results, connect HDMI before connecting a USB-C cable. If the computer you're using for HDMI is not compatible with TouchBack and InkBack, you won't need a USB-C cable. | -| USB-C
    (via compute module) | Video-in
    Audio-in | Single cable needed for A/V

    TouchBack and InkBack not supported

    HDCP enabled | -| HDMI (in port) | Video, Audio into Surface Hub 2S | Single cable needed for A/V

    TouchBack and InkBack not supported

    HDCP enabled | -| MiniDP 1.2 output | Video-out such as mirroring to a larger projector. | Single cable needed for A/V | +| USB-C
    (via compute module) | Video-in
    Video-out
    Audio-in
    Audio-out

    TouchBack and InkBack | Provides video, audio, and TouchBack/InkBack on a single cable.

    **NOTE:** Some configuration is required to optimize the video-out experience. Refer to the section below: [Mirroring Surface Hub 2S display on another device](#). | +| HDMI + USB-C | HDMI-in for audio and video

    USB-C for TouchBack and InkBack | USB-C supports TouchBack and InkBack with the HDMI A/V connection.

    Use USB-C to USB-A to connect to legacy computers.

    **NOTE:** For best results, connect HDMI before connecting a USB-C cable. If the computer you're using for HDMI is not compatible with TouchBack and InkBack, you won't need a USB-C cable. | +| USB-C
    (via compute module) | Video-in
    Audio-in | Single cable needed for A/V

    TouchBack and InkBack not supported

    HDCP enabled | +| HDMI (in port) | Video, Audio into Surface Hub 2S | Single cable needed for A/V

    TouchBack and InkBack not supported

    HDCP enabled | +| MiniDP 1.2 output | Video-out such as mirroring to a larger projector. | Single cable needed for A/V | - - When you connect a guest computer to Surface Hub 2S via the USB-C port, several USB devices are discovered and configured. These peripheral devices are created for TouchBack and InkBack. As shown in the following table, the peripheral devices can be viewed in Device Manager, which will show duplicate names for some devices. -**Device Manager reference** -| **Peripheral** | **Listing in Device Manager** | -| ------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | -| Human interface devices | HID-compliant consumer control device
    HID-compliant pen
    HID-compliant pen (duplicate item)
    HID-compliant pen (duplicate item)
    HID-compliant touch screen
    USB Input Device
    USB Input Device (duplicate item) | -| Keyboards | Standard PS/2 keyboard | -| Mice and other pointing devices | HID-compliant mouse | -| USB controllers | Generic USB hub
    USB composite device | +| **Device Manager reference** |**Peripheral**| **Listing in Device Manager** | +| ---------------------------- |------------- | ------------------------------| +| Human interface devices | HID-compliant consumer control device
    HID-compliant pen
    HID-compliant pen (duplicate item)
    HID-compliant pen (duplicate item)
    HID-compliant touch screen
    USB Input Device
    USB Input Device (duplicate item) | +| Keyboards | Standard PS/2 keyboard | +| Mice and other pointing devices | HID-compliant mouse | +| USB controllers | Generic USB hub
    USB composite device | ## Connecting video-in to Surface Hub 2S + You can input video to Surface Hub 2S using USB-C or HDMI, as indicated in the following table. ### Surface Hub 2S video-in settings @@ -61,14 +59,14 @@ You can input video to Surface Hub 2S using USB-C or HDMI, as indicated in the f | HDTV | 1080p | 60 | X | X | | 4K UHD | 3840x2560 | 30 | X | X | - > [!NOTE] > The 4K UHD resolution (3840×2560) is only supported when connecting to ports on the compute module. It is not supported on the “guest” USB ports located on the left, top, and right sides of the device. - + > [!NOTE] > Video from a connected external PC may appear smaller when displayed on Surface Hub 2S. ## Mirroring Surface Hub 2S display on another device + You can output video to another display using either USB-C or MiniDP, as indicated in the following table. ### Surface Hub 2S video-out settings @@ -96,9 +94,8 @@ Surface Hub 2S includes a MiniDP video-out port for projecting visual content fr > [!NOTE] > if your second monitor uses a 16:9 aspect ratio (the predominant ratio for most TV monitors), black bars may appear on the left and right sides of the mirrored display. If this occurs, you may wish to inform your users that there is no need to adjust the second display. - - ## Selecting cables + Note the following recommendations: - **USB.** USB 3.1 Gen 2 cables. @@ -108,10 +105,11 @@ Note the following recommendations: > [!NOTE] > Most DisplayPort sources will automatically switch to HDMI signaling if HDMI is detected. -# Wirelessly connect to Surface Hub 2S +## Wirelessly connect to Surface Hub 2S Windows 10 natively supports Miracast, which lets you wireless connect to Surface Hub 2S.

    -**To connect using Miracast:** + +### To connect using Miracast: 1. On your Windows 10 device, enter **Windows logo key** + **K**. 2. In the Connect window, look for the name of your Surface Hub 2S in the list of nearby devices. You can find the name of your Surface Hub 2S in the bottom left corner of the display. @@ -123,6 +121,7 @@ Windows 10 natively supports Miracast, which lets you wireless connect to Surfac ## Connecting peripherals to Surface Hub 2S ### Bluetooth accessories + You can connect the following accessories to Surface Hub-2S using Bluetooth: - Mice diff --git a/devices/surface-hub/surface-hub-2s-install-mount.md b/devices/surface-hub/surface-hub-2s-install-mount.md index cd82888480..53a75568d1 100644 --- a/devices/surface-hub/surface-hub-2s-install-mount.md +++ b/devices/surface-hub/surface-hub-2s-install-mount.md @@ -34,4 +34,3 @@ If you’re not using licensed accessories, see [Customize wall mount of Surface | Get someone to help you lift and mount your Surface Hub. Make sure to hold and lift the Surface Hub from the bottom. | ![* Remove the instructional label before mounting *](images/sh2-setup-3.png)
    | | 4. **Attach accessories and power on** | | | Install accessories and attach power cable as shown. See guides on the screen cling. Remove cling wrap from the screen. Press the power button to power on. | ![* Attach accessories and power on *](images/sh2-setup-4.png)
    | - diff --git a/devices/surface-hub/surface-hub-2s-onscreen-display.md b/devices/surface-hub/surface-hub-2s-onscreen-display.md index d81ad4a0d1..7a2664bf01 100644 --- a/devices/surface-hub/surface-hub-2s-onscreen-display.md +++ b/devices/surface-hub/surface-hub-2s-onscreen-display.md @@ -13,9 +13,10 @@ ms.date: 07/09/2019 ms.localizationpriority: Normal --- # Adjust Surface Hub 2S brightness, volume, and input + Surface Hub 2S provides an on-screen display for volume, brightness, and input control. The Source button functions as a toggle key to switch between the volume, brightness, and input control menus. -**To show the on-screen display:** +## To show the on-screen display - Press and hold the **Source** button for 4 seconds. @@ -23,16 +24,16 @@ Surface Hub 2S provides an on-screen display for volume, brightness, and input c When the on-screen display is visible, use one or more buttons to reach desired settings. -**To adjust volume:** +## To adjust volume - Use the **Volume up/down** button to increase or decrease volume. -**To adjust brightness:** +## To adjust brightness 1. Press the **Source** button again to switch to the brightness menu. 2. Use the **Volume up/down** button to increase or decrease brightness. -**To adjust input:** +## To adjust input 1. Press the **Source** button twice to switch to the Source menu. 2. Use the **Volume up/down** button to switch between PC, HDMI, and USB-C inputs. diff --git a/devices/surface-hub/surface-hub-2s-phone-authenticate.md b/devices/surface-hub/surface-hub-2s-phone-authenticate.md index 1b6f56eda7..9773d4a735 100644 --- a/devices/surface-hub/surface-hub-2s-phone-authenticate.md +++ b/devices/surface-hub/surface-hub-2s-phone-authenticate.md @@ -20,7 +20,7 @@ Password-less phone sign-in simplifies signing-in to your meetings and files on > [!NOTE] > Password-less phone sign-in requires that your primary email address must match your UPN. -## To set up password-less phone sign-in +## To set up password-less phone sign-in 1. Download the [Microsoft Authenticator](https://www.microsoft.com/en-us/account/authenticator) app for iPhone or Android to your phone. 2. From your PC, go to [https://aka.ms/MFASetup](https://aka.ms/MFASetup) , sign in with your account, and select **Next.** diff --git a/devices/surface-hub/surface-hub-2s-port-keypad-overview.md b/devices/surface-hub/surface-hub-2s-port-keypad-overview.md index f7e59545a2..92555790c3 100644 --- a/devices/surface-hub/surface-hub-2s-port-keypad-overview.md +++ b/devices/surface-hub/surface-hub-2s-port-keypad-overview.md @@ -41,4 +41,3 @@ The figure below shows the location of ports and physical buttons on a keypad at | 11 | **Power** | Power device on/off.
    Use also to navigate display menus and select items. | n/a | ![Rear facing view of wireless, audio, & related components](images/hub2s-rear.png) - diff --git a/devices/surface-hub/surface-hub-2s-quick-start.md b/devices/surface-hub/surface-hub-2s-quick-start.md index 9ca02f89ce..518e43405c 100644 --- a/devices/surface-hub/surface-hub-2s-quick-start.md +++ b/devices/surface-hub/surface-hub-2s-quick-start.md @@ -13,7 +13,7 @@ ms.date: 06/20/2019 ms.localizationpriority: Normal --- -# Surface Hub 2S quick start +# Surface Hub 2S quick start ## Unpack Surface Hub 2S diff --git a/devices/surface-hub/surface-hub-2s-recover-reset.md b/devices/surface-hub/surface-hub-2s-recover-reset.md index 71dcfa24c1..263228238b 100644 --- a/devices/surface-hub/surface-hub-2s-recover-reset.md +++ b/devices/surface-hub/surface-hub-2s-recover-reset.md @@ -55,4 +55,4 @@ On rare occasions, Surface Hub 2S may encounter an error during cleanup of user Reset or recover the device from Windows Recovery Environment (Windows RE). For more information, see [What is Windows RE?](https://technet.microsoft.com/library/cc765966.aspx) > [!NOTE] -> To enter recovery mode, you need to physically unplug and replug the power cord three times. \ No newline at end of file +> To enter recovery mode, you need to physically unplug and replug the power cord three times. diff --git a/devices/surface-hub/surface-hub-2s-setup.md b/devices/surface-hub/surface-hub-2s-setup.md index 6329c3b696..c22b2c133a 100644 --- a/devices/surface-hub/surface-hub-2s-setup.md +++ b/devices/surface-hub/surface-hub-2s-setup.md @@ -98,4 +98,3 @@ If you insert a USB thumb drive with a provisioning package into one of the USB ![* Select a device account and friendly name from your configuration file*](images/sh2-run14.png)
    4. Follow the instructions to complete first time Setup. - From 8ab41c6d3aa0e7bb53a43287695b0e7b03072ce2 Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Thu, 1 Aug 2019 12:18:29 -0700 Subject: [PATCH 134/138] editing --- .../autopilot-device-guidelines.md | 4 +- .../windows-autopilot/autopilot-mbr.md | 111 +++++++++--------- .../windows-autopilot/known-issues.md | 13 +- .../windows-autopilot-whats-new.md | 1 + 4 files changed, 68 insertions(+), 61 deletions(-) diff --git a/windows/deployment/windows-autopilot/autopilot-device-guidelines.md b/windows/deployment/windows-autopilot/autopilot-device-guidelines.md index 2997787bd1..d379b288a9 100644 --- a/windows/deployment/windows-autopilot/autopilot-device-guidelines.md +++ b/windows/deployment/windows-autopilot/autopilot-device-guidelines.md @@ -4,6 +4,7 @@ ms.reviewer: manager: laurawi description: Windows Autopilot deployment keywords: mdm, setup, windows, windows 10, oobe, manage, deploy, autopilot, ztd, zero-touch, partner, msfb, intune +audience: itpro ms.prod: w10 ms.mktglfcycl: deploy ms.localizationpriority: medium @@ -20,7 +21,7 @@ ms.topic: article **Applies to** -- Windows 10 +- Windows 10 ## Hardware and firmware best practice guidelines for Windows Autopilot @@ -42,3 +43,4 @@ The following additional best practices ensure that devices can easily be provis ## Related topics [Windows Autopilot customer consent](registration-auth.md)
    +[Motherboard replacement scenario guidance](autopilot-mbr.md)
    diff --git a/windows/deployment/windows-autopilot/autopilot-mbr.md b/windows/deployment/windows-autopilot/autopilot-mbr.md index fecbab9249..32e3447c97 100644 --- a/windows/deployment/windows-autopilot/autopilot-mbr.md +++ b/windows/deployment/windows-autopilot/autopilot-mbr.md @@ -10,6 +10,7 @@ ms.localizationpriority: medium ms.sitesec: library ms.pagetype: deploy author: greg-lindsay +audience: itpro ms.author: greglin ms.collection: M365-modern-desktop ms.topic: article @@ -22,69 +23,67 @@ ms.topic: article - Windows 10 +This document offers guidance for Windows Autopilot device repair scenarios that Microsoft partners can use in Motherboard Replacement (MBR) situations, and other servicing scenarios. -This document offers guidance on how Microsoft partners should handle Motherboard Replacement (MBR) situations and other servicing scenarios with Autopilot devices. - -This document only addresses the most common repair scenarios. - -Repairing Autopilot enrolled devices is complex, as it tries to balance OEM requirements with Windows Autopilot requirements. Specifically, OEM’s require strict uniqueness across motherboards, MAC addresses, etc., while Windows Autopilot requires strict uniqueness at the Hardware ID level for each device (for successful registrations). The Hardware ID does not always accommodate all the OEM hardware component requirements, thus these requirements are sometimes at odds, making some repair scenarios unsupportable currently. +Repairing Autopilot enrolled devices is complex, as it tries to balance OEM requirements with Windows Autopilot requirements. Specifically, OEM’s require strict uniqueness across motherboards, MAC addresses, etc., while Windows Autopilot requires strict uniqueness at the Hardware ID level for each device to enable successful registration. The Hardware ID does not always accommodate all the OEM hardware component requirements, thus these requirements are sometimes at odds, causing issues with some repair scenarios. ## Motherboard Replacement (MBR) -If a motherboard replacement is needed on an Autopilot device, use the following process if possible: +If a motherboard replacement is needed on a Windows Autopilot device, the following process is recommended: -1. [Deregister the device](#deregister-the-autopilot-device-from-the-autopilot-program) +1. [Deregister the device](#deregister-the-autopilot-device-from-the-autopilot-program) from Windows Autopilot 2. [Replace the motherboard](#replace-the-motherboard) 3. [Capture a new device ID (4K HH)](#capture-a-new-autopilot-device-id-4k-hh-from-the-device) -4. [Reregister the repaired device](#reregister-the-repaired-device-using-the-new-device-id) -5. [Return the repaired device](#return-the-repaired-device-to-the-customer) +4. [Reset the device](#reset-the-device) +5. [Reregister the device](#reregister-the-repaired-device-using-the-new-device-id) with Windows Autopilot +6. [Return the device](#return-the-repaired-device-to-the-customer) ### Deregister the Autopilot device from the Autopilot program -Only the entity that registered the device can deregister it. Therefore, before the device arrives at the repair facility, it should be deregistered by whomever registered it, whether that’s the customer IT Admin, the OEM, or the CSP partner. If the IT Admin registered the device, they likely did so via Intune (or the Microsoft Store for Business). In that case, they should deregister the device from Intune (or MSfB). This is necessary because devices registered in Intune will not show up in MPC. However, if the OEM or CSP partner registered the device, they likely did so via MPC. In that case, they should deregister the device from MPC (which will also remove it from the customer IT Admin’s Intune account). Below, we describe the steps an IT Admin would go through to deregister a device from Intune, and the steps an OEM or CSP would go through to deregister a device from MPC. +Before the device arrives at the repair facility, it must be deregistered by the entity that registered it. Only the entity that registered the device can deregister it. This might be the customer IT Admin, the OEM, or the CSP partner. If the IT Admin registered the device, they likely did so via Intune (or possibly the Microsoft Store for Business). In that case, they should deregister the device from Intune (or MSfB). This is necessary because devices registered in Intune will not show up in MPC. However, if the OEM or CSP partner registered the device, they likely did so via the Microsoft Partner Center (MPC). In that case, they should deregister the device from MPC (which will also remove it from the customer IT Admin’s Intune account). Below, we describe the steps an IT Admin would go through to deregister a device from Intune, and the steps an OEM or CSP would go through to deregister a device from MPC. -NOTE: Whenever possible, an OEM or CSP should register Autopilot devices (rather than having the customer do it). This will avoid problems where OEMs or CSPs may not be able to deregister a device if, for example, a customer leasing a device goes out of business before deregistering it themselves. +**NOTE**: When possible, an OEM or CSP should register Autopilot devices, rather than having the customer do it. This will avoid problems where OEMs or CSPs may not be able to deregister a device if, for example, a customer leasing a device goes out of business before deregistering it themselves. -EXCEPTION: If a customer grants an OEM permission to register devices on their behalf via the automated consent process, then an OEM can use the API to deregister devices they didn’t register themselves (instead, the customer registered the devices). But keep in mind that this would only remove those devices from the Autopilot program, it would not disenroll them from Intune or disjoin them from AAD. The customer must do those steps (if desired) through Intune. +**EXCEPTION**: If a customer grants an OEM permission to register devices on their behalf via the automated consent process, then an OEM can use the API to deregister devices they didn’t register themselves (instead, the customer registered the devices). But keep in mind that this would only remove those devices from the Autopilot program, it would not disenroll them from Intune or disjoin them from AAD. The customer must do those steps, if desired, through Intune. #### Deregister from Intune To deregister an Autopilot device from Intune, an IT Admin would: -1. Log into their Intune account +1. Sign in to their Intune account 2. Navigate to Intune > Groups > All groups -3. Remove desired device(s) from its group +3. Remove the desired device from its group 4. Navigate to Intune > Devices > All devices -5. Select the checkbox next to the device(s) you want to delete, then click the Delete button along the top menu +5. Select the checkbox next to the device you want to delete, then click the Delete button on the top menu 6. Navigate to Intune > Devices > Azure AD devices -7. Select the checkbox next to the device(s) you want to delete, then click the Delete button along the top menu +7. Select the checkbox next to the device you want to delete, then click the Delete button along the top menu 8. Navigate to Intune > Device enrollment > Windows enrollment > Devices -9. Select the checkbox next to the device(s) you want to deregister +9. Select the checkbox next to the device you want to deregister 10. Click the extended menu icon (“…”) on the far right end of the line containing the device you want to deregister in order to expose an additional menu with the option to “unassign user” 11. Click “Unassign user” if the device was previously assigned to a user; if not, this option will be grayed-out and can be ignored 12. With the unassigned device still selected, click the Delete button along the top menu to remove this device -NOTE: These steps deregister the device from Autopilot, but also unenroll the device from Intune, and disjoin the device from AAD. While it may appear that only deregistering the device from Autopilot is needed, there are certain barriers in place within Intune that necessitate all the steps above be done, which is best practice anyway in case the device gets lost or becomes unrecoverable, to eliminate the possibility of orphaned devices existing in the Autopilot database, or Intune, or AAD. If a device gets into an unrecoverable state, you can contact the appropriate [Microsoft support alias](autopilot-support.md) for assistance. +**NOTE**: These steps deregister the device from Autopilot, but also unenroll the device from Intune, and disjoin the device from AAD. While it may appear that only deregistering the device from Autopilot is needed, there are certain barriers in place within Intune that necessitate all the steps above be done, which is best practice anyway in case the device gets lost or becomes unrecoverable, to eliminate the possibility of orphaned devices existing in the Autopilot database, or Intune, or AAD. If a device gets into an unrecoverable state, you can contact the appropriate [Microsoft support alias](autopilot-support.md) for assistance. -The deregistration process will take about 15 minutes. You can accelerate the process by clicking the “Sync” button, then “Refresh” the display until the device(s) is no longer present. +The deregistration process will take about 15 minutes. You can accelerate the process by clicking the “Sync” button, then “Refresh” the display until the device is no longer present. More details on deregistering devices from Intune can be found [here](https://docs.microsoft.com/intune/enrollment-autopilot#create-an-autopilot-device-group). #### Deregister from MPC -To deregister an Autopilot device from Microsoft Partner Center (MPC), a CSP would: +To deregister an Autopilot device from the Microsoft Partner Center (MPC), a CSP would: 1. Log into MPC 2. Navigate to Customer > Devices -3. Select the device(s) to be deregistered and click the “Delete device” button +3. Select the device to be deregistered and click the “Delete device” button ![devices](images/devices.png) -NOTE: Deregistering a device from Autopilot in MPC does only that; it does not also unenroll the device from the MDM (Intune), nor does it disjoin the device from AAD. Therefore, if possible, the OEM/CSP ideally should work with the customer IT Admin to have the device(s) fully removed per the Intune steps in the previous section. +**NOTE**: Deregistering a device from Autopilot in MPC does only that; it does not also unenroll the device from the MDM (Intune), nor does it disjoin the device from AAD. Therefore, if possible, the OEM/CSP ideally should work with the customer IT Admin to have the device fully removed per the Intune steps in the previous section. -NOTE: Alternatively, an OEM partner that has integrated the OEM Direct APIs can deregister a device by calling the AutopilotDeviceRegistration API with the TenantID and TenantDomain fields left blank in the request call. +Alternatively, an OEM partner that has integrated the OEM Direct APIs can deregister a device by calling the AutopilotDeviceRegistration API with the TenantID and TenantDomain fields left blank in the request call. -NOTE: Because the repair facility will not have access to the user’s login credentials, the repair facility will have to reimage the device as part of the repair process. This means that the customer should do three things before sending the device off for repair: +Because the repair facility will not have access to the user’s login credentials, the repair facility will have to reimage the device as part of the repair process. This means that the customer should do three things before sending the device off for repair: 1. Copy all important data off the device. 2. Let the repair facility know which version of Windows they should reinstall after the repair. 3. If applicable, let the repair facility know which version of Office they should reinstall after the repair. @@ -105,33 +104,33 @@ Repair and key replacement processes vary between facilities. Sometimes repair - ProductKeyID - OSType -NOTE: For simplicity (and because processes vary between repair facilities), we have excluded many of the additional steps often used in a MBR, such as: +**NOTE**: For simplicity, and because processes vary between repair facilities, we have excluded many of the additional steps often used in a MBR, such as: - Verify that the device is still functional - Disable BitLocker* - Repair the Boot Configuration Data (BCD) -- Repair/verify the network driver operation +- Repair and verify the network driver operation -*BitLocker need only be suspended, if the technician has the ability/access to resume it after the repair. +*BitLocker can be suspended rather than disbled if the technician has the ability to resume it after the repair. ### Capture a new Autopilot device ID (4K HH) from the device -Repair technicians will have to log into the repaired device to capture the new device ID. Assuming the repair technician does NOT have access to the customer’s login credentials, they will have to reimage the device in order to gain access, per the following steps: +Repair technicians must sign in to the repaired device to capture the new device ID. Assuming the repair technician does NOT have access to the customer’s login credentials, they will have to reimage the device in order to gain access, per the following steps: -1. Repair technician creates a [WinPE bootable USB drive](https://docs.microsoft.com/windows-hardware/manufacture/desktop/oem-deployment-of-windows-10-for-desktop-editions#create-a-bootable-windows-pe-winpe-partition) -2. Repair technician boot the device to WinPE -3. Repair technician [applies a new Windows image to the device](https://docs.microsoft.com/windows-hardware/manufacture/desktop/work-with-windows-images) +1. The repair technician creates a [WinPE bootable USB drive](https://docs.microsoft.com/windows-hardware/manufacture/desktop/oem-deployment-of-windows-10-for-desktop-editions#create-a-bootable-windows-pe-winpe-partition). +2. The repair technician boots the device to WinPE. +3. The repair technician [applies a new Windows image to the device](https://docs.microsoft.com/windows-hardware/manufacture/desktop/work-with-windows-images). - NOTE: Ideally, the same version of Windows should be reimaged onto the device that was originally on the device, so some coordination will be required between the repair facility and customer to capture this information at the time the device arrives for repair. This might include the customer sending the repair facility a customized image (.ppk file) via a USB stick, for example. + **NOTE**: Ideally, the same version of Windows should be reimaged onto the device that was originally on the device, so some coordination will be required between the repair facility and customer to capture this information at the time the device arrives for repair. This might include the customer sending the repair facility a customized image (.ppk file) via a USB stick, for example. -4. Repair technician boots the device into the new Windows image -5. Once on the desktop, the repair technician captures the new device ID (4K HH) off the device using either the OA3 Tool or the PowerShell script, as described below +4. The repair technician boots the device into the new Windows image. +5. Once on the desktop, the repair technician captures the new device ID (4K HH) off the device using either the OA3 Tool or the PowerShell script, as described below. Those repair facilities with access to the OA3 Tool (which is part of the ADK) can use the tool to capture the 4K Hardware Hash (4K HH). Alternatively, the [WindowsAutoPilotInfo Powershell script](https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo) can be used to capture the 4K HH by following these steps: 1. Install the script from the [PowerShell Gallery](https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo) or from the command line. -2. Navigate to the script and run it on the device when the device is either in Full OS or Audit Mode. +2. Navigate to the script directory and run it on the device when the device is either in Full OS or Audit Mode. See the following example. ```powershell md c:\HWID @@ -142,11 +141,13 @@ Alternatively, the [WindowsAutoPilotInfo Powershell script](https://www.powershe Get-WindowsAutopilotInfo.ps1 -OutputFile AutopilotHWID.csv ``` -If you are prompted to install the NuGet package, choose **Yes**. +>If you are prompted to install the NuGet package, choose **Yes**. -The script creates a csv file that contains the device information, including the complete 4K HH. The service facility would then use this 4K HH to reregister device as described in the next step. +The script creates a .csv file that contains the device information, including the complete 4K HH. Save this file so that you can access it later. The service facility will use this 4K HH to reregister device as described below. -NOTE: If the repair facility does not have the ability to run the OA3 tool or PowerShell script to capture the new 4K HH, then the CSP (or OEM) partners must do this for them. Without some entity capturing the new 4K HH, there is no way to reregister this device as an Autopilot device. +**NOTE**: If the repair facility does not have the ability to run the OA3 tool or PowerShell script to capture the new 4K HH, then the CSP (or OEM) partners must do this for them. Without some entity capturing the new 4K HH, there is no way to reregister this device as an Autopilot device. + +### Reset the device Since the device was required to be in Full OS or Audit Mode to capture the 4K HH, the repair facility must reset the image back to a pre-OOBE state before returning it to the customer. One way this can be accomplished is by using the built-in reset feature in Windows, as follows: @@ -158,42 +159,42 @@ However, it’s likely the repair facility won’t have access to Windows becaus ### Reregister the repaired device using the new device ID -If an OEM is not available to (or not willing to) reregister the device, then the repair facility or CSP should reregister the device using MPC, or the customer IT Admin should be advised to reregister the device via Intune (or MSfB). Both ways of reregistering a device are shown below. +If an OEM is not able to reregister the device, then the repair facility or CSP should reregister the device using MPC, or the customer IT Admin should be advised to reregister the device via Intune (or MSfB). Both ways of reregistering a device are shown below. #### Reregister from Intune To reregister an Autopilot device from Intune, an IT Admin would: -1. Log into Intune -2. Navigate to Device enrollment > Windows enrollment > Devices > Import -3. Click the “import” button to upload a csv file containing the device ID of the device to be reregistered (the device ID was the 4K HH captured by the PowerShell script or OA3 tool described previously in this document). +1. Sign in to Intune. +2. Navigate to Device enrollment > Windows enrollment > Devices > Import. +3. Click the **Import** button to upload a csv file containing the device ID of the device to be reregistered (the device ID was the 4K HH captured by the PowerShell script or OA3 tool described previously in this document). The following video provides a good overview of how to (re)register devices via MSfB. - +> [!VIDEO https://www.youtube.com/watch?v=IpLIZU_j7Z0] #### Reregister from MPC To reregister an Autopilot device from MPC, an OEM or CSP would: -1. Log into MPC -2. Navigate to the Customer > Devices page and click the “Add devices” button to upload the csv file. +1. Sign in to MPC. +2. Navigate to the Customer > Devices page and click the **Add devices** button to upload the csv file. ![device](images/device2.png)
    ![device](images/device2.png) In the case of reregistering a repaired device through MPC, the uploaded csv file must contain the 4K HH for the device, and not just the PKID or Tuple (SerialNumber + OEMName + ModelName). If only the PKID or Tuple were used, the Autopilot service would be unable to find a match in the Autopilot database, since no 4K HH info was ever previously submitted for this essentially “new” device, and the upload will fail, likely returning a ZtdDeviceNotFound error. So, again, only upload the 4K HH, not the Tuple or PKID. -NOTE: When including the 4K HH in the csv file, you do NOT also need to include the PKID or Tuple. Those columns may be left blank, as shown below: +**NOTE**: When including the 4K HH in the csv file, you do NOT also need to include the PKID or Tuple. Those columns may be left blank, as shown below: ![hash](images/hh.png) ### Return the repaired device to the customer -After completing the above steps, the repaired device can now be returned to the customer, and will be auto-enrolled into the Autopilot program on first boot-up during OOBE. +After completing the previous steps, the repaired device can now be returned to the customer, and will be auto-enrolled into the Autopilot program on first boot-up during OOBE. -NOTE: If the repair facility did NOT reimage the device, they could be sending it back in a potentially broken state (e.g., there’s no way to log into the device because it’s been dissociated from the only known user account), in which case they should tell the organization that they need to fix the registration and OS themselves. +**NOTE**: If the repair facility did NOT reimage the device, they could be sending it back in a potentially broken state (e.g., there’s no way to log into the device because it’s been dissociated from the only known user account), in which case they should tell the organization that they need to fix the registration and OS themselves. -NOTE: A device can be “registered” for Autopilot prior to being powered-on, but the device isn’t actually “deployed” to Autopilot (i.e., enabled as an Autopilot device) until it goes through OOBE, which is why resetting the device back to a pre-OOBE state is a required step. +**IMPORTANT**: A device can be “registered” for Autopilot prior to being powered-on, but the device isn’t actually “deployed” to Autopilot (i.e., enabled as an Autopilot device) until it goes through OOBE, which is why resetting the device back to a pre-OOBE state is a required step. ## Specific repair scenarios @@ -207,8 +208,8 @@ NOTES ON TEST RESULTS: - In the cases where a repair facility does not have the ability to write device info into the BIOS of the repaired device, new processes need to be created to successfully enable Autopilot. - Repaired device should have the Product Key (DPK) preinjected in the BIOS before capturing the new 4K HH (device ID) -
    MessageDate
    Microsoft Store users may encounter blank screens when clicking on certain buttons
    Some customers running the version of the Microsoft Store app released on July 29, 2019 may encounter a blank screen when selecting “Switch out of S mode,” “Get Genuine,” or some “Upgrade to [version]” OS upgrade options. We are working on the issue and expect to release a fix that should resolve the issue later this week.    		July 31, 2019
    02:00 PM PT
    Status update: Windows 10, version 1903 “D” release now available
    The optional monthly “D” release for Windows 10, version 1903 is now available. Follow @WindowsUpdate for the latest on the availability of this release.
    		July 26, 2019
    02:00 PM PT
    Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
    After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
    		July 19, 2019
    12:00 AM PT
    Evolving Windows 10 servicing and quality
    Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
    		July 01, 2019
    02:00 PM PT
    -
    ScenarioNot supported for Autopilot (Y/N)?
    Yes = device will be reenabled for Autopilot successfully
    No = after repair, device will NOT be enabled for Autopilot    		Microsoft Recommendation + +
    ScenarioNot supported for Autopilot (Y/N)?
    Yes = device will be reenabled for Autopilot successfully
    No = after repair, device will NOT be enabled for Autopilot    		Microsoft Recommendation
    Motherboard Replacement (MBR) in generalYesThe recommended course of action for MBR scenarios is: 1. Autopilot device is deregistered from the Autopilot program @@ -297,7 +298,7 @@ NOTES ON TEST RESULTS: 9. Go through Autopilot OOBE (customer) 10. Autopilot successfully enabled -NOTE: The repaired device can also be used successfully as a normal, non-Autopilot device. +NOTE: The repaired device can also be used successfully as a normal, non-Autopilot device.
    BIOS info excluded from MBR deviceNoRepair facility does not have BIOS tool to write device info into BIOS after MBR. @@ -378,9 +379,9 @@ Assuming the used HDD was previously deregistered (before being used in this rep
    GPU replacementYesReplacing the GPU(s) on a damaged device does not negatively affect the Autopilot experience on that device. No de/reregistration is needed. The repair technician simply needs to replace the GPU.
    -NOTE: When scavenging parts from another Autopilot device, we recommend unregistering the scavenged device from Autopilot, scavenging it, and then NEVER REGISTERING THE SCAVENGED DEVICE (AGAIN) FOR AUTOPILOT, because reusing parts this way may cause two active devices to end up with the same ID, with no possibility of distinguishing between the two. +>When scavenging parts from another Autopilot device, we recommend unregistering the scavenged device from Autopilot, scavenging it, and then NEVER REGISTERING THE SCAVENGED DEVICE (AGAIN) FOR AUTOPILOT, because reusing parts this way may cause two active devices to end up with the same ID, with no possibility of distinguishing between the two. -NOTE: The following parts may be replaced without compromising Autopilot enablement or requiring special additional repair steps: +**NOTE**: The following parts may be replaced without compromising Autopilot enablement or requiring special additional repair steps: - Memory (RAM or ROM) - Power Supply - Video Card @@ -393,7 +394,7 @@ NOTE: The following parts may be replaced without compromising Autopilot enable - Heat sink - CMOS battery -NOTE: Other repair scenarios not yet tested and verified include: +Other repair scenarios not yet tested and verified include: - Daughterboard replacement - CPU replacement - Wifi replacement diff --git a/windows/deployment/windows-autopilot/known-issues.md b/windows/deployment/windows-autopilot/known-issues.md index 818d4ca0ea..dae9f38910 100644 --- a/windows/deployment/windows-autopilot/known-issues.md +++ b/windows/deployment/windows-autopilot/known-issues.md @@ -25,11 +25,14 @@ ms.topic: article
    IssueMore information -
    Windows Autopilot white glove does not work for a non-English OS and you see a red screen that says "Success."Download and install the KB4505903 update. -
    Windows Autopilot reports an AUTOPILOTUPDATE error during OOBE after sysprep, reset or other variations. This typically happens if you reset the OS or used a custom sysprepped image.Download and install the KB4505903 update. -
    BitLocker encryption is not correctly configured. Ex: BitLocker didn’t get an expected notification after policies were applied to begin encryption.Download and install the KB4505903 update. -
    You are unable to install UWP apps from the Microsoft Store, causing failures during Windows Autopilot. If you are deploying Company Portal as a blocking app during Windows Autopilot ESP, you’ve probably seen this error.Download and install the KB4505903 update. -
    A user is not granted administrator rights in the Windows Autopilot user-driven Hybrid Azure AD join scenario. This is another non-English OS issue.Download and install the KB4505903 update. +
    The following known issues are resolved by installing the July 26, 2019 KB4505903 update (OS Build 18362.267): + +- Windows Autopilot white glove does not work for a non-English OS and you see a red screen that says "Success." +- Windows Autopilot reports an AUTOPILOTUPDATE error during OOBE after sysprep, reset or other variations. This typically happens if you reset the OS or used a custom sysprepped image. +- BitLocker encryption is not correctly configured. Ex: BitLocker didn’t get an expected notification after policies were applied to begin encryption. +- You are unable to install UWP apps from the Microsoft Store, causing failures during Windows Autopilot. If you are deploying Company Portal as a blocking app during Windows Autopilot ESP, you’ve probably seen this error. +- A user is not granted administrator rights in the Windows Autopilot user-driven Hybrid Azure AD join scenario. This is another non-English OS issue. +Download and install the KB4505903 update.

    See the section: How to get this update for information on specific release channels you can use to obtain the update.
    White glove gives a red screen and the Microsoft-Windows-User Device Registration/Admin event log displays HResult error code 0x801C03F3This can happen if Azure AD can’t find an AAD device object for the device that you are trying to deploy. This will occur if you manually delete the object. To fix it, remove the device from AAD, Intune, and Autopilot, then re-register it with Autopilot, which will recreate the AAD device object.

    To obtain troubleshooting logs use: Mdmdiagnosticstool.exe -area Autopilot;TPM -cab c:\autopilot.cab
    White glove gives a red screenWhite glove is not supported on a VM. diff --git a/windows/deployment/windows-autopilot/windows-autopilot-whats-new.md b/windows/deployment/windows-autopilot/windows-autopilot-whats-new.md index 57c91a67e4..6f157802ae 100644 --- a/windows/deployment/windows-autopilot/windows-autopilot-whats-new.md +++ b/windows/deployment/windows-autopilot/windows-autopilot-whats-new.md @@ -10,6 +10,7 @@ ms.localizationpriority: medium ms.sitesec: library ms.pagetype: deploy author: greg-lindsay +audience: itpro ms.author: greglin ms.collection: M365-modern-desktop ms.topic: article From a2cf785ce19ccf8ec9318b881aaba8cf778a1257 Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Thu, 1 Aug 2019 12:48:02 -0700 Subject: [PATCH 135/138] editing --- windows/deployment/windows-autopilot/autopilot-mbr.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/deployment/windows-autopilot/autopilot-mbr.md b/windows/deployment/windows-autopilot/autopilot-mbr.md index 32e3447c97..a5e15df930 100644 --- a/windows/deployment/windows-autopilot/autopilot-mbr.md +++ b/windows/deployment/windows-autopilot/autopilot-mbr.md @@ -40,7 +40,7 @@ If a motherboard replacement is needed on a Windows Autopilot device, the follow ### Deregister the Autopilot device from the Autopilot program -Before the device arrives at the repair facility, it must be deregistered by the entity that registered it. Only the entity that registered the device can deregister it. This might be the customer IT Admin, the OEM, or the CSP partner. If the IT Admin registered the device, they likely did so via Intune (or possibly the Microsoft Store for Business). In that case, they should deregister the device from Intune (or MSfB). This is necessary because devices registered in Intune will not show up in MPC. However, if the OEM or CSP partner registered the device, they likely did so via the Microsoft Partner Center (MPC). In that case, they should deregister the device from MPC (which will also remove it from the customer IT Admin’s Intune account). Below, we describe the steps an IT Admin would go through to deregister a device from Intune, and the steps an OEM or CSP would go through to deregister a device from MPC. +Before the device arrives at the repair facility, it must be deregistered by the entity that registered it. Only the entity that registered the device can deregister it. This might be the customer IT Admin, the OEM, or the CSP partner. If the IT Admin registered the device, they likely did so via Intune (or possibly the Microsoft Store for Business). In that case, they should deregister the device from Intune (or MSfB). This is necessary because devices registered in Intune will not show up in MPC. However, if the OEM or CSP partner registered the device, they likely did so via the Microsoft Partner Center (MPC). In that case, they should deregister the device from MPC, which will also remove it from the customer IT Admin’s Intune account. Below, we describe the steps an IT Admin would go through to deregister a device from Intune, and the steps an OEM or CSP would go through to deregister a device from MPC. **NOTE**: When possible, an OEM or CSP should register Autopilot devices, rather than having the customer do it. This will avoid problems where OEMs or CSPs may not be able to deregister a device if, for example, a customer leasing a device goes out of business before deregistering it themselves. @@ -209,7 +209,7 @@ NOTES ON TEST RESULTS: - Repaired device should have the Product Key (DPK) preinjected in the BIOS before capturing the new 4K HH (device ID) -
    ScenarioNot supported for Autopilot (Y/N)?
    Yes = device will be reenabled for Autopilot successfully
    No = after repair, device will NOT be enabled for Autopilot    		Microsoft Recommendation +ScenarioSupportability:
    Yes = can be reenabled for Autopilot
    No = cannot be reenabled for Autopilot    		Microsoft Recommendation
    Motherboard Replacement (MBR) in generalYesThe recommended course of action for MBR scenarios is: 1. Autopilot device is deregistered from the Autopilot program From c56a42bbe39ad2cd9f84bcbb1060d8d825d227cb Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Thu, 1 Aug 2019 14:23:40 -0700 Subject: [PATCH 136/138] editing --- windows/deployment/windows-autopilot/autopilot-mbr.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/windows/deployment/windows-autopilot/autopilot-mbr.md b/windows/deployment/windows-autopilot/autopilot-mbr.md index a5e15df930..3092a04346 100644 --- a/windows/deployment/windows-autopilot/autopilot-mbr.md +++ b/windows/deployment/windows-autopilot/autopilot-mbr.md @@ -208,8 +208,12 @@ NOTES ON TEST RESULTS: - In the cases where a repair facility does not have the ability to write device info into the BIOS of the repaired device, new processes need to be created to successfully enable Autopilot. - Repaired device should have the Product Key (DPK) preinjected in the BIOS before capturing the new 4K HH (device ID) +See the following table:
    +- Supported = **Yes**: the device can be reenabled for Autopilot +- Supported = **No**: the device cannot be reenabled for Autopilot + - - @@ -151,7 +150,6 @@ sections:
    ScenarioSupportability:
    Yes = can be reenabled for Autopilot
    No = cannot be reenabled for Autopilot    		Microsoft Recommendation +ScenarioSupported*Microsoft Recommendation
    Motherboard Replacement (MBR) in generalYesThe recommended course of action for MBR scenarios is: 1. Autopilot device is deregistered from the Autopilot program From ad08d0c60fae7247c78fa3873969ece7561fe8cc Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Thu, 1 Aug 2019 14:26:01 -0700 Subject: [PATCH 137/138] removed new topic for now --- windows/deployment/windows-autopilot/TOC.md | 3 +- .../autopilot-device-guidelines.md | 1 - .../windows-autopilot/autopilot-mbr.md | 417 ------------------ 3 files changed, 1 insertion(+), 420 deletions(-) delete mode 100644 windows/deployment/windows-autopilot/autopilot-mbr.md diff --git a/windows/deployment/windows-autopilot/TOC.md b/windows/deployment/windows-autopilot/TOC.md index 5d487c958c..4ad5db1e36 100644 --- a/windows/deployment/windows-autopilot/TOC.md +++ b/windows/deployment/windows-autopilot/TOC.md @@ -25,5 +25,4 @@ ## [FAQ](autopilot-faq.md) ## [Contacts](autopilot-support.md) ## [Registration authorization](registration-auth.md) -## [Device guidelines](autopilot-device-guidelines.md) -## [Motherboard replacement](autopilot-mbr.md) \ No newline at end of file +## [Device guidelines](autopilot-device-guidelines.md) \ No newline at end of file diff --git a/windows/deployment/windows-autopilot/autopilot-device-guidelines.md b/windows/deployment/windows-autopilot/autopilot-device-guidelines.md index d379b288a9..8913615eb4 100644 --- a/windows/deployment/windows-autopilot/autopilot-device-guidelines.md +++ b/windows/deployment/windows-autopilot/autopilot-device-guidelines.md @@ -43,4 +43,3 @@ The following additional best practices ensure that devices can easily be provis ## Related topics [Windows Autopilot customer consent](registration-auth.md)
    -[Motherboard replacement scenario guidance](autopilot-mbr.md)
    diff --git a/windows/deployment/windows-autopilot/autopilot-mbr.md b/windows/deployment/windows-autopilot/autopilot-mbr.md deleted file mode 100644 index 3092a04346..0000000000 --- a/windows/deployment/windows-autopilot/autopilot-mbr.md +++ /dev/null @@ -1,417 +0,0 @@ ---- -title: Windows Autopilot motherboard replacement -ms.reviewer: -manager: laurawi -description: Windows Autopilot deployment MBR scenarios -keywords: mdm, setup, windows, windows 10, oobe, manage, deploy, autopilot, ztd, zero-touch, partner, msfb, intune -ms.prod: w10 -ms.mktglfcycl: deploy -ms.localizationpriority: medium -ms.sitesec: library -ms.pagetype: deploy -author: greg-lindsay -audience: itpro -ms.author: greglin -ms.collection: M365-modern-desktop -ms.topic: article ---- - - -# Windows Autopilot motherboard replacement scenario guidance - -**Applies to** - -- Windows 10 - -This document offers guidance for Windows Autopilot device repair scenarios that Microsoft partners can use in Motherboard Replacement (MBR) situations, and other servicing scenarios. - -Repairing Autopilot enrolled devices is complex, as it tries to balance OEM requirements with Windows Autopilot requirements. Specifically, OEM’s require strict uniqueness across motherboards, MAC addresses, etc., while Windows Autopilot requires strict uniqueness at the Hardware ID level for each device to enable successful registration. The Hardware ID does not always accommodate all the OEM hardware component requirements, thus these requirements are sometimes at odds, causing issues with some repair scenarios. - -## Motherboard Replacement (MBR) - -If a motherboard replacement is needed on a Windows Autopilot device, the following process is recommended: - -1. [Deregister the device](#deregister-the-autopilot-device-from-the-autopilot-program) from Windows Autopilot -2. [Replace the motherboard](#replace-the-motherboard) -3. [Capture a new device ID (4K HH)](#capture-a-new-autopilot-device-id-4k-hh-from-the-device) -4. [Reset the device](#reset-the-device) -5. [Reregister the device](#reregister-the-repaired-device-using-the-new-device-id) with Windows Autopilot -6. [Return the device](#return-the-repaired-device-to-the-customer) - -### Deregister the Autopilot device from the Autopilot program - -Before the device arrives at the repair facility, it must be deregistered by the entity that registered it. Only the entity that registered the device can deregister it. This might be the customer IT Admin, the OEM, or the CSP partner. If the IT Admin registered the device, they likely did so via Intune (or possibly the Microsoft Store for Business). In that case, they should deregister the device from Intune (or MSfB). This is necessary because devices registered in Intune will not show up in MPC. However, if the OEM or CSP partner registered the device, they likely did so via the Microsoft Partner Center (MPC). In that case, they should deregister the device from MPC, which will also remove it from the customer IT Admin’s Intune account. Below, we describe the steps an IT Admin would go through to deregister a device from Intune, and the steps an OEM or CSP would go through to deregister a device from MPC. - -**NOTE**: When possible, an OEM or CSP should register Autopilot devices, rather than having the customer do it. This will avoid problems where OEMs or CSPs may not be able to deregister a device if, for example, a customer leasing a device goes out of business before deregistering it themselves. - -**EXCEPTION**: If a customer grants an OEM permission to register devices on their behalf via the automated consent process, then an OEM can use the API to deregister devices they didn’t register themselves (instead, the customer registered the devices). But keep in mind that this would only remove those devices from the Autopilot program, it would not disenroll them from Intune or disjoin them from AAD. The customer must do those steps, if desired, through Intune. - -#### Deregister from Intune - -To deregister an Autopilot device from Intune, an IT Admin would: - -1. Sign in to their Intune account -2. Navigate to Intune > Groups > All groups -3. Remove the desired device from its group -4. Navigate to Intune > Devices > All devices -5. Select the checkbox next to the device you want to delete, then click the Delete button on the top menu -6. Navigate to Intune > Devices > Azure AD devices -7. Select the checkbox next to the device you want to delete, then click the Delete button along the top menu -8. Navigate to Intune > Device enrollment > Windows enrollment > Devices -9. Select the checkbox next to the device you want to deregister -10. Click the extended menu icon (“…”) on the far right end of the line containing the device you want to deregister in order to expose an additional menu with the option to “unassign user” -11. Click “Unassign user” if the device was previously assigned to a user; if not, this option will be grayed-out and can be ignored -12. With the unassigned device still selected, click the Delete button along the top menu to remove this device - -**NOTE**: These steps deregister the device from Autopilot, but also unenroll the device from Intune, and disjoin the device from AAD. While it may appear that only deregistering the device from Autopilot is needed, there are certain barriers in place within Intune that necessitate all the steps above be done, which is best practice anyway in case the device gets lost or becomes unrecoverable, to eliminate the possibility of orphaned devices existing in the Autopilot database, or Intune, or AAD. If a device gets into an unrecoverable state, you can contact the appropriate [Microsoft support alias](autopilot-support.md) for assistance. - -The deregistration process will take about 15 minutes. You can accelerate the process by clicking the “Sync” button, then “Refresh” the display until the device is no longer present. - -More details on deregistering devices from Intune can be found [here](https://docs.microsoft.com/intune/enrollment-autopilot#create-an-autopilot-device-group). - -#### Deregister from MPC - -To deregister an Autopilot device from the Microsoft Partner Center (MPC), a CSP would: - -1. Log into MPC -2. Navigate to Customer > Devices -3. Select the device to be deregistered and click the “Delete device” button - -![devices](images/devices.png) - -**NOTE**: Deregistering a device from Autopilot in MPC does only that; it does not also unenroll the device from the MDM (Intune), nor does it disjoin the device from AAD. Therefore, if possible, the OEM/CSP ideally should work with the customer IT Admin to have the device fully removed per the Intune steps in the previous section. - -Alternatively, an OEM partner that has integrated the OEM Direct APIs can deregister a device by calling the AutopilotDeviceRegistration API with the TenantID and TenantDomain fields left blank in the request call. - -Because the repair facility will not have access to the user’s login credentials, the repair facility will have to reimage the device as part of the repair process. This means that the customer should do three things before sending the device off for repair: -1. Copy all important data off the device. -2. Let the repair facility know which version of Windows they should reinstall after the repair. -3. If applicable, let the repair facility know which version of Office they should reinstall after the repair. - -### Replace the motherboard - -Technicians replace the motherboard (or other hardware) on the broken device. A replacement DPK is injected. - -Repair and key replacement processes vary between facilities. Sometimes repair facilities receive motherboard spare parts from OEMs that have replacement DPKs already injected, but sometimes not. Sometimes repair facilities receive fully-functional BIOS tools from OEMs, but sometimes not. This means that the quality of the data in the BIOS after a MBR varies. To ensure the repaired device will still be Autopilot-capable following its repair, the new (post-repair) BIOS should be able to successfully gather and populate the following information at a minimum: - -- DiskSerialNumber -- SmbiosSystemSerialNumber -- SmbiosSystemManufacturer -- SmbiosSystemProductName -- SmbiosUuid -- TPM EKPub -- MacAddress -- ProductKeyID -- OSType - -**NOTE**: For simplicity, and because processes vary between repair facilities, we have excluded many of the additional steps often used in a MBR, such as: -- Verify that the device is still functional -- Disable BitLocker* -- Repair the Boot Configuration Data (BCD) -- Repair and verify the network driver operation - -*BitLocker can be suspended rather than disbled if the technician has the ability to resume it after the repair. - -### Capture a new Autopilot device ID (4K HH) from the device - -Repair technicians must sign in to the repaired device to capture the new device ID. Assuming the repair technician does NOT have access to the customer’s login credentials, they will have to reimage the device in order to gain access, per the following steps: - -1. The repair technician creates a [WinPE bootable USB drive](https://docs.microsoft.com/windows-hardware/manufacture/desktop/oem-deployment-of-windows-10-for-desktop-editions#create-a-bootable-windows-pe-winpe-partition). -2. The repair technician boots the device to WinPE. -3. The repair technician [applies a new Windows image to the device](https://docs.microsoft.com/windows-hardware/manufacture/desktop/work-with-windows-images). - - **NOTE**: Ideally, the same version of Windows should be reimaged onto the device that was originally on the device, so some coordination will be required between the repair facility and customer to capture this information at the time the device arrives for repair. This might include the customer sending the repair facility a customized image (.ppk file) via a USB stick, for example. - -4. The repair technician boots the device into the new Windows image. -5. Once on the desktop, the repair technician captures the new device ID (4K HH) off the device using either the OA3 Tool or the PowerShell script, as described below. - -Those repair facilities with access to the OA3 Tool (which is part of the ADK) can use the tool to capture the 4K Hardware Hash (4K HH). - -Alternatively, the [WindowsAutoPilotInfo Powershell script](https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo) can be used to capture the 4K HH by following these steps: - -1. Install the script from the [PowerShell Gallery](https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo) or from the command line. -2. Navigate to the script directory and run it on the device when the device is either in Full OS or Audit Mode. See the following example. - - ```powershell - md c:\HWID - Set-Location c:\HWID - Set-ExecutionPolicy -Scope Process -ExecutionPolicy Unrestricted -Force - Install-Script -Name Get-WindowsAutopilotInfo -Force - $env:Path += ";C:\Program Files\WindowsPowerShell\Scripts" - Get-WindowsAutopilotInfo.ps1 -OutputFile AutopilotHWID.csv - ``` - ->If you are prompted to install the NuGet package, choose **Yes**. - -The script creates a .csv file that contains the device information, including the complete 4K HH. Save this file so that you can access it later. The service facility will use this 4K HH to reregister device as described below. - -**NOTE**: If the repair facility does not have the ability to run the OA3 tool or PowerShell script to capture the new 4K HH, then the CSP (or OEM) partners must do this for them. Without some entity capturing the new 4K HH, there is no way to reregister this device as an Autopilot device. - -### Reset the device - -Since the device was required to be in Full OS or Audit Mode to capture the 4K HH, the repair facility must reset the image back to a pre-OOBE state before returning it to the customer. One way this can be accomplished is by using the built-in reset feature in Windows, as follows: - -On the device, go to Settings > Update & Security > Recovery and click on Get started. Under Reset this PC, select Remove everything and Just remove my files. Finally, click on Reset. - -![reset](images/reset.png) - -However, it’s likely the repair facility won’t have access to Windows because they lack the user credentials to login, in which case they need to use other means to reimage the device, such as the [Deployment Image Servicing and Management tool](https://docs.microsoft.com/windows-hardware/manufacture/desktop/oem-deployment-of-windows-10-for-desktop-editions#use-a-deployment-script-to-apply-your-image). - -### Reregister the repaired device using the new device ID - -If an OEM is not able to reregister the device, then the repair facility or CSP should reregister the device using MPC, or the customer IT Admin should be advised to reregister the device via Intune (or MSfB). Both ways of reregistering a device are shown below. - -#### Reregister from Intune - -To reregister an Autopilot device from Intune, an IT Admin would: -1. Sign in to Intune. -2. Navigate to Device enrollment > Windows enrollment > Devices > Import. -3. Click the **Import** button to upload a csv file containing the device ID of the device to be reregistered (the device ID was the 4K HH captured by the PowerShell script or OA3 tool described previously in this document). - -The following video provides a good overview of how to (re)register devices via MSfB. - -> [!VIDEO https://www.youtube.com/watch?v=IpLIZU_j7Z0] - -#### Reregister from MPC - -To reregister an Autopilot device from MPC, an OEM or CSP would: - -1. Sign in to MPC. -2. Navigate to the Customer > Devices page and click the **Add devices** button to upload the csv file. - -![device](images/device2.png)
    -![device](images/device2.png) - -In the case of reregistering a repaired device through MPC, the uploaded csv file must contain the 4K HH for the device, and not just the PKID or Tuple (SerialNumber + OEMName + ModelName). If only the PKID or Tuple were used, the Autopilot service would be unable to find a match in the Autopilot database, since no 4K HH info was ever previously submitted for this essentially “new” device, and the upload will fail, likely returning a ZtdDeviceNotFound error. So, again, only upload the 4K HH, not the Tuple or PKID. - -**NOTE**: When including the 4K HH in the csv file, you do NOT also need to include the PKID or Tuple. Those columns may be left blank, as shown below: - -![hash](images/hh.png) - -### Return the repaired device to the customer - -After completing the previous steps, the repaired device can now be returned to the customer, and will be auto-enrolled into the Autopilot program on first boot-up during OOBE. - -**NOTE**: If the repair facility did NOT reimage the device, they could be sending it back in a potentially broken state (e.g., there’s no way to log into the device because it’s been dissociated from the only known user account), in which case they should tell the organization that they need to fix the registration and OS themselves. - -**IMPORTANT**: A device can be “registered” for Autopilot prior to being powered-on, but the device isn’t actually “deployed” to Autopilot (i.e., enabled as an Autopilot device) until it goes through OOBE, which is why resetting the device back to a pre-OOBE state is a required step. - -## Specific repair scenarios - -This section covers the most common repair scenarios, and their impact on Autopilot enablement. - -NOTES ON TEST RESULTS: - -- Scenarios below were tested using Intune only (no other MDMs were tested). -- In most test scenarios below, the repaired and reregistered device needed to go through OOBE again for Autopilot to be enabled. -- Motherboard replacement scenarios often result in lost data, so repair centers or customers should be reminded to backup data (if possible) prior to repair. -- In the cases where a repair facility does not have the ability to write device info into the BIOS of the repaired device, new processes need to be created to successfully enable Autopilot. -- Repaired device should have the Product Key (DPK) preinjected in the BIOS before capturing the new 4K HH (device ID) - -See the following table:
    -- Supported = **Yes**: the device can be reenabled for Autopilot -- Supported = **No**: the device cannot be reenabled for Autopilot - - -
    ScenarioSupported*Microsoft Recommendation -
    Motherboard Replacement (MBR) in generalYesThe recommended course of action for MBR scenarios is: - -1. Autopilot device is deregistered from the Autopilot program -2. The motherboard is replace -3. The device is reimaged (with BIOS info and DPK reinjected)* -4. A new Autopilot device ID (4K HH) is captured off the device -5. The repaired device is reregistered for the Autopilot program using the new device ID -6. The repaired device is reset to boot to OOBE -7. The repaired device is shipped back to the customer - -*It’s not necessary to reimage the device if the repair technician has access to the customer’s login credentials. It’s technically possible to do a successful MBR and Autopilot re-enablement without keys or certain BIOS info (e.g., serial #, model name, etc.), but doing so is only recommended for testing/educational purposes. - -
    MBR when motherboard has a TPM chip (enabled) and only one onboard network card (that also gets replaced)Yes - -1. Deregister damaged device -2. Replace motherboard -3. Reimage device (to gain access), unless have access to customers’ login credentials -4. Write device info into BIOS -5. Capture new 4K HH -6. Reregister repaired device -7. Reset device back to OOBE -8. Go through Autopilot OOBE (customer) -9. Autopilot successfully enabled - -
    MBR when motherboard has a TPM chip (enabled) and a second network card (or network interface) that is not replaced along with the motherboardNoThis scenario is not recommended, as it breaks the Autopilot experience, because the resulting Device ID will not be stable until after TPM attestation has completed, and even then registration may give incorrect results because of ambiguity with MAC Address resolution. -
    MBR where the NIC card, HDD, and WLAN all remain the same after the repairYes - -1. Deregister damaged device -2. Replace motherboard (with new RDPK preinjected in BIOS) -3. Reimage device (to gain access), unless have access to customers’ login credentials -4. Write old device info into BIOS (same s/n, model, etc.)* -5. Capture new 4K HH -6. Reregister repaired device -7. Reset device back to OOBE -8. Go through Autopilot OOBE (customer) -9. Autopilot successfully enabled - -*Note that for this and subsequent scenarios, rewriting old device info would not include the TPM 2.0 endorsement key, as the associated private key is locked to the TPM device - -
    MBR where the NIC card remains the same, but the HDD and WLAN are replacedYes - -1. Deregister damaged device -2. Replace motherboard (with new RDPK preinjected in BIOS) -3. Insert new HDD and WLAN -4. Write old device info into BIOS (same s/n, model, etc.) -5. Capture new 4K HH -6. Reregister repaired device -7. Reset device back to OOBE -8. Go through Autopilot OOBE (customer) -9. Autopilot successfully enabled - -
    MBR where the NIC card and WLAN remains the same, but the HDD is replacedYes - -1. Deregister damaged device -2. Replace motherboard (with new RDPK preinjected in BIOS) -3. Insert new HDD -4. Write old device info into BIOS (same s/n, model, etc.) -5. Capture new 4K HH -6. Reregister repaired device -7. Reset device back to OOBE -8. Go through Autopilot OOBE (customer) -9. Autopilot successfully enabled - -
    MBR where only the MB is replaced (all other parts remain same) but new MB was taken from a previously used device that had NOT been Autopilot-enabled before.Yes - -1. Deregister damaged device -2. Replace motherboard (with new RDPK preinjected in BIOS) -3. Reimage device (to gain access), unless have access to customers’ login credentials -4. Write old device info into BIOS (same s/n, model, etc.) -5. Capture new 4K HH -6. Reregister repaired device -7. Reset device back to OOBE -8. Go through Autopilot OOBE (customer) -9. Autopilot successfully enabled - -
    MBR where only the MB is replaced (all other parts remain same) but new MB was taken from a previously used device that HAD been Autopilot-enabled before.Yes - -1. Deregister old device from which MB will be taken -2. Deregister damaged device (that you want to repair) -3. Replace motherboard in repair device with MB from other Autopilot device (with new RDPK preinjected in BIOS) -4. Reimage device (to gain access), unless have access to customers’ login credentials -5. Write old device info into BIOS (same s/n, model, etc.) -6. Capture new 4K HH -7. Reregister repaired device -8. Reset device back to OOBE -9. Go through Autopilot OOBE (customer) -10. Autopilot successfully enabled - -NOTE: The repaired device can also be used successfully as a normal, non-Autopilot device. - -
    BIOS info excluded from MBR deviceNoRepair facility does not have BIOS tool to write device info into BIOS after MBR. - -1. Deregister damaged device -2. Replace motherboard (BIOS does NOT contain device info) -3. Reimage and write DPK into image -4. Capture new 4K HH -5. Reregister repaired device -6. Create Autopilot profile for device -7. Go through Autopilot OOBE (customer) -8. Autopilot FAILS to recognize repaired device - -
    MBR when there is no TPM chipYesThough we do not recommend enabling an Autopilot devices without a TPM chip (which is recommended for BitLocker encryption), it is possible to enable an Autopilot devices in “standard user” mode (but NOT Self-deploying mode) that does not have a TPM chip. In this case, you would: - -1. Deregister damaged device -2. Replace motherboard -3. Reimage device (to gain access), unless have access to customers’ login credentials -4. Write old device info into BIOS (same s/n, model, etc.) -5. Capture new 4K HH -6. Reregister repaired device -7. Reset device back to OOBE -8. Go through Autopilot OOBE (customer) -9. Autopilot successfully enabled - -
    New DPK written into image on repaired Autopilot device with a new MBYesRepair facility replaces normal MB on damaged device. MB does not contain any DPK in the BIOS. Repair facility writes DPK into image after MBR. - -1. Deregister damaged device -2. Replace motherboard – BIOS does NOT contain DPK info -3. Reimage device (to gain access), unless have access to customers’ login credentials -4. Write device info into BIOS (same s/n, model, etc.) -5. Capture new 4K HH -6. Reset or reimage device to pre-OOBE and write DPK into image -7. Reregister repaired device -8. Go through Autopilot OOBE -9. Autopilot successfully enabled - -
    New Repair Product Key (RDPK)YesUsing a MB with a new RDPK preinjected results in a successful Autopilot refurbishment scenario. - -1. Deregister damaged device -2. Replace motherboard (with new RDPK preinjected in BIOS) -3. Reimage or rest image to pre-OOBE -4. Write device info into BIOS -5. Capture new 4K HH -6. Reregister repaired device -7. Reimage or reset image to pre-OOBE -8. Go through Autopilot OOBE -9. Autopilot successfully enabled - -
    No Repair Product Key (RDPK) injectedNoThis scenario violates Microsoft policy and breaks the Windows Autopilot experience. -
    Reimage damaged Autopilot device that was not deregistered prior to repairYes, but the device will still be associated with previous tenant ID, so should only be returned to same customer - -1. Reimage damaged device -2. Write DPK into image -3. Go through Autopilot OOBE -4. Autopilot successfully enabled (to previous tenant ID) - -
    Disk replacement from a non-Autopilot device to an Autopilot deviceYes - -1. Do not deregister damaged device prior to repair -2. Replace HDD on damaged device -3. Reimage or reset image back to OOBE -4. Go through Autopilot OOBE (customer) -5. Autopilot successfully enabled (repaired device recognized as its previous self) - -
    Disk replacement from one Autopilot device to another Autopilot deviceMaybeIf the device from which the HDD is taken was itself previously deregistered from Autopilot, then that HDD can be used in a repair device. But if the HDD was never previously deregistered from Autopilot before being used in a repaired device, the newly repaired device will not have the proper Autopilot experience. - -Assuming the used HDD was previously deregistered (before being used in this repair): - -1. Deregister damaged device -2. Replace HDD on damaged device using a HDD from another deregistered Autopilot device -3. Reimage or rest the repaired device back to a pre-OOBE state -4. Go through Autopilot OOBE (customer) -5. Autopilot successfully enabled - -
    Third party network card replacement NoWhether from a non-Autopilot device to an Autopilot device, from one Autopilot device to another Autopilot device, or from an Autopilot device to a non-Autopilot device, any scenario where a 3rd party (not onboard) Network card is replaced will break the Autopilot experience, and is not recommended. -
    A device repaired more than 3 timesNoAutopilot is not supported when a device is repeatedly repaired, so that whatever parts NOT replaced become associated with too many parts that have been replaced, which would make it difficult to uniquely identify that device in the future. -
    Memory replacementYesReplacing the memory on a damaged device does not negatively affect the Autopilot experience on that device. No de/reregistration is needed. The repair technician simply needs to replace the memory. -
    GPU replacementYesReplacing the GPU(s) on a damaged device does not negatively affect the Autopilot experience on that device. No de/reregistration is needed. The repair technician simply needs to replace the GPU. -
    - ->When scavenging parts from another Autopilot device, we recommend unregistering the scavenged device from Autopilot, scavenging it, and then NEVER REGISTERING THE SCAVENGED DEVICE (AGAIN) FOR AUTOPILOT, because reusing parts this way may cause two active devices to end up with the same ID, with no possibility of distinguishing between the two. - -**NOTE**: The following parts may be replaced without compromising Autopilot enablement or requiring special additional repair steps: -- Memory (RAM or ROM) -- Power Supply -- Video Card -- Card Reader -- Sound card -- Expansion card -- Microphone -- Webcam -- Fan -- Heat sink -- CMOS battery - -Other repair scenarios not yet tested and verified include: -- Daughterboard replacement -- CPU replacement -- Wifi replacement -- Ethernet replacement - -## FAQ - -| Question | Answer | -| --- | --- | -| If we have a tool that programs product information into the BIOS after the MBR, do we still need to submit a CBR report for the device to be Autopilot-capable? | No. Not if the in-house tool writes the minimum necessary information into the BIOS that the Autopilot program looks for to identify the device, as described earlier in this document. | -| What if only some components are replaced rather than the full motherboard? | While it’s true that some limited repairs do not prevent the Autopilot algorithm from successfully matching the post-repair device with the pre-repair device, it is best to ensure 100% success by going through the MBR steps above even for devices that only needed limited repairs. | -| How does a repair technician gain access to a broken device if they don’t have the customer’s login credentials? | The technician will have to reimage the device and use their own credentials during the repair process. | - -## Related topics - -[Device guidelines](autopilot-device-guidelines.md)
    From f57116a896daaa4bb9083cd0d9b8a38de9faac6e Mon Sep 17 00:00:00 2001 From: John Liu <49762389+ShenLanJohn@users.noreply.github.com> Date: Thu, 1 Aug 2019 22:05:35 -0700 Subject: [PATCH 138/138] new issues (#819) --- ...indows-10-1809-and-windows-server-2019.yml | 2 -- .../resolved-issues-windows-10-1903.yml | 2 ++ ...indows-10-1607-and-windows-server-2016.yml | 6 ++--- .../status-windows-10-1703.yml | 14 ++---------- .../status-windows-10-1709.yml | 14 ++---------- .../status-windows-10-1803.yml | 6 ++--- ...indows-10-1809-and-windows-server-2019.yml | 6 ++--- .../status-windows-10-1903.yml | 22 +++++++++---------- .../windows-message-center.yml | 2 +- 9 files changed, 23 insertions(+), 51 deletions(-) diff --git a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml index c8dd852476..0d43d708e8 100644 --- a/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/resolved-issues-windows-10-1809-and-windows-server-2019.yml @@ -55,7 +55,6 @@ sections:
    First character of the Japanese era name not recognized
    The first character of the Japanese era name is not recognized as an abbreviation and may cause date parsing issues.

    See details >    		OS Build 17763.316

    February 12, 2019
    KB4487044    		Resolved
    KB4482887    		March 01, 2019
    10:00 AM PT
    Applications using Microsoft Jet database and Access 95 file format stop working
    Applications that use a Microsoft Jet database with the Microsoft Access 9 file format may randomly stop working.

    See details >    		OS Build 17763.316

    February 12, 2019
    KB4487044    		Resolved
    KB4482887    		March 01, 2019
    10:00 AM PT
    Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
    Upgrade block: Devices utilizing AMD Radeon HD2000 or HD4000 series video cards may experience issues with the lock screen and Microsoft Edge tabs.

    See details >    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4487044    		February 12, 2019
    10:00 AM PT
    Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
    Upgrade block: Microsoft and Trend Micro identified a compatibility issue with the Trend Micro business endpoint security solutions OfficeScan and Worry-Free Business Security.

    See details >    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    		February 01, 2019
    09:00 AM PT
    Shared albums may not sync with iCloud for Windows
    Upgrade block: Apple has identified an incompatibility with iCloud for Windows (version 7.7.0.27) where users may experience issues updating or synching Shared Albums.

    See details >    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4482887    		March 01, 2019
    10:00 AM PT
    Intel Audio Display (intcdaud.sys) notification during Windows 10 Setup
    Upgrade block: Users may see an Intel Audio Display (intcdaud.sys) notification during setup for devices with certain Intel Display Audio Drivers.

    See details >    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4482887    		March 01, 2019
    10:00 AM PT
    F5 VPN clients losing network connectivity
    Upgrade block: After updating to Windows 10, version 1809, F5 VPN clients may lose network connectivity when the VPN service is in a split tunnel configuration.

    See details >    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4482887    		March 01, 2019
    10:00 AM PT
    - diff --git a/windows/release-information/resolved-issues-windows-10-1903.yml b/windows/release-information/resolved-issues-windows-10-1903.yml index ad580c30ce..4e7aae8a05 100644 --- a/windows/release-information/resolved-issues-windows-10-1903.yml +++ b/windows/release-information/resolved-issues-windows-10-1903.yml @@ -32,6 +32,7 @@ sections: - type: markdown text: "
    DetailsOriginating updateStatusHistory
    Audio not working on monitors or TV connected to a PC via HDMI, USB, or DisplayPort
    Upgrade block: Microsoft has identified issues with certain new Intel display drivers. Intel inadvertently released versions of its display driver (versions 24.20.100.6344, 24.20.100.6345) to OEMs that accidentally turned on unsupported features in Windows. 
     
    As a result, after updating to Windows 10, version 1809, audio playback from a monitor or television connected to a PC via HDMI, USB-C, or a DisplayPort may not function correctly on devices with these drivers.
    Note: This Intel display driver issue is different from the Intel Smart Sound Technology driver (version 09.21.00.3755) audio issue previously documented.

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
    • Server: Windows Server, version 1809; Windows Server 2019 
    Next steps: Intel has released updated drivers to OEM device manufacturers. OEMs need to make the updated driver available via Windows Update. For more information, see the Intel Customer Support article.

    Resolution: Microsoft has removed the safeguard hold.



    Back to top    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    		Resolved:
    May 21, 2019
    07:42 AM PT

    Opened:
    November 13, 2018
    10:00 AM PT
    Issues with lock screen and Microsoft Edge tabs for certain AMD Radeon video cards
    Note: AMD no longer supports Radeon HD2000 and HD4000 series graphic processor units (GPUs).
     
    Upgrade block: After updating to Windows 10, version 1809, Microsoft Edge tabs may stop working when a device is configured with AMD Radeon HD2000 or HD4000 series video cards. Customers may get the following error code: \"INVALID_POINTER_READ_c0000005_atidxx64.dll\". 
     
    Some users may also experience performance issues with the lock screen or the ShellExperienceHost. (The lock screen hosts widgets, and the ShellExperienceHost is responsible for assorted shell functionality.) 

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
    • Server: Windows Server, version 1809; Windows Server 2019
    Resolution: This issue was resolved in KB4487044, and the block was removed.

    Back to top    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4487044    		Resolved:
    February 12, 2019
    10:00 AM PT

    Opened:
    November 13, 2018
    10:00 AM PT
    Trend Micro OfficeScan and Worry-Free Business Security AV software not compatible
    Upgrade block: Microsoft and Trend Micro have identified a compatibility issue with Trend Micro's OfficeScan and Worry-Free Business Security software when attempting to update to Windows 10, version 1809.

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
    • Server: Windows Server, version 1809; Windows Server 2019 
    Resolution: Trend Micro has released a new version of these products that resolves the issue. To download them, please visit the Trend Micro Business Support Portal.

    Once you have updated your version of Trend Micro's OfficeScan or Worry-Free Business Security software, you will be offered Windows 10, version 1809 automatically. 

    Back to top    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    		Resolved:
    February 01, 2019
    09:00 AM PT

    Opened:
    November 13, 2018
    10:00 AM PT
    Shared albums may not sync with iCloud for Windows
    Upgrade block: Users who attempt to install iCloud for Windows (version 7.7.0.27) will see a message displayed that this version iCloud for Windows isn't supported and the install will fail.

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
    • Server: Windows Server, version 1809; Windows Server 2019
    To ensure a seamless experience, Microsoft is blocking devices with iCloud for Windows (version 7.7.0.27) software installed from being offered Windows 10, version 1809 until this issue has been resolved. 

    We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool from the Microsoft software download website until this issue is resolved. 
     
    Resolution: Apple has released an updated version of iCloud for Windows (version 7.8.1) that resolves compatibility issues encountered when updating or synching Shared Albums after updating to Windows 10, version 1809. We recommend that you update your iCloud for Windows to version 7.8.1 when prompted before attempting to upgrade to Windows 10, version 1809. You can also manually download the latest version of iCloud for Windows by visiting https://support.apple.com/HT204283.

    Back to top    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4482887    		Resolved:
    March 01, 2019
    10:00 AM PT

    Opened:
    November 13, 2018
    10:00 AM PT
    Intel Audio Display (intcdaud.sys) notification during Windows 10 Setup
    Upgrade block: Microsoft and Intel have identified a compatibility issue with a range of Intel Display Audio device drivers (intcdaud.sys, versions 10.25.0.3 - 10.25.0.8) that may result in excessive processor demand and reduced battery life. As a result, the update process to the Windows 10 October 2018 Update (Windows 10, version 1809) will fail and affected devices will automatically revert to the previous working configuration. 

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
    • Server: Windows Server, version 1809; Windows Server 2019
    If you see a \"What needs your attention\" notification during installation of the October 2018 Update, you have one of these affected drivers on your system. On the notification, click Back to remain on your current version of Windows 10. 
     
    To ensure a seamless experience, we are blocking devices from being offered the October 2018 Update until updated Intel device drivers are installed on your current operating system. We recommend that you do not attempt to manually update to Windows 10, version 1809, using the Update Now button or the Media Creation Tool from the Microsoft Software Download Center until newer Intel device drivers are available with the update. You can either wait for newer drivers to be installed automatically through Windows Update or check with your computer manufacturer for the latest device driver software availability and installation procedures. For more information about this issue, see Intel's customer support guidance.
     
    Resolution: This issue was resolved in KB4482887 and the upgrade block removed. 

    Back to top    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4482887    		Resolved:
    March 01, 2019
    10:00 AM PT

    Opened:
    November 13, 2018
    10:00 AM PT
    F5 VPN clients losing network connectivity
    Upgrade block: After updating to Windows 10, version 1809, F5 VPN clients may lose network connectivity when the VPN service is in a split tunnel configuration.

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019
    • Server: Windows Server, version 1809; Windows Server 2019
    Resolution: This issue was resolved in KB4482887 and the upgrade block removed. 

    Back to top    		OS Build 17763.134

    November 13, 2018
    KB4467708    		Resolved
    KB4482887    		Resolved:
    March 01, 2019
    10:00 AM PT

    Opened:
    November 13, 2018
    10:00 AM PT
    + @@ -66,6 +67,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusDate resolved
    Display brightness may not respond to adjustments
    Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    KB4505903    		July 26, 2019
    02:00 PM PT
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and result in the error “0xc0000005” with VPN profiles configured as an Always On VPN connection.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Resolved
    KB4505903    		July 26, 2019
    02:00 PM PT
    Loss of functionality in Dynabook Smartphone Link app
    After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

    See details >    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:54 PM PT
    Error attempting to update with external USB device or memory card attached
    PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:53 PM PT
    + diff --git a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml index f0ba7ea7a3..4bfa74c40c 100644 --- a/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml +++ b/windows/release-information/status-windows-10-1607-and-windows-server-2016.yml @@ -60,13 +60,12 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    DetailsOriginating updateStatusHistory
    Display brightness may not respond to adjustments
    Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers. After updating to Windows 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change.

    To safeguard your update experience, we have applied a compatibility hold on devices with certain Intel drivers from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue was resolved in KB4505903 and the safeguard hold has been removed. Please ensure you have applied the resolving update before attempting to update to the Windows 10 May 2019 Update (version 1903). Please note, it can take up to 48 hours for the safeguard to be removed.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    KB4505903    		Resolved:
    July 26, 2019
    02:00 PM PT

    Opened:
    May 21, 2019
    07:56 AM PT
    Loss of functionality in Dynabook Smartphone Link app
    Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

    To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

    Back to top    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Resolved
    		Resolved:
    July 11, 2019
    01:54 PM PT

    Opened:
    May 24, 2019
    03:10 PM PT
    Error attempting to update with external USB device or memory card attached
    If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

    Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

    Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

    To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		Resolved:
    July 11, 2019
    01:53 PM PT

    Opened:
    May 21, 2019
    07:38 AM PT
    Audio not working with Dolby Atmos headphones and home theater
    After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
     
    This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
     
    To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		Resolved:
    July 11, 2019
    01:53 PM PT

    Opened:
    May 21, 2019
    07:16 AM PT
    + - - @@ -85,8 +84,8 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		August 01, 2019
    06:12 PM PT
    Internet Explorer 11 and apps using the WebBrowser control may fail to render
    JavaScript may fail to render as expected in Internet Explorer 11 and in apps using JavaScript or the WebBrowser control.

    See details >    		OS Build 14393.3085

    July 09, 2019
    KB4507460    		Mitigated
    		July 26, 2019
    04:58 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		July 26, 2019
    04:08 PM PT
    SCVMM cannot enumerate and manage logical switches deployed on the host
    For hosts managed by System Center Virtual Machine Manager (VMM), VMM cannot enumerate and manage logical switches deployed on the host.

    See details >    		OS Build 14393.2639

    November 27, 2018
    KB4467684    		Resolved
    KB4507459    		July 16, 2019
    10:00 AM PT
    Some applications may fail to run as expected on clients of AD FS 2016
    Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016)

    See details >    		OS Build 14393.2941

    April 25, 2019
    KB4493473    		Resolved
    KB4507459    		July 16, 2019
    10:00 AM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 14393.3025

    June 11, 2019
    KB4503267    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
    Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

    See details >    		OS Build 14393.2969

    May 14, 2019
    KB4494440    		Resolved
    KB4507460    		July 09, 2019
    10:00 AM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 14393.2999

    May 23, 2019
    KB4499177    		Resolved
    KB4509475    		June 27, 2019
    02:00 PM PT
    Certain operations performed on a Cluster Shared Volume may fail
    Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

    See details >    		OS Build 14393.2724

    January 08, 2019
    KB4480961    		Mitigated
    		April 25, 2019
    02:00 PM PT
    Windows may not start on certain Lenovo and Fujitsu laptops with less than 8GB of RAM
    Windows may fail to start on certain Lenovo and Fujitsu laptops that have less than 8 GB of RAM.

    See details >    		OS Build 14393.2608

    November 13, 2018
    KB4467691    		Mitigated
    		February 19, 2019
    10:00 AM PT
    Cluster service may fail if the minimum password length is set to greater than 14
    The cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the Group Policy “Minimum Password Length” is configured with greater than 14 characters.

    See details >    		OS Build 14393.2639

    November 27, 2018
    KB4467684    		Mitigated
    		April 25, 2019
    02:00 PM PT
    + -
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507459. Devices that are domain controllers or domain members are both affected.

    To safeguard your update experience, we have applied a compatibility hold on devices configured to use MIT Kerberos realm from being offered Windows 10, version 1903 or Windows Server, version 1903.

    Note If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507459. We are working on a resolution and estimate a solution will be available in mid-August.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Back to top    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		Last updated:
    August 01, 2019
    06:12 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Internet Explorer 11 and apps using the WebBrowser control may fail to render
    Internet Explorer 11 may fail to render some JavaScript after installing KB4507460. You may also have issues with apps using JavaScript or the WebBrowser control, such as the present PowerPoint feature of Skype Meeting Broadcast.

    Affected platforms:
    • Client: Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server 2016
    Workaround: To mitigate this issue, you need to Enable Script Debugging using one of the following ways.

    You can configure the below registry key:
    Registry setting: HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Internet Explorer\\Main
    Value: Disable Script Debugger
    Type: REG_SZ
    Data: no

    Or you can Enable Script Debugging in Internet Settings. You can open Internet Setting by either typing Internet Settings into the search box on Windows or by selecting Internet Options in Internet Explorer. Once open, select Advanced then Browsing and finally, select Enable Script Debugging.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 14393.3085

    July 09, 2019
    KB4507460    		Mitigated
    		Last updated:
    July 26, 2019
    04:58 PM PT

    Opened:
    July 26, 2019
    04:58 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507459. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507459. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 14393.3115

    July 16, 2019
    KB4507459    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503267 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 14393.3025

    June 11, 2019
    KB4503267    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " @@ -97,7 +96,6 @@ sections: text: " -
    DetailsOriginating updateStatusHistory
    Some applications may fail to run as expected on clients of AD FS 2016
    Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016) after installation of KB4493473 on the server. Applications that may exhibit this behavior use an IFRAME during non-interactive authentication requests and receive X-Frame Options set to DENY.

    Affected platforms:
    • Server: Windows Server 2016
    Resolution: This issue was resolved in KB4507459.

    Back to top    		OS Build 14393.2941

    April 25, 2019
    KB4493473    		Resolved
    KB4507459    		Resolved:
    July 16, 2019
    10:00 AM PT

    Opened:
    June 04, 2019
    05:55 PM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499177. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
    • Server: Windows Server 2019; Windows Server 2016
    Resolution: This issue was resolved in KB4509475.

    Back to top    		OS Build 14393.2999

    May 23, 2019
    KB4499177    		Resolved
    KB4509475    		Resolved:
    June 27, 2019
    02:00 PM PT

    Opened:
    June 20, 2019
    04:46 PM PT
    " diff --git a/windows/release-information/status-windows-10-1703.yml b/windows/release-information/status-windows-10-1703.yml index b682373dce..4dbe8ada26 100644 --- a/windows/release-information/status-windows-10-1703.yml +++ b/windows/release-information/status-windows-10-1703.yml @@ -60,9 +60,8 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + -
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		July 26, 2019
    04:08 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		August 01, 2019
    06:12 PM PT
    Devices with Hyper-V enabled may receive BitLocker error 0xC0210000
    Some devices with Hyper-V enabled may start into BitLocker recovery with error 0xC0210000.

    See details >    		OS Build 15063.1805

    May 14, 2019
    KB4499181    		Resolved
    KB4507450    		July 09, 2019
    10:00 AM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 15063.1839

    May 28, 2019
    KB4499162    		Resolved
    KB4509476    		June 26, 2019
    04:00 PM PT
    Certain operations performed on a Cluster Shared Volume may fail
    Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

    See details >    		OS Build 15063.1563

    January 08, 2019
    KB4480973    		Mitigated
    		April 25, 2019
    02:00 PM PT
    " @@ -79,16 +78,7 @@ sections: - type: markdown text: " - -
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507467. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507467. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    - " - -- title: June 2019 -- items: - - type: markdown - text: " - - +
    DetailsOriginating updateStatusHistory
    Difficulty connecting to some iSCSI-based SANs
    Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499162. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
    • Server: Windows Server 2019; Windows Server 2016
    Resolution: This issue was resolved in KB4509476.

    Back to top    		OS Build 15063.1839

    May 28, 2019
    KB4499162    		Resolved
    KB4509476    		Resolved:
    June 26, 2019
    04:00 PM PT

    Opened:
    June 20, 2019
    04:46 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507467. Devices that are domain controllers or domain members are both affected.

    To safeguard your update experience, we have applied a compatibility hold on devices configured to use MIT Kerberos realm from being offered Windows 10, version 1903 or Windows Server, version 1903.

    Note If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507467. We are working on a resolution and estimate a solution will be available in mid-August.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Back to top    		OS Build 15063.1955

    July 16, 2019
    KB4507467    		Investigating
    		Last updated:
    August 01, 2019
    06:12 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    " diff --git a/windows/release-information/status-windows-10-1709.yml b/windows/release-information/status-windows-10-1709.yml index fcd770b784..cee8270547 100644 --- a/windows/release-information/status-windows-10-1709.yml +++ b/windows/release-information/status-windows-10-1709.yml @@ -60,9 +60,8 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + -
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		July 26, 2019
    04:08 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		August 01, 2019
    06:12 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 16299.1217

    June 11, 2019
    KB4503284    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 16299.1182

    May 28, 2019
    KB4499147    		Resolved
    KB4509477    		June 26, 2019
    04:00 PM PT
    Certain operations performed on a Cluster Shared Volume may fail
    Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

    See details >    		OS Build 16299.904

    January 08, 2019
    KB4480978    		Mitigated
    		April 25, 2019
    02:00 PM PT
    " @@ -79,20 +78,11 @@ sections: - type: markdown text: " - +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507465. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507465. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507465. Devices that are domain controllers or domain members are both affected.

    To safeguard your update experience, we have applied a compatibility hold on devices configured to use MIT Kerberos realm from being offered Windows 10, version 1903 or Windows Server, version 1903.

    Note If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507465. We are working on a resolution and estimate a solution will be available in mid-August.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Back to top    		OS Build 16299.1296

    July 16, 2019
    KB4507465    		Investigating
    		Last updated:
    August 01, 2019
    06:12 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503284 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 16299.1217

    June 11, 2019
    KB4503284    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " -- title: June 2019 -- items: - - type: markdown - text: " - - -
    DetailsOriginating updateStatusHistory
    Difficulty connecting to some iSCSI-based SANs
    Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499147. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
    • Server: Windows Server 2019; Windows Server 2016
    Resolution: This issue was resolved in KB4509477.

    Back to top    		OS Build 16299.1182

    May 28, 2019
    KB4499147    		Resolved
    KB4509477    		Resolved:
    June 26, 2019
    04:00 PM PT

    Opened:
    June 20, 2019
    04:46 PM PT
    - " - - title: January 2019 - items: - type: markdown diff --git a/windows/release-information/status-windows-10-1803.yml b/windows/release-information/status-windows-10-1803.yml index d829da6310..fccb71eca1 100644 --- a/windows/release-information/status-windows-10-1803.yml +++ b/windows/release-information/status-windows-10-1803.yml @@ -60,9 +60,8 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + -
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		July 26, 2019
    04:08 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		August 01, 2019
    06:12 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 17134.829

    June 11, 2019
    KB4503286    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 17134.799

    May 21, 2019
    KB4499183    		Resolved
    KB4509478    		June 26, 2019
    04:00 PM PT
    Startup to a black screen after installing updates
    Your device may startup to a black screen during the first logon after installing updates.

    See details >    		OS Build 17134.829

    June 11, 2019
    KB4503286    		Mitigated
    		June 14, 2019
    04:41 PM PT
    Certain operations performed on a Cluster Shared Volume may fail
    Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

    See details >    		OS Build 17134.523

    January 08, 2019
    KB4480966    		Mitigated
    		April 25, 2019
    02:00 PM PT
    @@ -80,7 +79,7 @@ sections: - type: markdown text: " - +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507466. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507466. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4507466. Devices that are domain controllers or domain members are both affected.

    To safeguard your update experience, we have applied a compatibility hold on devices configured to use MIT Kerberos realm from being offered Windows 10, version 1903 or Windows Server, version 1903.

    Note If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4507466. We are working on a resolution and estimate a solution will be available in mid-August.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Back to top    		OS Build 17134.915

    July 16, 2019
    KB4507466    		Investigating
    		Last updated:
    August 01, 2019
    06:12 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503286 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 17134.829

    June 11, 2019
    KB4503286    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " @@ -90,7 +89,6 @@ sections: - type: markdown text: " -
    DetailsOriginating updateStatusHistory
    Difficulty connecting to some iSCSI-based SANs
    Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4499183. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
    • Server: Windows Server 2019; Windows Server 2016
    Resolution: This issue was resolved in KB4509478.

    Back to top    		OS Build 17134.799

    May 21, 2019
    KB4499183    		Resolved
    KB4509478    		Resolved:
    June 26, 2019
    04:00 PM PT

    Opened:
    June 20, 2019
    04:46 PM PT
    Startup to a black screen after installing updates
    We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
    • Server: Windows Server 2019
    Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 17134.829

    June 11, 2019
    KB4503286    		Mitigated
    		Last updated:
    June 14, 2019
    04:41 PM PT

    Opened:
    June 14, 2019
    04:41 PM PT
    " diff --git a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml index 65bd34e1b5..de3ecd7333 100644 --- a/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml +++ b/windows/release-information/status-windows-10-1809-and-windows-server-2019.yml @@ -64,9 +64,8 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    - + - @@ -85,7 +84,7 @@ sections: - type: markdown text: "
    SummaryOriginating updateStatusLast updated
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		July 26, 2019
    04:08 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		August 01, 2019
    06:12 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 17763.557

    June 11, 2019
    KB4503327    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Difficulty connecting to some iSCSI-based SANs
    Devices may have difficulty connecting to some Storage Area Network (SAN) devices that leverage iSCSI.

    See details >    		OS Build 17763.529

    May 21, 2019
    KB4497934    		Resolved
    KB4509479    		June 26, 2019
    04:00 PM PT
    Startup to a black screen after installing updates
    Your device may startup to a black screen during the first logon after installing updates.

    See details >    		OS Build 17763.557

    June 11, 2019
    KB4503327    		Mitigated
    		June 14, 2019
    04:41 PM PT
    Devices with some Asian language packs installed may receive an error
    After installing the KB4493509 devices with some Asian language packs installed may receive the error, \"0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_F

    See details >    		OS Build 17763.437

    April 09, 2019
    KB4493509    		Mitigated
    		May 03, 2019
    10:59 AM PT
    Certain operations performed on a Cluster Shared Volume may fail
    Certain operations, such as rename, performed on files or folders on a Cluster Shared Volume (CSV) may fail with the error, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\".

    See details >    		OS Build 17763.253

    January 08, 2019
    KB4480116    		Mitigated
    		April 09, 2019
    10:00 AM PT
    - +
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4505658. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4505658. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4505658. Devices that are domain controllers or domain members are both affected.

    To safeguard your update experience, we have applied a compatibility hold on devices configured to use MIT Kerberos realm from being offered Windows 10, version 1903 or Windows Server, version 1903.

    Note If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4505658. We are working on a resolution and estimate a solution will be available in mid-August.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Back to top    		OS Build 17763.652

    July 22, 2019
    KB4505658    		Investigating
    		Last updated:
    August 01, 2019
    06:12 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503327 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 17763.557

    June 11, 2019
    KB4503327    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    " @@ -95,7 +94,6 @@ sections: - type: markdown text: " -
    DetailsOriginating updateStatusHistory
    Difficulty connecting to some iSCSI-based SANs
    Devices may have issues connecting to some Storage Area Network (SAN) devices using Internet Small Computer System Interface (iSCSI) after installing KB4497934. You may also receive an error in the System log section of Event Viewer with Event ID 43 from iScsiPrt and a description of “Target failed to respond in time for a login request.”

    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016
    • Server: Windows Server 2019; Windows Server 2016
    Resolution: This issue was resolved in KB4509479.

    Back to top    		OS Build 17763.529

    May 21, 2019
    KB4497934    		Resolved
    KB4509479    		Resolved:
    June 26, 2019
    04:00 PM PT

    Opened:
    June 20, 2019
    04:46 PM PT
    Startup to a black screen after installing updates
    We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.


    Affected platforms:
    • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
    • Server: Windows Server 2019
    Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 17763.557

    June 11, 2019
    KB4503327    		Mitigated
    		Last updated:
    June 14, 2019
    04:41 PM PT

    Opened:
    June 14, 2019
    04:41 PM PT
    " diff --git a/windows/release-information/status-windows-10-1903.yml b/windows/release-information/status-windows-10-1903.yml index bfe5a1a1d9..b2ca8f3142 100644 --- a/windows/release-information/status-windows-10-1903.yml +++ b/windows/release-information/status-windows-10-1903.yml @@ -65,23 +65,22 @@ sections: - type: markdown text: "
    This table offers a summary of current active issues and those issues that have been resolved in the last 30 days.

    + + + + + - - - - - -
    SummaryOriginating updateStatusLast updated
    Intermittent loss of Wi-Fi connectivity
    Some older devices may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated External
    		August 01, 2019
    08:44 PM PT
    Gamma ramps, color profiles, and night light settings do not apply in some cases
    Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		August 01, 2019
    06:27 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		August 01, 2019
    06:12 PM PT
    Issues updating when certain versions of Intel storage drivers are installed
    Certain versions of Intel Rapid Storage Technology (Intel RST) drivers may cause updating to Windows 10, version 1903 to fail.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated External
    		August 01, 2019
    05:58 PM PT
    Display brightness may not respond to adjustments
    Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    KB4505903    		July 26, 2019
    02:00 PM PT
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and result in the error “0xc0000005” with VPN profiles configured as an Always On VPN connection.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Resolved
    KB4505903    		July 26, 2019
    02:00 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after updating.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		July 26, 2019
    04:08 PM PT
    Issues updating when certain versions of Intel storage drivers are installed
    Certain versions of Intel Rapid Storage Technology (Intel RST) drivers may cause updating to Windows 10, version 1903 to fail.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated External
    		July 25, 2019
    06:10 PM PT
    The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
    Some apps or games that needs to perform graphics intensive operations may close or fail to open on Surface Book 2 devices with Nvidia dGPU.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		July 16, 2019
    09:04 AM PT
    Initiating a Remote Desktop connection may result in black screen
    When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen.

    See details >    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		July 12, 2019
    04:42 PM PT
    Loss of functionality in Dynabook Smartphone Link app
    After updating to Windows 10, version 1903, you may experience a loss of functionality when using the Dynabook Smartphone Link application.

    See details >    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:54 PM PT
    Error attempting to update with external USB device or memory card attached
    PCs with an external USB device or SD memory card attached may get error: \"This PC can't be upgraded to Windows 10.\"

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:53 PM PT
    Audio not working with Dolby Atmos headphones and home theater
    Users may experience audio loss with Dolby Atmos headphones or Dolby Atmos home theater.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		July 11, 2019
    01:53 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) may fail to start with error \"0xc0000001.\"

    See details >    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Mitigated
    		July 10, 2019
    07:09 PM PT
    Event Viewer may close or you may receive an error when using Custom Views
    When trying to expand, view or create Custom Views in Event Viewer, you may receive an error and the app may stop responding or close.

    See details >    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Resolved
    KB4501375    		June 27, 2019
    10:00 AM PT
    Windows Sandbox may fail to start with error code “0x80070002”
    Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language was changed between updates

    See details >    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Investigating
    		June 10, 2019
    06:06 PM PT
    Gamma ramps, color profiles, and night light settings do not apply in some cases
    Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		May 24, 2019
    11:02 AM PT
    Unable to discover or connect to Bluetooth devices
    Microsoft has identified compatibility issues with some versions of Realtek and Qualcomm Bluetooth radio drivers.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		May 21, 2019
    04:48 PM PT
    Display brightness may not respond to adjustments
    Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Investigating
    		May 21, 2019
    04:47 PM PT
    Intel Audio displays an intcdaud.sys notification
    Microsoft and Intel have identified an issue with a range of Intel Display Audio device drivers that may result in battery drain.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		May 21, 2019
    04:47 PM PT
    Cannot launch Camera app
    Microsoft and Intel have identified an issue affecting Intel RealSense SR300 or Intel RealSense S200 camera apps.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		May 21, 2019
    04:47 PM PT
    Intermittent loss of Wi-Fi connectivity
    Some older devices may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver.

    See details >    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		May 21, 2019
    04:46 PM PT
    " @@ -97,8 +96,8 @@ sections: - type: markdown text: " - - + + @@ -111,7 +110,6 @@ sections: text: "
    DetailsOriginating updateStatusHistory
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4497935. Devices that are domain controllers or domain members are both affected.

    If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4497935. We are working on a resolution and estimate a solution will be available in mid-August.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    July 26, 2019
    04:08 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Issues updating when certain versions of Intel storage drivers are installed
    Intel and Microsoft have found incompatibility issues with certain versions of the Intel Rapid Storage Technology (Intel RST) drivers and the Windows 10 May 2019 Update (Windows 10, version 1903).  

    To safeguard your update experience, we have applied a compatibility hold on devices with Intel RST driver version between 15.1.0.1002 and 15.5.2.1053 installed from being offered Windows 10, version 1903 or Windows Server, version 1903 until the driver has been updated.

    Versions 15.5.2.1054 or later are compatible, and a device that has these drivers installed can install the Windows 10 May 2019 Update. For affected devices, the recommended version is 15.9.6.1044.

    Affected platforms:
    • Client: Windows 10, version 1903
    • Server: Windows Server, version 1903
    Next steps: To resolve this issue, you will need to update the Intel RST drivers for your device to version 15.5.2.1054 or a later.  Check with your device manufacturer (OEM) to see if an updated driver is available and install it. You can also download the latest Intel RST drivers directly from Intel at Intel® Rapid Storage Technology (Intel® RST) User Interface and Driver. Once your drivers are updated, you can restart the installation process for the May 2019 Update.

    Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated External
    		Last updated:
    July 25, 2019
    06:10 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Domain connected devices that use MIT Kerberos realms will not start up
    Devices connected to a domain that is configured to use MIT Kerberos realms will not start up or may continue to restart after installation of KB4497935. Devices that are domain controllers or domain members are both affected.

    To safeguard your update experience, we have applied a compatibility hold on devices configured to use MIT Kerberos realm from being offered Windows 10, version 1903 or Windows Server, version 1903.

    Note If you are not sure if your device is affected, contact your administrator. Advanced users can check if this registry key exists HKLM\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\Kerberos\\MitRealms or for “Define interoperable Kerberos v5 realm settings” policy under Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • Server: Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server, version 1803; Windows Server, version 1709 ; Windows Server 2016
    Next steps: At this time, we suggest that devices in an affected environment do not install KB4497935. We are working on a resolution and estimate a solution will be available in mid-August.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    August 01, 2019
    06:12 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    Issues updating when certain versions of Intel storage drivers are installed
    Intel and Microsoft have found incompatibility issues with certain versions of the Intel Rapid Storage Technology (Intel RST) drivers and the Windows 10 May 2019 Update (Windows 10, version 1903).  

    To safeguard your update experience, we have applied a compatibility hold on devices with Intel RST drivers, versions 15.1.0.1002 through version 15.5.2.1053 installed from installing Windows 10, version 1903 or Windows Server, version 1903, until the driver has been updated.

    Versions 15.5.2.1054 or later are compatible, and a device that has these drivers installed can install the Windows 10 May 2019 Update. For affected devices, the recommended version is 15.9.6.1044.

    Affected platforms:
    • Client: Windows 10, version 1903
    • Server: Windows Server, version 1903
    Next steps: To resolve this issue, you will need to update the Intel RST drivers for your device to version 15.5.2.1054 or a later.  Check with your device manufacturer (OEM) to see if an updated driver is available and install it. You can also download the latest Intel RST drivers directly from Intel at Intel® Rapid Storage Technology (Intel® RST) User Interface and Driver. Once your drivers are updated, you can restart the installation process for the May 2019 Update. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

    Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Mitigated External
    		Last updated:
    August 01, 2019
    05:58 PM PT

    Opened:
    July 25, 2019
    06:10 PM PT
    The dGPU may occasionally disappear from device manager on Surface Book 2 with dGPU
    Microsoft has identified a compatibility issue on some Surface Book 2 devices configured with Nvidia discrete graphics processing unit (dGPU). After updating to Windows 10, version 1903 (May 2019 Feature Update), some apps or games that needs to perform graphics intensive operations may close or fail to open.

    To safeguard your update experience, we have applied a compatibility hold on Surface Book 2 devices with Nvidia dGPUs from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: To mitigate the issue if you are already on Windows 10, version 1903, you can restart the device or select the Scan for hardware changes button in the Action menu or on the toolbar in Device Manager.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    July 16, 2019
    09:04 AM PT

    Opened:
    July 12, 2019
    04:20 PM PT
    Initiating a Remote Desktop connection may result in black screen
    When initiating a Remote Desktop connection to devices with some older GPU drivers, you may receive a black screen. Any version of Windows may encounter this issue when initiating a Remote Desktop connection to a Windows 10, version 1903 device which is running an affected display driver, including the drivers for the Intel 4 series chipset integrated GPU (iGPU).

    Affected platforms:
    • Client: Windows 10, version 1903
    • Server: Windows Server, version 1903
    Next steps: We are working on a resolution that will be made available in upcoming release.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Investigating
    		Last updated:
    July 12, 2019
    04:42 PM PT

    Opened:
    July 12, 2019
    04:42 PM PT
    Devices starting using PXE from a WDS or SCCM servers may fail to start
    Devices that start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM) may fail to start with the error \"Status: 0xc0000001, Info: A required device isn't connected or can't be accessed\" after installing KB4503293 on a WDS server.

    Affected platforms:
    • Server: Windows Server 2008 SP2; Windows Server 2008 R2 SP1; Windows Server 2012; Windows Server 2012 R2; Windows Server 2016; Windows Server, version 1803; Windows Server 2019; Windows Server, version 1809; Windows Server, version 1903
    Workaround:
    To mitigate this issue on an SCCM server:
    1. Verify Variable Window Extension is enabled.
    2. Set the values of TFTP block size to 4096 and TFTP window size to 1. For guidance on how to configure them, see Customize the RamDisk TFTP block and window sizes on PXE-enabled distribution points.
    Note Try the default values for TFTP block size and TFTP window size first but depending on your environment and overall settings, you may need to adjust them for your setup. You can also try the Enable a PXE responder without Windows Deployment Service setting. For more information on this setting, see Install and configure distribution points in Configuration Manager.

    To mitigate this issue on a WDS server without SCCM:
    1. In WDS TFTP settings, verify Variable Window Extension is enabled.
    2. In the Boot Configuration Data (BCD) of the imported image, set RamDiskTFTPBlockSize to 1456.
    3. In the BCD of the imported image, set RamDiskTFTPWindowSize to 4.
    Note Try the default values for RamDiskTFTPBlockSize and RamDiskTFTPWindowSize first but depending on your environment and overall settings, you may need to adjust them for your setup.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Mitigated
    		Last updated:
    July 10, 2019
    07:09 PM PT

    Opened:
    July 10, 2019
    02:51 PM PT
    -
    DetailsOriginating updateStatusHistory
    RASMAN service may stop working and result in the error “0xc0000005”
    The Remote Access Connection Manager (RASMAN) service may stop working and you may receive the error “0xc0000005” on devices where the diagnostic data level is manually configured to the non-default setting of 0. You may also receive an error in the Application section of Windows Logs in Event Viewer with Event ID 1000 referencing “svchost.exe_RasMan” and “rasman.dll”.

    This issue only occurs when a VPN profile is configured as an Always On VPN (AOVPN) connection with or without device tunnel. This does not affect manual only VPN profiles or connections.

    Affected platforms
    • Client: Windows 10, version 1903
    Resolution: This issue was resolved in KB4505903.

    Back to top    		OS Build 18362.145

    May 29, 2019
    KB4497935    		Resolved
    KB4505903    		Resolved:
    July 26, 2019
    02:00 PM PT

    Opened:
    June 28, 2019
    05:01 PM PT
    Event Viewer may close or you may receive an error when using Custom Views
    When trying to expand, view, or create Custom Views in Event Viewer, you may receive the error, \"MMC has detected an error in a snap-in and will unload it.\" and the app may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs. Built-in views and other features of Event Viewer should work as expected.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803; Windows 10, version 1709; Windows 10, version 1703; Windows 10, version 1607; Windows 10 Enterprise LTSC 2016; Windows 10 Enterprise LTSC 2015; Windows 8.1; Windows 7 SP1
    • Server: Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2
    Resolution: This issue was resolved in KB4501375.

    Back to top    		OS Build 18362.175

    June 11, 2019
    KB4503293    		Resolved
    KB4501375    		Resolved:
    June 27, 2019
    10:00 AM PT

    Opened:
    June 12, 2019
    11:11 AM PT
    " @@ -120,15 +118,15 @@ sections: - type: markdown text: " + + + - - -
    DetailsOriginating updateStatusHistory
    Intermittent loss of Wi-Fi connectivity
    Some older computers may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver. An updated Wi-Fi driver should be available from your device manufacturer (OEM).

    To safeguard your upgrade experience, we have applied a hold on devices with this Qualcomm driver from being offered Windows 10, version 1903, until the updated driver is installed.

    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: Before updating to Windows 10, version 1903, you will need to download and install an updated Wi-Fi driver from your device manufacturer (OEM).
     
    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated External
    		Last updated:
    August 01, 2019
    08:44 PM PT

    Opened:
    May 21, 2019
    07:13 AM PT
    Gamma ramps, color profiles, and night light settings do not apply in some cases
    Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

    Microsoft has identified some scenarios in which these features may have issues or stop working, for example:
    • Connecting to (or disconnecting from) an external monitor, dock, or projector
    • Rotating the screen
    • Updating display drivers or making other display mode changes
    • Closing full screen applications
    • Applying custom color profiles
    • Running applications that rely on custom gamma ramps
    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: If you find that your night light has stopped working, try turning the night light off and on, or restarting your computer. For other color setting issues, restart your computer to correct the issue.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		Last updated:
    August 01, 2019
    06:27 PM PT

    Opened:
    May 21, 2019
    07:28 AM PT
    Display brightness may not respond to adjustments
    Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers. After updating to Windows 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change.

    To safeguard your update experience, we have applied a compatibility hold on devices with certain Intel drivers from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue was resolved in KB4505903 and the safeguard hold has been removed. Please ensure you have applied the resolving update before attempting to update to the Windows 10 May 2019 Update (version 1903). Please note, it can take up to 48 hours for the safeguard to be removed.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    KB4505903    		Resolved:
    July 26, 2019
    02:00 PM PT

    Opened:
    May 21, 2019
    07:56 AM PT
    Loss of functionality in Dynabook Smartphone Link app
    Some users may experience a loss of functionality after updating to Windows 10, version 1903 when using the Dynabook Smartphone Link application on Windows devices. Loss of functionality may affect the display of phone numbers in the Call menu and the ability to answer phone calls on the Windows PC.

    To safeguard your update experience, we have applied a compatibility hold on devices with Dynabook Smartphone Link from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

    Back to top    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Resolved
    		Resolved:
    July 11, 2019
    01:54 PM PT

    Opened:
    May 24, 2019
    03:10 PM PT
    Error attempting to update with external USB device or memory card attached
    If you have an external USB device or SD memory card attached when installing Windows 10, version 1903, you may get an error message stating \"This PC can't be upgraded to Windows 10.\" This is caused by inappropriate drive reassignment during installation.

    Sample scenario: An update to Windows 10, version 1903 is attempted on a computer that has a thumb drive inserted into its USB port. Before the update, the thumb drive is mounted in the system as drive G based on the existing drive configuration. After the feature update is installed; however, the device is reassigned a different drive letter (e.g., drive H).

    Note The drive reassignment is not limited to removable drives. Internal hard drives may also be affected.

    To safeguard your update experience, we have applied a hold on devices with an external USB device or SD memory card attached from being offered Windows 10, version 1903 until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		Resolved:
    July 11, 2019
    01:53 PM PT

    Opened:
    May 21, 2019
    07:38 AM PT
    Audio not working with Dolby Atmos headphones and home theater
    After updating to Windows 10, version 1903, you may experience loss of audio with Dolby Atmos for home theater (free extension) or Dolby Atmos for headphones (paid extension) acquired through the Microsoft Store due to a licensing configuration error.
     
    This occurs due to an issue with a Microsoft Store licensing component, where license holders are not able to connect to the Dolby Access app and enable Dolby Atmos extensions.
     
    To safeguard your update experience, we have applied protective hold on devices from being offered Windows 10, version 1903 until this issue is resolved. This configuration error will not result in loss of access for the acquired license once the problem is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Resolution: This issue is now resolved and the safeguard hold has been removed. Please note, it can take up to 48 hours before you can update to Windows 10, version 1903.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Resolved
    		Resolved:
    July 11, 2019
    01:53 PM PT

    Opened:
    May 21, 2019
    07:16 AM PT
    Windows Sandbox may fail to start with error code “0x80070002”
    Windows Sandbox may fail to start with \"ERROR_FILE_NOT_FOUND (0x80070002)\" on devices in which the operating system language is changed during the update process when installing Windows 10, version 1903.

    Affected platforms:
    • Client: Windows 10, version 1903
    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 18362.116

    May 20, 2019
    KB4505057    		Investigating
    		Last updated:
    June 10, 2019
    06:06 PM PT

    Opened:
    May 24, 2019
    04:20 PM PT
    Gamma ramps, color profiles, and night light settings do not apply in some cases
    Microsoft has identified some scenarios where gamma ramps, color profiles and night light settings may stop working.

    Microsoft has identified some scenarios where night light settings may stop working, for example:
    • Connecting to (or disconnecting from) an external monitor, dock, or projector
    • Rotating the screen
    • Updating display drivers or making other display mode changes
    • Closing full screen applications
    • Applying custom color profiles
    • Running applications that rely on custom gamma ramps
    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: If you find that your night light has stopped working, try turning the night light off and on, or restarting your computer. For other color setting issues, restart your computer to correct the issue.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		Last updated:
    May 24, 2019
    11:02 AM PT

    Opened:
    May 21, 2019
    07:28 AM PT
    Unable to discover or connect to Bluetooth devices
    Microsoft has identified compatibility issues with some driver versions for Bluetooth radios made by Realtek and Qualcomm. To safeguard your update experience, we have applied a compatibility hold on devices with affected driver versions for Realtek or Qualcomm Bluetooth radios from being offered Windows 10, version 1903 or Windows Server, version 1903 until the driver has been updated.

    Affected platforms:
    • Client: Windows 10, version 1903
    • Server: Windows Server, version 1903
    Workaround: Check with your device manufacturer (OEM) to see if an updated driver is available and install it.

    • For Qualcomm drivers, you will need to install a driver version greater than 10.0.1.11.
    • For Realtek drivers, you will need to install a driver version greater than 1.5.1011.0.
    Note Until an updated driver has been installed, we recommend you do not attempt to manually update using the Update now button or the Media Creation Tool. 

    Next steps: Microsoft is working with Realtek and Qualcomm to release new drivers for all affected system via Windows Update.  


    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		Last updated:
    May 21, 2019
    04:48 PM PT

    Opened:
    May 21, 2019
    07:29 AM PT
    Display brightness may not respond to adjustments
    Microsoft and Intel have identified a driver compatibility issue on devices configured with certain Intel display drivers. After updating to Windows 10, version 1903, brightness settings may sometime appear as if changes applied took effect, yet the actual display brightness doesn't change.

    To safeguard your update experience, we have applied a compatibility hold on devices with certain Intel drivers from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: Restart your device to apply changes to brightness.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Next steps: We are working on a resolution that will be made available in upcoming release.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Investigating
    		Last updated:
    May 21, 2019
    04:47 PM PT

    Opened:
    May 21, 2019
    07:56 AM PT
    Intel Audio displays an intcdaud.sys notification
    Microsoft and Intel have identified an issue with a range of Intel Display Audio device drivers that may result in higher than normal battery drain. If you see an intcdaud.sys notification or “What needs your attention” notification when trying to update to Windows 10, version 1903, you have an affected Intel Audio Display device driver installed on your machine (intcdaud.sys, versions 10.25.0.3 through 10.25.0.8).
      
    To safeguard your update experience, we have applied a compatibility hold on devices with drivers from being offered Windows 10, version 1903 until updated device drivers have been installed.

    Affected platforms:
    • Client: Windows 10, version 1903; Windows 10, version 1809
    Workaround:
    On the “What needs your attention\" notification, click the Back button to remain on your current version of Windows 10. (Do not click Confirm as this will proceed with the update and you may experience compatibility issues.) Affected devices will automatically revert to the previous working configuration.

    For more information, see Intel's customer support guidance and the Microsoft knowledge base article KB4465877.

    Note We recommend you do not attempt to update your devices until newer device drivers are installed.

    Next steps: You can opt to wait for newer drivers to be installed automatically through Windows Update or check with the computer manufacturer for the latest device driver software availability and installation procedures.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		Last updated:
    May 21, 2019
    04:47 PM PT

    Opened:
    May 21, 2019
    07:22 AM PT
    Cannot launch Camera app
    Microsoft and Intel have identified an issue affecting Intel RealSense SR300 and Intel RealSense S200 cameras when using the Camera app. After updating to the Windows 10 May 2019 Update and launching the Camera app, you may get an error message stating:

    \"Close other apps, error code: 0XA00F4243.”


    To safeguard your update experience, we have applied a protective hold on machines with Intel RealSense SR300 or Intel RealSense S200 cameras installed from being offered Windows 10, version 1903, until this issue is resolved.

    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: To temporarily resolve this issue, perform one of the following:

    • Unplug your camera and plug it back in.

    or

    • Disable and re-enable the driver in Device Manager. In the Search box, type \"Device Manager\" and press Enter. In the Device Manager dialog box, expand Cameras, then right-click on any RealSense driver listed and select Disable device. Right click on the driver again and select Enable device.

    or

    • Restart the RealSense service. In the Search box, type \"Task Manager\" and hit Enter. In the Task Manager dialog box, click on the Services tab, right-click on RealSense, and select Restart
    Note This workaround will only resolve the issue until your next system restart.

    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until this issue has been resolved.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		Last updated:
    May 21, 2019
    04:47 PM PT

    Opened:
    May 21, 2019
    07:20 AM PT
    Intermittent loss of Wi-Fi connectivity
    Some older computers may experience loss of Wi-Fi connectivity due to an outdated Qualcomm driver. An updated Wi-Fi driver should be available from your device manufacturer (OEM).

    To safeguard your upgrade experience, we have applied a hold on devices with this Qualcomm driver from being offered Windows 10, version 1903, until the updated driver is installed.

    Affected platforms:
    • Client: Windows 10, version 1903
    Workaround: Download and install an updated Wi-Fi driver from your device manufacturer (OEM).
     
    Note We recommend that you do not attempt to manually update using the Update now button or the Media Creation Tool until a new driver has been installed and the Windows 10, version 1903 feature update has been automatically offered to you.

    Back to top    		OS Build 18362.116

    May 21, 2019
    KB4505057    		Mitigated
    		Last updated:
    May 21, 2019
    04:46 PM PT

    Opened:
    May 21, 2019
    07:13 AM PT
    " diff --git a/windows/release-information/windows-message-center.yml b/windows/release-information/windows-message-center.yml index ed6e185ffc..503cd5fa79 100644 --- a/windows/release-information/windows-message-center.yml +++ b/windows/release-information/windows-message-center.yml @@ -50,7 +50,7 @@ sections: text: " - +
    MessageDate
    Microsoft Store users may encounter blank screens when clicking on certain buttons
    Some customers running the version of the Microsoft Store app released on July 29, 2019 may encounter a blank screen when selecting “Switch out of S mode,” “Get Genuine,” or some “Upgrade to [version]” OS upgrade options. We are working on the issue and expect to release a fix that should resolve the issue later this week.    		July 31, 2019
    02:00 PM PT
    Resolved August 1, 2019 16:00 PT: Microsoft Store users may encounter blank screens when clicking on certain buttons
    Some customers running the version of the Microsoft Store app released on July 29, 2019 encountered a blank screen when selecting “Switch out of S mode,” “Get Genuine,” or some “Upgrade to [version]” OS upgrade options. This issue has now been resolved and a new version of the Microsoft Store app has been released. Users who encountered this issue will need to update the Microsoft Store app on their device. If you are still encountering an issue, please see Fix problems with apps from Microsoft Store.
    		August 01, 2019
    02:00 PM PT
    Status update: Windows 10, version 1903 “D” release now available
    The optional monthly “D” release for Windows 10, version 1903 is now available. Follow @WindowsUpdate for the latest on the availability of this release.
    		July 26, 2019
    02:00 PM PT
    Plan for change: Microsoft Silverlight will reach end of support on October 12, 2021
    After this date, Silverlight will not receive any future quality or security updates. Microsoft will continue to ship updates to the Silverlight 5 Developer Runtime for supported browsers and versions (Internet Explorer 10 and Internet Explorer 11); however, please note that support for Internet Explorer 10 will end on 31 January 2020. See the Silverlight end of support FAQ for more details.
    		July 19, 2019
    12:00 AM PT
    Evolving Windows 10 servicing and quality
    Find out how we plan to further optimize the delivery of the next Windows 10 feature update for devices running Windows 10, version 1903. If you're a commercial customer, please see the Windows IT Pro Blog for more details on how to plan for this new update option in your environment.
    		July 01, 2019
    02:00 PM PT